-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathLinear.agda
More file actions
340 lines (275 loc) · 15.6 KB
/
Linear.agda
File metadata and controls
340 lines (275 loc) · 15.6 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
module Linear where
open import Agda.Primitive using (Level; lzero; lsuc; _⊔_)
data _==_ {l : Level}{A : Set l}(a : A) : A -> Set l where
refl : a == a
infix 0 _==_
{-# BUILTIN EQUALITY _==_ #-}
record One : Set where
constructor <>
open One
data Two : Set where
tt ff : Two
data Nat : Set where
zero : Nat
succ : Nat -> Nat
{-# BUILTIN NATURAL Nat #-}
_+N_ : Nat -> Nat -> Nat
zero +N n = n
succ m +N n = succ (m +N n)
data CompareNat : Nat -> Nat -> Set where
lt : (m k : Nat) -> CompareNat m (succ (m +N k))
gte : (k n : Nat) -> CompareNat (n +N k) n
compareNat : (m n : Nat) -> CompareNat m n
compareNat zero zero = gte zero zero
compareNat zero (succ n) = lt zero n
compareNat (succ m) zero = gte (succ m) zero
compareNat (succ m) (succ n) with compareNat m n
compareNat (succ m) (succ .(succ (m +N k))) | lt .m k = lt _ _
compareNat (succ .(n +N k)) (succ n) | gte k .n = gte _ _
data List (A : Set) : Set where
nil : List A
_::_ : A -> List A -> List A
record Sg (A : Set) (B : A -> Set) : Set where
constructor _,_
field
fst : A
snd : B fst
open Sg
infixr 1 _,_
_*_ : Set -> Set -> Set
A * B = Sg A \ _ -> B
infixr 4 _*_
infixr 5 _::_
--------------------------------------------------------------------------------
data LTy : Set where
KEY : LTy
LIST : LTy -> LTy
_-o_ _<**>_ _&_ : LTy -> LTy -> LTy
infixr 5 _-o_
--------------------------------------------------------------------------------
-- Permutations and so on
_++_ : forall {X} -> List X -> List X -> List X
nil ++ l2 = l2
(x :: l1) ++ l2 = x :: (l1 ++ l2)
++nil : {X : Set} -> (l : List X) -> l ++ nil == l
++nil nil = refl
++nil (x :: l) rewrite ++nil l = refl
-- This is the one from the Coq standard library. It represents
-- permutations as a sequence of individual swaps.
-- http://coq.inria.fr/stdlib/Coq.Sorting.Permutation.html
data _><_ {X : Set} : List X -> List X -> Set where
permNil : nil >< nil
permSkip : forall {x l1 l2} -> l1 >< l2 -> (x :: l1) >< (x :: l2)
permSwap : forall {x y l} -> (x :: y :: l) >< (y :: x :: l)
permTrans : forall {l1 l2 l3} -> l1 >< l2 -> l2 >< l3 -> l1 >< l3
permRefl : forall {X : Set} (l : List X) -> l >< l
permRefl nil = permNil
permRefl (x :: l) = permSkip (permRefl l)
permAppL : {X : Set} -> {l1 l2 l : List X} -> l1 >< l2 -> (l1 ++ l) >< (l2 ++ l)
permAppL permNil = permRefl _
permAppL (permSkip p) = permSkip (permAppL p)
permAppL permSwap = permSwap
permAppL (permTrans p1 p2) = permTrans (permAppL p1) (permAppL p2)
permAppR : {X : Set} -> (l : List X) -> {l1 l2 : List X} -> l1 >< l2 -> (l ++ l1) >< (l ++ l2)
permAppR nil p = p
permAppR (x :: l) p = permSkip (permAppR l p)
nilPerm : {X : Set} -> {K : List X} -> nil >< K -> K == nil
nilPerm permNil = refl
