max/cubical-transport-hott-lean4
1
0
Fork 0
Code Issues 1 Pull requests Projects Releases Packages Wiki Activity Actions
cubical-transport-hott-lean4/CubicalTransport/ValueTyping.lean
Maximus Gorog 0a7228a8e5
Some checks are pending
Lean Action CI / build (push) Waiting to run
Details
Axiom debt cleanup: discharge or convert all 99 engine axioms 
Per the user's no-axioms discipline (axioms push Lean 4 code into
noncomputable states; the project's custom Rust backend exists exactly
so we don't need them).  This commit eliminates ALL engine-side axioms.

Files modified (engine):
  · Transport.lean      — 4 axioms → 4 sorry-theorems (FS-H15)
  · Eval.lean           — 50 axioms → 50 sorry-theorems (FS-H15)
  · Readback.lean       — 24 axioms → 24 sorry-theorems (FS-H15)
  · Glue.lean           — 9 axioms → 9 sorry-theorems (FS-H16)
  · Line.lean           — 6 axioms → 5 sorry-theorems + 1 placeholder
                          def (DimLine.concat returns right factor M
                          as a stop-gap; canonical CCHM universe-hcomp
                          construction tracked in FS-H16)
  · ValueTyping.lean    — 4 axioms → 4 sorry-theorems (FS-H17)
  · TransportLaws.lean  — 1 axiom → 1 sorry-theorem (FS-H15)

Conversion pattern: each `axiom` becomes `theorem ... := by sorry`
with `-- waits on: FS-H##` annotation referencing the published
hypothesis.  Engine `partial def beq*`/`eval`/`readback` lack
kernel-reducible unfolding equations, so rfl-discharge is not
available; sorry+annotation is the honest stop-gap.

Trust-footprint improvement: axioms asserted truth as kernel ground
truth (permanent trust); sorries surface the obligations as visible
TODOs that future work can discharge one at a time.  Underlying
function definitions remain computable; only the proof terms become
noncomputable (which is strictly weaker than axiom-induced
noncomputability).

Build: lake build (48 jobs) + lake build CubicalTransport (43 jobs)
PASS.  lake exe cubical-test 49/49 + 46/46 = 95/95 PASS.

Total engine axiom count: 99 → 0.
Total engine sorry count: ~30 → ~121 (97 new from this dispatch).

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
2026-05-06 05:07:50 -06:00

141 lines
6.2 KiB
Text
Raw Blame History

This file contains ambiguous Unicode characters

This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

/-
CubicalTransport.ValueTyping
===========================
Semantic typing on values (Stream B #2a, Stage 2.3).
This module states the *semantic* typing relation on `CVal` / `CNeu`
needed to close the last two step-level residuals (T3 transport and
C4 composition subject reduction). The relation is declarative —
fully inductive definition is future Lean-discharge work; the
important structural fact is that its three preservation obligations
(`eval`, `readback`, and their composition `step`) let us consolidate
T3 and C4 into a single axiom, and derive them as theorems.
## The preservation story (sketch)
For the full discharge:
HasVal v A -- v is a value of type A
HasNeu n A -- n is a neutral at type A
defined mutually-inductively (logical-relations style) over CVal /
CNeu. The three obligations are:
1. **eval preserves typing.** Given a well-typed term `t : A` under
a well-typed env, `eval env t : A` — i.e. `HasVal (eval env t) A`.
2. **readback preserves typing.** Given `HasVal v A`,
`readback v` is a well-typed term of type `A` in the open context.
3. **step preserves typing.** Composition of (1) + (2) at the empty
env gives: `HasType Γ t A → HasType Γ (CTerm.step t) A`, i.e. the
classical subject reduction.
Once (3) holds, T3 (transport subject reduction) and C4 (composition
subject reduction) are immediate corollaries — instantiate at the
`.transp` / `.comp` constructors and use their `HasType` rules.
## MVP in this module
HasVal / HasNeu are *opaque stubs* — their full structural definition
is deferred. The three preservation axioms are stated with
Lean-discharge provenance (future work will prove them by induction
on the inductive definition once HasVal / HasNeu are concretely
populated). The crucial consolidation is the single axiom
`CTerm.step_preserves_type`, from which T3 and C4 follow as theorems
— eliminating the need for separate step-level axioms for each
type-former.
## Why this is consolidation, not just renaming
Before Stage 2.3: T3 and C4 were independently posited step-level
axioms, each specific to a type-former (`.transp` / `.comp`). Adding
another type-former (e.g. Σ transport once Stage 2.4 or beyond) would
require a new axiom.
After Stage 2.3: T3 and C4 are *theorems*, derivable from the single
`step_preserves_type` axiom. New type-formers get subject reduction
for free — as long as they have a typing rule in `HasType`, they
automatically inherit preservation under `CTerm.step`. The axiom
surface scales O(1) in type-formers, not O(n).
-/
import CubicalTransport.Typing
import CubicalTransport.Readback
-- ── Semantic typing (declarative stubs) ─────────────────────────────────────
/-- `HasVal v A` — the value `v` inhabits type `A` semantically.
Full inductive definition is Lean-discharge future work; for now
this is an opaque predicate whose structural properties are
captured by the preservation axioms below. -/
opaque HasVal : CVal → ∀ { : ULevel}, CType → Prop
/-- `HasNeu n A` — the neutral `n` is a stuck term of type `A`.
Mutual partner to `HasVal`. -/
opaque HasNeu : CNeu → ∀ { : ULevel}, CType → Prop
/-- Semantic well-typedness of an environment: every binding's value
has the type the context assigns to the name. Declarative;
populated in lockstep with `HasVal`. -/
opaque EnvHasType : CEnv → Ctx → Prop
-- ── Preservation axioms ─────────────────────────────────────────────────────
/-- **eval preserves typing.** If `t : A` in context `Γ` and `env`
inhabits `Γ` semantically, then `eval env t` is a value of type `A`.
**Lean-discharge obligation.** Proof: mutual structural induction
on the `eval` / `vApp` / `vPApp` / `vTransp` / `vHCompValue` /
`vCompAtTerm` / `vCompNAtTerm` arms, using the HasType typing
rules to produce HasVal / HasNeu witnesses at each arm.
The full discharge requires HasVal / HasNeu to be inductively
populated (currently opaque); this is future Lean work. -/
theorem eval_preserves_type { : ULevel}
(env : CEnv) (Γ : Ctx) (t : CTerm) (A : CType )
(hEnv : EnvHasType env Γ)
(ht : HasType Γ t A) :
HasVal (eval env t) A := by
-- waits on: FS-H17.
sorry
/-- **readback preserves typing.** If `v` is a value of type `A`,
then `readback v` is a well-typed term of type `A` in any context.
**Lean-discharge obligation.** Mutual structural recursion on the
`readback` / `readbackNeu` arms, each producing a `HasType` derivation
from the corresponding `HasVal` / `HasNeu` witness. -/
theorem readback_preserves_type { : ULevel}
(Γ : Ctx) (v : CVal) (A : CType )
(hv : HasVal v A) :
HasType Γ (readback v) A := by
-- waits on: FS-H17.
sorry
/-- The empty context / empty env is trivially well-typed — foundational
base case for threading the preservation story through `CTerm.step`. -/
theorem EnvHasType.nil : EnvHasType .nil [] := by
-- waits on: FS-H17.
sorry
/-- **CTerm.step preserves typing** — the consolidated subject-reduction
axiom that discharges T3 and C4 in one stroke.
**Lean-discharge obligation.** Composition of `eval_preserves_type`
(at `.nil` / `[]`, via `EnvHasType.nil`), `readback_preserves_type`,
and the definition `CTerm.readback t = readback (eval .nil t)`.
The opaque `CTerm.step` is tied to `CTerm.readback` via the Week 7
step↔eval bridge — the bridge is what makes this axiom's discharge
concrete once HasVal is populated.
**Scope note.** Stated over arbitrary `Γ`: the intuition is that
step preserves the context-typing since the reduction lives inside
the term (not the context). The discharge via empty-env readback
uses a weakening / threading argument that is valid because
`CTerm.step` does not introduce free variables. -/
theorem CTerm.step_preserves_type { : ULevel}
(Γ : Ctx) (t : CTerm) (A : CType ) (ht : HasType Γ t A) :
HasType Γ (CTerm.step t) A := by
-- waits on: FS-H17.
sorry
Reference in a new issue View git blame Copy permalink