Your solution works for me and is quite readable. Thanks for helping!


On 11/16/2012 03:17 PM, Makarius wrote:
On Fri, 16 Nov 2012, Stephan van Staden wrote:

Using allI twice (or with +) does not work for me, but clarify does the job perfectly. Thanks a lot!

Putting automated tools like "clarify" or "auto" in the initial "proof" position is actually an anti-pattern of structured proofs. Sometimes it cannot be avoided, but it should not be done by default.

Instead, the usual way is to make a bottom-up proof with automated re-composition like this:


  have "∀(a, b) ∈ S. P"
  proof -
      fix a b
      assume "(a, b) ∈ S"
      have P sorry
    then show ?thesis
      by auto  -- "terminal auto, instead of initial clarify etc."


This can also cause surprises sometimes, especially with too general types for the body within { ... }, but it usually works in a reasonably robust way, and does not depend on the details of what automation does.


