wip (slow progress)

Author: datokrat

src/Init/Data/Range/Polymorphic/BitVec.lean

@@ -119,16 +119,67 @@ instance : Rxi.IsAlwaysFinite (BitVec n) := inferInstance
 
 namespace Signed
 
+def irredMin n : BitVec n := ↑(2 ^ (n - 1) : Nat)
+theorem irredMin_def : irredMin n = ↑(2 ^ (n - 1) : Nat) := (rfl)
+seal irredMin
+
+def irredMax n : BitVec n := ↑(2 ^ (n - 1) - 1 : Nat)
+theorem irredMax_def : irredMax n = ↑(2 ^ (n - 1) - 1 : Nat) := (rfl)
+seal irredMax
+
 @[expose]
-def rotate (x : BitVec n) : BitVec n := x + ↑(2 ^ (n - 1) : Nat)
+def rotate (x : BitVec n) : BitVec n := x + irredMin n
+
+theorem irredMax_eq_irredMin_add :
+    irredMax n = irredMin n + ↑(2 ^ n - 1 : Nat) := by
+  match n with
+  | 0 => simp [eq_nil (irredMax 0), eq_nil (irredMin 0)]
+  | n + 1 =>
+    simp only [irredMax_def, Nat.add_one_sub_one, natCast_eq_ofNat, irredMin_def, ← ofNat_add,
+      ← toNat_inj, toNat_ofNat, Nat.mod_eq_mod_iff]
+    exact ⟨1, 0, by omega⟩
+
+theorem irredMin_add_irredMin :
+    irredMin n + irredMin n = 0 := by
+  match n with
+  | 0 => simp [eq_nil (irredMin 0)]
+  | n + 1 =>
+    simp [irredMin_def, ← BitVec.ofNat_add, show 2 ^ n + 2 ^ n = 2 ^ (n + 1) by omega,
+      ← BitVec.toNat_inj]
+
+theorem rotate_neg_eq_irredMin_sub {x : BitVec n} :
+    rotate (-x) = irredMin n - x := by
+  simp only [rotate, irredMin_def, natCast_eq_ofNat]
+  rw [eq_sub_iff_add_eq, BitVec.add_comm, ← BitVec.add_assoc, BitVec.add_neg_eq_sub,
+    BitVec.sub_self, BitVec.zero_add]
+
+theorem rotate_eq_sub_irredMin {x : BitVec n} :
+    rotate x = x - irredMin n := by
+  simp [rotate, eq_sub_iff_add_eq, BitVec.add_assoc, irredMin_add_irredMin]
+
+theorem rotate_add {x y : BitVec n} :
+    rotate (x + y) = rotate x + y := by
+  simp [rotate, BitVec.add_assoc, BitVec.add_comm y]
+
+theorem rotate_sub {x y : BitVec n} :
+    rotate (x - y) = rotate x - y := by
+  simp [BitVec.sub_eq_add_neg, rotate_add]
+
+theorem rotate_irredMin :
+    rotate (irredMin n) = ↑(0 : Nat) := by
+  simp [rotate, irredMin_add_irredMin]
+
+theorem rotate_irredMax :
+    rotate (irredMax n) = ↑(2 ^ n - 1 : Nat) := by
+  simp [irredMax_eq_irredMin_add, rotate_add, rotate_irredMin]
 
 theorem rotate_rotate {x : BitVec n} :
     rotate (rotate x) = x := by
   match n with
-  | 0 => simp [eq_nil x, rotate]
+  | 0 => simp [eq_nil x, rotate, irredMin_def]
   | n + 1 =>
     simp only [rotate, BitVec.add_assoc]
-    simp [← BitVec.toNat_inj, ← Nat.two_mul, show 2 * 2 ^ n = 2 ^ (n + 1) by omega]
+    simp [← BitVec.toNat_inj, ← Nat.two_mul, irredMin_def, show 2 * 2 ^ n = 2 ^ (n + 1) by omega]
 
 theorem rotate_map_eq_iff {x y : Option (BitVec n)} :
     rotate <$> x = y ↔ x = rotate <$> y := by
@@ -156,7 +207,8 @@ theorem sle_iff_rotate_le_rotate {x y : BitVec n} :
   match n with
   | 0 => simp [eq_nil x, eq_nil y]
   | n + 1 =>
-    simp [BitVec.sle_iff_toInt_le, BitVec.toInt, Nat.pow_add, Nat.mul_comm _ 2, rotate, BitVec.le_def]
+    simp [BitVec.sle_iff_toInt_le, BitVec.toInt, Nat.pow_add, Nat.mul_comm _ 2, rotate, BitVec.le_def,
+      irredMin_def]
     split <;> split
     · simp only [Int.ofNat_le]
       rw [Nat.mod_eq_of_lt (by omega), Nat.mod_eq_of_lt (by omega)]
@@ -200,12 +252,45 @@ theorem rotate_inj {x y : BitVec n} :
   · intro h
     exact congrArg rotate h
 
+theorem rotate_eq_iff {x y : BitVec n} :
+    rotate x = y ↔ x = rotate y := by
+  rw [← rotate_rotate (x := y), rotate_inj, rotate_rotate]
+
+theorem toInt_eq_ofNat_toNat_rotate_sub' {x : BitVec n} (h : n > 0) :
+    x.toInt = (↑(rotate x).toNat : Int) - ↑(irredMin n).toNat := by
+  match n with
+  | 0 => omega
+  | n + 1 =>
+    simp [BitVec.toInt, rotate, irredMin_def]
+    rw [Int.emod_eq_of_lt (a := 2 ^ n)]; rotate_left
+    · exact Int.le_of_lt (Int.pow_pos (by omega))
+    · rw [Int.pow_add, Int.pow_succ, Int.pow_zero, Int.one_mul, Int.mul_comm, Int.two_mul]
+      exact Int.lt_add_of_pos_right _ (Int.pow_pos (by omega))
+    have : (2 : Int) ^ n > 0 := Int.pow_pos (by omega)
+    split <;> rename_i h
+    · rw [Nat.pow_add, Nat.pow_one, Nat.mul_comm _ 2, Nat.mul_lt_mul_left (by omega),
+        ← Int.ofNat_lt, Int.natCast_pow, Int.cast_ofNat_Int] at h
+      rw [Int.emod_eq_of_lt (by omega) (by omega)]
+      omega
+    · rw [Nat.pow_add, Nat.pow_one, Nat.mul_comm _ 2, Nat.mul_lt_mul_left (by omega),
+        ← Int.ofNat_lt, Int.natCast_pow, Int.cast_ofNat_Int] at h
+      simp [Int.pow_add, Int.mul_comm _ 2, Int.two_mul, ← Int.sub_sub]
+      rw [eq_comm, Int.emod_eq_iff (by omega)]
+      refine ⟨by omega, ?_, ?_⟩
+      · have := BitVec.toNat_lt_twoPow_of_le (x := x) (Nat.le_refl _)
+        rw [Int.ofNat_natAbs_of_nonneg (by omega)]
+        simp only [Nat.pow_add, Nat.pow_one, ← Int.ofNat_lt, Int.natCast_mul, Int.natCast_pow,
+          Int.cast_ofNat_Int] at this
+        omega
+      · conv => rhs; rw [← Int.sub_sub, Int.sub_sub (b := 2 ^ n), Int.add_comm, ← Int.sub_sub]
+        exact ⟨-1, by omega⟩
+
 theorem toInt_eq_ofNat_toNat_rotate_sub {x : BitVec n} (h : n > 0) :
     x.toInt = (↑(rotate x).toNat : Int) - 2 ^ (n - 1) := by
   match n with
   | 0 => omega
   | n + 1 =>
-    simp [BitVec.toInt, rotate]
+    simp [BitVec.toInt, rotate, irredMin_def]
     have : (2 : Int) ^ n > 0 := Int.pow_pos (by omega)
     split <;> rename_i h
     · rw [Nat.pow_add, Nat.pow_one, Nat.mul_comm _ 2, Nat.mul_lt_mul_left (by omega),
@@ -225,6 +310,19 @@ theorem toInt_eq_ofNat_toNat_rotate_sub {x : BitVec n} (h : n > 0) :
       · conv => rhs; rw [← Int.sub_sub, Int.sub_sub (b := 2 ^ n), Int.add_comm, ← Int.sub_sub]
         exact ⟨-1, by omega⟩
 
+theorem ofNat_eq_rotate_ofInt_sub {n k : Nat} :
+    BitVec.ofNat n k = rotate (BitVec.ofInt n (↑k - ↑(irredMin n).toNat)) := by
+  match n with
+  | 0 => simp only [eq_nil (BitVec.ofNat _ _), eq_nil (rotate _)]
+  | n + 1 =>
+    simp [irredMin]
+    rw [Int.emod_eq_of_lt]; rotate_left
+    · exact Int.le_of_lt (Int.pow_pos (by omega))
+    · exact Int.pow_lt_pow_of_lt (by omega) (by omega)
+    simp [← BitVec.toInt_inj, toInt_ofNat', rotate, Int.bmod_eq_bmod_iff_bmod_sub_eq_zero]
+    simp [Int.sub_eq_add_neg, Int.neg_add, ← Int.add_assoc]
+    simp [Int.add_neg_eq_sub, irredMin, toInt_ofNat']
+
 scoped instance instLE : LE (BitVec n) where
   le x y := x.sle y
 
@@ -308,7 +406,7 @@ scoped instance : Rxc.LawfulHasSize (BitVec n) where
     generalize rotate lo = lo
     simp only [LE.le]
     match n with
-    | 0 => simp [eq_nil lo, eq_nil hi, succ?, rotate, Rxc.HasSize.size]
+    | 0 => simp [eq_nil lo, eq_nil hi, succ?, rotate, Rxc.HasSize.size, irredMin_def]
     | n + 1 =>
       simp [BitVec.sle_iff_toInt_le, toInt_eq_ofNat_toNat_rotate_sub,
         Rxc.HasSize.size, rotate_rotate, succ?_rotate, Option.map_eq_map, Option.map_eq_none_iff,
@@ -319,7 +417,7 @@ scoped instance : Rxc.LawfulHasSize (BitVec n) where
     generalize rotate lo = lo
     simp only [LE.le]
     match n with
-    | 0 => simp [eq_nil lo, eq_nil hi, succ?, rotate, Rxc.HasSize.size]
+    | 0 => simp [eq_nil lo, eq_nil hi, succ?, rotate, Rxc.HasSize.size, irredMin_def]
     | n + 1 =>
       simp [BitVec.sle_iff_toInt_le, toInt_eq_ofNat_toNat_rotate_sub,
         Rxc.HasSize.size, rotate_rotate, succ?_rotate, succ?_eq_some]

src/Init/Data/Range/Polymorphic/SInt.lean

@@ -6,13 +6,13 @@ Authors: Paul Reichert
 module
 
 prelude
+
 public import Init.Data.Range.Polymorphic.Instances
 public import Init.Data.Order.Lemmas
 public import Init.Data.SInt
 import Init.Omega
 public import Init.Data.Range.Polymorphic.BitVec
 import Init.Data.Range.Polymorphic.UInt
-
 import all Init.Data.SInt.Basic
 
 public section
@@ -23,7 +23,7 @@ namespace HasModel
 
 open BitVec.Signed
 
-variable {α : Type u} [LE α] [LT α] {β : Type u} [LE β] [LT β]
+variable {α : Type u} [LE α] [LT α] {β : Type v} [LE β] [LT β]
 
 class _root_.HasModel (α : Type u) [LE α] [LT α] (β : outParam (Type v)) [LE β] [LT β]
     [UpwardEnumerable β] [LawfulUpwardEnumerable β] [LawfulUpwardEnumerableLE β]
@@ -257,11 +257,99 @@ open scoped HasModel
 attribute [-instance] BitVec.instUpwardEnumerable BitVec.instHasSize BitVec.instHasSize_1
   BitVec.instHasSize_2 BitVec.instLawfulUpwardEnumerable
 
+@[inline]
+def irredMin := Int16.minValue
+theorem irredMin_def : irredMin = Int16.minValue := (rfl)
+seal irredMin
+
+@[inline]
+def irredMax := Int16.maxValue
+theorem irredMax_def : irredMax = Int16.maxValue := (rfl)
+seal irredMax
+
+theorem toBitVec_irredMin_eq_irredMin :
+    irredMin.toBitVec = BitVec.Signed.irredMin 16 := by
+  simp [irredMin_def, BitVec.Signed.irredMin_def]
+
+theorem toBitVec_irredMax_eq_irredMax :
+    irredMax.toBitVec = BitVec.Signed.irredMax 16 := by
+  simp [irredMax_def, BitVec.Signed.irredMax_def]
+
 instance : UpwardEnumerable Int16 where
-  succ? i := if i + 1 = Int16.minValue then none else some (i + 1)
+  succ? i := if i + 1 = irredMin then none else some (i + 1)
   succMany? n i :=
     have := i.minValue_le_toInt
-    if h : i.toInt + n ≤ Int16.maxValue.toInt then some (.ofIntLE _ (by omega) h) else none
+    if h : i.toInt + n ≤ irredMax.toInt then some (.ofIntLE _ (by omega) (irredMax_def ▸ h)) else none
+
+instance : HasModel Int16 (BitVec 16) where
+  encode x := x.toBitVec
+  decode x := .ofBitVec x
+  encode_decode := by simp
+  decode_encode := by simp
+  le_iff_encode_le := by simp [Int16.le_iff_toBitVec_sle, BitVec.Signed.instLE]
+  lt_iff_encode_lt := by simp [Int16.lt_iff_toBitVec_slt, BitVec.Signed.instLT]
+
+private theorem ofBitVec_eq_iff {x : BitVec 16} {y : Int16} :
+    Int16.ofBitVec x = y ↔ x = y.toBitVec := by
+  rw [← toBitVec_ofBitVec x, toBitVec_inj, toBitVec_ofBitVec]
+
+theorem general_succ? {α : Type u} [UpwardEnumerable α] [LE α] [LT α] [m : HasModel α (BitVec n)]
+    {x : α}
+    (h : ∀ y, succ? x = some y ↔ ¬ m.encode x + 1#n = BitVec.Signed.irredMin n ∧ m.encode x + 1#n = m.encode y) :
+    succ? x = (haveI := HasModel.instUpwardEnumerable (α := α); succ? x) := by
+  ext y
+  simp only [UpwardEnumerable.succ?, h]
