src/HOL/Tools/SMT/z3_proof_tools.ML
author boehmes
Mon Nov 29 23:41:09 2010 +0100 (2010-11-29)
changeset 40806 59d96f777da3
parent 40681 872b08416fb4
child 41123 3bb9be510a9d
permissions -rw-r--r--
also support higher-order rules for Z3 proof reconstruction
boehmes@36898
     1
(*  Title:      HOL/Tools/SMT/z3_proof_tools.ML
boehmes@36898
     2
    Author:     Sascha Boehme, TU Muenchen
boehmes@36898
     3
boehmes@36898
     4
Helper functions required for Z3 proof reconstruction.
boehmes@36898
     5
*)
boehmes@36898
     6
boehmes@36898
     7
signature Z3_PROOF_TOOLS =
boehmes@36898
     8
sig
boehmes@36898
     9
  (* accessing and modifying terms *)
boehmes@36898
    10
  val term_of: cterm -> term
boehmes@36898
    11
  val prop_of: thm -> term
boehmes@36898
    12
  val as_meta_eq: cterm -> cterm
boehmes@36898
    13
boehmes@36898
    14
  (* theorem nets *)
boehmes@40164
    15
  val thm_net_of: ('a -> thm) -> 'a list -> 'a Net.net
boehmes@40164
    16
  val net_instance': ((thm -> thm option) -> 'a -> 'a option) -> 'a Net.net ->
boehmes@40164
    17
    cterm -> 'a option
boehmes@36898
    18
  val net_instance: thm Net.net -> cterm -> thm option
boehmes@36898
    19
boehmes@36898
    20
  (* proof combinators *)
boehmes@36898
    21
  val under_assumption: (thm -> thm) -> cterm -> thm
boehmes@36898
    22
  val with_conv: conv -> (cterm -> thm) -> cterm -> thm
boehmes@36898
    23
  val discharge: thm -> thm -> thm
boehmes@36898
    24
  val varify: string list -> thm -> thm
boehmes@36898
    25
  val unfold_eqs: Proof.context -> thm list -> conv
boehmes@36898
    26
  val match_instantiate: (cterm -> cterm) -> cterm -> thm -> thm
boehmes@36898
    27
  val by_tac: (int -> tactic) -> cterm -> thm
boehmes@36898
    28
  val make_hyp_def: thm -> Proof.context -> thm * Proof.context
boehmes@36899
    29
  val by_abstraction: bool * bool -> Proof.context -> thm list ->
boehmes@36899
    30
    (Proof.context -> cterm -> thm) -> cterm -> thm
boehmes@36898
    31
boehmes@36898
    32
  (* a faster COMP *)
boehmes@36898
    33
  type compose_data
boehmes@36898
    34
  val precompose: (cterm -> cterm list) -> thm -> compose_data
boehmes@36898
    35
  val precompose2: (cterm -> cterm * cterm) -> thm -> compose_data
boehmes@36898
    36
  val compose: compose_data -> thm -> thm
boehmes@36898
    37
boehmes@36898
    38
  (* unfolding of 'distinct' *)
boehmes@36898
    39
  val unfold_distinct_conv: conv
boehmes@36898
    40
boehmes@36898
    41
  (* simpset *)
boehmes@36899
    42
  val add_simproc: Simplifier.simproc -> Context.generic -> Context.generic
boehmes@36898
    43
  val make_simpset: Proof.context -> thm list -> simpset
boehmes@36898
    44
end
boehmes@36898
    45
boehmes@36898
    46
structure Z3_Proof_Tools: Z3_PROOF_TOOLS =
boehmes@36898
    47
struct
boehmes@36898
    48
boehmes@40662
    49
structure U = SMT_Utils
boehmes@36899
    50
structure I = Z3_Interface
boehmes@36899
    51
boehmes@36898
    52
boehmes@36898
    53
boehmes@36898
    54
(* accessing terms *)
boehmes@36898
    55
boehmes@40579
    56
val dest_prop = (fn @{const Trueprop} $ t => t | t => t)
boehmes@36898
    57
boehmes@36898
    58
