Theory Typing_Result

(*  Title:      Typing_Result.thy
    Author:     Andreas Viktor Hess, DTU
    SPDX-License-Identifier: BSD-3-Clause
*)

section ‹The Typing Result›
text‹\label{sec:Typing-Result}›
theory Typing_Result
imports Typed_Model
begin

subsection ‹Locale Setup›
locale typing_result = typed_model arity public Ana Γ
  for arity::"'fun ⇒ nat"
    and public::"'fun ⇒ bool"
    and Ana::"('fun,'var) term ⇒ (('fun,'var) term list × ('fun,'var) term list)"
    and Γ::"('fun,'var) term ⇒ ('fun,'atom::finite) term_type"
  +
  assumes infinite_typed_consts: "⋀a. infinite {c. Γ (Fun c []) = TAtom a ∧ public c}"
    and no_private_funs[simp]: "⋀f. arity f > 0 ⟹ public f"
begin

subsubsection ‹Minor Lemmata›

lemma fun_type_inv': assumes "Γ t = TComp f T" shows "arity f > 0" "public f"
using assms fun_type_inv by simp_all

lemma infinite_public_consts[simp]: "infinite {c. public c ∧ arity c = 0}"
proof -
  fix a::'atom
  define A where "A ≡ {c. Γ (Fun c []) = TAtom a ∧ public c}"
  define B where "B ≡ {c. public c ∧ arity c = 0}"

  have "arity c = 0" when c: "c ∈ A" for c
    using c const_type_inv unfolding A_def by blast
  hence "A ⊆ B" unfolding A_def B_def by blast
  hence "infinite B"
    using infinite_typed_consts[of a, unfolded A_def[symmetric]]
    by (metis infinite_super)
  thus ?thesis unfolding B_def by blast
qed

lemma infinite_fun_syms[simp]:
  "infinite {c. public c ∧ arity c > 0} ⟹ infinite Σ⇩f"
  "infinite 𝒞" "infinite 𝒞⇩p⇩u⇩b" "infinite (UNIV::'fun set)"
by (metis Σ⇩f_unfold finite_Collect_conjI,
    metis infinite_public_consts finite_Collect_conjI,
    use infinite_public_consts 𝒞pub_unfold in ‹force simp add: Collect_conj_eq›,
    metis UNIV_I finite_subset subsetI infinite_public_consts(1))

lemma id_univ_proper_subset[simp]: "Σ⇩f ⊂ UNIV" "(∃f. arity f > 0) ⟹ 𝒞 ⊂ UNIV"
by (metis finite.emptyI inf_top.right_neutral top.not_eq_extremum disjoint_fun_syms
          infinite_fun_syms(2) inf_commute)
   (metis top.not_eq_extremum UNIV_I const_arity_eq_zero less_irrefl)

lemma exists_fun_notin_funs_term: "∃f::'fun. f ∉ funs_term t"
by (metis UNIV_eq_I finite_fun_symbols infinite_fun_syms(4))

lemma exists_fun_notin_funs_terms:
  assumes "finite M" shows "∃f::'fun. f ∉ ⋃(funs_term ` M)"
by (metis assms finite_fun_symbols infinite_fun_syms(4) ex_new_if_finite finite_UN)

lemma exists_notin_funs⇩s⇩t: "∃f. f ∉ funs⇩s⇩t (S::('fun,'var) strand)"
by (metis UNIV_eq_I finite_funs⇩s⇩t infinite_fun_syms(4))

lemma infinite_typed_consts': "infinite {c. Γ (Fun c []) = TAtom a ∧ public c ∧ arity c = 0}"
proof -
  { fix c assume "Γ (Fun c []) = TAtom a" "public c"
    hence "arity c = 0" using const_type[of c] fun_type[of c "[]"] by auto
  } hence "{c. Γ (Fun c []) = TAtom a ∧ public c ∧ arity c = 0} =
           {c. Γ (Fun c []) = TAtom a ∧ public c}"
    by auto
  thus "infinite {c. Γ (Fun c []) = TAtom a ∧ public c ∧ arity c = 0}"
    using infinite_typed_consts[of a] by metis
qed

lemma atypes_inhabited: "∃c. Γ (Fun c []) = TAtom a ∧ wf⇩t⇩r⇩m (Fun c []) ∧ public c ∧ arity c = 0"
proof -
  obtain c where "Γ (Fun c []) = TAtom a" "public c" "arity c = 0"
    using infinite_typed_consts'(1)[of a] not_finite_existsD by blast
  thus ?thesis using const_type_inv[OF ‹Γ (Fun c []) = TAtom a›] unfolding wf⇩t⇩r⇩m_def by auto
qed

lemma atype_ground_term_ex: "∃t. fv t = {} ∧ Γ t = TAtom a ∧ wf⇩t⇩r⇩m t"
using atypes_inhabited[of a] by force

lemma type_ground_inhabited: "∃t'. fv t' = {} ∧ Γ t = Γ t'"
proof -
  { fix τ::"('fun, 'atom) term_type" assume "⋀f T. Fun f T ⊑ τ ⟹ 0 < arity f"
    hence "∃t'. fv t' = {} ∧ τ = Γ t'"
    proof (induction τ)
      case (Fun f T)
      hence "arity f > 0" by auto
    
      from Fun.IH Fun.prems(1) have "∃Y. map Γ Y = T ∧ (∀x ∈ set Y. fv x = {})"
      proof (induction T)
        case (Cons x X)
        hence "⋀g Y. Fun g Y ⊑ Fun f X ⟹ 0 < arity g" by auto
        hence "∃Y. map Γ Y = X ∧ (∀x∈set Y. fv x = {})" using Cons by auto
        moreover have "∃t'. fv t' = {} ∧ x = Γ t'" using Cons by auto
        ultimately obtain y Y where
            "fv y = {}" "Γ y = x" "map Γ Y = X" "∀x∈set Y. fv x = {}" 
          using Cons by atomize_elim auto
        hence "map Γ (y#Y) = x#X ∧ (∀x∈set (y#Y). fv x = {})" by auto
        thus ?case by meson 
      qed simp
      then obtain Y where "map Γ Y = T" "∀x ∈ set Y. fv x = {}" by metis
      hence "fv (Fun f Y) = {}" "Γ (Fun f Y) = TComp f T" using fun_type[OF ‹arity f > 0›] by auto
      thus ?case by (metis exI[of "λt. fv t = {} ∧ Γ t = TComp f T" "Fun f Y"])
    qed (metis atype_ground_term_ex)
  }
  thus ?thesis by (metis Γ_wf'')
qed

lemma type_wfttype_inhabited:
  assumes "⋀f T. Fun f T ⊑ τ ⟹ 0 < arity f" "wf⇩t⇩r⇩m τ"
  shows "∃t. Γ t = τ ∧ wf⇩t⇩r⇩m t"
using assms
proof (induction τ)
  case (Fun f Y)
  have IH: "∃t. Γ t = y ∧ wf⇩t⇩r⇩m t" when y: "y ∈ set Y " for y
  proof -
    have "wf⇩t⇩r⇩m y"
      using Fun y unfolding wf⇩t⇩r⇩m_def
      by (metis Fun_param_is_subterm term.le_less_trans) 
    moreover have "Fun g Z ⊑ y ⟹ 0 < arity g" for g Z
      using Fun y by auto
    ultimately show ?thesis using Fun.IH[OF y] by auto
  qed

  from Fun have "arity f = length Y" "arity f > 0" unfolding wf⇩t⇩r⇩m_def by force+
  moreover from IH have "∃X. map Γ X = Y ∧ (∀x ∈ set X. wf⇩t⇩r⇩m x)"
    by (induct Y, simp_all, metis list.simps(9) set_ConsD)
  ultimately show ?case by (metis fun_type length_map wf_trmI)
qed (use atypes_inhabited wf⇩t⇩r⇩m_def in blast)

lemma type_pgwt_inhabited: "wf⇩t⇩r⇩m t ⟹ ∃t'. Γ t = Γ t' ∧ public_ground_wf_term t'"
proof -
  assume "wf⇩t⇩r⇩m t"
  { fix τ assume "Γ t = τ"
    hence "∃t'. Γ t = Γ t' ∧ public_ground_wf_term t'" using ‹wf⇩t⇩r⇩m t›
    proof (induction τ arbitrary: t)
      case (Var a t)
      then obtain c where "Γ t = Γ (Fun c [])" "arity c = 0" "public c"
        using const_type_inv[of _ "[]" a] infinite_typed_consts(1)[of a]  not_finite_existsD
        by force
      thus ?case using PGWT[OF ‹public c›, of "[]"] by auto
    next
      case (Fun f Y t)
      have *: "arity f > 0" "public f" "arity f = length Y"
        using fun_type_inv[OF ‹Γ t = TComp f Y›] fun_type_inv_wf[OF ‹Γ t = TComp f Y› ‹wf⇩t⇩r⇩m t›]
        by auto
      have "⋀y. y ∈ set Y ⟹ ∃t'. y = Γ t' ∧ public_ground_wf_term t'"
        using Fun.prems(1) Fun.IH Γ_wf''[of _ _ t] Γ_wf'[OF ‹wf⇩t⇩r⇩m t›] type_wfttype_inhabited
        by (metis Fun_param_is_subterm term.order_trans wf_trm_subtermeq) 
      hence "∃X. map Γ X = Y ∧ (∀x ∈ set X. public_ground_wf_term x)"
        by (induct Y, simp_all, metis list.simps(9) set_ConsD)
      then obtain X where X: "map Γ X = Y" "⋀x. x ∈ set X ⟹ public_ground_wf_term x" by atomize_elim auto
      hence "arity f = length X" using *(3) by auto
      have "Γ t = Γ (Fun f X)" "public_ground_wf_term (Fun f X)"
        using fun_type[OF *(1), of X] Fun.prems(1) X(1) apply simp
        using PGWT[OF *(2) ‹arity f = length X› X(2)] by metis
      thus ?case by metis
    qed
  }
  thus ?thesis using ‹wf⇩t⇩r⇩m t› by auto
qed

end

subsection ‹The Typing Result for the Composition-Only Intruder›
context typing_result
begin

subsubsection ‹Well-typedness and Type-Flaw Resistance Preservation›
context
begin

private lemma LI_preserves_tfr_stp_all_single:
  assumes "(S,θ) ↝ (S',θ')" "wf⇩c⇩o⇩n⇩s⇩t⇩r S θ" "wt⇩s⇩u⇩b⇩s⇩t θ"
  and "list_all tfr⇩s⇩t⇩p S" "tfr⇩s⇩e⇩t (trms⇩s⇩t S)" "wf⇩t⇩r⇩m⇩s (trms⇩s⇩t S)"
  shows "list_all tfr⇩s⇩t⇩p S'"
using assms
proof (induction rule: LI_rel.induct)
  case (Compose S X f S' θ)
  hence "list_all tfr⇩s⇩t⇩p S" "list_all tfr⇩s⇩t⇩p S'" by simp_all
  moreover have "list_all tfr⇩s⇩t⇩p (map Send1 X)" by (induct X) auto
  ultimately show ?case by simp
next
  case (Unify S f Y δ X S' θ)
  hence "list_all tfr⇩s⇩t⇩p (S@S')" by simp

  have "fv⇩s⇩t (S@Send1 (Fun f X)#S') ∩ bvars⇩s⇩t (S@S') = {}"
    using Unify.prems(1) by (auto simp add: wf⇩c⇩o⇩n⇩s⇩t⇩r_def)
  moreover have "fv (Fun f X) ⊆ fv⇩s⇩t (S@Send1 (Fun f X)#S')" by auto
  moreover have "fv (Fun f Y) ⊆ fv⇩s⇩t (S@Send1 (Fun f X)#S')"
    using Unify.hyps(2) fv_subset_if_in_strand_ik'[of "Fun f Y" S] by force
  ultimately have bvars_disj:
      "bvars⇩s⇩t (S@S') ∩ fv (Fun f X) = {}" "bvars⇩s⇩t (S@S') ∩ fv (Fun f Y) = {}"
    by blast+

  have "wf⇩t⇩r⇩m (Fun f X)" using Unify.prems(5) by simp
  moreover have "wf⇩t⇩r⇩m (Fun f Y)"
  proof -
    obtain x where "x ∈ set S" "Fun f Y ∈ subterms⇩s⇩e⇩t (trms⇩s⇩t⇩p x)" "wf⇩t⇩r⇩m⇩s (trms⇩s⇩t⇩p x)"
      using Unify.hyps(2) Unify.prems(5) by force+
    thus ?thesis using wf_trm_subterm by auto
  qed
  moreover have
      "Fun f X ∈ SMP (trms⇩s⇩t (S@Send1 (Fun f X)#S'))"
      "Fun f Y ∈ SMP (trms⇩s⇩t (S@Send1 (Fun f X)#S'))"
    using SMP_append[of S "Send1 (Fun f X)#S'"] SMP_Cons[of "Send1 (Fun f X)" S']
          SMP_ikI[OF Unify.hyps(2)]
    by auto
  hence "Γ (Fun f X) = Γ (Fun f Y)"
    using Unify.prems(4) mgu_gives_MGU[OF Unify.hyps(3)[symmetric]]
    unfolding tfr⇩s⇩e⇩t_def by blast
  ultimately have "wt⇩s⇩u⇩b⇩s⇩t δ" using mgu_wt_if_same_type[OF Unify.hyps(3)[symmetric]] by metis
  moreover have "wf⇩t⇩r⇩m⇩s (subst_range δ)"
    using mgu_wf_trm[OF Unify.hyps(3)[symmetric] ‹wf⇩t⇩r⇩m (Fun f X)› ‹wf⇩t⇩r⇩m (Fun f Y)›]
    by (metis wf_trm_subst_range_iff)
  moreover have "bvars⇩s⇩t (S@S') ∩ range_vars δ = {}"
    using mgu_vars_bounded[OF Unify.hyps(3)[symmetric]] bvars_disj by fast
  ultimately show ?case using tfr_stp_all_wt_subst_apply[OF ‹list_all tfr⇩s⇩t⇩p (S@S')›] by metis
next
  case (Equality S δ t t' a S' θ)
  have "list_all tfr⇩s⇩t⇩p (S@S')" "Γ t = Γ t'"
    using tfr_stp_all_same_type[of S a t t' S']
          tfr_stp_all_split(5)[of S _ S']
          MGU_is_Unifier[OF mgu_gives_MGU[OF Equality.hyps(2)[symmetric]]]
          Equality.prems(3)
    by blast+
  moreover have "wf⇩t⇩r⇩m t" "wf⇩t⇩r⇩m t'" using Equality.prems(5) by auto
  ultimately have "wt⇩s⇩u⇩b⇩s⇩t δ"
    using mgu_wt_if_same_type[OF Equality.hyps(2)[symmetric]]
    by metis
  moreover have "wf⇩t⇩r⇩m⇩s (subst_range δ)"
    using mgu_wf_trm[OF Equality.hyps(2)[symmetric] ‹wf⇩t⇩r⇩m t› ‹wf⇩t⇩r⇩m t'›]
    by (metis wf_trm_subst_range_iff)
  moreover have "fv⇩s⇩t (S@Equality a t t'#S') ∩ bvars⇩s⇩t (S@Equality a t t'#S') = {}"
    using Equality.prems(1) by (auto simp add: wf⇩c⇩o⇩n⇩s⇩t⇩r_def)
  hence "bvars⇩s⇩t (S@S') ∩ fv t = {}" "bvars⇩s⇩t (S@S') ∩ fv t' = {}" by auto
  hence "bvars⇩s⇩t (S@S') ∩ range_vars δ = {}"
    using mgu_vars_bounded[OF Equality.hyps(2)[symmetric]] by fast
  ultimately show ?case using tfr_stp_all_wt_subst_apply[OF ‹list_all tfr⇩s⇩t⇩p (S@S')›] by metis
qed

private lemma LI_in_SMP_subset_single:
  assumes "(S,θ) ↝ (S',θ')" "wf⇩c⇩o⇩n⇩s⇩t⇩r S θ" "wt⇩s⇩u⇩b⇩s⇩t θ"
          "tfr⇩s⇩e⇩t (trms⇩s⇩t S)" "wf⇩t⇩r⇩m⇩s (trms⇩s⇩t S)" "list_all tfr⇩s⇩t⇩p S"
  and "trms⇩s⇩t S ⊆ SMP M"
  shows "trms⇩s⇩t S' ⊆ SMP M"
using assms
proof (induction rule: LI_rel.induct)
  case (Compose S X f S' θ)
  hence "SMP (trms⇩s⇩t [Send1 (Fun f X)]) ⊆ SMP M"
  proof -
    have "SMP (trms⇩s⇩t [Send1 (Fun f X)]) ⊆ SMP (trms⇩s⇩t (S@Send1 (Fun f X)#S'))"
      using trms⇩s⇩t_append SMP_mono by auto
    thus ?thesis
      using SMP_union[of "trms⇩s⇩t (S@Send1 (Fun f X)#S')" M]
            SMP_subset_union_eq[OF Compose.prems(6)]
      by auto
  qed
  thus ?case using Compose.prems(6) by auto
next
  case (Unify S f Y δ X S' θ)
  have "Fun f X ∈ SMP (trms⇩s⇩t (S@Send1 (Fun f X)#S'))" by auto
  moreover have "MGU δ (Fun f X) (Fun f Y)"
    by (metis mgu_gives_MGU[OF Unify.hyps(3)[symmetric]])
  moreover have
        "⋀x. x ∈ set S ⟹ wf⇩t⇩r⇩m⇩s (trms⇩s⇩t⇩p x)" "wf⇩t⇩r⇩m (Fun f X)"
    using Unify.prems(4) by force+
  moreover have "Fun f Y ∈ SMP (trms⇩s⇩t (S@Send1 (Fun f X)#S'))"
    by (meson SMP_ikI Unify.hyps(2) contra_subsetD ik_append_subset(1))
  ultimately have "wf⇩t⇩r⇩m (Fun f Y)" "Γ (Fun f X) = Γ (Fun f Y)"
    using ik⇩s⇩t_subterm_exD[OF ‹Fun f Y ∈ ik⇩s⇩t S›] ‹tfr⇩s⇩e⇩t (trms⇩s⇩t (S@Send1 (Fun f X)#S'))›
    unfolding tfr⇩s⇩e⇩t_def by (metis (full_types) SMP_wf_trm Unify.prems(4), blast)
  hence "wt⇩s⇩u⇩b⇩s⇩t δ" by (metis mgu_wt_if_same_type[OF Unify.hyps(3)[symmetric] ‹wf⇩t⇩r⇩m (Fun f X)›])
  moreover have "wf⇩t⇩r⇩m⇩s (subst_range δ)"
    using mgu_wf_trm[OF Unify.hyps(3)[symmetric] ‹wf⇩t⇩r⇩m (Fun f X)› ‹wf⇩t⇩r⇩m (Fun f Y)›] by simp
  ultimately have "trms⇩s⇩t ((S@Send1 (Fun f X)#S') ⋅⇩s⇩t δ) ⊆ SMP M"
    using SMP.Substitution Unify.prems(6) wt_subst_SMP_subset by metis
  thus ?case by auto
next
  case (Equality S δ t t' a S' θ)
  hence "Γ t = Γ t'"
    using tfr_stp_all_same_type MGU_is_Unifier[OF mgu_gives_MGU[OF Equality.hyps(2)[symmetric]]]
    by metis
  moreover have "t ∈ SMP (trms⇩s⇩t (S@Equality a t t'#S'))" "t' ∈ SMP (trms⇩s⇩t (S@Equality a t t'#S'))"
    using Equality.prems(1) by auto
  moreover have "MGU δ t t'" using mgu_gives_MGU[OF Equality.hyps(2)[symmetric]] by metis
  moreover have "⋀x. x ∈ set S ⟹ wf⇩t⇩r⇩m⇩s (trms⇩s⇩t⇩p x)" "wf⇩t⇩r⇩m t" "wf⇩t⇩r⇩m t'"
    using Equality.prems(4) by force+
  ultimately have "wt⇩s⇩u⇩b⇩s⇩t δ" by (metis mgu_wt_if_same_type[OF Equality.hyps(2)[symmetric] ‹wf⇩t⇩r⇩m t›])
  moreover have "wf⇩t⇩r⇩m⇩s (subst_range δ)"
    using mgu_wf_trm[OF Equality.hyps(2)[symmetric] ‹wf⇩t⇩r⇩m t› ‹wf⇩t⇩r⇩m t'›] by simp
  ultimately have "trms⇩s⇩t ((S@Equality a t t'#S') ⋅⇩s⇩t δ) ⊆ SMP M"
    using SMP.Substitution Equality.prems wt_subst_SMP_subset by metis
  thus ?case by auto
qed

private lemma LI_preserves_tfr_single:
  assumes "(S,θ) ↝ (S',θ')" "wf⇩c⇩o⇩n⇩s⇩t⇩r S θ" "wt⇩s⇩u⇩b⇩s⇩t θ" "wf⇩t⇩r⇩m⇩s (subst_range θ)"
          "tfr⇩s⇩e⇩t (trms⇩s⇩t S)" "wf⇩t⇩r⇩m⇩s (trms⇩s⇩t S)"
          "list_all tfr⇩s⇩t⇩p S"
  shows "tfr⇩s⇩e⇩t (trms⇩s⇩t S') ∧ wf⇩t⇩r⇩m⇩s (trms⇩s⇩t S')"
using assms
proof (induction rule: LI_rel.induct)
  case (Compose S X f S' θ)
  let ?SMPmap = "SMP (trms⇩s⇩t (S@map Send1 X@S')) - (Var`𝒱)"
  have "?SMPmap ⊆ SMP (trms⇩s⇩t (S@Send1 (Fun f X)#S')) - (Var`𝒱)"
    using SMP_fun_map_snd_subset[of X f]
          SMP_append[of "map Send1 X" S'] SMP_Cons[of "Send1 (Fun f X)" S']
          SMP_append[of S "Send1 (Fun f X)#S'"] SMP_append[of S "map Send1 X@S'"]
    by auto
  hence "∀s ∈ ?SMPmap. ∀t ∈ ?SMPmap. (∃δ. Unifier δ s t) ⟶ Γ s = Γ t"
    using Compose unfolding tfr⇩s⇩e⇩t_def by (meson subsetCE)
  thus ?case
    using LI_preserves_trm_wf[OF r_into_rtrancl[OF LI_rel.Compose[OF Compose.hyps]], of S']
          Compose.prems(5)
    unfolding tfr⇩s⇩e⇩t_def by blast
next
  case (Unify S f Y δ X S' θ)
  let ?SMPδ = "SMP (trms⇩s⇩t (S@S' ⋅⇩s⇩t δ)) - (Var`𝒱)"

  have "SMP (trms⇩s⇩t (S@S' ⋅⇩s⇩t δ)) ⊆ SMP (trms⇩s⇩t (S@Send1 (Fun f X)#S'))"
  proof
    fix s assume "s ∈ SMP (trms⇩s⇩t (S@S' ⋅⇩s⇩t δ))" thus "s ∈ SMP (trms⇩s⇩t (S@Send1 (Fun f X)#S'))"
      using LI_in_SMP_subset_single[
              OF LI_rel.Unify[OF Unify.hyps] Unify.prems(1,2,4,5,6)
                 MP_subset_SMP(2)[of "S@Send1 (Fun f X)#S'"]]
      by (metis SMP_union SMP_subset_union_eq Un_iff)
  qed
  hence "∀s ∈ ?SMPδ. ∀t ∈ ?SMPδ. (∃δ. Unifier δ s t) ⟶ Γ s = Γ t"
    using Unify.prems(4) unfolding tfr⇩s⇩e⇩t_def by (meson Diff_iff subsetCE)
  thus ?case
    using LI_preserves_trm_wf[OF r_into_rtrancl[OF LI_rel.Unify[OF Unify.hyps]], of S']
          Unify.prems(5)
    unfolding tfr⇩s⇩e⇩t_def by blast
next
  case (Equality S δ t t' a S' θ)
  let ?SMPδ = "SMP (trms⇩s⇩t (S@S' ⋅⇩s⇩t δ)) - (Var`𝒱)"

  have "SMP (trms⇩s⇩t (S@S' ⋅⇩s⇩t δ)) ⊆ SMP (trms⇩s⇩t (S@Equality a t t'#S'))"
  proof
    fix s assume "s ∈ SMP (trms⇩s⇩t (S@S' ⋅⇩s⇩t δ))" thus "s ∈ SMP (trms⇩s⇩t (S@Equality a t t'#S'))"
      using LI_in_SMP_subset_single[
              OF LI_rel.Equality[OF Equality.hyps] Equality.prems(1,2,4,5,6)
                 MP_subset_SMP(2)[of "S@Equality a t t'#S'"]]
      by (metis SMP_union SMP_subset_union_eq Un_iff)
  qed
  hence "∀s ∈ ?SMPδ. ∀t ∈ ?SMPδ. (∃δ. Unifier δ s t) ⟶ Γ s = Γ t"
    using Equality.prems unfolding tfr⇩s⇩e⇩t_def by (meson Diff_iff subsetCE)
  thus ?case
    using LI_preserves_trm_wf[OF r_into_rtrancl[OF LI_rel.Equality[OF Equality.hyps]], of _ S']
          Equality.prems
    unfolding tfr⇩s⇩e⇩t_def by blast
qed

private lemma LI_preserves_welltypedness_single:
  assumes "(S,θ) ↝ (S',θ')" "wf⇩c⇩o⇩n⇩s⇩t⇩r S θ" "wt⇩s⇩u⇩b⇩s⇩t θ" "wf⇩t⇩r⇩m⇩s (subst_range θ)"
  and "tfr⇩s⇩e⇩t (trms⇩s⇩t S)" "wf⇩t⇩r⇩m⇩s (trms⇩s⇩t S)" "list_all tfr⇩s⇩t⇩p S"
  shows "wt⇩s⇩u⇩b⇩s⇩t θ' ∧ wf⇩t⇩r⇩m⇩s (subst_range θ')"
using assms
proof (induction rule: LI_rel.induct)
  case (Unify S f Y δ X S' θ)
  have "wf⇩t⇩r⇩m (Fun f X)" using Unify.prems(5) unfolding tfr⇩s⇩e⇩t_def by simp
  moreover have "wf⇩t⇩r⇩m (Fun f Y)"
  proof -
    obtain x where "x ∈ set S" "Fun f Y ∈ subterms⇩s⇩e⇩t (trms⇩s⇩t⇩p x)" "wf⇩t⇩r⇩m⇩s (trms⇩s⇩t⇩p x)"
      using Unify.hyps(2) Unify.prems(5) unfolding tfr⇩s⇩e⇩t_def by force
    thus ?thesis using wf_trm_subterm by auto
  qed
  moreover have
      "Fun f X ∈ SMP (trms⇩s⇩t (S@Send1 (Fun f X)#S'))" "Fun f Y ∈ SMP (trms⇩s⇩t (S@Send1 (Fun f X)#S'))"
    using SMP_append[of S "Send1 (Fun f X)#S'"] SMP_Cons[of "Send1 (Fun f X)" S']
          SMP_ikI[OF Unify.hyps(2)]
    by auto
  hence "Γ (Fun f X) = Γ (Fun f Y)"
    using Unify.prems(4) mgu_gives_MGU[OF Unify.hyps(3)[symmetric]]
    unfolding tfr⇩s⇩e⇩t_def by blast
  ultimately have "wt⇩s⇩u⇩b⇩s⇩t δ" using mgu_wt_if_same_type[OF Unify.hyps(3)[symmetric]] by metis

  have "wf⇩t⇩r⇩m⇩s (subst_range δ)"
    by (meson mgu_wf_trm[OF Unify.hyps(3)[symmetric] ‹wf⇩t⇩r⇩m (Fun f X)› ‹wf⇩t⇩r⇩m (Fun f Y)›]
              wf_trm_subst_range_iff)
  hence "wf⇩t⇩r⇩m⇩s (subst_range (θ ∘⇩s δ))"
    using wf_trm_subst_range_iff wf_trm_subst ‹wf⇩t⇩r⇩m⇩s (subst_range θ)›
    unfolding subst_compose_def
    by (metis (no_types, lifting))
  thus ?case by (metis wt_subst_compose[OF ‹wt⇩s⇩u⇩b⇩s⇩t θ› ‹wt⇩s⇩u⇩b⇩s⇩t δ›])
next
  case (Equality S δ t t' a S' θ)
  have "wf⇩t⇩r⇩m t" "wf⇩t⇩r⇩m t'" using Equality.prems(5) by simp_all
  moreover have "Γ t = Γ t'"
    using ‹list_all tfr⇩s⇩t⇩p (S@Equality a t t'#S')›
          MGU_is_Unifier[OF mgu_gives_MGU[OF Equality.hyps(2)[symmetric]]]
    by auto
  ultimately have "wt⇩s⇩u⇩b⇩s⇩t δ" using mgu_wt_if_same_type[OF Equality.hyps(2)[symmetric]] by metis

  have "wf⇩t⇩r⇩m⇩s (subst_range δ)"
    by (meson mgu_wf_trm[OF Equality.hyps(2)[symmetric] ‹wf⇩t⇩r⇩m t› ‹wf⇩t⇩r⇩m t'›] wf_trm_subst_range_iff)
  hence "wf⇩t⇩r⇩m⇩s (subst_range (θ ∘⇩s δ))"
    using wf_trm_subst_range_iff wf_trm_subst ‹wf⇩t⇩r⇩m⇩s (subst_range θ)›
    unfolding subst_compose_def
    by (metis (no_types, lifting))
  thus ?case by (metis wt_subst_compose[OF ‹wt⇩s⇩u⇩b⇩s⇩t θ› ‹wt⇩s⇩u⇩b⇩s⇩t δ›])
qed metis

lemma LI_preserves_welltypedness:
  assumes "(S,θ) ↝⇧* (S',θ')" "wf⇩c⇩o⇩n⇩s⇩t⇩r S θ" "wt⇩s⇩u⇩b⇩s⇩t θ" "wf⇩t⇩r⇩m⇩s (subst_range θ)"
    and "tfr⇩s⇩e⇩t (trms⇩s⇩t S)" "wf⇩t⇩r⇩m⇩s (trms⇩s⇩t S)" "list_all tfr⇩s⇩t⇩p S"
  shows "wt⇩s⇩u⇩b⇩s⇩t θ'" (is "?A θ'")
    and "wf⇩t⇩r⇩m⇩s (subst_range θ')" (is "?B θ'")
proof -
  have "?A θ' ∧ ?B θ'" using assms
  proof (induction S θ rule: converse_rtrancl_induct2)
    case (step S1 θ1 S2 θ2)
    hence "?A θ2 ∧ ?B θ2" using LI_preserves_welltypedness_single by presburger
    moreover have "wf⇩c⇩o⇩n⇩s⇩t⇩r S2 θ2"
      by (fact LI_preserves_wellformedness[OF r_into_rtrancl[OF step.hyps(1)] step.prems(1)])
    moreover have "tfr⇩s⇩e⇩t (trms⇩s⇩t S2)" "wf⇩t⇩r⇩m⇩s (trms⇩s⇩t S2)"
      using LI_preserves_tfr_single[OF step.hyps(1)] step.prems by presburger+
    moreover have "list_all tfr⇩s⇩t⇩p S2"
      using LI_preserves_tfr_stp_all_single[OF step.hyps(1)] step.prems by fastforce
    ultimately show ?case using step.IH by presburger
  qed simp
  thus "?A θ'" "?B θ'" by simp_all
qed

lemma LI_preserves_tfr:
  assumes "(S,θ) ↝⇧* (S',θ')" "wf⇩c⇩o⇩n⇩s⇩t⇩r S θ" "wt⇩s⇩u⇩b⇩s⇩t θ" "wf⇩t⇩r⇩m⇩s (subst_range θ)"
    and "tfr⇩s⇩e⇩t (trms⇩s⇩t S)" "wf⇩t⇩r⇩m⇩s (trms⇩s⇩t S)" "list_all tfr⇩s⇩t⇩p S"
  shows "tfr⇩s⇩e⇩t (trms⇩s⇩t S')" (is "?A S'")
    and "wf⇩t⇩r⇩m⇩s (trms⇩s⇩t S')" (is "?B S'")
    and "list_all tfr⇩s⇩t⇩p S'" (is "?C S'")
proof -
  have "?A S' ∧ ?B S' ∧ ?C S'" using assms
  proof (induction S θ rule: converse_rtrancl_induct2)
    case (step S1 θ1 S2 θ2)
    have "wf⇩c⇩o⇩n⇩s⇩t⇩r S2 θ2" "tfr⇩s⇩e⇩t (trms⇩s⇩t S2)" "wf⇩t⇩r⇩m⇩s (trms⇩s⇩t S2)" "list_all tfr⇩s⇩t⇩p S2"
      using LI_preserves_wellformedness[OF r_into_rtrancl[OF step.hyps(1)] step.prems(1)]
            LI_preserves_tfr_single[OF step.hyps(1) step.prems(1,2)]
            LI_preserves_tfr_stp_all_single[OF step.hyps(1) step.prems(1,2)]
            step.prems(3,4,5,6)
      by metis+
    moreover have "wt⇩s⇩u⇩b⇩s⇩t θ2" "wf⇩t⇩r⇩m⇩s (subst_range θ2)"
      using LI_preserves_welltypedness[OF r_into_rtrancl[OF step.hyps(1)] step.prems]
      by simp_all
    ultimately show ?case using step.IH by presburger
  qed blast
  thus "?A S'" "?B S'" "?C S'" by simp_all
qed

lemma LI_preproc_preserves_tfr:
  assumes "tfr⇩s⇩t S"
  shows "tfr⇩s⇩t (LI_preproc S)"
unfolding tfr⇩s⇩t_def
proof
  have S: "tfr⇩s⇩e⇩t (trms⇩s⇩t S)" "list_all tfr⇩s⇩t⇩p S" using assms unfolding tfr⇩s⇩t_def by metis+

  show "tfr⇩s⇩e⇩t (trms⇩s⇩t (LI_preproc S))" by (metis S(1) LI_preproc_trms_eq)

  show "list_all tfr⇩s⇩t⇩p (LI_preproc S)" using S(2)
  proof (induction S)
    case (Cons x S)
    have IH: "list_all tfr⇩s⇩t⇩p (LI_preproc S)" using Cons by simp
    have x: "tfr⇩s⇩t⇩p x" using Cons.prems by simp

    show ?case using x IH unfolding list_all_iff by (cases x) auto
  qed simp
qed
end

subsubsection ‹Simple Constraints are Well-typed Satisfiable›
text ‹Proving the existence of a well-typed interpretation›
context
begin

lemma wt_interpretation_exists: 
  obtains ℐ::"('fun,'var) subst"
  where "interpretation⇩s⇩u⇩b⇩s⇩t ℐ" "wt⇩s⇩u⇩b⇩s⇩t ℐ" "subst_range ℐ ⊆ public_ground_wf_terms"
proof
  define ℐ where "ℐ = (λx. (SOME t. Γ (Var x) = Γ t ∧ public_ground_wf_term t))"

