diff options
| author | Andrew Reynolds <andrew.j.reynolds@gmail.com> | 2020-08-18 13:47:57 -0500 |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2020-08-18 13:47:57 -0500 |
| commit | 50b0f20be87cd82f464d3f8fc15a5fa2f0a47556 (patch) | |
| tree | 5340e7ff62e17a9954e3ab931f5edd4d1e4ba995 /src/smt/proof_post_processor.cpp | |
| parent | 944cb8e5381c47ccc49955a19609921399bb9437 (diff) | |
(proof-new) SMT proof postprocess callback (#4883)
This is the callback class for processing the final proof, which connects proofs of preprocessing and expands unwanted macro steps based on proof granularity mode.
The next step will be to add the ProofNodeUpdater that uses this callback and runs final sanity checks for checking proofs.
Diffstat (limited to 'src/smt/proof_post_processor.cpp')
| -rw-r--r-- | src/smt/proof_post_processor.cpp | 572 |
1 files changed, 572 insertions, 0 deletions
diff --git a/src/smt/proof_post_processor.cpp b/src/smt/proof_post_processor.cpp new file mode 100644 index 000000000..5046dee92 --- /dev/null +++ b/src/smt/proof_post_processor.cpp @@ -0,0 +1,572 @@ +/********************* */ +/*! \file proof_post_processor.cpp + ** \verbatim + ** Top contributors (to current version): + ** Andrew Reynolds + ** This file is part of the CVC4 project. + ** Copyright (c) 2009-2020 by the authors listed in the file AUTHORS + ** in the top-level source directory) and their institutional affiliations. + ** All rights reserved. See the file COPYING in the top-level source + ** directory for licensing information.\endverbatim + ** + ** \brief Implementation of module for processing proof nodes + **/ + +#include "smt/proof_post_processor.h" + +#include "expr/skolem_manager.h" +#include "options/smt_options.h" +#include "preprocessing/assertion_pipeline.h" +#include "smt/smt_engine.h" +#include "smt/smt_statistics_registry.h" +#include "theory/builtin/proof_checker.h" +#include "theory/rewriter.h" + +using namespace CVC4::kind; +using namespace CVC4::theory; + +namespace CVC4 { +namespace smt { + +ProofPostprocessCallback::ProofPostprocessCallback(ProofNodeManager* pnm, + SmtEngine* smte, + ProofGenerator* pppg) + : d_pnm(pnm), d_smte(smte), d_pppg(pppg), d_wfpm(pnm) +{ + d_true = NodeManager::currentNM()->mkConst(true); + // always check whether to update ASSUME + d_elimRules.insert(PfRule::ASSUME); +} + +void ProofPostprocessCallback::initializeUpdate() +{ + d_assumpToProof.clear(); + d_wfAssumptions.clear(); +} + +void ProofPostprocessCallback::setEliminateRule(PfRule rule) +{ + d_elimRules.insert(rule); +} + +bool ProofPostprocessCallback::shouldUpdate(ProofNode* pn) +{ + return d_elimRules.find(pn->getRule()) != d_elimRules.end(); +} + +bool ProofPostprocessCallback::update(Node res, + PfRule id, + const std::vector<Node>& children, + const std::vector<Node>& args, + CDProof* cdp) +{ + Trace("smt-proof-pp-debug") << "- Post process " << id << " " << children + << " / " << args << std::endl; + + if (id == PfRule::ASSUME) + { + // we cache based on the assumption node, not the proof node, since there + // may be multiple occurrences of the same node. + Node f = args[0]; + std::shared_ptr<ProofNode> pfn; + std::map<Node, std::shared_ptr<ProofNode>>::iterator it = + d_assumpToProof.find(f); + if (it != d_assumpToProof.end()) + { + Trace("smt-proof-pp-debug") << "...already computed" << std::endl; + pfn = it->second; + } + else + { + Assert(d_pppg != nullptr); + // get proof from preprocess proof generator + pfn = d_pppg->getProofFor(f); + // print for debugging + if (pfn == nullptr) + { + Trace("smt-proof-pp-debug") + << "...no