Up to index of Isabelle/HOL/Collections/Refine_Monadic
theory Refine_Foldheader {* \isaheader{Fold-Combinator} *}
theory Refine_Fold
imports "../Refine" "../Collection_Bindings"
begin
text {*
In this theory, we explore the usage of the partial-function package, and
define a function with a higher-order argument. As example, we choose a
nondeterministic fold-operation on lists.
*}
partial_function (nrec) rfoldl where
"rfoldl f s l = (case l of
[] => RETURN s
| x#ls => do { s\<leftarrow>f s x; rfoldl f s ls}
)"
text {* Currently, we have to manually state the standard simplification
lemmas: *}
lemma rfoldl_simps[simp]:
"rfoldl f s [] = RETURN s"
"rfoldl f s (x#ls) = do { s\<leftarrow>f s x; rfoldl f s ls}"
apply (subst rfoldl.simps, simp)+
done
lemma rfoldl_refines[refine]:
assumes SV: "single_valued Rs"
assumes REFF: "!!x x' s s'. [| (s,s')∈Rs; (x,x')∈Rl |]
==> f s x ≤ \<Down>Rs (f' s' x')"
assumes REF0: "(s0,s0')∈Rs"
assumes REFL: "(l,l')∈map_list_rel Rl"
shows "rfoldl f s0 l ≤ \<Down>Rs (rfoldl f' s0' l')"
using REFL[simplified] REF0
apply (induct arbitrary: s0 s0' rule: list_all2_induct)
apply (simp add: REF0 RETURN_refine_sv[OF SV])
apply (simp only: rfoldl_simps)
apply (refine_rcg)
apply (rule REFF)
apply simp_all
done
lemma transfer_rfoldl[refine_transfer]:
assumes "!!s x. RETURN (f s x) ≤ F s x"
shows "RETURN (foldl f s l) ≤ rfoldl F s l"
using assms
apply (induct l arbitrary: s)
apply simp
apply (simp only: foldl_Nil foldl_append rfoldl_simps)
apply simp
apply (rule order_trans[rotated])
apply (rule refine_transfer)
apply assumption
apply assumption
apply simp
done
subsection {* Example *}
text {*
As example application, we define a program that takes as input a list
of non-empty sets of natural numbers, picks some number of each list,
and adds up the picked numbers.
*}
definition "pick_sum (s0::nat) l ≡
rfoldl (λs x. do {
ASSERT (x≠{});
y\<leftarrow>SPEC (λy. y∈x);
RETURN (s+y)
}) s0 l
"
lemma [simp]:
"pick_sum s [] = RETURN s"
"pick_sum s (x#l) = do {
ASSERT (x≠{}); y\<leftarrow>SPEC (λy. y∈x); pick_sum (s+y) l
}"
unfolding pick_sum_def
apply simp_all
done
lemma foldl_mono:
assumes "!!x. mono (λs. f s x)"
shows "mono (λs. foldl f s l)"
apply (rule monoI)
using assms
apply (induct l)
apply (auto dest: monoD)
done
lemma pick_sum_correct:
assumes NE: "{}∉set l"
assumes FIN: "∀x∈set l. finite x"
shows "pick_sum s0 l ≤ SPEC (λs. s ≤ foldl (λs x. s+Max x) s0 l)"
using NE FIN
apply (induction l arbitrary: s0)
apply (simp)
apply (simp)
apply (intro refine_vcg)
apply blast
apply simp
apply (rule order_trans)
apply assumption
apply (rule SPEC_rule)
apply (erule order_trans)
apply (rule monoD[OF foldl_mono])
apply (auto intro: monoI)
done
definition "pick_sum_impl s0 l ≡
rfoldl (λs x. do {
y\<leftarrow>RETURN (the (ls_sel' x (λ_. True)));
RETURN (s+y)
}) (s0::nat) l"
lemma pick_sum_impl_refine:
assumes A: "list_all2 (λx x'. (x,x')∈build_rel ls_α ls_invar) l l'"
shows "pick_sum_impl s0 l ≤ \<Down>Id (pick_sum s0 l')"
unfolding pick_sum_def pick_sum_impl_def
using A
apply (refine_rcg)
apply (refine_dref_type)
apply (simp_all add: refine_hsimp)
done
schematic_lemma pick_sum_code_aux: "RETURN ?f ≤ pick_sum_impl s0 l"
unfolding pick_sum_impl_def
apply refine_transfer
done
thm pick_sum_code_aux[no_vars]
definition "pick_sum_code s0 l ≡
foldl (λs x. Let (the (ls_sel' x (λ_. True))) (op + s)) (s0::nat) l"
lemma pick_sum_code_refines:
"RETURN (pick_sum_code s l) ≤ pick_sum_impl s l"
using pick_sum_code_aux[folded pick_sum_code_def] .
value
"pick_sum_code 0 [list_to_ls [3,2,1], list_to_ls [1,2,3], list_to_ls[2,1]]"
end