wneuper/isa: doc-src/TutorialI/Types/document/Records.tex@ea10a8c3e9cf (annotated)

wenzelm@12572	1	%
wenzelm@12572	2	\begin{isabellebody}%
wenzelm@12572	3	\def\isabellecontext{Records}%
wenzelm@12572	4	%
wenzelm@12572	5	\isamarkupheader{Records \label{sec:records}%
wenzelm@12572	6	}
wenzelm@12572	7	\isamarkuptrue%
wenzelm@12572	8	\isamarkupfalse%
wenzelm@12572	9	%
wenzelm@12572	10	\begin{isamarkuptext}%
wenzelm@12572	11	\index{records\|(}%
wenzelm@12572	12	Records are familiar from programming languages. A record of $n$
wenzelm@12572	13	fields is essentially an $n$-tuple, but the record's components have
wenzelm@12572	14	names, which can make expressions easier to read and reduces the
wenzelm@12572	15	risk of confusing one field for another.
wenzelm@12572	16
wenzelm@12585	17	A record of Isabelle/HOL covers a collection of fields, with select
wenzelm@12572	18	and update operations. Each field has a specified type, which may
wenzelm@12572	19	be polymorphic. The field names are part of the record type, and
wenzelm@12572	20	the order of the fields is significant --- as it is in Pascal but
wenzelm@12572	21	not in Standard ML. If two different record types have field names
wenzelm@12572	22	in common, then the ambiguity is resolved in the usual way, by
wenzelm@12572	23	qualified names.
wenzelm@12572	24
wenzelm@12572	25	Record types can also be defined by extending other record types.
wenzelm@12572	26	Extensible records make use of the reserved pseudo-field \cdx{more},
wenzelm@12572	27	which is present in every record type. Generic record operations
wenzelm@12585	28	work on all possible extensions of a given type scheme; polymorphism
wenzelm@12585	29	takes care of structural sub-typing behind the scenes. There are
wenzelm@12585	30	also explicit coercion functions between fixed record types.%
wenzelm@12572	31	\end{isamarkuptext}%
wenzelm@12572	32	\isamarkuptrue%
wenzelm@12572	33	%
wenzelm@12572	34	\isamarkupsubsection{Record Basics%
wenzelm@12572	35	}
wenzelm@12572	36	\isamarkuptrue%
wenzelm@12572	37	%
wenzelm@12572	38	\begin{isamarkuptext}%
wenzelm@12585	39	Record types are not primitive in Isabelle and have a delicate
wenzelm@12656	40	internal representation \cite{NaraschewskiW-TPHOLs98}, based on
wenzelm@12656	41	nested copies of the primitive product type. A \commdx{record}
wenzelm@12656	42	declaration introduces a new record type scheme by specifying its
wenzelm@12656	43	fields, which are packaged internally to hold up the perception of
paulson@12700	44	the record as a distinguished entity. Here is a simple example:%
wenzelm@12572	45	\end{isamarkuptext}%
wenzelm@12572	46	\isamarkuptrue%
wenzelm@12572	47	\isacommand{record}\ point\ {\isacharequal}\isanewline
wenzelm@12572	48	\ \ Xcoord\ {\isacharcolon}{\isacharcolon}\ int\isanewline
wenzelm@12572	49	\ \ Ycoord\ {\isacharcolon}{\isacharcolon}\ int\isamarkupfalse%
wenzelm@12572	50	%
wenzelm@12572	51	\begin{isamarkuptext}%
wenzelm@12572	52	Records of type \isa{point} have two fields named \isa{Xcoord}
wenzelm@12572	53	and \isa{Ycoord}, both of type~\isa{int}. We now define a
wenzelm@12572	54	constant of type \isa{point}:%
wenzelm@12572	55	\end{isamarkuptext}%
wenzelm@12572	56	\isamarkuptrue%
wenzelm@12572	57	\isacommand{constdefs}\isanewline
wenzelm@12572	58	\ \ pt{\isadigit{1}}\ {\isacharcolon}{\isacharcolon}\ point\isanewline
wenzelm@12572	59	\ \ {\isachardoublequote}pt{\isadigit{1}}\ {\isasymequiv}\ {\isacharparenleft}{\isacharbar}\ Xcoord\ {\isacharequal}\ {\isadigit{9}}{\isadigit{9}}{\isadigit{9}}{\isacharcomma}\ Ycoord\ {\isacharequal}\ {\isadigit{2}}{\isadigit{3}}\ {\isacharbar}{\isacharparenright}{\isachardoublequote}\isamarkupfalse%
wenzelm@12572	60	%
wenzelm@12572	61	\begin{isamarkuptext}%
wenzelm@12572	62	We see above the ASCII notation for record brackets. You can also
wenzelm@12572	63	use the symbolic brackets \isa{{\isasymlparr}} and \isa{{\isasymrparr}}. Record type
wenzelm@12656	64	expressions can be also written directly with individual fields.
paulson@12700	65	The type name above is merely an abbreviation.%
wenzelm@12572	66	\end{isamarkuptext}%
wenzelm@12572	67	\isamarkuptrue%
wenzelm@12572	68	\isacommand{constdefs}\isanewline
wenzelm@12572	69	\ \ pt{\isadigit{2}}\ {\isacharcolon}{\isacharcolon}\ {\isachardoublequote}{\isasymlparr}Xcoord\ {\isacharcolon}{\isacharcolon}\ int{\isacharcomma}\ Ycoord\ {\isacharcolon}{\isacharcolon}\ int{\isasymrparr}{\isachardoublequote}\isanewline
wenzelm@12572	70	\ \ {\isachardoublequote}pt{\isadigit{2}}\ {\isasymequiv}\ {\isasymlparr}Xcoord\ {\isacharequal}\ {\isacharminus}{\isadigit{4}}{\isadigit{5}}{\isacharcomma}\ Ycoord\ {\isacharequal}\ {\isadigit{9}}{\isadigit{7}}{\isasymrparr}{\isachardoublequote}\isamarkupfalse%
wenzelm@12572	71	%
wenzelm@12572	72	\begin{isamarkuptext}%
wenzelm@12585	73	For each field, there is a \emph{selector}\index{selector!record}
wenzelm@12585	74	function of the same name. For example, if \isa{p} has type \isa{point} then \isa{Xcoord\ p} denotes the value of the \isa{Xcoord} field of~\isa{p}. Expressions involving field selection
wenzelm@12585	75	of explicit records are simplified automatically:%
wenzelm@12572	76	\end{isamarkuptext}%
wenzelm@12572	77	\isamarkuptrue%
wenzelm@12572	78	\isacommand{lemma}\ {\isachardoublequote}Xcoord\ {\isasymlparr}Xcoord\ {\isacharequal}\ a{\isacharcomma}\ Ycoord\ {\isacharequal}\ b{\isasymrparr}\ {\isacharequal}\ a{\isachardoublequote}\isanewline
wenzelm@12572	79	\ \ \isamarkupfalse%
wenzelm@12572	80	\isacommand{by}\ simp\isamarkupfalse%
wenzelm@12572	81	%
wenzelm@12572	82	\begin{isamarkuptext}%
wenzelm@12585	83	The \emph{update}\index{update!record} operation is functional. For
wenzelm@12585	84	example, \isa{p{\isasymlparr}Xcoord\ {\isacharcolon}{\isacharequal}\ {\isadigit{0}}{\isasymrparr}} is a record whose \isa{Xcoord}
wenzelm@12656	85	value is zero and whose \isa{Ycoord} value is copied from~\isa{p}. Updates of explicit records are also simplified automatically:%
wenzelm@12572	86	\end{isamarkuptext}%
wenzelm@12572	87	\isamarkuptrue%
wenzelm@12572	88	\isacommand{lemma}\ {\isachardoublequote}{\isasymlparr}Xcoord\ {\isacharequal}\ a{\isacharcomma}\ Ycoord\ {\isacharequal}\ b{\isasymrparr}{\isasymlparr}Xcoord\ {\isacharcolon}{\isacharequal}\ {\isadigit{0}}{\isasymrparr}\ {\isacharequal}\isanewline
wenzelm@12572	89	\ \ \ \ {\isasymlparr}Xcoord\ {\isacharequal}\ {\isadigit{0}}{\isacharcomma}\ Ycoord\ {\isacharequal}\ b{\isasymrparr}{\isachardoublequote}\isanewline
wenzelm@12572	90	\ \ \isamarkupfalse%
wenzelm@12572	91	\isacommand{by}\ simp\isamarkupfalse%
wenzelm@12572	92	%
wenzelm@12572	93	\begin{isamarkuptext}%
wenzelm@12572	94	\begin{warn}
wenzelm@12572	95	Field names are declared as constants and can no longer be used as
wenzelm@12572	96	variables. It would be unwise, for example, to call the fields of
wenzelm@12585	97	type \isa{point} simply \isa{x} and~\isa{y}.
wenzelm@12572	98	\end{warn}%
wenzelm@12572	99	\end{isamarkuptext}%
wenzelm@12572	100	\isamarkuptrue%
wenzelm@12572	101	%
wenzelm@12572	102	\isamarkupsubsection{Extensible Records and Generic Operations%
wenzelm@12572	103	}
wenzelm@12572	104	\isamarkuptrue%
wenzelm@12572	105	%
wenzelm@12572	106	\begin{isamarkuptext}%
wenzelm@12572	107	\index{records!extensible\|(}%
wenzelm@12572	108
wenzelm@12572	109	Now, let us define coloured points (type \isa{cpoint}) to be
wenzelm@12572	110	points extended with a field \isa{col} of type \isa{colour}:%
wenzelm@12572	111	\end{isamarkuptext}%
wenzelm@12572	112	\isamarkuptrue%
wenzelm@12572	113	\isacommand{datatype}\ colour\ {\isacharequal}\ Red\ {\isacharbar}\ Green\ {\isacharbar}\ Blue\isanewline
wenzelm@12572	114	\isanewline
wenzelm@12572	115	\isamarkupfalse%
wenzelm@12572	116	\isacommand{record}\ cpoint\ {\isacharequal}\ point\ {\isacharplus}\isanewline
wenzelm@12572	117	\ \ col\ {\isacharcolon}{\isacharcolon}\ colour\isamarkupfalse%
wenzelm@12572	118	%
wenzelm@12572	119	\begin{isamarkuptext}%
wenzelm@12572	120	The fields of this new type are \isa{Xcoord}, \isa{Ycoord} and
wenzelm@12656	121	\isa{col}, in that order.%
wenzelm@12572	122	\end{isamarkuptext}%
wenzelm@12572	123	\isamarkuptrue%
wenzelm@12572	124	\isacommand{constdefs}\isanewline
wenzelm@12572	125	\ \ cpt{\isadigit{1}}\ {\isacharcolon}{\isacharcolon}\ cpoint\isanewline
