1 
(* Title: HOL/SMT2.thy 
2 
Author: Sascha Boehme, TU Muenchen 
3 
*) 
4 

5 
header {* Bindings to Satisfiability Modulo Theories (SMT) solvers based on SMTLIB 2 *} 
6 

7 
theory SMT2 
8 
imports Record 
9 
keywords "smt2_status" :: diag 
10 
begin 
11 

56090  12 
ML_file "Tools/SMT2/smt2_util.ML" 
13 
ML_file "Tools/SMT2/smt2_failure.ML" 
14 
ML_file "Tools/SMT2/smt2_config.ML" 
15 

16 

17 
subsection {* Triggers for quantifier instantiation *} 
18 

19 
text {* 
20 
Some SMT solvers support patterns as a quantifier instantiation 
21 
heuristics. Patterns may either be positive terms (tagged by "pat") 
22 
triggering quantifier instantiations  when the solver finds a 
23 
term matching a positive pattern, it instantiates the corresponding 
24 
quantifier accordingly  or negative terms (tagged by "nopat") 
25 
inhibiting quantifier instantiations. A list of patterns 
26 
of the same kind is called a multipattern, and all patterns in a 
27 
multipattern are considered conjunctively for quantifier instantiation. 
28 
A list of multipatterns is called a trigger, and their multipatterns 
29 
act disjunctively during quantifier instantiation. Each multipattern 
30 
should mention at least all quantified variables of the preceding 
31 
quantifier block. 
32 
*} 
33 

34 
typedecl pattern 
35 

36 
consts 
37 
pat :: "'a \<Rightarrow> pattern" 
38 
nopat :: "'a \<Rightarrow> pattern" 
39 

40 
definition trigger :: "pattern list list \<Rightarrow> bool \<Rightarrow> bool" where "trigger _ P = P" 
41 

42 

43 
subsection {* Higherorder encoding *} 
44 

45 
text {* 
46 
Application is made explicit for constants occurring with varying 
47 
numbers of arguments. This is achieved by the introduction of the 
48 
following constant. 
49 
*} 
50 

51 
definition fun_app :: "'a \<Rightarrow> 'a" where "fun_app f = f" 
52 

53 
text {* 
54 
Some solvers support a theory of arrays which can be used to encode 
55 
higherorder functions. The following set of lemmas specifies the 
56 
properties of such (extensional) arrays. 
57 
*} 
58 

59 
lemmas array_rules = ext fun_upd_apply fun_upd_same fun_upd_other fun_upd_upd fun_app_def 
60 

61 

62 
subsection {* Normalization *} 
63 

64 
lemma case_bool_if[abs_def]: "case_bool x y P = (if P then x else y)" 
65 
by simp 
66 

56107  67 
lemma nat_int': "\<forall>n. nat (int n) = n" by simp 
56103
68 
lemma int_nat_nneg: "\<forall>i. i \<ge> 0 \<longrightarrow> int (nat i) = i" by simp 
69 
lemma int_nat_neg: "\<forall>i. i < 0 \<longrightarrow> int (nat i) = 0" by simp 
70 

71 
lemma nat_zero_as_int: "0 = nat 0" by (rule transfer_nat_int_numerals(1)) 
72 
lemma nat_one_as_int: "1 = nat 1" by (rule transfer_nat_int_numerals(2)) 
73 
lemma nat_numeral_as_int: "numeral = (\<lambda>i. nat (numeral i))" by simp 
74 
lemma nat_less_as_int: "op < = (\<lambda>a b. int a < int b)" by simp 
75 
lemma nat_leq_as_int: "op \<le> = (\<lambda>a b. int a <= int b)" by simp 
76 
lemma Suc_as_int: "Suc = (\<lambda>a. nat (int a + 1))" by (rule ext) simp 
77 
lemma nat_plus_as_int: "op + = (\<lambda>a b. nat (int a + int b))" by (rule ext)+ simp 
78 
lemma nat_minus_as_int: "op  = (\<lambda>a b. nat (int a  int b))" by (rule ext)+ simp 
79 
lemma nat_times_as_int: "op * = (\<lambda>a b. nat (int a * int b))" by (simp add: nat_mult_distrib) 
80 
lemma nat_div_as_int: "op div = (\<lambda>a b. nat (int a div int b))" by (simp add: nat_div_distrib) 
81 
lemma nat_mod_as_int: "op mod = (\<lambda>a b. nat (int a mod int b))" by (simp add: nat_mod_distrib) 
82 

83 
lemma int_Suc: "int (Suc n) = int n + 1" by simp 
84 
lemma int_plus: "int (n + m) = int n + int m" by (rule of_nat_add) 
85 
lemma int_minus: "int (n  m) = int (nat (int n  int m))" by auto 
86 

87 
lemmas Ex1_def_raw = Ex1_def[abs_def] 
88 
lemmas Ball_def_raw = Ball_def[abs_def] 
89 
lemmas Bex_def_raw = Bex_def[abs_def] 
90 
lemmas abs_if_raw = abs_if[abs_def] 
91 
lemmas min_def_raw = min_def[abs_def] 
92 
lemmas max_def_raw = max_def[abs_def] 
93 

94 

95 
subsection {* Integer division and modulo for Z3 *} 
96 

56102  97 
text {* 
98 
The following Z3inspired definitions are overspecified for the case where @{text "l = 0"}. This 

99 
SchÃ¶nheitsfehler is corrected in the @{text div_as_z3div} and @{text mod_as_z3mod} theorems. 

100 
*} 

101 

56078
102 
definition z3div :: "int \<Rightarrow> int \<Rightarrow> int" where 
56102  103 
"z3div k l = (if l \<ge> 0 then k div l else  (k div  l))" 
56078
624faeda77b5
moved 'SMT2' (SMTLIB2based SMT module) into Isabelle
blanchet
parents:
diff
changeset

104 

105 
definition z3mod :: "int \<Rightarrow> int \<Rightarrow> int" where 
56102  106 
"z3mod k l = k mod (if l \<ge> 0 then l else  l)" 
56078
107 

56101  108 
lemma div_as_z3div: 
56102  109 
"\<forall>k l. k div l = (if l = 0 then 0 else if l > 0 then z3div k l else z3div ( k) ( l))" 
56101  110 
by (simp add: z3div_def) 
111 

112 
lemma mod_as_z3mod: 

56102  113 
"\<forall>k l. k mod l = (if l = 0 then k else if l > 0 then z3mod k l else  z3mod ( k) ( l))" 
56101  114 
by (simp add: z3mod_def) 
115 

56078
116 

117 
subsection {* Setup *} 
118 

119 
ML_file "Tools/SMT2/smt2_builtin.ML" 
120 
ML_file "Tools/SMT2/smt2_datatypes.ML" 
121 
ML_file "Tools/SMT2/smt2_normalize.ML" 
122 
ML_file "Tools/SMT2/smt2_translate.ML" 
123 
ML_file "Tools/SMT2/smtlib2.ML" 
124 
ML_file "Tools/SMT2/smtlib2_interface.ML" 
56083
125 
ML_file "Tools/SMT2/z3_new_proof.ML" 
57159  126 
ML_file "Tools/SMT2/z3_new_isar.ML" 
56083
127 
ML_file "Tools/SMT2/smt2_solver.ML" 
128 
ML_file "Tools/SMT2/z3_new_interface.ML" 
56090  129 
ML_file "Tools/SMT2/z3_new_replay_util.ML" 
130 
ML_file "Tools/SMT2/z3_new_replay_literals.ML" 

131 
ML_file "Tools/SMT2/z3_new_replay_rules.ML" 

132 
ML_file "Tools/SMT2/z3_new_replay_methods.ML" 

133 
ML_file "Tools/SMT2/z3_new_replay.ML" 

134 
ML_file "Tools/SMT2/smt2_systems.ML" 

56078
624faeda77b5
moved 'SMT2' (SMTLIB2based SMT module) into Isabelle
blanchet
parents:
diff
changeset

