intro and canonical for PandP

2018-06-25 18:06:42 -03:00 · 2018-06-25 18:06:42 -03:00 · 47688dbe93
commit 47688dbe93
parent ecc8a0f335
4 changed files with 164 additions and 96 deletions
--- a/extra/extra/StreamLambdaProp.lagda
+++ b/extra/extra/StreamLambdaProp.lagda
@ -865,27 +865,34 @@ force (norm ⊢M) with progress ⊢M
 ... | done VM   =   done VM
 ... | step M↦N  =   step M↦N (norm (preserve ⊢M M↦N))
-data Take (M : Term) : Set where
+data Cut (M : Term) : Set where
  out-of-gas : ∀ {N : Term}
    → M ⟶* N
      --------
-    → Take M
+    → Cut M
  normal : ∀ {V : Term}
    → Gas
    → M ⟶* V
    → Value V
      -------
-    → Take M
+    → Cut M
-take : ∀ {L} → Gas → Lift L → Take L
+cut : ∀ {L} → Gas → Lift L → Cut L
-take {L} zero _                               =  out-of-gas (L ∎)
+cut {L} zero _                               =  out-of-gas (L ∎)
 cut {L} (suc n) LiftL with force LiftL
 ... | done VL                                =  normal n (L ∎) VL
 ... | step L↦M LiftM  with  cut n LiftM
 ...   |  out-of-gas M↠N                      =  out-of-gas (L ⟶⟨ L↦M ⟩ M↠N)
 ...   |  normal g M↠V VV                     =  normal g (L ⟶⟨ L↦M ⟩ M↠V) VV
 take : ∀ {L} → Gas → Lift L → ∃[ N ](L ⟶* N)
 take {L} zero _                               =  ⟨ L , L ∎ ⟩
 take {L} (suc n) LiftL with force LiftL
-... | done VL                                 =  normal n (L ∎) VL
+... | done _                                  =  ⟨ L , L ∎ ⟩
 ... | step L↦M LiftM  with  take n LiftM
-...   |  out-of-gas M↠N                       =  out-of-gas (L ⟶⟨ L↦M ⟩ M↠N)
+...   |  ⟨ N , M↠N ⟩                          =  ⟨ N , L ⟶⟨ L↦M ⟩ M↠N ⟩
 ...   |  normal g M↠V VV                      =  normal g (L ⟶⟨ L↦M ⟩ M↠V) VV
 \end{code}
--- a/index.md
+++ b/index.md
@ -34,7 +34,7 @@ Comments on all matters---organisation, material we should add, material we shou
 (This part is not yet ready for review.)
  - [Lambda: Lambda: Introduction to Lambda Calculus]({{ site.baseurl }}{% link out/plta/Lambda.md %})
-  - [LambdaProp: Properties of Simply-Typed Lambda Calculus]({{ site.baseurl }}{% link out/plta/LambdaProp.md %})
+  - [PandP: Progress and Preservation]({{ site.baseurl }}{% link out/plta/PandP.md %})
  - [DeBruijn: Inherently typed De Bruijn representation]({{ site.baseurl }}{% link out/plta/DeBruijn.md %})
  - [Extensions: Extensions to simply-typed lambda calculus]({{ site.baseurl }}{% link out/plta/Extensions.md %})
  - [Inference: Bidirectional type inference]({{ site.baseurl }}{% link out/plta/Inference.md %})
--- a/src/plta/Lambda.lagda
+++ b/src/plta/Lambda.lagda
@ -10,8 +10,8 @@ module plta.Lambda where
 [This chapter was originally based on Chapter _Stlc_
 of _Software Foundations_ (_Programming Language Foundations_).
-It has now been updated, but if you catch any unintended
+It has now been updated, but if you spot any plagiarism
-copying please let me know.]
+please let me know. -- P]
 The _lambda-calculus_, first published by the logician Alonzo Church in
 1932, is a core calculus with only three syntactic constructs:
@ -22,14 +22,14 @@ The _simply-typed lambda calculus_ (or STLC) is a variant of the
 lambda calculus published by Church in 1940.  It has the three
 constructs above for function types, plus whatever else is required
 for base types. Church had a minimal base type with no operations.
-We will instead echo Plotkin's Programmable Computable
+We will instead echo Plotkin's _Programmable Computable
-Functions (PCF), and add operations on natural numbers and
+Functions_ (PCF), and add operations on natural numbers and
 recursive function definitions.
 This chapter formalises the simply-typed lambda calculus, giving its
 syntax, small-step semantics, and typing rules.  The next chapter
-[LambdaProp]({{ site.baseurl }}{% link out/plta/LambdaProp.md %})
+[PandP]({{ site.baseurl }}{% link out/plta/PandP.md %})
-reviews its main properties, including
+proves its main properties, including
 progress and preservation.  Following chapters will look at a number
 of variants of lambda calculus.
@ -276,10 +276,12 @@ names, `x` and `x′`.
 ## Values
 <!--
 We only consider reduction of _closed_ terms,
 those that contain no free variables.  We consider
 a precise definition of free variables in Chapter
-[LambdaProp]({{ site.baseurl }}{% link out/plta/LambdaProp.md %}).
+[PandP]({{ site.baseurl }}{% link out/plta/PandP.md %}).
 -->
 A _value_ is a term that corresponds to an answer.
 Thus, `` `suc `suc `suc `suc `zero` `` is a value,
--- a/src/plta/LambdaProp.lagda
+++ b/src/plta/LambdaProp.lagda
@ -1,20 +1,101 @@
 ---
-title     : "LambdaProp: Properties of Simply-Typed Lambda Calculus"
+title     : "PandP: Progress and Preservation
 layout    : page
-permalink : /LambdaProp/
+permalink : /PandP/
 ---
 \begin{code}
-module plta.LambdaProp where
+module plta.PandP where
 \end{code}
-[Parts of this chapter take their text from chapter _Stlc_
+[Parts of this chapter take their text from chapter _StlcProp_
 of _Software Foundations_ (_Programming Language Foundations_).
 Those parts will be revised.]
-This chapter develops the fundamental theory of the Simply
+The last chapter formalised simply-typed lambda calculus and
-Typed Lambda Calculus, particularly progress and preservation.
+introduced several important relations over it.
 We write
    Value M
 if term `M` is a value, we write
    M ⟶ N
 if term `M` reduces to term `N`, and we write
    Γ ⊢ M ⦂ A
 if in context `Γ` the term `M` has type `A`.
 Some derived notions are also important. We write
    M ⟶* N
 for the reflexive and transitive closure of reduction, that is
 term `M` reduces to term `N` in zero or more steps.  We write
    ∅ ⊢ M ⦂ A
 if term `M` has type `A` in the empty context `∅`, which
 ensures that term `M` is _closed_, that is, that it has no _free variables_.
 Ultimately, we would like to show that we can keep reducing a term
 until we reach a value.  For instance, if `M` is a term of type natural,
 we would like to show that ultimately it reduces to a term representing
 some specific natural number.  We have seen two examples in the previous
 chapter, where the terms
    plus · two · two
 and
    plusᶜ · twoᶜ · twoᶜ · sucᶜ · `zero
 both have type natural, and both reduce to the term
    `suc `suc `suc `suc `zero
 which represents the natural number four.
 What we might expect is that every term is either a value or can take
 a reduction step.  However, this is not true in general.  The term
    `zero · `suc `zero
 is neither a value nor can take a reduction step. And if `` s ⦂ `ℕ ⇒ `ℕ ``
 then the term
     s · `zero
 cannot reduce because we do not know which function is bound to the
 free variable `s`.
 However, the first of those terms is ill-typed, and the second has a free
 variable.  It turns out that the property we want does hold for every
 closed, well-typed term.
 _Progress_: If `∅ ⊢ M ⦂ A` then either `M` is a value or there is an `N` such
 that `M ⟶ N`.
 So, either we have a value, and we are done, or we can take a reduction step.
 In the latter case, we would like to apply progress again. But first we need
 to know that the term yielded by the reduction is itself closed and well-typed.
 It turns out that this property holds whenever we start with a closed,
 well-typed term.
 _Preservation_: If `∅ ⊢ M ⦂ A` and `M ⟶ N` then `∅ ⊢ N ⦂ A`.
 This gives us a recipe for evaluation. Start with a closed and well-typed term.
 By progress, it is either a value, in which case we are done, or it reduces
 to some other term.  By preservation, that other term will itself be closed
 and well-typed.  Repeat.  We will either loop forever, in which case evaluation
 does not terminate, or we will eventually reach a value, which is guaranteed
 to be closed and of the same type as the original term.
 In this chapter we will prove _Preservation_ and _Progress_, and show
 how to apply them to get Agda to evaluate a term for us, that is, to reduce
 that term until it reaches a value (or to loop forever).
 The development in this chapter was inspired by the corresponding
 development in Chapter _StlcProp_ of _Software Foundations_
@ -47,17 +128,20 @@ open Chain (Term) (_⟶_)
 ## Canonical Forms
-The first step in establishing basic properties of reduction and typing
+Well-typed values must take one of a small number of _canonical forms_.
-is to identify the possible _canonical forms_ (i.e., well-typed closed values)
+We provide an analogue of the `Value` relation that relates values
-belonging to each type.  For function types the canonical forms are lambda-abstractions,
+to their types.  A lambda expression must have a function type,
-while for boolean types they are values `true` and `false`.
+and a zero or successor expression must be a natural.
-
+Further, the body of a function must be well-typed in a context
 containing only its bound variable, and the argument of successor
 must itself be canonical.
 \begin{code}
 infix  4 Canonical_⦂_
 data Canonical_⦂_ : Term → Type → Set where
  C-ƛ : ∀ {x A N B}
    → ∅ , x ⦂ A ⊢ N ⦂ B
      -----------------------------
    → Canonical (ƛ x ⇒ N) ⦂ (A ⇒ B)
@ -69,34 +153,63 @@ data Canonical_⦂_ : Term → Type → Set where
    → Canonical V ⦂ `ℕ
      ---------------------
    → Canonical `suc V ⦂ `ℕ
 \end{code}    
-canonical : ∀ {M A}
+Every closed, well-typed term that is a value
-  → ∅ ⊢ M ⦂ A
+must satisfy the canonical relation.
-  → Value M
+\begin{code}
-    ---------------
+canonical : ∀ {V A}
-  → Canonical M ⦂ A
+  → ∅ ⊢ V ⦂ A
  → Value V
    -----------
  → Canonical V ⦂ A
 canonical (Ax ())          ()
-canonical (⊢ƛ ⊢N)          V-ƛ         =  C-ƛ
+canonical (⊢ƛ ⊢N)          V-ƛ         =  C-ƛ ⊢N
 canonical (⊢L · ⊢M)        ()
 canonical ⊢zero            V-zero      =  C-zero
 canonical (⊢suc ⊢V)        (V-suc VV)  =  C-suc (canonical ⊢V VV)
 canonical (⊢case ⊢L ⊢M ⊢N) ()
 canonical (⊢μ ⊢M)          ()
 \end{code}
 There are only three interesting cases to consider; the variable
 case is thrown out because it is not closed and not a value, and
 the cases for application, zero, successor, and fixpoint are thrown
 out because they are not values.  If the term is a lambda abstraction,
 then well-typing of the term guarantees well-typing of the body.
 If the term is a zero than it is canonical trivially.  If the
 term is a successor then since it is well-typed its argument is
 well-typed, and since it is a value its argument is a value.  Hence,
 by induction its argument is also canonical.
