Commit b952f400 authored by Adam Chlipala's avatar Adam Chlipala

Start of certified regexp matcher

parent c41ee66c
...@@ -10,7 +10,7 @@ ...@@ -10,7 +10,7 @@
(* begin hide *) (* begin hide *)
Require Import Arith Bool List. Require Import Arith Bool List.
Require Import Tactics. Require Import Tactics MoreSpecif.
Set Implicit Arguments. Set Implicit Arguments.
(* end hide *) (* end hide *)
...@@ -342,3 +342,136 @@ User error: e1 is used in hypothesis e ...@@ -342,3 +342,136 @@ User error: e1 is used in hypothesis e
| [ |- (if ?E then _ else _) = _ ] => destruct E | [ |- (if ?E then _ else _) = _ ] => destruct E
end; crush). end; crush).
Qed. Qed.
(** * A Certified Regular Expression Matcher *)
Require Import Ascii String.
Open Scope string_scope.
Inductive regexp : (string -> Prop) -> Set :=
| Char : forall ch : ascii,
regexp (fun s => s = String ch "")
| Concat : forall P1 P2 (r1 : regexp P1) (r2 : regexp P2),
regexp (fun s => exists s1, exists s2, s = s1 ++ s2 /\ P1 s1 /\ P2 s2).
Open Scope specif_scope.
Lemma length_emp : length "" <= 0.
crush.
Qed.
Lemma append_emp : forall s, s = "" ++ s.
crush.
Qed.
Ltac substring :=
crush;
repeat match goal with
| [ |- context[match ?N with O => _ | S _ => _ end] ] => destruct N; crush
end.
Lemma substring_le : forall s n m,
length (substring n m s) <= m.
induction s; substring.
Qed.
Lemma substring_all : forall s,
substring 0 (length s) s = s.
induction s; substring.
Qed.
Lemma substring_none : forall s n,
substring n 0 s = EmptyString.
induction s; substring.
Qed.
Hint Rewrite substring_all substring_none : cpdt.
Lemma substring_split : forall s m,
substring 0 m s ++ substring m (length s - m) s = s.
induction s; substring.
Qed.
Lemma length_app1 : forall s1 s2,
length s1 <= length (s1 ++ s2).
induction s1; crush.
Qed.
Hint Resolve length_emp append_emp substring_le substring_split length_app1.
Lemma substring_app_fst : forall s2 s1 n,
length s1 = n
-> substring 0 n (s1 ++ s2) = s1.
induction s1; crush.
Qed.
Lemma substring_app_snd : forall s2 s1 n,
length s1 = n
-> substring n (length (s1 ++ s2) - n) (s1 ++ s2) = s2.
Hint Rewrite <- minus_n_O : cpdt.
induction s1; crush.
Qed.
Hint Rewrite substring_app_fst substring_app_snd using assumption : cpdt.
Section split.
Variables P1 P2 : string -> Prop.
Variable P1_dec : forall s, {P1 s} + {~P1 s}.
Variable P2_dec : forall s, {P2 s} + {~P2 s}.
Variable s : string.
Definition split' (n : nat) : n <= length s
-> {exists s1, exists s2, length s1 <= n /\ s1 ++ s2 = s /\ P1 s1 /\ P2 s2}
+ {forall s1 s2, length s1 <= n -> s1 ++ s2 = s -> ~P1 s1 \/ ~P2 s2}.
refine (fix F (n : nat) : n <= length s
-> {exists s1, exists s2, length s1 <= n /\ s1 ++ s2 = s /\ P1 s1 /\ P2 s2}
+ {forall s1 s2, length s1 <= n -> s1 ++ s2 = s -> ~P1 s1 \/ ~P2 s2} :=
match n return n <= length s
-> {exists s1, exists s2, length s1 <= n /\ s1 ++ s2 = s /\ P1 s1 /\ P2 s2}
+ {forall s1 s2, length s1 <= n -> s1 ++ s2 = s -> ~P1 s1 \/ ~P2 s2} with
| O => fun _ => Reduce (P1_dec "" && P2_dec s)
| S n' => fun _ => (P1_dec (substring 0 (S n') s) && P2_dec (substring (S n') (length s - S n') s))
|| F n' _
end); clear F; crush; eauto 7;
match goal with
| [ _ : length ?S <= 0 |- _ ] => destruct S
| [ _ : length ?S' <= S ?N |- _ ] =>
generalize (eq_nat_dec (length S') (S N)); destruct 1
end; crush.
