Mercurial > hg > Members > ryokka > HoareLogic
annotate whileTestGears.agda @ 70:fdd31b6808db
...
| author | Shinji KONO <kono@ie.u-ryukyu.ac.jp> |
|---|---|
| date | Mon, 23 Dec 2019 18:20:42 +0900 |
| parents | 5b17a3601037 |
| children | 57d5a3884898 |
| rev | line source |
|---|---|
| 4 | 1 module whileTestGears where |
| 2 | |
| 3 open import Function | |
| 4 open import Data.Nat | |
| 34 | 5 open import Data.Bool hiding ( _≟_ ; _≤?_ ; _≤_ ; _<_) |
| 62 | 6 open import Data.Product |
| 4 | 7 open import Level renaming ( suc to succ ; zero to Zero ) |
| 8 open import Relation.Nullary using (¬_; Dec; yes; no) | |
| 9 open import Relation.Binary.PropositionalEquality | |
| 62 | 10 open import Agda.Builtin.Unit |
| 4 | 11 |
| 10 | 12 open import utilities |
| 13 open _/\_ | |
| 4 | 14 |
| 42 | 15 record Env : Set (succ Zero) where |
| 6 | 16 field |
| 17 varn : ℕ | |
| 18 vari : ℕ | |
| 42 | 19 open Env |
| 6 | 20 |
|
46
8bf82026e4fe
simplified env with state condition
Shinji KONO <kono@ie.u-ryukyu.ac.jp>
parents:
43
diff
changeset
|
21 whileTest : {l : Level} {t : Set l} → (c10 : ℕ) → (Code : Env → t) → t |
|
8bf82026e4fe
simplified env with state condition
Shinji KONO <kono@ie.u-ryukyu.ac.jp>
parents:
43
diff
changeset
|
22 whileTest c10 next = next (record {varn = c10 ; vari = 0 } ) |
| 4 | 23 |
| 24 {-# TERMINATING #-} | |
| 33 | 25 whileLoop : {l : Level} {t : Set l} → Env → (Code : Env → t) → t |
| 4 | 26 whileLoop env next with lt 0 (varn env) |
| 27 whileLoop env next | false = next env | |
| 28 whileLoop env next | true = | |
| 42 | 29 whileLoop (record env {varn = (varn env) - 1 ; vari = (vari env) + 1}) next |
| 4 | 30 |
|
46
8bf82026e4fe
simplified env with state condition
Shinji KONO <kono@ie.u-ryukyu.ac.jp>
parents:
43
diff
changeset
|
31 test1 : Env |
|
8bf82026e4fe
simplified env with state condition
Shinji KONO <kono@ie.u-ryukyu.ac.jp>
parents:
43
diff
changeset
|
32 test1 = whileTest 10 (λ env → whileLoop env (λ env1 → env1 )) |
| 4 | 33 |
| 34 | |
|
46
8bf82026e4fe
simplified env with state condition
Shinji KONO <kono@ie.u-ryukyu.ac.jp>
parents:
43
diff
changeset
|
35 proof1 : whileTest 10 (λ env → whileLoop env (λ e → (vari e) ≡ 10 )) |
|
8bf82026e4fe
simplified env with state condition
Shinji KONO <kono@ie.u-ryukyu.ac.jp>
parents:
43
diff
changeset
|
36 proof1 = refl |
| 4 | 37 |
| 16 | 38 -- ↓PostCondition |
|
46
8bf82026e4fe
simplified env with state condition
Shinji KONO <kono@ie.u-ryukyu.ac.jp>
parents:
43
diff
changeset
|
39 whileTest' : {l : Level} {t : Set l} → {c10 : ℕ } → (Code : (env : Env ) → ((vari env) ≡ 0) /\ ((varn env) ≡ c10) → t) → t |
|
8bf82026e4fe
simplified env with state condition
Shinji KONO <kono@ie.u-ryukyu.ac.jp>
parents:
43
diff
changeset
|
40 whileTest' {_} {_} {c10} next = next env proof2 |
| 4 | 41 where |
| 42 | 42 env : Env |
|
46
8bf82026e4fe
simplified env with state condition
