From 40049df4125a0ab7d838f569cca584a6b728c8fe Mon Sep 17 00:00:00 2001 From: Kenji Maillard Date: Thu, 4 Jan 2024 14:10:28 +0100 Subject: [PATCH] add metatheoretical consequences --- _CoqProject | 3 +- theories/Consequences.v | 104 ++++++++++++++++++++++++++++++++++ theories/Normalisation.v | 10 +++- theories/Readme.v | 119 ++++++++++++++++++++++++++++++++++++++- 4 files changed, 231 insertions(+), 5 deletions(-) create mode 100644 theories/Consequences.v diff --git a/_CoqProject b/_CoqProject index cecb330..39c192f 100644 --- a/_CoqProject +++ b/_CoqProject @@ -75,4 +75,5 @@ theories/Decidability/Termination.v theories/Decidability.v theories/Example_1_1.v -theories/Readme.v \ No newline at end of file +theories/Consequences.v +# theories/Readme.v diff --git a/theories/Consequences.v b/theories/Consequences.v new file mode 100644 index 0000000..969fa10 --- /dev/null +++ b/theories/Consequences.v @@ -0,0 +1,104 @@ +(** * LogRel.Consequences: important meta-theoretic consequences of normalization: canonicity of natural numbers and consistency. *) +From Coq Require Import CRelationClasses. +From LogRel.AutoSubst Require Import core unscoped Ast Extra. +From LogRel Require Import Utils BasicAst Notations Context NormalForms Weakening UntypedReduction + LogicalRelation Fundamental Validity LogicalRelation.Induction Substitution.Escape LogicalRelation.Irrelevance + GenericTyping DeclarativeTyping DeclarativeInstance TypeConstructorsInj Normalisation. + + +Import DeclarativeTypingData DeclarativeTypingProperties. + +Lemma no_neutral_empty_ctx_mut : + (forall t, whne t -> forall A, [ε |-[de] t : A] -> False) × + (forall l, whne_list l -> forall A, [ε |-[de] l : A] -> False). +Proof. + apply whne_mut. + - intros * [? [[? [?? h]]]]%termGen'; inversion h. + - intros * ?? * [? [[? [? []]]]]%termGen'; eauto. + - intros * ?? * [? [[? []]]]%termGen'; eauto. + - intros * ?? * [? [[? []]]]%termGen'; eauto. + - intros * ?? * [? [[? [? []]]]]%termGen'; eauto. + - intros * ?? * [? [[? [? []]]]]%termGen'; eauto. + - intros * ?? * [? [[?]]]%termGen' ; eauto. + - intros * ?? * [? [[?]]]%termGen'; eauto. + - intros ** ; eauto. +Qed. + + +Lemma no_neutral_empty_ctx {A t} : whne t -> [ε |-[de] t : A] -> False. +Proof. + intros; now eapply (fst no_neutral_empty_ctx_mut). +Qed. + +Lemma wty_norm {Γ t A} : [Γ |- t : A] -> + ∑ wh, [× whnf wh, [Γ |- t ⇒* wh : A]& [Γ |- wh : A]]. +Proof. + intros wtyt. + pose proof (normalisation wtyt) as [wh red]. + pose proof (h := subject_reduction _ _ _ _ wtyt red). + assert [Γ |- wh : A] by (destruct h; boundary). + now eexists. +Qed. + +(** *** Consistency: there are no closed proofs of false, i.e. no closed inhabitants of the empty type. *) + +Lemma consistency {t} : [ε |- t : tEmpty] -> False. +Proof. + intros [wh []]%wty_norm; refold. + eapply no_neutral_empty_ctx; tea. + eapply empty_isEmpty; tea. +Qed. + +Print Assumptions consistency. + +(** *** Canonicity: every closed natural number is a numeral, i.e. an iteration of [tSucc] on [tZero]. *) + +Section NatCanonicityInduction. + + Let numeral : nat -> term := fun n => Nat.iter n tSucc tZero. + + #[local] Coercion numeral : nat >-> term. + + #[local] Lemma red_nat_empty : [ε ||-Nat tNat]. + Proof. + repeat econstructor. + Qed. + + Lemma nat_red_empty_ind : + (forall t, [ε ||-Nat t : tNat | red_nat_empty] -> + ∑ n : nat, [ε |- t ≅ n : tNat]) × + (forall t, NatProp red_nat_empty t -> ∑ n : nat, [ε |- t ≅ n : tNat]). + Proof. + apply NatRedInduction. + - intros * [? []] ? _ [n] ; refold. + exists n. + now etransitivity. + - exists 0 ; cbn. + now repeat constructor. + - intros ? _ [n]. + exists (S n) ; simpl. + now econstructor. + - intros ? [? [? _ _]]. + exfalso. + now eapply no_neutral_empty_ctx. + Qed. + + Lemma _nat_canonicity {t} : [ε |- t : tNat] -> + ∑ n : nat, [ε |- t ≅ n : tNat]. + Proof. + intros Ht. + assert [LRNat_ one red_nat_empty | ε ||- t : tNat] as ?%nat_red_empty_ind. + { + apply Fundamental in Ht as [?? Vt%reducibleTm]. + irrelevance. + } + now assumption. + Qed. + +End NatCanonicityInduction. + +Lemma nat_canonicity {t} : [ε |- t : tNat] -> + ∑ n : nat, [ε |- t ≅ Nat.iter n tSucc tZero : tNat]. +Proof. + now apply _nat_canonicity. +Qed. diff --git a/theories/Normalisation.v b/theories/Normalisation.v index 65bc0e5..51638da 100644 --- a/theories/Normalisation.v +++ b/theories/Normalisation.v @@ -183,6 +183,14 @@ Section Normalisation. apply escapeTmEq in H as []; now split. Qed. + Import DeclarativeTypingData. + + Corollary normalisation {Γ A t} : [Γ |-[de] t : A] -> WN t. + Proof. now intros ?%TermRefl%typing_nf. Qed. + + Corollary type_normalisation {Γ A} : [Γ |-[de] A] -> WN A. + Proof. now intros ?%TypeRefl%typing_nf. Qed. + End Normalisation. Import DeclarativeTypingProperties. @@ -273,4 +281,4 @@ Section NeutralConversion. all: now rewrite ?em, ?em', ?en, ?en'. Qed. -End NeutralConversion. \ No newline at end of file +End NeutralConversion. diff --git a/theories/Readme.v b/theories/Readme.v index c8403dc..f906fa3 100644 --- a/theories/Readme.v +++ b/theories/Readme.v @@ -114,8 +114,9 @@ Print InferAlg. (* ** Logical Relation *) -From LogRel Require Import LogicalRelation. +From LogRel Require Import LogicalRelation Validity Fundamental. From LogRel.LogicalRelation Require Import Induction Irrelevance Reflexivity Transitivity Weakening Reduction Neutral. +From LogRel.Substitution.Introductions Require Import List ListElim. Section LogicalRelation. Context `{GenericTypingProperties}. @@ -125,6 +126,8 @@ Context `{GenericTypingProperties}. and second the validity layer that closes reducibility under substitution. *) +(* * Reducibility *) + (* Reducible types are defined with respect to a context Γ and level l *) Check fun (Γ : context) l (A : term) => [Γ ||- A ]. @@ -268,10 +271,114 @@ Print neuTermEq. Print ListRedTm.ListRedInduction. Print ListRedTmEq.ListRedEqInduction. -(* An example of its use is given for transitivity *) +(* This derived induction principle is used for instance in order to prove + transitivity of reducible conversion at list types *) Locate transEqTermList. +(* * Validity *) + +(* Validity closes reducibility by reducible substitution. + Valid contexts are described inductively while valid substitutions + into a valid context and valid conversion of valid substitutions are + described resursively on these valid contexts. + As for reducibility, this inductive-recursive schema is encoded + using small induction-recursion, describing the graph of the function + relating a valid context with its functions giving the valid substitutions + and valid convertible substitutions packed into a VPack. +*) +Print VR. +Print VPack. + +(* Notations for valid contexts, substitutions, convertible substitutions, types, terms... *) +Check fun Γ => [||-v Γ]. +Check fun Γ (VΓ : [||-v Γ]) Δ (wfΔ : [|- Δ]) σ => + [VΓ | Δ ||-v σ : Γ | wfΔ]. +Check fun Γ (VΓ : [||-v Γ]) Δ (wfΔ : [|- Δ]) σ σ' (Vσ : [VΓ | Δ ||-v σ : Γ | wfΔ]) => + [VΓ | Δ ||-v σ ≅ σ' : Γ | wfΔ | Vσ]. +Check fun Γ (VΓ : [||-v Γ]) l A => [VΓ | Γ ||-v A]. +Check fun Γ (VΓ : [||-v Γ]) l t A (VA : [VΓ | Γ ||-v A]) => + [Γ ||-v t : A | VΓ | VA ]. + +(* The fundamental lemma states that all components of a derivable declarative judgement are valid, + in particular, terms well-typed for the declarative presentation are valid *) + +About Fundamental. +Print FundCon. +Print FundTy. +Print FundTm. +Print FundTyEq. +Print FundTmEq. + + +(* The proof of the fundamental lemma proceed by an induction on + declarative typing derivations, using that each declarative derivation step + is admissible for the validity logical relation. + + These admissibility results are show independently for each type former. + We focus on the case of lists and the functor laws. + The proofs follow the description of the logical relation: first, we show + that each type, term or conversion equation is reducible and then valid. + *) + +(* For canonical forms, reducibility provides the necessary basic blocks *) +About listRed. +About listEqRed. +About nilRed. +About consRed. +About consEqRed. + +(* Since canonical forms are stable by substitutions, these proofs extend to validity *) +About listValid. +About listEqValid. +About nilValid. +About consValid. +About consEqValid. + + +(* For elimination forms (tMap, tListElim), the proof proceed as follow: + Step 1: the reducibility proof of the main argument is analyzed to reduce to + the case of a canonical form + Step 2: the elimination form either reduces on this canonical form to a reducible term or is neutral + Step 3: in the latter case, the neutral is already reducible +*) + +(* Helper functions that computes the result of each eliminator + form on canonical forms *) +Print mapProp. +Print elimListProp. + +About mapRedAux. +About elimListRed_mut. + +About mapEqRedAux. +(* One essential ingredient to obtain the functor laws is that + composition of functions (e.g. morphisms for list) + is definitionally associative and unital +*) +About comp_assoc_app_neutral. +About comp_id_app_neutral. + +About mapPropRedCompAux. +About mapPropRedIdAux. + +(* Lift to validity *) + +About mapValid. +About mapRedConsValid. + +About elimListValid. + +(* Validity of functor laws *) +About mapRedCompValid. +About mapRedIdValid. + + +(* Some design choices of the reducibility relation for list + are only visible at the level of these proofs. + For instance, the fact that the parameter type provided to the `tNil` + constructor must be reducibly convertible to that of its type + is used to apply nilEqRed in elimListRedEq_mut (l.385 of theories/Substitution/Introductions/ListElim.v) *) End LogicalRelation. @@ -303,11 +410,17 @@ About typing_terminates. (* ** Metatheoretical properties *) -From LogRel Require Import Decidability. +From LogRel Require Import Decidability Normalisation Consequences. (* Decidability of typechecking *) About check_full. +(* Normalisation *) +About normalisation. +About type_normalisation. + (* Consistency *) +About consistency. (* Canonicity *) +About nat_canonicity.