Defined.
Definition split : {exists s1, exists s2, s = s1 ++ s2 /\ P1 s1 /\ P2 s2}
+ {forall s1 s2, s = s1 ++ s2 -> ~P1 s1 \/ ~P2 s2}.
refine (Reduce (split' (n := length s) _)); crush; eauto.
Defined.
End split.
Implicit Arguments split [P1 P2].
Lemma app_cong : forall x1 y1 x2 y2,
x1 = x2
-> y1 = y2
-> x1 ++ y1 = x2 ++ y2.
congruence.
Qed.
Hint Resolve app_cong.
Definition matches P (r : regexp P) s : {P s} + { ~P s}.
refine (fix F P (r : regexp P) s : {P s} + { ~P s} :=
match r with
| Char ch => string_dec s (String ch "")
| Concat _ _ r1 r2 => Reduce (split (F _ r1) (F _ r2) s)
end); crush;
match goal with
| [ H : _ |- _ ] => generalize (H _ _ (refl_equal _))
end;
tauto.
Defined.
Example hi := Concat (Char "h"%char) (Char "i"%char).
Eval simpl in matches hi "hi".
Eval simpl in matches hi "bye".
...@@ -24,7 +24,26 @@ Notation "'Yes'" := (left _ _) : specif_scope. ...@@ -24,7 +24,26 @@ Notation "'Yes'" := (left _ _) : specif_scope.
Notation "'No'" := (right _ _) : specif_scope. Notation "'No'" := (right _ _) : specif_scope.
Notation "'Reduce' x" := (if x then Yes else No) (at level 50) : specif_scope. Notation "'Reduce' x" := (if x then Yes else No) (at level 50) : specif_scope.
Notation "x || y" := (if x then Yes else Reduce y) (at level 50) : specif_scope. Notation "x || y" := (if x then Yes else Reduce y) (at level 50, left associativity) : specif_scope.
Section sumbool_and.
Variables P1 Q1 P2 Q2 : Prop.
Variable x1 : {P1} + {Q1}.
Variable x2 : {P2} + {Q2}.
Definition sumbool_and : {P1 /\ P2} + {Q1 \/ Q2} :=
match x1 with
| left HP1 =>
match x2 with
| left HP2 => left _ (conj HP1 HP2)
| right HQ2 => right _ (or_intror _ HQ2)
end
| right HQ1 => right _ (or_introl _ HQ1)
end.
End sumbool_and.
Infix "&&" := sumbool_and (at level 40, left associativity) : specif_scope.
Inductive maybe (A : Type) (P : A -> Prop) : Set := Inductive maybe (A : Type) (P : A -> Prop) : Set :=
| Unknown : maybe P | Unknown : maybe P
......
...@@ -111,14 +111,17 @@ Ltac un_done := ...@@ -111,14 +111,17 @@ Ltac un_done :=
| [ H : done _ |- _ ] => clear H | [ H : done _ |- _ ] => clear H
end. end.
Ltac crush' lemmas invOne := Ltac crush'' tryLemmas lemmas invOne :=
let sintuition := simpl in *; intuition; try subst; repeat (simplHyp invOne; intuition; try subst); try congruence let sintuition := simpl in *; intuition; try subst; repeat (simplHyp invOne; intuition; try subst); try congruence
in (sintuition; rewriter; in (sintuition; rewriter;
repeat ((app ltac:(fun L => inster L L) lemmas || appHyps ltac:(fun L => inster L L)); match tryLemmas with
repeat (simplHyp invOne; intuition)); | true => repeat ((app ltac:(fun L => inster L L) lemmas || appHyps ltac:(fun L => inster L L));
un_done; sintuition; try omega; try (elimtype False; omega)). repeat (simplHyp invOne; intuition)); un_done
| _ => idtac
end; sintuition; try omega; try (elimtype False; omega)).
Ltac crush := crush' tt fail. Ltac crush := crush'' false tt fail.
Ltac crush' := crush'' true.
Theorem dep_destruct : forall (T : Type) (T' : T -> Type) x (v : T' x) (P : T' x -> Prop), Theorem dep_destruct : forall (T : Type) (T' : T -> Type) x (v : T' x) (P : T' x -> Prop),
(forall x' (v' : T' x') (Heq : x' = x), P (match Heq in (_ = x) return (T' x) with (forall x' (v' : T' x') (Heq : x' = x), P (match Heq in (_ = x) return (T' x) with
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment