New proof based on an hand-made functional induction.

[helm.git] / helm / matita / library / list / sort.ma

(**************************************************************************)
(*       ___                                                              *)
(*      ||M||                                                             *)
(*      ||A||       A project by Andrea Asperti                           *)
(*      ||T||                                                             *)
(*      ||I||       Developers:                                           *)
(*      ||T||         The HELM team.                                      *)
(*      ||A||         http://helm.cs.unibo.it                             *)
(*      \   /                                                             *)
(*       \ /        This file is distributed under the terms of the       *)
(*        v         GNU General Public License Version 2                  *)
(*                                                                        *)
(**************************************************************************)

set "baseuri" "cic:/matita/list/sort/".

include "datatypes/bool.ma".
include "datatypes/constructors.ma".
include "list/list.ma".

let rec mem (A:Set) (eq: A → A → bool) x (l: list A) on l ≝
 match l with
  [ nil ⇒ false
  | (cons a l') ⇒
    match eq x a with
     [ true ⇒ true
     | false ⇒ mem A eq x l'
     ]
  ].
  
let rec ordered (A:Set) (le: A → A → bool) (l: list A) on l ≝
 match l with
  [ nil ⇒ true
  | (cons x l') ⇒
     match l' with
      [ nil ⇒ true
      | (cons y l'') ⇒
          le x y \land ordered A le l'
      ]
  ].
  
let rec insert (A:Set) (le: A → A → bool) x (l: list A) on l ≝
 match l with
  [ nil ⇒ [x]
  | (cons he l') ⇒
      match le x he with
       [ true ⇒ x::l
       | false ⇒ he::(insert A le x l')
       ]
  ].
(*
theorem insert_ind:
 ∀A:Set. ∀le: A → A → bool. ∀x:A.
  ∀P: list A → Prop.
   ∀l:list A. P (insert A le x l).
 intros (A le x P H l).
 apply (
 let rec insert_ind (l: list A) ≝
  match l in list return λl.P (insert A le x l) with
   [ nil ⇒ (? : P [x])
   | (cons he l') ⇒
       match le x he return λb.P (match b with [ true ⇒ x::he::l' | false ⇒ he::(insert A le x l') ]) with
        [ true ⇒ (H2 : P (x::he::l'))
        | false ⇒ (? : P (he::(insert A le x l')))
        ]
   ]
 in
  insert_ind l).
qed.
*)

let rec insertionsort (A:Set) (le: A → A → bool) (l: list A) on l ≝
 match l with
  [ nil ⇒ []
  | (cons he l') ⇒
      let l'' ≝ insertionsort A le l' in
       insert A le he l''
  ].

lemma ordered_injective:
  ∀ A:Set. ∀ le:A → A → bool.
  ∀ l:list A.
  ordered A le l = true
  \to ordered A le (tail A l) = true.
  intros 3 (A le l).
  elim l
  [ simplify; reflexivity;
  | simplify;
    generalize in match H1;
    clear H1;
    elim l1;
    [ simplify; reflexivity;
    | cut ((le s s1 \land ordered A le (s1::l2)) = true);
      [ generalize in match Hcut; 
        apply andb_elim;
        elim (le s s1);
        [ simplify;
          fold simplify (ordered ? le (s1::l2));
          intros; assumption;
        | simplify;
          intros (Habsurd);
          apply False_ind;
          apply (not_eq_true_false);
          symmetry;
          assumption
        ]
      | exact H2;
      ]
    ]
  ].
qed.


lemma insert_sorted:
  \forall A:Set. \forall le:A\to A\to bool.
  (\forall a,b:A. le a b = false \to le b a = true) \to
  \forall l:list A. \forall x:A.
    ordered A le l = true \to ordered A le (insert A le x l) = true.
 intros 5 (A le H l x).
 apply (
  let rec insert_ind (l: list A) \def
  match l in list
  return
    λli.
     l = li → ordered ? le li = true →
      ordered ? le (insert A le x li) = true
  with
   [ nil ⇒ (? : l = [] → ordered ? le [] = true → ordered ? le [x] = true)
   | (cons he l') ⇒
       match le x he
       return
        λb. le x he = b → l = he::l' →
         ordered ? le (he::l') = true → ordered ? le
          (match b with 
            [ true ⇒ x::he::l'
            | false ⇒ he::(insert A le x l') ]) = true
       with
        [ true ⇒
            (? :
              le x he = true →
               l = he::l' →
                ordered ? le (he::l') = true →
                 ordered ? le (x::he::l') = true)
        | false ⇒
           let res ≝ insert_ind l' in
            (? :                  
                  le x he = false → l = he::l' →
                   ordered ? le (he::l') = true →
                    ordered ? le (he::(insert ? le x l')) = true)           
        ]
       (refl_eq ? (le x he))
   ] (refl_eq ? l) in insert_ind l);
  
  intros; simplify;
  [ rewrite > insert_ind;
    [ generalize in match (H ? ? H1); clear H1; intro;
      generalize in match H3; clear H3;
      elim l'; simplify;
      [ rewrite > H4;
        reflexivity
      | elim (le x s); simplify;
        [ rewrite > H4;
          reflexivity
        | simplify in H3;
          rewrite > (andb_true_true ? ? H3);
          reflexivity
        ]
      ]
      
    | apply (ordered_injective ? ? ? H3)
    ]
  | rewrite > H1;
    rewrite > H3;
    reflexivity
  | reflexivity
  ].
qed.
  
theorem insertionsort_sorted:
  ∀A:Set.
  ∀le:A → A → bool.∀eq:A → A → bool.
  (∀a,b:A. le a b = false → le b a = true) \to
  ∀l:list A.
  ordered A le (insertionsort A le l) = true.
  intros 5 (A le eq le_tot l).
  elim l;
  [ simplify;
    reflexivity;
  | apply (insert_sorted A le le_tot (insertionsort A le l1) s);
    assumption;
  ]
qed.