[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[PVS-Help] choose problem

To: pvs-help@xxxxxxxxxxx
Subject: [PVS-Help] choose problem
From: "fsong" <fsong@xxxxxxxxxxxxxxx>
Date: Thu, 02 Apr 2009 16:20:45 +0800
List-Help: <mailto:pvs-help-request@csl.sri.com?subject=help>
List-Id: PVS-Help <pvs-help.csl.sri.com>
List-Post: <mailto:pvs-help@csl.sri.com>
List-Subscribe: <http://lists.csl.sri.com/mailman/listinfo/pvs-help>,<mailto:pvs-help-request@csl.sri.com?subject=subscribe>
List-Unsubscribe: <http://lists.csl.sri.com/mailman/listinfo/pvs-help>,<mailto:pvs-help-request@csl.sri.com?subject=unsubscribe>
Reply-To: fsong <fsong@xxxxxxxxxxxxxxx>
Sender: pvs-help-bounces+archive=csl.sri.com@xxxxxxxxxxx

Dear everyone:

Env: TYPE =[Env->Value]
trans: TYPE ={Env->Env]
f,g: Var trans
init_env: Env

<<(env1:VarEnv,env2:VarEnv): bool= FORALL (x:Vars): env1(x)=env2(x)

c(f,g): trans=trans = LAMBDA (s: Env): choose({y: VarEnv|y<<f(s) or y<<g(s)})

how can I to proof the nonemptyness of {y: VarEnv|y<<f(s) or y<<g(s)}???

I try to proof the law c(f,g)(init_env) = c(g,f)(init_env)
the proof tree as follow.

L1 :

|-------
{1}   FORALL (f, g: trans[Vars, Value]):
        c(f, g)(Init_env) = c(g, f)(Init_env)

Rule? (skolem!)
Skolemizing,
this simplifies to:
L1 :

|-------
{1}   c(f!1, g!1)(Init_env) = c(g!1, f!1)(Init_env)

Rule? (expand "c")
Expanding the definition of c,
this simplifies to:
L1 :

|-------
{1}   choose({y: VarEnv | y << f!1(Init_env) OR y << g!1(Init_env)}) =
       choose({y: VarEnv | y << g!1(Init_env) OR y << f!1(Init_env)}

then I do not know how to proof this issue, if it is not hold?

how can I represent the choice(f,g) in PVS?

Thanks
Song

Follow-Ups:
- Re: [PVS-Help] choose problem
  - From: Holger Pfeifer

Prev by Date: Re: [PVS-Help] A representation of symbols in PVS
Next by Date: Re: [PVS-Help] choose problem
Prev by thread: [PVS-Help] PVS and Yices
Next by thread: Re: [PVS-Help] choose problem
Index(es):
- Date
- Thread