fun term_of ct = dest_prop (Thm.term_of ct)
boehmes@36898
    59
fun prop_of thm = dest_prop (Thm.prop_of thm)
boehmes@36898
    60
boehmes@40663
    61
fun as_meta_eq ct = uncurry U.mk_cequals (Thm.dest_binop (U.dest_cprop ct))
boehmes@36898
    62
boehmes@36898
    63
boehmes@36898
    64
boehmes@36898
    65
(* theorem nets *)
boehmes@36898
    66
boehmes@40164
    67
fun thm_net_of f xthms =
boehmes@40164
    68
  let fun insert xthm = Net.insert_term (K false) (Thm.prop_of (f xthm), xthm)
boehmes@40164
    69
  in fold insert xthms Net.empty end
boehmes@36898
    70
boehmes@36898
    71
fun maybe_instantiate ct thm =
boehmes@36898
    72
  try Thm.first_order_match (Thm.cprop_of thm, ct)
boehmes@36898
    73
  |> Option.map (fn inst => Thm.instantiate inst thm)
boehmes@36898
    74
boehmes@40164
    75
fun net_instance' f net ct =
boehmes@40806
    76
  let
boehmes@40806
    77
    val xthms = Net.match_term net (Thm.term_of ct)
boehmes@40806
    78
    fun first_of f ct = get_first (f (maybe_instantiate ct)) xthms 
boehmes@40806
    79
    fun first_of' f ct =
boehmes@40806
    80
      let val thm = Thm.trivial ct
boehmes@40806
    81
      in get_first (f (try (fn rule => rule COMP thm))) xthms end
boehmes@40806
    82
  in (case first_of f ct of NONE => first_of' f ct | some_thm => some_thm) end
boehmes@40164
    83
val net_instance = net_instance' I
boehmes@36898
    84
boehmes@36898
    85
boehmes@36898
    86
boehmes@36898
    87
(* proof combinators *)
boehmes@36898
    88
boehmes@36898
    89
fun under_assumption f ct =
boehmes@40663
    90
  let val ct' = U.mk_cprop ct
boehmes@36898
    91
  in Thm.implies_intr ct' (f (Thm.assume ct')) end
boehmes@36898
    92
boehmes@36898
    93
fun with_conv conv prove ct =
boehmes@36898
    94
  let val eq = Thm.symmetric (conv ct)
boehmes@36898
    95
  in Thm.equal_elim eq (prove (Thm.lhs_of eq)) end
boehmes@36898
    96
boehmes@36898
    97
fun discharge p pq = Thm.implies_elim pq p
boehmes@36898
    98
boehmes@36898
    99
fun varify vars = Drule.generalize ([], vars)
boehmes@36898
   100
boehmes@36898
   101
fun unfold_eqs _ [] = Conv.all_conv
boehmes@36898
   102
  | unfold_eqs ctxt eqs =
wenzelm@36936
   103
      Conv.top_sweep_conv (K (Conv.rewrs_conv eqs)) ctxt
boehmes@36898
   104
boehmes@36898
   105
fun match_instantiate f ct thm =
boehmes@36898
   106
  Thm.instantiate (Thm.match (f (Thm.cprop_of thm), ct)) thm
boehmes@36898
   107
boehmes@36898
   108
fun by_tac tac ct = Goal.norm_result (Goal.prove_internal [] ct (K (tac 1)))
boehmes@36898
   109
boehmes@36898
   110
(* |- c x == t x ==> P (c x)  ~~>  c == t |- P (c x) *) 
boehmes@36898
   111
fun make_hyp_def thm ctxt =
boehmes@36898
   112
  let
boehmes@36898
   113
    val (lhs, rhs) = Thm.dest_binop (Thm.cprem_of thm 1)
boehmes@36898
   114
    val (cf, cvs) = Drule.strip_comb lhs
boehmes@40662
   115
    val eq = U.mk_cequals cf (fold_rev Thm.cabs cvs rhs)
boehmes@36898
   116
    fun apply cv th =
boehmes@36898
   117
      Thm.combination th (Thm.reflexive cv)
boehmes@36898
   118
      |> Conv.fconv_rule (Conv.arg_conv (Thm.beta_conversion false))
boehmes@36898
   119
  in
boehmes@36898
   120
    yield_singleton Assumption.add_assumes eq ctxt
boehmes@36898
   121
    |>> Thm.implies_elim thm o fold apply cvs
boehmes@36898
   122
  end
boehmes@36898
   123
boehmes@36898
   124
boehmes@36898
   125
boehmes@36898
   126
(* abstraction *)
boehmes@36898
   127
boehmes@36898
   128
local
boehmes@36898
   129
boehmes@36898
   130
fun abs_context ctxt = (ctxt, Termtab.empty, 1, false)
boehmes@36898
   131
boehmes@36898
   132
fun context_of (ctxt, _, _, _) = ctxt
boehmes@36898
   133
boehmes@36899
   134
fun replace (_, (cv, ct)) = Thm.forall_elim ct o Thm.forall_intr cv
boehmes@36898
   135
boehmes@36898
   136
fun abs_instantiate (_, tab, _, beta_norm) =
boehmes@36899
   137
  fold replace (Termtab.dest tab) #>
boehmes@36898
   138
  beta_norm ? Conv.fconv_rule (Thm.beta_conversion true)
boehmes@36898
   139
boehmes@36899
   140
fun lambda_abstract cvs t =
boehmes@36898
   141
  let
boehmes@36899
   142
    val frees = map Free (Term.add_frees t [])
boehmes@36899
   143
    val cvs' = filter (fn cv => member (op aconv) frees (Thm.term_of cv)) cvs
boehmes@36899
   144
    val vs = map (Term.dest_Free o Thm.term_of) cvs'
boehmes@36899
   145
  in (Term.list_abs_free (vs, t), cvs') end
boehmes@36898
   146
boehmes@36898
   147
fun fresh_abstraction cvs ct (cx as (ctxt, tab, idx, beta_norm)) =
boehmes@36899
   148
  let val (t, cvs') = lambda_abstract cvs (Thm.term_of ct)
boehmes@36898
   149
  in
boehmes@36898
   150
    (case Termtab.lookup tab t of
boehmes@36899
   151
      SOME (cv, _) => (Drule.list_comb (cv, cvs'), cx)
boehmes@36898
   152
    | NONE =>
boehmes@36898
   153
        let
boehmes@36898
   154
          val (n, ctxt') = yield_singleton Variable.variant_fixes "x" ctxt
boehmes@40663
   155
          val cv = U.certify ctxt'
boehmes@40663
   156
            (Free (n, map U.typ_of cvs' ---> U.typ_of ct))
boehmes@36899
   157
          val cu = Drule.list_comb (cv, cvs')
boehmes@36898
   158
          val e = (t, (cv, fold_rev Thm.cabs cvs' ct))
boehmes@36898
   159
          val beta_norm' = beta_norm orelse not (null cvs')
boehmes@36899
   160
        in (cu, (ctxt', Termtab.update e tab, idx + 1, beta_norm')) end)
boehmes@36898
   161
  end
boehmes@36898
   162
boehmes@36898
   163
fun abs_comb f g cvs ct =
boehmes@36898
   164
  let val (cf, cu) = Thm.dest_comb ct
boehmes@36898
   165
  in f cvs cf ##>> g cvs cu #>> uncurry Thm.capply end
boehmes@36898
   166
boehmes@36899
   167
fun abs_arg f = abs_comb (K pair) f
boehmes@36899
   168
boehmes@36899
   169
fun abs_args f cvs ct =
boehmes@36899
   170
  (case Thm.term_of ct of
boehmes@36899
   171
    _ $ _ => abs_comb (abs_args f) f cvs ct
boehmes@36899
   172
  | _ => pair ct)
boehmes@36899
   173
boehmes@36898
   174
fun abs_list f g cvs ct =
boehmes@36898
   175
  (case Thm.term_of ct of
boehmes@36898
   176
    Const (@{const_name Nil}, _) => pair ct
boehmes@36898
   177
  | Const (@{const_name Cons}, _) $ _ $ _ =>
boehmes@36898
   178
      abs_comb (abs_arg f) (abs_list f g) cvs ct
boehmes@36898
   179
  | _ => g cvs ct)
boehmes@36898
   180
boehmes@36898
   181
fun abs_abs f cvs ct =
boehmes@36898
   182
  let val (cv, cu) = Thm.dest_abs NONE ct
boehmes@36898
   183
