4059 ensures substitution

[geo2a]

Fixes #4059

This PR improves Booster's handling of substitutions.

Summary

Substitutions are special predicates: equations where the LHS is a variable, for example VAR ==Int TERM. See Booster.Syntax.Json.Internalise.mbSubstitution for the exact specification of what is considered to be a substitution.

This PR changes the Pattern type to explicitly carry these special substitution predicates:

+type Substitution = Map Variable Term
+
 -- | A term (configuration) constrained by a number of predicates.
 data Pattern = Pattern
     { term :: Term
     , constraints :: !(Set Predicate)
+    , substitution :: Substitution
     , ceilConditions :: ![Ceil]
     }
     deriving stock (Eq, Ord, Show, Generic, Data)

Substitution may appear out of three places:

• sent in the request body
• ensured as a post condition of a rewrite rule
• NOT IMPLEMENTED learned from the branching condition --- this is something that will be added as part of 3956 branching on complete conditions in Booster #4058

The first source is handled by the pattern internalisation code. The second and third sources are different, as the pattern has already been internalised. All this sources can also produce generic (i.e. non-substitution) constrains that should be added into the constrains set of a Pattern. Substitutions, when produces, should be applied to the term of the Pattern and added to the substitution field. This PR makes sure we use the same code path for separating substitutions from generic predicates everywhere. We use Booster.Syntax.Json.Internalise.mbSubstitution.mkSubstitution to take care of cyclic, which are broken up, and duplicate bindings, which are treated as constraints.

With these changes, we can harmonize many (but not all) specialisations of the integrations test responses, i.e. we do not need many of the *.booster-dev and *.kore-rpc-dev response files.

Changes to pattern simplification code

As the Pattern type has changed, we must adapt the ApplyEquations.evaluatePattern and ApplyEquations.evaluatePattern' functions to:

• consider substitutions as known truth together with all other constraints (that's what we did before)
• simplify the substitution

We achieve that by doing the following:

• convert the substitution into equalities and assume it as know truth
• when constructing the new, simplified pattern, use the same code as when internalising a pattern to partition predicates into the substitution and non-substitution ones

Changes to rewrite rule application code

The Pattern.Rewrite.applyRule function has been changed to:

• consider substiontion as known truth together with all other constraints (that's what we did before) when checking requires/ensures
• extract the substitution from the ensured conditions and add it to the rewritten pattern

[geo2a]

Failed KEVM tests as of 52d3ad4

FAILED src/tests/integration/test_prove.py::test_prove_rules[mcd/flopper-dent-guy-diff-tic-not-0-pass-rough-spec.k]
FAILED src/tests/integration/test_prove.py::test_prove_rules[mcd/flopper-dent-guy-same-pass-rough-spec.k]
FAILED src/tests/integration/test_prove.py::test_prove_rules[mcd/flopper-kick-pass-rough-spec.k]
FAILED src/tests/integration/test_prove.py::test_prove_rules[mcd/cat-file-addr-pass-rough-spec.k]
FAILED src/tests/integration/test_prove.py::test_prove_rules[mcd/pot-join-pass-rough-spec.k]
FAILED src/tests/integration/test_prove.py::test_prove_rules[mcd/end-pack-pass-rough-spec.k]
FAILED src/tests/integration/test_prove.py::test_prove_rules[mcd/flapper-yank-pass-rough-spec.k]
FAILED src/tests/integration/test_prove.py::test_prove_rules[mcd/flopper-cage-pass-spec.k]

[geo2a]

No failed KEVM tests at commit fdf62fc and not much difference in performance:

| Test                                          | 4059-ensures-substitution time | master-434710529 time | (4059-ensures-substitution/master-434710529) time
|-----------------------------------------------|--------------------------------|-----------------------|---------------------------------------------------
| mcd/vow-fess-fail-rough-spec.k                | 108.68                         | 115.11                | 0.9441403874554775
| mcd-structured/flopper-file-pass-rough-spec.k | 18.23                          | 19.14                 | 0.9524555903866249
| erc20/ds/allowance-spec.k                     | 52.94                          | 55.03                 | 0.9620207159731056
| benchmarks/storagevar01-spec.k                | 49.16                          | 47.2                  | 1.0415254237288134
| mcd/flopper-file-pass-rough-spec.k            | 19.46                          | 18.58                 | 1.047362755651238
| mcd-structured/cat-exhaustiveness-spec.k      | 118.05                         | 111.06                | 1.0629389519178822
| TOTAL                                         | 366.52000000000004             | 366.12                | 1.0010925379656943

[jberthold]

Big job, well done! I like that we can ditch many of the response*.booster-dev files.

One open question is the removal of purging the simplifier cache when we have new constraints, I think that should still be done. Please put this back or explain why we don't.

The other things are minor and stylistic. Maybe we should think about the pattern constructor, as mentioned.

[jberthold]

While reading through here, I thought that internaliseTermOrPredicates, and any internalisation that may return a Pattern as a whole, should maybe already apply the substitution before returning the result (somewhat "normalising" the pattern before it is returned).
The internalisePattern, in contrast, returns the parts separately and leaves it to the caller to piece them back together. This is because we use it a lot in the definition internalisation where we need the parts separately.
This is more of a stylistic preference, and IDK how much fall-out it will have, so it is not necessary.

[geo2a]

This is a very good point. I'll try putting this change in.

[jberthold]

That FIXME was referring to the fact that the t' :: Term is not well-sorted. Probably good enough for logging, though... just that nobody should use the json version of it as input directly.

[geo2a]

How do we make it well-sorted? Replace AndTerm with _andBool_?

[geo2a]

Ah no, there's a term there...

[jberthold]

Same comment as above, maybe the Pattern returned from internalisePatternOrTopOrBottom should already have the substitution applied...
I wonder whether we could just enforce that by a smart constructor for Pattern.

[geo2a]

We very often construct a pattern directly, bypassing the Pattern_ smart-constructor. I'd love to have a smart constructor that is used consistently, but I think it may be out-of-scope for this PR. I do agree that it's best to apply the substitution in the internalisation function that return a Pattern.

[jberthold]

(nit) maybe worth giving this expression a name:

Suggested change

	toCheck <-
	lift $
	filterOutKnownConstraints
	(pat.constraints <> (Set.fromList . asEquations $ pat.substitution))
	ruleRequires
	let knownConstraints = pat.constraints <> Set.fromList (asEquations pat.substitution)
	toCheck <- lift $ filterOutKnownConstraints knownConstraints ruleRequires

and onwards below just inserting knownConstraints for pat.constraints in the old code?

[geo2a]

Good idea!

[jberthold]

(Why) Is this not true any more?

[geo2a]

We have a similar piece of code in applyRule, just after the call to checkEnsures. On master we are invalidating the cache twice: at the end of checkEnsures (removed here) and right after the call to checkEnsures in applyRule.

[jberthold]

This function is currently unused but we should either delete it or also modify the Map keys (variables).

[geo2a]

Removed, thanks!

[jberthold]

Suggested change

	-- substitution mining
	extractSubsitution,
	-- substitution mining
	extractSubstitution,

😁

[geo2a]

🤦

[jberthold]

Maybe simpler to just use partition and a helper that extracts the Terms from BoolPred immediately (avoids unsafeFromBoolPred below)

Suggested change

	extractSubsitution ::
	[Internal.Predicate] -> (Map Internal.Variable Internal.Term, Set Internal.Predicate)
	extractSubsitution ps =
	let (potentialSubstituion, otherPreds) = partitionSubstitutionPreds . map mbSubstitution . coerce $ ps
	(newSubstitution, leftoverPreds) = mkSubstitution potentialSubstituion
	in (newSubstitution, Set.fromList $ leftoverPreds <> map unsafeFromBoolPred otherPreds)
	where
	partitionSubstitutionPreds = foldl' accumulate ([], [])
	where
	accumulate (accSubst, accOther) = \case
	pSubst@SubstitutionPred{} -> (pSubst : accSubst, accOther)
	pOther -> (accSubst, pOther : accOther)
	extractSubstitution ::
	[Internal.Predicate] -> (Map Internal.Variable Internal.Term, Set Internal.Predicate)
	extractSubstitution ps =
	let (potentialSubstitution, otherPreds) = partitionSubstitutionPreds . map mbSubstitution . coerce $ ps
	(newSubstitution, leftoverPreds) = mkSubstitution potentialSubstitution
	in (newSubstitution, Set.fromList $ leftoverPreds <> otherPreds)
	where
	partitionSubstitutionPreds = partitionEithers . unpackBoolPred
	where
	unpackBoolPred = \case
	pSubst@SubstitutionPred{} -> Left pSubst
	BoolPred p -> Right p
	other -> error $ "extractSubstitution: unsupported predicate " <> show other

[geo2a]

Great idea, done!

[geo2a]

We invalidate the cache here if a new constraint has been ensured.