Pattern matching on vectors

> Personally, I think the real moral of the story here is to avoid
> indexing inductive types with terms.  Here's the first  proof I could
> think of:
>
> Inductive vector (A: Type): nat -> Type :=
>  | vnil: vector A O
>  | vcons: forall len, A -> vector A len -> vector A (S len).
>
> Set Implicit Arguments.
> Require Import JMeq.
>
>  Lemma openVector: forall A n (v: vector A (S n)),
>    exists a, exists v0, v = vcons A n a v0.
>  Proof.
>   intros.
>   refine (match v as v' in vector _ n' return S n = n' -> JMeq v v' ->
>             exists a : A, exists v0 : vector A n, v = vcons A n a v0
>             with
>             | vnil => _
>             | vcons n a v0 => _
>           end (refl_equal (S n)) (JMeq_refl v)).
>   intros. discriminate. (* first case is impossible *)
>   intros. assert (n = n0). congruence. subst. clear H.
>   apply JMeq_eq in H0. (* use jmeq axiom *)
>   eauto.
> Qed.
>
> What's happening here is case analysis on v, just like you wanted, but
> there an "as" and "in" clause that tells Coq explicitly how to handle
> the dependency.  The tactics don't generally deal with this well so you
> may need to write proof terms manually like this.  I'd recommend moving
> to a fixpoint version of vector instead.
>
> On Oct 8, 2009, at 6:20 PM, Jeff Vaughan wrote:
>
>> Hi,
>>
>> I'm trying to prove some simple theorems using types defined in terms
>> of vectors.  I'm getting suck because I'm not sure how to destruct a
>> vector when there are constraints on its length.
>>
>> Vectors are defined as follows:
>>
>>  Set Implicit Arguments.
>>
>>  Inductive vector (A: Type): nat -> Type :=
>>  | vnil: vector A O
>>  | vcons: forall len, A -> vector A len -> vector A (S len).
>>  Implicit Arguments vnil [A].
>>
>> And I would like to prove, for instance, this lemma:
>>
>>  Lemma openVector: forall A n (v: vector A (S n)),
>>    exists a, exists v0, v = vcons a v0.
>>
>> The problem---as I understand it---is that induction
>> (elim/destruct/generalized induction...) on v produces goals that are
>> ill-typed.  For instance,
>>
>>  exists a, exists v0, vnil = vcons a v0
>>
>> Note that the left hand side of the equality has type (vector A 0) and
>> the right hand side has type (vector A (S _)).  I tried using John
>> Major equality.  This let me take a small step forward, but didn't
>> enable real progress.
>>
>> Any tips?
>>
>> Best,
>> Jeff Vaughan
>>
>> --------------------------------------------------------
>> Bug reports: http://logical.saclay.inria.fr/coq-bugs
>> Archives: http://pauillac.inria.fr/pipermail/coq-club
>>         http://pauillac.inria.fr/bin/wilma/coq-club
>> Info: http://pauillac.inria.fr/mailman/listinfo/coq-club
>

> Vectors are defined as follows:
>
>   Set Implicit Arguments.
>
>   Inductive vector (A: Type): nat -> Type :=
>   | vnil: vector A O
>   | vcons: forall len, A -> vector A len -> vector A (S len).
>   Implicit Arguments vnil [A].
>
> And I would like to prove, for instance, this lemma:
>
>   Lemma openVector: forall A n (v: vector A (S n)),
>     exists a, exists v0, v = vcons a v0.

> Hi,
>
> yep you have to break the dependance in the equality.
> Adam's idea but with tactic:
>
> Lemma openVector: forall A n (v: vector A (S n)),
>    exists a, exists v0, v = vcons a v0.
> intros A n v.
> change
> ((fun n: nat => match n return vector A n -> Prop with
>   O => fun _ => True (* what you want *)
> | S n1 => fun v =>
>      exists a : A, exists v0 : vector A n1, v = vcons a v0
> end) (S n) v).
> dependent inversion v as [|n1 a1 v1].
> exists a1; exists v1; auto.
> Qed.
>
>
> --------------------------------------------------------
> Bug reports: http://logical.saclay.inria.fr/coq-bugs
> Archives: http://pauillac.inria.fr/pipermail/coq-club
>          http://pauillac.inria.fr/bin/wilma/coq-club
> Info: http://pauillac.inria.fr/mailman/listinfo/coq-club

> Hello,
>
> for the complementary theorem about vectors of length 0 (code at the
> bottom), Adam's suggestion can be adopted [1], whereas a proof similar
> to Laurent's [2] fails, since the abstraction in the inversion step
> gives an ill-typed term.
> Is there a way to prove the lemma by tactics anyway?
>
> Greetings
> ben
>
> [1]
> Definition is_vnil (A:Set) (v:vector A 0):
>            v = vnil :=
> match v in vector _ N return
>              match N return vector A N -> Prop with
>              | 0 => fun v0 => v0 = vnil
>              | S p => fun _ => True
>              end v with
> | vnil => refl_equal _
> | vcons _ _ _ => I
> end.
>
> [2]
> Lemma is_nil: forall A (v:vector A 0),
>         v = vnil.
> Proof.
> intros A v.
> change (
>    (fun n => match n as n1 return vector A n1 -> Prop with
>             | 0 => fun v => v = vnil
>             | S p => fun _ => True
>             end) 0 v).
> dependent inversion v.
>
> (*
> Error: Abstracting over the terms "0" and "v" leads to a term
> "fun (n : nat) (v : vector A n) =>
>  (fun n0 : nat =>
>   match n0 as n1 return (vector A n1 -> Prop) with
>   | 0 => fun v0 : vector A n => v0 = vnil
>   | S p => fun _ : vector A (S p) => True
>   end) n v" which is ill-typed.
> *)
>
>
>
> Laurent Théry wrote:
>> Hi,
>>
>> yep you have to break the dependance in the equality.
>> Adam's idea but with tactic:
>>
>> Lemma openVector: forall A n (v: vector A (S n)),
>>    exists a, exists v0, v = vcons a v0.
>> intros A n v.
>> change
>> ((fun n: nat => match n return vector A n -> Prop with
>>   O => fun _ => True (* what you want *)
>> | S n1 => fun v =>
>>      exists a : A, exists v0 : vector A n1, v = vcons a v0
>> end) (S n) v).
>> dependent inversion v as [|n1 a1 v1].
>> exists a1; exists v1; auto.
>> Qed.
>>
>>
>> --------------------------------------------------------
>> Bug reports: http://logical.saclay.inria.fr/coq-bugs
>> Archives: http://pauillac.inria.fr/pipermail/coq-club
>>          http://pauillac.inria.fr/bin/wilma/coq-club
>> Info: http://pauillac.inria.fr/mailman/listinfo/coq-club
>
> --------------------------------------------------------
> Bug reports: http://logical.saclay.inria.fr/coq-bugs
> Archives: http://pauillac.inria.fr/pipermail/coq-club
>           http://pauillac.inria.fr/bin/wilma/coq-club
> Info: http://pauillac.inria.fr/mailman/listinfo/coq-club

> Hello,
>
> for the complementary theorem about vectors of length 0 (code at the
> bottom), Adam's suggestion can be adopted [1], whereas a proof similar
> to Laurent's [2] fails, since the abstraction in the inversion step
> gives an ill-typed term.
> Is there a way to prove the lemma by tactics anyway?
>
> Greetings
> ben
>
> [1]
> Definition is_vnil (A:Set) (v:vector A 0):
>            v = vnil :=
> match v in vector _ N return
>              match N return vector A N -> Prop with
>              | 0 => fun v0 => v0 = vnil
>              | S p => fun _ => True
>              end v with
> | vnil => refl_equal _
> | vcons _ _ _ => I
> end.
>
> [2]
> Lemma is_nil: forall A (v:vector A 0),
>         v = vnil.
> Proof.
> intros A v.
> change (
>    (fun n => match n as n1 return vector A n1 -> Prop with
>             | 0 => fun v => v = vnil
>             | S p => fun _ => True
>             end) 0 v).
> dependent inversion v.
>
> (*
> Error: Abstracting over the terms "0" and "v" leads to a term
> "fun (n : nat) (v : vector A n) =>
>  (fun n0 : nat =>
>   match n0 as n1 return (vector A n1 -> Prop) with
>   | 0 => fun v0 : vector A n => v0 = vnil
>   | S p => fun _ : vector A (S p) => True
>   end) n v" which is ill-typed.
> *)
>
>
>
> Laurent Théry wrote:
> > Hi,
> >
> > yep you have to break the dependance in the equality.
> > Adam's idea but with tactic:
> >
> > Lemma openVector: forall A n (v: vector A (S n)),
> >    exists a, exists v0, v = vcons a v0.
> > intros A n v.
> > change
> > ((fun n: nat => match n return vector A n -> Prop with
> >   O => fun _ => True (* what you want *)
> > | S n1 => fun v =>
> >      exists a : A, exists v0 : vector A n1, v = vcons a v0
> > end) (S n) v).
> > dependent inversion v as [|n1 a1 v1].
> > exists a1; exists v1; auto.
> > Qed.
> >
> >
> > --------------------------------------------------------
> > Bug reports: http://logical.saclay.inria.fr/coq-bugs
> > Archives: http://pauillac.inria.fr/pipermail/coq-club
> >          http://pauillac.inria.fr/bin/wilma/coq-club
> > Info: http://pauillac.inria.fr/mailman/listinfo/coq-club
>
> --------------------------------------------------------
> Bug reports: http://logical.saclay.inria.fr/coq-bugs
> Archives: http://pauillac.inria.fr/pipermail/coq-club
>           http://pauillac.inria.fr/bin/wilma/coq-club
> Info: http://pauillac.inria.fr/mailman/listinfo/coq-club
>
>