| Quellcodebibliothek Statistik Leitseite products/Sources/formale Sprachen/Isabelle/Archive-of-Formal-Proofs/thys/Cook_Levin/ (Sammlung formaler Beweise Version 2026-5©) Datei vom 31.4.2026 mit Größe 97 kB |
|
SSL Elementary.thySprache: Isabelle |
|||||||||||||||
|
section ‹Elementary Turing machines\label{s:tm-elementary}› theory Elementary imports Combinations begin text ‹ this section we devise some simple yet useful Turing machines. We have fully analyzed the empty TM, where start and halting state coincide, in lemmas~@{thm [source] computes_Nil_empty}, @{thm [source] Nil_tm}, and @{thm source] transforms_Nil}. The next more complex TMs are those with exactly one . They represent TMs with two states: the halting state and the start where the action happens. This action might last for one step only, or the may stay in this state for longer; for example, it can move a tape head to the next blank symbol. We will also start using the @{text ";;"} to combine some of the one-command TMs. › text ‹ Turing machines we are going to construct throughout this section and the entire article are really families of Turing machines that usually parameterized by tape indices. › type_synonym tapeidx = nat text ‹ this article, names of commands are prefixed with @{text cmd_} and of Turing machines with @{text tm_}. Usually for a TM named @{term tm_foo} is a lemma @{text tm_foo_tm} stating that it really is a Turing machine and lemma @{text transforms_tm_fooI} describing its semantics and running time. The usually receives a @{text transforms_intros} attribute for use with our method. @{term "tm_foo"} comprises more than two TMs we will typically analyze the and running time in a locale named @{text "turing_machine_foo"}. The example of this is @{term tm_equals} in ~\ref{s:tm-elementary-comparing}. it comes to running times, we will have almost no scruples simplifying bounds to have the form $a + b\cdot n^c$ for some constants $a, b, c$, if this means, for example, bounding $n \log n$ by $n^2$. › subsection ‹Clean tapes› text ‹ of our Turing machines will not change the start symbol in the first cell a tape nor will they write the start symbol anywhere else. The only are machines that simulate arbitrary other machines. We call tapes have the start symbol only in the first cell \emph{clean tapes}. › definition clean_tape :: "tape ==> bool" where "clean_tape tp ≡ ∀i. fst tp i = ▹ ⟷ i = 0" lemma clean_tapeI: assumes "∧i. fst tp i = ▹ ⟷ i = 0" shows "clean_tape tp" unfolding clean_tape_def using assms by simp lemma clean_tapeI': assumes "fst tp 0 = ▹" and "∧i. i > 0 ==> fst tp i ≠ ▹" shows "clean_tape tp" unfolding clean_tape_def using assms by auto text ‹ clean configuration is one with only clean tapes. › definition clean_config :: "config ==> bool" where "clean_config cfg ≡ (∀j<||cfg||. ∀i. (cfg <:> j) i = ▹ ⟷ i = 0)" lemma clean_config_tapes: "clean_config cfg = (∀tp∈set (snd cfg). clean_tape tp)" using clean_config_def clean_tape_def by (metis in_set_conv_nth) lemma clean_configI: assumes "∧j i. j < length tps ==> fst (tps ! j) i = ▹ ⟷ i = 0" shows "clean_config (q, tps)" unfolding clean_config_def using assms by simp lemma clean_configI': assumes "∧tp i. tp ∈ set tps ==> fst tp i = ▹ ⟷ i = 0" shows "clean_config (q, tps)" using clean_configI assms by simp lemma clean_configI'': assumes "∧tp. tp ∈ set tps ==> (fst tp 0 = ▹ ∧ (∀i>0. fst tp i ≠ ▹))" shows "clean_config (q, tps)" using clean_configI' assms by blast lemma clean_configE: assumes "clean_config (q, tps)" shows "∧j i. j < length tps ==> fst (tps ! j) i = ▹ ⟷ i = 0" using clean_config_def assms by simp lemma clean_configE': assumes "clean_config (q, tps)" shows "∧tp i. tp ∈ set tps ==> fst tp i = ▹ ⟷ i = 0" using clean_configE assms by (metis in_set_conv_nth) lemma clean_contents_proper [simp]: "proper_symbols zs ==> clean_tape (⌊zs⌋, q)" using clean_tape_def contents_def proper_symbols_ne1 by simp lemma contents_clean_tape': "proper_symbols zs ==> fst tp = ⌊zs⌋ ==> clean_tape tp" using contents_def clean_tape_def by (simp add: nat_neq_iff) text ‹ more lemmas about @{const contents}: › lemma contents_append_blanks: "⌊ys @ replicate m ◻⌋ = ⌊ys⌋" proof fix i consider "i = 0" | "0 < i ∧ i ≤ length ys" | "length ys < i ∧ i ≤ length ys + m" | "length ys + m < i" by linarith then show "⌊ys @ replicate m ◻⌋ i = ⌊ys⌋ i" proof (cases) case 1 then show ?thesis by simp next case 2 then show ?thesis using contents_inbounds by (metis (no_types, opaque_lifting) Suc_diff_1 Suc_le_eq le_add1 le_trans length_append next case 3 then show ?thesis by (smt (verit) Suc_diff_Suc add_diff_inverse_nat contents_def diff_Suc_1 diff_commute l less_or_eq_imp_le nat_add_left_cancel_le not_less_eq nth_append nth_replicate) next case 4 then show ?thesis by simp qed qed lemma contents_append_update: assumes "length ys = m" shows "⌊ys @ [v] @ zs⌋(Suc m := w) = ⌊ys @ [w] @ zs⌋" proof fix i consider "i = 0" | "0 < i ∧ i < Suc m" | "i = Suc m" | "i > Suc m ∧ i ≤ Suc m + length zs" | "i > Suc m + length zs" by linarith then show "(⌊ys @ [v] @ zs⌋(Suc m := w)) i = ⌊ys @ [w] @ zs⌋ i" (is "?l = ?r") proof (cases) case 1 then show ?thesis by simp next case 2 then have "?l = (ys @ [v] @ zs) ! (i - 1)" using assms contents_inbounds by simp then have *: "?l = ys ! (i - 1)" using 2 assms by (metis Suc_diff_1 Suc_le_lessD less_Suc_eq_le nth_append) have "?r = (ys @ [w] @ zs) ! (i - 1)" using 2 assms contents_inbounds by simp then have "?r = ys ! (i - 1)" using 2 assms by (metis Suc_diff_1 Suc_le_lessD less_Suc_eq_le nth_append) then show ?thesis using * by simp next case 3 then show ?thesis using assms by auto next case 4 then have "?l = (ys @ [v] @ zs) ! (i - 1)" using assms contents_inbounds by simp then have "?l = ((ys @ [v]) @ zs) ! (i - 1)" by simp then have *: "?l = zs ! (i - 1 - Suc m)" using 4 assms by (metis diff_Suc_1 length_append_singleton less_imp_Suc_add not_add_less then have "?r = (ys @ [w] @ zs) ! (i - 1)" using 4 assms contents_inbounds by simp then have "?r = ((ys @ [w]) @ zs) ! (i - 1)" by simp then have "?r = zs ! (i - 1 - Suc m)" using 4 assms by (metis diff_Suc_1 length_append_singleton less_imp_Suc_add not_add_less then show ?thesis using * by simp next case 5 then show ?thesis using assms by simp qed qed lemma contents_snoc: "⌊ys⌋(Suc (length ys) := w) = ⌊ys @ [w]⌋" proof fix i consider "i = 0" | "0 < i ∧ i ≤ length ys" | "i = Suc (length ys)" | "i > Suc (length ys by linarith then show "(⌊ys⌋(Suc (length ys) := w)) i = ⌊ys @ [w]⌋ i" proof (cases) case 1 then show ?thesis by simp next case 2 then show ?thesis by (smt (verit, ccfv_SIG) contents_def diff_Suc_1 ex_least_nat_less fun_upd_apply leD le_ length_append_singleton less_imp_Suc_add nth_append) next case 3 then show ?thesis by simp next case 4 then show ?thesis by simp qed qed definition config_update_pos :: "config ==> nat ==> nat ==> config" where "config_update_pos cfg j p ≡ (fst cfg, (snd cfg)[j:=(cfg <:> j, p)])" lemma config_update_pos_0: "config_update_pos cfg j (cfg <#> j) = cfg" using config_update_pos_def by simp definition config_update_fwd :: "config ==> nat ==> nat ==> config" where "config_update_fwd cfg j d ≡ (fst cfg, (snd cfg)[j:=(cfg <:> j, cfg <#> j + d)])" lemma config_update_fwd_0: "config_update_fwd cfg j 0 = cfg" using config_update_fwd_def by simp lemma config_update_fwd_additive: "config_update_fwd (config_update_fwd cfg j d1) j d2 = (config_update_fwd cfg j using config_update_fwd_def by (smt (verit) add.commute add.left_commute fst_conv le_less_linear list_update_beyond subsection ‹Moving tape heads› text ‹ the most simple things a Turing machine can do is moving one of its tape . › subsubsection ‹Moving left› text ‹ next command makes a TM move its head on tape $j$ one cell to the left , of course, it is in the leftmost cell already. › definition cmd_left :: "tapeidx ==> command" where "cmd_left j ≡ λrs. (1, map (λi. (rs ! i, if i = j then Left else Stay)) [0..<length lemma turing_command_left: "turing_command k 1 G (cmd_left j)" by (auto simp add: cmd_left_def) lemma cmd_left': "[*] (cmd_left j rs) = 1" using cmd_left_def by simp lemma cmd_left'': "j < length rs ==> (cmd_left j rs) [!] j = (rs ! j, Left)" using cmd_left_def by simp lemma cmd_left''': "i < length rs ==> i ≠ j ==> (cmd_left j rs) [!] i = (rs ! i, St using cmd_left_def by simp lemma tape_list_eq: assumes "length tps' = length tps" and "∧i. i < length tps ==> i ≠ j ==> tps' ! i = tps ! i" and "tps' ! j = x" shows "tps' = tps[j := x]" using assms by (smt (verit) length_list_update list_update_beyond not_le nth_equalityI nt lemma sem_cmd_left: assumes "j < length tps" shows "sem (cmd_left j) (0, tps) = (1, tps[j:=(fst (tps ! j), snd (tps ! j) - 1)] proof show "fst (sem (cmd_left j) (0, tps)) = fst (1, tps[j := (fst (tps ! j), snd (tp using cmd_left' sem_fst by simp have "snd (sem (cmd_left j) (0, tps)) = tps[j := (fst (tps ! j), snd (tps ! j) - proof (rule tape_list_eq) show "||sem (cmd_left j) (0, tps)|| = length tps" using turing_command_left sem_num_tapes2' by (metis snd_eqD) show "sem (cmd_left j) (0, tps) <!> i = tps ! i" if "i < length tps" and "i ≠ j" for i proof - let ?rs = "read tps" have "length ?rs = length tps" using read_length by simp moreover have "sem (cmd_left j) (0, tps) <!> i = act (cmd_left j ?rs [!] i) (tps ! by (simp add: cmd_left_def sem_snd that(1)) ultimately show ?thesis using that act_Stay cmd_left''' by simp qed show "sem (cmd_left j) (0, tps) <!> j = (fst (tps ! j), snd (tps ! j) - 1)" using assms act_Left cmd_left_def read_length sem_snd by simp qed then show "snd (sem (cmd_left j) (0, tps)) = snd (1, tps[j := (fst (tps ! j), snd by simp qed definition tm_left :: "tapeidx ==> machine" where "tm_left j ≡ [cmd_left j]" lemma tm_left_tm: "k ≥ 2 ==> G ≥ 4 ==> turing_machine k G (tm_left j)" unfolding tm_left_def using turing_command_left by auto lemma exe_tm_left: assumes "j < length tps" shows "exe (tm_left j) (0, tps) = (1, tps[j := tps ! j |-| 1])" unfolding tm_left_def using sem_cmd_left assms by (simp add: exe_lt_length) lemma execute_tm_left: assumes "j < length tps" shows "execute (tm_left j) (0, tps) (Suc 0) = (1, tps[j := tps ! j |-| 1])" using assms exe_tm_left by simp lemma transits_tm_left: assumes "j < length tps" shows "transits (tm_left j) (0, tps) (Suc 0) (1, tps[j := tps ! j |-| 1])" using execute_tm_left assms transitsI by blast lemma transforms_tm_left: assumes "j < length tps" shows "transforms (tm_left j) tps (Suc 0) (tps[j := tps ! j |-| 1])" using transits_tm_left assms by (simp add: tm_left_def transforms_def) lemma transforms_tm_leftI [transforms_intros]: assumes "j < length tps" and "t = 1" and "tps' = tps[j := tps ! j |-| 1]" shows "transforms (tm_left j) tps t tps'" using transits_tm_left assms by (simp add: tm_left_def transforms_def) subsubsection ‹Moving right› text ‹ next command makes the head on tape $j$ move one cell to the right. › definition cmd_right :: "tapeidx ==> command" where "cmd_right j ≡ λrs. (1, map (λi. (rs ! i, if i = j then Right else Stay)) [0..