Proof-tree-case
Case macro for the different kinds of proof-tree structures.
This is an ACL2::fty sum-type case macro,
typically introduced by fty::defflexsum or fty::deftagsum. It
allows you to safely check the type of a proof-tree structure, or to split
into cases based on its type.
Short Form
In its short form, proof-tree-case allows you to safely check the type of
a proof-tree structure. For example:
(proof-tree-case x :equal)
is essentially just a safer alternative to writing:
(equal (proof-tree-kind x) :equal)
Why is using proof-tree-case safer? When we directly inspect the
kind with equal, there is no static checking being done to
ensure that, e.g., :equal is a valid kind of proof-tree structure. That means there is nothing to save you
if, later, you change the kind keyword for this type from :equal to something else. It also means you get no help
if you just make a typo when writing the :equal
symbol. Over the course of developing VL, we found that such
issues were very frequent sources of errors!
Long Form
In its longer form, proof-tree-case allows you to split into cases based
on the kind of structure you are looking at. A typical example would be:
(proof-tree-case x
:equal ...
:relation ...)
It is also possible to consolidate ``uninteresting'' cases using
:otherwise.
For convenience, the case macro automatically binds the fields of x for
you, as appropriate for each case. That is, in the :equal case,
you can use fty::defprod-style foo.bar style accessors for x
without having to explicitly add a equal b*
binder.