nilPerm (permTrans p1 p2) rewrite nilPerm p1 = nilPerm p2
singlPerm : {X : Set} -> {l : List X} {x : X} -> (x :: nil) >< l -> l == x :: nil
singlPerm (permSkip p) rewrite nilPerm p = refl
singlPerm (permTrans p1 p2) rewrite singlPerm p1 = singlPerm p2
permSymm : {X : Set} -> {l1 l2 : List X} -> l1 >< l2 -> l2 >< l1
permSymm permNil = permNil
permSymm (permSkip p) = permSkip (permSymm p)
permSymm permSwap = permSwap
permSymm (permTrans p1 p2) = permTrans (permSymm p2) (permSymm p1)
permBubble : {X : Set} -> (l1 l2 : List X) {x : X} -> (x :: l1 ++ l2) >< (l1 ++ (x :: l2))
permBubble nil l2 = permRefl _
permBubble (y :: l1) l2 = permTrans permSwap (permSkip (permBubble l1 l2))
-- FIXME: should just use the fact that ++ is assoc for ==
permAssoc : {X : Set} -> (l1 l2 l3 : List X) -> ((l1 ++ l2) ++ l3) >< (l1 ++ (l2 ++ l3))
permAssoc nil l2 l3 = permRefl (l2 ++ l3)
permAssoc (x :: l1) l2 l3 = permSkip (permAssoc l1 l2 l3)
permSwap++ : {X : Set} -> (l1 l2 : List X) -> (l1 ++ l2) >< (l2 ++ l1)
permSwap++ nil l2 rewrite ++nil l2 = permRefl l2
permSwap++ (x :: l1) l2 = permTrans (permSkip (permSwap++ l1 l2)) (permBubble l2 l1)
--------------------------------------------------------------------------------
-- explicit splitting presentation of terms
Ctx : Set
Ctx = List LTy
data _|-_ : Ctx -> LTy -> Set where
var : forall {T} -> (T :: nil) |- T
lam : forall {G S T} -> (S :: G) |- T -> G |- (S -o T)
app : forall {G G0 G1 S T} -> G >< (G0 ++ G1) -> G0 |- (S -o T) -> G1 |- S -> G |- T
nil : forall {T} -> nil |- LIST T
cons : forall {T} -> nil |- (T -o LIST T -o LIST T)
foldr : forall {S T} -> nil |- T
-> nil |- (S -o (LIST S & T) -o T)
-> nil |- (LIST S -o T)
cmp : forall {T} -> nil |- (KEY -o KEY -o ((KEY -o KEY -o T) & (KEY -o KEY -o T)) -o T)
tensor : forall {G G0 G1 S T} -> G >< (G0 ++ G1) -> G0 |- S -> G1 |- T -> G |- (S <**> T)
pm : forall {G G0 G1 S T U} -> G >< (G0 ++ G1) -> G0 |- (S <**> T) -> (S :: T :: G1) |- U -> G |- U
_&_ : forall {G S T} -> G |- S -> G |- T -> G |- (S & T)
proj1 : forall {G S T} -> G |- (S & T) -> G |- S
proj2 : forall {G S T} -> G |- (S & T) -> G |- T
--------------------------------------------------------------------------------
-- insertion sort
_$$_ : forall {G0 G1 S T} -> G0 |- (S -o T) -> G1 |- S -> (G0 ++ G1) |- T
t1 $$ t2 = app (permRefl _) t1 t2
infixl 4 _$$_
insert : nil |- (LIST KEY -o KEY -o LIST KEY)
insert = foldr (lam (cons $$ var $$ nil))
(lam (lam (lam (app (permSkip permSwap)
(cmp $$ var $$ var)
(lam (lam (app (permSkip permSwap) (cons $$ var) (proj2 var $$ var)))
&
lam (lam (cons $$ var $$ (cons $$ var $$ proj1 var))))))))
insertion-sort : nil |- (LIST KEY -o LIST KEY)
insertion-sort = foldr nil (lam (lam (insert $$ proj2 var $$ var)))
--------------------------------------------------------------------------------
[[_]]T : LTy -> Set
[[ KEY ]]T = Nat
[[ LIST T ]]T = List [[ T ]]T
[[ S -o T ]]T = [[ S ]]T -> [[ T ]]T
[[ S <**> T ]]T = [[ S ]]T * [[ T ]]T
[[ S & T ]]T = [[ S ]]T * [[ T ]]T
[[_]]C : Ctx -> Set
[[ nil ]]C = One
[[ S :: G ]]C = [[ S ]]T * [[ G ]]C
[[_]]p : forall {G G'} -> G >< G' -> [[ G ]]C -> [[ G' ]]C
[[ permNil ]]p <> = <>
[[ permSkip p ]]p (x , g) = x , [[ p ]]p g
[[ permSwap ]]p (x , y , g) = (y , x , g)
[[ permTrans p1 p2 ]]p g = [[ p2 ]]p ([[ p1 ]]p g)
split : forall G0 {G1} -> [[ G0 ++ G1 ]]C -> [[ G0 ]]C * [[ G1 ]]C
split nil g = <> , g
split (T :: G0) (t , g) with split G0 g
... | g0 , g1 = (t , g0) , g1
compare : {X : Set} -> Nat -> Nat -> ((Nat -> Nat -> X) * (Nat -> Nat -> X)) -> X
compare m n (GTE , LT) with compareNat m n
compare m .(succ (m +N k)) (GTE , LT) | lt .m k = LT (succ (m +N k)) m
compare .(n +N k) n (GTE , LT) | gte k .n = GTE (n +N k) n
foldright : {X Y : Set} -> X -> (Y -> (List Y * X) -> X) -> List Y -> X
foldright n c nil = n
foldright n c (y :: ys) = c y (ys , foldright n c ys)
[[_]]t : forall {G T} -> G |- T -> [[ G ]]C -> [[ T ]]T
[[ var ]]t (t , <>) = t
[[ lam t ]]t g = \ v -> [[ t ]]t (v , g)
[[ app {_} {G0} p t1 t2 ]]t g with split G0 ([[ p ]]p g)
... | g0 , g1 = [[ t1 ]]t g0 ([[ t2 ]]t g1)
[[ nil ]]t <> = nil
[[ cons ]]t <> = _::_
[[ foldr t1 t2 ]]t <> = foldright ([[ t1 ]]t <>) ([[ t2 ]]t <>)
[[ cmp ]]t <> = compare
[[ tensor {_} {G0} p t1 t2 ]]t g with split G0 ([[ p ]]p g)
... | g0 , g1 = ([[ t1 ]]t g0) , ([[ t2 ]]t g1)
[[ pm {_} {G0} p t1 t2 ]]t g with split G0 ([[ p ]]p g)
... | g0 , g1 with [[ t1 ]]t g0
... | s , t = [[ t2 ]]t (s , t , g1)
[[ t1 & t2 ]]t g = [[ t1 ]]t g , [[ t2 ]]t g
[[ proj1 t ]]t g = fst ([[ t ]]t g)
[[ proj2 t ]]t g = snd ([[ t ]]t g)
sorter : List Nat -> List Nat
sorter = [[ insertion-sort ]]t <>
--------------------------------------------------------------------------------
-- Logical Predicates to prove the permutation property
KeySet : Set
KeySet = List Nat
[_|=_contains_] : KeySet -> (T : LTy) -> [[ T ]]T -> Set
[ K |= KEY contains n ] = (n :: nil) >< K
[ K |= LIST T contains nil ] = nil >< K
[ K |= LIST T contains (t :: ts) ] = Sg KeySet \ K1 -> Sg KeySet \ K2 -> (K1 ++ K2) >< K * [ K1 |= T contains t ] * [ K2 |= LIST T contains ts ]
[ K |= S -o T contains f ] = forall K' s -> [ K' |= S contains s ] -> [ K ++ K' |= T contains f s ]
[ K |= S <**> T contains (s , t) ] = Sg KeySet \ K1 -> Sg KeySet \ K2 -> (K1 ++ K2) >< K * [ K1 |= S contains s ] * [ K2 |= T contains t ]
[ K |= S & T contains (s , t) ] = [ K |= S contains s ] * [ K |= T contains t ]
repList : forall K K' -> [ K |= LIST KEY contains K' ] -> K' >< K
repList K nil phi rewrite nilPerm phi = permRefl nil
repList K (k :: ks) (K1 , K2 , phi , psi1 , psi2) rewrite singlPerm psi1 = permTrans (permSkip (repList _ _ psi2)) phi
listRep : forall K -> [ K |= LIST KEY contains K ]
listRep nil = permNil
listRep (k :: K) = (k :: nil) , K , permRefl (k :: K) , permRefl (k :: nil) , listRep K
[_|=_*contains_] : KeySet -> (G : Ctx) -> [[ G ]]C -> Set
[ K |= nil *contains <> ] = nil >< K
[ K |= T :: G *contains t , g ] = Sg KeySet \ K1 -> Sg KeySet \ K2 -> (K1 ++ K2) >< K * [ K1 |= T contains t ] * [ K2 |= G *contains g ]
preservePerm : forall {K K'} -> (T : LTy) -> (x : [[ T ]]T) -> K >< K' -> [ K |= T contains x ] -> [ K' |= T contains x ]
preservePerm KEY n p prf = permTrans prf p
preservePerm (LIST T) nil p phi = permTrans phi p
preservePerm (LIST T) (t :: ts) p (K1 , K2 , p' , r1 , r2) = K1 , K2 , permTrans p' p , r1 , r2
preservePerm (S -o T) f p prf = \ K' s x -> preservePerm T (f s) (permAppL p) (prf K' s x)
preservePerm (S <**> T) (s , t) p (K1 , K2 , p' , r1 , r2) = K1 , K2 , permTrans p' p , r1 , r2
preservePerm (S & T) (s , t) p (r1 , r2) = preservePerm S s p r1 , preservePerm T t p r2
lem-1 : forall {A : Set} -> (l0 l1 l2 : List A) -> ((l2 ++ l0) ++ l1) >< ((l0 ++ l1) ++ l2)
lem-1 l0 l1 l2 = permTrans (permAppL (permSwap++ l2 l0))
(permTrans (permAssoc l0 l2 l1)
(permTrans (permAppR l0 (permSwap++ l2 l1))
(permSymm (permAssoc l0 l1 l2))))
lem-2 : forall {A : Set} -> (l0 l1 l2 : List A) -> ((l2 ++ l1) ++ l0) >< ((l0 ++ l1) ++ l2)
lem-2 l0 l1 l2 = permTrans (permAppL (permSwap++ l2 l1)) (permTrans (permSwap++ (l1 ++ l2) l0) (permSymm (permAssoc l0 l1 l2)))
foldright-welltyped : forall {T S} n f ->
[ nil |= T contains n ] ->
[ nil |= (S -o (LIST S & T) -o T) contains f ] ->
[ nil |= (LIST S -o T) contains foldright n f ]
foldright-welltyped n f psin psif Kl nil phil rewrite nilPerm phil = psin
foldright-welltyped {T} {S} n f psin psif Kl (s :: ss) (K1 , K2 , phi , phis , phiss) rewrite ++nil Kl =
preservePerm T _ phi (psif K1 s phis K2 (ss , foldright n f ss) (phiss , foldright-welltyped {T} {S} n f psin psif K2 ss phiss))
compare-welltyped : forall T ->
[ nil |= (KEY -o KEY -o ((KEY -o KEY -o T) & (KEY -o KEY -o T)) -o T) contains compare ]
compare-welltyped T K0 x0 phi0 K1 x1 phi1 K2 (GTE , LT) (phi2 , psi2) with compareNat x0 x1
compare-welltyped T K0 x0 phi0 K1 .(succ (x0 +N k)) phi1 K2 (GTE , LT) (phi2 , psi2) | lt .x0 k =
preservePerm T _ (lem-2 K0 K1 K2) (psi2 K1 (succ (x0 +N k)) phi1 K0 x0 phi0)
compare-welltyped T K0 .(x1 +N k) phi0 K1 x1 phi1 K2 (GTE , LT) (phi2 , psi2) | gte k .x1 =
preservePerm T _ (lem-1 K0 K1 K2) (phi2 K0 (x1 +N k) phi0 K1 x1 phi1)
respPerm : forall {G G'} -> (p : G >< G') -> (g : [[ G ]]C) -> forall {K} -> [ K |= G *contains g ] -> [ K |= G' *contains [[ p ]]p g ]
respPerm permNil g phi = phi
respPerm (permSkip p) (t , g) (K1 , K2 , phi , psi1 , psi2) = K1 , K2 , phi , psi1 , respPerm p g psi2
respPerm permSwap (s , t , g) (K1 , K2 , phi1 , psi1 , K3 , K4 , phi2 , psi3 , psi4) =
K3 , K1 ++ K4 , permTrans (permSymm (permAssoc K3 K1 K4)) (permTrans (permAppL (permSwap++ K3 K1)) (permTrans (permAssoc K1 K3 K4) (permTrans (permAppR K1 phi2) phi1))) , psi3 , K1 , K4 , permRefl _ , psi1 , psi4
respPerm (permTrans p1 p2) g phi = respPerm p2 _ (respPerm p1 _ phi)
data Split (G0 G1 : Ctx) (K : List Nat) : (g0 : [[ G0 ]]C) -> (g1 : [[ G1 ]]C) -> Set where
splitting : (g0 : [[ G0 ]]C) ->
(g1 : [[ G1 ]]C) ->
(K0 : List Nat) ->
(K1 : List Nat) ->
(p : (K0 ++ K1) >< K) ->
(phi0 : [ K0 |= G0 *contains g0 ]) ->
(phi1 : [ K1 |= G1 *contains g1 ]) ->
Split G0 G1 K g0 g1
makeSplitting : forall G0 G1 ->
(g : [[ G0 ++ G1 ]]C) ->
(K : List Nat) ->
[ K |= G0 ++ G1 *contains g ] ->
Split G0 G1 K (fst (split G0 g)) (snd (split G0 g))
makeSplitting nil G1 g K phi = splitting <> g nil K (permRefl K) permNil phi
makeSplitting (T :: G0) G1 (t , g) K (K1 , K2 , phi , psi1 , psi2) with makeSplitting G0 G1 g K2 psi2
makeSplitting (T :: G0) G1 (t , g) K (K1' , K2 , phi , psi1 , psi2) | splitting .(fst (split G0 g)) .(snd (split G0 g)) K0 K1 p phi0 phi1
= splitting (t , fst (split G0 g))
(snd (split G0 g))
(K1' ++ K0)
K1
(permTrans (permAssoc K1' K0 K1) (permTrans (permAppR K1' p) phi))
(K1' , K0 , permRefl (K1' ++ K0) , psi1 , phi0)
phi1
fundamental : forall {G T} ->
(t : G |- T) ->
forall K g -> [ K |= G *contains g ] -> [ K |= T contains ([[ t ]]t g) ]
fundamental (var {T}) K (t , <>) (K1 , K2 , phi , tOK , nilK2) rewrite nilPerm nilK2 | ++nil K1 = preservePerm T t phi tOK
fundamental (lam t) K g phi = \ K' s psi -> fundamental t (K ++ K') (s , g) (K' , K , permSwap++ K' K , psi , phi)
fundamental {_} {T} (app {._} {G0} {G1} p t1 t2) K g phi with makeSplitting G0 G1 ([[ p ]]p g) K (respPerm p g phi)
... | splitting ._ ._ K0 K1 p' phi0 phi1 = preservePerm T _ p' (fundamental t1 K0 _ phi0 K1 ([[ t2 ]]t _) (fundamental t2 K1 _ phi1))
fundamental nil K g phi = phi
fundamental cons K g phi rewrite nilPerm phi = \ K0 s0 psi0 K1 s1 psi1 -> K0 , K1 , permRefl _ , psi0 , psi1
fundamental (foldr {S}{T} t1 t2) K g phi rewrite nilPerm phi = foldright-welltyped {T} {S} _ _ (fundamental t1 nil <> permNil) (fundamental t2 nil <> permNil)
fundamental (cmp {T}) K g phi rewrite nilPerm phi = compare-welltyped T
fundamental (tensor {_} {G0} {G1} p t1 t2) K g phi with makeSplitting G0 G1 ([[ p ]]p g) K (respPerm p g phi)
... | splitting ._ ._ K0 K1 p' phi0 phi1 = K0 , K1 , p' , fundamental t1 K0 _ phi0 , fundamental t2 K1 _ phi1
fundamental (pm {_} {G0} {G1} {S} {T} {U} p t1 t2) K g phi with makeSplitting G0 G1 ([[ p ]]p g) K (respPerm p g phi)
... | splitting ._ ._ K0 K1 p' phi0 phi1 with fundamental t1 K0 _ phi0
... | K01 , K02 , p'' , phi01 , phi02 = preservePerm U _ (permTrans (permTrans (permSymm (permAssoc K01 K02 K1)) (permAppL p'')) p')
(fundamental t2 (K01 ++ (K02 ++ K1)) _ (K01 , K02 ++ K1 , permRefl _ , phi01 , K02 , K1 , permRefl _ , phi02 , phi1))
fundamental (t1 & t2) K g phi = fundamental t1 K g phi , fundamental t2 K g phi
fundamental (proj1 t) K g phi = fst (fundamental t K g phi)
fundamental (proj2 t) K g phi = snd (fundamental t K g phi)
isPermutation : (t : nil |- (LIST KEY -o LIST KEY)) -> (l : List Nat) -> ([[ t ]]t <> l) >< l
isPermutation t l with fundamental t nil <> permNil l l (listRep l)
... | x rewrite ++nil l = repList l ([[ t ]]t <> l) x