wenzelm@12572	126	\ \ {\isachardoublequote}cpt{\isadigit{1}}\ {\isasymequiv}\ {\isasymlparr}Xcoord\ {\isacharequal}\ {\isadigit{9}}{\isadigit{9}}{\isadigit{9}}{\isacharcomma}\ Ycoord\ {\isacharequal}\ {\isadigit{2}}{\isadigit{3}}{\isacharcomma}\ col\ {\isacharequal}\ Green{\isasymrparr}{\isachardoublequote}\isamarkupfalse%
wenzelm@12572	127	%
wenzelm@12572	128	\begin{isamarkuptext}%
wenzelm@12658	129	\medskip We can define generic operations that work on arbitrary
wenzelm@12658	130	instances of a record scheme, e.g.\ covering \isa{point}, \isa{cpoint}, and any further extensions. Every record structure has an
wenzelm@12658	131	implicit pseudo-field, \cdx{more}, that keeps the extension as an
wenzelm@12658	132	explicit value. Its type is declared as completely
wenzelm@12658	133	polymorphic:~\isa{{\isacharprime}a}. When a fixed record value is expressed
wenzelm@12658	134	using just its standard fields, the value of \isa{more} is
wenzelm@12658	135	implicitly set to \isa{{\isacharparenleft}{\isacharparenright}}, the empty tuple, which has type
wenzelm@12658	136	\isa{unit}. Within the record brackets, you can refer to the
wenzelm@12658	137	\isa{more} field by writing ``\isa{{\isasymdots}}'' (three dots):%
wenzelm@12572	138	\end{isamarkuptext}%
wenzelm@12572	139	\isamarkuptrue%
wenzelm@12572	140	\isacommand{lemma}\ {\isachardoublequote}Xcoord\ {\isasymlparr}Xcoord\ {\isacharequal}\ a{\isacharcomma}\ Ycoord\ {\isacharequal}\ b{\isacharcomma}\ {\isasymdots}\ {\isacharequal}\ p{\isasymrparr}\ {\isacharequal}\ a{\isachardoublequote}\isanewline
wenzelm@12572	141	\ \ \isamarkupfalse%
wenzelm@12572	142	\isacommand{by}\ simp\isamarkupfalse%
wenzelm@12572	143	%
wenzelm@12572	144	\begin{isamarkuptext}%
wenzelm@12656	145	This lemma applies to any record whose first two fields are \isa{Xcoord} and~\isa{Ycoord}. Note that \isa{{\isasymlparr}Xcoord\ {\isacharequal}\ a{\isacharcomma}\ Ycoord\ {\isacharequal}\ b{\isacharcomma}\ {\isasymdots}\ {\isacharequal}\ {\isacharparenleft}{\isacharparenright}{\isasymrparr}} is exactly the same as \isa{{\isasymlparr}Xcoord\ {\isacharequal}\ a{\isacharcomma}\ Ycoord\ {\isacharequal}\ b{\isasymrparr}}. Selectors and updates are always polymorphic wrt.\ the
wenzelm@12656	146	\isa{more} part of a record scheme, its value is just ignored (for
wenzelm@12585	147	select) or copied (for update).
wenzelm@12572	148
wenzelm@12585	149	The \isa{more} pseudo-field may be manipulated directly as well,
wenzelm@12585	150	but the identifier needs to be qualified:%
wenzelm@12572	151	\end{isamarkuptext}%
wenzelm@12572	152	\isamarkuptrue%
wenzelm@12572	153	\isacommand{lemma}\ {\isachardoublequote}point{\isachardot}more\ cpt{\isadigit{1}}\ {\isacharequal}\ {\isasymlparr}col\ {\isacharequal}\ Green{\isasymrparr}{\isachardoublequote}\isanewline
wenzelm@12572	154	\ \ \isamarkupfalse%
wenzelm@12572	155	\isacommand{by}\ {\isacharparenleft}simp\ add{\isacharcolon}\ cpt{\isadigit{1}}{\isacharunderscore}def{\isacharparenright}\isamarkupfalse%
wenzelm@12572	156	%
wenzelm@12572	157	\begin{isamarkuptext}%
wenzelm@12656	158	We see that the colour part attached to this \isa{point} is a
paulson@12700	159	rudimentary record in its own right, namely \isa{{\isasymlparr}col\ {\isacharequal}\ Green{\isasymrparr}}. In order to select or update \isa{col}, this fragment
wenzelm@12585	160	needs to be put back into the context of the parent type scheme, say
wenzelm@12585	161	as \isa{more} part of another \isa{point}.
wenzelm@12572	162
wenzelm@12572	163	To define generic operations, we need to know a bit more about
wenzelm@12656	164	records. Our definition of \isa{point} above has generated two
wenzelm@12656	165	type abbreviations:
wenzelm@12572	166
wenzelm@12585	167	\medskip
wenzelm@12572	168	\begin{tabular}{l}
paulson@14270	169	\isa{point}~\isa{{\isacharequal}}~\isa{point} \\
paulson@14270	170	\isa{{\isacharprime}a\ point{\isacharunderscore}scheme}~\isa{{\isacharequal}}~\isa{{\isacharprime}a\ point{\isacharunderscore}scheme} \\
wenzelm@12572	171	\end{tabular}
wenzelm@12585	172	\medskip
wenzelm@12572	173
wenzelm@12585	174	Type \isa{point} is for fixed records having exactly the two fields
wenzelm@12572	175	\isa{Xcoord} and~\isa{Ycoord}, while the polymorphic type \isa{{\isacharprime}a\ point{\isacharunderscore}scheme} comprises all possible extensions to those two
wenzelm@12585	176	fields. Note that \isa{unit\ point{\isacharunderscore}scheme} coincides with \isa{point}, and \isa{{\isasymlparr}col\ {\isacharcolon}{\isacharcolon}\ colour{\isasymrparr}\ point{\isacharunderscore}scheme} with \isa{cpoint}.
