How to shape palindrome on ATS/LF?

Yannick_Duchene · May 21, 2015, 1:17pm

Just a 2 cents: I feel to guess a co-induction is needed.Le jeudi 21 mai 2015 13:58:34 UTC+2, Kiwamu Okabe a écrit :

Hi all,

I would like to shape palindrome on ATS/LF.

http://www.cis.upenn.edu/~bcpierce/sf/current/Prop.html#lab267

However, I think “datasort” can’t have any quantification.
Then I have following code:

dataprop List_l (int) =
| List_l_nil (0)
| {n:nat} List_l_cons (n+1) of (int, List_l (n))

prfun snoc_l {n:nat} .. (l: List_l (n), v: int):<> List_l (n+1) =
case+ l of
| List_l_nil () => List_l_cons (v, List_l_nil ())
| List_l_cons (h, t) => List_l_cons (h, snoc_l (t, v))

dataprop Palindrome (List_l (int)) =
| Pal_nil (Nil)
| {n:int} Pal_one (Cons (n, Nil))
| Pal_cons …

It’s hard to shape “Palindrome”…

How to shape palindrome on ATS/LF?

Thank’s,

Kiwamu Okabe at METASEPI DESIGN

gmhwxi · May 21, 2015, 3:22pm

Doing this sort of thing is like getting into a rabbit hole. You need to
make sure
that you will get out quickly

You can find the definition of REVERSE at:

github.com

githwxi/ATS-Postiats/blob/master/libats/SATS/gflist.sats

(***********************************************************************)
(*                                                                     *)
(*                         Applied Type System                         *)
(*                                                                     *)
(***********************************************************************)

(*
** ATS/Postiats - Unleashing the Potential of Types!
** Copyright (C) 2011-2013 Hongwei Xi, ATS Trustful Software, Inc.
** All rights reserved
**
** ATS is free software;  you can  redistribute it and/or modify it under
** the terms of  the GNU GENERAL PUBLIC LICENSE (GPL) as published by the
** Free Software Foundation; either version 3, or (at  your  option)  any
** later version.
** 
** ATS is distributed in the hope that it will be useful, but WITHOUT ANY
** WARRANTY; without  even  the  implied  warranty  of MERCHANTABILITY or
** FITNESS FOR A PARTICULAR PURPOSE.  See the  GNU General Public License
** for more details.

This file has been truncated. show original

I will define PAL as follows:

propdef PAL(xs: ilist) = REVERSE(xs, xs)

This is against the hint given in the exercise, but I know what I am doing

I have done this sort of thing so many times.

To prove that a list xs1 is a prefix of xs2, you can implement a proof
function of the following type:

forall i:nat | i <= n, forall x:int, (LENGTH(xs1, n), NTH(xs1, i, x)) →
NTH(xs2, i, x)

where NTH is also defined in the above file gflist.sats.On Thu, May 21, 2015 at 7:58 AM, Kiwamu Okabe kiw...@debian.or.jp wrote:

Hi all,

I would like to shape palindrome on ATS/LF.

http://www.cis.upenn.edu/~bcpierce/sf/current/Prop.html#lab267

However, I think “datasort” can’t have any quantification.
Then I have following code:

dataprop List_l (int) =
| List_l_nil (0)
| {n:nat} List_l_cons (n+1) of (int, List_l (n))

prfun snoc_l {n:nat} .. (l: List_l (n), v: int):<> List_l (n+1) =
case+ l of
| List_l_nil () => List_l_cons (v, List_l_nil ())
| List_l_cons (h, t) => List_l_cons (h, snoc_l (t, v))

dataprop Palindrome (List_l (int)) =
| Pal_nil (Nil)
| {n:int} Pal_one (Cons (n, Nil))
| Pal_cons …

It’s hard to shape “Palindrome”…

How to shape palindrome on ATS/LF?

