author | Christian Urban <urbanc@in.tum.de> |
Sat, 07 Feb 2009 12:05:02 +0000 | |
changeset 102 | 5e309df58557 |
parent 99 | de625e5f6a36 |
child 104 | 5dcad9348e4d |
permissions | -rw-r--r-- |
93 | 1 |
theory Tactical |
99 | 2 |
imports Base FirstSteps |
93 | 3 |
begin |
4 |
||
5 |
chapter {* Tactical Reasoning\label{chp:tactical} *} |
|
6 |
||
7 |
text {* |
|
8 |
||
102
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
9 |
The main reason for descending to the ML-level of Isabelle is to be |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
10 |
able to implement automatic proof procedures. Such proof procedures usually |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
11 |
lessen considerably the burden of manual reasoning, for example, when |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
12 |
introducing new definitions. These proof procedures are centred around |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
13 |
refining a goal state using tactics. This is similar to the @{text |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
14 |
apply}-style reasoning at the user level, where goals are modified in a |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
15 |
sequence of proof steps until all of them are solved. However, there are |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
16 |
also more structured operations available on the ML-level that help with |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
17 |
the handling of variables and assumptions. |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
18 |
|
93 | 19 |
*} |
20 |
||
102
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
21 |
section {* Basics of Reasoning with Tactics*} |
93 | 22 |
|
23 |
text {* |
|
102
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
24 |
To see how tactics work, let us first transcribe a simple \isacommand{apply}-style proof |
93 | 25 |
into ML. Consider the following proof. |
26 |
*} |
|
27 |
||
28 |
lemma disj_swap: "P \<or> Q \<Longrightarrow> Q \<or> P" |
|
29 |
apply(erule disjE) |
|
30 |
apply(rule disjI2) |
|
31 |
apply(assumption) |
|
32 |
apply(rule disjI1) |
|
33 |
apply(assumption) |
|
34 |
done |
|
35 |
||
36 |
text {* |
|
37 |
This proof translates to the following ML-code. |
|
38 |
||
39 |
@{ML_response_fake [display,gray] |
|
40 |
"let |
|
41 |
val ctxt = @{context} |
|
42 |
val goal = @{prop \"P \<or> Q \<Longrightarrow> Q \<or> P\"} |
|
43 |
in |
|
44 |
Goal.prove ctxt [\"P\", \"Q\"] [] goal |
|
45 |
(fn _ => |
|
46 |
etac @{thm disjE} 1 |
|
47 |
THEN rtac @{thm disjI2} 1 |
|
48 |
THEN atac 1 |
|
49 |
THEN rtac @{thm disjI1} 1 |
|
50 |
THEN atac 1) |
|
51 |
end" "?P \<or> ?Q \<Longrightarrow> ?Q \<or> ?P"} |
|
52 |
||
53 |
To start the proof, the function @{ML "Goal.prove"}~@{text "ctxt xs As C |
|
99 | 54 |
tac"} sets up a goal state for proving the goal @{text C} |
55 |
(that is @{prop "P \<or> Q \<Longrightarrow> Q \<or> P"} in the proof at hand) under the |
|
56 |
assumptions @{text As} (happens to be empty) with the variables |
|
93 | 57 |
@{text xs} that will be generalised once the goal is proved (in our case |
58 |
@{text P} and @{text Q}). The @{text "tac"} is the tactic that proves the goal; |
|
59 |
it can make use of the local assumptions (there are none in this example). |
|
60 |
The functions @{ML etac}, @{ML rtac} and @{ML atac} correspond to |
|
61 |
@{text erule}, @{text rule} and @{text assumption}, respectively. |
|
102
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
62 |
The operator @{ML THEN} strings the tactics together. A difference |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
63 |
between the \isacommand{apply}-script and the ML-code is that the |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
64 |
former causes the lemma to be stored under the name @{text "disj_swap"}, |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
65 |
whereas the latter does not include any code for this. |
93 | 66 |
|
67 |
\begin{readmore} |
|
99 | 68 |
To learn more about the function @{ML Goal.prove} see \isccite{sec:results} |
69 |
and the file @{ML_file "Pure/goal.ML"}. For more information about the |
|
70 |
internals of goals see \isccite{sec:tactical-goals}. See @{ML_file |
|
71 |
"Pure/tactic.ML"} and @{ML_file "Pure/tctical.ML"} for the code of basic |
|
72 |
tactics and tactic combinators; see also Chapters 3 and 4 in the old |
|
73 |
Isabelle Reference Manual. |
|
93 | 74 |
\end{readmore} |
75 |
||
76 |
Note that we used antiquotations for referencing the theorems. We could also |
|
77 |
just have written @{ML "etac disjE 1"} and so on, but this is considered bad |
|
78 |
style. The reason is that the binding for @{ML disjE} can be re-assigned by |
|
79 |
the user and thus one does not have complete control over which theorem is |
|
80 |
actually applied. This problem is nicely prevented by using antiquotations, |
|
81 |
because then the theorems are fixed statically at compile-time. |
|
82 |
||
102
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
83 |
During the development of automatic proof procedures, you will often find it |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
84 |
necessary to test a tactic on examples. This can be conveniently |
93 | 85 |
done with the command \isacommand{apply}@{text "(tactic \<verbopen> \<dots> \<verbclose>)"}. |
86 |
Consider the following sequence of tactics |
|
87 |
*} |
|
88 |
||
89 |
ML{*val foo_tac = |
|
90 |
(etac @{thm disjE} 1 |
|
91 |
THEN rtac @{thm disjI2} 1 |
|
92 |
THEN atac 1 |
|
93 |
THEN rtac @{thm disjI1} 1 |
|
94 |
THEN atac 1)*} |
|
95 |
||
96 |
text {* and the Isabelle proof: *} |
|
97 |
||
98 |
lemma "P \<or> Q \<Longrightarrow> Q \<or> P" |
|
99 |
apply(tactic {* foo_tac *}) |
|
100 |
done |
|
101 |
||
102 |
text {* |
|
99 | 103 |
By using @{text "tactic \<verbopen> \<dots> \<verbclose>"} in the apply-step, |
102
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
104 |
you can call from the user level of Isabelle the tactic @{ML foo_tac} or |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
105 |
any other function that returns a tactic. |
93 | 106 |
|
102
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
107 |
The tactic @{ML foo_tac} is just a sequence of simple tactics stringed |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
108 |
together by @{ML THEN}. As can be seen, each simple tactic in @{ML foo_tac} |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
109 |
has a hard-coded number that stands for the subgoal analysed by the |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
110 |
tactic (@{text "1"} stands for the first, or top-most, subgoal). This is |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
111 |
sometimes wanted, but usually not. To avoid the explicit numbering in |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
112 |
the tactic, you can write |
93 | 113 |
*} |
114 |
||
115 |
ML{*val foo_tac' = |
|
116 |
(etac @{thm disjE} |
|
117 |
THEN' rtac @{thm disjI2} |
|
118 |
THEN' atac |
|
119 |
THEN' rtac @{thm disjI1} |
|
120 |
THEN' atac)*} |
|
121 |
||
122 |
text {* |
|
123 |
and then give the number for the subgoal explicitly when the tactic is |
|
102
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
124 |
called. For every operator that combines tactics (@{ML THEN} is only one |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
125 |
such operator), a primed version exists. So in the next proof you |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
126 |
can first discharge the second subgoal, and after that the first. |
93 | 127 |
*} |
128 |
||
129 |
lemma "P1 \<or> Q1 \<Longrightarrow> Q1 \<or> P1" |
|
130 |
and "P2 \<or> Q2 \<Longrightarrow> Q2 \<or> P2" |
|
131 |
apply(tactic {* foo_tac' 2 *}) |
|
132 |
apply(tactic {* foo_tac' 1 *}) |
|
133 |
done |
|
134 |
||
135 |
text {* |
|
102
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
136 |
This kind of addressing is more difficult to achieve when the goal is |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
137 |
hard-coded inside the tactic. |
99 | 138 |
|
102
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
139 |
The tactics @{ML foo_tac} and @{ML foo_tac'} are very specific for |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
140 |
analysing goals being only of the form @{prop "P \<or> Q \<Longrightarrow> Q \<or> P"}. If the goal is not |
99 | 141 |
of this form, then @{ML foo_tac} throws the error message: |
142 |
||
143 |
\begin{isabelle} |
|
144 |
@{text "*** empty result sequence -- proof command failed"}\\ |
|
145 |
@{text "*** At command \"apply\"."} |
|
146 |
\end{isabelle} |
|
147 |
||
148 |
Meaning the tactic failed. The reason for this error message is that tactics |
|
149 |
are functions that map a goal state to a (lazy) sequence of successor states, |
|
102
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
150 |
hence the type of a tactic is: |
93 | 151 |
|
152 |
@{text [display, gray] "type tactic = thm -> thm Seq.seq"} |
|
153 |
||
99 | 154 |
It is custom that if a tactic fails, it should return the empty sequence: |
102
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
155 |
your own tactics should not raise exceptions willy-nilly. |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
156 |
|
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
157 |
The simplest tactics are @{ML no_tac} and @{ML all_tac}. The first returns |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
158 |
the empty sequence and is defined as |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
159 |
*} |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
160 |
|
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
161 |
ML{*fun no_tac thm = Seq.empty*} |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
162 |
|
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
163 |
text {* |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
164 |
which means @{ML no_tac} always fails. The second returns the given theorem wrapped |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
165 |
as a single member sequence. It is defined as |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
166 |
*} |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
167 |
|
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
168 |
ML{*fun all_tac thm = Seq.single thm*} |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
169 |
|
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
170 |
text {* |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
171 |
which means @{ML all_tac} always succeeds (but also does not make any progress |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
172 |
with the proof). |
93 | 173 |
|
99 | 174 |
The lazy list of possible successor states shows through to the user-level |
175 |
of Isabelle when using the command \isacommand{back}. For instance in the |
|
176 |
following proof, there are two possibilities for how to apply |
|
177 |
@{ML foo_tac'}. |
|
93 | 178 |
*} |
179 |
||
180 |
lemma "\<lbrakk>P \<or> Q; P \<or> Q\<rbrakk> \<Longrightarrow> Q \<or> P" |
|
181 |
apply(tactic {* foo_tac' 1 *}) |
|
182 |
back |
|
183 |
done |
|
184 |
||
102
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
185 |
|
93 | 186 |
text {* |
99 | 187 |
By using \isacommand{back}, we construct the proof that uses the |
102
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
188 |
second assumption. In more interesting situations, different possibilities |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
189 |
can lead to different proofs and even often need to be explored when |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
190 |
a first proof attempt is unsuccessful. |
99 | 191 |
|
93 | 192 |
\begin{readmore} |
193 |
See @{ML_file "Pure/General/seq.ML"} for the implementation of lazy |
|
194 |
sequences. However in day-to-day Isabelle programming, one rarely |
|
195 |
constructs sequences explicitly, but uses the predefined functions |
|
99 | 196 |
instead. |
93 | 197 |
\end{readmore} |
198 |
||
102
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
199 |
For a beginner it might be surprising that tactics, which transform |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
200 |
one proof state to the next, are functions from theorems to theorem |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
201 |
(sequences). The surprise resolves by knowing that every |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
202 |
proof state is indeed a theorem. To shed more light on this, |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
203 |
let us modify the code of @{ML all_tac} to obtain the following |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
204 |
tactic |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
205 |
*} |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
206 |
|
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
207 |
ML{*fun my_print_tac ctxt thm = |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
208 |
let |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
209 |
val _ = warning (str_of_thm ctxt thm) |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
210 |
in |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
211 |
Seq.single thm |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
212 |
end*} |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
213 |
|
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
214 |
text {* |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
215 |
which prints out the given theorem (using the string-function defined |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
216 |
in Section~\ref{sec:printing}) and then behaves like @{ML all_tac}. We |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
217 |
now can inspect every proof state in the follwing proof. On the left-hand |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
218 |
side we show the goal state as shown by the system; on the right-hand |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
219 |
side the print out from our @{ML my_print_tac}. |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
220 |
*} |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
221 |
|
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
222 |
lemma shows "\<lbrakk>A; B\<rbrakk> \<Longrightarrow> A \<and> B" |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
223 |
apply(tactic {* my_print_tac @{context} *}) |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
224 |
|
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
225 |
txt{* \small |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
226 |
\begin{tabular}{@ {}l@ {}p{0.7\textwidth}@ {}} |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
227 |
\begin{minipage}[t]{0.3\textwidth} |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
228 |
@{subgoals [display]} |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
229 |
\end{minipage} & |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
230 |
\hfill@{text "(\<lbrakk>A; B\<rbrakk> \<Longrightarrow> A \<and> B) \<Longrightarrow> (\<lbrakk>A; B\<rbrakk> \<Longrightarrow> A \<and> B)"} |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
231 |
\end{tabular} |
93 | 232 |
*} |
233 |
||
102
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
234 |
apply(rule conjI) |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
235 |
apply(tactic {* my_print_tac @{context} *}) |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
236 |
|
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
237 |
txt{* \small |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
238 |
\begin{tabular}{@ {}l@ {}p{0.76\textwidth}@ {}} |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
239 |
\begin{minipage}[t]{0.26\textwidth} |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
240 |
@{subgoals [display]} |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
241 |
\end{minipage} & |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
242 |
\hfill@{text "(\<lbrakk>A; B\<rbrakk> \<Longrightarrow> A) \<Longrightarrow> (\<lbrakk>A; B\<rbrakk> \<Longrightarrow> B) \<Longrightarrow> (\<lbrakk>A; B\<rbrakk> \<Longrightarrow> A \<and> B)"} |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
243 |
\end{tabular} |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
244 |
*} |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
245 |
|
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
246 |
apply(assumption) |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
247 |
apply(tactic {* my_print_tac @{context} *}) |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
248 |
|
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
249 |
txt{* \small |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
250 |
\begin{tabular}{@ {}l@ {}p{0.7\textwidth}@ {}} |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
251 |
\begin{minipage}[t]{0.3\textwidth} |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
252 |
@{subgoals [display]} |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
253 |
\end{minipage} & |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
254 |
\hfill@{text "(\<lbrakk>A; B\<rbrakk> \<Longrightarrow> B) \<Longrightarrow> (\<lbrakk>A; B\<rbrakk> \<Longrightarrow> A \<and> B)"} |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
255 |
\end{tabular} |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
256 |
*} |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
257 |
|
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
258 |
apply(assumption) |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
259 |
apply(tactic {* my_print_tac @{context} *}) |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
260 |
|
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
261 |
txt{* \small |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
262 |
\begin{tabular}{@ {}l@ {}p{0.7\textwidth}@ {}} |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
263 |
\begin{minipage}[t]{0.3\textwidth} |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
264 |
@{subgoals [display]} |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
265 |
\end{minipage} & |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
266 |
\hfill@{text "\<lbrakk>A; B\<rbrakk> \<Longrightarrow> A \<and> B"} |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
267 |
\end{tabular} |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
268 |
*} |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
269 |
|
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
270 |
done |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
271 |
|
