proof format

Signed-off-by: Nikolaj Bjorner <nbjorner@microsoft.com>

src/sat/smt/arith_diagnostics.cpp

@@ -80,6 +80,33 @@ namespace arith {
         if (m_nla) m_nla->collect_statistics(st);
     }
 
+    void solver::add_assumptions() {
+        m_arith_hint.reset();
+        unsigned i = 0;
+        for (auto const & ev : m_explanation) {
+            ++i;
+            auto idx = ev.ci();
+            if (UINT_MAX == idx)
+                continue;
+            switch (m_constraint_sources[idx]) {
+            case inequality_source: {
+                literal lit = m_inequalities[idx];
+                m_arith_hint.m_literals.push_back({ev.coeff(), lit});
+                break;                
+            }
+            case equality_source: {
+                auto [u, v] = m_equalities[idx];
+                ctx.drat_log_expr(u->get_expr());
+                ctx.drat_log_expr(v->get_expr());
+                m_arith_hint.m_eqs.push_back({u->get_expr_id(), v->get_expr_id()});
+                break;
+            }
+            default:
+                break;
+            }
+        }
+    }
+
     /**
      * It may be necessary to use the following assumption when checking Farkas claims
      * generated from bounds propagation:
@@ -91,34 +118,19 @@ namespace arith {
     sat::proof_hint const* solver::explain(sat::hint_type ty, sat::literal lit) {
         if (!ctx.use_drat())
             return nullptr;
-        m_bounds_pragma.m_ty = ty;
-        m_bounds_pragma.m_literals.reset();
-        m_bounds_pragma.m_eqs.reset();
-        unsigned i = 0;
-        for (auto const & ev : m_explanation) {
-            ++i;
-            auto idx = ev.ci();
-            if (UINT_MAX == idx)
-                continue;
-            switch (m_constraint_sources[idx]) {
-            case inequality_source: {
-                literal lit = m_inequalities[idx];
-                m_bounds_pragma.m_literals.push_back({ev.coeff(), lit});
-                break;                
-            }
-            case equality_source: {
-                auto [u, v] = m_equalities[idx];
-                ctx.drat_log_expr(u->get_expr());
-                ctx.drat_log_expr(v->get_expr());
-                m_bounds_pragma.m_eqs.push_back({ev.coeff(), u->get_expr_id(), v->get_expr_id()});
-                break;
-            }
-            default:
-                break;
-            }
-        }
+        m_arith_hint.m_ty = ty;
+        add_assumptions();
         if (lit != sat::null_literal)
-            m_bounds_pragma.m_literals.push_back({rational(1), ~lit});
-        return &m_bounds_pragma;
+            m_arith_hint.m_literals.push_back({rational(1), ~lit});
+        return &m_arith_hint;
+    }
+
+    sat::proof_hint const* solver::explain_implied_eq(euf::enode* a, euf::enode* b) {
+        if (!ctx.use_drat())
+            return nullptr;
+        m_arith_hint.m_ty = sat::hint_type::implied_eq_h;
+        add_assumptions();
+        m_arith_hint.m_diseqs.push_back({a->get_expr_id(), b->get_expr_id()});
+        return &m_arith_hint;
     }
 }

src/sat/smt/arith_proof_checker.h

@@ -40,6 +40,8 @@ namespace arith {
         row m_ineq;
         row m_conseq;
         vector<row> m_eqs;
+        vector<row> m_ineqs;
+        vector<row> m_diseqs;
         
         void add(row& r, expr* v, rational const& coeff) {
             rational coeff1;
@@ -241,6 +243,26 @@ namespace arith {
             return false;
         }
 
+        //
+        // checking disequalities is TBD.
+        // it has to select only a subset of bounds to justify each inequality.
+        // example
+        // c <= x <= c, c <= y <= c => x = y
+        // for the proof of x <= y use the inequalities x <= c <= y
+        // for the proof of y <= x use the inequalities y <= c <= x
+        // example
+        // x <= y, y <= z, z <= u, u <= x => x = z
+        // for the proof of x <= z use the inequalities x <= y, y <= z
+        // for the proof of z <= x use the inequalities z <= u, u <= x
+        // 
+        // so when m_diseqs is non-empty we can't just add inequalities with Farkas coefficients
+        // into m_ineq, since coefficients of the usable subset vanish.
+        // 
+
+        bool check_diseq() {
+            return false;
+        }
+
         std::ostream& display_row(std::ostream& out, row const& r) {
             bool first = true;
             for (auto const& [v, coeff] : r.m_coeffs) {
@@ -270,6 +292,11 @@ namespace arith {
                 out << " <= 0\n";
         }
 
+        row& fresh(vector<row>& rows) {
+            rows.push_back(row());
+            return rows.back();
+        }
+
         
     public:
         proof_checker(ast_manager& m): m(m), a(m) {}
@@ -278,10 +305,14 @@ namespace arith {
             m_ineq.reset();
             m_conseq.reset();
             m_eqs.reset();
+            m_ineqs.reset();
+            m_diseqs.reset();
             m_strict = false;
         }
         
         bool add_ineq(rational const& coeff, expr* e, bool sign) {
+            if (!m_diseqs.empty())
+                return add_literal(fresh(m_ineqs), abs(coeff), e, sign);
             return add_literal(m_ineq, abs(coeff), e, sign);
         }
         
@@ -290,14 +321,21 @@ namespace arith {
         }
         
         void add_eq(expr* a, expr* b) {
-            m_eqs.push_back(row());
-            row& r = m_eqs.back();
+            row& r = fresh(m_eqs);
             linearize(r, rational(1), a);
             linearize(r, rational(-1), b);
         }
+
+        void add_diseq(expr* a, expr* b) {
+            row& r = fresh(m_diseqs);
+            linearize(r, rational(1), a);
+            linearize(r, rational(-1), b);            
+        }
         
         bool check() {
-            if (!m_conseq.m_coeffs.empty())
+            if (!m_diseqs.empty())
+                return check_diseq();
+            else if (!m_conseq.m_coeffs.empty())
                 return check_bound();
             else
                 return check_farkas();

src/sat/smt/arith_solver.cpp

@@ -321,7 +321,8 @@ namespace arith {
         reset_evidence();
         for (auto ev : e)
             set_evidence(ev.ci());
-        auto* jst = euf::th_explain::propagate(*this, m_core, m_eqs, n1, n2); // TODO add equality explanation
+        auto* ex = explain_implied_eq(n1, n2);
+        auto* jst = euf::th_explain::propagate(*this, m_core, m_eqs, n1, n2, ex); 
         ctx.propagate(n1, n2, jst->to_index());
         return true;
     }
@@ -756,7 +757,8 @@ namespace arith {
         set_evidence(ci4);
         enode* x = var2enode(v1);
         enode* y = var2enode(v2);
-        auto* jst = euf::th_explain::propagate(*this, m_core, m_eqs, x, y); // TODO add equality explanation
+        auto* ex = explain_implied_eq(x, y);
+        auto* jst = euf::th_explain::propagate(*this, m_core, m_eqs, x, y, ex);
         ctx.propagate(x, y, jst->to_index());
     }
 
@@ -1176,7 +1178,7 @@ namespace arith {
             app_ref b = mk_bound(m_lia->get_term(), m_lia->get_offset(), !m_lia->is_upper());
             IF_VERBOSE(4, verbose_stream() << "cut " << b << "\n");
             literal lit = expr2literal(b);
-            assign(lit, m_core, m_eqs, explain(sat::hint_type::cut_h, lit));
+            assign(lit, m_core, m_eqs, explain(sat::hint_type::bound_h, lit));
             lia_check = l_false;
             break;
         }

src/sat/smt/arith_solver.h

@@ -419,9 +419,11 @@ namespace arith {
         void false_case_of_check_nla(const nla::lemma& l);        
         void dbg_finalize_model(model& mdl);
 
-        sat::proof_hint m_bounds_pragma;
+        sat::proof_hint m_arith_hint;
         sat::proof_hint m_farkas2;
         sat::proof_hint const* explain(sat::hint_type ty, sat::literal lit = sat::null_literal);
+        sat::proof_hint const* explain_implied_eq(euf::enode* a, euf::enode* b);
+        void add_assumptions();
 
 
     public: