Implement a dependent type system

[vouivre.git] / vouivre / rules.scm

;;;; Copyright (C) 2024 Vouivre Digital Corporation
;;;;
;;;; This file is part of Vouivre.
;;;;
;;;; Vouivre is free software: you can redistribute it and/or
;;;; modify it under the terms of the GNU General Public
;;;; License as published by the Free Software Foundation, either
;;;; version 3 of the License, or (at your option) any later version.
;;;;
;;;; Vouivre is distributed in the hope that it will be useful,
;;;; but WITHOUT ANY WARRANTY; without even the implied warranty of
;;;; MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
;;;; General Public License for more details.
;;;;
;;;; You should have received a copy of the GNU General Public
;;;; License along with Vouivre. If not, see <https://www.gnu.org/licenses/>.

(define-module (vouivre type rules)
  #:use-module (vouivre type system))

;;;; Structural Rules

(define-rule formation-1
  (Γ ⊢ (type A))
  (Γ (: x A) ⊢ (type (B x))))

(define-rule formation-2
  (Γ ⊢ (type A))
  (Γ ⊢ (≐ A B)))

(define-rule formation-3
  (Γ ⊢ (type B))
  (Γ ⊢ (≐ A B)))

(define-rule formation-4
  (Γ ⊢ (type A))
  (Γ ⊢ (: a A)))

(define-rule formation-5
  (Γ ⊢ (: a A))
  (Γ ⊢ (≐ a b A)))

(define-rule formation-6
  (Γ ⊢ (: b A))
  (Γ ⊢ (≐ a b A)))

(define-rule type-reflexive
  (Γ ⊢ (≐ A A))
  (Γ ⊢ (type A)))

(define-rule type-symmetric
  (Γ ⊢ (≐ B A))
  (Γ ⊢ (≐ A B)))

(define-rule type-transitive
  (Γ ⊢ (≐ A C))
  (Γ ⊢ (≐ A B))
  (Γ ⊢ (≐ B C)))

(define-rule element-reflexive
  (Γ ⊢ (≐ a a A))
  (Γ ⊢ (: a A)))

(define-rule element-symmetric
  (Γ ⊢ (≐ b a A))
  (Γ ⊢ (≐ a b A)))

(define-rule element-transitive
  (Γ ⊢ (≐ a c A))
  (Γ ⊢ (≐ a b A))
  (Γ ⊢ (≐ b c A)))

(define-rule variable-conversion
  (Γ (: x A') Δ ⊢ J)
  (Γ ⊢ (≐ A A'))
  (Γ (: x A) Δ ⊢ J))

(define-rule substitution
  (Γ (/ Δ a x) ⊢ (/ J a x))
  (Γ ⊢ (: a A))
  (Γ (: x A) Δ ⊢ J))

(define-rule substitution-type-congruence
  (Γ (/ Δ a x) ⊢ (≐ (/ B a x) (/ B a' x)))
  (Γ ⊢ (≐ a a' A))
  (Γ (: x A) Δ ⊢ (type B)))

(define-rule substitution-element-congruence
  (Γ (/ Δ a x) ⊢ (≐ (/ b a x) (/ b a' x) (/ B a x)))
  (Γ ⊢ (≐ a a' A))
  (Γ (: x A) Δ ⊢ (: b B)))

(define-rule weakening
  (Γ (: x A) Δ ⊢ J)
  (Γ ⊢ (type A))
  (Γ Δ ⊢ J))

(define-rule generic-element
  (Γ (: x A) ⊢ (: x A))
  (Γ ⊢ (type A)))

;;;; Structural Derivations

(define-derivation change-of-variables ((Γ (: x' A) Δ ⊢ J)
                                        (Γ ⊢ (type A))
                                        (Γ (: x A) Δ ⊢ J))
  (substitution #:start 1 a x' x x A A)
  (generic-element)
  (exact)
  (weakening #:end 1)
  (exact)
  (exact))

(define-derivation interchange ((Γ (: y B) (: x A) Δ ⊢ J)
                                (Γ ⊢ (type B))
                                (Γ ⊢ (type A))
                                (Γ (: x A) (: y B) Δ ⊢ J))
  (substitution #:start 2 a y x y' A B)
  (weakening #:start 1)
  (weakening)
  (exact)
  (exact)
  (generic-element)
  (exact)
  (weakening #:end 1)
  (exact)
  (substitution #:start 2 a y' x y A B)
  (weakening #:end 1)
  (exact)
  (generic-element)
  (exact)
  (weakening #:start 1 #:end 2)
  (weakening)
  (exact)
  (exact)
  (exact))

(define-derivation element-conversion ((Γ ⊢ (: a A'))
                                       (Γ ⊢ (: a A))
                                       (Γ ⊢ (≐ A A')))
  (substitution a a x a' A A)
  (exact)
  (variable-conversion A A')
  (type-symmetric)
  (exact)
  (generic-element)
  (formation-3 A A)
  (exact))

(define-derivation congruence ((Γ ⊢ (≐ a b A'))
                               (Γ ⊢ (≐ a b A))
                               (Γ ⊢ (≐ A A')))
  (substitution-element-congruence a a a' b x x A A)
  (exact)
  (variable-conversion A A')
  (type-symmetric)
  (exact)
  (generic-element)
  (formation-3 A A)
  (exact))

;;;; Dependent Function Type

(define-rule Π
  (Γ ⊢ (type (Π (: x A) (B x))))
  (Γ (: x A) ⊢ (type (B x))))

(define-rule Π-eq
  (Γ ⊢ (≐ (Π (: x A) (B x))
          (Π (: x A') (B' x))))
  (Γ ⊢ (≐ A A'))
  (Γ (: x A) ⊢ (≐ (B x) (B' x))))

(define-rule λ
  (Γ ⊢ (: (λ x (b x))
          (Π (: x A) (B x))))
  (Γ (: x A) ⊢ (: (b x) (B x))))

(define-rule λ-eq
  (Γ ⊢ (≐ (λ x (b x))
          (λ x (b' x))
          (Π (: x A) (B x))))
  (Γ (: x A) ⊢ (≐ (b x)
                  (b' x)
                  (B x))))

(define-rule evaluation
  (Γ (: x A) ⊢ (: (f x) (B x)))
  (Γ ⊢ (: f (Π (: x A) (B x)))))

(define-rule evaluation-eq
  (Γ (: x A) ⊢ (≐ (f x) (f' x) (B x)))
  (Γ ⊢ (≐ f f' (Π (: x A) (B x)))))

(define-rule β
  (Γ (: x A) ⊢ (≐ ((λ y (b y)) x)
                  (b x)
                  (B x)))
  (Γ (: x A) ⊢ (: (b x) (B x))))

(define-rule η
  (Γ ⊢ (≐ (λ x (f x))
          f
          (Π (: x A) (B x))))
  (Γ ⊢ (: f (Π (: x A) (B x)))))

;;;; Ordinary Function Type

(define-derivation → ((Γ ⊢ (:= (→ A B) (type (Π (: x A) B))))
                      (Γ ⊢ (type A))
                      (Γ ⊢ (type B)))
  (Π)
  (weakening)
  (exact)
  (exact))

(define-derivation →-eq ((Γ ⊢ (≐ (→ A B) (→ A' B')))
                         (Γ ⊢ (≐ A A'))
                         (Γ ⊢ (≐ B B')))
  (type-transitive B (Π (: x A) B))
  (definition)
  (formation-2 B A')
  (exact)
  (formation-2 B B')
  (exact)
  (type-transitive B (Π (: x A') B'))
  (Π-eq)
  (exact)
  (weakening)
  (formation-2 B A')
  (exact)
  (exact)
  (type-symmetric)
  (definition)
  (formation-3 A A)
  (exact)
  (formation-3 A B)
  (exact))

(define-derivation →-λ ((Γ ⊢ (: (λ x (b x)) (→ A B)))
                        (Γ (: x A) ⊢ (: (b x) B))
                        (Γ ⊢ (type A))
                        (Γ ⊢ (type B)))
  (element-conversion A (Π (: x A) B))
  (λ)
  (exact)
  (type-symmetric)
  (definition)
  (exact)
  (exact))

(define-derivation →-λ-eq ((Γ ⊢ (≐ (λ x (b x))
                                   (λ x (b' x))
                                   (→ A B)))
                           (Γ (: x A) ⊢ (≐ (b x) (b' x) B))
                           (Γ ⊢ (type A))
                           (Γ ⊢ (type B)))
  (congruence A (Π (: x A) B))
  (λ-eq)
  (exact)
  (type-symmetric)
  (definition)
  (exact)
  (exact))

(define-derivation →-evaluation ((Γ (: x A) ⊢ (: (f x) B))
                                 (Γ ⊢ (: f (→ A B)))
                                 (Γ ⊢ (type A))
                                 (Γ ⊢ (type B)))
  (evaluation f f)
  (element-conversion A (→ A B))
  (exact)
  (definition)
  (exact)
  (exact))

(define-derivation →-evaluation-eq ((Γ (: x A) ⊢ (≐ (f x) (f' x) B))
                                    (Γ ⊢ (≐ f f' (→ A B)))
                                    (Γ ⊢ (type A))
                                    (Γ ⊢ (type B)))
  (evaluation-eq f f f' f')
  (congruence A (→ A B))
  (exact)
  (definition)
  (exact)
  (exact))

(define-derivation →-β ((Γ (: x A) ⊢ (≐ ((λ x (b x)) x)
                                        (b x)
                                        B))
                        (Γ (: x A) ⊢ (: (b x) B)))
  (β)
  (exact))

(define-derivation →-η ((Γ ⊢ (≐ (λ x (f x)) f (→ A B)))
                        (Γ ⊢ (: f (→ A B)))
                        (Γ ⊢ (type A))
                        (Γ ⊢ (type B)))
  (congruence A (Π (: x A) B))
  (η)
  (element-conversion A (→ A B))
  (exact)
  (definition)
  (exact)
  (exact)
  (type-symmetric)
  (definition)
  (exact)
  (exact))

;;;; Identity Type

(define-rule =-formation
  (Γ (: x A) ⊢ (type (= a x)))
  (Γ ⊢ (: a A)))

(define-rule =-introduction
  (Γ ⊢ (: refl (= a a)))
  (Γ ⊢ (: a A)))

(define-rule =-elimination
  (Γ ⊢ (: ind-eq
            (→ (P a refl)
               (Π (: x A)
                  (Π (: p (= a x))
                     (P x p))))))
  (Γ ⊢ (: a A))
  (Γ (: x A) (: p (= a x)) ⊢ (type (P x p))))

(define-rule =-computation
  (Γ (: u (P a refl)) ⊢ (≐ (((ind-eq u) a) refl)
                             u
                             (P a refl)))
  (Γ ⊢ (: a A))
  (Γ (: x A) (: p (= a x)) ⊢ (type (P x p))))

;;;; Dependent Pair Type

(define-rule Σ-formation
  (Γ ⊢ (type (Σ (: x A) (B x))))
  (Γ (: x A) ⊢ (type (B x))))

(define-rule Σ-eq
  (Γ ⊢ (≐ (Σ (: x A) (B x))
          (Σ (: x A') (B' x))))
  (Γ ⊢ (≐ A A'))
  (Γ (: x A) ⊢ (≐ (B x) (B' x))))

(define-rule Σ-introduction
  (Γ ⊢ (: pair (Π (: x A)
                  (→ (B x)
                     (Σ (: y A)
                        (B y))))))
  (Γ (: x A) ⊢ (type (B x))))

