michael/csci8980-f21
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

added some notes

Browse source
This commit is contained in:
Jeremy Siek 2019-05-08 21:09:22 +02:00
parent 388b64a2de
commit ddc143672a
2 changed files with 35 additions and 14 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

42
extra/extra/Confluence.lagda
View file

@ -21,10 +21,11 @@ open import Data.Product using (_×_; Σ; Σ-syntax; ∃; ∃-syntax; proj₁; p
## Introduction ## Introduction
In this chapter we prove that beta reduction is _confluent_. That is, In this chapter we prove that beta reduction is _confluent_, a
if there is a reduction sequence from any term `M` to two different property also known as _Church-Rosser_. The property states that if
terms `N` and `N'`, then there exist reduction sequences from those there is a reduction sequence from any term `M` to two different terms
two terms to some common term `L`. `N` and `N'`, then there exist reduction sequences from those two
terms to some common term `L`.
Confluence is studied in many other kinds of rewrite systems besides Confluence is studied in many other kinds of rewrite systems besides
the lambda calculus, and it is well known how to prove confluence in the lambda calculus, and it is well known how to prove confluence in
@ -32,10 +33,10 @@ rewrite systems that enjoy the _diamond property_, a single-step
version of confluence. Let `⇒` be a relation. Then `⇒` has the version of confluence. Let `⇒` be a relation. Then `⇒` has the
diamond property if `M ⇒ N` and `M ⇒ N'` implies that there exists an diamond property if `M ⇒ N` and `M ⇒ N'` implies that there exists an
`L` such that `N ⇒ L` and `N' ⇒ L`. Let `⇒*` stand for sequences of `L` such that `N ⇒ L` and `N' ⇒ L`. Let `⇒*` stand for sequences of
`⇒` reductions. The proof of confluence requires one easy lemma: `⇒` reductions. The proof of confluence relies on the "strip" lemma:
`M ⇒ N` and `M ⇒* N'` implies `N ⇒* L` and `N' ⇒ L` for some `L`. `M ⇒ N` and `M ⇒* N'` implies `N ⇒* L` and `N' ⇒ L` for some `L`.
Confluence then follows by induction on the reduction Confluence then follows by induction on the reduction sequence `M ⇒*
sequence `M ⇒* N`. N`.
Unfortunately, reduction in the lambda calculus does not satisfy the Unfortunately, reduction in the lambda calculus does not satisfy the
diamond property. Here is a counter example. diamond property. Here is a counter example.
@ -438,21 +439,21 @@ The proof is by induction on both premises.
As promised at the beginning, the proof that parallel reduction is As promised at the beginning, the proof that parallel reduction is
confluent is easy now that we know it satisfies the diamond property. confluent is easy now that we know it satisfies the diamond property.
We just need one more lemma which states that We just need to prove the strip lemma, which states that
if `M ⇒ N` and `M ⇒* N'`, then if `M ⇒ N` and `M ⇒* N'`, then
`N ⇒* L` and `N' ⇒ L` for some `L`. `N ⇒* L` and `N' ⇒ L` for some `L`.
The proof is a straightforward induction on `M ⇒* N'`, The proof is a straightforward induction on `M ⇒* N'`,
using the diamond property in the induction step. using the diamond property in the induction step.
\begin{code} \begin{code}
par-confR : ∀{Γ A} {M N N' : Γ ⊢ A} strip : ∀{Γ A} {M N N' : Γ ⊢ A}
→ M ⇒ N → M ⇒* N' → M ⇒ N → M ⇒* N'
→ Σ[ L ∈ Γ ⊢ A ] (N ⇒* L) × (N' ⇒ L) → Σ[ L ∈ Γ ⊢ A ] (N ⇒* L) × (N' ⇒ L)
par-confR{Γ}{A}{M}{N}{N'} mn (M □) = ⟨ N , ⟨ N □ , mn ⟩ ⟩ strip{Γ}{A}{M}{N}{N'} mn (M □) = ⟨ N , ⟨ N □ , mn ⟩ ⟩
par-confR{Γ}{A}{M}{N}{N'} mn (_⇒⟨_⟩_ M {M'} mm' mn') strip{Γ}{A}{M}{N}{N'} mn (_⇒⟨_⟩_ M {M'} mm' mn')
with par-diamond mn mm' with par-diamond mn mm'
... | ⟨ L , ⟨ nl , m'l ⟩ ⟩ ... | ⟨ L , ⟨ nl , m'l ⟩ ⟩
with par-confR m'l mn' with strip m'l mn'
... | ⟨ L' , ⟨ ll' , n'l' ⟩ ⟩ = ... | ⟨ L' , ⟨ ll' , n'l' ⟩ ⟩ =
⟨ L' , ⟨ (N ⇒⟨ nl ⟩ ll') , n'l' ⟩ ⟩ ⟨ L' , ⟨ (N ⇒⟨ nl ⟩ ll') , n'l' ⟩ ⟩
\end{code} \end{code}
@ -467,7 +468,7 @@ par-confluence : ∀{Γ A} {M N N' : Γ ⊢ A}
→ Σ[ L ∈ Γ ⊢ A ] (N ⇒* L) × (N' ⇒* L) → Σ[ L ∈ Γ ⊢ A ] (N ⇒* L) × (N' ⇒* L)
par-confluence {Γ}{A}{M}{N}{N'} (M □) m→n' = ⟨ N' , ⟨ m→n' , N' □ ⟩ ⟩ par-confluence {Γ}{A}{M}{N}{N'} (M □) m→n' = ⟨ N' , ⟨ m→n' , N' □ ⟩ ⟩
par-confluence {Γ}{A}{M}{N}{N'} (_⇒⟨_⟩_ M {M'} m→m' m'→n) m→n' par-confluence {Γ}{A}{M}{N}{N'} (_⇒⟨_⟩_ M {M'} m→m' m'→n) m→n'
with par-confR m→m' m→n' with strip m→m' m→n'
... | ⟨ L , ⟨ m'→l , n'→l ⟩ ⟩ ... | ⟨ L , ⟨ m'→l , n'→l ⟩ ⟩
with par-confluence m'→n m'→l with par-confluence m'→n m'→l
... | ⟨ L' , ⟨ n→l' , l→l' ⟩ ⟩ = ... | ⟨ L' , ⟨ n→l' , l→l' ⟩ ⟩ =
@ -497,4 +498,17 @@ confluence m→n m→n'
## Notes ## Notes
UNDER CONSTRUCTION Broadly speaking, this proof of confluence, based on parallel
reduction, is due to W. Tait and P. Martin-Lof (see Barendredgt 1984,
Section 3.2). Details of the mechanization come from several sources.
The `subst-par` lemma is the "strong substitutivity" lemma of Shafer,
Tebbi, and Smolka (ITP 2015). The proofs of `par-diamond`, `strip`,
and `par-confluence` are based on Pfenning's 1992 technical report
about the Church-Rosser theorem. In addition, we consulted Nipkow and
Berghofer's mechanization in Isabelle, which is based on an earlier
article by Nipkow (JAR 1996). We opted not to use the "complete
developments" approach of Takahashi (1995) because we felt that the
proof was simple enough based solely on parallel reduction. There are
many more mechanizations of the Church-Rosser theorem that we have not
yet had the time to read, including Shankar's (J. ACM 1988) and
Homeier's (TPHOLs 2001).

7
extra/extra/Substitution.lagda
View file

@ -477,3 +477,10 @@ subst-commute {Γ}{Δ}{N}{M}{σ} =
subst σ (N [ M ]) subst σ (N [ M ])
\end{code} \end{code}
## Notes
Most of the properties and proofs in this file are based on the paper
_Autosubst: Reasoning with de Bruijn Terms and Parallel Substitution_
by Schafer, Tebbi, and Smolka (ITP 2015).