Zulip Chat Archive

Stream: maths

Topic: Extensional Equality for Recursively Defined Fuzzy Sets

Hunches Freeze (Jun 01 2025 at 22:56):

Hi all,

I'm working on formalizing a theory of fuzzy sets in Lean where elements can be other fuzzy sets, and my ultimate goal is to have extensionality as the fundamental notion of equality. That is, for fuzzy sets X and Y, their equality $X = Y$ should be equivalent to $\forall Z, Z \in\sim X = Z \in\sim Y$ (where $Z \in\sim X$ is the membership degree of $Z$ in $X$).

My base type for constructing these is an inductive type:
inductive PreFuzzySet : Type (u + 1) | mk (α : Type u) (A : α → PreFuzzySet) (f : α → R01)
(where R01 is the type for truth values in $[0,1]$).

Initial Attempt (Structural Equivalence - from my project's InfiniteCore.lean):

My first approach was:

1. Define a structural, bisimilarity-like equivalence PreFuzzySet.Equiv ($E_S$):
   $E_S(\text{mk } \alpha A f, \text{mk } \beta B g) \iff (\forall a, \exists b, E_S(A a, B b) \land f a = g b) \land (\forall b, \exists a, E_S(A a, B b) \land f a = g b)$.

2. Define membership PreFuzzySet.Mem ($M_S$) based on this structural equivalence:
   $M_S(Z_{rep}, X_{rep}) := \bigvee_{i} (\text{if } E_S(Z_{rep}, X_{rep}.A_i) \text{ then } X_{rep}.f_i \text{ else } 0)$.

3. Define FuzzySet := Quotient (PreFuzzySet.setoid_of_relation E_S). So, $X=Y$ in this system meant their representatives were $E_S$-equivalent.

4. Lift $M_S$ to FuzzySet.Mem (Z,X).

Outcome: With this setup, the desired extensionality principle ($X=Y \iff (\forall Z', \text{FuzzySet.Mem } Z' X = \text{FuzzySet.Mem } Z' Y)$) turned out to be false.
Specifically, the $(\Leftarrow)$ direction failed. For example, a pre-fuzzy set representing $\{ (S_0, 0.5), (S_0, 0.4) \}$ and another representing $\{ (S_0, 0.5) \}$ are not $E_S$-equivalent (so their FuzzySet quotients are not equal). However, they yield the same membership degrees for all test sets $Z'$ using $M_S$, because $M_S$ involves a supremum (⨆), which effectively only "sees" the highest degree ($0.5$) for $S_0$-equivalent elements.

This led me to realize that if extensionality is primary, it must be baked into the definition of equality itself.

Target: Co-recursive Definition of Extensional Equality and Membership

I now want to define extensional equality E(X,Y) (a Prop) and membership M(Z,X) : R01 that satisfy the mutually recursive fixed-point equations:

1. $E(X,Y) \iff (\forall (Z : \text{PreFuzzySet}), M(Z,X) = M(Z,Y))$
2. $M(Z,X) \iff \bigvee_{i} (\text{if } E(Z, X.A_i) \text{ then } X.f_i \text{ else } 0)$ (where $X.A_i, X.f_i$ are from $X$'s mk constructor)

Challenges in Realizing This in Lean:

• Direct mutual def block: An attempt to define E and M directly using a mutual block in Lean fails termination checking, primarily due to the ∀ Z in the definition of E. When M(Z,X) recursively calls E(Z, X.Aᵢ), the argument Z is not necessarily structurally smaller than X or Y from an initial E(X,Y) definition, breaking Lean's default structural recursion checker.

• Iterative Approach (Approximating $E$ as $\forall k, E_k(X,Y)$):
  I then tried defining $E$ as the limit of approximations $E_k$:

  * $E_0(X,Y) := \text{True}$ (the universal relation).
  * $E_{k+1}(X,Y) := \forall (Z : \text{PreFuzzySet}), M(E_k, Z, X) = M(E_k, Z, Y)$,
  where $$M(R, Z, X) := \text{Mem_step } R Z X = \bigvee_{i} (\text{if } R(Z, X.A_i) \text{ then } X.f_i \text{ else } 0)$$

  * And finally, $E(X,Y) := \forall k, E_k(X,Y)$.

  The problem here is that for $E = \bigcap E_k$ to be the greatest fixed point (gfp) of the operator $\Phi(R)(X,Y) := (\forall Z, M(R, Z, X) = M(R, Z, Y))$, such that $E = \Phi(E)$, the sequence $(E_k)_k$ must be decreasing ($E_k \supseteq E_{k+1}$, i.e., $E_{k+1}(X,Y) \implies E_k(X,Y)$). This typically requires $\Phi$ to be $\supseteq$-monotonic (if $R_1 \supseteq R_2$, then $\Phi(R_1) \supseteq \Phi(R_2)$). My analysis suggests this specific $\Phi$ is not $\supseteq$-monotonic. If this is correct, the sequence $E_k = \Phi^k(\top)$ is not guaranteed to be decreasing, and therefore $E = \bigcap E_k$ might not be the desired gfp satisfying $E = \Phi(E)$. This makes proving essential properties like $E(X,Y) \implies \Phi(E)(X,Y)$ (which is extensionalEquiv_unfolds in my code) problematic from this construction.

My Core Question:

What is the standard or recommended "Lean-idiomatic" and mathematically rigorous way to define such an extensional equivalence E (which should effectively be the gfp of the operator $\Phi$ described above) and the corresponding membership function M for an inductive type like PreFuzzySet?
Specifically, I'm looking for an approach that:

• Is provably terminating / well-defined in Lean.
• Avoids "approximations" (like fuel parameters) in the final definitions of E and M.
• Allows establishing the fixed-point property $E(X,Y) \iff (\forall Z, M(E, Z, X) = M(E, Z, Y))$.

Is there a standard technique in Mathlib or a common pattern for these types of coinductive definitions over inductive structures, especially when a universal quantifier (∀ Z) is involved in the defining equation and the "observation" (M) returns a value from a lattice like R01 rather than just a Prop?