wenzelm@12585	177
wenzelm@12585	178	In the following example we define two operations --- methods, if we
wenzelm@12585	179	regard records as objects --- to get and set any point's \isa{Xcoord} field.%
wenzelm@12572	180	\end{isamarkuptext}%
wenzelm@12572	181	\isamarkuptrue%
wenzelm@12572	182	\isacommand{constdefs}\isanewline
wenzelm@12572	183	\ \ getX\ {\isacharcolon}{\isacharcolon}\ {\isachardoublequote}{\isacharprime}a\ point{\isacharunderscore}scheme\ {\isasymRightarrow}\ int{\isachardoublequote}\isanewline
wenzelm@12572	184	\ \ {\isachardoublequote}getX\ r\ {\isasymequiv}\ Xcoord\ r{\isachardoublequote}\isanewline
wenzelm@12572	185	\ \ setX\ {\isacharcolon}{\isacharcolon}\ {\isachardoublequote}{\isacharprime}a\ point{\isacharunderscore}scheme\ {\isasymRightarrow}\ int\ {\isasymRightarrow}\ {\isacharprime}a\ point{\isacharunderscore}scheme{\isachardoublequote}\isanewline
wenzelm@12572	186	\ \ {\isachardoublequote}setX\ r\ a\ {\isasymequiv}\ r{\isasymlparr}Xcoord\ {\isacharcolon}{\isacharequal}\ a{\isasymrparr}{\isachardoublequote}\isamarkupfalse%
wenzelm@12572	187	%
wenzelm@12572	188	\begin{isamarkuptext}%
wenzelm@12572	189	Here is a generic method that modifies a point, incrementing its
wenzelm@12572	190	\isa{Xcoord} field. The \isa{Ycoord} and \isa{more} fields
wenzelm@12572	191	are copied across. It works for any record type scheme derived from
wenzelm@12585	192	\isa{point} (including \isa{cpoint} etc.):%
wenzelm@12572	193	\end{isamarkuptext}%
wenzelm@12572	194	\isamarkuptrue%
wenzelm@12572	195	\isacommand{constdefs}\isanewline
wenzelm@12572	196	\ \ incX\ {\isacharcolon}{\isacharcolon}\ {\isachardoublequote}{\isacharprime}a\ point{\isacharunderscore}scheme\ {\isasymRightarrow}\ {\isacharprime}a\ point{\isacharunderscore}scheme{\isachardoublequote}\isanewline
wenzelm@12656	197	\ \ {\isachardoublequote}incX\ r\ {\isasymequiv}\isanewline
wenzelm@12656	198	\ \ \ \ {\isasymlparr}Xcoord\ {\isacharequal}\ Xcoord\ r\ {\isacharplus}\ {\isadigit{1}}{\isacharcomma}\ Ycoord\ {\isacharequal}\ Ycoord\ r{\isacharcomma}\ {\isasymdots}\ {\isacharequal}\ point{\isachardot}more\ r{\isasymrparr}{\isachardoublequote}\isamarkupfalse%
wenzelm@12572	199	%
wenzelm@12572	200	\begin{isamarkuptext}%
wenzelm@12572	201	Generic theorems can be proved about generic methods. This trivial
wenzelm@12572	202	lemma relates \isa{incX} to \isa{getX} and \isa{setX}:%
wenzelm@12572	203	\end{isamarkuptext}%
wenzelm@12572	204	\isamarkuptrue%
wenzelm@12572	205	\isacommand{lemma}\ {\isachardoublequote}incX\ r\ {\isacharequal}\ setX\ r\ {\isacharparenleft}getX\ r\ {\isacharplus}\ {\isadigit{1}}{\isacharparenright}{\isachardoublequote}\isanewline
wenzelm@12572	206	\ \ \isamarkupfalse%
wenzelm@12572	207	\isacommand{by}\ {\isacharparenleft}simp\ add{\isacharcolon}\ getX{\isacharunderscore}def\ setX{\isacharunderscore}def\ incX{\isacharunderscore}def{\isacharparenright}\isamarkupfalse%
wenzelm@12572	208	%
wenzelm@12572	209	\begin{isamarkuptext}%
wenzelm@12572	210	\begin{warn}
wenzelm@12572	211	If you use the symbolic record brackets \isa{{\isasymlparr}} and \isa{{\isasymrparr}},
wenzelm@12572	212	then you must also use the symbolic ellipsis, ``\isa{{\isasymdots}}'', rather
wenzelm@12572	213	than three consecutive periods, ``\isa{{\isachardot}{\isachardot}{\isachardot}}''. Mixing the ASCII
wenzelm@12572	214	and symbolic versions causes a syntax error. (The two versions are
wenzelm@12572	215	more distinct on screen than they are on paper.)
wenzelm@12634	216	\end{warn}%
wenzelm@12634	217	\index{records!extensible\|)}%
wenzelm@12572	218	\end{isamarkuptext}%
wenzelm@12572	219	\isamarkuptrue%
wenzelm@12572	220	%
wenzelm@12572	221	\isamarkupsubsection{Record Equality%
wenzelm@12572	222	}
wenzelm@12572	223	\isamarkuptrue%
wenzelm@12572	224	%
wenzelm@12572	225	\begin{isamarkuptext}%
wenzelm@12572	226	Two records are equal\index{equality!of records} if all pairs of
wenzelm@12656	227	corresponding fields are equal. Concrete record equalities are
wenzelm@12656	228	simplified automatically:%
wenzelm@12572	229	\end{isamarkuptext}%
wenzelm@12572	230	\isamarkuptrue%
wenzelm@12572	231	\isacommand{lemma}\ {\isachardoublequote}{\isacharparenleft}{\isasymlparr}Xcoord\ {\isacharequal}\ a{\isacharcomma}\ Ycoord\ {\isacharequal}\ b{\isasymrparr}\ {\isacharequal}\ {\isasymlparr}Xcoord\ {\isacharequal}\ a{\isacharprime}{\isacharcomma}\ Ycoord\ {\isacharequal}\ b{\isacharprime}{\isasymrparr}{\isacharparenright}\ {\isacharequal}\isanewline
wenzelm@12572	232	\ \ \ \ {\isacharparenleft}a\ {\isacharequal}\ a{\isacharprime}\ {\isasymand}\ b\ {\isacharequal}\ b{\isacharprime}{\isacharparenright}{\isachardoublequote}\isanewline
wenzelm@12572	233	\ \ \isamarkupfalse%
wenzelm@12572	234	\isacommand{by}\ simp\isamarkupfalse%
wenzelm@12572	235	%
wenzelm@12572	236	\begin{isamarkuptext}%
wenzelm@12572	237	The following equality is similar, but generic, in that \isa{r}
wenzelm@12585	238	can be any instance of \isa{{\isacharprime}a\ point{\isacharunderscore}scheme}:%
wenzelm@12572	239	\end{isamarkuptext}%
wenzelm@12572	240	\isamarkuptrue%
wenzelm@12572	241	\isacommand{lemma}\ {\isachardoublequote}r{\isasymlparr}Xcoord\ {\isacharcolon}{\isacharequal}\ a{\isacharcomma}\ Ycoord\ {\isacharcolon}{\isacharequal}\ b{\isasymrparr}\ {\isacharequal}\ r{\isasymlparr}Ycoord\ {\isacharcolon}{\isacharequal}\ b{\isacharcomma}\ Xcoord\ {\isacharcolon}{\isacharequal}\ a{\isasymrparr}{\isachardoublequote}\isanewline
wenzelm@12572	242	\ \ \isamarkupfalse%
wenzelm@12572	243	\isacommand{by}\ simp\isamarkupfalse%
wenzelm@12572	244	%
wenzelm@12572	245	\begin{isamarkuptext}%
wenzelm@12572	246	We see above the syntax for iterated updates. We could equivalently
wenzelm@12585	247	have written the left-hand side as \isa{r{\isasymlparr}Xcoord\ {\isacharcolon}{\isacharequal}\ a{\isasymrparr}{\isasymlparr}Ycoord\ {\isacharcolon}{\isacharequal}\ b{\isasymrparr}}.
wenzelm@12572	248
wenzelm@12585	249	\medskip Record equality is \emph{extensional}:
wenzelm@12585	250	\index{extensionality!for records} a record is determined entirely
wenzelm@12585	251	by the values of its fields.%
wenzelm@12572	252	\end{isamarkuptext}%
wenzelm@12572	253	\isamarkuptrue%
wenzelm@12572	254	\isacommand{lemma}\ {\isachardoublequote}r\ {\isacharequal}\ {\isasymlparr}Xcoord\ {\isacharequal}\ Xcoord\ r{\isacharcomma}\ Ycoord\ {\isacharequal}\ Ycoord\ r{\isasymrparr}{\isachardoublequote}\isanewline
wenzelm@12572	255	\ \ \isamarkupfalse%
wenzelm@12572	256	\isacommand{by}\ simp\isamarkupfalse%
wenzelm@12572	257	%
wenzelm@12572	258	\begin{isamarkuptext}%
wenzelm@12585	259	The generic version of this equality includes the pseudo-field
wenzelm@12585	260	\isa{more}:%
wenzelm@12572	261	\end{isamarkuptext}%
wenzelm@12572	262	\isamarkuptrue%
wenzelm@12572	263	\isacommand{lemma}\ {\isachardoublequote}r\ {\isacharequal}\ {\isasymlparr}Xcoord\ {\isacharequal}\ Xcoord\ r{\isacharcomma}\ Ycoord\ {\isacharequal}\ Ycoord\ r{\isacharcomma}\ {\isasymdots}\ {\isacharequal}\ point{\isachardot}more\ r{\isasymrparr}{\isachardoublequote}\isanewline
wenzelm@12572	264	\ \ \isamarkupfalse%
wenzelm@12572	265	\isacommand{by}\ simp\isamarkupfalse%
wenzelm@12572	266	%
wenzelm@12572	267	\begin{isamarkuptext}%
wenzelm@12585	268	\medskip The simplifier can prove many record equalities
wenzelm@12572	269	automatically, but general equality reasoning can be tricky.
wenzelm@12572	270	Consider proving this obvious fact:%
wenzelm@12572	271	\end{isamarkuptext}%
wenzelm@12572	272	\isamarkuptrue%
wenzelm@12572	273	\isacommand{lemma}\ {\isachardoublequote}r{\isasymlparr}Xcoord\ {\isacharcolon}{\isacharequal}\ a{\isasymrparr}\ {\isacharequal}\ r{\isasymlparr}Xcoord\ {\isacharcolon}{\isacharequal}\ a{\isacharprime}{\isasymrparr}\ {\isasymLongrightarrow}\ a\ {\isacharequal}\ a{\isacharprime}{\isachardoublequote}\isanewline
wenzelm@12572	274	\ \ \isamarkupfalse%
wenzelm@12572	275	\isacommand{apply}\ simp{\isacharquery}\isanewline
wenzelm@12572	276	\ \ \isamarkupfalse%
wenzelm@12572	277	\isacommand{oops}\isamarkupfalse%
wenzelm@12572	278	%
wenzelm@12572	279	\begin{isamarkuptext}%
wenzelm@12585	280	Here the simplifier can do nothing, since general record equality is
wenzelm@12585	281	not eliminated automatically. One way to proceed is by an explicit
wenzelm@12572	282	forward step that applies the selector \isa{Xcoord} to both sides
wenzelm@12572	283	of the assumed record equality:%
wenzelm@12572	284	\end{isamarkuptext}%
wenzelm@12572	285	\isamarkuptrue%
wenzelm@12572	286	\isacommand{lemma}\ {\isachardoublequote}r{\isasymlparr}Xcoord\ {\isacharcolon}{\isacharequal}\ a{\isasymrparr}\ {\isacharequal}\ r{\isasymlparr}Xcoord\ {\isacharcolon}{\isacharequal}\ a{\isacharprime}{\isasymrparr}\ {\isasymLongrightarrow}\ a\ {\isacharequal}\ a{\isacharprime}{\isachardoublequote}\isanewline
wenzelm@12572	287	\ \ \isamarkupfalse%
wenzelm@12572	288	\isacommand{apply}\ {\isacharparenleft}drule{\isacharunderscore}tac\ f\ {\isacharequal}\ Xcoord\ \isakeyword{in}\ arg{\isacharunderscore}cong{\isacharparenright}\isamarkupfalse%
wenzelm@12572	289	%
wenzelm@12572	290	\begin{isamarkuptxt}%
wenzelm@12572	291	\begin{isabelle}%
wenzelm@12572	292	\ {\isadigit{1}}{\isachardot}\ Xcoord\ {\isacharparenleft}r{\isasymlparr}Xcoord\ {\isacharcolon}{\isacharequal}\ a{\isasymrparr}{\isacharparenright}\ {\isacharequal}\ Xcoord\ {\isacharparenleft}r{\isasymlparr}Xcoord\ {\isacharcolon}{\isacharequal}\ a{\isacharprime}{\isasymrparr}{\isacharparenright}\ {\isasymLongrightarrow}\ a\ {\isacharequal}\ a{\isacharprime}%
wenzelm@12572	293	\end{isabelle}
wenzelm@12572	294	Now, \isa{simp} will reduce the assumption to the desired
wenzelm@12572	295	conclusion.%
wenzelm@12572	296	\end{isamarkuptxt}%
wenzelm@12572	297	\ \ \isamarkuptrue%
wenzelm@12572	298	\isacommand{apply}\ simp\isanewline
wenzelm@12572	299	\ \ \isamarkupfalse%
wenzelm@12572	300	\isacommand{done}\isamarkupfalse%
wenzelm@12572	301	%
wenzelm@12572	302	\begin{isamarkuptext}%
wenzelm@12585	303	The \isa{cases} method is preferable to such a forward proof. We
wenzelm@12585	304	state the desired lemma again:%
wenzelm@12572	305	\end{isamarkuptext}%
wenzelm@12572	306	\isamarkuptrue%
wenzelm@12572	307	\isacommand{lemma}\ {\isachardoublequote}r{\isasymlparr}Xcoord\ {\isacharcolon}{\isacharequal}\ a{\isasymrparr}\ {\isacharequal}\ r{\isasymlparr}Xcoord\ {\isacharcolon}{\isacharequal}\ a{\isacharprime}{\isasymrparr}\ {\isasymLongrightarrow}\ a\ {\isacharequal}\ a{\isacharprime}{\isachardoublequote}\isamarkupfalse%
wenzelm@12572	308	%
wenzelm@12572	309	\begin{isamarkuptxt}%
wenzelm@12585	310	The \methdx{cases} method adds an equality to replace the
wenzelm@12585	311	named record term by an explicit record expression, listing all
wenzelm@12585	312	fields. It even includes the pseudo-field \isa{more}, since the
wenzelm@12585	313	record equality stated here is generic for all extensions.%
wenzelm@12572	314	\end{isamarkuptxt}%
wenzelm@12572	315	\ \ \isamarkuptrue%
wenzelm@12572	316	\isacommand{apply}\ {\isacharparenleft}cases\ r{\isacharparenright}\isamarkupfalse%
wenzelm@12572	317	%
wenzelm@12572	318	\begin{isamarkuptxt}%
wenzelm@12572	319	\begin{isabelle}%
wenzelm@12572	320	\ {\isadigit{1}}{\isachardot}\ {\isasymAnd}Xcoord\ Ycoord\ more{\isachardot}\isanewline
wenzelm@12572	321	\isaindent{\ {\isadigit{1}}{\isachardot}\ \ \ \ }{\isasymlbrakk}r{\isasymlparr}Xcoord\ {\isacharcolon}{\isacharequal}\ a{\isasymrparr}\ {\isacharequal}\ r{\isasymlparr}Xcoord\ {\isacharcolon}{\isacharequal}\ a{\isacharprime}{\isasymrparr}{\isacharsemicolon}\isanewline
paulson@14379	322	\isaindent{\ {\isadigit{1}}{\isachardot}\ \ \ \ \ }r\ {\isacharequal}\ {\isasymlparr}Xcoord\ {\isacharequal}\ Xcoord{\isacharcomma}\ Ycoord\ {\isacharequal}\ Ycoord{\isacharcomma}\ {\isasymdots}\ {\isacharequal}\ more{\isasymrparr}{\isasymrbrakk}\isanewline
wenzelm@12572	323	\isaindent{\ {\isadigit{1}}{\isachardot}\ \ \ \ }{\isasymLongrightarrow}\ a\ {\isacharequal}\ a{\isacharprime}%
wenzelm@12585	324	\end{isabelle} Again, \isa{simp} finishes the proof. Because \isa{r} is now represented as
wenzelm@12585	325	an explicit record construction, the updates can be applied and the
wenzelm@12585	326	record equality can be replaced by equality of the corresponding
wenzelm@12585	327	fields (due to injectivity).%
wenzelm@12572	328	\end{isamarkuptxt}%
wenzelm@12572	329	\ \ \isamarkuptrue%
wenzelm@12572	330	\isacommand{apply}\ simp\isanewline
wenzelm@12572	331	\ \ \isamarkupfalse%
wenzelm@12572	332	\isacommand{done}\isamarkupfalse%
wenzelm@12572	333	%
wenzelm@12585	334	\begin{isamarkuptext}%
wenzelm@12585	335	The generic cases method does not admit references to locally bound
wenzelm@12585	336	parameters of a goal. In longer proof scripts one might have to
wenzelm@12585	337	fall back on the primitive \isa{rule{\isacharunderscore}tac} used together with the
wenzelm@12658	338	internal field representation rules of records. The above use of
wenzelm@12658	339	\isa{{\isacharparenleft}cases\ r{\isacharparenright}} would become \isa{{\isacharparenleft}rule{\isacharunderscore}tac\ r\ {\isacharequal}\ r\ in\ point{\isachardot}cases{\isacharunderscore}scheme{\isacharparenright}}.%
wenzelm@12585	340	\end{isamarkuptext}%
wenzelm@12585	341	\isamarkuptrue%
wenzelm@12585	342	%
wenzelm@12572	343	\isamarkupsubsection{Extending and Truncating Records%
wenzelm@12572	344	}
wenzelm@12572	345	\isamarkuptrue%
wenzelm@12572	346	%
wenzelm@12572	347	\begin{isamarkuptext}%
wenzelm@12585	348	Each record declaration introduces a number of derived operations to
wenzelm@12585	349	refer collectively to a record's fields and to convert between fixed
wenzelm@12585	350	record types. They can, for instance, convert between types \isa{point} and \isa{cpoint}. We can add a colour to a point or convert
wenzelm@12585	351	a \isa{cpoint} to a \isa{point} by forgetting its colour.