(define-rule Σ-elimination
  (Γ ⊢ (: ind-Σ (→ (Π (: x A)
                      (Π (: y (B x))
                         (P ((pair x) y))))
                   (Π (: z (Σ (: x A)
                              (B x)))
                      (P z)))))
  (Γ (: x A) ⊢ (type (B x)))
  (Γ (: z (Σ (: x A) (B x))) ⊢ (type (P z))))

(define-rule Σ-computation
  (Γ (: x A) (: y (B x)) (: g (Π (: x A)
                                 (Π (: y (B x))
                                    (P ((pair x) y)))))
     ⊢ (≐ ((ind-Σ g) ((pair x) y))
          ((g x) y)
          (P ((pair x) y))))
  (Γ (: z (Σ (: x A) (B x))) ⊢ (type (P z))))

;;;; Natural Numbers

(define-rule ℕ-formation
  (⊢ (type ℕ)))

(define-rule ℕ-introduction-1
  (⊢ (: 0 ℕ)))

(define-rule ℕ-introduction-2
  (⊢ (: succ (→ ℕ ℕ))))

(define-rule ℕ-elimination
  (Γ ⊢ (: (ind-ℕ p0 ps)
          (Π (: n ℕ)
             (P n))))
  (Γ (: n ℕ) ⊢ (type (P n)))
  (Γ ⊢ (: p0 (P 0)))
  (Γ ⊢ (: ps (Π (: n ℕ)
                (→ (P n)
                   (P (succ n)))))))

(define-rule ℕ-computation-1
  (Γ ⊢ (≐ ((ind-ℕ p0 ps) 0)
          p0
          (P 0)))
  (Γ (: n ℕ) ⊢ (type (P n)))
  (Γ ⊢ (: p0 (P 0)))
  (Γ ⊢ (: ps (Π (: n ℕ)
                (→ (P n)
                   (P (succ n)))))))

(define-rule ℕ-computation-2
  (Γ (: n ℕ) ⊢ (≐ ((ind-ℕ p0 ps) (succ n))
                  (ps n ((ind-ℕ p0 ps) n))
                  (P (succ n))))
  (Γ (: n ℕ) ⊢ (type (P n)))
  (Γ ⊢ (: p0 (P 0)))
  (Γ ⊢ (: ps (Π (: n ℕ)
                (→ (P n)
                   (P (succ n)))))))

;;;; Boolean Type

(define-rule bool-formation
  (⊢ (type Bool)))

(define-rule bool-introduction-1
  (⊢ (: false Bool)))

(define-rule bool-introduction-2
  (⊢ (: true Bool)))
                                        
(define-rule bool-elimination
  (Γ ⊢ (: (ind-Bool p0 p1)
          (Π (: x Bool)
             (P x))))
  (Γ (: x Bool) ⊢ (type (P x)))
  (Γ ⊢ (: p0 (P false)))
  (Γ ⊢ (: p1 (P true))))

(define-rule bool-computation-1
  (Γ ⊢ (≐ ((ind-Bool p0 p1) false)
          p0
          (P false)))
  (Γ (: x Bool) ⊢ (type (P x)))
  (Γ ⊢ (: p0 (P false)))
  (Γ ⊢ (: p1 (P true))))

(define-rule bool-computation-2
  (Γ ⊢ (≐ ((ind-Bool p0 p1) true)
          p1
          (P true)))
  (Γ (: x Bool) ⊢ (type (P x)))
  (Γ ⊢ (: p0 (P false)))
  (Γ ⊢ (: p1 (P true))))

;;;; List Type

(define-rule list-formation
  (Γ ⊢ (type (List A)))
  (Γ ⊢ (type A)))

(define-rule list-introduction-1
  (Γ ⊢ (: nil (List A)))
  (Γ ⊢ (type A)))

(define-rule list-introduction-2
  (Γ ⊢ (: cons (→ A (→ (List A)
                     (List A)))))
  (Γ ⊢ (type A)))

(define-rule list-elimination
  (Γ ⊢ (: (ind-List p0 ps)
          (Π (: xs (List A))
             (P xs))))
  (Γ ⊢ (type A))
  (Γ (: xs (List A)) ⊢ (type (P xs)))
  (Γ ⊢ (: p0 (P nil)))
  (Γ ⊢ (: ps (Π (: x A)
                (Π (: xs (List A))
                   (→ (P xs)
                      (P ((cons x) xs))))))))

(define-rule list-computation-1
  (Γ ⊢ (≐ ((ind-List p0 ps) nil)
          p0
          (P nil)))
  (Γ ⊢ (type A))
  (Γ (: xs (List A)) ⊢ (type (P xs)))
  (Γ ⊢ (: p0 (P nil)))
  (Γ ⊢ (: ps (Π (: x A)
                (Π (: xs (List A))
                   (→ (P xs)
                      (P ((cons x) xs))))))))

(define-rule list-computation-2
  (Γ (: x A) (: xs (List A)) ⊢ (≐ ((ind-List p0 ps) ((cons x) xs))
                                  (((ps x) xs) ((ind-List p0 ps) xs))
                                  (P ((cons x) xs))))
  (Γ ⊢ (type A))
  (Γ (: xs (List A)) ⊢ (type (P xs)))
  (Γ ⊢ (: p0 (P nil)))
  (Γ ⊢ (: ps (Π (: x A)
                (Π (: xs (List A))
                   (→ (P xs)
                      (P ((cons x) xs))))))))

;;;; Vector Type

(define-rule vector-formation
  (Γ ⊢ (type (Vector A n)))
  (Γ ⊢ (type A))
  (Γ ⊢ (: n ℕ)))

(define-rule vector-introduction-1
  (Γ ⊢ (: #() (Vector A 0)))
  (Γ ⊢ (type A)))

(define-rule vector-introduction-2
  (Γ ⊢ (: :: (Π (: n ℕ)
                (→ A (→ (Vector A n)
                        (Vector A (succ n)))))))
  (Γ ⊢ (type A)))

(define-rule vector-elimination
  (Γ ⊢ (: (ind-Vector p0 ps)
          (Π (: n ℕ)
             (Π (: xs (Vector A n))
                (P xs)))))
  (Γ ⊢ (type A))
  (Γ (: n ℕ) (: xs (Vector A n)) ⊢ (type (P xs)))
  (Γ ⊢ (: p0 (P #())))
  (Γ ⊢ (: ps (Π (: n ℕ)
                (Π (: x A)
                   (Π (: xs (Vector A n))
                      (→ (P xs)
                         (P (((:: n) x) xs)))))))))

(define-rule vector-computation-1
  (Γ ⊢ (≐ ((ind-Vector p0 ps) #())
          p0
          (P #())))
  (Γ ⊢ (type A))
  (Γ (: n ℕ) (: xs (Vector A n)) ⊢ (type (P xs)))
  (Γ ⊢ (: p0 (P #())))
  (Γ ⊢ (: ps (Π (: n ℕ)
                (Π (: x A)
                   (Π (: xs (Vector A n))
                      (→ (P xs)
                         (P (((:: n) x) xs)))))))))

(define-rule vector-computation-2
  (Γ (: x A) (: n ℕ) (: xs (Vector A n)) ⊢ (≐ (((ind-Vector p0 ps) n) (((:: n) x) xs))
                                              ((((ps n) x) xs)
                                               (((ind-Vector p0 ps) n) xs))
                                              (P (((:: n) x) xs))))
  (Γ ⊢ (type A))
  (Γ (: n ℕ) (: xs (Vector A n)) ⊢ (type (P xs)))
  (Γ ⊢ (: p0 (P #())))
  (Γ ⊢ (: ps (Π (: n ℕ)
                (Π (: x A)
                   (Π (: xs (Vector A n))
                      (→ (P xs)
                         (P (((:: n) x) xs)))))))))