  { fix x t assume "ℐ x = t"
    hence "Γ (Var x) = Γ t ∧ public_ground_wf_term t"
      using someI_ex[of "λt. Γ (Var x) = Γ t ∧ public_ground_wf_term t",
                     OF type_pgwt_inhabited[of "Var x"]]
      unfolding ℐ_def wf⇩t⇩r⇩m_def by simp
  } hence props: "ℐ v = t ⟹ Γ (Var v) = Γ t ∧ public_ground_wf_term t" for v t by metis

  have "ℐ v ≠ Var v" for v using props pgwt_ground by fastforce
  hence "subst_domain ℐ = UNIV" by auto
  moreover have "ground (subst_range ℐ)" by (simp add: props pgwt_ground)
  ultimately show "interpretation⇩s⇩u⇩b⇩s⇩t ℐ" by metis
  show "wt⇩s⇩u⇩b⇩s⇩t ℐ" unfolding wt⇩s⇩u⇩b⇩s⇩t_def using props by simp
  show "subst_range ℐ ⊆ public_ground_wf_terms" by (auto simp add: props)
qed

lemma wt_grounding_subst_exists:
  "∃θ. wt⇩s⇩u⇩b⇩s⇩t θ ∧ wf⇩t⇩r⇩m⇩s (subst_range θ) ∧ fv (t ⋅ θ) = {}"
proof -
  obtain θ where θ: "interpretation⇩s⇩u⇩b⇩s⇩t θ" "wt⇩s⇩u⇩b⇩s⇩t θ" "subst_range θ ⊆ public_ground_wf_terms"
    using wt_interpretation_exists by blast
  show ?thesis using pgwt_wellformed interpretation_grounds[OF θ(1)] θ(2,3) by blast
qed

private fun fresh_pgwt::"'fun set ⇒ ('fun,'atom) term_type ⇒ ('fun,'var) term"  where
  "fresh_pgwt S (TAtom a) =
    Fun (SOME c. c ∉ S ∧ Γ (Fun c []) = TAtom a ∧ public c) []"
| "fresh_pgwt S (TComp f T) = Fun f (map (fresh_pgwt S) T)"

private lemma fresh_pgwt_same_type:
  assumes "finite S" "wf⇩t⇩r⇩m t"
  shows "Γ (fresh_pgwt S (Γ t)) = Γ t"
proof -
  let ?P = "λτ::('fun,'atom) term_type. wf⇩t⇩r⇩m τ ∧ (∀f T. TComp f T ⊑ τ ⟶ 0 < arity f)"
  { fix τ assume "?P τ" hence "Γ (fresh_pgwt S τ) = τ"
    proof (induction τ)
      case (Var a)
      let ?P = "λc. c ∉ S ∧ Γ (Fun c []) = Var a ∧ public c"
      let ?Q = "λc. Γ (Fun c []) = Var a ∧ public c"
      have " {c. ?Q c} - S = {c. ?P c}" by auto
      hence "infinite {c. ?P c}"
        using Diff_infinite_finite[OF assms(1) infinite_typed_consts[of a]] 
        by metis
      hence "∃c. ?P c" using not_finite_existsD by blast
      thus ?case using someI_ex[of ?P] by auto
    next
      case (Fun f T)
      have f: "0 < arity f" using Fun.prems fun_type_inv by auto
      have "⋀t. t ∈ set T ⟹ ?P t"
        using Fun.prems wf_trm_subtermeq term.le_less_trans Fun_param_is_subterm
        by metis
      hence "⋀t. t ∈ set T ⟹ Γ (fresh_pgwt S t) = t" using Fun.prems Fun.IH by auto
      hence "map Γ (map (fresh_pgwt S) T) = T"  by (induct T) auto
      thus ?case using fun_type[OF f] by simp
    qed
  } thus ?thesis using assms(1) Γ_wf'[OF assms(2)] Γ_wf'' by auto
qed

private lemma fresh_pgwt_empty_synth:
  assumes "finite S" "wf⇩t⇩r⇩m t"
  shows "{} ⊢⇩c fresh_pgwt S (Γ t)"
proof -
  let ?P = "λτ::('fun,'atom) term_type. wf⇩t⇩r⇩m τ ∧ (∀f T. TComp f T ⊑ τ ⟶ 0 < arity f)"
  { fix τ assume "?P τ" hence "{} ⊢⇩c fresh_pgwt S τ"
    proof (induction τ)
      case (Var a)
      let ?P = "λc. c ∉ S ∧ Γ (Fun c []) = Var a ∧ public c"
      let ?Q = "λc. Γ (Fun c []) = Var a ∧ public c"
      have " {c. ?Q c} - S = {c. ?P c}" by auto
      hence "infinite {c. ?P c}"
        using Diff_infinite_finite[OF assms(1) infinite_typed_consts[of a]] 
        by metis
      hence "∃c. ?P c" using not_finite_existsD by blast
      thus ?case
        using someI_ex[of ?P] intruder_synth.ComposeC[of "[]" _ "{}"] const_type_inv
        by auto
    next
      case (Fun f T)
      have f: "0 < arity f" "length T = arity f" "public f" 
        using Fun.prems fun_type_inv unfolding wf⇩t⇩r⇩m_def by auto
      have "⋀t. t ∈ set T ⟹ ?P t"
        using Fun.prems wf_trm_subtermeq term.le_less_trans Fun_param_is_subterm
        by metis
      hence "⋀t. t ∈ set T ⟹ {} ⊢⇩c fresh_pgwt S t" using Fun.prems Fun.IH by auto
      moreover have "length (map (fresh_pgwt S) T) = arity f" using f(2) by auto
      ultimately show ?case using intruder_synth.ComposeC[of "map (fresh_pgwt S) T" f] f by auto
    qed
  } thus ?thesis using assms(1) Γ_wf'[OF assms(2)] Γ_wf'' by auto
qed

private lemma fresh_pgwt_has_fresh_const:
  assumes "finite S" "wf⇩t⇩r⇩m t"
  obtains c where "Fun c [] ⊑ fresh_pgwt S (Γ t)" "c ∉ S"
proof -
  let ?P = "λτ::('fun,'atom) term_type. wf⇩t⇩r⇩m τ ∧ (∀f T. TComp f T ⊑ τ ⟶ 0 < arity f)"
  { fix τ assume "?P τ" hence "∃c. Fun c [] ⊑ fresh_pgwt S τ ∧ c ∉ S"
    proof (induction τ)
      case (Var a)
      let ?P = "λc. c ∉ S ∧ Γ (Fun c []) = Var a ∧ public c"
      let ?Q = "λc. Γ (Fun c []) = Var a ∧ public c"
      have " {c. ?Q c} - S = {c. ?P c}" by auto
      hence "infinite {c. ?P c}"
        using Diff_infinite_finite[OF assms(1) infinite_typed_consts[of a]] 
        by metis
      hence "∃c. ?P c" using not_finite_existsD by blast
      thus ?case using someI_ex[of ?P] by auto
    next
      case (Fun f T)
      have f: "0 < arity f" "length T = arity f" "public f" "T ≠ []"
        using Fun.prems fun_type_inv unfolding wf⇩t⇩r⇩m_def by auto
      obtain t' where t': "t' ∈ set T" by (meson all_not_in_conv f(4) set_empty) 
      have "⋀t. t ∈ set T ⟹ ?P t"
        using Fun.prems wf_trm_subtermeq term.le_less_trans Fun_param_is_subterm
        by metis
      hence "⋀t. t ∈ set T ⟹ ∃c. Fun c [] ⊑ fresh_pgwt S t ∧ c ∉ S"
        using Fun.prems Fun.IH by auto
      then obtain c where c: "Fun c [] ⊑ fresh_pgwt S t'" "c ∉ S" using t' by metis
      thus ?case using t' by auto
    qed
  } thus ?thesis using that assms Γ_wf'[OF assms(2)] Γ_wf'' by blast 
qed

private lemma fresh_pgwt_subterm_fresh:
  assumes "finite S" "wf⇩t⇩r⇩m t" "wf⇩t⇩r⇩m s" "funs_term s ⊆ S"
  shows "s ∉ subterms (fresh_pgwt S (Γ t))"
proof -
  let ?P = "λτ::('fun,'atom) term_type. wf⇩t⇩r⇩m τ ∧ (∀f T. TComp f T ⊑ τ ⟶ 0 < arity f)"
  { fix τ assume "?P τ" hence "s ∉ subterms (fresh_pgwt S τ)"
    proof (induction τ)
      case (Var a)
      let ?P = "λc. c ∉ S ∧ Γ (Fun c []) = Var a ∧ public c"
      let ?Q = "λc. Γ (Fun c []) = Var a ∧ public c"
      have " {c. ?Q c} - S = {c. ?P c}" by auto
      hence "infinite {c. ?P c}"
        using Diff_infinite_finite[OF assms(1) infinite_typed_consts[of a]] 
        by metis
      hence "∃c. ?P c" using not_finite_existsD by blast
      thus ?case using someI_ex[of ?P] assms(4) by auto
    next
      case (Fun f T)
      have f: "0 < arity f" "length T = arity f" "public f" 
        using Fun.prems fun_type_inv unfolding wf⇩t⇩r⇩m_def by auto
      have "⋀t. t ∈ set T ⟹ ?P t"
        using Fun.prems wf_trm_subtermeq term.le_less_trans Fun_param_is_subterm
        by metis
      hence "⋀t. t ∈ set T ⟹ s ∉ subterms (fresh_pgwt S t)" using Fun.prems Fun.IH by auto
      moreover have "s ≠ fresh_pgwt S (Fun f T)"
      proof -
        obtain c where c: "Fun c [] ⊑ fresh_pgwt S (Fun f T)" "c ∉ S"
          using fresh_pgwt_has_fresh_const[OF assms(1)] type_wfttype_inhabited Fun.prems
          by metis
        hence "¬Fun c [] ⊑ s" using assms(4) subtermeq_imp_funs_term_subset by force
        thus ?thesis using c(1) by auto
      qed
      ultimately show ?case by auto
    qed
  } thus ?thesis using assms(1) Γ_wf'[OF assms(2)] Γ_wf'' by auto
qed

private lemma wt_fresh_pgwt_term_exists:
  assumes "finite T" "wf⇩t⇩r⇩m s" "wf⇩t⇩r⇩m⇩s T"
  obtains t where "Γ t = Γ s" "{} ⊢⇩c t" "∀s ∈ T. ∀u ∈ subterms s. u ∉ subterms t"
proof -
  have finite_S: "finite (⋃(funs_term ` T))" using assms(1) by auto

  have 1: "Γ (fresh_pgwt (⋃(funs_term ` T)) (Γ s)) = Γ s"
    using fresh_pgwt_same_type[OF finite_S assms(2)] by auto

  have 2: "{} ⊢⇩c fresh_pgwt (⋃(funs_term ` T)) (Γ s)"
    using fresh_pgwt_empty_synth[OF finite_S assms(2)] by auto

  have 3: "∀v ∈ T. ∀u ∈ subterms v. u ∉ subterms (fresh_pgwt (⋃(funs_term ` T)) (Γ s))"
    using fresh_pgwt_subterm_fresh[OF finite_S assms(2)] assms(3)
          wf_trm_subtermeq subtermeq_imp_funs_term_subset
    by force

  show ?thesis by (rule that[OF 1 2 3])
qed

lemma wt_bij_finite_subst_exists:
  assumes "finite (S::'var set)" "finite (T::('fun,'var) terms)" "wf⇩t⇩r⇩m⇩s T"
  shows "∃σ::('fun,'var) subst.
              subst_domain σ = S
            ∧ bij_betw σ (subst_domain σ) (subst_range σ)
            ∧ subterms⇩s⇩e⇩t (subst_range σ) ⊆ {t. {} ⊢⇩c t} - T
            ∧ (∀s ∈ subst_range σ. ∀u ∈ subst_range σ. (∃v. v ⊑ s ∧ v ⊑ u) ⟶ s = u)
            ∧ wt⇩s⇩u⇩b⇩s⇩t σ
            ∧ wf⇩t⇩r⇩m⇩s (subst_range σ)"
using assms
proof (induction rule: finite_induct)
  case empty
  have "subst_domain Var = {}"
       "bij_betw Var (subst_domain Var) (subst_range Var)"
       "subterms⇩s⇩e⇩t (subst_range Var) ⊆ {t. {} ⊢⇩c t} - T"
       "∀s ∈ subst_range Var. ∀u ∈ subst_range Var. (∃v. v ⊑ s ∧ v ⊑ u) ⟶ s = u"
       "wt⇩s⇩u⇩b⇩s⇩t Var"
       "wf⇩t⇩r⇩m⇩s (subst_range Var)"
    unfolding bij_betw_def
    by auto
  thus ?case by (force simp add: subst_domain_def)
next
  case (insert x S)
  then obtain σ where σ:
      "subst_domain σ = S" "bij_betw σ (subst_domain σ) (subst_range σ)"
      "subterms⇩s⇩e⇩t (subst_range σ) ⊆ {t. {} ⊢⇩c t} - T"
      "∀s ∈ subst_range σ. ∀u ∈ subst_range σ. (∃v. v ⊑ s ∧ v ⊑ u) ⟶ s = u"
      "wt⇩s⇩u⇩b⇩s⇩t σ" "wf⇩t⇩r⇩m⇩s (subst_range σ)"
    by (auto simp del: subst_range.simps)

  have *: "finite (T ∪ subst_range σ)"
    using insert.prems(1) insert.hyps(1) σ(1) by simp
  have **: "wf⇩t⇩r⇩m (Var x)" by simp
  have ***: "wf⇩t⇩r⇩m⇩s (T ∪ subst_range σ)" using assms(3) σ(6) by blast
  obtain t where t:
      "Γ t = Γ (Var x)" "{} ⊢⇩c t"
      "∀s ∈ T ∪ subst_range σ. ∀u ∈ subterms s. u ∉ subterms t"
    using wt_fresh_pgwt_term_exists[OF * ** ***] by auto

  obtain θ where θ: "θ ≡ λy. if x = y then t else σ y" by simp

  have t_ground: "fv t = {}" using t(2) pgwt_ground[of t] pgwt_is_empty_synth[of t] by auto
  hence x_dom: "x ∉ subst_domain σ" "x ∈ subst_domain θ" using insert.hyps(2) σ(1) θ by auto
  moreover have "subst_range σ ⊆ subterms⇩s⇩e⇩t (subst_range σ)" by auto
  hence ground_imgs: "ground (subst_range σ)"
    using σ(3) pgwt_ground pgwt_is_empty_synth
    by force
  ultimately have x_img: "σ x ∉ subst_range σ"
    using ground_subst_dom_iff_img
    by (auto simp add: subst_domain_def)

  have "ground (insert t (subst_range σ))"
    using ground_imgs x_dom t_ground
    by auto
  have θ_dom: "subst_domain θ = insert x (subst_domain σ)"
    using θ t_ground by (auto simp add: subst_domain_def)
  have θ_img: "subst_range θ = insert t (subst_range σ)"
  proof
    show "subst_range θ ⊆ insert t (subst_range σ)"
    proof
      fix t' assume "t' ∈ subst_range θ"
      then obtain y where "y ∈ subst_domain θ" "t' = θ y" by auto
      thus "t' ∈ insert t (subst_range σ)" using θ by (auto simp add: subst_domain_def)
    qed
    show "insert t (subst_range σ) ⊆ subst_range θ"
    proof
      fix t' assume t': "t' ∈ insert t (subst_range σ)"
      hence "fv t' = {}" using ground_imgs x_img t_ground by auto
      hence "t' ≠ Var x" by auto
      show "t' ∈ subst_range θ"
      proof (cases "t' = t")
        case False
        hence "t' ∈ subst_range σ" using t' by auto
        then obtain y where "σ y ∈ subst_range σ" "t' = σ y" by auto
        hence "y ∈ subst_domain σ" "t' ≠ Var y"
          using ground_subst_dom_iff_img[OF ground_imgs(1)]
          by (auto simp add: subst_domain_def simp del: subst_range.simps)
        hence "x ≠ y" using x_dom by auto
        hence "θ y = σ y" unfolding θ by auto
        thus ?thesis using ‹t' ≠ Var y› ‹t' = σ y› subst_imgI[of θ y] by auto
      qed (metis subst_imgI θ ‹t' ≠ Var x›)
    qed
  qed
  hence θ_ground_img: "ground (subst_range θ)"
    using ground_imgs t_ground
    by auto

  have "subst_domain θ = insert x S" using θ_dom σ(1) by auto
  moreover have "bij_betw θ (subst_domain θ) (subst_range θ)"
  proof (intro bij_betwI')
    fix y z assume *: "y ∈ subst_domain θ" "z ∈ subst_domain θ"
    hence "fv (θ y) = {}" "fv (θ z) = {}" using θ_ground_img by auto
    { assume "θ y = θ z" hence "y = z"
      proof (cases "θ y ∈ subst_range σ ∧ θ z ∈ subst_range σ")
        case True
        hence **: "y ∈ subst_domain σ" "z ∈ subst_domain σ"
          using θ θ_dom True * t(3) by (metis Un_iff term.order_refl insertE)+ 
        hence "y ≠ x" "z ≠ x" using x_dom by auto
        hence "θ y = σ y" "θ z = σ z" using θ by auto
        thus ?thesis using ‹θ y = θ z› σ(2) ** unfolding bij_betw_def inj_on_def by auto
      qed (metis θ * ‹θ y = θ z› θ_dom ground_imgs(1) ground_subst_dom_iff_img insertE)
    }
    thus "(θ y = θ z) = (y = z)" by auto
  next
    fix y assume "y ∈ subst_domain θ" thus "θ y ∈ subst_range θ" by auto
  next
    fix t assume "t ∈ subst_range θ" thus "∃z ∈ subst_domain θ. t = θ z" by auto
  qed
  moreover have "subterms⇩s⇩e⇩t (subst_range θ) ⊆ {t. {} ⊢⇩c t}  - T"
  proof -
    { fix s assume "s ⊑ t"
      hence "s ∈ {t. {} ⊢⇩c t}  - T"
        using t(2,3) 
        by (metis Diff_eq_empty_iff Diff_iff Un_upper1 term.order_refl
                  deduct_synth_subterm mem_Collect_eq) 
    } thus ?thesis using σ(3) θ θ_img by auto
  qed
  moreover have "wt⇩s⇩u⇩b⇩s⇩t θ" using θ t(1) σ(5) unfolding wt⇩s⇩u⇩b⇩s⇩t_def by auto
  moreover have "wf⇩t⇩r⇩m⇩s (subst_range θ)"
    using θ σ(6) t(2) pgwt_is_empty_synth pgwt_wellformed
          wf_trm_subst_range_iff[of σ] wf_trm_subst_range_iff[of θ]
    by metis
  moreover have "∀s∈subst_range θ. ∀u∈subst_range θ. (∃v. v ⊑ s ∧ v ⊑ u) ⟶ s = u"
    using σ(4) θ_img t(3) by (auto simp del: subst_range.simps)
  ultimately show ?case by blast
qed

private lemma wt_bij_finite_tatom_subst_exists_single:
  assumes "finite (S::'var set)" "finite (T::('fun,'var) terms)"
  and "⋀x. x ∈ S ⟹ Γ (Var x) = TAtom a"
  shows "∃σ::('fun,'var) subst. subst_domain σ = S
                      ∧ bij_betw σ (subst_domain σ) (subst_range σ)
                      ∧ subst_range σ ⊆ ((λc. Fun c []) `  {c. Γ (Fun c []) = TAtom a ∧
                                                            public c ∧ arity c = 0}) - T
                      ∧ wt⇩s⇩u⇩b⇩s⇩t σ
                      ∧ wf⇩t⇩r⇩m⇩s (subst_range σ)"
proof -
  let ?U = "{c. Γ (Fun c []) = TAtom a ∧ public c ∧ arity c = 0}"

  obtain σ where σ:
      "subst_domain σ = S" "bij_betw σ (subst_domain σ) (subst_range σ)"
      "subst_range σ ⊆ ((λc. Fun c []) ` ?U) - T"
    using bij_finite_const_subst_exists'[OF assms(1,2) infinite_typed_consts'[of a]]
    by auto

  { fix x assume "x ∉ subst_domain σ" hence "Γ (Var x) = Γ (σ x)" by auto }
  moreover
  { fix x assume "x ∈ subst_domain σ"
    hence "∃c ∈ ?U. σ x = Fun c [] ∧ arity c = 0" using σ by auto
    hence "Γ (σ x) = TAtom a" "wf⇩t⇩r⇩m (σ x)" using assms(3) const_type wf_trmI[of "[]"] by auto
    hence "Γ (Var x) = Γ (σ x)" "wf⇩t⇩r⇩m (σ x)" using assms(3) σ(1) by force+
  }
  ultimately have "wt⇩s⇩u⇩b⇩s⇩t σ" "wf⇩t⇩r⇩m⇩s (subst_range σ)"
    using wf_trm_subst_range_iff[of σ]
    unfolding wt⇩s⇩u⇩b⇩s⇩t_def
    by force+
  thus ?thesis using σ by auto
qed

lemma wt_bij_finite_tatom_subst_exists:
  assumes "finite (S::'var set)" "finite (T::('fun,'var) terms)"
  and "⋀x. x ∈ S ⟹ ∃a. Γ (Var x) = TAtom a"
  shows "∃σ::('fun,'var) subst. subst_domain σ = S
                      ∧ bij_betw σ (subst_domain σ) (subst_range σ)
                      ∧ subst_range σ ⊆ ((λc. Fun c []) `  𝒞⇩p⇩u⇩b) - T
                      ∧ wt⇩s⇩u⇩b⇩s⇩t σ
                      ∧ wf⇩t⇩r⇩m⇩s (subst_range σ)"
using assms
proof (induction rule: finite_induct)
  case empty
  have "subst_domain Var = {}"
       "bij_betw Var (subst_domain Var) (subst_range Var)"
       "subst_range Var ⊆ ((λc. Fun c []) `  𝒞⇩p⇩u⇩b) - T"
       "wt⇩s⇩u⇩b⇩s⇩t Var"
       "wf⇩t⇩r⇩m⇩s (subst_range Var)"
    unfolding bij_betw_def
    by auto
  thus ?case by (auto simp add: subst_domain_def)
next
  case (insert x S)
  then obtain a where a: "Γ (Var x) = TAtom a" by fastforce

  from insert obtain σ where σ:
      "subst_domain σ = S" "bij_betw σ (subst_domain σ) (subst_range σ)"
      "subst_range σ ⊆ ((λc. Fun c []) `  𝒞⇩p⇩u⇩b) - T" "wt⇩s⇩u⇩b⇩s⇩t σ"
      "wf⇩t⇩r⇩m⇩s (subst_range σ)"
    by auto

  let ?S' = "{y ∈ S. Γ (Var y) = TAtom a}"
  let ?T' = "T ∪ subst_range σ"

  have *: "finite (insert x ?S')" using insert by simp
  have **: "finite ?T'" using insert.prems(1) insert.hyps(1) σ(1) by simp
  have ***: "⋀y. y ∈ insert x ?S' ⟹ Γ (Var y) = TAtom a" using a by auto

  obtain δ where δ:
      "subst_domain δ = insert x ?S'" "bij_betw δ (subst_domain δ) (subst_range δ)"
      "subst_range δ ⊆ ((λc. Fun c []) `  𝒞⇩p⇩u⇩b) - ?T'" "wt⇩s⇩u⇩b⇩s⇩t δ" "wf⇩t⇩r⇩m⇩s (subst_range δ)"
    using wt_bij_finite_tatom_subst_exists_single[OF * ** ***] const_type_inv[of _ "[]" a]
    by blast

  obtain θ where θ: "θ ≡ λy. if x = y then δ y else σ y" by simp

  have x_dom: "x ∉ subst_domain σ" "x ∈ subst_domain δ" "x ∈ subst_domain θ"
    using insert.hyps(2) σ(1) δ(1) θ by (auto simp add: subst_domain_def)
  moreover have ground_imgs: "ground (subst_range σ)" "ground (subst_range δ)"
    using pgwt_ground σ(3) δ(3) by auto
  ultimately have x_img: "σ x ∉ subst_range σ" "δ x ∈ subst_range δ"
    using ground_subst_dom_iff_img by (auto simp add: subst_domain_def)

  have "ground (insert (δ x) (subst_range σ))" using ground_imgs x_dom by auto
  have θ_dom: "subst_domain θ = insert x (subst_domain σ)"
    using δ(1) θ by (auto simp add: subst_domain_def)
  have θ_img: "subst_range θ = insert (δ x) (subst_range σ)"
  proof
    show "subst_range θ ⊆ insert (δ x) (subst_range σ)"
    proof
      fix t assume "t ∈ subst_range θ"
      then obtain y where "y ∈ subst_domain θ" "t = θ y" by auto
      thus "t ∈ insert (δ x) (subst_range σ)" using θ by (auto simp add: subst_domain_def)
    qed
    show "insert (δ x) (subst_range σ) ⊆ subst_range θ"
    proof
      fix t assume t: "t ∈ insert (δ x) (subst_range σ)"
      hence "fv t = {}" using ground_imgs x_img(2) by auto
      hence "t ≠ Var x" by auto
      show "t ∈ subst_range θ"
      proof (cases "t = δ x")
        case True thus ?thesis using subst_imgI θ ‹t ≠ Var x› by metis
      next
        case False
        hence "t ∈ subst_range σ" using t by auto
        then obtain y where "σ y ∈ subst_range σ" "t = σ y" by auto
        hence "y ∈ subst_domain σ" "t ≠ Var y"
          using ground_subst_dom_iff_img[OF ground_imgs(1)]
          by (auto simp add: subst_domain_def simp del: subst_range.simps)
        hence "x ≠ y" using x_dom by auto
        hence "θ y = σ y" unfolding θ by auto
        thus ?thesis using ‹t ≠ Var y› ‹t = σ y› subst_imgI[of θ y] by auto
      qed
    qed
  qed
  hence θ_ground_img: "ground (subst_range θ)" using ground_imgs x_img by auto

  have "subst_domain θ = insert x S" using θ_dom σ(1) by auto
  moreover have "bij_betw θ (subst_domain θ) (subst_range θ)"
  proof (intro bij_betwI')
    fix y z assume *: "y ∈ subst_domain θ" "z ∈ subst_domain θ"
    hence "fv (θ y) = {}" "fv (θ z) = {}" using θ_ground_img by auto
    { assume "θ y = θ z" hence "y = z"
      proof (cases "θ y ∈ subst_range σ ∧ θ z ∈ subst_range σ")
        case True
        hence **: "y ∈ subst_domain σ" "z ∈ subst_domain σ"
          using θ θ_dom x_img(2) δ(3) True
          by (metis (no_types) *(1) DiffE Un_upper2 insertE subsetCE,
              metis (no_types) *(2) DiffE Un_upper2 insertE subsetCE)
        hence "y ≠ x" "z ≠ x" using x_dom by auto
        hence "θ y = σ y" "θ z = σ z" using θ by auto
        thus ?thesis using ‹θ y = θ z› σ(2) ** unfolding bij_betw_def inj_on_def by auto
      qed (metis θ * ‹θ y = θ z› θ_dom ground_imgs(1) ground_subst_dom_iff_img insertE)
    }
    thus "(θ y = θ z) = (y = z)" by auto
  next
    fix y assume "y ∈ subst_domain θ" thus "θ y ∈ subst_range θ" by auto
  next
    fix t assume "t ∈ subst_range θ" thus "∃z ∈ subst_domain θ. t = θ z" by auto
  qed
  moreover have "subst_range θ ⊆ (λc. Fun c []) ` 𝒞⇩p⇩u⇩b - T"
    using σ(3) δ(3) θ by (auto simp add: subst_domain_def)
  moreover have "wt⇩s⇩u⇩b⇩s⇩t θ" using σ(4) δ(4) θ unfolding wt⇩s⇩u⇩b⇩s⇩t_def by auto
  moreover have "wf⇩t⇩r⇩m⇩s (subst_range θ)"
    using θ σ(5) δ(5) wf_trm_subst_range_iff[of δ]
          wf_trm_subst_range_iff[of σ] wf_trm_subst_range_iff[of θ]
    by presburger
  ultimately show ?case by blast
qed

theorem wt_sat_if_simple:
  assumes "simple S" "wf⇩c⇩o⇩n⇩s⇩t⇩r S θ" "wt⇩s⇩u⇩b⇩s⇩t θ" "wf⇩t⇩r⇩m⇩s (subst_range θ)" "wf⇩t⇩r⇩m⇩s (trms⇩s⇩t S)"
  and ℐ': "∀X F. Inequality X F ∈ set S ⟶ ineq_model ℐ' X F"
         "ground (subst_range ℐ')"
         "subst_domain ℐ' = {x ∈ vars⇩s⇩t S. ∃X F. Inequality X F ∈ set S ∧ x ∈ fv⇩p⇩a⇩i⇩r⇩s F - set X}"
  and tfr_stp_all: "list_all tfr⇩s⇩t⇩p S"
  shows "∃ℐ. interpretation⇩s⇩u⇩b⇩s⇩t ℐ ∧ (ℐ ⊨⇩c ⟨S, θ⟩) ∧ wt⇩s⇩u⇩b⇩s⇩t ℐ ∧ wf⇩t⇩r⇩m⇩s (subst_range ℐ)"
proof -
  from ‹wf⇩c⇩o⇩n⇩s⇩t⇩r S θ› have "wf⇩s⇩t {} S" "subst_idem θ" and S_θ_disj: "∀v ∈ vars⇩s⇩t S. θ v = Var v"
    using subst_idemI[of θ] unfolding wf⇩c⇩o⇩n⇩s⇩t⇩r_def wf⇩s⇩u⇩b⇩s⇩t_def by force+
  
  obtain ℐ::"('fun,'var) subst"
    where ℐ: "interpretation⇩s⇩u⇩b⇩s⇩t ℐ" "wt⇩s⇩u⇩b⇩s⇩t ℐ" "subst_range ℐ ⊆ public_ground_wf_terms"
    using wt_interpretation_exists by blast
  hence ℐ_deduct: "⋀x M. M ⊢⇩c ℐ x" and ℐ_wf_trm: "wf⇩t⇩r⇩m⇩s (subst_range ℐ)"
    using pgwt_deducible pgwt_wellformed by fastforce+

  let ?P = "λδ X. subst_domain δ = set X ∧ ground (subst_range δ)"
  let ?Sineqsvars = "{x ∈ vars⇩s⇩t S. ∃X F. Inequality X F ∈ set S ∧ x ∈ fv⇩p⇩a⇩i⇩r⇩s F ∧ x ∉ set X}"
  let ?Strms = "subterms⇩s⇩e⇩t (trms⇩s⇩t S)"

  have finite_vars: "finite ?Sineqsvars" "finite ?Strms" "wf⇩t⇩r⇩m⇩s ?Strms"
    using wf_trm_subtermeq assms(5) by fastforce+

  define Q1 where "Q1 = (λ(F::(('fun,'var) term × ('fun,'var) term) list) X.
    ∀x ∈ fv⇩p⇩a⇩i⇩r⇩s F - set X. ∃a. Γ (Var x) = TAtom a)"

  define Q2 where "Q2 = (λ(F::(('fun,'var) term × ('fun,'var) term) list) X.
    ∀f T. Fun f T ∈ subterms⇩s⇩e⇩t (trms⇩p⇩a⇩i⇩r⇩s F) ⟶ T = [] ∨ (∃s ∈ set T. s ∉ Var ` set X))"

  define Q1' where "Q1' = (λ(t::('fun,'var) term) (t'::('fun,'var) term) X.
    ∀x ∈ (fv t ∪ fv t') - set X. ∃a. Γ (Var x) = TAtom a)"

  define Q2' where "Q2' = (λ(t::('fun,'var) term) (t'::('fun,'var) term) X.
    ∀f T. Fun f T ∈ subterms t ∪ subterms t' ⟶ T = [] ∨ (∃s ∈ set T. s ∉ Var ` set X))"

  have ex_P: "∀X. ∃δ. ?P δ X" using interpretation_subst_exists' by blast

  have tfr_ineq: "∀X F. Inequality X F ∈ set S ⟶ Q1 F X ∨ Q2 F X"
    using tfr_stp_all Q1_def Q2_def tfr⇩s⇩t⇩p_list_all_alt_def[of S] by blast

  have S_fv_bvars_disj: "fv⇩s⇩t S ∩ bvars⇩s⇩t S = {}" using ‹wf⇩c⇩o⇩n⇩s⇩t⇩r S θ› unfolding wf⇩c⇩o⇩n⇩s⇩t⇩r_def by metis
  hence ineqs_vars_not_bound: "∀X F x. Inequality X F ∈ set S ⟶ x ∈ ?Sineqsvars ⟶ x ∉ set X"
    using strand_fv_bvars_disjoint_unfold by blast

  have θ_vars_S_bvars_disj: "(subst_domain θ ∪ range_vars θ) ∩ set X = {}"
    when "Inequality X F ∈ set S" for F X
    using wf_constr_bvars_disj[OF ‹wf⇩c⇩o⇩n⇩s⇩t⇩r S θ›]
          strand_fv_bvars_disjointD(1)[OF S_fv_bvars_disj that]
    by blast

  obtain σ::"('fun,'var) subst"
    where σ_fv_dom: "subst_domain σ = ?Sineqsvars"
    and σ_subterm_inj: "subterm_inj_on σ (subst_domain σ)"
    and σ_fresh_pub_img: "subterms⇩s⇩e⇩t (subst_range σ) ⊆ {t. {} ⊢⇩c t} - ?Strms"
    and σ_wt: "wt⇩s⇩u⇩b⇩s⇩t σ"
    and σ_wf_trm: "wf⇩t⇩r⇩m⇩s (subst_range σ)"
    using wt_bij_finite_subst_exists[OF finite_vars]
          subst_inj_on_is_bij_betw subterm_inj_on_alt_def'
    by atomize_elim auto

  have σ_bij_dom_img: "bij_betw σ (subst_domain σ) (subst_range σ)"
    by (metis σ_subterm_inj subst_inj_on_is_bij_betw subterm_inj_on_alt_def)

  have "finite (subst_domain σ)" by(metis σ_fv_dom finite_vars(1))
  hence σ_finite_img: "finite (subst_range σ)" using σ_bij_dom_img bij_betw_finite by blast 
  
  have σ_img_subterms: "∀s ∈ subst_range σ. ∀u ∈ subst_range σ. (∃v. v ⊑ s ∧ v ⊑ u) ⟶ s = u"
    by (metis σ_subterm_inj subterm_inj_on_alt_def')

  have "subst_range σ ⊆ subterms⇩s⇩e⇩t (subst_range σ)" by auto
  hence "subst_range σ ⊆ public_ground_wf_terms - ?Strms"
      and σ_pgwt_img:
        "subst_range σ ⊆ public_ground_wf_terms"
        "subterms⇩s⇩e⇩t (subst_range σ) ⊆ public_ground_wf_terms"
    using σ_fresh_pub_img pgwt_is_empty_synth by blast+

  have σ_img_ground: "ground (subst_range σ)"
    using σ_pgwt_img pgwt_ground by auto
  hence σ_inj: "inj σ"
    using σ_bij_dom_img subst_inj_is_bij_betw_dom_img_if_ground_img by auto

  have σ_ineqs_fv_dom: "⋀X F. Inequality X F ∈ set S ⟹ fv⇩p⇩a⇩i⇩r⇩s F - set X ⊆ subst_domain σ"
    using σ_fv_dom by fastforce

  have σ_dom_bvars_disj: "∀X F. Inequality X F ∈ set S ⟶ subst_domain σ ∩ set X = {}"
    using ineqs_vars_not_bound σ_fv_dom by fastforce
  
  have ℐ'1: "∀X F δ. Inequality X F ∈ set S ⟶ fv⇩p⇩a⇩i⇩r⇩s F - set X ⊆ subst_domain ℐ'"
    using ℐ'(3) ineqs_vars_not_bound by fastforce
  
  have ℐ'2: "∀X F. Inequality X F ∈ set S ⟶ subst_domain ℐ' ∩ set X = {}"
    using ℐ'(3) ineqs_vars_not_bound by blast
  
  have doms_eq: "subst_domain ℐ' = subst_domain σ" using ℐ'(3) σ_fv_dom by simp

  have σ_ineqs_neq: "ineq_model σ X F" when "Inequality X F ∈ set S" for X F
  proof -
    obtain a::"'fun" where a: "a ∉ ⋃(funs_term ` subterms⇩s⇩e⇩t (subst_range σ))"
      using exists_fun_notin_funs_terms[OF subterms_union_finite[OF σ_finite_img]]
      by atomize_elim auto
    hence a': "⋀T. Fun a T ∉ subterms⇩s⇩e⇩t (subst_range σ)"
              "⋀S. Fun a [] ∈ set (Fun a []#S)" "Fun a [] ∉ Var ` set X"
      by (meson a UN_I term.set_intros(1), auto)

    define t where "t ≡ Fun a (Fun a []#map fst F)"
    define t' where "t' ≡ Fun a (Fun a []#map snd F)"

    note F_in = that

    have t_fv: "fv t ∪ fv t' ⊆ fv⇩p⇩a⇩i⇩r⇩s F"
      unfolding t_def t'_def by force

    have t_subterms: "subterms t ∪ subterms t' ⊆ subterms⇩s⇩e⇩t (trms⇩p⇩a⇩i⇩r⇩s F) ∪ {t, t', Fun a []}"
      unfolding t_def t'_def by force

    have "t ⋅ δ ⋅ σ ≠ t' ⋅ δ ⋅ σ" when "?P δ X" for δ
    proof -
      have tfr_assms: "Q1 F X ∨ Q2 F X" using tfr_ineq F_in by metis
  
      have "Q1 F X ⟹ ∀x ∈ fv⇩p⇩a⇩i⇩r⇩s F - set X. ∃c. σ x = Fun c []"
      proof
        fix x assume "Q1 F X" and x: "x ∈ fv⇩p⇩a⇩i⇩r⇩s F - set X"
        then obtain a where "Γ (Var x) = TAtom a" unfolding Q1_def by atomize_elim auto
        hence a: "Γ (σ x) = TAtom a" using σ_wt unfolding wt⇩s⇩u⇩b⇩s⇩t_def by simp
        
        have "x ∈ subst_domain σ" using σ_ineqs_fv_dom x F_in by auto
        then obtain f T where fT: "σ x = Fun f T" by (meson σ_img_ground ground_img_obtain_fun)
        hence "T = []" using σ_wf_trm a TAtom_term_cases by fastforce
        thus "∃c. σ x = Fun c []" using fT by metis
      qed
      hence 1: "Q1 F X ⟹ ∀x ∈ (fv t ∪ fv t') - set X. ∃c. σ x = Fun c []"
        using t_fv by auto
  
      have 2: "¬Q1 F X ⟹ Q2 F X" by (metis tfr_assms)
  
      have 3: "subst_domain σ ∩ set X = {}" using σ_dom_bvars_disj F_in by auto

      have 4: "subterms⇩s⇩e⇩t (subst_range σ) ∩ (subterms t ∪ subterms t') = {}"
      proof -
        define M1 where "M1 ≡ {t, t', Fun a []}"
        define M2 where "M2 ≡ ?Strms"

        have "subterms⇩s⇩e⇩t (trms⇩p⇩a⇩i⇩r⇩s F) ⊆ M2"
          using F_in unfolding M2_def by force
        moreover have "subterms t ∪ subterms t' ⊆ subterms⇩s⇩e⇩t (trms⇩p⇩a⇩i⇩r⇩s F) ∪ M1"
          using t_subterms unfolding M1_def by blast
        ultimately have *: "subterms t ∪ subterms t' ⊆ M2 ∪ M1"
          by auto

        have "subterms⇩s⇩e⇩t (subst_range σ) ∩ M1 = {}"
             "subterms⇩s⇩e⇩t (subst_range σ) ∩ M2 = {}"
          using a' σ_fresh_pub_img
          unfolding t_def t'_def M1_def M2_def
          by blast+
        thus ?thesis using * by blast
      qed
  
      have 5: "(fv t ∪ fv t') - subst_domain σ ⊆ set X"
        using σ_ineqs_fv_dom[OF F_in] t_fv
        by auto
  
      have 6: "∀δ. ?P δ X ⟶ t ⋅ δ ⋅ ℐ' ≠ t' ⋅ δ ⋅ ℐ'"
        by (metis t_def t'_def ℐ'(1) F_in ineq_model_singleE ineq_model_single_iff)
  
      have 7: "fv t ∪ fv t' - set X ⊆ subst_domain ℐ'" using ℐ'1 F_in t_fv by force
  
      have 8: "subst_domain ℐ' ∩ set X = {}" using ℐ'2 F_in by auto

      have 9: "Q1' t t' X" when "Q1 F X"
        using that t_fv
        unfolding Q1_def Q1'_def t_def t'_def
        by blast

      have 10: "Q2' t t' X" when "Q2 F X" unfolding Q2'_def
      proof (intro allI impI)
        fix f T assume "Fun f T ∈ subterms t ∪ subterms t'"
        moreover {
          assume "Fun f T ∈ subterms⇩s⇩e⇩t (trms⇩p⇩a⇩i⇩r⇩s F)"
          hence "T = [] ∨ (∃s∈set T. s ∉ Var ` set X)" by (metis Q2_def that)
        } moreover {
          assume "Fun f T = t" hence "T = [] ∨ (∃s∈set T. s ∉ Var ` set X)"
            unfolding t_def using a'(2,3) by simp
        } moreover {
          assume "Fun f T = t'" hence "T = [] ∨ (∃s∈set T. s ∉ Var ` set X)"
            unfolding t'_def using a'(2,3) by simp
        } moreover {
          assume "Fun f T = Fun a []" hence "T = [] ∨ (∃s∈set T. s ∉ Var ` set X)" by simp
        } ultimately show "T = [] ∨ (∃s∈set T. s ∉ Var ` set X)" using t_subterms by blast
      qed

      note 11 = σ_subterm_inj σ_img_ground 3 4 5
  
      note 12 = 6 7 8 ℐ'(2) doms_eq
  
      show "t ⋅ δ ⋅ σ ≠ t' ⋅ δ ⋅ σ"
        using 1 2 9 10 that sat_ineq_subterm_inj_subst[OF 11 _ 12] 
        unfolding Q1'_def Q2'_def by metis
    qed
    thus ?thesis by (metis t_def t'_def ineq_model_singleI ineq_model_single_iff)
  qed

  have σ_ineqs_fv_dom': "fv⇩p⇩a⇩i⇩r⇩s (F ⋅⇩p⇩a⇩i⇩r⇩s δ) ⊆ subst_domain σ"
    when "Inequality X F ∈ set S" and "?P δ X" for F δ X
    using σ_ineqs_fv_dom[OF that(1)]
  proof (induction F)
    case (Cons g G)
    obtain t t' where g: "g = (t,t')" by (metis surj_pair)
    hence "fv⇩p⇩a⇩i⇩r⇩s (g#G ⋅⇩p⇩a⇩i⇩r⇩s δ)  = fv (t ⋅ δ) ∪ fv (t' ⋅ δ) ∪ fv⇩p⇩a⇩i⇩r⇩s (G ⋅⇩p⇩a⇩i⇩r⇩s δ)"
          "fv⇩p⇩a⇩i⇩r⇩s (g#G) = fv t ∪ fv t' ∪ fv⇩p⇩a⇩i⇩r⇩s G"
      by (simp_all add: subst_apply_pairs_def)
    moreover have "fv (t ⋅ δ) = fv t - subst_domain δ" "fv (t' ⋅ δ) = fv t' - subst_domain δ"
      using g that(2) by (simp_all add: subst_fv_unfold_ground_img range_vars_alt_def)
    moreover have "fv⇩p⇩a⇩i⇩r⇩s (G ⋅⇩p⇩a⇩i⇩r⇩s δ) ⊆ subst_domain σ" using Cons by auto
    ultimately show ?case using Cons.prems that(2) by auto
  qed (simp add: subst_apply_pairs_def)

  have σ_ineqs_ground: "fv⇩p⇩a⇩i⇩r⇩s ((F ⋅⇩p⇩a⇩i⇩r⇩s δ) ⋅⇩p⇩a⇩i⇩r⇩s σ) = {}"
    when "Inequality X F ∈ set S" and "?P δ X" for F δ X
    using σ_ineqs_fv_dom'[OF that]
  proof (induction F)
    case (Cons g G)
    obtain t t' where g: "g = (t,t')" by (metis surj_pair)
    hence "fv (t ⋅ δ) ⊆ subst_domain σ" "fv (t' ⋅ δ) ⊆ subst_domain σ"
      using Cons.prems by (auto simp add: subst_apply_pairs_def)
    hence "fv (t ⋅ δ ⋅ σ) = {}" "fv (t' ⋅ δ ⋅ σ) = {}"
      using subst_fv_dom_ground_if_ground_img[OF _ σ_img_ground] by metis+
    thus ?case using g Cons by (auto simp add: subst_apply_pairs_def)
  qed (simp add: subst_apply_pairs_def)
 
  from σ_pgwt_img σ_ineqs_neq have σ_deduct: "M ⊢⇩c σ x" when "x ∈ subst_domain σ" for x M
    using that pgwt_deducible by fastforce

  { fix M::"('fun,'var) terms"
    have "⟦M; S⟧⇩c (θ ∘⇩s σ ∘⇩s ℐ)"
      using ‹wf⇩s⇩t {} S› ‹simple S› S_θ_disj σ_ineqs_neq σ_ineqs_fv_dom' θ_vars_S_bvars_disj
    proof (induction S arbitrary: M rule: wf⇩s⇩t_simple_induct)
      case (ConsSnd v S)
      hence S_sat: "⟦M; S⟧⇩c (θ ∘⇩s σ ∘⇩s ℐ)" and "θ v = Var v" by auto
      hence *: "⋀M. M ⊢⇩c Var v ⋅ (θ ∘⇩s σ ∘⇩s ℐ)"
        using ℐ_deduct σ_deduct
        by (metis ideduct_synth_subst_apply eval_term.simps(1)
                  subst_subst_compose trm_subst_ident')

      define M' where "M' ≡ M ∪ (ik⇩s⇩t S ⋅⇩s⇩e⇩t θ ∘⇩s σ ∘⇩s ℐ)"

      have "∀t ∈ set [Var v]. M' ⊢⇩c t ⋅ (θ ∘⇩s σ ∘⇩s ℐ)" using *[of M'] by simp
      thus ?case
        using strand_sem_append(1)[OF S_sat, of "[Send1 (Var v)]", unfolded M'_def[symmetric]]
              strand_sem_c.simps(1)[of M'] strand_sem_c.simps(2)[of M' "[Var v]" "[]"]
        by presburger
    next
      case (ConsIneq X F S)
      have dom_disj: "subst_domain θ ∩ fv⇩p⇩a⇩i⇩r⇩s F = {}"
        using ConsIneq.prems(1) subst_dom_vars_in_subst
        by force
      hence *: "F ⋅⇩p⇩a⇩i⇩r⇩s θ = F" by blast

      have **: "ineq_model σ X F" by (meson ConsIneq.prems(2) in_set_conv_decomp)

      have "⋀x. x ∈ vars⇩s⇩t S ⟹ x ∈ vars⇩s⇩t (S@[Inequality X F])"
           "⋀x. x ∈ set S ⟹ x ∈ set (S@[Inequality X F])" by auto
      hence IH: "⟦M; S⟧⇩c (θ ∘⇩s σ ∘⇩s ℐ)" by (metis ConsIneq.IH ConsIneq.prems(1,2,3,4))

      have "ineq_model (σ ∘⇩s ℐ) X F"
      proof -
        have "fv⇩p⇩a⇩i⇩r⇩s (F ⋅⇩p⇩a⇩i⇩r⇩s δ) ⊆ subst_domain σ" when "?P δ X" for δ
          using ConsIneq.prems(3)[OF _ that] by simp
        hence "fv⇩p⇩a⇩i⇩r⇩s F - set X ⊆ subst_domain σ"
          using fv⇩p⇩a⇩i⇩r⇩s_subst_subset ex_P
          by (metis Diff_subset_conv Un_commute)
        thus ?thesis by (metis ineq_model_ground_subst[OF _ σ_img_ground **])
      qed
      hence "ineq_model (θ ∘⇩s σ ∘⇩s ℐ) X F"
        using * ineq_model_subst' subst_compose_assoc ConsIneq.prems(4)
        by (metis UnCI list.set_intros(1) set_append)
      thus ?case using IH by (auto simp add: ineq_model_def)
    qed auto
  }
  moreover have "wt⇩s⇩u⇩b⇩s⇩t (θ ∘⇩s σ ∘⇩s ℐ)" "wf⇩t⇩r⇩m⇩s (subst_range (θ ∘⇩s σ ∘⇩s ℐ))"
    by (metis wt_subst_compose ‹wt⇩s⇩u⇩b⇩s⇩t θ› ‹wt⇩s⇩u⇩b⇩s⇩t σ› ‹wt⇩s⇩u⇩b⇩s⇩t ℐ›,
        metis assms(4) ℐ_wf_trm σ_wf_trm wf_trm_subst subst_img_comp_subset')
  ultimately show ?thesis
    using interpretation_comp(1)[OF ‹interpretation⇩s⇩u⇩b⇩s⇩t ℐ›, of "θ ∘⇩s σ"]
          subst_idem_support[OF ‹subst_idem θ›, of "σ ∘⇩s ℐ"] subst_compose_assoc
    unfolding constr_sem_c_def by metis
qed
end


subsubsection ‹Theorem: Type-flaw resistant constraints are well-typed satisfiable (composition-only)›
text ‹
  There exists well-typed models of satisfiable type-flaw resistant constraints in the
  semantics where the intruder is limited to composition only (i.e., he cannot perform
  decomposition/analysis of deducible messages).
›
theorem wt_attack_if_tfr_attack:
  assumes "interpretation⇩s⇩u⇩b⇩s⇩t ℐ"
    and "ℐ ⊨⇩c ⟨S, θ⟩"
    and "wf⇩c⇩o⇩n⇩s⇩t⇩r S θ"
    and "wt⇩s⇩u⇩b⇩s⇩t θ"
    and "tfr⇩s⇩t S"
    and "wf⇩t⇩r⇩m⇩s (trms⇩s⇩t S)"
    and "wf⇩t⇩r⇩m⇩s (subst_range θ)"
  obtains ℐ⇩τ where "interpretation⇩s⇩u⇩b⇩s⇩t ℐ⇩τ"
    and "ℐ⇩τ ⊨⇩c ⟨S, θ⟩"
    and "wt⇩s⇩u⇩b⇩s⇩t ℐ⇩τ"
    and "wf⇩t⇩r⇩m⇩s (subst_range ℐ⇩τ)"
proof -
  have tfr: "tfr⇩s⇩e⇩t (trms⇩s⇩t (LI_preproc S))" "wf⇩t⇩r⇩m⇩s (trms⇩s⇩t (LI_preproc S))"
            "list_all tfr⇩s⇩t⇩p (LI_preproc S)"
    using assms(5,6) LI_preproc_preserves_tfr 
    unfolding tfr⇩s⇩t_def by (metis, metis LI_preproc_trms_eq, metis)
  have wf_constr: "wf⇩c⇩o⇩n⇩s⇩t⇩r (LI_preproc S) θ" by (metis LI_preproc_preserves_wellformedness assms(3))
  obtain S' θ' where *: "simple S'" "(LI_preproc S,θ) ↝⇧* (S',θ')" "⟦{}; S'⟧⇩c ℐ"
    using LI_completeness[OF assms(3,2)] unfolding constr_sem_c_def
    by (meson term.order_refl)
  have **: "wf⇩c⇩o⇩n⇩s⇩t⇩r S' θ'" "wt⇩s⇩u⇩b⇩s⇩t θ'" "list_all tfr⇩s⇩t⇩p S'" "wf⇩t⇩r⇩m⇩s (trms⇩s⇩t S')" "wf⇩t⇩r⇩m⇩s (subst_range θ')" 
    using LI_preserves_welltypedness[OF *(2) wf_constr assms(4,7) tfr]
          LI_preserves_wellformedness[OF *(2) wf_constr]
          LI_preserves_tfr[OF *(2) wf_constr assms(4,7) tfr]
    by metis+

  define A where "A ≡ {x ∈ vars⇩s⇩t S'. ∃X F. Inequality X F ∈ set S' ∧ x ∈ fv⇩p⇩a⇩i⇩r⇩s F ∧ x ∉ set X}"
  define B where "B ≡ UNIV - A"

  let ?ℐ = "rm_vars B ℐ"

  have grℐ: "ground (subst_range ℐ)" "ground (subst_range ?ℐ)"
    using assms(1) rm_vars_img_subset[of B ℐ] by (auto simp add: subst_domain_def)

  { fix X F
    assume "Inequality X F ∈ set S'"
    hence *: "ineq_model ℐ X F"
      using strand_sem_c_imp_ineq_model[OF *(3)]
      by (auto simp del: subst_range.simps)
    hence "ineq_model ?ℐ X F"
    proof -
      { fix δ
        assume 1: "subst_domain δ = set X" "ground (subst_range δ)"
            and 2: "list_ex (λf. fst f ⋅ δ ∘⇩s ℐ ≠ snd f ⋅ δ ∘⇩s ℐ) F"
        have "list_ex (λf. fst f ⋅ δ ∘⇩s rm_vars B ℐ ≠ snd f ⋅ δ ∘⇩s rm_vars B ℐ) F" using 2
        proof (induction F)
          case (Cons g G)
          obtain t t' where g: "g = (t,t')" by (metis surj_pair)
          thus ?case
            using Cons Unifier_ground_rm_vars[OF grℐ(1), of "t ⋅ δ" B "t' ⋅ δ"]
            by auto
        qed simp
      } thus ?thesis using * unfolding ineq_model_def list_ex_iff case_prod_unfold by simp
    qed
  } moreover have "subst_domain ℐ = UNIV" using assms(1) by metis
  hence "subst_domain ?ℐ = A" using rm_vars_dom[of B ℐ] B_def by blast
  ultimately obtain ℐ⇩τ where
      "interpretation⇩s⇩u⇩b⇩s⇩t ℐ⇩τ" "ℐ⇩τ ⊨⇩c ⟨S', θ'⟩" "wt⇩s⇩u⇩b⇩s⇩t ℐ⇩τ" "wf⇩t⇩r⇩m⇩s (subst_range ℐ⇩τ)"
    using wt_sat_if_simple[OF *(1) **(1,2,5,4) _ grℐ(2) _ **(3)] A_def
    by (auto simp del: subst_range.simps)
  thus ?thesis using that LI_soundness[OF assms(3) *(2)] by metis
qed

text ‹
  Contra-positive version: if a type-flaw resistant constraint does not have a well-typed model
  then it is unsatisfiable
›
corollary secure_if_wt_secure:
  assumes "¬(∃ℐ⇩τ. interpretation⇩s⇩u⇩b⇩s⇩t ℐ⇩τ ∧ (ℐ⇩τ ⊨⇩c ⟨S, θ⟩) ∧ wt⇩s⇩u⇩b⇩s⇩t ℐ⇩τ)"
  and     "wf⇩c⇩o⇩n⇩s⇩t⇩r S θ" "wt⇩s⇩u⇩b⇩s⇩t θ" "tfr⇩s⇩t S"
  and     "wf⇩t⇩r⇩m⇩s (trms⇩s⇩t S)" "wf⇩t⇩r⇩m⇩s (subst_range θ)"
  shows "¬(∃ℐ. interpretation⇩s⇩u⇩b⇩s⇩t ℐ ∧ (ℐ ⊨⇩c ⟨S, θ⟩))"
using wt_attack_if_tfr_attack[OF _ _ assms(2,3,4,5,6)] assms(1) by metis

end


subsection ‹Lifting the Composition-Only Typing Result to the Full Intruder Model›
context typing_result
begin

subsubsection ‹Analysis Invariance›
definition (in typed_model) Ana_invar_subst where
  "Ana_invar_subst ℳ ≡
    (∀f T K M δ. Fun f T ∈ (subterms⇩s⇩e⇩t ℳ) ⟶
                 Ana (Fun f T) = (K, M) ⟶ Ana (Fun f T ⋅ δ) = (K ⋅⇩l⇩i⇩s⇩t δ, M ⋅⇩l⇩i⇩s⇩t δ))"

lemma (in typed_model) Ana_invar_subst_subset:
  assumes "Ana_invar_subst M" "N ⊆ M"
  shows "Ana_invar_subst N"
using assms unfolding Ana_invar_subst_def by blast

lemma (in typed_model) Ana_invar_substD:
  assumes "Ana_invar_subst ℳ"
  and "Fun f T ∈ subterms⇩s⇩e⇩t ℳ" "Ana (Fun f T) = (K, M)"
  shows "Ana (Fun f T ⋅ ℐ) = (K ⋅⇩l⇩i⇩s⇩t ℐ, M ⋅⇩l⇩i⇩s⇩t ℐ)"
using assms Ana_invar_subst_def by blast

end


subsubsection ‹Preliminary Definitions›
text ‹Strands extended with "decomposition steps"›
datatype (funs⇩e⇩s⇩t⇩p: 'a, vars⇩e⇩s⇩t⇩p: 'b) extstrand_step =
  Step   "('a,'b) strand_step"
| Decomp "('a,'b) term"

context typing_result
begin

context
begin
private fun trms⇩e⇩s⇩t⇩p where
  "trms⇩e⇩s⇩t⇩p (Step x) = trms⇩s⇩t⇩p x"
| "trms⇩e⇩s⇩t⇩p (Decomp t) = {t}"

private abbreviation trms⇩e⇩s⇩t where "trms⇩e⇩s⇩t S ≡ ⋃(trms⇩e⇩s⇩t⇩p ` set S)"

private type_synonym ('a,'b) extstrand = "('a,'b) extstrand_step list"
private type_synonym ('a,'b) extstrands = "('a,'b) extstrand set"

private definition decomp::"('fun,'var) term ⇒ ('fun,'var) strand" where
  "decomp t ≡ (case (Ana t) of (K,T) ⇒ [send⟨[t]⟩⇩s⇩t,send⟨K⟩⇩s⇩t,receive⟨T⟩⇩s⇩t])"

private fun to_st where
  "to_st [] = []"
| "to_st (Step x#S) = x#(to_st S)"
| "to_st (Decomp t#S) = (decomp t)@(to_st S)"

private fun to_est where
  "to_est [] = []"
| "to_est (x#S) = Step x#to_est S"

private abbreviation "ik⇩e⇩s⇩t A ≡ ik⇩s⇩t (to_st A)"
private abbreviation "wf⇩e⇩s⇩t V A ≡ wf⇩s⇩t V (to_st A)"
private abbreviation "assignment_rhs⇩e⇩s⇩t A ≡ assignment_rhs⇩s⇩t (to_st A)"
private abbreviation "vars⇩e⇩s⇩t A ≡ vars⇩s⇩t (to_st A)"
private abbreviation "wfrestrictedvars⇩e⇩s⇩t A ≡ wfrestrictedvars⇩s⇩t (to_st A)"
private abbreviation "bvars⇩e⇩s⇩t A ≡ bvars⇩s⇩t (to_st A)"
private abbreviation "fv⇩e⇩s⇩t A ≡ fv⇩s⇩t (to_st A)"
private abbreviation "funs⇩e⇩s⇩t A ≡ funs⇩s⇩t (to_st A)"

private definition wf⇩s⇩t⇩s'::"('fun,'var) strands ⇒ ('fun,'var) extstrand ⇒ bool" where
  "wf⇩s⇩t⇩s' 𝒮 𝒜 ≡ (∀S ∈ 𝒮. wf⇩s⇩t (wfrestrictedvars⇩e⇩s⇩t 𝒜) (dual⇩s⇩t S)) ∧
                 (∀S ∈ 𝒮. ∀S' ∈ 𝒮. fv⇩s⇩t S ∩ bvars⇩s⇩t S' = {}) ∧
                 (∀S ∈ 𝒮. fv⇩s⇩t S ∩ bvars⇩e⇩s⇩t 𝒜 = {}) ∧
                 (∀S ∈ 𝒮. fv⇩s⇩t (to_st 𝒜) ∩ bvars⇩s⇩t S = {})"

private definition wf⇩s⇩t⇩s::"('fun,'var) strands ⇒ bool" where
  "wf⇩s⇩t⇩s 𝒮 ≡ (∀S ∈ 𝒮. wf⇩s⇩t {} (dual⇩s⇩t S)) ∧ (∀S ∈ 𝒮. ∀S' ∈ 𝒮. fv⇩s⇩t S ∩ bvars⇩s⇩t S' = {})"

private inductive well_analyzed::"('fun,'var) extstrand ⇒ bool" where
  Nil[simp]: "well_analyzed []"
| Step: "well_analyzed A ⟹ well_analyzed (A@[Step x])"
| Decomp: "⟦well_analyzed A; t ∈ subterms⇩s⇩e⇩t (ik⇩e⇩s⇩t A ∪ assignment_rhs⇩e⇩s⇩t A) - (Var ` 𝒱)⟧
    ⟹ well_analyzed (A@[Decomp t])"

private fun subst_apply_extstrandstep (infix ‹⋅⇩e⇩s⇩t⇩p› 51) where
  "subst_apply_extstrandstep (Step x) θ = Step (x ⋅⇩s⇩t⇩p θ)"
| "subst_apply_extstrandstep (Decomp t) θ = Decomp (t ⋅ θ)"

private lemma subst_apply_extstrandstep'_simps[simp]:
  "(Step (send⟨ts⟩⇩s⇩t)) ⋅⇩e⇩s⇩t⇩p θ = Step (send⟨ts ⋅⇩l⇩i⇩s⇩t θ⟩⇩s⇩t)"
  "(Step (receive⟨ts⟩⇩s⇩t)) ⋅⇩e⇩s⇩t⇩p θ = Step (receive⟨ts ⋅⇩l⇩i⇩s⇩t θ⟩⇩s⇩t)"
  "(Step (⟨a: t ≐ t'⟩⇩s⇩t)) ⋅⇩e⇩s⇩t⇩p θ = Step (⟨a: (t ⋅ θ) ≐ (t' ⋅ θ)⟩⇩s⇩t)"
  "(Step (∀X⟨∨≠: F⟩⇩s⇩t)) ⋅⇩e⇩s⇩t⇩p θ = Step (∀X⟨∨≠: (F ⋅⇩p⇩a⇩i⇩r⇩s rm_vars (set X) θ)⟩⇩s⇩t)"
by simp_all

private lemma vars⇩e⇩s⇩t⇩p_subst_apply_simps[simp]:
  "vars⇩e⇩s⇩t⇩p ((Step (send⟨ts⟩⇩s⇩t)) ⋅⇩e⇩s⇩t⇩p θ) = fv⇩s⇩e⇩t (set ts ⋅⇩s⇩e⇩t θ)"
  "vars⇩e⇩s⇩t⇩p ((Step (receive⟨ts⟩⇩s⇩t)) ⋅⇩e⇩s⇩t⇩p θ) = fv⇩s⇩e⇩t (set ts ⋅⇩s⇩e⇩t θ)"
  "vars⇩e⇩s⇩t⇩p ((Step (⟨a: t ≐ t'⟩⇩s⇩t)) ⋅⇩e⇩s⇩t⇩p θ) = fv (t ⋅ θ) ∪ fv (t' ⋅ θ)"
  "vars⇩e⇩s⇩t⇩p ((Step (∀X⟨∨≠: F⟩⇩s⇩t)) ⋅⇩e⇩s⇩t⇩p θ) = set X ∪ fv⇩p⇩a⇩i⇩r⇩s (F ⋅⇩p⇩a⇩i⇩r⇩s rm_vars (set X) θ)"
by auto

private definition subst_apply_extstrand (infix ‹⋅⇩e⇩s⇩t› 51) where "S ⋅⇩e⇩s⇩t θ ≡ map (λx. x ⋅⇩e⇩s⇩t⇩p θ) S"

private abbreviation update⇩s⇩t::"('fun,'var) strands ⇒ ('fun,'var) strand ⇒ ('fun,'var) strands"
where
  "update⇩s⇩t 𝒮 S ≡ (case S of Nil ⇒ 𝒮 - {S} | Cons _ S' ⇒ insert S' (𝒮 - {S}))"

private inductive_set decomps⇩e⇩s⇩t::
  "('fun,'var) terms ⇒ ('fun,'var) terms ⇒ ('fun,'var) subst ⇒ ('fun,'var) extstrands"
(* ℳ: intruder knowledge
   𝒩: additional messages
*)
for ℳ and 𝒩 and ℐ where
  Nil: "[] ∈ decomps⇩e⇩s⇩t ℳ 𝒩 ℐ"
| Decomp: "⟦𝒟 ∈ decomps⇩e⇩s⇩t ℳ 𝒩 ℐ; Fun f T ∈ subterms⇩s⇩e⇩t (ℳ ∪ 𝒩);
            Ana (Fun f T) = (K,M); M ≠ [];
            (ℳ ∪ ik⇩e⇩s⇩t 𝒟) ⋅⇩s⇩e⇩t ℐ ⊢⇩c Fun f T ⋅ ℐ;
            ⋀k. k ∈ set K ⟹ (ℳ ∪ ik⇩e⇩s⇩t 𝒟) ⋅⇩s⇩e⇩t ℐ ⊢⇩c k ⋅ ℐ⟧
            ⟹ 𝒟@[Decomp (Fun f T)] ∈ decomps⇩e⇩s⇩t ℳ 𝒩 ℐ"

private fun decomp_rm⇩e⇩s⇩t::"('fun,'var) extstrand ⇒ ('fun,'var) extstrand" where
  "decomp_rm⇩e⇩s⇩t [] = []"
| "decomp_rm⇩e⇩s⇩t (Decomp t#S) = decomp_rm⇩e⇩s⇩t S"
| "decomp_rm⇩e⇩s⇩t (Step x#S) = Step x#(decomp_rm⇩e⇩s⇩t S)"

private inductive sem⇩e⇩s⇩t_d::"('fun,'var) terms ⇒ ('fun,'var) subst ⇒ ('fun,'var) extstrand ⇒ bool"
where
  Nil[simp]: "sem⇩e⇩s⇩t_d M⇩0 ℐ []"
| Send: "sem⇩e⇩s⇩t_d M⇩0 ℐ S ⟹ ∀t ∈ set ts. (ik⇩e⇩s⇩t S ∪ M⇩0) ⋅⇩s⇩e⇩t ℐ ⊢ t ⋅ ℐ
          ⟹ sem⇩e⇩s⇩t_d M⇩0 ℐ (S@[Step (send⟨ts⟩⇩s⇩t)])"
| Receive: "sem⇩e⇩s⇩t_d M⇩0 ℐ S ⟹ sem⇩e⇩s⇩t_d M⇩0 ℐ (S@[Step (receive⟨t⟩⇩s⇩t)])"
| Equality: "sem⇩e⇩s⇩t_d M⇩0 ℐ S ⟹ t ⋅ ℐ = t' ⋅ ℐ ⟹ sem⇩e⇩s⇩t_d M⇩0 ℐ (S@[Step (⟨a: t ≐ t'⟩⇩s⇩t)])"
| Inequality: "sem⇩e⇩s⇩t_d M⇩0 ℐ S
    ⟹ ineq_model ℐ X F
    ⟹ sem⇩e⇩s⇩t_d M⇩0 ℐ (S@[Step (∀X⟨∨≠: F⟩⇩s⇩t)])"
| Decompose: "sem⇩e⇩s⇩t_d M⇩0 ℐ S ⟹ (ik⇩e⇩s⇩t S ∪ M⇩0) ⋅⇩s⇩e⇩t ℐ ⊢ t ⋅ ℐ ⟹ Ana t = (K, M)
    ⟹ (⋀k. k ∈ set K ⟹ (ik⇩e⇩s⇩t S ∪ M⇩0) ⋅⇩s⇩e⇩t ℐ ⊢ k ⋅ ℐ) ⟹ sem⇩e⇩s⇩t_d M⇩0 ℐ (S@[Decomp t])"

private inductive sem⇩e⇩s⇩t_c::"('fun,'var) terms ⇒ ('fun,'var) subst ⇒ ('fun,'var) extstrand ⇒ bool"
where
  Nil[simp]: "sem⇩e⇩s⇩t_c M⇩0 ℐ []"
| Send: "sem⇩e⇩s⇩t_c M⇩0 ℐ S ⟹ ∀t ∈ set ts. (ik⇩e⇩s⇩t S ∪ M⇩0) ⋅⇩s⇩e⇩t ℐ ⊢⇩c t ⋅ ℐ
          ⟹ sem⇩e⇩s⇩t_c M⇩0 ℐ (S@[Step (send⟨ts⟩⇩s⇩t)])"
| Receive: "sem⇩e⇩s⇩t_c M⇩0 ℐ S ⟹ sem⇩e⇩s⇩t_c M⇩0 ℐ (S@[Step (receive⟨t⟩⇩s⇩t)])"
| Equality: "sem⇩e⇩s⇩t_c M⇩0 ℐ S ⟹ t ⋅ ℐ = t' ⋅ ℐ ⟹ sem⇩e⇩s⇩t_c M⇩0 ℐ (S@[Step (⟨a: t ≐ t'⟩⇩s⇩t)])"
| Inequality: "sem⇩e⇩s⇩t_c M⇩0 ℐ S
    ⟹ ineq_model ℐ X F
    ⟹ sem⇩e⇩s⇩t_c M⇩0 ℐ (S@[Step (∀X⟨∨≠: F⟩⇩s⇩t)])"
| Decompose: "sem⇩e⇩s⇩t_c M⇩0 ℐ S ⟹ (ik⇩e⇩s⇩t S ∪ M⇩0) ⋅⇩s⇩e⇩t ℐ ⊢⇩c t ⋅ ℐ ⟹ Ana t = (K, M)
    ⟹ (⋀k. k ∈ set K ⟹ (ik⇩e⇩s⇩t S ∪ M⇩0) ⋅⇩s⇩e⇩t ℐ ⊢⇩c k ⋅ ℐ) ⟹ sem⇩e⇩s⇩t_c M⇩0 ℐ (S@[Decomp t])"


subsubsection ‹Preliminary Lemmata›
private lemma wf⇩s⇩t⇩s_wf⇩s⇩t⇩s':
  "wf⇩s⇩t⇩s 𝒮 = wf⇩s⇩t⇩s' 𝒮 []"
by (simp add: wf⇩s⇩t⇩s_def wf⇩s⇩t⇩s'_def)

private lemma decomp_ik:
  assumes "Ana t = (K,M)"
  shows "ik⇩s⇩t (decomp t) = set M"
using ik_rcv_map ik_rcv_map'
by (auto simp add: decomp_def inv_def assms)

private lemma decomp_assignment_rhs_empty:
  assumes "Ana t = (K,M)"
  shows "assignment_rhs⇩s⇩t (decomp t) = {}"
by (auto simp add: decomp_def inv_def assms)

private lemma decomp_tfr⇩s⇩t⇩p:
  "list_all tfr⇩s⇩t⇩p (decomp t)"
by (auto simp add: decomp_def list_all_def)

private lemma trms⇩e⇩s⇩t_ikI:
  "t ∈ ik⇩e⇩s⇩t A ⟹ t ∈ subterms⇩s⇩e⇩t (trms⇩e⇩s⇩t A)"
proof (induction A rule: to_st.induct)
  case (2 x S) thus ?case by (cases x) auto
next
  case (3 t' A)
  obtain K M where Ana: "Ana t' = (K,M)" by (metis surj_pair)
  show ?case using 3 decomp_ik[OF Ana] Ana_subterm[OF Ana] by auto
qed simp

private lemma trms⇩e⇩s⇩t_ik_assignment_rhsI:
  "t ∈ ik⇩e⇩s⇩t A ∪ assignment_rhs⇩e⇩s⇩t A ⟹ t ∈ subterms⇩s⇩e⇩t (trms⇩e⇩s⇩t A)"
proof (induction A rule: to_st.induct)
  case (2 x S) thus ?case
  proof (cases x)
    case (Equality ac t t') thus ?thesis using 2 by (cases ac) auto
  qed auto
next
  case (3 t' A)
  obtain K M where Ana: "Ana t' = (K,M)" by (metis surj_pair)
  show ?case
    using 3 decomp_ik[OF Ana] decomp_assignment_rhs_empty[OF Ana] Ana_subterm[OF Ana]
    by auto
qed simp

private lemma trms⇩e⇩s⇩t_ik_subtermsI:
  assumes "t ∈ subterms⇩s⇩e⇩t (ik⇩e⇩s⇩t A)"
  shows "t ∈ subterms⇩s⇩e⇩t (trms⇩e⇩s⇩t A)"
proof -
  obtain t' where "t' ∈ ik⇩e⇩s⇩t A" "t ⊑ t'" using trms⇩e⇩s⇩t_ikI assms by auto
  thus ?thesis by (meson contra_subsetD in_subterms_subset_Union trms⇩e⇩s⇩t_ikI)
qed

private lemma trms⇩e⇩s⇩tD:
  assumes "t ∈ trms⇩e⇩s⇩t A"
  shows "t ∈ trms⇩s⇩t (to_st A)"
using assms
proof (induction A)
  case (Cons a A)
  obtain K M where Ana: "Ana t = (K,M)" by (metis surj_pair)
  hence "t ∈ trms⇩s⇩t (decomp t)" unfolding decomp_def by force
  thus ?case using Cons.IH Cons.prems by (cases a) auto
qed simp

private lemma subst_apply_extstrand_nil[simp]:
  "[] ⋅⇩e⇩s⇩t θ = []"
by (simp add: subst_apply_extstrand_def)

private lemma subst_apply_extstrand_singleton[simp]:
  "[Step (receive⟨ts⟩⇩s⇩t)] ⋅⇩e⇩s⇩t θ = [Step (Receive (ts ⋅⇩l⇩i⇩s⇩t θ))]"
  "[Step (send⟨ts⟩⇩s⇩t)] ⋅⇩e⇩s⇩t θ = [Step (Send (ts ⋅⇩l⇩i⇩s⇩t θ))]"
  "[Step (⟨a: t ≐ t'⟩⇩s⇩t)] ⋅⇩e⇩s⇩t θ = [Step (Equality a (t ⋅ θ) (t' ⋅ θ))]"
  "[Decomp t] ⋅⇩e⇩s⇩t θ = [Decomp (t ⋅ θ)]"
unfolding subst_apply_extstrand_def by auto

private lemma extstrand_subst_hom:
  "(S@S') ⋅⇩e⇩s⇩t θ = (S ⋅⇩e⇩s⇩t θ)@(S' ⋅⇩e⇩s⇩t θ)" "(x#S) ⋅⇩e⇩s⇩t θ = (x ⋅⇩e⇩s⇩t⇩p θ)#(S ⋅⇩e⇩s⇩t θ)"
unfolding subst_apply_extstrand_def by auto

private lemma decomp_vars:
  "wfrestrictedvars⇩s⇩t (decomp t) = fv t" "vars⇩s⇩t (decomp t) = fv t" "bvars⇩s⇩t (decomp t) = {}"
  "fv⇩s⇩t (decomp t) = fv t"
proof -
  obtain K M where Ana: "Ana t = (K,M)" by (metis surj_pair)
  hence "decomp t = [send⟨[t]⟩⇩s⇩t,Send K,Receive M]"
    unfolding decomp_def by simp
  moreover have "⋃(set (map fv K)) = fv⇩s⇩e⇩t (set K)" "⋃(set (map fv M)) = fv⇩s⇩e⇩t (set M)" by auto
  moreover have "fv⇩s⇩e⇩t (set K) ⊆ fv t" "fv⇩s⇩e⇩t (set M) ⊆ fv t"
    using Ana_subterm[OF Ana(1)] Ana_keys_fv[OF Ana(1)]
    by (simp_all add: UN_least psubsetD subtermeq_vars_subset)
  ultimately show
      "wfrestrictedvars⇩s⇩t (decomp t) = fv t" "vars⇩s⇩t (decomp t) = fv t" "bvars⇩s⇩t (decomp t) = {}"
      "fv⇩s⇩t (decomp t) = fv t"
    by auto
qed

private lemma bvars⇩e⇩s⇩t_cons: "bvars⇩e⇩s⇩t (x#X) = bvars⇩e⇩s⇩t [x] ∪ bvars⇩e⇩s⇩t X"
by (cases x) auto

private lemma bvars⇩e⇩s⇩t_append: "bvars⇩e⇩s⇩t (A@B) = bvars⇩e⇩s⇩t A ∪ bvars⇩e⇩s⇩t B"
proof (induction A)
  case (Cons x A) thus ?case using bvars⇩e⇩s⇩t_cons[of x "A@B"] bvars⇩e⇩s⇩t_cons[of x A] by force
qed simp

private lemma fv⇩e⇩s⇩t_cons: "fv⇩e⇩s⇩t (x#X) = fv⇩e⇩s⇩t [x] ∪ fv⇩e⇩s⇩t X"
by (cases x) auto

private lemma fv⇩e⇩s⇩t_append: "fv⇩e⇩s⇩t (A@B) = fv⇩e⇩s⇩t A ∪ fv⇩e⇩s⇩t B"
proof (induction A)
  case (Cons x A) thus ?case using fv⇩e⇩s⇩t_cons[of x "A@B"] fv⇩e⇩s⇩t_cons[of x A] by auto
qed simp

private lemma bvars_decomp: "bvars⇩e⇩s⇩t (A@[Decomp t]) = bvars⇩e⇩s⇩t A" "bvars⇩e⇩s⇩t (Decomp t#A) = bvars⇩e⇩s⇩t A"
using bvars⇩e⇩s⇩t_append decomp_vars(3) by fastforce+

private lemma bvars_decomp_rm: "bvars⇩e⇩s⇩t (decomp_rm⇩e⇩s⇩t A) = bvars⇩e⇩s⇩t A"
using bvars_decomp by (induct A rule: decomp_rm⇩e⇩s⇩t.induct) simp_all+

private lemma fv_decomp_rm: "fv⇩e⇩s⇩t (decomp_rm⇩e⇩s⇩t A) ⊆ fv⇩e⇩s⇩t A"
by (induct A rule: decomp_rm⇩e⇩s⇩t.induct) auto

private lemma ik_assignment_rhs_decomp_fv:
  assumes "t ∈ subterms⇩s⇩e⇩t (ik⇩e⇩s⇩t A ∪ assignment_rhs⇩e⇩s⇩t A)"
  shows "fv⇩e⇩s⇩t (A@[Decomp t]) = fv⇩e⇩s⇩t A"
proof -
  have "fv⇩e⇩s⇩t (A@[Decomp t]) = fv⇩e⇩s⇩t A ∪ fv t" using fv⇩e⇩s⇩t_append decomp_vars by simp
  moreover have "fv⇩s⇩e⇩t (ik⇩e⇩s⇩t A ∪ assignment_rhs⇩e⇩s⇩t A) ⊆ fv⇩e⇩s⇩t A" by force
  moreover have "fv t ⊆ fv⇩s⇩e⇩t (ik⇩e⇩s⇩t A ∪ assignment_rhs⇩e⇩s⇩t A)"
    using fv_subset_subterms[OF assms(1)] by simp
  ultimately show ?thesis by blast
qed

private lemma wfrestrictedvars⇩e⇩s⇩t_decomp_rm⇩e⇩s⇩t_subset:
  "wfrestrictedvars⇩e⇩s⇩t (decomp_rm⇩e⇩s⇩t A) ⊆ wfrestrictedvars⇩e⇩s⇩t A"
by (induct A rule: decomp_rm⇩e⇩s⇩t.induct) auto+

private lemma wfrestrictedvars⇩e⇩s⇩t_eq_wfrestrictedvars⇩s⇩t:
  "wfrestrictedvars⇩e⇩s⇩t A = wfrestrictedvars⇩s⇩t (to_st A)"
by simp

private lemma decomp_set_unfold:
  assumes "Ana t = (K, M)"
  shows "set (decomp t) = {send⟨[t]⟩⇩s⇩t,send⟨K⟩⇩s⇩t,receive⟨M⟩⇩s⇩t}"
using assms unfolding decomp_def by auto

private lemma ik⇩e⇩s⇩t_finite: "finite (ik⇩e⇩s⇩t A)"
by (rule finite_ik⇩s⇩t)

private lemma assignment_rhs⇩e⇩s⇩t_finite: "finite (assignment_rhs⇩e⇩s⇩t A)"
by (rule finite_assignment_rhs⇩s⇩t)

private lemma to_est_append: "to_est (A@B) = to_est A@to_est B"
by (induct A rule: to_est.induct) auto

private lemma to_st_to_est_inv: "to_st (to_est A) = A"
by (induct A rule: to_est.induct) auto

private lemma to_st_append: "to_st (A@B) = (to_st A)@(to_st B)"
by (induct A rule: to_st.induct) auto

private lemma to_st_cons: "to_st (a#B) = (to_st [a])@(to_st B)"
using to_st_append[of "[a]" B] by simp

private lemma wfrestrictedvars⇩e⇩s⇩t_split:
  "wfrestrictedvars⇩e⇩s⇩t (x#S) = wfrestrictedvars⇩e⇩s⇩t [x] ∪ wfrestrictedvars⇩e⇩s⇩t S"
  "wfrestrictedvars⇩e⇩s⇩t (S@S') = wfrestrictedvars⇩e⇩s⇩t S ∪ wfrestrictedvars⇩e⇩s⇩t S'"
using to_st_cons[of x S] to_st_append[of S S'] by auto

private lemma ik⇩e⇩s⇩t_append: "ik⇩e⇩s⇩t (A@B) = ik⇩e⇩s⇩t A ∪ ik⇩e⇩s⇩t B"
by (metis ik_append to_st_append)

private lemma assignment_rhs⇩e⇩s⇩t_append:
  "assignment_rhs⇩e⇩s⇩t (A@B) = assignment_rhs⇩e⇩s⇩t A ∪ assignment_rhs⇩e⇩s⇩t B"
by (metis assignment_rhs_append to_st_append)

private lemma ik⇩e⇩s⇩t_cons: "ik⇩e⇩s⇩t (a#A) = ik⇩e⇩s⇩t [a] ∪ ik⇩e⇩s⇩t A"
by (metis ik_append to_st_cons) 

private lemma ik⇩e⇩s⇩t_append_subst:
  "ik⇩e⇩s⇩t (A@B ⋅⇩e⇩s⇩t θ) = ik⇩e⇩s⇩t (A ⋅⇩e⇩s⇩t θ) ∪ ik⇩e⇩s⇩t (B ⋅⇩e⇩s⇩t θ)"
  "ik⇩e⇩s⇩t (A@B) ⋅⇩s⇩e⇩t θ = (ik⇩e⇩s⇩t A ⋅⇩s⇩e⇩t θ) ∪ (ik⇩e⇩s⇩t B ⋅⇩s⇩e⇩t θ)"
by (metis ik⇩e⇩s⇩t_append extstrand_subst_hom(1), simp add: image_Un to_st_append)

private lemma assignment_rhs⇩e⇩s⇩t_append_subst:
  "assignment_rhs⇩e⇩s⇩t (A@B ⋅⇩e⇩s⇩t θ) = assignment_rhs⇩e⇩s⇩t (A ⋅⇩e⇩s⇩t θ) ∪ assignment_rhs⇩e⇩s⇩t (B ⋅⇩e⇩s⇩t θ)"
  "assignment_rhs⇩e⇩s⇩t (A@B) ⋅⇩s⇩e⇩t θ = (assignment_rhs⇩e⇩s⇩t A ⋅⇩s⇩e⇩t θ) ∪ (assignment_rhs⇩e⇩s⇩t B ⋅⇩s⇩e⇩t θ)"
by (metis assignment_rhs⇩e⇩s⇩t_append extstrand_subst_hom(1), use assignment_rhs⇩e⇩s⇩t_append in blast)

private lemma ik⇩e⇩s⇩t_cons_subst:
  "ik⇩e⇩s⇩t (a#A ⋅⇩e⇩s⇩t θ) = ik⇩e⇩s⇩t ([a ⋅⇩e⇩s⇩t⇩p θ]) ∪ ik⇩e⇩s⇩t (A ⋅⇩e⇩s⇩t θ)"
  "ik⇩e⇩s⇩t (a#A) ⋅⇩s⇩e⇩t θ = (ik⇩e⇩s⇩t [a] ⋅⇩s⇩e⇩t θ) ∪ (ik⇩e⇩s⇩t A ⋅⇩s⇩e⇩t θ)"
by (metis ik⇩e⇩s⇩t_cons extstrand_subst_hom(2), metis image_Un ik⇩e⇩s⇩t_cons)

private lemma decomp_rm⇩e⇩s⇩t_append: "decomp_rm⇩e⇩s⇩t (S@S') = (decomp_rm⇩e⇩s⇩t S)@(decomp_rm⇩e⇩s⇩t S')"
by (induct S rule: decomp_rm⇩e⇩s⇩t.induct) auto

private lemma decomp_rm⇩e⇩s⇩t_single[simp]:
  "decomp_rm⇩e⇩s⇩t [Step (send⟨ts⟩⇩s⇩t)] = [Step (send⟨ts⟩⇩s⇩t)]"
  "decomp_rm⇩e⇩s⇩t [Step (receive⟨ts⟩⇩s⇩t)] = [Step (receive⟨ts⟩⇩s⇩t)]"
  "decomp_rm⇩e⇩s⇩t [Decomp t] = []"
by auto

private lemma decomp_rm⇩e⇩s⇩t_ik_subset: "ik⇩e⇩s⇩t (decomp_rm⇩e⇩s⇩t S) ⊆ ik⇩e⇩s⇩t S"
proof (induction S rule: decomp_rm⇩e⇩s⇩t.induct)
  case (3 x S) thus ?case by (cases x) auto
qed auto

private lemma decomps⇩e⇩s⇩t_ik_subset: "D ∈ decomps⇩e⇩s⇩t M N ℐ ⟹ ik⇩e⇩s⇩t D ⊆ subterms⇩s⇩e⇩t (M ∪ N)"
proof (induction D rule: decomps⇩e⇩s⇩t.induct)
  case (Decomp D f T K M')
  have "ik⇩s⇩t (decomp (Fun f T)) ⊆ subterms (Fun f T)"
       "ik⇩s⇩t (decomp (Fun f T)) = ik⇩e⇩s⇩t [Decomp (Fun f T)]"
    using decomp_ik[OF Decomp.hyps(3)] Ana_subterm[OF Decomp.hyps(3)]
    by auto
  hence "ik⇩s⇩t (to_st [Decomp (Fun f T)]) ⊆ subterms⇩s⇩e⇩t (M ∪ N)"
    using in_subterms_subset_Union[OF Decomp.hyps(2)]
    by blast
  thus ?case using ik⇩e⇩s⇩t_append[of D "[Decomp (Fun f T)]"] using Decomp.IH by auto
qed simp

private lemma decomps⇩e⇩s⇩t_decomp_rm⇩e⇩s⇩t_empty: "D ∈ decomps⇩e⇩s⇩t M N ℐ ⟹ decomp_rm⇩e⇩s⇩t D = []"
by (induct D rule: decomps⇩e⇩s⇩t.induct) (auto simp add: decomp_rm⇩e⇩s⇩t_append)

private lemma decomps⇩e⇩s⇩t_append:
  assumes "A ∈ decomps⇩e⇩s⇩t S N ℐ" "B ∈ decomps⇩e⇩s⇩t S N ℐ"
  shows "A@B ∈ decomps⇩e⇩s⇩t S N ℐ"
using assms(2)
proof (induction B rule: decomps⇩e⇩s⇩t.induct)
  case Nil show ?case using assms(1) by simp
next
  case (Decomp B f X K T)
  hence "S ∪ ik⇩e⇩s⇩t B ⋅⇩s⇩e⇩t ℐ ⊆ S ∪ ik⇩e⇩s⇩t (A@B) ⋅⇩s⇩e⇩t ℐ" using ik⇩e⇩s⇩t_append by auto
  thus ?case
    using decomps⇩e⇩s⇩t.Decomp[OF Decomp.IH(1) Decomp.hyps(2,3,4)]
          ideduct_synth_mono[OF Decomp.hyps(5)]
          ideduct_synth_mono[OF Decomp.hyps(6)]
    by auto
qed

private lemma decomps⇩e⇩s⇩t_subterms:
  assumes "A' ∈ decomps⇩e⇩s⇩t M N ℐ"
  shows "subterms⇩s⇩e⇩t (ik⇩e⇩s⇩t A') ⊆ subterms⇩s⇩e⇩t (M ∪ N)"
using assms
proof (induction A' rule: decomps⇩e⇩s⇩t.induct)
  case (Decomp D f X K T)
  hence "Fun f X ∈ subterms⇩s⇩e⇩t (M ∪ N)" by auto
  hence "subterms⇩s⇩e⇩t (set X) ⊆ subterms⇩s⇩e⇩t (M ∪ N)"
    using in_subterms_subset_Union[of "Fun f X" "M ∪ N"] params_subterms_Union[of X f]
    by blast
  moreover have "ik⇩s⇩t (to_st [Decomp (Fun f X)]) = set T" using Decomp.hyps(3) decomp_ik by simp
  hence "subterms⇩s⇩e⇩t (ik⇩s⇩t (to_st [Decomp (Fun f X)])) ⊆ subterms⇩s⇩e⇩t (set X)"
    using Ana_fun_subterm[OF Decomp.hyps(3)] by auto
  ultimately show ?case
    using ik⇩e⇩s⇩t_append[of D "[Decomp (Fun f X)]"] Decomp.IH
    by auto
qed simp

private lemma decomps⇩e⇩s⇩t_assignment_rhs_empty:
  assumes "A' ∈ decomps⇩e⇩s⇩t M N ℐ"
  shows "assignment_rhs⇩e⇩s⇩t A' = {}"
using assms
by (induction A' rule: decomps⇩e⇩s⇩t.induct)
   (simp_all add: decomp_assignment_rhs_empty assignment_rhs⇩e⇩s⇩t_append) 

private lemma decomps⇩e⇩s⇩t_finite_ik_append:
  assumes "finite M" "M ⊆ decomps⇩e⇩s⇩t A N ℐ"
  shows "∃D ∈ decomps⇩e⇩s⇩t A N ℐ. ik⇩e⇩s⇩t D = (⋃m ∈ M. ik⇩e⇩s⇩t m)"
using assms
proof (induction M rule: finite_induct)
  case empty
  moreover have "[] ∈ decomps⇩e⇩s⇩t A N ℐ" "ik⇩s⇩t (to_st []) = {}" using decomps⇩e⇩s⇩t.Nil by auto
  ultimately show ?case by blast
next
  case (insert m M)
  then obtain D where "D ∈ decomps⇩e⇩s⇩t A N ℐ" "ik⇩e⇩s⇩t D = (⋃m∈M. ik⇩s⇩t (to_st m))" by atomize_elim auto
  moreover have "m ∈ decomps⇩e⇩s⇩t A N ℐ" using insert.prems(1) by blast
  ultimately show ?case using decomps⇩e⇩s⇩t_append[of D A N ℐ m] ik⇩e⇩s⇩t_append[of D m] by blast
qed

private lemma decomp_snd_exists[simp]: "∃D. decomp t = send⟨[t]⟩⇩s⇩t#D"
by (metis (mono_tags, lifting) decomp_def prod.case surj_pair)

private lemma decomp_nonnil[simp]: "decomp t ≠ []"
using decomp_snd_exists[of t] by fastforce

private lemma to_st_nil_inv[dest]: "to_st A = [] ⟹ A = []"
by (induct A rule: to_st.induct) auto

private lemma well_analyzedD:
  assumes "well_analyzed A" "Decomp t ∈ set A"
  shows "∃f T. t = Fun f T"
using assms
proof (induction A rule: well_analyzed.induct)
  case (Decomp A t')
  hence "∃f T. t' = Fun f T" by (cases t') auto
  moreover have "Decomp t ∈ set A ∨ t = t'" using Decomp by auto
  ultimately show ?case using Decomp.IH by auto
qed auto

private lemma well_analyzed_inv:
  assumes "well_analyzed (A@[Decomp t])"
  shows "t ∈ subterms⇩s⇩e⇩t (ik⇩e⇩s⇩t A ∪ assignment_rhs⇩e⇩s⇩t A) - (Var ` 𝒱)"
using assms well_analyzed.cases[of "A@[Decomp t]"] by fastforce

private lemma well_analyzed_split_left_single: "well_analyzed (A@[a]) ⟹ well_analyzed A"
by (induction "A@[a]" rule: well_analyzed.induct) auto

private lemma well_analyzed_split_left: "well_analyzed (A@B) ⟹ well_analyzed A"
proof (induction B rule: List.rev_induct)
  case (snoc b B) thus ?case using well_analyzed_split_left_single[of "A@B" b] by simp
qed simp

private lemma well_analyzed_append:
  assumes "well_analyzed A" "well_analyzed B"
  shows "well_analyzed (A@B)"
using assms(2,1)
proof (induction B rule: well_analyzed.induct)
  case (Step B x) show ?case using well_analyzed.Step[OF Step.IH[OF Step.prems]] by simp
next
  case (Decomp B t) thus ?case
    using well_analyzed.Decomp[OF Decomp.IH[OF Decomp.prems]] ik⇩e⇩s⇩t_append assignment_rhs⇩e⇩s⇩t_append
    by auto
qed simp_all

private lemma well_analyzed_singleton:
  "well_analyzed [Step (send⟨ts⟩⇩s⇩t)]" "well_analyzed [Step (receive⟨ts⟩⇩s⇩t)]"
  "well_analyzed [Step (⟨a: t ≐ t'⟩⇩s⇩t)]" "well_analyzed [Step (∀X⟨∨≠: F⟩⇩s⇩t)]"
  "¬well_analyzed [Decomp t]"
proof -
  show "well_analyzed [Step (send⟨ts⟩⇩s⇩t)]" "well_analyzed [Step (receive⟨ts⟩⇩s⇩t)]"
       "well_analyzed [Step (⟨a: t ≐ t'⟩⇩s⇩t)]" "well_analyzed [Step (∀X⟨∨≠: F⟩⇩s⇩t)]"
    using well_analyzed.Step[OF well_analyzed.Nil]
    by simp_all

  show "¬well_analyzed [Decomp t]" using well_analyzed.cases[of "[Decomp t]"] by auto
qed

private lemma well_analyzed_decomp_rm⇩e⇩s⇩t_fv: "well_analyzed A ⟹ fv⇩e⇩s⇩t (decomp_rm⇩e⇩s⇩t A) = fv⇩e⇩s⇩t A"
proof
  assume "well_analyzed A" thus "fv⇩e⇩s⇩t A ⊆ fv⇩e⇩s⇩t (decomp_rm⇩e⇩s⇩t A)"
  proof (induction A rule: well_analyzed.induct)
    case Decomp thus ?case using ik_assignment_rhs_decomp_fv decomp_rm⇩e⇩s⇩t_append by auto
  next
    case (Step A x)
    have "fv⇩e⇩s⇩t (A@[Step x]) = fv⇩e⇩s⇩t A ∪ fv⇩s⇩t⇩p x"
         "fv⇩e⇩s⇩t (decomp_rm⇩e⇩s⇩t (A@[Step x])) = fv⇩e⇩s⇩t (decomp_rm⇩e⇩s⇩t A) ∪ fv⇩s⇩t⇩p x"
      using fv⇩e⇩s⇩t_append decomp_rm⇩e⇩s⇩t_append by auto
    thus ?case using Step by auto
  qed simp
qed (rule fv_decomp_rm)

private lemma sem⇩e⇩s⇩t_d_split_left: assumes "sem⇩e⇩s⇩t_d M⇩0 ℐ (𝒜@𝒜')" shows "sem⇩e⇩s⇩t_d M⇩0 ℐ 𝒜"
using assms sem⇩e⇩s⇩t_d.cases by (induction 𝒜' rule: List.rev_induct) fastforce+

private lemma sem⇩e⇩s⇩t_d_eq_sem_st: "sem⇩e⇩s⇩t_d M⇩0 ℐ 𝒜 = ⟦M⇩0; to_st 𝒜⟧⇩d' ℐ"
proof
  show "⟦M⇩0; to_st 𝒜⟧⇩d' ℐ ⟹ sem⇩e⇩s⇩t_d M⇩0 ℐ 𝒜"
  proof (induction 𝒜 arbitrary: M⇩0 rule: List.rev_induct)
    case Nil show ?case using to_st_nil_inv by simp
  next
    case (snoc a 𝒜)
    hence IH: "sem⇩e⇩s⇩t_d M⇩0 ℐ 𝒜" and *: "⟦ik⇩e⇩s⇩t 𝒜 ∪ M⇩0; to_st [a]⟧⇩d' ℐ"
      using to_st_append by (auto simp add: sup.commute)
    thus ?case using snoc
    proof (cases a)
      case (Step b) thus ?thesis
      proof (cases b)
        case (Send t) thus ?thesis using sem⇩e⇩s⇩t_d.Send[OF IH] * Step by auto
      next
        case (Receive t) thus ?thesis using sem⇩e⇩s⇩t_d.Receive[OF IH] Step by auto
      next
        case (Equality a t t') thus ?thesis using sem⇩e⇩s⇩t_d.Equality[OF IH] * Step by auto
      next
        case (Inequality X F) thus ?thesis using sem⇩e⇩s⇩t_d.Inequality[OF IH] * Step by auto
      qed
    next
      case (Decomp t)
      obtain K M where Ana: "Ana t = (K,M)" by atomize_elim auto
      have "to_st [a] = decomp t" using Decomp by auto
      hence "to_st [a] = [send⟨[t]⟩⇩s⇩t,Send K,Receive M]"
        using Ana unfolding decomp_def by auto
      hence **: "ik⇩e⇩s⇩t 𝒜 ∪ M⇩0 ⋅⇩s⇩e⇩t ℐ ⊢ t ⋅ ℐ" and "⟦ik⇩e⇩s⇩t 𝒜 ∪ M⇩0; [Send K]⟧⇩d' ℐ"
        using * by auto
      hence "⋀k. k ∈ set K ⟹ ik⇩e⇩s⇩t 𝒜 ∪ M⇩0 ⋅⇩s⇩e⇩t ℐ ⊢ k ⋅ ℐ"
        using * strand_sem_Send_split(2) strand_sem_d.simps(2)
        unfolding strand_sem_eq_defs(2) list_all_iff
        by meson
      thus ?thesis using Decomp sem⇩e⇩s⇩t_d.Decompose[OF IH ** Ana] by metis
    qed
  qed

  show "sem⇩e⇩s⇩t_d M⇩0 ℐ 𝒜 ⟹ ⟦M⇩0; to_st 𝒜⟧⇩d' ℐ"
  proof (induction rule: sem⇩e⇩s⇩t_d.induct)
    case Nil thus ?case by simp
  next
    case (Send M⇩0 ℐ 𝒜 ts) thus ?case
      using strand_sem_append'[of M⇩0 "to_st 𝒜" ℐ "[send⟨ts⟩⇩s⇩t]"]
            to_st_append[of 𝒜 "[Step (send⟨ts⟩⇩s⇩t)]"]
      by (simp add: sup.commute)
  next
    case (Receive M⇩0 ℐ 𝒜 ts) thus ?case
      using strand_sem_append'[of M⇩0 "to_st 𝒜" ℐ "[receive⟨ts⟩⇩s⇩t]"]
            to_st_append[of 𝒜 "[Step (receive⟨ts⟩⇩s⇩t)]"]
      by (simp add: sup.commute)
  next
    case (Equality M⇩0 ℐ 𝒜 t t' a) thus ?case
      using strand_sem_append'[of M⇩0 "to_st 𝒜" ℐ "[⟨a: t ≐ t'⟩⇩s⇩t]"]
            to_st_append[of 𝒜 "[Step (⟨a: t ≐ t'⟩⇩s⇩t)]"]
      by (simp add: sup.commute)
  next
    case (Inequality M⇩0 ℐ 𝒜 X F) thus ?case
      using strand_sem_append'[of M⇩0 "to_st 𝒜" ℐ "[∀X⟨∨≠: F⟩⇩s⇩t]"]
            to_st_append[of 𝒜 "[Step (∀X⟨∨≠: F⟩⇩s⇩t)]"]
      by (simp add: sup.commute)
  next
    case (Decompose M⇩0 ℐ 𝒜 t K M)
    have "⟦M⇩0 ∪ ik⇩s⇩t (to_st 𝒜); decomp t⟧⇩d' ℐ"
    proof -
      have "⟦M⇩0 ∪ ik⇩s⇩t (to_st 𝒜); [send⟨[t]⟩⇩s⇩t]⟧⇩d' ℐ"
        using Decompose.hyps(2) by (auto simp add: sup.commute)
      moreover have "⋀k. k ∈ set K ⟹ M⇩0 ∪ ik⇩s⇩t (to_st 𝒜) ⋅⇩s⇩e⇩t ℐ ⊢ k ⋅ ℐ"
        using Decompose by (metis sup.commute)
      hence "⋀k. k ∈ set K ⟹ ⟦M⇩0 ∪ ik⇩s⇩t (to_st 𝒜); [Send1 k]⟧⇩d' ℐ" by auto
      hence "⟦M⇩0 ∪ ik⇩s⇩t (to_st 𝒜); [Send K]⟧⇩d' ℐ"
        using strand_sem_Send_map(4)[of _ "M⇩0 ∪ ik⇩s⇩t (to_st 𝒜) ⋅⇩s⇩e⇩t ℐ" ℐ] strand_sem_Send_map(6)
        unfolding strand_sem_eq_defs(2) by auto
      moreover have "⟦M⇩0 ∪ ik⇩s⇩t (to_st 𝒜); [Receive M]⟧⇩d' ℐ"
        by (metis strand_sem_Receive_map(6) strand_sem_eq_defs(2))
      ultimately have
          "⟦M⇩0 ∪ ik⇩s⇩t (to_st 𝒜); [send⟨[t]⟩⇩s⇩t,send⟨K⟩⇩s⇩t,receive⟨M⟩⇩s⇩t]⟧⇩d' ℐ"
        by auto
      thus ?thesis using Decompose.hyps(3) unfolding decomp_def by auto
    qed
    hence "⟦M⇩0; to_st 𝒜@decomp t⟧⇩d' ℐ"
      using strand_sem_append'[of M⇩0 "to_st 𝒜" ℐ "decomp t"] Decompose.IH
      by simp
    thus ?case using to_st_append[of 𝒜 "[Decomp t]"] by simp
  qed
qed

private lemma sem⇩e⇩s⇩t_c_eq_sem_st: "sem⇩e⇩s⇩t_c M⇩0 ℐ 𝒜 = ⟦M⇩0; to_st 𝒜⟧⇩c' ℐ"
proof
  show "⟦M⇩0; to_st 𝒜⟧⇩c' ℐ ⟹ sem⇩e⇩s⇩t_c M⇩0 ℐ 𝒜"
  proof (induction 𝒜 arbitrary: M⇩0 rule: List.rev_induct)
    case Nil show ?case using to_st_nil_inv by simp
  next
    case (snoc a 𝒜)
    hence IH: "sem⇩e⇩s⇩t_c M⇩0 ℐ 𝒜" and *: "⟦ik⇩e⇩s⇩t 𝒜 ∪ M⇩0; to_st [a]⟧⇩c' ℐ"
      using to_st_append
      by (auto simp add: sup.commute)
    thus ?case using snoc
    proof (cases a)
      case (Step b) thus ?thesis
      proof (cases b)
        case (Send t) thus ?thesis using sem⇩e⇩s⇩t_c.Send[OF IH] * Step by auto
      next
        case (Receive t) thus ?thesis using sem⇩e⇩s⇩t_c.Receive[OF IH] Step by auto
      next
        case (Equality t) thus ?thesis using sem⇩e⇩s⇩t_c.Equality[OF IH] * Step by auto
      next
        case (Inequality t) thus ?thesis using sem⇩e⇩s⇩t_c.Inequality[OF IH] * Step by auto
      qed
    next
      case (Decomp t)
      obtain K M where Ana: "Ana t = (K,M)" by atomize_elim auto
      have "to_st [a] = decomp t" using Decomp by auto
      hence "to_st [a] = [send⟨[t]⟩⇩s⇩t,send⟨K⟩⇩s⇩t,receive⟨M⟩⇩s⇩t]"
        using Ana unfolding decomp_def by auto
      hence **: "ik⇩e⇩s⇩t 𝒜 ∪ M⇩0 ⋅⇩s⇩e⇩t ℐ ⊢⇩c t ⋅ ℐ" and "⟦ik⇩e⇩s⇩t 𝒜 ∪ M⇩0; [send⟨K⟩⇩s⇩t]⟧⇩c' ℐ"
        using * by auto
      hence "ik⇩e⇩s⇩t 𝒜 ∪ M⇩0 ⋅⇩s⇩e⇩t ℐ ⊢⇩c k ⋅ ℐ" when k: "k ∈ set K" for k
        using * strand_sem_Send_split(5)[OF _ k] strand_sem_Send_map(5)
        unfolding strand_sem_eq_defs(1) by auto
      thus ?thesis using Decomp sem⇩e⇩s⇩t_c.Decompose[OF IH ** Ana] by metis
    qed
  qed

  show "sem⇩e⇩s⇩t_c M⇩0 ℐ 𝒜 ⟹ ⟦M⇩0; to_st 𝒜⟧⇩c' ℐ"
  proof (induction rule: sem⇩e⇩s⇩t_c.induct)
    case Nil thus ?case by simp
  next
    case (Send M⇩0 ℐ 𝒜 ts) thus ?case
      using strand_sem_append'[of M⇩0 "to_st 𝒜" ℐ "[send⟨ts⟩⇩s⇩t]"]
            to_st_append[of 𝒜 "[Step (send⟨ts⟩⇩s⇩t)]"]
      by (simp add: sup.commute)
  next
    case (Receive M⇩0 ℐ 𝒜 ts) thus ?case
      using strand_sem_append'[of M⇩0 "to_st 𝒜" ℐ "[receive⟨ts⟩⇩s⇩t]"]
            to_st_append[of 𝒜 "[Step (receive⟨ts⟩⇩s⇩t)]"]
      by (simp add: sup.commute)
  next
    case (Equality M⇩0 ℐ 𝒜 t t' a) thus ?case
      using strand_sem_append'[of M⇩0 "to_st 𝒜" ℐ "[⟨a: t ≐ t'⟩⇩s⇩t]"]
            to_st_append[of 𝒜 "[Step (⟨a: t ≐ t'⟩⇩s⇩t)]"]
      by (simp add: sup.commute)
  next
    case (Inequality M⇩0 ℐ 𝒜 X F) thus ?case
      using strand_sem_append'[of M⇩0 "to_st 𝒜" ℐ "[∀X⟨∨≠: F⟩⇩s⇩t]"]
            to_st_append[of 𝒜 "[Step (∀X⟨∨≠: F⟩⇩s⇩t)]"]
      by (auto simp add: sup.commute)
  next
    case (Decompose M⇩0 ℐ 𝒜 t K M)
    have "⟦M⇩0 ∪ ik⇩s⇩t (to_st 𝒜); decomp t⟧⇩c' ℐ"
    proof -
      have "⟦M⇩0 ∪ ik⇩s⇩t (to_st 𝒜); [send⟨[t]⟩⇩s⇩t]⟧⇩c' ℐ"
        using Decompose.hyps(2) by (auto simp add: sup.commute)
      moreover have "⋀k. k ∈ set K ⟹ M⇩0 ∪ ik⇩s⇩t (to_st 𝒜) ⋅⇩s⇩e⇩t ℐ ⊢⇩c k ⋅ ℐ"
        using Decompose by (metis sup.commute)
      hence "⋀k. k ∈ set K ⟹ ⟦M⇩0 ∪ ik⇩s⇩t (to_st 𝒜); [Send1 k]⟧⇩c' ℐ" by auto
      hence "⟦M⇩0 ∪ ik⇩s⇩t (to_st 𝒜); [Send K]⟧⇩c' ℐ"
        using strand_sem_Send_map(3)[of K, of "M⇩0 ∪ ik⇩s⇩t (to_st 𝒜) ⋅⇩s⇩e⇩t ℐ" ℐ]
              strand_sem_Send_map(5)
        unfolding strand_sem_eq_defs(1)
        by auto
      moreover have "⟦M⇩0 ∪ ik⇩s⇩t (to_st 𝒜); [Receive M]⟧⇩c' ℐ"
        by (metis strand_sem_Receive_map(5) strand_sem_eq_defs(1))
      ultimately have
          "⟦M⇩0 ∪ ik⇩s⇩t (to_st 𝒜); [send⟨[t]⟩⇩s⇩t,send⟨K⟩⇩s⇩t,receive⟨M⟩⇩s⇩t]⟧⇩c' ℐ"
        by auto
      thus ?thesis using Decompose.hyps(3) unfolding decomp_def by auto
    qed
    hence "⟦M⇩0; to_st 𝒜@decomp t⟧⇩c' ℐ"
      using strand_sem_append'[of M⇩0 "to_st 𝒜" ℐ "decomp t"] Decompose.IH
      by simp
    thus ?case using to_st_append[of 𝒜 "[Decomp t]"] by simp
  qed
qed

private lemma sem⇩e⇩s⇩t_c_decomp_rm⇩e⇩s⇩t_deduct_aux:
  assumes "sem⇩e⇩s⇩t_c M⇩0 ℐ A" "t ∈ ik⇩e⇩s⇩t A ⋅⇩s⇩e⇩t ℐ" "t ∉ ik⇩e⇩s⇩t (decomp_rm⇩e⇩s⇩t A) ⋅⇩s⇩e⇩t ℐ"
  shows "ik⇩e⇩s⇩t (decomp_rm⇩e⇩s⇩t A) ∪ M⇩0 ⋅⇩s⇩e⇩t ℐ ⊢ t"
using assms
proof (induction M⇩0 ℐ A arbitrary: t rule: sem⇩e⇩s⇩t_c.induct)
  case (Send M⇩0 ℐ A t') thus ?case using decomp_rm⇩e⇩s⇩t_append ik⇩e⇩s⇩t_append by auto
next
  case (Receive M⇩0 ℐ A t')
  hence "t ∈ ik⇩e⇩s⇩t A ⋅⇩s⇩e⇩t ℐ" "t ∉ ik⇩e⇩s⇩t (decomp_rm⇩e⇩s⇩t A) ⋅⇩s⇩e⇩t ℐ"
    using decomp_rm⇩e⇩s⇩t_append ik⇩e⇩s⇩t_append by auto
  hence IH: "ik⇩e⇩s⇩t (decomp_rm⇩e⇩s⇩t A) ∪ M⇩0 ⋅⇩s⇩e⇩t ℐ ⊢ t" using Receive.IH by auto
  show ?case
    using ideduct_mono[OF IH] decomp_rm⇩e⇩s⇩t_append ik⇩e⇩s⇩t_append
    by (metis Un_subset_iff Un_upper1 Un_upper2 image_mono)
next
  case (Equality M⇩0 ℐ A t') thus ?case using decomp_rm⇩e⇩s⇩t_append ik⇩e⇩s⇩t_append by auto
next
  case (Inequality M⇩0 ℐ A t') thus ?case using decomp_rm⇩e⇩s⇩t_append ik⇩e⇩s⇩t_append by auto
next
  case (Decompose M⇩0 ℐ A t' K M t)
  have *: "ik⇩e⇩s⇩t (decomp_rm⇩e⇩s⇩t A) ∪ M⇩0 ⋅⇩s⇩e⇩t ℐ ⊢ t' ⋅ ℐ" using Decompose.hyps(2)
  proof (induction rule: intruder_synth_induct)
    case (AxiomC t'')
    moreover {
      assume "t'' ∈ ik⇩e⇩s⇩t A ⋅⇩s⇩e⇩t ℐ" "t'' ∉ ik⇩e⇩s⇩t (decomp_rm⇩e⇩s⇩t A) ⋅⇩s⇩e⇩t ℐ"
      hence ?case using Decompose.IH by auto
    }
    ultimately show ?case by force
  qed simp
  
  { fix k assume "k ∈ set K"
    hence "ik⇩e⇩s⇩t A ∪ M⇩0 ⋅⇩s⇩e⇩t ℐ ⊢⇩c k ⋅ ℐ" using Decompose.hyps by auto
    hence "ik⇩e⇩s⇩t (decomp_rm⇩e⇩s⇩t A) ∪ M⇩0 ⋅⇩s⇩e⇩t ℐ ⊢ k ⋅ ℐ"
    proof (induction rule: intruder_synth_induct)
      case (AxiomC t'')
      moreover {
        assume "t'' ∈ ik⇩e⇩s⇩t A ⋅⇩s⇩e⇩t ℐ" "t'' ∉ ik⇩e⇩s⇩t (decomp_rm⇩e⇩s⇩t A) ⋅⇩s⇩e⇩t ℐ"
        hence ?case using Decompose.IH by auto
      }
      ultimately show ?case by force
    qed simp
  }
  hence **: "⋀k. k ∈ set (K ⋅⇩l⇩i⇩s⇩t ℐ) ⟹ ik⇩e⇩s⇩t (decomp_rm⇩e⇩s⇩t A) ∪ M⇩0 ⋅⇩s⇩e⇩t ℐ ⊢ k" by auto
  
  show ?case
  proof (cases "t ∈ ik⇩e⇩s⇩t A ⋅⇩s⇩e⇩t ℐ")
    case True thus ?thesis using Decompose.IH Decompose.prems(2) decomp_rm⇩e⇩s⇩t_append by auto
  next
    case False
    hence "t ∈ ik⇩s⇩t (decomp t') ⋅⇩s⇩e⇩t ℐ" using Decompose.prems(1) ik⇩e⇩s⇩t_append by auto
    hence ***: "t ∈ set (M ⋅⇩l⇩i⇩s⇩t ℐ)" using Decompose.hyps(3) decomp_ik by auto
    hence "M ≠ []" by auto
    hence ****: "Ana (t' ⋅ ℐ) = (K ⋅⇩l⇩i⇩s⇩t ℐ, M ⋅⇩l⇩i⇩s⇩t ℐ)" using Ana_subst[OF Decompose.hyps(3)] by auto

    have "ik⇩e⇩s⇩t (decomp_rm⇩e⇩s⇩t A) ∪ M⇩0 ⋅⇩s⇩e⇩t ℐ ⊢ t" by (rule intruder_deduct.Decompose[OF * **** ** ***])
    thus ?thesis using ideduct_mono decomp_rm⇩e⇩s⇩t_append by auto
  qed
qed simp

private lemma sem⇩e⇩s⇩t_c_decomp_rm⇩e⇩s⇩t_deduct:
  assumes "sem⇩e⇩s⇩t_c M⇩0 ℐ A" "ik⇩e⇩s⇩t A ∪ M⇩0 ⋅⇩s⇩e⇩t ℐ ⊢⇩c t"
  shows "ik⇩e⇩s⇩t (decomp_rm⇩e⇩s⇩t A) ∪ M⇩0 ⋅⇩s⇩e⇩t ℐ ⊢ t"
using assms(2)
proof (induction t rule: intruder_synth_induct)
  case (AxiomC t)
  hence "t ∈ ik⇩e⇩s⇩t A ⋅⇩s⇩e⇩t ℐ ∨ t ∈ M⇩0 ⋅⇩s⇩e⇩t ℐ" by auto
  moreover {
    assume "t ∈ ik⇩e⇩s⇩t A ⋅⇩s⇩e⇩t ℐ" "t ∈ ik⇩e⇩s⇩t (decomp_rm⇩e⇩s⇩t A) ⋅⇩s⇩e⇩t ℐ"
    hence ?case using ideduct_mono[OF intruder_deduct.Axiom] by auto
  }
  moreover {
    assume "t ∈ ik⇩e⇩s⇩t A ⋅⇩s⇩e⇩t ℐ" "t ∉ ik⇩e⇩s⇩t (decomp_rm⇩e⇩s⇩t A) ⋅⇩s⇩e⇩t ℐ"
    hence ?case using sem⇩e⇩s⇩t_c_decomp_rm⇩e⇩s⇩t_deduct_aux[OF assms(1)] by auto
  }
  ultimately show ?case by auto
qed simp

private lemma sem⇩e⇩s⇩t_d_decomp_rm⇩e⇩s⇩t_if_sem⇩e⇩s⇩t_c: "sem⇩e⇩s⇩t_c M⇩0 ℐ A ⟹ sem⇩e⇩s⇩t_d M⇩0 ℐ (decomp_rm⇩e⇩s⇩t A)"
proof (induction M⇩0 ℐ A rule: sem⇩e⇩s⇩t_c.induct)
  case (Send M⇩0 ℐ A t)
  thus ?case
    using decomp_rm⇩e⇩s⇩t_append sem⇩e⇩s⇩t_d.Send[OF Send.IH] sem⇩e⇩s⇩t_c_decomp_rm⇩e⇩s⇩t_deduct
    unfolding list_all_iff by auto
next
  case (Receive t) thus ?case using decomp_rm⇩e⇩s⇩t_append sem⇩e⇩s⇩t_d.Receive by auto
next
  case (Equality M⇩0 ℐ A t)
  thus ?case
    using decomp_rm⇩e⇩s⇩t_append sem⇩e⇩s⇩t_d.Equality[OF Equality.IH] sem⇩e⇩s⇩t_c_decomp_rm⇩e⇩s⇩t_deduct
    by auto
next
  case (Inequality M⇩0 ℐ A t)
  thus ?case
    using decomp_rm⇩e⇩s⇩t_append sem⇩e⇩s⇩t_d.Inequality[OF Inequality.IH] sem⇩e⇩s⇩t_c_decomp_rm⇩e⇩s⇩t_deduct
    by auto
next
  case Decompose thus ?case using decomp_rm⇩e⇩s⇩t_append by auto
qed auto

private lemma sem⇩e⇩s⇩t_c_decomps⇩e⇩s⇩t_append:
  assumes "sem⇩e⇩s⇩t_c {} ℐ A" "D ∈ decomps⇩e⇩s⇩t (ik⇩e⇩s⇩t A) (assignment_rhs⇩e⇩s⇩t 𝒜) ℐ"
  shows "sem⇩e⇩s⇩t_c {} ℐ (A@D)"
using assms(2,1)
proof (induction D rule: decomps⇩e⇩s⇩t.induct)
  case (Decomp D f T K M)
  hence *: "sem⇩e⇩s⇩t_c {} ℐ (A @ D)" "ik⇩e⇩s⇩t (A@D) ∪ {} ⋅⇩s⇩e⇩t ℐ ⊢⇩c Fun f T ⋅ ℐ"
           "⋀k. k ∈ set K ⟹ ik⇩e⇩s⇩t (A @ D) ∪ {} ⋅⇩s⇩e⇩t ℐ ⊢⇩c k ⋅ ℐ"
    using ik⇩e⇩s⇩t_append by auto
  show ?case using sem⇩e⇩s⇩t_c.Decompose[OF *(1,2) Decomp.hyps(3) *(3)] by simp
qed auto

private lemma decomps⇩e⇩s⇩t_preserves_wf:
  assumes "D ∈ decomps⇩e⇩s⇩t (ik⇩e⇩s⇩t A) (assignment_rhs⇩e⇩s⇩t A) ℐ" "wf⇩e⇩s⇩t V A"
  shows "wf⇩e⇩s⇩t V (A@D)"
using assms
proof (induction D rule: decomps⇩e⇩s⇩t.induct)
  case (Decomp D f T K M)
  have "wfrestrictedvars⇩s⇩t (decomp (Fun f T)) ⊆ fv⇩s⇩e⇩t (ik⇩e⇩s⇩t A ∪ assignment_rhs⇩e⇩s⇩t A)"
    using decomp_vars fv_subset_subterms[OF Decomp.hyps(2)] by fast
  hence "wfrestrictedvars⇩s⇩t (decomp (Fun f T)) ⊆ wfrestrictedvars⇩e⇩s⇩t A"
    using ik⇩s⇩t_assignment_rhs⇩s⇩t_wfrestrictedvars_subset[of "to_st A"] by blast
  hence "wfrestrictedvars⇩s⇩t (decomp (Fun f T)) ⊆ wfrestrictedvars⇩s⇩t (to_st (A@D)) ∪ V"
    using to_st_append[of A D] strand_vars_split(2)[of "to_st A" "to_st D"]
    by (metis le_supI1)
  thus ?case
    using wf_append_suffix[OF Decomp.IH[OF Decomp.prems], of "decomp (Fun f T)"]
          to_st_append[of "A@D" "[Decomp (Fun f T)]"]
    by auto
qed auto

private lemma decomps⇩e⇩s⇩t_preserves_model_c:
  assumes "D ∈ decomps⇩e⇩s⇩t (ik⇩e⇩s⇩t A) (assignment_rhs⇩e⇩s⇩t A) ℐ" "sem⇩e⇩s⇩t_c M⇩0 ℐ A"
  shows "sem⇩e⇩s⇩t_c M⇩0 ℐ (A@D)"
using assms
proof (induction D rule: decomps⇩e⇩s⇩t.induct)
  case (Decomp D f T K M) show ?case
    using sem⇩e⇩s⇩t_c.Decompose[OF Decomp.IH[OF Decomp.prems] _ Decomp.hyps(3)]
          Decomp.hyps(5,6) ideduct_synth_mono ik⇩e⇩s⇩t_append
    by (metis (mono_tags, lifting) List.append_assoc image_Un sup_ge1) 
qed auto

private lemma decomps⇩e⇩s⇩t_exist_aux:
  assumes "D ∈ decomps⇩e⇩s⇩t M N ℐ" "M ∪ ik⇩e⇩s⇩t D ⊢ t" "¬(M ∪ (ik⇩e⇩s⇩t D) ⊢⇩c t)"
  obtains D' where
    "D@D' ∈ decomps⇩e⇩s⇩t M N ℐ" "M ∪ ik⇩e⇩s⇩t (D@D') ⊢⇩c t" "M ∪ ik⇩e⇩s⇩t D ⊂ M ∪ ik⇩e⇩s⇩t (D@D')"
proof -
  have "∃D' ∈ decomps⇩e⇩s⇩t M N ℐ. M ∪ ik⇩e⇩s⇩t D' ⊢⇩c t" using assms(2)
  proof (induction t rule: intruder_deduct_induct)
    case (Compose X f)
    from Compose.IH have "∃D ∈ decomps⇩e⇩s⇩t M N ℐ. ∀x ∈ set X. M ∪ ik⇩e⇩s⇩t D ⊢⇩c x"
    proof (induction X)
      case (Cons t X)
      then obtain D' D'' where
          D': "D' ∈ decomps⇩e⇩s⇩t M N ℐ" "M ∪ ik⇩e⇩s⇩t D' ⊢⇩c t" and
          D'': "D'' ∈ decomps⇩e⇩s⇩t M N ℐ" "∀x ∈ set X. M ∪ ik⇩e⇩s⇩t D'' ⊢⇩c x"
        by atomize_elim force
      hence "M ∪ ik⇩e⇩s⇩t (D'@D'') ⊢⇩c t" "∀x ∈ set X. M ∪ ik⇩e⇩s⇩t (D'@D'') ⊢⇩c x"
        by (auto intro: ideduct_synth_mono simp add: ik⇩e⇩s⇩t_append)
      thus ?case using decomps⇩e⇩s⇩t_append[OF D'(1) D''(1)] by (metis set_ConsD)
    qed (auto intro: decomps⇩e⇩s⇩t.Nil)
    thus ?case using intruder_synth.ComposeC[OF Compose.hyps(1,2)] by metis
  next
    case (Decompose t K T t⇩i)
    have "∃D ∈ decomps⇩e⇩s⇩t M N ℐ. ∀k ∈ set K. M ∪ ik⇩e⇩s⇩t D ⊢⇩c k" using Decompose.IH
    proof (induction K)
      case (Cons t X)
      then obtain D' D'' where
          D': "D' ∈ decomps⇩e⇩s⇩t M N ℐ" "M ∪ ik⇩e⇩s⇩t D' ⊢⇩c t" and
          D'': "D'' ∈ decomps⇩e⇩s⇩t M N ℐ" "∀x ∈ set X. M ∪ ik⇩e⇩s⇩t D'' ⊢⇩c x"
        using assms(1) by atomize_elim force
      hence "M ∪ ik⇩e⇩s⇩t (D'@D'') ⊢⇩c t" "∀x ∈ set X. M ∪ ik⇩e⇩s⇩t (D'@D'') ⊢⇩c x"
        by (auto intro: ideduct_synth_mono simp add: ik⇩e⇩s⇩t_append)
      thus ?case using decomps⇩e⇩s⇩t_append[OF D'(1) D''(1)] by auto
    qed auto
    then obtain D' where D': "D' ∈ decomps⇩e⇩s⇩t M N ℐ" "⋀k. k ∈ set K ⟹ M ∪ ik⇩e⇩s⇩t D' ⊢⇩c k" by metis
    obtain D'' where D'': "D'' ∈ decomps⇩e⇩s⇩t M N ℐ" "M ∪ ik⇩e⇩s⇩t D'' ⊢⇩c t" by (metis Decompose.IH(1))
    obtain f X where fX: "t = Fun f X" "t⇩i ∈ set X"
      using Decompose.hyps(2,4) by (cases t) (auto dest: Ana_fun_subterm)
  
    from decomps⇩e⇩s⇩t_append[OF D'(1) D''(1)] D'(2) D''(2) have *:
        "D'@D'' ∈ decomps⇩e⇩s⇩t M N ℐ" "⋀k. k ∈ set K ⟹ M ∪ ik⇩e⇩s⇩t (D'@D'') ⊢⇩c k"
        "M ∪ ik⇩e⇩s⇩t (D'@D'') ⊢⇩c t"
      by (auto intro: ideduct_synth_mono simp add: ik⇩e⇩s⇩t_append)
    hence **: "⋀k. k ∈ set K ⟹ M ∪ ik⇩e⇩s⇩t (D'@D'') ⋅⇩s⇩e⇩t ℐ ⊢⇩c k ⋅ ℐ"
      using ideduct_synth_subst by auto

    have "t⇩i ∈ ik⇩s⇩t (decomp t)" using Decompose.hyps(2,4) ik_rcv_map unfolding decomp_def by auto
    with *(3) fX(1) Decompose.hyps(2) show ?case
    proof (induction t rule: intruder_synth_induct)
      case (AxiomC t)
      hence t_in_subterms: "t ∈ subterms⇩s⇩e⇩t (M ∪ N)"
        using decomps⇩e⇩s⇩t_ik_subset[OF *(1)] subset_subterms_Union
        by auto
      have "M ∪ ik⇩e⇩s⇩t (D'@D'') ⋅⇩s⇩e⇩t ℐ ⊢⇩c t ⋅ ℐ"
        using ideduct_synth_subst[OF intruder_synth.AxiomC[OF AxiomC.hyps(1)]] by metis
      moreover have "T ≠ []" using decomp_ik[OF ‹Ana t = (K,T)›] ‹t⇩i ∈ ik⇩s⇩t (decomp t)› by auto
      ultimately have "D'@D''@[Decomp (Fun f X)] ∈ decomps⇩e⇩s⇩t M N ℐ"
        using AxiomC decomps⇩e⇩s⇩t.Decomp[OF *(1) _ _ _ _ **] subset_subterms_Union t_in_subterms
        by (simp add: subset_eq)
      moreover have "decomp t = to_st [Decomp (Fun f X)]" using AxiomC.prems(1,2) by auto
      ultimately show ?case
        by (metis AxiomC.prems(3) UnCI intruder_synth.AxiomC ik⇩e⇩s⇩t_append to_st_append)
    qed (auto intro!: fX(2) *(1))
  qed (fastforce intro: intruder_synth.AxiomC assms(1))
  hence "∃D' ∈ decomps⇩e⇩s⇩t M N ℐ. M ∪ ik⇩e⇩s⇩t (D@D') ⊢⇩c t"
    by (auto intro: ideduct_synth_mono simp add: ik⇩e⇩s⇩t_append)
  thus thesis using that[OF decomps⇩e⇩s⇩t_append[OF assms(1)]] assms ik⇩e⇩s⇩t_append by atomize_elim auto
qed

private lemma decomps⇩e⇩s⇩t_ik_max_exist:
  assumes "finite A" "finite N"
  shows "∃D ∈ decomps⇩e⇩s⇩t A N ℐ. ∀D' ∈ decomps⇩e⇩s⇩t A N ℐ. ik⇩e⇩s⇩t D' ⊆ ik⇩e⇩s⇩t D"
proof -
  let ?IK = "λM. ⋃D ∈ M. ik⇩e⇩s⇩t D"
  have "?IK (decomps⇩e⇩s⇩t A N ℐ) ⊆ (⋃t ∈ A ∪ N. subterms t)" by (auto dest!: decomps⇩e⇩s⇩t_ik_subset)
  hence "finite (?IK (decomps⇩e⇩s⇩t A N ℐ))"
    using subterms_union_finite[OF assms(1)] subterms_union_finite[OF assms(2)] infinite_super
    by auto
  then obtain M where M: "finite M" "M ⊆ decomps⇩e⇩s⇩t A N ℐ" "?IK M = ?IK (decomps⇩e⇩s⇩t A N ℐ)"
    using finite_subset_Union by atomize_elim auto
  show ?thesis using decomps⇩e⇩s⇩t_finite_ik_append[OF M(1,2)] M(3) by auto
qed

private lemma decomps⇩e⇩s⇩t_exist:
  assumes "finite A" "finite N"
  shows "∃D ∈ decomps⇩e⇩s⇩t A N ℐ. ∀t. A ⊢ t ⟶ A ∪ ik⇩e⇩s⇩t D ⊢⇩c t"
proof (rule ccontr)
  assume neg: "¬(∃D ∈ decomps⇩e⇩s⇩t A N ℐ. ∀t. A ⊢ t ⟶ A ∪ ik⇩e⇩s⇩t D ⊢⇩c t)"

  obtain D where D: "D ∈ decomps⇩e⇩s⇩t A N ℐ" "∀D' ∈ decomps⇩e⇩s⇩t A N ℐ. ik⇩e⇩s⇩t D' ⊆ ik⇩e⇩s⇩t D"
    using decomps⇩e⇩s⇩t_ik_max_exist[OF assms] by atomize_elim force
  then obtain t where t: "A ∪ ik⇩e⇩s⇩t D ⊢ t" "¬(A ∪ ik⇩e⇩s⇩t D ⊢⇩c t)"
    using neg by (fastforce intro: ideduct_mono)

  obtain D' where D':
      "D@D' ∈ decomps⇩e⇩s⇩t A N ℐ" "A ∪ ik⇩e⇩s⇩t (D@D') ⊢⇩c t"
      "A ∪ ik⇩e⇩s⇩t D ⊂ A ∪ ik⇩e⇩s⇩t (D@D')"
    by (metis decomps⇩e⇩s⇩t_exist_aux t D(1))
  hence "ik⇩e⇩s⇩t D ⊂ ik⇩e⇩s⇩t (D@D')" using ik⇩e⇩s⇩t_append by auto
  moreover have "ik⇩e⇩s⇩t (D@D') ⊆ ik⇩e⇩s⇩t D" using D(2) D'(1) by auto
  ultimately show False by simp
qed

private lemma decomps⇩e⇩s⇩t_exist_subst:
  assumes "ik⇩e⇩s⇩t A ⋅⇩s⇩e⇩t ℐ ⊢ t ⋅ ℐ"
    and "sem⇩e⇩s⇩t_c {} ℐ A" "wf⇩e⇩s⇩t {} A" "interpretation⇩s⇩u⇩b⇩s⇩t ℐ"
    and "Ana_invar_subst (ik⇩e⇩s⇩t A ∪ assignment_rhs⇩e⇩s⇩t A)"
    and "well_analyzed A"
  shows "∃D ∈ decomps⇩e⇩s⇩t (ik⇩e⇩s⇩t A) (assignment_rhs⇩e⇩s⇩t A) ℐ. ik⇩e⇩s⇩t (A@D) ⋅⇩s⇩e⇩t ℐ ⊢⇩c t ⋅ ℐ"
proof -
  have ik_eq: "ik⇩e⇩s⇩t (A ⋅⇩e⇩s⇩t ℐ) = ik⇩e⇩s⇩t A ⋅⇩s⇩e⇩t ℐ" using assms(5,6)
  proof (induction A rule: List.rev_induct)
    case (snoc a A)
    hence "Ana_invar_subst (ik⇩e⇩s⇩t A ∪ assignment_rhs⇩e⇩s⇩t A)"
      using Ana_invar_subst_subset[OF snoc.prems(1)] ik⇩e⇩s⇩t_append assignment_rhs⇩e⇩s⇩t_append
      unfolding Ana_invar_subst_def by simp
    with snoc have IH:
        "ik⇩e⇩s⇩t (A@[a] ⋅⇩e⇩s⇩t ℐ) = (ik⇩e⇩s⇩t A ⋅⇩s⇩e⇩t ℐ) ∪ ik⇩e⇩s⇩t ([a] ⋅⇩e⇩s⇩t ℐ)"
        "ik⇩e⇩s⇩t (A@[a]) ⋅⇩s⇩e⇩t ℐ = (ik⇩e⇩s⇩t A ⋅⇩s⇩e⇩t ℐ) ∪ (ik⇩e⇩s⇩t [a] ⋅⇩s⇩e⇩t ℐ)"
      using well_analyzed_split_left[OF snoc.prems(2)]
      by (auto simp add: to_st_append ik⇩e⇩s⇩t_append_subst)
      
    have "ik⇩e⇩s⇩t [a ⋅⇩e⇩s⇩t⇩p ℐ] = ik⇩e⇩s⇩t [a] ⋅⇩s⇩e⇩t ℐ"
    proof (cases a)
      case (Step b) thus ?thesis by (cases b) auto
    next
      case (Decomp t)
      then obtain f T where t: "t = Fun f T" using well_analyzedD[OF snoc.prems(2)] by force
      obtain K M where Ana_t: "Ana (Fun f T) = (K,M)" by (metis surj_pair)
      moreover have "Fun f T ∈ subterms⇩s⇩e⇩t ((ik⇩e⇩s⇩t (A@[a]) ∪ assignment_rhs⇩e⇩s⇩t (A@[a])))"
        using t Decomp snoc.prems(2)
        by (auto dest: well_analyzed_inv simp add: ik⇩e⇩s⇩t_append assignment_rhs⇩e⇩s⇩t_append)
      hence "Ana (Fun f T ⋅ ℐ) = (K ⋅⇩l⇩i⇩s⇩t ℐ, M ⋅⇩l⇩i⇩s⇩t ℐ)"
        using Ana_t snoc.prems(1) unfolding Ana_invar_subst_def by blast 
      ultimately show ?thesis using Decomp t by (auto simp add: decomp_ik)
    qed
    thus ?case using IH unfolding subst_apply_extstrand_def by simp
  qed simp
  moreover have assignment_rhs_eq: "assignment_rhs⇩e⇩s⇩t (A ⋅⇩e⇩s⇩t ℐ) = assignment_rhs⇩e⇩s⇩t A ⋅⇩s⇩e⇩t ℐ"
    using assms(5,6)
  proof (induction A rule: List.rev_induct)
    case (snoc a A)
    hence "Ana_invar_subst (ik⇩e⇩s⇩t A ∪ assignment_rhs⇩e⇩s⇩t A)"
      using Ana_invar_subst_subset[OF snoc.prems(1)] ik⇩e⇩s⇩t_append assignment_rhs⇩e⇩s⇩t_append
      unfolding Ana_invar_subst_def by simp
    hence "assignment_rhs⇩e⇩s⇩t (A ⋅⇩e⇩s⇩t ℐ) = assignment_rhs⇩e⇩s⇩t A ⋅⇩s⇩e⇩t ℐ"
      using snoc.IH well_analyzed_split_left[OF snoc.prems(2)]
      by simp
    hence IH:
        "assignment_rhs⇩e⇩s⇩t (A@[a] ⋅⇩e⇩s⇩t ℐ) = (assignment_rhs⇩e⇩s⇩t A ⋅⇩s⇩e⇩t ℐ) ∪ assignment_rhs⇩e⇩s⇩t ([a] ⋅⇩e⇩s⇩t ℐ)"
        "assignment_rhs⇩e⇩s⇩t (A@[a]) ⋅⇩s⇩e⇩t ℐ = (assignment_rhs⇩e⇩s⇩t A ⋅⇩s⇩e⇩t ℐ) ∪ (assignment_rhs⇩e⇩s⇩t [a] ⋅⇩s⇩e⇩t ℐ)"
      by (metis assignment_rhs⇩e⇩s⇩t_append_subst(1), metis assignment_rhs⇩e⇩s⇩t_append_subst(2))

    have "assignment_rhs⇩e⇩s⇩t [a ⋅⇩e⇩s⇩t⇩p ℐ] = assignment_rhs⇩e⇩s⇩t [a] ⋅⇩s⇩e⇩t ℐ"
    proof (cases a)
      case (Step b) thus ?thesis by (cases b) auto
    next
      case (Decomp t)
      then obtain f T where t: "t = Fun f T" using well_analyzedD[OF snoc.prems(2)] by force
      obtain K M where Ana_t: "Ana (Fun f T) = (K,M)" by (metis surj_pair)
      moreover have "Fun f T ∈ subterms⇩s⇩e⇩t ((ik⇩e⇩s⇩t (A@[a]) ∪ assignment_rhs⇩e⇩s⇩t (A@[a])))"
        using t Decomp snoc.prems(2)
        by (auto dest: well_analyzed_inv simp add: ik⇩e⇩s⇩t_append assignment_rhs⇩e⇩s⇩t_append)
      hence "Ana (Fun f T ⋅ ℐ) = (K ⋅⇩l⇩i⇩s⇩t ℐ, M ⋅⇩l⇩i⇩s⇩t ℐ)"
        using Ana_t snoc.prems(1) unfolding Ana_invar_subst_def by blast
      ultimately show ?thesis using Decomp t by (auto simp add: decomp_assignment_rhs_empty)
    qed
    thus ?case using IH unfolding subst_apply_extstrand_def by simp
  qed simp
  ultimately obtain D where D:
      "D ∈ decomps⇩e⇩s⇩t (ik⇩e⇩s⇩t A ⋅⇩s⇩e⇩t ℐ) (assignment_rhs⇩e⇩s⇩t A ⋅⇩s⇩e⇩t ℐ) Var"
      "(ik⇩e⇩s⇩t A ⋅⇩s⇩e⇩t ℐ) ∪ (ik⇩e⇩s⇩t D) ⊢⇩c t ⋅ ℐ"
    using decomps⇩e⇩s⇩t_exist[OF ik⇩e⇩s⇩t_finite assignment_rhs⇩e⇩s⇩t_finite, of "A ⋅⇩e⇩s⇩t ℐ" "A ⋅⇩e⇩s⇩t ℐ"]
          ik⇩e⇩s⇩t_append assignment_rhs⇩e⇩s⇩t_append assms(1)
    by force

  let ?P = "λD D'. ∀t. (ik⇩e⇩s⇩t A ⋅⇩s⇩e⇩t ℐ) ∪ (ik⇩e⇩s⇩t D) ⊢⇩c t ⟶ (ik⇩e⇩s⇩t A ⋅⇩s⇩e⇩t ℐ) ∪ (ik⇩e⇩s⇩t D' ⋅⇩s⇩e⇩t ℐ) ⊢⇩c t"

  have "∃D' ∈ decomps⇩e⇩s⇩t (ik⇩e⇩s⇩t A) (assignment_rhs⇩e⇩s⇩t A) ℐ. ?P D D'" using D(1)
  proof (induction D rule: decomps⇩e⇩s⇩t.induct)
    case Nil
    have "ik⇩e⇩s⇩t [] = ik⇩e⇩s⇩t [] ⋅⇩s⇩e⇩t ℐ" by auto
    thus ?case by (metis decomps⇩e⇩s⇩t.Nil)
  next
    case (Decomp D f T K M)
    obtain D' where D': "D' ∈ decomps⇩e⇩s⇩t (ik⇩e⇩s⇩t A) (assignment_rhs⇩e⇩s⇩t A) ℐ" "?P D D'"
      using Decomp.IH by auto
    hence IH: "⋀k. k ∈ set K ⟹ (ik⇩e⇩s⇩t A ⋅⇩s⇩e⇩t ℐ) ∪ (ik⇩e⇩s⇩t D' ⋅⇩s⇩e⇩t ℐ) ⊢⇩c k"
              "(ik⇩e⇩s⇩t A ⋅⇩s⇩e⇩t ℐ) ∪ (ik⇩e⇩s⇩t D' ⋅⇩s⇩e⇩t ℐ) ⊢⇩c Fun f T"
      using Decomp.hyps(5,6) by auto

    have D'_ik: "ik⇩e⇩s⇩t D' ⋅⇩s⇩e⇩t ℐ ⊆ subterms⇩s⇩e⇩t ((ik⇩e⇩s⇩t A ∪ assignment_rhs⇩e⇩s⇩t A)) ⋅⇩s⇩e⇩t ℐ"
                "ik⇩e⇩s⇩t D' ⊆ subterms⇩s⇩e⇩t (ik⇩e⇩s⇩t A ∪ assignment_rhs⇩e⇩s⇩t A)"
      using decomps⇩e⇩s⇩t_ik_subset[OF D'(1)] by (metis subst_all_mono, metis)

    show ?case using IH(2,1) Decomp.hyps(2,3,4)
    proof (induction "Fun f T" arbitrary: f T K M rule: intruder_synth_induct)
      case (AxiomC f T)
      then obtain s where s: "s ∈ ik⇩e⇩s⇩t A ∪ ik⇩e⇩s⇩t D'" "Fun f T = s ⋅ ℐ" using AxiomC.prems by blast
      hence fT_s_in: "Fun f T ∈ (subterms⇩s⇩e⇩t (ik⇩e⇩s⇩t A ∪ assignment_rhs⇩e⇩s⇩t A)) ⋅⇩s⇩e⇩t ℐ"
                     "s ∈ subterms⇩s⇩e⇩t (ik⇩e⇩s⇩t A ∪ assignment_rhs⇩e⇩s⇩t A)"
        using AxiomC D'_ik subset_subterms_Union[of "ik⇩e⇩s⇩t A ∪ assignment_rhs⇩e⇩s⇩t A"]
              subst_all_mono[OF subset_subterms_Union, of ℐ]
        by (metis (no_types) Un_iff image_eqI subset_Un_eq, metis (no_types) Un_iff subset_Un_eq)
      obtain Ks Ms where Ana_s: "Ana s = (Ks,Ms)" by atomize_elim auto

      have AD'_props: "wf⇩e⇩s⇩t {} (A@D')" "⟦{}; to_st (A@D')⟧⇩c ℐ"
        using decomps⇩e⇩s⇩t_preserves_model_c[OF D'(1) assms(2)]
              decomps⇩e⇩s⇩t_preserves_wf[OF D'(1) assms(3)]
              sem⇩e⇩s⇩t_c_eq_sem_st strand_sem_eq_defs(1)
        by auto

      show ?case
      proof (cases s)
        case (Var x)
        ― ‹In this case ‹ℐ x› (is a subterm of something that) was derived from an
            "earlier intruder knowledge" because ‹A› is well-formed and has ‹ℐ› as a model.
            So either the intruder composed ‹Fun f T› himself (making ‹Decomp (Fun f T)›
            unnecessary) or ‹Fun f T› is an instance of something else in the intruder
            knowledge (in which case the "something" can be used in place of ‹Fun f T›)›
        hence "Var x ∈ ik⇩e⇩s⇩t (A@D')" "ℐ x = Fun f T" using s ik⇩e⇩s⇩t_append by auto

        show ?thesis
        proof (cases "∀m ∈ set M. ik⇩e⇩s⇩t A ∪ ik⇩e⇩s⇩t D' ⋅⇩s⇩e⇩t ℐ ⊢⇩c m")
          case True
          ― ‹All terms acquired by decomposing ‹Fun f T› are already derivable.
              Hence there is no need to consider decomposition of ‹Fun f T› at all.›
          have *: "(ik⇩e⇩s⇩t A ⋅⇩s⇩e⇩t ℐ) ∪ ik⇩e⇩s⇩t (D@[Decomp (Fun f T)]) = (ik⇩e⇩s⇩t A ⋅⇩s⇩e⇩t ℐ) ∪ ik⇩e⇩s⇩t D ∪ set M"
            using decomp_ik[OF ‹Ana (Fun f T) = (K,M)›] ik⇩e⇩s⇩t_append[of D "[Decomp (Fun f T)]"]
            by auto
          
          { fix t' assume "(ik⇩e⇩s⇩t A ⋅⇩s⇩e⇩t ℐ) ∪ ik⇩e⇩s⇩t D ∪ set M ⊢⇩c t'"
            hence "(ik⇩e⇩s⇩t A ⋅⇩s⇩e⇩t ℐ) ∪ (ik⇩e⇩s⇩t D' ⋅⇩s⇩e⇩t ℐ) ⊢⇩c t'"
            proof (induction t' rule: intruder_synth_induct)
              case (AxiomC t') thus ?case
              proof
                assume "t' ∈ set M"
                moreover have "(ik⇩e⇩s⇩t A ⋅⇩s⇩e⇩t ℐ) ∪ (ik⇩e⇩s⇩t D' ⋅⇩s⇩e⇩t ℐ) = ik⇩e⇩s⇩t A ∪ ik⇩e⇩s⇩t D' ⋅⇩s⇩e⇩t ℐ" by auto
                ultimately show ?case using True by auto
              qed (metis D'(2) intruder_synth.AxiomC)
            qed auto
          }
          thus ?thesis using D'(1) * by metis
        next
          case False
          ― ‹Some term acquired by decomposition of ‹Fun f T› cannot be derived in ‹⊢⇩c›.
              ‹Fun f T› must therefore be an instance of something else in the intruder knowledge,
              because of well-formedness.›
          then obtain t⇩i where t⇩i: "t⇩i ∈ set T" "¬ik⇩e⇩s⇩t (A@D') ⋅⇩s⇩e⇩t ℐ ⊢⇩c t⇩i"
            using Ana_fun_subterm[OF ‹Ana (Fun f T) = (K,M)›] by (auto simp add: ik⇩e⇩s⇩t_append)
          obtain S where fS:
              "Fun f S ∈ subterms⇩s⇩e⇩t (ik⇩e⇩s⇩t (A@D')) ∨
               Fun f S ∈ subterms⇩s⇩e⇩t (assignment_rhs⇩e⇩s⇩t (A@D'))"
              "ℐ x = Fun f S ⋅ ℐ"
            using strand_sem_wf_ik_or_assignment_rhs_fun_subterm[
                    OF AD'_props ‹Var x ∈ ik⇩e⇩s⇩t (A@D')› _ t⇩i ‹interpretation⇩s⇩u⇩b⇩s⇩t ℐ›]
                  ‹ℐ x = Fun f T›
            by atomize_elim metis
          hence fS_in: "Fun f S ⋅ ℐ ∈ ik⇩e⇩s⇩t A ∪ ik⇩e⇩s⇩t D' ⋅⇩s⇩e⇩t ℐ"
                       "Fun f S ∈ subterms⇩s⇩e⇩t (ik⇩e⇩s⇩t A ∪ assignment_rhs⇩e⇩s⇩t A)"
            using imageI[OF s(1), of "λx. x ⋅ ℐ"] Var
                  ik⇩e⇩s⇩t_append[of A D'] assignment_rhs⇩e⇩s⇩t_append[of A D']
                  decomps⇩e⇩s⇩t_subterms[OF D'(1)] decomps⇩e⇩s⇩t_assignment_rhs_empty[OF D'(1)]
            by auto
          obtain KS MS where Ana_fS: "Ana (Fun f S) = (KS, MS)" by atomize_elim auto
          hence "K = KS ⋅⇩l⇩i⇩s⇩t ℐ" "M = MS ⋅⇩l⇩i⇩s⇩t ℐ"
            using Ana_invar_substD[OF assms(5) fS_in(2)]
                  s(2) fS(2) ‹s = Var x› ‹Ana (Fun f T) = (K,M)›
            by simp_all
          hence "MS ≠ []" using ‹M ≠ []› by simp
          have "⋀k. k ∈ set KS ⟹ ik⇩e⇩s⇩t A ∪ ik⇩e⇩s⇩t D' ⋅⇩s⇩e⇩t ℐ ⊢⇩c k ⋅ ℐ"
            using AxiomC.prems(1) ‹K = KS ⋅⇩l⇩i⇩s⇩t ℐ› by (simp add: image_Un)
          hence D'': "D'@[Decomp (Fun f S)] ∈ decomps⇩e⇩s⇩t (ik⇩e⇩s⇩t A) (assignment_rhs⇩e⇩s⇩t A) ℐ"
            using decomps⇩e⇩s⇩t.Decomp[OF D'(1) fS_in(2) Ana_fS ‹MS ≠ []›] AxiomC.prems(1)
                  intruder_synth.AxiomC[OF fS_in(1)]
            by simp
          moreover {
            fix t' assume "(ik⇩e⇩s⇩t A ⋅⇩s⇩e⇩t ℐ) ∪ ik⇩e⇩s⇩t (D@[Decomp (Fun f T)]) ⊢⇩c t'"
            hence "(ik⇩e⇩s⇩t A ⋅⇩s⇩e⇩t ℐ) ∪ (ik⇩e⇩s⇩t (D'@[Decomp (Fun f S)]) ⋅⇩s⇩e⇩t ℐ) ⊢⇩c t'"
            proof (induction t' rule: intruder_synth_induct)
              case (AxiomC t')
              hence "t' ∈ (ik⇩e⇩s⇩t A ⋅⇩s⇩e⇩t ℐ) ∪ ik⇩e⇩s⇩t D ∨ t' ∈ ik⇩e⇩s⇩t [Decomp (Fun f T)]"
                by (simp add: ik⇩e⇩s⇩t_append)
              thus ?case
              proof
                assume "t' ∈ ik⇩e⇩s⇩t [Decomp (Fun f T)]"
                hence "t' ∈ ik⇩e⇩s⇩t [Decomp (Fun f S)] ⋅⇩s⇩e⇩t ℐ"
                  using decomp_ik ‹Ana (Fun f T) = (K,M)› ‹Ana (Fun f S) = (KS,MS)› ‹M = MS ⋅⇩l⇩i⇩s⇩t ℐ›
                  by simp
                thus ?case
                  using ideduct_synth_mono[
                          OF intruder_synth.AxiomC[of t' "ik⇩e⇩s⇩t [Decomp (Fun f S)] ⋅⇩s⇩e⇩t ℐ"],
                          of "(ik⇩e⇩s⇩t A ⋅⇩s⇩e⇩t ℐ) ∪ (ik⇩e⇩s⇩t (D'@[Decomp (Fun f S)]) ⋅⇩s⇩e⇩t ℐ)"]
                  by (auto simp add: ik⇩e⇩s⇩t_append)
              next
                assume "t' ∈ (ik⇩e⇩s⇩t A ⋅⇩s⇩e⇩t ℐ) ∪ ik⇩e⇩s⇩t D"
                hence "(ik⇩e⇩s⇩t A ⋅⇩s⇩e⇩t ℐ) ∪ (ik⇩e⇩s⇩t D' ⋅⇩s⇩e⇩t ℐ) ⊢⇩c t'"
                  by (metis D'(2) intruder_synth.AxiomC)
                hence "(ik⇩e⇩s⇩t A ⋅⇩s⇩e⇩t ℐ) ∪ (ik⇩e⇩s⇩t D' ⋅⇩s⇩e⇩t ℐ) ∪ (ik⇩e⇩s⇩t [Decomp (Fun f S)] ⋅⇩s⇩e⇩t ℐ) ⊢⇩c t'"
                  by (simp add: ideduct_synth_mono)
                thus ?case
                  using ik⇩e⇩s⇩t_append[of D' "[Decomp (Fun f S)]"]
                        image_Un[of "λx. x ⋅ ℐ" "ik⇩e⇩s⇩t D'" "ik⇩e⇩s⇩t [Decomp (Fun f S)]"]
                  by (simp add: sup_aci(2))
              qed
            qed auto
          }
          ultimately show ?thesis using D'' by auto
        qed
      next
        case (Fun g S) ― ‹Hence ‹Decomp (Fun f T)› can be substituted for ‹Decomp (Fun g S)››
        hence KM: "K = Ks ⋅⇩l⇩i⇩s⇩t ℐ" "M = Ms ⋅⇩l⇩i⇩s⇩t ℐ" "set K = set Ks ⋅⇩s⇩e⇩t ℐ" "set M = set Ms ⋅⇩s⇩e⇩t ℐ"
          using fT_s_in(2) ‹Ana (Fun f T) = (K,M)› Ana_s s(2)
                Ana_invar_substD[OF assms(5), of g S]
          by auto
        hence Ms_nonempty: "Ms ≠ []" using ‹M ≠ []› by auto
        { fix t' assume "(ik⇩e⇩s⇩t A ⋅⇩s⇩e⇩t ℐ) ∪ ik⇩e⇩s⇩t (D@[Decomp (Fun f T)]) ⊢⇩c t'"
          hence "(ik⇩e⇩s⇩t A ⋅⇩s⇩e⇩t ℐ) ∪ (ik⇩e⇩s⇩t (D'@[Decomp (Fun g S)]) ⋅⇩s⇩e⇩t ℐ) ⊢⇩c t'" using AxiomC
          proof (induction t' rule: intruder_synth_induct)
            case (AxiomC t')
            hence "t' ∈ ik⇩e⇩s⇩t A ⋅⇩s⇩e⇩t ℐ ∨ t' ∈ ik⇩e⇩s⇩t D ∨ t' ∈ set M"
              by (simp add: decomp_ik ik⇩e⇩s⇩t_append)
            thus ?case
            proof (elim disjE)
              assume "t' ∈ ik⇩e⇩s⇩t D"
              hence *: "(ik⇩e⇩s⇩t A ⋅⇩s⇩e⇩t ℐ) ∪ (ik⇩e⇩s⇩t D' ⋅⇩s⇩e⇩t ℐ) ⊢⇩c t'" using D'(2) by simp
              show ?case by (auto intro: ideduct_synth_mono[OF *] simp add: ik⇩e⇩s⇩t_append_subst(2))
            next
              assume "t' ∈ set M"
              hence "t' ∈ ik⇩e⇩s⇩t [Decomp (Fun g S)] ⋅⇩s⇩e⇩t ℐ"
                using KM(2) Fun decomp_ik[OF Ana_s] by auto
              thus ?case by (simp add: image_Un ik⇩e⇩s⇩t_append)
            qed (simp add: ideduct_synth_mono[OF intruder_synth.AxiomC])
          qed auto
        }
        thus ?thesis
          using s Fun Ana_s AxiomC.prems(1) KM(3) fT_s_in
                decomps⇩e⇩s⇩t.Decomp[OF D'(1) _ _ Ms_nonempty, of g S Ks]
          by (metis AxiomC.hyps image_Un image_eqI intruder_synth.AxiomC)
      qed
    next
      case (ComposeC T f)
      have *: "⋀m. m ∈ set M ⟹ (ik⇩e⇩s⇩t A ⋅⇩s⇩e⇩t ℐ) ∪ (ik⇩e⇩s⇩t D' ⋅⇩s⇩e⇩t ℐ) ⊢⇩c m"
        using Ana_fun_subterm[OF ‹Ana (Fun f T) = (K, M)›] ComposeC.hyps(3)
        by auto
      
      have **: "ik⇩e⇩s⇩t (D@[Decomp (Fun f T)]) = ik⇩e⇩s⇩t D ∪ set M"
        using decomp_ik[OF ‹Ana (Fun f T) = (K, M)›] ik⇩e⇩s⇩t_append by auto

