oadt.demo.demo1
This demo encodes the oblivious tree from the running example in the paper,
with two public views: the maximum depth and the upper bound of its spine. We
also encode the lookup function and the insert function, and show that switching
between different views is as easy as simply replacing the type, section and
retraction functions with the right ones.
Names.
Definition nat : atom := "nat".
Definition tree : atom := "tree".
Definition is_zero : atom := "is_zero".
Definition pred : atom := "pred".
Definition otree : atom := "~tree".
Notation "'~tree'" := (otree) (in custom oadt).
Definition s_tree : atom := "s_tree".
Definition r_tree : atom := "r_tree".
Definition spine : atom := "spine".
Definition otree' : atom := "~tree'".
Notation "'~tree''" := (otree') (in custom oadt).
Definition s_tree' : atom := "s_tree'".
Definition r_tree' : atom := "r_tree'".
Definition insert : atom := "insert".
Definition oinsert : atom := "~insert".
Notation "'~insert'" := (oinsert) (in custom oadt).
Definition lookup : atom := "lookup".
Definition olookup : atom := "~lookup".
Notation "'~lookup'" := (olookup) (in custom oadt).
Definition olookup' : atom := "~lookup'".
Notation "'~lookup''" := (olookup') (in custom oadt).
Definition tree : atom := "tree".
Definition is_zero : atom := "is_zero".
Definition pred : atom := "pred".
Definition otree : atom := "~tree".
Notation "'~tree'" := (otree) (in custom oadt).
Definition s_tree : atom := "s_tree".
Definition r_tree : atom := "r_tree".
Definition spine : atom := "spine".
Definition otree' : atom := "~tree'".
Notation "'~tree''" := (otree') (in custom oadt).
Definition s_tree' : atom := "s_tree'".
Definition r_tree' : atom := "r_tree'".
Definition insert : atom := "insert".
Definition oinsert : atom := "~insert".
Notation "'~insert'" := (oinsert) (in custom oadt).
Definition lookup : atom := "lookup".
Definition olookup : atom := "~lookup".
Notation "'~lookup'" := (olookup) (in custom oadt).
Definition olookup' : atom := "~lookup'".
Notation "'~lookup''" := (olookup') (in custom oadt).
Define introduction/elimination as notations for convenience. Alternatively,
we can also define them as functions directly in the language.
Notation "'zero'" := <{ fold<nat> (inl<𝟙 + #nat> ()) }>
(in custom oadt).
Notation "'succ' e" := <{ fold<nat> (inr<𝟙 + #nat> e) }>
(in custom oadt at level 2).
Notation "'leaf'" := <{ fold<tree> (inl<𝟙 + int * #tree * #tree> ()) }>
(in custom oadt).
Notation "'node' e" := <{ fold<tree> (inr<𝟙 + int * #tree * #tree> e) }>
(in custom oadt at level 2).
Notation "'sleaf'" := <{ fold<spine> (inl<𝟙 + #spine * #spine> ()) }>
(in custom oadt).
Notation "'snode' e" := <{ fold<spine> (inr<𝟙 + #spine * #spine> e) }>
(in custom oadt at level 2).
(in custom oadt).
Notation "'succ' e" := <{ fold<nat> (inr<𝟙 + #nat> e) }>
(in custom oadt at level 2).
Notation "'leaf'" := <{ fold<tree> (inl<𝟙 + int * #tree * #tree> ()) }>
(in custom oadt).
Notation "'node' e" := <{ fold<tree> (inr<𝟙 + int * #tree * #tree> e) }>
(in custom oadt at level 2).
Notation "'sleaf'" := <{ fold<spine> (inl<𝟙 + #spine * #spine> ()) }>
(in custom oadt).
Notation "'snode' e" := <{ fold<spine> (inr<𝟙 + #spine * #spine> e) }>
(in custom oadt at level 2).
Global definitions.