Thank’s,

Kiwamu Okabe at METASEPI DESIGN

–
You received this message because you are subscribed to the Google Groups
“ats-lang-users” group.
To unsubscribe from this group and stop receiving emails from it, send an
email to ats-lang-user...@googlegroups.com.
To post to this group, send email to ats-lan...@googlegroups.com.
Visit this group at http://groups.google.com/group/ats-lang-users.
To view this discussion on the web visit
https://groups.google.com/d/msgid/ats-lang-users/CAEvX6dkqSwJbOxsK%2B6n%2BF0a4nbrYqYtALHQpoZVLo24E_%2BJRkQ%40mail.gmail.com
.

gmhwxi · May 29, 2015, 4:52pm

Here is a version that passes typechecking:

github.com

githwxi/ATS-Postiats-test/blob/master/contrib/hwxi/TEST10/palindrome3.dats

(*
** For a little bit of fun
*)
 
(* ****** ****** *)
//
staload
"libats/SATS/ilist_prf.sats"
//
(* ****** ****** *)
//
dataprop
PAL (ilist) =
| PALnil (ilist_nil)
| {x:int} PALone (ilist_sing (x))
| {x:int}
  {l,ll,lll:ilist}
  PALcons (ilist_cons (x, ll)) of (PAL (l), SNOC (l, x, ll))
//
(* ****** ****** *)

This file has been truncated. show original

Unfortunately, this kind of proof is always very hard to follow.On Friday, May 29, 2015 at 12:34:26 PM UTC-4, gmhwxi wrote:

You need the following lemmas:

//
extern
prfun
lemma_reverse_scons
{x:elt}{xs,ys:ilist}{ys1:ilist}
(REVERSE(xs, ys), SNOC(ys, x, ys1)): REVERSE(ilist_cons(x,xs), ys1)
//
extern
prfun
lemma_append_scons
{x:elt}{xs,ys,zs:ilist}{ys1,zs1:ilist}
(APPEND(xs, ys, zs), SNOC(ys, x, ys1), SNOC(zs, x, zs1)): APPEND(xs, ys1
, zs1)
//

On Friday, May 29, 2015 at 12:08:21 PM UTC-4, Kiwamu Okabe wrote:
Hi Hongwei,

On Sat, May 30, 2015 at 1:01 AM, gmhwxi gmh...@gmail.com wrote:

It cannot be proven this way.

Umm… But Coq can prove with induction for “l”.

Inductive pal {X : Type} : list X → Prop :=
| pal_nil : pal
| pal_one : forall x, pal
| pal_cons : forall x l, pal l → pal (cons x (snoc l x)).

Theorem pal_app : forall (X : Type) (l : list X),
pal (l ++ rev l).
Proof.
intros.
induction l; simpl.
apply pal_nil.
rewrite <- snoc_with_append. 
apply pal_cons. 
apply IHl. 
Qed.

Thank’s,

Kiwamu Okabe at METASEPI DESIGN

gmhwxi · May 30, 2015, 2:03am

A better formulation is

prfun pal_rev : {xs:ilist} PAL(xs) → REVERSE(xs, xs)
prfun rev_pal : {xs:ilist} REVERSE(xs, xs) → PAL(xs)On Friday, May 29, 2015 at 9:42:17 PM UTC-4, Kiwamu Okabe wrote:

Hi Hongwei,

On Sat, May 30, 2015 at 2:38 AM, gmhwxi <gmh...@gmail.com <javascript:>> wrote:

By the way, I feel that the following definition of ‘pal’ smells
“cheating”.
Obviously, the “natural” definition of ‘pal’ is:

xs equals rev(xs)

So one needs to first prove pal(xs) is equivalent to (xs = rev(xs)) in
order
to justify the following definition of ‘pal’.

