Comments in Coq are as in Ocaml and SML: they start with a left-paren and asterisk, and are closed with an asterisk and right-paren.

Require Import Arith. is a top-level command that tells Coq to import the definitions from the Arith library (arithmetic) and to make the definitions available at the top-level. All top-level commands end with a period.

A top-level definition begins with the keyword Definition, followed by an identifier (in this case four) that we want to use, a colon, a type, :=, and then an expression followed by a period. Here the type of the number 4 is nat which stands for natural number.

You can leave off the type information and Coq can often infer it. But it can't always infer types, and it's good documentation to put the types on complicated definitions.

Eval compute in <exp>. lets you evaluate an expression to see the resulting value and type.

Check <exp> lets you check the type of an expression.

Print <identifier> lets you see the definition of the identifier.

To define a function, we just make a parameterized definition.

As in Ocaml, we can leave off the types and Coq can usually infer them, but not always.

Parameterized definitions are just short-hand for a regular definition using a lambda expression.

When the types are the same, we can group parameters as in add'.

Multiple parameters are just iterated lambdas.

An inductive definition is just like an Ocaml datatype definition, though the syntax is a little different. Here, we are defining a new Type called bool with constructors true and false. Unlike Ocaml, we can (and generally need to) provide the type of each data constructor, hence both true and false are defined as constructors that immediately return a bool. Notice that when we evaluate this definition, Coq says that not only is bool defined, but also bool_rect, bool_ind, and bool_rec. We'll discuss those later on when we start talking about proving things.

The definition above shows how we use pattern-matching to tear apart an inductive type, in this case a bool. The syntax is similar to Ocaml except that we use "=>" for the guard instead of "->" and we have to put an "end" to terminate the "match".

The Arith module defines this nat type already. It is a way to represent the natural numbers, with a base case of zero, "0" and successor constructor S. Notice that the type of S declares it to take a nat as an argument, before returning a nat. Inductive nat : Type := | O : nat | S : nat -> nat. type nat = O | S of nat

A digression: In informal math, we tend to think of a "type" as a set of objects. For instance, we think of nat as the set of objects {0,1,2,3,...}. But we can also form sets out of sets. For instance, we can have {nat,bool,string}. Technically, to avoid circularities, nat is considered a "small" set, and {nat,bool,string} is considered a "large" set, sometimes called a class. Stratifying our sets is necessary to avoid constructions such as S = { s : set | s is not contained in s } (Russell's paradox.) In Coq, the identifier Set refers to a universe of types, including {nat,bool,string,...}. So in some sense, the identifier Set names a class of types. We sometimes say that Set is the type of the collection {nat,bool,string,...}. When we build certain kinds of new types out of elements of Set, then we have to move up to a new universe. Internally, that universe is called Type_1. (Actually, Set is represented as Type_0 internally.) And if we build certain types out of Type_1, we have to move up to Type_2. So Coq has an infinite hierarchy Set a.k.a. Type_0, Type_1, Type_2, ... Now figuring out where in this hierarchy a definition should go isn't that hard, and in fact, Coq automagically infers this for you. When you write Type, you are really writing Type_x and Coq is later solving for x to make sure your definitions don't contain a circularity. In fact, with the exception of Set and one more very special universe, Prop, you can't even explicitly say at what level you want a given definition. For now, we can just ignore this and use Type everywhere.

the numeral 0 is just notation for the constructor O

1,2,3 are short-hand for (S O), (S (S O)) and (S (S (S O))).

Use Unset Printing Notations to see natural numbers printed out in full.

We construct recursive functions by using the keyword "Fixpoint".

Alternatively, we can use a "fix" expression which builds a recursive functions, similar to the way "fun" builds a non-recursive function.

Pairs

pair of nats

nat and bool

fst extracts the first component of a pair, and snd extracts the second component.

Notice that (3,true,2) is really short-hand for ((3,true),2). and nat * bool * nat is short for (nat * bool) * nat. Options

An option t is either None or Some applied to a value of type t. Notice that unlike Ocaml, we write option nat instead of nat option.

Sums

We build something of type t1 + t2 by using either inl or inr. It's important to provide Coq enough type information that it can figure out what the other type is.

Lists

Polymorphism

Unlike Ocaml, we make type parameters explicit in Coq. Here, we've defined a generic append function, which abstracts over a type A. Notice that the types of the arguments l1 and l2 depend upon A, as does the result type. Notice also that when we call this function, we must provide an actual type for the instantiation of A.

Coq can usually figure out what the types are, and we can leave out the type by just putting an underscore there instead. But there are cases where it can't figure it out (e.g., generic_append _ nil nil).

The curly braces tell Coq to make an argument implicit. That means it's up to Coq to fill in the argument for you. Notice that in the recursive call, we didn't have to specify the type.

This won't work though: Definition foo := generic_append' nil nil. We can fix it by either giving enough information in the context or by using "@" to override the implicit arguments: