feat: proof term construction infrastructure for linarith in grind (#8687)

This PR implements the infrastructure for constructing proof terms in
the linarith procedure in `grind`. It also adds the `ToExpr` instances
for the reified objects.

Author: leodemoura

src/Init/Grind/Tactics.lean

@@ -175,7 +175,7 @@ structure Config where
   -/
   zeta := true
   /--
-  When `true` (default: `false`), uses procedure for handling equalities over commutative rings.
+  When `true` (default: `true`), uses procedure for handling equalities over commutative rings.
   -/
   ring := true
   ringSteps := 10000
@@ -184,6 +184,11 @@ structure Config where
   proof terms, instead of a single-step Nullstellensatz certificate
   -/
   ringNull := false
+  /--
+  When `true` (default: `true`), uses procedure for handling linear arithmetic for `IntModule`, and
+  `CommRing`.
+  -/
+  linarith := true
   deriving Inhabited, BEq
 
 end Lean.Grind

src/Lean/Elab/Tactic/Grind.lean

@@ -144,6 +144,7 @@ def grind
     let result ← Grind.main mvar'.mvarId! params fallback
     if result.hasFailed then
       throwError "`grind` failed\n{← result.toMessageData}"
+    trace[grind.debug.proof] "{← instantiateMVars mvar'}"
     -- `grind` proofs are often big
     let e ← if (← isProp type) then
       mkAuxTheorem type (← instantiateMVarsProfiling mvar') (zetaDelta := true)

src/Lean/Meta/Tactic/Grind/Arith/Cutsat/Util.lean

@@ -5,6 +5,7 @@ Authors: Leonardo de Moura
 -/
 prelude
 import Lean.Meta.Tactic.Grind.Types
+import Lean.Meta.Tactic.Grind.Arith.Util
 
 namespace Int.Linear
 def Poly.isZero : Poly → Bool
@@ -59,16 +60,6 @@ def eliminated (x : Var) : GoalM Bool :=
 @[extern "lean_grind_cutsat_assert_eq"] -- forward definition
 opaque EqCnstr.assert (c : EqCnstr) : GoalM Unit
 
--- TODO: PArray.shrink and PArray.resize
-partial def shrink (a : PArray Rat) (sz : Nat) : PArray Rat :=
-  if a.size > sz then shrink a.pop sz else a
-
-partial def resize (a : PArray Rat) (sz : Nat) : PArray Rat :=
-  if a.size > sz then shrink a sz else go a
-where
-  go (a : PArray Rat) : PArray Rat :=
-    if a.size < sz then go (a.push 0) else a
-
 /-- Resets the assignment of any variable bigger or equal to `x`. -/
 def resetAssignmentFrom (x : Var) : GoalM Unit := do
   modify' fun s => { s with assignment := shrink s.assignment x }

src/Lean/Meta/Tactic/Grind/Arith/Linear.lean

@@ -11,6 +11,8 @@ import Lean.Meta.Tactic.Grind.Arith.Linear.StructId
 import Lean.Meta.Tactic.Grind.Arith.Linear.IneqCnstr
 import Lean.Meta.Tactic.Grind.Arith.Linear.Reify
 import Lean.Meta.Tactic.Grind.Arith.Linear.DenoteExpr
+import Lean.Meta.Tactic.Grind.Arith.Linear.ToExpr
+import Lean.Meta.Tactic.Grind.Arith.Linear.Proof
 
 namespace Lean
 

src/Lean/Meta/Tactic/Grind/Arith/Linear/IneqCnstr.lean

@@ -11,6 +11,7 @@ import Lean.Meta.Tactic.Grind.Arith.Linear.Var
 import Lean.Meta.Tactic.Grind.Arith.Linear.StructId
 import Lean.Meta.Tactic.Grind.Arith.Linear.Reify
 import Lean.Meta.Tactic.Grind.Arith.Linear.DenoteExpr
+import Lean.Meta.Tactic.Grind.Arith.Linear.Proof
 
 namespace Lean.Meta.Grind.Arith.Linear
 
@@ -21,7 +22,21 @@ def isLtInst (struct : Struct) (inst : Expr) : Bool :=
 
 def IneqCnstr.assert (c : IneqCnstr) : LinearM Unit := do
   trace[grind.linarith.assert] "{← c.denoteExpr}"
-  -- TODO
+  match c.p with
+  | .nil =>
+    if c.strict then
+      trace[grind.linarith.unsat] "{← c.denoteExpr}"
+      setInconsistent (.lt c)
+    else
+      trace[grind.linarith.trivial] "{← c.denoteExpr}"
+  | .add a x _ =>
+    trace[grind.cutsat.assert.store] "{← c.denoteExpr}"
+    if a < 0 then
+      modifyStruct fun s => { s with lowers := s.lowers.modify x (·.push c) }
+    else
+      modifyStruct fun s => { s with uppers := s.uppers.modify x (·.push c) }
+    if (← c.satisfied) == .false then
+      resetAssignmentFrom x
 
 def NotIneqCnstr.assert (c : NotIneqCnstr) : LinearM Unit := do
   trace[grind.linarith.assert] "{← c.denoteExpr}"
@@ -71,6 +86,7 @@ def propagateIntModuleIneq (e : Expr) (lhs rhs : Expr) (strict : Bool) (eqTrue :
     c.assert
 
 def propagateIneq (e : Expr) (eqTrue : Bool) : GoalM Unit := do
+  unless (← getConfig).linarith do return ()
   let numArgs := e.getAppNumArgs
   unless numArgs == 4 do return ()
   let α := e.getArg! 0 numArgs

src/Lean/Meta/Tactic/Grind/Arith/Linear/Proof.lean

@@ -0,0 +1,169 @@
+/-
+Copyright (c) 2025 Amazon.com, Inc. or its affiliates. All Rights Reserved.
+Released under Apache 2.0 license as described in the file LICENSE.
+Authors: Leonardo de Moura
+-/
+prelude
+import Lean.Meta.Tactic.Grind.Arith.CommRing.Proof
+import Lean.Meta.Tactic.Grind.Arith.Linear.Util
+import Lean.Meta.Tactic.Grind.Arith.Linear.ToExpr
+
+namespace Lean.Meta.Grind.Arith.Linear
+
+open CommRing (RingExpr)
+
+/--
+Returns a context of type `RArray α` containing the variables of the given structure, where
+`α` is `(← getStruct).type`.
+-/
+def toContextExpr : LinearM Expr := do
+  let struct ← getStruct
+  if h : 0 < struct.vars.size then
+    RArray.toExpr struct.type id (RArray.ofFn (struct.vars[·]) h)
+  else
+    RArray.toExpr struct.type id (RArray.leaf struct.zero)
+
+/--
+Similar to `toContextExpr`, but for the `CommRing` module.
+Recall that this module interfaces with the `CommRing` module and their variable contexts
+may not be necessarily identical. For example, for this module, the term `x*y` does not have an interpretation
+and we have a "variable" representing it, but it is interpreted in the `CommRing` module, and such
+variable does not exist there. On the other direction, suppose we have the inequality `z < 0`, and
+`z` does not occur in any equality or disequality. Then, the `CommRing` does not even "see" `z`, and
+`z` does not occur in its context, but it occurs in the variable context created by this module.
+-/
+def toRingContextExpr : LinearM Expr := do
+  if (← isCommRing) then
+    withRingM do CommRing.toContextExpr
+  else
+    let struct ← getStruct
+    RArray.toExpr struct.type id (RArray.leaf struct.zero)
+
+structure ProofM.State where
+  cache       : Std.HashMap UInt64 Expr := {}
+  polyMap     : Std.HashMap Poly Expr := {}
+  exprMap     : Std.HashMap LinExpr Expr := {}
+  ringExprMap : Std.HashMap RingExpr Expr := {}
+
+structure ProofM.Context where
+  ctx     : Expr
+  ringCtx : Expr
+
+/-- Auxiliary monad for constructing linarith proofs. -/
+abbrev ProofM := ReaderT ProofM.Context (StateRefT ProofM.State LinearM)
+
+/-- Returns a Lean expression representing the variable context used to construct linarith proofs. -/
+private abbrev getContext : ProofM Expr := do
+  return (← read).ctx
+
+/--
+Returns a Lean expression representing the auxiliary `CommRing` variable context
+used to construct linarith proofs.
+-/
+private abbrev getRingContext : ProofM Expr := do
+  return (← read).ringCtx
+
+private abbrev caching (c : α) (k : ProofM Expr) : ProofM Expr := do
+  let addr := unsafe (ptrAddrUnsafe c).toUInt64 >>> 2
+  if let some h := (← get).cache[addr]? then
+    return h
+  else
+    let h ← k
+    modify fun s => { s with cache := s.cache.insert addr h }
+    return h
+
+def mkPolyDecl (p : Poly) : ProofM Expr := do
+  if let some x := (← get).polyMap[p]? then
+    return x
+  let x := mkFVar (← mkFreshFVarId)
+  modify fun s => { s with polyMap := s.polyMap.insert p x }
+  return x
+
+def mkExprDecl (e : LinExpr) : ProofM Expr := do
+  if let some x := (← get).exprMap[e]? then
+    return x
+  let x := mkFVar (← mkFreshFVarId)
+  modify fun s => { s with exprMap := s.exprMap.insert e x }
+  return x
+
+def mkRingExprDecl (e : RingExpr) : ProofM Expr := do
+  if let some x := (← get).ringExprMap[e]? then
+    return x
+  let x := mkFVar (← mkFreshFVarId)
+  modify fun s => { s with ringExprMap := s.ringExprMap.insert e x }
+  return x
+
+private abbrev withProofContext (x : ProofM Expr) : LinearM Expr := do
+  let struct ← getStruct
+  withLetDecl `ctx  (mkApp (mkConst ``RArray [struct.u]) struct.type) (← toContextExpr) fun ctx => do
+  withLetDecl `rctx (mkApp (mkConst ``RArray [struct.u]) struct.type) (← toRingContextExpr) fun ringCtx =>
+  go { ctx, ringCtx } |>.run' {}
+where
+  go : ProofM Expr := do
+    let h ← x
+    let h ← mkLetOfMap (← get).polyMap h `p (mkConst ``Grind.Linarith.Poly) toExpr
+    let h ← mkLetOfMap (← get).exprMap h `e (mkConst ``Grind.Linarith.Expr) toExpr
+    let h ← mkLetOfMap (← get).ringExprMap h `r (mkConst ``Grind.CommRing.Expr) toExpr
+    mkLetFVars #[(← getContext), (← getRingContext)] h
+
+/--
+Returns the prefix of a theorem with name `declName` where the first three arguments are
+`{α} [IntModule α] (ctx : Context α)`
+-/
+private def mkIntModThmPrefix (declName : Name) : ProofM Expr := do
+  let s ← getStruct
+  return mkApp3 (mkConst declName [s.u]) s.type s.intModuleInst (← getContext)
+
+/--
+Returns the prefix of a theorem with name `declName` where the first four arguments are
+`{α} [IntModule α] [Preorder α] (ctx : Context α)`
+-/
+private def mkIntModPreThmPrefix (declName : Name) : ProofM Expr := do
+  let s ← getStruct
+  return mkApp4 (mkConst declName [s.u]) s.type s.intModuleInst s.preorderInst (← getContext)
+
+/--
+Returns the prefix of a theorem with name `declName` where the first five arguments are
+`{α} [IntModule α] [Preorder α] [IntModule.IsOrdered α] (ctx : Context α)`
+This is the most common theorem prefix at `Linarith.lean`
+-/
+private def mkIntModPreOrdThmPrefix (declName : Name) : ProofM Expr := do
+  let s ← getStruct
+  return mkApp5 (mkConst declName [s.u]) s.type s.intModuleInst s.preorderInst s.isOrdInst (← getContext)
+
+mutual
+partial def EqCnstr.toExprProof (c' : EqCnstr) : ProofM Expr := caching c' do
+  throwError "NIY"
+
+partial def IneqCnstr.toExprProof (c' : IneqCnstr) : ProofM Expr := caching c' do
+  match c'.h with
+  | .core e lhs rhs =>
+    let h ← mkIntModPreOrdThmPrefix (if c'.strict then ``Grind.Linarith.lt_norm else ``Grind.Linarith.le_norm)
+    return mkApp5 h (← mkExprDecl lhs) (← mkExprDecl rhs) (← mkPolyDecl c'.p) reflBoolTrue (mkOfEqTrueCore e (← mkEqTrueProof e))
+  | _ => throwError "NIY"
+
+partial def DiseqCnstr.toExprProof (c' : DiseqCnstr) : ProofM Expr := caching c' do
+  throwError "NIY"
+
+partial def NotIneqCnstr.toExprProof (c' : NotIneqCnstr) : ProofM Expr := caching c' do
+  throwError "NIY"
+
+partial def UnsatProof.toExprProofCore (h : UnsatProof) : ProofM Expr := do
+  match h with
+  | .lt c => return mkApp (← mkIntModPreThmPrefix ``Grind.Linarith.lt_unsat) (← c.toExprProof)
+  | .diseq _ => throwError "NIY"
+
+end
+
+def UnsatProof.toExprProof (h : UnsatProof) : LinearM Expr := do
+  withProofContext do h.toExprProofCore
+
+def setInconsistent (h : UnsatProof) : LinearM Unit := do
+  if (← getStruct).caseSplits then
+    -- Let the search procedure in `SearchM` resolve the conflict.
+    modifyStruct fun s => { s with conflict? := some h }
+  else
+    let h ← h.toExprProof
+    closeGoal h
+
+end Lean.Meta.Grind.Arith.Linear

