Last active
June 27, 2022 11:08
-
-
Save Kha/96d67c8b947b48f8786aea90857fbb5c to your computer and use it in GitHub Desktop.
Lean 4 port of [Proving insertion sort correct easily in Coq](https://gist.github.com/siraben/3fedfc2c5a242136a9bc6725064e9b7d) using https://github.com/JLimperg/aesop
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import Aesop | |
| variable [LE α] [DecidableRel ((· ≤ ·) : α → α → Prop)] | |
| @[aesop safe constructors] | |
| inductive Sorted : List α → Prop where | |
| | nil : Sorted [] | |
| | single : Sorted [x] | |
| | cons_cons : x ≤ x' → Sorted (x' :: xs) → Sorted (x :: x' :: xs) | |
| @[simp] def insertInOrder (a : α) : List α → List α | |
| | [] => [a] | |
| | x :: xs => | |
| if a ≤ x then | |
| a :: x :: xs | |
| else | |
| x :: insertInOrder a xs | |
| @[simp] def insertionSort : List α → List α | |
| | [] => [] | |
| | x :: xs => insertInOrder x (insertionSort xs) | |
| variable (antisymm : ∀ {x y : α}, ¬ (x ≤ y) → y ≤ x) | |
| theorem sorted_insertInOrder {xs : List α} (h : Sorted xs) : Sorted (insertInOrder x xs) := by | |
| induction h <;> aesop | |
| theorem sorted_insertionSort {xs : List α} : Sorted (insertionSort xs) := by | |
| induction xs <;> aesop (add safe sorted_insertInOrder) | |
| inductive Perm : List α → List α → Prop where | |
| | nil : Perm [] [] | |
| | cons : Perm xs xs' → Perm (x :: xs) (x :: xs') | |
| | swap : Perm (x :: y :: xs) (y :: x :: xs) | |
| | trans : Perm xs ys → Perm ys zs → Perm xs zs | |
| attribute [aesop safe] Perm.nil | |
| attribute [aesop unsafe] Perm.cons | |
| attribute [aesop unsafe] Perm.swap | |
| attribute [aesop unsafe] Perm.trans | |
| theorem Perm.symm : Perm xs ys → Perm ys xs := by | |
| intro h | |
| induction h <;> aesop | |
| @[aesop safe] | |
| theorem perm_insertInOrder {xs : List α} : Perm (x :: xs) (insertInOrder x xs) := by | |
| induction xs <;> aesop | |
| theorem perm_insertionSort {xs : List α} : Perm xs (insertionSort xs) := by | |
| induction xs with | |
| | nil => aesop | |
| | cons x xs => | |
| cases xs with | |
| | nil => aesop | |
| | cons x' xs => | |
| apply Perm.trans (ys := x :: insertInOrder x' xs) | |
| · exact Perm.cons perm_insertInOrder | |
| · apply Perm.trans (ys := x :: insertionSort (x' :: xs)) | |
| · aesop (add safe Perm.cons, unsafe [cases List, Perm.symm]) | |
| · aesop | |
| def IsSortingAlgorithm (f : List α → List α) := ∀ xs, Perm xs (f xs) ∧ Sorted (f xs) | |
| theorem isSortingAlgorithm_insertionSort : IsSortingAlgorithm (insertionSort (α := α)) := | |
| fun _xs => ⟨perm_insertionSort, sorted_insertionSort @antisymm⟩ |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment