Quellcode-Bibliothek PAL.thy

section ‹a)🚫

  ‹An earlier encoding and automation of the wise men puzzle, utilizing a shallow embedding of
 -order (multi-)modal logic in HOL, has been presented in cite‹"J41" and "J44"›. However, this work did not
  address the interaction dynamics between the involved agents. Here we therefore extend and adapt
  universal (meta-)logical reasoning approach of cite‹"J41"› for public announcement logic (PAL) and
  demonstrate how it can be utilized to achieve a convincing encoding and automation of the
  men puzzle in HOL, so that also the interaction dynamics as given in the scenario is adequately
 . For further background information on the work presented here we refer to cite‹"R78" and "C90"›.›

  PAL imports Main begin (* Sebastian Reiche and Christoph Benzmüller, 2021 *)
 [user_axioms,expect=genuine]

  ‹Type i is associated with possible worlds›
 typedecl i (* Type of possible worlds *)
 type_synonym σ = "i==>bool" (*Type of world domains *)
 type_synonym τ = "σ==>i==>bool" (* Type of world depended formulas (truth sets) *)
 type_synonym α = "i==>i==>bool" (* Type of accessibility relations between world *)
 type_synonym ρ = "α==>bool" (* Type of groups of agents *)

  ‹Some useful relations (for constraining accessibility relations)›
  reflexive::"α==>bool"
 where "reflexive R ≡ ∀x. R x x"
  symmetric::"α==>bool"
 where "symmetric R ≡ ∀x y. R x y ⟶ R y x"
  transitive::"α==>bool"
 where "transitive R ≡ ∀x y z. R x y ∧ R y z ⟶ R x z"
  euclidean::"α==>bool"
 where "euclidean R ≡ ∀x y z. R x y ∧ R x z ⟶ R y z"
  intersection_rel::"α==>α==>α"
 where "intersection_rel R Q ≡ λu v. R u v ∧ Q u v"
  union_rel::"α==>α==>α"
 where "union_rel R Q ≡ λu v. R u v ∨ Q u v"
  sub_rel::"α==>α==>bool"
 where "sub_rel R Q ≡ ∀u v. R u v ⟶ Q u v"
  inverse_rel::"α==>α"
 where "inverse_rel R ≡ λu v. R v u"
  big_union_rel::"ρ==>α"
 where "big_union_rel X ≡ λu v. ∃R. (X R) ∧ (R u v)"
  big_intersection_rel::"ρ==>α"
 where "big_intersection_rel X ≡ λu v. ∀R. (X R) ⟶ (R u v)"

  ‹In HOL the transitive closure of a relation can be defined in a single line.›
  tc::"α==>α"
 where "tc R ≡ λx y.∀Q. transitive Q ⟶ (sub_rel R Q ⟶ Q x y)"

  ‹Logical connectives for PAL›
  patom::"σ==>τ" (‹^A_›[79]80)
 where "^Ap ≡ λW w. W w ∧ p w"
  ptop::"τ" (‹\⊤›)
 where "\⊤ ≡ λW w. True"
  pneg::"τ==>τ" (‹\¬_›[52]53)
 where "\¬φ ≡ λW w. ¬(φ W w)"
  pand::"τ==>τ==>τ" (infixr‹\∧›51)
 where "φ\∧ψ ≡ ‹
  por::"τ==> ‹ of
 where "φor (multi-)modal logic in HOL, has been pres in cite"J41" and "J44"› nt
  pimp:"\tauRight>τ🚫
 where "φ\→ψ ≡ λW w. (φ W w) ⟶ (ψ W w)"
  pequ::"τ==>τ==>τ" (infixr‹\↔›48)
 where "φ\↔ψ ≡<close 
  pknow::"α==>τ==>τ" (‹K_ _›)
 where "K r φ ≡ λW w.∀v. (W v ∧ r w v) ⟶ (φ W v)"
  ppal::"τ==>τ==>τ" (‹[!_]_›)
 where "[!φ]ψ ≡ λW w. (φ W w) ⟶ (ψ (λz. W z ∧ φ W z) w)"

  ‹Glogal validity of PAL formulas›
  pvalid::"τ ==> bool" (\wisemen puzzl in HOL, so that also the interdynami as given in the sc is adequatel
 where "\⌊φ\⌋ ≡ wo pr here werefer to cite

  ‹Introducing agent knowledge (K), mutual knowledge (E), distributed knowledge (D) and common knowledge (C).›
  EVR::"ρ==>α"
 where "EVR G ≡ big_union_rel G"
  DIS::"ρ==>α"
 where "DIS G ≡ big_intersection_rel G"
  agttknows::"α==>τ==>τ" (‹K_{_} _›)
 where "K_r φ ≡
  evrknows::"ρ==>
 where "E_G φ ≡ K (EVR G) φ"
  disknows :: "ρτ==>" (‹)
 where "Type i is associated with possible worlds›
  prck::"ρ==>
 type_synonym σ==>
  pcmn::"ρ==>τ = "σi==>" (* Type oof wo depended formulas (tr sets) *)
 where "G φ ≡C_\(\)"

  ‹
  S5Agent::"α==>
 where "S5Agent i ≡ reflexive i ∧ transitive i ∧
  S5Agents::"ρ==>bool"
 where "S5Agents A ≡ ∀i. (A i ⟶equiv> ∀

  ‹Introducing "Defs" as the set of the above definitions; useful for convenient unfolding.›
  Defs
  reflexive_def[Defs] symmetric_def[Defs] transitive_def[Defs]
 euclidean_def[Defs] intersDefs] union_rel[Defs]
 sub_rel_def[Defs] inverse_rel_def[Defs] big_union_rel_def[Defs]
 big_intersection_rel_def[Defs] tc_def[Defs]

  ‹Consistency: nitpick reports a model.›fo>x y. R x y ⟶
 lemma True nitpick [satisfy] oops (* model found *)


section ‹Automating the Wise Men Puzzle›

text ‹
  a::"α" b::"α" c::"α"
  Agent::"α==>bool" (‹∧"
  where group_S5: "S5Agents A"

  ‹Common knowledge: At least one of a, b and c has a white spot.›
  ws::"α==>σ"
  where WM1: "\⌊C_\A (^Aws a \∨ ^Aws b \∨ ^Aws c)\⌋"

  ‹Common knowledge: If x does not have a white spot then y knows this.›
  where
java.lang.NullPointerException
 WM2ac: "\⌊C_\A (\¬ y ∧ z"
 WM2ba: "\⌊C_\A (\¬(^Aws b) \→ (K_a (\¬(^Aws b))))\⌋" and
 WM2bc: "\⌊C_\A (\¬(^Aws b) \→ (K_c (\¬(^:α<>"
 WM2ca: "\⌊ R Q 🚫
 WM2cb: "\⌊C_\A (\¬(^Aws c) \→ (K_Rightarrowα

  ‹Positive introspection principles are implied.›
  WM2ab': "\⌊ Q ≡
 using WM2ab group_S5 unfolding Defs by metis
  WM2ac': "\⌊C_\A ((^Aws a) \→ K_c (^Aws a))\⌋"
 using WM2ac group_S5 unfolding Defs by metis
  WM2ba': "\⌊>α
 using WM2ba group_S5 unfolding Defs by metis
  WM2bc': "\⌊C_\A ((^Aws b) \→ \ "sub_rel R Q ≡
 using WM2bc group_S5 unfolding Defs by metis
  WM2ca': "\⌊C_\A ((^Aws c) \→ K_a (^Aws c))\⌋"
 using WM2ca group_S5 unfolding Defs by metis
  WM2cb': "\⌊C_\A (( inverse_rel:"α
 using WM2cb group_S5 unfolding Defs by metis

  ‹Automated solutions of the Wise Men Puzzle.›R vu"
  whitespot_c: "\⌊[!\¬K_a(^Aws a)]([!\<definition 
 using WM1 WM2ba WM2ca WM2cb unfolding Defs by (smt (verit))

  ‹∧v)"
  of this proof using trusted methods (often) fails; this hints at further opportunities to
  the reasoning tools in Isabelle/HOL.›
  whitespot_c':
java.lang.NullPointerException
 using WM1 WM2ab WM2ac WM2ba WM2bc WM2ca WM2cb unfolding Defs
 ― ‹sledgehammer by (smt (verit))›
 oops
 
  ‹Consistency: nitpick reports a model.›
  True nitpick [satisfy] oops
 

Messung V0.5 in Prozent

span style='color:green'>Rightarrowalpha\<Rightarrow>bool" 
   where "ub_rel RQ<> \<forall>u v. R u v \<longrightarrow> Q u v"
definition rse_rell:\alpha\<Rightarrow>\<alpha>" 
  where "inverse_rel R \<equiv> \<lambda>u v.   java.lang.StringIndexOutOfBoundsException: Index 52 out of bounds for length 52
definitionbig_union_rel::"\<rho>\<Rightarrow>\<alpha>" 
  where "big_union_rel X \<equiv> \<lambda>u v. \<exists>R. (X R) and (R u java.lang.StringIndexOutOfBoundsException: Index 52 out of bounds for length 52
definition big_intersection_rel::"\<rho>\<Rightarrow>\<alpha>"
  where "big_intersection_rel X \<equiv> \<lambda>u v. \<forall>R. (X R) \<longrightarrow> (R u v)"

text \<open>In HOL the transitive closure of a relation can be defined in a single line.\<close>
definition tc::"\<alpha>\<Rightarrow>\<alpha>" 
  where "tc R \<equiv> \<lambda>x y.\<forall>Q. transitive Q \<longrightarrow> (sub_rel R Q \<longrightarrow> Q x y)"

text \<open>Logical connectives for PAL\<close>
abbreviation patom::"\<sigma>\<Rightarrow>\<tau>" (\<open>\<^sup>A_\<close>[79]80) 
  where "\<^sup>Ap \<equiv> \<lambda>W w. W w \<and> p w"
abbreviation ptop::"\<tau>" (\<open>\<^bold>\<top>\<close>) 
  where "\<^bold>\<top> \<equiv> \<lambda>W w. True" 
abbreviation pneg::"\<tau>\<Rightarrow>\<tau>" (\<open>\<^bold>\<not>_\<close>[52]53) 
  where "\<^bold>\<not>\<phi> \<equiv> \<lambda>W w. \<not>(\<phi> W w)" 
abbreviation pand::"\<tau>\<Rightarrow>\<tau>\<Rightarrow>\<tau>" (infixr\<open>\<^bold>\<and>\<close>51) 
  where "\<phi>\<^bold>\<and>\<psi> \<equiv> \<lambda>W w. (\<phi> W w) \<and> (\<psi> W w)"   
abbreviation por::"\<tau>\<Rightarrow>\<tau>\<Rightarrow>\<tau>" (infixr\<open>\<^bold>\<or>\<close>50) 
  where "\<phi>\<^bold>\<or>\<psi> \<equiv> \<lambda>W w. (\<phi> W w) \<or> (\<psi> W w)"   
abbreviation pimp::"\<tau>\<Rightarrow>\<tau>\<Rightarrow>\<tau>" (infixr\<open>\<^bold>\<rightarrow>\<close>49) 
  where "\<phi>\<^bold>\<rightarrow>\<psi> \<equiv> \<lambda>W w. (\<phi> W w) \<longrightarrow> (\<psi> W w)"  
abbreviation pequ::"\<tau>\<Rightarrow>\<tau>\<Rightarrow>\<tau>" (infixr\<open>\<^bold>\<leftrightarrow>\<close>48) 
  where "\<phi>\<^bold>\<leftrightarrow>\<psi> \<equiv> \<lambda>W w. (\<phi> W w) \<longleftrightarrow> (\<psi> W w)"
abbreviation pknow::"\<alpha>\<Rightarrow>\<tau>\<Rightarrow>\<tau>" (\<open>\<^bold>K_ _\<close>) 
  where "\<^bold>K r \<phi> \<equiv> \<lambda>W w.\<forall>v. (W v \<and> r w v) \<longrightarrow> (\<phi> W v)"
abbreviation ppal::"\<tau>\<Rightarrow>\<tau>\<Rightarrow>\<tau>" (\<open>\<^bold>[\<^bold>!_\<^bold>]_\<close>) 
  where "\<^bold>[\<^bold>!\<phi>\<^bold>]\<psi> \<equiv> \<lambda>W w. (\<phi> W w) \<longrightarrow> (\<psi> (\<lambda>z. W z \<and> \<phi> W z) w)"

text \<open>Glogal validity of PAL formulas\<close>
abbreviation pvalid::"\<tau> \<Rightarrow> bool" (\<open>\<^bold>\<lfloor>_\<^bold>\<rfloor>\<close>[7]8) 
  where "\<^bold>\<lfloor>\<phi>\<^bold>\<rfloor> \<equiv> \<forall>W.\<forall>w. W w \<longrightarrow> \<phi> W w"

text \<open>Introducing agent knowledge (K), mutual knowledge (E), distributed knowledge (D) and common knowledge (C).\<close>
abbreviation EVR::"\<rho>\<Rightarrow>\<alpha>"
  where "EVR G \<equiv> big_union_rel G"
abbreviation DIS::"\<rho>\<Rightarrow>\<alpha>" 
  where "DIS G \<equiv> big_intersection_rel G"
abbreviation agttknows::"\<alpha>\<Rightarrow>\<tau>\<Rightarrow>\<tau>" (\<open>\<^bold>K\<^sub>_ _\<close>) 
  where "\<^bold>K\<^sub>r \<phi> \<equiv>  \<^bold>K r \<phi>" 
abbreviation evrknows::"\<rho>\<Rightarrow>\<tau>\<Rightarrow>\<tau>" (\<open>\<^bold>E\<^sub>_ _\<close>) 
  where "\<^bold>E\<^sub>G \<phi> \<equiv>  \<^bold>K (EVR G) \<phi>"
abbreviation disknows :: "\<rho>\<Rightarrow>\<tau>\<Rightarrow>\<tau>" (\<open>\<^bold>D\<^sub>_ _\<close>) 
  where "\<^bold>D\<^sub>G \<phi> \<equiv> \<^bold>K (DIS G) \<phi>"
abbreviation prck::"\<rho>\<Rightarrow>\<tau>\<Rightarrow>\<tau>\<Rightarrow>\<tau>" (\<open>\<^bold>C\<^sub>_\<^bold>\<lparr>_\<^bold>|_\<^bold>\<rparr>\<close>)
  where "\<^bold>C\<^sub>G\<^bold>\<lparr>\<phi>\<^bold>|\<psi>\<^bold>\<rparr> \<equiv> \<lambda>W w. \<forall>v. (tc (intersection_rel (EVR G) (\<lambda>u v. W v \<and> \<phi> W v)) w v) \<longrightarrow> (\<psi> W v)"
abbreviation pcmn::"\<rho>\<Rightarrow>\<tau>\<Rightarrow>\<tau>" (\<open>\<^bold>C\<^sub>_ _\<close>) 
  where "\<^bold>C\<^sub>G \<phi> \<equiv>  \<^bold>C\<^sub>G\<^bold>\<lparr>\<^bold>\<top>\<^bold>|\<phi>\<^bold>\<rparr>"

text \<open>Postulating S5 principles for the agent's accessibility relations.\<close>
abbreviation S5Agent::"\<alpha>\<Rightarrow>bool"
  where  "S5Agent i \<equiv> reflexive i \<and> transitive i \<and> euclidean i"
abbreviation S5Agents::"\<rho>\<Rightarrow>bool"
  where "S5Agents A \<equiv> \<forall>i. (A i \<longrightarrow> S5Agent i)"

text \<open>Introducing "Defs" as the set of the above definitions; useful for convenient unfolding.\<close>
named_theorems Defs
declare reflexive_def[Defs] symmetric_def[Defs] transitive_def[Defs] 
  euclidean_def[Defs] intersection_rel_def[Defs] union_rel_def[Defs] 
  sub_rel_def[Defs] inverse_rel_def[Defs] big_union_rel_def[Defs] 
  big_intersection_rel_def[Defs] tc_def[Defs]

text \<open>Consistency: nitpick reports a model.\<close>
 lemma True nitpick [satisfy] oops (* model found *)


section ‹Automating the Wise Men Puzzle›

text ‹Agents are modeled as accessibility relations.›
consts a::"α" b::"α" c::"α" 
abbreviation  Agent::"α==>bool" (‹A›) where "A x ≡ x = a ∨ x = b ∨ x = c"
axiomatization where  group_S5: "S5Agents A"

text ‹Common knowledge: At least one of a, b and c has a white spot.›
consts ws::"α==>σ" 
axiomatization where WM1: "\<lfloor>C_\<A> (^Aws a \<or> ^Aws b \<or> ^Aws c)\<rfloor>" 

text                usingf
axiomatization where
  WM2ab: "\<lfloor>C_\<A> (\<not>(^Aws a) \<rightarrow> (K_b (\<not>(^Aws a))))\<rfloor>" and
  WM2ac: "\<lfloor>C_\<A> (\<not>(^Aws a) \<rightarrow> (K_c (\<not>(^Aws a))))\<rfloor>" and
  WM2ba: "\<lfloor>C_\<A> (\<not>(^Aws b) \<rightarrow> (K_a (\<not>(^Aws b))))\<rfloor>" and
  WM2bc: "\<lfloor>C_\<A> (\<not>(^Aws b) \<rightarrow> (K_c (\<not>(^Aws b))))\<rfloor>" and
  WM2ca: "\<lfloor>C_\<A> (\<not>(^Aws c) \<rightarrow> (K_a (\<not>(^Aws c))))\<rfloor>" and
  WM2cb: "\<lfloor>C_\<A> (\<not>(^using assms Expos.exponexponentials_in_sets_cat.ide_(2

text ‹Positive introspection principles are implied.›
lemma WM2ab': "\<lfloor>C_\<A> ((^Aws a) \<rightarrow> K_b (^Aws a))\<rfloor>"
  using WM2ab group_S5 unfolding Defs by metis
lemma WM2ac': "\<lfloor>C_\<A> ((^Aws a) \<rightarrow> by (metisn_homE
  using WM2ac group_S5 unfolding Defs by metis
lemma WM2ba': "\<lfloor>C_\<A> ((^Aws b) \<rightarrow> K_a (^Aws b))\<rfloor>" 
  using WM2ba group_S5 unfolding Defs by metis
lemma WM2bc': "\<lfloor>C_\<A> ((^Aws b) \<rightarrow> K_c (^Aws b))\<rfloor>" 
  using WM2bc group_S5 unfolding Defs by metis
lemma WM2ca': "\<lfloor>C_\<A> ((^Aws c) \<rightarrow> K_a (^Aws c))\<rfloor>" 
  using WM2ca group_S5 unfolding Defs by metis
lemma WM2cb': java.lang.NullPointerException
  using WM2cb group_S5 unfolding Defs by metis

text ‹Automated solutions of the Wise Men Puzzle.›
theorem whitespot_c: "\<lfloor>[!\<not>K_a(^Aws a)]([!\<not>K_b(^Aws b)](K_c (^Aws c)))\<rfloor>"
  using WM1 WM2ba WM2ca WM2cb unfolding Defs by (smt (verit))

text ‹For the following, alternative formulation a proof is found by sledgehammer, while the
reconstruction of this proof using trusted methods (often) fails; this hints at further opportunities to
improve the reasoning tools in Isabelle/HOL.›
theorem whitespot_c':
  "\<lfloor>[!\<not>((K_a (^Aws a)) \<or> (K_a (\<not>^Aws a)))]([!\<not>((K_b (^Aws b)) \<or> (K_b (\<not>^Aws b)))](K_c (^Aws c)))\<rfloor>"
  using WM1 WM2ab WM2ac WM2ba WM2bc WM2ca WM2cb unfolding Defs
   ― ‹sledgehammer by (smt (verit))›
  oops
   
text ‹Consistency: nitpick reports a model.›
lemma True nitpick [satisfy] oops
end