Tealeaves.Examples.SystemF.TypeSoundness
From Tealeaves Require Export
Examples.SystemF.Syntax
Examples.SystemF.Contexts
Simplification.Tests.SystemF_LN.
From Coq Require Import
Sorting.Permutation.
Implicit Types (x : atom).
Open Scope set_scope.
Examples.SystemF.Syntax
Examples.SystemF.Contexts
Simplification.Tests.SystemF_LN.
From Coq Require Import
Sorting.Permutation.
Implicit Types (x : atom).
Open Scope set_scope.
Properties of the typing judgment Δ ; Γ ⊢ t : τ
Structural properties Δ ; Γ ⊢ t : τ in Δ
Δ is always well-formed
Lemma j_kind_ctx_wf : ∀ Δ Γ t τ,
(Δ ; Γ ⊢ t : τ) →
ok_kind_ctx Δ.
Proof.
unfold ok_kind_ctx; induction 1; cleanup_cofinite.
all: (autorewrite with tea_rw_uniq in *; intuition).
Qed.
(Δ ; Γ ⊢ t : τ) →
ok_kind_ctx Δ.
Proof.
unfold ok_kind_ctx; induction 1; cleanup_cofinite.
all: (autorewrite with tea_rw_uniq in *; intuition).
Qed.
Theorem j_kind_ctx_perm : ∀ Δ1 Δ2 Γ t τ,
Permutation Δ1 Δ2 →
(Δ1 ; Γ ⊢ t : τ) →
(Δ2 ; Γ ⊢ t : τ).
Proof.
introv perm j. generalize dependent Δ2.
induction j; introv Hperm.
- eauto using Judgment, Permutation_sym with sysf_ctx.
- eauto using Judgment.
- eauto using Judgment.
- eapply j_univ.
eauto using Permutation_app_tail.
- eauto using Judgment, ok_type_perm1.
Qed.
Corollary j_kind_ctx_perm1 : ∀ Δ1 Δ2 x Γ t τ,
((Δ1 ++ x ¬ tt) ++ Δ2 ; Γ ⊢ t : τ) →
((Δ1 ++ Δ2) ++ x ¬ tt ; Γ ⊢ t : τ).
Proof.
intros. eapply j_kind_ctx_perm. 2:{ eassumption. }
simpl_alist. apply Permutation_app.
all: auto using Permutation_refl, Permutation_app_comm.
Qed.
Permutation Δ1 Δ2 →
(Δ1 ; Γ ⊢ t : τ) →
(Δ2 ; Γ ⊢ t : τ).
Proof.
introv perm j. generalize dependent Δ2.
induction j; introv Hperm.
- eauto using Judgment, Permutation_sym with sysf_ctx.
- eauto using Judgment.
- eauto using Judgment.
- eapply j_univ.
eauto using Permutation_app_tail.
- eauto using Judgment, ok_type_perm1.
Qed.
Corollary j_kind_ctx_perm1 : ∀ Δ1 Δ2 x Γ t τ,
((Δ1 ++ x ¬ tt) ++ Δ2 ; Γ ⊢ t : τ) →
((Δ1 ++ Δ2) ++ x ¬ tt ; Γ ⊢ t : τ).
Proof.
intros. eapply j_kind_ctx_perm. 2:{ eassumption. }
simpl_alist. apply Permutation_app.
all: auto using Permutation_refl, Permutation_app_comm.
Qed.
Theorem j_kind_ctx_weak : ∀ Δ1 Δ2 Γ t τ,
ok_kind_ctx Δ2 →
disjoint Δ1 Δ2 →
Δ1 ; Γ ⊢ t : τ →
Δ1 ++ Δ2 ; Γ ⊢ t : τ.
Proof.
introv ok disj j. induction j.
- apply j_var; auto with sysf_ctx.
- apply j_abs with (L := L); auto with sysf_ctx.
- apply j_app with (τ1 := τ1); auto.
- rename H0 into IH.
apply j_univ with (L := L ∪ (domset Δ2)).
intros_cof IH. apply j_kind_ctx_perm1.
autorewrite with tea_rw_disj in ×.
intuition fsetdec.
- apply j_inst; auto with sysf_ctx.
Qed.
ok_kind_ctx Δ2 →
disjoint Δ1 Δ2 →
Δ1 ; Γ ⊢ t : τ →
Δ1 ++ Δ2 ; Γ ⊢ t : τ.
Proof.
introv ok disj j. induction j.
- apply j_var; auto with sysf_ctx.
- apply j_abs with (L := L); auto with sysf_ctx.
- apply j_app with (τ1 := τ1); auto.
- rename H0 into IH.
apply j_univ with (L := L ∪ (domset Δ2)).
intros_cof IH. apply j_kind_ctx_perm1.
autorewrite with tea_rw_disj in ×.
intuition fsetdec.
- apply j_inst; auto with sysf_ctx.
Qed.
Theorem j_kind_ctx_subst : ∀ Δ1 x Δ2 Γ t τ τ',
ok_type (Δ1 ++ Δ2) τ' →
(Δ1 ++ x ¬ tt ++ Δ2 ; Γ ⊢ t : τ) →
(Δ1 ++ Δ2 ; envmap (subst typ ktyp x τ') Γ ⊢ subst term ktyp x τ' t : subst typ ktyp x τ' τ).
Proof.
introv Hok j. remember (Δ1 ++ x ¬ tt ++ Δ2) as rem.
generalize dependent Δ2. induction j; intros; subst.
- cbn. constructor.
+ eauto with sysf_ctx.
+ apply ok_type_ctx_sub.
× eauto.
× eauto.
× eapply ok_type_lc; eauto.
+ rewrite in_envmap_iff. eauto.
- rename H0 into IH.
simplify_subst.
apply j_abs with (L := L ∪ {{ x }}).
intros_cof IH.
rewrite (subst_open_neq term) in IH;
[| discriminate | apply LC_typ_trm ].
rewrite rw_subst_term_var_neq in IH;
[| fsetdec].
rewrite envmap_app in IH. auto.
- simplify_subst.
apply j_app with (τ1 := (subst (ix := I2) typ ktyp x τ' τ1)).
+ apply IHj1. assumption. reflexivity.
+ apply IHj2. assumption. reflexivity.
- rename H0 into IH.
simplify_subst.
apply j_univ with (L := L ∪ {{x}}).
intros_cof IH. simpl_alist in ×.
assert (x ≠ e) by fsetdec.
rewrite (subst_open_eq term) in IH.
2:{ now inversion Hok. }
rewrite (subst_open_eq typ) in IH.
2:{ now inversion Hok. }
rewrite rw_subst_type_var_neq in IH; auto.
apply IH.
+ change_alist ((Δ1 ++ Δ2) ++ e ¬ tt).
auto using ok_type_weak_r.
+ reflexivity.
- simplify_subst.
replace (subst (ix := I2) typ ktyp x τ' (ty_univ τ2))
with (ty_univ (subst typ ktyp x τ' τ2)) in IHj.
2:{ now simplify_subst. }
rewrite (subst_open_eq typ); auto.
2:{ clear IHj j. eapply ok_type_lc; eauto. }
auto using j_inst with sysf_ctx.
Qed.
Theorem j_kind_ctx_subst1 : ∀ Δ x Γ t τ τ2,
ok_type Δ τ2 →
(Δ ++ x ¬ tt ; Γ ⊢ t : τ) →
(Δ ; envmap (subst typ ktyp x τ2) Γ ⊢ subst term ktyp x τ2 t : subst typ ktyp x τ2 τ).
Proof.
introv jτ jt. change_alist (Δ ++ x ¬ tt ++ []) in jt.
change_alist (Δ ++ []) in jτ. change_alist (Δ ++ []).
auto using j_kind_ctx_subst.
Qed.
ok_type (Δ1 ++ Δ2) τ' →
(Δ1 ++ x ¬ tt ++ Δ2 ; Γ ⊢ t : τ) →
(Δ1 ++ Δ2 ; envmap (subst typ ktyp x τ') Γ ⊢ subst term ktyp x τ' t : subst typ ktyp x τ' τ).
Proof.
introv Hok j. remember (Δ1 ++ x ¬ tt ++ Δ2) as rem.
generalize dependent Δ2. induction j; intros; subst.
- cbn. constructor.
+ eauto with sysf_ctx.
+ apply ok_type_ctx_sub.
× eauto.
× eauto.
× eapply ok_type_lc; eauto.
+ rewrite in_envmap_iff. eauto.
- rename H0 into IH.
simplify_subst.
apply j_abs with (L := L ∪ {{ x }}).
intros_cof IH.
rewrite (subst_open_neq term) in IH;
[| discriminate | apply LC_typ_trm ].
rewrite rw_subst_term_var_neq in IH;
[| fsetdec].
rewrite envmap_app in IH. auto.
- simplify_subst.
apply j_app with (τ1 := (subst (ix := I2) typ ktyp x τ' τ1)).
+ apply IHj1. assumption. reflexivity.
+ apply IHj2. assumption. reflexivity.
- rename H0 into IH.
simplify_subst.
apply j_univ with (L := L ∪ {{x}}).
intros_cof IH. simpl_alist in ×.
assert (x ≠ e) by fsetdec.
rewrite (subst_open_eq term) in IH.
2:{ now inversion Hok. }
rewrite (subst_open_eq typ) in IH.
2:{ now inversion Hok. }
rewrite rw_subst_type_var_neq in IH; auto.
apply IH.
+ change_alist ((Δ1 ++ Δ2) ++ e ¬ tt).
auto using ok_type_weak_r.
+ reflexivity.
- simplify_subst.
replace (subst (ix := I2) typ ktyp x τ' (ty_univ τ2))
with (ty_univ (subst typ ktyp x τ' τ2)) in IHj.
2:{ now simplify_subst. }
rewrite (subst_open_eq typ); auto.
2:{ clear IHj j. eapply ok_type_lc; eauto. }
auto using j_inst with sysf_ctx.
Qed.
Theorem j_kind_ctx_subst1 : ∀ Δ x Γ t τ τ2,
ok_type Δ τ2 →
(Δ ++ x ¬ tt ; Γ ⊢ t : τ) →
(Δ ; envmap (subst typ ktyp x τ2) Γ ⊢ subst term ktyp x τ2 t : subst typ ktyp x τ2 τ).
Proof.
introv jτ jt. change_alist (Δ ++ x ¬ tt ++ []) in jt.
change_alist (Δ ++ []) in jτ. change_alist (Δ ++ []).
auto using j_kind_ctx_subst.
Qed.
Lemma j_type_ctx_wf : ∀ Δ Γ t τ,
(Δ ; Γ ⊢ t : τ) →
ok_type_ctx Δ Γ.
Proof.
introv j. induction j; try assumption.
- cleanup_cofinite. eauto using ok_type_ctx_inv_app_l.
- rename H0 into IH.
pick fresh e for (L ∪ atoms (bind (T := list) (fun '(x, t) ⇒ free typ ktyp t) Γ)).
specialize_cof IH e.
apply (ok_type_ctx_stren1) with (x := e).
+ assumption.
+ introv Hin.
enough (lemma : ¬ element_of (F := list) e (bind (T := list) (fun '(x, t) ⇒ free typ ktyp t) Γ)).
{ rewrite (in_bind_iff) in lemma.
rewrite in_range_iff in Hin. destruct Hin as [x Hin].
contradict lemma. ∃ (x, t0). split; [assumption|].
now apply free_iff_FV. }
{ rewrite in_atoms_iff. fsetdec. }
Qed.
(Δ ; Γ ⊢ t : τ) →
ok_type_ctx Δ Γ.
Proof.
introv j. induction j; try assumption.
- cleanup_cofinite. eauto using ok_type_ctx_inv_app_l.
- rename H0 into IH.
pick fresh e for (L ∪ atoms (bind (T := list) (fun '(x, t) ⇒ free typ ktyp t) Γ)).
specialize_cof IH e.
apply (ok_type_ctx_stren1) with (x := e).
+ assumption.
+ introv Hin.
enough (lemma : ¬ element_of (F := list) e (bind (T := list) (fun '(x, t) ⇒ free typ ktyp t) Γ)).
{ rewrite (in_bind_iff) in lemma.
rewrite in_range_iff in Hin. destruct Hin as [x Hin].
contradict lemma. ∃ (x, t0). split; [assumption|].
now apply free_iff_FV. }
{ rewrite in_atoms_iff. fsetdec. }
Qed.
Corollary j_type_ctx1 : ∀ Δ Γ t τ x τ2,
(Δ ; Γ ⊢ t : τ) →
(x, τ2) ∈ (Γ : list (atom × _)) →
ok_type Δ τ2.
Proof.
eauto using ok_type_ctx_binds, j_type_ctx_wf.
Qed.
Corollary j_type_ctx2 : ∀ Δ Γ t τ1 τ2 x,
(Δ ; Γ ++ x ¬ τ2 ⊢ t : τ1) →
ok_type Δ τ2.
Proof.
intros. eapply j_type_ctx1. eauto.
autorewrite with tea_list. eauto.
Qed.
(Δ ; Γ ⊢ t : τ) →
(x, τ2) ∈ (Γ : list (atom × _)) →
ok_type Δ τ2.
Proof.
eauto using ok_type_ctx_binds, j_type_ctx_wf.
Qed.
Corollary j_type_ctx2 : ∀ Δ Γ t τ1 τ2 x,
(Δ ; Γ ++ x ¬ τ2 ⊢ t : τ1) →
ok_type Δ τ2.
Proof.
intros. eapply j_type_ctx1. eauto.
autorewrite with tea_list. eauto.
Qed.
Theorem j_type_ctx_perm : ∀ Δ Γ1 Γ2 t τ,
(Δ ; Γ1 ⊢ t : τ) →
Permutation Γ1 Γ2 →
(Δ ; Γ2 ⊢ t : τ).
Proof.
introv j perm. generalize dependent Γ2.
induction j; intros ? Hperm; try eauto using Judgment.
- constructor.
+ eauto using ok_kind_ctx_perm.
+ rewrite ok_type_ctx_perm_gamma;
eauto using Permutation_sym.
+ symmetry in Hperm.
erewrite List.permutation_spec; eauto.
- econstructor; eauto using Permutation_app_tail.
Qed.
Corollary j_type_ctx_perm_iff : ∀ Δ Γ1 Γ2 t τ,
Permutation Γ1 Γ2 →
(Δ ; Γ1 ⊢ t : τ) ↔
(Δ ; Γ2 ⊢ t : τ).
Proof.
introv Hperm. assert (Permutation Γ2 Γ1) by now symmetry.
split; eauto using j_type_ctx_perm.
Qed.
Corollary j_type_ctx_perm1 : ∀ Δ Γ1 Γ2 x τ2 t τ1,
(Δ ; (Γ1 ++ x ¬ τ2) ++ Γ2 ⊢ t : τ1) ↔
(Δ ; (Γ1 ++ Γ2) ++ x ¬ τ2 ⊢ t : τ1).
Proof.
intros. apply j_type_ctx_perm_iff.
simpl_alist. apply Permutation_app; auto using Permutation_app_comm.
Qed.
(Δ ; Γ1 ⊢ t : τ) →
Permutation Γ1 Γ2 →
(Δ ; Γ2 ⊢ t : τ).
Proof.
introv j perm. generalize dependent Γ2.
induction j; intros ? Hperm; try eauto using Judgment.
- constructor.
+ eauto using ok_kind_ctx_perm.
+ rewrite ok_type_ctx_perm_gamma;
eauto using Permutation_sym.
+ symmetry in Hperm.
erewrite List.permutation_spec; eauto.
- econstructor; eauto using Permutation_app_tail.
Qed.
Corollary j_type_ctx_perm_iff : ∀ Δ Γ1 Γ2 t τ,
Permutation Γ1 Γ2 →
(Δ ; Γ1 ⊢ t : τ) ↔
(Δ ; Γ2 ⊢ t : τ).
Proof.
introv Hperm. assert (Permutation Γ2 Γ1) by now symmetry.
split; eauto using j_type_ctx_perm.
Qed.
Corollary j_type_ctx_perm1 : ∀ Δ Γ1 Γ2 x τ2 t τ1,
(Δ ; (Γ1 ++ x ¬ τ2) ++ Γ2 ⊢ t : τ1) ↔
(Δ ; (Γ1 ++ Γ2) ++ x ¬ τ2 ⊢ t : τ1).
Proof.
intros. apply j_type_ctx_perm_iff.
simpl_alist. apply Permutation_app; auto using Permutation_app_comm.
Qed.
Theorem j_type_ctx_weak : ∀ Δ Γ1 Γ2 t τ,
ok_type_ctx Δ Γ2 →
disjoint Γ1 Γ2 →
(Δ ; Γ1 ⊢ t : τ) →
(Δ ; Γ1 ++ Γ2 ⊢ t : τ).
Proof.
introv ok disj j.
(* save knowledge that Δ is uniq for j_inst case *)
pose proof (okΔ := j); apply j_kind_ctx_wf in okΔ.
induction j.
- apply j_var.
+ assumption.
+ now rewrite ok_type_ctx_app.
+ autorewrite with tea_list. auto.
- apply j_abs with (L := L ∪ domset Γ2).
+ (* todo need better automation here *)
rename H0 into IH.
intros_cof IH; auto. rewrite <- j_type_ctx_perm1.
apply IH; auto. autorewrite with tea_rw_disj. intuition fsetdec.
- apply j_app with (τ1 := τ1); auto.
- apply j_univ with (L := L ∪ domset Δ). intros_cof H0.
apply H0; auto.
+ auto using ok_type_ctx_weak_r.
+ rewrite ok_kind_ctx_app. autorewrite with tea_rw_disj.
split; intuition (auto using ok_kind_ctx_one; fsetdec).
- apply j_inst.
+ auto.
+ apply IHj; auto.
Qed.
ok_type_ctx Δ Γ2 →
disjoint Γ1 Γ2 →
(Δ ; Γ1 ⊢ t : τ) →
(Δ ; Γ1 ++ Γ2 ⊢ t : τ).
Proof.
introv ok disj j.
(* save knowledge that Δ is uniq for j_inst case *)
pose proof (okΔ := j); apply j_kind_ctx_wf in okΔ.
induction j.
- apply j_var.
+ assumption.
+ now rewrite ok_type_ctx_app.
+ autorewrite with tea_list. auto.
- apply j_abs with (L := L ∪ domset Γ2).
+ (* todo need better automation here *)
rename H0 into IH.
intros_cof IH; auto. rewrite <- j_type_ctx_perm1.
apply IH; auto. autorewrite with tea_rw_disj. intuition fsetdec.
- apply j_app with (τ1 := τ1); auto.
- apply j_univ with (L := L ∪ domset Δ). intros_cof H0.
apply H0; auto.
+ auto using ok_type_ctx_weak_r.
+ rewrite ok_kind_ctx_app. autorewrite with tea_rw_disj.
split; intuition (auto using ok_kind_ctx_one; fsetdec).
- apply j_inst.
+ auto.
+ apply IHj; auto.
Qed.
Lemma j_lc_type : ∀ Δ Γ t τ,
(Δ ; Γ ⊢ t : τ) →
LC typ ktyp τ.
Proof.
introv j. induction j.
- eapply ok_type_ctx_binds; eauto.
- cc.
simplify_LC.
split.
+ eapply j_type_ctx2 in H.
eapply ok_type_lc; eauto.
+ auto.
- now replace (LC (ix := I2) typ ktyp (ty_ar τ1 τ2))
with (LC typ ktyp τ1 ∧ LC typ ktyp τ2) in IHj1 by (now simplify_LC).
- cc.
simplify_LC.
rewrite (open_lc_gap_eq_var typ); eauto.
- rewrite <- (open_lc_gap_eq_iff_1 typ).
+ replace (LC (ix := I2) typ ktyp (ty_univ τ2))
with (LCn typ ktyp 1 τ2) in IHj
by (now simplify_LC).
assumption.
+ eapply ok_type_lc. eassumption.
Qed.
(Δ ; Γ ⊢ t : τ) →
LC typ ktyp τ.
Proof.
introv j. induction j.
- eapply ok_type_ctx_binds; eauto.
- cc.
simplify_LC.
split.
+ eapply j_type_ctx2 in H.
eapply ok_type_lc; eauto.
+ auto.
- now replace (LC (ix := I2) typ ktyp (ty_ar τ1 τ2))
with (LC typ ktyp τ1 ∧ LC typ ktyp τ2) in IHj1 by (now simplify_LC).
- cc.
simplify_LC.
rewrite (open_lc_gap_eq_var typ); eauto.
- rewrite <- (open_lc_gap_eq_iff_1 typ).
+ replace (LC (ix := I2) typ ktyp (ty_univ τ2))
with (LCn typ ktyp 1 τ2) in IHj
by (now simplify_LC).
assumption.
+ eapply ok_type_lc. eassumption.
Qed.
Lemma ok_type_rw_ty_ar: ∀ Δ τ1 τ2,
ok_type Δ (ty_ar τ1 τ2) =
(ok_type Δ τ1 ∧ ok_type Δ τ2).
Proof.
intros.
unfold ok_type, scoped.
symmetry.
simplify_FV.
simplify_LC.
propext;
rewrite atoms_app;
intuition fsetdec.
Qed.
Lemma ok_type_rw_ty_univ: ∀ Δ τ,
ok_type Δ (ty_univ τ) =
(scoped typ ktyp (ty_univ τ) (domset Δ) ∧ LCn typ ktyp 1 τ).
Proof.
intros.
unfold ok_type, scoped.
simplify_FV.
simplify_LC.
reflexivity.
Qed.
Lemma j_ok_type : ∀ Δ Γ t τ,
(Δ ; Γ ⊢ t : τ) →
ok_type Δ τ.
Proof.
introv j. induction j.
- eauto using ok_type_ctx_binds.
- cc. rewrite ok_type_rw_ty_ar. split.
+ eapply j_type_ctx2; eauto.
+ auto.
- now rewrite ok_type_rw_ty_ar in IHj1.
- rewrite ok_type_rw_ty_univ.
rename H0 into IH.
pick fresh e for (L ∪ FV typ ktyp τ).
specialize_cof IH e. destruct IH as [IHsc IHlc]. split.
+ unfold ok_type, scoped in ×.
enough (cut: FV typ ktyp τ ⊆ domset (Δ ++ e ¬ tt)).
{ autorewrite with tea_rw_dom in cut.
simplify_FV.
fsetdec. }
rewrite FV_open_lower; eauto; typeclasses eauto.
+ rewrite (open_lc_gap_eq_iff typ); eauto.
now simplify_LC.
- unfold ok_type in ×.
unfold scoped in ×.
destruct IHj as [IHj_FV IHj_LC].
split.
+ transitivity (FV typ ktyp τ1 ∪ FV typ ktyp τ2).
× rewrite (FV_open_upper_eq typ).
fsetdec.
× replace (FV (ix := I2) typ ktyp (ty_univ τ2))
with (FV typ ktyp τ2) in IHj_FV.
intuition. now simplify_FV.
+ replace (LC (ix := I2) typ ktyp (ty_univ τ2))
with (LCn typ ktyp 1 τ2) in IHj_LC.
rewrite <- (open_lc_gap_eq_iff_1 typ).
{ assumption. }
{ tauto. }
{ now simplify_LC. }
Qed.
Lemma j_lc_KTerm_term : ∀ Δ Γ t τ,
(Δ ; Γ ⊢ t : τ) →
LC term ktrm t.
Proof.
introv j. induction j; try rename H0 into IH.
- now simplify_LC.
- cc. simplify_LC.
split.
+ apply LC_typ_trm.
+ rewrite (open_lc_gap_eq_iff_1 term).
× eassumption.
× now simplify_LC.
- now simplify_LC.
- cc.
simplify_LC.
rewrite (open_lc_gap_neq_var term).
+ exact IH.
+ discriminate.
- simplify_LC. split.
+ assumption.
+ apply LC_typ_trm.
Qed.
(Δ ; Γ ⊢ t : τ) →
LC term ktrm t.
Proof.
introv j. induction j; try rename H0 into IH.
- now simplify_LC.
- cc. simplify_LC.
split.
+ apply LC_typ_trm.
+ rewrite (open_lc_gap_eq_iff_1 term).
× eassumption.
× now simplify_LC.
- now simplify_LC.
- cc.
simplify_LC.
rewrite (open_lc_gap_neq_var term).
+ exact IH.
+ discriminate.
- simplify_LC. split.
+ assumption.
+ apply LC_typ_trm.
Qed.
Lemma j_lc_ktyp_term : ∀ Δ Γ t τ,
(Δ ; Γ ⊢ t : τ) →
LC term ktyp t.
Proof.
introv j. induction j.
- now simplify_LC.
- cc.
rename H0 into IH.
simplify_LC. split.
+ apply j_type_ctx2 in H.
eapply ok_type_lc.
eassumption.
+ change (tm_var (Fr e)) with (mret SystemF ktrm (Fr e)) in IH.
rewrite <- (open_lc_gap_neq_var term) in IH.
× assumption.
× discriminate.
- now simplify_LC.
- rename H0 into IH. cc.
simplify_LC.
rewrite (open_lc_gap_eq_var term).
+ exact IH.
+ lia.
- simplify_LC; split.
+ assumption.
+ now inversion H.
Qed.
(Δ ; Γ ⊢ t : τ) →
LC term ktyp t.
Proof.
introv j. induction j.
- now simplify_LC.
- cc.
rename H0 into IH.
simplify_LC. split.
+ apply j_type_ctx2 in H.
eapply ok_type_lc.
eassumption.
+ change (tm_var (Fr e)) with (mret SystemF ktrm (Fr e)) in IH.
rewrite <- (open_lc_gap_neq_var term) in IH.
× assumption.
× discriminate.
- now simplify_LC.
- rename H0 into IH. cc.
simplify_LC.
rewrite (open_lc_gap_eq_var term).
+ exact IH.
+ lia.
- simplify_LC; split.
+ assumption.
+ now inversion H.
Qed.
Lemma j_sc_ktyp_term : ∀ Δ Γ t τ,
(Δ ; Γ ⊢ t : τ) →
scoped term ktyp t (domset Δ).
Proof.
introv j. induction j; try rename H0 into IH.
- unfold scoped. fsetdec.
- unfold scoped. cc.
simplify_FV.
assert (FV typ ktyp τ1 ⊆ domset Δ).
{ eapply j_type_ctx2 in H. apply H. }
unfold scoped in IH.
rewrite <- (FV_open_lower term) in IH.
fsetdec.
