|
61
|
1 |
theory ExternalSolver
|
|
|
2 |
imports "../Base"
|
|
|
3 |
begin
|
|
|
4 |
|
|
81
|
5 |
section {* Using an External Solver\label{rec:external} *}
|
|
61
|
6 |
|
|
|
7 |
text {*
|
|
|
8 |
{\bf Problem:}
|
|
79
|
9 |
You want to use an external solver, because the solver might be more efficient
|
|
|
10 |
for deciding a certain class of formulae than Isabelle tactics.
|
|
61
|
11 |
\smallskip
|
|
|
12 |
|
|
79
|
13 |
{\bf Solution:} The easiest way to do this is by implementing an oracle.
|
|
|
14 |
We will also construct proofs inside Isabelle by using the results produced
|
|
|
15 |
by the oracle.
|
|
61
|
16 |
\smallskip
|
|
|
17 |
|
|
|
18 |
\begin{readmore}
|
|
|
19 |
A short introduction to oracles can be found in [isar-ref: no suitable label
|
|
|
20 |
for section 3.11]. A simple example is given in
|
|
|
21 |
@{ML_file "FOL/ex/IffOracle"}.
|
|
|
22 |
(TODO: add more references to the code)
|
|
|
23 |
\end{readmore}
|
|
|
24 |
|
|
79
|
25 |
For our explanation here, we will use the @{text metis} prover for proving
|
|
|
26 |
propositional formulae. The general method will be roughly as follows:
|
|
|
27 |
Given a goal @{text G}, we transform it into the syntactical respresentation
|
|
83
|
28 |
of @{text "metis"}, build the CNF of the negated formula and then let metis search
|
|
|
29 |
for a refutation. @{text Metis} will either return the proved goal or raise
|
|
|
30 |
an exception meaning
|
|
79
|
31 |
that it was unable to prove the goal (FIXME: is this so?).
|
|
61
|
32 |
|
|
79
|
33 |
The translation function from Isabelle propositions into formulae of
|
|
|
34 |
@{text metis} is as follows:
|
|
61
|
35 |
*}
|
|
|
36 |
|
|
79
|
37 |
ML{*fun trans t =
|
|
61
|
38 |
(case t of
|
|
|
39 |
@{term Trueprop} $ t => trans t
|
|
|
40 |
| @{term True} => Metis.Formula.True
|
|
|
41 |
| @{term False} => Metis.Formula.False
|
|
|
42 |
| @{term Not} $ t => Metis.Formula.Not (trans t)
|
|
|
43 |
| @{term "op &"} $ t1 $ t2 => Metis.Formula.And (trans t1, trans t2)
|
|
|
44 |
| @{term "op |"} $ t1 $ t2 => Metis.Formula.Or (trans t1, trans t2)
|
|
|
45 |
| @{term "op -->"} $ t1 $ t2 => Metis.Formula.Imp (trans t1, trans t2)
|
|
|
46 |
| @{term "op = :: bool => bool => bool"} $ t1 $ t2 =>
|
|
79
|
47 |
Metis.Formula.Iff (trans t1, trans t2)
|
|
61
|
48 |
| Free (n, @{typ bool}) => Metis.Formula.Atom (n, [])
|
|
79
|
49 |
| _ => error "inacceptable term")*}
|
|
|
50 |
|
|
|
51 |
|
|
|
52 |
text {*
|
|
|
53 |
An example is as follows:
|
|
|
54 |
|
|
|
55 |
@{ML_response [display,gray] "trans @{prop \"A \<and> B\"}"
|
|
|
56 |
"Metis.Formula.And
|
|
|
57 |
(Metis.Formula.Atom (\"A\", []), Metis.Formula.Atom (\"B\", []))"}
|
|
|
58 |
|
|
|
59 |
|
|
|
60 |
The next function computes the conjunctive-normal-form.
|
|
61
|
61 |
*}
|
|
|
62 |
|
|
|
63 |
|
|
79
|
64 |
ML %linenumbers{*fun make_cnfs fm =
|
|
|
65 |
fm |> Metis.Formula.Not
|
|
|
66 |
|> Metis.Normalize.cnf
|
|
|
67 |
|> map Metis.Formula.stripConj
|
|
|
68 |
|> map (map Metis.Formula.stripDisj)
|
|
|
69 |
|> map (map (map Metis.Literal.fromFormula))
|
|
|
70 |
|> map (map Metis.LiteralSet.fromList)
|
|
|
71 |
|> map (map Metis.Thm.axiom)*}
|
|
61
|
72 |
|
|
79
|
73 |
text {*
|
|
|
74 |
(FIXME: Is there a deep reason why Metis.Normalize.cnf returns a list?)
|
|
|
75 |
|
|
|
76 |
(FIXME: What does Line 8 do?)
|
|
|
77 |
|
|
83
|
78 |
(FIXME: Can this code be improved?)
|
|
79
|
79 |
|
|
|
80 |
|
|
|
81 |
Setting up the resolution.
|
|
61
|
82 |
*}
|
|
|
83 |
|
|
79
|
84 |
ML{*fun refute cls =
|
|
|
85 |
let val result =
|
|
|
86 |
Metis.Resolution.loop
|
|
|
87 |
(Metis.Resolution.new Metis.Resolution.default cls)
|
|
|
88 |
in
|
|
|
89 |
(case result of
|
|
|
90 |
Metis.Resolution.Contradiction _ => true
|
|
|
91 |
| Metis.Resolution.Satisfiable _ => false)
|
|
|
92 |
end*}
|
|
61
|
93 |
|
|
79
|
94 |
text {*
|
|
|
95 |
Stringing the functions together.
|
|
61
|
96 |
*}
|
|
|
97 |
|
|
79
|
98 |
ML{*fun solve f = List.all refute (make_cnfs f)*}
|
|
|
99 |
|
|
|
100 |
text {* Setting up the oracle*}
|
|
|
101 |
|
|
|
102 |
ML{*fun prop_dp (thy, t) =
|
|
|
103 |
if solve (trans t) then (Thm.cterm_of thy t)
|
|
|
104 |
else error "Proof failed."*}
|
|
|
105 |
|
|
61
|
106 |
oracle prop_oracle = prop_dp
|
|
|
107 |
|
|
83
|
108 |
text {* (FIXME: What does oracle do?) *}
|
|
79
|
109 |
|
|
|
110 |
|
|
|
111 |
ML{*fun prop_oracle_tac ctxt =
|
|
61
|
112 |
SUBGOAL (fn (goal, i) =>
|
|
79
|
113 |
(case (try prop_oracle (ProofContext.theory_of ctxt, goal)) of
|
|
61
|
114 |
SOME thm => rtac thm i
|
|
79
|
115 |
| NONE => no_tac))*}
|
|
|
116 |
|
|
|
117 |
text {*
|
|
|
118 |
(FIXME: The oracle returns a @{text cterm}. How is it possible
|
|
|
119 |
that I can apply this cterm with @{ML rtac}?)
|
|
61
|
120 |
*}
|
|
|
121 |
|
|
|
122 |
method_setup prop_oracle = {*
|
|
|
123 |
Method.ctxt_args (fn ctxt => Method.SIMPLE_METHOD' (prop_oracle_tac ctxt))
|
|
|
124 |
*} "Oracle-based decision procedure for propositional logic"
|
|
|
125 |
|
|
79
|
126 |
text {* (FIXME What does @{ML Method.SIMPLE_METHOD'} do?) *}
|
|
|
127 |
|
|
|
128 |
lemma test: "p \<or> \<not>p"
|
|
61
|
129 |
by prop_oracle
|
|
|
130 |
|
|
83
|
131 |
text {* (FIXME: say something about what the proof of the oracle is)
|
|
|
132 |
|
|
|
133 |
@{ML_response_fake [display,gray] "Thm.proof_of @{thm test}" "???"}
|
|
79
|
134 |
|
|
83
|
135 |
*}
|
|
|
136 |
|
|
|
137 |
|
|
79
|
138 |
|
|
61
|
139 |
lemma "((p \<longrightarrow> q) \<longrightarrow> p) \<longrightarrow> p"
|
|
|
140 |
by prop_oracle
|
|
|
141 |
|
|
|
142 |
lemma "\<forall>x::nat. x \<ge> 0"
|
|
|
143 |
sorry
|
|
|
144 |
|
|
79
|
145 |
text {*
|
|
|
146 |
(FIXME: proof reconstruction)
|
|
|
147 |
*}
|
|
61
|
148 |
|
|
79
|
149 |
|
|
|
150 |
|
|
|
151 |
text {*
|
|
|
152 |
For communication with external programs, there are the primitives
|
|
|
153 |
@{ML_text system} and @{ML_text system_out}, the latter of which captures
|
|
|
154 |
the invoked program's output. For simplicity, here, we will use metis, an
|
|
|
155 |
external solver included in the Isabelle destribution. Since it is written
|
|
|
156 |
in ML, we can call it directly without the detour of invoking an external
|
|
|
157 |
program.
|
|
|
158 |
*}
|
|
61
|
159 |
|
|
|
160 |
|
|
|
161 |
end |