(* Title: HOL/ex/meson


ID: $Id$


Author: Lawrence C Paulson, Cambridge University Computer Laboratory


Copyright 1992 University of Cambridge


The MESON resolution proof procedure for HOL


When making clauses, avoids using the rewriter  instead uses RS recursively


*)


writeln"File HOL/ex/meson.";


(*Prove theorems using fast_tac*)


fun prove_fun s =


prove_goal HOL.thy s


(fn prems => [ cut_facts_tac prems 1, fast_tac HOL_cs 1 ]);


(**** Negation Normal Form ****)


(*** de Morgan laws ***)


val not_conjD = prove_fun "~(P&Q) ==> ~P  ~Q";


val not_disjD = prove_fun "~(PQ) ==> ~P & ~Q";


val not_notD = prove_fun "~~P ==> P";


val not_allD = prove_fun "~(! x.P(x)) ==> ? x. ~P(x)";


val not_exD = prove_fun "~(? x.P(x)) ==> ! x. ~P(x)";


(*** Removal of > and <> (positive and negative occurrences) ***)


val imp_to_disjD = prove_fun "P>Q ==> ~P  Q";


val not_impD = prove_fun "~(P>Q) ==> P & ~Q";


val iff_to_disjD = prove_fun "P=Q ==> (~P  Q) & (~Q  P)";


(*Much more efficient than (P & ~Q)  (Q & ~P) for computing CNF*)


val not_iffD = prove_fun "~(P=Q) ==> (P  Q) & (~P  ~Q)";


(**** Pulling out the existential quantifiers ****)


(*** Conjunction ***)


val conj_exD1 = prove_fun "(? x.P(x)) & Q ==> ? x. P(x) & Q";


val conj_exD2 = prove_fun "P & (? x.Q(x)) ==> ? x. P & Q(x)";


(*** Disjunction ***)


(*DO NOT USE with forallSkolemization: makes fewer schematic variables!!


With exSkolemization, makes fewer Skolem constants*)


val disj_exD = prove_fun "(? x.P(x))  (? x.Q(x)) ==> ? x. P(x)  Q(x)";


val disj_exD1 = prove_fun "(? x.P(x))  Q ==> ? x. P(x)  Q";


val disj_exD2 = prove_fun "P  (? x.Q(x)) ==> ? x. P  Q(x)";


(**** Skolemization  pulling "?" over "!" ****)


(*"Axiom" of Choice, proved using the description operator*)


val [major] = goal HOL.thy


"! x. ? y. Q x y ==> ? f. ! x. Q x (f x)";


by (cut_facts_tac [major] 1);


by (fast_tac (HOL_cs addEs [selectI]) 1);


qed "choice";


(***** Generating clauses for the Meson Proof Procedure *****)


(*** Disjunctions ***)


val disj_assoc = prove_fun "(PQ)R ==> P(QR)";


val disj_comm = prove_fun "PQ ==> QP";


val disj_FalseD1 = prove_fun "FalseP ==> P";


val disj_FalseD2 = prove_fun "PFalse ==> P";


(*** Generation of contrapositives ***)


(*Inserts negated disjunct after removing the negation; P is a literal*)


val [major,minor] = goal HOL.thy "~PQ ==> ((~P==>P) ==> Q)";


by (rtac (major RS disjE) 1);


by (rtac notE 1);


by (etac minor 2);


by (ALLGOALS assume_tac);


qed "make_neg_rule";


(*For Plaisted's "Postive refinement" of the MESON procedure*)


val [major,minor] = goal HOL.thy "~PQ ==> (P ==> Q)";


by (rtac (major RS disjE) 1);


by (rtac notE 1);


by (rtac minor 2);


by (ALLGOALS assume_tac);


qed "make_refined_neg_rule";


(*P should be a literal*)


val [major,minor] = goal HOL.thy "PQ ==> ((P==>~P) ==> Q)";


by (rtac (major RS disjE) 1);


by (rtac notE 1);


by (etac minor 1);


by (ALLGOALS assume_tac);


qed "make_pos_rule";