135 

136 
method_setup smt2 = {* 
137 
Scan.optional Attrib.thms [] >> 
138 
(fn thms => fn ctxt => 
139 
METHOD (fn facts => HEADGOAL (SMT2_Solver.smt2_tac ctxt (thms @ facts)))) 
140 
*} "apply an SMT solver to the current goal (based on SMTLIB 2)" 
141 

142 

143 
subsection {* Configuration *} 
144 

145 
text {* 
146 
The current configuration can be printed by the command 
147 
@{text smt2_status}, which shows the values of most options. 
148 
*} 
149 

150 

151 

152 
subsection {* General configuration options *} 
153 

154 
text {* 
155 
The option @{text smt2_solver} can be used to change the target SMT 
156 
solver. The possible values can be obtained from the @{text smt2_status} 
157 
command. 
158 

159 
Due to licensing restrictions, Yices and Z3 are not installed/enabled 
160 
by default. Z3 is free for noncommercial applications and can be enabled 
161 
by setting Isabelle system option @{text z3_non_commercial} to @{text yes}. 
162 
*} 
163 

624faeda77b5
declare [[ smt2_solver = z3_new ]] 
624faeda77b5
624faeda77b5
moved 'SMT2' (SMTLIB2based SMT module) into Isabelle
624faeda77b5
moved 'SMT2' (SMTLIB2based SMT module) into Isabelle
624faeda77b5
moved 'SMT2' (SMTLIB2based SMT module) into Isabelle
624faeda77b5
moved 'SMT2' (SMTLIB2based SMT module) into Isabelle
624faeda77b5
moved 'SMT2' (SMTLIB2based SMT module) into Isabelle
624faeda77b5
moved 'SMT2' (SMTLIB2based SMT module) into Isabelle
171 

172 
declare [[ smt2_timeout = 20 ]] 
173 

624faeda77b5
text {* 
175 
SMT solvers apply randomized heuristics. In case a problem is not 
176 
solvable by an SMT solver, changing the following option might help. 
177 
*} 
178 

624faeda77b5
declare [[ smt2_random_seed = 1 ]] 
624faeda77b5
624faeda77b5
moved 'SMT2' (SMTLIB2based SMT module) into Isabelle
624faeda77b5
moved 'SMT2' (SMTLIB2based SMT module) into Isabelle
624faeda77b5
moved 'SMT2' (SMTLIB2based SMT module) into Isabelle
624faeda77b5
moved 'SMT2' (SMTLIB2based SMT module) into Isabelle
624faeda77b5
moved 'SMT2' (SMTLIB2based SMT module) into Isabelle
624faeda77b5
moved 'SMT2' (SMTLIB2based SMT module) into Isabelle
624faeda77b5
moved 'SMT2' (SMTLIB2based SMT module) into Isabelle
moved 'SMT2' (SMTLIB2based SMT module) into Isabelle
blanchet
moved 'SMT2' (SMTLIB2based SMT module) into Isabelle
blanchet
blanchet
parents:
blanchet
parents:
blanchet
parents:
blanchet
parents:
blanchet
parents:
blanchet
parents:
parents:
diff
parents:
diff
parents:
diff
parents:
diff
diff
changeset

diff
changeset

diff
changeset

diff
changeset

diff
changeset

diff
changeset

diff
changeset

changeset

207 
changeset

208 

209 
text {* 
210 
Enable the following option to use builtin support for div/mod, datatypes, 
211 
and records in Z3. Currently, this is implemented only in oracle mode. 
212 
*} 
213 

