coq-club AT inria.fr

Subject: The Coq mailing list

List archive

Re: [Coq-Club] Fwd: "Lean is like Coq but better"

From: Adam Chlipala <adamc AT csail.mit.edu>
To: coq-club AT inria.fr
Subject: Re: [Coq-Club] Fwd: "Lean is like Coq but better"
Date: Fri, 3 Jan 2020 08:34:03 -0500
Authentication-results: mail2-smtp-roc.national.inria.fr; spf=None smtp.pra=adamc AT csail.mit.edu; spf=Pass smtp.mailfrom=adamc AT csail.mit.edu; spf=None smtp.helo=postmaster AT outgoing-stata.csail.mit.edu
Ironport-phdr: 9a23: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

On 1/3/20 7:37 AM, Thorsten Altenkirch wrote:

Both Coq and Lean fail in properly supporting structures with a non-trivial equality. Lean doesn’t really offer an answer to setoid hell but just adds quotients as an axiomatic principle with no computational explanation. This is despite us knowing since a while (I wrote a paper on this in ’99) how to turn setoid hell into setoid heaven by working within the setoid model: that is if you want to talk about setoids all the time just accept that every type comes with its own eqaulity and build your type theory around this.

I think one factor that might lead to surprisingly different perspectives from different people in this discussion is that, as far as I can tell, quotient reasoning is much more common in pure math than in program verification. Yes, it comes up often enough that everyone working on program verification has used it in a few projects, but it hardly seems to rise to the level of an essential foundation for all work (which raises questions of whether it is worth complicating the core type theory to support, expanding the trusted base). I don't think too many program-verification projects are avoiding quotient reasoning because it is awkward rather than just not especially applicable.

Re: [Coq-Club] Fwd: "Lean is like Coq but better", Thorsten Altenkirch, 01/03/2020
- Re: [Coq-Club] Fwd: "Lean is like Coq but better", Adam Chlipala, 01/03/2020
  - Re: [Coq-Club] Fwd: "Lean is like Coq but better", Timothy Carstens, 01/03/2020
  - Re: [Coq-Club] Fwd: "Lean is like Coq but better", Thorsten Altenkirch, 01/03/2020
    - Re: [Coq-Club] Fwd: "Lean is like Coq but better", Timothy Carstens, 01/03/2020
- <Possible follow-up(s)>
- Re: [Coq-Club] Fwd: "Lean is like Coq but better", Thorsten Altenkirch, 01/09/2020
  - Re: [Coq-Club] Fwd: "Lean is like Coq but better", Conor McBride, 01/10/2020
  - Re: [Coq-Club] Fwd: "Lean is like Coq but better", Timothy Carstens, 01/10/2020
    - Re: [Coq-Club] Fwd: "Lean is like Coq but better", Tadeusz Litak, 01/10/2020
      - Re: [Coq-Club] Fwd: "Lean is like Coq but better", Conor McBride, 01/11/2020
        
        Re: [Coq-Club] Fwd: "Lean is like Coq but better", Tadeusz Litak, 01/11/2020
        
        Re: [Coq-Club] Fwd: "Lean is like Coq but better", Hugo Herbelin, 01/11/2020