      { fix t' assume "(ik⇩e⇩s⇩t A ⋅⇩s⇩e⇩t ℐ) ∪ ik⇩e⇩s⇩t (D@[Decomp (Fun f T)]) ⊢⇩c t'"
        hence "(ik⇩e⇩s⇩t A ⋅⇩s⇩e⇩t ℐ) ∪ (ik⇩e⇩s⇩t D' ⋅⇩s⇩e⇩t ℐ) ⊢⇩c t'"
          by (induct rule: intruder_synth_induct) (auto simp add: D'(2) * **)
      }
      thus ?case using D'(1) by auto
    qed
  qed
  thus ?thesis using D(2) assms(1) by (auto simp add: ik⇩e⇩s⇩t_append_subst(2))
qed

private lemma decomps⇩e⇩s⇩t_exist_subst_list:
  assumes "∀t ∈ set ts. ik⇩e⇩s⇩t A ⋅⇩s⇩e⇩t ℐ ⊢ t ⋅ ℐ"
    and "sem⇩e⇩s⇩t_c {} ℐ A" "wf⇩e⇩s⇩t {} A" "interpretation⇩s⇩u⇩b⇩s⇩t ℐ"
    and "Ana_invar_subst (ik⇩e⇩s⇩t A ∪ assignment_rhs⇩e⇩s⇩t A)"
    and "well_analyzed A"
  shows "∃D ∈ decomps⇩e⇩s⇩t (ik⇩e⇩s⇩t A) (assignment_rhs⇩e⇩s⇩t A) ℐ.
          ∀t ∈ set ts. ik⇩e⇩s⇩t (A@D) ⋅⇩s⇩e⇩t ℐ ⊢⇩c t ⋅ ℐ"
    (is "∃D ∈ ?A. ?B D ts")
proof -
  note 0 = decomps⇩e⇩s⇩t_exist_subst[OF _ assms(2-6)]

  show ?thesis using assms(1)
  proof (induction ts)
    case (Cons t ts)
    have 1: "ik⇩e⇩s⇩t A ⋅⇩s⇩e⇩t ℐ ⊢ t ⋅ ℐ" and 2: "∀t ∈ set ts. ik⇩e⇩s⇩t A ⋅⇩s⇩e⇩t ℐ ⊢ t ⋅ ℐ"
      using Cons.prems by auto

    obtain D where D: "D ∈ ?A" "ik⇩e⇩s⇩t (A@D) ⋅⇩s⇩e⇩t ℐ ⊢⇩c t ⋅ ℐ"
      using 0[OF 1] by blast

    obtain D' where D': "D' ∈ ?A" "?B D' ts"
      using Cons.IH[OF 2] by auto

    have "ik⇩e⇩s⇩t (A@D@D') ⋅⇩s⇩e⇩t ℐ ⊢⇩c t ⋅ ℐ"
      using ideduct_synth_mono[OF D(2)] ik⇩e⇩s⇩t_append_subst(2)[of ℐ "A@D" D'] by fastforce
    hence "?B (D@D') (t#ts)"
      using D'(2) ideduct_synth_mono[of "ik⇩e⇩s⇩t (A@D') ⋅⇩s⇩e⇩t ℐ" _ "ik⇩e⇩s⇩t (A@D@D') ⋅⇩s⇩e⇩t ℐ"]
            ik⇩e⇩s⇩t_append_subst(2)[of ℐ]
      by auto
    thus ?case
      using decomps⇩e⇩s⇩t_append[OF D(1) D'(1)] by blast
  qed (fastforce intro: decomps⇩e⇩s⇩t.Nil)
qed

private lemma wf⇩s⇩t⇩s'_update⇩s⇩t_nil: assumes "wf⇩s⇩t⇩s' 𝒮 𝒜" shows "wf⇩s⇩t⇩s' (update⇩s⇩t 𝒮 []) 𝒜"
using assms unfolding wf⇩s⇩t⇩s'_def by auto

private lemma wf⇩s⇩t⇩s'_update⇩s⇩t_snd:
  assumes "wf⇩s⇩t⇩s' 𝒮 𝒜" "send⟨ts⟩⇩s⇩t#S ∈ 𝒮"
  shows "wf⇩s⇩t⇩s' (update⇩s⇩t 𝒮 (send⟨ts⟩⇩s⇩t#S)) (𝒜@[Step (receive⟨ts⟩⇩s⇩t)])"
unfolding wf⇩s⇩t⇩s'_def
proof (intro conjI)
  let ?S = "send⟨ts⟩⇩s⇩t#S"
  let ?A = "𝒜@[Step (receive⟨ts⟩⇩s⇩t)]"

  have 𝒮: "⋀S'. S' ∈ update⇩s⇩t 𝒮 ?S ⟹ S' = S ∨ S' ∈ 𝒮" by auto

  have 1: "∀S ∈ 𝒮. wf⇩s⇩t (wfrestrictedvars⇩e⇩s⇩t 𝒜) (dual⇩s⇩t S)" using assms unfolding wf⇩s⇩t⇩s'_def by auto
  moreover have 2: "wfrestrictedvars⇩e⇩s⇩t ?A = wfrestrictedvars⇩e⇩s⇩t 𝒜 ∪ fv⇩s⇩e⇩t (set ts)"
    using wfrestrictedvars⇩e⇩s⇩t_split(2) by (auto simp add: Un_assoc)
  ultimately have 3: "∀S ∈ 𝒮. wf⇩s⇩t (wfrestrictedvars⇩e⇩s⇩t ?A) (dual⇩s⇩t S)" by (metis wf_vars_mono)

  have 4: "∀S ∈ 𝒮. ∀S' ∈ 𝒮. fv⇩s⇩t S ∩ bvars⇩s⇩t S' = {}" using assms unfolding wf⇩s⇩t⇩s'_def by simp

  have "wf⇩s⇩t (wfrestrictedvars⇩e⇩s⇩t ?A) (dual⇩s⇩t S)" using 1 2 3 assms(2) by auto
  thus "∀S ∈ update⇩s⇩t 𝒮 ?S. wf⇩s⇩t (wfrestrictedvars⇩e⇩s⇩t ?A) (dual⇩s⇩t S)" by (metis 3 𝒮)
  
  have "fv⇩s⇩t S ∩ bvars⇩s⇩t S = {}"
       "∀S' ∈ 𝒮. fv⇩s⇩t S ∩ bvars⇩s⇩t S' = {}"
       "∀S' ∈ 𝒮. fv⇩s⇩t S' ∩ bvars⇩s⇩t S = {}"
    using 4 assms(2) unfolding wf⇩s⇩t⇩s'_def by force+
  thus "∀S ∈ update⇩s⇩t 𝒮 ?S. ∀S' ∈ update⇩s⇩t 𝒮 ?S. fv⇩s⇩t S ∩ bvars⇩s⇩t S' = {}" by (metis 4 𝒮)

  have "∀S' ∈ 𝒮. fv⇩s⇩t ?S ∩ bvars⇩s⇩t S' = {}" "∀S' ∈ 𝒮. fv⇩s⇩t S' ∩ bvars⇩s⇩t ?S = {}"
    using assms unfolding wf⇩s⇩t⇩s'_def by metis+
  hence 5: "fv⇩e⇩s⇩t ?A = fv⇩e⇩s⇩t 𝒜 ∪ fv⇩s⇩e⇩t (set ts)" "bvars⇩e⇩s⇩t ?A = bvars⇩e⇩s⇩t 𝒜"
           "∀S' ∈ 𝒮. fv⇩s⇩e⇩t (set ts) ∩ bvars⇩s⇩t S' = {}"
    using to_st_append by fastforce+

  have *: "∀S ∈ 𝒮. fv⇩s⇩t S ∩ bvars⇩e⇩s⇩t ?A = {}"
    using 5 assms(1) unfolding wf⇩s⇩t⇩s'_def by fast
  hence "fv⇩s⇩t ?S ∩ bvars⇩e⇩s⇩t ?A = {}" using assms(2) by metis
  hence "fv⇩s⇩t S ∩ bvars⇩e⇩s⇩t ?A = {}" by auto
  thus "∀S ∈ update⇩s⇩t 𝒮 ?S. fv⇩s⇩t S ∩ bvars⇩e⇩s⇩t ?A = {}" by (metis * 𝒮)

  have **: "∀S ∈ 𝒮. fv⇩e⇩s⇩t ?A ∩ bvars⇩s⇩t S = {}"
    using 5 assms(1) unfolding wf⇩s⇩t⇩s'_def by fast
  hence "fv⇩e⇩s⇩t ?A ∩ bvars⇩s⇩t ?S = {}" using assms(2) by metis
  hence "fv⇩e⇩s⇩t ?A ∩ bvars⇩s⇩t S = {}" by fastforce
  thus "∀S ∈ update⇩s⇩t 𝒮 ?S. fv⇩e⇩s⇩t ?A ∩ bvars⇩s⇩t S = {}" by (metis ** 𝒮)
qed

private lemma wf⇩s⇩t⇩s'_update⇩s⇩t_rcv:
  assumes "wf⇩s⇩t⇩s' 𝒮 𝒜" "receive⟨ts⟩⇩s⇩t#S ∈ 𝒮"
  shows "wf⇩s⇩t⇩s' (update⇩s⇩t 𝒮 (receive⟨ts⟩⇩s⇩t#S)) (𝒜@[Step (send⟨ts⟩⇩s⇩t)])"
unfolding wf⇩s⇩t⇩s'_def
proof (intro conjI)
  let ?S = "receive⟨ts⟩⇩s⇩t#S"
  let ?A = "𝒜@[Step (send⟨ts⟩⇩s⇩t)]"

  have 𝒮: "⋀S'. S' ∈ update⇩s⇩t 𝒮 ?S ⟹ S' = S ∨ S' ∈ 𝒮" by auto

  have 1: "∀S ∈ 𝒮. wf⇩s⇩t (wfrestrictedvars⇩e⇩s⇩t 𝒜) (dual⇩s⇩t S)" using assms unfolding wf⇩s⇩t⇩s'_def by auto
  moreover have 2: "wfrestrictedvars⇩e⇩s⇩t ?A = wfrestrictedvars⇩e⇩s⇩t 𝒜 ∪ fv⇩s⇩e⇩t (set ts)"
    using wfrestrictedvars⇩e⇩s⇩t_split(2) by (auto simp add: Un_assoc)
  ultimately have 3: "∀S ∈ 𝒮. wf⇩s⇩t (wfrestrictedvars⇩e⇩s⇩t ?A) (dual⇩s⇩t S)" by (metis wf_vars_mono)

  have 4: "∀S ∈ 𝒮. ∀S' ∈ 𝒮. fv⇩s⇩t S ∩ bvars⇩s⇩t S' = {}" using assms unfolding wf⇩s⇩t⇩s'_def by simp

  have "wf⇩s⇩t (wfrestrictedvars⇩e⇩s⇩t ?A) (dual⇩s⇩t S)" using 1 2 3 assms(2) by auto
  thus "∀S ∈ update⇩s⇩t 𝒮 ?S. wf⇩s⇩t (wfrestrictedvars⇩e⇩s⇩t ?A) (dual⇩s⇩t S)" by (metis 3 𝒮)

  have "fv⇩s⇩t S ∩ bvars⇩s⇩t S = {}"
       "∀S' ∈ 𝒮. fv⇩s⇩t S ∩ bvars⇩s⇩t S' = {}"
       "∀S' ∈ 𝒮. fv⇩s⇩t S' ∩ bvars⇩s⇩t S = {}"
    using 4 assms(2) unfolding wf⇩s⇩t⇩s'_def by force+
  thus "∀S ∈ update⇩s⇩t 𝒮 ?S. ∀S' ∈ update⇩s⇩t 𝒮 ?S. fv⇩s⇩t S ∩ bvars⇩s⇩t S' = {}" by (metis 4 𝒮)

  have "∀S' ∈ 𝒮. fv⇩s⇩t ?S ∩ bvars⇩s⇩t S' = {}" "∀S' ∈ 𝒮. fv⇩s⇩t S' ∩ bvars⇩s⇩t ?S = {}"
    using assms unfolding wf⇩s⇩t⇩s'_def by metis+
  hence 5: "fv⇩e⇩s⇩t ?A = fv⇩e⇩s⇩t 𝒜 ∪ fv⇩s⇩e⇩t (set ts)" "bvars⇩e⇩s⇩t ?A = bvars⇩e⇩s⇩t 𝒜"
            "∀S' ∈ 𝒮. fv⇩s⇩e⇩t (set ts) ∩ bvars⇩s⇩t S' = {}"
    using to_st_append by fastforce+

  have *: "∀S ∈ 𝒮. fv⇩s⇩t S ∩ bvars⇩e⇩s⇩t ?A = {}"
    using 5 assms(1) unfolding wf⇩s⇩t⇩s'_def by fast
  hence "fv⇩s⇩t ?S ∩ bvars⇩e⇩s⇩t ?A = {}" using assms(2) by metis
  hence "fv⇩s⇩t S ∩ bvars⇩e⇩s⇩t ?A = {}" by auto
  thus "∀S ∈ update⇩s⇩t 𝒮 ?S. fv⇩s⇩t S ∩ bvars⇩e⇩s⇩t ?A = {}" by (metis * 𝒮)

  have **: "∀S ∈ 𝒮. fv⇩e⇩s⇩t ?A ∩ bvars⇩s⇩t S = {}"
    using 5 assms(1) unfolding wf⇩s⇩t⇩s'_def by fast
  hence "fv⇩e⇩s⇩t ?A ∩ bvars⇩s⇩t ?S = {}" using assms(2) by metis
  hence "fv⇩e⇩s⇩t ?A ∩ bvars⇩s⇩t S = {}" by fastforce
  thus "∀S ∈ update⇩s⇩t 𝒮 ?S. fv⇩e⇩s⇩t ?A ∩ bvars⇩s⇩t S = {}" by (metis ** 𝒮)
qed

private lemma wf⇩s⇩t⇩s'_update⇩s⇩t_eq:
  assumes "wf⇩s⇩t⇩s' 𝒮 𝒜" "⟨a: t ≐ t'⟩⇩s⇩t#S ∈ 𝒮"
  shows "wf⇩s⇩t⇩s' (update⇩s⇩t 𝒮 (⟨a: t ≐ t'⟩⇩s⇩t#S)) (𝒜@[Step (⟨a: t ≐ t'⟩⇩s⇩t)])"
unfolding wf⇩s⇩t⇩s'_def
proof (intro conjI)
  let ?S = "⟨a: t ≐ t'⟩⇩s⇩t#S"
  let ?A = "𝒜@[Step (⟨a: t ≐ t'⟩⇩s⇩t)]"

  have 𝒮: "⋀S'. S' ∈ update⇩s⇩t 𝒮 ?S ⟹ S' = S ∨ S' ∈ 𝒮" by auto

  have 1: "∀S ∈ 𝒮. wf⇩s⇩t (wfrestrictedvars⇩e⇩s⇩t 𝒜) (dual⇩s⇩t S)" using assms unfolding wf⇩s⇩t⇩s'_def by auto
  moreover have 2:
      "a = Assign ⟹ wfrestrictedvars⇩e⇩s⇩t ?A = wfrestrictedvars⇩e⇩s⇩t 𝒜 ∪ fv t ∪ fv t'"
      "a = Check ⟹ wfrestrictedvars⇩e⇩s⇩t ?A = wfrestrictedvars⇩e⇩s⇩t 𝒜"
    using wfrestrictedvars⇩e⇩s⇩t_split(2) by (auto simp add: Un_assoc)
  ultimately have 3: "∀S ∈ 𝒮. wf⇩s⇩t (wfrestrictedvars⇩e⇩s⇩t ?A) (dual⇩s⇩t S)"
    by (cases a) (metis wf_vars_mono, metis)

  have 4: "∀S ∈ 𝒮. ∀S' ∈ 𝒮. fv⇩s⇩t S ∩ bvars⇩s⇩t S' = {}" using assms unfolding wf⇩s⇩t⇩s'_def by simp

  have "wf⇩s⇩t (wfrestrictedvars⇩e⇩s⇩t ?A) (dual⇩s⇩t S)" using 1 2 3 assms(2) by (cases a) auto
  thus "∀S ∈ update⇩s⇩t 𝒮 ?S. wf⇩s⇩t (wfrestrictedvars⇩e⇩s⇩t ?A) (dual⇩s⇩t S)" by (metis 3 𝒮)

  have "fv⇩s⇩t S ∩ bvars⇩s⇩t S = {}"
       "∀S' ∈ 𝒮. fv⇩s⇩t S ∩ bvars⇩s⇩t S' = {}"
       "∀S' ∈ 𝒮. fv⇩s⇩t S' ∩ bvars⇩s⇩t S = {}"
    using 4 assms(2) unfolding wf⇩s⇩t⇩s'_def by force+
  thus "∀S ∈ update⇩s⇩t 𝒮 ?S. ∀S' ∈ update⇩s⇩t 𝒮 ?S. fv⇩s⇩t S ∩ bvars⇩s⇩t S' = {}" by (metis 4 𝒮)

  have "∀S' ∈ 𝒮. fv⇩s⇩t ?S ∩ bvars⇩s⇩t S' = {}" "∀S' ∈ 𝒮. fv⇩s⇩t S' ∩ bvars⇩s⇩t ?S = {}"
    using assms unfolding wf⇩s⇩t⇩s'_def by metis+
  hence 5: "fv⇩e⇩s⇩t ?A = fv⇩e⇩s⇩t 𝒜 ∪ fv t ∪ fv t'" "bvars⇩e⇩s⇩t ?A = bvars⇩e⇩s⇩t 𝒜"
           "∀S' ∈ 𝒮. fv t ∩ bvars⇩s⇩t S' = {}" "∀S' ∈ 𝒮. fv t' ∩ bvars⇩s⇩t S' = {}"
    using to_st_append by fastforce+

  have *: "∀S ∈ 𝒮. fv⇩s⇩t S ∩ bvars⇩e⇩s⇩t ?A = {}"
    using 5 assms(1) unfolding wf⇩s⇩t⇩s'_def by fast
  hence "fv⇩s⇩t ?S ∩ bvars⇩e⇩s⇩t ?A = {}" using assms(2) by metis
  hence "fv⇩s⇩t S ∩ bvars⇩e⇩s⇩t ?A = {}" by auto
  thus "∀S ∈ update⇩s⇩t 𝒮 ?S. fv⇩s⇩t S ∩ bvars⇩e⇩s⇩t ?A = {}" by (metis * 𝒮)

  have **: "∀S ∈ 𝒮. fv⇩e⇩s⇩t ?A ∩ bvars⇩s⇩t S = {}"
    using 5 assms(1) unfolding wf⇩s⇩t⇩s'_def by fast
  hence "fv⇩e⇩s⇩t ?A ∩ bvars⇩s⇩t ?S = {}" using assms(2) by metis
  hence "fv⇩e⇩s⇩t ?A ∩ bvars⇩s⇩t S = {}" by fastforce
  thus "∀S ∈ update⇩s⇩t 𝒮 ?S. fv⇩e⇩s⇩t ?A ∩ bvars⇩s⇩t S = {}" by (metis ** 𝒮)
qed

private lemma wf⇩s⇩t⇩s'_update⇩s⇩t_ineq:
  assumes "wf⇩s⇩t⇩s' 𝒮 𝒜" "∀X⟨∨≠: F⟩⇩s⇩t#S ∈ 𝒮"
  shows "wf⇩s⇩t⇩s' (update⇩s⇩t 𝒮 (∀X⟨∨≠: F⟩⇩s⇩t#S)) (𝒜@[Step (∀X⟨∨≠: F⟩⇩s⇩t)])"
unfolding wf⇩s⇩t⇩s'_def
proof (intro conjI)
  let ?S = "∀X⟨∨≠: F⟩⇩s⇩t#S"
  let ?A = "𝒜@[Step (∀X⟨∨≠: F⟩⇩s⇩t)]"

  have 𝒮: "⋀S'. S' ∈ update⇩s⇩t 𝒮 ?S ⟹ S' = S ∨ S' ∈ 𝒮" by auto

  have 1: "∀S ∈ 𝒮. wf⇩s⇩t (wfrestrictedvars⇩e⇩s⇩t 𝒜) (dual⇩s⇩t S)" using assms unfolding wf⇩s⇩t⇩s'_def by auto
  moreover have 2: "wfrestrictedvars⇩e⇩s⇩t ?A = wfrestrictedvars⇩e⇩s⇩t 𝒜"
    using wfrestrictedvars⇩e⇩s⇩t_split(2) by (auto simp add: Un_assoc)
  ultimately have 3: "∀S ∈ 𝒮. wf⇩s⇩t (wfrestrictedvars⇩e⇩s⇩t ?A) (dual⇩s⇩t S)" by metis

  have 4: "∀S ∈ 𝒮. ∀S' ∈ 𝒮. fv⇩s⇩t S ∩ bvars⇩s⇩t S' = {}" using assms unfolding wf⇩s⇩t⇩s'_def by simp

  have "wf⇩s⇩t (wfrestrictedvars⇩e⇩s⇩t ?A) (dual⇩s⇩t S)" using 1 2 3 assms(2) by auto
  thus "∀S ∈ update⇩s⇩t 𝒮 ?S. wf⇩s⇩t (wfrestrictedvars⇩e⇩s⇩t ?A) (dual⇩s⇩t S)" by (metis 3 𝒮)

  have "fv⇩s⇩t S ∩ bvars⇩s⇩t S = {}"
       "∀S' ∈ 𝒮. fv⇩s⇩t S ∩ bvars⇩s⇩t S' = {}"
       "∀S' ∈ 𝒮. fv⇩s⇩t S' ∩ bvars⇩s⇩t S = {}"
    using 4 assms(2) unfolding wf⇩s⇩t⇩s'_def by force+
  thus "∀S ∈ update⇩s⇩t 𝒮 ?S. ∀S' ∈ update⇩s⇩t 𝒮 ?S. fv⇩s⇩t S ∩ bvars⇩s⇩t S' = {}" by (metis 4 𝒮)

  have "∀S' ∈ 𝒮. fv⇩s⇩t ?S ∩ bvars⇩s⇩t S' = {}" "∀S' ∈ 𝒮. fv⇩s⇩t S' ∩ bvars⇩s⇩t ?S = {}"
    using assms unfolding wf⇩s⇩t⇩s'_def by metis+
  moreover have "fv⇩p⇩a⇩i⇩r⇩s F - set X ⊆ fv⇩s⇩t (∀X⟨∨≠: F⟩⇩s⇩t # S)" by auto
  ultimately have 5:
      "∀S' ∈ 𝒮. (fv⇩p⇩a⇩i⇩r⇩s F - set X) ∩ bvars⇩s⇩t S' = {}"
      "fv⇩e⇩s⇩t ?A = fv⇩e⇩s⇩t 𝒜 ∪ (fv⇩p⇩a⇩i⇩r⇩s F - set X)" "bvars⇩e⇩s⇩t ?A = set X ∪ bvars⇩e⇩s⇩t 𝒜" 
      "∀S ∈ 𝒮. fv⇩s⇩t S ∩ set X = {}"
    using to_st_append
    by (blast, force, force, force)

  have *: "∀S ∈ 𝒮. fv⇩s⇩t S ∩ bvars⇩e⇩s⇩t ?A = {}" using 5(3,4) assms(1) unfolding wf⇩s⇩t⇩s'_def by blast
  hence "fv⇩s⇩t ?S ∩ bvars⇩e⇩s⇩t ?A = {}" using assms(2) by metis
  hence "fv⇩s⇩t S ∩ bvars⇩e⇩s⇩t ?A = {}" by auto
  thus "∀S ∈ update⇩s⇩t 𝒮 ?S. fv⇩s⇩t S ∩ bvars⇩e⇩s⇩t ?A = {}" by (metis * 𝒮)

  have **: "∀S ∈ 𝒮. fv⇩e⇩s⇩t ?A ∩ bvars⇩s⇩t S = {}"
    using 5(1,2) assms(1) unfolding wf⇩s⇩t⇩s'_def by fast
  hence "fv⇩e⇩s⇩t ?A ∩ bvars⇩s⇩t ?S = {}" using assms(2) by metis
  hence "fv⇩e⇩s⇩t ?A ∩ bvars⇩s⇩t S = {}" by auto
  thus "∀S ∈ update⇩s⇩t 𝒮 ?S. fv⇩e⇩s⇩t ?A ∩ bvars⇩s⇩t S = {}" by (metis ** 𝒮)
qed

private lemma trms⇩s⇩t_update⇩s⇩t_eq:
  assumes "x#S ∈ 𝒮"
  shows "⋃(trms⇩s⇩t ` update⇩s⇩t 𝒮 (x#S)) ∪ trms⇩s⇩t⇩p x = ⋃(trms⇩s⇩t ` 𝒮)" (is "?A = ?B")
proof
  show "?B ⊆ ?A"
  proof
    have "trms⇩s⇩t⇩p x ⊆ trms⇩s⇩t (x#S)" by auto
    hence "⋀t'. t' ∈ ?B ⟹ t' ∈ trms⇩s⇩t⇩p x ⟹ t' ∈ ?A" by simp
    moreover {
      fix t' assume t': "t' ∈ ?B" "t' ∉ trms⇩s⇩t⇩p x"
      then obtain S' where S': "t' ∈ trms⇩s⇩t S'" "S' ∈ 𝒮" by auto
      hence "S' = x#S ∨ S' ∈ update⇩s⇩t 𝒮 (x#S)" by auto
      moreover {
        assume "S' = x#S"
        hence "t' ∈ trms⇩s⇩t S" using S' t' by simp
        hence "t' ∈ ?A" by auto
      }
      ultimately have "t' ∈ ?A" using t' S' by auto
    }
    ultimately show "⋀t'. t' ∈ ?B ⟹ t' ∈ ?A" by metis
  qed

  show "?A ⊆ ?B"
  proof
    have "⋀t'. t' ∈ ?A ⟹ t' ∈ trms⇩s⇩t⇩p x ⟹ trms⇩s⇩t⇩p x ⊆ ?B"
      using assms by force+
    moreover {
      fix t' assume t': "t' ∈ ?A" "t' ∉ trms⇩s⇩t⇩p x"
      then obtain S' where "t' ∈ trms⇩s⇩t S'" "S' ∈ update⇩s⇩t 𝒮 (x#S)" by auto
      hence "S' = S ∨ S' ∈ 𝒮" by auto
      moreover have "trms⇩s⇩t S ⊆ ?B" using assms trms⇩s⇩t_cons[of x S] by blast
      ultimately have "t' ∈ ?B" using t' by fastforce
    }
    ultimately show "⋀t'. t' ∈ ?A ⟹ t' ∈ ?B" by blast
  qed
qed

private lemma trms⇩s⇩t_update⇩s⇩t_eq_snd:
  assumes "send⟨ts⟩⇩s⇩t#S ∈ 𝒮" "𝒮' = update⇩s⇩t 𝒮 (send⟨ts⟩⇩s⇩t#S)" "𝒜' = 𝒜@[Step (receive⟨ts⟩⇩s⇩t)]"
  shows "(⋃(trms⇩s⇩t ` 𝒮)) ∪ (trms⇩e⇩s⇩t 𝒜) = (⋃(trms⇩s⇩t ` 𝒮')) ∪ (trms⇩e⇩s⇩t 𝒜')"
proof -
  have "(trms⇩e⇩s⇩t 𝒜') = (trms⇩e⇩s⇩t 𝒜) ∪ set ts" "⋃(trms⇩s⇩t ` 𝒮') ∪ set ts = ⋃(trms⇩s⇩t ` 𝒮)"
    using to_st_append trms⇩s⇩t_update⇩s⇩t_eq[OF assms(1)] assms(2,3) by auto
  thus ?thesis
    by (metis (no_types, lifting) Un_commute Un_left_commute)
qed

private lemma trms⇩s⇩t_update⇩s⇩t_eq_rcv:
  assumes "receive⟨ts⟩⇩s⇩t#S ∈ 𝒮" "𝒮' = update⇩s⇩t 𝒮 (receive⟨ts⟩⇩s⇩t#S)" "𝒜' = 𝒜@[Step (send⟨ts⟩⇩s⇩t)]"
  shows "(⋃(trms⇩s⇩t ` 𝒮)) ∪ (trms⇩e⇩s⇩t 𝒜) = (⋃(trms⇩s⇩t ` 𝒮')) ∪ (trms⇩e⇩s⇩t 𝒜')"
proof -
  have "(trms⇩e⇩s⇩t 𝒜') = (trms⇩e⇩s⇩t 𝒜) ∪ set ts" "⋃(trms⇩s⇩t ` 𝒮') ∪ set ts = ⋃(trms⇩s⇩t ` 𝒮)"
    using to_st_append trms⇩s⇩t_update⇩s⇩t_eq[OF assms(1)] assms(2,3) by auto
  thus ?thesis
    by (metis (no_types, lifting) Un_commute Un_left_commute)
qed

private lemma trms⇩s⇩t_update⇩s⇩t_eq_eq:
  assumes "⟨a: t ≐ t'⟩⇩s⇩t#S ∈ 𝒮" "𝒮' = update⇩s⇩t 𝒮 (⟨a: t ≐ t'⟩⇩s⇩t#S)" "𝒜' = 𝒜@[Step (⟨a: t ≐ t'⟩⇩s⇩t)]"
  shows "(⋃(trms⇩s⇩t ` 𝒮)) ∪ (trms⇩e⇩s⇩t 𝒜) = (⋃(trms⇩s⇩t ` 𝒮')) ∪ (trms⇩e⇩s⇩t 𝒜')"
proof -
  have "(trms⇩e⇩s⇩t 𝒜') = (trms⇩e⇩s⇩t 𝒜) ∪ {t,t'}" "⋃(trms⇩s⇩t ` 𝒮') ∪ {t,t'} = ⋃(trms⇩s⇩t ` 𝒮)"
    using to_st_append trms⇩s⇩t_update⇩s⇩t_eq[OF assms(1)] assms(2,3) by auto
  thus ?thesis
    by (metis (no_types, lifting) Un_insert_left Un_insert_right sup_bot.right_neutral)
qed

private lemma trms⇩s⇩t_update⇩s⇩t_eq_ineq:
  assumes "∀X⟨∨≠: F⟩⇩s⇩t#S ∈ 𝒮" "𝒮' = update⇩s⇩t 𝒮 (∀X⟨∨≠: F⟩⇩s⇩t#S)" "𝒜' = 𝒜@[Step (∀X⟨∨≠: F⟩⇩s⇩t)]"
  shows "(⋃(trms⇩s⇩t ` 𝒮)) ∪ (trms⇩e⇩s⇩t 𝒜) = (⋃(trms⇩s⇩t ` 𝒮')) ∪ (trms⇩e⇩s⇩t 𝒜')"
proof -
  have "(trms⇩e⇩s⇩t 𝒜') = (trms⇩e⇩s⇩t 𝒜) ∪ trms⇩p⇩a⇩i⇩r⇩s F" "⋃(trms⇩s⇩t ` 𝒮') ∪ trms⇩p⇩a⇩i⇩r⇩s F = ⋃(trms⇩s⇩t ` 𝒮)"
    using to_st_append trms⇩s⇩t_update⇩s⇩t_eq[OF assms(1)] assms(2,3) by auto
  thus ?thesis by (simp add: Un_commute sup_left_commute)
qed

private lemma ik⇩s⇩t_update⇩s⇩t_subset:
  assumes "x#S ∈ 𝒮"
  shows "⋃(ik⇩s⇩t`dual⇩s⇩t ` (update⇩s⇩t 𝒮 (x#S))) ⊆ ⋃(ik⇩s⇩t`dual⇩s⇩t ` 𝒮)" (is ?A)
        "⋃(assignment_rhs⇩s⇩t ` (update⇩s⇩t 𝒮 (x#S))) ⊆ ⋃(assignment_rhs⇩s⇩t ` 𝒮)" (is ?B)
proof -
  { fix t assume "t ∈ ⋃(ik⇩s⇩t`dual⇩s⇩t ` (update⇩s⇩t 𝒮 (x#S)))"
    then obtain S' where S': "S' ∈ update⇩s⇩t 𝒮 (x#S)" "t ∈ ik⇩s⇩t (dual⇩s⇩t S')" by auto
  
    have *: "ik⇩s⇩t (dual⇩s⇩t S) ⊆ ik⇩s⇩t (dual⇩s⇩t (x#S))"
      using ik_append[of "dual⇩s⇩t [x]" "dual⇩s⇩t S"] dual⇩s⇩t_append[of "[x]" S]
      by auto
  
    hence "t ∈ ⋃(ik⇩s⇩t`dual⇩s⇩t ` 𝒮)"
    proof (cases "S' = S")
      case True thus ?thesis using * assms S' by auto
    next
      case False thus ?thesis using S' by auto
    qed
  }
  moreover
  { fix t assume "t ∈ ⋃(assignment_rhs⇩s⇩t ` (update⇩s⇩t 𝒮 (x#S)))"
    then obtain S' where S': "S' ∈ update⇩s⇩t 𝒮 (x#S)" "t ∈ assignment_rhs⇩s⇩t S'" by auto
  
    have "assignment_rhs⇩s⇩t S ⊆ assignment_rhs⇩s⇩t (x#S)"
      using assignment_rhs_append[of "[x]" S] by simp
    hence "t ∈ ⋃(assignment_rhs⇩s⇩t ` 𝒮)"
      using assms S' by (cases "S' = S") auto
  }
  ultimately show ?A ?B by (metis subsetI)+
qed

private lemma ik⇩s⇩t_update⇩s⇩t_subset_snd:
  assumes "send⟨ts⟩⇩s⇩t#S ∈ 𝒮"
          "𝒮' = update⇩s⇩t 𝒮 (send⟨ts⟩⇩s⇩t#S)"
          "𝒜' = 𝒜@[Step (receive⟨ts⟩⇩s⇩t)]"
  shows "(⋃(ik⇩s⇩t ` dual⇩s⇩t ` 𝒮')) ∪ (ik⇩e⇩s⇩t 𝒜') ⊆
         (⋃(ik⇩s⇩t ` dual⇩s⇩t ` 𝒮)) ∪ (ik⇩e⇩s⇩t 𝒜)" (is ?A)
        "(⋃(assignment_rhs⇩s⇩t ` 𝒮')) ∪ (assignment_rhs⇩e⇩s⇩t 𝒜') ⊆
         (⋃(assignment_rhs⇩s⇩t ` 𝒮)) ∪ (assignment_rhs⇩e⇩s⇩t 𝒜)" (is ?B)
proof -
  { fix t' assume t'_in: "t' ∈ (⋃(ik⇩s⇩t`dual⇩s⇩t ` 𝒮')) ∪ (ik⇩e⇩s⇩t 𝒜')"
    hence "t' ∈ (⋃(ik⇩s⇩t`dual⇩s⇩t ` 𝒮')) ∪ (ik⇩e⇩s⇩t 𝒜) ∪ set ts" using assms ik⇩e⇩s⇩t_append by auto
    moreover have "set ts ⊆ ⋃(ik⇩s⇩t`dual⇩s⇩t ` 𝒮)" using assms(1) by force
    ultimately have "t' ∈ (⋃(ik⇩s⇩t`dual⇩s⇩t ` 𝒮)) ∪ (ik⇩e⇩s⇩t 𝒜)"
      using ik⇩s⇩t_update⇩s⇩t_subset[OF assms(1)] assms(2) by auto
  }
  moreover
  { fix t' assume t'_in: "t' ∈ (⋃(assignment_rhs⇩s⇩t ` 𝒮')) ∪ (assignment_rhs⇩e⇩s⇩t 𝒜')"
    hence "t' ∈ (⋃(assignment_rhs⇩s⇩t ` 𝒮')) ∪ (assignment_rhs⇩e⇩s⇩t 𝒜)"
      using assms assignment_rhs⇩e⇩s⇩t_append by auto
    hence "t' ∈ (⋃(assignment_rhs⇩s⇩t ` 𝒮)) ∪ (assignment_rhs⇩e⇩s⇩t 𝒜)"
      using ik⇩s⇩t_update⇩s⇩t_subset[OF assms(1)] assms(2) by auto
  }
  ultimately show ?A ?B by (metis subsetI)+
qed

private lemma ik⇩s⇩t_update⇩s⇩t_subset_rcv:
  assumes "receive⟨t⟩⇩s⇩t#S ∈ 𝒮"
          "𝒮' = update⇩s⇩t 𝒮 (receive⟨t⟩⇩s⇩t#S)"
          "𝒜' = 𝒜@[Step (send⟨t⟩⇩s⇩t)]"
  shows "(⋃(ik⇩s⇩t ` dual⇩s⇩t ` 𝒮')) ∪ (ik⇩e⇩s⇩t 𝒜') ⊆
         (⋃(ik⇩s⇩t ` dual⇩s⇩t ` 𝒮)) ∪ (ik⇩e⇩s⇩t 𝒜)" (is ?A)
        "(⋃(assignment_rhs⇩s⇩t ` 𝒮')) ∪ (assignment_rhs⇩e⇩s⇩t 𝒜') ⊆
         (⋃(assignment_rhs⇩s⇩t ` 𝒮)) ∪ (assignment_rhs⇩e⇩s⇩t 𝒜)" (is ?B)
proof -
  { fix t' assume t'_in: "t' ∈ (⋃(ik⇩s⇩t`dual⇩s⇩t ` 𝒮')) ∪ (ik⇩e⇩s⇩t 𝒜')"
    hence "t' ∈ (⋃(ik⇩s⇩t`dual⇩s⇩t ` 𝒮')) ∪ (ik⇩e⇩s⇩t 𝒜)" using assms ik⇩e⇩s⇩t_append by auto
    hence "t' ∈ (⋃(ik⇩s⇩t`dual⇩s⇩t ` 𝒮)) ∪ (ik⇩e⇩s⇩t 𝒜)"
      using ik⇩s⇩t_update⇩s⇩t_subset[OF assms(1)] assms(2) by auto
  }
  moreover
  { fix t' assume t'_in: "t' ∈ (⋃(assignment_rhs⇩s⇩t ` 𝒮')) ∪ (assignment_rhs⇩e⇩s⇩t 𝒜')"
    hence "t' ∈ (⋃(assignment_rhs⇩s⇩t ` 𝒮')) ∪ (assignment_rhs⇩e⇩s⇩t 𝒜)"
      using assms assignment_rhs⇩e⇩s⇩t_append by auto
    hence "t' ∈ (⋃(assignment_rhs⇩s⇩t ` 𝒮)) ∪ (assignment_rhs⇩e⇩s⇩t 𝒜)"
      using ik⇩s⇩t_update⇩s⇩t_subset[OF assms(1)] assms(2) by auto
  }
  ultimately show ?A ?B by (metis subsetI)+
qed