Thanks for any guidance or pointers to relevant Mathlib theories or techniques!

Aaron Liu (Jun 02 2025 at 01:21):

I am thinking it should suffice to modify the definition of PreFuzzySet.Equiv to $E_S(\text{mk } \alpha A f, \text{mk } \beta B g) \iff (\forall a, \exists b, E_S(A a, B b) \land f a \le g b) \land (\forall b, \exists a, E_S(A a, B b) \land f a \ge g b)$ (note I have only checked this for R01 a linear order) EDIT: failed on an edge case

Hunches Freeze (Jun 02 2025 at 02:11):

The problem is that ANY structural equivalence will be too fine-grained. When membership is defined as ⨆{f_i : A_i ≡ Z}, sets like {(S₀, 0.5), (S₀, 0.4)} and {(S₀, 0.5)} give the same membership values but aren't structurally equivalent. The issue is circular: we need extensional equivalence to define membership, but need membership to define extensional equivalence. The iterative approximation approach tries to solve this but requires complex convergence proofs that may not hold

Kenny Lau (Jun 02 2025 at 08:08):

sounds like forcing to me

Aaron Liu (Jun 02 2025 at 09:41):

Does this count as extensional?

import Mathlib

-- Since `Rpt` is opaque, this should work for any complete lattice.
private opaque Rpt : (R01 : Type) × CompleteLattice R01 := ⟨Unit, inferInstance⟩
def R01 := Rpt.fst
instance : CompleteLattice R01 := Rpt.snd

inductive PreFuzzySet : Type (u + 1)
  | mk (α : Type u) (A : α → PreFuzzySet) (f : α → R01)

def PreFuzzySet.α : PreFuzzySet.{u} → Type u
  | mk α _ _ => α

def PreFuzzySet.A : (x : PreFuzzySet) → x.α → PreFuzzySet
  | mk _ A _ => A

def PreFuzzySet.f : (x : PreFuzzySet) → x.α → R01
  | mk _ _ f => f

def PreFuzzySet.Equiv : PreFuzzySet → PreFuzzySet → Prop
  | .mk α A f, .mk β B g =>
    (∀ a, f a ≤ ⨆ (i : β) (_ : (A a).Equiv (B i)), g i) ∧
    (∀ b, g b ≤ ⨆ (i : α) (_ : (A i).Equiv (B b)), f i)

-- Should this be `Mem` or `mem`?
def PreFuzzySet.Mem (z x : PreFuzzySet) : R01 :=
  ⨆ (i : x.α) (_ : z.Equiv (x.A i)), x.f i

@[refl, simp]
theorem PreFuzzySet.Equiv.refl (x : PreFuzzySet) : x.Equiv x := by
  induction x with | mk α A f ih
  unfold PreFuzzySet.Equiv
  constructor
  · intro i
    exact @le_iSup₂ R01 α ((A i).Equiv <| A ·) _ (fun j _ => f j) i (ih i)
  · intro i
    exact @le_iSup₂ R01 α (A · |>.Equiv (A i)) _ (fun j _ => f j) i (ih i)

theorem PreFuzzySet.Equiv.rfl {x : PreFuzzySet} : x.Equiv x := .refl x

@[symm]
theorem PreFuzzySet.Equiv.symm {x y : PreFuzzySet} (hxy : x.Equiv y) : y.Equiv x := by
  induction x generalizing y with | mk α A f ih
  cases y with | mk β B g
  unfold PreFuzzySet.Equiv at hxy ⊢
  constructor
  · intro a
    apply (hxy.right a).trans
    apply iSup₂_mono'
    intro i hi
    exact ⟨i, ih i hi, le_rfl⟩
  · intro b
    apply (hxy.left b).trans
    apply iSup₂_mono'
    intro i hi
    exact ⟨i, ih b hi, le_rfl⟩

theorem PreFuzzySet.equiv_comm {x y : PreFuzzySet} : x.Equiv y ↔ y.Equiv x :=
  ⟨.symm, .symm⟩

@[trans]
theorem PreFuzzySet.Equiv.trans {x y z : PreFuzzySet} (hxy : x.Equiv y) (hyz : y.Equiv z) :
    x.Equiv z := by
  induction x generalizing y z with | mk α A f ih
  cases y with | mk β B g
  cases z with | mk γ C h
  unfold PreFuzzySet.Equiv at hxy hyz ⊢
  constructor
  · intro a
    apply (hxy.left a).trans
    apply iSup₂_le
    intro i hi
    apply (hyz.left i).trans
    apply iSup₂_mono'
    intro j hj
    exact ⟨j, ih a hi hj, le_rfl⟩
  · intro b
    apply (hyz.right b).trans
    apply iSup₂_le
    intro i hi
    apply (hxy.right i).trans
    apply iSup₂_mono'
    intro j hj
    exact ⟨j, ih j hj hi, le_rfl⟩

theorem PreFuzzySet.mem_congr {x y z w : PreFuzzySet}
    (hxy : x.Equiv y) (hzw : z.Equiv w) : x.Mem z = y.Mem w := by
  cases x with | mk α A f
  cases y with | mk β B g
  cases z with | mk γ C h
  cases w with | mk δ D k
  unfold PreFuzzySet.Mem
  apply le_antisymm
  · apply iSup₂_le
    intro i hi
    apply (hzw.left i).trans
    apply iSup₂_mono'
    intro j hj
    exact ⟨j, hxy.symm.trans (hi.trans hj), le_rfl⟩
  · apply iSup₂_le
    intro i hi
    apply (hzw.right i).trans
    apply iSup₂_mono'
    intro j hj
    exact ⟨j, hxy.trans (hi.trans hj.symm), le_rfl⟩

