Stream: Beginner Questions

Topic: TAPL proof 3.2.5 help

view this post on Zulip waynee95 (Sep 03 2022 at 17:41):

I am currently reading TAPL and formalizing a few of the exercises in Isabelle/HOL.

I am struggling to proof the following lemma:

datatype t =
  TTrue
  | FFalse
  | Zero
  | Succ t
  | Pred t
  | IsZero t
  | IfElse t t t ("If _ Then _ Else _" [85,85,85] 80)

(* 3.2.5 *)
fun terms :: "nat ⇒ t set" where
"terms 0 = {}" |
"terms (Suc n) =
  {TTrue,FFalse,Zero}
  ∪ {Succ t | t. t ∈ terms n} ∪ {Pred t | t. t ∈ terms n} ∪ {IsZero t | t. t ∈ terms n}
  ∪ {IfElse t1 t2 t3 | t1 t2 t3. t2 ∈ terms n ∧ t2 ∈ terms n ∧ t3 ∈ terms n}"

lemma "terms n ⊆ terms (Suc n)"

I started the proof with

proof (induction n)
  case 0
  then show ?case
    by simp
next
  case (Suc n)
  have "⋀t. t ∈ terms (Suc n) ⟹ t ∈ terms (Suc (Suc n))"
    sorry
  then show ?case
    by blast
qed

The solution of the exercise didn't help me either, since I cannot seem to translate it to Isabelle.

view this post on Zulip waynee95 (Sep 04 2022 at 12:16):

I found a proof 

(* 3.2.5 *)
fun terms :: "nat ⇒ t set" where
"terms 0 = {}" |
"terms (Suc n) =
  {TTrue,FFalse,Zero}
  ∪ {Succ t | t. t ∈ terms n} ∪ {Pred t | t. t ∈ terms n} ∪ {IsZero t | t. t ∈ terms n}
  ∪ {IfElse t1 t2 t3 | t1 t2 t3. let termsn = terms n in t1 ∈ termsn ∧ t2 ∈ termsn ∧ t3 ∈ termsn}"

lemma succ: "Succ t ∈ terms (Suc n) ⟷ t ∈ terms n"
  by (induction n) auto

lemma pred: "Pred t ∈ terms (Suc n) ⟷ t ∈ terms n"
  by (induction n) auto

lemma iszero: "IsZero t ∈ terms (Suc n) ⟷ t ∈ terms n"
  by (induction n) auto

lemma ifelse: "IfElse t1 t2 t3 ∈ terms (Suc n) ⟷ t1 ∈ terms n ∧ t2 ∈ terms n ∧ t3 ∈ terms n"
  by (induction n) auto

lemma "terms n ⊆ terms (Suc n)"
proof (induction n)
  case 0
  then show ?case
    by simp
next
  case (Suc n)
  have "t ∈ terms (Suc n) ⟹ t ∈ terms (Suc (Suc n))" for t
  proof (induction t)
    case (Succ t)
    then show ?case
      using Suc.IH
      by (meson in_mono succ)
  next
    case (Pred t)
    then show ?case
      using Suc.IH
      by (meson in_mono pred)
  next
    case (IsZero t)
    then show ?case
      using Suc.IH
      by (meson in_mono iszero)
  next
    case (IfElse t1 t2 t3)
    then show ?case
      using Suc.IH
      by (meson in_mono ifelse)
  qed auto
  then show ?case
    by blast
qed

view this post on Zulip Alex Weisberger (Sep 04 2022 at 18:55):

I've never seen the syntax: qed auto. Does that just mean that auto gets applied to all of the remaining cases? Because the cases with explicit proofs here don't add up to all of variants in type t.

view this post on Zulip waynee95 (Sep 04 2022 at 20:09):

That's called final proof method. You can place a proof method after a qed block and it will finish off all open subgoals. Since the remaining ones are trivial, they don't need to be explicitly handled in the qed block

Last updated: Nov 17 2025 at 08:32 UTC