private lemma ik⇩s⇩t_update⇩s⇩t_subset_eq:
  assumes "⟨a: t ≐ t'⟩⇩s⇩t#S ∈ 𝒮"
          "𝒮' = update⇩s⇩t 𝒮 (⟨a: t ≐ t'⟩⇩s⇩t#S)"
          "𝒜' = 𝒜@[Step (⟨a: t ≐ t'⟩⇩s⇩t)]"
  shows "(⋃(ik⇩s⇩t ` dual⇩s⇩t ` 𝒮')) ∪ (ik⇩e⇩s⇩t 𝒜') ⊆
         (⋃(ik⇩s⇩t ` dual⇩s⇩t ` 𝒮)) ∪ (ik⇩e⇩s⇩t 𝒜)" (is ?A)
        "(⋃(assignment_rhs⇩s⇩t ` 𝒮')) ∪ (assignment_rhs⇩e⇩s⇩t 𝒜') ⊆
         (⋃(assignment_rhs⇩s⇩t ` 𝒮)) ∪ (assignment_rhs⇩e⇩s⇩t 𝒜)" (is ?B)
proof -
  have 1: "t' ∈ (⋃(ik⇩s⇩t`dual⇩s⇩t ` 𝒮)) ∪ (ik⇩e⇩s⇩t 𝒜)"
    when "t' ∈ (⋃(ik⇩s⇩t`dual⇩s⇩t ` 𝒮')) ∪ (ik⇩e⇩s⇩t 𝒜')"
    for t'
  proof -
    have "t' ∈ (⋃(ik⇩s⇩t`dual⇩s⇩t ` 𝒮')) ∪ (ik⇩e⇩s⇩t 𝒜)" using that assms ik⇩e⇩s⇩t_append by auto
    thus ?thesis using ik⇩s⇩t_update⇩s⇩t_subset[OF assms(1)] assms(2) by auto
  qed

  have 2: "t'' ∈ (⋃(assignment_rhs⇩s⇩t ` 𝒮)) ∪ (assignment_rhs⇩e⇩s⇩t 𝒜)"
    when "t'' ∈ (⋃(assignment_rhs⇩s⇩t ` 𝒮')) ∪ (assignment_rhs⇩e⇩s⇩t 𝒜')" "a = Assign"
    for t''
  proof -
    have "t'' ∈ (⋃(assignment_rhs⇩s⇩t ` 𝒮')) ∪ (assignment_rhs⇩e⇩s⇩t 𝒜) ∪ {t'}"
      using that assms assignment_rhs⇩e⇩s⇩t_append by auto
    moreover have "t' ∈ ⋃(assignment_rhs⇩s⇩t ` 𝒮)" using assms(1) that by force
    ultimately show ?thesis using ik⇩s⇩t_update⇩s⇩t_subset[OF assms(1)] assms(2) that by auto
  qed

  have 3: "assignment_rhs⇩e⇩s⇩t 𝒜' = assignment_rhs⇩e⇩s⇩t 𝒜" (is ?C)
          "(⋃(assignment_rhs⇩s⇩t ` 𝒮')) ⊆ (⋃(assignment_rhs⇩s⇩t ` 𝒮))" (is ?D)
    when "a = Check"
  proof -
    show ?C using that assms(2,3) by (simp add: assignment_rhs⇩e⇩s⇩t_append)
    show ?D using assms(1,2,3) ik⇩s⇩t_update⇩s⇩t_subset(2) by auto 
  qed

  show ?A using 1 2 by (metis subsetI)
  show ?B using 1 2 3 by (cases a) blast+
qed

private lemma ik⇩s⇩t_update⇩s⇩t_subset_ineq:
  assumes "∀X⟨∨≠: F⟩⇩s⇩t#S ∈ 𝒮"
          "𝒮' = update⇩s⇩t 𝒮 (∀X⟨∨≠: F⟩⇩s⇩t#S)"
          "𝒜' = 𝒜@[Step (∀X⟨∨≠: F⟩⇩s⇩t)]"
  shows "(⋃(ik⇩s⇩t`dual⇩s⇩t ` 𝒮')) ∪ (ik⇩e⇩s⇩t 𝒜') ⊆
          (⋃(ik⇩s⇩t`dual⇩s⇩t ` 𝒮)) ∪ (ik⇩e⇩s⇩t 𝒜)" (is ?A)
        "(⋃(assignment_rhs⇩s⇩t ` 𝒮')) ∪ (assignment_rhs⇩e⇩s⇩t 𝒜') ⊆
         (⋃(assignment_rhs⇩s⇩t ` 𝒮)) ∪ (assignment_rhs⇩e⇩s⇩t 𝒜)" (is ?B)
proof -
  { fix t' assume t'_in: "t' ∈ (⋃(ik⇩s⇩t`dual⇩s⇩t ` 𝒮')) ∪ (ik⇩e⇩s⇩t 𝒜')"
    hence "t' ∈ (⋃(ik⇩s⇩t`dual⇩s⇩t ` 𝒮')) ∪ (ik⇩e⇩s⇩t 𝒜)" using assms ik⇩e⇩s⇩t_append by auto
    hence "t' ∈ (⋃(ik⇩s⇩t`dual⇩s⇩t ` 𝒮)) ∪ (ik⇩e⇩s⇩t 𝒜)"
      using ik⇩s⇩t_update⇩s⇩t_subset[OF assms(1)] assms(2) by auto
  }
  moreover
  { fix t' assume t'_in: "t' ∈ (⋃(assignment_rhs⇩s⇩t ` 𝒮')) ∪ (assignment_rhs⇩e⇩s⇩t 𝒜')"
    hence "t' ∈ (⋃(assignment_rhs⇩s⇩t ` 𝒮')) ∪ (assignment_rhs⇩e⇩s⇩t 𝒜)"
      using assms assignment_rhs⇩e⇩s⇩t_append by auto
    hence "t' ∈ (⋃(assignment_rhs⇩s⇩t ` 𝒮)) ∪ (assignment_rhs⇩e⇩s⇩t 𝒜)"
      using ik⇩s⇩t_update⇩s⇩t_subset[OF assms(1)] assms(2) by auto
  }
  ultimately show ?A ?B by (metis subsetI)+
qed


subsubsection ‹Transition Systems Definitions›
inductive pts_symbolic::
  "(('fun,'var) strands × ('fun,'var) strand) ⇒
   (('fun,'var) strands × ('fun,'var) strand) ⇒ bool"
(infix ‹⇒⇧∙› 50) where
  Nil[simp]:        "[] ∈ 𝒮 ⟹ (𝒮,𝒜) ⇒⇧∙ (update⇩s⇩t 𝒮 [],𝒜)"
| Send[simp]:       "send⟨t⟩⇩s⇩t#S ∈ 𝒮 ⟹ (𝒮,𝒜) ⇒⇧∙ (update⇩s⇩t 𝒮 (send⟨t⟩⇩s⇩t#S),𝒜@[receive⟨t⟩⇩s⇩t])"
| Receive[simp]:    "receive⟨t⟩⇩s⇩t#S ∈ 𝒮 ⟹ (𝒮,𝒜) ⇒⇧∙ (update⇩s⇩t 𝒮 (receive⟨t⟩⇩s⇩t#S),𝒜@[send⟨t⟩⇩s⇩t])"
| Equality[simp]:   "⟨a: t ≐ t'⟩⇩s⇩t#S ∈ 𝒮 ⟹ (𝒮,𝒜) ⇒⇧∙ (update⇩s⇩t 𝒮 (⟨a: t ≐ t'⟩⇩s⇩t#S),𝒜@[⟨a: t ≐ t'⟩⇩s⇩t])"
| Inequality[simp]: "∀X⟨∨≠: F⟩⇩s⇩t#S ∈ 𝒮 ⟹ (𝒮,𝒜) ⇒⇧∙ (update⇩s⇩t 𝒮 (∀X⟨∨≠: F⟩⇩s⇩t#S),𝒜@[∀X⟨∨≠: F⟩⇩s⇩t])"

private inductive pts_symbolic_c::
  "(('fun,'var) strands × ('fun,'var) extstrand) ⇒
   (('fun,'var) strands × ('fun,'var) extstrand) ⇒ bool"
(infix ‹⇒⇧∙⇩c› 50) where
  Nil[simp]:        "[] ∈ 𝒮 ⟹ (𝒮,𝒜) ⇒⇧∙⇩c (update⇩s⇩t 𝒮 [],𝒜)"
| Send[simp]:       "send⟨t⟩⇩s⇩t#S ∈ 𝒮 ⟹ (𝒮,𝒜) ⇒⇧∙⇩c (update⇩s⇩t 𝒮 (send⟨t⟩⇩s⇩t#S),𝒜@[Step (receive⟨t⟩⇩s⇩t)])"
| Receive[simp]:    "receive⟨t⟩⇩s⇩t#S ∈ 𝒮 ⟹ (𝒮,𝒜) ⇒⇧∙⇩c (update⇩s⇩t 𝒮 (receive⟨t⟩⇩s⇩t#S),𝒜@[Step (send⟨t⟩⇩s⇩t)])"
| Equality[simp]:   "⟨a: t ≐ t'⟩⇩s⇩t#S ∈ 𝒮 ⟹ (𝒮,𝒜) ⇒⇧∙⇩c (update⇩s⇩t 𝒮 (⟨a: t ≐ t'⟩⇩s⇩t#S),𝒜@[Step (⟨a: t ≐ t'⟩⇩s⇩t)])"
| Inequality[simp]: "∀X⟨∨≠: F⟩⇩s⇩t#S ∈ 𝒮 ⟹ (𝒮,𝒜) ⇒⇧∙⇩c (update⇩s⇩t 𝒮 (∀X⟨∨≠: F⟩⇩s⇩t#S),𝒜@[Step (∀X⟨∨≠: F⟩⇩s⇩t)])"
| Decompose[simp]:  "Fun f T ∈ subterms⇩s⇩e⇩t (ik⇩e⇩s⇩t 𝒜 ∪ assignment_rhs⇩e⇩s⇩t 𝒜)
                     ⟹ (𝒮,𝒜) ⇒⇧∙⇩c (𝒮,𝒜@[Decomp (Fun f T)])"

abbreviation pts_symbolic_rtrancl (infix ‹⇒⇧∙⇧*› 50) where "a ⇒⇧∙⇧* b ≡ pts_symbolic⇧*⇧* a b"
private abbreviation pts_symbolic_c_rtrancl (infix ‹⇒⇧∙⇩c⇧*› 50) where "a ⇒⇧∙⇩c⇧* b ≡ pts_symbolic_c⇧*⇧* a b"

lemma pts_symbolic_induct[consumes 1, case_names Nil Send Receive Equality Inequality]:
  assumes "(𝒮,𝒜) ⇒⇧∙ (𝒮',𝒜')"
  and "⟦[] ∈ 𝒮; 𝒮' = update⇩s⇩t 𝒮 []; 𝒜' = 𝒜⟧ ⟹ P"
  and "⋀t S. ⟦send⟨t⟩⇩s⇩t#S ∈ 𝒮; 𝒮' = update⇩s⇩t 𝒮 (send⟨t⟩⇩s⇩t#S); 𝒜' = 𝒜@[receive⟨t⟩⇩s⇩t]⟧ ⟹ P"
  and "⋀t S. ⟦receive⟨t⟩⇩s⇩t#S ∈ 𝒮; 𝒮' = update⇩s⇩t 𝒮 (receive⟨t⟩⇩s⇩t#S); 𝒜' = 𝒜@[send⟨t⟩⇩s⇩t]⟧ ⟹ P"
  and "⋀a t t' S. ⟦⟨a: t ≐ t'⟩⇩s⇩t#S ∈ 𝒮; 𝒮' = update⇩s⇩t 𝒮 (⟨a: t ≐ t'⟩⇩s⇩t#S); 𝒜' = 𝒜@[⟨a: t ≐ t'⟩⇩s⇩t]⟧ ⟹ P"
  and "⋀X F S. ⟦∀X⟨∨≠: F⟩⇩s⇩t#S ∈ 𝒮; 𝒮' = update⇩s⇩t 𝒮 (∀X⟨∨≠: F⟩⇩s⇩t#S); 𝒜' = 𝒜@[∀X⟨∨≠: F⟩⇩s⇩t]⟧ ⟹ P"
  shows "P"
apply (rule pts_symbolic.cases[OF assms(1)])
using assms(2,3,4,5,6) by simp_all

private lemma pts_symbolic_c_induct[consumes 1, case_names Nil Send Receive Equality Inequality Decompose]:
  assumes "(𝒮,𝒜) ⇒⇧∙⇩c (𝒮',𝒜')"
  and "⟦[] ∈ 𝒮; 𝒮' = update⇩s⇩t 𝒮 []; 𝒜' = 𝒜⟧ ⟹ P"
  and "⋀t S. ⟦send⟨t⟩⇩s⇩t#S ∈ 𝒮; 𝒮' = update⇩s⇩t 𝒮 (send⟨t⟩⇩s⇩t#S); 𝒜' = 𝒜@[Step (receive⟨t⟩⇩s⇩t)]⟧ ⟹ P"
  and "⋀t S. ⟦receive⟨t⟩⇩s⇩t#S ∈ 𝒮; 𝒮' = update⇩s⇩t 𝒮 (receive⟨t⟩⇩s⇩t#S); 𝒜' = 𝒜@[Step (send⟨t⟩⇩s⇩t)]⟧ ⟹ P"
  and "⋀a t t' S. ⟦⟨a: t ≐ t'⟩⇩s⇩t#S ∈ 𝒮; 𝒮' = update⇩s⇩t 𝒮 (⟨a: t ≐ t'⟩⇩s⇩t#S); 𝒜' = 𝒜@[Step (⟨a: t ≐ t'⟩⇩s⇩t)]⟧ ⟹ P"
  and "⋀X F S. ⟦∀X⟨∨≠: F⟩⇩s⇩t#S ∈ 𝒮; 𝒮' = update⇩s⇩t 𝒮 (∀X⟨∨≠: F⟩⇩s⇩t#S); 𝒜' = 𝒜@[Step (∀X⟨∨≠: F⟩⇩s⇩t)]⟧ ⟹ P"
  and "⋀f T. ⟦Fun f T ∈ subterms⇩s⇩e⇩t (ik⇩e⇩s⇩t 𝒜 ∪ assignment_rhs⇩e⇩s⇩t 𝒜); 𝒮' = 𝒮; 𝒜' = 𝒜@[Decomp (Fun f T)]⟧ ⟹ P"
  shows "P"
apply (rule pts_symbolic_c.cases[OF assms(1)])
using assms(2,3,4,5,6,7) by simp_all

private lemma pts_symbolic_c_preserves_wf_prot:
  assumes "(𝒮,𝒜) ⇒⇧∙⇩c⇧* (𝒮',𝒜')" "wf⇩s⇩t⇩s' 𝒮 𝒜"
  shows "wf⇩s⇩t⇩s' 𝒮' 𝒜'"
using assms
proof (induction rule: rtranclp_induct2)
  case (step 𝒮1 𝒜1 𝒮2 𝒜2)
  from step.hyps(2) step.IH[OF step.prems] show ?case
  proof (induction rule: pts_symbolic_c_induct)
    case Decompose
    hence "fv⇩e⇩s⇩t 𝒜2 = fv⇩e⇩s⇩t 𝒜1" "bvars⇩e⇩s⇩t 𝒜2 = bvars⇩e⇩s⇩t 𝒜1"
      using bvars_decomp ik_assignment_rhs_decomp_fv by metis+
    thus ?case using Decompose unfolding wf⇩s⇩t⇩s'_def
      by (metis wf_vars_mono wfrestrictedvars⇩e⇩s⇩t_split(2))
  qed (metis wf⇩s⇩t⇩s'_update⇩s⇩t_nil, metis wf⇩s⇩t⇩s'_update⇩s⇩t_snd,
       metis wf⇩s⇩t⇩s'_update⇩s⇩t_rcv, metis wf⇩s⇩t⇩s'_update⇩s⇩t_eq,
       metis wf⇩s⇩t⇩s'_update⇩s⇩t_ineq)
qed metis

private lemma pts_symbolic_c_preserves_wf_is:
  assumes "(𝒮,𝒜) ⇒⇧∙⇩c⇧* (𝒮',𝒜')" "wf⇩s⇩t⇩s' 𝒮 𝒜" "wf⇩s⇩t V (to_st 𝒜)"
  shows "wf⇩s⇩t V (to_st 𝒜')"
using assms
proof (induction rule: rtranclp_induct2)
  case (step 𝒮1 𝒜1 𝒮2 𝒜2)
  hence "(𝒮, 𝒜) ⇒⇧∙⇩c⇧* (𝒮2, 𝒜2)" by auto
  hence *: "wf⇩s⇩t⇩s' 𝒮1 𝒜1" "wf⇩s⇩t⇩s' 𝒮2 𝒜2"
    using pts_symbolic_c_preserves_wf_prot[OF _ step.prems(1)] step.hyps(1)
    by auto

  from step.hyps(2) step.IH[OF step.prems] show ?case
  proof (induction rule: pts_symbolic_c_induct)
    case Nil thus ?case by auto
  next
    case (Send ts S)
    hence "wf⇩s⇩t (wfrestrictedvars⇩e⇩s⇩t 𝒜1) (receive⟨ts⟩⇩s⇩t#(dual⇩s⇩t S))"
      using *(1) unfolding wf⇩s⇩t⇩s'_def by fastforce
    hence "fv⇩s⇩e⇩t (set ts) ⊆ wfrestrictedvars⇩s⇩t (to_st 𝒜1) ∪ V"
      using wfrestrictedvars⇩e⇩s⇩t_eq_wfrestrictedvars⇩s⇩t by auto
    thus ?case using Send wf_rcv_append''' to_st_append by simp
  next
    case (Receive ts) thus ?case using wf_snd_append to_st_append by simp
  next
    case (Equality a t t' S)
    hence "wf⇩s⇩t (wfrestrictedvars⇩e⇩s⇩t 𝒜1) (⟨a: t ≐ t'⟩⇩s⇩t#(dual⇩s⇩t S))"
      using *(1) unfolding wf⇩s⇩t⇩s'_def by fastforce
    hence "fv t' ⊆ wfrestrictedvars⇩s⇩t (to_st 𝒜1) ∪ V" when "a = Assign"
      using wfrestrictedvars⇩e⇩s⇩t_eq_wfrestrictedvars⇩s⇩t that by auto
    thus ?case using Equality wf_eq_append''' to_st_append by (cases a) auto
  next
    case (Inequality t t' S) thus ?case using wf_ineq_append'' to_st_append by simp
  next
    case (Decompose f T)
    hence "fv (Fun f T) ⊆ wfrestrictedvars⇩e⇩s⇩t 𝒜1"
      by (metis fv_subterms_set fv_subset subset_trans
                ik⇩s⇩t_assignment_rhs⇩s⇩t_wfrestrictedvars_subset)
    hence "vars⇩s⇩t (decomp (Fun f T)) ⊆ wfrestrictedvars⇩s⇩t (to_st 𝒜1) ∪ V"
      using decomp_vars[of "Fun f T"] wfrestrictedvars⇩e⇩s⇩t_eq_wfrestrictedvars⇩s⇩t[of 𝒜1] by auto
    thus ?case
      using to_st_append[of 𝒜1 "[Decomp (Fun f T)]"]
            wf_append_suffix[OF Decompose.prems] Decompose.hyps(3)
      by (metis append_Nil2 decomp_vars(1,2) to_st.simps(1,3))
  qed
qed metis

private lemma pts_symbolic_c_preserves_tfr⇩s⇩e⇩t:
  assumes "(𝒮,𝒜) ⇒⇧∙⇩c⇧* (𝒮',𝒜')"
    and "tfr⇩s⇩e⇩t ((⋃(trms⇩s⇩t ` 𝒮)) ∪ (trms⇩e⇩s⇩t 𝒜))"
    and "wf⇩t⇩r⇩m⇩s ((⋃(trms⇩s⇩t ` 𝒮)) ∪ (trms⇩e⇩s⇩t 𝒜))"
  shows "tfr⇩s⇩e⇩t ((⋃(trms⇩s⇩t ` 𝒮')) ∪ (trms⇩e⇩s⇩t 𝒜')) ∧ wf⇩t⇩r⇩m⇩s ((⋃(trms⇩s⇩t ` 𝒮')) ∪ (trms⇩e⇩s⇩t 𝒜'))"
using assms
proof (induction rule: rtranclp_induct2)
  case (step 𝒮1 𝒜1 𝒮2 𝒜2)
  from step.hyps(2) step.IH[OF step.prems] show ?case
  proof (induction rule: pts_symbolic_c_induct)
    case Nil
    hence "⋃(trms⇩s⇩t ` 𝒮1) = ⋃(trms⇩s⇩t ` 𝒮2)" by force
    thus ?case using Nil by metis
  next
    case (Decompose f T)
    obtain t where t: "t ∈ ik⇩e⇩s⇩t 𝒜1 ∪ assignment_rhs⇩e⇩s⇩t 𝒜1" "Fun f T ⊑ t"
      using Decompose.hyps(1) by auto
    have t_wf: "wf⇩t⇩r⇩m t"
      using Decompose.prems wf_trm_subterm[of _ t]
            trms⇩e⇩s⇩t_ik_assignment_rhsI[OF t(1)]
      unfolding tfr⇩s⇩e⇩t_def
      by (metis UN_E Un_iff)
    have "t ∈ subterms⇩s⇩e⇩t (trms⇩e⇩s⇩t 𝒜1)" using trms⇩e⇩s⇩t_ik_assignment_rhsI t by auto
    hence "Fun f T ∈ SMP (trms⇩e⇩s⇩t 𝒜1)"
      by (metis (no_types) SMP.MP SMP.Subterm UN_E t(2)) 
    hence "{Fun f T} ⊆ SMP (trms⇩e⇩s⇩t 𝒜1)" using SMP.Subterm[of "Fun f T"] by auto
    moreover have "trms⇩e⇩s⇩t 𝒜2 = insert (Fun f T) (trms⇩e⇩s⇩t 𝒜1)"
      using Decompose.hyps(3) by auto
    ultimately have *: "SMP (trms⇩e⇩s⇩t 𝒜1) = SMP (trms⇩e⇩s⇩t 𝒜2)"
      using SMP_subset_union_eq[of "{Fun f T}"]
      by (simp add: Un_commute)
    hence "SMP ((⋃(trms⇩s⇩t ` 𝒮1)) ∪ (trms⇩e⇩s⇩t 𝒜1)) = SMP ((⋃(trms⇩s⇩t ` 𝒮2)) ∪ (trms⇩e⇩s⇩t 𝒜2))"
      using Decompose.hyps(2) SMP_union by auto
    moreover have "∀t ∈ trms⇩e⇩s⇩t 𝒜1. wf⇩t⇩r⇩m t" "wf⇩t⇩r⇩m (Fun f T)"
      using Decompose.prems wf_trm_subterm t(2) t_wf unfolding tfr⇩s⇩e⇩t_def by auto
    hence "∀t ∈ trms⇩e⇩s⇩t 𝒜2. wf⇩t⇩r⇩m t" by (metis * SMP.MP SMP_wf_trm) 
    hence "∀t ∈ (⋃(trms⇩s⇩t ` 𝒮2)) ∪ (trms⇩e⇩s⇩t 𝒜2). wf⇩t⇩r⇩m t"
      using Decompose.prems Decompose.hyps(2) unfolding tfr⇩s⇩e⇩t_def by force
    ultimately show ?thesis using Decompose.prems unfolding tfr⇩s⇩e⇩t_def by presburger 
  qed (metis trms⇩s⇩t_update⇩s⇩t_eq_snd, metis trms⇩s⇩t_update⇩s⇩t_eq_rcv,
       metis trms⇩s⇩t_update⇩s⇩t_eq_eq, metis trms⇩s⇩t_update⇩s⇩t_eq_ineq)
qed metis

private lemma pts_symbolic_c_preserves_tfr⇩s⇩t⇩p:
  assumes "(𝒮,𝒜) ⇒⇧∙⇩c⇧* (𝒮',𝒜')" "∀S ∈ 𝒮 ∪ {to_st 𝒜}. list_all tfr⇩s⇩t⇩p S"
  shows "∀S ∈ 𝒮' ∪ {to_st 𝒜'}. list_all tfr⇩s⇩t⇩p S"
using assms
proof (induction rule: rtranclp_induct2)
  case (step 𝒮1 𝒜1 𝒮2 𝒜2)
  from step.hyps(2) step.IH[OF step.prems] show ?case
  proof (induction rule: pts_symbolic_c_induct)
    case Nil
    have 1: "∀S ∈ {to_st 𝒜2}. list_all tfr⇩s⇩t⇩p S" using Nil by simp
    have 2: "𝒮2 = 𝒮1 - {[]}" "∀S ∈ 𝒮1. list_all tfr⇩s⇩t⇩p S"  using Nil by simp_all
    have "∀S ∈ 𝒮2. list_all tfr⇩s⇩t⇩p S"
    proof
      fix S assume "S ∈ 𝒮2"
      hence "S ∈ 𝒮1" using 2(1) by simp
      thus "list_all tfr⇩s⇩t⇩p S" using 2(2) by simp
    qed
    thus ?case using 1 by auto
  next
    case (Send t S)
    have 1: "∀S ∈ {to_st 𝒜2}. list_all tfr⇩s⇩t⇩p S" using Send by (simp add: to_st_append)
    have 2: "𝒮2 = insert S (𝒮1 - {send⟨t⟩⇩s⇩t#S})" "∀S ∈ 𝒮1. list_all tfr⇩s⇩t⇩p S"  using Send by simp_all
    have 3: "∀S ∈ 𝒮2. list_all tfr⇩s⇩t⇩p S"
    proof
      fix S' assume "S' ∈ 𝒮2"
      hence "S' ∈ 𝒮1 ∨ S' = S" using 2(1) by auto
      moreover have "list_all tfr⇩s⇩t⇩p S" using Send.hyps 2(2) by auto
      ultimately show "list_all tfr⇩s⇩t⇩p S'" using 2(2) by blast
    qed
    thus ?case using 1 by auto
  next
    case (Receive t S)
    have 1: "∀S ∈ {to_st 𝒜2}. list_all tfr⇩s⇩t⇩p S" using Receive by (simp add: to_st_append)
    have 2: "𝒮2 = insert S (𝒮1 - {receive⟨t⟩⇩s⇩t#S})" "∀S ∈ 𝒮1. list_all tfr⇩s⇩t⇩p S"
      using Receive by simp_all
    have 3: "∀S ∈ 𝒮2. list_all tfr⇩s⇩t⇩p S"
    proof
      fix S' assume "S' ∈ 𝒮2"
      hence "S' ∈ 𝒮1 ∨ S' = S" using 2(1) by auto
      moreover have "list_all tfr⇩s⇩t⇩p S" using Receive.hyps 2(2) by auto
      ultimately show "list_all tfr⇩s⇩t⇩p S'" using 2(2) by blast
    qed
    show ?case using 1 3 by auto
  next
    case (Equality a t t' S)
    have 1: "to_st 𝒜2 = to_st 𝒜1@[⟨a: t ≐ t'⟩⇩s⇩t]" "list_all tfr⇩s⇩t⇩p (to_st 𝒜1)"
      using Equality by (simp_all add: to_st_append)
    have 2: "list_all tfr⇩s⇩t⇩p [⟨a: t ≐ t'⟩⇩s⇩t]" using Equality by fastforce
    have 3: "list_all tfr⇩s⇩t⇩p (to_st 𝒜2)"
      using tfr_stp_all_append[of "to_st 𝒜1" "[⟨a: t ≐ t'⟩⇩s⇩t]"] 1 2 by metis
    hence 4: "∀S ∈ {to_st 𝒜2}. list_all tfr⇩s⇩t⇩p S" using Equality by simp
    have 5: "𝒮2 = insert S (𝒮1 - {⟨a: t ≐ t'⟩⇩s⇩t#S})" "∀S ∈ 𝒮1. list_all tfr⇩s⇩t⇩p S"
      using Equality by simp_all
    have 6: "∀S ∈ 𝒮2. list_all tfr⇩s⇩t⇩p S" 
    proof
      fix S' assume "S' ∈ 𝒮2"
      hence "S' ∈ 𝒮1 ∨ S' = S" using 5(1) by auto
      moreover have "list_all tfr⇩s⇩t⇩p S" using Equality.hyps 5(2) by auto
      ultimately show "list_all tfr⇩s⇩t⇩p S'" using 5(2) by blast
    qed
    thus ?case using 4 by auto
  next
    case (Inequality X F S)
    have 1: "to_st 𝒜2 = to_st 𝒜1@[∀X⟨∨≠: F⟩⇩s⇩t]" "list_all tfr⇩s⇩t⇩p (to_st 𝒜1)"
      using Inequality by (simp_all add: to_st_append)
    have "list_all tfr⇩s⇩t⇩p (∀X⟨∨≠: F⟩⇩s⇩t#S)" using Inequality(1,4) by blast
    hence 2: "list_all tfr⇩s⇩t⇩p [∀X⟨∨≠: F⟩⇩s⇩t]" by simp
    have 3: "list_all tfr⇩s⇩t⇩p (to_st 𝒜2)"
      using tfr_stp_all_append[of "to_st 𝒜1" "[∀X⟨∨≠: F⟩⇩s⇩t]"] 1 2 by metis
    hence 4: "∀S ∈ {to_st 𝒜2}. list_all tfr⇩s⇩t⇩p S" using Inequality by simp
    have 5: "𝒮2 = insert S (𝒮1 - {∀X⟨∨≠: F⟩⇩s⇩t#S})" "∀S ∈ 𝒮1. list_all tfr⇩s⇩t⇩p S"
      using Inequality by simp_all
    have 6: "∀S ∈ 𝒮2. list_all tfr⇩s⇩t⇩p S"
    proof
      fix S' assume "S' ∈ 𝒮2"
      hence "S' ∈ 𝒮1 ∨ S' = S" using 5(1) by auto
      moreover have "list_all tfr⇩s⇩t⇩p S" using Inequality.hyps 5(2) by auto
      ultimately show "list_all tfr⇩s⇩t⇩p S'" using 5(2) by blast
    qed
    thus ?case using 4 by auto
  next
    case (Decompose f T)
    hence 1: "∀S ∈ 𝒮2. list_all tfr⇩s⇩t⇩p S" by blast
    have 2: "list_all tfr⇩s⇩t⇩p (to_st 𝒜1)" "list_all tfr⇩s⇩t⇩p (to_st [Decomp (Fun f T)])"
      using Decompose.prems decomp_tfr⇩s⇩t⇩p by auto
    hence "list_all tfr⇩s⇩t⇩p (to_st 𝒜1@to_st [Decomp (Fun f T)])" by auto
    hence "list_all tfr⇩s⇩t⇩p (to_st 𝒜2)"
      using Decompose.hyps(3) to_st_append[of 𝒜1 "[Decomp (Fun f T)]"]
      by auto
    thus ?case using 1 by blast
  qed
qed

private lemma pts_symbolic_c_preserves_well_analyzed:
  assumes "(𝒮,𝒜) ⇒⇧∙⇩c⇧* (𝒮',𝒜')" "well_analyzed 𝒜"
  shows "well_analyzed 𝒜'"
using assms
proof (induction rule: rtranclp_induct2)
  case (step 𝒮1 𝒜1 𝒮2 𝒜2)
  from step.hyps(2) step.IH[OF step.prems] show ?case
  proof (induction rule: pts_symbolic_c_induct)
    case Receive thus ?case by (metis well_analyzed_singleton(1) well_analyzed_append)
  next
    case Send thus ?case by (metis well_analyzed_singleton(2) well_analyzed_append)
  next
    case Equality thus ?case by (metis well_analyzed_singleton(3) well_analyzed_append)
  next
    case Inequality thus ?case by (metis well_analyzed_singleton(4) well_analyzed_append)
  next
    case (Decompose f T)
    hence "Fun f T ∈ subterms⇩s⇩e⇩t (ik⇩e⇩s⇩t 𝒜1 ∪ assignment_rhs⇩e⇩s⇩t 𝒜1) - (Var`𝒱)" by auto
    thus ?case by (metis well_analyzed.Decomp Decompose.prems Decompose.hyps(3))
  qed simp
qed metis

private lemma pts_symbolic_c_preserves_Ana_invar_subst:
  assumes "(𝒮,𝒜) ⇒⇧∙⇩c⇧* (𝒮',𝒜')"
    and "Ana_invar_subst (
          (⋃(ik⇩s⇩t ` dual⇩s⇩t ` 𝒮) ∪ (ik⇩e⇩s⇩t 𝒜)) ∪
          (⋃(assignment_rhs⇩s⇩t ` 𝒮) ∪ (assignment_rhs⇩e⇩s⇩t 𝒜)))"
  shows "Ana_invar_subst (
          (⋃(ik⇩s⇩t ` dual⇩s⇩t ` 𝒮') ∪ (ik⇩e⇩s⇩t 𝒜')) ∪
          (⋃(assignment_rhs⇩s⇩t ` 𝒮') ∪ (assignment_rhs⇩e⇩s⇩t 𝒜')))"
using assms
proof (induction rule: rtranclp_induct2)
  case (step 𝒮1 𝒜1 𝒮2 𝒜2)
  from step.hyps(2) step.IH[OF step.prems] show ?case
  proof (induction rule: pts_symbolic_c_induct)
    case Nil
    hence "⋃(ik⇩s⇩t ` dual⇩s⇩t ` 𝒮1) = ⋃(ik⇩s⇩t ` dual⇩s⇩t ` 𝒮2)"
          "⋃(assignment_rhs⇩s⇩t ` 𝒮1) = ⋃(assignment_rhs⇩s⇩t ` 𝒮2)"
      by force+
    thus ?case using Nil by metis
  next 
    case Send show ?case
      using ik⇩s⇩t_update⇩s⇩t_subset_snd[OF Send.hyps]
            Ana_invar_subst_subset[OF Send.prems]
      by (metis Un_mono)
  next
    case Receive show ?case
      using ik⇩s⇩t_update⇩s⇩t_subset_rcv[OF Receive.hyps]
            Ana_invar_subst_subset[OF Receive.prems]
      by (metis Un_mono)
  next
    case Equality show ?case
      using ik⇩s⇩t_update⇩s⇩t_subset_eq[OF Equality.hyps]
            Ana_invar_subst_subset[OF Equality.prems]
      by (metis Un_mono)
  next
    case Inequality show ?case
      using ik⇩s⇩t_update⇩s⇩t_subset_ineq[OF Inequality.hyps]
            Ana_invar_subst_subset[OF Inequality.prems]
      by (metis Un_mono)
  next
    case (Decompose f T)
    let ?X = "⋃(assignment_rhs⇩s⇩t`𝒮2) ∪ assignment_rhs⇩e⇩s⇩t 𝒜2"
    let ?Y = "⋃(assignment_rhs⇩s⇩t`𝒮1) ∪ assignment_rhs⇩e⇩s⇩t 𝒜1"
    obtain K M where Ana: "Ana (Fun f T) = (K,M)" by atomize_elim auto
    hence *: "ik⇩e⇩s⇩t 𝒜2 = ik⇩e⇩s⇩t 𝒜1 ∪ set M" "assignment_rhs⇩e⇩s⇩t 𝒜2 = assignment_rhs⇩e⇩s⇩t 𝒜1"
      using ik⇩e⇩s⇩t_append assignment_rhs⇩e⇩s⇩t_append decomp_ik
            decomp_assignment_rhs_empty Decompose.hyps(3)
      by auto
    { fix g S assume "Fun g S ∈ subterms⇩s⇩e⇩t (⋃(ik⇩s⇩t`dual⇩s⇩t`𝒮2) ∪ ik⇩e⇩s⇩t 𝒜2 ∪ ?X)"
      hence "Fun g S ∈ subterms⇩s⇩e⇩t (⋃(ik⇩s⇩t`dual⇩s⇩t ` 𝒮1) ∪ ik⇩e⇩s⇩t 𝒜1 ∪ set M ∪ ?X)"
        using * Decompose.hyps(2) by auto
      hence "Fun g S ∈ subterms⇩s⇩e⇩t (⋃(ik⇩s⇩t`dual⇩s⇩t ` 𝒮1))
            ∨ Fun g S ∈ subterms⇩s⇩e⇩t (ik⇩e⇩s⇩t 𝒜1)
            ∨ Fun g S ∈ subterms⇩s⇩e⇩t (set M)
            ∨ Fun g S ∈ subterms⇩s⇩e⇩t (⋃(assignment_rhs⇩s⇩t`𝒮1))
            ∨ Fun g S ∈ subterms⇩s⇩e⇩t (assignment_rhs⇩e⇩s⇩t 𝒜1)"
        using Decompose * Ana_fun_subterm[OF Ana] by auto
      moreover have "Fun f T ∈ subterms⇩s⇩e⇩t (ik⇩e⇩s⇩t 𝒜1 ∪ assignment_rhs⇩e⇩s⇩t 𝒜1)"
        using trms⇩e⇩s⇩t_ik_subtermsI Decompose.hyps(1) by auto 
      hence "subterms (Fun f T) ⊆ subterms⇩s⇩e⇩t (ik⇩e⇩s⇩t 𝒜1 ∪ assignment_rhs⇩e⇩s⇩t 𝒜1)"
        by (metis in_subterms_subset_Union)
      hence "subterms⇩s⇩e⇩t (set M) ⊆ subterms⇩s⇩e⇩t (ik⇩e⇩s⇩t 𝒜1 ∪ assignment_rhs⇩e⇩s⇩t 𝒜1)"
        by (meson Un_upper2 Ana_subterm[OF Ana] subterms_subset_set psubsetE subset_trans)
      ultimately have "Fun g S ∈ subterms⇩s⇩e⇩t (⋃(ik⇩s⇩t`dual⇩s⇩t ` 𝒮1) ∪ ik⇩e⇩s⇩t 𝒜1 ∪ ?Y)"
        by auto
    }
    thus ?case using Decompose unfolding Ana_invar_subst_def by metis
  qed
qed

