Require Import Arith.

Section ConstructiveIndefiniteDescription.

  (** We briefly investigate the amount of choice that is needed to
      provide a constructive indefinite description operator. *)

  Variable P : nat -> Prop.

  Hypothesis P_decidable : forall x : nat, {P x} + {~ P x}.

  (** To find a witness of [P] constructively, we define an algorithm
      that tries P on all natural numbers starting from 0 and going
      up. The relation [R] describes the connection between the two
      successive numbers we try. Namely, [y] is [R]-less then [x] if
      we try [y] after [x], i.e., [y = S x] and [P x] is false. Then
      the absence of an infinite [R]-descending chain from 0 is
      equivalent to the termination of our searching algorithm. *)

  Definition R (x y : nat) : Prop := x = S y /\ ~ P y.

  Notation Local "'acc' x" := (Acc R x) (at level 10).

  Lemma P_implies_acc : forall x : nat, P x -> acc x.
  Proof.
    intros x H.
    constructor.
    intros y [_ not_Px].
    absurd (P x); assumption.
  Qed.

  Lemma P_eventually_implies_acc : forall (x : nat) (n : nat), P (n + x) -> acc x.
  Proof.
    intros x n; generalize x; clear x; induction n as [|n IH]; simpl.
    apply P_implies_acc.
    intros x H.
    constructor.
    intros y [fxy _].
    apply IH.
    rewrite fxy.
    replace (n + S x) with (S (n + x)); auto with arith.
  Defined.

  Corollary P_eventually_implies_acc_ex : (exists n : nat, P n) -> acc 0.
  Proof.
    intros H; elim H.
    intros x Px.
    apply P_eventually_implies_acc with (n := x).
    replace (x + 0) with x; auto with arith.
  Defined.

  (** In the following statement, we use the trick with recursion on
      [Acc]. This is also where decidability of [P] is used. *)

  Theorem acc_implies_P_eventually : acc 0 -> {n : nat | P n}.
  Proof.
    intros Acc_0.
    pattern 0.
    apply Acc_iter with (R := R); [| assumption].
    clear Acc_0; intros x IH.
    destruct (P_decidable x) as [Px | not_Px].
    exists x; simpl; assumption.
    set (y := S x).
    assert (Ryx : R y x).
    unfold R; split; auto.
    destruct (IH y Ryx) as [n Hn].
    exists n; assumption.
  Defined.

  Theorem constructive_indefinite_description_nat :
    (exists n : nat, P n) -> {n : nat | P n}.
  Proof.
    intros H; apply acc_implies_P_eventually.
    apply P_eventually_implies_acc_ex; assumption.
  Defined.

End ConstructiveIndefiniteDescription.

Section ConstructiveEpsilon.

  (** For the current purpose, we say that a set [A] is countable if
      there are functions [f : A -> nat] and [g : nat -> A] such that
      [g] is a left inverse of [f]. *)

  Variable A : Set.
  Variable f : A -> nat.
  Variable g : nat -> A.

  Hypothesis gof_eq_id : forall x : A, g (f x) = x.

  Variable P : A -> Prop.

  Hypothesis P_decidable : forall x : A, {P x} + {~ P x}.

  Definition P' (x : nat) : Prop := P (g x).

  Lemma P'_decidable : forall n : nat, {P' n} + {~ P' n}.
  Proof.
    intro n; unfold P'; destruct (P_decidable (g n)); auto.
  Defined.

  Lemma constructive_indefinite_description :
    (exists x : A, P x) -> {x : A | P x}.
  Proof.
    intro H.
    assert (H1 : exists n : nat, P' n).
    destruct H as [x Hx].
    exists (f x); unfold P'.
    rewrite gof_eq_id; assumption.
    apply (constructive_indefinite_description_nat P' P'_decidable) in H1.
    destruct H1 as [n Hn].
    exists (g n); unfold P' in Hn; assumption.
  Defined.

  Lemma constructive_definite_description :
    (exists! x : A, P x) -> {x : A | P x}.
  Proof.
    intros; apply constructive_indefinite_description; firstorder.
  Defined.

  Definition constructive_epsilon (E : exists x : A, P x) : A
    := proj1_sig (constructive_indefinite_description E).

  Definition constructive_epsilon_spec (E : (exists x, P x)) :
    P (constructive_epsilon E)
    := proj2_sig (constructive_indefinite_description E).

End ConstructiveEpsilon.