Shinji KONO <kono@ie.u-ryukyu.ac.jp>
parents:
43
diff
changeset
|
43 env = record {vari = 0 ; varn = c10 } |
| 16 | 44 proof2 : ((vari env) ≡ 0) /\ ((varn env) ≡ c10) -- PostCondition |
| 4 | 45 proof2 = record {pi1 = refl ; pi2 = refl} |
| 11 | 46 |
| 47 open import Data.Empty | |
| 48 open import Data.Nat.Properties | |
| 49 | |
| 50 | |
| 16 | 51 {-# TERMINATING #-} -- ↓PreCondition(Invaliant) |
| 42 | 52 whileLoop' : {l : Level} {t : Set l} → (env : Env ) → {c10 : ℕ } → ((varn env) + (vari env) ≡ c10) → (Code : Env → t) → t |
| 9 | 53 whileLoop' env proof next with ( suc zero ≤? (varn env) ) |
| 54 whileLoop' env proof next | no p = next env | |
| 14 | 55 whileLoop' env {c10} proof next | yes p = whileLoop' env1 (proof3 p ) next |
| 4 | 56 where |
| 42 | 57 env1 = record env {varn = (varn env) - 1 ; vari = (vari env) + 1} |
| 11 | 58 1<0 : 1 ≤ zero → ⊥ |
| 59 1<0 () | |
| 14 | 60 proof3 : (suc zero ≤ (varn env)) → varn env1 + vari env1 ≡ c10 |
| 47 | 61 proof3 (s≤s lt) with varn env |
| 62 proof3 (s≤s z≤n) | zero = ⊥-elim (1<0 p) | |
| 63 proof3 (s≤s (z≤n {n'}) ) | suc n = let open ≡-Reasoning in | |
| 64 begin | |
| 65 n' + (vari env + 1) | |
| 66 ≡⟨ cong ( λ z → n' + z ) ( +-sym {vari env} {1} ) ⟩ | |
| 67 n' + (1 + vari env ) | |
| 68 ≡⟨ sym ( +-assoc (n') 1 (vari env) ) ⟩ | |
| 69 (n' + 1) + vari env | |
| 70 ≡⟨ cong ( λ z → z + vari env ) +1≡suc ⟩ | |
| 71 (suc n' ) + vari env | |
| 72 ≡⟨⟩ | |
| 73 varn env + vari env | |
| 74 ≡⟨ proof ⟩ | |
| 75 c10 | |
| 76 ∎ | |
| 6 | 77 |
|
46
8bf82026e4fe
simplified env with state condition
Shinji KONO <kono@ie.u-ryukyu.ac.jp>
parents:
43
diff
changeset
|
78 -- Condition to Invariant |
| 42 | 79 conversion1 : {l : Level} {t : Set l } → (env : Env ) → {c10 : ℕ } → ((vari env) ≡ 0) /\ ((varn env) ≡ c10) |
| 80 → (Code : (env1 : Env ) → (varn env1 + vari env1 ≡ c10) → t) → t | |
| 14 | 81 conversion1 env {c10} p1 next = next env proof4 |
| 6 | 82 where |
| 14 | 83 proof4 : varn env + vari env ≡ c10 |
| 6 | 84 proof4 = let open ≡-Reasoning in |
| 85 begin | |
| 86 varn env + vari env | |
| 87 ≡⟨ cong ( λ n → n + vari env ) (pi2 p1 ) ⟩ | |
| 14 | 88 c10 + vari env |
| 89 ≡⟨ cong ( λ n → c10 + n ) (pi1 p1 ) ⟩ | |
| 90 c10 + 0 | |
| 91 ≡⟨ +-sym {c10} {0} ⟩ | |
| 92 c10 | |
| 6 | 93 ∎ |
| 4 | 94 |
| 6 | 95 |
|
46
8bf82026e4fe
simplified env with state condition
Shinji KONO <kono@ie.u-ryukyu.ac.jp>
parents:
43
diff
changeset
|
96 proofGears : {c10 : ℕ } → Set |
|
8bf82026e4fe
simplified env with state condition
Shinji KONO <kono@ie.u-ryukyu.ac.jp>
parents:
43
diff
changeset
|
97 proofGears {c10} = whileTest' {_} {_} {c10} (λ n p1 → conversion1 n p1 (λ n1 p2 → whileLoop' n1 p2 (λ n2 → ( vari n2 ≡ c10 )))) |
| 9 | 98 |
| 49 | 99 -- proofGearsMeta : {c10 : ℕ } → proofGears {c10} |
| 100 -- proofGearsMeta {c10} = {!!} -- net yet done | |
| 43 | 101 |
| 41 | 102 -- |
| 42 | 103 -- openended Env c <=> Context |