<leng lemma turing_command_right: "turing_command k 1 G (cmd_right j)" by (auto simp add: cmd_right_def) lemma cmd_right': "[*] (cmd_right j rs) = 1" using cmd_right_def by simp lemma cmd_right'': "j < length rs ==> (cmd_right j rs) [!] j = (rs ! j, Right)" using cmd_right_def by simp lemma cmd_right''': "i < length rs ==> i ≠ j ==> (cmd_right j rs) [!] i = (rs ! i, using cmd_right_def by simp lemma sem_cmd_right: assumes "j < length tps" shows "sem (cmd_right j) (0, tps) = (1, tps[j:=(fst (tps ! j), snd (tps ! j) + 1) proof show "fst (sem (cmd_right j) (0, tps)) = fst (1, tps[j := (fst (tps ! j), snd (t using cmd_right' sem_fst by simp have "snd (sem (cmd_right j) (0, tps)) = tps[j := (fst (tps ! j), snd (tps ! j) + proof (rule tape_list_eq) show "||sem (cmd_right j) (0, tps)|| = length tps" using sem_num_tapes3 turing_command_right by (metis snd_conv) show "sem (cmd_right j) (0, tps) <!> i = tps ! i" if "i < length tps" and "i ≠ j" for i proof - let ?rs = "read tps" have "length ?rs = length tps" using read_length by simp moreover have "sem (cmd_right j) (0, tps) <!> i = act (cmd_right j ?rs [!] i) (tps by (simp add: cmd_right_def sem_snd that(1)) ultimately show ?thesis using that act_Stay cmd_right''' by simp qed show "sem (cmd_right j) (0, tps) <!> j = (fst (tps ! j), snd (tps ! j) + 1)" using assms act_Right cmd_right_def read_length sem_snd by simp qed then show "snd (sem (cmd_right j) (0, tps)) = snd (1, tps[j := (fst (tps ! j), snd by simp qed definition tm_right :: "tapeidx ==> machine" where "tm_right j ≡ [cmd_right j]" lemma tm_right_tm: "k ≥ 2 ==> G ≥ 4 ==> turing_machine k G (tm_right j)" unfolding tm_right_def using turing_command_right cmd_right' by auto lemma exe_tm_right: assumes "j < length tps" shows "exe (tm_right j) (0, tps) = (1, tps[j:=(fst (tps ! j), snd (tps ! j) + 1)] unfolding tm_right_def using sem_cmd_right assms by (simp add: exe_lt_length) lemma execute_tm_right: assumes "j < length tps" shows "execute (tm_right j) (0, tps) (Suc 0) = (1, tps[j:=(fst (tps ! j), snd (tp using assms exe_tm_right by simp lemma transits_tm_right: assumes "j < length tps" shows "transits (tm_right j) (0, tps) (Suc 0) (1, tps[j:=(fst (tps ! j), snd (tps using execute_tm_right assms transitsI by blast lemma transforms_tm_right: assumes "j < length tps" shows "transforms (tm_right j) tps (Suc 0) (tps[j := tps ! j |+| 1])" using transits_tm_right assms by (simp add: tm_right_def transforms_def) lemma transforms_tm_rightI [transforms_intros]: assumes "j < length tps" and "t = Suc 0" and "tps' = tps[j := tps ! j |+| 1]" shows "transforms (tm_right j) tps t tps'" using transits_tm_right assms by (simp add: tm_right_def transforms_def) subsubsection ‹Moving right on several tapes› text ‹ next command makes the heads on all tapes from a set $J$ of tapes move one to the right. › definition cmd_right_many :: "tapeidx set ==> command" where "cmd_right_many J ≡ λrs. (1, map (λi. (rs ! i, if i ∈ J then Right else Stay)) [0. lemma turing_command_right_many: "turing_command k 1 G (cmd_right_many J)" by (auto simp add: cmd_right_many_def) lemma sem_cmd_right_many: "sem (cmd_right_many J) (0, tps) = (1, map (λj. if j ∈ J then tps ! j |+| 1 else proof show "fst (sem (cmd_right_many J) (0, tps)) = fst (1, map (λj. if j ∈ J then tps ! j |+| 1 else tps ! j) [0..<length tps])" using cmd_right_many_def sem_fst by simp have "snd (sem (cmd_right_many J) (0, tps)) = map (λj. if j ∈ J then tps ! j |+| 1 else tps ! j) [0..<length tps]" (is "?lhs = ?rhs") proof (rule nth_equalityI) show "length ?lhs = length ?rhs" using turing_command_right_many sem_num_tapes2' by (metis (no_types, lifting) diff_zero length_map length_upt snd_conv) then have len: "length ?lhs = length tps" by simp show "?lhs ! j = ?rhs ! j" if "j < length ?lhs" for j proof (cases "j ∈ J") case True let ?rs = "read tps" have "length ?rs = length tps" using read_length by simp moreover have "sem (cmd_right_many J) (0, tps) <!> j = act (cmd_right_many J ?rs [! using cmd_right_many_def sem_snd that True len by auto moreover have "?rhs ! j = tps ! j |+| 1" using that len True by simp ultimately show ?thesis using that act_Right cmd_right_many_def True len by simp next case False let ?rs = "read tps" have "length ?rs = length tps" using read_length by simp moreover have "sem (cmd_right_many J) (0, tps) <!> j = act (cmd_right_many J ?rs [! using cmd_right_many_def sem_snd that False len by auto moreover have "?rhs ! j = tps ! j" using that len False by simp ultimately show ?thesis using that act_Stay cmd_right_many_def False len by simp qed qed then show "snd (sem (cmd_right_many J) (0, tps)) = snd (1, map (λj. if j ∈ J then tps ! j |+| 1 else tps ! j) [0..<length tps])" by simp qed definition tm_right_many :: "tapeidx set ==> machine" where "tm_right_many J ≡ [cmd_right_many J]" lemma tm_right_many_tm: "k ≥ 2 ==> G ≥ 4 ==> turing_machine k G (tm_right_many J)" unfolding tm_right_many_def using turing_command_right_many by auto lemma transforms_tm_right_manyI [transforms_intros]: assumes "t = Suc 0" and "tps' = map (λj. if j ∈ J then tps ! j |+| 1 else tps ! j) [0..<length tps]" shows "transforms (tm_right_many J) tps t tps'" proof - have "exe (tm_right_many J) (0, tps) = (1, map (λj. if j ∈ J then tps ! j |+| 1 el unfolding tm_right_many_def using sem_cmd_right_many by (simp add: exe_lt_length) then have "execute (tm_right_many J) (0, tps) (Suc 0) = (1, map (λj. if j ∈ J then by simp then have "transits (tm_right_many J) (0, tps) (Suc 0) (1, map (λj. if j ∈ J then t using transitsI by blast then have "transforms (tm_right_many J) tps (Suc 0) (map (λj. if j ∈ J then tps ! j by (simp add: tm_right_many_def transforms_def) then show ?thesis using assms by (simp add: tm_right_many_def transforms_def) qed subsection ‹Copying and translating tape contents› text ‹ Turing machines in this section scan a tape $j_1$ and copy the symbols to tape $j_2$. Scanning can be performed in either direction, and ``copying'' include mapping the symbols. › subsubsection ‹Copying and translating from one tape to another› text ‹ next predicate is true iff.\ on the given tape the next symbol from the set H$ of symbols is exactly $n$ cells to the right from the current head position. , a command that moves the tape head right until it finds a symbol from $H$ $n$ steps and moves the head $n$ cells right. › definition rneigh :: "tape ==> symbol set ==> nat ==> bool" where "rneigh tp H n ≡ fst tp (snd tp + n) ∈ H ∧ (∀n' < n. fst tp (snd tp + n') ∉ H)" lemma rneighI: assumes "fst tp (snd tp + n) ∈ H" and "∧n'. n' < n ==> fst tp (snd tp + n') ∉ H" shows "rneigh tp H n" using assms rneigh_def by simp text ‹ analogous predicate for moving to the left: › definition lneigh :: "tape ==> symbol set ==> nat ==> bool" where "lneigh tp H n ≡ fst tp (snd tp - n) ∈ H ∧ (∀n' < n. fst tp (snd tp - n') ∉ H)" lemma lneighI: assumes "fst tp (snd tp - n) ∈ H" and "∧n'. n' < n ==> fst tp (snd tp - n') ∉ H" shows "lneigh tp H n" using assms lneigh_def by simp text ‹ next command scans tape $j_1$ rightward until it reaches a symbol from the $H$. While doing so it copies the symbols, after applying a mapping $f$, to $j_2$. › definition cmd_trans_until :: "tapeidx ==> tapeidx ==> symbol set ==> (symbol ==> s "cmd_trans_until j1 j2 H f ≡ λrs. if rs ! j1 ∈ H then (1, map (λr. (r, Stay)) rs) else (0, map (λi. (if i = j2 then f (rs ! j1) else rs ! i, if i = j1 ∨ i = j2 the text ‹ analogous command for moving to the left: › definition cmd_ltrans_until :: "tapeidx ==> tapeidx ==> symbol set ==> (symbol ==> "cmd_ltrans_until j1 j2 H f ≡ λrs. if rs ! j1 ∈ H then (1, map (λr. (r, Stay)) rs) else (0, map (λi. (if i = j2 then f (rs ! j1) else rs ! i, if i = j1 ∨ i = j2 the lemma proper_cmd_trans_until: "proper_command k (cmd_trans_until j1 j2 H f)" using cmd_trans_until_def by simp lemma proper_cmd_ltrans_until: "proper_command k (cmd_ltrans_until j1 j2 H f)" using cmd_ltrans_until_def by simp lemma sem_cmd_trans_until_1: assumes "j1 < k" and "length tps = k" and "(0, tps) <.> j1 ∈ H" shows "sem (cmd_trans_until j1 j2 H f) (0, tps) = (1, tps)" using cmd_trans_until_def tapes_at_read read_length assms act_Stay by (intro semI[OF proper_cmd_trans_until]) auto lemma sem_cmd_ltrans_until_1: assumes "j1 < k" and "length tps = k" and "(0, tps) <.> j1 ∈ H" shows "sem (cmd_ltrans_until j1 j2 H f) (0, tps) = (1, tps)" using cmd_ltrans_until_def tapes_at_read read_length assms act_Stay by (intro semI[OF proper_cmd_ltrans_until]) auto lemma sem_cmd_trans_until_2: assumes "j1 < k" and "length tps = k" and "(0, tps) <.> j1 ∉ H" shows "sem (cmd_trans_until j1 j2 H f) (0, tps) = (0, tps[j1 := tps ! j1 |+| 1, j2 := tps ! j2 |:=| (f (tps :.: j1)) |+| 1])" using cmd_trans_until_def tapes_at_read read_length assms act_Stay act_Right by (intro semI[OF proper_cmd_trans_until]) auto lemma sem_cmd_ltrans_until_2: assumes "j1 < k" and "length tps = k" and "(0, tps) <.> j1 ∉ H" shows "sem (cmd_ltrans_until j1 j2 H f) (0, tps) = (0, tps[j1 := tps ! j1 |-| 1, j2 := tps ! j2 |:=| (f (tps :.: j1)) |-| 1])" using cmd_ltrans_until_def tapes_at_read read_length assms act_Stay act_Left by (intro semI[OF proper_cmd_ltrans_until]) auto definition tm_trans_until :: "tapeidx ==> tapeidx ==> symbol set ==> (symbol ==> sy "tm_trans_until j1 j2 H f ≡ [cmd_trans_until j1 j2 H f]" definition tm_ltrans_until :: "tapeidx ==> tapeidx ==> symbol set ==> (symbol ==> s "tm_ltrans_until j1 j2 H f ≡ [cmd_ltrans_until j1 j2 H f]" lemma tm_trans_until_tm: assumes "0 < j2" and "j1 < k" and "j2 < k" and "∀h<G. f h < G" and "k ≥ 2" and "G ≥ 4" shows "turing_machine k G (tm_trans_until j1 j2 H f)" unfolding tm_trans_until_def cmd_trans_until_def using assms turing_machine_def by auto lemma tm_ltrans_until_tm: assumes "0 < j2" and "j1 < k" and "j2 < k" and "∀h<G. f h < G" and "k ≥ 2" and "G ≥ 4" shows "turing_machine k G (tm_ltrans_until j1 j2 H f)" unfolding tm_ltrans_until_def cmd_ltrans_until_def using assms turing_machine_def by au lemma exe_tm_trans_until_1: assumes "j1 < k" and "length tps = k" and "(0, tps) <.> j1 ∈ H" shows "exe (tm_trans_until j1 j2 H f) (0, tps) = (1, tps)" unfolding tm_trans_until_def using sem_cmd_trans_until_1 assms exe_lt_length by simp lemma exe_tm_ltrans_until_1: assumes "j1 < k" and "length tps = k" and "(0, tps) <.> j1 ∈ H" shows "exe (tm_ltrans_until j1 j2 H f) (0, tps) = (1, tps)" unfolding tm_ltrans_until_def using sem_cmd_ltrans_until_1 assms exe_lt_length by simp lemma exe_tm_trans_until_2: assumes "j1 < k" and "length tps = k" and "(0, tps) <.> j1 ∉ H" shows "exe (tm_trans_until j1 j2 H f) (0, tps) = (0, tps[j1 := tps ! j1 |+| 1, j2 := tps ! j2 |:=| (f (tps :.: j1)) |+| 1])" unfolding tm_trans_until_def using sem_cmd_trans_until_2 assms exe_lt_length by simp lemma exe_tm_ltrans_until_2: assumes "j1 < k" and "length tps = k" and "(0, tps) <.> j1 ∉ H" shows "exe (tm_ltrans_until j1 j2 H f) (0, tps) = (0, tps[j1 := tps ! j1 |-| 1, j2 := tps ! j2 |:=| (f (tps :.: j1)) |-| 1])" unfolding tm_ltrans_until_def using sem_cmd_ltrans_until_2 assms exe_lt_length by simp text ‹ $tp_1$ and $tp_2$ be two tapes with head positions $i_1$ and $i_2$, . The next function describes the result of overwriting the symbols positions $i_2, \dots, i_2 + n - 1$ on tape $tp_2$ by the symbols at $i_1, \dots, i_1 + n - 1$ on tape $tp_1$ after applying a symbol map f$. › definition transplant :: "tape ==> tape ==> (symbol ==> symbol)==> nat ==> tape" whe "transplant tp1 tp2 f n ≡ (λi. if snd tp2 ≤ i ∧ i < snd tp2 + n then f (fst tp1 (snd tp1 + i - snd tp2)) els snd tp2 + n)" text ‹ analogous function for moving to the left while copying: › definition ltransplant :: "tape ==> tape ==> (symbol ==> symbol)==> nat ==> tape" wh "ltransplant tp1 tp2 f n ≡ (λi. if snd tp2 - n < i ∧ i ≤ snd tp2 then f (fst tp1 (snd tp1 + i - snd tp2)) els snd tp2 - n)" lemma transplant_0: "transplant tp1 tp2 f 0 = tp2" unfolding transplant_def by standard auto lemma ltransplant_0: "ltransplant tp1 tp2 f 0 = tp2" unfolding ltransplant_def by standard auto lemma transplant_upd: "transplant tp1 tp2 f n |:=| (f ( |.| (tp1 |+| n))) |+| 1 = unfolding transplant_def by auto lemma ltransplant_upd: assumes "n < snd tp2" shows "ltransplant tp1 tp2 f n |:=| (f ( |.| (tp1 |-| n))) |-| 1 = ltransplant tp unfolding ltransplant_def using assms by fastforce lemma tapes_ltransplant_upd: assumes "t < tps :#: j2" and "t < tps :#: j1" and "j1 < k" and "j2 < k" and "length tps = k" and "tps' = tps[j1 := tps ! j1 |-| t, j2 := ltransplant (tps ! j1) (tps ! j2) f t shows "tps'[j1 := tps' ! j1 |-| 1, j2 := tps' ! j2 |:=| (f (tps' :.: j1)) |-| 1] tps[j1 := tps ! j1 |-| Suc t, j2 := ltransplant (tps ! j1) (tps ! j2) f (Suc t)] (is "?lhs = ?rhs") proof (rule nth_equalityI) show 1: "length ?lhs = length ?rhs" using assms by simp have len: "length ?lhs = k" using assms by simp show "?lhs ! j = ?rhs ! j" if "j < length ?lhs" for j proof - have "j < k" using len that by simp show ?thesis proof (cases "j ≠ j1 ∧ j ≠ j2") case True then show ?thesis using assms by simp next case j1j2: False show ?thesis proof (cases "j1 = j2") case True then have j: "j = j1" "j = j2" using j1j2 by simp_all have "tps' ! j1 = ltransplant (tps ! j1) (tps ! j2) f t" using j assms that by simp then have *: "snd (tps' ! j1) = snd (tps ! j1) - t" using j ltransplant_def by simp then have "fst (tps' ! j1) = (λi. if snd (tps ! j2) - t < i ∧ i ≤ snd (tps ! j2) then f (fst (tps ! j1) (snd (t using j ltransplant_def assms by auto then have "fst (tps' ! j1) = (λi. if snd (tps ! j1) - t < i ∧ i ≤ snd (tps ! j1) then f (fst (tps ! j1) (snd (t using j by auto then have "fst (tps' ! j1) (snd (tps ! j1) - t) = fst (tps ! j1) (snd (tps ! j1) - by simp then have "tps' :.: j1 = fst (tps ! j1) (snd (tps ! j1) - t)" using * by simp then have "?lhs ! j = (ltransplant (tps ! j1) (tps ! j2) f t) |:=| (f ( |.| (tps ! using assms(6) j that by simp then have "?lhs ! j = (ltransplant (tps ! j1) (tps ! j2) f (Suc t))" using ltransplant_upd assms(1) by simp moreover have "?rhs ! j = ltransplant (tps ! j1) (tps ! j2) f (Suc t)" using assms(6) that j by simp ultimately show ?thesis by simp next case j1_neq_j2: False then show ?thesis proof (cases "j = j1") case True then have "?lhs ! j = tps' ! j1 |-| 1" using assms j1_neq_j2 by simp then have "?lhs ! j = (tps ! j1 |-| t) |-| 1" using assms j1_neq_j2 by simp moreover have "?rhs ! j = tps ! j1 |-| Suc t" using True assms j1_neq_j2 by simp ultimately show ?thesis by simp next case False then have j: "j = j2" using j1j2 by simp then have "?lhs ! j = tps' ! j2 |:=| (f (tps' :.: j1)) |-| 1" using assms by simp then have "?lhs ! j = (ltransplant (tps ! j1) (tps ! j2) f t) |:=| (f (tps' :.: j1 using assms by simp then have "?lhs ! j = (ltransplant (tps ! j1) (tps ! j2) f (Suc t))" using ltransplant_def assms ltransplant_upd by (smt (verit) j1_neq_j2 nth_list_update_eq moreover have "?rhs ! j = ltransplant (tps ! j1) (tps ! j2) f (Suc t)" using assms(6) that j by simp ultimately show ?thesis by simp qed qed qed qed qed lemma execute_tm_trans_until_less: assumes "j1 < k" and "j2 < k" and "length tps = k" and "rneigh (tps ! j1) H n" and "t ≤ n" shows "execute (tm_trans_until j1 j2 H f) (0, tps) t = (0, tps[j1 := tps ! j1 |+| t, j2 := transplant (tps ! j1) (tps ! j2) f t])" using assms(5) proof (induction t) case 0 then show ?case using transplant_0 by simp next case (Suc t) then have "t < n" by simp let ?M = "tm_trans_until j1 j2 H f" have "execute ?M (0, tps) (Suc t) = exe ?M (execute ?M (0, tps) t)" by simp also have "... = exe ?M (0, tps[j1 := tps ! j1 |+| t, j2 := transplant (tps ! j1) (is "_ = exe ?M (0, ?tps)") using Suc by simp also have "... = (0, ?tps[j1 := ?tps ! j1 |+| 1, j2 := ?tps ! j2 |:=| (f (?tps :.: proof (rule exe_tm_trans_until_2[where ?k=k]) show "j1 < k" using assms(1) . show "length (tps[j1 := tps ! j1 |+| t, j2 := transplant (tps ! j1) (tps ! j2) f using assms by simp show "(0, tps[j1 := tps ! j1 |+| t, j2 := transplant (tps ! j1) (tps ! j2) f t]) < using assms transplant_def rneigh_def ‹t < n› by (smt (verit) fst_conv length_list_update less_not_refl2 nth_list_update_eq nth_list_ qed finally show ?case using assms transplant_upd by auto (smt (verit) add.commute fst_conv transplant_def transplant_upd less_not_refl2 list_upd nth_list_update_eq nth_list_update_neq plus_1_eq_Suc snd_conv) qed lemma execute_tm_ltrans_until_less: assumes "j1 < k" and "j2 < k" and "length tps = k" and "lneigh (tps ! j1) H n" and "t ≤ n" and "n ≤ tps :#: j1" and "n ≤ tps :#: j2" shows "execute (tm_ltrans_until j1 j2 H f) (0, tps) t = (0, tps[j1 := tps ! j1 |-| t, j2 := ltransplant (tps ! j1) (tps ! j2) f t])" using assms(5) proof (induction t) case 0 then show ?case using ltransplant_0 by simp next case (Suc t) then have "t < n" by simp have 1: "t < tps :#: j2" using assms(7) Suc by simp have 2: "t < tps :#: j1" using assms(6) Suc by simp let ?M = "tm_ltrans_until j1 j2 H f" define tps' where "tps' = tps[j1 := tps ! j1 |-| t, j2 := ltransplant (tps ! j1) (t have "execute ?M (0, tps) (Suc t) = exe ?M (execute ?M (0, tps) t)" by simp also have "... = exe ?M (0, tps')" using Suc tps'_def by simp also have "... = (0, tps'[j1 := tps' ! j1 |-| 1, j2 := tps' ! j2 |:=| (f (tps' :.: proof (rule exe_tm_ltrans_until_2[where ?k=k]) show "j1 < k" using assms(1) . show "length tps' = k" using assms tps'_def by simp show "(0, tps') <.> j1 ∉ H" using assms ltransplant_def tps'_def lneigh_def ‹t < n› by (smt (verit) fst_conv length_list_update less_not_refl2 nth_list_update_eq nth_list_ qed finally show ?case using tapes_ltransplant_upd[OF 1 2 assms(1,2,3) tps'_def] by simp qed lemma execute_tm_trans_until: assumes "j1 < k" and "j2 < k" and "length tps = k" and "rneigh (tps ! j1) H n" shows "execute (tm_trans_until j1 j2 H f) (0, tps) (Suc n) = (1, tps[j1 := tps ! j1 |+| n, j2 := transplant (tps ! j1) (tps ! j2) f n])" proof - let ?M = "tm_trans_until j1 j2 H f" have "execute ?M (0, tps) (Suc n) = exe ?M (execute ?M (0, tps) n)" by simp also have "... = exe ?M (0, tps[j1 := tps ! j1 |+| n, j2 := transplant (tps ! j1) using execute_tm_trans_until_less[where ?t=n] assms by simp also have "... = (1, tps[j1 := tps ! j1 |+| n, j2 := transplant (tps ! j1) (tps ! (is "_ = (1, ?tps)") proof - have "length ?tps = k" using assms(3) by simp moreover have "(0, ?tps) <.> j1 ∈ H" using rneigh_def transplant_def assms by (smt (verit) fst_conv length_list_update less_not_refl2 nth_list_update_eq nth_list_ ultimately show ?thesis using exe_tm_trans_until_1 assms by simp qed finally show ?thesis by simp qed lemma execute_tm_ltrans_until: assumes "j1 < k" and "j2 < k" and "length tps = k" and "lneigh (tps ! j1) H n" and "n ≤ tps :#: j1" and "n ≤ tps :#: j2" shows "execute (tm_ltrans_until j1 j2 H f) (0, tps) (Suc n) = (1, tps[j1 := tps ! j1 |-| n, j2 := ltransplant (tps ! j1) (tps ! j2) f n])" proof - let ?M = "tm_ltrans_until j1 j2 H f" have "execute ?M (0, tps) (Suc n) = exe ?M (execute ?M (0, tps) n)" by simp also have "... = exe ?M (0, tps[j1 := tps ! j1 |-| n, j2 := ltransplant (tps ! j1) using execute_tm_ltrans_until_less[where ?t=n] assms by simp also have "... = (1, tps[j1 := tps ! j1 |-| n, j2 := ltransplant (tps ! j1) (tps ! (is "_ = (1, ?tps)") proof - have "length ?tps = k" using assms(3) by simp moreover have "(0, ?tps) <.> j1 ∈ H" using lneigh_def ltransplant_def assms by (smt (verit, ccfv_threshold) fst_conv length_list_update less_not_refl nth_list_upda ultimately show ?thesis using exe_tm_ltrans_until_1 assms by simp qed finally show ?thesis by simp qed lemma transits_tm_trans_until: assumes "j1 < k" and "j2 < k" and "length tps = k" and "rneigh (tps ! j1) H n" shows "transits (tm_trans_until j1 j2 H f) (0, tps) (Suc n) (1, tps[j1 := tps ! j1 |+| n, j2 := transplant (tps ! j1) (tps ! j2) f n])" using execute_tm_trans_until[OF assms] transitsI[of _ _ "Suc n" _ "Suc n"] by blast lemma transits_tm_ltrans_until: assumes "j1 < k" and "j2 < k" and "length tps = k" and "lneigh (tps ! j1) H n" and "n ≤ tps :#: j1" and "n ≤ tps :#: j2" shows "transits (tm_ltrans_until j1 j2 H f) (0, tps) (Suc n) (1, tps[j1 := tps ! j1 |-| n, j2 := ltransplant (tps ! j1) (tps ! j2) f n])" using execute_tm_ltrans_until[OF assms] transitsI[of _ _ "Suc n" _ "Suc n"] by blast lemma transforms_tm_trans_until: assumes "j1 < k" and "j2 < k" and "length tps = k" and "rneigh (tps ! j1) H n" shows "transforms (tm_trans_until j1 j2 H f) tps (Suc n) (tps[j1 := tps ! j1 |+| n, j2 := transplant (tps ! j1) (tps ! j2) f n])" using tm_trans_until_def transforms_def transits_tm_trans_until[OF assms] by simp lemma transforms_tm_ltrans_until: assumes "j1 < k" and "j2 < k" and "length tps = k" and "lneigh (tps ! j1) H n" and "n ≤ tps :#: j1" and "n ≤ tps :#: j2" shows "transforms (tm_ltrans_until j1 j2 H f) tps (Suc n) (tps[j1 := tps ! j1 |-| n, j2 := ltransplant (tps ! j1) (tps ! j2) f n])" using tm_ltrans_until_def transforms_def transits_tm_ltrans_until[OF assms] by simp corollary transforms_tm_trans_untilI [transforms_intros]: assumes "j1 < k" and "j2 < k" and "length tps = k" and "rneigh (tps ! j1) H n" and "t = Suc n" and "tps' = tps[j1 := tps ! j1 |+| n, j2 := transplant (tps ! j1) (tps ! j2) f n] shows "transforms (tm_trans_until j1 j2 H f) tps t tps'" using transforms_tm_trans_until[OF assms(1-4)] assms(5,6) by simp corollary transforms_tm_ltrans_untilI [transforms_intros]: assumes "j1 < k" and "j2 < k" and "length tps = k" and "lneigh (tps ! j1) H n" and "n ≤ tps :#: j1" and "n ≤ tps :#: j2" and "t = Suc n" and "tps' = tps[j1 := tps ! j1 |-| n, j2 := ltransplant (tps ! j1) (tps ! j2) f n shows "transforms (tm_ltrans_until j1 j2 H f) tps t tps'" using transforms_tm_ltrans_until[OF assms(1-6)] assms(7,8) by simp subsubsection ‹Copying one tape to another› text ‹ we set the symbol map $f$ in @{const tm_trans_until} to the identity , we get a Turing machine that simply makes a copy. › definition tm_cp_until :: "tapeidx ==> tapeidx ==> symbol set ==> machine" where "tm_cp_until j1 j2 H ≡ tm_trans_until j1 j2 H id" lemma id_symbol: "∀h<G. (id :: symbol ==> symbol) h < G" by simp lemma tm_cp_until_tm: assumes "0 < j2" and "j1 < k" and "j2 < k" and "G ≥ 4" shows "turing_machine k G (tm_cp_until j1 j2 H)" unfolding tm_cp_until_def using tm_trans_until_tm id_symbol assms turing_machine_def by abbreviation implant :: "tape ==> tape ==> nat ==> tape" where "implant tp1 tp2 n ≡ transplant tp1 tp2 id n" lemma implant: "implant tp1 tp2 n = (λi. if snd tp2 ≤ i ∧ i < snd tp2 + n then fst tp1 (snd tp1 + i - snd tp2) else fs snd tp2 + n)" using transplant_def by auto lemma implantI: assumes "tp' = (λi. if snd tp2 ≤ i ∧ i < snd tp2 + n then fst tp1 (snd tp1 + i - snd tp2) else fs snd tp2 + n)" shows "implant tp1 tp2 n = tp'" using implant assms by simp lemma fst_snd_pair: "fst t = a ==> snd t = b ==> t = (a, b)" by auto lemma implantI': assumes "fst tp' = (λi. if snd tp2 ≤ i ∧ i < snd tp2 + n then fst tp1 (snd tp1 + i - snd tp2) else fs and "snd tp' = snd tp2 + n" shows "implant tp1 tp2 n = tp'" using implantI fst_snd_pair[OF assms] by simp lemma implantI'': assumes "∧i. snd tp2 ≤ i ∧ i < snd tp2 + n ==> fst tp' i = fst tp1 (snd tp1 + i - and "∧i. i < snd tp2 ==> fst tp' i = fst tp2 i" and "∧i. snd tp2 + n ≤ i ==> fst tp' i = fst tp2 i" assumes "snd tp' = snd tp2 + n" shows "implant tp1 tp2 n = tp'" using assms implantI' by (meson linorder_le_less_linear) lemma implantI''': assumes "∧i. i2 ≤ i ∧ i < i2 + n ==> ys i = ys1 (i1 + i - i2)" and "∧i. i < i2 ==> ys i = ys2 i" and "∧i. i2 + n ≤ i ==> ys i = ys2 i" assumes "i = i2 + n" shows "implant (ys1, i1) (ys2, i2) n = (ys, i)" using assms implantI'' by auto lemma implant_self: "implant tp tp n = tp |+| n" unfolding transplant_def by auto lemma transforms_tm_cp_untilI [transforms_intros]: assumes "j1 < k" and "j2 < k" and "length tps = k" and "rneigh (tps ! j1) H n" and "t = Suc n" and "tps' = tps[j1 := tps ! j1 |+| n, j2 := implant (tps ! j1) (tps ! j2) n]" shows "transforms (tm_cp_until j1 j2 H) tps t tps'" unfolding tm_cp_until_def using transforms_tm_trans_untilI[OF assms(1-6)] by simp lemma implant_contents: assumes "i > 0" and "n + (i - 1) ≤ length xs" shows "implant (⌊xs⌋, i) (⌊ys⌋, Suc (length ys)) n = (⌊ys @ (take n (drop (i - 1) xs))⌋, Suc (length ys) + n)" (is "?lhs = ?rhs") proof - have lhs: "?lhs = (λj. if Suc (length ys) ≤ j ∧ j < Suc (length ys) + n then ⌊xs⌋ (i + j - Suc (length Suc (length ys) + n)" using implant by auto let ?zs = "ys @ (take n (drop (i - 1) xs))" have lenzs: "length ?zs = length ys + n" using assms by simp have fst_rhs: "fst ?rhs = (λj. if j = 0 then 1 else if j ≤ length ys + n then ?zs ! using assms by auto have "(λj. if Suc (length ys) ≤ j ∧ j < Suc (length ys) + n then ⌊xs⌋ (i + j - Suc (l (λj. if j = 0 then 1 else if j ≤ length ys + n then ?zs ! (j - 1) else 0)" (is "?l = ?r") proof fix j consider "j = 0" | "j > 0 ∧ j ≤ length ys" | "j > length ys ∧ j ≤ length ys + n" | "j > length ys + n" by linarith then show "?l j = ?r j" proof (cases) case 1 then show ?thesis by simp next case 2 then show ?thesis using assms contents_def by (smt (verit) Suc_diff_1 less_trans_Suc not_add_less1 not_le no next case 3 then have "?r j = ?zs ! (j - 1)" by simp also have "... = take n (drop (i - 1) xs) ! (j - 1 - length ys)" using 3 lenzs by (metis add.right_neutral diff_is_0_eq le_add_diff_inverse not_add_less2 not_le not_l also have "... = take n (drop (i - 1) xs) ! (j - Suc (length ys))" by simp also have "... = xs ! (i - 1 + j - Suc (length ys))" using 3 assms by auto also have "... = ⌊xs⌋ (i + j - Suc (length ys))" using assms contents_def 3 by auto also have "... = ?l j" using 3 by simp finally have "?r j = ?l j" . then show ?thesis by simp next case 4 then show ?thesis by simp qed qed then show ?thesis using lhs fst_rhs by simp qed subsubsection ‹Moving to the next specific symbol› text ‹ a tape to itself means just moving to the right. › definition tm_right_until :: "tapeidx ==> symbol set ==> machine" where "tm_right_until j H ≡ tm_cp_until j j H" text ‹ a tape to itself does not change the tape. So this is a Turing machine for the input tape $j = 0$, unlike @{const tm_cp_until} where target tape cannot, in general, be the input tape. › lemma tm_right_until_tm: assumes "j < k" and "k ≥ 2" and "G ≥ 4" shows "turing_machine k G (tm_right_until j H)" unfolding tm_right_until_def tm_cp_until_def tm_trans_until_def cmd_trans_until_def using assms turing_machine_def by auto lemma transforms_tm_right_untilI [transforms_intros]: assumes "j < length tps" and "rneigh (tps ! j) H n" and "t = Suc n" and "tps' = (tps[j := tps ! j |+| n])" shows "transforms (tm_right_until j H) tps t tps'" using transforms_tm_cp_untilI assms implant_self tm_right_until_def by (metis list_update_id nth_list_update_eq) subsubsection ‹Translating to a constant symbol› text ‹ way to specialize @{const tm_trans_until} and @{const tm_ltrans_until} to have a constant function $f$. › definition tm_const_until :: "tapeidx ==> tapeidx ==> symbol set ==> symbol ==> mac "tm_const_until j1 j2 H h ≡ tm_trans_until j1 j2 H (λ_. h)" lemma tm_const_until_tm: assumes "0 < j2" and "j1 < k" and "j2 < k" and "h < G" and "k ≥ 2" and "G ≥ 4" shows "turing_machine k G (tm_const_until j1 j2 H h)" unfolding tm_const_until_def using tm_trans_until_tm assms turing_machine_def by metis text ‹ with our fantasy names ending in \emph{-plant}, we name the operation {term constplant}. › abbreviation constplant :: "tape ==> symbol ==> nat ==> tape" where "constplant tp2 h n ≡ transplant (λ_. 0, 0) tp2 (λ_. h) n" lemma constplant_transplant: "constplant tp2 h n = transplant tp1 tp2 (λ_. h) n" using transplant_def by simp lemma constplant: "constplant tp2 h n = (λi. if snd tp2 ≤ i ∧ i < snd tp2 + n then h else fst tp2 i, snd tp2 + n)" using transplant_def by simp lemma transforms_tm_const_untilI [transforms_intros]: assumes "j1 < k" and "j2 < k" and "length tps = k" and "rneigh (tps ! j1) H n" and "t = Suc n" and "tps' = tps[j1 := tps ! j1 |+| n, j2 := constplant (tps ! j2) h n]" shows "transforms (tm_const_until j1 j2 H h) tps t tps'" unfolding tm_const_until_def using transforms_tm_trans_untilI assms constplant_transp definition tm_lconst_until :: "tapeidx ==> tapeidx ==> symbol set ==> symbol ==> ma "tm_lconst_until j1 j2 H h ≡ tm_ltrans_until j1 j2 H (λ_. h)" lemma tm_lconst_until_tm: assumes "0 < j2" and "j1 < k" and "j2 < k" and "h < G" and "k ≥ 2" and "G ≥ 4" shows "turing_machine k G (tm_lconst_until j1 j2 H h)" unfolding tm_lconst_until_def using tm_ltrans_until_tm assms turing_machine_def by meti abbreviation lconstplant :: "tape ==> symbol ==> nat ==> tape" where "lconstplant tp2 h n ≡ ltransplant (λ_. 0, 0) tp2 (λ_. h) n" lemma lconstplant_ltransplant: "lconstplant tp2 h n = ltransplant tp1 tp2 (λ_. h) n using ltransplant_def by simp lemma lconstplant: "lconstplant tp2 h n = (λi. if snd tp2 - n < i ∧ i ≤ snd tp2 then h else fst tp2 i, snd tp2 - n)" using ltransplant_def by simp lemma transforms_tm_lconst_untilI [transforms_intros]: assumes "0 < j2" and "j1 < k" and "j2 < k" and "length tps = k" and "lneigh (tps ! j1) H n" and "n ≤ tps :#: j1" and "n ≤ tps :#: j2" and "t = Suc n" and "tps' = tps[j1 := tps ! j1 |-| n, j2 := lconstplant (tps ! j2) h n]" shows "transforms (tm_lconst_until j1 j2 H h) tps t tps'" unfolding tm_lconst_until_def using transforms_tm_ltrans_untilI assms lconstplant_ltr subsection ‹Writing single symbols› text ‹ next command writes a fixed symbol $h$ to tape $j$. It does not move a tape . › definition cmd_write :: "tapeidx ==> symbol ==> command" where "cmd_write j h rs ≡ (1, map (λi. (if i = j then h else rs ! i, Stay)) [0..<length lemma sem_cmd_write: "sem (cmd_write j h) (0, tps) = (1, tps[j := tps ! j |:=| h]) using cmd_write_def read_length act_Stay by (intro semI) auto definition tm_write :: "tapeidx ==> symbol ==> machine" where "tm_write j h ≡ [cmd_write j h]" lemma tm_write_tm: assumes "0 < j" and "j < k" and "h < G" and "G ≥ 4" shows "turing_machine k G (tm_write j h)" unfolding tm_write_def cmd_write_def using assms turing_machine_def by auto lemma transforms_tm_writeI [transforms_intros]: assumes "tps' = tps[j := tps ! j |:=| h]" shows "transforms (tm_write j h) tps 1 tps'" unfolding tm_write_def using sem_cmd_write exe_lt_length assms tm_write_def transits_def transforms_def by auto text ‹ next command writes the symbol to tape $j_2$ that results from applying a $f$ to the symbol read from tape $j_1$. It does not move any tape heads. › definition cmd_trans2 :: "tapeidx ==> tapeidx ==> (symbol ==> symbol) ==> command" w "cmd_trans2 j1 j2 f rs ≡ (1, map (λi. (if i = j2 then f (rs ! j1) else rs ! i, St lemma sem_cmd_trans2: assumes "j1 < length tps" shows "sem (cmd_trans2 j1 j2 f) (0, tps) = (1, tps[j2 := tps ! j2 |:=| (f (tps :. using cmd_trans2_def tapes_at_read assms read_length act_Stay by (intro semI) auto definition tm_trans2 :: "tapeidx ==> tapeidx ==> (symbol ==> symbol) ==> machine" wh "tm_trans2 j1 j2 f ≡ [cmd_trans2 j1 j2 f]" lemma tm_trans2_tm: assumes "j1 < k" and "0 < j2" and "j2 < k" and "∀h < G. f h < G" and "k ≥ 2" and "G ≥ 4" shows "turing_machine k G (tm_trans2 j1 j2 f)" unfolding tm_trans2_def cmd_trans2_def using assms turing_machine_def by auto lemma exe_tm_trans2: assumes "j1 < length tps" shows "exe (tm_trans2 j1 j2 f) (0, tps) = (1, tps[j2 := tps ! j2 |:=| (f (tps :.: unfolding tm_trans2_def using sem_cmd_trans2 assms exe_lt_length by simp lemma execute_tm_trans2: assumes "j1 < length tps" shows "execute (tm_trans2 j1 j2 f) (0, tps) 1 = (1, tps[j2 := tps ! j2 |:=| (f (t using assms exe_tm_trans2 by simp lemma transits_tm_trans2: assumes "j1 < length tps" shows "transits (tm_trans2 j1 j2 f) (0, tps) 1 (1, tps[j2 := tps ! j2 |:=| (f (tp using assms execute_tm_trans2 transits_def by auto lemma transforms_tm_trans2: assumes "j1 < length tps" shows "transforms (tm_trans2 j1 j2 f) tps 1 (tps[j2 := tps ! j2 |:=| (f (tps :.: using tm_trans2_def assms transits_tm_trans2 transforms_def by simp lemma transforms_tm_trans2I [transforms_intros]: assumes "j1 < length tps" and "tps' = tps[j2 := tps ! j2 |:=| (f (tps :.: j1))]" shows "transforms (tm_trans2 j1 j2 f) tps 1 tps'" using assms transforms_tm_trans2 by simp text ‹ the two tapes in @{const tm_trans2}, we can map a symbol in-place. › definition tm_trans :: "tapeidx ==> (symbol ==> symbol) ==> machine" where "tm_trans j f ≡ tm_trans2 j j f" lemma tm_trans_tm: assumes "0 < j" and "j < k" and "∀h < G. f h < G" and "G ≥ 4" shows "turing_machine k G (tm_trans j f)" unfolding tm_trans_def using tm_trans2_tm assms by simp lemma transforms_tm_transI [transforms_intros]: assumes "j < length tps" and "tps' = tps[j := tps ! j |:=| (f (tps :.: j))]" shows "transforms (tm_trans j f) tps 1 tps'" using assms transforms_tm_trans2 tm_trans_def by simp text ‹ next command is like the previous one, except it also moves the tape head to right. › definition cmd_rtrans :: "tapeidx ==> (symbol ==> symbol) ==> command" where "cmd_rtrans j f rs ≡ (1, map (λi. (if i = j then f (rs ! i) else rs ! i, if i = j lemma sem_cmd_rtrans: assumes "j < length tps" shows "sem (cmd_rtrans j f) (0, tps) = (1, tps[j := tps ! j |:=| (f (tps :.: j)) using cmd_rtrans_def tapes_at_read read_length assms act_Stay act_Right by (intro semI) auto definition tm_rtrans :: "tapeidx ==> (symbol ==> symbol) ==> machine" where "tm_rtrans j f ≡ [cmd_rtrans j f]" lemma tm_rtrans_tm: assumes "0 < j" and "j < k" and "∀h<G. f h < G" and "k ≥ 2" and "G ≥ 4" shows "turing_machine k G (tm_rtrans j f)" unfolding tm_rtrans_def cmd_rtrans_def using assms turing_machine_def by auto lemma exe_tm_rtrans: assumes "j < length tps" shows "exe (tm_rtrans j f) (0, tps) = (1, tps[j := tps ! j |:=| (f (tps :.: j)) | unfolding tm_rtrans_def using sem_cmd_rtrans assms exe_lt_length by simp lemma execute_tm_rtrans: assumes "j < length tps" shows "execute (tm_rtrans j f) (0, tps) 1 = (1, tps[j := tps ! j |:=| (f (tps :.: using assms exe_tm_rtrans by simp lemma transits_tm_rtrans: assumes "j < length tps" shows "transits (tm_rtrans j f) (0, tps) 1 (1, tps[j := tps ! j |:=| (f (tps :.: using assms execute_tm_rtrans transits_def by auto lemma transforms_tm_rtrans: assumes "j < length tps" shows "transforms (tm_rtrans j f) tps 1 (tps[j := tps ! j |:=| (f (tps :.: j)) |+ using assms transits_tm_rtrans transforms_def by (metis One_nat_def length_Cons list.siz lemma transforms_tm_rtransI [transforms_intros]: assumes "j < length tps" and "tps' = tps[j := tps ! j |:=| (f (tps :.: j)) |+| 1]" shows "transforms (tm_rtrans j f) tps 1 tps'" using assms transforms_tm_rtrans by simp text ‹ next command writes a fixed symbol $h$ to all tapes in the set $J$. › definition cmd_write_many :: "tapeidx set ==> symbol ==> command" where "cmd_write_many J h rs ≡ (1, map (λi. (if i ∈ J then h else rs ! i, Stay)) [0..<le lemma proper_cmd_write_many: "proper_command k (cmd_write_many J h)" unfolding cmd_write_many_def by auto lemma sem_cmd_write_many: shows "sem (cmd_write_many J h) (0, tps) = (1, map (λj. if j ∈ J then tps ! j |:=| h else tps ! j) [0..<length tps])" using cmd_write_many_def read_length act_Stay by (intro semI[OF proper_cmd_write_many]) auto definition tm_write_many :: "tapeidx set ==> symbol ==> machine" where "tm_write_many J h ≡ [cmd_write_many J h]" lemma tm_write_many_tm: assumes "0 ∉ J" and "∀j∈J. j < k" and "h < G" and "k ≥ 2" and "G ≥ 4" shows "turing_machine k G (tm_write_many J h)" unfolding tm_write_many_def cmd_write_many_def using assms turing_machine_def by auto lemma exe_tm_write_many: "exe (tm_write_many J h) (0, tps) = (1, map (λj. if j ∈ J then tps ! j |:=| h else tps ! j) [0..<length tps])" unfolding tm_write_many_def using sem_cmd_write_many exe_lt_length by simp lemma execute_tm_write_many: "execute (tm_write_many J h) (0, tps) 1 = (1, map (λj. if j ∈ J then tps ! j |:=| h else tps ! j) [0..<length tps])" using exe_tm_write_many by simp lemma transforms_tm_write_many: "transforms (tm_write_many J h) tps 1 (map (λj. if j ∈ J then tps ! j |:=| h else using execute_tm_write_many transits_def transforms_def tm_write_many_def by auto lemma transforms_tm_write_manyI [transforms_intros]: assumes "∀j∈J. j < k" and "length tps = k" and "length tps' = k" and "∧j. j ∈ J ==> tps' ! j = tps ! j |:=| h" and "∧j. j < k ==> j ∉ J ==> tps' ! j = tps ! j" shows "transforms (tm_write_many J h) tps 1 tps'" proof - have "tps' = map (λj. if j ∈ J then tps ! j |:=| h else tps ! j) [0..<length tps]" using assms by (intro nth_equalityI) simp_all then show ?thesis using assms transforms_tm_write_many by auto qed subsection ‹Writing a symbol multiple times› text ‹ this section we devise a Turing machine that writes the symbol sequence h^m$ with a hard-coded symbol $h$ and number $m$ to a tape. The resulting is defined by the next operation: › definition overwrite :: "tape ==> symbol ==> nat ==> tape" where "overwrite tp h m ≡ (λi. if snd tp ≤ i ∧ i < snd tp + m then h else fst tp i, snd lemma overwrite_0: "overwrite tp h 0 = tp" proof - have "snd (overwrite tp h 0) = snd tp" unfolding overwrite_def by simp moreover have "fst (overwrite tp h 0) = fst tp" unfolding overwrite_def by auto ultimately show ?thesis using prod_eqI by blast qed lemma overwrite_upd: "(overwrite tp h t) |:=| h |+| 1 = overwrite tp h (Suc t)" using overwrite_def by auto lemma overwrite_upd': assumes "j < length tps" and "tps' = tps[j := overwrite (tps ! j) h t]" shows "(tps[j := overwrite (tps ! j) h t])[j := tps' ! j |:=| h |+| 1] = tps[j := overwrite (tps ! j) h (Suc t)]" using assms overwrite_upd by simp text ‹ next command writes the symbol $h$ to the tape $j$ and moves the tape head the right. › definition cmd_char :: "tapeidx ==> symbol ==> command" where "cmd_char j z = cmd_rtrans j (λ_. z)" lemma turing_command_char: assumes "0 < j" and "j < k" and "h < G" shows "turing_command k 1 G (cmd_char j h)" unfolding cmd_char_def cmd_rtrans_def using assms by auto definition tm_char :: "tapeidx ==> symbol ==> machine" where "tm_char j z ≡ [cmd_char j z]" lemma tm_char_tm: assumes "0 < j" and "j < k" and "G ≥ 4" and "z < G" shows "turing_machine k G (tm_char j z)" using assms turing_command_char tm_char_def by auto lemma transforms_tm_charI [transforms_intros]: assumes "j < length tps" and "tps' = tps[j := tps ! j |:=| z |+| 1]" shows "transforms (tm_char j z) tps 1 tps'" using assms transforms_tm_rtransI tm_char_def cmd_char_def tm_rtrans_def by metis lemma sem_cmd_char: assumes "j < length tps" shows "sem (cmd_char j h) (0, tps) = (1, tps[j := tps ! j |:=| h |+| 1])" using cmd_char_def cmd_rtrans_def tapes_at_read read_length assms act_Right by (intro semI) auto text ‹ next TM is a sequence of $m$ @{const cmd_char} commands properly relocated. writes a sequence of $m$ times the symbol $h$ to tape $j$. › definition tm_write_repeat :: "tapeidx ==> symbol ==> nat ==> machine" where "tm_write_repeat j h m ≡ map (λi. relocate_cmd i (cmd_char j h)) [0..<m]" lemma tm_write_repeat_tm: assumes "0 < j" and "j < k" and "h < G" and "k ≥ 2" and "G ≥ 4" shows "turing_machine k G (tm_write_repeat j h m)" proof let ?M = "tm_write_repeat j h m" show "2 ≤ k" and "4 ≤ G" using assms(4,5) . show "turing_command k (length ?M) G (?M ! i)" if "i < length ?M" for i proof - have "?M ! i = relocate_cmd i (cmd_char j h)" using that tm_write_repeat_def by simp then have "turing_command k (1 + i) G (?M ! i)" using assms turing_command_char turing_command_relocate_cmd by metis then show ?thesis using turing_command_mono that by simp qed qed lemma exe_tm_write_repeat: assumes "j < length tps" and "q < m" shows "exe (tm_write_repeat j h m) (q, tps) = (Suc q, tps[j := tps ! j |:=| h |+| using sem_cmd_char assms sem sem_relocate_cmd tm_write_repeat_def by (auto simp add: exe_l lemma execute_tm_write_repeat: assumes "j < length tps" and "t ≤ m" shows "execute (tm_write_repeat j h m) (0, tps) t = (t, tps[j := overwrite (tps ! using assms(2) proof (induction t) case 0 then show ?case using overwrite_0 by simp next case (Suc t) then have "t < m" by simp have "execute (tm_write_repeat j h m) (0, tps) (Suc t) = exe (tm_write_repeat j h by simp also have "... = exe (tm_write_repeat j h m) (t, tps[j := overwrite (tps ! j) h t] using Suc by simp also have "... = (Suc t, tps[j := overwrite (tps ! j) h (Suc t)])" using `t < m` exe_tm_write_repeat assms overwrite_upd' by simp finally show ?case . qed lemma transforms_tm_write_repeatI [transforms_intros]: assumes "j < length tps" and "tps' = tps[j := overwrite (tps ! j) h m]" shows "transforms (tm_write_repeat j h m) tps m tps'" using assms execute_tm_write_repeat transits_def transforms_def tm_write_repeat_def by subsection ‹Moving to the start of the tape› text ‹ next command moves the head on tape $j$ to the left until it reaches symbol from the set $H$: › definition cmd_left_until :: "symbol set ==> tapeidx ==> command" where "cmd_left_until H j rs ≡ if rs ! j ∈ H then (1, map (λr. (r, Stay)) rs) else (0, map (λi. (rs ! i, if i = j then Left else Stay)) [0..<length rs])" lemma sem_cmd_left_until_1: assumes "j < k" and "length tps = k" and "(0, tps) <.> j ∈ H" shows "sem (cmd_left_until H j) (0, tps) = (1, tps)" using cmd_left_until_def tapes_at_read read_length assms act_Stay by (intro semI) auto lemma sem_cmd_left_until_2: assumes "j < k" and "length tps = k" and "(0, tps) <.> j ∉ H" shows "sem (cmd_left_until H j) (0, tps) = (0, tps[j := tps ! j |-| 1])" using cmd_left_until_def tapes_at_read read_length assms act_Stay act_Left by (intro semI) auto definition tm_left_until :: "symbol set ==> tapeidx ==> machine" where "tm_left_until H j ≡ [cmd_left_until H j]" lemma tm_left_until_tm: assumes "k ≥ 2" and "G ≥ 4" shows "turing_machine k G (tm_left_until H j)" unfolding tm_left_until_def cmd_left_until_def using assms turing_machine_def by auto text ‹ \emph{begin tape} for a set of symbols has one of these symbols only in cell . It generalizes the concept of clean tapes, where the set of symbols is \{\triangleright\}$. › definition begin_tape :: "symbol set ==> tape ==> bool" where "begin_tape H tp ≡ ∀i. fst tp i ∈ H ⟷ i = 0" lemma begin_tapeI: assumes "fst tp 0 ∈ H" and "∧i. i > 0 ==> fst tp i ∉ H" shows "begin_tape H tp" unfolding begin_tape_def using assms by auto lemma exe_tm_left_until_1: assumes "j < length tps" and "(0, tps) <.> j ∈ H" shows "exe (tm_left_until H j) (0, tps) = (1, tps)" using tm_left_until_def assms exe_lt_length sem_cmd_left_until_1 by auto lemma exe_tm_left_until_2: assumes "j < length tps" and "(0, tps) <.> j ∉ H" shows "exe (tm_left_until H j) (0, tps) = (0, tps[j := tps ! j |-| 1])" using tm_left_until_def assms exe_lt_length sem_cmd_left_until_2 by auto text ‹ do not show the semantics of @{const tm_left_until} for the general case, but for when applied to begin tapes. › lemma execute_tm_left_until_less: assumes "j < length tps" and "begin_tape H (tps ! j)" and "t ≤ tps :#: j" shows "execute (tm_left_until H j) (0, tps) t = (0, tps[j := tps ! j |-| t])" using assms(3) proof (induction t) case 0 then show ?case by simp next case (Suc t) then have "fst (tps ! j) (snd (tps ! j) - t) ∉ H" using assms begin_tape_def by simp then have neq_0: "fst (tps ! j |-| t) (snd (tps ! j |-| t)) ∉ H" by simp have "execute (tm_left_until H j) (0, tps) (Suc t) = exe (tm_left_until H j) (exe by simp also have "... = exe (tm_left_until H j) (0, tps[j := tps ! j |-| t])" using Suc by simp also have "... = (0, tps[j := tps ! j |-| (Suc t)])" using neq_0 exe_tm_left_until_2 assms by simp finally show ?case by simp qed lemma execute_tm_left_until: assumes "j < length tps" and "begin_tape H (tps ! j)" shows "execute (tm_left_until H j) (0, tps) (Suc (tps :#: j)) = (1, tps[j := tps using assms begin_tape_def exe_tm_left_until_1 execute_tm_left_until_less by simp lemma transits_tm_left_until: assumes "j < length tps" and "begin_tape H (tps ! j)" shows "transits (tm_left_until H j) (0, tps) (Suc (tps :#: j)) (1, tps[j := tps ! using execute_imp_transits[OF execute_tm_left_until[OF assms]] by simp lemma transforms_tm_left_until: assumes "j < length tps" and "begin_tape H (tps ! j)" shows "transforms (tm_left_until H j) tps (Suc (tps :#: j)) (tps[j := tps ! j |#= using tm_left_until_def transforms_def transits_tm_left_until[OF assms] by simp text ‹ most common case is $H = \{\triangleright\}$, which means the Turing machine the tape head left to the closest start symbol. On clean tapes it moves tape head to the leftmost cell of the tape. › definition tm_start :: "tapeidx ==> machine" where "tm_start ≡ tm_left_until {1}" lemma tm_start_tm: assumes "k ≥ 2" and "G ≥ 4" shows "turing_machine k G (tm_start j)" unfolding tm_start_def using assms tm_left_until_tm by simp lemma transforms_tm_start: assumes "j < length tps" and "clean_tape (tps ! j)" shows "transforms (tm_start j) tps (Suc (tps :#: j)) (tps[j := tps ! j |#=| 0])" using tm_start_def assms transforms_tm_left_until begin_tape_def clean_tape_def by (met lemma transforms_tm_startI [transforms_intros]: assumes "j < length tps" and "clean_tape (tps ! j)" and "t = Suc (tps :#: j)" and "tps' = tps[j := tps ! j |#=| 0]" shows "transforms (tm_start j) tps t tps'" using transforms_tm_start assms by simp text ‹ next Turing machine is the first instance in which we use the $;;$ operator concrete Turing machines. It is also the first time we use the proof method {method tform} for @{const transforms}. The TM performs a ``carriage return'' a clean tape, that is, it moves to the first non-start symbol. › definition tm_cr :: "tapeidx ==> machine" where "tm_cr j ≡ tm_start j ;; tm_right j" lemma tm_cr_tm: "k ≥ 2 ==> G ≥ 4 ==> turing_machine k G (tm_cr j)" using turing_machine_sequential_turing_machine by (simp add: tm_cr_def tm_right_tm tm_s lemma transforms_tm_crI [transforms_intros]: assumes "j < length tps" and "clean_tape (tps ! j)" and "t = tps :#: j + 2" and "tps' = tps[j := tps ! j |#=| 1]" shows "transforms (tm_cr j) tps t tps'" unfolding tm_cr_def by (tform tps: assms) subsection ‹Erasing a tape› text ‹ next Turing machine overwrites all but the start symbol with blanks. It performs a carriage return and then writes blanks until it reaches a . This only works as intended if there are no gaps, that is, blanks between -blank symbols. › definition tm_erase :: "tapeidx ==> machine" where "tm_erase j ≡ tm_cr j ;; tm_const_until j j {◻} ◻" lemma tm_erase_tm: "G ≥ 4 ==> 0 < j ==> j < k ==> turing_machine k G (tm_erase j)" unfolding tm_erase_def using tm_cr_tm tm_const_until_tm by simp lemma transforms_tm_eraseI [transforms_intros]: assumes "j < length tps" and "proper_symbols zs" and "tps ::: j = ⌊zs⌋" and "t = tps :#: j + length zs + 3" and "tps' = tps[j := (⌊[]⌋, Suc (length zs))]" shows "transforms (tm_erase j) tps t tps'" unfolding tm_erase_def proof (tform tps: assms time: assms(4)) show "clean_tape (tps ! j)" using assms contents_clean_tape' by simp show "rneigh (tps[j := tps ! j |#=| 1] ! j) {◻} (length zs)" using assms contents_clean_tape' by (intro rneighI) auto show "tps' = tps [j := tps ! j |#=| 1, j := tps[j := tps ! j |#=| 1] ! j |+| length zs, j := constplant (tps[j := tps ! j |#=| 1] ! j) ◻ (length zs)]" proof - have "(⌊[]⌋, Suc (length zs)) = constplant (⌊zs⌋, Suc 0) ◻ (length zs)" using transplant_def contents_def by auto then show ?thesis using assms by simp qed qed text ‹ next TM returns to the leftmost blank symbol after erasing the tape. › definition tm_erase_cr :: "tapeidx ==> machine" where "tm_erase_cr j ≡ tm_erase j ;; tm_cr j" lemma tm_erase_cr_tm: assumes "G ≥ 4" and "0 < j" and "j < k" shows "turing_machine k G (tm_erase_cr j)" using tm_erase_cr_def tm_cr_tm tm_erase_tm assms by simp lemma transforms_tm_erase_crI [transforms_intros]: assumes "j < length tps" and "proper_symbols zs" and "tps ::: j = ⌊zs⌋" and "t = tps :#: j + 2 * length zs + 6" and "tps' = tps[j := (⌊[]⌋, 1)]" shows "transforms (tm_erase_cr j) tps t tps'" unfolding tm_erase_cr_def by (tform tps: assms time: assms(4)) subsection ‹Writing a symbol sequence› text ‹ Turing machine in this section writes a hard-coded symbol sequence to a . It is like @{const tm_write_repeat} except with an arbitrary symbol . › fun tm_print :: "tapeidx ==> symbol list ==> machine" where "tm_print j [] = []" | "tm_print j (z # zs) = tm_char j z ;; tm_print j zs" lemma tm_print_tm: assumes "0 < j" and "j < k" and "G ≥ 4" and "∀i<length zs. zs ! i < G" shows "turing_machine k G (tm_print j zs)" using assms(4) proof (induction zs) case Nil then show ?case using assms by auto next case (Cons z zs) then have "turing_machine k G (tm_char j z)" using assms tm_char_tm by auto then show ?case using assms Cons by fastforce qed text ‹ result of writing the symbols @{term zs} to a tape @{term tp}: › definition inscribe :: "tape ==> symbol list ==> tape" where "inscribe tp zs ≡ (λi. if snd tp ≤ i ∧ i < snd tp + length zs then zs ! (i - snd tp) else fst tp i, snd tp + length zs)" lemma inscribe_Nil: "inscribe tp [] = tp" proof - have "(λi. if snd tp ≤ i ∧ i < snd tp then [] ! (i - snd tp) else fst tp i) = fst t by auto then show ?thesis unfolding inscribe_def by simp qed lemma inscribe_Cons: "inscribe ((fst tp)(snd tp := z), Suc (snd tp)) zs = inscribe using inscribe_def by auto lemma inscribe_contents: "inscribe (⌊ys⌋, Suc (length ys)) zs = (⌊ys @ zs⌋, Suc (lengt (is "?lhs = ?rhs") proof show "snd ?lhs = snd ?rhs" using inscribe_def contents_def by simp show "fst ?lhs = fst ?rhs" proof fix i :: nat consider "i = 0" | "0 < i ∧ i < Suc (length ys)" | "Suc (length ys) ≤ i ∧ i < Suc (length ys + length zs)" | "Suc (length ys + length zs) ≤ i" by linarith then show "fst ?lhs i = fst ?rhs i" proof (cases) case 1 then show ?thesis using inscribe_def contents_def by simp next case 2 then have "fst ?lhs i = ⌊ys⌋ i" using inscribe_def by simp then have lhs: "fst ?lhs i = ys ! (i - 1)" using 2 contents_def by simp have "fst ?rhs i = (ys @ zs) ! (i - 1)" using 2 contents_def by simp then have "fst ?rhs i = ys ! (i - 1)" using 2 by (metis Suc_diff_1 not_less_eq nth_append) then show ?thesis using lhs by simp next case 3 then show ?thesis using contents_def inscribe_def by (smt (verit, del_insts) One_nat_def add.commute diff_Suc_eq_diff_pred fst_conv length less_Suc_eq_le less_diff_conv2 nat.simps(3) not_less_eq nth_append plus_1_eq_Suc snd_c next case 4 then show ?thesis using contents_def inscribe_def by simp qed qed qed lemma inscribe_contents_Nil: "inscribe (⌊[]⌋, Suc 0) zs = (⌊zs⌋, Suc (length zs))" using inscribe_def contents_def by auto lemma transforms_tm_print: assumes "j < length tps" shows "transforms (tm_print j zs) tps (length zs) (tps[j := inscribe (tps ! j) zs using assms proof (induction zs arbitrary: tps) case Nil then show ?case using inscribe_Nil transforms_Nil by simp next case (Cons z zs) have "transforms (tm_char j z ;; tm_print j zs) tps (length (z # zs)) (tps[j := i proof (tform tps: Cons) let ?tps = "tps[j := tps ! j |:=| z |+| 1]" have "transforms (tm_print j zs) ?tps (length zs) (?tps[j := inscribe (?tps ! j) using Cons by (metis length_list_update) moreover have "(?tps[j := inscribe (?tps ! j) zs]) = (tps[j := inscribe (tps ! j) using inscribe_Cons Cons.prems by simp ultimately show "transforms (tm_print j zs) ?tps (length zs) (tps[j := inscribe (t by simp qed then show "transforms (tm_print j (z # zs)) tps (length (z # zs)) (tps[j := inscri by simp qed lemma transforms_tm_printI [transforms_intros]: assumes "j < length tps" and "tps' = (tps[j := inscribe (tps ! j) zs])" shows "transforms (tm_print j zs) tps (length zs) tps'" using assms transforms_tm_print by simp subsection ‹Setting the tape contents to a symbol sequence› text ‹ following Turing machine erases the tape, then prints a hard-coded sequence, and then performs a carriage return. It thus sets tape contents to the symbol sequence. › definition tm_set :: "tapeidx ==> symbol list ==> machine" where "tm_set j zs ≡ tm_erase_cr j ;; tm_print j zs ;; tm_cr j" lemma tm_set_tm: assumes "0 < j" and "j < k" and "G ≥ 4" and "∀i<length zs. zs ! i < G" shows "turing_machine k G (tm_set j zs)" unfolding tm_set_def using assms tm_print_tm tm_erase_cr_tm tm_cr_tm by simp lemma transforms_tm_setI [transforms_intros]: assumes "j < length tps" and "clean_tape (tps ! j)" and "proper_symbols ys" and "proper_symbols zs" and "tps ::: j = ⌊ys⌋" and "t = 8 + tps :#: j + 2 * length ys + Suc (2 * length zs)" and "tps' = tps[j := (⌊zs⌋, 1)]" shows "transforms (tm_set j zs) tps t tps'" unfolding tm_set_def proof (tform tps: assms(1-5)) show "clean_tape (tps[j := (⌊[]⌋, 1), j := inscribe (tps[j := (⌊[]⌋, 1)] ! j) zs] ! j)" using assms inscribe_contents_Nil clean_contents_proper[OF assms(4)] by simp show "tps' = tps [j := (⌊[]⌋, 1), j := inscribe (tps[j := (⌊[]⌋, 1)] ! j) zs, j := tps[j := (⌊[]⌋, 1), j := inscribe (tps[j := (⌊[]⌋, 1)] ! j) zs] ! j |#=| 1]" using assms inscribe_def clean_tape_def assms contents_def inscribe_contents_Nil by simp show "t = tps :#: j + 2 * length ys + 6 + length zs + (tps[j := (⌊[]⌋, 1), j := inscribe (tps[j := (⌊[]⌋, 1)] ! j) zs] :#: j + 2)" using assms inscribe_def by simp qed subsection ‹Comparing two tapes\label{s:tm-elementary-comparing}› text ‹ next Turing machine compares the contents of two tapes $j_1$ and $j_2$ and to tape $j_3$ either a @{text 1} or a @{text ◻} depending on whether the are equal or not. The next command does all the work. It scans both tapes to right and halts if it encounters a blank on both tapes, which means the are equal, or two different symbols, which means the tapes are unequal. It works for contents without blanks. › definition cmd_cmp :: "tapeidx ==> tapeidx ==> tapeidx ==> command" where "cmd_cmp j1 j2 j3 rs ≡ if rs ! j1 ≠ rs ! j2 then (1, map (λi. (if i = j3 then ◻ else rs ! i, Stay)) [0..<length rs]) else if rs ! j1 = ◻ ∨ rs ! j2 = ◻ then (1, map (λi. (if i = j3 then 1 else rs ! i, Stay)) [0..<length rs]) else (0, map (λi. (rs ! i, if i = j1 ∨ i = j2 then Right else Stay)) [0..<length r lemma sem_cmd_cmp1: assumes "length tps = k" and "j1 < k" and "j2 < k" and "j3 < k" and "tps :.: j1 ≠ tps :.: j2" shows "sem (cmd_cmp j1 j2 j3) (0, tps) = (1, tps[j3 := tps ! j3 |:=| ◻])" unfolding cmd_cmp_def using assms tapes_at_read' act_Stay read_length by (intro semI) auto lemma sem_cmd_cmp2: assumes "length tps = k" and "j1 < k" and "j2 < k" and "j3 < k" and "tps :.: j1 = tps :.: j2" and "tps :.: j1 = ◻ ∨ tps :.: j2 = ◻" shows "sem (cmd_cmp j1 j2 j3) (0, tps) = (1, tps[j3 := tps ! j3 |:=| 1])" unfolding cmd_cmp_def using assms tapes_at_read' act_Stay read_length by (intro semI) auto lemma sem_cmd_cmp3: assumes "length tps = k" and "j2 ≠ j3" and "j1 ≠ j3" and "j1 < k" and "j2 < k" and "j3 < k" and "tps :.: j1 = tps :.: j2" and "tps :.: j1 ≠ ◻ ∧ tps :.: j2 ≠ ◻" shows "sem (cmd_cmp j1 j2 j3) (0, tps) = (0, tps[j1 := tps ! j1 |+| 1, j2 := tps proof (rule semI) show "proper_command k (cmd_cmp j1 j2 j3)" using cmd_cmp_def by simp show "length tps = k" using assms(1) . show "length (tps[j1 := tps ! j1 |+| 1, j2 := tps ! j2 |+| 1]) = k" using assms(1) by simp show "fst ((cmd_cmp j1 j2 j3) (read tps)) = 0" unfolding cmd_cmp_def using assms tapes_at_read' by simp show "act (cmd_cmp j1 j2 j3 (read tps) [!] j) (tps ! j) = tps[j1 := tps ! j1 |+| if "j < k" for j unfolding cmd_cmp_def using assms tapes_at_read' that act_Stay act_Right read_length by (cases "j1 = j2") simp_all qed definition tm_cmp :: "tapeidx ==> tapeidx ==> tapeidx ==> machine" where "tm_cmp j1 j2 j3 ≡ [cmd_cmp j1 j2 j3]" lemma tm_cmp_tm: assumes "k ≥ 2" and "j3 > 0" and "G ≥ 4" shows "turing_machine k G (tm_cmp j1 j2 j3)" unfolding tm_cmp_def cmd_cmp_def using assms turing_machine_def by auto lemma exe_cmd_cmp1: assumes "length tps = k" and "j1 < k" and "j2 < k" and "j3 < k" and "tps :.: j1 ≠ tps :.: j2" shows "exe (tm_cmp j1 j2 j3) (0, tps) = (1, tps[j3 := tps ! j3 |:=| ◻])" using tm_cmp_def assms exe_lt_length sem_cmd_cmp1 by simp lemma exe_cmd_cmp2: assumes "length tps = k" and "j1 < k" and "j2 < k" and "j3 < k" and "tps :.: j1 = tps :.: j2" and "tps :.: j1 = ◻ ∨ tps :.: j2 = ◻" shows "exe (tm_cmp j1 j2 j3) (0, tps) = (1, tps[j3 := tps ! j3 |:=| 1])" using tm_cmp_def assms exe_lt_length sem_cmd_cmp2 by simp lemma exe_cmd_cmp3: assumes "length tps = k" and "j2 ≠ j3" and "j1 ≠ j3" and "j1 < k" and "j2 < k" and "j3 < k" and "tps :.: j1 = tps :.: j2" and "tps :.: j1 ≠ ◻ ∧ tps :.: j2 ≠ ◻" shows "exe (tm_cmp j1 j2 j3) (0, tps) = (0, tps[j1 := tps ! j1 |+| 1, j2 := tps ! using tm_cmp_def assms exe_lt_length sem_cmd_cmp3 by simp lemma execute_tm_cmp_eq: fixes tps :: "tape list" assumes "length tps = k" and "j2 ≠ j3" and "j1 ≠ j3" and "j1 < k" and "j2 < k" and "j3 < k" and "proper_symbols xs" and "tps ! j1 = (⌊xs⌋, 1)" and "tps ! j2 = (⌊xs⌋, 1)" shows "execute (tm_cmp j1 j2 j3) (0, tps) (Suc (length xs)) = (1, tps[j1 := tps ! j1 |+| length xs, j2 := tps ! j2 |+| length xs, j3 := tps ! proof - have "execute (tm_cmp j1 j2 j3) (0, tps) t = (0, tps[j1 := tps ! j1 |+| t, j2 := if "t ≤ length xs" for t using that proof (induction t) case 0 then show ?case by simp next case (Suc t) then have t_less: "t < length xs" by simp have "execute (tm_cmp j1 j2 j3) (0, tps) (Suc t) = exe (tm_cmp j1 j2 j3) (execute by simp also have "... = exe (tm_cmp j1 j2 j3) (0, tps[j1 := tps ! j1 |+| t, j2 := tps ! j (is "_ = exe _ (0, ?tps)") using Suc by simp also have "... = (0, ?tps[j1 := ?tps ! j1 |+| 1, j2 := ?tps ! j2 |+| 1])" proof - have 1: "?tps :.: j1 = xs ! t" using assms(1,2,4,8) t_less Suc.prems contents_inbounds by (metis (no_types, lifting) diff_Suc_1 fst_conv length_list_update nth_list_update_eq nth_list_update_neq plus_1_eq_Suc snd_conv zero_less_Suc) moreover have 2: "?tps :.: j2 = xs ! t" using t_less assms(1,5,9) by simp ultimately have "?tps :.: j1 = ?tps :.: j2" by simp moreover have "?tps :.: j1 ≠ 0 ∧ ?tps :.: j2 ≠ 0" using 1 2 assms(7) t_less by auto moreover have "length ?tps = k" using assms(1) by simp ultimately show ?thesis using assms exe_cmd_cmp3 by blast qed also have "... = (0, tps[j1 := tps ! j1 |+| Suc t, j2 := tps ! j2 |+| Suc t])" using assms by (smt (verit) Suc_eq_plus1 add.commute fst_conv list_update_overwrite list_update_swa nth_list_update_eq nth_list_update_neq snd_conv) finally show ?case by simp qed then have "execute (tm_cmp j1 j2 j3) (0, tps) (length xs) = (0, tps[j1 := tps ! j1 |+| length xs, j2 := tps ! j2 |+| length xs])" by simp then have "execute (tm_cmp j1 j2 j3) (0, tps) (Suc (length xs)) = exe (tm_cmp j1 j2 j3) (0, tps[j1 := tps ! j1 |+| length xs, j2 := tps ! j2 |+| l (is "_ = exe _ (0, ?tps)") by simp also have "... = (1, ?tps[j3 := ?tps ! j3 |:=| 1])" proof - have 1: "?tps :.: j1 = 0" using assms(1,4,8) contents_outofbounds by (metis fst_conv length_list_update lessI nth_list_update_eq nth_list_update_neq plus moreover have 2: "?tps :.: j2 = 0" using assms(1,5,9) by simp ultimately have "?tps :.: j1 = ?tps :.: j2" "?tps :.: j1 = ◻ ∨ ?tps :.: j2 = ◻" by simp_all moreover have "length ?tps = k" using assms(1) by simp ultimately show ?thesis using assms exe_cmd_cmp2 by blast qed also have "... = (1, tps[j1 := tps ! j1 |+| length xs, j2 := tps ! j2 |+| length x using assms by simp finally show ?thesis . qed lemma ex_contents_neq: assumes "proper_symbols xs" and "proper_symbols ys" and "xs ≠ ys" shows "∃m. m ≤ Suc (min (length xs) (length ys)) ∧ ⌊xs⌋ m ≠ ⌊ys⌋ m" proof - consider "length xs < length ys" | "length xs = length ys" | "length xs > length ys" by linarith then show ?thesis proof (cases) case 1 let ?m = "length xs" have "⌊xs⌋ (Suc ?m) = ◻" by simp moreover have "⌊ys⌋ (Suc ?m) ≠ ◻" using 1 assms(2) by (simp add: proper_symbols_ne0) ultimately show ?thesis using 1 by auto next case 2 then have "∃i<length xs. xs ! i ≠ ys ! i" using assms by (meson list_eq_iff_nth_eq) then show ?thesis using contents_def 2 by auto next case 3 let ?m = "length ys" have "⌊ys⌋ (Suc ?m) = ◻" by simp moreover have "⌊xs⌋ (Suc ?m) ≠ ◻" using 3 assms(1) by (simp add: proper_symbols_ne0) ultimately show ?thesis using 3 by auto qed qed lemma execute_tm_cmp_neq: fixes tps :: "tape list" assumes "length tps = k" and "j1 ≠ j2" and "j2 ≠ j3" and "j1 ≠ j3" and "j1 < k" and "j2 < k" and "j3 < k" and "proper_symbols xs" and "proper_symbols ys" and "xs ≠ ys" and "tps ! j1 = (⌊xs⌋, 1)" and "tps ! j2 = (⌊ys⌋, 1)" and "m = (LEAST m. m ≤ Suc (min (length xs) (length ys)) ∧ ⌊xs⌋ m ≠ ⌊ys⌋ m)" shows "execute (tm_cmp j1 j2 j3) (0, tps) m = (1, tps[j1 := tps ! j1 |+| (m - 1), j2 := tps ! j2 |+| (m - 1), j3 := tps ! j3 | proof - have neq: "⌊xs⌋ m ≠ ⌊ys⌋ m" using ex_contents_neq[OF assms(8-10)] assms(13) by (metis (mono_tags, lifting) LeastI_ex have eq: "⌊xs⌋ i = ⌊ys⌋ i" if "i < m" for i using ex_contents_neq[OF assms(8-10)] assms(13) not_less_Least that by (smt (verit) Least have "m > 0" using neq contents_def gr0I by metis have "execute (tm_cmp j1 j2 j3) (0, tps) t = (0, tps[j1 := tps ! j1 |+| t, j2 := if "t < m" for t using that proof (induction t) case 0 then show ?case by simp next case (Suc t) have "execute (tm_cmp j1 j2 j3) (0, tps) (Suc t) = exe (tm_cmp j1 j2 j3) (execute by simp also have "... = exe (tm_cmp j1 j2 j3) (0, tps[j1 := tps ! j1 |+| t, j2 := tps ! j (is "_ = exe _ (0, ?tps)") using Suc by simp also have "... = (0, ?tps[j1 := ?tps ! j1 |+| 1, j2 := ?tps ! j2 |+| 1])" proof - have 1: "?tps :.: j1 = ⌊xs⌋ (Suc t)" using assms(1,2,5,11) by simp moreover have 2: "?tps :.: j2 = ⌊ys⌋ (Suc t)" using assms(1,6,12) by simp ultimately have "?tps :.: j1 = ?tps :.: j2" using Suc eq by simp moreover from this have "?tps :.: j1 ≠ ◻ ∧ ?tps :.: j2 ≠ ◻" using 1 2 assms neq Suc.prems contents_def by (smt (verit) Suc_leI Suc_le_lessD Suc_lessD diff_Suc_1 le_trans less_nat_zero_code zer moreover have "length ?tps = k" using assms(1) by simp ultimately show ?thesis using assms exe_cmd_cmp3 by blast qed also have "... = (0, tps[j1 := tps ! j1 |+| Suc t, j2 := tps ! j2 |+| Suc t])" using assms by (smt (verit) Suc_eq_plus1 add.commute fst_conv list_update_overwrite list_update_swa nth_list_update_eq nth_list_update_neq snd_conv) finally show ?case by simp qed then have "execute (tm_cmp j1 j2 j3) (0, tps) (m - 1) = (0, tps[j1 := tps ! j1 |+| (m - 1), j2 := tps ! j2 |+| (m - 1)])" using `m > 0` by simp then have "execute (tm_cmp j1 j2 j3) (0, tps) m = exe (tm_cmp j1 j2 j3) (0, tps[j1 := tps ! j1 |+| (m - 1), j2 := tps ! j2 |+| (m using `m > 0` by (metis contents_at_0 diff_Suc_1 execute.elims neq) then show "execute (tm_cmp j1 j2 j3) (0, tps) m = (1, tps[j1 := tps ! j1 |+| (m - 1), j2 := tps ! j2 |+| (m - 1), j3 := tps ! j3 | using exe_cmd_cmp1 assms ‹0 < m› by (smt (verit) One_nat_def Suc_diff_Suc diff_zero fst_conv