Context Navigation

Util.ma @ 1071

Last change on this file since 1071 was 1071, checked in by mulligan, 10 years ago
changes the specific form that the added proofs take to use None, not Some, hence removing the exitential
File size: 21.4 KB

Line
1	include "basics/list.ma".
2	include "basics/types.ma".
3	include "arithmetics/nat.ma".
4
5	include "ASM/JMCoercions.ma".
6
7	(* let's implement a daemon not used by automation *)
8	inductive DAEMONXXX: Type[0] ≝ K1DAEMONXXX: DAEMONXXX \| K2DAEMONXXX: DAEMONXXX.
9	axiom IMPOSSIBLE: K1DAEMONXXX = K2DAEMONXXX.
10	example daemon: False. generalize in match IMPOSSIBLE; #IMPOSSIBLE destruct(IMPOSSIBLE) qed.
11	example not_implemented: False. cases daemon qed.
12
13	notation > "hvbox('let' 〈ident x,ident y〉 ≝ t 'in' s)"
14	with precedence 10
15	for @{ match $t with [ pair ${ident x} ${ident y} ⇒ $s ] }.
16
17	definition ltb ≝
18	λm, n: nat.
19	leb (S m) n.
20
21	definition geb ≝
22	λm, n: nat.
23	ltb n m.
24
25	definition gtb ≝
26	λm, n: nat.
27	leb n m.
28
29	(* dpm: unless I'm being stupid, this isn't defined in the stdlib? *)
30	let rec eq_nat (n: nat) (m: nat) on n: bool ≝
31	match n with
32	[ O ⇒ match m with [ O ⇒ true \| _ ⇒ false ]
33	\| S n' ⇒ match m with [ S m' ⇒ eq_nat n' m' \| _ ⇒ false ]
34	].
35
36	let rec fold_left2
37	(A: Type[0]) (B: Type[0]) (C: Type[0]) (f: A → B → C → A) (accu: A)
38	(left: list B) (right: list C) (proof: \|left\| = \|right\|)
39	on left: A ≝
40	match left return λx. \|x\| = \|right\| → A with
41	[ nil ⇒ λnil_prf.
42	match right return λx. \|[ ]\| = \|x\| → A with
43	[ nil ⇒ λnil_nil_prf. accu
44	\| cons hd tl ⇒ λcons_nil_absrd. ?
45	] nil_prf
46	\| cons hd tl ⇒ λcons_prf.
47	match right return λx. \|hd::tl\| = \|x\| → A with
48	[ nil ⇒ λcons_nil_absrd. ?
49	\| cons hd' tl' ⇒ λcons_cons_prf.
50	fold_left2 … f (f accu hd hd') tl tl' ?
51	] cons_prf
52	] proof.
53	[ 1: normalize in cons_nil_absrd;
54	destruct(cons_nil_absrd)
55	\| 2: normalize in cons_nil_absrd;
56	destruct(cons_nil_absrd)
57	\| 3: normalize in cons_cons_prf;
58	@injective_S
59	assumption
60	]
61	qed.
62
63	let rec remove_n_first_internal
64	(i: nat) (A: Type[0]) (l: list A) (n: nat)
65	on l ≝
66	match l with
67	[ nil ⇒ [ ]
68	\| cons hd tl ⇒
69	match eq_nat i n with
70	[ true ⇒ l
71	\| _ ⇒ remove_n_first_internal (S i) A tl n
72	]
73	].
74
75	definition remove_n_first ≝
76	λA: Type[0].
77	λn: nat.
78	λl: list A.
79	remove_n_first_internal 0 A l n.
80
81	let rec foldi_from_until_internal
82	(A: Type[0]) (i: nat) (res: ?) (rem: list A) (m: nat) (f: nat → list A → A → list A)
83	on rem ≝
84	match rem with
85	[ nil ⇒ res
86	\| cons e tl ⇒
87	match geb i m with
88	[ true ⇒ res
89	\| _ ⇒ foldi_from_until_internal A (S i) (f i res e) tl m f
90	]
91	].
92
93	definition foldi_from_until ≝
94	λA: Type[0].
95	λn: nat.
96	λm: nat.
97	λf: ?.
98	λa: ?.
99	λl: ?.
100	foldi_from_until_internal A 0 a (remove_n_first A n l) m f.
101
102	definition foldi_from ≝
103	λA: Type[0].
104	λn.
105	λf.
106	λa.
107	λl.
108	foldi_from_until A n (\|l\|) f a l.
109
110	definition foldi_until ≝
111	λA: Type[0].
112	λm.
113	λf.
114	λa.
115	λl.
116	foldi_from_until A 0 m f a l.
117
118	definition foldi ≝
119	λA: Type[0].
120	λf.
121	λa.
122	λl.
123	foldi_from_until A 0 (\|l\|) f a l.
124
125	definition hd_safe ≝
126	λA: Type[0].
127	λl: list A.
128	λproof: 0 < \|l\|.
129	match l return λx. 0 < \|x\| → A with
130	[ nil ⇒ λnil_absrd. ?
131	\| cons hd tl ⇒ λcons_prf. hd
132	] proof.
133	normalize in nil_absrd;
134	cases(not_le_Sn_O 0)
135	#HYP
136	cases(HYP nil_absrd)
137	qed.
138
139	definition tail_safe ≝
140	λA: Type[0].
141	λl: list A.
142	λproof: 0 < \|l\|.
143	match l return λx. 0 < \|x\| → list A with
144	[ nil ⇒ λnil_absrd. ?
145	\| cons hd tl ⇒ λcons_prf. tl
146	] proof.
147	normalize in nil_absrd;
148	cases(not_le_Sn_O 0)
149	#HYP
150	cases(HYP nil_absrd)
151	qed.
152
153	let rec split
154	(A: Type[0]) (l: list A) (index: nat) (proof: index < \|l\|)
155	on index ≝
156	match index return λx. x < \|l\| → (list A) × (list A) with
157	[ O ⇒ λzero_prf. 〈[], l〉
158	\| S index' ⇒ λsucc_prf.
159	match l return λx. S index' < \|x\| → (list A) × (list A) with
160	[ nil ⇒ λnil_absrd. ?
161	\| cons hd tl ⇒ λcons_prf.
162	let 〈l1, l2〉 ≝ split A tl index' ? in
163	〈hd :: l1, l2〉
164	] succ_prf
165	] proof.
166	[1: normalize in nil_absrd;
167	cases(not_le_Sn_O (S index'))
168	#HYP
169	cases(HYP nil_absrd)
170	\|2: normalize in cons_prf;
171	normalize
172	@le_S_S_to_le
173	assumption
174	]
175	qed.
176
177	let rec nth_safe
178	(elt_type: Type[0]) (index: nat) (the_list: list elt_type)
179	(proof: index < \| the_list \|)
180	on index ≝
181	match index return λs. s < \| the_list \| → elt_type with
182	[ O ⇒
183	match the_list return λt. 0 < \| t \| → elt_type with
184	[ nil ⇒ λnil_absurd. ?
185	\| cons hd tl ⇒ λcons_proof. hd
186	]
187	\| S index' ⇒
188	match the_list return λt. S index' < \| t \| → elt_type with
189	[ nil ⇒ λnil_absurd. ?
190	\| cons hd tl ⇒
191	λcons_proof. nth_safe elt_type index' tl ?
192	]
193	] proof.
194	[ normalize in nil_absurd;
195	cases (not_le_Sn_O 0)
196	#ABSURD
197	elim (ABSURD nil_absurd)
198	\| normalize in nil_absurd;
199	cases (not_le_Sn_O (S index'))
200	#ABSURD
201	elim (ABSURD nil_absurd)
202	\| normalize in cons_proof
203	@le_S_S_to_le
204	assumption
205	]
206	qed.
207
208	definition last_safe ≝
209	λelt_type: Type[0].
210	λthe_list: list elt_type.
211	λproof : 0 < \| the_list \|.
212	nth_safe elt_type (\|the_list\| - 1) the_list ?.
213	normalize /2/
214	qed.
215
216	let rec reduce
217	(A: Type[0]) (B: Type[0]) (left: list A) (right: list B) on left ≝
218	match left with
219	[ nil ⇒ 〈〈[ ], [ ]〉, 〈[ ], right〉〉
220	\| cons hd tl ⇒
221	match right with
222	[ nil ⇒ 〈〈[ ], left〉, 〈[ ], [ ]〉〉
223	\| cons hd' tl' ⇒
224	let 〈cleft, cright〉 ≝ reduce A B tl tl' in
225	let 〈commonl, restl〉 ≝ cleft in
226	let 〈commonr, restr〉 ≝ cright in
227	〈〈hd :: commonl, restl〉, 〈hd' :: commonr, restr〉〉
228	]
229	].
230
231	(*
232	axiom reduce_strong:
233	∀A: Type[0].
234	∀left: list A.
235	∀right: list A.
236	Σret: ((list A) × (list A)) × ((list A) × (list A)). \| \fst (\fst ret) \| = \| \fst (\snd ret) \|.
237	*)
238
239	let rec reduce_strong
240	(A: Type[0]) (B: Type[0]) (left: list A) (right: list B)
241	on left : Σret: ((list A) × (list A)) × ((list B) × (list B)). \|\fst (\fst ret)\| = \|\fst (\snd ret)\| ≝
242	match left with
243	[ nil ⇒ 〈〈[ ], [ ]〉, 〈[ ], right〉〉
244	\| cons hd tl ⇒
245	match right with
246	[ nil ⇒ 〈〈[ ], left〉, 〈[ ], [ ]〉〉
247	\| cons hd' tl' ⇒
248	let 〈cleft, cright〉 ≝ reduce_strong A B tl tl' in
249	let 〈commonl, restl〉 ≝ cleft in
250	let 〈commonr, restr〉 ≝ cright in
251	〈〈hd :: commonl, restl〉, 〈hd' :: commonr, restr〉〉
252	]
253	].
254	[ 1: normalize %
255	\| 2: normalize %
256	\| 3: normalize
257	generalize in match (sig2 … (reduce_strong A B tl tl1));
258	>p2 >p3 >p4 normalize in ⊢ (% → ?)
259	#HYP //
260	]
261	qed.
262
263	let rec map2_opt
264	(A: Type[0]) (B: Type[0]) (C: Type[0]) (f: A → B → C)
265	(left: list A) (right: list B) on left ≝
266	match left with
267	[ nil ⇒
268	match right with
269	[ nil ⇒ Some ? (nil C)
270	\| _ ⇒ None ?
271	]
272	\| cons hd tl ⇒
273	match right with
274	[ nil ⇒ None ?
275	\| cons hd' tl' ⇒
276	match map2_opt A B C f tl tl' with
277	[ None ⇒ None ?
278	\| Some tail ⇒ Some ? (f hd hd' :: tail)
279	]
280	]
281	].
282
283	let rec map2
284	(A: Type[0]) (B: Type[0]) (C: Type[0]) (f: A → B → C)
285	(left: list A) (right: list B) (proof: \| left \| = \| right \|) on left ≝
286	match left return λx. \| x \| = \| right \| → list C with
287	[ nil ⇒
288	match right return λy. \| [] \| = \| y \| → list C with
289	[ nil ⇒ λnil_prf. nil C
290	\| _ ⇒ λcons_absrd. ?
291	]
292	\| cons hd tl ⇒
293	match right return λy. \| hd::tl \| = \| y \| → list C with
294	[ nil ⇒ λnil_absrd. ?
295	\| cons hd' tl' ⇒ λcons_prf. (f hd hd') :: map2 A B C f tl tl' ?
296	]
297	] proof.
298	[1: normalize in cons_absrd;
299	destruct(cons_absrd)
300	\|2: normalize in nil_absrd;
301	destruct(nil_absrd)
302	\|3: normalize in cons_prf;
303	destruct(cons_prf)
304	assumption
305	]
306	qed.
307
308	let rec map3
309	(A: Type[0]) (B: Type[0]) (C: Type[0]) (D: Type[0]) (f: A → B → C → D)
310	(left: list A) (centre: list B) (right: list C)
311	(prflc: \|left\| = \|centre\|) (prfcr: \|centre\| = \|right\|) on left ≝
312	match left return λx. \|x\| = \|centre\| → list D with
313	[ nil ⇒ λnil_prf.
314	match centre return λx. \|x\| = \|right\| → list D with
315	[ nil ⇒ λnil_nil_prf.
316	match right return λx. \|nil ?\| = \|x\| → list D with
317	[ nil ⇒ λnil_nil_nil_prf. nil D
318	\| cons hd tl ⇒ λcons_nil_nil_absrd. ?
319	] nil_nil_prf
320	\| cons hd tl ⇒ λnil_cons_absrd. ?
321	] prfcr
322	\| cons hd tl ⇒ λcons_prf.
323	match centre return λx. \|x\| = \|right\| → list D with
324	[ nil ⇒ λcons_nil_absrd. ?
325	\| cons hd' tl' ⇒ λcons_cons_prf.
326	match right return λx. \|right\| = \|x\| → \|cons ? hd' tl'\| = \|x\| → list D with
327	[ nil ⇒ λrefl_prf. λcons_cons_nil_absrd. ?
328	\| cons hd'' tl'' ⇒ λrefl_prf. λcons_cons_cons_prf.
329	(f hd hd' hd'') :: (map3 A B C D f tl tl' tl'' ? ?)
330	] (refl ? (\|right\|)) cons_cons_prf
331	] prfcr
332	] prflc.
333	[ 1: normalize in cons_nil_nil_absrd;
334	destruct(cons_nil_nil_absrd)
335	\| 2: generalize in match nil_cons_absrd;
336	<prfcr <nil_prf #HYP
337	normalize in HYP;
338	destruct(HYP)
339	\| 3: generalize in match cons_nil_absrd;
340	<prfcr <cons_prf #HYP
341	normalize in HYP;
342	destruct(HYP)
343	\| 4: normalize in cons_cons_nil_absrd;
344	destruct(cons_cons_nil_absrd)
345	\| 5: normalize in cons_cons_cons_prf;
346	destruct(cons_cons_cons_prf)
347	assumption
348	\| 6: generalize in match cons_cons_cons_prf;
349	<refl_prf <prfcr <cons_prf #HYP
350	normalize in HYP;
351	destruct(HYP)
352	@sym_eq assumption
353	]
354	qed.
355
356	lemma eq_rect_Type0_r :
357	∀A: Type[0].
358	∀a:A.
359	∀P: ∀x:A. eq ? x a → Type[0]. P a (refl A a) → ∀x: A.∀p:eq ? x a. P x p.
360	#A #a #P #H #x #p
361	generalize in match H
362	generalize in match P
363	cases p
364	//
365	qed.
366
367	let rec safe_nth (A: Type[0]) (n: nat) (l: list A) (p: n < length A l) on n: A ≝
368	match n return λo. o < length A l → A with
369	[ O ⇒
370	match l return λm. 0 < length A m → A with
371	[ nil ⇒ λabsd1. ?
372	\| cons hd tl ⇒ λprf1. hd
373	]
374	\| S n' ⇒
375	match l return λm. S n' < length A m → A with
376	[ nil ⇒ λabsd2. ?
377	\| cons hd tl ⇒ λprf2. safe_nth A n' tl ?
378	]
379	] ?.
380	[ 1:
381	@ p
382	\| 4:
383	normalize in prf2
384	normalize
385	@ le_S_S_to_le
386	assumption
387	\| 2:
388	normalize in absd1;
389	cases (not_le_Sn_O O)
390	# H
391	elim (H absd1)
392	\| 3:
393	normalize in absd2;
394	cases (not_le_Sn_O (S n'))
395	# H
396	elim (H absd2)
397	]
398	qed.
399
400	let rec nub_by_internal (A: Type[0]) (f: A → A → bool) (l: list A) (n: nat) on n ≝
401	match n with
402	[ O ⇒
403	match l with
404	[ nil ⇒ [ ]
405	\| cons hd tl ⇒ l
406	]
407	\| S n ⇒
408	match l with
409	[ nil ⇒ [ ]
410	\| cons hd tl ⇒
411	hd :: nub_by_internal A f (filter ? (λy. notb (f y hd)) tl) n
412	]
413	].
414
415	definition nub_by ≝
416	λA: Type[0].
417	λf: A → A → bool.
418	λl: list A.
419	nub_by_internal A f l (length ? l).
420
421	let rec member (A: Type[0]) (eq: A → A → bool) (a: A) (l: list A) on l ≝
422	match l with
423	[ nil ⇒ false
424	\| cons hd tl ⇒ orb (eq a hd) (member A eq a tl)
425	].
426
427	let rec take (A: Type[0]) (n: nat) (l: list A) on n: list A ≝
428	match n with
429	[ O ⇒ [ ]
430	\| S n ⇒
431	match l with
432	[ nil ⇒ [ ]
433	\| cons hd tl ⇒ hd :: take A n tl
434	]
435	].
436
437	let rec drop (A: Type[0]) (n: nat) (l: list A) on n ≝
438	match n with
439	[ O ⇒ l
440	\| S n ⇒
441	match l with
442	[ nil ⇒ [ ]
443	\| cons hd tl ⇒ drop A n tl
444	]
445	].
446
447	definition list_split ≝
448	λA: Type[0].
449	λn: nat.
450	λl: list A.
451	〈take A n l, drop A n l〉.
452
453	let rec mapi_internal (A: Type[0]) (B: Type[0]) (n: nat) (f: nat → A → B)
454	(l: list A) on l: list B ≝
455	match l with
456	[ nil ⇒ nil ?
457	\| cons hd tl ⇒ (f n hd) :: (mapi_internal A B (n + 1) f tl)
458	].
459
460	definition mapi ≝
461	λA, B: Type[0].
462	λf: nat → A → B.
463	λl: list A.
464	mapi_internal A B 0 f l.
465
466	let rec zip_pottier
467	(A: Type[0]) (B: Type[0]) (left: list A) (right: list B)
468	on left ≝
469	match left with
470	[ nil ⇒ [ ]
471	\| cons hd tl ⇒
472	match right with
473	[ nil ⇒ [ ]
474	\| cons hd' tl' ⇒ 〈hd, hd'〉 :: zip_pottier A B tl tl'
475	]
476	].
477
478	let rec zip_safe
479	(A: Type[0]) (B: Type[0]) (left: list A) (right: list B) (prf: \|left\| = \|right\|)
480	on left ≝
481	match left return λx. \|x\| = \|right\| → list (A × B) with
482	[ nil ⇒ λnil_prf.
483	match right return λx. \|[ ]\| = \|x\| → list (A × B) with
484	[ nil ⇒ λnil_nil_prf. [ ]
485	\| cons hd tl ⇒ λnil_cons_absrd. ?
486	] nil_prf
487	\| cons hd tl ⇒ λcons_prf.
488	match right return λx. \|hd::tl\| = \|x\| → list (A × B) with
489	[ nil ⇒ λcons_nil_absrd. ?
490	\| cons hd' tl' ⇒ λcons_cons_prf. 〈hd, hd'〉 :: zip_safe A B tl tl' ?
491	] cons_prf
492	] prf.
493	[ 1: normalize in nil_cons_absrd;
494	destruct(nil_cons_absrd)
495	\| 2: normalize in cons_nil_absrd;
496	destruct(cons_nil_absrd)
497	\| 3: normalize in cons_cons_prf;
498	@injective_S
499	assumption
500	]
501	qed.
502
503	let rec zip (A: Type[0]) (B: Type[0]) (l: list A) (r: list B) on l: option (list (A × B)) ≝
504	match l with
505	[ nil ⇒ Some ? (nil (A × B))
506	\| cons hd tl ⇒
507	match r with
508	[ nil ⇒ None ?
509	\| cons hd' tl' ⇒
510	match zip ? ? tl tl' with
511	[ None ⇒ None ?
512	\| Some tail ⇒ Some ? (〈hd, hd'〉 :: tail)
513	]
514	]
515	].
516
517	let rec foldl (A: Type[0]) (B: Type[0]) (f: A → B → A) (a: A) (l: list B) on l ≝
518	match l with
519	[ nil ⇒ a
520	\| cons hd tl ⇒ foldl A B f (f a hd) tl
521	].
522
523	lemma foldl_step:
524	∀A:Type[0].
525	∀B: Type[0].
526	∀H: A → B → A.
527	∀acc: A.
528	∀pre: list B.
529	∀hd:B.
530	foldl A B H acc (pre@[hd]) = (H (foldl A B H acc pre) hd).
531	#A #B #H #acc #pre generalize in match acc; -acc; elim pre
532	[ normalize; //
533	\| #hd #tl #IH #acc #X normalize; @IH ]
534	qed.
535
536	lemma foldl_append:
537	∀A:Type[0].
538	∀B: Type[0].
539	∀H: A → B → A.
540	∀acc: A.
541	∀suff,pre: list B.
542	foldl A B H acc (pre@suff) = (foldl A B H (foldl A B H acc pre) suff).
543	#A #B #H #acc #suff elim suff
544	[ #pre >append_nil %
545	\| #hd #tl #IH #pre whd in ⊢ (???%) <(foldl_step … H ??) applyS (IH (pre@[hd])) ]
546	qed.
547
548	definition flatten ≝
549	λA: Type[0].
550	λl: list (list A).
551	foldr ? ? (append ?) [ ] l.
552
553	let rec rev (A: Type[0]) (l: list A) on l ≝
554	match l with
555	[ nil ⇒ nil A
556	\| cons hd tl ⇒ (rev A tl) @ [ hd ]
557	].
558
559	lemma append_length:
560	∀A: Type[0].
561	∀l, r: list A.
562	\|(l @ r)\| = \|l\| + \|r\|.
563	#A #L #R
564	elim L
565	[ %
566	\| #HD #TL #IH
567	normalize >IH %
568	]
569	qed.
570
571	lemma append_nil:
572	∀A: Type[0].
573	∀l: list A.
574	l @ [ ] = l.
575	#A #L
576	elim L //
577	qed.
578
579	lemma rev_append:
580	∀A: Type[0].
581	∀l, r: list A.
582	rev A (l @ r) = rev A r @ rev A l.
583	#A #L #R
584	elim L
585	[ normalize >append_nil %
586	\| #HD #TL #IH
587	normalize >IH
588	@associative_append
589	]
590	qed.
591
592	lemma rev_length:
593	∀A: Type[0].
594	∀l: list A.
595	\|rev A l\| = \|l\|.
596	#A #L
597	elim L
598	[ %
599	\| #HD #TL #IH
600	normalize
601	>(append_length A (rev A TL) [HD])
602	normalize /2/
603	]
604	qed.
605
606	notation > "'if' term 19 e 'then' term 19 t 'else' term 48 f" non associative with precedence 19
607	for @{ match $e in bool with [ true ⇒ $t \| false ⇒ $f] }.
608	notation < "hvbox('if' \nbsp term 19 e \nbsp break 'then' \nbsp term 19 t \nbsp break 'else' \nbsp term 48 f \nbsp)" non associative with precedence 19
609	for @{ match $e with [ true ⇒ $t \| false ⇒ $f] }.
610
611	let rec fold_left_i_aux (A: Type[0]) (B: Type[0])
612	(f: nat → A → B → A) (x: A) (i: nat) (l: list B) on l ≝
613	match l with
614	[ nil ⇒ x
615	\| cons hd tl ⇒ fold_left_i_aux A B f (f i x hd) (S i) tl
616	].
617
618	definition fold_left_i ≝ λA,B,f,x. fold_left_i_aux A B f x O.
619
620	notation "hvbox(t⌈o ↦ h⌉)"
621	with precedence 45
622	for @{ match (? : $o=$h) with [ refl ⇒ $t ] }.
623
624	definition function_apply ≝
625	λA, B: Type[0].
626	λf: A → B.
627	λa: A.
628	f a.
629
630	notation "f break $ x"
631	left associative with precedence 99
632	for @{ 'function_apply $f $x }.
633
634	interpretation "Function application" 'function_apply f x = (function_apply ? ? f x).
635
636	let rec iterate (A: Type[0]) (f: A → A) (a: A) (n: nat) on n ≝
637	match n with
638	[ O ⇒ a
639	\| S o ⇒ f (iterate A f a o)
640	].
641
642	(* Yeah, I probably ought to do something more general... *)
643	notation "hvbox(\langle term 19 a, break term 19 b, break term 19 c\rangle)"
644	with precedence 90 for @{ 'triple $a $b $c}.
645	interpretation "Triple construction" 'triple x y z = (pair ? ? (pair ? ? x y) z).
646
647	notation "hvbox(\langle term 19 a, break term 19 b, break term 19 c, break term 19 d\rangle)"
648	with precedence 90 for @{ 'quadruple $a $b $c $d}.
649	interpretation "Quadruple construction" 'quadruple w x y z = (pair ? ? (pair ? ? w x) (pair ? ? y z)).
650
651	notation > "hvbox('let' 〈ident w,ident x,ident y,ident z〉 ≝ t 'in' s)"
652	with precedence 10
653	for @{ match $t with [ pair ${fresh wx} ${fresh yz} ⇒ match ${fresh wx} with [ pair ${ident w} ${ident x} ⇒ match ${fresh yz} with [ pair ${ident y} ${ident z} ⇒ $s ] ] ] }.
654
655	notation > "hvbox('let' 〈ident x,ident y,ident z〉 ≝ t 'in' s)"
656	with precedence 10
657	for @{ match $t with [ pair ${fresh xy} ${ident z} ⇒ match ${fresh xy} with [ pair ${ident x} ${ident y} ⇒ $s ] ] }.
658
659	notation < "hvbox('let' \nbsp hvbox(〈ident x,ident y〉\nbsp ≝ break t \nbsp 'in' \nbsp) break s)"
660	with precedence 10
661	for @{ match $t with [ pair (${ident x}:$ignore) (${ident y}:$ignora) ⇒ $s ] }.
662
663	axiom pair_elim':
664	∀A,B,C: Type[0].
665	∀T: A → B → C.
666	∀p.
667	∀P: A×B → C → Prop.
668	(∀lft, rgt. p = 〈lft,rgt〉 → P 〈lft,rgt〉 (T lft rgt)) →
669	P p (let 〈lft, rgt〉 ≝ p in T lft rgt).
670
671	axiom pair_elim'':
672	∀A,B,C,C': Type[0].
673	∀T: A → B → C.
674	∀T': A → B → C'.
675	∀p.
676	∀P: A×B → C → C' → Prop.
677	(∀lft, rgt. p = 〈lft,rgt〉 → P 〈lft,rgt〉 (T lft rgt) (T' lft rgt)) →
678	P p (let 〈lft, rgt〉 ≝ p in T lft rgt) (let 〈lft, rgt〉 ≝ p in T' lft rgt).
679
680	lemma pair_destruct_1:
681	∀A,B.∀a:A.∀b:B.∀c. 〈a,b〉 = c → a = \fst c.
682	#A #B #a #b *; /2/
683	qed.
684
685	lemma pair_destruct_2:
686	∀A,B.∀a:A.∀b:B.∀c. 〈a,b〉 = c → b = \snd c.
687	#A #B #a #b *; /2/
688	qed.
689
690
691	notation "⊥" with precedence 90
692	for @{ match ? in False with [ ] }.
693
694	let rec exclusive_disjunction (b: bool) (c: bool) on b ≝
695	match b with
696	[ true ⇒
697	match c with
698	[ false ⇒ true
699	\| true ⇒ false
700	]
701	\| false ⇒
702	match c with
703	[ false ⇒ false
704	\| true ⇒ true
705	]
706	].
707
708	(* dpm: conflicts with library definitions
709	interpretation "Nat less than" 'lt m n = (ltb m n).
710	interpretation "Nat greater than" 'gt m n = (gtb m n).
711	interpretation "Nat greater than eq" 'geq m n = (geb m n).
712	*)
713
714	let rec division_aux (m: nat) (n : nat) (p: nat) ≝
715	match ltb n (S p) with
716	[ true ⇒ O
717	\| false ⇒
718	match m with
719	[ O ⇒ O
720	\| (S q) ⇒ S (division_aux q (n - (S p)) p)
721	]
722	].
723
724	definition division ≝
725	λm, n: nat.
726	match n with
727	[ O ⇒ S m
728	\| S o ⇒ division_aux m m o
729	].
730
731	notation "hvbox(n break ÷ m)"
732	right associative with precedence 47
733	for @{ 'division $n $m }.
734
735	interpretation "Nat division" 'division n m = (division n m).
736
737	let rec modulus_aux (m: nat) (n: nat) (p: nat) ≝
738	match leb n p with
739	[ true ⇒ n
740	\| false ⇒
741	match m with
742	[ O ⇒ n
743	\| S o ⇒ modulus_aux o (n - (S p)) p
744	]
745	].
746
747	definition modulus ≝
748	λm, n: nat.
749	match n with
750	[ O ⇒ m
751	\| S o ⇒ modulus_aux m m o
752	].
753
754	notation "hvbox(n break 'mod' m)"
755	right associative with precedence 47
756	for @{ 'modulus $n $m }.
757
758	interpretation "Nat modulus" 'modulus m n = (modulus m n).
759
760	definition divide_with_remainder ≝
761	λm, n: nat.
762	pair ? ? (m ÷ n) (modulus m n).
763
764	let rec exponential (m: nat) (n: nat) on n ≝
765	match n with
766	[ O ⇒ S O
767	\| S o ⇒ m * exponential m o
768	].
769
770	interpretation "Nat exponential" 'exp n m = (exponential n m).
771
772	notation "hvbox(a break ⊎ b)"
773	left associative with precedence 50
774	for @{ 'disjoint_union $a $b }.
775	interpretation "sum" 'disjoint_union A B = (Sum A B).
776
777	theorem less_than_or_equal_monotone:
778	∀m, n: nat.
779	m ≤ n → (S m) ≤ (S n).
780	#m #n #H
781	elim H
782	/2/
783	qed.
784
785	theorem less_than_or_equal_b_complete:
786	∀m, n: nat.
787	leb m n = false → ¬(m ≤ n).
788	#m;
789	elim m;
790	normalize
791	[ #n #H
792	destruct
793	\| #y #H1 #z
794	cases z
795	normalize
796	[ #H
797	/2/
798	\| /3/
799	]
800	]
801	qed.
802
803	theorem less_than_or_equal_b_correct:
804	∀m, n: nat.
805	leb m n = true → m ≤ n.
806	#m
807	elim m
808	//
809	#y #H1 #z
810	cases z
811	normalize
812	[ #H
813	destruct
814	\| #n #H lapply (H1 … H) /2/
815	]
816	qed.
817
818	definition less_than_or_equal_b_elim:
819	∀m, n: nat.
820	∀P: bool → Type[0].
821	(m ≤ n → P true) → (¬(m ≤ n) → P false) → P (leb m n).
822	#m #n #P #H1 #H2;
823	lapply (less_than_or_equal_b_correct m n)
824	lapply (less_than_or_equal_b_complete m n)
825	cases (leb m n)
826	/3/
827	qed.
828
829	lemma inclusive_disjunction_true:
830	∀b, c: bool.
831	(orb b c) = true → b = true ∨ c = true.
832	# b
833	# c
834	elim b
835	[ normalize
836	# H
837	@ or_introl
838	%
839	\| normalize
840	/2/
841	]
842	qed.
843
844	lemma conjunction_true:
845	∀b, c: bool.
846	andb b c = true → b = true ∧ c = true.
847	# b
848	# c
849	elim b
850	normalize
851	[ /2/
852	\| # K
853	destruct
854	]
855	qed.
856
857	lemma eq_true_false: false=true → False.
858	# K
859	destruct
860	qed.
861
862	lemma inclusive_disjunction_b_true: ∀b. orb b true = true.
863	# b
864	cases b
865	%
866	qed.
867
868	definition bool_to_Prop ≝
869	λb. match b with [ true ⇒ True \| false ⇒ False ].
870
871	coercion bool_to_Prop: ∀b:bool. Prop ≝ bool_to_Prop on _b:bool to Type[0].
872
873	lemma eq_false_to_notb: ∀b. b = false → ¬ b.
874	*; /2/
875	qed.
876
877	lemma length_append:
878	∀A.∀l1,l2:list A.
879	\|l1 @ l2\| = \|l1\| + \|l2\|.
880	#A #l1 elim l1
881	[ //
882	\| #hd #tl #IH #l2 normalize <IH //]
883	qed.

Note: See TracBrowser for help on using the repository browser.

Download in other formats:

Original Format