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
272 |
text {* |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
273 |
As can be seen, internally every goal state is an implication of the form |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
274 |
|
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
275 |
@{text[display] "A\<^isub>1 \<Longrightarrow> \<dots> \<Longrightarrow> A\<^isub>n \<Longrightarrow> (C)"} |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
276 |
|
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
277 |
where @{term C} is the goal to be proved and the @{term "A\<^isub>i"} are the |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
278 |
subgoals. Since the goal @{term C} can potentially be an implication, |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
279 |
there is a protector (invisible in the print out above) wrapped around |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
280 |
it. This prevents that premises are misinterpreted as open subgoals. |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
281 |
While tactics can operate on the subgoals (the @{text "A\<^isub>i"} above), they |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
282 |
are expected to leave the conclusion @{term C} intact, with the |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
283 |
exception of possibly instantiating schematic variables. |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
284 |
|
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
285 |
*} |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
286 |
|
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
287 |
section {* Simple Tactics *} |
93 | 288 |
|
99 | 289 |
text {* |
290 |
As seen above, the function @{ML atac} corresponds to the assumption tactic. |
|
291 |
*} |
|
292 |
||
293 |
lemma shows "P \<Longrightarrow> P" |
|
93 | 294 |
apply(tactic {* atac 1 *}) |
295 |
done |
|
296 |
||
99 | 297 |
text {* |
298 |
Similarly, @{ML rtac}, @{ML dtac}, @{ML etac} and @{ML ftac} correspond |
|
102
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
299 |
to @{text rule}, @{text drule}, @{text erule} and @{text frule}, |
99 | 300 |
respectively. Below are three examples with the resulting goal state. How |
301 |
they work should therefore be self-explanatory. |
|
302 |
*} |
|
303 |
||
304 |
lemma shows "P \<and> Q" |
|
93 | 305 |
apply(tactic {* rtac @{thm conjI} 1 *}) |
99 | 306 |
txt{*@{subgoals [display]}*} |
93 | 307 |
(*<*)oops(*>*) |
308 |
||
99 | 309 |
lemma shows "P \<and> Q \<Longrightarrow> False" |
93 | 310 |
apply(tactic {* etac @{thm conjE} 1 *}) |
99 | 311 |
txt{*@{subgoals [display]}*} |
93 | 312 |
(*<*)oops(*>*) |
313 |
||
314 |
lemma shows "False \<and> True \<Longrightarrow> False" |
|
315 |
apply(tactic {* dtac @{thm conjunct2} 1 *}) |
|
99 | 316 |
txt{*@{subgoals [display]}*} |
93 | 317 |
(*<*)oops(*>*) |
318 |
||
319 |
text {* |
|
99 | 320 |
As mentioned above, most basic tactics take a number as argument, which |
321 |
addresses to subgoal they are analysing. |
|
322 |
*} |
|
323 |
||
324 |
lemma shows "Foo" and "P \<and> Q" |
|
325 |
apply(tactic {* rtac @{thm conjI} 2 *}) |
|
326 |
txt {*@{subgoals [display]}*} |
|
327 |
(*<*)oops(*>*) |
|
328 |
||
329 |
text {* |
|
330 |
Corresponding to @{ML rtac}, there is also the tactic @{ML resolve_tac}, which |
|
331 |
however expects a list of theorems as arguments. From this list it will apply with |
|
332 |
the first applicable theorem (later theorems that are also applicable can be |
|
333 |
explored via the lazy sequences mechanism). Given the abbreviation |
|
93 | 334 |
*} |
335 |
||
99 | 336 |
ML{*val resolve_tac_xmp = resolve_tac [@{thm impI}, @{thm conjI}]*} |
337 |
||
338 |
text {* |
|
339 |
an example for @{ML resolve_tac} is the following proof where first an outermost |
|
340 |
implication is analysed and then an outermost conjunction. |
|
341 |
*} |
|
342 |
||
343 |
lemma shows "C \<longrightarrow> (A \<and> B)" and "(A \<longrightarrow> B) \<and> C" |
|
344 |
apply(tactic {* resolve_tac_xmp 1 *}) |
|
345 |
apply(tactic {* resolve_tac_xmp 2 *}) |
|
346 |
txt{* @{subgoals [display]} *} |
|
347 |
(*<*)oops(*>*) |
|
348 |
||
349 |
text {* |
|
350 |
Similarly versions exists for @{ML atac} (@{ML assume_tac}), @{ML etac} |
|
351 |
(@{ML eresolve_tac}) and so on. |
|
352 |
||
353 |
The tactic @{ML print_tac} is useful for low-level debugging of tactics: it |
|
354 |
prints out a message and the current goal state. |
|
355 |
*} |
|
356 |
||
357 |
lemma shows "False \<Longrightarrow> True" |
|
93 | 358 |
apply(tactic {* print_tac "foo message" *}) |
359 |
(*<*)oops(*>*) |
|
360 |
||
99 | 361 |
text {* |
102
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
362 |
Also for useful for debugging purposes are the tactics @{ML all_tac} and |
99 | 363 |
@{ML no_tac}. The former always succeeds (but does not change the goal state), and |
364 |
the latter always fails. |
|
95
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
365 |
|
99 | 366 |
(FIXME explain RS MRS) |
95
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
367 |
|
99 | 368 |
Often proofs involve elaborate operations on assumptions and variables |
369 |
@{text "\<And>"}-quantified in the goal state. To do such operations on the ML-level |
|
370 |
using the basic tactics, is very unwieldy and brittle. Some convenience and |
|
371 |
safety is provided by the tactic @{ML SUBPROOF}. This tactic fixes the parameters |
|
372 |
and binds the various components of a proof state into a record. |
|
95
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
373 |
*} |
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
374 |
|
99 | 375 |
text_raw{* |
376 |
\begin{figure} |
|
377 |
\begin{isabelle} |
|
378 |
*} |
|
95
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
379 |
ML{*fun sp_tac {prems, params, asms, concl, context, schematics} = |
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
380 |
let |
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
381 |
val str_of_params = str_of_cterms context params |
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
382 |
val str_of_asms = str_of_cterms context asms |
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
383 |
val str_of_concl = str_of_cterm context concl |
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
384 |
val str_of_prems = str_of_thms context prems |
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
385 |
val str_of_schms = str_of_cterms context (snd schematics) |
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
386 |
|
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
387 |
val _ = (warning ("params: " ^ str_of_params); |
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
388 |
warning ("schematics: " ^ str_of_schms); |
102
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
389 |
warning ("assumptions: " ^ str_of_asms); |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
390 |
warning ("conclusion: " ^ str_of_concl); |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
391 |
warning ("premises: " ^ str_of_prems)) |
95
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
392 |
in |
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
393 |
no_tac |
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
394 |
end*} |
99 | 395 |
text_raw{* |
396 |
\end{isabelle} |
|
397 |
\caption{A function that prints out the various parameters provided by the tactic |
|
398 |
@{ML SUBPROOF}. It uses the functions extracting strings from @{ML_type cterm}s |
|
399 |
and @{ML_type thm}s, which are defined in Section~\ref{sec:printing}.\label{fig:sptac}} |
|
400 |
\end{figure} |
|
401 |
*} |
|
95
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
402 |
|
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
403 |
text {* |
99 | 404 |
To see what happens, assume the function defined in Figure~\ref{fig:sptac}, which |
405 |
takes a record as argument and just prints out the content of this record (using the |
|
406 |
string transformation functions defined in Section~\ref{sec:printing}). Consider |
|
407 |
now the proof |
|
95
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
408 |
*} |
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
409 |
|
99 | 410 |
lemma shows "\<And>x y. A x y \<Longrightarrow> B y x \<longrightarrow> C (?z y) x" |
95
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
411 |
apply(tactic {* SUBPROOF sp_tac @{context} 1 *})? |
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
412 |
|
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
413 |
txt {* |
99 | 414 |
which yields the printout: |
95
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
415 |
|
99 | 416 |
\begin{quote}\small |
95
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
417 |
\begin{tabular}{ll} |
102
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
418 |
params: & @{term x}, @{term y}\\ |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
419 |
schematics: & @{term z}\\ |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
420 |
assumptions: & @{term "A x y"}\\ |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
421 |
conclusion: & @{term "B y x \<longrightarrow> C (z y) x"}\\ |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
422 |
premises: & @{term "A x y"} |
95
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
423 |
\end{tabular} |
99 | 424 |
\end{quote} |
425 |
||
426 |
Note in the actual output the brown colour of the variables @{term x} and |
|
427 |
@{term y}. Although parameters in the original goal, they are fixed inside |
|
428 |
the subproof. Similarly the schematic variable @{term z}. The assumption |
|
429 |
is bound once as @{ML_type cterm} to the record-variable @{text asms} and |
|
430 |
another time as @{ML_type thm} to @{text prems}. |
|
95
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
431 |
|
99 | 432 |
Notice also that we had to append @{text "?"} to \isacommand{apply}. The |
433 |
reason is that @{ML SUBPROOF} normally expects that the subgoal is solved completely. |
|
434 |
Since in the function @{ML sp_tac} we returned the tactic @{ML no_tac}, the subproof |
|
435 |
obviously fails. The question-mark allows us to recover from this failure |
|
436 |
in a graceful manner so that the warning messages are not overwritten |
|
437 |
by the error message. |
|
438 |
||
439 |
If we continue the proof script by applying the @{text impI}-rule |
|
95
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
440 |
*} |
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
441 |
|
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
442 |
apply(rule impI) |
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
443 |
apply(tactic {* SUBPROOF sp_tac @{context} 1 *})? |
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
444 |
|
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
445 |
txt {* |
99 | 446 |
then @{ML SUBPROOF} prints out |
95
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
447 |
|
99 | 448 |
\begin{quote}\small |
95
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
449 |
\begin{tabular}{ll} |
102
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
450 |
params: & @{term x}, @{term y}\\ |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
451 |
schematics: & @{term z}\\ |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
452 |
assumptions: & @{term "A x y"}, @{term "B y x"}\\ |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
453 |
conclusion: & @{term "C (z y) x"}\\ |
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
454 |
premises: & @{term "A x y"}, @{term "B y x"} |
95
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
455 |
\end{tabular} |
99 | 456 |
\end{quote} |
95
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
457 |
*} |
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
458 |
(*<*)oops(*>*) |
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
459 |
|
99 | 460 |
text {* |
461 |
where we now also have @{term "B y x"} as assumption. |
|
462 |
||
463 |
One convenience of @{ML SUBPROOF} is that we can apply assumption |
|
464 |
using the usual tactics, because the parameter @{text prems} |
|
465 |
contains the assumptions as theorems. With this we can easily |
|
466 |
implement a tactic that almost behaves like @{ML atac}: |
|
467 |
*} |
|
468 |
||
469 |
lemma shows "\<And>x y. \<lbrakk>B x y; A x y; C x y\<rbrakk> \<Longrightarrow> A x y" |
|
470 |
apply(tactic |
|
471 |
{* SUBPROOF (fn {prems, ...} => resolve_tac prems 1) @{context} 1 *}) |
|
472 |
txt{* yields |
|
473 |
@{subgoals [display]} *} |
|
474 |
(*<*)oops(*>*) |
|
475 |
||
95
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
476 |
|
93 | 477 |
text {* |
99 | 478 |
The restriction in this tactic is that it cannot instantiate any |
479 |
schematic variables. This might be seen as a defect, but is actually |
|
480 |
an advantage in the situations for which @{ML SUBPROOF} was designed: |
|
481 |
the reason is that instantiation of schematic variables can potentially |
|
482 |
has affect several goals and can render them unprovable. |
|
483 |
||
484 |
A similar but less powerful function is @{ML SUBGOAL}. It allows you to |
|
485 |
inspect a subgoal specified by a number. |
|
93 | 486 |
*} |
487 |
||
99 | 488 |
ML %linenumbers{*fun select_tac (t,i) = |
489 |
case t of |
|
490 |
@{term "Trueprop"} $ t' => select_tac (t',i) |
|
491 |
| @{term "op \<and>"} $ _ $ _ => rtac @{thm conjI} i |
|
492 |
| @{term "op \<longrightarrow>"} $ _ $ _ => rtac @{thm impI} i |
|
493 |
| @{term "Not"} $ _ => rtac @{thm notI} i |
|
494 |
| Const (@{const_name "All"}, _) $ _ => rtac @{thm allI} i |
|
495 |
| _ => no_tac*} |
|
496 |
||
497 |
lemma shows "A \<and> B" "A \<longrightarrow> B" "\<forall>x. C x" |
|
498 |
apply(tactic {* SUBGOAL select_tac 1 *}) |
|
499 |
apply(tactic {* SUBGOAL select_tac 3 *}) |
|
500 |
apply(tactic {* SUBGOAL select_tac 4 *}) |
|
501 |
txt{* @{subgoals [display]} *} |
|
502 |
(*<*)oops(*>*) |
|
503 |
||
504 |
text {* |
|
505 |
However, this example is contrived, as there are much simpler ways |
|
506 |
to implement a proof procedure like the one above. They will be explained |
|
507 |
in the next section. |
|
508 |
||
509 |
A variant of @{ML SUBGOAL} is @{ML CSUBGOAL} which allows access to the goal |
|
510 |
as @{ML_type cterm} instead of a @{ML_type term}. |
|
93 | 511 |
*} |
512 |
||
99 | 513 |
|
93 | 514 |
section {* Operations on Tactics *} |
515 |
||
99 | 516 |
text {* @{ML THEN} *} |
93 | 517 |
|
99 | 518 |
lemma shows "(Foo \<and> Bar) \<and> False" |
519 |
apply(tactic {* (rtac @{thm conjI} 1) |
|
520 |
THEN (rtac @{thm conjI} 1) *}) |
|
93 | 521 |
txt {* @{subgoals [display]} *} |
522 |
(*<*)oops(*>*) |
|
523 |
||
99 | 524 |
ML{*val orelse_xmp = (rtac @{thm disjI1} ORELSE' rtac @{thm conjI})*} |
525 |
||
526 |
lemma shows "True \<and> False" and "Foo \<or> Bar" |
|
527 |
apply(tactic {* orelse_xmp 1 *}) |
|
528 |
apply(tactic {* orelse_xmp 3 *}) |
|
93 | 529 |
txt {* @{subgoals [display]} *} |
530 |
(*<*)oops(*>*) |
|
531 |
||
532 |
||
533 |
text {* |
|
99 | 534 |
@{ML EVERY} @{ML REPEAT} @{ML DETERM} |
93 | 535 |
|
536 |
@{ML rewrite_goals_tac} |
|
537 |
@{ML cut_facts_tac} |
|
538 |
@{ML ObjectLogic.full_atomize_tac} |
|
539 |
@{ML ObjectLogic.rulify_tac} |
|
540 |
@{ML resolve_tac} |
|
541 |
*} |
|
542 |
||
95
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
543 |
section {* Structured Proofs *} |
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
544 |
|
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
545 |
lemma True |
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
546 |
proof |
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
547 |
|
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
548 |
{ |
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
549 |
fix A B C |
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
550 |
assume r: "A & B \<Longrightarrow> C" |
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
551 |
assume A B |
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
552 |
then have "A & B" .. |
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
553 |
then have C by (rule r) |
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
554 |
} |
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
555 |
|
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
556 |
{ |
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
557 |
fix A B C |
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
558 |
assume r: "A & B \<Longrightarrow> C" |
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
559 |
assume A B |
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
560 |
note conjI [OF this] |
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
561 |
note r [OF this] |
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
562 |
} |
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
563 |
oops |
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
564 |
|
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
565 |
ML {* fun prop ctxt s = |
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
566 |
Thm.cterm_of (ProofContext.theory_of ctxt) (Syntax.read_prop ctxt s) *} |
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
567 |
|
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
568 |
ML {* |
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
569 |
val ctxt0 = @{context}; |
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
570 |
val ctxt = ctxt0; |
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
571 |
val (_, ctxt) = Variable.add_fixes ["A", "B", "C"] ctxt; |
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
572 |
val ([r], ctxt) = Assumption.add_assumes [prop ctxt "A & B \<Longrightarrow> C"] ctxt; |
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
573 |
val (this, ctxt) = Assumption.add_assumes [prop ctxt "A", prop ctxt "B"] ctxt; |
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
574 |
val this = [@{thm conjI} OF this]; |
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
575 |
val this = r OF this; |
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
576 |
val this = Assumption.export false ctxt ctxt0 this |
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
577 |
val this = Variable.export ctxt ctxt0 [this] |
7235374f34c8
added some preliminary notes about SUBPROOF
Christian Urban <urbanc@in.tum.de>
parents:
93
diff
changeset
|
578 |
*} |
93 | 579 |
|
580 |
||
102
5e309df58557
general cleaning up; deleted antiquotation ML_text; adjusted pathnames of various files in the distribution
Christian Urban <urbanc@in.tum.de>
parents:
99
diff
changeset
|
581 |
|
93 | 582 |
end |