proof, possibly an input assumption" << std::endl; + } + else + { + Assert(pfn->getResult() == f); + if (Trace.isOn("smt-proof-pp")) + { + Trace("smt-proof-pp") + << "=== Connect proof for preprocessing: " << f << std::endl; + Trace("smt-proof-pp") << *pfn.get() << std::endl; + } + } + d_assumpToProof[f] = pfn; + } + if (pfn == nullptr) + { + // no update + return false; + } + // connect the proof + cdp->addProof(pfn); + return true; + } + Node ret = expandMacros(id, children, args, cdp); + Trace("smt-proof-pp-debug") << "...expanded = " << !ret.isNull() << std::endl; + return !ret.isNull(); +} + +Node ProofPostprocessCallback::expandMacros(PfRule id, + const std::vector<Node>& children, + const std::vector<Node>& args, + CDProof* cdp) +{ + if (d_elimRules.find(id) == d_elimRules.end()) + { + // not eliminated + return Node::null(); + } + // macro elimination + if (id == PfRule::MACRO_SR_EQ_INTRO) + { + // (TRANS + // (SUBS <children> :args args[0:1]) + // (REWRITE :args <t.substitute(x1,t1). ... .substitute(xn,tn)> args[2])) + std::vector<Node> tchildren; + Node t = args[0]; + Node ts; + if (!children.empty()) + { + std::vector<Node> sargs; + sargs.push_back(t); + MethodId sid = MethodId::SB_DEFAULT; + if (args.size() >= 2) + { + if (builtin::BuiltinProofRuleChecker::getMethodId(args[1], sid)) + { + sargs.push_back(args[1]); + } + } + ts = + builtin::BuiltinProofRuleChecker::applySubstitution(t, children, sid); + if (ts != t) + { + Node eq = t.eqNode(ts); + // apply SUBS proof rule if necessary + if (!update(eq, PfRule::SUBS, children, sargs, cdp)) + { + // if not elimianted, add as step + cdp->addStep(eq, PfRule::SUBS, children, sargs); + } + tchildren.push_back(eq); + } + } + else + { + // no substitute + ts = t; + } + std::vector<Node> rargs; + rargs.push_back(ts); + MethodId rid = MethodId::RW_REWRITE; + if (args.size() >= 3) + { + if (builtin::BuiltinProofRuleChecker::getMethodId(args[2], rid)) + { + rargs.push_back(args[2]); + } + } + builtin::BuiltinProofRuleChecker* builtinPfC = + static_cast<builtin::BuiltinProofRuleChecker*>( + d_pnm->getChecker()->getCheckerFor(PfRule::MACRO_SR_EQ_INTRO)); + Node tr = builtinPfC->applyRewrite(ts, rid); + if (ts != tr) + { + Node eq = ts.eqNode(tr); + // apply REWRITE proof rule + if (!update(eq, PfRule::REWRITE, {}, rargs, cdp)) + { + // if not elimianted, add as step + cdp->addStep(eq, PfRule::REWRITE, {}, rargs); + } + tchildren.push_back(eq); + } + if (t == tr) + { + // typically not necessary, but done to be robust + cdp->addStep(t.eqNode(tr), PfRule::REFL, {}, {t}); + return t.eqNode(tr); + } + // must add TRANS if two step + return addProofForTrans(tchildren, cdp); + } + else if (id == PfRule::MACRO_SR_PRED_INTRO) + { + std::vector<Node> tchildren; + std::vector<Node> sargs = args; + // take into account witness form, if necessary + if (d_wfpm.requiresWitnessFormIntro(args[0])) + { + Node weq = addProofForWitnessForm(args[0], cdp); + tchildren.push_back(weq); + // replace the first argument + sargs[0] = weq[1]; + } + // (TRUE_ELIM + // (TRANS + // ... proof of t = toWitness(t) ... + // (MACRO_SR_EQ_INTRO <children> :args (toWitness(t) args[1:])))) + // We call the expandMacros method on MACRO_SR_EQ_INTRO, where notice + // that this rule application is immediately expanded in the recursive + // call and not added to the proof. + Node conc = expandMacros(PfRule::MACRO_SR_EQ_INTRO, children, sargs, cdp); + tchildren.push_back(conc); + Assert(!conc.isNull() && conc.getKind() == EQUAL && conc[0] == sargs[0] + && conc[1] == d_true); + // transitivity if necessary + Node eq = addProofForTrans(tchildren, cdp); + + cdp->addStep(eq[0], PfRule::TRUE_ELIM, {eq}, {}); + Assert(eq[0] == args[0]); + return eq[0]; + } + else if (id == PfRule::MACRO_SR_PRED_ELIM) + { + // (TRUE_ELIM + // (TRANS + // (SYMM (MACRO_SR_EQ_INTRO children[1:] :args children[0] ++ args)) + // (TRUE_INTRO children[0]))) + std::vector<Node> schildren(children.begin() + 1, children.end()); + std::vector<Node> srargs; + srargs.push_back(children[0]); + srargs.insert(srargs.end(), args.begin(), args.end()); + Node conc = expandMacros(PfRule::MACRO_SR_EQ_INTRO, schildren, srargs, cdp); + Assert(!conc.isNull() && conc.getKind() == EQUAL && conc[0] == children[0]); + + Node eq1 = children[0].eqNode(d_true); + cdp->addStep(eq1, PfRule::TRUE_INTRO, {children[0]}, {}); + + Node concSym = conc[1].eqNode(conc[0]); + Node eq2 = conc[1].eqNode(d_true); + cdp->addStep(eq2, PfRule::TRANS, {concSym, eq1}, {}); + + cdp->addStep(conc[1], PfRule::TRUE_ELIM, {eq2}, {}); + return conc[1]; + } + else if (id == PfRule::MACRO_SR_PRED_TRANSFORM) + { + // (TRUE_ELIM + // (TRANS + // (MACRO_SR_EQ_INTRO children[1:] :args <args>) + // ... proof of a = wa + // (MACRO_SR_EQ_INTRO {} wa) + // (SYMM + // (MACRO_SR_EQ_INTRO children[1:] :args (children[0] args[1:])) + // ... proof of c = wc + // (MACRO_SR_EQ_INTRO {} wc)) + // (TRUE_INTRO children[0]))) + // where + // wa = toWitness(apply_SR(args[0])) and + // wc = toWitness(apply_SR(children[0])). + Trace("smt-proof-pp-debug") + << "Transform " << children[0] << " == " << args[0] << std::endl; + if (CDProof::isSame(children[0], args[0])) + { + // nothing to do + return children[0]; + } + std::vector<Node> tchildren; + std::vector<Node> schildren(children.begin() + 1, children.end()); + std::vector<Node> sargs = args; + // first, compute if we need + bool reqWitness = d_wfpm.requiresWitnessFormTransform(children[0], args[0]); + // convert both sides, in three steps, take symmetry of second chain + for (unsigned r = 0; r < 2; r++) + { + std::vector<Node> tchildrenr; + // first rewrite args[0], then children[0] + sargs[0] = r == 0 ? args[0] : children[0]; + // t = apply_SR(t) + Node eq = expandMacros(PfRule::MACRO_SR_EQ_INTRO, schildren, sargs, cdp); + Trace("smt-proof-pp-debug") + << "transform subs_rewrite (" << r << "): " << eq << std::endl; + Assert(!eq.isNull() && eq.getKind() == EQUAL && eq[0] == sargs[0]); + addToTransChildren(eq, tchildrenr); + // apply_SR(t) = toWitness(apply_SR(t)) + if (reqWitness) + { + Node weq = addProofForWitnessForm(eq[1], cdp); + Trace("smt-proof-pp-debug") + << "transform toWitness (" << r << "): " << weq << std::endl; + if (addToTransChildren(weq, tchildrenr)) + { + sargs[0] = weq[1]; + // toWitness(apply_SR(t)) = apply_SR(toWitness(apply_SR(t))) + // rewrite again, don't need substitution + Node weqr = expandMacros(PfRule::MACRO_SR_EQ_INTRO, {}, sargs, cdp); + Trace("smt-proof-pp-debug") << "transform rewrite_witness (" << r + << "): " << weqr << std::endl; + addToTransChildren(weqr, tchildrenr); + } + } + Trace("smt-proof-pp-debug") + << "transform connect (" << r << ")" << std::endl; + // add to overall chain + if (r == 0) + { + // add the current chain to the overall chain + tchildren.insert(tchildren.end(), tchildrenr.begin(), tchildrenr.end()); + } + else + { + // add the current chain to cdp + Node eqr = addProofForTrans(tchildrenr, cdp); + if (!eqr.isNull()) + { + // take symmetry of above and add it to the overall chain + addToTransChildren(eqr, tchildren, true); + } + } + Trace("smt-proof-pp-debug") + << "transform finish (" << r << ")" << std::endl; + } + + // children[0] = true + Node eq3 = children[0].eqNode(d_true); + Trace("smt-proof-pp-debug") << "transform true_intro: " << eq3 << std::endl; + cdp->addStep(eq3, PfRule::TRUE_INTRO, {children[0]}, {}); + addToTransChildren(eq3, tchildren); + + // apply transitivity if necessary + Node eq = addProofForTrans(tchildren, cdp); + + cdp->addStep(args[0], PfRule::TRUE_ELIM, {eq}, {}); + return args[0]; + } + else if (id == PfRule::SUBS) + { + // Notice that a naive way to reconstruct SUBS is to do a term conversion + // proof for each substitution. + // The proof of f(a) * { a -> g(b) } * { b -> c } = f(g(c)) is: + // TRANS( CONG{f}( a=g(b) ), CONG{f}( CONG{g}( b=c ) ) ) + // Notice that more optimal proofs are possible that do a single traversal + // over t. This is done by applying later substitutions to the range of + // previous substitutions, until a final simultaneous substitution is + // applied to t. For instance, in the above example, we first prove: + // CONG{g}( b = c ) + // by applying the second substitution { b -> c } to the range of the first, + // giving us a proof of g(b)=g(c). We then construct the updated proof + // by tranitivity: + // TRANS( a=g(b), CONG{g}( b=c ) ) + // We then apply the substitution { a -> g(c), b -> c } to f(a), to obtain: + // CONG{f}( TRANS( a=g(b), CONG{g}( b=c ) ) ) + // which notice is more compact than the proof above. + Node t = args[0]; + // get the kind of substitution + MethodId ids = MethodId::SB_DEFAULT; + if (args.size() >= 2) + { + builtin::BuiltinProofRuleChecker::getMethodId(args[1], ids); + } + std::vector<std::shared_ptr<CDProof>> pfs; + std::vector<Node> vvec; + std::vector<Node> svec; + std::vector<ProofGenerator*> pgs; + for (size_t i = 0, nchild = children.size(); i < nchild; i++) + { + // process in reverse order + size_t index = nchild - (i + 1); + // get the substitution + TNode var, subs; + builtin::BuiltinProofRuleChecker::getSubstitution( + children[index], var, subs, ids); + // apply the current substitution to the range + if (!vvec.empty()) + { + Node ss = + subs.substitute(vvec.begin(), vvec.end(), svec.begin(), svec.end()); + if (ss != subs) + { + // make the proof for the tranitivity step + std::shared_ptr<CDProof> pf = std::make_shared<CDProof>(d_pnm); + pfs.push_back(pf); + // prove the updated substitution + TConvProofGenerator tcg(d_pnm, nullptr, TConvPolicy::ONCE); + // add previous rewrite steps + for (unsigned j = 0, nvars = vvec.size(); j < nvars; j++) + { + tcg.addRewriteStep(vvec[j], svec[j], pgs[j]); + } + // get the proof for the update to the current substitution + Node seqss = subs.eqNode(ss); + std::shared_ptr<ProofNode> pfn = tcg.getProofFor(seqss); + Assert(pfn != nullptr); + // add the proof + pf->addProof(pfn); + // get proof for children[i] from cdp + pfn = cdp->getProofFor(children[i]); + pf->addProof(pfn); + // ensure we have a proof of var = subs + Node veqs = var.eqNode(subs); + if (veqs != children[index]) + { + // should be true intro or false intro + Assert(subs.isConst()); + pf->addStep(veqs, + subs.getConst<bool>() ? PfRule::TRUE_INTRO + : PfRule::FALSE_INTRO, + {children[index]}, + {}); + } + pf->addStep(var.eqNode(ss), PfRule::TRANS, {veqs, seqss}, {}); + // add to the substitution + vvec.push_back(var); + svec.push_back(ss); + pgs.push_back(pf.get()); + continue; + } + } + // just use equality from CDProof + vvec.push_back(var); + svec.push_back(subs); + pgs.push_back(cdp); + } + Node ts = t.substitute(vvec.begin(), vvec.end(), svec.begin(), svec.end()); + Node eq = t.eqNode(ts); + if (ts != t) + { + // should be implied by the substitution now + TConvProofGenerator tcpg(d_pnm, nullptr, TConvPolicy::ONCE); + for (unsigned j = 0, nvars = vvec.size(); j < nvars; j++) + { + tcpg.addRewriteStep(vvec[j], svec[j], pgs[j]); + } + // add the proof constructed by the term conversion utility + std::shared_ptr<ProofNode> pfn = tcpg.getProofFor(eq); + // should give a proof, if not, then tcpg does not agree with the + // substitution. + Assert(pfn != nullptr); + if (pfn != nullptr) + { + cdp->addProof(pfn); + } + } + else + { + // should not be necessary typically + cdp->addStep(eq, PfRule::REFL, {}, {t}); + } + return eq; + } + else if (id == PfRule::REWRITE) + { + // get the kind of rewrite + MethodId idr = MethodId::RW_REWRITE; + if (args.size() >= 2) + { + builtin::BuiltinProofRuleChecker::getMethodId(args[1], idr); + } + builtin::BuiltinProofRuleChecker* builtinPfC = + static_cast<builtin::BuiltinProofRuleChecker*>( + d_pnm->getChecker()->getCheckerFor(PfRule::REWRITE)); + Node ret = builtinPfC->applyRewrite(args[0], idr); + Node eq = args[0].eqNode(ret); + if (idr == MethodId::RW_REWRITE || idr == MethodId::RW_REWRITE_EQ_EXT) + { + // rewrites from theory::Rewriter + // automatically expand THEORY_REWRITE as well here if set + bool elimTR = + (d_elimRules.find(PfRule::THEORY_REWRITE) != d_elimRules.end()); + bool isExtEq = (idr == MethodId::RW_REWRITE_EQ_EXT); + // use rewrite with proof interface + Rewriter* rr = d_smte->getRewriter(); + TrustNode trn = rr->rewriteWithProof(args[0], elimTR, isExtEq); + std::shared_ptr<ProofNode> pfn = + trn.getGenerator()->getProofFor(trn.getProven()); + cdp->addProof(pfn); + Assert(trn.getNode() == ret); + } + else if (idr == MethodId::RW_EVALUATE) + { + // change to evaluate, which is never eliminated + cdp->addStep(eq, PfRule::EVALUATE, {}, {args[0]}); + } + else + { + // don't know how to eliminate + return Node::null(); + } + if (args[0] == ret) + { + // should not be necessary typically + cdp->addStep(eq, PfRule::REFL, {}, {args[0]}); + } + return eq; + } + + // TRUST, PREPROCESS, THEORY_LEMMA, THEORY_PREPROCESS? + + return Node::null(); +} + +Node ProofPostprocessCallback::addProofForWitnessForm(Node t, CDProof* cdp) +{ + Node tw = SkolemManager::getWitnessForm(t); + Node eq = t.eqNode(tw); + if (t == tw) + { + // not necessary, add REFL step + cdp->addStep(eq, PfRule::REFL, {}, {t}); + return eq; + } + std::shared_ptr<ProofNode> pn = d_wfpm.getProofFor(eq); + if (pn != nullptr) + { + // add the proof + cdp->addProof(pn); + } + else + { + Assert(false) << "ProofPostprocessCallback::addProofForWitnessForm: failed " + "to add proof for witness form of " + << t; + } + return eq; +} + +Node ProofPostprocessCallback::addProofForTrans( + const std::vector<Node>& tchildren, CDProof* cdp) +{ + size_t tsize = tchildren.size(); + if (tsize > 1) + { + Node lhs = tchildren[0][0]; + Node rhs = tchildren[tsize - 1][1]; + Node eq = lhs.eqNode(rhs); + cdp->addStep(eq, PfRule::TRANS, tchildren, {}); + return eq; + } + else if (tsize == 1) + { + return tchildren[0]; + } + return Node::null(); +} + +bool ProofPostprocessCallback::addToTransChildren(Node eq, + std::vector<Node>& tchildren, + bool isSymm) +{ + Assert(!eq.isNull()); + Assert(eq.getKind() == kind::EQUAL); + if (eq[0] == eq[1]) + { + return false; + } + Node equ = isSymm ? eq[1].eqNode(eq[0]) : eq; + Assert(tchildren.empty() + || (tchildren[tchildren.size() - 1].getKind() == kind::EQUAL + && tchildren[tchildren.size() - 1][1] == equ[0])); + tchildren.push_back(equ); + return true; +} + +} // namespace smt +} // namespace CVC4 |