Require Import ssreflect ssrbool eqtype ssrnat ssrfun.

Set Implicit Arguments.
Unset Strict Implicit.
Import Prenex Implicits.
Require Export sset1.

Module Correspondence.

Lemma sub_emptyset : forall x,
  sub x emptyset = (x = emptyset).
Proof.
move=> x; apply iff_eq; last by move=> -> ; fprops.
by move => h; empty_tac t tx; case (h _ tx); case.
Qed.

Definition related r x y := inc (J x y) r.

Theorem range_domain_exists: forall r,
  is_graph r ->
  (exists_unique (fun a=> (forall x, inc x a = (exists y, inc (J x y) r))) &
    exists_unique (fun b=> (forall y, inc y b = (exists x, inc (J x y) r)))).
Proof.
move=> r g; split; split.
  by exists (domain r); move=> t; dw.
  by move=> x y Hx Hy; set_extens t; rewrite Hx Hy.
  by exists (range r); move=> t; dw.
  by move=> x y Hx Hy; set_extens t; rewrite Hx Hy.
Qed.

Lemma sub_graph_prod: forall r, is_graph r ->
  sub r (product (domain r)(range r)).
Proof.
move=> r gr t tr.
have pt: is_pair t by apply gr.
by aw; dw; ee; ex_tac; rewrite pt.
Qed.

Lemma empty_graph1: forall r, is_graph r ->
  (domain r = emptyset) = (r = emptyset).
Proof.
move=>r gr; apply iff_eq=> es; empty_tac t ts.
   by empty_tac1 (P t); dw; ex_tac; rewrite gr.
move: ts; dw;rewrite // es; case=>y; apply emptyset_pr.
Qed.

Lemma empty_graph2: forall r, is_graph r ->
  (range r = emptyset) = (r = emptyset).
Proof.
move=>r gr; apply iff_eq=> es; empty_tac t ts.
   by empty_tac1 (Q t); dw; ex_tac; rewrite gr.
move: ts; rewrite range_rw // es; case=>y; apply emptyset_pr.
Qed.

Lemma sub_product_is_graph: forall u x y,
 sub u (product x y) -> is_graph u.
Proof. move=> u x y su t tu; move: (su _ tu); aw; intuition. Qed.

Lemma product_is_graph: forall x y,
  is_graph (product x y).
Proof. by move=> x y t; aw; intuition. Qed.

Hint Resolve product_is_graph: fprops.

Lemma product_related: forall x y a b,
  related (product x y) a b = (inc a x & inc b y).
Proof. by rewrite /related=> x y a b; aw; apply iff_eq; intuition. Qed.

Lemma product_domain: forall x y,
  nonempty y -> domain (product x y) = x.
Proof.
move=> x y [z] zy; set_extens t; rewrite domain0_rw.
  by case=>p; aw; move=> [[ _ [u _]] v]; rewrite - v.
by move=> tx; exists (J t z); aw; fprops.
Qed.

Lemma product_range: forall x y,
   nonempty x -> range (product x y) = y.
Proof.
move=> x y [z] zy; set_extens t; rewrite range0_rw.
  by case=>p; aw; move=> [[ _ [ _ u ]] v]; rewrite - v.
by move=> tx; exists (J z t); aw; fprops.
Qed.

Lemma constant_function_p1: forall x y,
  fgraph (product x (singleton y)).
Proof.
move=> x y; split; first by fprops.
move=> a b; aw; move=> [pa [_ qa]] [pb [ _ qb]] p.
by apply pair_exten=> //; rewrite qb.
Qed.

Lemma emptyset_graph: is_graph (emptyset).
Proof. by move=> t ; case; case. Qed.

Hint Resolve emptyset_graph : fprops.

Lemma emptyset_range: range emptyset = emptyset.
Proof. by rewrite empty_graph2; fprops. Qed.

Lemma emptyset_domain: domain emptyset = emptyset.
Proof. by rewrite empty_graph1; fprops. Qed.

Lemma emptyset_fgraph: fgraph emptyset.
Proof. by split; [fprops | move=> x y; case; case]. Qed.

Hint Rewrite emptyset_range emptyset_domain : sw.

Definition diagonal x := Zo (product x x)(fun y=> P y = Q y).

Lemma diagonal_is_identity: forall x, diagonal x = identity_g x.
Proof.
rewrite /identity_g /diagonal /L => x.
set_extens t; rewrite Z_rw; aw.
  by move=> [[pt [Pt _]] eql]; exists (P t); rewrite {3} eql; aw; auto.
by move=> [z [zx eql]]; rewrite - eql; aw; fprops.
Qed.

Lemma inc_diagonal_rw: forall x u,
  inc u (identity_g x) = (is_pair u & inc (P u) x & P u = Q u).
Proof.
move=> x y; rewrite -diagonal_is_identity /diagonal Z_rw; aw.
by apply iff_eq ; [| move=> [? [? ]] <- ]; intuition.
Qed.

Lemma inc_pair_diagonal: forall x u v,
  inc (J u v) (identity_g x) = (inc u x & u = v).
Proof. by move=> x u v; rewrite inc_diagonal_rw; aw; apply iff_eq; intuition.
Qed.

Hint Rewrite inc_pair_diagonal : aw.

Lemma identity_graph: forall x, is_graph (identity_g x).
Proof. by move => x; case (identity_fgraph x). Qed.

Hint Resolve identity_graph : fprops.

Definition is_triple f := is_pair f & is_pair (Q f).
Definition source x := P (Q x).
Definition target x := Q (Q x).
Definition graph x := P x.

Definition corresp s t g := J g (J s t).

Definition is_correspondence f :=
  is_triple f & sub (graph f) (product (source f) (target f)).

Lemma corr_propcc: forall s t g,
  sub g (product s t) = (is_graph g & sub (domain g) s & sub (range g) t).
Proof.
move=> s t g; apply iff_eq => [sg | [gg [sd sr]] x xg ].
  move: (sub_product_is_graph sg)=> gg; split =>//.
  by split; move=> z; dw; move=> [y pg]; move: (sg _ pg); aw; intuition.
move: (gg _ xg) => px; aw; ee.
  by apply sd; apply inc_pr1_domain.
by apply sr; apply inc_pr2_range.
Qed.

Lemma corr_propc: forall f, let g := graph f in
  is_correspondence f ->
  (is_graph g & sub (domain g) (source f) & sub (range g) (target f)).
Proof. move=> f g [tf sg]; by rewrite - corr_propcc. Qed.

Lemma is_triple_corr: forall s t g, is_triple (corresp s t g).
Proof. by rewrite/corresp=> s t g; split; [| aw]; fprops. Qed.

Lemma corresp_recov: forall f, is_triple f ->
  corresp (source f) (target f) (graph f) = f.
Proof.
rewrite /corresp /source /target /graph => f [pf pqf].
by apply pair_exten;aw; fprops.
Qed.

Lemma corresp_recov1: forall f, is_correspondence f ->
  corresp (source f) (target f) (graph f) = f.
Proof. by move => f [t _]; apply corresp_recov. Qed.

Lemma corresp_source: forall s t g, source (corresp s t g) = s.
Proof. rewrite /corresp /source=> s t g; aw. Qed.

Lemma corresp_target: forall s t g, target (corresp s t g) = t.
Proof. rewrite /corresp /target=> s t g; aw. Qed.

Lemma corresp_graph: forall s t g, graph (corresp s t g) = g.
Proof. rewrite /corresp /graph=> s t g; aw. Qed.

Hint Rewrite corresp_source corresp_target corresp_graph : aw.

Lemma corresp_create: forall s t g,
  sub g (product s t) -> is_correspondence (corresp s t g).
Proof. by move=> s t g h; split; [apply is_triple_corr | aw ]. Qed.

Lemma corresp_is_graph: forall g,
  is_correspondence g -> is_graph (graph g).
Proof. move=> g cg; move: (corr_propc cg); intuition. Qed.

Lemma corresp_sub_range: forall g,
  is_correspondence g -> sub (range (graph g)) (target g).
Proof. move=> g cg; move: (corr_propc cg); intuition. Qed.

Lemma corresp_sub_domain: forall g,
  is_correspondence g -> sub (domain (graph g)) (source g).
Proof. by move=> g cg; move: (corr_propc cg); intuition. Qed.

Hint Resolve corresp_sub_range corresp_sub_domain corresp_is_graph: fprops.

Definition set_of_correspondences (x y:Set) :=
  product (powerset (product x y))
          (product (singleton x) (singleton y)).

Lemma set_of_correspondences_rw: forall x y z,
  inc z (set_of_correspondences x y) =
  (is_correspondence z & source z = x & target z = y).
Proof.
rewrite /set_of_correspondences/is_correspondence/graph/source/target/is_triple.
move=> x y z; aw.
apply iff_eq.
    move=> [pz [spz [p_qz [pqz qqz]]]]; rewrite {} pqz {} qqz; intuition.
by move => [ aux [pqz qqz]]; move: aux; rewrite {} pqz {} qqz; intuition.
Qed.

Lemma set_of_correspondences_propa: forall f,
  is_correspondence f ->
  inc f (set_of_correspondences (source f) (target f)).
Proof. by move=> f cf; rewrite set_of_correspondences_rw. Qed.

Definition gacreate (a b:Set) (f:a->b) := IM (fun y:a => J (Ro y) (Ro (f y))).
Definition acreate (a b:Set) (f:a->b) := corresp a b (gacreate f).

Lemma acreate_corresp: forall (a b:Set) (f:a->b),
  is_correspondence (acreate f).
Proof.
rewrite /acreate=> a b f; apply corresp_create.
rewrite /gacreate => t tIM.
by case (IM_exists tIM)=> v <-; aw; intuition; fprops ; apply R_inc.
Qed.

Definition image_by_graph r u:=
  Zo (range r) (fun y=>exists x, inc x u & inc (J x y) r).

Definition image_by_fun r u :=
  image_by_graph (graph r) u.

Definition image_of_fun f :=
  image_by_graph (graph f) (source f).

Lemma image_by_graph_rw: forall u r y,
  inc y (image_by_graph r u) = exists x, (inc x u & inc (J x y) r).
Proof.
rewrite /image_by_graph => u r y; rewrite Z_rw.
set p := ex _.
apply iff_eq; first (by intuition); move=> hp;ee.
by move: hp=> [x [ _]] Hr; rewrite range0_rw; ex_tac; aw.
Qed.

Hint Rewrite image_by_graph_rw : aw.

Lemma sub_image_by_graph: forall u r,
  sub (image_by_graph r u) (range r).
Proof. move=> u r; apply Z_sub. Qed.

Lemma image_by_graph_domain: forall r, is_graph r ->
  image_by_graph r (domain r) = range r.
Proof.
move=> r gt; apply extensionality; first by apply sub_image_by_graph.
by move => t; aw; dw; case=>x; exists x; ee; ex_tac.
Qed.

Lemma image_by_emptyset: forall r,
  image_by_graph r emptyset = emptyset.
Proof.
rewrite /image_by_graph=> r; empty_tac3 t; rewrite Z_rw.
move => [_ [x [xe]]]; empty_tac0.
Qed.

Lemma image_by_nonemptyset: forall u r,
  is_graph r -> nonempty u -> sub u (domain r)
  -> nonempty (image_by_graph r u).
Proof.
move=> u r gr [x] xu udr; move: (udr _ xu); dw; move=> [y iJ].
by exists y; aw; ex_tac.
Qed.

Theorem image_by_increasing: forall u u' r,
  sub u u' -> sub (image_by_graph r u) (image_by_graph r u').
Proof.
move=> u u' r uu' t; rewrite 2! image_by_graph_rw.
by move=> [x [xu Jr]]; exists x; ee; apply uu'.
Qed.

Lemma image_of_large: forall u r, is_graph r ->
  sub (domain r) u -> image_by_graph r u = range r.
Proof.
move=> u r gr s; apply extensionality; first by apply sub_image_by_graph.
by rewrite -image_by_graph_domain=> // ; apply image_by_increasing.
Qed.

Definition im_singleton r x := image_by_graph r (singleton x).

Lemma im_singleton_pr: forall r x y,
  inc y (im_singleton r x) = inc (J x y) r.
Proof.
rewrite /im_singleton=> r x y; aw; apply iff_eq; last by exists x; fprops.
by case=>a; aw; move=> [] ->.
Qed.

Hint Rewrite im_singleton_pr : aw.

Lemma im_singleton_inclusion: forall r r', is_graph r -> is_graph r' ->
  (forall x, sub (im_singleton r x) (im_singleton r' x)) = sub r r'.
Proof.
move=> r r' gr gr'; apply iff_eq; last by move=> s x t; aw; apply s.
move=> s t tr;move: (gr _ tr) => eql; rewrite - eql - im_singleton_pr.
by apply s; aw; rewrite eql.
Qed.

Definition inverse_graph r :=
  Zo (product(range r)(domain r)) (fun y=> inc (J (Q y)(P y)) r).

Lemma inverse_graph_is_graph: forall r, is_graph (inverse_graph r).
Proof.
move=> r x; rewrite Z_rw; move=> [xp _]; apply (pair_in_product xp).
Qed.

Hint Resolve inverse_graph_is_graph: fprops.

Lemma inverse_graph_rw: forall r y,
  inc y (inverse_graph r) = (is_pair y & inc (J (Q y)(P y)) r).
Proof.
move=> r y; rewrite Z_rw product_inc_rw.
apply iff_eq; move=> [h1 h2]; ee.
  by move:(inc_pr2_range h2); rewrite pr2_pair.
by move:(inc_pr1_domain h2); rewrite pr1_pair.
Qed.

Lemma inverse_graph_alt: forall r, is_graph r ->
  inverse_graph r = fun_image r (fun z => J (Q z) (P z)).
Proof.
move=> r gr; set_extens t; rewrite inverse_graph_rw =>//; aw.
   move=> [pt Jr]; ex_tac; aw.
by case=> x [xr] <-; ee; aw; rewrite gr.
Qed.

Lemma inverse_graph_pair: forall r x y,
  inc (J x y) (inverse_graph r) = inc (J y x) r.
Proof.
move=> r x y; rewrite inverse_graph_rw; aw.
apply iff_eq; [ by case | move=> jr;ee ].
Qed.

Lemma inverse_graph_pr2: forall r x y,
  related (inverse_graph r) y x = related r x y.
Proof. rewrite /related=> r x y; apply inverse_graph_pair. Qed.

Hint Rewrite inverse_graph_pair : aw.
Hint Rewrite inverse_graph_pr2: bw.

Lemma inverse_graph_involutive: forall r, is_graph r ->
  inverse_graph (inverse_graph r) = r.
Proof.
move=> r gr;set_extens x; rewrite 2! inverse_graph_rw.
  by move=>[px [_]]; aw; rewrite px.
by move=> px; ee; aw; rewrite gr.
Qed.

Lemma range_inverse: forall r, is_graph r ->
  range (inverse_graph r) = domain r.
Proof.
move=> r gr; set_extens x;dw; fprops.
  by case=>z; aw=> h; ex_tac.
by case=>y; exists y; aw.
Qed.

Lemma domain_inverse: forall r, is_graph r ->
  domain (inverse_graph r) = range r.
Proof.
move=> r gr; set_extens x; dw; fprops.
  by case=>z; aw=> h; ex_tac.
by case=>y; exists y; aw.
Qed.

Lemma inverse_graph_emptyset: inverse_graph (emptyset) = emptyset.
Proof.
rewrite/inverse_graph; srw.
empty_tac3 y; rewrite Z_rw ; case; case; case.
Qed.

Hint Rewrite inverse_graph_emptyset: sw.

Lemma inverse_product: forall x y,
  inverse_graph (product x y) = product y x.
Proof.
move=>x y; set_extens t; rewrite inverse_graph_rw=>//; aw; intuition.
Qed.

Lemma inverse_identity_g: forall x,
  inverse_graph (identity_g x) = identity_g x.
Proof.
rewrite/inverse_graph=>x; rewrite identity_range identity_domain.
set_extens z; rewrite Z_rw 2! inc_diagonal_rw;
   aw; [ | move=> [pz [Pz]] <-]; intuition.
Qed.

Hint Rewrite inverse_identity_g inverse_product: aw.

Definition inverse_fun m :=
  corresp (target m) (source m) (inverse_graph (graph m)).

Lemma inverse_correspondence: forall m,
  is_correspondence m -> is_correspondence (inverse_fun m).
Proof.
rewrite /inverse_fun=>m cm; apply corresp_create.
move=> x; aw; rewrite inverse_graph_rw.
by case cm=> tm su [px iJ]; move: (su _ iJ); aw; intuition.
Qed.

Lemma inverse_fun_involutive: forall m,
  is_correspondence m -> inverse_fun (inverse_fun m) = m.
Proof.
move=>m cm.
rewrite /inverse_fun; aw; rewrite inverse_graph_involutive; fprops.
by apply corresp_recov1.
Qed.

Lemma inverse_source: forall f, source (inverse_fun f) = target f.
Proof. rewrite/inverse_fun=> f; aw. Qed.

Lemma inverse_target: forall f, target (inverse_fun f) = source f.
Proof. rewrite/inverse_fun=> f; aw. Qed.

Hint Rewrite inverse_source inverse_target : aw.
Hint Resolve inverse_correspondence: fprops.

Definition inv_image_by_graph r x :=
  image_by_graph (inverse_graph r) x.

Definition inv_image_by_fun r x:=
  inv_image_by_graph(graph r) x.

Lemma inv_image_by_fun_pr: forall r x,
  inv_image_by_fun r x = image_by_fun (inverse_fun r) x.
Proof. rewrite /inv_image_by_fun /inverse_fun /image_by_fun => r x; aw. Qed.

Lemma inv_image_graph_rw: forall x r y,
  (inc y (inv_image_by_graph r x)) = (exists u, inc u x & inc (J y u) r).
Proof.
rewrite /inv_image_by_graph=> r x y; aw.
by apply iff_eq; move=> [z]; [aw |]; move=> [zr Ji]; ex_tac; aw.
Qed.

Lemma inv_image_fun_rw: forall x r y,
  (inc y (inv_image_by_fun r x)) = (exists u, inc u x & inc (J y u) (graph r)).
Proof. by move=>x r y; rewrite /inv_image_by_fun inv_image_graph_rw. Qed.

Hint Rewrite inv_image_graph_rw: aw.

Definition compose_graph r' r :=
  Zo (product(domain r)(range r'))
  (fun w => exists y, (inc (J (P w) y) r & inc (J y (Q w)) r')).

Lemma composition_is_graph: forall r r',
  is_graph (compose_graph r r').
Proof.
rewrite/compose_graph => r r' t; rewrite Z_rw.
by move=> [tp _ ]; apply (pair_in_product tp).
Qed.

Hint Resolve composition_is_graph: fprops.

Lemma inc_compose_rw: forall r r' x,
  inc x (compose_graph r' r) =
  (is_pair x &( exists y, inc (J (P x) y) r& inc (J y (Q x)) r')).
Proof.
rewrite/compose_graph/domain/range => r r' t; rewrite Z_rw product_inc_rw.
apply iff_eq; first intuition.
move=> [p ey]; ee; by case: ey=> [y [j1 j2]]; aw; ee; ex_tac; aw.
Qed.

Hint Rewrite inc_compose_rw: aw.

Lemma compose_related: forall r r' x z,
  (related (compose_graph r' r) x z=
  exists y, related r x y & related r' y z).
Proof.
by rewrite /related=> r r' x z; apply iff_eq; aw; intuition; aw.
Qed.

Hint Rewrite compose_related: aw.

Lemma compose_domain1: forall r r',
  sub (domain (compose_graph r' r)) (domain r).
Proof.
rewrite/domain=> r r' t; aw; case=>x; aw.
by move => [[_ [y [p1y _]]] Px]; ex_tac; aw.
Qed.

Lemma compose_range1: forall r r',
  sub (range (compose_graph r' r)) (range r').
Proof.
rewrite/range=> r r' t; aw; case=>x; aw.
by move => [[_ [y [_ p2y]]] Px]; ex_tac; aw.
Qed.

Theorem inverse_compose:forall r r',
  inverse_graph (compose_graph r' r) =
  compose_graph (inverse_graph r)(inverse_graph r').
Proof.
move=> r r'; set_extens x; aw; rewrite inverse_graph_rw; aw; fprops.
  by move => [px [ _ [y [ ir ir']]]]; split=>//; exists y; aw; intuition.
move=> [px [y ]]; aw; move=> [ir' ir]; ee.
by exists y.
Qed.

Theorem composition_associative: forall r r' r'',
  compose_graph r'' (compose_graph r' r) =
  compose_graph (compose_graph r'' r') r.
Proof.
move=> r r' r''; set_extens x; aw; move=> [px h]; split=>//.
  case: h=> y; aw; move => [[_ [z [ir ir']]] ir'' ].
  by exists z; ee; aw; ee; exists y.
case: h=> y; aw; move => [ir [_ [z [ir' ir'']]]].
by exists z; ee; aw; ee; exists y.
Qed.

Theorem image_composition: forall r r' x,
  image_by_graph(compose_graph r' r) x = image_by_graph r' (image_by_graph r x).
Proof.
move=> r r' x; set_extens t; aw; case=> z [iz1 iz2] .
  by move: iz2; aw; move=> [_ [y [ir ir']]]; ex_tac; aw; ex_tac.
by move: iz1; aw; move=> [y [yx Jr]]; ex_tac; aw; split; fprops; ex_tac.
Qed.

Lemma compose_domain:forall r r',
  is_graph r' ->
  domain (compose_graph r' r) = inv_image_by_graph r (domain r').
Proof.
move=>r r' gr; move: (@composition_is_graph r' r) => cg.
set_extens t; aw; dw; case => [z]; aw;dw.
  by move =>[_ [y [ir ir']]]; ex_tac; ex_tac.
by move=> [[y ir'] ir]; exists y; aw; ee; ex_tac.
Qed.

Lemma compose_range: forall r r',
  is_graph r ->
  range (compose_graph r' r) =
  image_by_graph r' (range r).
Proof.
move=>r r' gr; move: (@composition_is_graph r' r) => cg.
set_extens t; aw; dw; case => [z]; aw; dw.
  by move =>[_ [y [ir ir']]]; ex_tac; ex_tac.
by move=> [[y ir'] ir]; exists y; aw; ee; ex_tac.
Qed.

Lemma inverse_direct_image: forall r x,
  is_graph r -> sub x (domain r) ->
  sub x (inv_image_by_graph r (image_by_graph r x)).
Proof.
move=> r x gt xd t tx; aw.
by move: (xd _ tx); dw; move=> [y Jr]; ex_tac; aw; ex_tac.
Qed.

Lemma composition_increasing: forall r r' s s',
  sub r s -> sub r' s' -> sub (compose_graph r' r) (compose_graph s' s).
Proof.
move=> r r' s s' rs rs' t; aw; move => [ tp [ x [ir ir']]].
by ee; exists x; split; [apply rs | apply rs'].
Qed.

Definition composableC r' r :=
  is_correspondence r & is_correspondence r' & source r' = target r.
Definition compose r' r :=
  corresp (source r)(target r') (compose_graph (graph r')(graph r)).

Notation "f1 \co f2" := (compose f1 f2) (at level 50).

Lemma compose_correspondence: forall r' r,
  is_correspondence r -> is_correspondence r' ->
  is_correspondence (r' \co r).
Proof.
rewrite/compose=> r' r cr cr'; apply corresp_create.
move=>t; aw; move=> [pt [y [ir ir']]]; split=>//.
move: cr => [_ sr]; move: (sr _ ir).
move: cr' => [_ sr']; move: (sr' _ ir').
by aw; intuition.
Qed.

Lemma compose_of_sets: forall r' r x,
  image_by_fun(r' \co r) x = image_by_fun r' (image_by_fun r x).
Proof.
rewrite /image_by_fun=> r' r x.
have: graph (compose r' r) = compose_graph (graph r') (graph r).
  by rewrite /compose /corresp /graph; aw.
by move => ->; apply image_composition.
Qed.

Lemma inverse_compose_cor: forall r r',
  inverse_fun (r' \co r) = (inverse_fun r) \co (inverse_fun r').
Proof.
rewrite /inverse_fun /compose /corresp /source /target /graph => r r'.
by aw; rewrite inverse_compose.
Qed.

Definition identity x := corresp x x (identity_g x).

Lemma identity_corresp: forall x,
  is_correspondence (identity x).
Proof.
rewrite /identity=> x; apply corresp_create.
by rewrite -diagonal_is_identity /diagonal; apply Z_sub.
Qed.

Lemma identity_source: forall x, source (identity x) = x.
Proof. rewrite/identity=> x; aw. Qed.

Lemma identity_target: forall x, target (identity x) = x.
Proof. rewrite/identity=> x; aw. Qed.

Lemma identity_graph0: forall x, graph (identity x) = identity_g x.
Proof. rewrite/identity=> x; aw. Qed.

Hint Rewrite identity_source identity_target: aw.

Lemma compose_identity_left: forall m,
   is_correspondence m -> (identity (target m)) \co m = m.
Proof.
rewrite /compose=> m cm.
suff : (compose_graph (identity_g(target m)) (graph m) = graph m).
  by aw; move=> eql; rewrite identity_graph0 eql; apply corresp_recov1.
set_extens t; aw.
  by move=> [pt [y [ p1 ]]]; aw; move=> [_ eql]; move: p1; rewrite eql pt.
have gm: (is_graph (graph m)) by fprops.
move => tg; move: (gm _ tg)=>pt; ee.
move: cm => [ _ s]; move: (s _ tg); aw.
move=> [_ [Pt Qt]]; exists (Q t); aw; rewrite pt;ee.
Qed.

Lemma compose_identity_right: forall m,
  is_correspondence m -> m \co (identity (source m)) = m.
Proof.
rewrite /compose=> m cm.
suff : (compose_graph (graph m) (identity_g (source m))= graph m).
  by aw; move=> eql; rewrite identity_graph0 eql; apply corresp_recov1.
set_extens t; aw.
  by move=> [pt [y]]; aw; move=> [ [_ eql]]; rewrite -eql pt.
have gm: (is_graph (graph m)) by fprops.
move => tg; move: (gm _ tg)=>pt; split => //.
move: cm => [ _ s]; move: (s _ tg); aw.
move=> [_ [Pt Qt]]; exists (P t); aw; rewrite pt;ee.
Qed.

Lemma compose_identity_identity: forall x,
  (identity x) \co (identity x) = (identity x).
Proof.
move=> x; move: (@identity_corresp x)=> aux.
by move: (compose_identity_right aux); aw.
Qed.

Lemma identity_self_inverse: forall x,
  inverse_fun (identity x) = (identity x).
Proof. rewrite /inverse_fun /identity=> x; aw. Qed.

End Correspondence.

Export Correspondence.

Module Bfunction.

Import Correspondence.

Definition functional_graph r :=
  forall x y y', related r x y -> related r x y' -> y=y'.

Lemma is_functional: forall r,
  (is_graph r & functional_graph r) = (fgraph r).
Proof.
rewrite /functional_graph /related=> r; apply iff_eq; last first.
  by move=> fr; split; fprops; move=> x y y'; apply fgraph_pr.
move => [gr eql]; split=>//.
move=> x y xr yr eqP.
move: (xr) (yr); rewrite -(gr _ xr) - (gr _ yr) -eqP => pa pb.
by rewrite (eql _ _ _ pa pb).
Qed.

Definition is_function f :=
  is_correspondence f &
  fgraph (graph f) & source f = domain (graph f).

Lemma is_function_pr: forall s t g,
  fgraph g -> sub (range g) t -> s = domain g ->
  is_function (corresp s t g).
Proof.
rewrite /is_function=> s t g fg sr d; aw; intuition.
by apply corresp_create; rewrite d corr_propcc; case fg; fprops.
Qed.

Lemma function_fgraph: forall f ,
  is_function f -> fgraph (graph f).
Proof. by move=> f; case; intuition. Qed.

Lemma function_graph: forall f,
  is_function f -> is_graph (graph f).
Proof. by move=> f; case; intuition. Qed.

Lemma f_domain_graph: forall f, is_function f -> domain (graph f) = source f.
Proof. by move=> f; case; intuition. Qed.

Lemma f_range_graph: forall f, is_function f -> sub (range (graph f))(target f).
Proof. by move=> f; case; intuition. Qed.

Hint Rewrite f_domain_graph : aw.
Hint Resolve function_graph function_fgraph : fprops.

Lemma image_by_fun_source: forall f, is_function f ->
  image_by_fun f (source f) = range (graph f).
Proof.
move=> f ff; rewrite /image_by_fun -f_domain_graph => //.
by apply image_by_graph_domain; fprops.
Qed.

Lemma related_inc_source: forall f x y,
  is_function f -> related (graph f) x y -> inc x (source f).
Proof.
move=> f x y; rewrite/ related; case; move=> _ [ fgf sf] jg.
by rewrite sf domain_rw; fprops; ex_tac.
Qed.

Definition W x f := V x (graph f).

Lemma W_pr3: forall f x,
  is_function f -> inc x (source f) -> inc (J x (W x f)) (graph f).
Proof. by move=> f x ff xf; apply fdomain_pr1; fprops; aw. Qed.

Lemma in_graph_W: forall f x,
  is_function f -> inc x (graph f) -> x = (J (P x) (W (P x) f)).
Proof. by move=> f x ff xf; apply in_graph_V; fprops. Qed.

Lemma W_pr2: forall f x, is_function f ->
  inc x (graph f) -> Q x = W (P x) f.
Proof. by move=> f x xg; apply pr2_V; fprops. Qed.

Lemma W_pr: forall f x y, is_function f ->
  inc (J x y) (graph f) -> W x f = y.
Proof.
by move=> f x y ff Jg; symmetry; move: (in_graph_W ff Jg); aw; apply pr2_def.
Qed.

Lemma range_inc_rw: forall f y, is_function f ->
  inc y (range (graph f)) = exists x, (inc x (source f) & y = W x f).
Proof. by rewrite /W=> f y ff; rewrite frange_inc_rw; aw; fprops. Qed.

Lemma inc_W_range_graph: forall f x, is_function f -> inc x (source f)
  -> inc (W x f) (range (graph f)).
Proof. move=> f x ff xsf; rewrite range_inc_rw=> //; ex_tac. Qed.

Lemma inc_W_target: forall f x, is_function f -> inc x (source f)
  -> inc (W x f) (target f).
Proof.
move => f x ff xsf; move: (inc_W_range_graph ff xsf).
apply (f_range_graph ff).
Qed.

Hint Resolve inc_W_target : fprops.

Lemma inc_pr1graph_source: forall f x y, is_function f ->
  inc (J x y) (graph f) -> inc x (source f).
Proof. move => f x y ff Jgf; apply (related_inc_source ff Jgf).
Qed.

Lemma inc_pr2graph_target: forall f x y, is_function f ->
  inc (J x y) (graph f) -> inc y (target f).
Proof.
move=> f x y ff Jgf; rewrite -(W_pr ff Jgf).
by move: (inc_pr1graph_source ff Jgf); fprops.
Qed.

Lemma inc_pr1graph_source1:forall f x, is_function f ->
  inc x (graph f) -> inc (P x) (source f).
Proof.
move=> f x ff xgf; move:(in_graph_W ff xgf)=> eql; rewrite eql in xgf.
apply (inc_pr1graph_source ff xgf).
Qed.

Lemma inc_pr2graph_target1:forall f x, is_function f ->
  inc x (graph f) -> inc (Q x) (target f).
Proof.
move=> f x ff xgf; move: (in_graph_W ff xgf)=>->; aw.
by apply inc_W_target => //; apply inc_pr1graph_source1.
Qed.

Lemma W_image: forall f x y, is_function f -> sub x (source f) ->
  (inc y (image_by_fun f x) = exists u, inc u x & W u f = y).
Proof.
rewrite /image_by_fun=> f x y ff ss; aw.
apply iff_eq.
  by move => [a [ax Jg]]; ex_tac; apply W_pr.
by move=> [u [ux Wy]]; ex_tac; rewrite - Wy; apply W_pr3=>//; apply ss.
Qed.

Hint Rewrite W_image : aw.

Ltac graph_tac :=
  match goal with
    | |- inc (J ?x (W ?x ?f)) (graph ?f) => apply W_pr3 ; fprops
    | h:inc (J ?x ?y) (graph ?f) |- W ?x ?f = ?y => apply W_pr ; fprops
    | h:inc (J ?x ?y) (graph ?f) |- ?y = W ?x ?f
      => symmetry; apply W_pr ; fprops
    | |- inc (W _ ?f) (range (graph ?f)) => apply inc_W_range_graph ; fprops
    | |- inc (W _ ?f) (target ?f) => apply inc_W_target ; fprops

    | Ha:is_function ?X1, Hb: inc (J _ ?X2) (graph ?X1)
      |- inc ?X2 (target ?X1)
        => apply (inc_pr2graph_target Ha Hb)
    | Ha:is_function ?X1, Hb: inc (J ?X2 _) (graph ?X1)
      |- inc ?X2 (source ?X1)
        => apply (inc_pr1graph_source Ha Hb)
    | Ha:is_function ?X1, Hb: inc ?X2 (graph ?X1)
      |- inc (P ?X2) (source ?X1)
        => apply (inc_pr1graph_source1 Ha Hb)
    | Ha:is_function ?X1, Hb: inc ?X2 (graph ?X1)
      |- inc (Q ?X2) (target ?X1)
        => apply (inc_pr2graph_target1 Ha Hb)
  end.

Lemma is_function_functional: forall f, is_correspondence f->
  is_function f = (forall x, inc x (source f) ->
    exists_unique (fun y => related (graph f) x y)).
Proof.
rewrite/related=> f cf; apply iff_eq.
  move=> ff x xsf; split; first by exists (W x f); graph_tac.
  case ff; rewrite -is_functional /functional_graph/related.
  by move=> _ [ [_ h] _]; apply h.
move => eu; split=>//; rewrite -is_functional.
have sd:source f = domain (graph f).
  apply extensionality; last by fprops.
  move=> t ts; move: (eu _ ts); case; move=> [y Jg] _.
  by rewrite domain0_rw; ex_tac; aw.
ee; move=> x y y'; rewrite /related; move => h1.
have isf: inc x (source f) by rewrite sd domain0_rw; ex_tac; aw.
by move: h1; case (eu _ isf); intuition.
Qed.

Lemma image_of_fun_pr: forall f, image_of_fun f = image_by_fun f (source f).
Proof. move=> f //. Qed.

Lemma sub_image_target:
  forall f, is_function f -> sub (image_of_fun f) (target f).
Proof.
move=> f ff t; rewrite image_of_fun_pr; aw; fprops.
by move => [u [usf]] <-; fprops.
Qed.

Lemma sub_image_target1: forall g x, is_function g ->
  sub (image_by_fun g x) (target g).
Proof.
rewrite /image_by_fun=>g x fg.
apply sub_trans with (range (graph g)); first by apply sub_image_by_graph.
by apply f_range_graph.
Qed.

Lemma image_singleton: forall f x,
  is_function f -> inc x (source f) ->
  image_by_fun f (singleton x) = singleton (W x f).
Proof.
move=> f x ff xsf; move: (sub_singleton xsf) => ixs.
set_extens t; aw.
  by move=> [u [us ]] <-; awi us; rewrite us.
by move=> ->; exists x; aw.
Qed.

Lemma function_exten3: forall f g,
  is_function f -> is_function g -> graph f = graph g ->
  target f = target g -> source f = source g ->
  f = g.
Proof.
move=> f g [ [ ff _] _ ] [ [fg _] _ ] e1 e2 e3.
rewrite -(corresp_recov ff); rewrite -(corresp_recov fg).
by congr (corresp _ _ _).
Qed.

Lemma function_exten1: forall f g,
  is_function f -> is_function g -> graph f = graph g ->
  target f = target g ->
  f = g.
Proof.
move => f g ff fg e1 e2; apply function_exten3=>//.
by do 2 rewrite -f_domain_graph=>//; rewrite e1.
Qed.

Lemma function_exten: forall f g,
  is_function f -> is_function g -> source f = source g ->
  target f = target g -> (forall x, inc x (source f) -> W x f = W x g)
  -> f = g.
Proof.
move=> f g ff fg e1 r2 e2; apply function_exten3=> //.
set_extens x => xg.
  have Pf : (inc (P x) (source f)) by graph_tac.
  by rewrite (in_graph_W ff xg) (e2 _ Pf); graph_tac; rewrite -e1.
have Pg : (inc (P x) (source f)) by rewrite e1; graph_tac.
by rewrite (in_graph_W fg xg) -(e2 _ Pg); graph_tac.
Qed.

Lemma inv_image_complement: forall g x,
  is_function g ->
  inv_image_by_fun g (complement (target g) x) =
  complement (source g) (inv_image_by_fun g x).
Proof.
rewrite /inv_image_by_fun => g x fg.
have gg: is_graph (graph g) by fprops.
set_extens t; aw.
  move=> [u [uf Jg]]; move: uf; srw; move=> [ut nux].
  split; first by graph_tac.
  aw; case; move => w [wx Jwg].
  by case nux; case fg => [_ [fgg _]]; rewrite (fgraph_pr fgg Jg Jwg).
srw; aw; move => [ts neu].
have Jg: (inc (J t (W t g))(graph g)) by graph_tac.
by ex_tac; srw; split; fprops; dneg Wx; ex_tac.
Qed.

Lemma prop_acreate: forall (A B:Set) (f:A->B) x,
  inc x (graph (acreate f)) = exists u:A, J (Ro u) (Ro (f u)) = x.
Proof. by rewrite /acreate /gacreate=> A B f x; aw; rewrite IM_rw. Qed.

Lemma acreate_function : forall (A B:Set) (f:A->B),
  is_function (acreate f).
Proof.
move=> A B f; move : (acreate_corresp f)=>cf.
red;ee.
  split; fprops; move=> x y; rewrite 2! prop_acreate.
  case=>v1 <-; case=>v2 <-; aw=> eql.
  by rewrite (R_inj eql).
rewrite /acreate /gacreate /domain; aw.
set_extens t; aw.
   move=> tA; exists (J t (Ro (f (Bo tA)))).
   by split; aw; apply IM_inc; exists (Bo tA); by rewrite B_eq.
by case=>x; rewrite IM_rw; move=> [[a]] <- <-; aw; apply R_inc.
Qed.

Hint Resolve acreate_function: fprops.

Lemma acreate_W : forall (A B:Set) (f:A->B) (x:A),
  W (Ro x) (acreate f) = Ro (f x).
Proof.
move=> A B f x.
have rs: (inc (Ro x) (source (acreate f))) by rewrite/acreate; aw; apply R_inc.
move: (W_pr3 (acreate_function f) rs); rewrite prop_acreate.
move=> [u eql];rewrite -(pr2_def eql).
by rewrite (R_inj (pr1_def eql)).
Qed.

Definition bcreate1 f (H:is_function f) :=
  fun x:source f => Bo (inc_W_target H (R_inc x)).

Lemma prop_bcreate1: forall f (H:is_function f) (x:source f),
  Ro (bcreate1 H x) = W (Ro x) f.
Proof. by move=> f H x; apply B_eq. Qed.

Lemma bcreate_inv1: forall f (H:is_function f),
  acreate (bcreate1 H) = f.
Proof.
move=> f ff; apply function_exten; fprops; rewrite {1}/acreate; aw.
by move=> x xs; rewrite - (B_eq xs) acreate_W; apply prop_bcreate1.
Qed.

Lemma W_mapping: forall f A B (Ha:source f =A)(Hb:target f =B) x,
  is_function f -> inc x A -> inc (W x f) B.
Proof. by move =>f A B <- <- x ff; fprops. Qed.

Definition bcreate f A B
  (H:is_function f)(Ha:source f = A)(Hb:target f = B):=
  fun x:A => Bo (W_mapping Ha Hb H (R_inc x)).

Lemma prop_bcreate2: forall f A B
  (H:is_function f) (Ha:source f=A)(Hb:target f=B)(x:A),
  Ro(bcreate H Ha Hb x) = W (Ro x) f.
Proof. move=> f A B H HA Hb x; apply B_eq. Qed.

Lemma bcreate_inv2: forall f A B
  (H:is_function f) (Ha:source f=A)(Hb:target f=B),
  acreate (bcreate H Ha Hb) = f.
Proof.
move=> f A B H Ha Hb.
apply function_exten; fprops; rewrite /acreate; aw =>//.
by move=> x xs; rewrite -(B_eq xs) acreate_W; apply prop_bcreate2.
Qed.

Lemma acreate_source: forall (A B:Set) (f:A->B), source (acreate f)= A.
Proof. by rewrite /acreate=> A B f; aw. Qed.

Lemma acreate_target: forall (A B:Set) (f:A->B), target (acreate f)= B.
Proof. by rewrite /acreate=> A B f; aw. Qed.

Hint Rewrite acreate_source acreate_target: aw.

Lemma bcreate_inv3: forall (A B:Set) (f:A->B),
  bcreate (acreate_function f) (acreate_source f)(acreate_target f) =1 f.
Proof.
move=> A B f a.
by apply R_inj; rewrite prop_bcreate2 acreate_W.
Qed.

Lemma bcreate_eq: forall f (H:is_function f),
  bcreate1 H =1 bcreate H (refl_equal (source f)) (refl_equal (target f)).
Proof.
by move=> f H a; apply R_inj; rewrite prop_bcreate2 prop_bcreate1.
Qed.

Definition empty_functionC : emptyset -> emptyset := fun x => x.
Definition empty_function:= acreate empty_functionC.

Lemma empty_function_function: is_function empty_function.
Proof. rewrite /empty_function; fprops. Qed.

Lemma empty_function_graph: graph empty_function = emptyset.
Proof.
rewrite /empty_function /acreate /gacreate; aw.
empty_tac t te; case (IM_exists te); case.
Qed.

Lemma special_empty_function: forall f, is_function f ->
  graph f = emptyset -> source f = emptyset.
Proof. by move => f ff ge; case ff; rewrite ge; move => _ [_] ->; srw.
Qed.

Lemma empty_function_prop:
  bcreate empty_function_function (acreate_source empty_functionC)
  (acreate_target empty_functionC)
  =1 empty_functionC.
Proof. move=> t; case t. Qed.