This paper addresses (part of) the problem of simplifying reasoning with proof assistants by transferring theorems that are stated in a heavy form, using explicit invariants, to lightweight counterparts where the invariants are handled implicitly by the type system. Specifically, we provide some abstract assumptions that allow one to establish isomorphisms for nested applications of defined types in Gordon's Higher-Order Logic (HOL). This allows the seamless isomorphic transfer of results across type definitions in the presence of nesting. Our results have been formalized in the Isabelle/HOL theorem prover, and we plan to integrate them with Isabelle's Lifting and Transfer tool.
The definition of new types by carving out subsets of existing types, known as typedef, is a fundamental mechanism in Higher-Order Logic (HOL), a logic that provides the foundation for several interactive theorem provers, including HOL4 [1], HOL Light [2] and Isabelle/HOL [3]. While most of the uses of typedef are hidden under the (automated) definition of (co)inductive datatypes [4,5,6,7] and therefore not directly invoked by the users, there still remains an important scenario where typedef is invoked explicitly.
Namely, say one has a type (perhaps an algebraic datatype) π that does not capture precisely the intended concept (because it contains too many elements), but only via an invariant defined in terms of a predicate on π, or equivalently, a set πΌ that has type π set. 1 Then one defines the more precise type π as a typedef, to consist of exactly the inhabitants of π that belong to the set πΌ-i.e., πΌ is effectively turned into a type.
Let us consider two examples, which will act as our running examples throughout this paper.
Example 1. (Distinct Lists) Polymorphic lists are introduced as the following datatype, where we use ML-style notation feature by Isabelle/HOL as well as all the HOL-based provers (in particular, πΌ denotes a type variable): datatype πΌ list = Nil | Cons πΌ (πΌ list)
For a list xs, we let length xs be its length and, given a natural number π < length, we let xs!π be the (πβ1)'th element in xs (so the indexing starts from 0). In some developments, one may be interested in working with nonrepetitive ("distinct") lists, i.e., lists whose elements do not repeat-to this end, one defines the Envelope g.buday@sheffield.ac.uk (G. Buday); a.popescu@sheffield.ac.uk (A. Popescu) and the following axioms stating that these functions are mutually inverse bijections between the new type πΌ dlist and the subset {xs βΆ πΌ list | distinct xs} of the base type πΌ list. 3 In Isabelle/HOL, these axioms are actually packed into a single axiom: In a formal development that follows the above scheme, one usually distinguishes between:
β’ developing the "internal" mathematical theory, which usually proceeds without defining π, but instead working with π and stating the theorems relativized to πΌ-for example, proving facts of the form βπ‘ βΆ π . π‘ β πΌ βΆ . . . β’ at the end, defining π and "sealing" the library for export by transferring from π to π all the constants and all the main (exportable) facts that have been proved proved relative to πΌ-for example, turning facts of the form βπ‘ βΆ π . π‘ β πΌ βΆ . . . into facts of the form βπ‘ β² βΆ π. . . .
The process of "isomorphically" transferring πΌ-relativized constants and results on π to corresponding constants and results on π, while seemingly conceptually straightforward, turns out to be quite subtle in the presence of higher-order constants. It requires infrastructure for lifting relations along type constructors (known as relators), which allows the automated proofs of the transferred theorems from the original ones-this is facilitated in Isabelle/HOL by various dedicated tools [8,9,10].
In this short work-in-progress paper, we study a fairly common pattern: the isomorphic transfer in the presence of nested type constructors. We start with motivation in terms of a standard construction applied to our running examples ( Β§2), which leads to formulating the wider scope of the problem. We then work out the solution to the problem in an ad hoc manner on the running examples Β§3. After that, we are ready to describe our main result: some abstract general structure and conditions that enable this pattern, in that they allow constructing a back-and-forth bijection for transfer ( Β§4), and show how it instantiates to our examples. We conclude with related work and future plans, notably the planned integration of our work into Isabelle's Lifting and Transfer package ( Β§5). Our concepts and results apply to Higher-Order Logic, hence are in principle relevant to any HOL-based provers. We have formalized them in the Isabelle/HOL theorem prover, and the formal scripts are publicly available [11].
Consider the problem of proving that the type constructors (polymorphic types) πΌ dlist and πΌ distrib constitute monads [12,13] or at least monad-like structures-which are very useful properties to have for any (data)type, whenever possible.
According to the above pattern, one wishes to first prove the properties for the underlying (representing types) πΌ list and πΌ β real relative to the defining predicates distinct and dist, and then transfer them to the defined types πΌ dlist and πΌ distrib. (Not only is this good practice, but in some sense it is the only way to proceed, at least initially when "bootstrapping" a theory for the defined types, given that initially our only means to prove a property on the defined type is to trace it back to a property on the underlying type.) Some of the monadic structure and properties involve nesting the application of type constructors, for example we want to have a map (functorial-action) operator map distrib βΆ (πΌ β π½) β (πΌ distrib β π½ distrib) and join (counit) operator join distrib βΆ (πΌ distrib) distrib β πΌ distrib satisfying (among others) the associativity law join distrib β (map distrib join distrib ) = join distrib β join distrib .
How to define such structure and prove such properties on the defined types? Let us start with a simple example that does not involve nesting, namely defining the map operator on (πΌ β π½) β (πΌ distrib β π½ distrib) and proving that it preserves identities, in that βπ βΆ πΌ distrib. map distrib (id βΆ πΌ β πΌ) π = π where id denotes the identity function. We define map distrib on any π βΆ πΌ β π½ and π βΆ πΌ distrib by map distrib π π = Abs distrib (ππ βΆ π½. β πβπ β1 π Rep distrib π π). Notice that the definition requires a backand-forth application of the abstraction and representation functions Abs distrib and Rep distrib , with some specific manipulation of items of the underlying type πΌ β real. (In this case, the specific manipulation happens to involve taking the sum of a function in πΌ β real over all the elements of the π-preimage of π, but the exact nature of such manipulations is not important here.) Now, to prove the desired fact, fix π βΆ πΌ distrib. In order to show map distrib id π = π, by the injectivity of Rep distrib it suffixes to show Rep distrib (map distrib id π) = Rep distrib π. Using the definition of map distrib and the fact that Rep distrib is left-inverse to Abs distrib , the above is equivalent to ππ βΆ π½. β πβid β1 π Rep distrib π π = Rep distrib π, i.e., to ππ βΆ π½. β π=π Rep distrib π π = Rep distrib π, which follows from the properties of sums and function extensionality.
We thus have the following pattern: To define constants on the defined type and prove properties for them, we need to move back and forth via the abstraction-representation pair and use consequences of the associated type_definition axiom.
But how to do this in the presence of nested defined type constructors (where the abstractionrepresentation pairs stemming from type definitions no longer work out of the box)? In the next section, we discuss in an ad hoc manner how to tackle the nested isomorphic transfer problem in the presence of nested types for our two running examples. After that, we will introduce an abstract solution, which covers these two cases and many others.
Now let us come back to the original more complex problem, of defining join distrib βΆ (πΌ distrib) distrib β πΌ distrib (in addition to map distrib which we have already defined) and proving the associativity law.
In order to define join distrib , which operates on the nested defined type (πΌ distrib) distrib, we need an understanding of how a counterpart of this operator should act on the (nested application of) the underlying type, i.e., on (πΌ β real)real. To be more exact, we don't need to consider the behavior of such a counterpart on all functions πΉ βΆ (πΌ β real) β real, but seemingly only on functions that act like distributions, i.e., satisfy distrib πΉ (i.e., are positive, have countable support and sum to 1). In fact, upon a closer look we see that the functions of interest are not really distributions on the entire type πΌ β real, but on the subset of πΌ β real that consists of distributions only, i.e., distributions on the set {π βΆ πΌ β real | distrib π }. In other words, we need a relativized version of the predicate distrib, let us denote it by distOn βΆ πΌ set β πΌ distrib β bool, defined by
where we have highlighted the difference from the original predicate dist-in that the conditions are not applied to the entire type πΌ, but to a parameter subset π΄ βΆ πΌ set. Note that we can recover the original predicate as dist = distOn UNIV, where UNIV is the "universal" set covering the entire type.