| 41 | 104 -- |
| 105 | |
| 106 open import Relation.Nullary | |
| 107 open import Relation.Binary | |
| 108 | |
| 53 | 109 record Envc : Set (succ Zero) where |
| 110 field | |
| 111 c10 : ℕ | |
| 112 varn : ℕ | |
| 113 vari : ℕ | |
| 114 open Envc | |
| 49 | 115 |
| 53 | 116 whileTestP : {l : Level} {t : Set l} → (c10 : ℕ) → (Code : Envc → t) → t |
| 117 whileTestP c10 next = next (record {varn = c10 ; vari = 0 ; c10 = c10 } ) | |
| 118 | |
| 119 whileLoopP : {l : Level} {t : Set l} → Envc → (next : Envc → t) → (exit : Envc → t) → t | |
| 49 | 120 whileLoopP env next exit with <-cmp 0 (varn env) |
| 121 whileLoopP env next exit | tri≈ ¬a b ¬c = exit env | |
| 122 whileLoopP env next exit | tri< a ¬b ¬c = | |
| 123 next (record env {varn = (varn env) - 1 ; vari = (vari env) + 1 }) | |
| 124 | |
| 125 {-# TERMINATING #-} | |
| 53 | 126 loopP : {l : Level} {t : Set l} → Envc → (exit : Envc → t) → t |
| 49 | 127 loopP env exit = whileLoopP env (λ env → loopP env exit ) exit |
| 128 | |
| 53 | 129 whileTestPCall : (c10 : ℕ ) → Envc |
| 130 whileTestPCall c10 = whileTestP {_} {_} c10 (λ env → loopP env (λ env → env)) | |
|
30
dd66b94bf365
loop causes agda inifinite loop
Shinji KONO <kono@ie.u-ryukyu.ac.jp>
parents:
29
diff
changeset
|
131 |
| 53 | 132 data whileTestState : Set where |
| 133 s1 : whileTestState | |
| 134 s2 : whileTestState | |
| 135 sf : whileTestState | |
| 49 | 136 |
| 53 | 137 whileTestStateP : whileTestState → Envc → Set |
| 138 whileTestStateP s1 env = (vari env ≡ 0) /\ (varn env ≡ c10 env) | |
| 139 whileTestStateP s2 env = (varn env + vari env ≡ c10 env) | |
| 140 whileTestStateP sf env = (vari env ≡ c10 env) | |
| 50 | 141 |
| 53 | 142 whileTestPwP : {l : Level} {t : Set l} → (c10 : ℕ) → ((env : Envc ) → whileTestStateP s1 env → t) → t |
| 143 whileTestPwP c10 next = next env record { pi1 = refl ; pi2 = refl } where | |
| 144 env : Envc | |
| 145 env = whileTestP c10 ( λ env → env ) | |
| 50 | 146 |
| 56 | 147 whileLoopPwP : {l : Level} {t : Set l} → (env : Envc ) → whileTestStateP s2 env |
| 53 | 148 → (next : (env : Envc ) → whileTestStateP s2 env → t) |
| 149 → (exit : (env : Envc ) → whileTestStateP sf env → t) → t | |
| 54 | 150 whileLoopPwP env s next exit with <-cmp 0 (varn env) |
| 55 | 151 whileLoopPwP env s next exit | tri≈ ¬a b ¬c = exit env (lem (sym b) s) |
| 152 where | |
| 153 lem : (varn env ≡ 0) → (varn env + vari env ≡ c10 env) → vari env ≡ c10 env | |
| 154 lem p1 p2 rewrite p1 = p2 | |
| 155 | |
| 56 | 156 whileLoopPwP env s next exit | tri< a ¬b ¬c = next (record env {varn = (varn env) - 1 ; vari = (vari env) + 1 }) (proof5 a) |
| 157 where | |
| 158 1<0 : 1 ≤ zero → ⊥ | |
| 159 1<0 () | |
| 160 proof5 : (suc zero ≤ (varn env)) → (varn env - 1) + (vari env + 1) ≡ c10 env | |
| 161 proof5 (s≤s lt) with varn env | |
| 162 proof5 (s≤s z≤n) | zero = ⊥-elim (1<0 a) | |
| 163 proof5 (s≤s (z≤n {n'}) ) | suc n = let open ≡-Reasoning in | |
| 164 begin | |
| 165 n' + (vari env + 1) | |
| 166 ≡⟨ cong ( λ z → n' + z ) ( +-sym {vari env} {1} ) ⟩ | |
| 167 n' + (1 + vari env ) | |
| 168 ≡⟨ sym ( +-assoc (n') 1 (vari env) ) ⟩ | |
| 169 (n' + 1) + vari env | |
| 170 ≡⟨ cong ( λ z → z + vari env ) +1≡suc ⟩ | |
| 171 (suc n' ) + vari env | |
| 172 ≡⟨⟩ | |
| 173 varn env + vari env | |
| 174 ≡⟨ s ⟩ | |
| 175 c10 env | |
| 176 ∎ | |
| 51 | 177 |
| 66 | 178 data _implies_ (A B : Set ) : Set (succ Zero) where |
| 179 proof : ( A → B ) → A implies B | |
| 180 | |
| 181 implies2p : {A B : Set } → A implies B → A → B | |
| 182 implies2p (proof x) = x | |
| 183 | |
| 68 | 184 whileTestPSem : (c : ℕ) → whileTestP c ( λ env → ⊤ implies (whileTestStateP s1 env) ) |
| 185 whileTestPSem c = proof ( λ _ → record { pi1 = refl ; pi2 = refl } ) | |
| 64 | 186 |
| 67 | 187 SemGears : (f : {l : Level } {t : Set l } → (e0 : Envc ) → ((e : Envc) → t) → t ) → Set (succ Zero) |
| 188 SemGears f = Envc → Envc → Set | |
| 189 | |
| 68 | 190 GearsUnitSound : (e0 e1 : Envc) {pre : Envc → Set} {post : Envc → Set} |
| 191 → (f : {l : Level } {t : Set l } → (e0 : Envc ) → (Envc → t) → t ) | |
| 192 → (fsem : (e0 : Envc ) → f e0 ( λ e1 → (pre e0) implies (post e1))) | |
| 193 → f e0 (λ e1 → pre e0 implies post e1) | |
| 69 | 194 GearsUnitSound e0 e1 f fsem = fsem e0 |
| 195 | |
| 196 whileTestPSemSound : (c : ℕ ) (output : Envc ) → output ≡ whileTestP c (λ e → e) → ⊤ implies ((vari output ≡ 0) /\ (varn output ≡ c)) | |
| 197 whileTestPSemSound c output refl = whileTestPSem c | |
| 64 | 198 |
| 69 | 199 whileLoopPSem : {l : Level} {t : Set l} → (input : Envc ) → whileTestStateP s2 input |
| 200 → (next : (output : Envc ) → (whileTestStateP s2 input ) implies (whileTestStateP s2 output) → t) | |
| 201 → (exit : (output : Envc ) → (whileTestStateP s2 input ) implies (whileTestStateP sf output) → t) → t | |
| 202 whileLoopPSem env s next exit with <-cmp 0 (varn env) | |
| 203 whileLoopPSem env s next exit | tri≈ ¬a b ¬c = {!!} | |
| 204 whileLoopPSem env s next exit | tri< a ¬b ¬c = {!!} | |
| 205 | |
| 70 | 206 loopPP : (input : Envc ) → Envc |
| 207 loopPP input with <-cmp 0 (varn input ) | |
| 208 loopPP input | tri≈ ¬a b ¬c = input | |
| 209 loopPP input | tri< a ¬b ¬c = {!!} -- loopPP (whileLoopP ? | |
| 210 -- = whileLoopP input (λ next → loopPP next ) (λ output → output ) | |
| 211 | |
| 69 | 212 whileLoopPSemSound : (input output : Envc ) |
| 213 → whileTestStateP s2 input | |
| 70 | 214 → output ≡ loopPP input |
| 69 | 215 → (whileTestStateP s2 input ) implies ( whileTestStateP sf output ) |
| 70 | 216 whileLoopPSemSound input output pre refl with <-cmp 0 (varn input ) |
| 217 ... | ttt = {!!} | |
| 62 | 218 |
| 219 -- induction にする | |
| 53 | 220 {-# TERMINATING #-} |
| 54 | 221 loopPwP : {l : Level} {t : Set l} → (env : Envc ) → whileTestStateP s2 env → (exit : (env : Envc ) → whileTestStateP sf env → t) → t |