 Conversely, if a term is canonical then it is a value
 and it is well-typed in the empty context.
 \begin{code}
 value : ∀ {M A}
  → Canonical M ⦂ A
    ----------------
  → Value M
-value C-ƛ         = V-ƛ
+value (C-ƛ ⊢N)    = V-ƛ
 value C-zero      = V-zero
 value (C-suc CM)  = V-suc (value CM)
 typed : ∀ {M A}
  → Canonical M ⦂ A
    ---------------
  → ∅ ⊢ M ⦂ A
 typed (C-ƛ ⊢N)    = ⊢ƛ ⊢N
 typed C-zero      = ⊢zero
 typed (C-suc CM)  = ⊢suc (typed CM)
 \end{code}
 The proofs are straightforward, and again use induction in the
 case of successor.
 ## Progress
-As before, the _progress_ theorem tells us that closed, well-typed
+We now show that every closed, well-typed term is either a value
-terms are not stuck: either a well-typed term can take a reduction
+or can take a reduction step.  First, we define a relation
-step or it is a value.
+`Progress M` which holds of a term `M` if it is a value or
 if it can take a reduction step.
 \begin{code}
 data Progress (M : Term) : Set where
@ -110,7 +223,9 @@ data Progress (M : Term) : Set where
      Value M
      ----------
    → Progress M
 \end{code}    
 \begin{code}
 progress : ∀ {M A}
  → ∅ ⊢ M ⦂ A
    ----------
@ -122,7 +237,7 @@ progress (⊢L · ⊢M) with progress ⊢L
 ... | done VL with progress ⊢M
 ...   | step M⟶M′                          =  step (ξ-·₂ VL M⟶M′)
 ...   | done VM with canonical ⊢L VL
-...     | C-ƛ                                =  step (β-ƛ· VM)
+...     | C-ƛ _                              =  step (β-ƛ· VM)
 progress ⊢zero                               =  done V-zero
 progress (⊢suc ⊢M) with progress ⊢M
 ...  | step M⟶M′                           =  step (ξ-suc M⟶M′)
@ -132,7 +247,7 @@ progress (⊢case ⊢L ⊢M ⊢N) with progress ⊢L
 ... | done VL with canonical ⊢L VL
 ...   | C-zero                               =  step β-case-zero
 ...   | C-suc CL                             =  step (β-case-suc (value CL))
-progress (⊢μ ⊢M)                            =  step β-μ
+progress (⊢μ ⊢M)                             =  step β-μ
 \end{code}
 This code reads neatly in part because we consider the
@ -829,61 +944,5 @@ false, give a counterexample.
  - Preservation
 ## Normalisation with streams
 \begin{code}
 record Lift (M : Term) : Set
 data Steps (M : Term) : Set
 record Lift (M : Term) where
  coinductive
  field
    force : Steps M
 open Lift
 data Steps (M : Term) where
  done :
      Value M
      -------
    → Steps M
  step : ∀ {N : Term}
    → M ⟶ N
    → Lift N
      --------------
    → Steps M
 norm : ∀ {M A}
  → ∅ ⊢ M ⦂ A
    ----------
  → Lift M
 force (norm ⊢M) with progress ⊢M
 ... | done VM   =   done VM
 ... | step M↦N  =   step M↦N (norm (preserve ⊢M M↦N))
 data Take (M : Term) : Set where
  out-of-gas : ∀ {N : Term}
    → M ⟶* N
      --------
    → Take M
  normal : ∀ {V : Term}
    → Gas
    → M ⟶* V
    → Value V
      -------
    → Take M
 take : ∀ {L} → Gas → Lift L → Take L
 take {L} zero _                               =  out-of-gas (L ∎)
 take {L} (suc n) LiftL with force LiftL
 ... | done VL                                 =  normal n (L ∎) VL
 ... | step L↦M LiftM  with  take n LiftM
 ...   |  out-of-gas M↠N                       =  out-of-gas (L ⟶⟨ L↦M ⟩ M↠N)
 ...   |  normal g M↠V VV                      =  normal g (L ⟶⟨ L↦M ⟩ M↠V) VV
 \end{code}