With this relativized predicate at hand, the picture becomes clear: Given a function πΉ βΆ (πΌ β real) β real that acts like a distribution on distributions on πΌ, i.e., such that distOn {π βΆ πΌ β real | dist π } πΉ holds, we have the formal means to turn it into a "flat" distribution, let us call it join πΉ, on πΌ β real, namely by summation (applying of course a well-known mathematical construction): join πΉ π₯ β‘ β π β{π | dist π } πΉ π π₯. Now, to define join distrib from join, we need to able to move back and forth between πΌ distrib distrib and and (πΌ β real) β real, ideally using a similar infrastructure as the abstraction-representation pair (Abs distrib , Rep distrib ) and predicate distrib that allowed us to move between πΌ distrib and πΌ β real. And indeed, this is possible:
Note that we defined distrib 2 in line with the above analysis, and defined Abs distrib,2 and Rep distrib,2 with the aim of achieving a bijective correspondence between (πΌ distrib) distrib and the elements of With the goal of a general solution in mind, let us note some similarities and commonalities of the above two cases. While for distinct lists the definitions of the one-level-up abstraction and representation functions involve entities of the same kind (namely abstractions for abstractions and representations for representations), in the case of distributions the definitions combine the two, for example the definition of the one-level-up abstraction uses outer abstraction together with inner representation. This is a reflection of lists being a covariant functor and function-space-to-reals being a contravariant functor.
The common pattern of the two is, however, the fact that the one-level-up operators employ composition between an (1) operator and (2) the map function for the given functor applied to an operator. This is manifestly clear for distinct lists, for example the one-level-up abstraction Abs dlist,2 is the composition of Abs dlist with map list Rep dlist ; for distributions, this is also seen to be the case, if we note that the map function for the contravariant functor πΌ β real is ππ βΆ πΌ β π½. ππ βΆ π½ β real. π β π.
Another discrepancy between the two cases is the definition of the one-level-up characteristic predicates (distrib 2 versus distinct 2 ); as we will see next, we will be able to uniformly capture both cases under a more general set-lifting operator.
We formulate the problem abstractly as follows: How to lift the abstraction-representation properties characteristic of type definitions to nested applications of the defined type constructor? In the previous section, we have discussed solutions to two instances of this problem. The first instance is representayive of a wide class of situations, namely polymorphic inductive datatypes (which are all covariant functors) with invariants; the second also has some cousins in the formalization and specification literature, for example the defined types topological filters and of mutisets, as well as variations such as discrete subdistributions. In what follows, we introduce a generalization that covers all these cases.
Assumptions. We assume that the underlying type constructor πΌ π comes equipped with an operator Trel βΆ πΌ set β π½ set β (πΌ β π½ β bool) β (πΌ π β π½ π β bool) for lifting relations to π that for bijective relations commutes with composition; namely, letting bijBetw π΄ π΅ π express that the relation π is a bijection between π΄ and π΅:
(A1) bijBetw π΄ π΅ π and bijBetw π΅ πΆ π implies Trel π΄ πΆ (π β π) = Trel π΄ π΅ π β Trel π΅ πΆ π for all π΄, π΅, πΆ, π, π Moreover, we assume that there exists an operator Iset βΆ πΌ set β (πΌ π ) set for lifting sets to π, which is an extension of πΌ in that (A2) Iset UNIV = πΌ and the following hold, where eqOn π΄ π says that the restriction of π to π΄ is the equality on (i.e., the diagonal of) π΄:
(A3) bijBetw π΄ π΅ π implies bijBetw (Iset π΄) (Iset π΅) (Trel π΄ π΅ π ) for all π΄, π΅, π (A4) bijBetw π΄ π΄ π and eqOn π΄ π implies eqOn (Iset π΄) (Trel π΄ π΄ π ) for all π΄, π π together with the operator Trel forms a relator-like structure [14,15], similar to those that underlie Isabelle/HOL's transfer tool [8] and datatype specification mechanism [6]. However, this concept comes with an explicit indication of the domain and codomain sets and targets bijections between these sets. In particular, (A1) only requires Trel to commute with (relation) composition when restricted to bijective relations. While we think of Trel as being associated to π, we think of Iset as being associated to the invariant πΌ (which it generalizes via (A2)). For example, if π is list, then it is reasonable to take Trel to be the list relator (relating lists position-wise), but we have no reason to commit to Iset as being the standard set operator associated to lists (returning the set of all elements of a list)-rather, the choice of Iset will depend on what invariant we want to consider on lists. Of course, as the axiom (A2) suggests, the Iset parameter of our abstract framework is reminiscent of the relativized version of the predicate dist that we employed in the case of distributions.
