1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
|
open Format
open Util
open Pp
open Term
open Tacmach
open Tactics
open Tacticals
open Names
open Nameops
open Termops
open Coqlib
open Hipattern
open Libnames
open Declarations
open Evarutil
(* 1. gappa syntax trees and output *)
module Constant = struct
type t = { mantissa : int; base : int; exp : int }
let create (b, m, e) =
{ mantissa = m; base = b; exp = e }
let of_int x =
{ mantissa = x; base = 1; exp = 0 }
let mult x y =
if x.base = 1 then { y with mantissa = x.mantissa * y.mantissa }
else invalid_arg "Constant.mult"
let print fmt x = match x.base with
| 1 -> fprintf fmt "%d" x.mantissa
| 2 -> fprintf fmt "%db%d" x.mantissa x.exp
| 10 -> fprintf fmt "%de%d" x.mantissa x.exp
| _ -> assert false
end
type binop = Bminus | Bplus | Bmult | Bdiv
type unop = Usqrt | Uabs | Uopp
type term =
| Tconst of Constant.t
| Tvar of string
| Tbinop of binop * term * term
| Tunop of unop * term
type pred =
| Pin of term * Constant.t * Constant.t
let rec print_term fmt = function
| Tconst c -> Constant.print fmt c
| Tvar s -> pp_print_string fmt s
| Tbinop (op, t1, t2) ->
let op = match op with
| Bplus -> "+" | Bminus -> "-" | Bmult -> "*" | Bdiv -> "/"
in
fprintf fmt "(%a %s %a)" print_term t1 op print_term t2
| Tunop (Uabs, t) ->
fprintf fmt "|%a|" print_term t
| Tunop (Uopp | Usqrt as op, t) ->
let s = match op with
| Uopp -> "-" | Usqrt -> "sqrt" | _ -> assert false
in
fprintf fmt "(%s(%a))" s print_term t
let print_pred fmt = function
| Pin (t, c1, c2) ->
fprintf fmt "%a in [%a, %a]"
print_term t Constant.print c1 Constant.print c2
let read_gappa_proof f =
let buf = Buffer.create 1024 in
Buffer.add_char buf '(';
let cin = open_in f in
let rec skip_space () =
let c = input_char cin in if c = ' ' then skip_space () else c
in
while input_char cin <> '=' do () done;
try
while true do
let c = skip_space () in
if c = ':' then raise Exit;
Buffer.add_char buf c;
let s = input_line cin in
Buffer.add_string buf s;
Buffer.add_char buf '\n';
done;
assert false
with Exit ->
Buffer.add_char buf ')';
Buffer.contents buf
exception GappaFailed
exception GappaProofFailed
let call_gappa hl p =
let gappa_in = "test.gappa" in
let c = open_out gappa_in in
let fmt = formatter_of_out_channel c in
fprintf fmt "@[{ ";
List.iter (fun h -> fprintf fmt "%a ->@ " print_pred h) hl;
fprintf fmt "%a }@]@." print_pred p;
close_out c;
let gappa_out = "gappa.v" in
let cmd = sprintf "gappa -Bcoq < %s > %s" gappa_in gappa_out in
let out = Sys.command cmd in
if out <> 0 then raise GappaFailed;
let cmd = sprintf "sed -e '/^Lemma/ h ; s/Qed/Defined/ ; $ { p ; g ; s/Lemma \\([^ ]*\\).*/Eval compute in \\1./ }' -i %s" gappa_out
in
let _ = Sys.command cmd in
let lambda = "test.lambda" in
let cmd =
sprintf "coqc -I ~/src/gappalib-coq-0.7 %s > %s" gappa_out lambda
in
let out = Sys.command cmd in
if out <> 0 then raise GappaProofFailed;
read_gappa_proof lambda
(* 2. coq -> gappa translation *)
exception NotGappa
let logic_dir = ["Coq";"Logic";"Decidable"]
let coq_modules =
init_modules @ [logic_dir] @ arith_modules @ zarith_base_modules
@ [["Coq"; "ZArith"; "BinInt"];
["Coq"; "Reals"; "Rdefinitions"];
["Coq"; "Reals"; "Raxioms";];
["Coq"; "Reals"; "Rbasic_fun";];
["Coq"; "Reals"; "R_sqrt";];
["Coq"; "Reals"; "Rfunctions";];
["Coq"; "dp"; "Gappa";];
]
let constant = gen_constant_in_modules "gappa" coq_modules
let coq_Rle = lazy (constant "Rle")
let coq_R = lazy (constant "R")
(*
let coq_Rplus = lazy (constant "Rplus")
let coq_Rminus = lazy (constant "Rminus")
let coq_Rmult = lazy (constant "Rmult")
let coq_Rdiv = lazy (constant "Rdiv")
let coq_powerRZ = lazy (constant "powerRZ")
let coq_R1 = lazy (constant "R1")
let coq_Ropp = lazy (constant "Ropp")
let coq_Rabs = lazy (constant "Rabs")
let coq_sqrt = lazy (constant "sqrt")
*)
let coq_convert = lazy (constant "convert")
let coq_reUnknown = lazy (constant "reUnknown")
let coq_reFloat2 = lazy (constant "reFloat2")
let coq_reInteger = lazy (constant "reInteger")
let coq_reBinary = lazy (constant "reBinary")
let coq_reUnary = lazy (constant "reUnary")
let coq_boAdd = lazy (constant "boAdd")
let coq_boSub = lazy (constant "boSub")
let coq_boMul = lazy (constant "boMul")
let coq_boDiv = lazy (constant "boDiv")
let coq_uoAbs = lazy (constant "uoAbs")
let coq_uoNeg = lazy (constant "uoNeg")
let coq_uoSqrt = lazy (constant "uoSqrt")
let coq_true = lazy (constant "true")
let coq_false = lazy (constant "false")
let coq_Z0 = lazy (constant "Z0")
let coq_Zpos = lazy (constant "Zpos")
let coq_Zneg = lazy (constant "Zneg")
let coq_xH = lazy (constant "xH")
let coq_xI = lazy (constant "xI")
let coq_xO = lazy (constant "xO")
let coq_IZR = lazy (constant "IZR")
(* translates a closed Coq term p:positive into a FOL term of type int *)
let rec tr_positive p = match kind_of_term p with
| Term.Construct _ when p = Lazy.force coq_xH ->
1
| Term.App (f, [|a|]) when f = Lazy.force coq_xI ->
2 * (tr_positive a) + 1
| Term.App (f, [|a|]) when f = Lazy.force coq_xO ->
2 * (tr_positive a)
| Term.Cast (p, _, _) ->
tr_positive p
| _ ->
raise NotGappa
(* translates a closed Coq term t:Z into a term of type int *)
let rec tr_arith_constant t = match kind_of_term t with
| Term.Construct _ when t = Lazy.force coq_Z0 ->
0
| Term.App (f, [|a|]) when f = Lazy.force coq_Zpos ->
tr_positive a
| Term.App (f, [|a|]) when f = Lazy.force coq_Zneg ->
- (tr_positive a)
| Term.Cast (t, _, _) ->
tr_arith_constant t
| _ ->
raise NotGappa
let decomp c =
let c, args = decompose_app c in
kind_of_term c, args
let tr_bool c = match decompose_app c with
| c, [] when c = Lazy.force coq_true -> true
| c, [] when c = Lazy.force coq_false -> false
| _ -> raise NotGappa
let tr_float b m e =
(b, tr_arith_constant m, tr_arith_constant e)
let tr_binop c = match decompose_app c with
| c, [] when c = Lazy.force coq_boAdd -> Bplus
| c, [] when c = Lazy.force coq_boSub -> Bminus
| c, [] when c = Lazy.force coq_boMul -> Bmult
| c, [] when c = Lazy.force coq_boDiv -> Bdiv
| _ -> assert false
let tr_unop c = match decompose_app c with
| c, [] when c = Lazy.force coq_uoNeg -> Uopp
| c, [] when c = Lazy.force coq_uoSqrt -> Usqrt
| c, [] when c = Lazy.force coq_uoAbs -> Uabs
| _ -> raise NotGappa
let tr_var c = match decomp c with
| Var x, [] -> string_of_id x
| _ -> assert false
(* REexpr -> term *)
let rec tr_term c0 =
let c, args = decompose_app c0 in
match kind_of_term c, args with
| _, [a] when c = Lazy.force coq_reUnknown ->
Tvar (tr_var a)
| _, [a; b] when c = Lazy.force coq_reFloat2 ->
Tconst (Constant.create (tr_float 2 a b))
| _, [a] when c = Lazy.force coq_reInteger ->
Tconst (Constant.create (1, tr_arith_constant a, 0))
| _, [op;a;b] when c = Lazy.force coq_reBinary ->
Tbinop (tr_binop op, tr_term a, tr_term b)
| _, [op;a] when c = Lazy.force coq_reUnary ->
Tunop (tr_unop op, tr_term a)
| _ ->
msgnl (str "tr_term: " ++ Printer.pr_constr c0);
assert false
let tr_rle c =
let c, args = decompose_app c in
match kind_of_term c, args with
| _, [a;b] when c = Lazy.force coq_Rle ->
begin match decompose_app a, decompose_app b with
| (ac, [at]), (bc, [bt])
when ac = Lazy.force coq_convert && bc = Lazy.force coq_convert ->
at, bt
| _ ->
raise NotGappa
end
| _ ->
raise NotGappa
let tr_pred c =
let c, args = decompose_app c in
match kind_of_term c, args with
| _, [a;b] when c = build_coq_and () ->
begin match tr_rle a, tr_rle b with
| (c1, t1), (t2, c2) when t1 = t2 ->
begin match tr_term c1, tr_term c2 with
| Tconst c1, Tconst c2 ->
Pin (tr_term t1, c1, c2)
| _ ->
raise NotGappa
end
| _ ->
raise NotGappa
end
| _ ->
raise NotGappa
let is_R c = match decompose_app c with
| c, [] when c = Lazy.force coq_R -> true
| _ -> false
let tr_hyps =
List.fold_left
(fun acc (_,h) -> try tr_pred h :: acc with NotGappa -> acc) []
let constr_of_string gl s =
let parse_constr = Pcoq.parse_string Pcoq.Constr.constr in
Constrintern.interp_constr (project gl) (pf_env gl) (parse_constr s)
let var_name = function
| Name id ->
let s = string_of_id id in
let s = String.sub s 1 (String.length s - 1) in
mkVar (id_of_string s)
| Anonymous ->
assert false
let build_proof_term c0 =
let bl,c = decompose_lam c0 in
List.fold_right
(fun (x,t) pf ->
mkApp (pf, [| if is_R t then var_name x else mk_new_meta () |]))
bl c0
let gappa_internal gl =
try
let c = tr_pred (pf_concl gl) in
let s = call_gappa (tr_hyps (pf_hyps_types gl)) c in
msgnl (str s);
let pf = constr_of_string gl s in
let pf = build_proof_term pf in
Tacticals.tclTHEN (Tactics.refine pf) Tactics.assumption gl
with
| NotGappa -> error "not a gappa goal"
| GappaFailed -> error "gappa failed"
| GappaProofFailed -> error "incorrect gappa proof term"
(*
Local Variables:
compile-command: "make -C ../.. bin/coqc.opt bin/coqide.opt contrib/dp/Gappa.vo"
End:
*)
|