wenzelm@12572	352
wenzelm@12572	353	\begin{itemize}
wenzelm@12572	354
wenzelm@12572	355	\item Function \cdx{make} takes as arguments all of the record's
wenzelm@12585	356	fields (including those inherited from ancestors). It returns the
wenzelm@12585	357	corresponding record.
wenzelm@12572	358
wenzelm@12585	359	\item Function \cdx{fields} takes the record's very own fields and
wenzelm@12572	360	returns a record fragment consisting of just those fields. This may
wenzelm@12572	361	be filled into the \isa{more} part of the parent record scheme.
wenzelm@12572	362
wenzelm@12572	363	\item Function \cdx{extend} takes two arguments: a record to be
wenzelm@12572	364	extended and a record containing the new fields.
wenzelm@12572	365
wenzelm@12572	366	\item Function \cdx{truncate} takes a record (possibly an extension
wenzelm@12572	367	of the original record type) and returns a fixed record, removing
wenzelm@12572	368	any additional fields.
wenzelm@12572	369
wenzelm@12572	370	\end{itemize}
wenzelm@12572	371
paulson@12700	372	These functions provide useful abbreviations for standard
wenzelm@12572	373	record expressions involving constructors and selectors. The
wenzelm@12572	374	definitions, which are \emph{not} unfolded by default, are made
wenzelm@12585	375	available by the collective name of \isa{defs} (\isa{point{\isachardot}defs}, \isa{cpoint{\isachardot}defs}, etc.).
wenzelm@12572	376
wenzelm@12572	377	For example, here are the versions of those functions generated for
wenzelm@12572	378	record \isa{point}. We omit \isa{point{\isachardot}fields}, which happens to
wenzelm@12572	379	be the same as \isa{point{\isachardot}make}.
wenzelm@12572	380
wenzelm@12572	381	\begin{isabelle}%
paulson@14353	382	point{\isachardot}make\ Xcoord\ Ycoord\ {\isasymequiv}\ {\isasymlparr}Xcoord\ {\isacharequal}\ Xcoord{\isacharcomma}\ Ycoord\ {\isacharequal}\ Ycoord{\isasymrparr}\isasep\isanewline%
wenzelm@12585	383	point{\isachardot}extend\ r\ more\ {\isasymequiv}\isanewline
paulson@14353	384	{\isasymlparr}Xcoord\ {\isacharequal}\ Xcoord\ r{\isacharcomma}\ Ycoord\ {\isacharequal}\ Ycoord\ r{\isacharcomma}\ {\isasymdots}\ {\isacharequal}\ more{\isasymrparr}\isasep\isanewline%
wenzelm@12585	385	point{\isachardot}truncate\ r\ {\isasymequiv}\ {\isasymlparr}Xcoord\ {\isacharequal}\ Xcoord\ r{\isacharcomma}\ Ycoord\ {\isacharequal}\ Ycoord\ r{\isasymrparr}%
wenzelm@12572	386	\end{isabelle}
wenzelm@12572	387
wenzelm@12572	388	Contrast those with the corresponding functions for record \isa{cpoint}. Observe \isa{cpoint{\isachardot}fields} in particular.
wenzelm@12572	389
wenzelm@12572	390	\begin{isabelle}%
wenzelm@12585	391	cpoint{\isachardot}make\ Xcoord\ Ycoord\ col\ {\isasymequiv}\isanewline
paulson@14353	392	{\isasymlparr}Xcoord\ {\isacharequal}\ Xcoord{\isacharcomma}\ Ycoord\ {\isacharequal}\ Ycoord{\isacharcomma}\ col\ {\isacharequal}\ col{\isasymrparr}\isasep\isanewline%
paulson@14353	393	cpoint{\isachardot}fields\ col\ {\isasymequiv}\ {\isasymlparr}col\ {\isacharequal}\ col{\isasymrparr}\isasep\isanewline%
wenzelm@12585	394	cpoint{\isachardot}extend\ r\ more\ {\isasymequiv}\isanewline
paulson@14353	395	{\isasymlparr}Xcoord\ {\isacharequal}\ Xcoord\ r{\isacharcomma}\ Ycoord\ {\isacharequal}\ Ycoord\ r{\isacharcomma}\ col\ {\isacharequal}\ col\ r{\isacharcomma}\ {\isasymdots}\ {\isacharequal}\ more{\isasymrparr}\isasep\isanewline%
wenzelm@12585	396	cpoint{\isachardot}truncate\ r\ {\isasymequiv}\isanewline
wenzelm@12585	397	{\isasymlparr}Xcoord\ {\isacharequal}\ Xcoord\ r{\isacharcomma}\ Ycoord\ {\isacharequal}\ Ycoord\ r{\isacharcomma}\ col\ {\isacharequal}\ col\ r{\isasymrparr}%
wenzelm@12572	398	\end{isabelle}
wenzelm@12572	399
wenzelm@12572	400	To demonstrate these functions, we declare a new coloured point by
wenzelm@12572	401	extending an ordinary point. Function \isa{point{\isachardot}extend} augments
wenzelm@12585	402	\isa{pt{\isadigit{1}}} with a colour value, which is converted into an
