Library stdpp.natmap
This files implements a type natmap A of finite maps whose keys range
over Coq's data type of unary natural numbers nat. The implementation equips
a list with a proof of canonicity.
From stdpp Require Import fin_maps mapset.
From stdpp Require Import options.
Notation natmap_raw A := (list (option A)).
Definition natmap_wf {A} (l : natmap_raw A) :=
match last l with None ⇒ True | Some x ⇒ is_Some x end.
Global Instance natmap_wf_pi {A} (l : natmap_raw A) : ProofIrrel (natmap_wf l).
Proof. unfold natmap_wf. case_match; apply _. Qed.
Lemma natmap_wf_inv {A} (o : option A) (l : natmap_raw A) :
natmap_wf (o :: l) → natmap_wf l.
Proof. by destruct l. Qed.
Lemma natmap_wf_lookup {A} (l : natmap_raw A) :
natmap_wf l → l ≠ [] → ∃ i x, mjoin (l !! i) = Some x.
Proof.
intros Hwf Hl. induction l as [|[x|] l IH]; simpl; [done| |].
{ ∃ 0. simpl. eauto. }
destruct IH as (i&x&?); eauto using natmap_wf_inv; [|by ∃ (S i), x].
intros →. by destruct Hwf.
Qed.
Record natmap (A : Type) : Type := NatMap {
natmap_car : natmap_raw A;
natmap_prf : natmap_wf natmap_car
}.
Global Arguments NatMap {_} _ _ : assert.
Global Arguments natmap_car {_} _ : assert.
Global Arguments natmap_prf {_} _ : assert.
Lemma natmap_eq {A} (m1 m2 : natmap A) :
m1 = m2 ↔ natmap_car m1 = natmap_car m2.
Proof.
split; [by intros ->|intros]; destruct m1 as [t1 ?], m2 as [t2 ?].
simplify_eq/=; f_equal; apply proof_irrel.
Qed.
Global Instance natmap_eq_dec `{EqDecision A} : EqDecision (natmap A) := λ m1 m2,
match decide (natmap_car m1 = natmap_car m2) with
| left H ⇒ left (proj2 (natmap_eq m1 m2) H)
| right H ⇒ right (H ∘ proj1 (natmap_eq m1 m2))
end.
Global Instance natmap_empty {A} : Empty (natmap A) := NatMap [] I.
Global Instance natmap_lookup {A} : Lookup nat A (natmap A) := λ i m,
let (l,_) := m in mjoin (l !! i).
Fixpoint natmap_singleton_raw {A} (i : nat) (x : A) : natmap_raw A :=
match i with 0 ⇒ [Some x]| S i ⇒ None :: natmap_singleton_raw i x end.
Lemma natmap_singleton_wf {A} (i : nat) (x : A) :
natmap_wf (natmap_singleton_raw i x).
Proof. unfold natmap_wf. induction i as [|[]]; simplify_eq/=; eauto. Qed.
Lemma natmap_lookup_singleton_raw {A} (i : nat) (x : A) :
mjoin (natmap_singleton_raw i x !! i) = Some x.
Proof. induction i; simpl; auto. Qed.
Lemma natmap_lookup_singleton_raw_ne {A} (i j : nat) (x : A) :
i ≠ j → mjoin (natmap_singleton_raw i x !! j) = None.
Proof. revert j; induction i; intros [|?]; simpl; auto with congruence. Qed.
Local Hint Rewrite @natmap_lookup_singleton_raw : natmap.
Definition natmap_cons_canon {A} (o : option A) (l : natmap_raw A) :=
match o, l with None, [] ⇒ [] | _, _ ⇒ o :: l end.
Lemma natmap_cons_canon_wf {A} (o : option A) (l : natmap_raw A) :
natmap_wf l → natmap_wf (natmap_cons_canon o l).
Proof. unfold natmap_wf, last. destruct o, l; simpl; eauto. Qed.
Lemma natmap_cons_canon_O {A} (o : option A) (l : natmap_raw A) :
mjoin (natmap_cons_canon o l !! 0) = o.
Proof. by destruct o, l. Qed.
Lemma natmap_cons_canon_S {A} (o : option A) (l : natmap_raw A) i :
natmap_cons_canon o l !! S i = l !! i.
Proof. by destruct o, l. Qed.
Local Hint Rewrite @natmap_cons_canon_O @natmap_cons_canon_S : natmap.
Definition natmap_partial_alter_raw {A} (f : option A → option A) :
nat → natmap_raw A → natmap_raw A :=
fix go i l {struct l} :=
match l with
| [] ⇒
match f None with
| Some x ⇒ natmap_singleton_raw i x | None ⇒ []
end
| o :: l ⇒
match i with
| 0 ⇒ natmap_cons_canon (f o) l | S i ⇒ natmap_cons_canon o (go i l)
end
end.
Lemma natmap_partial_alter_wf {A} (f : option A → option A) i l :
natmap_wf l → natmap_wf (natmap_partial_alter_raw f i l).
Proof.
revert i. induction l; [intro | intros [|?]]; simpl; repeat case_match;
eauto using natmap_singleton_wf, natmap_cons_canon_wf, natmap_wf_inv.
Qed.
Global Instance natmap_partial_alter {A} : PartialAlter nat A (natmap A) := λ f i m,
let (l,Hl) := m in NatMap _ (natmap_partial_alter_wf f i l Hl).
Lemma natmap_lookup_partial_alter_raw {A} (f : option A → option A) i l :
mjoin (natmap_partial_alter_raw f i l !! i) = f (mjoin (l !! i)).
Proof.
revert i. induction l; intros [|?]; simpl; repeat case_match; simpl;
autorewrite with natmap; auto.
Qed.
Lemma natmap_lookup_partial_alter_raw_ne {A} (f : option A → option A) i j l :
i ≠ j → mjoin (natmap_partial_alter_raw f i l !! j) = mjoin (l !! j).
Proof.
revert i j. induction l; intros [|?] [|?] ?; simpl;
repeat case_match; simpl; autorewrite with natmap; auto with congruence.
rewrite natmap_lookup_singleton_raw_ne; congruence.
Qed.
Definition natmap_omap_raw {A B} (f : A → option B) :
natmap_raw A → natmap_raw B :=
fix go l :=
match l with [] ⇒ [] | o :: l ⇒ natmap_cons_canon (o ≫= f) (go l) end.
Lemma natmap_omap_raw_wf {A B} (f : A → option B) l :
natmap_wf l → natmap_wf (natmap_omap_raw f l).
Proof. induction l; simpl; eauto using natmap_cons_canon_wf, natmap_wf_inv. Qed.
Lemma natmap_lookup_omap_raw {A B} (f : A → option B) l i :
mjoin (natmap_omap_raw f l !! i) = mjoin (l !! i) ≫= f.
Proof.
revert i. induction l; intros [|?]; simpl; autorewrite with natmap; auto.
Qed.
Local Hint Rewrite @natmap_lookup_omap_raw : natmap.
Global Instance natmap_omap: OMap natmap := λ A B f m,
let (l,Hl) := m in NatMap _ (natmap_omap_raw_wf f _ Hl).
Definition natmap_merge_raw {A B C} (f : option A → option B → option C) :
natmap_raw A → natmap_raw B → natmap_raw C :=
fix go l1 l2 :=
match l1, l2 with
| [], l2 ⇒ natmap_omap_raw (f None ∘ Some) l2
| l1, [] ⇒ natmap_omap_raw (flip f None ∘ Some) l1
| o1 :: l1, o2 :: l2 ⇒ natmap_cons_canon (diag_None f o1 o2) (go l1 l2)
end.
Lemma natmap_merge_wf {A B C} (f : option A → option B → option C) l1 l2 :
natmap_wf l1 → natmap_wf l2 → natmap_wf (natmap_merge_raw f l1 l2).
Proof.
revert l2. induction l1; intros [|??]; simpl;
eauto using natmap_omap_raw_wf, natmap_cons_canon_wf, natmap_wf_inv.
Qed.
Lemma natmap_lookup_merge_raw {A B C} (f : option A → option B → option C) l1 l2 i :
mjoin (natmap_merge_raw f l1 l2 !! i) = diag_None f (mjoin (l1 !! i)) (mjoin (l2 !! i)).
Proof.
intros. revert i l2. induction l1; intros [|?] [|??]; simpl;
autorewrite with natmap; auto;
match goal with |- context [?o ≫= _] ⇒ by destruct o end.
Qed.
Global Instance natmap_merge: Merge natmap := λ A B C f m1 m2,
let (l1, Hl1) := m1 in let (l2, Hl2) := m2 in
NatMap (natmap_merge_raw f l1 l2) (natmap_merge_wf _ _ _ Hl1 Hl2).
Fixpoint natmap_fold_raw {A B} (f : nat → A → B → B)
(j : nat) (d : B) (l : natmap_raw A) : B :=
match l with
| [] ⇒ d
| mx :: l ⇒ natmap_fold_raw f (S j)
match mx with Some x ⇒ f j x d | None ⇒ d end l
end.
Lemma natmap_fold_raw_ind {A B} (P : B → natmap_raw A → Prop)
(f : nat → A → B → B) j (b : B) :
P b [] →
(∀ i x l b',
natmap_wf l → mjoin (l !! i) = None → P b' l →
P (f (i + j) x b') (natmap_partial_alter_raw (λ _, Some x) i l)) →
∀ l, natmap_wf l → P (natmap_fold_raw f j b l) l.
Proof.
intros Hemp Hinsert l Hl. revert P b j Hemp Hinsert.
induction l as [|mx l IH]; intros P b j Hemp Hinsert; simpl in *; [done|].
assert (natmap_wf l) as Hl' by (by destruct l).
replace (mx :: l) with (natmap_cons_canon mx l)
by (destruct mx, l; done || by destruct Hl).
apply (IH Hl' (λ r l, P r (natmap_cons_canon mx l)) _ (S j)).
{ destruct mx as [x|]; [|done].
change (natmap_cons_canon (Some x) [])
with (natmap_partial_alter_raw (λ _, Some x) 0 []).
by apply (Hinsert 0). }
intros i x l' b' ??. rewrite <-Nat.add_succ_comm.
replace (natmap_cons_canon mx (natmap_partial_alter_raw (λ _, Some x) i l'))
with (natmap_partial_alter_raw (λ _, Some x) (S i) (natmap_cons_canon mx l'))
by (by destruct i, mx, l').
apply Hinsert; [by apply natmap_cons_canon_wf|by destruct mx, l'].
Qed.
Global Instance natmap_fold {A} : MapFold nat A (natmap A) := λ B f d m,
let (l,_) := m in natmap_fold_raw f 0 d l.
Definition natmap_fmap_raw {A B} (f : A → B) : natmap_raw A → natmap_raw B :=
fmap (fmap (M:=option) f).
Lemma natmap_fmap_wf {A B} (f : A → B) l :
natmap_wf l → natmap_wf (natmap_fmap_raw f l).
Proof.
unfold natmap_fmap_raw, natmap_wf. rewrite fmap_last.
destruct (last l); [|done]. by apply fmap_is_Some.
Qed.
Lemma natmap_lookup_fmap_raw {A B} (f : A → B) i l :
mjoin (natmap_fmap_raw f l !! i) = f <$> mjoin (l !! i).
Proof.
unfold natmap_fmap_raw. rewrite list_lookup_fmap. by destruct (l !! i).
Qed.
Global Instance natmap_fmap : FMap natmap := λ A B f m,
let (l,Hl) := m in NatMap (natmap_fmap_raw f l) (natmap_fmap_wf _ _ Hl).
Global Instance natmap_map : FinMap nat natmap.
Proof.
split.
- unfold lookup, natmap_lookup. intros A [l1 Hl1] [l2 Hl2] E.
apply natmap_eq. revert l2 Hl1 Hl2 E. simpl.
induction l1 as [|[x|] l1 IH]; intros [|[y|] l2] Hl1 Hl2 E; simpl in ×.
+ done.
+ by specialize (E 0).
+ destruct (natmap_wf_lookup (None :: l2)) as (i&?&?); auto with congruence.
+ by specialize (E 0).
+ f_equal.
× apply (E 0).
× apply IH; eauto using natmap_wf_inv.
intros i. apply (E (S i)).
+ by specialize (E 0).
+ destruct (natmap_wf_lookup (None :: l1)) as (i&?&?); auto with congruence.
+ by specialize (E 0).
+ f_equal. apply IH; eauto using natmap_wf_inv. intros i. apply (E (S i)).
- done.
- intros ?? [??] ?. apply natmap_lookup_partial_alter_raw.
- intros ?? [??] ??. apply natmap_lookup_partial_alter_raw_ne.
- intros ??? [??] ?. apply natmap_lookup_fmap_raw.
- intros ??? [??] ?. by apply natmap_lookup_omap_raw.
- intros ???? [??] [??] ?. apply natmap_lookup_merge_raw.
- intros A B P f b Hemp Hinsert [l Hl]. refine (natmap_fold_raw_ind
(λ r l, ∀ Hl, P r (NatMap l Hl)) f 0 b _ _ l Hl Hl); clear l Hl.
{ intros Hl.
by replace (NatMap _ Hl) with (∅ : natmap A) by (by apply natmap_eq). }
intros i x l r Hl ? H Hxl. rewrite Nat.add_0_r.
replace (NatMap _ Hxl) with (<[i:=x]> (NatMap _ Hl)) by (by apply natmap_eq).
by apply Hinsert.
Qed.
Fixpoint strip_Nones {A} (l : list (option A)) : list (option A) :=
match l with None :: l ⇒ strip_Nones l | _ ⇒ l end.
Lemma list_to_natmap_wf {A} (l : list (option A)) :
natmap_wf (reverse (strip_Nones (reverse l))).
Proof.
unfold natmap_wf. rewrite last_reverse.
induction (reverse l) as [|[]]; simpl; eauto.
Qed.
Definition list_to_natmap {A} (l : list (option A)) : natmap A :=
NatMap (reverse (strip_Nones (reverse l))) (list_to_natmap_wf l).
Lemma list_to_natmap_spec {A} (l : list (option A)) i :
list_to_natmap l !! i = mjoin (l !! i).
Proof.
unfold lookup at 1, natmap_lookup, list_to_natmap; simpl.
rewrite <-(reverse_involutive l) at 2. revert i.
induction (reverse l) as [|[x|] l' IH]; intros i; simpl; auto.
rewrite reverse_cons, IH. clear IH. revert i.
induction (reverse l'); intros [|?]; simpl; auto.
Qed.
From stdpp Require Import options.
Notation natmap_raw A := (list (option A)).
Definition natmap_wf {A} (l : natmap_raw A) :=
match last l with None ⇒ True | Some x ⇒ is_Some x end.
Global Instance natmap_wf_pi {A} (l : natmap_raw A) : ProofIrrel (natmap_wf l).
Proof. unfold natmap_wf. case_match; apply _. Qed.
Lemma natmap_wf_inv {A} (o : option A) (l : natmap_raw A) :
natmap_wf (o :: l) → natmap_wf l.
Proof. by destruct l. Qed.
Lemma natmap_wf_lookup {A} (l : natmap_raw A) :
natmap_wf l → l ≠ [] → ∃ i x, mjoin (l !! i) = Some x.
Proof.
intros Hwf Hl. induction l as [|[x|] l IH]; simpl; [done| |].
{ ∃ 0. simpl. eauto. }
destruct IH as (i&x&?); eauto using natmap_wf_inv; [|by ∃ (S i), x].
intros →. by destruct Hwf.
Qed.
Record natmap (A : Type) : Type := NatMap {
natmap_car : natmap_raw A;
natmap_prf : natmap_wf natmap_car
}.
Global Arguments NatMap {_} _ _ : assert.
Global Arguments natmap_car {_} _ : assert.
Global Arguments natmap_prf {_} _ : assert.
Lemma natmap_eq {A} (m1 m2 : natmap A) :
m1 = m2 ↔ natmap_car m1 = natmap_car m2.
Proof.
split; [by intros ->|intros]; destruct m1 as [t1 ?], m2 as [t2 ?].
simplify_eq/=; f_equal; apply proof_irrel.
Qed.
Global Instance natmap_eq_dec `{EqDecision A} : EqDecision (natmap A) := λ m1 m2,
match decide (natmap_car m1 = natmap_car m2) with
| left H ⇒ left (proj2 (natmap_eq m1 m2) H)
| right H ⇒ right (H ∘ proj1 (natmap_eq m1 m2))
end.
Global Instance natmap_empty {A} : Empty (natmap A) := NatMap [] I.
Global Instance natmap_lookup {A} : Lookup nat A (natmap A) := λ i m,
let (l,_) := m in mjoin (l !! i).
Fixpoint natmap_singleton_raw {A} (i : nat) (x : A) : natmap_raw A :=
match i with 0 ⇒ [Some x]| S i ⇒ None :: natmap_singleton_raw i x end.
Lemma natmap_singleton_wf {A} (i : nat) (x : A) :
natmap_wf (natmap_singleton_raw i x).
Proof. unfold natmap_wf. induction i as [|[]]; simplify_eq/=; eauto. Qed.
Lemma natmap_lookup_singleton_raw {A} (i : nat) (x : A) :
mjoin (natmap_singleton_raw i x !! i) = Some x.
Proof. induction i; simpl; auto. Qed.
Lemma natmap_lookup_singleton_raw_ne {A} (i j : nat) (x : A) :
i ≠ j → mjoin (natmap_singleton_raw i x !! j) = None.
Proof. revert j; induction i; intros [|?]; simpl; auto with congruence. Qed.
Local Hint Rewrite @natmap_lookup_singleton_raw : natmap.
Definition natmap_cons_canon {A} (o : option A) (l : natmap_raw A) :=
match o, l with None, [] ⇒ [] | _, _ ⇒ o :: l end.
Lemma natmap_cons_canon_wf {A} (o : option A) (l : natmap_raw A) :
natmap_wf l → natmap_wf (natmap_cons_canon o l).
Proof. unfold natmap_wf, last. destruct o, l; simpl; eauto. Qed.
Lemma natmap_cons_canon_O {A} (o : option A) (l : natmap_raw A) :
mjoin (natmap_cons_canon o l !! 0) = o.
Proof. by destruct o, l. Qed.
Lemma natmap_cons_canon_S {A} (o : option A) (l : natmap_raw A) i :
natmap_cons_canon o l !! S i = l !! i.
Proof. by destruct o, l. Qed.
Local Hint Rewrite @natmap_cons_canon_O @natmap_cons_canon_S : natmap.
Definition natmap_partial_alter_raw {A} (f : option A → option A) :
nat → natmap_raw A → natmap_raw A :=
fix go i l {struct l} :=
match l with
| [] ⇒
match f None with
| Some x ⇒ natmap_singleton_raw i x | None ⇒ []
end
| o :: l ⇒
match i with
| 0 ⇒ natmap_cons_canon (f o) l | S i ⇒ natmap_cons_canon o (go i l)
end
end.
Lemma natmap_partial_alter_wf {A} (f : option A → option A) i l :
natmap_wf l → natmap_wf (natmap_partial_alter_raw f i l).
Proof.
revert i. induction l; [intro | intros [|?]]; simpl; repeat case_match;
eauto using natmap_singleton_wf, natmap_cons_canon_wf, natmap_wf_inv.
Qed.
Global Instance natmap_partial_alter {A} : PartialAlter nat A (natmap A) := λ f i m,
let (l,Hl) := m in NatMap _ (natmap_partial_alter_wf f i l Hl).
Lemma natmap_lookup_partial_alter_raw {A} (f : option A → option A) i l :
mjoin (natmap_partial_alter_raw f i l !! i) = f (mjoin (l !! i)).
Proof.
revert i. induction l; intros [|?]; simpl; repeat case_match; simpl;
autorewrite with natmap; auto.
Qed.
Lemma natmap_lookup_partial_alter_raw_ne {A} (f : option A → option A) i j l :
i ≠ j → mjoin (natmap_partial_alter_raw f i l !! j) = mjoin (l !! j).
Proof.
revert i j. induction l; intros [|?] [|?] ?; simpl;
repeat case_match; simpl; autorewrite with natmap; auto with congruence.
rewrite natmap_lookup_singleton_raw_ne; congruence.
Qed.
Definition natmap_omap_raw {A B} (f : A → option B) :
natmap_raw A → natmap_raw B :=
fix go l :=
match l with [] ⇒ [] | o :: l ⇒ natmap_cons_canon (o ≫= f) (go l) end.
