booleans in adlib (differ from prelude)

7e8e526e · gabrielhdt · 240cbebf · 7e8e526e · 7e8e526e · 7e8e526e
Commit 7e8e526e authored 5 years ago by gabrielhdt
--- a/adlib/cert_f/booleans.lp
+++ b/adlib/cert_f/booleans.lp
+require open encodings.cert_f
+
+definition bool ≔ uProp
+definition false: Term bool ≔ @prod Type Prop uProp (λ x, x)
+definition true: Term bool ≔ @prod Prop Prop false (λ _, false)
+
+definition imp (P Q: Term uProp): Term bool ≔ @prod Prop Prop P (λ_, Q)
+definition forall {eT: Term uType} (P: Term eT ⇒ Term bool): Term bool ≔
+  @prod _ _ eT P
+
+definition bnot (P: Term uProp): Term bool ≔ @prod Prop Prop P (λ _, false)
+set prefix 5 "¬" ≔ bnot
+
+definition band (P Q: Term uProp) ≔ bnot (imp P (bnot Q))
+set infix 6 "∧" ≔ band
+definition bor (P Q: Term uProp) ≔ imp (bnot P) Q
+set infix 5 "∨" ≔ bor
+
+definition biff (P Q: Term bool) ≔ (imp P Q) ∧ (imp Q P)
+set infix 7 "⇔" ≔ biff
+
+definition when (P Q: Term uProp) ≔ imp Q P
+// FIXME explicitness?
--- a/adlib/cert_f/induction.lp
+++ b/adlib/cert_f/induction.lp
 require open encodings.cert_f
-prelude.cert_f.booleans
+adlib.cert_f.booleans

 // Allows to make case disjunction in proofs,
 // [refine disjunction P ?Cfalse ?Ctrue]

--- a/adlib/cert_f/subtype.lp
+++ b/adlib/cert_f/subtype.lp
+require open encodings.cert_f
+adlib.cert_f.booleans
+
+set flag "print_implicits" on
+rule ePsub &A _ ⊑ &A    → true
+ and (ePsub &A &P) ⊑ (ePsub &B &Q) →
+   let asb ≔ &A ⊑ &B in
+   asb ∧
+   (@forall &A
+     (λx, imp (&P x)
+              (&Q (cast &B _ x))))
+
+symbol refl eA: Term (eA ⊑ eA)
+symbol carrier eA P: Term (ePsub eA P ⊑ eA)
+
+symbol transitive (eA eB eC: Term uType):
+  Term (eA ⊑ eB) ⇒ Term (eB ⊑ eC) ⇒ Term (eA ⊑ eC)
+
+symbol restriction (c d: Term uType)
+  (p: Term c ⇒ Term bool) (q: Term d ⇒ Term bool):
+  ∀ x: Term c, Term (p x) ⇒ Term (q (↑ d _ x))
+
+symbol destruct (c1 c2: Term uType) p1 p2
+  (ps1: Term (ePsub c1 p1)) (ps2: Term (ePsub c2 p2)):
+    Term (c1 ⊑ c2) ⇒ ∀x: Term c1, Term (p1 x) ⇒
+    Term (p2 (↑ c2 _ x)) ⇒
+    Term (ps1 <| ps2)
--- a/encodings/cert_f.lp
+++ b/encodings/cert_f.lp
@@ -71,12 +71,12 @@ rule @pair &T &U &M _ → opair &T &U &M

 // The subtype relation
 symbol subtype: Term uType ⇒ Term uType ⇒ Term uProp
-set infix left 6 "<|" ≔ subtype
+set infix left 6 "⊑" ≔ subtype

 // [cast eA eB p t u] casts element [t] from type [eA] to type [eB] given
 // the proof [p] that [eA] is a subtype of [eB]
 symbol cast {eA: Term uType} (eB: Term uType):
-  Term (eA <| eB) ⇒ Term eA ⇒ Term eB
+  Term (eA ⊑ eB) ⇒ Term eA ⇒ Term eB
 rule cast &eA &eA _ &x → &x
 set declared "↑"
 definition ↑ {eA: Term uType} ≔ @cast eA
--- a/prelude/cert_f/functions.lp
+++ b/prelude/cert_f/functions.lp
+require open encodings.cert_f
+prelude.cert_f.logic
+
+
+//
+// functions [D, R: TYPE]
+//
+
+definition {|injective?|} {eD eR: Term uType} (f g: Term eD ⇒ Term eR) ≔
+  ∀ x1 x2, Term (eq (f x1) (f x2)) ⇒ Term (eq x1 x2)
--- a/prelude/cert_f/logic.lp
+++ b/prelude/cert_f/logic.lp
 require open encodings.cert_f
+adlib.cert_f.booleans
 require adlib.cert_f.induction as I

 //
 // Booleans
-//
-definition bool ≔ uProp
-definition false: Term bool ≔ @prod Type Prop uProp (λ x, x)
-definition true: Term bool ≔ @prod Prop Prop false (λ _, false)
-
-definition imp (P Q: Term uProp) ≔ @prod Prop Prop P (λ_, Q)
-definition forall {eT: Term uType} (P: Term eT ⇒ Term bool) ≔
-  @prod _ _ eT P
-// FIXME explicitness?
-
-definition bnot (P: Term uProp) ≔ @prod Prop Prop P (λ _, false)
-set prefix 5 "¬" ≔ bnot
-definition band (P Q: Term uProp) ≔ bnot (imp P (bnot Q))
-set infix 6 "∧" ≔ band
-definition bor (P Q: Term uProp) ≔ imp (bnot P) Q
-set infix 5 "∨" ≔ bor
-
-definition biff (P Q: Term uProp) ≔ (imp P Q) ∧ (imp Q P)
-set infix 7 "⇔" ≔ biff
-
-definition when (P Q: Term uProp) ≔ imp Q P
+// In [adlib.cert_f.booleans]

 //
 // Equalities
@@ -62,14 +43,15 @@ definition xor (a b: Term bool) ≔ @neq bool a b

 set flag "print_implicits" on
 // FIXME explicitness required
-theorem xor_def: ∀ (a b: Term bool),
+theorem xor_def (a b: Term bool):
  Term (@eq bool (xor a b) (@if bool a (bnot b) b))
 proof
-assume a
 refine I.disjunction
-  (λx: Term bool, @eq bool (xor a x) (@if bool a (bnot x) x))
-  ?Cf[a] ?Ct[a]
-// FIXME needs generalize?
+  (λa: Term bool, @forall bool (λb, @eq bool (xor a b) (@if bool a (bnot b) b)))
+  ?Cf ?Ct
+refine I.disjunction
+  (λ b, @eq bool (xor false b) (@if bool false (bnot b) b))
+  ?Ccf ?Cct
 admit

 //
@@ -83,6 +65,12 @@ definition ∃ {eT: Term uType} (P: Term eT ⇒ Term bool) ≔
 //
 // Defined types
 //
+definition pred (eT: Term uType) ≔ Term eT ⇒ Term bool
+definition PRED (eT: Term uType) ≔ Term eT ⇒ Term bool
+definition predicate (eT: Term uType) ≔ Term eT ⇒ Term bool
+definition PREDICATE (eT: Term uType) ≔ Term eT ⇒ Term bool
+definition setof (eT: Term uType) ≔ Term eT ⇒ Term bool
+definition SETOF (eT: Term uType) ≔ Term eT ⇒ Term bool

 //
 // exists1
@@ -94,12 +82,16 @@ definition ∃ {eT: Term uType} (P: Term eT ⇒ Term bool) ≔
 rule if true &t  _ → &t
 and if false _ &f → &f

-theorem if_same T (b: Term uProp) (x: Term T):
+theorem if_same {T} b (x: Term T):
  Term (eq (if b x x) x)
 proof
-assume T b x
-simpl
-admit // Needs case disjunciton on boolean
+assume T
+refine I.disjunction
+  (λb, forall (λx, eq (if b x x) x))
+  ?Cf[T] ?Ct[T]
+assume x
+simpl // FIXME [if] is not reduced at this step
+admit

 symbol reflexivity_of_equal T (x: Term T) : Term (eq x x)