Trel and Iset are connected by the assumptions (A3) and (A4). Thus, (A3) states that Trel lifts bijections between two sets to bijections between the Iset-liftings of these sets, which roughly means that Iset partially acts like a subrelator of (π , Trel). Finally, (A4) is an Iset-relativization of the standard property of relators of preserving equalities-namely, here we say Trel preserves partial equalities w.r.t. Iset.
Let us see how to instantiate this framework to our running examples. To this end, we first note that having chosen our assumptions in terms of relations rather than functions allows us to capture both covariant and contravariant cases. For the case of the distribution type πΌ distrib, we take:
β’ πΌ π to be πΌ β real;
β’ Trel π΄ π΅ π π π to be β real (ππ, π. π β π΄ β§ π β π΅ β§ π π π) π π β§ (βπ β π΄. π π = β₯) β§ (βπ β π΅. π π = β₯), where β₯ is a (polymorphic) fixed "undefined" element (which is available in HOL on each type via Hilbert choice) and β real is the real-instance of the function-space relator, defined by β real π π π β‘ βπ, π. π π π βΆ π π = π π; β’ Iset to be given by the relativized form of the distOn predicate, namely Iset π΄ β‘ {π | distOn π΄ π }.
For the case of the distinct-list type πΌ dlist, we take:
β’ πΌ π to be πΌ list;
β’ Trel π΄ π΅ to be the list relator list_all, where list_all π relates two lists just in case they have the same length and their elements are position-wise related (thus, the domain and codomain sets are ignored by Trel); β’ Iset to be defined as Iset π΄ β‘ {xs | distinct xs β§ set xs β π΄}, where set βΆ πΌ list β πΌ set is the support operator for lists (returning the set of all elements of a list).
Note the two flavors of instantiating the relativized operator Iset, depending on whether we deal with a contravariant or covariant functor, namely : (1) either, in the contravariant case, by relativizing the original predicate dist to distOn; (2) or, in the covariant case, by intersecting the original predicate distinct with the adjoint of the support operator (which is usually available for covariant functors, and in particular is available for all container types)-indeed, the righthand side of the definition of Iset π΄ can be written as {xs | distinct xs} β© {π₯π | set xs β π΄}, and the operator πΏ = ππ΄. {π₯π | set xs β π΄} is the right adjoint4 of the support operator set in the sense that xs β πΏ π΄ iff set xs β π΄. It is relatively easy to check that these instances satisfy our assumptions. For example, (A3) in the case of the distribution instantiation says that a bijection between two sets π΄ and π΅ induces a bijection the sets of distributions on π΄ and π΅ respectively, which are constant β₯ outside π΄ and π΅ respectively.
Our main result is that these abstract assumptions are sufficient for solving our problem, thus generalizing the constructions in the above particular cases (and in many other cases, e.g., any datatypes with invariants turned into typedefs).
Theorem: Under the assumptions (A1)-(A4) above, we have a solution to our problem for all π β₯ 1, in that there exist πΌ π βΆ (πΌ π π ) set, Abs π,π βΆ πΌ π π β πΌ π π and Rep π ,π βΆ πΌ π π β πΌ π π such that type_definition Abs π,π Rep π ,π πΌ π holds.
A formal proof in Isabelle/HOL of the core of this theorem can be found in [11]; due to the HOL type system limitations, the formal proof is restricted to the case when π = 2, but also indicates how to iterate the argument for arbitrary π and shows the iterations for 3 and 4.
Proof sketch. We proceed by induction on π. For π = 1, we simply take πΌ π = πΌ, Abs π,π = Abs π and Rep π,π = Rep π , so the desired fact holds by our assumptions.