;;;; More Derivations

(define-derivation identity ((Γ ⊢ (: (λ x x) (→ A A)))
                             (Γ ⊢ (type A)))
  (→-λ)
  (generic-element)
  (exact)
  (exact)
  (exact))

(define-derivation if ((Γ ⊢ (: (λ z (λ x (λ y ((ind-Bool y x) z))))
                               (Π (: z Bool)
                                  (→ (P true)
                                     (→ (P false)
                                        (P z))))))
                       (Γ (: z Bool) ⊢ (type (P z))))
  (λ)
  (→-λ #:start 1)
  (→-λ #:start 2)
  (interchange #:end 2)
  (bool-formation)
  (substitution A Bool a true x z)
  (bool-introduction-2)
  (exact)
  (interchange #:start 1)
  (weakening)
  (substitution A Bool a true x z)
  (bool-introduction-2)
  (exact)
  (bool-formation)
  (weakening)
  (substitution A Bool a true x z)
  (bool-introduction-2)
  (exact)
  (substitution A Bool a false x z)
  (bool-introduction-1)
  (exact)
  (evaluation #:start 2 f (ind-Bool y x))
  (bool-elimination #:start 2 (P false) (P false) (P true) (P true))
  (weakening #:end 1)
  (substitution A Bool a true x z)
  (bool-introduction-2)
  (exact)
  (weakening #:end 1)
  (substitution A Bool a false x z)
  (bool-introduction-1)
  (exact)
  (exact)
  (weakening #:end 1)
  (substitution A Bool a true x z)
  (bool-introduction-2)
  (exact)
  (generic-element)
  (substitution A Bool a false x z)
  (bool-introduction-1)
  (exact)
  (weakening #:start 1)
  (weakening)
  (substitution A Bool a true x z)
  (bool-introduction-2)
  (exact)
  (substitution A Bool a false x z)
  (bool-introduction-1)
  (exact)
  (generic-element)
  (substitution A Bool a true x z)
  (bool-introduction-2)
  (exact)
  (weakening #:end 1)
  (bool-formation)
  (weakening)
  (substitution A Bool a true x z)
  (bool-introduction-2)
  (exact)
  (substitution A Bool a false x z)
  (bool-introduction-1)
  (exact)
  (weakening #:start 1)
  (weakening)
  (bool-formation)
  (substitution #:start 1 A Bool a true x z)
  (bool-introduction-2 #:start 1)
  (exact)
  (exact)
  (weakening)
  (bool-formation)
  (substitution A Bool a true x z)
  (bool-introduction-2)
  (exact)
  (→ #:start 1)
  (weakening)
  (bool-formation)
  (substitution A Bool a false x z)
  (bool-introduction-1)
  (exact)
  (exact))

(define-derivation not ((Γ ⊢ (: (ind-Bool true false)
                                (→ Bool Bool))))
  (element-conversion A (Π (: x Bool) Bool))
  (bool-elimination (P false) Bool (P true) Bool)
  (weakening)
  (bool-formation)
  (bool-formation)
  (bool-introduction-2)
  (bool-introduction-1)
  (type-symmetric)
  (definition)
  (bool-formation)
  (bool-formation))

(define-derivation constant ((Γ (: y B) ⊢ (: (λ x y) (→ A B)))
                             (Γ ⊢ (type A))
                             (Γ ⊢ (type B)))
  (→-λ #:start 1)
  (weakening #:start 1)
  (weakening)
  (exact)
  (exact)
  (generic-element)
  (exact)
  (weakening)
  (exact)
  (exact)
  (weakening)
  (exact)
  (exact))

(define-derivation =-inverse ((Γ ⊢ (: (λ x (ind-eq refl))
                                      (Π (: x A)
                                         (Π (: y A)
                                            (→ (= x y)
                                               (= y x))))))
                              (Γ ⊢ (type A))
                              (Γ ⊢ (: x A)))
  (λ)
  (substitution #:start 1 a refl x u A (= x x))
  (=-introduction #:start 1 A A)
  (generic-element)
  (exact)
  (→-evaluation #:start 1 f ind-eq)
  (element-conversion #:start 1 A (→ (= x x) (Π (: y A) (Π (: p (= x y)) (= y x)))))
  (=-elimination #:start 1)
  (generic-element)
  (exact)
  (weakening #:start 2)
  (=-formation #:start 1)
  (generic-element)
  (exact)
  (interchange)
  (exact)
  (exact)
  (=-formation #:start 1)
  (generic-element)
  (exact)
  (→-eq #:start 1)
  (type-reflexive #:start 1)
  (=-formation)
  (exact)
  (Π-eq #:start 1)
  (weakening)
  (exact)
  (type-reflexive)
  (exact)
  (type-symmetric #:start 2)
  (definition #:start 2)
  (=-formation #:start 1)
  (generic-element)
  (exact)
  (interchange)
  (exact)
  (exact)
  (=-formation #:start 1)
  (generic-element)
  (exact)
  (=-formation)
  (exact)
  (Π #:start 1)
  (→ #:start 2)
  (=-formation #:start 1)
  (generic-element)
  (exact)
  (interchange)
  (exact)
  (exact)
  (=-formation #:start 1)
  (generic-element)
  (exact))

(define-derivation add (((: m ℕ) ⊢ (: (ind-ℕ m ((λ n succ) m)) (→ ℕ ℕ))))
  (element-conversion #:start 1 A (Π (: x ℕ) ℕ))
  (ℕ-elimination #:start 1 (P 0) ℕ (P n) ℕ (P (succ n)) ℕ)
  (weakening #:start 1)
  (weakening)
  (ℕ-formation)
  (ℕ-formation)
  (weakening)
  (ℕ-formation)
  (ℕ-formation)
  (generic-element)
  (ℕ-formation)
  (element-conversion #:start 1 A (→ ℕ ℕ))
  (→-evaluation f (λ n succ))
  (→-λ)
  (weakening)
  (ℕ-formation)
  (ℕ-introduction-2)
  (ℕ-formation)
  (→)
  (ℕ-formation)
  (ℕ-formation)
  (ℕ-formation)
  (→)
  (ℕ-formation)
  (ℕ-formation)
  (definition #:start 1)
  (weakening)
  (ℕ-formation)
  (ℕ-formation)
  (weakening)
  (ℕ-formation)
  (ℕ-formation)
  (weakening)
  (ℕ-formation)
  (type-symmetric)
  (definition)
  (ℕ-formation)
  (ℕ-formation))

(define-derivation add-2-length ((Γ ⊢ (:= add-2-length
                                          (: (λ x (λ xs succ))
                                             (Π (: x A)
                                                (Π (: xs (List A))
                                                   (→ ℕ ℕ))))))
                                 (Γ ⊢ (type A)))
  (λ)
  (λ #:start 1)
  (weakening #:start 1)
  (weakening)
  (exact)
  (list-formation)
  (exact)
  (weakening)
  (exact)
  (ℕ-introduction-2))

(define-derivation length ((Γ ⊢ (: (λ xs ((ind-List 0 add-2-length) xs))
                                   (→ (List A) ℕ)))
                           (Γ ⊢ (type A)))
  (→-λ)
  (evaluation f (ind-List 0 add-2-length))
  (list-elimination (P nil) ℕ x x (P ((cons x) xs)) ℕ)
  (exact)
  (weakening)
  (list-formation)
  (exact)
  (ℕ-formation)
  (ℕ-introduction-1)
  (add-2-length)
  (exact)
  (list-formation)
  (exact)
  (ℕ-formation))