Then, I’m trying to prove it.

https://github.com/jats-ug/practice-ats/blob/master/atslf_palindrome/main.dats#L67

I think PALcons case needs some lemma, however can’t imagine it.

prfn pal_rev {l,lr:ilist} (pf1: PAL (l), pf2: REVERSE (l, lr)):
ILISTEQ (l, lr) = let
prfun lemma {l,lr:ilist} .. (pf1: PAL (l), pf2: REVERSE (l, lr)):
ILISTEQ (l, lr) =
case+ pf1 of
| PALnil () => let
prval REVAPPnil () = pf2
in
ILISTEQ ()
end
| PALone () => let
prval REVAPPcons (pf2) = pf2
prval REVAPPnil () = pf2
in
ILISTEQ ()
end
| PALcons (pf1, pfsnoc) => let
prval (pfrev, pfsnoc) = lemma2_reverse_scons (pf2)
prval ILISTEQ () = lemma (pf1, pfrev)
in
ILISTEQ ()
end
in
lemma (pf1, pf2)
end

So hard…
Thank’s a lot,

Kiwamu Okabe at METASEPI DESIGN

gmhwxi · May 30, 2015, 2:52am

The hard part is rev_pal.

I think it is even harder than pal_app (the main lemma).

For pal_rev, you need lemmas encoding the following
properties:

rev(cons(x, xs)) = snoc(rev(xs), x)
rev(snoc(x, xs)) = cons(x, rev(xs))
snoc(cons(x, ys), z) = cons(x, snoc(ys, z))On Friday, May 29, 2015 at 10:03:43 PM UTC-4, gmhwxi wrote:

A better formulation is

prfun pal_rev : {xs:ilist} PAL(xs) → REVERSE(xs, xs)
prfun rev_pal : {xs:ilist} REVERSE(xs, xs) → PAL(xs)

On Friday, May 29, 2015 at 9:42:17 PM UTC-4, Kiwamu Okabe wrote:

Hi Hongwei,

On Sat, May 30, 2015 at 2:38 AM, gmhwxi gmh...@gmail.com wrote:

By the way, I feel that the following definition of ‘pal’ smells
“cheating”.
Obviously, the “natural” definition of ‘pal’ is:

xs equals rev(xs)

So one needs to first prove pal(xs) is equivalent to (xs = rev(xs)) in
order
to justify the following definition of ‘pal’.

Then, I’m trying to prove it.

https://github.com/jats-ug/practice-ats/blob/master/atslf_palindrome/main.dats#L67

I think PALcons case needs some lemma, however can’t imagine it.

prfn pal_rev {l,lr:ilist} (pf1: PAL (l), pf2: REVERSE (l, lr)):
ILISTEQ (l, lr) = let
prfun lemma {l,lr:ilist} .. (pf1: PAL (l), pf2: REVERSE (l, lr)):
ILISTEQ (l, lr) =
case+ pf1 of
| PALnil () => let
prval REVAPPnil () = pf2
in
ILISTEQ ()
end
| PALone () => let
prval REVAPPcons (pf2) = pf2
prval REVAPPnil () = pf2
in
ILISTEQ ()
end
| PALcons (pf1, pfsnoc) => let
prval (pfrev, pfsnoc) = lemma2_reverse_scons (pf2)
prval ILISTEQ () = lemma (pf1, pfrev)
in
ILISTEQ ()
end
in
lemma (pf1, pf2)
end

So hard…
Thank’s a lot,

Kiwamu Okabe at METASEPI DESIGN

gmhwxi · May 29, 2015, 4:01pm

It cannot be proven this way.

I think that the first thing you want to know is how to prove
that REVERSE is its own inverse:

REVERSE(xs, ys) → REVERSE(ys, xs)

Once you understand how this is done, you can use essentially the
same technique to handle palindromes.On Friday, May 29, 2015 at 11:54:50 AM UTC-4, Kiwamu Okabe wrote:

Hi all,

On Mon, May 25, 2015 at 2:57 AM, gmhwxi <gmh...@gmail.com <javascript:>> wrote:

Personally, I do not see much to be gained by going through this
exercise.
Of course, you get to learn more about typechecking in ATS, but that is
about it.

Sorry, However I have more question.

I read that palindrome should be defined inductively.

dataprop PAL (ilist) =
| PALnil (ilist_nil)
| {x:int} PALone (ilist_sing (x))
| {x:int}{l,ll,lll:ilist} PALcons (ilist_cons (x, ll)) of (PAL (l),
SNOC (l, x, ll))

And I tried to prove pal_app

prfn pal_app {l,lr,m:ilist} (pf1: REVERSE (l, lr), pf2: APPEND (l, lr,
m)): PAL (m) = let
prfun lemma {l,lr,m:ilist} .. (pf1: REVERSE (l, lr), pf2: APPEND
(l, lr, m)): PAL (m) =
case+ pf2 of
| APPENDnil () => let
prval REVAPPnil () = pf1
in
PALnil ()
end
| APPENDcons (pf2) => let
prval REVAPPcons (pf1) = pf1
in
lemma (pf1, pf2) // <= (A)
end
in
lemma (pf1, pf2)
end

But the code causes compile error.
Why error at (A)?

Thank’s,

Kiwamu Okabe at METASEPI DESIGN

gmhwxi · May 29, 2015, 5:08pm

ATS/LF is so hard for me…

Is Coq easier for you

Well, complex proofs in ATS/LF are meant to be generated using tools.On Friday, May 29, 2015 at 12:56:33 PM UTC-4, Kiwamu Okabe wrote:

Hi Hongwei,

On Sat, May 30, 2015 at 1:52 AM, gmhwxi <gmh...@gmail.com <javascript:>> wrote:

https://github.com/githwxi/ATS-Postiats-test/blob/master/contrib/hwxi/TEST10/palindrome3.dats

Thank’s a lot

Unfortunately, this kind of proof is always very hard to follow.

Entirely agree.
ATS/LF is so hard for me…

Thank’s,

Kiwamu Okabe at METASEPI DESIGN

gmhwxi · June 19, 2015, 12:05am

Congratulations!

You finally made it out of the woods :)On Thursday, June 18, 2015 at 1:00:16 PM UTC-4, Kiwamu Okabe wrote:

I wrote a library using palindrome.
Fun!

https://github.com/jats-ug/practice-ats/blob/master/atslf_palindrome/palindrome.sats

https://github.com/jats-ug/practice-ats/blob/master/atslf_palindrome/palindrome.dats

https://github.com/jats-ug/practice-ats/blob/master/atslf_palindrome/main.dats

–
Kiwamu Okabe

gmhwxi · May 22, 2015, 11:21pm

Here is a paper about doing this kind of things in ATS:

http://arxiv.org/abs/1203.6102On Friday, May 22, 2015 at 5:16:12 AM UTC-4, Kiwamu Okabe wrote:

Hi Hongwei,
This is my report for homework.

On Fri, May 22, 2015 at 12:22 AM, Hongwei Xi <gmh...@gmail.com <javascript:>> wrote:

You can find the definition of REVERSE at:

https://github.com/githwxi/ATS-Postiats/blob/master/libats/SATS/gflist.sats

I will define PAL as follows:

propdef PAL(xs: ilist) = REVERSE(xs, xs)

Totally, my mistake is thinking type of List needs dependent value.
List in following code has int value to keep length of the List.

dataprop List_l (int) =
| List_l_nil (0)
| {n:nat} List_l_cons (n+1) of (int, List_l (n))

However, List of your code doesn’t have such value.

datasort ilist =
| ilist_nil of () | ilist_cons of (int, ilist)

Why I think needing it? It was for build Snoc.

prfun snoc_l {n:nat} .. (l: List_l (n), v: int):<> List_l (n+1) =
case+ l of
| List_l_nil () => List_l_cons (v, List_l_nil ())
| List_l_cons (h, t) => List_l_cons (h, snoc_l (t, v))

But your code can also shape Snoc without such value.

dataprop
SNOC (ilist, int, ilist) =
| {x:int} SNOCnil (ilist_nil, x, ilist_sing (x)) of ()
| {x0:int} {xs1:ilist} {x:int} {xs2:ilist}
SNOCcons (ilist_cons (x0, xs1), x, ilist_cons (x0, xs2)) of SNOC
(xs1, x, xs2)

Thank’s a lot,

Kiwamu Okabe at METASEPI DESIGN

gmhwxi · May 29, 2015, 4:34pm

You need the following lemmas:

//
extern
prfun
lemma_reverse_scons
{x:elt}{xs,ys:ilist}{ys1:ilist}
(REVERSE(xs, ys), SNOC(ys, x, ys1)): REVERSE(ilist_cons(x,xs), ys1)
//
extern
prfun
lemma_append_scons
{x:elt}{xs,ys,zs:ilist}{ys1,zs1:ilist}
(APPEND(xs, ys, zs), SNOC(ys, x, ys1), SNOC(zs, x, zs1)): APPEND(xs, ys1,
zs1)
//On Friday, May 29, 2015 at 12:08:21 PM UTC-4, Kiwamu Okabe wrote:

Hi Hongwei,

On Sat, May 30, 2015 at 1:01 AM, gmhwxi <gmh...@gmail.com <javascript:>> wrote:

It cannot be proven this way.

Umm… But Coq can prove with induction for “l”.

Inductive pal {X : Type} : list X → Prop :=
| pal_nil : pal
| pal_one : forall x, pal
| pal_cons : forall x l, pal l → pal (cons x (snoc l x)).

Theorem pal_app : forall (X : Type) (l : list X),
pal (l ++ rev l).
Proof.
intros.
induction l; simpl.
apply pal_nil.
rewrite <- snoc_with_append. 
apply pal_cons. 
apply IHl. 
Qed.

Thank’s,

Kiwamu Okabe at METASEPI DESIGN

gmhwxi · May 29, 2015, 5:38pm

By the way, I feel that the following definition of ‘pal’ smells “cheating”.
Obviously, the “natural” definition of ‘pal’ is:

xs equals rev(xs)

So one needs to first prove pal(xs) is equivalent to (xs = rev(xs)) in order
to justify the following definition of ‘pal’.On Friday, May 29, 2015 at 12:08:21 PM UTC-4, Kiwamu Okabe wrote:

Hi Hongwei,

On Sat, May 30, 2015 at 1:01 AM, gmhwxi <gmh...@gmail.com <javascript:>> wrote:

It cannot be proven this way.

Umm… But Coq can prove with induction for “l”.

Inductive pal {X : Type} : list X → Prop :=
| pal_nil : pal
| pal_one : forall x, pal
| pal_cons : forall x l, pal l → pal (cons x (snoc l x)).

Theorem pal_app : forall (X : Type) (l : list X),
pal (l ++ rev l).
Proof.
intros.
induction l; simpl.
apply pal_nil.
rewrite <- snoc_with_append. 
apply pal_cons. 
apply IHl. 
Qed.

Thank’s,

Kiwamu Okabe at METASEPI DESIGN

Brandon_Barker · May 29, 2015, 5:02pm

Hi Hongwei,

https://github.com/githwxi/ATS-Postiats-test/blob/master/contrib/hwxi/TEST10/palindrome3.dats

Thank’s a lot

Unfortunately, this kind of proof is always very hard to follow.

Entirely agree.
ATS/LF is so hard for me…

I had the same feeling a few months ago when I was trying it a bit;
that said, I don’t really have anything to compare it to.

Thank’s,

Kiwamu Okabe at METASEPI DESIGN

–
You received this message because you are subscribed to the Google Groups “ats-lang-users” group.
To unsubscribe from this group and stop receiving emails from it, send an email to ats-lang-user...@googlegroups.com.
To post to this group, send email to ats-lan...@googlegroups.com.
Visit this group at http://groups.google.com/group/ats-lang-users.
To view this discussion on the web visit https://groups.google.com/d/msgid/ats-lang-users/CAEvX6d%3DOFutVPHFrnhiHHeQ%3DQy8bb_RJwdCm5X-XNmXw26_Fpg%40mail.gmail.com.

Brandon Barker
brandon...@gmail.com

Yannick_Duchene · May 21, 2015, 4:13pm

What is co-induction in this case?

Something of this form:

datatype T = t of (U)
and U = u of (T)

I though about a co‑induction of two lists, with one in reverse order of
the other. But may be Hongwei’s idea is better…

gmhwxi · May 29, 2015, 5:29pm

Well, it is not really a goal at the moment. It is more of a design.

Right now, there is just no urgent need for generating complex proofs in
ATS/LF.On Friday, May 29, 2015 at 1:18:43 PM UTC-4, Brandon Barker wrote:

On Fri, May 29, 2015 at 1:08 PM, gmhwxi <gmh...@gmail.com <javascript:>> wrote:

ATS/LF is so hard for me…

Is Coq easier for you

Well, complex proofs in ATS/LF are meant to be generated using tools.

I didn’t realize this - are there any examples currently, or this
more of a long-term goal?

On Friday, May 29, 2015 at 12:56:33 PM UTC-4, Kiwamu Okabe wrote:

Hi Hongwei,

On Sat, May 30, 2015 at 1:52 AM, gmhwxi gmh...@gmail.com wrote:

https://github.com/githwxi/ATS-Postiats-test/blob/master/contrib/hwxi/TEST10/palindrome3.dats

Thank’s a lot

Unfortunately, this kind of proof is always very hard to follow.

Entirely agree.
ATS/LF is so hard for me…

Thank’s,

Kiwamu Okabe at METASEPI DESIGN

–
You received this message because you are subscribed to the Google
Groups
“ats-lang-users” group.
To unsubscribe from this group and stop receiving emails from it, send
an
email to ats-lang...@googlegroups.com <javascript:>.
To post to this group, send email to ats-l...@googlegroups.com
<javascript:>.
Visit this group at http://groups.google.com/group/ats-lang-users.
To view this discussion on the web visit

https://groups.google.com/d/msgid/ats-lang-users/f32b2bad-b8e2-4f76-a329-964439a1ac8e%40googlegroups.com.

–
Brandon Barker
brand...@gmail.com <javascript:>

Brandon_Barker · May 29, 2015, 5:18pm

ATS/LF is so hard for me…

Is Coq easier for you

Well, complex proofs in ATS/LF are meant to be generated using tools.

I didn’t realize this - are there any examples currently, or this
more of a long-term goal?

Hi Hongwei,

https://github.com/githwxi/ATS-Postiats-test/blob/master/contrib/hwxi/TEST10/palindrome3.dats

Thank’s a lot

Unfortunately, this kind of proof is always very hard to follow.

Entirely agree.
ATS/LF is so hard for me…

Thank’s,

Kiwamu Okabe at METASEPI DESIGN

–
You received this message because you are subscribed to the Google Groups
“ats-lang-users” group.
To unsubscribe from this group and stop receiving emails from it, send an
email to ats-lang-user...@googlegroups.com.
To post to this group, send email to ats-lan...@googlegroups.com.
Visit this group at http://groups.google.com/group/ats-lang-users.
To view this discussion on the web visit
https://groups.google.com/d/msgid/ats-lang-users/f32b2bad-b8e2-4f76-a329-964439a1ac8e%40googlegroups.com.

Brandon Barker
brandon...@gmail.com

gmhwxi · June 9, 2015, 6:51am

Using ATS+Z3 is pretty much the same as using ATS alone.

The support for equality-based reasoning in Z3 is much
stronger than what the built-in constraint-solver in ATS can
provide. One has to give ATS+Z3 a try in order to get a feel for it.On Tue, Jun 9, 2015 at 2:38 AM, Kiwamu Okabe kiw...@debian.or.jp wrote:

Hi Hongwei,

On Tue, Jun 9, 2015 at 2:33 PM, gmhwxi gmh...@gmail.com wrote:

This one is done with Z3-based constraint-solving:

https://github.com/githwxi/ATS-Postiats-contrib/blob/master/projects/MEDIUM/ATS-extsolve-z3/TEST/palindrome.dats

I have not used ATS and Z3.
They show human readable error message?

