Zulip Chat Archive
Stream: lean4
Topic: underdefined computable definitions
Jakob von Raumer (Jan 29 2025 at 15:14):
Maybe that's a silly question: But is there a good way to write a definition that evaluates to just any value and let's me prove nothing about it? Something like a Classical.choice that evaluates or a completely intransparent Inhabited?
nrs (Jan 29 2025 at 15:23):
The unsafe keyword might be worth looking at. Just prepend your function definition with it (unsafe def myfunc ...)
nrs (Jan 29 2025 at 15:25):
It is viral however and anything that calls it will need to be tagged unsafe. The partial keyword is an alternative that is opaque and can be used as a proof that the function's type is inhabited (and nothing else)
Henrik Böving (Jan 29 2025 at 15:33):
Jakob von Raumer said:
Maybe that's a silly question: But is there a good way to write a definition that evaluates to just any value and let's me prove nothing about it? Something like a
Classical.choicethat evaluates or a completely intransparentInhabited?
opaque foo (a : Type) [Inhabited a] : a := default ? Though this will of course still respect refl
François G. Dorais (Jan 29 2025 at 15:35):
You don't need := default.
Henrik Böving (Jan 29 2025 at 15:35):
Might be that it gets this by itself yeah, I'm not on a machine
Jakob von Raumer (Jan 29 2025 at 17:14):
Ah thanks, that's maybe what I'm looking for (except for the respecting refl part)
Kyle Miller (Jan 29 2025 at 17:19):
One trick here is that you can add multiple arguments to foo, one per variable in your local context for the definition you're making, so that you can have it return different opaque values for different function inputs. Worth thinking about if you want to make sure you can prove even less about it.
Kyle Miller (Jan 29 2025 at 17:20):
Example:
opaque divZero (a : Nat) : Nat
def safeDiv (a b : Nat) : Nat :=
if b = 0 then divZero a else a / b
Kyle Miller (Jan 29 2025 at 17:21):
example : safeDiv 2 0 = safeDiv 3 0 := rfl -- fails
François G. Dorais (Jan 29 2025 at 17:29):
Be careful though:
example : safeDiv 2 0 = safeDiv 3 0 := by native_decide
The compiler can see through the opaque definition.
Last updated: May 02 2025 at 03:31 UTC