(* Title: Pure/Isar/proof.ML


Author: Markus Wenzel, TU Muenchen


Proof states and methods.


TODO:


 assume: improve schematic Vars handling (!?);


 bind: check rhs (extra (T)Vars etc.) (How to handle these anyway?);


 prep_result: avoid duplicate asms;


 goal: need asms field? (may take from goal context!?);


 finish: filter results (!??) (no?);


 finish_tac: make a parameter (method) (!!?);


 prep_result error: use error channel (!);


 next_block: fetch_facts (!?);


 warn_vars;


 string constants in one place (e.g. "it", "thesis") (??!);


 check_finished: trace results (!?);


*)


signature PROOF =


sig


type context


type state


exception STATE of string * state


val context_of: state > context


val theory_of: state > theory


val sign_of: state > Sign.sg


val the_facts: state > tthm list


val goal_facts: (state > tthm list) > state > state


val use_facts: state > state


val reset_facts: state > state


val assert_backward: state > state


val enter_forward: state > state


val print_state: state > unit


type method


val method: (tthm list > thm >


(thm * (indexname * term) list * (string * tthm list) list) Seq.seq) > method


val refine: (context > method) > state > state Seq.seq


val bind: (indexname * string) list > state > state


val bind_i: (indexname * term) list > state > state


val match_bind: (string * string) list > state > state


val match_bind_i: (term * term) list > state > state


val have_tthms: string > context attribute list >


(tthm * context attribute list) list > state > state


val assume: string > context attribute list > string list > state > state


val assume_i: string > context attribute list > term list > state > state


val fix: (string * string option) list > state > state


val fix_i: (string * typ) list > state > state


val theorem: bstring > theory attribute list > string > theory > state


val theorem_i: bstring > theory attribute list > term > theory > state


val lemma: bstring > theory attribute list > string > theory > state


val lemma_i: bstring > theory attribute list > term > theory > state


val chain: state > state


val from_facts: tthm list > state > state


val show: string > context attribute list > string > state > state


val show_i: string > context attribute list > term > state > state


val have: string > context attribute list > string > state > state


val have_i: string > context attribute list > term > state > state


val begin_block: state > state


val next_block: state > state


val end_block: (context > method) > state > state Seq.seq


val qed: (context > method) > bstring option > theory attribute list option > state


> theory * (string * string * tthm)


end;


signature PROOF_PRIVATE =


sig


include PROOF


val put_data: Object.kind > ('a > Object.T) > 'a > state > state


end;


structure Proof: PROOF_PRIVATE =


struct


(** proof state **)


type context = ProofContext.context;


(* type goal *)


datatype kind =


Theorem of theory attribute list  (*toplevel theorem*)


Lemma of theory attribute list  (*toplevel lemma*)


Goal of context attribute list  (*intermediate result, solving subgoal*)


Aux of context attribute list ; (*intermediate result*)


val kind_name =


fn Theorem _ => "theorem"  Lemma _ => "lemma"  Goal _ => "show"  Aux _ => "have";


type goal =


(kind * (*result kind*)


string * (*result name*)


cterm list * (*result assumptions*)


term) * (*result statement*)


(tthm list * (*use facts*)


thm); (*goal: subgoals ==> statement*)


(* type mode *)


datatype mode = Forward  ForwardChain  Backward;


106 


val mode_name =


fn Forward => "forward"  ForwardChain => "forward chain"  Backward => "backward";


(* type node *)


type node =


{context: context,


facts: tthm list option,


mode: mode,


goal: goal option};


fun make_node (context, facts, mode, goal) =


{context = context, facts = facts, mode = mode, goal = goal}: node;


(* datatype state *)


datatype state =


State of


node * (*current*)


node list; (*parents wrt. block structure*)


exception STATE of string * state;


fun err_malformed name state =


raise STATE (name ^ ": internal error  malformed proof state", state);


fun map_current f (State ({context, facts, mode, goal}, nodes)) =


State (make_node (f (context, facts, mode, goal)), nodes);


fun init_state thy =

140 
State (make_node (ProofContext.init thy, None, Forward, None), []);

(** basic proof state operations **)


(* context *)


fun context_of (State ({context, ...}, _)) = context;


val theory_of = ProofContext.theory_of o context_of;


val sign_of = ProofContext.sign_of o context_of;


fun map_context f = map_current (fn (ctxt, facts, mode, goal) => (f ctxt, facts, mode, goal));


fun map_context_result f (state as State ({context, facts, mode, goal}, nodes)) =


let val (context', result) = f context


in (State (make_node (context', facts, mode, goal), nodes), result) end;


fun put_data kind f = map_context o ProofContext.put_data kind f;


val declare_term = map_context o ProofContext.declare_term;


val add_binds = map_context o ProofContext.add_binds_i;


val put_tthms = map_context o ProofContext.put_tthms;


val put_tthmss = map_context o ProofContext.put_tthmss;


(* bind statements *)


fun bind_props bs state =


let val mk_bind = map (fn (x, t) => ((Syntax.binding x, 0), t)) o ObjectLogic.dest_statement


in state > add_binds (flat (map mk_bind bs)) end;


fun bind_tthms (name, tthms) state =


let


val props = map (#prop o Thm.rep_thm o Attribute.thm_of) tthms;


val named_props =


(case props of


[prop] => [(name, prop)]


 props => map2 (fn (i, t) => (name ^ string_of_int i, t)) (1 upto length props, props));


in state > bind_props named_props end;


fun let_tthms name_tthms state =


state


> put_tthms name_tthms


> bind_tthms name_tthms;


(* facts *)


fun the_facts (State ({facts = Some facts, ...}, _)) = facts


 the_facts state = raise STATE ("No current facts available", state);


192 
193 
194 
195 
196 


val reset_facts = put_facts None;


fun have_facts (name, facts) state =


state


> put_facts (Some facts)


> let_tthms (name, facts);


fun these_facts (state, ths) = have_facts ths state;


fun fetch_facts (State ({facts, ...}, _)) = put_facts facts;


(* goal *)


fun find_goal i (State ({goal = Some goal, ...}, _)) = (i, goal)


 find_goal i (State ({goal = None, ...}, node :: nodes)) =


find_goal (i + 1) (State (node, nodes))


 find_goal _ (state as State (_, [])) = err_malformed "find_goal" state;


fun put_goal goal = map_current (fn (ctxt, facts, mode, _) => (ctxt, facts, mode, goal));


fun map_goal f (State ({context, facts, mode, goal = Some goal}, nodes)) =


State (make_node (context, facts, mode, Some (f goal)), nodes)


 map_goal f (State (nd, node :: nodes)) =


let val State (node', nodes') = map_goal f (State (node, nodes))


in State (nd, node' :: nodes') end


 map_goal _ state = state;


fun goal_facts get state =


state


> map_goal (fn (result, (_, thm)) => (result, (get state, thm)));


228 
229 
230 
231 
234 
236 
237 
238 


val enter_forward = put_mode Forward;


val enter_forward_chain = put_mode ForwardChain;


val enter_backward = put_mode Backward;


fun assert_mode pred state =


let val mode = get_mode state in


if pred mode then state


else raise STATE ("Illegal application of command in " ^ mode_name mode ^ " mode", state)


end;


fun is_chain state = get_mode state = ForwardChain;


val assert_forward = assert_mode (equal Forward);


val assert_forward_or_chain = assert_mode (equal Forward orf equal ForwardChain);


val assert_backward = assert_mode (equal Backward);


(* blocks *)


fun open_block (State (node, nodes)) = State (node, node :: nodes);


fun new_block state =


state


> open_block


> put_goal None;


264 
265 
266 


(** print_state **)


fun print_state (state as State ({context, facts, mode, goal = _}, nodes)) =


let


val prt_tthm = Attribute.pretty_tthm;


275 
276 
277 
278 


fun levels_up 0 = ""


 levels_up i = " (" ^ string_of_int i ^ " levels up)";


282 
283 
284 
285 
286 
287 
288 
289 
290 
291 
292 
293 
294 
298 
300 
302 
303 
304 
305 
306 
307 
308 
309 


val method = Method;


(* refine goal *)


315 
316 
317 
318 


fun refine meth_fun (state as State ({context, ...}, _)) =


let


val Method meth = meth_fun context;


val (_, (result, (facts, thm))) = find_goal 0 state;


324 
325 
326 
327 
328 
329 
330 
331 


333 
334 


fun varify_frees names thm =


let


fun get_free x (None, t as Free (y, _)) = if x = y then Some t else None


 get_free _ (opt, _) = opt;


340 
341 


val {sign, maxidx, prop, ...} = Thm.rep_thm thm;


344 
345 
346 
347 
348 
349 


fun implies_elim_hyps thm =


foldl (uncurry Thm.implies_elim) (thm, map Thm.assume (Drule.cprems_of thm));


353 
354 
355 
356 
357 


val ngoals = Thm.nprems_of raw_thm;


val _ =


361 
363 
364 
365 
366 
367 
368 


val {hyps, prop, sign, ...} = Thm.rep_thm thm;


val tsig = Sign.tsig_of sign;


in


(* FIXME


warning ("Proved a different theorem: " ^ Sign.string_of_term sign prop)


375 
else ();


376 
*)


377 
if not (null hyps) then


378 
err ("Additional hypotheses:\n" ^ cat_lines (map (Sign.string_of_term sign) hyps))


379 
(* FIXME else if not (Pattern.matches tsig (t, Logic.skip_flexpairs prop)) then


380 
err ("Proved a different theorem: " ^ Sign.string_of_term sign prop) *)


381 
else thm


382 
end;


383 


384 


385 
(* prepare final result *)


386 


387 
fun strip_flexflex thm =


388 
Seq.hd (Thm.flexflex_rule thm) handle THM _ => thm;


389 


390 
fun final_result state pre_thm =


391 
let


392 
val thm =


393 
pre_thm


394 
> strip_flexflex


395 
> Thm.strip_shyps


396 
> Drule.standard;


397 


398 
val str_of_sort = Sign.str_of_sort (Thm.sign_of_thm thm);


399 
val xshyps = Thm.extra_shyps thm;


400 
in


401 
if not (null xshyps) then


402 
raise STATE ("Extra sort hypotheses: " ^ commas (map str_of_sort xshyps), state)


403 
else thm


404 
end;


405 


406 


407 
(* solve goal *)


408 


409 
fun solve_goal rule state =


410 
let


411 
val (_, (result, (facts, thm))) = find_goal 0 state;


412 
val thms' = FIRSTGOAL (solve_tac [rule]) thm;


413 
in Seq.map (fn thm' => map_goal (K (result, (facts, thm'))) state) thms' end;


414 


415 


416 


417 
(*** structured proof commands ***)


418 


419 
(** context **)


420 


421 
(* bind *)


422 


423 
fun gen_bind f x state =


424 
state


425 
> assert_forward


426 
> map_context (f x)


427 
> reset_facts;


428 


429 
val bind = gen_bind ProofContext.add_binds;


430 
val bind_i = gen_bind ProofContext.add_binds_i;


431 


432 
val match_bind = gen_bind ProofContext.match_binds;


433 
val match_bind_i = gen_bind ProofContext.match_binds_i;


434 


435 


436 
(* have_tthms *)


437 


438 
val def_name = fn "" => "it"  name => name;


439 


440 
fun have_tthms name atts ths_atts state =


441 
state


442 
> assert_forward


443 
> map_context_result (ProofContext.have_tthms (def_name name) atts ths_atts)


444 
> these_facts;


445 


446 


447 
(* fix *)


448 


449 
fun gen_fix f xs state =


450 
state


451 
> assert_forward


452 
> map_context (f xs)


453 
> reset_facts;


454 


455 
val fix = gen_fix ProofContext.fix;


456 
val fix_i = gen_fix ProofContext.fix_i;


457 


458 


459 
(* assume *)


460 


461 
fun gen_assume f name atts props state =


462 
state


463 
> assert_forward


464 
> map_context_result (f (def_name name) atts props)


465 
> these_facts


466 
> (fn st => let_tthms ("prems", ProofContext.assumptions (context_of st)) st);


467 


468 
val assume = gen_assume ProofContext.assume;


469 
val assume_i = gen_assume ProofContext.assume_i;


470 


471 


472 


473 
(** goals **)


474 


475 
(* forward chaining *)


476 


477 
fun chain state =


478 
state


479 
> assert_forward


480 
> enter_forward_chain;


481 


482 
fun from_facts facts state =


483 
state


484 
> put_facts (Some facts)


485 
> chain;


486 


487 


488 
(* setup goals *)


489 


490 
val read_prop = ProofContext.read_prop o context_of;


491 
val cert_prop = ProofContext.cert_prop o context_of;


492 


493 
fun setup_goal opt_block prep kind name atts raw_prop state =


494 
let


495 
val sign = sign_of state;


496 
val ctxt = context_of state;


497 


498 
val casms = map (#prop o Thm.crep_thm o Attribute.thm_of) (ProofContext.assumptions ctxt);


499 
val asms = map Thm.term_of casms;


500 


501 
val prop = Logic.list_implies (asms, prep state raw_prop);


502 
val cprop = Thm.cterm_of sign prop;


503 
val thm = Drule.mk_triv_goal cprop;