Thank’s,

Kiwamu Okabe at METASEPI DESIGN

–
You received this message because you are subscribed to the Google Groups
“ats-lang-users” group.
To unsubscribe from this group and stop receiving emails from it, send an
email to ats-lang-user...@googlegroups.com.
To post to this group, send email to ats-lan...@googlegroups.com.
Visit this group at http://groups.google.com/group/ats-lang-users.
To view this discussion on the web visit
https://groups.google.com/d/msgid/ats-lang-users/CAEvX6dmBuOuET4oiC3w%2BJLnioSnWQNc0PQBf6GiHFCn9mMdcMQ%40mail.gmail.com
.

gmhwxi · May 24, 2015, 5:57pm

It is simple to express the theorem in ATS:

propdef PAL(xs: ilist) = REVERSE(xs, xs)

(* ****** ****** *)
//
extern
prfun
lemma_apprev_pal{xs,ys,zs:ilist}(REVERSE(xs, ys), APPEND(xs, ys, zs)): PAL(
zs)
//

However, it can be quite involved to prove it in ATS.

Essentially, you need the following lemmas and also make use of
lemma_nth_ilisteq.

sortdef elt = int

//
extern
prfun
mylemma1
{xs,xs2:ilist}{n:int}
(
LENGTH(xs, n), LENGTH(xs2, n),
fpf: {x:elt}{i:int}(NTH(x, xs, i) → NTH(x, xs2, n-1-i))
) : REVERSE (xs, xs2)
//
(* ****** ****** )
//
extern
prfun
mylemma_main
{xs,ys,zs:ilist}{n:int}
(
LENGTH(xs, n), REVERSE(xs, ys), APPEND(xs, ys, zs)
) : {z:elt}{i:int}(NTH(z, zs, i) → NTH(z, zs, 2n-1-i))
//

Personally, I do not see much to be gained by going through this exercise.
Of course, you get to learn more about typechecking in ATS, but that is
about it.On Sunday, May 24, 2015 at 8:00:33 AM UTC-4, Kiwamu Okabe wrote:

Hi Hongwei,

On Sun, May 24, 2015 at 10:08 AM, gmhwxi <gmh...@gmail.com <javascript:>> wrote:

Why don’t you use REVERSE and APPEND have already defined?

I could but doing so would take more time.

I encode the relationship of palindrome using REVERSE and APPEND, see
following:

https://github.com/jats-ug/practice-ats/blob/master/atslf_day/main.dats#L470
propdef PAL(xs: List) = REVERSE (xs, xs) 

extern prfn lemma_apprev_pal {xs,xs',ys:List} (REVERSE (xs, xs'), 
APPEND (xs, xs', ys)): PAL ys 
extern prfn lemma_rev_rev {xs,xs',xs'':List} (REVERSE (xs, xs'), 
REVERSE (xs', xs'')): List_Eq (xs, xs'') 
extern prfn lemma_rev_append {xs,ys,zs,xs',ys',zs',yxs':List} (APPEND 
(xs, ys, zs), REVERSE (xs, xs'), REVERSE (ys, ys'), REVERSE (zs, zs'), 
APPEND (ys', xs', yxs')): List_Eq (zs', yxs') 
extern praxi List_Eq_leibniz {xs,ys:List}{f:List->List} (List_Eq (xs, 
ys)): List_Eq (f(xs), f(ys)) 
Can I prove it? Or impossible expression?

Thank’s,

Kiwamu Okabe at METASEPI DESIGN

gmhwxi · June 6, 2015, 6:32pm

Here is a version that typechecks:

https://github.com/githwxi/ATS-Postiats-test/blob/master/contrib/hwxi/TEST10/palindrome4.datsOn Saturday, June 6, 2015 at 12:44:06 PM UTC-4, gmhwxi wrote:

l = cons(x, snoc(ll, x))

The system does not know that ll is a substructure of l
(and ll is indeed not considered a substructure of l).

In this case, you can do induction on the length of l.

