Changed to using Tactics themselves as hypotheses.

ixi/IXi/Proof.hs

@@ -20,7 +20,7 @@ data Proof
     | XiRule Name Proof Proof
     | HXiRule Name Proof Proof
     | HHRule
-    | XIHRule Int
+    | XIHRule Proof
     | Theorem Theorem
 
 hypothesis = Hypothesis
@@ -56,7 +56,9 @@ checkProof (HXiRule name hproof hxiproof) seq = do
 
 checkProof HHRule seq = S.hhRule seq
 
-checkProof (XIHRule z) seq = S.xihRule z seq
+checkProof (XIHRule pf) seq = do
+    seq' <- S.xihRule seq
+    checkProof pf seq'
 
 checkProof (Theorem (MkTheorem t _)) (hyps S.:|- goal)
     | goal == t = Right ()

ixi/IXi/Sequent.hs

@@ -58,7 +58,7 @@ xiRule _ _ = invalid "Goal is not a Xi-form"
 hxiRule :: Name -> Sequent -> Err (Sequent, Sequent)
 hxiRule name (hyps :|- H :% (Xi :% a :% b))
     | nameFree name a || nameFree name b || any (nameFree name) hyps
-        = invalid "Name must no be free in environment"
+        = invalid "Name must not be free in environment"
     | otherwise
         = valid (hyps :|- H :% (a :% n), (a :% n):hyps :|- H :% (b :% n))
     where n = NameVar name
@@ -72,8 +72,8 @@ newName :: Sequent -> Name
 newName seq = safeName' (goal seq : hypotheses seq)
 
 -- conservative extension, Γ,x |- Hx
-xihRule :: Int -> Sequent -> Err ()
-xihRule z (hyps :|- goal)
-    | not (0 <= z && z <= length hyps) = invalid "Index out of range"
-    | not (H :% (hyps !! z) == goal) = invalid "Hypothesis does not match goal"
-    | otherwise = valid ()
+xihRule :: Sequent -> Err Sequent
+xihRule (hyps :|- goal) =
+    case goal of 
+        H :% x -> valid (hyps :|- x)
+        _ -> invalid "Goal is not an H-form"

ixi/IXi/Tactic.hs

@@ -1,6 +1,6 @@
 module IXi.Tactic 
-    ( Tactic, Hypothesis
-    , hypothesis, conversion, implRule, xiRule, hxiRule, hhRule, xihRule, theorem
+    ( Tactic
+    , conversion, implRule, xiRule, hxiRule, hhRule, xihRule, theorem
     , inspect, (>|<)
     , newName
     , prove
@@ -15,16 +15,13 @@ import Control.Applicative
 import Control.Monad (ap, MonadPlus(..))
 
 newtype Tactic = Tactic { unTactic :: Seq.Sequent -> Seq.Err P.Proof }
-newtype Hypothesis = Hypothesis Int  -- index from the end
 
-topHyp :: Seq.Sequent -> Hypothesis
-topHyp seq = Hypothesis (length (Seq.hypotheses seq) - 1)
-
-hypothesis :: Hypothesis -> Tactic
-hypothesis (Hypothesis z) = Tactic $ \seq -> do
-    let ix = length (Seq.hypotheses seq) - z - 1
-    () <- Seq.hypothesis ix seq
+topHyp :: Seq.Sequent -> Tactic
+topHyp seq = Tactic $ \seq' -> do
+    () <- Seq.hypothesis ix seq'
     return (P.hypothesis ix)
+    where
+    ix = length (Seq.hypotheses seq) - 1
 
 conversion :: Conversion -> Tactic -> Tactic
 conversion conv rest = Tactic $ \seq -> do
@@ -39,14 +36,14 @@ implRule p pxTac xpqTac = Tactic $ \seq -> do
     xpqPf <- unTactic xpqTac xpqSeq
     return (P.implRule p pxPf xpqPf)
 
-xiRule :: Name -> Tactic -> (Hypothesis -> Tactic) -> Tactic
+xiRule :: Name -> Tactic -> (Tactic -> Tactic) -> Tactic
 xiRule name hTac implTac = Tactic $ \seq -> do
     (hSeq, implSeq) <- Seq.xiRule name seq
     hPf <- unTactic hTac hSeq
     implPf <- unTactic (implTac (topHyp implSeq)) implSeq
     return (P.xiRule name hPf implPf)
 
-hxiRule :: Name -> Tactic -> (Hypothesis -> Tactic) -> Tactic
+hxiRule :: Name -> Tactic -> (Tactic -> Tactic) -> Tactic
 hxiRule name hTac implTac = Tactic $ \seq -> do
     (hSeq, implSeq) <- Seq.hxiRule name seq
     hPf <- unTactic hTac hSeq
@@ -58,11 +55,11 @@ hhRule = Tactic $ \seq -> do
     () <- Seq.hhRule seq
     return P.hhRule
 
-xihRule :: Hypothesis -> Tactic
-xihRule (Hypothesis z) = Tactic $ \seq -> do
-    let ix = length (Seq.hypotheses seq) - z - 1
-    () <- Seq.xihRule ix seq
-    return (P.xihRule ix)
+xihRule :: Tactic -> Tactic
+xihRule tac = Tactic $ \seq -> do
+    seq' <- Seq.xihRule seq
+    pf <- unTactic tac seq'
+    return (P.xihRule pf)
 
 theorem :: P.Theorem -> Tactic
 theorem thm = Tactic $ \seq -> do