504 
in


505 
state


506 
> assert_forward_or_chain


507 
> enter_forward


508 
> opt_block


509 


510 
> declare_term prop


511 
> put_goal (Some ((kind atts, (def_name name), casms, prop), ([], thm)))


512 
> bind_props [("thesis", prop)]


513 
> (if is_chain state then use_facts else reset_facts)


514 


515 
> new_block


516 
> enter_backward


517 
end;


518 


519 


520 
(*global goals*)


521 
fun global_goal prep kind name atts x thy =


522 
setup_goal I prep kind name atts x (init_state thy);


523 


524 
val theorem = global_goal read_prop Theorem;


525 
val theorem_i = global_goal cert_prop Theorem;


526 
val lemma = global_goal read_prop Lemma;


527 
val lemma_i = global_goal cert_prop Lemma;


528 


529 


530 
(*local goals*)


531 
fun local_goal prep kind name atts x =


532 
setup_goal open_block prep kind name atts x;


533 


534 
val show = local_goal read_prop Goal;


535 
val show_i = local_goal cert_prop Goal;


536 
val have = local_goal read_prop Aux;


537 
val have_i = local_goal cert_prop Aux;


538 


539 


540 


541 
(** blocks **)


542 


543 
(* begin_block *)


544 


545 
fun begin_block state =


546 
state


547 
> assert_forward


548 
> new_block


549 
> reset_facts


550 
> open_block;


551 


552 


553 
(* next_block *)


554 


555 
fun next_block state =


556 
state


557 
> assert_forward


558 
> close_block


559 
> new_block;


560 


561 


562 


563 
(** conclusions **)


564 


565 
(* current goal *)


566 


567 
fun current_goal (State ({goal = Some goal, ...}, _)) = goal


568 
 current_goal state = raise STATE ("No current goal!", state);


569 


570 
fun assert_current_goal state = (current_goal state; state);


571 


572 
fun assert_bottom true (state as State (_, _ :: _)) =


573 
raise STATE ("Not at bottom of proof!", state)


574 
 assert_bottom false (state as State (_, [])) =


575 
raise STATE ("Already at bottom of proof!", state)


576 
 assert_bottom _ state = state;


577 


578 


579 
(* finish proof *)


580 


581 
fun check_finished state states =


582 
(case Seq.pull states of


583 
None => raise STATE ("Failed to finish proof", state)


584 
 Some s_sq => Seq.cons s_sq);


585 


586 
fun finish_proof bot meth_fun state =


587 
state


588 
> assert_forward


589 
> close_block


590 
> assert_bottom bot


591 
> assert_current_goal


592 
> refine meth_fun


593 
> check_finished state;


594 


595 


596 
(* conclude local proof *)


597 


598 
fun finish_local state =


599 
let


600 
val ((kind, name, asms, t), (_, raw_thm)) = current_goal state;


601 
val result = prep_result state asms t raw_thm;


602 
val (atts, opt_solve) =


603 
(case kind of


604 
Goal atts => (atts, solve_goal result)


605 
 Aux atts => (atts, Seq.single)


606 
 _ => raise STATE ("No local goal!", state));


607 
in


608 
state


609 
> close_block


610 
> have_tthms name atts [((result, []), [])]


611 
> opt_solve


612 
end;


613 


614 
fun end_block meth_fun state =


615 
if can assert_current_goal (close_block state) then


616 
state


617 
> finish_proof false meth_fun


618 
> (Seq.flat o Seq.map finish_local)


619 
else


620 
state


621 
> assert_forward


622 
> close_block


623 
> close_block


624 
> fetch_facts state


625 
> Seq.single;


626 


627 


628 
(* conclude global proof *)


629 


630 
fun finish_global alt_name alt_atts state =


631 
let


632 
val ((kind, def_name, asms, t), (_, raw_thm)) = current_goal state;


633 
val result = final_result state (prep_result state asms t raw_thm);


634 


635 
val name = if_none alt_name def_name;


636 
val atts =


637 
(case kind of


638 
Theorem atts => if_none alt_atts atts


639 
 Lemma atts => Attribute.tag_lemma :: if_none alt_atts atts


640 
 _ => raise STATE ("No global goal!", state));


641 


642 
val (thy', result') = PureThy.store_tthm ((name, (result, [])), atts) (theory_of state);


643 
in (thy', (kind_name kind, name, result')) end;


644 


645 
fun qed meth_fun alt_name alt_atts state =


646 
state


647 
> finish_proof true meth_fun


648 
> Seq.hd


649 
> finish_global alt_name alt_atts;


650 


651 


652 
end;
