Isabelle/FOL First-Order Logic

Similar documents
Fundamentals of Logic

2 Deduction in Sentential Logic

Tableau Theorem Prover for Intuitionistic Propositional Logic

0.1 Equivalence between Natural Deduction and Axiomatic Systems

Proof Techniques for Operational Semantics. Questions? Why Bother? Mathematical Induction Well-Founded Induction Structural Induction

Cut-free sequent calculi for algebras with adjoint modalities

Tableau Theorem Prover for Intuitionistic Propositional Logic

Lattice Properties. Viorel Preoteasa. April 17, 2016

5 Deduction in First-Order Logic

Conditional Rewriting

Introduction An example Cut elimination. Deduction Modulo. Olivier Hermant. Tuesday, December 12, Deduction Modulo

Strong normalisation and the typed lambda calculus

The Floyd-Warshall Algorithm for Shortest Paths

SAT and DPLL. Introduction. Preliminaries. Normal forms DPLL. Complexity. Espen H. Lian. DPLL Implementation. Bibliography.

TABLEAU-BASED DECISION PROCEDURES FOR HYBRID LOGIC

Isabelle/HOLCF Higher-Order Logic of Computable Functions

SAT and DPLL. Espen H. Lian. May 4, Ifi, UiO. Espen H. Lian (Ifi, UiO) SAT and DPLL May 4, / 59

CIS 500 Software Foundations Fall October. CIS 500, 6 October 1

8. Propositional Logic Natural deduction - negation. Solved problems

Focusing on contraction

Security issues in contract-based computing

Horn-formulas as Types for Structural Resolution

arxiv: v1 [math.lo] 24 Feb 2014

This is a repository copy of Generalised Reactive Processes in Isabelle/UTP.


Typed Lambda Calculi Lecture Notes

Axiomatizing the Skew Boolean Propositional Calculus

An Adaptive Characterization of Signed Systems for Paraconsistent Reasoning

Language Models Review: 1-28

Implications as rules

CS792 Notes Henkin Models, Soundness and Completeness

Proof Techniques for Operational Semantics

Lecture 2: The Simple Story of 2-SAT

In this lecture, we will use the semantics of our simple language of arithmetic expressions,

Brief Notes on the Category Theoretic Semantics of Simply Typed Lambda Calculus

Gödel algebras free over finite distributive lattices

CTL Model Checking. Goal Method for proving M sat σ, where M is a Kripke structure and σ is a CTL formula. Approach Model checking!

Maximally Consistent Extensions

On Lukasiewicz's intuitionistic fuzzy disjunction and conjunction

Threshold logic proof systems

Programming Languages

Semantics with Applications 2b. Structural Operational Semantics

Introduction to Type Theory August 2007 Types Summer School Bertinoro, It. Herman Geuvers Nijmegen NL. Lecture 3: Polymorphic λ-calculus

Harvard School of Engineering and Applied Sciences CS 152: Programming Languages

Proof Techniques for Operational Semantics

Formalization of Nested Multisets, Hereditary Multisets, and Syntactic Ordinals

6: MULTI-PERIOD MARKET MODELS

Logic and Artificial Intelligence Lecture 24

Syllogistic Logics with Verbs

A Translation of Intersection and Union Types

δ j 1 (S j S j 1 ) (2.3) j=1

A Syntactic Realization Theorem for Justification Logics

ExpTime Tableau Decision Procedures for Regular Grammar Logics with Converse

CATEGORICAL SKEW LATTICES

MAT 4250: Lecture 1 Eric Chung

First-Order Logic in Standard Notation Basics

A Theory of Architectural Design Patterns

Outline Introduction Game Representations Reductions Solution Concepts. Game Theory. Enrico Franchi. May 19, 2010

Lecture Notes on Type Checking

Comparing Goal-Oriented and Procedural Service Orchestration

Epistemic Game Theory

THE OPERATIONAL PERSPECTIVE

Harvard School of Engineering and Applied Sciences CS 152: Programming Languages

10.1 Elimination of strictly dominated strategies

Characterisation of Strongly Normalising λµ-terms

HW 1 Reminder. Principles of Programming Languages. Lets try another proof. Induction. Induction on Derivations. CSE 230: Winter 2007

Priority Queues Based on Braun Trees

α-structural Recursion and Induction

Contrariety and Subcontrariety: The Anatomy of Negation (with Special Reference to an Example of J.-Y. Béziau)

Explicit Substitutions for Linear Logical Frameworks: Preliminary Results

Computational Independence

Notes on Natural Logic

Operational Semantics

Type-safe cast does no harm

ImpSemanticsFacts.v. ImpSemanticsFacts.v. Printed by Zach Tatlock Oct 24, 16 7:17 Page 1/11

DOT. (Dependent Object Types) Nada Amin. February 28, ECOOP PC Workshop

Structural Resolution

Lecture Notes on Bidirectional Type Checking

A Knowledge-Theoretic Approach to Distributed Problem Solving

Refinement for Monadic Programs. Peter Lammich

Chapter 12 Module 6. AMIS 310 Foundations of Accounting

A Decidable Logic for Time Intervals: Propositional Neighborhood Logic

Matching of Meta-Expressions with Recursive Bindings

CS 4110 Programming Languages and Logics Lecture #2: Introduction to Semantics. 1 Arithmetic Expressions

Matching [for] the Lambda Calculus of Objects

Syllogistic Logics with Verbs

TR : Knowledge-Based Rational Decisions

Extraction capacity and the optimal order of extraction. By: Stephen P. Holland

Lecture 14: Basic Fixpoint Theorems (cont.)

CONGRUENCES AND IDEALS IN A DISTRIBUTIVE LATTICE WITH RESPECT TO A DERIVATION

The Role of Human Creativity in Mechanized Verification. J Strother Moore Department of Computer Science University of Texas at Austin

A class of coherent risk measures based on one-sided moments

A Logic-based Approach to Decision Making. Magdalena Ivanovska and Martin Giese

Functional Automata. Tobias Nipkow. October 11, 2017

Monadic translation of sequent calculus for classical logic

ISBN ISSN

MATH 425: BINOMIAL TREES

Exploring and Exploiting Algebraic and Graphical Properties of Resolution

On the existence of coalition-proof Bertrand equilibrium

Gradual Typing for Objects: Isabelle Formalization

Transcription:

Isabelle/FOL First-Order Logic Larry Paulson and Markus Wenzel October 8, 2017 Contents 1 Intuitionistic first-order logic 2 1.1 Syntax and axiomatic basis................... 2 1.1.1 Equality.......................... 2 1.1.2 Propositional logic.................... 2 1.1.3 Quantifiers........................ 3 1.1.4 Definitions........................ 3 1.1.5 Old-style ASCII syntax................. 3 1.2 Lemmas and proof tools..................... 4 1.2.1 Sequent-style elimination rules for and.... 4 1.2.2 Negation rules, which translate between P and P False......................... 4 1.2.3 Modus Ponens Tactics.................. 5 1.3 If-and-only-if........................... 5 1.3.1 Destruct rules for similar to Modus Ponens... 5 1.4 Unique existence......................... 6 1.4.1 congruence rules for simplification......... 6 1.5 Equality rules........................... 7 1.5.1 Polymorphic congruence rules.............. 8 1.5.2 Congruence rules for predicate letters......... 8 1.6 Simplifications of assumed implications............. 9 1.7 Intuitionistic Reasoning..................... 10 1.8 Atomizing meta-level rules.................... 11 1.9 Atomizing elimination rules................... 11 1.10 Calculational rules........................ 12 1.11 Let declarations........................ 12 1.12 Intuitionistic simplification rules................ 12 1.12.1 Conversion into rewrite rules.............. 14 1.12.2 More rewrite rules.................... 14 1

2 Classical first-order logic 15 2.1 The classical axiom........................ 15 2.2 Lemmas and proof tools..................... 15 2.2.1 Classical introduction rules for and........ 15 2.3 Special elimination rules..................... 15 2.3.1 Tactics for implication and contradiction........ 16 3 Classical Reasoner 17 3.1 Classical simplification rules................... 17 3.1.1 Miniscoping: pushing quantifiers in........... 17 3.1.2 Named rewrite rules proved for IFOL......... 18 3.2 Other simple lemmas....................... 19 3.2.1 Monotonicity of implications.............. 19 3.3 Proof by cases and induction.................. 20 1 Intuitionistic first-order logic theory IFOL imports Pure begin 1.1 Syntax and axiomatic basis class term default-sort term typedecl o judgment Trueprop :: o prop ((-) 5 ) 1.1.1 Equality axiomatization eq :: [ a, a] o (infixl = 50 ) where refl: a = a and subst: a = b = P(a) = P(b) 1.1.2 Propositional logic axiomatization False :: o and conj :: [o, o] => o (infixr 35 ) and 2

disj :: [o, o] => o (infixr 30 ) and imp :: [o, o] => o (infixr 25 ) where conji : [P; Q ] = P Q and conjunct1 : P Q = P and conjunct2 : P Q = Q and disji1 : P = P Q and disji2 : Q = P Q and disje: [P Q; P = R; Q = R ] = R and impi : (P = Q) = P Q and mp: [P Q; P ] = Q and FalseE: False = P 1.1.3 Quantifiers axiomatization All :: ( a o) o (binder 10 ) and Ex :: ( a o) o (binder 10 ) where alli : ( x. P(x)) = ( x. P(x)) and spec: ( x. P(x)) = P(x) and exi : P(x) = ( x. P(x)) and exe: [ x. P(x); x. P(x) = R ] = R 1.1.4 Definitions definition True False False definition Not ( - [40 ] 40 ) where not-def : P P False definition iff (infixr 25 ) where P Q (P Q) (Q P) definition Ex1 :: ( a o) o (binder! 10 ) where ex1-def :!x. P(x) x. P(x) ( y. P(y) y = x) axiomatization where Reflection, admissible eq-reflection: (x = y) = (x y) and iff-reflection: (P Q) = (P Q) abbreviation not-equal :: [ a, a] o (infixl 50 ) where x y (x = y) 1.1.5 Old-style ASCII syntax notation (ASCII ) 3

not-equal (infixl = 50 ) and Not ( - [40 ] 40 ) and conj (infixr & 35 ) and disj (infixr 30 ) and All (binder ALL 10 ) and Ex (binder EX 10 ) and Ex1 (binder EX! 10 ) and imp (infixr > 25 ) and iff (infixr < > 25 ) 1.2 Lemmas and proof tools lemmas strip = impi alli lemma TrueI : True 1.2.1 Sequent-style elimination rules for and lemma conje: assumes major: P Q and r: [P; Q ] = R lemma impe: assumes major: P Q and P and r: Q = R lemma alle: assumes major: x. P(x) and r: P(x) = R Duplicates the quantifier; for use with eresolve_tac. lemma all-dupe: assumes major: x. P(x) and r: [P(x); x. P(x)] = R 1.2.2 Negation rules, which translate between P and P False lemma noti : (P = False) = P 4

lemma note: [ P; P ] = R lemma rev-note: [P; P ] = R This is useful with the special implication rules for each kind of P. lemma not-to-imp: assumes P and r: P False = Q shows Q For substitution into an assumption P, reduce Q to P Q, substitute into this implication, then apply impi to move P back into the assumptions. lemma rev-mp: [P; P Q ] = Q Contrapositive of an inference rule. lemma contrapos: assumes major: Q and minor: P = Q shows P 1.2.3 Modus Ponens Tactics Finds P Q and P in the assumptions, replaces implication by Q. 1.3 If-and-only-if lemma iffi : [P = Q; Q = P ] = P Q lemma iffe: assumes major: P Q and r: P Q = Q P = R 1.3.1 Destruct rules for similar to Modus Ponens lemma iffd1 : [P Q; P ] = Q lemma iffd2 : [P Q; Q ] = P 5

