Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Added Sigma and Pi (FStar.SigmaPi.fst*) to ulib. #3691

Open
wants to merge 2 commits into
base: master
Choose a base branch
from
Open

Added Sigma and Pi (FStar.SigmaPi.fst*) to ulib. #3691

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
2 commits
Select commit Hold shift + click to select a range
3521e23
Added Sigma and Pi (FStar.SigmaPi.fst*) to ulib. It uses the fixed ra…
briangmilnes Jan 20, 2025
50ba458
Merge branch 'master' into milnes-sigmapi
briangmilnes Jan 20, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
229 changes: 229 additions & 0 deletions ulib/FStar.SigmaPi.fst
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,229 @@
(*
Copyright 2025 Microsoft Research

Licensed under the Apache License, Version 2.0 (the "License");
you may not use this file except in compliance with the License.
You may obtain a copy of the License at

http://www.apache.org/licenses/LICENSE-2.0

Unless required by applicable law or agreed to in writing, software
distributed under the License is distributed on an "AS IS" BASIS,
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
See the License for the specific language governing permissions and
limitations under the License.

Author: Brian Milnes <[email protected]>

*)
///
/// This module defines sigma (sum) and pi (product) notation over int and proves some basic
/// theorems about them.
///

module FStar.SigmaPi
open FStar.IntegerIntervals
open FStar.Mul
open FStar.Math.Lib

let sigma_no_range_is_zero #x #y
(i: interval x (y+1)) (j: interval x (y+1){i > j})
(e: interval x (y + 1) -> int):
Lemma (ensures sigma i j e = 0)
= ()

let rec sigma_1_n_of_nats_is_nat (n': nat{n' > 0}) (n: nat{0 < n /\ n <= n'}) (e: (interval 1 (n' + 1)) -> nat) :
Lemma (ensures sigma #1 #n' 1 n e >= 0)
= if 1 = n
then ()
else sigma_1_n_of_nats_is_nat n' (n - 1) e

let rec sigma_const_dist #x #y
(i: interval x (y+1)) (j: interval x (y+1){j >= i})
(e: interval x (y + 1) -> int) (c: int) :
Lemma (ensures sigma i j (fun i -> c * (e i)) = c * (sigma i j e))
(decreases j - i)
= if i = j
then ()
else sigma_const_dist i (j - 1) e c

let rec sigma_dist_plus #x #y
(i: interval x (y + 1)) (j: interval x (y+1){j >= i})
(a: interval x (y + 1) -> int) (b: interval x (y + 1) -> int):
Lemma (ensures sigma i j (fun i -> (a i) + (b i)) =
sigma i j a + sigma i j b)
(decreases j - i)
=
if i = j
then ()
else sigma_dist_plus i (j - 1) a b

let sigma_single #x #y
(i: interval x (y+1)) (e: interval x (y + 1) -> int)
:
Lemma (sigma i i e = e i)
= ()

let rec sigma_split #x #y

(i: interval x (y+1)) (j: interval x (y+1){j > i})
(k: interval x (y+1){i <= k /\ k < j})
(e: interval x (y + 1) -> int):
Lemma (ensures sigma i j e = sigma i k e + sigma (k + 1) j e)
(decreases j - k)
= if k = j - 1
then ()
else if k + 1 = j
then ()
else sigma_split i (j - 1) k e

let sigma_split_end #x #y
(i: interval x (y+1)) (j: interval x (y+1){j > i})
(e: int -> int):
Lemma (sigma i j e = sigma i (j - 1) e + e j)
= ()

let rec sigma_split_start #x #y
(i: interval x (y+1)) (j: interval x (y+1){j > i})
(e: interval x (y + 1) -> int):
Lemma (ensures sigma i j e = e i + sigma (i + 1) j e)
(decreases j - i)
=
if j < i
then ()
else if i = j
then ()
else if j = i + 1
then ()
else sigma_split_start #x #y i (j - 1) e

let sigma_split_interior #x #y
(i: interval x (y+1)) (j: interval x (y+1){j > i + 1}) (k: interval x (y+1){i < k /\ k < j})
(e: int -> int):
Lemma (ensures sigma i j e = sigma i (k - 1) e + e k + sigma (k + 1) j e)
= sigma_split i j k e