wenzelm@12585	403	appropriate record fragment by \isa{cpoint{\isachardot}fields}.%
wenzelm@12572	404	\end{isamarkuptext}%
wenzelm@12572	405	\isamarkuptrue%
wenzelm@12572	406	\isacommand{constdefs}\isanewline
wenzelm@12572	407	\ \ cpt{\isadigit{2}}\ {\isacharcolon}{\isacharcolon}\ cpoint\isanewline
wenzelm@12572	408	\ \ {\isachardoublequote}cpt{\isadigit{2}}\ {\isasymequiv}\ point{\isachardot}extend\ pt{\isadigit{1}}\ {\isacharparenleft}cpoint{\isachardot}fields\ Green{\isacharparenright}{\isachardoublequote}\isamarkupfalse%
wenzelm@12572	409	%
wenzelm@12572	410	\begin{isamarkuptext}%
wenzelm@12572	411	The coloured points \isa{cpt{\isadigit{1}}} and \isa{cpt{\isadigit{2}}} are equal. The
wenzelm@12572	412	proof is trivial, by unfolding all the definitions. We deliberately
wenzelm@12572	413	omit the definition of~\isa{pt{\isadigit{1}}} in order to reveal the underlying
wenzelm@12572	414	comparison on type \isa{point}.%
wenzelm@12572	415	\end{isamarkuptext}%
wenzelm@12572	416	\isamarkuptrue%
wenzelm@12572	417	\isacommand{lemma}\ {\isachardoublequote}cpt{\isadigit{1}}\ {\isacharequal}\ cpt{\isadigit{2}}{\isachardoublequote}\isanewline
wenzelm@12572	418	\ \ \isamarkupfalse%
wenzelm@12572	419	\isacommand{apply}\ {\isacharparenleft}simp\ add{\isacharcolon}\ cpt{\isadigit{1}}{\isacharunderscore}def\ cpt{\isadigit{2}}{\isacharunderscore}def\ point{\isachardot}defs\ cpoint{\isachardot}defs{\isacharparenright}\isamarkupfalse%
wenzelm@12572	420	%
wenzelm@12572	421	\begin{isamarkuptxt}%
wenzelm@12572	422	\begin{isabelle}%
wenzelm@12572	423	\ {\isadigit{1}}{\isachardot}\ Xcoord\ pt{\isadigit{1}}\ {\isacharequal}\ {\isadigit{9}}{\isadigit{9}}{\isadigit{9}}\ {\isasymand}\ Ycoord\ pt{\isadigit{1}}\ {\isacharequal}\ {\isadigit{2}}{\isadigit{3}}%
wenzelm@12572	424	\end{isabelle}%
wenzelm@12572	425	\end{isamarkuptxt}%
wenzelm@12572	426	\ \ \isamarkuptrue%
wenzelm@12572	427	\isacommand{apply}\ {\isacharparenleft}simp\ add{\isacharcolon}\ pt{\isadigit{1}}{\isacharunderscore}def{\isacharparenright}\isanewline
wenzelm@12572	428	\ \ \isamarkupfalse%
wenzelm@12572	429	\isacommand{done}\isamarkupfalse%
wenzelm@12572	430	%
wenzelm@12572	431	\begin{isamarkuptext}%
wenzelm@12572	432	In the example below, a coloured point is truncated to leave a
wenzelm@12585	433	point. We use the \isa{truncate} function of the target record.%
wenzelm@12572	434	\end{isamarkuptext}%
wenzelm@12572	435	\isamarkuptrue%
wenzelm@12572	436	\isacommand{lemma}\ {\isachardoublequote}point{\isachardot}truncate\ cpt{\isadigit{2}}\ {\isacharequal}\ pt{\isadigit{1}}{\isachardoublequote}\isanewline
wenzelm@12572	437	\ \ \isamarkupfalse%
wenzelm@12572	438	\isacommand{by}\ {\isacharparenleft}simp\ add{\isacharcolon}\ pt{\isadigit{1}}{\isacharunderscore}def\ cpt{\isadigit{2}}{\isacharunderscore}def\ point{\isachardot}defs{\isacharparenright}\isamarkupfalse%
wenzelm@12572	439	%
wenzelm@12572	440	\begin{isamarkuptext}%
wenzelm@12572	441	\begin{exercise}
wenzelm@12585	442	Extend record \isa{cpoint} to have a further field, \isa{intensity}, of type~\isa{nat}. Experiment with generic operations
wenzelm@12585	443	(using polymorphic selectors and updates) and explicit coercions
wenzelm@12585	444	(using \isa{extend}, \isa{truncate} etc.) among the three record
wenzelm@12585	445	types.
wenzelm@12572	446	\end{exercise}
wenzelm@12572	447
wenzelm@12572	448	\begin{exercise}
wenzelm@12572	449	(For Java programmers.)
wenzelm@12572	450	Model a small class hierarchy using records.
wenzelm@12572	451	\end{exercise}
wenzelm@12572	452	\index{records\|)}%
wenzelm@12572	453	\end{isamarkuptext}%
wenzelm@12572	454	\isamarkuptrue%
wenzelm@12572	455	\isamarkupfalse%
wenzelm@12572	456	\end{isabellebody}%
wenzelm@12572	457	%%% Local Variables:
wenzelm@12572	458	%%% mode: latex
wenzelm@12572	459	%%% TeX-master: "root"
wenzelm@12572	460	%%% End:

author	paulson
	Tue, 10 Feb 2004 12:17:04 +0100
changeset 14379	ea10a8c3e9cf
parent 14353	79f9fbef9106
child 15481	fc075ae929e4
permissions	-rw-r--r--