For the induction step, assume that we have πΌ π βΆ (πΌ π π ) set, Abs π,π βΆ πΌ π π β πΌ π π and Rep π ,π βΆ πΌ π π β πΌ π π such that type_definition Abs π,π Rep π ,π πΌ π holds. We define πΌ π+1 βΆ (πΌ π π+1 ) set, Abs π,π+1 βΆ πΌ π π+1 β πΌ π π+1 and Rep π ,π+1 βΆ πΌ π π+1 β πΌ π π+1 as follows:
Above, the operators relOf βΆ (πΌ β π½) β (πΌ β π½ β bool) and funOf βΆ (πΌ β π½ β bool) β (πΌ β π½) provide back and forth conversions between bijective relations and (partially) bijective functins. Namely, we have the following properties for them, where bij_betw π΄ π΅ π says that the restriction of the function π βΆ πΌ β π½ to π΄ βΆ πΌ set is a bijection between π΄ and π΅ βΆ π½ set: (1) If bij_betw π΄ π΅ π, then bijBetw π΄ π΅ (relOf π ) and funOf (relOf π ) = π; (2) If bijBetw π΄ π΅ π , then bij_betw π΄ π΅ (funOf π ) and relOf (funOf π π = π .
To prove type_definition Abs π,π+1 Rep π ,π+1 πΌ π+1 compositionally (along the definitions of the abstraction ad represenations operators), we introduce a generalization of type_definition that does not assume one of its argument functions (namely the representation function) to operate on the entire domain, but on an additional parameter set. Namely, we define bij_pair βΆ (π½ β πΌ) β (πΌ β π½) β π½ set β πΌ set β bool as follows, where we highlight the differences from type_definition: bij_pair π π π΅π΄ β‘ (βπ¦. π¦ β π΅ βΆ π π¦ β π΄) β§ (βπ₯. π₯ β π΄ βΆ π π₯ β π΅) β§ (βπ¦ βΆ π½. π¦ β π΅ βΆ π (π π¦) = π¦) β§ (βπ₯ βΆ πΌ. π₯ β π΄ βΆ π (π π₯) = π₯). Thus, bij_pair π π π΅ π΄ says that π and π are mutually inverse bijections between π΄ and π΅; in particular, we have (3) bij_pair π π π΅ π΄ = type_definition π π UNIV π΄.
Next, we define the relational counterpart of bij_pair, namely bijPair βΆ (π½ β πΌ β bool) β (πΌ β π½ β bool) β π½ set β πΌ set β bool, such that bijPair π π π΅ π΄ says that π and π are mutually inverse (relational) bijections between π΄ and π΅. The operators bij_pair and bijPair correspond to each other via the translations between functions and relations: (4) If bij_pair π π π΅ π΄ then bijPair (relOf π) (relOf π) π΅ π΄;
(5) If bijPair π π π΅ π΄ then bij_pair (funOf π) (funOf π) π΅ π΄. They also commute with relation and function composition: (6) If bij_pair π π π΅ π΄ and bij_pair π β² π β² π΄ πΆ then bij_pair (π β² β π) (π β² β π) π΅ πΆ; (7) If bijPair π π π΅ π΄ and bij_pair π β² π β² π΄ πΆ then bijPair (π β π β² ) (π β π β² ) π΅ πΆ.
Finally, using (A1), (A3) and (A4), we can prove the crucial property that Trel "lifts" the bijPair property relative to Iset: (8) If bijPair π π π΄ π΅ then bijPair (Trel π΄ π΅ π) (Trel π΅ π΄ π) (Iset π΄) (Iset π΅). β‘
Note that the theorem asserts the existence of π-level predicates πΌ π and abstraction-representation pairs (Abs π , Rep π ) which extend the original ones, πΌ and (Abs, Rep). But the question arises on whether these are the "right" extensions. The answer relies only on the suitability of πΌ π , since once that is decided than any projection pair (Abs π , Rep π ) satisfying type_definition Abs π,π Rep π ,π πΌ π would do-mirroring the fact that in a type definition (at level 1) only πΌ matters and any (Abs, Rep) satisfying type_definition Abs π Rep π πΌ is as good as any other. Now, concerning the suitability of πΌ π , we note from the proof that πΌ π = Iset π UNIV; so it all hinges upon whether Iset is the "right" way of lifting sets of elements of πΌ to sets of elements of πΌ π that respects the intended meaning of the subset πΌ of πΌ π. In other words, whatever concept πΌ is supposed to represent, we want that Iset provides a correct relativization of that concept from the entire type πΌ to a subset π΄ βΆ πΌ π ππ‘. Our assumptions (A2)-(A4) are sanity properties for such a relativization, but whether this is the correct relativization needs to be established in each particular case-in other words, it is the responsability of the user of our framework to provide a correct and meaningful Iset operator. This is easily seen to be the case in our two examples, where the move from πΌ to Iset clearly represents the move from distributions on the whole type to distributions on a given subset, and from distinct lists on the whole type to distinct lists on a given subset, respectively. Moreover, the scheme that worked for distinct lists (of intersecting with the support operator) works for essentially the same reason for any container type.