At end, you also need to show that

REVERSE(ll, ll) implies REVERSE(l, l)

On Thursday, May 21, 2015 at 7:58:34 AM UTC-4, Kiwamu Okabe wrote:

Hi all,

I would like to shape palindrome on ATS/LF.

http://www.cis.upenn.edu/~bcpierce/sf/current/Prop.html#lab267

However, I think “datasort” can’t have any quantification.
Then I have following code:

dataprop List_l (int) =
| List_l_nil (0)
| {n:nat} List_l_cons (n+1) of (int, List_l (n))

prfun snoc_l {n:nat} .. (l: List_l (n), v: int):<> List_l (n+1) =
case+ l of
| List_l_nil () => List_l_cons (v, List_l_nil ())
| List_l_cons (h, t) => List_l_cons (h, snoc_l (t, v))

dataprop Palindrome (List_l (int)) =
| Pal_nil (Nil)
| {n:int} Pal_one (Cons (n, Nil))
| Pal_cons …

It’s hard to shape “Palindrome”…

How to shape palindrome on ATS/LF?

Thank’s,

Kiwamu Okabe at METASEPI DESIGN

gmhwxi · May 24, 2015, 1:37am

Why don’t you use REVERSE and APPEND have already defined?

I could but doing so would take more time.

A person doing theorem-proving in a system like Coq often gets distracted
as the focus is much more on low-level technical details than on the kind
of
high-level reasoning humans prefer.

I would like to use a concrete example to make this point much clearer.

In my encoding of the palindrome problem, both ‘rev’ and ‘append’ are
abstract.
Also, it can be readily noted that ‘append’ only needs to be applied to two
lists
of the same length (if xs and rev(xs) are assume to be of the same length).

This allows me have the following interpretation for ‘rev’ and ‘append’:

rev(xs) still means the reverse of xs
append(xs, ys) means the list consisting of the elements in xs and ys
appearing alternately.
For instance, if xs = 1,2,3,4 and ys = 5,6,7,8, then append(xs, ys) is
1,5,2,6,3,7,4,8.

Now we can check that the following lemma is still true under this new
interpretation of append:

extern
prfun
lemma_rev_append{xs,ys:ilist}
(
// argumentless
) : ILISTEQ(rev(append(xs, ys)), append(rev(ys), rev(xs)))

  So we still have that append(xs, rev(xs)) is a palindrome. In other

words, we have
“discovered” a new theorem:

Given a list xs, if you form a list in which elements of xs and rev(xs)
appear alternatively,
then this newly form list is a palindrome!

See:

let xs = 1,2,3,4; rev(xs) = 4,3,2,1; so append(xs, rev(xs)) =
1,4,2,3,3,2,4,1, which is
indeed a palindrome.

Yannick_Duchene · May 24, 2015, 7:34pm

[…]However, it can be quite involved to prove it in ATS.
[…]
Personally, I do not see much to be gained by going through this exercise.
Of course, you get to learn more about typechecking in ATS, but that is
about it.

I personally see something good to learn with this: this shows how Coq or
Isabelle on one hand, and ATS on the other hand, have different purposes in
the end, even if they share similarities.

Topic		Replies	Views
Weird Lemma In ATS Filter Function.b Google Group	7	510	August 8, 2015
Wording and interpretation: propositions, predicates and types Google Group	14	945	December 11, 2015
Compiles to c , but fails after that Google Group	5	359	January 9, 2014
ATS programing on ChibiOS/RT and Arduino Google Group	8	481	May 17, 2014
Defining new static terms of ullint values? Google Group	16	700	August 6, 2014

How to shape palindrome on ATS/LF?

Thank’s,

Thank’s,

Thank’s,

So hard…
Thank’s a lot,

So hard…
Thank’s a lot,

Thank’s,

Thank’s,

Thank’s a lot,

Thank’s,

Thank’s,

Thank’s,

Thank’s,

Thank’s,

Thank’s,

Thank’s,

Thank’s,

How to shape palindrome on ATS/LF?

Thank’s,

Thank’s,

Thank’s,

So hard… Thank’s a lot,

So hard… Thank’s a lot,

Thank’s,

Thank’s,

Thank’s a lot,

Thank’s,

Thank’s,

Thank’s,

Thank’s,

Thank’s,

Thank’s,

Thank’s,

Thank’s,

Related topics

So hard…
Thank’s a lot,

So hard…
Thank’s a lot,