## P4 詳細化関係は前順序関係である
前順序関係とは，ある関係が反射律と推移律を満たすことを言う．<br>
さらに，プログラムの同値関係が*equivalence*で良いとき，詳細化関係は反対称律を満たし，順序関係となる．

In [1]:
from z3 import Solver
from meyer.meyer import conclude
from meyer.program import prog, progs
from meyer.equivalence import equal
from meyer.util.z3py_set import set

s = Solver()

## 反射律
### $$ \forall{p}. \ p \subseteq p $$

In [2]:
title = "Reflexive"
p = prog(s, 'p')
conclude(s, p <= p, title)

[And(ForAll(x_2, Implies(pre(p_1)[x_2], set(p_1)[x_2])),
     ForAll([x_3, y_4],
            Implies(post(p_1)[x_3][y_4],
                    And(set(p_1)[x_3], set(p_1)[y_4])))),
 Not(And(ForAll(x_5, Implies(set(p_1)[x_5], set(p_1)[x_5])),
         ForAll(x_6, Implies(pre(p_1)[x_6], pre(p_1)[x_6])),
         ForAll([x_7, y_8],
                Implies(And(post(p_1)[x_7][y_8],
                            pre(p_1)[x_7]),
                        post(p_1)[x_7][y_8]))))]
[33mReflexive
Universe = U, has 3 element(s)[0m
[36mHolds: unsat[0m 



## 反対称律
### $$ \forall{p_1}\forall{p_2}. \ ( \ p_1 \subseteq p_2 \ \land \ p_2 \subseteq p_1 \ ) \rightarrow p_1 = p_2 $$
プログラムの同値関係が*equivalence*で良いとき成り立つ．

In [3]:
title = "antisymmetric"
p1, p2 = progs(s, 'p1 p2')
s.add(p1 <= p2, p2 <= p1)
conclude(s, p1 == p2, title)

[And(ForAll(x_10, Implies(pre(p1_9)[x_10], set(p1_9)[x_10])),
     ForAll([x_11, y_12],
            Implies(post(p1_9)[x_11][y_12],
                    And(set(p1_9)[x_11], set(p1_9)[y_12])))),
 And(ForAll(x_14,
            Implies(pre(p2_13)[x_14], set(p2_13)[x_14])),
     ForAll([x_15, y_16],
            Implies(post(p2_13)[x_15][y_16],
                    And(set(p2_13)[x_15], set(p2_13)[y_16])))),
 And(ForAll(x_17,
            Implies(set(p2_13)[x_17], set(p1_9)[x_17])),
     ForAll(x_18,
            Implies(pre(p2_13)[x_18], pre(p1_9)[x_18])),
     ForAll([x_19, y_20],
            Implies(And(post(p1_9)[x_19][y_20],
                        pre(p2_13)[x_19]),
                    post(p2_13)[x_19][y_20]))),
 And(ForAll(x_21,
            Implies(set(p1_9)[x_21], set(p2_13)[x_21])),
     ForAll(x_22,
            Implies(pre(p1_9)[x_22], pre(p2_13)[x_22])),
     ForAll([x_23, y_24],
            Implies(And(post(p2_13)[x_23][y_24],
                        pre(p1_9)[x_23]),
             

In [4]:
title = "antisymmetric equal"
p1, p2 = progs(s, 'p1 p2')
s.add(p1 <= p2, p2 <= p1)
conclude(s, equal(p1, p2), title)

[And(ForAll(x_29,
            Implies(pre(p1_28)[x_29], set(p1_28)[x_29])),
     ForAll([x_30, y_31],
            Implies(post(p1_28)[x_30][y_31],
                    And(set(p1_28)[x_30], set(p1_28)[y_31])))),
 And(ForAll(x_33,
            Implies(pre(p2_32)[x_33], set(p2_32)[x_33])),
     ForAll([x_34, y_35],
            Implies(post(p2_32)[x_34][y_35],
                    And(set(p2_32)[x_34], set(p2_32)[y_35])))),
 And(ForAll(x_36,
            Implies(set(p2_32)[x_36], set(p1_28)[x_36])),
     ForAll(x_37,
            Implies(pre(p2_32)[x_37], pre(p1_28)[x_37])),
     ForAll([x_38, y_39],
            Implies(And(post(p1_28)[x_38][y_39],
                        pre(p2_32)[x_38]),
                    post(p2_32)[x_38][y_39]))),
 And(ForAll(x_40,
            Implies(set(p1_28)[x_40], set(p2_32)[x_40])),
     ForAll(x_41,
            Implies(pre(p1_28)[x_41], pre(p2_32)[x_41])),
     ForAll([x_42, y_43],
            Implies(And(post(p2_32)[x_42][y_43],
                        pre(p1_28

## 推移律
### $$ \forall p_1 \forall p_2 \forall p_3 . \ ( \ p_1 \subseteq p_2 \ \land \ p_2 \subseteq p_3 \ ) \ \rightarrow \ p_1 \subseteq p_3 $$ 

In [5]:
title = "transitive"
p1, p2, p3 = progs(s, 'p1 p2 p3')
s.add(p1 <= p2, p2 <= p3)
conclude(s, p1 <= p3, title)

[And(ForAll(x_49,
            Implies(pre(p1_48)[x_49], set(p1_48)[x_49])),
     ForAll([x_50, y_51],
            Implies(post(p1_48)[x_50][y_51],
                    And(set(p1_48)[x_50], set(p1_48)[y_51])))),
 And(ForAll(x_53,
            Implies(pre(p2_52)[x_53], set(p2_52)[x_53])),
     ForAll([x_54, y_55],
            Implies(post(p2_52)[x_54][y_55],
                    And(set(p2_52)[x_54], set(p2_52)[y_55])))),
 And(ForAll(x_57,
            Implies(pre(p3_56)[x_57], set(p3_56)[x_57])),
     ForAll([x_58, y_59],
            Implies(post(p3_56)[x_58][y_59],
                    And(set(p3_56)[x_58], set(p3_56)[y_59])))),
 And(ForAll(x_60,
            Implies(set(p2_52)[x_60], set(p1_48)[x_60])),
     ForAll(x_61,
            Implies(pre(p2_52)[x_61], pre(p1_48)[x_61])),
     ForAll([x_62, y_63],
            Implies(And(post(p1_48)[x_62][y_63],
                        pre(p2_52)[x_62]),
                    post(p2_52)[x_62][y_63]))),
 And(ForAll(x_64,
            Implies(set(p3_56)[

## P5 実装を持つ仕様/プログラムは実行可能である

In [6]:
title = "P5: A specification/program having an implementation is feasible"
p1, p2 = progs(s, 'p1 p2')
s.add(p1 < p2)
conclude(s, +p2, title)

[And(ForAll(x_73,
            Implies(pre(p1_72)[x_73], set(p1_72)[x_73])),
     ForAll([x_74, y_75],
            Implies(post(p1_72)[x_74][y_75],
                    And(set(p1_72)[x_74], set(p1_72)[y_75])))),
 And(ForAll(x_77,
            Implies(pre(p2_76)[x_77], set(p2_76)[x_77])),
     ForAll([x_78, y_79],
            Implies(post(p2_76)[x_78][y_79],
                    And(set(p2_76)[x_78], set(p2_76)[y_79])))),
 And(ForAll(x_80,
            Implies(pre(p1_72)[x_80],
                    Exists(x_82, post(p1_72)[x_80][x_82]))),
     And(ForAll(x_83,
                Implies(set(p2_76)[x_83], set(p1_72)[x_83])),
         ForAll(x_84,
                Implies(pre(p2_76)[x_84], pre(p1_72)[x_84])),
         ForAll([x_85, y_86],
                Implies(And(post(p1_72)[x_85][y_86],
                            pre(p2_76)[x_85]),
                        post(p2_76)[x_85][y_86])))),
 Not(ForAll(x_87,
            Implies(pre(p2_76)[x_87],
                    Exists(x_89, post(p2_76)[x_87][x_8

## P6 実行可能な演算対象と任意の状態集合に対し，基本演算は実行可能なプログラムを生成する

In [7]:
title = "P6(Choice): If p1 and p2 are feasible, p1 ∪ p2 is feasible."
p1, p2 = progs(s, 'p1 p2')
s.add(+p1, +p2)
conclude(s, +(p1 | p2), title)

[And(ForAll(x_91,
            Implies(pre(p1_90)[x_91], set(p1_90)[x_91])),
     ForAll([x_92, y_93],
            Implies(post(p1_90)[x_92][y_93],
                    And(set(p1_90)[x_92], set(p1_90)[y_93])))),
 And(ForAll(x_95,
            Implies(pre(p2_94)[x_95], set(p2_94)[x_95])),
     ForAll([x_96, y_97],
            Implies(post(p2_94)[x_96][y_97],
                    And(set(p2_94)[x_96], set(p2_94)[y_97])))),
 ForAll(x_98,
        Implies(pre(p1_90)[x_98],
                Exists(x_100, post(p1_90)[x_98][x_100]))),
 ForAll(x_101,
        Implies(pre(p2_94)[x_101],
                Exists(x_103, post(p2_94)[x_101][x_103]))),
 Not(ForAll(x_104,
            Implies(Or(pre(p1_90)[x_104], pre(p2_94)[x_104]),
                    Exists(x_106,
                           Or(post(p1_90)[x_104][x_106],
                              post(p2_94)[x_104][x_106])))))]
[33mP6(Choice): If p1 and p2 are feasible, p1 ∪ p2 is feasible.
Universe = U, has 3 element(s)[0m
[36mHolds: unsat[0m 



In [8]:
title = "P6(Composition): If p1 and p2 are feasible, p1;p2 is feasible."
p1, p2 = progs(s, 'p1 p2')
s.add(+p1, +p2)
from meyer.basic_constructs import Comp
conclude(s, +(p1 ^ p2), title)

[And(ForAll(x_108,
            Implies(pre(p1_107)[x_108], set(p1_107)[x_108])),
     ForAll([x_109, y_110],
            Implies(post(p1_107)[x_109][y_110],
                    And(set(p1_107)[x_109],
                        set(p1_107)[y_110])))),
 And(ForAll(x_112,
            Implies(pre(p2_111)[x_112], set(p2_111)[x_112])),
     ForAll([x_113, y_114],
            Implies(post(p2_111)[x_113][y_114],
                    And(set(p2_111)[x_113],
                        set(p2_111)[y_114])))),
 ForAll(x_115,
        Implies(pre(p1_107)[x_115],
                Exists(x_117, post(p1_107)[x_115][x_117]))),
 ForAll(x_118,
        Implies(pre(p2_111)[x_118],
                Exists(x_120, post(p2_111)[x_118][x_120]))),
 Not(ForAll(x_121,
            Implies(And(pre(p1_107)[x_121],
                        Exists(y_122,
                               And(post(p1_107)[x_121][y_122],
                                   pre(p2_111)[y_122]))),
                    Exists(x_124,
                      

In [9]:
title = "P6(Restriction): If p is feasible, C:p is feasible."
p = prog(s, 'p')
C = set('C')
s.add(+p)
conclude(s, +(p / C), title)

[And(ForAll(x_127,
            Implies(pre(p_126)[x_127], set(p_126)[x_127])),
     ForAll([x_128, y_129],
            Implies(post(p_126)[x_128][y_129],
                    And(set(p_126)[x_128],
                        set(p_126)[y_129])))),
 ForAll(x_131,
        Implies(pre(p_126)[x_131],
                Exists(x_133, post(p_126)[x_131][x_133]))),
 Not(ForAll(x_134,
            Implies(And(pre(p_126)[x_134], C_130[x_134]),
                    Exists(x_136,
                           And(post(p_126)[x_134][x_136],
                               C_130[x_134])))))]
[33mP6(Restriction): If p is feasible, C:p is feasible.
Universe = U, has 3 element(s)[0m
[36mHolds: unsat[0m 