Finally, a remark on the generality of the theorem: While we have formulated it in reference to the (possibly iterated) nesting of a single type constructor, the construction and proof can be straightforwardly (albeit tediously) extended to cope with combining / nesting different type constructors (which can also have more than one argument).
Isomorphic transfer is an important topic in formal reasoning, and is one of the main motivations of major recent developments such as Homotopy Type Theory [16]. Transfer along ismorphisms, as well as along quotient projections and refinements, is also well represented in the world of HOL-based provers (and especially Isabelle/HOL), e.g., [17,18,19,8,20,21]. In dependent type theory, problems similar to the ones we address here are formulated in the context of (partial) setoids [22,23], and proof assistants such as Coq [24] (via SSReflect [25]) and Lean [26] offer quasi-automated mechanisms to address them, thus mitigating what is referred to as "setoid hell", i.e., the need to prove over and over again that certain (partial) equivalence relations are preserved by the defined functions. Note that the problem we addressed in this paper, which has to do with relativization to sets, is a particular case of relativization to partial equivalence relations-and in fact dealing with the former at higher-order types quickly escalates to having to deal with the latter, even in the absence of dependent types [10].
Another technical part of our setting concerns the HOL defined types, which are not included in their base types but only injected into them. Other formalisms offer pure subtyping / inclusion mechanisms, notably PVS [27], F β [28], and logical frameworks featuring refinement types [29]-where the goal of isomorphic transfer is replaced by corresponding goals concerning automating aspects of type checking.
Next, we will focus on the most closely related work, namely Isabelle's Lifting and Transfer package [30,8]. From the very beginning, the authors of this tool have been aware of the potential difficulties raised by nested type constructors, and have implemented a solution based on parameterized transfer relations. For example, in the case of distrib, the current implementation defines automatically a relation in (πΌ β real) β π½ distrib β bool (thus using different type variables πΌ and π½) as the composition between the relator β real and the relational version of Abs distrib . This does not guarantee an isomorphic relationship between nested applications of (_ β real) and distrib like our framework does (exported as a type_definition theorem), but offers enough infrastructure in order to allow the user to "lift" the definition of constants from (_ β real) to distrib even in the presence of nesting. Since the relativized defining set is not provided explicitly (like in our framework, as the operator Iset), the proof goals arising when transferring theorems containing such constants are quite intricate and convoluted, in sharp contrast to the non-nested case. On the other hand, at the expense of asking the user to provide more information (not just the relator Trel but also the operator Iset) and proving some sanity properties, our approach really flattens everything to the "first-order" non-nesting case-with the potential of simplifying the proof goals. Moreover, currently the transfer package relies on a parametricity theorem for the defined type's underlying predicate, which our approach does not. Overall, our approach requires some more initial effort from the user upon introducing a new type, but this has the potential to pay off in the later stages of the developments.
This having been said, our work addresses only a subproblem of the overall lifting and transfer problem, which the Lifting and Transfer package addresses quite comprehensively. So we do not envision our development as an alternative to this mature tool, but as a possible "add-on" that can improve the usability and automation of the tool's handling of nested types. Since what we produce for nested types are type_definition theorems, these can in principle be directly integrated into the Lifting and Transfer package (via the "setup_lifting" command), save for one difficulty caused by the fact that any provided abstraction operators are currently required to be registered as dataype-like constructors-addressing this formal engineering problem is ongoing work. (Of course, the integration will involve the fully general case, of different type constructors of possible multiple arguments nested in arbitrary ways.)
Another short-term plan is to provide some generic infrastructure that automates our inferred result for arbitrary type constructors, which can then be instantiated to different cases. This is being tackled (in joint work with Dmitriy Traytel) with the help of a quasi-foundational developement of polymorphic locales, generalizing Isabelle's standard (monomorphic) locales [31,32] in a manner that does not impair the meta-properties of the logic and definitional mechanisms underlying Isabelle/HOL [33,34,35,36].
Acknowledgments. We thank the three anonymous reviewers for their valuable comments and suggestions, which led to the improvement of the presentation and to the discussion of more related work.