  in f (cv :: cvs) cu #>> Thm.cabs cv end
boehmes@36898
   184
boehmes@36898
   185
val is_atomic = (fn _ $ _ => false | Abs _ => false | _ => true)
boehmes@36898
   186
boehmes@36898
   187
fun abstract (ext_logic, with_theories) =
boehmes@36898
   188
  let
boehmes@36898
   189
    fun abstr1 cvs ct = abs_arg abstr cvs ct
boehmes@36898
   190
    and abstr2 cvs ct = abs_comb abstr1 abstr cvs ct
boehmes@36898
   191
    and abstr3 cvs ct = abs_comb abstr2 abstr cvs ct
boehmes@36898
   192
    and abstr_abs cvs ct = abs_arg (abs_abs abstr) cvs ct
boehmes@36898
   193
boehmes@36898
   194
    and abstr cvs ct =
boehmes@36898
   195
      (case Thm.term_of ct of
boehmes@40579
   196
        @{const Trueprop} $ _ => abstr1 cvs ct
boehmes@40579
   197
      | @{const "==>"} $ _ $ _ => abstr2 cvs ct
boehmes@40579
   198
      | @{const True} => pair ct
boehmes@40579
   199
      | @{const False} => pair ct
boehmes@40579
   200
      | @{const Not} $ _ => abstr1 cvs ct
boehmes@40579
   201
      | @{const HOL.conj} $ _ $ _ => abstr2 cvs ct
boehmes@40579
   202
      | @{const HOL.disj} $ _ $ _ => abstr2 cvs ct
boehmes@40579
   203
      | @{const HOL.implies} $ _ $ _ => abstr2 cvs ct
haftmann@38864
   204
      | Const (@{const_name HOL.eq}, _) $ _ $ _ => abstr2 cvs ct
boehmes@40681
   205
      | Const (@{const_name distinct}, _) $ _ =>
boehmes@36898
   206
          if ext_logic then abs_arg (abs_list abstr fresh_abstraction) cvs ct
boehmes@36898
   207
          else fresh_abstraction cvs ct
boehmes@36898
   208
      | Const (@{const_name If}, _) $ _ $ _ $ _ =>
boehmes@36898
   209
          if ext_logic then abstr3 cvs ct else fresh_abstraction cvs ct
boehmes@36898
   210
      | Const (@{const_name All}, _) $ _ =>
boehmes@36898
   211
          if ext_logic then abstr_abs cvs ct else fresh_abstraction cvs ct
boehmes@36898
   212
      | Const (@{const_name Ex}, _) $ _ =>
boehmes@36898
   213
          if ext_logic then abstr_abs cvs ct else fresh_abstraction cvs ct
boehmes@36899
   214
      | t => (fn cx =>
boehmes@36899
   215
          if is_atomic t orelse can HOLogic.dest_number t then (ct, cx)
boehmes@36899
   216
          else if with_theories andalso
boehmes@36899
   217
            I.is_builtin_theory_term (context_of cx) t
boehmes@36899
   218
          then abs_args abstr cvs ct cx
boehmes@36899
   219
          else fresh_abstraction cvs ct cx))
boehmes@36898
   220
  in abstr [] end
boehmes@36898
   221
boehmes@40579
   222
val cimp = Thm.cterm_of @{theory} @{const "==>"}
boehmes@40579
   223
boehmes@36898
   224
fun with_prems thms f ct =
boehmes@40579
   225
  fold_rev (Thm.mk_binop cimp o Thm.cprop_of) thms ct
boehmes@36898
   226
  |> f
boehmes@36898
   227
  |> fold (fn prem => fn th => Thm.implies_elim th prem) thms
boehmes@36898
   228
boehmes@36898
   229
in
boehmes@36898
   230
boehmes@36899
   231
fun by_abstraction mode ctxt thms prove = with_prems thms (fn ct =>
boehmes@36899
   232
  let val (cu, cx) = abstract mode ct (abs_context ctxt)
boehmes@36898
   233
  in abs_instantiate cx (prove (context_of cx) cu) end)
boehmes@36898
   234
boehmes@36898
   235
end
boehmes@36898
   236
boehmes@36898
   237
boehmes@36898
   238