- unfold scoped in ×.
simplify_FV.
fsetdec.
- unfold scoped.
simplify_FV.
pick fresh x for (L ∪ FV term ktyp t).
specialize_cof IH x.
unfold scoped in IH.
rewrite <- (FV_open_lower term) in IH.
eapply (scoped_stren_r term).
+ eauto.
+ fsetdec.
- unfold scoped in ×.
simplify_FV.
assert (FV typ ktyp τ1 ⊆ domset Δ) by apply H.
fsetdec.
Qed.
(Δ ; Γ ⊢ t : τ) →
scoped term ktyp t (domset Δ).
Proof.
introv j. induction j; try rename H0 into IH.
- unfold scoped. fsetdec.
- unfold scoped. cc.
simplify_FV.
assert (FV typ ktyp τ1 ⊆ domset Δ).
{ eapply j_type_ctx2 in H. apply H. }
unfold scoped in IH.
rewrite <- (FV_open_lower term) in IH.
fsetdec.
- unfold scoped in ×.
simplify_FV.
fsetdec.
- unfold scoped.
simplify_FV.
pick fresh x for (L ∪ FV term ktyp t).
specialize_cof IH x.
unfold scoped in IH.
rewrite <- (FV_open_lower term) in IH.
eapply (scoped_stren_r term).
+ eauto.
+ fsetdec.
- unfold scoped in ×.
simplify_FV.
assert (FV typ ktyp τ1 ⊆ domset Δ) by apply H.
fsetdec.
Qed.
Lemma j_sc_KTerm_term : ∀ Δ Γ t τ,
(Δ ; Γ ⊢ t : τ) →
scoped term ktrm t (domset Γ).
Proof.
introv j. induction j; try rename H0 into IH; unfold scoped in ×.
- rename H1 into Hin.
simplify_FV.
apply in_in_domset in Hin.
fsetdec.
- simplify_FV.
assert (FV term ktrm t ⊆ domset Γ).
{ pick fresh x for (L ∪ FV term ktrm t).
specialize_cof IH x.
rewrite <- (FV_open_lower term) in IH.
eapply (scoped_stren_r term).
+ eauto.
+ fsetdec. }
rewrite FV_trm_type_empty.
fsetdec.
- simplify_FV.
fsetdec.
- simplify_FV.
cc. etransitivity.
pose (lemma := FV_open_lower term t (ktyp : K) (ktrm : K)).
apply lemma. eauto.
- simplify_FV.
enough (FV typ ktrm τ1 ⊆ domset Γ).
{ fsetdec. }
inversion H.
unfold scoped in ×.
rewrite FV_trm_type_empty.
fsetdec.
Qed.
(Δ ; Γ ⊢ t : τ) →
scoped term ktrm t (domset Γ).
Proof.
introv j. induction j; try rename H0 into IH; unfold scoped in ×.
- rename H1 into Hin.
simplify_FV.
apply in_in_domset in Hin.
fsetdec.
- simplify_FV.
assert (FV term ktrm t ⊆ domset Γ).
{ pick fresh x for (L ∪ FV term ktrm t).
specialize_cof IH x.
rewrite <- (FV_open_lower term) in IH.
eapply (scoped_stren_r term).
+ eauto.
+ fsetdec. }
rewrite FV_trm_type_empty.
fsetdec.
- simplify_FV.
fsetdec.
- simplify_FV.
cc. etransitivity.
pose (lemma := FV_open_lower term t (ktyp : K) (ktrm : K)).
apply lemma. eauto.
- simplify_FV.
enough (FV typ ktrm τ1 ⊆ domset Γ).
{ fsetdec. }
inversion H.
unfold scoped in ×.
rewrite FV_trm_type_empty.
fsetdec.
Qed.
Lemma j_ok_term : ∀ Δ Γ t τ,
(Δ ; Γ ⊢ t : τ) →
ok_term Δ Γ t.
Proof.
intros. unfold ok_term.
intuition (eauto using j_sc_KTerm_term, j_sc_ktyp_term, j_lc_KTerm_term, j_lc_ktyp_term).
Qed.
(Δ ; Γ ⊢ t : τ) →
ok_term Δ Γ t.
Proof.
intros. unfold ok_term.
intuition (eauto using j_sc_KTerm_term, j_sc_ktyp_term, j_lc_KTerm_term, j_lc_ktyp_term).
Qed.
Theorem j_type_ctx_subst : ∀ Δ Γ1 Γ2 x τ2 t u τ1,
(Δ ; Γ1 ++ x ¬ τ2 ++ Γ2 ⊢ t : τ1) →
(Δ ; Γ1 ++ Γ2 ⊢ u : τ2) →
(Δ ; Γ1 ++ Γ2 ⊢ subst term ktrm x u t : τ1).
Proof.
introv jt ju. remember (Γ1 ++ x ¬ τ2 ++ Γ2) as Γ.
generalize dependent Γ2. induction jt; intros; subst.
- rename H0 into Hok. rename H1 into Hvar.
compare values x and x0.
+ replace (subst (ix := I2) term ktrm x0 u (tm_var (Fr x0))) with u.
2:{ simplify_subst.
rewrite btg_eq. cbn. destruct_eq_args x0 x0. }
enough (τ = τ2) by congruence.
eapply binds_mid_eq. apply Hvar. apply Hok.
+ replace (subst (ix := I2) term ktrm x u (tm_var (Fr x0)))
with (tm_var (Fr x0)).
2:{ simplify_subst.
rewrite btg_eq. cbn. destruct_eq_args x x0. }
apply j_var.
{ assumption. }
{ eauto with sysf_ctx. }
{ eauto using binds_remove_mid. }
- rename H0 into IH.
simplify_subst.
rewrite subst_in_type_id.
apply j_abs with (L := L ∪ {{ x }} ∪ domset Γ1 ∪ domset Γ2).
intros_cof IH.
rewrite (subst_open_eq term) in IH.
2:{ eapply j_lc_KTerm_term; eauto. }
rewrite (subst_fresh term) in IH.
2:{ change (free (ix := I2) term ktrm (tm_var (Fr e))) with [ e ].
autorewrite with tea_list. fsetdec. }
simpl_alist in ×. apply IH; auto.
change_alist ((Γ1 ++ Γ2) ++ e ¬ τ1).
apply j_type_ctx_weak.
+ apply ok_type_ctx_one.
specialize_cof H e. eapply j_type_ctx2; eassumption.
+ autorewrite with tea_rw_disj in ×. intuition fsetdec.
+ assumption.
- simplify_subst. eauto using j_app.
- rename H0 into IH.
simplify_subst.
apply j_univ with (L := L ∪ domset Δ).
intros_cof IH. rewrite (subst_open_neq term) in IH.
2:{ discriminate. }
2:{ eapply j_ok_term; eassumption. }
apply IH; [reflexivity|].
eapply j_kind_ctx_weak.
+ apply ok_kind_ctx_one.
+ autorewrite with tea_rw_disj. fsetdec.
+ assumption.
- simplify_subst.
rewrite subst_in_type_id.
apply j_inst.
+ assumption.
+ auto.
Qed.
Corollary j_type_ctx_subst1 : ∀ Δ Γ x τ2 t u τ1,
(Δ ; Γ ++ x ¬ τ2 ⊢ t : τ1) →
(Δ ; Γ ⊢ u : τ2) →
(Δ ; Γ ⊢ subst term ktrm x u t : τ1).
Proof.
introv jt ju. change_alist (Γ ++ x ¬ τ2 ++ []) in jt.
change_alist (Γ ++ []) in ju. change_alist (Γ ++ []).
eauto using j_type_ctx_subst.
Qed.
(Δ ; Γ1 ++ x ¬ τ2 ++ Γ2 ⊢ t : τ1) →
(Δ ; Γ1 ++ Γ2 ⊢ u : τ2) →
(Δ ; Γ1 ++ Γ2 ⊢ subst term ktrm x u t : τ1).
Proof.
introv jt ju. remember (Γ1 ++ x ¬ τ2 ++ Γ2) as Γ.
generalize dependent Γ2. induction jt; intros; subst.
- rename H0 into Hok. rename H1 into Hvar.
compare values x and x0.
+ replace (subst (ix := I2) term ktrm x0 u (tm_var (Fr x0))) with u.
2:{ simplify_subst.
rewrite btg_eq. cbn. destruct_eq_args x0 x0. }
enough (τ = τ2) by congruence.
eapply binds_mid_eq. apply Hvar. apply Hok.
+ replace (subst (ix := I2) term ktrm x u (tm_var (Fr x0)))
with (tm_var (Fr x0)).
2:{ simplify_subst.
rewrite btg_eq. cbn. destruct_eq_args x x0. }
apply j_var.
{ assumption. }
{ eauto with sysf_ctx. }
{ eauto using binds_remove_mid. }
- rename H0 into IH.
simplify_subst.
rewrite subst_in_type_id.
apply j_abs with (L := L ∪ {{ x }} ∪ domset Γ1 ∪ domset Γ2).
intros_cof IH.
rewrite (subst_open_eq term) in IH.
2:{ eapply j_lc_KTerm_term; eauto. }
rewrite (subst_fresh term) in IH.
2:{ change (free (ix := I2) term ktrm (tm_var (Fr e))) with [ e ].
autorewrite with tea_list. fsetdec. }
simpl_alist in ×. apply IH; auto.
change_alist ((Γ1 ++ Γ2) ++ e ¬ τ1).
apply j_type_ctx_weak.
+ apply ok_type_ctx_one.
specialize_cof H e. eapply j_type_ctx2; eassumption.
+ autorewrite with tea_rw_disj in ×. intuition fsetdec.
+ assumption.
- simplify_subst. eauto using j_app.
- rename H0 into IH.
simplify_subst.
apply j_univ with (L := L ∪ domset Δ).
intros_cof IH. rewrite (subst_open_neq term) in IH.
2:{ discriminate. }
2:{ eapply j_ok_term; eassumption. }
apply IH; [reflexivity|].
eapply j_kind_ctx_weak.
+ apply ok_kind_ctx_one.
+ autorewrite with tea_rw_disj. fsetdec.
+ assumption.
- simplify_subst.
rewrite subst_in_type_id.
apply j_inst.
+ assumption.
+ auto.
Qed.
Corollary j_type_ctx_subst1 : ∀ Δ Γ x τ2 t u τ1,
(Δ ; Γ ++ x ¬ τ2 ⊢ t : τ1) →
(Δ ; Γ ⊢ u : τ2) →
(Δ ; Γ ⊢ subst term ktrm x u t : τ1).
Proof.
introv jt ju. change_alist (Γ ++ x ¬ τ2 ++ []) in jt.
change_alist (Γ ++ []) in ju. change_alist (Γ ++ []).
eauto using j_type_ctx_subst.
Qed.
Theorem preservation_theorem : preservation.
Proof.
introv j. generalize dependent t'.
remember (@nil (atom × unit)) as Delta.
remember (@nil (atom × typ LN)) as Gamma.
induction j; subst.
- inversion 1.
- inversion 1.
- inversion 1; subst.
+ eauto using Judgment.
+ eauto using Judgment.
+ inversion j1. rename H4 into hyp.
pick fresh e for (L ∪ FV term ktrm t0).
rewrite (open_spec_eq term) with (x := e); [| fsetdec].
eapply j_type_ctx_subst1; eauto.
apply hyp. fsetdec.
- inversion 1.
- inversion 1; subst.
+ eauto using Judgment.
+ inversion j.
pick fresh e for (L ∪ FV term ktyp t0 ∪ FV typ ktyp τ2).
rewrite (open_spec_eq term) with (x := e); [|fsetdec].
rewrite (open_spec_eq typ) with (x := e); [|fsetdec].
change (@nil (atom × typ LN))
with (envmap (subst typ ktyp e τ1) []).
eapply j_kind_ctx_subst1.
{ assumption. }
{ apply H5. fsetdec. }
Qed.
Theorem progress_theorem : progress.
Proof.
introv j. remember (@nil (atom × unit)) as Delta.
remember (@nil (atom × typ LN)) as Gamma.
induction j; subst.
- inversion H1.
- left; auto using value.
- right. specialize (IHj1 ltac:(trivial) ltac:(trivial)).
specialize (IHj2 ltac:(trivial) ltac:(trivial)).
intuition.
+ inversion H.
{ eauto using red. }
{ exfalso. inversion j1; subst; easy. }
+ inversion H.
{ destruct_all_existentials.
eauto using red, value. }
{ inversion j1; now subst. }
+ destruct_all_existentials.
eauto using red.
+ destruct_all_existentials.
eauto using red.
- left; auto using value.
- right. specialize (IHj ltac:(trivial) ltac:(trivial)).
intuition.
+ inversion H0.
{ inversion j; now subst. }
{ eauto using red. }
+ destruct_all_existentials.
eauto using red.
Qed.
Print Assumptions progress_theorem.
(* Axioms:
base_typ : Type
*)
Print Assumptions preservation_theorem.
(*
Axioms:
propositional_extensionality : forall P Q : Prop, P <-> Q -> P = Q
functional_extensionality_dep
: forall (A : Type) (B : A -> Type) (f g : forall x : A, B x),
(forall x : A, f x = g x) -> f = g
Eqdep.Eq_rect_eq.eq_rect_eq
: forall (U : Type) (p : U) (Q : U -> Type) (x : Q p) (h : p = p),
x = rew Q h in x
base_typ : Type
*)
Proof.
introv j. generalize dependent t'.
remember (@nil (atom × unit)) as Delta.
remember (@nil (atom × typ LN)) as Gamma.
induction j; subst.
- inversion 1.
- inversion 1.
- inversion 1; subst.
+ eauto using Judgment.
+ eauto using Judgment.
+ inversion j1. rename H4 into hyp.
pick fresh e for (L ∪ FV term ktrm t0).
rewrite (open_spec_eq term) with (x := e); [| fsetdec].
eapply j_type_ctx_subst1; eauto.
apply hyp. fsetdec.
- inversion 1.
- inversion 1; subst.
+ eauto using Judgment.
+ inversion j.
pick fresh e for (L ∪ FV term ktyp t0 ∪ FV typ ktyp τ2).
rewrite (open_spec_eq term) with (x := e); [|fsetdec].
rewrite (open_spec_eq typ) with (x := e); [|fsetdec].
change (@nil (atom × typ LN))
with (envmap (subst typ ktyp e τ1) []).
eapply j_kind_ctx_subst1.
{ assumption. }
{ apply H5. fsetdec. }
Qed.
Theorem progress_theorem : progress.
Proof.
introv j. remember (@nil (atom × unit)) as Delta.
remember (@nil (atom × typ LN)) as Gamma.
induction j; subst.
- inversion H1.
- left; auto using value.
- right. specialize (IHj1 ltac:(trivial) ltac:(trivial)).
specialize (IHj2 ltac:(trivial) ltac:(trivial)).
intuition.
+ inversion H.
{ eauto using red. }
{ exfalso. inversion j1; subst; easy. }
+ inversion H.
{ destruct_all_existentials.
eauto using red, value. }
{ inversion j1; now subst. }
+ destruct_all_existentials.
eauto using red.
+ destruct_all_existentials.
eauto using red.
- left; auto using value.
- right. specialize (IHj ltac:(trivial) ltac:(trivial)).
intuition.
+ inversion H0.
{ inversion j; now subst. }
{ eauto using red. }
+ destruct_all_existentials.
eauto using red.
Qed.
Print Assumptions progress_theorem.
(* Axioms:
base_typ : Type
*)
Print Assumptions preservation_theorem.
(*
Axioms:
propositional_extensionality : forall P Q : Prop, P <-> Q -> P = Q
functional_extensionality_dep
: forall (A : Type) (B : A -> Type) (f g : forall x : A, B x),
(forall x : A, f x = g x) -> f = g
Eqdep.Eq_rect_eq.eq_rect_eq
: forall (U : Type) (p : U) (Q : U -> Type) (x : Q p) (h : p = p),
x = rew Q h in x
base_typ : Type
*)