length_list_update neq nth_li nth_list_update_neq plus_1_eq_Suc snd_conv) qed lemma transforms_tm_cmpI [transforms_intros]: fixes tps :: "tape list" assumes "length tps = k" and "j1 ≠ j2" and "j2 ≠ j3" and "j1 ≠ j3" and "j1 < k" and "j2 < k" and "j3 < k" and "proper_symbols xs" and "proper_symbols ys" and "tps ! j1 = (⌊xs⌋, 1)" and "tps ! j2 = (⌊ys⌋, 1)" and "t = Suc (min (length xs) (length ys))" and "b = (if xs = ys then 1 else ◻)" and "m = (if xs = ys then Suc (length xs) else (LEAST m. m ≤ Suc (min (length xs) (length ys)) ∧ ⌊xs⌋ m ≠ ⌊ys⌋ m))" and "tps' = tps[j1 := (⌊xs⌋, m), j2 := (⌊ys⌋, m), j3 := tps ! j3 |:=| b]" shows "transforms (tm_cmp j1 j2 j3) tps t tps'" proof (cases "xs = ys") case True then have m: "m = Suc (length xs)" using assms(14) by simp have "execute (tm_cmp j1 j2 j3) (0, tps) (Suc (length xs)) = (1, tps[j1 := tps ! j1 |+| length xs, j2 := tps ! j2 |+| length xs, j3 := tps ! using execute_tm_cmp_eq assms True by blast then have "execute (tm_cmp j1 j2 j3) (0, tps) m = (1, tps[j1 := tps ! j1 |+| (m - 1), j2 := tps ! j2 |+| (m - 1), j3 := tps ! j3 | using m assms(13) True diff_Suc_1 by simp moreover have "m ≤ t" using True assms(12) m by simp ultimately show ?thesis using transitsI tm_cmp_def transforms_def assms True by (metis (no_types, lifting) One_nat_def add.commute diff_Suc_1 fst_conv list.size(3) li next case False then have m: "m = (LEAST m. m ≤ Suc (min (length xs) (length ys)) ∧ ⌊xs⌋ m ≠ ⌊ys⌋ m)" using assms(14) by simp then have "execute (tm_cmp j1 j2 j3) (0, tps) m = (1, tps[j1 := tps ! j1 |+| (m - 1), j2 := tps ! j2 |+| (m - 1), j3 := tps ! j3 | using False assms execute_tm_cmp_neq by blast then have "execute (tm_cmp j1 j2 j3) (0, tps) m = (1, tps[j1 := tps ! j1 |+| (m - 1), j2 := tps ! j2 |+| (m - 1), j3 := tps ! j3 | using False by (simp add: assms(13)) moreover have "m ≤ t" using ex_contents_neq[OF assms(8,9)] False assms(12) m by (metis (mono_tags, lifting) Leas ultimately show ?thesis using transitsI tm_cmp_def transforms_def assms False by (metis (no_types, lifting) One_nat_def Suc_eq_plus1 Suc_pred add.commute execute.simp fst_eqD list.size(3) list.size(4) not_gr0 numeral_One snd_conv zero_neq_numeral) qed text ‹ next Turing machine extends @{const tm_cmp} by a carriage return on tapes j_1$ and $j_2$, ensuring that the next command finds the tape heads in a -specified position. This makes the TM easier to reuse. › definition tm_equals :: "tapeidx ==> tapeidx ==> tapeidx ==> machine" where "tm_equals j1 j2 j3 ≡ tm_cmp j1 j2 j3 ;; tm_cr j1 ;; tm_cr j2" lemma tm_equals_tm: assumes "k ≥ 2" and "j3 > 0" and "G ≥ 4" shows "turing_machine k G (tm_equals j1 j2 j3)" unfolding tm_equals_def using tm_cmp_tm tm_cr_tm assms by simp text ‹ analyze the behavior of @{const tm_equals} inside a locale. This is how we typically proceed for Turing machines that are composed of more than two . The locale is parameterized by the TM's parameters, which in the present means the three tape indices $j_1$, $j_2$, and $j_3$. Inside the locale TM is decomposed such that proofs of @{const transforms} only involve two combined by one of the three control structures (sequence, branch, loop). the current example we have three TMs named @{term tm1}, @{term tm2}, @{term }, where @{term tm3} is just @{const tm_equals}. Furthermore there will be \emph{tm1}, \emph{tm2}, \emph{tm3} describing, in terms of @{const }, the behavior of the respective TMs. For this we define three tape @{term tps1}, @{term tps2}, @{term tps3}. naming scheme creates many name clashes for things that only have a single . That is the reason for the encapsulation in a locale. this locale is interpreted, just once in lemma~@{text }, to prove the semantics and running time of @{const }. null › locale turing_machine_equals = fixes j1 j2 j3 :: tapeidx begin definition "tm1 ≡ tm_cmp j1 j2 j3" definition "tm2 ≡ tm1 ;; tm_cr j1" definition "tm3 ≡ tm2 ;; tm_cr j2" lemma tm3_eq_tm_equals: "tm3 = tm_equals j1 j2 j3" unfolding tm3_def tm2_def tm1_def tm_equals_def by simp context fixes tps0 :: "tape list" and k t b :: nat and xs ys :: "symbol list" assumes jk [simp]: "length tps0 = k" "j1 ≠ j2" "j2 ≠ j3" "j1 ≠ j3" "j1 < k" "j2 < k" "j3 < k and proper: "proper_symbols xs" "proper_symbols ys" and t: "t = Suc (min (length xs) (length ys))" and b: "b = (if xs = ys then 3 else 0)" assumes tps0: "tps0 ! j1 = (⌊xs⌋, 1)" "tps0 ! j2 = (⌊ys⌋, 1)" begin definition "m ≡ (if xs = ys then Suc (length xs) else (LEAST m. m ≤ Suc (min (length xs) (length ys)) ∧ ⌊xs⌋ m ≠ ⌊ys⌋ m))" lemma m_gr_0: "m > 0" proof - have "⌊xs⌋ m ≠ ⌊ys⌋ m" if "xs ≠ ys" using ex_contents_neq LeastI_ex m_def proper that by (metis (mono_tags, lifting)) then show "m > 0" using m_def by (metis contents_at_0 gr0I less_Suc_eq_0_disj) qed lemma m_le_t: "m ≤ t" proof (cases "xs = ys") case True then show ?thesis using t m_def by simp next case False then have "m ≤ Suc (min (length xs) (length ys))" using ex_contents_neq False proper m_def by (metis (mono_tags, lifting) LeastI_ex) then show ?thesis using t by simp qed definition "tps1 ≡ tps0[j1 := (⌊xs⌋, m), j2 := (⌊ys⌋, m), j3 := tps0 ! j3 |:=| b]" lemma tm1 [transforms_intros]: "transforms tm1 tps0 t tps1" unfolding tm1_def proof (tform tps: tps0 tps1_def m_def b time: t) show "proper_symbols xs" "proper_symbols ys" using proper by simp_all qed definition "tps2 ≡ tps0[j1 := (⌊xs⌋, 1), j2 := (⌊ys⌋, m), j3 := tps0 ! j3 |:=| b]" lemma tm2: assumes "ttt = t + m + 2" shows "transforms tm2 tps0 ttt tps2" unfolding tm2_def proof (tform tps: tps1_def) show "clean_tape (tps1 ! j1)" using tps1_def clean_contents_proper jk proper(1) by (metis nth_list_update_eq nth_list_update_neq) show "ttt = t + (tps1 :#: j1 + 2)" using tps1_def tps0 jk assms by (metis (no_types, lifting) ab_semigroup_add_class.add_ac(1) nth_list_update_eq nth_ show "tps2 = tps1[j1 := tps1 ! j1 |#=| 1]" unfolding tps2_def tps1_def by (simp add: list_update_swap[of j1]) qed lemma tm2' [transforms_intros]: "transforms tm2 tps0 (2 * t + 2) tps2" using m_le_t tm2 transforms_monotone by simp definition "tps3 ≡ tps0[j1 := (⌊xs⌋, 1), j2 := (⌊ys⌋, 1), j3 := tps0 ! j3 |:=| b]" lemma tm3: assumes "ttt = 2 * t + m + 4" shows "transforms tm3 tps0 ttt tps3" unfolding tm3_def proof (tform tps: tps2_def tps3_def) have *: "tps2 ! j2 = (⌊ys⌋, m)" using tps2_def by (simp add: nth_list_update_neq') then show "clean_tape (tps2 ! j2)" using clean_contents_proper proper(2) by simp show "ttt = 2 * t + 2 + (tps2 :#: j2 + 2)" using assms * by simp show "tps3 = tps2[j2 := tps2 ! j2 |#=| 1]" unfolding tps3_def tps2_def by (simp add: list_update_swap[of j2]) qed definition "tps3' ≡ tps0[j3 := tps0 ! j3 |:=| b]" lemma tm3': "transforms tm3 tps0 (3 * min (length xs) (length ys) + 7) tps3'" proof - have "tps3' = tps3" using tps3'_def tps3_def tps0 jk by (metis list_update_id) then show ?thesis using m_le_t tm3 transforms_monotone t by simp qed end (* context tps0 k xs ys *) end (* locale turing_machine_equals *) lemma transforms_tm_equalsI [transforms_intros]: fixes j1 j2 j3 :: tapeidx fixes tps tps' :: "tape list" and k :: nat and xs ys :: "symbol list" and b :: symbol assumes "length tps = k" "j1 ≠ j2" "j2 ≠ j3" "j1 ≠ j3" "j1 < k" "j2 < k" "j3 < k" and "proper_symbols xs" "proper_symbols ys" and "b = (if xs = ys then 1 else ◻)" assumes "tps ! j1 = (⌊xs⌋, 1)" "tps ! j2 = (⌊ys⌋, 1)" assumes "ttt = 3 * min (length xs) (length ys) + 7" assumes "tps' = tps [j3 := tps ! j3 |:=| b]" shows "transforms (tm_equals j1 j2 j3) tps ttt tps'" proof - interpret loc: turing_machine_equals j1 j2 j3 . show ?thesis using assms loc.tm3' loc.tm3_eq_tm_equals loc.tps3'_def by simp qed subsection ‹Computing the identity function› text ‹ order to compute the identity function, a Turing machine can just copy the tape to the output tape: › definition tm_id :: machine where "tm_id ≡ tm_cp_until 0 1 {◻}" lemma tm_id_tm: assumes "1 < k" and "G ≥ 4" shows "turing_machine k G tm_id" unfolding tm_id_def using assms tm_cp_until_tm by simp lemma transforms_tm_idI: fixes zs :: "symbol list" and k :: nat and tps :: "tape list" assumes "1 < k" and "proper_symbols zs" and "tps = snd (start_config k zs)" and "tps' = tps[0 := (⌊zs⌋, (Suc (length zs))), 1 := (⌊zs⌋, (Suc (length zs)))]" shows "transforms tm_id tps (Suc (Suc (length zs))) tps'" proof - let ?n = "Suc (length zs)" define tps2 where "tps2 = tps[0 := tps ! 0 |+| (Suc (length zs)), 1 := implant (tps ! 0) (tps ! 1) have 1: "rneigh (tps ! 0) {◻} ?n" proof (rule rneighI) show "(tps ::: 0) (tps :#: 0 + Suc (length zs)) ∈ {◻}" using start_config2 start_config3 assms by (simp add: start_config_def) show "∧n'. n' < Suc (length zs) ==> (tps ::: 0) (tps :#: 0 + n') ∉ {◻}" using start_config2 start_config3 start_config_pos assms by (metis One_nat_def Suc_lessD add_cancel_right_left diff_Suc_1 less_Suc_eq_0_disj les qed have 2: "length tps = k" using assms(1,3) by (simp add: start_config_length) have **: "transforms tm_id tps (Suc ?n) tps2" unfolding tm_id_def using transforms_tm_cp_untilI[OF _ assms(1) 2 1 _ tps2_def] assms(1) by have 0: "tps ! 0 = (⌊zs⌋, 0)" using assms start_config_def contents_def by auto moreover have "tps ! 1 = (⌊[]⌋, 0)" using assms start_config_def contents_def by auto moreover have "implant (⌊zs⌋, 0) (⌊[]⌋, 0) ?n = (⌊zs⌋, ?n)" by (rule implantI''') simp_all ultimately have "implant (tps ! 0) (tps ! 1) ?n = (⌊zs⌋, ?n)" by simp then have "tps2 = tps[0 := tps ! 0 |+| ?n, 1 := (⌊zs⌋, ?n)]" using tps2_def by simp then have "tps2 = tps[0 := (⌊zs⌋, ?n), 1 := (⌊zs⌋, ?n)]" using 0 by simp then have "tps2 = tps'" using assms(4) by simp then show ?thesis using ** by simp qed text ‹ identity function is computable with a time bound of $n + 2$. › lemma computes_id: "computes_in_time 2 tm_id id (λn. Suc (Suc n))" proof fix x :: string let ?zs = "string_to_symbols x" let ?start = "snd (start_config 2 ?zs)" let ?T = "λn. Suc (Suc n)" let ?tps = "?start[0 := (⌊?zs⌋, (Suc (length ?zs))), 1 := (⌊?zs⌋, (Suc (length ?zs)))]" have "proper_symbols ?zs" by simp then have "transforms tm_id ?start (Suc (Suc (length ?zs))) ?tps" using transforms_tm_idI One_nat_def less_2_cases_iff by blast then have "transforms tm_id ?start (?T (length x)) ?tps" by simp moreover have "?tps ::: 1 = string_to_contents (id x)" by (auto simp add: start_config_length) ultimately show "∃tps. tps ::: 1 = string_to_contents (id x) ∧ transforms tm_id ?s by auto qed end
¤ Dauer der Verarbeitung: 0.65 Sekunden (vorverarbeitet am 2026-06-10) ¤*© Formatika GbR, Deutschland |
|
||||||||||||||
2026-06-09