Start streamlining induction

LeventErkok · Jan 6, 2025 · b5278e0 · b5278e0
1 parent 4781454
commit b5278e0
Show file tree

Hide file tree

Showing 2 changed files with 18 additions and 6 deletions.
diff --git a/Data/SBV/Tools/KDKernel.hs b/Data/SBV/Tools/KDKernel.hs
@@ -152,8 +152,13 @@ theoremWith cfg nm = lemmaGen cfg "Theorem" [nm]
 -- | Given a predicate, return an induction principle for it. Typically, we only have one viable
 -- induction principle for a given type, but we allow for alternative ones.
 class InductionSchema a where
+  -- | Induction tactic
   induct     :: a -> Proof
+
+  -- | Alternative induction tactic
   inductAlt1 :: a -> Proof
+
+  -- | Another alternative induction tactic
   inductAlt2 :: a -> Proof
 
   -- The second and third principles are the same as first by default, unless we provide them explicitly.

diff --git a/Data/SBV/Tools/KnuckleDragger.hs b/Data/SBV/Tools/KnuckleDragger.hs
@@ -38,7 +38,9 @@ module Data.SBV.Tools.KnuckleDragger (
        , chainLemma,   chainLemmaWith
        , chainTheorem, chainTheoremWith
        -- * Induction
-       , Inductive(..), InductionSchema(..)
+       , induct, inductAlt1, inductAlt2
+       , inductiveLemma,   inductiveLemmaWith
+       , inductiveTheorem, inductiveTheoremWith
        -- * Faking proofs
        , sorry
        -- * Running KnuckleDragger proofs
@@ -199,12 +201,20 @@ class Inductive a steps where
    -- | Same as 'inductiveTheorem, but with the given solver configuration.
    inductiveTheoremWith :: Proposition a => SMTConfig -> String -> a -> steps -> [Proof] -> KD Proof
 
+   -- | The inductive schema for the actual proof
+   schema :: Proposition a => SMTConfig -> String -> a -> steps -> [Proof] -> Symbolic Proof
+
+   {-# MINIMAL schema #-}
+
    inductiveLemma   nm p steps by = ask >>= \cfg -> inductiveLemmaWith   cfg nm p steps by
    inductiveTheorem nm p steps by = ask >>= \cfg -> inductiveTheoremWith cfg nm p steps by
    inductiveLemmaWith             = inductGeneric False
    inductiveTheoremWith           = inductGeneric True
 
    inductGeneric :: Proposition a => Bool -> SMTConfig -> String -> a -> steps -> [Proof] -> KD Proof
+   inductGeneric tagTheorem cfg nm qResult steps helpers = liftIO $ do
+        putStrLn $ "Inductive " ++ (if tagTheorem then "theorem" else "lemma") ++ ": " ++ nm
+        runSMTWith cfg $ schema cfg nm qResult steps helpers
 
 -- Capture the general flow after a checkSat. We run the sat case if model is empty.
 checkSatThen :: (MonadIO m, MonadQuery m) => String -> Maybe (m a) -> m a -> m a
@@ -232,18 +242,15 @@ checkSatThen nm mbSat unsat = do
 
 -- | Induction over 'SInteger'.
 instance EqSymbolic z => Inductive (Forall nm Integer -> SBool) (SInteger -> ([z], [z])) where
-   inductGeneric tagTheorem cfg@SMTConfig{verbose} nm qResult steps helpers = liftIO $ do
-        putStrLn $ "Inductive " ++ (if tagTheorem then "theorem" else "lemma") ++ ": " ++ nm
-        runSMTWith cfg schema
-
+   schema cfg@SMTConfig{verbose} nm qResult steps helpers = proof
      where result = qResult . Forall
 
            liftKD     = liftIO . runKDWith cfg
            mkPairs xs = zipWith (\(i, l) (j, r) -> ((i, j), l .== r)) xs (drop 1 xs)
 
            (ros, modulo) = calculateRootOfTrust nm helpers
 
-           schema = do
+           proof = do
               mapM_ (constrain . getProof) helpers
 
               -- Do the dummy call trick here so all the uninterpreted functions