lemma rev-iffd1 : [P; P Q ] = Q lemma rev-iffd2 : [Q; P Q ] = P lemma iff-refl: P P lemma iff-sym: Q P = P Q lemma iff-trans: [P Q; Q R ] = P R 1.4 Unique existence NOTE THAT the following 2 quantifications:!x such that [!y such that P(x,y)] (sequential)!x,y such that P(x,y) (simultaneous) do NOT mean the same thing. The parser treats!x y.p(x,y) as sequential. lemma ex1i : P(a) = ( x. P(x) = x = a) =!x. P(x) Sometimes easier to use: the premises have no shared variables. Safe! lemma ex-ex1i : x. P(x) = ( x y. [P(x); P(y)] = x = y) =!x. P(x) lemma ex1e:! x. P(x) = ( x. [P(x); y. P(y) y = x ] = R) = R 1.4.1 congruence rules for simplification Use iffe on a premise. For conj-cong, imp-cong, all-cong, ex-cong. lemma conj-cong: assumes P P and P = Q Q shows (P Q) (P Q ) Reversed congruence rule! Used in ZF/Order. 6

lemma conj-cong2 : assumes P P and P = Q Q shows (Q P) (Q P ) lemma disj-cong: assumes P P and Q Q shows (P Q) (P Q ) lemma imp-cong: assumes P P and P = Q Q shows (P Q) (P Q ) lemma iff-cong: [P P ; Q Q ] = (P Q) (P Q ) lemma not-cong: P P = P P lemma all-cong: assumes x. P(x) Q(x) shows ( x. P(x)) ( x. Q(x)) lemma ex-cong: assumes x. P(x) Q(x) shows ( x. P(x)) ( x. Q(x)) lemma ex1-cong: assumes x. P(x) Q(x) shows (!x. P(x)) (!x. Q(x)) 1.5 Equality rules lemma sym: a = b = b = a lemma trans: [a = b; b = c ] = a = c lemma not-sym: b a = a b Two theorems for rewriting only one instance of a definition: the first for 7

definitions of formulae and the second for terms. lemma def-imp-iff : (A B) = A B lemma meta-eq-to-obj-eq: (A B) = A = B lemma meta-eq-to-iff : x y = x y Substitution. lemma ssubst: [b = a; P(a)] = P(b) A special case of ex1e that would otherwise need quantifier expansion. lemma ex1-equalse: [!x. P(x); P(a); P(b)] = a = b 1.5.1 Polymorphic congruence rules lemma subst-context: a = b = t(a) = t(b) lemma subst-context2 : [a = b; c = d ] = t(a,c) = t(b,d) lemma subst-context3 : [a = b; c = d; e = f ] = t(a,c,e) = t(b,d,f ) Useful with eresolve_tac for proving equalities from known equalities. a = b c = d lemma box-equals: [a = b; a = c; b = d ] = c = d Dual of box-equals: for proving equalities backwards. lemma simp-equals: [a = c; b = d; c = d ] = a = b 1.5.2 Congruence rules for predicate letters lemma pred1-cong: a = a = P(a) P(a ) lemma pred2-cong: [a = a ; b = b ] = P(a,b) P(a,b ) lemma pred3-cong: [a = a ; b = b ; c = c ] = P(a,b,c) P(a,b,c ) 8

Special case for the equality predicate! lemma eq-cong: [a = a ; b = b ] = a = b a = b 1.6 Simplifications of assumed implications Roy Dyckhoff has proved that conj-impe, disj-impe, and imp-impe used with mp_tac (restricted to atomic formulae) is COMPLETE for intuitionistic propositional logic. See R. Dyckhoff, Contraction-free sequent calculi for intuitionistic logic (preprint, University of St Andrews, 1991). lemma conj-impe: assumes major: (P Q) S and r: P (Q S) = R lemma disj-impe: assumes major: (P Q) S and r: [P S; Q S ] = R Simplifies the implication. Classical version is stronger. Still UNSAFE since Q must be provable backtracking needed. lemma imp-impe: assumes major: (P Q) S and r1 : [P; Q S ] = Q and r2 : S = R Simplifies the implication. Classical version is stronger. Still UNSAFE since P must be provable backtracking needed. lemma not-impe: P S = (P = False) = (S = R) = R Simplifies the implication. UNSAFE. lemma iff-impe: assumes major: (P Q) S and r1 : [P; Q S ] = Q and r2 : [Q; P S ] = P and r3 : S = R What if ( x. P(x)) ( x. P(x)) is an assumption? UNSAFE. 9

lemma all-impe: assumes major: ( x. P(x)) S and r1 : x. P(x) and r2 : S = R Unsafe: x. P(x)) S is equivalent to x. P(x) S. lemma ex-impe: assumes major: ( x. P(x)) S and r: P(x) S = R Courtesy of Krzysztof Grabczewski. lemma disj-imp-disj : P Q = (P = R) = (Q = S) = R S lemma thin-refl: [x = x; PROP W ] = PROP W 1.7 Intuitionistic Reasoning lemma impe : assumes 1 : P Q and 2 : Q = R and 3 : P Q = P lemma alle : assumes 1 : x. P(x) and 2 : P(x) = x. P(x) = Q shows Q lemma note : assumes 1 : P and 2 : P = P lemmas [Pure.elim!] = disje iffe FalseE conje exe and [Pure.intro!] = iffi conji impi TrueI noti alli refl 10

and [Pure.elim 2 ] = alle note impe and [Pure.intro] = exi disji2 disji1 lemma iff-not-sym: (Q P) = (P Q) lemmas [sym] = sym iff-sym not-sym iff-not-sym and [Pure.elim?] = iffd1 iffd2 impe lemma eq-commute: a = b b = a 1.8 Atomizing meta-level rules lemma atomize-all [atomize]: ( x. P(x)) Trueprop ( x. P(x)) lemma atomize-imp [atomize]: (A = B) Trueprop (A B) lemma atomize-eq [atomize]: (x y) Trueprop (x = y) lemma atomize-iff [atomize]: (A B) Trueprop (A B) lemma atomize-conj [atomize]: (A &&& B) Trueprop (A B) lemmas [symmetric, rulify] = atomize-all atomize-imp and [symmetric, defn] = atomize-all atomize-imp atomize-eq atomize-iff 1.9 Atomizing elimination rules lemma atomize-exl[atomize-elim]: ( x. P(x) = Q) (( x. P(x)) = Q) lemma atomize-conjl[atomize-elim]: (A = B = C ) (A B = C ) lemma atomize-disjl[atomize-elim]: ((A = C ) = (B = C ) = C ) ((A B = C ) = C ) lemma atomize-eliml[atomize-elim]: ( B. (A = B) = B) Trueprop(A) 11

1.10 Calculational rules lemma forw-subst: a = b = P(b) = P(a) lemma back-subst: P(a) = a = b = P(b) Note that this list of rules is in reverse order of priorities. lemmas basic-trans-rules [trans] = forw-subst back-subst rev-mp mp trans 1.11 Let declarations nonterminal letbinds and letbind definition Let :: [ a::{}, a => b] ( b::{}) where Let(s, f ) f (s) syntax -bind :: [pttrn, a] => letbind ((2- =/ -) 10 ) :: letbind => letbinds (-) -binds :: [letbind, letbinds] => letbinds (-;/ -) -Let :: [letbinds, a] => a ((let (-)/ in (-)) 10 ) translations -Let(-binds(b, bs), e) == -Let(b, -Let(bs, e)) let x = a in e == CONST Let(a, λx. e) lemma LetI : assumes x. x = t = P(u(x)) shows P(let x = t in u(x)) 1.12 Intuitionistic simplification rules lemma conj-simps: P True P True P P P False False False P False P P P P P Q P Q P P False P P False (P Q) R P (Q R) 12

lemma disj-simps: P True True True P True P False P False P P P P P P P Q P Q (P Q) R P (Q R) lemma not-simps: (P Q) P Q False True True False lemma imp-simps: (P False) P (P True) True (False P) True (True P) P (P P) True (P P) P lemma iff-simps: (True P) P (P True) P (P P) True (False P) P (P False) P The x = t versions are needed for the simplification procedures. lemma quant-simps: P. ( x. P) P ( x. x = t P(x)) P(t) ( x. t = x P(x)) P(t) P. ( x. P) P x. x = t x. t = x ( x. x = t P(x)) P(t) ( x. t = x P(x)) P(t) These are NOT supplied by default! lemma distrib-simps: 13

P (Q R) P Q P R (Q R) P Q P R P (P Q R) (P R) (Q R) 1.12.1 Conversion into rewrite rules lemma P-iff-F : P = (P False) lemma iff-reflection-f : P = (P False) lemma P-iff-T : P = (P True) lemma iff-reflection-t : P = (P True) 1.12.2 More rewrite rules lemma conj-commute: P Q Q P lemma conj-left-commute: P (Q R) Q (P R) lemmas conj-comms = conj-commute conj-left-commute lemma disj-commute: P Q Q P lemma disj-left-commute: P (Q R) Q (P R) lemmas disj-comms = disj-commute disj-left-commute lemma conj-disj-distribl: P (Q R) (P Q P R) lemma conj-disj-distribr: (P Q) R (P R Q R) lemma disj-conj-distribl: P (Q R) (P Q) (P R) lemma disj-conj-distribr: (P Q) R (P R) (Q R) lemma imp-conj-distrib: (P (Q R)) (P Q) (P R) lemma imp-conj : ((P Q) R) (P (Q R)) lemma imp-disj : (P Q R) (P R) (Q R) lemma de-morgan-disj : ( (P Q)) ( P Q) lemma not-ex: ( ( x. P(x))) ( x. P(x)) lemma imp-ex: (( x. P(x)) Q) ( x. P(x) Q) lemma ex-disj-distrib: ( x. P(x) Q(x)) (( x. P(x)) ( x. Q(x))) lemma all-conj-distrib: ( x. P(x) Q(x)) (( x. P(x)) ( x. Q(x))) end 14

2 Classical first-order logic theory FOL imports IFOL keywords print-claset print-induct-rules :: diag begin 2.1 The classical axiom axiomatization where classical: ( P = P) = P 2.2 Lemmas and proof tools lemma ccontr: ( P = False) = P 2.2.1 Classical introduction rules for and lemma disjci : ( Q = P) = P Q Introduction rule involving only lemma ex-classical: assumes r: ( x. P(x)) = P(a) shows x. P(x) Version of above, simplifying to. lemma exci : assumes r: x. P(x) = P(a) shows x. P(x) lemma excluded-middle: P P lemma case-split [case-names True False]: assumes r1 : P = Q and r2 : P = Q shows Q 2.3 Special elimination rules Classical implies ( ) elimination. 15

lemma impce: assumes major: P Q and r1 : P = R and r2 : Q = R This version of elimination works on Q before P. It works best for those cases in which P holds almost everywhere. Can t install as default: would break old proofs. lemma impce : assumes major: P Q and r1 : Q = R and r2 : P = R Double negation law. lemma notnotd: P = P lemma contrapos2 : [Q; P = Q ] = P 2.3.1 Tactics for implication and contradiction Classical elimination. Proof substitutes P = Q in P = Q and P = Q. lemma iffce: assumes major: P Q and r1 : [P; Q ] = R and r2 : [ P; Q ] = R lemma alt-ex1e: assumes major:! x. P(x) and r: x. [P(x); y y. P(y) P(y ) y = y ] = R lemma imp-elim: P Q = ( R = P) = (Q = R) = R lemma swap: P = ( R = P) = R 16

3 Classical Reasoner lemmas [intro!] = refl TrueI conji disjci impi noti iffi and [elim!] = conje disje impce FalseE iffce lemmas [intro!] = alli ex-ex1i and [intro] = exi and [elim!] = exe alt-ex1e and [elim] = alle lemma ex1-functional: [! z. P(a,z); P(a,b); P(a,c)] = b = c Elimination of True from assumptions: lemma True-implies-equals: (True = PROP P) PROP P lemma uncurry: P Q R = P Q R lemma iff-alli : ( x. P(x) Q(x)) = ( x. P(x)) ( x. Q(x)) lemma iff-exi : ( x. P(x) Q(x)) = ( x. P(x)) ( x. Q(x)) lemma all-comm: ( x y. P(x,y)) ( y x. P(x,y)) lemma ex-comm: ( x y. P(x,y)) ( y x. P(x,y)) 3.1 Classical simplification rules Avoids duplication of subgoals after expand-if, when the true and false cases boil down to the same thing. lemma cases-simp: (P Q) ( P Q) Q 3.1.1 Miniscoping: pushing quantifiers in We do NOT distribute of over, or dually that of over. 17

Baaz and Leitsch, On Skolemization and Proof Complexity (1994) show that this step can increase proof length! Existential miniscoping. lemma int-ex-simps: P Q. ( x. P(x) Q) ( x. P(x)) Q P Q. ( x. P Q(x)) P ( x. Q(x)) P Q. ( x. P(x) Q) ( x. P(x)) Q P Q. ( x. P Q(x)) P ( x. Q(x)) Classical rules. lemma cla-ex-simps: P Q. ( x. P(x) Q) ( x. P(x)) Q P Q. ( x. P Q(x)) P ( x. Q(x)) lemmas ex-simps = int-ex-simps cla-ex-simps Universal miniscoping. lemma int-all-simps: P Q. ( x. P(x) Q) ( x. P(x)) Q P Q. ( x. P Q(x)) P ( x. Q(x)) P Q. ( x. P(x) Q) ( x. P(x)) Q P Q. ( x. P Q(x)) P ( x. Q(x)) Classical rules. lemma cla-all-simps: P Q. ( x. P(x) Q) ( x. P(x)) Q P Q. ( x. P Q(x)) P ( x. Q(x)) lemmas all-simps = int-all-simps cla-all-simps 3.1.2 Named rewrite rules proved for IFOL lemma imp-disj1 : (P Q) R (P Q R) lemma imp-disj2 : Q (P R) (P Q R) lemma de-morgan-conj : ( (P Q)) ( P Q) lemma not-imp: (P Q) (P Q) lemma not-iff : (P Q) (P Q) lemma not-all: ( ( x. P(x))) ( x. P(x)) lemma imp-all: (( x. P(x)) Q) ( x. P(x) Q) 18

lemmas meta-simps = triv-forall-equality prunes params True-implies-equals prune asms True lemmas IFOL-simps = refl [THEN P-iff-T ] conj-simps disj-simps not-simps imp-simps iff-simps quant-simps lemma notfalsei : False lemma cla-simps-misc: (P Q) P Q P P P P P P ( P P) P ( P Q) (P Q) lemmas cla-simps = de-morgan-conj de-morgan-disj imp-disj1 imp-disj2 not-imp not-all not-ex cases-simp cla-simps-misc 3.2 Other simple lemmas lemma [simp]: ((P R) (Q R)) ((P Q) R) lemma [simp]: ((P Q) (P R)) (P (Q R)) lemma not-disj-iff-imp: P Q (P Q) 3.2.1 Monotonicity of implications lemma conj-mono: [P1 Q1 ; P2 Q2 ] = (P1 P2 ) (Q1 Q2 ) lemma disj-mono: [P1 Q1 ; P2 Q2 ] = (P1 P2 ) (Q1 Q2 ) lemma imp-mono: [Q1 P1 ; P2 Q2 ] = (P1 P2 ) (Q1 Q2 ) lemma imp-refl: P P 19

The quantifier monotonicity rules are also intuitionistically valid. lemma ex-mono: ( x. P(x) Q(x)) = ( x. P(x)) ( x. Q(x)) lemma all-mono: ( x. P(x) Q(x)) = ( x. P(x)) ( x. Q(x)) 3.3 Proof by cases and induction Proper handling of non-atomic rule statements. context begin qualified definition induct-forall(p) x. P(x) qualified definition induct-implies(a, B) A B qualified definition induct-equal(x, y) x = y qualified definition induct-conj (A, B) A B lemma induct-forall-eq: ( x. P(x)) Trueprop(induct-forall(λx. P(x))) lemma induct-implies-eq: (A = B) Trueprop(induct-implies(A, B)) lemma induct-equal-eq: (x y) Trueprop(induct-equal(x, y)) lemma induct-conj-eq: (A &&& B) Trueprop(induct-conj (A, B)) lemmas induct-atomize = induct-forall-eq induct-implies-eq induct-equal-eq induct-conj-eq lemmas induct-rulify [symmetric] = induct-atomize lemmas induct-rulify-fallback = induct-forall-def induct-implies-def induct-equal-def induct-conj-def Method setup. declare case-split [cases type: o] end hide-const (open) eq end 20

2024 © financedocbox.com Privacy Policy | Terms of Service | Feedback