boehmes@36898
   239
(* a faster COMP *)
boehmes@36898
   240
boehmes@36898
   241
type compose_data = cterm list * (cterm -> cterm list) * thm
boehmes@36898
   242
boehmes@36898
   243
fun list2 (x, y) = [x, y]
boehmes@36898
   244
boehmes@36898
   245
fun precompose f rule = (f (Thm.cprem_of rule 1), f, rule)
boehmes@36898
   246
fun precompose2 f rule = precompose (list2 o f) rule
boehmes@36898
   247
boehmes@36898
   248
fun compose (cvs, f, rule) thm =
boehmes@36898
   249
  discharge thm (Thm.instantiate ([], cvs ~~ f (Thm.cprop_of thm)) rule)
boehmes@36898
   250
boehmes@36898
   251
boehmes@36898
   252
boehmes@36898
   253
(* unfolding of 'distinct' *)
boehmes@36898
   254
boehmes@36898
   255
local
boehmes@36898
   256
  val set1 = @{lemma "x ~: set [] == ~False" by simp}
boehmes@36898
   257
  val set2 = @{lemma "x ~: set [x] == False" by simp}
boehmes@36898
   258
  val set3 = @{lemma "x ~: set [y] == x ~= y" by simp}
boehmes@36898
   259
  val set4 = @{lemma "x ~: set (x # ys) == False" by simp}
boehmes@36898
   260
  val set5 = @{lemma "x ~: set (y # ys) == x ~= y & x ~: set ys" by simp}
boehmes@36898
   261
boehmes@36898
   262
  fun set_conv ct =
wenzelm@36936
   263
    (Conv.rewrs_conv [set1, set2, set3, set4] else_conv
boehmes@36898
   264
    (Conv.rewr_conv set5 then_conv Conv.arg_conv set_conv)) ct
boehmes@36898
   265
boehmes@40681
   266
  val dist1 = @{lemma "distinct [] == ~False" by (simp add: distinct_def)}
boehmes@40681
   267
  val dist2 = @{lemma "distinct [x] == ~False" by (simp add: distinct_def)}
boehmes@40681
   268
  val dist3 = @{lemma "distinct (x # xs) == x ~: set xs & distinct xs"
boehmes@40274
   269
    by (simp add: distinct_def)}
boehmes@36898
   270
boehmes@36898
   271
  fun binop_conv cv1 cv2 = Conv.combination_conv (Conv.arg_conv cv1) cv2
boehmes@36898
   272
in
boehmes@36898
   273
fun unfold_distinct_conv ct =
wenzelm@36936
   274
  (Conv.rewrs_conv [dist1, dist2] else_conv
boehmes@36898
   275
  (Conv.rewr_conv dist3 then_conv binop_conv set_conv unfold_distinct_conv)) ct
boehmes@36898
   276
end
boehmes@36898
   277
boehmes@36898
   278
boehmes@36898
   279
boehmes@36898
   280
(* simpset *)
boehmes@36898
   281
boehmes@36898
   282
local
boehmes@36898
   283
  val antisym_le1 = mk_meta_eq @{thm order_class.antisym_conv}
boehmes@36898
   284
  val antisym_le2 = mk_meta_eq @{thm linorder_class.antisym_conv2}
boehmes@36898
   285
  val antisym_less1 = mk_meta_eq @{thm linorder_class.antisym_conv1}
boehmes@36898
   286
  val antisym_less2 = mk_meta_eq @{thm linorder_class.antisym_conv3}
boehmes@36898
   287
boehmes@36898
   288
  fun eq_prop t thm = HOLogic.mk_Trueprop t aconv Thm.prop_of thm
boehmes@36898
   289
  fun dest_binop ((c as Const _) $ t $ u) = (c, t, u)
boehmes@36898
   290
    | dest_binop t = raise TERM ("dest_binop", [t])
boehmes@36898
   291
boehmes@36898
   292
  fun prove_antisym_le ss t =
boehmes@36898
   293
    let
boehmes@36898
   294
      val (le, r, s) = dest_binop t
boehmes@36898
   295
      val less = Const (@{const_name less}, Term.fastype_of le)
boehmes@36898
   296
      val prems = Simplifier.prems_of_ss ss
boehmes@36898
   297
    in
boehmes@36898
   298
      (case find_first (eq_prop (le $ s $ r)) prems of
boehmes@36898
   299
        NONE =>
boehmes@36898
   300
          find_first (eq_prop (HOLogic.mk_not (less $ r $ s))) prems
boehmes@36898
   301
          |> Option.map (fn thm => thm RS antisym_less1)
boehmes@36898
   302
      | SOME thm => SOME (thm RS antisym_le1))
boehmes@36898
   303
    end
boehmes@36898
   304
    handle THM _ => NONE
boehmes@36898
   305
boehmes@36898
   306
  fun prove_antisym_less ss t =
boehmes@36898
   307
    let
boehmes@36898
   308
      val (less, r, s) = dest_binop (HOLogic.dest_not t)
boehmes@36898
   309
      val le = Const (@{const_name less_eq}, Term.fastype_of less)
boehmes@36898
   310
      val prems = prems_of_ss ss
boehmes@36898
   311
    in
boehmes@36898
   312
      (case find_first (eq_prop (le $ r $ s)) prems of
boehmes@36898
   313
        NONE =>
boehmes@36898
   314
          find_first (eq_prop (HOLogic.mk_not (less $ s $ r))) prems
boehmes@36898
   315
          |> Option.map (fn thm => thm RS antisym_less2)
boehmes@36898
   316
      | SOME thm => SOME (thm RS antisym_le2))
boehmes@36898
   317
  end
boehmes@36898
   318
  handle THM _ => NONE
boehmes@36899
   319
boehmes@36899
   320
  val basic_simpset = HOL_ss addsimps @{thms field_simps}
boehmes@36899
   321
    addsimps [@{thm times_divide_eq_right}, @{thm times_divide_eq_left}]
boehmes@36899
   322
    addsimps @{thms arith_special} addsimps @{thms less_bin_simps}
boehmes@36899
   323
    addsimps @{thms le_bin_simps} addsimps @{thms eq_bin_simps}
boehmes@36899
   324
    addsimps @{thms add_bin_simps} addsimps @{thms succ_bin_simps}
boehmes@36899
   325
    addsimps @{thms minus_bin_simps} addsimps @{thms pred_bin_simps}
boehmes@36899
   326
    addsimps @{thms mult_bin_simps} addsimps @{thms iszero_simps}
boehmes@36899
   327
    addsimps @{thms array_rules}
boehmes@37151
   328
    addsimps @{thms z3div_def} addsimps @{thms z3mod_def}
boehmes@36899
   329
    addsimprocs [
wenzelm@38715
   330
      Simplifier.simproc_global @{theory} "fast_int_arith" [
boehmes@36899
   331
        "(m::int) < n", "(m::int) <= n", "(m::int) = n"] (K Lin_Arith.simproc),
wenzelm@38715
   332
      Simplifier.simproc_global @{theory} "antisym_le" ["(x::'a::order) <= y"]
boehmes@36899
   333
        (K prove_antisym_le),
wenzelm@38715
   334
      Simplifier.simproc_global @{theory} "antisym_less" ["~ (x::'a::linorder) < y"]
boehmes@36899
   335
        (K prove_antisym_less)]
boehmes@36899
   336
boehmes@36899
   337
  structure Simpset = Generic_Data
boehmes@36899
   338
  (
boehmes@36899
   339
    type T = simpset
boehmes@36899
   340
    val empty = basic_simpset
boehmes@36899
   341
    val extend = I
boehmes@36899
   342
    val merge = Simplifier.merge_ss
boehmes@36899
   343
  )
boehmes@36898
   344
in
boehmes@36898
   345
boehmes@36899
   346
fun add_simproc simproc = Simpset.map (fn ss => ss addsimprocs [simproc])
boehmes@36899
   347
boehmes@36899
   348
fun make_simpset ctxt rules =
boehmes@36899
   349
  Simplifier.context ctxt (Simpset.get (Context.Proof ctxt)) addsimps rules
boehmes@36898
   350
boehmes@36898
   351
end
boehmes@36898
   352
boehmes@36898
   353
end