Definition defs := [{
data nat := 𝟙 + nat;
data tree := 𝟙 + int * tree * tree;
(* def zero :{⊥} nat := fold (inl<𝟙 + nat> ()); *)
(* def succ :{⊥} Π:nat, nat := \:nat => fold<nat> (inr<𝟙 + nat> *)
(* def leaf :{⊥} tree := fold (inl<𝟙 + int * tree * tree> ()); *)
(* def node :{⊤} Π~:int * tree * tree, tree := *)
(* \~:int * tree * tree => fold<tree> (inr<𝟙 + int * tree * tree> *)
def is_zero :{⊥} Π:nat, 𝔹 :=
\:nat => case unfold<nat> $0 of true | false;
def pred :{⊥} Π:nat, nat :=
\:nat => case unfold<nat> $0 of zero | $0;
def insert :{⊤} Π~:int, Π~:tree, tree :=
\~:int => \~:tree =>
case unfold<tree> $0 of
node ($2, leaf, leaf)
| if $2 <= ($0).1.1
then node (($0).1.1, insert $2 ($0).1.2, ($0).2)
else node (($0).1.1, ($0).1.2, insert $2 ($0).2);
def lookup :{⊤} Π~:int, Π~:tree, 𝔹 :=
\~:int => \~:tree =>
case unfold<tree> $0 of
false
| if $2 <= ($0).1.1
then if ($0).1.1 <= $2
then true
else lookup $2 ($0).1.2
else lookup $2 ($0).2;
(* The oblivious tree with the maximum depth as its public view. *)
obliv ~tree (:nat) :=
if is_zero $0
then 𝟙
else 𝟙 ~+ ~int * (~tree (pred $0)) * (~tree (pred $0));
def s_tree :{⊥} Π~:tree, Π:nat, ~tree $0 :=
\~:tree => \:nat =>
if is_zero $0
then ()
else tape (case unfold<tree> $1 of
~inl<𝟙 ~+ ~int * (~tree (pred $1)) * (~tree (pred $1))> ()
| ~inr<𝟙 ~+ ~int * (~tree (pred $1)) * (~tree (pred $1))>
tape (s_int ($0).1.1,
s_tree ($0).1.2 (pred $1),
s_tree ($0).2 (pred $1)));
def r_tree :{⊤} Π:nat, Π:~tree $0, tree :=
\:nat =>
if is_zero $0
then \:𝟙 => leaf
else \:𝟙 ~+ ~int * (~tree (pred $0)) * (~tree (pred $0)) =>
~case $0 of
leaf
| node (r_int ($0).1.1,
r_tree (pred $2) ($0).1.2,
r_tree (pred $2) ($0).2);
(* The oblivious tree with the upper bound of its spine as the public view. *)
data spine := 𝟙 + spine * spine;
obliv ~tree' (:spine) :=
case unfold<spine> $0 of
𝟙
| 𝟙 ~+ ~int * (~tree' ($0).1) * (~tree' ($0).2);
def s_tree' :{⊥} Π~:tree, Π:spine, ~tree' $0 :=
\~:tree => \:spine =>
case unfold<spine> $0 of
()
| tape (case unfold<tree> $2 of
~inl<𝟙 ~+ ~int * (~tree' ($1).1) * (~tree' ($1).2)> ()
| ~inr<𝟙 ~+ ~int * (~tree' ($1).1) * (~tree' ($1).2)>
tape (s_int ($0).1.1,
s_tree' ($0).1.2 ($1).1,
s_tree' ($0).2 ($1).2));
def r_tree' :{⊤} Π:spine, Π:~tree' $0, tree :=
\:spine =>
case unfold<spine> $0 of
\:𝟙 => leaf
| \:𝟙 ~+ ~int * (~tree' ($0).1) * (~tree' ($0).2) =>
~case $0 of
leaf
| node (r_int ($0).1.1,
r_tree' ($2).1 ($0).1.2,
r_tree' ($2).2 ($0).2);
(* The oblivious lookup function for ~tree. *)
def ~lookup :{⊥} Π:~int, Π:nat, Π:~tree $0, ~𝔹 :=
\:~int => \:nat => \:~tree $0 =>
tape (s𝔹 (lookup (r_int $2) (r_tree $1 $0)));
(* The oblivious lookup function that uses ~tree' instead. Note that the
implementation is the same as ~lookup above with different oblivious tree
and its section/retraction functions. *)
def ~lookup' :{⊥} Π:~int, Π:spine, Π:~tree' $0, ~𝔹 :=
\:~int => \:spine => \:~tree' $0 =>
tape (s𝔹 (lookup (r_int $2) (r_tree' $1 $0)));
(* The oblivious insert function for ~tree. *)
def ~insert :{⊥} Π:~int, Π:nat, Π:~tree $0, ~tree (succ $1) :=
\:~int => \:nat => \:~tree $0 =>
s_tree (insert (r_int $2) (r_tree $1 $0)) (succ $1)
}].
Definition Σ : gctx := list_to_map defs.
data nat := 𝟙 + nat;
data tree := 𝟙 + int * tree * tree;
(* def zero :{⊥} nat := fold
(* def succ :{⊥} Π:nat, nat := \:nat => fold<nat> (inr<𝟙 + nat> *)
(* def leaf :{⊥} tree := fold
(* def node :{⊤} Π~:int * tree * tree, tree := *)
(* \~:int * tree * tree => fold<tree> (inr<𝟙 + int * tree * tree> *)
def is_zero :{⊥} Π:nat, 𝔹 :=
\:nat => case unfold<nat> $0 of true | false;
def pred :{⊥} Π:nat, nat :=
\:nat => case unfold<nat> $0 of zero | $0;
def insert :{⊤} Π~:int, Π~:tree, tree :=
\~:int => \~:tree =>
case unfold<tree> $0 of
node ($2, leaf, leaf)
| if $2 <= ($0).1.1
then node (($0).1.1, insert $2 ($0).1.2, ($0).2)
else node (($0).1.1, ($0).1.2, insert $2 ($0).2);
def lookup :{⊤} Π~:int, Π~:tree, 𝔹 :=
\~:int => \~:tree =>
case unfold<tree> $0 of
false
| if $2 <= ($0).1.1
then if ($0).1.1 <= $2
then true
else lookup $2 ($0).1.2
else lookup $2 ($0).2;
(* The oblivious tree with the maximum depth as its public view. *)
obliv ~tree (:nat) :=
if is_zero $0
then 𝟙
else 𝟙 ~+ ~int * (~tree (pred $0)) * (~tree (pred $0));
def s_tree :{⊥} Π~:tree, Π:nat, ~tree $0 :=
\~:tree => \:nat =>
if is_zero $0
then ()
else tape (case unfold<tree> $1 of
~inl<𝟙 ~+ ~int * (~tree (pred $1)) * (~tree (pred $1))> ()
| ~inr<𝟙 ~+ ~int * (~tree (pred $1)) * (~tree (pred $1))>
tape (s_int ($0).1.1,
s_tree ($0).1.2 (pred $1),
s_tree ($0).2 (pred $1)));
def r_tree :{⊤} Π:nat, Π:~tree $0, tree :=
\:nat =>
if is_zero $0
then \:𝟙 => leaf
else \:𝟙 ~+ ~int * (~tree (pred $0)) * (~tree (pred $0)) =>
~case $0 of
leaf
| node (r_int ($0).1.1,
r_tree (pred $2) ($0).1.2,
r_tree (pred $2) ($0).2);
(* The oblivious tree with the upper bound of its spine as the public view. *)
data spine := 𝟙 + spine * spine;
obliv ~tree' (:spine) :=
case unfold<spine> $0 of
𝟙
| 𝟙 ~+ ~int * (~tree' ($0).1) * (~tree' ($0).2);
def s_tree' :{⊥} Π~:tree, Π:spine, ~tree' $0 :=
\~:tree => \:spine =>
case unfold<spine> $0 of
()
| tape (case unfold<tree> $2 of
~inl<𝟙 ~+ ~int * (~tree' ($1).1) * (~tree' ($1).2)> ()
| ~inr<𝟙 ~+ ~int * (~tree' ($1).1) * (~tree' ($1).2)>
tape (s_int ($0).1.1,
s_tree' ($0).1.2 ($1).1,
s_tree' ($0).2 ($1).2));
def r_tree' :{⊤} Π:spine, Π:~tree' $0, tree :=
\:spine =>
case unfold<spine> $0 of
\:𝟙 => leaf
| \:𝟙 ~+ ~int * (~tree' ($0).1) * (~tree' ($0).2) =>
~case $0 of
leaf
| node (r_int ($0).1.1,
r_tree' ($2).1 ($0).1.2,
r_tree' ($2).2 ($0).2);
(* The oblivious lookup function for ~tree. *)
def ~lookup :{⊥} Π:~int, Π:nat, Π:~tree $0, ~𝔹 :=
\:~int => \:nat => \:~tree $0 =>
tape (s𝔹 (lookup (r_int $2) (r_tree $1 $0)));
(* The oblivious lookup function that uses ~tree' instead. Note that the
implementation is the same as ~lookup above with different oblivious tree
and its section/retraction functions. *)
def ~lookup' :{⊥} Π:~int, Π:spine, Π:~tree' $0, ~𝔹 :=
\:~int => \:spine => \:~tree' $0 =>
tape (s𝔹 (lookup (r_int $2) (r_tree' $1 $0)));
(* The oblivious insert function for ~tree. *)
def ~insert :{⊥} Π:~int, Π:nat, Π:~tree $0, ~tree (succ $1) :=
\:~int => \:nat => \:~tree $0 =>
s_tree (insert (r_int $2) (r_tree $1 $0)) (succ $1)
}].
Definition Σ : gctx := list_to_map defs.
We can type this global context.
Now let's test the semantics.
An example oblivious tree type, with index 2.
It can be evaluted to type value.
Definition ex_tree_type_pack :
sig (fun ω => Σ ⊨ ex_tree_type -->* ω /\ otval ω).
Proof.
mstep_solver.
Defined.
sig (fun ω => Σ ⊨ ex_tree_type -->* ω /\ otval ω).
Proof.
mstep_solver.
Defined.
We extract the type value out of this dependent pair.
An example tree with 3 nodes.
Definition ex_tree :=
<{ node (i(2), node (i(1), leaf, leaf), node (i(4), leaf, leaf)) }>.
Print ex_tree.
<{ node (i(2), node (i(1), leaf, leaf), node (i(4), leaf, leaf)) }>.
Print ex_tree.
The corresponding oblivious tree built using the section function.
We can evaluate it to an oblivious value.
Definition ex_otree_pack :
sig (fun v => Σ ⊨ ex_otree -->* v /\ oval v).
Proof.
mstep_solver.
Defined.
Definition ex_otree_v := ltac:(extract ex_otree_pack).
Print ex_otree_v.
sig (fun v => Σ ⊨ ex_otree -->* v /\ oval v).
Proof.
mstep_solver.
Defined.
Definition ex_otree_v := ltac:(extract ex_otree_pack).
Print ex_otree_v.
A few examples of the lookup function.
Definition ex_lookup1 :
sig (fun v => Σ ⊨ <{ lookup i(3) ex_tree }> -->* v /\ val v).
Proof.
mstep_solver.
Defined.
Definition ex_lookup1_result := ltac:(extract ex_lookup1).
Print ex_lookup1_result.
Definition ex_lookup2 :
sig (fun v => Σ ⊨ <{ lookup i(1) ex_tree }> -->* v /\ val v).
Proof.
mstep_solver.
Defined.
Definition ex_lookup2_result := ltac:(extract ex_lookup2).
Print ex_lookup2_result.
sig (fun v => Σ ⊨ <{ lookup i(3) ex_tree }> -->* v /\ val v).
Proof.
mstep_solver.
Defined.
Definition ex_lookup1_result := ltac:(extract ex_lookup1).
Print ex_lookup1_result.
Definition ex_lookup2 :
sig (fun v => Σ ⊨ <{ lookup i(1) ex_tree }> -->* v /\ val v).
Proof.
mstep_solver.
Defined.
Definition ex_lookup2_result := ltac:(extract ex_lookup2).
Print ex_lookup2_result.
The corresponding examples of the oblivious lookup function. Observe that
the results are equivalent to the ones in the public world.
Definition ex_olookup1 :
sig (fun v => Σ ⊨ <{ ~lookup i[3] (succ (succ zero)) ex_otree_v }> -->* v /\ val v).
Proof.
mstep_solver.