+  rw [← Option.map_inj_right HasModel.eq_of_encode_eq, Option.map_map, Function.comp_def]
+  simp [HasModel.encode_decode, ← BitVec.eq_sub_iff_add_eq, rotate_eq_iff,
+    ← rotate_neg_eq_irredMin_sub, rotate_sub, rotate_rotate]
+
+theorem general_succMany? {α : Type u} [UpwardEnumerable α] [LE α] [LT α] [m : HasModel α (BitVec n)]
+    {x : α} {k} :
+    haveI := HasModel.instUpwardEnumerable (α := α)
+    succMany? k x = if (m.encode x).toInt + ↑k ≤ (BitVec.Signed.irredMax n).toInt then some (m.decode (BitVec.ofInt n ((m.encode x).toInt + ↑k))) else none := by
+  have h : ∀ a b c d : Int, a - b + c ≤ d - b ↔ a + c ≤ d := by omega
+  simp [UpwardEnumerable.succMany?, BitVec.ofNatLT_eq_ofNat]
+  simp [toInt_eq_ofNat_toNat_rotate_sub' sorry, rotate_irredMax, h]
+  simp only [← Int.natCast_add]
+  congr
+  · rw [Nat.lt_iff_add_one_le, Int.ofNat_le, Nat.le_sub_iff_add_le]
+    exact Nat.pow_pos (Nat.zero_lt_succ _)
+  · generalize rotate (HasModel.encode x) = x
+    simp only [ofNat_eq_rotate_ofInt_sub, rotate_rotate]
+    congr; omega
+
+theorem instUpwardEnumerable_eq :
+    instUpwardEnumerable = HasModel.instUpwardEnumerable := by
+  apply UpwardEnumerable.ext
+  · apply funext; intro x
+    apply general_succ?
+    intro y
+    simp [HasModel.encode, succ?, ← Int16.toBitVec_inj, toBitVec_irredMin_eq_irredMin]
+  · apply funext; intro n; apply funext; intro x
+    simp [general_succMany?, instUpwardEnumerable, HasModel.encode, HasModel.decode,
+      ← toInt_toBitVec, toBitVec_irredMax_eq_irredMax, ofIntLE_eq_ofInt]
+
+open BitVec.Signed
+open scoped HasModel
+
+attribute [-instance] BitVec.instUpwardEnumerable BitVec.instHasSize BitVec.instHasSize_1
+  BitVec.instHasSize_2 BitVec.instLawfulUpwardEnumerable
+
+@[inline]
+def irredMin := Int16.minValue
+theorem irredMin_def : irredMin = Int16.minValue := (rfl)
+seal irredMin
+
+@[inline]
+def irredMax := Int16.maxValue
+theorem irredMax_def : irredMax = Int16.maxValue := (rfl)
+seal irredMax
+
+instance : UpwardEnumerable Int16 where
+  succ? i := if i + 1 = irredMin then none else some (i + 1)
+  succMany? n i :=
+    have := i.minValue_le_toInt
+    if h : i.toInt + n ≤ irredMax.toInt then some (.ofIntLE _ (by omega) (irredMax_def ▸ h)) else none
 
 instance : HasModel Int16 (BitVec 16) where
   encode x := x.toBitVec
@@ -271,6 +359,61 @@ instance : HasModel Int16 (BitVec 16) where
   le_iff_encode_le := by simp [Int16.le_iff_toBitVec_sle, BitVec.Signed.instLE]
   lt_iff_encode_lt := by simp [Int16.lt_iff_toBitVec_slt, BitVec.Signed.instLT]
 
+-- theorem bla {x : Int16} :
+--     (succ? x) = (if (x.toBitVec + 1 = - 2 ^ 15) then none else some (x.toBitVec + 1)).map .ofBitVec := by
+--   sorry
+
+-- #print instUpwardEnumerable
+
+-- axiom sry {α} : α
+
+-- seal HasModel.instUpwardEnumerable
+
+-- theorem ex :
+--     sry = (HasModel.instUpwardEnumerable : UpwardEnumerable Int16) := by
+--   apply UpwardEnumerable.ext
+--   · apply funext; intro x
+--     generalize h : @succ? Int16 sry x = g
+--     rw [bla] at h
+--     rw [bla]
+
+theorem bla {x : Int16} :
+    (succ? x) = (if (x.toBitVec + 1 = - 2 ^ 15) then none else some (x.toBitVec + 1)).map .ofBitVec := by
+  simp only [← BitVec.eq_sub_iff_add_eq, succ?, ← toBitVec_inj,
+    show minValue.toBitVec = - 2 ^ 15 by rfl, Int16.toBitVec_add, toBitVec_ofNat]
+  split <;> simp
+
+#print instUpwardEnumerable
+
+--seal HasModel.instUpwardEnumerable
+--seal instUpwardEnumerable
+
+theorem ex :
+    instUpwardEnumerable = HasModel.instUpwardEnumerable := by
+  apply UpwardEnumerable.ext
+  · apply funext; intro x
+    refine Eq.trans bla ?_
+
+
+  simp only [instUpwardEnumerable, HasModel.instUpwardEnumerable, HasModel.encode,
+    HasModel.decode]
+  -- simp only [instUpwardEnumerable, HasModel.instUpwardEnumerable,
+  --   HasModel.encode, HasModel.decode, UpwardEnumerable.succ?,
+  --   UpwardEnumerable.succMany?]
+  -- have : ∀ {s sm s' sm'}, sm = sm' → UpwardEnumerable.mk s sm = (UpwardEnumerable.mk s' sm' : UpwardEnumerable Int16) := by
+  --   sorry
+
+  -- apply this
+  -- · ext n x y
+  --   simp only [← toInt_toBitVec, toInt_eq_ofNat_toNat_rotate_sub (show 16 > 0 by omega), rotate,
+  --     BitVec.natCast_eq_ofNat, BitVec.toNat_add, BitVec.toNat_ofNat]
+  --   simp only [ofIntLE_eq_ofInt]
+  --   -- simp [h₁, h₂, ← Int16.toInt_toBitVec, toInt_eq_ofNat_toNat_rotate_sub (show 16 > 0 by omega),
+  --   --   rotate, BitVec.ofNatLT_eq_ofNat, ofIntLE_eq_ofInt, Int16.ofInt_eq_ofNat,
+  --   --   ofInt_eq_ofNat, Int16.add_assoc, Int16.add_comm (ofNat (2 ^ 15)), and_congr_left_iff,
+  --   --   - Int.reducePow, - Nat.reducePow, - Int.natCast_pow, - Int.natCast_add, - Int.natCast_emod, ]
+  --   omega
+
 theorem instUpwardEnumerable_eq :
     instUpwardEnumerable = HasModel.instUpwardEnumerable := by
   simp only [instUpwardEnumerable, HasModel.instUpwardEnumerable,
@@ -280,11 +423,10 @@ theorem instUpwardEnumerable_eq :
     sorry
   apply this
   --congr 1
-  · ext x y
-    simp [← Int16.toBitVec_inj, ← BitVec.eq_sub_iff_add_eq, rotate, BitVec.sub_sub]
+  · sorry
+    -- ext x y
+    -- simp [← Int16.toBitVec_inj, ← BitVec.eq_sub_iff_add_eq, rotate, BitVec.sub_sub]
   · ext n x y
-    have h₁ : ∀ n, (2 : Int) ^ n = ↑((2 : Nat) ^ n) := by simp
-    have h₂ : ∀ x : Int16, x - ofNat (2 ^ 15) = x + ofNat (2 ^ 15) := by simp
     simp only [← toInt_toBitVec, toInt_eq_ofNat_toNat_rotate_sub (show 16 > 0 by omega), rotate,
       BitVec.natCast_eq_ofNat, BitVec.toNat_add, BitVec.toNat_ofNat]
     simp only [ofIntLE_eq_ofInt]

src/Init/Data/Range/Polymorphic/UpwardEnumerable.lean

@@ -27,6 +27,7 @@ These properties and the compatibility of `succ?` with `succMany?` are encoded i
 `LawfulUpwardEnumerable`, `LawfulUpwardEnumerableLE` and `LawfulUpwardEnumerableLT`.
 
 -/
+@[ext]
 class UpwardEnumerable (α : Type u) where
   /-- Maps elements of `α` to their successor, or none if no successor exists. -/
   succ? : α → Option α