MiniAgda: Integrating Sized and Dependent Types Andreas Abel, sec - - PowerPoint PPT Presentation

miniagda integrating sized and dependent types
SMART_READER_LITE
LIVE PREVIEW

MiniAgda: Integrating Sized and Dependent Types Andreas Abel, sec - - PowerPoint PPT Presentation

Mar 25, 2024 96 likes •360 views

MiniAgda: Integrating Sized and Dependent Types Andreas Abel, sec 1-2 Loes Habermehl Luuk Verkleij 1 Untyped Termination Checking In dependent type theories underlying Coq and Agda, all programs need to be total: All functions defined by

slide-1
SLIDE 1

MiniAgda: Integrating Sized and Dependent Types

Loes Habermehl Luuk Verkleij Andreas Abel, sec 1-2

1

slide-2
SLIDE 2

Untyped Termination Checking

In dependent type theories underlying Coq and Agda, all programs need to be total:

  • All functions defined by recursion over induction terminate
  • All functions defined by corecursion into a coinductive type are

productive The guard condition in Coq is an untyped termination checker, which has some shortcomings:

  • Sensitive to syntactical reformulations
  • Cannot propagate size information through function calls

2

slide-3
SLIDE 3

Typed Termination Checking

As an alternative, use sized types: data types with a size index, where the size index is the size of the elements or an upper bound. Type-based termination checking:

  • 1. Attach a size index i to each inductive data type D.
  • 2. Check that sizes decrease in recursive calls.

3

slide-4
SLIDE 4

Typed Termination Checking

As an alternative, use sized types: data types with a size index, where the size index is the size of the elements or an upper bound. Type-based termination checking:

  • 1. Attach a size index i to each inductive data type D.
  • 2. Check that sizes decrease in recursive calls.

4

slide-5
SLIDE 5

Attaching Sizes

Inductive data type D with size i → sized type Di. Di contains only elements whose height is below i. How do we calculate the height? → Represent elements as trees, where each constructor is a node.

5

slide-6
SLIDE 6

Example: Nat

The height of an element Nat is the value plus one.

6

slide-7
SLIDE 7

Example: List

The height of a List is its length plus one.

7

slide-8
SLIDE 8

Implementation

Using successor operation ↑ : Size → Size

8

Non-recursive example:

data SNat : (i : Size) -> Set where zero : (i : Size) -> SNat (↑ i) succ : (i : Size) -> SNat (i) -> SNat (↑ i) inc2 : (i : Size) -> SNat (i) -> SNat (↑↑ i) inc2 i n = succ (↑ i) (succ i n)

slide-9
SLIDE 9

Dot Patterns

The dot pattern or inaccessible pattern means that there is only one possible term, in this case ↑i.

9

pred : (i : Size) -> SNat (↑↑ i) -> SNat (↑ i) pred i (succ .(↑ i) n) = n pred i (zero .(↑ i)) = zero i

slide-10
SLIDE 10

Parametric Function Types

Sizes are parametric:

  • Only serve to ensure termination
  • Functions can never depend on sizes
  • Should be erased during compilation

However, the type of a function does depend on size. For example, pred i n = pred j n, but the types SNat (↑ i) ≠ SNat i.

10

slide-11
SLIDE 11

Refined Definitions

11

data SNat : (i : Size) -> Set where zero : (i : Size) -> SNat (↑ i) succ : (i : Size) -> SNat (i) -> SNat (↑ i)

slide-12
SLIDE 12

Refined Definitions

12

data SNat : {i : Size} -> Set where zero : {i : Size} -> SNat {↑ i} succ : {i : Size} -> SNat {i} -> SNat {↑ i} pred : (i : Size) -> SNat (↑↑ i) -> SNat (↑ i) pred i (succ .(↑ i) n) = n pred i (zero .(↑ i)) = zero i

slide-13
SLIDE 13

Refined Definitions

13

data SNat : {i : Size} -> Set where zero : {i : Size} -> SNat {↑ i} succ : {i : Size} -> SNat {i} -> SNat {↑ i} pred : {i : Size} -> SNat {↑↑ i} -> SNat {↑ i} pred {i} (succ .{↑ i} n) = n pred {i} (zero .{↑ i}) = zero {i} pred’ : {i : Size} -> SNat {↑↑ i} -> SNat {↑ i} pred’ (succ n) = n pred’ zero = zero

  • r

implicit:

slide-14
SLIDE 14

Recall

Type-based termination checking:

  • 1. Attach a size index i to each inductive data type D.
  • 2. Check that sizes decrease in recursive calls.

14

slide-15
SLIDE 15

Recall

Type-based termination checking:

  • 1. Attach a size index i to each inductive data type D.
  • 2. Check that sizes decrease in recursive calls.

15

slide-16
SLIDE 16

Ensure Termination

∞ represents infinity, which means that the upper bound is unknown.

{↑ i} represents a size constraint.

The recursive call in the last line shows that all three arguments decrease, thus termination is ensured.

16

minus : {i : Size} -> SNat {i} -> SNat {∞} -> SNat {i} minus .{↑i} (zero {i}) y = zero {i} minus {i} x (zero .{∞}) = x minus .{↑i} (succ {i} x) (succ .{∞} y) = minus {i} x y

slide-17
SLIDE 17

Ensure Termination

Both x and minus {i} x y are bounded by size i, thus the recursive call is of size i while the arguments are of size ↑i, so termination is ensured.

17

div : {i : Size} -> SNat {i} -> SNat {∞} -> SNat {i} div .{↑ i} (zero {i}) y = zero {i} div .{↑ i} (succ {i} x) y = succ {i} (div {i} (minus {i} x y) y)

slide-18
SLIDE 18

Interleaving Inductive Types

An advantages of using sized types include that they scale very well to higher order constructions. Using sized types we have increased modularity compared to the untyped termination checkers. We will show this by looking at the rosetree construction.

18

slide-19
SLIDE 19

Rosetree

data Rose (A : Set) : Set where rose : A -> List (Rose A) -> Rose A

19

A rosetree is a tree with the following properties

  • Nodes have values
  • Nodes have a variable number of branches
  • Leafs are nodes without branches

We can define a rosetree in Agda as follows:

slide-20
SLIDE 20

Rosetree example

rose 1 []

20

1

slide-21
SLIDE 21

Rosetree example

rose 1 []

21

1

rose 1 [ rose 2 [], rose 4 [ rose 16 [], rose 64 [], rose 256 [] ] ]

1 2 4 16 64 256

slide-22
SLIDE 22

Recursive Functions on Rosetree

mapRose : {A B : Set} -> (A -> B) -> Rose A -> Rose B mapRose f (rose a l) = rose (f a) (map (mapRose f) l)

22

We already have list functions, for example map or filter, so if we implement function on the rosetree we want to reuse as much as possible. However, both Coq and Agda fail to conclude this terminates, as the recursive call doesn’t have the same type, as it is underapplied.

slide-23
SLIDE 23

Recursive Functions on Rosetree

mapRose : {A B : Set} -> (A -> B) -> Rose A -> Rose B mapRose f (rose a l) = rose (f a) (map (mapRose f) l)

23

However termination is trivial: All rosetrees in the recursive call have a height that is strictly smaller than the height of the previous rosetree. This is exactly sized type rosetrees where the size is the number of constructors!

slide-24
SLIDE 24

Rosetree using Sized Type

Now we expand the rosetree definition using sized type.

24

data SRose (A : Set) : {_ : Size} -> Set where srose : {i : Size} -> A -> List (SRose A {i}) -> SRose A {↑i}

The size of the rosetree should be equal to the height of the tree. That is the case if we count the number of constructors, like we did before with SNat.

slide-25
SLIDE 25

Mapping on a Sized Rosetree

Now we edit the mapping function such that it accepts SRose.

25

  • 1. Doesn’t work, replace this with “srose {_} {i} (f a) (map (mapRose {i} f) l)” or do not use explicit sizes

mapSRose : {i : Size } -> {A B : Set} -> (A -> B) -> SRose A {i} -> SRose B {i} mapSRose .{↑i} f (srose {i} a l) = srose {i} (f a) (map (mapRose {i} f) l)1