Closed lephe closed 1 year ago
Lysxia
commented
1 year ago Thanks @lephe This looks good!
I will make a release shortly before Christmas. Are the bind lemmas on your wishlist something you were planning to look at soon?
@YaZko Does Damien Pous's library have something equivalent to what paco provides for bind closure?
lephe
commented
1 year ago Cool! I'm afraid I won't have time to come back to this in the near future. I PR'd it because Yannick mentioned it would be useful in Vellvm soonish. Are the bind lemmas required for the next version of the library?
Lysxia
commented
1 year ago Not at all! I only asked to know whether to expect more PRs on top of this in the near future. No pressure if not!
YaZko
commented
1 year ago @YaZko Does Damien Pous's library have something equivalent to what paco provides for
bindclosure?
Well I would argue that paco does not provide much: nothing in the vanilla version, and with the gpaco version the valid up-to principles are derived by proving that they are below a "main" closure proved to be weakly compatible.
So specifically in itrees, we define the closure and prove that it is below eqitC here: https://github.com/DeepSpec/InteractionTrees/blob/master/theories/Eq/Eqit.v#L1100 .
I would argue that the companion provides significantly better support: there is no need for picking this weird "larger" closure that eqitC incarnates, valid principles are principles below the companion, which in particular contain all compatible functions.
So specifically in ctrees, I defined a generic up-to bind function bind_ctx here: https://github.com/vellvm/ctrees/blob/master/theories/Eq/Equ.v#L545. And it is specialized to the various relations we are interested in, for instance coinductive equality (the same as eq_itree essentially) a little lower in this same file: bind_ctx_equ for the definition and bind_ctx_equ_t for the proof of validity.
lephe
commented
1 year ago Not at all! I only asked to know whether to expect more PRs on top of this in the near future. No pressure if not!
Right, I see. I still have ~350 lines of lemmas like inversion principles for iter, a non-trivial theorem that x ∈ interp h t → x ∈ t, and misc stuff. I can try and PR that too for the next version if that's of interest to you.
Lysxia
commented
1 year ago If that's not too much trouble for you, that would be lovely!
This PR expands the theory of
ruttby basically followingeqit.Context: While working on proving abstract semantics correct with Yannick, I figured we needed equality for ITrees with different (concrete and abstract) event types, and landed on a design that turned out to be equivalent to
rutt. Since there was no theory for it at the time I expanded it to matcheqit.None of this is particularly exciting; it's just required for convenient work with
rutt. Maybe one property that stands out is compatibility witheutt, which is a fairly intricate coinductive proof involving two concurrent inductions onruttFandeuttF(and at one point three).Changes:
theories/Eq/Eqit.v:fold_eqitFthat appliesfold_eqitFmore consistently by eta-expanding arguments that don't have the expected syntactic structure.eutt_inv_Ret_landeutt_inv_Ret_r, used later to prove compatibility ofruttwitheutt. These couldn't go undereutt_inv_Retbecause some required congruences aren't yet available.theories/Eq/Rutt.v:ruttF:ruttF_inv_VisF_r,ruttF_inv_VisF(withdependent destruction, that's the best I can do).unfold_rutttactic,fold_ruttFlemma and tactic.rutt:rutt_Ret,rutt_inv_Ret,rutt_inv_Ret_l,rutt_inv_Ret_r,rutt_Vis,rutt_inv_Vis,rutt_inv_Vis_l,rutt_inv_Vis_r.eq_itreeandeuttge, whichtypeclasses eautocannot infer from the general versions.theories/Eq/RuttFacts.v(new file):rutt_trigger.REvandRAns.flippingREvandRAns, ending withrutt_flip(closest thing to symmetry we have).Properinstances culminating in aneuttcompatibility lemma. The most general rewrite available is:REvforeq_REv,RAnsforeq_RAnsandRRforeq_rel.t1andt2foreutt.rutt_bind.Unfinished wishlist:
bindclosurebindinversion lemmasI tried to imitate the code style; let me know if anything needs fixing.
Tested with Coq 8.15.2.