(* ========================================================================= *)
(* A HOL "by" tactic, doing Mizar-like things, trying something that is *)
(* sufficient for HOL's basic rules, trying a few other things like *)
(* arithmetic, and finally if all else fails using MESON_TAC[]. *)
(* ========================================================================= *)
(* ------------------------------------------------------------------------- *)
(* More refined net lookup that double-checks conditions like matchability. *)
(* ------------------------------------------------------------------------- *)
let matching_enter tm y net =
enter [] (tm,((fun tm' -> can (term_match [] tm) tm'),y)) net;;
let unconditional_enter (tm,y) net =
enter [] (tm,((fun t -> true),y)) net;;
let conditional_enter (tm,condy) net =
enter [] (tm,condy) net;;
let careful_lookup tm net =
map snd (filter (fun (c,y) -> c tm) (lookup tm net));;
(* ------------------------------------------------------------------------- *)
(* Transform theorem list to simplify, eliminate redundant connectives and *)
(* split the problem into (generally multiple) subproblems. Then, call the *)
(* prover given as the first argument on each component. *)
(* ------------------------------------------------------------------------- *)
let SPLIT_THEN =
let action_false th f oths = th
and action_true th f oths = f oths
and action_conj th f oths =
f (CONJUNCT1 th :: CONJUNCT2 th :: oths)
and action_disj th f oths =
let th1 = f (ASSUME(lhand(concl th)) :: oths)
and th2 = f (ASSUME(rand(concl th)) :: oths) in
DISJ_CASES th th1 th2
and action_taut tm =
let pfun = PART_MATCH lhs (TAUT tm) in
let prule th = EQ_MP (pfun (concl th)) th in
lhand tm,(fun th f oths -> f(prule th :: oths)) in
let enet = itlist unconditional_enter
[`F`,action_false;
`T`,action_true;
`p /\ q`,action_conj;
`p \/ q`,action_disj;
action_taut `(p ==> q) <=> ~p \/ q`;
action_taut `~F <=> T`;
action_taut `~T <=> F`;
action_taut `~(~p) <=> p`;
action_taut `~(p /\ q) <=> ~p \/ ~q`;
action_taut `~(p \/ q) <=> ~p /\ ~q`;
action_taut `~(p ==> q) <=> p /\ ~q`;
action_taut `p /\ F <=> F`;
action_taut `F /\ p <=> F`;
action_taut `p /\ T <=> p`;
action_taut `T /\ p <=> p`;
action_taut `p \/ F <=> p`;
action_taut `F \/ p <=> p`;
action_taut `p \/ T <=> T`;
action_taut `T \/ p <=> T`]
(let tm,act = action_taut `~(p <=> q) <=> p /\ ~q \/ ~p /\ q` in
let cond tm = type_of(rand(rand tm)) = bool_ty in
conditional_enter (tm,(cond,act))
(let tm,act = action_taut `(p <=> q) <=> p /\ q \/ ~p /\ ~q` in
let cond tm = type_of(rand tm) = bool_ty in
conditional_enter (tm,(cond,act)) empty_net)) in
fun prover ->
let rec splitthen splat tosplit =
match tosplit with
[] -> prover (rev splat)
| th::oths ->
let funs = careful_lookup (concl th) enet in
if funs = [] then splitthen (th::splat) oths
else (hd funs) th (splitthen splat) oths in
splitthen [];;
(* ------------------------------------------------------------------------- *)
(* A similar thing that also introduces Skolem constants (but not functions) *)
(* and does some slight first-order simplification like trivial miniscoping. *)
(* ------------------------------------------------------------------------- *)
let SPLIT_FOL_THEN =
let action_false th f splat oths = th
and action_true th f splat oths = f oths
and action_conj th f splat oths =
f (CONJUNCT1 th :: CONJUNCT2 th :: oths)
and action_disj th f splat oths =
let th1 = f (ASSUME(lhand(concl th)) :: oths)
and th2 = f (ASSUME(rand(concl th)) :: oths) in
DISJ_CASES th th1 th2
and action_exists th f splat oths =
let v,bod = dest_exists(concl th) in
let vars = itlist (union o thm_frees) (oths @ splat) (thm_frees th) in
let v' = variant vars v in
let th' = ASSUME (subst [v',v] bod) in
CHOOSE (v',th) (f (th'::oths))
and action_taut tm =
let pfun = PART_MATCH lhs (TAUT tm) in
let prule th = EQ_MP (pfun (concl th)) th in
lhand tm,(fun th f splat oths -> f(prule th :: oths))
and action_fol tm =
let pfun = PART_MATCH lhs (prove(tm,MESON_TAC[])) in
let prule th = EQ_MP (pfun (concl th)) th in
lhand tm,(fun th f splat oths -> f(prule th :: oths)) in
let enet = itlist unconditional_enter
[`F`,action_false;
`T`,action_true;
`p /\ q`,action_conj;
`p \/ q`,action_disj;
`?x. P x`,action_exists;
action_taut `~(~p) <=> p`;
action_taut `~(p /\ q) <=> ~p \/ ~q`;
action_taut `~(p \/ q) <=> ~p /\ ~q`;
action_fol `~(!x. P x) <=> (?x. ~(P x))`;
action_fol `(!x. P x /\ Q x) <=> (!x. P x) /\ (!x. Q x)`]
empty_net in
fun prover ->
let rec splitthen splat tosplit =
match tosplit with
[] -> prover (rev splat)
| th::oths ->
let funs = careful_lookup (concl th) enet in
if funs = [] then splitthen (th::splat) oths
else (hd funs) th (splitthen splat) splat oths in
splitthen [];;
(* ------------------------------------------------------------------------- *)
(* Do the basic "semantic correlates" stuff. *)
(* This is more like NNF than Mizar's version. *)
(* ------------------------------------------------------------------------- *)
let CORRELATE_RULE =
PURE_REWRITE_RULE
[TAUT `(a <=> b) <=> (a ==> b) /\ (b ==> a)`;
TAUT `(a ==> b) <=> ~a \/ b`;
DE_MORGAN_THM;
TAUT `~(~a) <=> a`;
TAUT `~T <=> F`;
TAUT `~F <=> T`;
TAUT `T /\ p <=> p`;
TAUT `p /\ T <=> p`;
TAUT `F /\ p <=> F`;
TAUT `p /\ F <=> F`;
TAUT `T \/ p <=> T`;
TAUT `p \/ T <=> T`;
TAUT `F \/ p <=> p`;
TAUT `p \/ F <=> p`;
GSYM CONJ_ASSOC; GSYM DISJ_ASSOC;
prove(`(?x. P x) <=> ~(!x. ~(P x))`,MESON_TAC[])];;
(* ------------------------------------------------------------------------- *)
(* Look for an immediate contradictory pair of theorems. This is quadratic, *)
(* but I doubt if that's much of an issue in practice. We could do something *)
(* fancier, but need to be careful over alpha-equivalence if sorting. *)
(* ------------------------------------------------------------------------- *)
let THMLIST_CONTR_RULE =
let CONTR_PAIR_THM = UNDISCH_ALL(TAUT `p ==> ~p ==> F`)
and p_tm = `p:bool` in
fun ths ->
let ths_n,ths_p = partition (is_neg o concl) ths in
let th_n = find (fun thn -> let tm = rand(concl thn) in
exists (aconv tm o concl) ths_p) ths_n in
let tm = rand(concl th_n) in
let th_p = find (aconv tm o concl) ths_p in
itlist PROVE_HYP [th_p; th_n] (INST [tm,p_tm] CONTR_PAIR_THM);;
(* ------------------------------------------------------------------------- *)
(* Hence something similar to Mizar's "prechecker". *)
(* ------------------------------------------------------------------------- *)
let PRECHECKER_THEN prover =
SPLIT_THEN (fun ths -> try THMLIST_CONTR_RULE ths
with Failure _ ->
SPLIT_FOL_THEN prover (map CORRELATE_RULE ths));;
(* ------------------------------------------------------------------------- *)
(* Lazy equations for use in congruence closure. *)
(* ------------------------------------------------------------------------- *)
type lazyeq = Lazy of (term * term) * (unit -> thm);;
let cache f =
let store = ref TRUTH in
fun () -> let th = !store in
if is_eq(concl th) then th else
let th' = f() in
(store := th'; th');;
let lazy_eq th =
Lazy((dest_eq(concl th)),(fun () -> th));;
let lazy_eval (Lazy(_,f)) = f();;
let REFL' t = Lazy((t,t),cache(fun () -> REFL t));;
let SYM' = fun (Lazy((t,t'),f)) -> Lazy((t',t),cache(fun () -> SYM(f ())));;
let TRANS' =
fun (Lazy((s,s'),f)) (Lazy((t,t'),g)) ->
if not(aconv s' t) then failwith "TRANS'"
else Lazy((s,t'),cache(fun () -> TRANS (f ()) (g ())));;
let MK_COMB' =
fun (Lazy((s,s'),f),Lazy((t,t'),g)) ->
Lazy((mk_comb(s,t),mk_comb(s',t')),cache(fun () -> MK_COMB (f (),g ())));;
let concl' = fun (Lazy(tmp,g)) -> tmp;;
(* ------------------------------------------------------------------------- *)
(* Successors of a term, and predecessor function. *)
(* ------------------------------------------------------------------------- *)
let successors tm =
try let f,x = dest_comb tm in [f;x]
with Failure _ -> [];;
let predecessor_function tms =
itlist (fun x -> itlist (fun y f -> (y |-> insert x (tryapplyd f y [])) f)
(successors x))
tms undefined;;
(* ------------------------------------------------------------------------- *)
(* A union-find structure for equivalences, with theorems for edges. *)
(* ------------------------------------------------------------------------- *)
type termnode = Nonterminal of lazyeq | Terminal of term * term list;;
type termequivalence = Equivalence of (term,termnode)func;;
let rec terminus (Equivalence f as eqv) a =
match (apply f a) with
Nonterminal(th) -> let b = snd(concl' th) in
let th',n = terminus eqv b in
TRANS' th th',n
| Terminal(t,n) -> (REFL' t,n);;
let tryterminus eqv a =
try terminus eqv a with Failure _ -> (REFL' a,[a]);;
let canonize eqv a = fst(tryterminus eqv a);;
let equate th (Equivalence f as eqv) =
let a,b = concl' th in
let (ath,na) = tryterminus eqv a
and (bth,nb) = tryterminus eqv b in
let a' = snd(concl' ath) and b' = snd(concl' bth) in
Equivalence
(if a' = b' then f else
if length na <= length nb then
let th' = TRANS' (TRANS' (SYM' ath) th) bth in
(a' |-> Nonterminal th') ((b' |-> Terminal(b',na@nb)) f)
else
let th' = TRANS'(SYM'(TRANS' th bth)) ath in
(b' |-> Nonterminal th') ((a' |-> Terminal(a',na@nb)) f));;
let unequal = Equivalence undefined;;
let equated (Equivalence f) = dom f;;
let prove_equal eqv (s,t) =
let sth = canonize eqv s and tth = canonize eqv t in
TRANS' (canonize eqv s) (SYM'(canonize eqv t));;
let equivalence_class eqv a = snd(tryterminus eqv a);;
(* ------------------------------------------------------------------------- *)
(* Prove composite terms equivalent based on 1-step congruence. *)
(* ------------------------------------------------------------------------- *)
let provecongruent eqv (tm1,tm2) =
let f1,x1 = dest_comb tm1
and f2,x2 = dest_comb tm2 in
MK_COMB'(prove_equal eqv (f1,f2),prove_equal eqv (x1,x2));;
(* ------------------------------------------------------------------------- *)
(* Merge equivalence classes given equation "th", using congruence closure. *)
(* ------------------------------------------------------------------------- *)
let rec emerge th (eqv,pfn) =
let s,t = concl' th in
let sth = canonize eqv s and tth = canonize eqv t in
let s' = snd(concl' sth) and t' = snd(concl' tth) in
if s' = t' then (eqv,pfn) else
let sp = tryapplyd pfn s' [] and tp = tryapplyd pfn t' [] in
let eqv' = equate th eqv in
let stth = canonize eqv' s' in
let sttm = snd(concl' stth) in
let pfn' = (sttm |-> union sp tp) pfn in
itlist (fun (u,v) (eqv,pfn as eqp) ->
try let thuv = provecongruent eqv (u,v) in emerge thuv eqp
with Failure _ -> eqp)
(allpairs (fun u v -> (u,v)) sp tp) (eqv',pfn');;let lth = prove_equal eqv eq in
EQ_MP (EQF_INTRO th) (lazy_eval lth) in
tryfind prover neqs;;