| 222 loopPwP env s exit = whileLoopPwP env s (λ env s → loopPwP env s exit ) exit | |
| 51 | 223 |
| 62 | 224 -- wP を Env のRel にする Env → Env → Set にしちゃう |
| 54 | 225 whileTestPCallwP : (c : ℕ ) → Set |
| 226 whileTestPCallwP c = whileTestPwP {_} {_} c ( λ env s → loopPwP env (conv env s) ( λ env s → vari env ≡ c ) ) where | |
| 70 | 227 conv : (env : Envc ) → (vari env ≡ 0) /\ (varn env ≡ c10 env) → varn env + vari env ≡ c10 env |
| 228 conv e record { pi1 = refl ; pi2 = refl } = +zero | |
| 55 | 229 |
| 59 | 230 |
| 231 conv1 : (env : Envc ) → (vari env ≡ 0) /\ (varn env ≡ c10 env) → varn env + vari env ≡ c10 env | |
| 232 conv1 e record { pi1 = refl ; pi2 = refl } = +zero | |
| 233 | |
| 234 -- = whileTestPwP (suc c) (λ env s → loopPwP env (conv1 env s) (λ env₁ s₁ → {!!})) | |
| 235 | |
| 61 | 236 |
| 62 | 237 data GComm : Set (succ Zero) where |
| 238 Skip : GComm | |
| 239 Abort : GComm | |
| 240 PComm : Set → GComm | |
| 241 -- Seq : GComm → GComm → GComm | |
| 242 -- If : whileTestState → GComm → GComm → GComm | |
| 243 while : whileTestState → GComm → GComm | |
| 61 | 244 |
| 62 | 245 gearsSem : {l : Level} {t : Set l} → {c10 : ℕ} → Envc → Envc → (Envc → (Envc → t) → t) → Set |
| 246 gearsSem pre post = {!!} | |
| 247 | |
| 248 unionInf : ∀ {l} -> (ℕ -> Rel Set l) -> Rel Set l | |
| 249 unionInf f a b = ∃ (λ (n : ℕ) → f n a b) | |
| 250 | |
| 251 comp : ∀ {l} → Rel Set l → Rel Set l → Rel Set (succ Zero Level.⊔ l) | |
| 252 comp r1 r2 a b = ∃ (λ (a' : Set) → r1 a a' × r2 a' b) | |
| 253 | |
| 254 -- repeat : ℕ -> rel set zero -> rel set zero | |
| 255 -- repeat ℕ.zero r = λ x x₁ → ⊤ | |
| 256 -- repeat (ℕ.suc m) r = comp (repeat m r) r | |
| 257 | |
| 258 GSemComm : {l : Level} {t : Set l} → GComm → Rel whileTestState (Zero) | |
| 259 GSemComm Skip = λ x x₁ → ⊤ | |
| 260 GSemComm Abort = λ x x₁ → ⊥ | |
| 261 GSemComm (PComm x) = λ x₁ x₂ → x | |
| 262 -- GSemComm (Seq con con₁ con₃) = λ x₁ x₂ → {!!} | |
| 263 -- GSemComm (If x con con₁) = {!!} | |
| 264 GSemComm (while x con) = λ x₁ x₂ → unionInf {Zero} (λ (n : ℕ) → {!!}) {!!} {!!} | |
| 265 | |
| 266 ProofConnect : {l : Level} {t : Set l} | |
| 267 → (pr1 : Envc → Set → Set) | |
| 268 → (Envc → Set → (Envc → Set → t)) | |
| 269 → (Envc → Set → Set) | |
| 270 ProofConnect prev f env post = {!!} -- with f env ({!!}) {!!} | |
| 60 | 271 |
| 272 Proof2 : (env : Envc) → (vari env ≡ c10 env) → vari env ≡ c10 env | |
| 273 Proof2 _ refl = refl | |
| 274 | |
| 275 | |
| 61 | 276 -- Proof1 : (env : Envc) → (s : varn env + vari env ≡ c10 env) → ((env : Envc) → (vari env ≡ c10 env) → vari env ≡ c10 env) → vari env ≡ c10 env |
| 60 | 277 Proof1 : (env : Envc) → (s : varn env + vari env ≡ c10 env) → loopPwP env s ( λ env s → vari env ≡ c10 env ) |
| 61 | 278 Proof1 env s = {!!} |
| 60 | 279 |
| 55 | 280 Proof : (c : ℕ ) → whileTestPCallwP c |
| 61 | 281 Proof c = {!!} |