Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

How to use a custom induction principle in Coq?

Tags:

coq

induction

coq-tactic

I read that the induction principle for a type is just a theorem about a proposition P. So I constructed an induction principle for List based on the right (or reverse) list constructor . 

Definition rcons {X:Type} (l:list X) (x:X) : list X := 
  l ++ x::nil.

The induction principle itself is:

Definition true_for_nil {X:Type}(P:list X -> Prop) : Prop :=
  P nil.

Definition true_for_list {X:Type} (P:list X -> Prop) : Prop :=
  forall xs, P xs.

Definition preserved_by_rcons {X:Type} (P: list X -> Prop): Prop :=
  forall xs' x, P xs' -> P (rcons xs' x).

Theorem list_ind_rcons: 
  forall {X:Type} (P:list X -> Prop),
    true_for_nil P ->
    preserved_by_rcons P ->
    true_for_list P.
Proof. Admitted.

But now, I am having trouble using the theorem. I don't how to invoke it to achieve the same as the induction tactic.

For example, I tried:

Theorem rev_app_dist: forall {X} (l1 l2:list X), rev (l1 ++ l2) = rev l2 ++ rev l1.
Proof. intros X l1 l2. 
  induction l2 using list_ind_rcons.

But in the last line, I got: 

Error: Cannot recognize an induction scheme.

What are the correct steps to define and apply a custom induction principle like list_ind_rcons?

Thanks

like image 734
thor Avatar asked Oct 12 '15 01:10

thor

People also ask

How to define inductive types and its constructors in Coq?

This command defines one or more inductive types and its constructors. Coq generates destructors depending on the universe that the inductive type belongs to. The destructors are named ident_rect, ident_ind , ident_rec and ident_sind, which respectively correspond to elimination principles on Type, Prop , Set and SProp.

How to do proofs by structural induction in Coq?

Coq provides a special syntax Fixpoint/match for generic primitive recursion, and we could thus have defined directly addition as: end. Let us now show how to do proofs by structural induction. We start with easy properties of the plus function we just defined. Let us first show that n = n +0. Coq < Lemma plus_n_O : forall n : nat, n = n + 0.

How are natural numbers defined in Coq?

Coq < Qed. Similarly to Booleans, natural numbers are defined in the Prelude module with constructors S and O : The elimination principles which are automatically generated are Peano’s induction principle, and a recursion operator:

How many bindings should an inductive type have?

The number of bindings must be the same as the number of parameters of the induction principle. If unspecified, the tactic applies the appropriate induction principle that was automatically generated when the inductive type was declared based on the sort of the goal.

2 Answers

If one would like to preserve the intermediate definitions, then one could use the Section mechanism, like so: 

Require Import Coq.Lists.List. Import ListNotations.

Definition rcons {X:Type} (l:list X) (x:X) : list X := 
  l ++ [x].

Section custom_induction_principle.    
  Variable X : Type.
  Variable P : list X -> Prop.

  Hypothesis true_for_nil : P nil.
  Hypothesis true_for_list : forall xs, P xs.
  Hypothesis preserved_by_rcons : forall xs' x, P xs' -> P (rcons xs' x).

  Fixpoint list_ind_rcons (xs : list X) : P xs. Admitted.
End custom_induction_principle.

Coq substitutes the definitions and list_ind_rcons has the needed type and induction ... using ... works:

Theorem rev_app_dist: forall {X} (l1 l2:list X),
  rev (l1 ++ l2) = rev l2 ++ rev l1.
Proof. intros X l1 l2. 
  induction l2 using list_ind_rcons.
Abort.

By the way, this induction principle is present in the standard library (List module):

Coq < Check rev_ind.
rev_ind
     : forall (A : Type) (P : list A -> Prop),
       P [] ->
       (forall (x : A) (l : list A), P l -> P (l ++ [x])) ->
       forall l : list A, P l
like image 190
Anton Trunov Avatar answered Oct 22 '22 01:10

Anton Trunov

What you did was mostly correct. The problem is that Coq has some trouble recognizing that what you wrote is an induction principle, because of the intermediate definitions. This, for instance, works just fine:

Theorem list_ind_rcons:
  forall {X:Type} (P:list X -> Prop),
    P nil ->
    (forall x l, P l -> P (rcons l x)) ->
    forall l, P l.
Proof. Admitted.

Theorem rev_app_dist: forall {X} (l1 l2:list X), rev (l1 ++ l2) = rev l2 ++ rev l1.
Proof. intros X l1 l2.
  induction l2 using @list_ind_rcons.

I don't know if Coq not being able to automatically unfold the intermediate definitions should be considered a bug or not, but at least there is a workaround.

like image 4
Arthur Azevedo De Amorim Avatar answered Oct 22 '22 02:10

Arthur Azevedo De Amorim
Sign in to Comment

Related questions

How can I prove propositional extensionality in Coq?
Concoqtion (Coq + MetaOCaml) - why abandoned?
How to "flip" an equality proposition in Coq?
Proofs' role in Coq extractions
Dependent types: Vector of vectors
How to prove False from obviously contradictory assumptions
Is it possible to derive induction for the church-encoded Nat?
Counting number of different elements in a list in Coq
Can you automatically add Haskell import statements when extracting from Coq?
How do I write tactics that behave like "destruct ... as"?
Is there a minimal complete set of tactics in Coq?
Abstracting over the term ... leads to a term ... which is ill-typed
Rigorous proof of the following C++ code's property?
What's the difference between revert and generalize tactics in Coq?
Subset parameter
Why Coq doesn't allow inversion, destruct, etc. when the goal is a Type?
Real numbers in Coq
Inversion produces unexpected existT in Coq

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!