624faeda77b5
declare [[ z3_new_extensions = false ]] 
624faeda77b5
624faeda77b5
moved 'SMT2' (SMTLIB2based SMT module) into Isabelle
624faeda77b5
moved 'SMT2' (SMTLIB2based SMT module) into Isabelle
624faeda77b5
moved 'SMT2' (SMTLIB2based SMT module) into Isabelle
624faeda77b5
moved 'SMT2' (SMTLIB2based SMT module) into Isabelle
624faeda77b5
moved 'SMT2' (SMTLIB2based SMT module) into Isabelle
624faeda77b5
moved 'SMT2' (SMTLIB2based SMT module) into Isabelle
624faeda77b5
moved 'SMT2' (SMTLIB2based SMT module) into Isabelle
moved 'SMT2' (SMTLIB2based SMT module) into Isabelle
blanchet
moved 'SMT2' (SMTLIB2based SMT module) into Isabelle
blanchet
blanchet
parents:
blanchet
parents:
blanchet
parents:
blanchet
parents:
blanchet
parents:
parents:
diff
parents:
diff
diff
changeset

changeset

233 

234 
subsection {* Certificates *} 
235 

624faeda77b5
text {* 
624faeda77b5
By setting the option @{text smt2_certificates} to the name of a file, 
624faeda77b5
all following applications of an SMT solver a cached in that file. 
624faeda77b5
Any further application of the same SMT solver (using the very same 
624faeda77b5
configuration) reuses the cached certificate instead of invoking the 
624faeda77b5
solver. An empty string disables caching certificates. 
624faeda77b5
624faeda77b5
moved 'SMT2' (SMTLIB2based SMT module) into Isabelle
624faeda77b5
moved 'SMT2' (SMTLIB2based SMT module) into Isabelle
624faeda77b5
moved 'SMT2' (SMTLIB2based SMT module) into Isabelle
624faeda77b5
moved 'SMT2' (SMTLIB2based SMT module) into Isabelle
624faeda77b5
moved 'SMT2' (SMTLIB2based SMT module) into Isabelle
624faeda77b5
moved 'SMT2' (SMTLIB2based SMT module) into Isabelle
624faeda77b5
moved 'SMT2' (SMTLIB2based SMT module) into Isabelle
moved 'SMT2' (SMTLIB2based SMT module) into Isabelle
blanchet
moved 'SMT2' (SMTLIB2based SMT module) into Isabelle
blanchet
blanchet
parents:
blanchet
parents:
blanchet
parents:
blanchet
parents:
blanchet
parents:
blanchet
parents:
blanchet
parents:
blanchet
parents:
blanchet
parents:
blanchet
parents:
parents:
diff
parents:
diff
diff
changeset

changeset

265 

266 
subsection {* Tracing *} 
267 

624faeda77b5
text {* 
624faeda77b5
The SMT method, when applied, traces important information. To 
624faeda77b5
make it entirely silent, set the following option to @{text false}. 
624faeda77b5
*} 
624faeda77b5
624faeda77b5
moved 'SMT2' (SMTLIB2based SMT module) into Isabelle
624faeda77b5
moved 'SMT2' (SMTLIB2based SMT module) into Isabelle
moved 'SMT2' (SMTLIB2based SMT module) into Isabelle
blanchet
moved 'SMT2' (SMTLIB2based SMT module) into Isabelle
blanchet
moved 'SMT2' (SMTLIB2based SMT module) into Isabelle
blanchet
moved 'SMT2' (SMTLIB2based SMT module) into Isabelle
blanchet
moved 'SMT2' (SMTLIB2based SMT module) into Isabelle
blanchet
moved 'SMT2' (SMTLIB2based SMT module) into Isabelle
blanchet
blanchet
parents:
blanchet
parents:
parents:
diff
diff
changeset

284 
subsection {* Schematic rules for Z3 proof reconstruction *} 
285 

624faeda77b5
286 
text {* 
287 
Several prof rules of Z3 are not very well documented. There are two 
288 
lemma groups which can turn failing Z3 proof reconstruction attempts 
289 
into succeeding ones: the facts in @{text z3_rule} are tried prior to 
290 
any implemented reconstruction procedure for all uncertain Z3 proof 
291 
rules; the facts in @{text z3_simp} are only fed to invocations of 
292 
the simplifier when reconstructing theoryspecific proof steps. 
293 
*} 
294 

295 
lemmas [z3_new_rule] = 
296 
refl eq_commute conj_commute disj_commute simp_thms nnf_simps 
297 
ring_distribs field_simps times_divide_eq_right times_divide_eq_left 
298 
if_True if_False not_not 
299 

624faeda77b5
moved 'SMT2' (SMTLIB2based SMT module) into Isabelle
blanchet
parents:
diff
changeset

300 
lemma [z3_new_rule]: 
57169  301 
"(P \<and> Q) = (\<not> (\<not> P \<or> \<not> Q))" 
302 
"(P \<and> Q) = (\<not> (\<not> Q \<or> \<not> P))" 

303 
"(\<not> P \<and> Q) = (\<not> (P \<or> \<not> Q))" 

304 
"(\<not> P \<and> Q) = (\<not> (\<not> Q \<or> P))" 

305 
"(P \<and> \<not> Q) = (\<not> (\<not> P \<or> Q))" 

306 
"(P \<and> \<not> Q) = (\<not> (Q \<or> \<not> P))" 

307 
"(\<not> P \<and> \<not> Q) = (\<not> (P \<or> Q))" 

308 
"(\<not> P \<and> \<not> Q) = (\<not> (Q \<or> P))" 

309 
by auto 
310 

624faeda77b5
lemma [z3_new_rule]: 
57169  312 
624faeda77b5
moved 'SMT2' (SMTLIB2based SMT module) into Isabelle
blanchet
parents:
diff
changeset

315 
"(True \<longrightarrow> P) = P" 
316 
"(P \<longrightarrow> True) = True" 
317 
"(False \<longrightarrow> P) = True" 
318 
"(P \<longrightarrow> P) = True" 
319 
by auto 
320 

624faeda77b5
lemma [z3_new_rule]: 
57169  322 
323 
by auto 
624faeda77b5
moved 'SMT2' (SMTLIB2based SMT module) into Isabelle
blanchet
parents:
diff
changeset

changeset

325 
624faeda77b5
moved 'SMT2' (SMTLIB2based SMT module) into Isabelle
624faeda77b5
moved 'SMT2' (SMTLIB2based SMT module) into Isabelle
624faeda77b5
moved 'SMT2' (SMTLIB2based SMT module) into Isabelle
57169  331 
"(P = False) = (\<not> P)" 
332 
"(False = P) = (\<not> P)" 

333 
"((\<not> P) = P) = False" 

334 
"(P = (\<not> P)) = False" 

335 
"((\<not> P) = (\<not> Q)) = (P = Q)" 

339 
"(P = Q) = ((\<not> P \<or> Q) \<and> (P \<or> \<not> Q))" 

parents:
diff
parents:
diff
diff
changeset

56078
624faeda77b5
"(if P then True else False) = P" 
57169  347 
"(if P then Q else \<not> Q) = (P = Q)" 

351 
"(if \<not> P then x else y) = (if P then y else x)" 

355 
blanchet
parents:
blanchet
parents:
blanchet
parents:
blanchet
parents:
blanchet
parents:
blanchet
parents:
blanchet
parents:
blanchet
parents:
blanchet
parents:
blanchet
parents:
parents:
diff
parents:
diff
parents:
diff
parents:
diff
parents:
diff
parents:
diff
parents:
diff
parents:
diff
parents:
diff
diff
changeset

377 
"P = Q \<or> P \<or> Q" 
381 
"P = (\<not> Q) \<or> \<not> P \<or> Q" 

385 
"P \<noteq> (\<not> Q) \<or> P \<or> Q" 

389 
"P \<or> \<not> Q \<or> P \<noteq> Q" 

parents:
diff
parents:
diff
"\<not> P \<or> (if P then x else y) = x" 

395 
"\<not> (if P then Q else R) \<or> P \<or> R" 

399 
"(if P then Q else \<not> R) \<or> P \<or> R" 

56078
403 
by auto 
404 

624faeda77b5
hide_type (open) pattern 
624faeda77b5
hide_const fun_app z3div z3mod 
407 
hide_const (open) trigger pat nopat 
56078
408 

624faeda77b5
end 