Fix #3357, mark implicit arguments in Notations

[psteckler]

Notations were converting implicit arguments to explicit arguments in notations when using the NProd and NLambda constructors of notation_constr, because there was nothing in those constructors to mark implicitness.

Adding a binding_kind field for those constructors allows marking implicitness, and propagating it to the stored pattern.

The test 3357.v has the Fail removed, and the file moved to bugs/closed/.

[herbelin]

Looks good but there are a couple of cases to check in the function used for printing (Notation_ops.match_). See the annotated code which tells which bk must be matched again a bk in the glob_constr, which are necessaritly Explicit by construction (those which are used to catch a binder which is part of a recursive binder) and thus deserve an assert, and thus that apply only when with Explicit (the eta case).

Also, those NLambda and NProd used to catch a binder which is part of a recursive binder should conventially be written without { } (i.e. it makes no sense to write Notation "lambda {x} .. {y} => t" := ... (x binder, y binder, ...).). Thus, there should be an error if the GLambda and GProd in the aux part of compare_recursive_parts of notation_ops.ml expose a Implicit. (I could not comment on the diff since it is not in the diff.)

On a more general note, since the kernel drops Explicit/Implicit (*), a notation with a { } shall never be reused to print a term from the kernel.

(*) Maybe it should not drop them, but as it is now, it does. I always found frustrating to write thinks like

Lemma L (f:forall {A}, A -> A) : foo.

and see f : forall A, A -> A instead of f : forall {A}, A -> A in the hypotheses.

[herbelin]

In all those four cases, I would say that we should have an assertion bk = Explicit

[herbelin]

In the NBinderList cases, one should also have the assertion bk2 = Explicit

[herbelin]

Idem.

[herbelin]

Idem for these case where the NLambda and NProd are placeholders for a sequence of binders.

[herbelin]

In those cases however, one should have the same bk on the lhs and rhs.

[herbelin]

For the eta-expansion, one need to match exactly an Explicit for the expansion to make sense.

Typical situation: we don't want to identify let y := fun {A} => g A in t with let y := g in t as this would break the implicit argument of y.

[psteckler]

Thanks, I somehow knew it wasn't that simple! I'll make these changes soon.

[psteckler]

I've made the changes suggested in the code comments.

Looking into the Implicit check in compare_recursive_parts.

[psteckler]

@herbelin I've added a check for implicit argument in the aux part of compare_recursive_parts. You should confirm it's OK.

[psteckler]

In fiat-crypto run by Travis, one of the new asserts failed, at line 686 in constrintern.ml. Not sure what to make of that.

[JasonGross]

Here is a small test-case that succeeds in v8.6 and triggers the anomaly here:

Local Notation foo := (forall {n : nat}, n = n).
Definition bar : foo := fun _ => eq_refl.
Check bar _ : _ = _.

Of course, the implicit status doesn't actually get set in v8.6, but if you're not supporting implicit status, then it should be an error message, not an anomaly.

[psteckler]

Currently, the check for implicit arguments is done by assertion. We could change them to errors.

[JasonGross]

Yeah, an error would be better. Anomalies are for code that should be impossible to reach, not for when the user gives Coq garbage input.

Is there any reason, though, that Coq can't support this use-case?

[psteckler]

@JasonGross Unfortunately, my force-push deleted @herbelin 's original review comments that asked for these asserts. Maybe he can look at this particular use-case.

[JasonGross]

You mean #668 (comment) ? (I think you can expand the hidden review comments.)

[psteckler]

Yes, I meant those comments. I can see them again now, maybe the page was stale in my browser when I tried yesterday.

[psteckler]

I can turn any of these new asserts into errors, but maybe some of them are indeed sanity checks, rather than limitations on user input, so we should clarify which are which.

[herbelin]

Hi Paul, the anomaly comes from here presumably. These two assert should be when binding_kind_eq bk1 bk2 (but an "=" should be ok also).

[psteckler]

@herbelin Thanks, should any of the other asserts in the diffs also be turned into guards?

[herbelin]

Should be ok, I think.

[psteckler]

I've changed the assert identified by @herbelin to a guard, also the neighboring similar match-case.

There may be others to change to guards, or to errors.