-- I was going to make this universe polymorphic but it was too much of a hassle so I didn't.
theorem PreFuzzySet.ext {x y : PreFuzzySet.{u}}
    (h : ∀ (z : PreFuzzySet.{u}), z.Mem x = z.Mem y) : x.Equiv y := by
  cases x with | mk α A f
  cases y with | mk β B g
  constructor
  · intro a
    apply le_of_eq_of_le' (h (A a))
    exact @le_iSup₂ R01 α ((A a).Equiv <| A ·) _ (fun j _ => f j) a .rfl
  · intro b
    conv =>
      enter [2, 1, i]
      rw [PreFuzzySet.equiv_comm]
    apply le_of_eq_of_le' (h (B b)).symm
    exact @le_iSup₂ R01 β ((B b).Equiv <| B ·) _ (fun j _ => g j) b .rfl

theorem PreFuzzySet.ext_iff {x y : PreFuzzySet.{u}} :
    x.Equiv y ↔ ∀ (z : PreFuzzySet.{u}), z.Mem x = z.Mem y :=
  ⟨fun h z => PreFuzzySet.mem_congr (.refl z) h, PreFuzzySet.ext⟩

-- bonus
theorem PreFuzzySet.mem_self_eq_bot {x : PreFuzzySet} : x.Mem x = ⊥ := by
  induction x with | mk α A f ih
  unfold PreFuzzySet.Mem
  rw [iSup₂_eq_bot]
  intro i hi
  rw [← le_bot_iff, ← (PreFuzzySet.mem_congr hi hi).trans (ih i)]
  unfold PreFuzzySet.Mem
  exact @le_iSup₂ R01 α ((PreFuzzySet.mk α A f).Equiv <| A ·) _ (fun j _ => f j) i hi

Hunches Freeze (Jun 02 2025 at 11:55):

Thank you for this solution! After analyzing it more carefully, I think this might actually work for my purposes. The ext_iff theorem achieves extensionality, and the mem_self_eq_bot theorem aligns perfectly with ZFC's foundation axiom.

My ultimate goal is to show that ZFC is an edge case of a Fuzzy ZFC (FZFC) theory. The idea is that when membership degrees are restricted to {0,1}, we recover classical ZFC exactly, which would then give us all of mathematics built on ZFC "for free" in the fuzzy setting.

What I need to verify is that I can:

1. Define fuzzy versions of all ZFC operations (pairing, union, powerset, infinity, etc.)
2. Prove these operations reduce to their classical counterparts when membership ∈ {0,1}
3. Show all ZFC axioms hold in the restricted case

Your construction seems to provide the right foundation for this - it has extensionality, respects well-foundedness, and the membership relation behaves correctly. I'll need to work through defining the other operations and checking that everything aligns properly when restricted to classical membership values.

Thanks again for this elegant approach! I'll experiment with it and see if I can build the full FZFC theory on top.

Hunches Freeze (Jun 02 2025 at 14:39):

I've been building on your approach and it's looking quite promising. The construction now includes:

Core pieces:

• Proper Truth type for [0,1] with complete lattice structure
• Your ext_iff: x.Equiv y ↔ ∀ z, z.Mem x = z.Mem y
• Foundation analog: mem_self_eq_bot gives x.Mem x = ⊥
• New: IsCrisp predicate for sets with only {0,1} degrees
• New: crisp_ext showing that for crisp sets, fuzzy extensionality reduces exactly to classical extensionality

The crisp_ext result is the key piece - it confirms that when restricted to crisp sets, we get exactly ZFC's extensionality axiom:

x.Equiv y ↔ ∀ z, z.CrispMem x ↔ z.CrispMem y

So the "classical limit" seems to be working as intended. I'll need to polish this up and build a proper FSet quotient type to get a higher-level API, but the foundational pieces look solid.

Next is defining fuzzy union, pairing, powerset etc. and proving they reduce to classical operations on crisp sets. But this gives me confidence the approach will work. Aaron, I owe you a coffee (or several)! This is brilliant.

Adam Topaz (Jun 02 2025 at 14:42):

Mathematical question: what's the relationship between fuzzy sets and continuous logic?

Hunches Freeze (Jun 02 2025 at 14:50):

The connection is that fuzzy set membership is essentially a continuous logic predicate. When I write "x ∈ A = 0.7" in fuzzy set theory, I'm really saying the predicate "x belongs to A" has truth value 0.7 in continuous logic.

So fuzzy set theory can be seen as continuous logic applied to membership relations. The logical connectives in continuous logic (like Godel t-norms for conjunction) correspond exactly to operations on fuzzy sets (like intersection).

In my FZFC project, I'm basically doing continuous logic for set theory - instead of "x ∈ y" being true or false, it's a degree in [0,1]. When I restrict back to {0,1}, I recover classical ZFC.

The neat thing is that continuous logic has nice model-theoretic properties that classical logic has, just generalized. So fuzzy set theory inherits a lot of that structure (like compactness - you can still have "if every finite subset of formulas is satisfiable, then the whole set is satisfiable", just with degrees instead of boolean satisfaction).

Adam Topaz (Jun 02 2025 at 15:06):

Ok, thanks. That essentially agrees with my (naive) understanding of fuzzy set theory. It would be an interesting project to formalize continuous logic analogously to how we have formalized first order logic in mathlib!

Hunches Freeze (Jun 02 2025 at 15:22):

Absolutely! That's exactly right - I'll need to formalize at least the relevant parts of continuous logic for FZFC. The membership relation z.Mem x : R01 is already a continuous logic predicate, and I'll need the logical connectives (which I'm starting to build with the Gödel t-norms).

Philosophically I think FZFC → ZFC is much more natural than trying to force fuzzy concepts into classical foundations. The idea is that "crisp" sets are just a special case where membership happens to be {0,1}, rather than the fundamental building blocks.

The quantum mechanics angle is what I'm thinking about long-term. QM with its superpositions, entanglement, and probabilistic measurements feels like it wants fuzzy/continuous foundations. Right now we're essentially forcing quantum phenomena through a classical set-theoretic lens, which always felt awkward to me.

I see it like ZFC gives us a "black and white" model of reality - which works brilliantly for many phenomena! But FZFC could unlock a "colorful" model, revealing new dimensions that were simply impossible to conceive within the crisp framework. General Relativity works fine in ZFC, but "pulling it down" to the FZFC layer might illuminate what pieces we're missing or help us see the connections between quantum and classical in ways that weren't visible before.

If we can show that all of classical mathematics emerges naturally when FZFC restricts to crisp sets, then we get the best of both worlds - full compatibility with existing math, but with this new colorful dimension available when reality demands it.

It's wildly ambitious, but the clean extensionality and foundation axioms make me optimistic this could actually work!

Hunches Freeze (Jun 02 2025 at 18:15):

What if we don't just stop at fuzzy sets, but extend the fuzziness to logic itself?

Imagine a formal system where the truth of any proposition isn't binary (True/False), but a continuously evolving value in [0,1]. This isn't just about handling uncertainty in set membership; it's about a "Calculus of Truth" where:

• Proofs are Truth-Increasing Functions: A proof isn't a single "True/False" deduction, but an operator that incrementally increases a statement's truth value.
• Conjectures Converge to 1: Problems like the Riemann Hypothesis could be "solved" by showing their truth value converges to 1 via an iterative process (e.g., 0.9 → 0.99 → 0.999...). This offers a "continuous" path to formal proof.
• Truth Sensitivity Analysis: We could precisely measure which parts of a proof are most critical to its overall truth. This would reveal the "drivers" and "bottlenecks" in a complex argument.
• The Geometry of Proofs: We could analyze different "proof shapes" – the shortest path to truth, the most intuitive, or the most convoluted. This might even expose "unnatural glue" in classical proofs – auxiliary lemmas that are only needed to bridge binary gaps, but are irrelevant if we allow for limits. We could prove a theorem without this "glue" by showing its truth value converges to 1 anyway!

This would transform theorem proving into a dynamic field of Truth Analysis, offering unparalleled insight into the structure of mathematical knowledge itself, potentially revealing new ways to prove theorems and simplify existing ones by understanding the very "topology of truth."

This is just off the top of my head but I think it could be a very interesting avenue to pursue. I am aware that it would require implementing basically a fuzzy mathlib from scratch. But still, I am putting it out there; I may try after FZFC is done.

Hunches Freeze (Jun 03 2025 at 15:38):

Just wanted to give you a quick update and see if you might have any insights.

I've successfully implemented:

• Membership (Mem)
• Equivalence (Equiv)
• Equality (eq)
• Subset (subset)
• Union (union)
• And I'm currently working on Intersection (inter), and its properties, which seems to be coming along.

I'm now looking ahead to implementing complementation (compl). I'm running into a conceptual block on how to define compl given the inductive PreFuzzySet.mk α A f structure, such that the expected membership property z.Mem (xᶜ) = ¬(z.Mem x) holds.

It seems like my current PreFuzzySet.mk pattern, while great for union and intersection, might not directly support this kind of pointwise complement without some deeper considerations.

Any guidance on how to approach defining compl (or other operations that require a more general PreFuzzySet construction from a membership function) within this inductive framework would be incredibly helpful!

Thanks so much for your time and expertise.

Aaron Liu (Jun 03 2025 at 15:46):

I don't quite understand your z.Mem (xᶜ) = ¬(z.Mem x), what's ¬ in fuzzy logic?

Hunches Freeze (Jun 03 2025 at 15:50):

When I wrote z.Mem (xᶜ) = ¬(z.Mem x), the ¬ refers to the fuzzy negation operator (Truth.neg) I'm planning to use. Based on the Truth.imp definition currently in Core/Truth.lean, the most natural fuzzy negation derived from it is Gödel negation (i.e., ¬p would be p.imp 0).

-- Core/Truth.lean
universe u

/-- Closed unit interval with range witnesses. -/
@[ext]
structure Truth where
  val  : ℝ
  range : 0 ≤ val ∧ val ≤ 1
-- Notation for Truth values
notation "R01" => Truth

namespace Truth
-- Instances for 0 and 1
instance : Zero R01 := ⟨⟨0, by simp⟩⟩
instance : One  R01 := ⟨⟨1, by simp⟩⟩
@[simp] lemma val_zero : (0 : R01).val = 0 := rfl
@[simp] lemma val_one  : (1 : R01).val = 1 := rfl
-- Instances for order relations
instance : LE R01 where
  le a b := a.val ≤ b.val

instance : LT R01 where
  lt a b := a.val < b.val
-- Gödel implication
noncomputable def imp (a b : R01) : R01 :=
  ⟨if h_condition : a.val ≤ b.val then (1 : ℝ) else b.val,
   -- (original proof here, omitted for brevity)
   by exact And.intro (by split_ifs <;> simp [*]) (by split_ifs <;> simp [*])
  ⟩

end Truth

In standard fuzzy set theory, the complement of a fuzzy set X is defined pointwise: μ_{Xᶜ}(z) = ¬(μ_X(z)). This z.Mem (xᶜ) = ¬(z.Mem x) is the intuitive property I'm aiming for, ensuring ZFC behavior in the crisp edge case.

However, with the PreFuzzySet.mk α A f inductive structure you suggested, I've encountered a "short blanket" dilemma. This structure is powerful for building nested fuzzy sets, but it appears to clash with achieving perfectly pointwise complementation.

If I define compl x in the most direct way (e.g., PreFuzzySet.mk x.α x.A (fun a => ¬(x.f a))), the resulting z.Mem (xᶜ) becomes ⨆ (i : x.α) (_ : z.Equiv (x.A i)), ¬(x.f i). The core problem is that ⨆ (negated values) is generally not equal to negated (⨆ original values) when using Gödel negation (or even Łukasiewicz negation), because fuzzy negation doesn't commute with the iSup operation.

This mismatch becomes evident even for crisp sets:
Assume x is crisp. Suppose z is equivalent to multiple constituents of x, say x.A₁ with x.f₁ = 1 and x.A₂ with x.f₂ = 0.

1. z.Mem x (actual membership): max(x.f₁, x.f₂, ...) = max(1, 0, ...) = 1. (z is in x).
2. Desired ZFC complement (¬ is Gödel negation): ¬(z.Mem x) = ¬1 = 0. (z is not in xᶜ).
3. z.Mem (xᶜ) (with proposed compl): max(¬x.f₁, ¬x.f₂, ...) = max(¬1, ¬0, ...) = max(0, 1, ...) = 1. (z is in xᶜ).

Since 0 ≠ 1, z.Mem (xᶜ) does not match ¬(z.Mem x) for a crisp set, breaking the ZFC edge case.

Given this, I'm wondering if a fundamental choice about PreFuzzySet's core structure, or perhaps a redesign, is necessary to fully capture both the nested set capability and the desired pointwise ZFC behavior for all operations. Any further insights you might have on this specific challenge with the PreFuzzySet.mk design would be greatly appreciated!

Aaron Liu (Jun 03 2025 at 16:43):

Now what stops you from constructing the fuzzy set of all fuzzy sets that do not contain themselves (assuming you get comprehension/specification)?

Aaron Liu (Jun 03 2025 at 17:03):

Building off what I wrote earlier,

def PreFuzzySet.empty : PreFuzzySet := .mk PEmpty PEmpty.elim PEmpty.elim

theorem PreFuzzySet.mem_empty_eq_bot (x : PreFuzzySet) :
    x.Mem PreFuzzySet.empty = ⊥ := by
  unfold PreFuzzySet.Mem PreFuzzySet.empty PreFuzzySet.α
  simp

-- presumably you would want these properties
axiom R01.neg : R01 → R01
axiom R01.neg_bot : R01.neg ⊥ = ⊤
axiom R01.bot_ne_top : (⊥ : R01) ≠ ⊤
axiom PreFuzzySet.compl : PreFuzzySet.{u} → PreFuzzySet.{u}
axiom PreFuzzySet.mem_compl (x y : PreFuzzySet) : x.Mem y.compl = R01.neg (x.Mem y)

-- but this leads to a contradiction since
theorem uhoh : False := by
  apply R01.bot_ne_top
  rw [← R01.neg_bot, ← PreFuzzySet.mem_empty_eq_bot.{0} (PreFuzzySet.empty.compl),
    ← PreFuzzySet.mem_compl, PreFuzzySet.mem_self_eq_bot, PreFuzzySet.mem_empty_eq_bot]

import Mathlib

-- Since `Rpt` is opaque, this should work for any complete lattice.
private opaque Rpt : (R01 : Type) × CompleteLattice R01 := ⟨Unit, inferInstance⟩
def R01 := Rpt.fst
instance : CompleteLattice R01 := Rpt.snd

inductive PreFuzzySet : Type (u + 1)
  | mk (α : Type u) (A : α → PreFuzzySet) (f : α → R01)

def PreFuzzySet.α : PreFuzzySet.{u} → Type u
  | mk α _ _ => α

def PreFuzzySet.A : (x : PreFuzzySet) → x.α → PreFuzzySet
  | mk _ A _ => A

def PreFuzzySet.f : (x : PreFuzzySet) → x.α → R01
  | mk _ _ f => f

def PreFuzzySet.Equiv : PreFuzzySet → PreFuzzySet → Prop
  | .mk α A f, .mk β B g =>
    (∀ a, f a ≤ ⨆ (i : β) (_ : (A a).Equiv (B i)), g i) ∧
    (∀ b, g b ≤ ⨆ (i : α) (_ : (A i).Equiv (B b)), f i)

-- Should this be `Mem` or `mem`?
def PreFuzzySet.Mem (z x : PreFuzzySet) : R01 :=
  ⨆ (i : x.α) (_ : z.Equiv (x.A i)), x.f i

@[refl, simp]
theorem PreFuzzySet.Equiv.refl (x : PreFuzzySet) : x.Equiv x := by
  induction x with | mk α A f ih
  unfold PreFuzzySet.Equiv
  constructor
  · intro i
    exact @le_iSup₂ R01 α ((A i).Equiv <| A ·) _ (fun j _ => f j) i (ih i)
  · intro i
    exact @le_iSup₂ R01 α (A · |>.Equiv (A i)) _ (fun j _ => f j) i (ih i)

theorem PreFuzzySet.Equiv.rfl {x : PreFuzzySet} : x.Equiv x := .refl x

@[symm]
theorem PreFuzzySet.Equiv.symm {x y : PreFuzzySet} (hxy : x.Equiv y) : y.Equiv x := by
  induction x generalizing y with | mk α A f ih
  cases y with | mk β B g
  unfold PreFuzzySet.Equiv at hxy ⊢
  constructor
  · intro a
    apply (hxy.right a).trans
    apply iSup₂_mono'
    intro i hi
    exact ⟨i, ih i hi, le_rfl⟩
  · intro b
    apply (hxy.left b).trans
    apply iSup₂_mono'
    intro i hi
    exact ⟨i, ih b hi, le_rfl⟩

theorem PreFuzzySet.equiv_comm {x y : PreFuzzySet} : x.Equiv y ↔ y.Equiv x :=
  ⟨.symm, .symm⟩

@[trans]
theorem PreFuzzySet.Equiv.trans {x y z : PreFuzzySet} (hxy : x.Equiv y) (hyz : y.Equiv z) :
    x.Equiv z := by
  induction x generalizing y z with | mk α A f ih
  cases y with | mk β B g
  cases z with | mk γ C h
  unfold PreFuzzySet.Equiv at hxy hyz ⊢
  constructor
  · intro a
    apply (hxy.left a).trans
    apply iSup₂_le
    intro i hi
    apply (hyz.left i).trans
    apply iSup₂_mono'
    intro j hj
    exact ⟨j, ih a hi hj, le_rfl⟩
  · intro b
    apply (hyz.right b).trans
    apply iSup₂_le
    intro i hi
    apply (hxy.right i).trans
    apply iSup₂_mono'
    intro j hj
    exact ⟨j, ih j hj hi, le_rfl⟩

theorem PreFuzzySet.mem_congr {x y z w : PreFuzzySet}
    (hxy : x.Equiv y) (hzw : z.Equiv w) : x.Mem z = y.Mem w := by
  cases x with | mk α A f
  cases y with | mk β B g
  cases z with | mk γ C h
  cases w with | mk δ D k
  unfold PreFuzzySet.Mem
  apply le_antisymm
  · apply iSup₂_le
    intro i hi
    apply (hzw.left i).trans
    apply iSup₂_mono'
    intro j hj
    exact ⟨j, hxy.symm.trans (hi.trans hj), le_rfl⟩
  · apply iSup₂_le
    intro i hi
    apply (hzw.right i).trans
    apply iSup₂_mono'
    intro j hj
    exact ⟨j, hxy.trans (hi.trans hj.symm), le_rfl⟩

-- I was going to make this universe polymorphic but it was too much of a hassle so I didn't.
theorem PreFuzzySet.ext {x y : PreFuzzySet.{u}}
    (h : ∀ (z : PreFuzzySet.{u}), z.Mem x = z.Mem y) : x.Equiv y := by
  cases x with | mk α A f
  cases y with | mk β B g
  constructor
  · intro a
    apply le_of_eq_of_le' (h (A a))
    exact @le_iSup₂ R01 α ((A a).Equiv <| A ·) _ (fun j _ => f j) a .rfl
  · intro b
    conv =>
      enter [2, 1, i]
      rw [PreFuzzySet.equiv_comm]
    apply le_of_eq_of_le' (h (B b)).symm
    exact @le_iSup₂ R01 β ((B b).Equiv <| B ·) _ (fun j _ => g j) b .rfl

theorem PreFuzzySet.ext_iff {x y : PreFuzzySet.{u}} :
    x.Equiv y ↔ ∀ (z : PreFuzzySet.{u}), z.Mem x = z.Mem y :=
  ⟨fun h z => PreFuzzySet.mem_congr (.refl z) h, PreFuzzySet.ext⟩

-- bonus
theorem PreFuzzySet.mem_self_eq_bot {x : PreFuzzySet} : x.Mem x = ⊥ := by
  induction x with | mk α A f ih
  unfold PreFuzzySet.Mem
  rw [iSup₂_eq_bot]
  intro i hi
  rw [← le_bot_iff, ← (PreFuzzySet.mem_congr hi hi).trans (ih i)]
  unfold PreFuzzySet.Mem
  exact @le_iSup₂ R01 α ((PreFuzzySet.mk α A f).Equiv <| A ·) _ (fun j _ => f j) i hi

def PreFuzzySet.empty : PreFuzzySet := .mk PEmpty PEmpty.elim PEmpty.elim

theorem PreFuzzySet.mem_empty_eq_bot (x : PreFuzzySet) :
    x.Mem PreFuzzySet.empty = ⊥ := by
  unfold PreFuzzySet.Mem PreFuzzySet.empty PreFuzzySet.α
  simp

-- presumably you would want these properties
axiom R01.neg : R01 → R01
axiom R01.neg_bot : R01.neg ⊥ = ⊤
axiom R01.bot_ne_top : (⊥ : R01) ≠ ⊤
axiom PreFuzzySet.compl : PreFuzzySet.{u} → PreFuzzySet.{u}
axiom PreFuzzySet.mem_compl (x y : PreFuzzySet) : x.Mem y.compl = R01.neg (x.Mem y)

-- but this leads to a contradiction since
theorem uhoh : False := by
  apply R01.bot_ne_top
  rw [← R01.neg_bot, ← PreFuzzySet.mem_empty_eq_bot.{0} (PreFuzzySet.empty.compl),
    ← PreFuzzySet.mem_compl, PreFuzzySet.mem_self_eq_bot, PreFuzzySet.mem_empty_eq_bot]

Hunches Freeze (Jun 03 2025 at 20:46):

Yes, uhoh goes right to the core of the issue.

My understanding is now:

1. The ZFC-compatible complement should probably be complement_in U X, with z.Mem (complement_in U X) = (z.Mem U) ⊓ (¬(z.Mem X)). This is because in ZFC, the complement of a set X is always defined relative to a universe/context set U as Xᶜ = {z ∈ U | z ∉ X}. Translating this directly to fuzzy logic yields (z.Mem U) ⊓ (¬(z.Mem X)).
2. However, constructing this using PreFuzzySet.mk is still problematic due to the iSup aggregation in Mem not commuting with negation.
3. More fundamentally, the uhoh paradox suggests that even the existence of a universal function complement_in : PreFuzzySet → PreFuzzySet → PreFuzzySet is likely inconsistent with the current PreFuzzySet structure (which allows self-reference) and the x.Mem x = ⊥ property.

It seems the current PreFuzzySet design, while excellent for nesting, fundamentally clashes with consistently defining a universal pointwise complement that ensures strict ZFC behavior for the crisp edge case.

I believe it might be possible to fix this by fundamentally redefining FuzzySet as a function U → R01, allowing nesting through type parameterization. This approach should hopefully resolve the paradox and ensure exact ZFC behavior in the crisp edge case.

Paul Reichert (Jun 03 2025 at 20:54):

I have no business in fuzzy set theory and am not sure whether it helps in your case, but you mentioned that you are trying to define a coinductive predicate. Fresh from the oven, corecursive predicates have landed as a language feature.

Here's a silly example how they can be defined:

def eq (f : Nat → Nat) (g : Nat → Nat) : Prop :=
  f 0 = g 0 ∧ eq (f ∘ Nat.succ) (g ∘ Nat.succ)
greatest_fixpoint -- use `monotonicity by` if you need to prove monotonicity manually

Just a heads up, feel free to ignore this if it doesn't help.

Hunches Freeze (Jun 03 2025 at 21:02):

Thanks for the suggestion! Corecursive predicates are really cool. However, I don't think they directly resolve the current paradox. The issue seems to stem from the consistency of having a universal complement function on a self-referential type, rather than how a specific predicate itself is defined.

Aaron Liu (Jun 03 2025 at 21:44):

Hunches Freeze said:

1. The ZFC-compatible complement should probably be complement_in U X, with z.Mem (complement_in U X) = (z.Mem U) ⊓ (¬(z.Mem X)). This is because in ZFC, the complement of a set X is always defined relative to a universe/context set U as Xᶜ = {z ∈ U | z ∉ X}. Translating this directly to fuzzy logic yields (z.Mem U) ⊓ (¬(z.Mem X)).

This seems correct to me. Instead of calling it "complement", I think it would be better to call it "set difference", since this matches with what we use already (the notation typeclass is docs#SDiff).

2. However, constructing this using PreFuzzySet.mk is still problematic due to the iSup aggregation in Mem not commuting with negation.

I think this isn't a problem that can't be solved with a little folding.

3. More fundamentally, the uhoh paradox suggests that even the existence of a universal function complement_in : PreFuzzySet → PreFuzzySet → PreFuzzySet is likely inconsistent with the current PreFuzzySet structure (which allows self-reference) and the x.Mem x = ⊥ property.

I don't think the uhoh paradox doesn't extend to this since you can't actually create a set that contains itself with just set difference, since taking the set difference will only shrink your sets.

Hunches Freeze (Jun 03 2025 at 21:55):

That's a very interesting and crucial distinction regarding set difference (SDiff) inherently shrinking sets and how that avoids the paradox. If SDiff indeed bypasses the inconsistency that uhoh demonstrated for a universal compl, then that simplifies the foundational issue considerably!

This would mean the primary remaining challenge is the construction problem: how to define difference U X using PreFuzzySet.mk such that z.Mem (U \ X) = (z.Mem U) ⊓ (¬(z.Mem X)) holds, given the iSup aggregation in Mem and its non-commutativity with negation. You mentioned this might be solvable with "a little folding."

If both the paradox and the construction problem can be overcome for SDiff with the current PreFuzzySet.mk structure, then it seems it might be possible to achieve ZFC compatibility in the crisp edge case without a fundamental redesign of PreFuzzySet.

Aaron Liu (Jun 03 2025 at 22:03):

I think to define set difference you need a docs#Order.Frame

Hunches Freeze (Jun 03 2025 at 22:10):

How would Order.Frame and/or folding specifically address the fundamental non-commutativity of iSup and negation (¬(⨆ f) ≠ ⨆ (¬f)) in the construction of set difference?

Aaron Liu (Jun 03 2025 at 22:10):

You get that inf distributes over iSup

Aaron Liu (Jun 03 2025 at 22:18):

Here we are, note the the ᶜ is the pseudo-negation you get from being a heyting algebra

def PreFuzzySet.filter (x : PreFuzzySet) (p : PreFuzzySet → R01) : PreFuzzySet :=
  .mk x.α x.A fun u => x.f u ⊓ p (x.A u)

theorem PreFuzzySet.mem_filter {p : PreFuzzySet → R01} (hp : ∀ a b, a.Equiv b → p a = p b) (x y : PreFuzzySet) :
    x.Mem (y.filter p) = x.Mem y ⊓ p x := by
  unfold Mem PreFuzzySet.filter
  simp_rw [iSup_inf_eq]
  conv =>
    enter [2, 1, i, 1, h, 2]
    rw [hp x (y.A i) h]
  rfl

def PreFuzzySet.sdiff (x y : PreFuzzySet) : PreFuzzySet := x.filter (fun i => (i.Mem y)ᶜ)

-- once again too lazy to make this universe polymorphic
theorem PreFuzzySet.mem_sdiff (x y z : PreFuzzySet.{u}) :
    z.Mem (x.sdiff y) = z.Mem x ⊓ (z.Mem y)ᶜ := by
  unfold PreFuzzySet.sdiff
  rw [PreFuzzySet.mem_filter fun a b h => congrArg compl (PreFuzzySet.mem_congr h .rfl)]

import Mathlib

-- Since `Rpt` is opaque, this should work for any complete heyting algebra.
private opaque Rpt : (R01 : Type) × Order.Frame R01 := ⟨Unit, inferInstance⟩
def R01 := Rpt.fst
instance : Order.Frame R01 := Rpt.snd

@[pp_with_univ]
inductive PreFuzzySet : Type (u + 1)
  | mk (α : Type u) (A : α → PreFuzzySet) (f : α → R01)

def PreFuzzySet.α : PreFuzzySet.{u} → Type u
  | mk α _ _ => α

def PreFuzzySet.A : (x : PreFuzzySet) → x.α → PreFuzzySet
  | mk _ A _ => A

def PreFuzzySet.f : (x : PreFuzzySet) → x.α → R01
  | mk _ _ f => f

def PreFuzzySet.Equiv : PreFuzzySet → PreFuzzySet → Prop
  | .mk α A f, .mk β B g =>
    (∀ a, f a ≤ ⨆ (i : β) (_ : (A a).Equiv (B i)), g i) ∧
    (∀ b, g b ≤ ⨆ (i : α) (_ : (A i).Equiv (B b)), f i)

-- Should this be `Mem` or `mem`?
def PreFuzzySet.Mem (z x : PreFuzzySet) : R01 :=
  ⨆ (i : x.α) (_ : z.Equiv (x.A i)), x.f i

@[refl, simp]
theorem PreFuzzySet.Equiv.refl (x : PreFuzzySet) : x.Equiv x := by
  induction x with | mk α A f ih
  unfold PreFuzzySet.Equiv
  constructor
  · intro i
    exact @le_iSup₂ R01 α ((A i).Equiv <| A ·) _ (fun j _ => f j) i (ih i)
  · intro i
    exact @le_iSup₂ R01 α (A · |>.Equiv (A i)) _ (fun j _ => f j) i (ih i)

theorem PreFuzzySet.Equiv.rfl {x : PreFuzzySet} : x.Equiv x := .refl x

@[symm]
theorem PreFuzzySet.Equiv.symm {x y : PreFuzzySet} (hxy : x.Equiv y) : y.Equiv x := by
  induction x generalizing y with | mk α A f ih
  cases y with | mk β B g
  unfold PreFuzzySet.Equiv at hxy ⊢
  constructor
  · intro a
    apply (hxy.right a).trans
    apply iSup₂_mono'
    intro i hi
    exact ⟨i, ih i hi, le_rfl⟩
  · intro b
    apply (hxy.left b).trans
    apply iSup₂_mono'
    intro i hi
    exact ⟨i, ih b hi, le_rfl⟩

theorem PreFuzzySet.equiv_comm {x y : PreFuzzySet} : x.Equiv y ↔ y.Equiv x :=
  ⟨.symm, .symm⟩

@[trans]
theorem PreFuzzySet.Equiv.trans {x y z : PreFuzzySet} (hxy : x.Equiv y) (hyz : y.Equiv z) :
    x.Equiv z := by
  induction x generalizing y z with | mk α A f ih
  cases y with | mk β B g
  cases z with | mk γ C h
  unfold PreFuzzySet.Equiv at hxy hyz ⊢
  constructor
  · intro a
    apply (hxy.left a).trans
    apply iSup₂_le
    intro i hi
    apply (hyz.left i).trans
    apply iSup₂_mono'
    intro j hj
    exact ⟨j, ih a hi hj, le_rfl⟩
  · intro b
    apply (hyz.right b).trans
    apply iSup₂_le
    intro i hi
    apply (hxy.right i).trans
    apply iSup₂_mono'
    intro j hj
    exact ⟨j, ih j hj hi, le_rfl⟩

theorem PreFuzzySet.mem_congr {x y z w : PreFuzzySet}
    (hxy : x.Equiv y) (hzw : z.Equiv w) : x.Mem z = y.Mem w := by
  cases x with | mk α A f
  cases y with | mk β B g
  cases z with | mk γ C h
  cases w with | mk δ D k
  unfold PreFuzzySet.Mem
  apply le_antisymm
  · apply iSup₂_le
    intro i hi
    apply (hzw.left i).trans
    apply iSup₂_mono'
    intro j hj
    exact ⟨j, hxy.symm.trans (hi.trans hj), le_rfl⟩
  · apply iSup₂_le
    intro i hi
    apply (hzw.right i).trans
    apply iSup₂_mono'
    intro j hj
    exact ⟨j, hxy.trans (hi.trans hj.symm), le_rfl⟩

-- I was going to make this universe polymorphic but it was too much of a hassle so I didn't.
theorem PreFuzzySet.ext {x y : PreFuzzySet.{u}}
    (h : ∀ (z : PreFuzzySet.{u}), z.Mem x = z.Mem y) : x.Equiv y := by
  cases x with | mk α A f
  cases y with | mk β B g
  constructor
  · intro a
    apply le_of_eq_of_le' (h (A a))
    exact @le_iSup₂ R01 α ((A a).Equiv <| A ·) _ (fun j _ => f j) a .rfl
  · intro b
    conv =>
      enter [2, 1, i]
      rw [PreFuzzySet.equiv_comm]
    apply le_of_eq_of_le' (h (B b)).symm
    exact @le_iSup₂ R01 β ((B b).Equiv <| B ·) _ (fun j _ => g j) b .rfl

theorem PreFuzzySet.ext_iff {x y : PreFuzzySet.{u}} :
    x.Equiv y ↔ ∀ (z : PreFuzzySet.{u}), z.Mem x = z.Mem y :=
  ⟨fun h z => PreFuzzySet.mem_congr (.refl z) h, PreFuzzySet.ext⟩

-- bonus
theorem PreFuzzySet.mem_self_eq_bot {x : PreFuzzySet} : x.Mem x = ⊥ := by
  induction x with | mk α A f ih
  unfold PreFuzzySet.Mem
  rw [iSup₂_eq_bot]
  intro i hi
  rw [← le_bot_iff, ← (PreFuzzySet.mem_congr hi hi).trans (ih i)]
  unfold PreFuzzySet.Mem
  exact @le_iSup₂ R01 α ((PreFuzzySet.mk α A f).Equiv <| A ·) _ (fun j _ => f j) i hi

def PreFuzzySet.empty : PreFuzzySet := .mk PEmpty PEmpty.elim PEmpty.elim

theorem PreFuzzySet.mem_empty_eq_bot (x : PreFuzzySet) :
    x.Mem PreFuzzySet.empty = ⊥ := by
  unfold PreFuzzySet.Mem PreFuzzySet.empty PreFuzzySet.α
  simp

def PreFuzzySet.filter (x : PreFuzzySet) (p : PreFuzzySet → R01) : PreFuzzySet :=
  .mk x.α x.A fun u => x.f u ⊓ p (x.A u)

theorem PreFuzzySet.mem_filter {p : PreFuzzySet → R01} (hp : ∀ a b, a.Equiv b → p a = p b) (x y : PreFuzzySet) :
    x.Mem (y.filter p) = x.Mem y ⊓ p x := by
  unfold Mem PreFuzzySet.filter
  simp_rw [iSup_inf_eq]
  conv =>
    enter [2, 1, i, 1, h, 2]
    rw [hp x (y.A i) h]
  rfl

def PreFuzzySet.sdiff (x y : PreFuzzySet) : PreFuzzySet := x.filter (fun i => (i.Mem y)ᶜ)

-- once again too lazy to make this universe polymorphic
theorem PreFuzzySet.mem_sdiff (x y z : PreFuzzySet.{u}) :
    z.Mem (x.sdiff y) = z.Mem x ⊓ (z.Mem y)ᶜ := by
  unfold PreFuzzySet.sdiff
  rw [PreFuzzySet.mem_filter fun a b h => congrArg compl (PreFuzzySet.mem_congr h .rfl)]