src/Lean/Meta/Tactic/Grind/Arith/Linear/ToExpr.lean

@@ -0,0 +1,41 @@
+/-
+Copyright (c) 2025 Amazon.com, Inc. or its affiliates. All Rights Reserved.
+Released under Apache 2.0 license as described in the file LICENSE.
+Authors: Leonardo de Moura
+-/
+prelude
+import Init.Grind.Ordered.Linarith
+import Lean.ToExpr
+
+namespace Lean.Meta.Grind.Arith.Linear
+open Grind.Linarith
+
+/-!
+`ToExpr` instances for `Linarith.Poly` types.
+-/
+
+def ofPoly (p : Poly) : Expr :=
+  match p with
+  | .nil => mkConst ``Poly.nil
+  | .add k x p => mkApp3 (mkConst ``Poly.add) (toExpr k) (toExpr x) (ofPoly p)
+
+instance : ToExpr Poly where
+  toExpr := ofPoly
+  toTypeExpr := mkConst ``Poly
+
+open Lean.Grind
+
+def ofLinExpr (e : Linarith.Expr) : Expr :=
+  match e with
+  | .zero => mkConst ``Linarith.Expr.zero
+  | .var x => mkApp (mkConst ``Linarith.Expr.var) (toExpr x)
+  | .add a b => mkApp2 (mkConst ``Linarith.Expr.add) (ofLinExpr a) (ofLinExpr b)
+  | .sub a b => mkApp2 (mkConst ``Linarith.Expr.sub) (ofLinExpr a) (ofLinExpr b)
+  | .neg a => mkApp (mkConst ``Linarith.Expr.neg) (ofLinExpr a)
+  | .mul k a => mkApp2 (mkConst ``Linarith.Expr.mul) (toExpr k) (ofLinExpr a)
+
+instance : ToExpr Linarith.Expr where
+  toExpr := ofLinExpr
+  toTypeExpr := mkConst ``Linarith.Expr
+
+end Lean.Meta.Grind.Arith.Linear

src/Lean/Meta/Tactic/Grind/Arith/Linear/Types.lean

@@ -16,6 +16,7 @@ export Std.Internal (Rat)
 abbrev LinExpr := Lean.Grind.Linarith.Expr
 
 deriving instance Hashable for Poly
+deriving instance Hashable for Grind.Linarith.Expr
 
 mutual
 /-- A equality constraint and its justification/proof. -/
@@ -69,8 +70,8 @@ inductive NotIneqCnstrProof where
   -- TODO: norm, and combineEq
 
 inductive UnsatProof where
-  | diseqUnsat (c : DiseqCnstr)
-  | ltUnsat (c : IneqCnstr)
+  | diseq (c : DiseqCnstr)
+  | lt (c : IneqCnstr)
   -- TODO: IneqCnstr + NotIneqCnstr
 
 end

src/Lean/Meta/Tactic/Grind/Arith/Linear/Util.lean

@@ -104,4 +104,48 @@ def setTermStructId (e : Expr) : LinearM Unit := do
     return ()
   modify' fun s => { s with exprToStructId := s.exprToStructId.insert { expr := e } structId }
 
+/--
+Tries to evaluate the polynomial `p` using the partial model/assignment built so far.
+The result is `none` if the polynomial contains variables that have not been assigned.
+-/
+def _root_.Lean.Grind.Linarith.Poly.eval? (p : Poly) : LinearM (Option Rat) := do
+  let a := (← getStruct).assignment
+  let rec go (v : Rat) : Poly → Option Rat
+    | .nil => some v
+    | .add k x p =>
+      if _ : x < a.size then
+        go (v + k*a[x]) p
+      else
+        none
+  return go 0 p
+/--
+Returns `.true` if `c` is satisfied by the current partial model,
+`.undef` if `c` contains unassigned variables, and `.false` otherwise.
+-/
+def IneqCnstr.satisfied (c : IneqCnstr) : LinearM LBool := do
+  let some v ← c.p.eval? | return .undef
+  if c.strict then
+    return decide (v < 0) |>.toLBool
+  else
+    return decide (v <= 0) |>.toLBool
+
+def EqCnstr.satisfied (c : EqCnstr) : LinearM LBool := do
+  let some v ← c.p.eval? | return .undef
+  return decide (v == 0) |>.toLBool
+
+def DiseqCnstr.satisfied (c : DiseqCnstr) : LinearM LBool := do
+  let some v ← c.p.eval? | return .undef
+  return decide (v != 0) |>.toLBool
+
+def NotEqCnstr.satisfied (c : NotIneqCnstr) : LinearM LBool := do
+  let some v ← c.p.eval? | return .undef
+  if c.strict then
+    return decide (v >= 0) |>.toLBool
+  else
+    return decide (v > 0) |>.toLBool
+
+/-- Resets the assignment of any variable bigger or equal to `x`. -/
+def resetAssignmentFrom (x : Var) : LinearM Unit := do
+  modifyStruct fun s => { s with assignment := shrink s.assignment x }
+
 end Lean.Meta.Grind.Arith.Linear