[JasonGross]

I'd suggest also adding an output test-case in notations that makes use of implicit binders, since apparently there wasn't one before:

Notation foo := (forall {n : nat}, n = n).
Axiom f0 : foo. Check f0 _ : _ = _.
Notation "&& x .. y , B" := (forall x , .. (forall y , B) .. ) (at level 0, x binder, y binder).
Axiom f1 : && x y , (x = y :> nat). Check f1 _ _ : _ = _.
Notation "&& x .. y , B" := (forall x , .. (forall {y} , B) .. ) (at level 0, x binder, y binder).
Axiom f2 : && x y , (x = y :> nat). Check f2 _ _ : _ = _.
Notation "&& x .. y , B" := (forall {x} , .. (forall {y} , B) .. ) (at level 0, x binder, y binder).
Axiom f3 : && x y , (x = y :> nat). Check f3 _ _ : _ = _.
Notation "&& x .. y , B" := (forall {x} , .. (forall y , B) .. ) (at level 0, x binder, y binder).
Axiom f4 : && x y , (x = y :> nat). Check f4 _ _ : _ = _.

(Should that be Check f0 _ : _ = _ or Check f0 : _ = _?)

[ejgallego]

I'd like to have a look into this before merging if not urgent, thanks!

[herbelin]

By the way, an improvement: one could use user_err here with the loc taken in one of the GLambda or GProd which has an Implicit.

[herbelin]

@JasonGross: The notations 3 to 5 should fail with an error Implicit arguments found in recursive parts of a binder (since { } is not supposed to be used in variables used to denote recursive binders).

Also, there is no support for { } in kernel, so, internally, Axiom f0 : foo is Axiom f0 : forall (n : nat), n = n.

I start to feel that we are somehow opening a can of worms. Maybe the { } status should actually be first added to the type constr before we start supporting it in notations, otherwise, we may be facing more new surprises than what we solve.

[psteckler]

@herbelin Worms are bad. I'll back off from this PR, unless someone really wants me to push forward.

[herbelin]

@pstecker: Somehow, I would eventually lean towards having implicit arguments annotations in constr (e.g. extending the Name.t field into a more informative one which would also contain Explicit and Implicit). Don't know what @mattam82, or @ppedrot (or anyone else) think, if this is an idea which they already considered.

[SkySkimmer]

I feel like implicits are about references rather than part of a type somehow. ie

Definition Id := forall {A}, A -> A.
Definition id : Id := fun A a => a.

If this worked would id have an implicit argument?
I would rather imagine that when defining Id there is some error like "implicit arguments in floating type", and when someone does forall (f : forall {A}, A -> A), ... the implicit information is bound to the rel f inside the forall (eg by adding a (Implicit|Explicit) list to each constructor of Context.Rel.Declaration.pt).

[herbelin]

@SkySkimmer: Maybe. We need to think more at where { } is expected to be meaningful.

[maximedenes]

@ejgallego do you still plan to have a look at this?

[psteckler]

@maximedenes From the discussion, it doesn't look like there's a consensus on how to handle the issue in 3357. If @ejgallego is planning to re-work the Notation machinery, anyway, maybe it's best to give up on this PR.

[ejgallego]

Hey @maximedenes I'd like to but I am a bit busy, what does @herbelin think ? Is the bug really critical or we could live with it. My limited understanding of the issue is that it seems a bit complicated; @psteckler my plans for notations are not going well in the sense that I am far from satisfied with the current status of my ideas, so don't count on them for now.

[herbelin]

The bug is not critical and we could resolve it by issuing a warning when a {x:A} is found in a notation.

Even, if I feel that in the longer term, something remains to be done. The {x:A} syntax is pretty appealing to indicate an inferable argument and it is somehow frustrating that it does not survive beyond parsing.

[ejgallego]

So this PR is actually orphaned.

One question, as briefly discussed in CEP#19 , notation unfolding and implicit resolution could be seen as a separate phase, however as @silene has pointed out in the past one has to be careful of capturing the proper "implicit" closure when unfolding notations.

So, my question is, do we have a written specification of how internatilization is supposed to work? If not, should we try to come up with a more or less complete description on what the interaction between notations and implicits should be before we continue to work in this PR?

[ejgallego]

@herbelin should we close this PR?

[herbelin]

@herbelin should we close this PR?

As far as I'm concerned, it can be closed (orphaned and requiring more thinking time).

[ejgallego]

Ok, closed, noted left in #3357 so if someone ever tackles the bug again they can track it.