Lemma natmap_omap_raw_wf {A B} (f : A → option B) l :
natmap_wf l → natmap_wf (natmap_omap_raw f l).
Proof. induction l; simpl; eauto using natmap_cons_canon_wf, natmap_wf_inv. Qed.
Lemma natmap_lookup_omap_raw {A B} (f : A → option B) l i :
mjoin (natmap_omap_raw f l !! i) = mjoin (l !! i) ≫= f.
Proof.
revert i. induction l; intros [|?]; simpl; autorewrite with natmap; auto.
Qed.
Local Hint Rewrite @natmap_lookup_omap_raw : natmap.
Global Instance natmap_omap: OMap natmap := λ A B f m,
let (l,Hl) := m in NatMap _ (natmap_omap_raw_wf f _ Hl).
Definition natmap_merge_raw {A B C} (f : option A → option B → option C) :
natmap_raw A → natmap_raw B → natmap_raw C :=
fix go l1 l2 :=
match l1, l2 with
| [], l2 ⇒ natmap_omap_raw (f None ∘ Some) l2
| l1, [] ⇒ natmap_omap_raw (flip f None ∘ Some) l1
| o1 :: l1, o2 :: l2 ⇒ natmap_cons_canon (diag_None f o1 o2) (go l1 l2)
end.
Lemma natmap_merge_wf {A B C} (f : option A → option B → option C) l1 l2 :
natmap_wf l1 → natmap_wf l2 → natmap_wf (natmap_merge_raw f l1 l2).
Proof.
revert l2. induction l1; intros [|??]; simpl;
eauto using natmap_omap_raw_wf, natmap_cons_canon_wf, natmap_wf_inv.
Qed.
Lemma natmap_lookup_merge_raw {A B C} (f : option A → option B → option C) l1 l2 i :
mjoin (natmap_merge_raw f l1 l2 !! i) = diag_None f (mjoin (l1 !! i)) (mjoin (l2 !! i)).
Proof.
intros. revert i l2. induction l1; intros [|?] [|??]; simpl;
autorewrite with natmap; auto;
match goal with |- context [?o ≫= _] ⇒ by destruct o end.
Qed.
Global Instance natmap_merge: Merge natmap := λ A B C f m1 m2,
let (l1, Hl1) := m1 in let (l2, Hl2) := m2 in
NatMap (natmap_merge_raw f l1 l2) (natmap_merge_wf _ _ _ Hl1 Hl2).
Fixpoint natmap_fold_raw {A B} (f : nat → A → B → B)
(j : nat) (d : B) (l : natmap_raw A) : B :=
match l with
| [] ⇒ d
| mx :: l ⇒ natmap_fold_raw f (S j)
match mx with Some x ⇒ f j x d | None ⇒ d end l
end.
Lemma natmap_fold_raw_ind {A B} (P : B → natmap_raw A → Prop)
(f : nat → A → B → B) j (b : B) :
P b [] →
(∀ i x l b',
natmap_wf l → mjoin (l !! i) = None → P b' l →
P (f (i + j) x b') (natmap_partial_alter_raw (λ _, Some x) i l)) →
∀ l, natmap_wf l → P (natmap_fold_raw f j b l) l.
Proof.
intros Hemp Hinsert l Hl. revert P b j Hemp Hinsert.
induction l as [|mx l IH]; intros P b j Hemp Hinsert; simpl in *; [done|].
assert (natmap_wf l) as Hl' by (by destruct l).
replace (mx :: l) with (natmap_cons_canon mx l)
by (destruct mx, l; done || by destruct Hl).
apply (IH Hl' (λ r l, P r (natmap_cons_canon mx l)) _ (S j)).
{ destruct mx as [x|]; [|done].
change (natmap_cons_canon (Some x) [])
with (natmap_partial_alter_raw (λ _, Some x) 0 []).
by apply (Hinsert 0). }
intros i x l' b' ??. rewrite <-Nat.add_succ_comm.
replace (natmap_cons_canon mx (natmap_partial_alter_raw (λ _, Some x) i l'))
with (natmap_partial_alter_raw (λ _, Some x) (S i) (natmap_cons_canon mx l'))
by (by destruct i, mx, l').
apply Hinsert; [by apply natmap_cons_canon_wf|by destruct mx, l'].
Qed.
Global Instance natmap_fold {A} : MapFold nat A (natmap A) := λ B f d m,
let (l,_) := m in natmap_fold_raw f 0 d l.
Definition natmap_fmap_raw {A B} (f : A → B) : natmap_raw A → natmap_raw B :=
fmap (fmap (M:=option) f).
Lemma natmap_fmap_wf {A B} (f : A → B) l :
natmap_wf l → natmap_wf (natmap_fmap_raw f l).
Proof.
unfold natmap_fmap_raw, natmap_wf. rewrite fmap_last.
destruct (last l); [|done]. by apply fmap_is_Some.
Qed.
Lemma natmap_lookup_fmap_raw {A B} (f : A → B) i l :
mjoin (natmap_fmap_raw f l !! i) = f <$> mjoin (l !! i).
Proof.
unfold natmap_fmap_raw. rewrite list_lookup_fmap. by destruct (l !! i).
Qed.
Global Instance natmap_fmap : FMap natmap := λ A B f m,
let (l,Hl) := m in NatMap (natmap_fmap_raw f l) (natmap_fmap_wf _ _ Hl).
Global Instance natmap_map : FinMap nat natmap.
Proof.
split.
- unfold lookup, natmap_lookup. intros A [l1 Hl1] [l2 Hl2] E.
apply natmap_eq. revert l2 Hl1 Hl2 E. simpl.
induction l1 as [|[x|] l1 IH]; intros [|[y|] l2] Hl1 Hl2 E; simpl in ×.
+ done.
+ by specialize (E 0).
+ destruct (natmap_wf_lookup (None :: l2)) as (i&?&?); auto with congruence.
+ by specialize (E 0).
+ f_equal.
× apply (E 0).
× apply IH; eauto using natmap_wf_inv.
intros i. apply (E (S i)).
+ by specialize (E 0).
+ destruct (natmap_wf_lookup (None :: l1)) as (i&?&?); auto with congruence.
+ by specialize (E 0).
+ f_equal. apply IH; eauto using natmap_wf_inv. intros i. apply (E (S i)).
- done.
- intros ?? [??] ?. apply natmap_lookup_partial_alter_raw.
- intros ?? [??] ??. apply natmap_lookup_partial_alter_raw_ne.
- intros ??? [??] ?. apply natmap_lookup_fmap_raw.
- intros ??? [??] ?. by apply natmap_lookup_omap_raw.
- intros ???? [??] [??] ?. apply natmap_lookup_merge_raw.
- intros A B P f b Hemp Hinsert [l Hl]. refine (natmap_fold_raw_ind
(λ r l, ∀ Hl, P r (NatMap l Hl)) f 0 b _ _ l Hl Hl); clear l Hl.
{ intros Hl.
by replace (NatMap _ Hl) with (∅ : natmap A) by (by apply natmap_eq). }
intros i x l r Hl ? H Hxl. rewrite Nat.add_0_r.
replace (NatMap _ Hxl) with (<[i:=x]> (NatMap _ Hl)) by (by apply natmap_eq).
by apply Hinsert.
Qed.
Fixpoint strip_Nones {A} (l : list (option A)) : list (option A) :=
match l with None :: l ⇒ strip_Nones l | _ ⇒ l end.
Lemma list_to_natmap_wf {A} (l : list (option A)) :
natmap_wf (reverse (strip_Nones (reverse l))).
Proof.
unfold natmap_wf. rewrite last_reverse.
induction (reverse l) as [|[]]; simpl; eauto.
Qed.
Definition list_to_natmap {A} (l : list (option A)) : natmap A :=
NatMap (reverse (strip_Nones (reverse l))) (list_to_natmap_wf l).
Lemma list_to_natmap_spec {A} (l : list (option A)) i :
list_to_natmap l !! i = mjoin (l !! i).
Proof.
unfold lookup at 1, natmap_lookup, list_to_natmap; simpl.
rewrite <-(reverse_involutive l) at 2. revert i.
induction (reverse l) as [|[x|] l' IH]; intros i; simpl; auto.
rewrite reverse_cons, IH. clear IH. revert i.
induction (reverse l'); intros [|?]; simpl; auto.
Qed.
Finally, we can construct sets of nats satisfying extensional equality.
Notation natset := (mapset natmap).
Global Instance natmap_dom {A} : Dom (natmap A) natset := mapset_dom.
Global Instance: FinMapDom nat natmap natset := mapset_dom_spec.
Definition bools_to_natset (βs : list bool) : natset :=
let f (β : bool) := if β then Some () else None in
Mapset $ list_to_natmap $ f <$> βs.
Definition natset_to_bools (sz : nat) (X : natset) : list bool :=
let f (mu : option ()) := match mu with Some _ ⇒ true | None ⇒ false end in
resize sz false $ f <$> natmap_car (mapset_car X).
Lemma bools_to_natset_unfold βs :
let f (β : bool) := if β then Some () else None in
bools_to_natset βs = Mapset $ list_to_natmap $ f <$> βs.
Proof. by destruct βs. Qed.
Lemma elem_of_bools_to_natset βs i : i ∈ bools_to_natset βs ↔ βs !! i = Some true.
Proof.
rewrite bools_to_natset_unfold; unfold elem_of, mapset_elem_of; simpl.
rewrite list_to_natmap_spec, list_lookup_fmap.
destruct (βs !! i) as [[]|]; compute; intuition congruence.
Qed.
Lemma bools_to_natset_union βs1 βs2 :
length βs1 = length βs2 →
bools_to_natset (βs1 ||* βs2) = bools_to_natset βs1 ∪ bools_to_natset βs2.
Proof.
rewrite <-Forall2_same_length; intros Hβs.
apply set_eq. intros i. rewrite elem_of_union, !elem_of_bools_to_natset.
revert i. induction Hβs as [|[] []]; intros [|?]; naive_solver.
Qed.
Lemma natset_to_bools_length (X : natset) sz : length (natset_to_bools sz X) = sz.
Proof. apply resize_length. Qed.
Lemma lookup_natset_to_bools_ge sz X i : sz ≤ i → natset_to_bools sz X !! i = None.
Proof. by apply lookup_resize_old. Qed.
Lemma lookup_natset_to_bools sz X i β :
i < sz → natset_to_bools sz X !! i = Some β ↔ (i ∈ X ↔ β = true).
Proof.
unfold natset_to_bools, elem_of, mapset_elem_of, lookup at 2, natmap_lookup; simpl.
intros. destruct (mapset_car X) as [l ?]; simpl.
destruct (l !! i) as [mu|] eqn:Hmu; simpl.
{ rewrite lookup_resize, list_lookup_fmap, Hmu
by (rewrite ?fmap_length; eauto using lookup_lt_Some).
destruct mu as [[]|], β; simpl; intuition congruence. }
rewrite lookup_resize_new by (rewrite ?fmap_length;
eauto using lookup_ge_None_1); destruct β; intuition congruence.
Qed.
Lemma lookup_natset_to_bools_true sz X i :
i < sz → natset_to_bools sz X !! i = Some true ↔ i ∈ X.
Proof. intros. rewrite lookup_natset_to_bools by done. intuition. Qed.
Lemma lookup_natset_to_bools_false sz X i :
i < sz → natset_to_bools sz X !! i = Some false ↔ i ∉ X.
Proof. intros. rewrite lookup_natset_to_bools by done. naive_solver. Qed.
Lemma natset_to_bools_union sz X1 X2 :
natset_to_bools sz (X1 ∪ X2) = natset_to_bools sz X1 ||* natset_to_bools sz X2.
Proof.
apply list_eq; intros i; rewrite lookup_zip_with.
destruct (decide (i < sz)); [|by rewrite !lookup_natset_to_bools_ge by lia].
apply option_eq; intros β.
rewrite lookup_natset_to_bools, elem_of_union by done; intros.
destruct (decide (i ∈ X1)), (decide (i ∈ X2)); repeat first
[ rewrite (λ X H, proj2 (lookup_natset_to_bools_true sz X i H)) by done
| rewrite (λ X H, proj2 (lookup_natset_to_bools_false sz X i H)) by done];
destruct β; naive_solver.
Qed.
Lemma natset_to_bools_to_natset βs sz :
natset_to_bools sz (bools_to_natset βs) = resize sz false βs.
Proof.
apply list_eq; intros i. destruct (decide (i < sz));
[|by rewrite lookup_natset_to_bools_ge, lookup_resize_old by lia].
apply option_eq; intros β.
rewrite lookup_natset_to_bools, elem_of_bools_to_natset by done.
destruct (decide (i < length βs)).
{ rewrite lookup_resize by done.
destruct (lookup_lt_is_Some_2 βs i) as [[]]; destruct β; naive_solver. }
rewrite lookup_resize_new, lookup_ge_None_2 by lia. destruct β; naive_solver.
Qed.
Global Instance natmap_dom {A} : Dom (natmap A) natset := mapset_dom.
Global Instance: FinMapDom nat natmap natset := mapset_dom_spec.
Definition bools_to_natset (βs : list bool) : natset :=
let f (β : bool) := if β then Some () else None in
Mapset $ list_to_natmap $ f <$> βs.
Definition natset_to_bools (sz : nat) (X : natset) : list bool :=
let f (mu : option ()) := match mu with Some _ ⇒ true | None ⇒ false end in
resize sz false $ f <$> natmap_car (mapset_car X).
Lemma bools_to_natset_unfold βs :
let f (β : bool) := if β then Some () else None in
bools_to_natset βs = Mapset $ list_to_natmap $ f <$> βs.
Proof. by destruct βs. Qed.
Lemma elem_of_bools_to_natset βs i : i ∈ bools_to_natset βs ↔ βs !! i = Some true.
Proof.
rewrite bools_to_natset_unfold; unfold elem_of, mapset_elem_of; simpl.
rewrite list_to_natmap_spec, list_lookup_fmap.
destruct (βs !! i) as [[]|]; compute; intuition congruence.
Qed.
Lemma bools_to_natset_union βs1 βs2 :
length βs1 = length βs2 →
bools_to_natset (βs1 ||* βs2) = bools_to_natset βs1 ∪ bools_to_natset βs2.
Proof.
rewrite <-Forall2_same_length; intros Hβs.
apply set_eq. intros i. rewrite elem_of_union, !elem_of_bools_to_natset.
revert i. induction Hβs as [|[] []]; intros [|?]; naive_solver.
Qed.
Lemma natset_to_bools_length (X : natset) sz : length (natset_to_bools sz X) = sz.
Proof. apply resize_length. Qed.
Lemma lookup_natset_to_bools_ge sz X i : sz ≤ i → natset_to_bools sz X !! i = None.
Proof. by apply lookup_resize_old. Qed.
Lemma lookup_natset_to_bools sz X i β :
i < sz → natset_to_bools sz X !! i = Some β ↔ (i ∈ X ↔ β = true).
Proof.
unfold natset_to_bools, elem_of, mapset_elem_of, lookup at 2, natmap_lookup; simpl.
intros. destruct (mapset_car X) as [l ?]; simpl.
destruct (l !! i) as [mu|] eqn:Hmu; simpl.
{ rewrite lookup_resize, list_lookup_fmap, Hmu
by (rewrite ?fmap_length; eauto using lookup_lt_Some).
destruct mu as [[]|], β; simpl; intuition congruence. }
rewrite lookup_resize_new by (rewrite ?fmap_length;
eauto using lookup_ge_None_1); destruct β; intuition congruence.
Qed.
Lemma lookup_natset_to_bools_true sz X i :
i < sz → natset_to_bools sz X !! i = Some true ↔ i ∈ X.
Proof. intros. rewrite lookup_natset_to_bools by done. intuition. Qed.
Lemma lookup_natset_to_bools_false sz X i :
i < sz → natset_to_bools sz X !! i = Some false ↔ i ∉ X.
Proof. intros. rewrite lookup_natset_to_bools by done. naive_solver. Qed.
Lemma natset_to_bools_union sz X1 X2 :
natset_to_bools sz (X1 ∪ X2) = natset_to_bools sz X1 ||* natset_to_bools sz X2.
Proof.
apply list_eq; intros i; rewrite lookup_zip_with.
destruct (decide (i < sz)); [|by rewrite !lookup_natset_to_bools_ge by lia].
apply option_eq; intros β.
rewrite lookup_natset_to_bools, elem_of_union by done; intros.
destruct (decide (i ∈ X1)), (decide (i ∈ X2)); repeat first
[ rewrite (λ X H, proj2 (lookup_natset_to_bools_true sz X i H)) by done
| rewrite (λ X H, proj2 (lookup_natset_to_bools_false sz X i H)) by done];
destruct β; naive_solver.
Qed.
Lemma natset_to_bools_to_natset βs sz :
natset_to_bools sz (bools_to_natset βs) = resize sz false βs.
Proof.
apply list_eq; intros i. destruct (decide (i < sz));
[|by rewrite lookup_natset_to_bools_ge, lookup_resize_old by lia].
apply option_eq; intros β.
rewrite lookup_natset_to_bools, elem_of_bools_to_natset by done.
destruct (decide (i < length βs)).
{ rewrite lookup_resize by done.
destruct (lookup_lt_is_Some_2 βs i) as [[]]; destruct β; naive_solver. }
rewrite lookup_resize_new, lookup_ge_None_2 by lia. destruct β; naive_solver.
Qed.
Definition natmap_push {A} (o : option A) (m : natmap A) : natmap A :=
let (l,Hl) := m in NatMap _ (natmap_cons_canon_wf o l Hl).
Definition natmap_pop_raw {A} (l : natmap_raw A) : natmap_raw A := tail l.
Lemma natmap_pop_wf {A} (l : natmap_raw A) :
natmap_wf l → natmap_wf (natmap_pop_raw l).
Proof. destruct l; simpl; eauto using natmap_wf_inv. Qed.
Definition natmap_pop {A} (m : natmap A) : natmap A :=
let (l,Hl) := m in NatMap _ (natmap_pop_wf _ Hl).
Lemma lookup_natmap_push_O {A} o (m : natmap A) : natmap_push o m !! 0 = o.
Proof. by destruct o, m as [[|??]]. Qed.
Lemma lookup_natmap_push_S {A} o (m : natmap A) i :
natmap_push o m !! S i = m !! i.
Proof. by destruct o, m as [[|??]]. Qed.
Lemma lookup_natmap_pop {A} (m : natmap A) i : natmap_pop m !! i = m !! S i.
Proof. by destruct m as [[|??]]. Qed.
Lemma natmap_push_pop {A} (m : natmap A) :
natmap_push (m !! 0) (natmap_pop m) = m.
Proof.
apply map_eq. intros i. destruct i.
- by rewrite lookup_natmap_push_O.
- by rewrite lookup_natmap_push_S, lookup_natmap_pop.
Qed.
Lemma natmap_pop_push {A} o (m : natmap A) : natmap_pop (natmap_push o m) = m.
Proof. apply natmap_eq. by destruct o, m as [[|??]]. Qed.
let (l,Hl) := m in NatMap _ (natmap_cons_canon_wf o l Hl).
Definition natmap_pop_raw {A} (l : natmap_raw A) : natmap_raw A := tail l.
Lemma natmap_pop_wf {A} (l : natmap_raw A) :
natmap_wf l → natmap_wf (natmap_pop_raw l).
Proof. destruct l; simpl; eauto using natmap_wf_inv. Qed.
Definition natmap_pop {A} (m : natmap A) : natmap A :=
let (l,Hl) := m in NatMap _ (natmap_pop_wf _ Hl).
Lemma lookup_natmap_push_O {A} o (m : natmap A) : natmap_push o m !! 0 = o.
Proof. by destruct o, m as [[|??]]. Qed.
Lemma lookup_natmap_push_S {A} o (m : natmap A) i :
natmap_push o m !! S i = m !! i.
Proof. by destruct o, m as [[|??]]. Qed.
Lemma lookup_natmap_pop {A} (m : natmap A) i : natmap_pop m !! i = m !! S i.
Proof. by destruct m as [[|??]]. Qed.
Lemma natmap_push_pop {A} (m : natmap A) :
natmap_push (m !! 0) (natmap_pop m) = m.
Proof.
apply map_eq. intros i. destruct i.
- by rewrite lookup_natmap_push_O.
- by rewrite lookup_natmap_push_S, lookup_natmap_pop.
Qed.
Lemma natmap_pop_push {A} o (m : natmap A) : natmap_pop (natmap_push o m) = m.
Proof. apply natmap_eq. by destruct o, m as [[|??]]. Qed.