(** * Reusability: Child MAS Reusability Proof for MASIR-ND *)

Require Import Coq.Lists.List.
Require Import Coq.Arith.Arith.
Require Import Coq.Sets.Ensembles.
Require Import Lia.
Import ListNotations.

Definition Action := nat.

Record Envelope6D := mk6D {
  A_plus      : Ensemble Action;
  A_minus     : Ensemble Action;
  Budget      : nat;
  Tau         : nat;
  Depth       : nat;
  Risk        : nat;
  SemanticRef : nat;
  ContextRef  : nat
}.

Record MAS := mkMAS {
  mas_id : nat;
  mas_envelope : Envelope6D;
  mas_state : nat
}.

Record Task := mkTask {
  task_id : nat;
  task_cost : nat;
  task_required_trust : nat
}.

Definition valid_envelope (env : Envelope6D) : Prop :=
  Budget env > 0 /\ Tau env <= 100 /\ Risk env <= 100.

Definition valid_mas (mas : MAS) : Prop :=
  valid_envelope (mas_envelope mas).

Definition execute_task (mas : MAS) (task : Task) : MAS :=
  mkMAS (mas_id mas) (mas_envelope mas) 0.

Theorem T20_execution_preserves_validity : forall mas task,
  valid_mas mas ->
  valid_mas (execute_task mas task).
Proof.
  intros mas task H_valid.
  unfold valid_mas, execute_task in *. simpl.
  exact H_valid.
Qed.

Fixpoint process_n_tasks (mas : MAS) (tasks : list Task) : MAS :=
  match tasks with
  | nil => mas
  | task :: rest => process_n_tasks (execute_task mas task) rest
  end.

Theorem reuse_n_times : forall mas tasks,
  valid_mas mas ->
  valid_mas (process_n_tasks mas tasks).
Proof.
  intros mas tasks H_valid.
  induction tasks as [| task rest IH] in mas, H_valid |- *.
  - simpl. exact H_valid.
  - simpl. apply IH.
    apply T20_execution_preserves_validity. exact H_valid.
Qed.

Theorem T20_arbitrary_reuse : forall mas n,
  valid_mas mas ->
  forall tasks,
    length tasks = n ->
    valid_mas (process_n_tasks mas tasks).
Proof.
  intros mas n H_valid tasks _.
  apply reuse_n_times. exact H_valid.
Qed.

Definition spawn_child (parent : MAS) (child_budget : nat) : MAS :=
  let parent_env := mas_envelope parent in
  let child_env := mk6D
    (A_plus parent_env)
    (A_minus parent_env)
    (min child_budget (Budget parent_env))
    (Tau parent_env)
    (Depth parent_env)
    (Risk parent_env)
    (SemanticRef parent_env)
    (ContextRef parent_env)
  in
  mkMAS (S (mas_id parent)) child_env 0.

Theorem child_inherits_validity : forall parent child_budget,
  valid_mas parent ->
  child_budget > 0 ->
  valid_mas (spawn_child parent child_budget).
Proof.
  intros parent child_budget [H_budget [H_tau H_risk]] H_child_pos.
  unfold valid_mas, spawn_child, valid_envelope. simpl.
  repeat split.
  - lia.
  - exact H_tau.
  - exact H_risk.
Qed.

Print T20_execution_preserves_validity.
Print reuse_n_times.
Print T20_arbitrary_reuse.
