1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
|
(* ========================================================================== *)
(* TACTIC RECORDING (HOL LIGHT) *)
(* - Mechanism to record tactic proofs at the user level *)
(* *)
(* By Mark Adams *)
(* Copyright (c) Univeristy of Edinburgh, 2011-2012 *)
(* ========================================================================== *)
(* This file implements a mechanism for recording tactic proofs at the level *)
(* of interactive proof steps. A recorded proof takes the form of a tree of *)
(* goals, and is capable of capturing both complete and incomplete proofs, as *)
(* well as hierarchy correspoding to tacticals. *)
(* The crucial mechanism by which goals in the subgoal package state are *)
(* linked to parts of the stored goal tree is based on unique goal id *)
(* numbers. Each goal in the subgoal package state is annotated with such an *)
(* id, and this is also stored at each level of the goal tree. As a tactic *)
(* is executed, the id from the goal in the subgoal package state that it *)
(* executes on is used to locate the corresponding part of the goal tree, and *)
(* the ids of the resulting subgoals are used to label the corresponding *)
(* subparts of the goal tree. *)
open Dltree;;
(* ** MODES ** *)
(* Store goal sequent flag *)
(* Intermediate goal results are only stored if this flag is set. This can *)
(* be used to cut down on memory usage. *)
let store_goalsequent_flag = ref true;;
(* ** GOAL TREE DATATYPES & STATE ** *)
(* Goal tree datatype *)
(* This is the datatype for recording tactic proofs as a tree of goals, with *)
(* structure corresponding to interactive proof steps. The structural aspect *)
(* is captured by 'gtree0': *)
(* Gactive - Leaf for an active goal in the proof; *)
(* Gexecuted - Node for a goal that has had a tactic successfully executed *)
(* on it. Carries a list of subtrees, one for each of the *)
(* resulting subgoals, where the list is empty for a tactic that *)
(* completes its goal; *)
(* Gexit - Wiring exiting a box, indicating destination goal. *)
type ginfo =
(goalid * goalid) (* Goal id & Parent id *)
* string option (* Goal name (optional) *)
* goal option (* Goal sequent (optional) *)
* unit option ref;; (* Formal proof (optional) *)
type gstep =
Gatom of mldata (* Atomic tactic *)
| Gbox of (label * gtree * bool) (* Box for a tactical; flag for special *)
and gtree0 =
Gactive (* Active goal *)
| Gexecuted of (gstep * (* Tactic structure *) (* Executed tactic *)
gtree list) (* Resulting subgoals *)
| Gexit of goalid (* Exit the box *)
and gtree =
ginfo (* Various info about goal *)
* gtree0 ref;; (* Goal plumbing *)
(* Example *)
(* Figure 1(b) in Denny et al would be represented by the following: *)
(* *)
(* (_, ref *)
(* Gexecuted *)
(* (Gbox (Tactical ("T1",[]) *)
(* (_, ref *)
(* Gexecuted *)
(* (Gatom ("T2",[]), *)
(* [ (_, ref Gexecuted (Gatom ("WF",[]), [])); *)
(* (_, ref Gexit _) ])), *)
(* [ (_, ref *)
(* Gexecuted *)
(* (Gbox (Tactical ("DP",[])) *)
(* (_, ref *)
(* Gexecuted *)
(* (Gatom ("Normalise",[]), *)
(* [ (_, ref Gexecuted (Gatom ("Taut",[]), [])) ])), *)
(* [])) ])) *)
(* Destructors *)
let ginfo_id (((id,_),_,_,_):ginfo) : goalid = id;;
let ginfo_pid (((_,pid),_,_,_):ginfo) : goalid = pid;;
let ginfo_name ((_,x_,_,_):ginfo) : string =
match x_ with
Some x -> x
| None -> failwith "Goal not named";;
let ginfo_sqt ((_,_,sqt_,_):ginfo) : goal =
match sqt_ with
Some sqt -> sqt
| None -> failwith "Goal sequent not stored";;
let ginfo_fproof ((_,_,_,prf_):ginfo) : unit =
match !prf_ with
Some prf -> prf
| None -> failwith "Goal's formal proof not stored";;
let gtree_id ((info,_):gtree) = ginfo_id info;;
let gtree_pid ((info,_):gtree) = ginfo_pid info;;
let gtree_name ((info,_):gtree) = ginfo_name info;;
let gtree_sqt ((info,_):gtree) = ginfo_sqt info;;
let gtree_fproof ((info,_):gtree) = ginfo_fproof info;;
let gstep_tactic (gstp:gstep) =
match gstp with
Gatom obj | Gbox (Tactical obj, _, true) -> obj
| Gbox _ -> failwith "gstep_tactic: Not an atomic tactic";;
let gtree_proof ((_,gtrm):gtree) =
match (!gtrm) with
Gexecuted (gstp,_) -> gstp
| _ -> failwith "gtree_proof: Not executed";;
let gtree_tactic gtr =
(gstep_tactic o gtree_proof) gtr;;
let gtree_tactic1 ((_,gtrm) as gtr :gtree) =
match !gtrm with
Gactive -> active_info
| _ -> gtree_tactic gtr;;
(* Tests *)
let is_active_gtree ((_,gtrm):gtree) =
match !gtrm with
Gactive -> true
| _ -> false;;
(* Dummy values *)
let dummy_goal_info : ginfo = ((0,0), None, None, ref None);;
let dummy_goal_tree : gtree = (dummy_goal_info, ref Gactive);;
(* Goal tree database *)
let the_goal_tree = ref dummy_goal_tree;;
(* Location database *)
(* This database is maintained in parallel with the goal tree, to enable fast *)
(* location of the subtree corresponding to a goal (as opposed to laboriously *)
(* traversing the tree to find the branch with the right id). *)
let the_gtree_locations = (dltree_empty () : (goalid, gtree ref) dltree);;
let get_gtree id = !(dltree_lookup id the_gtree_locations);;
let deregister_gtree gtr =
(dltree_remove (gtree_id gtr) the_gtree_locations);;
let register_gtree gtr =
(dltree_insert (gtree_id gtr, ref gtr) the_gtree_locations);;
(* Initialisation of the goal tree state *)
let init_goal_tree g =
let g_ = if (!store_goalsequent_flag) then Some g else None in
let ginfo = ((!the_goal_id_counter,0), None, g_, ref None) in
let gtr = (ginfo, ref Gactive) in
(the_goal_tree := gtr;
dltree_reempty the_gtree_locations;
register_gtree gtr);;
(* ** GTREE UTILITIES ** *)
(* All children *)
let rec gtree_all_children gtr =
let (_,gtrm) = gtr in
match (!gtrm) with
Gexecuted (gstp,gtrs)
-> (gstep_all_children gstp) @
gtrs @
flat (map gtree_all_children gtrs)
| _ -> []
and gstep_all_children gstp =
match gstp with
Gatom _ | Gbox (_,_,true) -> []
| Gbox (_,gtr,false) -> gtr::(gtree_all_children gtr);;
(* ** PLUMBING ** *)
(* These utilities do the plumbing for tactic applications and tactical *)
(* applications, promoting operations from goals to xgoals and incorporating *)
(* the results into gtrees. *)
(* Creating a sub gtree *)
(* This creates a new xgoal for a goal, giving it a fresh id and registering *)
(* it in the locations database. Used on all new subgoals. *)
let new_active_subgtree pid (g:goal) : goalid * gtree =
let id = (inc_goal_id_counter (); !the_goal_id_counter) in
let g_ = if (!store_goalsequent_flag) then Some g else None in
let info = ((id,pid), None, g_, ref None) in
let gtr = (info, ref Gactive) in
(register_gtree gtr;
(id,gtr));;
(* Extension *)
(* This extends a gtree with the subgoals resulting from applying a tactic. *)
let extend_gtree (pid:goalid) (gstp:gstep) (gs':goal list) : xgoal list =
let gtr = get_gtree pid in
let (_,gtrm) = gtr in
let () = try assert (!gtrm = Gactive)
with Assert_failure _ ->
failwith "extend_gtree: Internal error - Not active" in
let (ids',gtrs) = unzip (map (new_active_subgtree pid) gs') in
let xgs' = zip gs' ids' in
(gtrm := Gexecuted (gstp,gtrs);
xgs');;
(* Deletion *)
(* This deletes from a gtree the result of applying a tactic to a given goal, *)
(* also deleting the resulting subgoals from the locations database. *)
let delete_step (id:goalid) =
let gtr = get_gtree id in
let (_,gtrm) = gtr in
let () = match (!gtrm) with
Gexecuted _ -> ()
| _ -> failwith "delete_step: Internal error - Not executed" in
let gtrs = gtree_all_children gtr in
(gtrm := Gactive;
do_list deregister_gtree gtrs);;
(* Externalising *)
(* This is used for turning a box's active subgoal to exit wiring. *)
let externalise_gtree ((id0,id):goalid*goalid) : unit =
let (_,gtrm) = get_gtree id0 in
match (!gtrm) with
Gactive -> (gtrm := Gexit id)
| _ -> failwith "externalise_gtree: Internal error - Not active";;
(* ** SUBGOAL PACKAGE OPERATIONS FOR XGOALS ** *)
(* A few of the xtactic subgoal package commands are adjusted here. *)
(* Starting/finishing a tactic proof *)
(* For commands that start a tactic proof, 'mk_xgoalstate' is adjusted to *)
(* initialise the goal tree. Commands that return a tactic proof's resulting *)
(* theorem, the theorem is adjusted to be an 'xthm' that carries a reference *)
(* to the goal tree. *)
let mk_xgoalstate (g:goal) : xgoalstate =
let result = mk_xgoalstate g in
(init_goal_tree g;
result);;
let (xTAC_PROOF : goal * xtactic -> thm) =
fun (g,tac) ->
let gstate = mk_xgoalstate g in
let _,sgs,just = xby tac gstate in
if sgs = [] then just null_inst []
else failwith "TAC_PROOF: Unsolved goals";;
let xprove(t,tac) =
let th = xTAC_PROOF(([],t),tac) in
let t' = concl th in
let th' =
if t' = t then th else
try EQ_MP (ALPHA t' t) th
with Failure _ -> failwith "prove: justification generated wrong theorem" in
mk_xthm (th', ("<tactic-proof>",[]))
let xset_goal(asl,w) =
current_xgoalstack :=
[mk_xgoalstate(map (fun t -> "",ASSUME t) asl,w)];
!current_xgoalstack;;
let xg t =
let fvs = sort (<) (map (fst o dest_var) (frees t)) in
(if fvs <> [] then
let errmsg = end_itlist (fun s t -> s^", "^t) fvs in
warn true ("Free variables in goal: "^errmsg)
else ());
xset_goal([],t);;
(* Undoing a tactic proof step *)
(* 'xb' needs to be adjusted to delete the undone step in the goal tree. *)
let xb () =
let result = xb () in
let (_,xgs,_) = hd result in
let (_,id) = hd xgs in
(delete_step id;
result);;
(* ** GTREE OPERATIONS ** *)
(* Goal id graph *)
let rec gtree_graph0 gtr graph0 =
let (info,gtrm) = gtr in
let ((id,pid),_,g_,_) = info in
match !gtrm with
Gactive
-> (pid,id)::graph0
| Gexit id
-> failwith "???"
| Gexecuted (_,gtrs)
-> (pid,id)::(foldr gtree_graph0 gtrs graph0);;
let gtree_graph () =
let nns = gtree_graph0 (!the_goal_tree) [] in
tl nns;; (* remove (0,0) at head of dumped list *)
(* Goal id trace *)
let rec gtree_id_trace gtr =
let (_,gtrm) = gtr in
match !gtrm with
Gactive
-> [gtree_id gtr]
| Gexit id
-> let gtr1 = get_gtree id in
gtree_id_trace gtr1
| Gexecuted (gstp,gtrs1)
-> (match gstp with
Gatom _ | Gbox (_,_,true)
-> (gtree_id gtr) :: flat (map gtree_id_trace gtrs1)
| Gbox (_,gtr1,false)
-> gtree_id_trace gtr1);;
(* Tactic trace *)
let rec gtree_tactic_trace gtr =
map (gtree_tactic1 o get_gtree) (gtree_id_trace gtr);;
|
