Skip to content

Commit

Permalink
skipping the Lemma 5, sort of
Browse files Browse the repository at this point in the history
  • Loading branch information
@m4lvin
m4lvin committed Dec 17, 2023
1 parent 0d787e7 commit a565ac2
Show file tree
Hide file tree
Showing 2 changed files with 72 additions and 88 deletions.
93 changes: 32 additions & 61 deletions Pdl/DagTableau.lean
View file
Original file line number Diff line number Diff line change
Expand Up @@ -146,7 +146,8 @@ theorem notStarSoundnessAux (a : Program) M (v w : W) (fs)
(w_nP : (M, w) ⊨ (~undag φ)) :
∃ Γ ∈ dagNextTransRefl (fs, ~⌈a⌉φ),
(M, v) ⊨ Γ ∧ ( ( ∃ (a : Char) (as : List Program), (~ ⌈·a⌉⌈⌈as⌉⌉(undag φ)) ∈ Γ.1
∧ relate M (Program.steps ([Program.atom_prog a] ++ as)) v w )
∧ relate M (Program.steps ([Program.atom_prog a] ++ as)) v w
∧ Γ.2 = none )
∨ ((~φ) ∈ Γ.2 ∧ v = w) ) := by
cases a
case atom_prog A =>
Expand Down Expand Up @@ -194,15 +195,17 @@ theorem notStarSoundnessAux (a : Program) M (v w : W) (fs)
· simp
left
simp [undag] at one
rcases one with ⟨a,as,aasbs_in_Γ, y, a_v_y, y_as_u⟩
rcases one with ⟨a, as, ⟨aasbs_in_, ⟨⟨y, a_v_y, y_as_u⟩, Γ_normal⟩⟩
use a, as ++ [∗β]
constructor
· sorry -- should be easy
· use y
constructor
· constructor
· use y
constructor
· assumption
· simp [relate_steps]
use u
· assumption
· simp [relate_steps]
use u
case inr two =>
absurd two.right
simp at v_neq_u
Expand All @@ -218,7 +221,7 @@ theorem notStarSoundnessAux (a : Program) M (v w : W) (fs)
simp
intro f_in
sorry -- should be easy
rcases this with ⟨S, S_in, v_S, (⟨a,as,aasG_in_S,v_aas_u⟩ | ⟨ngPhi_in_S, v_is_u⟩)⟩ -- Σ
rcases this with ⟨S, S_in, v_S, (⟨a,as,aasG_in_S,v_aas_u,Γ_normal⟩ | ⟨ngPhi_in_S, v_is_u⟩)⟩ -- Σ
· use S -- "If (1), then we are done."
constructor
· unfold dagNextTransRefl; rw [ftr.iff]; simp; tauto
Expand All @@ -233,12 +236,14 @@ theorem notStarSoundnessAux (a : Program) M (v w : W) (fs)
exact aasG_in_S
· simp at v_aas_u
rcases v_aas_u with ⟨y, v_a_y, y_asg_w⟩
use y
rw [relate_steps]
constructor
· exact v_a_y
· use u
aesop
· use y
rw [relate_steps]
constructor
· exact v_a_y
· use u
aesop
· assumption
· -- "If (2) ..."
have := notStarSoundnessAux γ M u w S.1 φ -- not use "fs" here!
specialize this _ u_γ_w w_nP
Expand Down Expand Up @@ -329,6 +334,14 @@ theorem dagEnd_subset_next :
Ω ∈ dagNext Γ → dagEndNodes Ω ⊆ dagEndNodes Γ := by
sorry

-- A normal successor is an endNode.
theorem dagNormal_is_dagEnd
(Γ_in : Γ ∈ dagNextTransRefl S)
(Γ_normal : Γ.2 = none)
:
(Γ.1 ∈ dagEndNodes S) := by
sorry

theorem dagEnd_subset_trf {Ω Γ} :
Ω ∈ dagNextTransRefl Γ → dagEndNodes Ω ⊆ dagEndNodes Γ := by
intro O_in
Expand All @@ -345,63 +358,21 @@ termination_by
dagEnd_subset_trf Ω Γ hyp => mOfDagNode Γ
decreasing_by simp_wf; apply mOfDagNode.isDec; assumption

-- Similar to Borzechowski's Lemma 5
-- (This is actually soundness AND invertibility.)
theorem notStarSoundness (M : KripkeModel W) (v : W) S
-- Invertibility for nSt
theorem notStarInvertAux (M : KripkeModel W) (v : W) S
:
(M, v) ⊨ S ↔ ∃ Γ ∈ dagEndNodes S, (M, v) ⊨ Γ := by
constructor
· intro lhs -- left to right: soundness
rcases S with ⟨S, none|ndf⟩
· simp [dagEndNodes]
intro f
simp [modelCanSemImplyDagTabNode] at lhs
apply lhs
· cases ndf
case neg f =>
cases f
case box a g =>
have := lhs (undag (~⌈a⌉g))
simp [undag] at this
rcases this with ⟨w, v_aS_w, w_nPhi⟩
-- Now apply Lemma 4
have := notStarSoundnessAux a M v w S g lhs v_aS_w
specialize this _
· simp [modelCanSemImplyForm, undag]
exact w_nPhi
rcases this with ⟨Ω, O_in_trf, v_O, whatever⟩

-- ALTERNATIVE: distinguish the cases of "whatever" here?

-- NOTE: Now we do induction within notStarSoundness!
rw [notStarSoundness M v Ω] at v_O
-- PROBLEM: for termination we must avoid the case where Ω is the same as S :-/

rcases v_O with ⟨Γ, foo⟩
use Γ
constructor
· apply dagEnd_subset_trf -- this is what connects trf and endNodes
exact O_in_trf
tauto
· tauto

case dag a f =>
simp [dagEndNodes]
-- False -- BIG PROBLEM: What if undag is applied to S itself?
sorry

· rintro ⟨Γ, Γ_in, v_Γ⟩ -- right to left: inveritbility
(∃ Γ ∈ dagEndNodes S, (M, v) ⊨ Γ) → (M, v) ⊨ S := by
rintro ⟨Γ, Γ_in, v_Γ⟩
intro f f_in
simp at f_in
cases f_in
·
sorry
·
sorry
termination_by
notStarSoundness M v S => mOfDagNode S
decreasing_by simp_wf; apply mOfDagNode.isDec; sorry -- assumption

-- termination_by
-- notStarInvert M v S => mOfDagNode S
-- decreasing_by simp_wf; apply mOfDagNode.isDec; sorry -- assumption


-- -- -- BOXES -- -- --
Expand Down
67 changes: 40 additions & 27 deletions Pdl/Tableau.lean
View file
Original file line number Diff line number Diff line change
Expand Up @@ -201,10 +201,11 @@ lemma localRuleTruth {W} {M : KripkeModel W} {w : W} {X B} :
cases h_in
case inl h_in_X => exact w_sat_a _ h_in_X.left
case inr h_is_notf => rw [h_is_notf]; simp; exact not_w_g

-- STAR RULES
case nSt a f naSf_in_X =>
constructor
· simp
· simp -- invertibility
intro branchSat
cases branchSat
case inl Mw_X =>
Expand All @@ -224,52 +225,64 @@ lemma localRuleTruth {W} {M : KripkeModel W} {w : W} {X B} :
simp
tauto
case inr hyp =>
rw [← notStarSoundness] at hyp -- using Lemma about DagTableau
simp [vDash,modelCanSemImplyDagTabNode] at hyp
have := notStarInvertAux M w _ hyp
simp [vDash, modelCanSemImplyDagTabNode] at hyp
intro φ phi_in
cases em (φ = (~⌈∗a⌉f))
case inl phi_def =>
subst phi_def
simp
specialize hyp (~⌈a⌉⌈∗a⌉f)
simp at hyp
rcases hyp with ⟨z, w_a_z, y, z_aS_x, y_nf⟩
specialize this (~⌈a⌉⌈∗a⌉f)
simp at this
rcases this with ⟨z, w_a_z, y, z_aS_x, y_nf⟩
use y
constructor
· apply Relation.ReflTransGen.head
all_goals aesop
· assumption
case inr => aesop
· intro Mw_X
· intro Mw_X -- soundness
simp
have := Mw_X (~⌈∗a⌉f) naSf_in_X
simp at this
rcases this with ⟨y, x_rel_y, y_nf⟩
cases Relation.ReflTransGen.cases_head x_rel_y
cases starCases x_rel_y -- NOTE: Relation.ReflTransGen.cases_head without ≠ was not enough here ...
· left
intro g g_in
aesop
case inr hyp =>
rcases hyp with ⟨z, w_aS_z, z_a_y⟩
right
-- PLAN A: use the still to be proven Lemma (like 5) about DagTableau.
rw [← notStarSoundness]
intro f f_in
simp at f_in
cases f_in
· apply Mw_X
tauto
case inr f_def =>
subst f_def
simp
aesop
-- -- PLAN B: use notStarSoundnessAux (like Lemma 4) directly here, skip Lemma 5.
-- have := notStarSoundnessAux a M w z (X \ {~⌈∗a⌉f}) (DagFormula.box a (DagFormula.dag a f))
-- specialize this _ w_aS_z _
-- · ...
-- · ... -- z ⊨ ...
-- -- But noww we are missing connection between dagNextTransRefl and endNodesOf.
-- ...
-- (... because we need to get the in-equality here to get the contradiction below.)
rcases hyp with ⟨_, z, w_neq_z, w_a_z, z_aS_y⟩
-- MB now distinguishes whether a is atomic, we don't care.
have := notStarSoundnessAux a M w z (X \ {~⌈∗a⌉f}) (DagFormula.dag a f)
specialize this _ w_a_z _
· intro g g_in
simp at g_in
cases g_in
· apply Mw_X; tauto
case inr g_def =>
subst g_def
simp
use z
constructor
· exact w_a_z
· use y
· simp [vDash,modelCanSemImplyForm]
use y
rcases this with ⟨Γ, Γ_in, w_Γ, caseOne | caseTwo⟩
· rcases caseOne with ⟨A, as, _, _, Γ_normal⟩
use Γ.1
constructor
· exact dagNormal_is_dagEnd Γ_in Γ_normal
· intro f f_in
apply w_Γ
simp
left
exact f_in
· absurd caseTwo.2 -- contradiction!
exact w_neq_z

case sta a f aSf_in_X =>
rw [Iff.comm]
convert starSoundness M w -- using the Box version of Lemma 5
Expand Down

0 comments on commit a565ac2

Please sign in to comment.