private lemma pts_symbolic_c_preserves_constr_disj_vars:
  assumes "(𝒮,𝒜) ⇒⇧∙⇩c⇧* (𝒮',𝒜')" "wf⇩s⇩t⇩s' 𝒮 𝒜" "fv⇩e⇩s⇩t 𝒜 ∩ bvars⇩e⇩s⇩t 𝒜 = {}"
  shows "fv⇩e⇩s⇩t 𝒜' ∩ bvars⇩e⇩s⇩t 𝒜' = {}"
using assms
proof (induction rule: rtranclp_induct2)
  case (step 𝒮1 𝒜1 𝒮2 𝒜2)
  have *: "⋀S. S ∈ 𝒮1 ⟹ fv⇩s⇩t S ∩ bvars⇩e⇩s⇩t 𝒜1 = {}" "⋀S. S ∈ 𝒮1 ⟹ fv⇩e⇩s⇩t 𝒜1 ∩ bvars⇩s⇩t S = {}"
    using pts_symbolic_c_preserves_wf_prot[OF step.hyps(1) step.prems(1)]
    unfolding wf⇩s⇩t⇩s'_def by auto
  from step.hyps(2) step.IH[OF step.prems]
  show ?case
  proof (induction rule: pts_symbolic_c_induct)
    case Nil thus ?case by auto
  next 
    case (Send ts S)
    hence "fv⇩e⇩s⇩t 𝒜2 = fv⇩e⇩s⇩t 𝒜1 ∪ fv⇩s⇩e⇩t (set ts)" "bvars⇩e⇩s⇩t 𝒜2 = bvars⇩e⇩s⇩t 𝒜1"
          "fv⇩s⇩t (send⟨ts⟩⇩s⇩t#S) = fv⇩s⇩e⇩t (set ts) ∪ fv⇩s⇩t S"
      using fv⇩e⇩s⇩t_append bvars⇩e⇩s⇩t_append by simp+
    thus ?case using *(1)[OF Send(1)] Send(4) by auto
  next
    case (Receive ts S)
    hence "fv⇩e⇩s⇩t 𝒜2 = fv⇩e⇩s⇩t 𝒜1 ∪ fv⇩s⇩e⇩t (set ts)" "bvars⇩e⇩s⇩t 𝒜2 = bvars⇩e⇩s⇩t 𝒜1"
          "fv⇩s⇩t (receive⟨ts⟩⇩s⇩t#S) = fv⇩s⇩e⇩t (set ts) ∪ fv⇩s⇩t S"
      using fv⇩e⇩s⇩t_append bvars⇩e⇩s⇩t_append by simp+
    thus ?case using *(1)[OF Receive(1)] Receive(4) by auto
  next
    case (Equality a t t' S)
    hence "fv⇩e⇩s⇩t 𝒜2 = fv⇩e⇩s⇩t 𝒜1 ∪ fv t ∪ fv t'" "bvars⇩e⇩s⇩t 𝒜2 = bvars⇩e⇩s⇩t 𝒜1"
          "fv⇩s⇩t (⟨a: t ≐ t'⟩⇩s⇩t#S) = fv t ∪ fv t' ∪ fv⇩s⇩t S"
      using fv⇩e⇩s⇩t_append bvars⇩e⇩s⇩t_append by fastforce+
    thus ?case using *(1)[OF Equality(1)] Equality(4) by auto
  next
    case (Inequality X F S)
    hence "fv⇩e⇩s⇩t 𝒜2 = fv⇩e⇩s⇩t 𝒜1 ∪ (fv⇩p⇩a⇩i⇩r⇩s F - set X)" "bvars⇩e⇩s⇩t 𝒜2 = bvars⇩e⇩s⇩t 𝒜1 ∪ set X"
          "fv⇩s⇩t (∀X⟨∨≠: F⟩⇩s⇩t#S) = (fv⇩p⇩a⇩i⇩r⇩s F - set X) ∪ fv⇩s⇩t S"
      using fv⇩e⇩s⇩t_append bvars⇩e⇩s⇩t_append strand_vars_split(3)[of "[∀X⟨∨≠: F⟩⇩s⇩t]" S]
      by auto+
    moreover have "fv⇩e⇩s⇩t 𝒜1 ∩ set X = {}" using *(2)[OF Inequality(1)] by auto
    ultimately show ?case using *(1)[OF Inequality(1)] Inequality(4) by auto
  next
    case (Decompose f T)
    thus ?case
      using Decompose(3,4) bvars_decomp ik_assignment_rhs_decomp_fv[OF Decompose(1)] by auto
  qed
qed


subsubsection ‹Theorem: The Typing Result Lifted to the Transition System Level›
private lemma wf⇩s⇩t⇩s'_decomp_rm:
  assumes "well_analyzed A" "wf⇩s⇩t⇩s' S (decomp_rm⇩e⇩s⇩t A)" shows "wf⇩s⇩t⇩s' S A"
unfolding wf⇩s⇩t⇩s'_def
proof (intro conjI)
  show "∀S∈S. wf⇩s⇩t (wfrestrictedvars⇩e⇩s⇩t A) (dual⇩s⇩t S)"
    by (metis (no_types) assms(2) wf⇩s⇩t⇩s'_def wfrestrictedvars⇩e⇩s⇩t_decomp_rm⇩e⇩s⇩t_subset
                wf_vars_mono le_iff_sup)

  show "∀Sa∈S. ∀S'∈S. fv⇩s⇩t Sa ∩ bvars⇩s⇩t S' = {}" by (metis assms(2) wf⇩s⇩t⇩s'_def)

  show "∀S∈S. fv⇩s⇩t S ∩ bvars⇩e⇩s⇩t A = {}" by (metis assms(2) wf⇩s⇩t⇩s'_def bvars_decomp_rm)

  show "∀S∈S. fv⇩e⇩s⇩t A ∩ bvars⇩s⇩t S = {}" by (metis assms wf⇩s⇩t⇩s'_def well_analyzed_decomp_rm⇩e⇩s⇩t_fv)
qed

private lemma decomps⇩e⇩s⇩t_pts_symbolic_c:
  assumes "D ∈ decomps⇩e⇩s⇩t (ik⇩e⇩s⇩t A) (assignment_rhs⇩e⇩s⇩t A) ℐ"
  shows "(S,A) ⇒⇧∙⇩c⇧* (S,A@D)"
using assms(1)
proof (induction D rule: decomps⇩e⇩s⇩t.induct)
  case (Decomp B f X K T)
  have "subterms⇩s⇩e⇩t (ik⇩e⇩s⇩t A ∪ assignment_rhs⇩e⇩s⇩t A) ⊆
        subterms⇩s⇩e⇩t (ik⇩e⇩s⇩t (A@B) ∪ assignment_rhs⇩e⇩s⇩t (A@B))"
    using ik⇩e⇩s⇩t_append[of A B] assignment_rhs⇩e⇩s⇩t_append[of A B]
    by auto
  hence "Fun f X ∈ subterms⇩s⇩e⇩t (ik⇩e⇩s⇩t (A@B) ∪ assignment_rhs⇩e⇩s⇩t (A@B))" using Decomp.hyps by auto
  hence "(S,A@B) ⇒⇧∙⇩c (S,A@B@[Decomp (Fun f X)])"
    using pts_symbolic_c.Decompose[of f X "A@B"]
    by simp
  thus ?case
    using Decomp.IH rtrancl_into_rtrancl
          rtranclp_rtrancl_eq[of pts_symbolic_c "(S,A)" "(S,A@B)"]
    by auto
qed simp

private lemma pts_symbolic_to_pts_symbolic_c:
  assumes "(𝒮,to_st (decomp_rm⇩e⇩s⇩t 𝒜⇩d)) ⇒⇧∙⇧* (𝒮',𝒜')" "sem⇩e⇩s⇩t_d {} ℐ (to_est 𝒜')" "sem⇩e⇩s⇩t_c {} ℐ 𝒜⇩d"
  and wf: "wf⇩s⇩t⇩s' 𝒮 (decomp_rm⇩e⇩s⇩t 𝒜⇩d)" "wf⇩e⇩s⇩t {} 𝒜⇩d"
  and tar: "Ana_invar_subst ((⋃(ik⇩s⇩t` dual⇩s⇩t` 𝒮) ∪ (ik⇩e⇩s⇩t 𝒜⇩d))
                            ∪ (⋃(assignment_rhs⇩s⇩t` 𝒮) ∪ (assignment_rhs⇩e⇩s⇩t 𝒜⇩d)))"
  and wa: "well_analyzed 𝒜⇩d"
  and ℐ: "interpretation⇩s⇩u⇩b⇩s⇩t ℐ"
  shows "∃𝒜⇩d'. 𝒜' = to_st (decomp_rm⇩e⇩s⇩t 𝒜⇩d') ∧ (𝒮,𝒜⇩d) ⇒⇧∙⇩c⇧* (𝒮',𝒜⇩d') ∧ sem⇩e⇩s⇩t_c {} ℐ 𝒜⇩d'"
using assms(1,2)
proof (induction rule: rtranclp_induct2)
  case refl thus ?case using assms by auto
next
  case (step 𝒮1 𝒜1 𝒮2 𝒜2)
  have "sem⇩e⇩s⇩t_d {} ℐ (to_est 𝒜1)" using step.hyps(2) step.prems
    by (induct rule: pts_symbolic_induct, metis, (metis sem⇩e⇩s⇩t_d_split_left to_est_append)+)
  then obtain 𝒜1d where
      𝒜1d: "𝒜1 = to_st (decomp_rm⇩e⇩s⇩t 𝒜1d)" "(𝒮, 𝒜⇩d) ⇒⇧∙⇩c⇧* (𝒮1, 𝒜1d)" "sem⇩e⇩s⇩t_c {} ℐ 𝒜1d"
    using step.IH by atomize_elim auto

  show ?case using step.hyps(2)
  proof (induction rule: pts_symbolic_induct)
    case Nil
    hence "(𝒮, 𝒜⇩d) ⇒⇧∙⇩c⇧* (𝒮2, 𝒜1d)" using 𝒜1d pts_symbolic_c.Nil[OF Nil.hyps(1), of 𝒜1d] by simp
    thus ?case using 𝒜1d Nil by auto
  next
    case (Send t S)
    hence "sem⇩e⇩s⇩t_c {} ℐ (𝒜1d@[Step (receive⟨t⟩⇩s⇩t)])" using sem⇩e⇩s⇩t_c.Receive[OF 𝒜1d(3)] by simp
    moreover have "(𝒮1, 𝒜1d) ⇒⇧∙⇩c (𝒮2, 𝒜1d@[Step (receive⟨t⟩⇩s⇩t)])"
      using Send.hyps(2) pts_symbolic_c.Send[OF Send.hyps(1), of 𝒜1d] by simp
    moreover have "to_st (decomp_rm⇩e⇩s⇩t (𝒜1d@[Step (receive⟨t⟩⇩s⇩t)])) = 𝒜2"
      using Send.hyps(3) decomp_rm⇩e⇩s⇩t_append 𝒜1d(1) by (simp add: to_st_append) 
    ultimately show ?case using 𝒜1d(2) by auto      
  next
    case (Equality a t t' S)
    hence "t ⋅ ℐ = t' ⋅ ℐ"
      using step.prems sem⇩e⇩s⇩t_d_eq_sem_st[of "{}" ℐ "to_est 𝒜2"]
            to_st_append to_est_append to_st_to_est_inv
      by auto
    hence "sem⇩e⇩s⇩t_c {} ℐ (𝒜1d@[Step (⟨a: t ≐ t'⟩⇩s⇩t)])" using sem⇩e⇩s⇩t_c.Equality[OF 𝒜1d(3)] by simp
    moreover have "(𝒮1, 𝒜1d) ⇒⇧∙⇩c (𝒮2, 𝒜1d@[Step (⟨a: t ≐ t'⟩⇩s⇩t)])"
      using Equality.hyps(2) pts_symbolic_c.Equality[OF Equality.hyps(1), of 𝒜1d] by simp
    moreover have "to_st (decomp_rm⇩e⇩s⇩t (𝒜1d@[Step (⟨a: t ≐ t'⟩⇩s⇩t)])) = 𝒜2"
      using Equality.hyps(3) decomp_rm⇩e⇩s⇩t_append 𝒜1d(1) by (simp add: to_st_append) 
    ultimately show ?case using 𝒜1d(2) by auto
  next
    case (Inequality X F S)
    hence "ineq_model ℐ X F"
      using step.prems sem⇩e⇩s⇩t_d_eq_sem_st[of "{}" ℐ "to_est 𝒜2"]
            to_st_append to_est_append to_st_to_est_inv
      by auto
    hence "sem⇩e⇩s⇩t_c {} ℐ (𝒜1d@[Step (∀X⟨∨≠: F⟩⇩s⇩t)])" using sem⇩e⇩s⇩t_c.Inequality[OF 𝒜1d(3)] by simp
    moreover have "(𝒮1, 𝒜1d) ⇒⇧∙⇩c (𝒮2, 𝒜1d@[Step (∀X⟨∨≠: F⟩⇩s⇩t)])"
      using Inequality.hyps(2) pts_symbolic_c.Inequality[OF Inequality.hyps(1), of 𝒜1d] by simp
    moreover have "to_st (decomp_rm⇩e⇩s⇩t (𝒜1d@[Step (∀X⟨∨≠: F⟩⇩s⇩t)])) = 𝒜2"
      using Inequality.hyps(3) decomp_rm⇩e⇩s⇩t_append 𝒜1d(1) by (simp add: to_st_append) 
    ultimately show ?case using 𝒜1d(2) by auto
  next
    case (Receive ts S)
    hence "∀t ∈ set ts. ik⇩s⇩t 𝒜1 ⋅⇩s⇩e⇩t ℐ ⊢ t ⋅ ℐ"
      using step.prems sem⇩e⇩s⇩t_d_eq_sem_st[of "{}" ℐ "to_est 𝒜2"]
            strand_sem_split(4)[of "{}" 𝒜1 "[send⟨ts⟩⇩s⇩t]" ℐ]
            to_st_append to_est_append to_st_to_est_inv
      by auto
    moreover have "ik⇩s⇩t 𝒜1 ⋅⇩s⇩e⇩t ℐ ⊆ ik⇩e⇩s⇩t 𝒜1d ⋅⇩s⇩e⇩t ℐ" using 𝒜1d(1) decomp_rm⇩e⇩s⇩t_ik_subset by auto
    ultimately have *: "∀t ∈ set ts. ik⇩e⇩s⇩t 𝒜1d ⋅⇩s⇩e⇩t ℐ ⊢ t ⋅ ℐ"
      using ideduct_mono by auto

    have "wf⇩s⇩t⇩s' 𝒮 𝒜⇩d" by (rule wf⇩s⇩t⇩s'_decomp_rm[OF wa assms(4)])
    hence **: "wf⇩e⇩s⇩t {} 𝒜1d" by (rule pts_symbolic_c_preserves_wf_is[OF 𝒜1d(2) _ assms(5)])

    have "Ana_invar_subst (⋃(ik⇩s⇩t`dual⇩s⇩t`𝒮1) ∪ (ik⇩e⇩s⇩t 𝒜1d) ∪
                           (⋃(assignment_rhs⇩s⇩t`𝒮1) ∪ (assignment_rhs⇩e⇩s⇩t 𝒜1d)))"
      using tar 𝒜1d(2) pts_symbolic_c_preserves_Ana_invar_subst by metis
    hence "Ana_invar_subst (ik⇩e⇩s⇩t 𝒜1d)" "Ana_invar_subst (assignment_rhs⇩e⇩s⇩t 𝒜1d)"
      using Ana_invar_subst_subset by blast+
    moreover have "well_analyzed 𝒜1d"
      using pts_symbolic_c_preserves_well_analyzed[OF 𝒜1d(2) wa] by metis
    ultimately obtain D where D:
        "D ∈ decomps⇩e⇩s⇩t (ik⇩e⇩s⇩t 𝒜1d) (assignment_rhs⇩e⇩s⇩t 𝒜1d) ℐ"
        "∀t ∈ set ts. ik⇩e⇩s⇩t (𝒜1d@D) ⋅⇩s⇩e⇩t ℐ ⊢⇩c t ⋅ ℐ"
      using decomps⇩e⇩s⇩t_exist_subst_list[OF * 𝒜1d(3) ** assms(8)]
      unfolding Ana_invar_subst_def by auto
    
    have "(𝒮, 𝒜⇩d) ⇒⇧∙⇩c⇧* (𝒮1, 𝒜1d@D)" using 𝒜1d(2) decomps⇩e⇩s⇩t_pts_symbolic_c[OF D(1), of 𝒮1] by auto
    hence "(𝒮, 𝒜⇩d) ⇒⇧∙⇩c⇧* (𝒮2, 𝒜1d@D@[Step (send⟨ts⟩⇩s⇩t)])"
      using Receive(2) pts_symbolic_c.Receive[OF Receive.hyps(1), of "𝒜1d@D"] by auto
    moreover have "𝒜2 = to_st (decomp_rm⇩e⇩s⇩t (𝒜1d@D@[Step (send⟨ts⟩⇩s⇩t)]))"
      using Receive.hyps(3) 𝒜1d(1) decomps⇩e⇩s⇩t_decomp_rm⇩e⇩s⇩t_empty[OF D(1)]
            decomp_rm⇩e⇩s⇩t_append to_st_append
      by auto
    moreover have "sem⇩e⇩s⇩t_c {} ℐ (𝒜1d@D@[Step (send⟨ts⟩⇩s⇩t)])"
      using D(2) sem⇩e⇩s⇩t_c.Send[OF sem⇩e⇩s⇩t_c_decomps⇩e⇩s⇩t_append[OF 𝒜1d(3) D(1)]] by simp
    ultimately show ?case by auto
  qed
qed

private lemma pts_symbolic_c_to_pts_symbolic:
  assumes "(𝒮,𝒜) ⇒⇧∙⇩c⇧* (𝒮',𝒜')" "sem⇩e⇩s⇩t_c {} ℐ 𝒜'"
  shows "(𝒮,to_st (decomp_rm⇩e⇩s⇩t 𝒜)) ⇒⇧∙⇧* (𝒮',to_st (decomp_rm⇩e⇩s⇩t 𝒜'))"
        "sem⇩e⇩s⇩t_d {} ℐ (decomp_rm⇩e⇩s⇩t 𝒜')"
proof -
  show "(𝒮,to_st (decomp_rm⇩e⇩s⇩t 𝒜)) ⇒⇧∙⇧* (𝒮',to_st (decomp_rm⇩e⇩s⇩t 𝒜'))" using assms(1)
  proof (induction rule: rtranclp_induct2)
    case (step 𝒮1 𝒜1 𝒮2 𝒜2) show ?case using step.hyps(2,1) step.IH
    proof (induction rule: pts_symbolic_c_induct)
      case Nil thus ?case
        using pts_symbolic.Nil[OF Nil.hyps(1), of "to_st (decomp_rm⇩e⇩s⇩t 𝒜1)"] by simp
    next
      case (Send t S) thus ?case
        using pts_symbolic.Send[OF Send.hyps(1), of "to_st (decomp_rm⇩e⇩s⇩t 𝒜1)"]
        by (simp add: decomp_rm⇩e⇩s⇩t_append to_st_append)
    next
      case (Receive t S) thus ?case
        using pts_symbolic.Receive[OF Receive.hyps(1), of "to_st (decomp_rm⇩e⇩s⇩t 𝒜1)"] 
        by (simp add: decomp_rm⇩e⇩s⇩t_append to_st_append)
    next
      case (Equality a t t' S) thus ?case
        using pts_symbolic.Equality[OF Equality.hyps(1), of "to_st (decomp_rm⇩e⇩s⇩t 𝒜1)"] 
        by (simp add: decomp_rm⇩e⇩s⇩t_append to_st_append)
    next
      case (Inequality t t' S) thus ?case
        using pts_symbolic.Inequality[OF Inequality.hyps(1), of "to_st (decomp_rm⇩e⇩s⇩t 𝒜1)"] 
        by (simp add: decomp_rm⇩e⇩s⇩t_append to_st_append)
    next
      case (Decompose t) thus ?case using decomp_rm⇩e⇩s⇩t_append by simp
    qed
  qed simp
qed (rule sem⇩e⇩s⇩t_d_decomp_rm⇩e⇩s⇩t_if_sem⇩e⇩s⇩t_c[OF assms(2)])

private lemma pts_symbolic_to_pts_symbolic_c_from_initial:
  assumes "(𝒮⇩0,[]) ⇒⇧∙⇧* (𝒮,𝒜)" "ℐ ⊨ ⟨𝒜⟩" "wf⇩s⇩t⇩s' 𝒮⇩0 []"
  and "Ana_invar_subst (⋃(ik⇩s⇩t ` dual⇩s⇩t ` 𝒮⇩0) ∪ ⋃(assignment_rhs⇩s⇩t ` 𝒮⇩0))" "interpretation⇩s⇩u⇩b⇩s⇩t ℐ"
  shows "∃𝒜⇩d. 𝒜 = to_st (decomp_rm⇩e⇩s⇩t 𝒜⇩d) ∧ (𝒮⇩0,[]) ⇒⇧∙⇩c⇧* (𝒮,𝒜⇩d) ∧ (ℐ ⊨⇩c ⟨to_st 𝒜⇩d⟩)"
using assms pts_symbolic_to_pts_symbolic_c[of 𝒮⇩0 "[]" 𝒮 𝒜 ℐ]
      sem⇩e⇩s⇩t_c_eq_sem_st[of "{}" ℐ] sem⇩e⇩s⇩t_d_eq_sem_st[of "{}" ℐ]
      to_st_to_est_inv[of 𝒜] strand_sem_eq_defs
by (auto simp add: constr_sem_c_def constr_sem_d_def simp del: subst_range.simps)

private lemma pts_symbolic_c_to_pts_symbolic_from_initial:
  assumes "(𝒮⇩0,[]) ⇒⇧∙⇩c⇧* (𝒮,𝒜)" "ℐ ⊨⇩c ⟨to_st 𝒜⟩"
  shows "(𝒮⇩0,[]) ⇒⇧∙⇧* (𝒮,to_st (decomp_rm⇩e⇩s⇩t 𝒜))" "ℐ ⊨ ⟨to_st (decomp_rm⇩e⇩s⇩t 𝒜)⟩"
using assms pts_symbolic_c_to_pts_symbolic[of 𝒮⇩0 "[]" 𝒮 𝒜 ℐ]
      sem⇩e⇩s⇩t_c_eq_sem_st[of "{}" ℐ] sem⇩e⇩s⇩t_d_eq_sem_st[of "{}" ℐ] strand_sem_eq_defs
by (auto simp add: constr_sem_c_def constr_sem_d_def)

private lemma to_st_trms_wf:
  assumes "wf⇩t⇩r⇩m⇩s (trms⇩e⇩s⇩t A)"
  shows "wf⇩t⇩r⇩m⇩s (trms⇩s⇩t (to_st A))"
using assms
proof (induction A)
  case (Cons x A)
  hence IH: "∀t ∈ trms⇩s⇩t (to_st A). wf⇩t⇩r⇩m t" by auto
  with Cons show ?case
  proof (cases x)
    case (Decomp t)
    hence "wf⇩t⇩r⇩m t" using Cons.prems by auto
    obtain K T where Ana_t: "Ana t = (K,T)" by atomize_elim auto
    hence "trms⇩s⇩t (decomp t) ⊆ {t} ∪ set K ∪ set T" using decomp_set_unfold[OF Ana_t] by force
    moreover have "∀t ∈ set T. wf⇩t⇩r⇩m t" using Ana_subterm[OF Ana_t] ‹wf⇩t⇩r⇩m t› wf_trm_subterm by auto
    ultimately have "∀t ∈ trms⇩s⇩t (decomp t). wf⇩t⇩r⇩m t" using Ana_keys_wf'[OF Ana_t] ‹wf⇩t⇩r⇩m t› by auto
    thus ?thesis using IH Decomp by auto
  qed auto
qed simp

private lemma to_st_trms_SMP_subset: "trms⇩s⇩t (to_st A) ⊆ SMP (trms⇩e⇩s⇩t A)"
proof
  fix t assume "t ∈ trms⇩s⇩t (to_st A)" thus "t ∈ SMP (trms⇩e⇩s⇩t A)"
  proof (induction A)
    case (Cons x A)
    hence *: "t ∈ trms⇩s⇩t (to_st [x]) ∪ trms⇩s⇩t (to_st A)" using to_st_append[of "[x]" A] by auto
    have **: "trms⇩s⇩t (to_st A) ⊆ trms⇩s⇩t (to_st (x#A))" "trms⇩e⇩s⇩t A ⊆ trms⇩e⇩s⇩t (x#A)"
      using to_st_append[of "[x]" A] by auto
    show ?case
    proof (cases "t ∈ trms⇩s⇩t (to_st A)")
      case True thus ?thesis using Cons.IH SMP_mono[OF **(2)] by auto
    next
      case False
      hence ***: "t ∈ trms⇩s⇩t (to_st [x])" using * by auto
      thus ?thesis
      proof (cases x)
        case (Decomp t')
        hence ****: "t ∈ trms⇩s⇩t (decomp t')" "t' ∈ trms⇩e⇩s⇩t (x#A)" using *** by auto
        obtain K T where Ana_t': "Ana t' = (K,T)" by atomize_elim auto
        hence "t ∈ {t'} ∪ set K ∪ set T" using decomp_set_unfold[OF Ana_t'] ****(1) by force
        moreover
        { assume "t = t'" hence ?thesis using SMP.MP[OF ****(2)] by simp }
        moreover
        { assume "t ∈ set K" hence ?thesis using SMP.Ana[OF SMP.MP[OF ****(2)] Ana_t'] by auto }
        moreover
        { assume "t ∈ set T" "t ≠ t'"
          hence "t ⊏ t'" using Ana_subterm[OF Ana_t'] by blast
          hence ?thesis using SMP.Subterm[OF SMP.MP[OF ****(2)]] by auto
        } 
        ultimately show ?thesis using Decomp by auto
      qed auto
    qed
  qed simp
qed

private lemma to_st_trms_tfr⇩s⇩e⇩t:
  assumes "tfr⇩s⇩e⇩t (trms⇩e⇩s⇩t A)"
  shows "tfr⇩s⇩e⇩t (trms⇩s⇩t (to_st A))"
proof -
  have *: "trms⇩s⇩t (to_st A) ⊆ SMP (trms⇩e⇩s⇩t A)"
    using to_st_trms_wf to_st_trms_SMP_subset assms unfolding tfr⇩s⇩e⇩t_def by auto
  have "trms⇩s⇩t (to_st A) = trms⇩s⇩t (to_st A) ∪ trms⇩e⇩s⇩t A" by (blast dest!: trms⇩e⇩s⇩tD)
  hence "SMP (trms⇩e⇩s⇩t A) = SMP (trms⇩s⇩t (to_st A))" using SMP_subset_union_eq[OF *] by auto
  thus ?thesis using * assms unfolding tfr⇩s⇩e⇩t_def by presburger
qed

theorem wt_attack_if_tfr_attack_pts:
  assumes "wf⇩s⇩t⇩s 𝒮⇩0" "tfr⇩s⇩e⇩t (⋃(trms⇩s⇩t ` 𝒮⇩0))" "wf⇩t⇩r⇩m⇩s (⋃(trms⇩s⇩t ` 𝒮⇩0))" "∀S ∈ 𝒮⇩0. list_all tfr⇩s⇩t⇩p S"
  and "Ana_invar_subst (⋃(ik⇩s⇩t ` dual⇩s⇩t ` 𝒮⇩0) ∪ ⋃(assignment_rhs⇩s⇩t ` 𝒮⇩0))"
  and "(𝒮⇩0,[]) ⇒⇧∙⇧* (𝒮,𝒜)" "interpretation⇩s⇩u⇩b⇩s⇩t ℐ" "ℐ ⊨ ⟨𝒜, Var⟩"
  shows "∃ℐ⇩τ. interpretation⇩s⇩u⇩b⇩s⇩t ℐ⇩τ ∧ (ℐ⇩τ ⊨ ⟨𝒜, Var⟩) ∧ wt⇩s⇩u⇩b⇩s⇩t ℐ⇩τ ∧ wf⇩t⇩r⇩m⇩s (subst_range ℐ⇩τ)"
proof -
  have "(⋃(trms⇩s⇩t ` 𝒮⇩0)) ∪ (trms⇩e⇩s⇩t []) = ⋃(trms⇩s⇩t ` 𝒮⇩0)" "to_st [] = []" "list_all tfr⇩s⇩t⇩p []"
    using assms by simp_all
  hence *: "tfr⇩s⇩e⇩t ((⋃(trms⇩s⇩t ` 𝒮⇩0)) ∪ (trms⇩e⇩s⇩t []))"
           "wf⇩t⇩r⇩m⇩s ((⋃(trms⇩s⇩t ` 𝒮⇩0)) ∪ (trms⇩e⇩s⇩t []))"
           "wf⇩s⇩t⇩s' 𝒮⇩0 []" "∀S ∈ 𝒮⇩0 ∪ {to_st []}. list_all tfr⇩s⇩t⇩p S"
    using assms wf⇩s⇩t⇩s_wf⇩s⇩t⇩s' by (metis, metis, metis, simp)

  obtain 𝒜⇩d where 𝒜⇩d: "𝒜 = to_st (decomp_rm⇩e⇩s⇩t 𝒜⇩d)" "(𝒮⇩0,[]) ⇒⇧∙⇩c⇧* (𝒮,𝒜⇩d)" "ℐ ⊨⇩c ⟨to_st 𝒜⇩d⟩"
    using pts_symbolic_to_pts_symbolic_c_from_initial assms *(3) by metis
  hence "tfr⇩s⇩e⇩t (⋃(trms⇩s⇩t ` 𝒮) ∪ (trms⇩e⇩s⇩t 𝒜⇩d))" "wf⇩t⇩r⇩m⇩s (⋃(trms⇩s⇩t ` 𝒮) ∪ (trms⇩e⇩s⇩t 𝒜⇩d))"
    using pts_symbolic_c_preserves_tfr⇩s⇩e⇩t[OF _ *(1,2)] by blast+
  hence "tfr⇩s⇩e⇩t (trms⇩e⇩s⇩t 𝒜⇩d)" "wf⇩t⇩r⇩m⇩s (trms⇩e⇩s⇩t 𝒜⇩d)"
    unfolding tfr⇩s⇩e⇩t_def by (metis DiffE DiffI SMP_union UnCI, metis UnCI)
  hence "tfr⇩s⇩e⇩t (trms⇩s⇩t (to_st 𝒜⇩d))" "wf⇩t⇩r⇩m⇩s (trms⇩s⇩t (to_st 𝒜⇩d))"
    by (metis to_st_trms_tfr⇩s⇩e⇩t, metis to_st_trms_wf)
  moreover have "wf⇩c⇩o⇩n⇩s⇩t⇩r (to_st 𝒜⇩d) Var"
  proof -
    have "wt⇩s⇩u⇩b⇩s⇩t Var" "wf⇩t⇩r⇩m⇩s (subst_range Var)" "subst_domain Var ∩ vars⇩e⇩s⇩t 𝒜⇩d = {}"
         "range_vars Var ∩ bvars⇩e⇩s⇩t 𝒜⇩d = {}"
      by (simp_all add: range_vars_alt_def)
    moreover have "wf⇩e⇩s⇩t {} 𝒜⇩d"
      using pts_symbolic_c_preserves_wf_is[OF 𝒜⇩d(2) *(3), of "{}"]
      by auto
    moreover have "fv⇩s⇩t (to_st 𝒜⇩d) ∩ bvars⇩e⇩s⇩t 𝒜⇩d = {}"
      using pts_symbolic_c_preserves_constr_disj_vars[OF 𝒜⇩d(2)] assms(1) wf⇩s⇩t⇩s_wf⇩s⇩t⇩s'
      by fastforce
    ultimately show ?thesis unfolding wf⇩c⇩o⇩n⇩s⇩t⇩r_def wf⇩s⇩u⇩b⇩s⇩t_def by simp
  qed
  moreover have "list_all tfr⇩s⇩t⇩p (to_st 𝒜⇩d)"
    using pts_symbolic_c_preserves_tfr⇩s⇩t⇩p[OF 𝒜⇩d(2) *(4)] by blast
  moreover have "wt⇩s⇩u⇩b⇩s⇩t Var" "wf⇩t⇩r⇩m⇩s (subst_range Var)" by simp_all
  ultimately obtain ℐ⇩τ where ℐ⇩τ:
      "interpretation⇩s⇩u⇩b⇩s⇩t ℐ⇩τ" "ℐ⇩τ ⊨⇩c ⟨to_st 𝒜⇩d, Var⟩" "wt⇩s⇩u⇩b⇩s⇩t ℐ⇩τ" "wf⇩t⇩r⇩m⇩s (subst_range ℐ⇩τ)"
    using wt_attack_if_tfr_attack[OF assms(7) 𝒜⇩d(3)]
          ‹tfr⇩s⇩e⇩t (trms⇩s⇩t (to_st 𝒜⇩d))› ‹list_all tfr⇩s⇩t⇩p (to_st 𝒜⇩d)›
    unfolding tfr⇩s⇩t_def by metis
  hence "ℐ⇩τ ⊨ ⟨𝒜, Var⟩" using pts_symbolic_c_to_pts_symbolic_from_initial 𝒜⇩d by metis
  thus ?thesis using ℐ⇩τ(1,3,4) by metis
qed


subsubsection ‹Corollary: The Typing Result on the Level of Constraints›
text ‹There exists well-typed models of satisfiable type-flaw resistant constraints›
corollary wt_attack_if_tfr_attack_d:
  assumes "wf⇩s⇩t {} 𝒜" "fv⇩s⇩t 𝒜 ∩ bvars⇩s⇩t 𝒜 = {}" "tfr⇩s⇩t 𝒜" "wf⇩t⇩r⇩m⇩s (trms⇩s⇩t 𝒜)"
  and "Ana_invar_subst (ik⇩s⇩t 𝒜 ∪ assignment_rhs⇩s⇩t 𝒜)"
  and "interpretation⇩s⇩u⇩b⇩s⇩t ℐ" "ℐ ⊨ ⟨𝒜⟩"
  shows "∃ℐ⇩τ. interpretation⇩s⇩u⇩b⇩s⇩t ℐ⇩τ ∧ (ℐ⇩τ ⊨ ⟨𝒜⟩) ∧ wt⇩s⇩u⇩b⇩s⇩t ℐ⇩τ ∧ wf⇩t⇩r⇩m⇩s (subst_range ℐ⇩τ)"
proof -
  { fix S A have "({S},A) ⇒⇧∙⇧* ({},A@dual⇩s⇩t S)"
    proof (induction S arbitrary: A)
      case Nil thus ?case using pts_symbolic.Nil[of "{[]}"] by auto
    next
      case (Cons x S)
      hence "({S}, A@dual⇩s⇩t [x]) ⇒⇧∙⇧* ({}, A@dual⇩s⇩t (x#S))"
        by (metis dual⇩s⇩t_append List.append_assoc List.append_Nil List.append_Cons)
      moreover have "({x#S}, A) ⇒⇧∙ ({S}, A@dual⇩s⇩t [x])"
        using pts_symbolic.Send[of _ S "{x#S}"] pts_symbolic.Receive[of _ S "{x#S}"]
              pts_symbolic.Equality[of _ _ _ S "{x#S}"] pts_symbolic.Inequality[of _ _ S "{x#S}"]
        by (cases x) auto
      ultimately show ?case by simp
    qed
  }
  hence 0: "({dual⇩s⇩t 𝒜},[]) ⇒⇧∙⇧* ({},𝒜)" using dual⇩s⇩t_self_inverse by (metis List.append_Nil)

  have "fv⇩s⇩t (dual⇩s⇩t 𝒜) ∩ bvars⇩s⇩t (dual⇩s⇩t 𝒜) = {}" using assms(2) dual⇩s⇩t_fv dual⇩s⇩t_bvars by metis+
  hence 1: "wf⇩s⇩t⇩s {dual⇩s⇩t 𝒜}" using assms(1,2) dual⇩s⇩t_self_inverse[of 𝒜] unfolding wf⇩s⇩t⇩s_def by auto
  
  have "⋃(trms⇩s⇩t ` {𝒜}) = trms⇩s⇩t 𝒜" "⋃(trms⇩s⇩t ` {dual⇩s⇩t 𝒜}) = trms⇩s⇩t (dual⇩s⇩t 𝒜)" by auto
  hence "tfr⇩s⇩e⇩t (⋃(trms⇩s⇩t ` {𝒜}))" "wf⇩t⇩r⇩m⇩s (⋃(trms⇩s⇩t ` {𝒜}))"
        "(⋃(trms⇩s⇩t ` {𝒜})) = ⋃(trms⇩s⇩t ` {dual⇩s⇩t 𝒜})"
    using assms(3,4) unfolding tfr⇩s⇩t_def
    by (metis, metis, metis dual⇩s⇩t_trms_eq)
  hence 2: "tfr⇩s⇩e⇩t (⋃(trms⇩s⇩t ` {dual⇩s⇩t 𝒜}))" and 3: "wf⇩t⇩r⇩m⇩s (⋃(trms⇩s⇩t ` {dual⇩s⇩t 𝒜}))" by metis+

  have 4: "∀S ∈ {dual⇩s⇩t 𝒜}. list_all tfr⇩s⇩t⇩p S"
    using dual⇩s⇩t_tfr⇩s⇩t⇩p assms(3) unfolding tfr⇩s⇩t_def by blast

  have "assignment_rhs⇩s⇩t 𝒜 = assignment_rhs⇩s⇩t (dual⇩s⇩t 𝒜)"
    by (induct 𝒜 rule: assignment_rhs⇩s⇩t.induct) auto
  hence 5: "Ana_invar_subst (⋃(ik⇩s⇩t`dual⇩s⇩t`{dual⇩s⇩t 𝒜}) ∪ ⋃(assignment_rhs⇩s⇩t`{dual⇩s⇩t 𝒜}))"
    using assms(5) dual⇩s⇩t_self_inverse[of 𝒜] by auto

  show ?thesis by (rule wt_attack_if_tfr_attack_pts[OF 1 2 3 4 5 0 assms(6,7)])
qed

end

end

end