(*** Generation of a goal clause  put away the final literal ***)


106 
107 
108 
109 
110 
111 


val [major,minor] = goal HOL.thy "P ==> ((P==>~P) ==> False)";


by (rtac notE 1);


by (rtac minor 1);


by (ALLGOALS (rtac major));


qed "make_pos_goal";


(**** Lemmas for forward proof (like congruence rules) ****)


(*NOTE: could handle conjunctions (faster?) by


nf(th RS conjunct2) RS (nf(th RS conjunct1) RS conjI) *)


val major::prems = goal HOL.thy


"[ P'&Q'; P' ==> P; Q' ==> Q ] ==> P&Q";


by (rtac (major RS conjE) 1);


by (rtac conjI 1);


by (ALLGOALS (eresolve_tac prems));


qed "conj_forward";


val major::prems = goal HOL.thy


"[ P'Q'; P' ==> P; Q' ==> Q ] ==> PQ";


by (rtac (major RS disjE) 1);


by (ALLGOALS (dresolve_tac prems));


by (ALLGOALS (eresolve_tac [disjI1,disjI2]));


qed "disj_forward";


val major::prems = goal HOL.thy


"[ ! x. P'(x); !!x. P'(x) ==> P(x) ] ==> ! x. P(x)";


by (rtac allI 1);


by (resolve_tac prems 1);


by (rtac (major RS spec) 1);


qed "all_forward";


val major::prems = goal HOL.thy


"[ ? x. P'(x); !!x. P'(x) ==> P(x) ] ==> ? x. P(x)";


by (rtac (major RS exE) 1);


by (rtac exI 1);


by (eresolve_tac prems 1);


qed "ex_forward";


(**** Operators for forward proof ****)


(*raises exception if no rules apply  unlike RL*)


fun tryres (th, rl::rls) = (th RS rl handle THM _ => tryres(th,rls))


 tryres (th, []) = raise THM("tryres", 0, [th]);


val prop_of = #prop o rep_thm;


160 
161 
case Sequence.pull


(tapply(ALLGOALS (METAHYPS (fn [prem] => rtac (nf prem) 1)),


state))


of Some(th,_) => th


 None => raise THM("forward_res", 0, [state]);


168 


val nnf_rls = [imp_to_disjD, iff_to_disjD, not_conjD, not_disjD,


not_impD, not_iffD, not_allD, not_exD, not_notD];


fun make_nnf th = make_nnf (tryres(th, nnf_rls))


handle THM _ =>


forward_res make_nnf


(tryres(th, [conj_forward,disj_forward,all_forward,ex_forward]))


handle THM _ => th;


179 
180 
181 
182 
183 
184 
185 
186 


188 
189 
190 
191 
192 
193 
194 
195 
196 


(**** Clause handling ****)


fun literals (Const("Trueprop",_) $ P) = literals P


202 
203 
204 


206 
207 


209 
210 
212 
213 


215 
Cannot rely on "variant", since variables might coincide when literals


are joined to make a clause...


19 chooses "U" as the first variable name*)


val name_ref = ref 19;


(*Replaces universally quantified variables by FREE variables  because


223 
let val sth = th RS spec


radixstring(26, "A", !name_ref))


in read_instantiate [("x", newname)] sth end;


229 
230 


(*Conjunctive normal form, detecting tautologies early.


Strips universal quantifiers and breaks up conjunctions. *)


fun cnf_aux seen (th,ths) =


if taut_lits (literals(prop_of th) @ seen) then ths


236 
237 
cnf_aux seen (th RS conjunct2, ths))


handle THM _ => (*universal quant?*)


240 
cnf_aux seen (freeze_spec th, ths)


241 
handle THM _ => (*disjunction?*)


242 
let val tac =


243 
(METAHYPS (resop (cnf_nil seen)) 1) THEN


244 
(STATE (fn st' =>


245 
METAHYPS (resop (cnf_nil (literals (concl_of st') @ seen))) 1))


246 
in Sequence.list_of_s (tapply(tac, th RS disj_forward)) @ ths


247 
end


248 
and cnf_nil seen th = cnf_aux seen (th,[]);


249 


250 
(*Toplevel call to cnf  it's safe to reset name_ref*)


251 
fun cnf (th,ths) =


252 
(name_ref := 19; cnf (th RS conjunct1, cnf (th RS conjunct2, ths))


253 
handle THM _ => (*not a conjunction*) cnf_aux [] (th, ths));


254 


255 
(**** Removal of duplicate literals ****)


256 


257 
(*Version for removal of duplicate literals*)


258 
val major::prems = goal HOL.thy


259 
"[ P'Q'; P' ==> P; [ Q'; P==>False ] ==> Q ] ==> PQ";


260 
by (rtac (major RS disjE) 1);


261 
by (rtac disjI1 1);


262 
by (rtac (disjCI RS disj_comm) 2);


263 
by (ALLGOALS (eresolve_tac prems));


264 
by (etac notE 1);


265 
by (assume_tac 1);


266 
qed "disj_forward2";


267 


268 
(*Forward proof, passing extra assumptions as theorems to the tactic*)


269 
fun forward_res2 nf hyps state =


270 
case Sequence.pull


271 
(tapply(REPEAT


272 
(METAHYPS (fn major::minors => rtac (nf (minors@hyps) major) 1) 1),


273 
state))


274 
of Some(th,_) => th


275 
 None => raise THM("forward_res2", 0, [state]);


276 


277 
(*Remove duplicates in PQ by assuming ~P in Q


278 
rls (initially []) accumulates assumptions of the form P==>False*)


279 
fun nodups_aux rls th = nodups_aux rls (th RS disj_assoc)


280 
handle THM _ => tryres(th,rls)


281 
handle THM _ => tryres(forward_res2 nodups_aux rls (th RS disj_forward2),


282 
[disj_FalseD1, disj_FalseD2, asm_rl])


283 
handle THM _ => th;


284 


285 
(*Remove duplicate literals, if there are any*)


286 
fun nodups th =


287 
if null(findrep(literals(prop_of th))) then th


288 
else nodups_aux [] th;


289 


290 


291 
(**** Generation of contrapositives ****)


292 


293 
(*Associate disjuctions to right  make leftmost disjunct a LITERAL*)


294 
fun assoc_right th = assoc_right (th RS disj_assoc)


295 
handle THM _ => th;


296 


297 
(*Must check for negative literal first!*)


298 
val clause_rules = [disj_assoc, make_neg_rule, make_pos_rule];


299 
val refined_clause_rules = [disj_assoc, make_refined_neg_rule, make_pos_rule];


300 


301 
(*Create a goal or support clause, conclusing False*)


302 
fun make_goal th = (*Must check for negative literal first!*)


303 
make_goal (tryres(th, clause_rules))


304 
handle THM _ => tryres(th, [make_neg_goal, make_pos_goal]);


305 


306 
(*Sort clauses by number of literals*)


307 
fun fewerlits(th1,th2) = nliterals(prop_of th1) < nliterals(prop_of th2);


308 


309 
(*TAUTOLOGY CHECK SHOULD NOT BE NECESSARY!*)


310 
fun sort_clauses ths = sort fewerlits (filter (not o is_taut) ths);


311 


312 
(*Convert all suitable free variables to schematic variables*)


313 
fun generalize th = forall_elim_vars 0 (forall_intr_frees th);


314 


315 
(*make clauses from a list of theorems*)


316 
fun make_clauses ths =


317 
sort_clauses (map (generalize o nodups) (foldr cnf (ths,[])));


318 


319 
(*Create a Horn clause*)


320 
fun make_horn crules th = make_horn crules (tryres(th,crules))


321 
handle THM _ => th;


322 


323 
(*Generate Horn clauses for all contrapositives of a clause*)


324 
fun add_contras crules (th,hcs) =


325 
let fun rots (0,th) = hcs


326 
 rots (k,th) = zero_var_indexes (make_horn crules th) ::


327 
rots(k1, assoc_right (th RS disj_comm))


328 
in case nliterals(prop_of th) of


329 
1 => th::hcs


330 
 n => rots(n, assoc_right th)


331 
end;


332 


333 
(*Convert a list of clauses to (contrapositive) Horn clauses*)


334 
fun make_horns ths = foldr (add_contras clause_rules) (ths,[]);


335 


336 
(*Find an allnegative support clause*)


337 
fun is_negative th = forall (not o #1) (literals (prop_of th));


338 


339 
val neg_clauses = filter is_negative;


340 


341 


342 
(***** MESON PROOF PROCEDURE *****)


343 


344 
fun rhyps (Const("==>",_) $ (Const("Trueprop",_) $ A) $ phi,


345 
As) = rhyps(phi, A::As)


346 
 rhyps (_, As) = As;


347 


348 
(** Detecting repeated assumptions in a subgoal **)


349 


350 
(*The stringtree detects repeated assumptions.*)


351 
fun ins_term (net,t) = Net.insert_term((t,t), net, op aconv);


352 


353 
(*detects repetitions in a list of terms*)


354 
fun has_reps [] = false


355 
 has_reps [_] = false


356 
 has_reps [t,u] = (t aconv u)


357 
 has_reps ts = (foldl ins_term (Net.empty, ts); false)


358 
handle INSERT => true;


359 


360 
(*Loop checking: FAIL if trying to prove the same thing twice


361 
 repeated literals*)


362 
val check_tac = SUBGOAL (fn (prem,_) =>


363 
if has_reps (rhyps(prem,[])) then no_tac else all_tac);


364 


365 
(* net_resolve_tac actually made it slower... *)


366 
fun prolog_step_tac horns i =


367 
(assume_tac i APPEND resolve_tac horns i) THEN


368 
(ALLGOALS check_tac) THEN


369 
(TRYALL eq_assume_tac);


370 


371 


372 
(*Sums the sizes of the subgoals, ignoring hypotheses (ancestors)*)


373 
local fun addconcl(prem,sz) = size_of_term (Logic.strip_assums_concl prem) + sz


374 
in


375 
fun size_of_subgoals st = foldr addconcl (prems_of st, 0)


376 
end;


377 


378 
(*Could simply use nprems_of, which would count remaining subgoals  no


379 
discrimination as to their size! With BEST_FIRST, fails for problem 41.*)


380 


381 
fun best_prolog_tac sizef horns =


382 
BEST_FIRST (has_fewer_prems 1, sizef) (prolog_step_tac horns 1);


383 


384 
fun depth_prolog_tac horns =


385 
DEPTH_FIRST (has_fewer_prems 1) (prolog_step_tac horns 1);


386 


387 
(*Return all negative clauses, as possible goal clauses*)


388 
fun gocls cls = map make_goal (neg_clauses cls);


389 


390 


391 
fun skolemize_tac prems =


392 
cut_facts_tac (map (skolemize o make_nnf) prems) THEN'


393 
REPEAT o (etac exE);


394 


395 
fun MESON sko_tac = SELECT_GOAL


396 
(EVERY1 [rtac ccontr,


397 
METAHYPS (fn negs =>


398 
EVERY1 [skolemize_tac negs,


399 
METAHYPS (sko_tac o make_clauses)])]);


400 


401 
fun best_meson_tac sizef =


402 
MESON (fn cls =>


403 
resolve_tac (gocls cls) 1


404 
THEN_BEST_FIRST


405 
(has_fewer_prems 1, sizef,


406 
prolog_step_tac (make_horns cls) 1));


407 


408 
(*First, breaks the goal into independent units*)


409 
val safe_meson_tac =


410 
SELECT_GOAL (TRY (safe_tac HOL_cs) THEN


411 
TRYALL (best_meson_tac size_of_subgoals));


412 


413 
val depth_meson_tac =


414 
MESON (fn cls => EVERY [resolve_tac (gocls cls) 1,


415 
depth_prolog_tac (make_horns cls)]);


416 


417 
writeln"Reached end of file.";