Defined.
Definition ex_olookup1_result := ltac:(extract ex_olookup1).
Print ex_olookup1_result.
Definition ex_olookup2 :
sig (fun v => Σ ⊨ <{ ~lookup i[1] (succ (succ zero)) ex_otree_v }> -->* v /\ val v).
Proof.
mstep_solver.
Defined.
Definition ex_olookup2_result := ltac:(extract ex_olookup2).
Print ex_olookup2_result.
sig (fun v => Σ ⊨ <{ ~lookup i[3] (succ (succ zero)) ex_otree_v }> -->* v /\ val v).
Proof.
mstep_solver.
Defined.
Definition ex_olookup1_result := ltac:(extract ex_olookup1).
Print ex_olookup1_result.
Definition ex_olookup2 :
sig (fun v => Σ ⊨ <{ ~lookup i[1] (succ (succ zero)) ex_otree_v }> -->* v /\ val v).
Proof.
mstep_solver.
Defined.
Definition ex_olookup2_result := ltac:(extract ex_olookup2).
Print ex_olookup2_result.
This time we use the upper bound of its spine as the public view.
Notation "'ex_spine'" := <{ snode ((snode (sleaf, sleaf)), sleaf) }>
(in custom oadt, only parsing).
Example ex_spine_tree_type :=
<{ ~tree' ex_spine }>.
Print ex_spine_tree_type.
Definition ex_spine_tree_type_pack :
sig (fun ω => Σ ⊨ ex_spine_tree_type -->* ω /\ otval ω).
Proof.
mstep_solver.
Defined.
Definition ex_spine_tree_type_v := ltac:(extract ex_spine_tree_type_pack).
Print ex_spine_tree_type_v.
(in custom oadt, only parsing).
Example ex_spine_tree_type :=
<{ ~tree' ex_spine }>.
Print ex_spine_tree_type.
Definition ex_spine_tree_type_pack :
sig (fun ω => Σ ⊨ ex_spine_tree_type -->* ω /\ otval ω).
Proof.
mstep_solver.
Defined.
Definition ex_spine_tree_type_v := ltac:(extract ex_spine_tree_type_pack).
Print ex_spine_tree_type_v.
An example tree.
The corresponding oblivious tree.
We can evaluate it to an oblivious value.
Definition ex_spine_otree_pack :
sig (fun v => Σ ⊨ ex_spine_otree -->* v /\ oval v).
Proof.
mstep_solver.
Defined.
Definition ex_spine_otree_v := ltac:(extract ex_spine_otree_pack).
Print ex_spine_otree_v.
sig (fun v => Σ ⊨ ex_spine_otree -->* v /\ oval v).
Proof.
mstep_solver.
Defined.
Definition ex_spine_otree_v := ltac:(extract ex_spine_otree_pack).
Print ex_spine_otree_v.
Examples of the oblivious lookup for the spine view.
Definition ex_spine_olookup1 :
sig (fun v => Σ ⊨ <{ ~lookup' i[1] ex_spine ex_spine_otree_v }> -->* v /\ val v).
Proof.
mstep_solver.
Defined.
Definition ex_spine_olookup1_result := ltac:(extract ex_spine_olookup1).
Print ex_spine_olookup1_result.
sig (fun v => Σ ⊨ <{ ~lookup' i[1] ex_spine ex_spine_otree_v }> -->* v /\ val v).
Proof.
mstep_solver.
Defined.
Definition ex_spine_olookup1_result := ltac:(extract ex_spine_olookup1).
Print ex_spine_olookup1_result.
An example of insert function, using the previously defined tree for the
depth view.
Definition ex_insert :
sig (fun v => Σ ⊨ <{ insert i(3) ex_tree }> -->* v /\ val v).
Proof.
mstep_solver.
Defined.
Definition ex_insert_result := ltac:(extract ex_insert).
Print ex_insert_result.
sig (fun v => Σ ⊨ <{ insert i(3) ex_tree }> -->* v /\ val v).
Proof.
mstep_solver.
Defined.
Definition ex_insert_result := ltac:(extract ex_insert).
Print ex_insert_result.
The corresponding example for the oblivious insert function.