/// Any term in a sigma sum can be commuted in four cases: end to beginning, start to end, middle to beginning and end
let sigma_comm_end #x #y
(i: interval x (y+1)) (j: interval x (y+1){j > i})
(e: int -> int):
Lemma (sigma i j e = e j + sigma i (j - 1) e)
= ()

let sigma_comm_start #x #y
(i: interval x (y+1)) (j: interval x (y+1){j > i})
(e: interval x (y + 1) -> int):
Lemma (ensures sigma i j e = sigma (i + 1) j e + e i)
= sigma_split_start i j e

let sigma_comm_interior_start #x #y
(i: interval x (y+1)) (j: interval x (y+1){j > i + 1})
(k: interval x (y+1){i < k /\ k < j}) (e: int -> int):
Lemma (ensures sigma i j e = e k + sigma i (k - 1) e + sigma (k + 1) j e)
= sigma_split_interior i j k e

let sigma_comm_interior_end #x #y
(i: interval x (y+1)) (j: interval x (y+1){j > i + 1})
(k: interval x (y+1){i < k /\ k < j}) (e: int -> int):
Lemma (ensures sigma i j e = sigma i (k - 1) e + sigma (k + 1) j e + e k)
= sigma_split_interior i j k e

let pi_no_range_is_one #x #y
(i: interval x (y+1)) (j: interval x (y+1){i > j})
(e: interval x (y + 1) -> int):
Lemma (ensures pi i j e = 1)
= ()

let rec pi_const_exp (n: nat) (j: interval 1 (n+1)) (c: int) :
Lemma (ensures (pi 1 j (fun i -> c)) = powx c j)
= if j = 1
then ()
else pi_const_exp n (j - 1) c

let rec pi_const_one #x #y
(i: interval x (y+1)) (j: interval x (y+1){i <= j})
:
Lemma (ensures pi i j (fun i -> 1) = 1)
(decreases j - i)
=
if i = j
then ()
else pi_const_one i (j - 1)

let rec pi_dist_times #x #y
(i: interval x (y+1)) (j: interval x (y+1){i <= j})
(a: int -> int) (b: int -> int):
Lemma (ensures pi i j (fun i -> (a i) * (b i)) =
pi i j a * pi i j b)
(decreases j - i)
=
if i = j
then ()
else pi_dist_times i (j - 1) a b

#push-options "--split_queries always"
let rec pi_split #x #y

(i: interval x (y+1)) (j: interval x (y+1){j > i})
(k: interval x (y+1){i <= k /\ k < j})
(e: int -> int):
Lemma (ensures pi i j e = pi i k e * pi (k + 1) j e)
(decreases j - k)
= if k = j - 1
then ()
else if k + 1 = j
then ()
else pi_split i (j - 1) k e
#pop-options

let pi_split_end #x #y
(i: interval x (y+1)) (j: interval x (y+1){j > i})
(e: int -> int):
Lemma (pi i j e = pi i (j - 1) e * e j)
= ()

let rec pi_split_start #x (#y: int{y > x})
(i: interval x (y+1)) (j: interval x (y+1){j > i})
(e: interval x (y + 1) -> int):
Lemma (ensures pi i j e = e i * pi (i + 1) j e)
(decreases j - i)
=
if j < i
then ()
else if i = j
then ()
else if j = i + 1
then ()
else pi_split_start #x #y i (j - 1) e

let pi_split_interior #x #y
(i: interval x (y+1)) (j: interval x (y+1){j > i + 1})
(k: interval x (y+1){i < k /\ k < j}) (e: int -> int):
Lemma (ensures pi i j e = pi i (k - 1) e * e k * pi (k + 1) j e)
= pi_split i j k e


/// Any term in a pi sum can be commuted in four cases: end to beginning, start to end, middle to beginning and end
let pi_comm_end #x #y
(i: interval x (y+1)) (j: interval x (y+1){j > i})
(e: int -> int):
Lemma (pi i j e = e j * pi i (j - 1) e)
= ()

let pi_comm_start #x #y
(i: interval x (y+1)) (j: interval x (y+1){j > i})
(e: interval x (y + 1) -> int):
Lemma (ensures pi i j e = pi (i + 1) j e * e i)
= pi_split_start i j e

let pi_comm_interior_start #x #y
(i: interval x (y+1)) (j: interval x (y+1){j > i + 1})
(k: interval x (y+1){i < k /\ k < j}) (e: int -> int):
Lemma (ensures pi i j e = e k * pi i (k - 1) e * pi (k + 1) j e)
= pi_split_interior i j k e

let pi_comm_interior_end #x #y
(i: interval x (y+1)) (j: interval x (y+1){j > i + 1})
(k: interval x (y+1){i < k /\ k < j}) (e: int -> int):
Lemma (ensures pi i j e = pi i (k - 1) e * pi (k + 1) j e * e k)
= pi_split_interior i j k e
Loading
Loading