litex-lang 0.9.85-beta

A simple formal proof language and verifier, learnable in 2 hours
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105

use crate::prelude::*;
use std::fmt;

#[derive(Clone)]
pub struct ByReflexivePropStmt {
    pub forall_fact: ForallFact,
    pub proof: Vec<Stmt>,
    pub line_file: LineFile,
}

impl fmt::Display for ByReflexivePropStmt {
    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
        write!(
            f,
            "{} {}:\n{}{}\n{}",
            BY,
            REFLEXIVE_PROP,
            add_four_spaces_at_beginning(PROVE.to_string(), 1),
            COLON,
            to_string_and_add_four_spaces_at_beginning_of_each_line(
                &self.forall_fact.to_string(),
                2
            )
        )?;
        if !self.proof.is_empty() {
            write!(
                f,
                "\n{}",
                vec_to_string_add_four_spaces_at_beginning_of_each_line(&self.proof, 1)
            )?;
        }
        Ok(())
    }
}

impl ByReflexivePropStmt {
    pub fn new(forall_fact: ForallFact, proof: Vec<Stmt>, line_file: LineFile) -> Self {
        ByReflexivePropStmt {
            forall_fact,
            proof,
            line_file,
        }
    }

    pub fn reflexive_prop_name(&self) -> Result<String, String> {
        reflexive_prop_name_from_forall(&self.forall_fact)
    }
}

fn reflexive_prop_name_from_forall(forall_fact: &ForallFact) -> Result<String, String> {
    let params = forall_fact
        .params_def_with_type
        .collect_param_names_with_types();
    if params.len() != 1 {
        return Err("by reflexive_prop: forall must declare exactly one parameter".to_string());
    }
    for (_, param_type) in params.iter() {
        match param_type {
            ParamType::Set(_) => {}
            _ => {
                return Err("by reflexive_prop: each forall parameter type must be set".to_string());
            }
        }
    }

    if !forall_fact.dom_facts.is_empty() {
        return Err("by reflexive_prop: forall dom must be empty".to_string());
    }
    if forall_fact.then_facts.len() != 1 {
        return Err("by reflexive_prop: forall then must contain exactly one fact".to_string());
    }

    let x = &params[0].0;
    let then = normal_atomic_from_then_fact_refl(&forall_fact.then_facts[0])?;
    if !normal_atomic_has_args_refl(then, x, x) {
        return Err("by reflexive_prop: expected `forall x set: $p(x, x)`".to_string());
    }

    Ok(then.predicate.to_string())
}

fn normal_atomic_from_then_fact_refl(
    fact: &ExistOrAndChainAtomicFact,
) -> Result<&NormalAtomicFact, String> {
    match fact {
        ExistOrAndChainAtomicFact::AtomicFact(AtomicFact::NormalAtomicFact(f)) => Ok(f),
        _ => Err(
            "by reflexive_prop: then fact must be a positive user-defined prop fact".to_string(),
        ),
    }
}

fn normal_atomic_has_args_refl(fact: &NormalAtomicFact, left: &str, right: &str) -> bool {
    if fact.body.len() != 2 {
        return false;
    }
    obj_is_forall_param_refl(&fact.body[0], left) && obj_is_forall_param_refl(&fact.body[1], right)
}

fn obj_is_forall_param_refl(obj: &Obj, name: &str) -> bool {
    match obj {
        Obj::Atom(AtomObj::Forall(p)) => p.name == name,
        _ => false,
    }
}