Require Export TranspCore.
Require Import Infrastructure.
Require Import Env.
Require Import SubstEnv.
Require Import Rel.

Fixpoint transp_term x y (t: term) : term :=
  match t with
  | Var z ⇒ Var (transp_atom x y z)
  | BVar n ⇒ BVar n
  | Let t1 t2 ⇒ Let (transp_term x y t1) (transp_term x y t2)
  | Lam t ⇒ Lam (transp_term x y t)
  | App t1 t2 ⇒ App (transp_term x y t1) (transp_term x y t2)
  | Unit ⇒ Unit
  | Pair t1 t2 ⇒ Pair (transp_term x y t1) (transp_term x y t2)
  | Fst t ⇒ Fst (transp_term x y t)
  | Snd t ⇒ Snd (transp_term x y t)
  | InjL t ⇒ InjL (transp_term x y t)
  | InjR t ⇒ InjR (transp_term x y t)
  | Match t0 t1 t2 ⇒ Match (transp_term x y t0) (transp_term x y t1) (transp_term x y t2)
  end.

Lemma transp_term_size x y t:
  size (transp_term y x t) = size t.
Proof.
  induction t; simpl; auto.
Qed.

Lemma transp_term_swap x y t:
  transp_term x y t = transp_term y x t.
Proof.
  induction t; simpl; auto;
    try rewrite transp_atom_swap; congruence.
Qed.

Lemma transp_term_fresh_eq x y t:
  x `notin` fv t →
  y `notin` fv t →
  transp_term x y t = t.
Proof.
  intros Hx Hy.
  induction t; simpl in *; auto; f_equal;
    try rewrite transp_atom_other; auto; try rewrite IHe; auto.
Qed.

Lemma transp_term_refl x t :
  transp_term x x t = t.
Proof.
  induction t; simpl; auto; f_equal;
    try rewrite transp_atom_refl; auto.
Qed.

Lemma transp_term_trans x1 x2 x3 t:
  x1 `notin` fv t →
  x2 `notin` fv t →
  transp_term x1 x2 (transp_term x2 x3 t) = transp_term x1 x3 t.
Proof.
  intros H1 H2.
  induction t; simpl in *; auto; f_equal;
    try rewrite transp_atom_trans; auto;
      try rewrite IHe; auto.
Qed.

Lemma transp_term_involution x y t:
  transp_term x y (transp_term x y t) = t.
Proof.
  induction t; simpl; auto; f_equal;
    try rewrite transp_atom_involution; auto.
Qed.

Lemma transp_term_compose x1 x2 y1 y2 t:
  transp_term x1 x2 (transp_term y1 y2 t) =
  transp_term
    (transp_atom x1 x2 y1)
    (transp_atom x1 x2 y2)
    (transp_term x1 x2 t).
Proof.
  induction t; simpl; auto; f_equal;
    try rewrite transp_atom_compose; auto.
Qed.

Lemma transp_term_freshL_is_subst x y t:
  x `notin` fv t →
  transp_term x y t = subst (Var x) y t.
Proof.
  intro Hx. induction t; simpl in *; f_equal; auto.
  - destruct (x0 == y); subst.
    + rewrite transp_atom_thisR. reflexivity.
    + rewrite transp_atom_other; auto.
Qed.

Lemma transp_term_freshR_is_subst x y t:
  y `notin` fv t →
  transp_term x y t = subst (Var y) x t.
Proof.
  intro Hx. rewrite transp_term_swap.
  apply transp_term_freshL_is_subst; auto.
Qed.

Lemma fv_equivariant x y t:
  transp_atoms x y (fv t) [=] fv (transp_term x y t).
Proof.
  induction t; simpl; auto using empty_equivariant, singleton_equivariant;
    try solve
        [ rewrite union_equivariant; rewrite IHt1; rewrite IHt2; reflexivity
        | repeat rewrite union_equivariant; rewrite IHt1; rewrite IHt2; rewrite IHt3; reflexivity
        ].
Qed.

Lemma open_rec_equivariant x y n t1 t2:
  transp_term x y (open_rec n t1 t2) = open_rec n (transp_term x y t1) (transp_term x y t2).
Proof.
  revert n. induction t2; intros; simpl in *; f_equal; auto.
  - destruct (lt_eq_lt_dec n n0); simpl; auto.
    destruct s; simpl; auto.
Qed.

Lemma open_equivariant x y t1 t2:
  transp_term x y (open t1 t2) = open (transp_term x y t1) (transp_term x y t2).
Proof.
  unfold open. apply open_rec_equivariant.
Qed.

Lemma close_rec_equivariant x y n z t:
  transp_term x y (close_rec n z t) = close_rec n (transp_atom x y z) (transp_term x y t).
Proof.
  revert n. induction t; intros; simpl in *; f_equal; auto.
  - destruct (lt_ge_dec n n0); simpl; auto.
  - destruct (z == x0); subst; simpl; auto.
    + destruct (transp_atom x y x0 == transp_atom x y x0); congruence.
    + destruct (transp_atom x y z == transp_atom x y x0); try congruence.
      exfalso. apply n0. clear n0.
      rewrite <- (transp_atom_involution x y z).
      rewrite <- (transp_atom_involution x y x0).
      congruence.
Qed.

Lemma close_equivariant x y z t:
  transp_term x y (close z t) = close (transp_atom x y z) (transp_term x y t).
Proof.
  unfold close. apply close_rec_equivariant.
Qed.

Lemma close_inverse x1 t1 x2 t2:
  close x1 t1 = close x2 t2 →
  transp_term x1 x2 t1 = t2.
Proof.
  intro H.
  destruct (x1 == x2); subst.
  - apply close_inj in H. rewrite transp_term_refl. assumption.
  - rewrite transp_term_freshR_is_subst.
    + rewrite subst_spec. rewrite H. apply open_close.
    + assert (x2 `notin` fv (close x2 t2)) as Hx2.
      { rewrite fv_close. auto. }
      rewrite <- H in Hx2. rewrite fv_close in Hx2. fsetdec.
Qed.

Lemma close_rename x1 x2 t:
  (x1 = x2 ∨ x2 `notin` fv t) →
  close x1 t = close x2 (transp_term x1 x2 t).
Proof.
  intros [Heq | Hfresh].
  - subst. rewrite transp_term_refl. reflexivity.
  - rewrite <- (transp_term_fresh_eq x1 x2 (close x1 t)).
    + rewrite (close_equivariant x1 x2 x1 t).
      rewrite transp_atom_thisL. reflexivity.
    + rewrite fv_close. auto.
    + rewrite fv_close. auto.
Qed.

Lemma subst_equivariant x y t1 z t2:
  transp_term x y (subst t1 z t2) = subst (transp_term x y t1) (transp_atom x y z) (transp_term x y t2).
Proof.
  induction t2; simpl; f_equal; auto.
  - destruct (x0 == z); subst.
    + destruct (transp_atom x y z == transp_atom x y z); congruence.
    + simpl. destruct (y == x0); subst.
      × { rewrite transp_atom_thisR. destruct (x == z); subst.
          - rewrite transp_atom_thisL. destruct (z == x0); congruence.
          - rewrite transp_atom_other; auto. destruct (x == z); congruence.
        }
      × { destruct (x == x0); subst.
          - rewrite transp_atom_thisL. destruct (y == z); subst.
            + rewrite transp_atom_thisR. destruct (z == x0); congruence.
            + rewrite transp_atom_other; auto. destruct (y == z); congruence.
          - rewrite transp_atom_other; auto. destruct (x == z); [| destruct (y == z)]; subst.
            + rewrite transp_atom_thisL. destruct (x0 == y); congruence.
            + rewrite transp_atom_thisR. destruct (x0 == x); congruence.
            + rewrite transp_atom_other; auto. destruct (x0 == z); congruence.
        }
Qed.

Lemma fv_transp_term_newL x y t:
  x `notin` fv t →
  y `in` fv t →
  fv (transp_term x y t) [=] add x (remove y (fv t)).
Proof.
  intros Hx Hy.
  rewrite <- fv_equivariant.
  rewrite transp_atoms_swap.
  apply transp_atoms_freshR; assumption.
Qed.

Lemma fv_transp_term_newR x y t:
  x `in` fv t →
  y `notin` fv t →
  fv (transp_term x y t) [=] add y (remove x (fv t)).
Proof.
  intros Hx Hy.
  rewrite <- fv_equivariant.
  rewrite transp_atoms_swap.
  apply transp_atoms_freshL; assumption.
Qed.

Lemma fv_transp_term_not_new x y t:
  x `in` fv t →
  y `in` fv t →
  fv (transp_term x y t) [=] fv t.
Proof.
  intros Hx Hy.
  rewrite <- fv_equivariant.
  apply transp_atoms_not_new_eq; assumption.
Qed.

Definition supported_term (S: atoms) (t: term) : Prop :=
  ∀ x y, x `notin` S → y `notin` S → transp_term x y t = t.

Lemma supported_term_subset S1 S2 t:
  S1 [<=] S2 →
  supported_term S1 t →
  supported_term S2 t.
Proof.
  intros Hincl Hsupp x y Hx Hy.
  apply Hsupp; fsetdec.
Qed.

Lemma supported_term_fv S t:
  supported_term S t ↔ fv t [<=] S.
Proof.
  split; intro H.
  - intros x Hx.
    assert (x `in` S ∨ x `notin` S) as [HxS|HxS] by fsetdec; [ assumption |].
    exfalso.
    pick fresh y for (add x S `union` fv t).
    assert (x `in` fv (transp_term x y t)) as Hx2 by (rewrite (H x y); auto).
    rewrite fv_transp_term_newR in Hx2; auto.
    fsetdec.
  - intros x y Hx Hy.
    apply transp_term_fresh_eq; auto.
Qed.

Definition transp_env_term x y (e: env term) : env term :=
  map (transp_term x y) (transp_dom x y e).

Lemma transp_env_term_app y x (e1 e2: env term) :
  transp_env_term y x (e1 ++ e2) = transp_env_term y x e1 ++ transp_env_term y x e2.
Proof.
  unfold transp_env_term.
  rewrite transp_dom_app. rewrite map_app. reflexivity.
Qed.

Lemma transp_env_term_one y x z t:
  transp_env_term y x (z ¬ t) = (transp_atom y x z ¬ transp_term y x t).
Proof.
  reflexivity.
Qed.

Lemma transp_env_term_length y x (e: env term) :
  length (transp_env_term y x e) = length e.
Proof.
  unfold transp_env_term.
  unfold map. rewrite map_length. rewrite transp_dom_length. reflexivity.
Qed.

Lemma transp_env_term_swap x y (e: env term):
  transp_env_term x y e = transp_env_term y x e.
Proof.
  unfold transp_env_term.
  rewrite (transp_dom_swap x y).
  unfold map. apply map_ext.
  intros [z t]. rewrite transp_term_swap. reflexivity.
Qed.

Lemma transp_env_term_fresh_eq x y (e: env term):
  all_env (fun t ⇒ fv t [<=] empty) e →
  x `notin` dom e →
  y `notin` dom e →
  transp_env_term x y e = e.
Proof.
  intros He Hx Hy.
  unfold transp_env_term.
  rewrite (transp_dom_fresh_eq x y); auto.
  unfold map. rewrite <- map_id. apply map_ext_in.
  intros [z t] Hin.
  assert (fv t [<=] empty).
  { rewrite all_env_in in He. eapply He; eauto. }
  rewrite transp_term_fresh_eq; auto; fsetdec.
Qed.

Lemma transp_env_term_refl x (e: env term) :
  transp_env_term x x e = e.
Proof.
  unfold transp_env_term.
  rewrite transp_dom_refl.
  unfold map. rewrite <- map_id. apply map_ext.
  intros [y t]. rewrite transp_term_refl. auto.
Qed.

Lemma transp_env_term_trans x1 x2 x3 (e: env term) :
  all_env (fun t ⇒ fv t [<=] empty) e →
  x1 `notin` dom e →
  x2 `notin` dom e →
  transp_env_term x1 x2 (transp_env_term x2 x3 e) = transp_env_term x1 x3 e.
Proof.
  intros He H1 H2.
  unfold transp_env_term. rewrite <- transp_dom_map.
  rewrite transp_dom_trans; auto.
  unfold map. rewrite map_map. apply map_ext_in.
  intros [y t] Hy.
  assert (fv t [<=] empty).
  { rewrite transp_dom_swap in Hy.
    rewrite <- (transp_atom_involution x3 x1 y) in Hy.
    apply in_transp_dom in Hy; auto.
    rewrite all_env_in in He. eapply He; eauto.
  }
  rewrite transp_term_trans; auto.
  - fsetdec.
  - fsetdec.
Qed.

Lemma transp_env_term_involution x y (e: env term):
  transp_env_term x y (transp_env_term x y e) = e.
Proof.
  unfold transp_env_term.
  rewrite <- transp_dom_map.
  rewrite transp_dom_involution.
  unfold map. rewrite map_map.
  rewrite <- map_id. apply map_ext.
  intros [z t]. rewrite transp_term_involution. reflexivity.
Qed.

Lemma transp_env_term_compose x1 x2 y1 y2 (e: env term):
  transp_env_term x1 x2 (transp_env_term y1 y2 e) =
  transp_env_term
    (transp_atom x1 x2 y1)
    (transp_atom x1 x2 y2)
    (transp_env_term x1 x2 e).
Proof.
  unfold transp_env_term.
  repeat rewrite <- transp_dom_map.
  unfold map. repeat rewrite map_map.
  rewrite transp_dom_compose.
  apply map_ext.
  intros [z t]. rewrite transp_term_compose. reflexivity.
Qed.

Lemma get_transp_env_term_equivariant x y z (e: env term):
  option_map (transp_term x y) (get z e) = get (transp_atom x y z) (transp_env_term x y e).
Proof.
  unfold transp_env_term.
  rewrite get_map. rewrite <- get_transp_dom_equivariant.
  reflexivity.
Qed.

Lemma get_transp_env_term_Some_equivariant x y z t (e: env term):
  get z e = Some t ↔ get (transp_atom x y z) (transp_env_term x y e) = Some (transp_term x y t).
Proof.
  rewrite <- get_transp_env_term_equivariant.
  split; intro H.
  - rewrite H. reflexivity.
  - case_eq (get z e); intros.
    + f_equal.
      rewrite H0 in H. simpl in H.
      inversion H; subst.
      rewrite <- (transp_term_involution x y t0).
      rewrite H2. rewrite transp_term_involution.
      reflexivity.
    + rewrite H0 in H. simpl in H. discriminate.
Qed.

Lemma get_transp_env_term_None_equivariant x y z (e: env term):
  get z e = None ↔ get (transp_atom x y z) (transp_env_term x y e) = None.
Proof.
  rewrite <- get_transp_env_term_equivariant.
  split; intro H.
  - rewrite H. reflexivity.
  - case_eq (get z e); intros.
    + rewrite H0 in H. simpl in H. discriminate.
    + reflexivity.
Qed.

Lemma get_transp_env_term_this x y (e: env term):
  all_env (fun t ⇒ fv t [<=] empty) e →
  y `notin` dom e →
  get y (transp_env_term x y e) = get x e.
Proof.
  intros He Hy.
  unfold transp_env_term.
  rewrite get_map.
  rewrite get_transp_dom_this; auto.
  case_eq (get x e); intros; auto.
  assert (fv t [<=] empty) by (eapply all_env_get in He; eauto).
  rewrite transp_term_fresh_eq; auto; fsetdec.
Qed.

Lemma get_transp_env_term_old x y (e: env term):
  y `notin` dom e →
  y ≠ x →
  get x (transp_env_term x y e) = get y e.
Proof.
  intros Hy Hneq.
  unfold transp_env_term.
  rewrite get_map. rewrite get_transp_dom_old; auto.
  case_eq (get y e); intros; auto.
  apply get_in_dom in H. fsetdec.
Qed.

Lemma get_transp_env_term_old_removed x y (e: env term):
  y `notin` dom e →
  y ≠ x →
  get x (transp_env_term x y e) = None.
Proof.
  intros Hy Hneq.
  rewrite get_transp_env_term_old; auto.
  apply get_notin_dom. auto.
Qed.

Lemma get_transp_env_term_other z x y (e: env term):
  z ≠ y →
  z ≠ x →
  get z (transp_env_term x y e) = option_map (transp_term x y) (get z e).
Proof.
  intros Hz1 Hz2.
  unfold transp_env_term, option_map.
  rewrite get_map. rewrite get_transp_dom_other; auto.
Qed.

Lemma get_transp_env_term x y z (e: env term):
  y `notin` dom e →
  get (transp_atom x y z) (transp_env_term x y e) = option_map (transp_term x y) (get z e).
Proof.
  intro Hy.
  unfold transp_env_term, option_map.
  rewrite get_map. rewrite get_transp_dom; auto.
Qed.

Lemma in_transp_env_term_this x y a (e: env term):
  y `notin` dom e →
  In (y, a) (transp_env_term x y e) ↔ In (x, transp_term x y a) e.
Proof.
  intro Hy.
  unfold transp_env_term.
  unfold map. rewrite in_map_iff.
  split.
  - intros [[z t] [Heq H]]. inversion Heq; subst. clear Heq.
    rewrite in_transp_dom_this in H; auto.
    rewrite transp_term_involution. assumption.
  - intro H.
    ∃ (y, transp_term x y a). split.
    + rewrite transp_term_involution. reflexivity.
    + rewrite in_transp_dom_this; auto.
Qed.

Lemma in_transp_env_term_old x y a (e: env term):
  y `notin` dom e →
  y ≠ x →
  In (x, a) (transp_env_term x y e) ↔ In (y, transp_term x y a) e.
Proof.
  intros Hy Hneq.
  unfold transp_env_term.
  unfold map. rewrite in_map_iff.
  split.
  - intros [[z t] [Heq H]].
    inversion Heq; subst. clear Heq.
    rewrite in_transp_dom_old in H; auto.
    rewrite transp_term_involution. assumption.
  - intro H.
    ∃ (x, transp_term x y a). split.
    + rewrite transp_term_involution. reflexivity.
    + rewrite in_transp_dom_old; auto.
Qed.

Lemma in_transp_env_term_old_removed x y a (e: env term):
  y `notin` dom e →
  y ≠ x →
  ¬ In (x, a) (transp_env_term x y e).
Proof.
  intros Hy Hneq.
  unfold transp_env_term.
  unfold map. rewrite in_map_iff.
  intros [[z t] [Heq H]].
  inversion Heq; subst. clear Heq.
  eapply in_transp_dom_old_removed; eauto.
Qed.

Lemma in_transp_env_term_other z x y a (e: env term):
  z ≠ y →
  z ≠ x →
  In (z, a) (transp_env_term x y e) ↔ In (z, transp_term x y a) e.
Proof.
  intros Hz1 Hz2.
  unfold transp_env_term.
  unfold map. rewrite in_map_iff.
  split.
  - intros [[z' t] [Heq H]].
    inversion Heq; subst. clear Heq.
    rewrite in_transp_dom_other in H; auto.
    rewrite transp_term_involution. assumption.
  - intro H. ∃ (z, transp_term x y a). split.
    + rewrite transp_term_involution. reflexivity.
    + rewrite in_transp_dom_other; auto.
Qed.

Lemma in_transp_env_term x y z a (e: env term):
  y `notin` dom e →
  In (transp_atom x y z, transp_term x y a) (transp_env_term x y e) ↔ In (z, a) e.
Proof.
  intro Hy.
  unfold transp_env_term.
  unfold map. rewrite in_map_iff.
  split.
  - intros [[z' t] [Heq H]].
    inversion Heq; subst. clear Heq.
    assert (t = a); subst.
    { rewrite <- (transp_term_involution x y t).
      rewrite <- (transp_term_involution x y a).
      congruence.
    }
    apply in_transp_dom in H; auto.
  - intro H. ∃ (transp_atom x y z, a). split; auto.
    apply in_transp_dom; auto.
Qed.

Lemma dom_equivariant_term x y (e: env term):
  transp_atoms x y (dom e) [=] dom (transp_env_term x y e).
Proof.
  unfold transp_env_term.
  rewrite dom_map.
  apply dom_equivariant.
Qed.

Lemma dom_transp_env_term_fresh_eq x y (e: env term):
  x `notin` dom e →
  y `notin` dom e →
 dom (transp_env_term x y e) [=] dom e.
Proof.
  intros Hx Hy.
  unfold transp_env_term.
  rewrite dom_map.
  apply dom_transp_dom_fresh_eq; auto.
Qed.

Lemma dom_transp_env_term_newL x y (e: env term):
  x `notin` dom e →
  y `in` dom e →
 dom (transp_env_term x y e) [=] add x (remove y (dom e)).
Proof.
  intros Hx Hy.
  unfold transp_env_term.
  rewrite dom_map.
  apply dom_transp_dom_newL; auto.
Qed.

Lemma dom_transp_env_term_newR x y (e: env term):
  x `in` dom e →
  y `notin` dom e →
 dom (transp_env_term x y e) [=] add y (remove x (dom e)).
Proof.
  intros Hx Hy.
  unfold transp_env_term.
  rewrite dom_map.
  apply dom_transp_dom_newR; auto.
Qed.

Lemma dom_transp_env_term_not_new x y (e: env term):
  x `in` dom e →
  y `in` dom e →
 dom (transp_env_term x y e) [=] dom e.
Proof.
  intros Hx Hy.
  unfold transp_env_term.
  rewrite dom_map.
  apply dom_transp_dom_not_new; auto.
Qed.

Lemma subst_env_equivariant x y e t:
  transp_term x y (subst_env e t) = subst_env (transp_env_term x y e) (transp_term x y t).
Proof.
  revert t. env induction e; intros; simpl; auto.
  rewrite IHe. rewrite subst_equivariant. reflexivity.
Qed.

Definition transp_rel x y (R: rel (env term) term) : rel (env term) term :=
  Rel _ _
      (fun e v ⇒ in_rel R (transp_env_term x y e) (transp_term x y v)).

Definition supported_rel (S: atoms) (R: rel (env term) term) : Prop :=
  ∀ x y, x `notin` S → y `notin` S → RelEquiv (transp_rel x y R) R.

Lemma supported_rel_subset (S1 S2: atoms) R:
  S1 [<=] S2 →
  supported_rel S1 R →
  supported_rel S2 R.
Proof.
  intros HS H1 x y Hx Hy.
  apply (H1 x y); auto.
Qed.

Lemma transp_rel_swap x y R:
  RelEquiv (transp_rel x y R) (transp_rel y x R).
Proof.
  intros e v.
  split; intro H; simpl in *;
    rewrite transp_env_term_swap; rewrite transp_term_swap; assumption.
Qed.

Lemma transp_rel_fresh_eq S x y R:
  supported_rel S R →
  x `notin` S →
  y `notin` S →
  RelEquiv (transp_rel x y R) R.
Proof.
  intros HS Hx Hy. eauto.
Qed.

Lemma transp_rel_refl x R :
  RelEquiv (transp_rel x x R) R.
Proof.
  intros e v. split; intro H; simpl in ×.
  - rewrite transp_env_term_refl in H. rewrite transp_term_refl in H. assumption.
  - rewrite transp_env_term_refl. rewrite transp_term_refl. assumption.
Qed.

Lemma transp_rel_trans S x1 x2 x3 R:
  supported_rel S R →
  x1 `notin` S →
  x2 `notin` S →
  RelEquiv (transp_rel x1 x2 (transp_rel x2 x3 R)) (transp_rel x1 x3 R).
Proof.
  intros HS H1 H2.
  destruct (x1 == x2); subst.
  - rewrite transp_rel_refl. reflexivity.
  - intros e v; split; intro Hev; simpl in ×.
    + destruct (x1 == x3); [| destruct (x2 == x3)]; subst.
      × rewrite (transp_env_term_swap x2 x3) in Hev.
        rewrite transp_env_term_involution in Hev.
        rewrite (transp_term_swap x2 x3) in Hev.
        rewrite transp_term_involution in Hev.
        rewrite transp_env_term_refl.
        rewrite transp_term_refl.
        assumption.
      × rewrite transp_env_term_refl in Hev.
        rewrite transp_term_refl in Hev.
        assumption.
      × apply (HS x1 x2) in Hev; auto.
        simpl in Hev.
        rewrite transp_env_term_compose in Hev.
        rewrite transp_term_compose in Hev.
        rewrite transp_atom_thisR in Hev.
        rewrite transp_atom_other in Hev; auto.
        rewrite transp_env_term_involution in Hev.
        rewrite transp_term_involution in Hev.
        assumption.
    + destruct (x1 == x3); [| destruct (x2 == x3)]; subst.
      × rewrite (transp_env_term_swap x2 x3).
        rewrite transp_env_term_involution.
        rewrite (transp_term_swap x2 x3).
        rewrite transp_term_involution.
        rewrite transp_env_term_refl in Hev.
        rewrite transp_term_refl in Hev.
        assumption.
      × rewrite transp_env_term_refl.
        rewrite transp_term_refl.
        assumption.
      × apply (HS x1 x2); auto.
        simpl.
        rewrite transp_env_term_compose.
        rewrite transp_term_compose.
        rewrite transp_atom_thisR.
        rewrite transp_atom_other; auto.
        rewrite transp_env_term_involution.
        rewrite transp_term_involution.
        assumption.
Qed.

Lemma transp_rel_involution x y R:
  RelEquiv (transp_rel x y (transp_rel x y R)) R.
Proof.
  intros e v. split; intro H; simpl in ×.
  - rewrite transp_env_term_involution in H. rewrite transp_term_involution in H. assumption.
  - rewrite transp_env_term_involution. rewrite transp_term_involution. assumption.
Qed.

Lemma transp_rel_compose x1 x2 y1 y2 R:
  RelEquiv
    (transp_rel x1 x2 (transp_rel y1 y2 R))
    (transp_rel
       (transp_atom x1 x2 y1)
       (transp_atom x1 x2 y2)
       (transp_rel x1 x2 R)).
Proof.
  intros e v. split; intro H; simpl in ×.
  - rewrite transp_env_term_compose. rewrite transp_term_compose.
    repeat rewrite transp_atom_involution.
    assumption.
  - rewrite transp_env_term_compose in H. rewrite transp_term_compose in H.
    repeat rewrite transp_atom_involution in H.
    assumption.
Qed.

Lemma RelEquiv_equivariant x y R1 R2:
  RelEquiv R1 R2 ↔ RelEquiv (transp_rel x y R1) (transp_rel x y R2).
Proof.
  revert R1 R2.
  assert (∀ R1 R2, RelEquiv R1 R2 → RelEquiv (transp_rel x y R1) (transp_rel x y R2)).
  { intros R1 R2 H12 e v. split; intro H; simpl in *; apply H12; auto. }
  intros R1 R2; split; intro H12; auto.
  apply H in H12.
  repeat rewrite transp_rel_involution in H12.
  assumption.
Qed.

Lemma RelIncl_equivariant x y R1 R2:
  RelIncl R1 R2 ↔ RelIncl (transp_rel x y R1) (transp_rel x y R2).
Proof.
  revert R1 R2.
  assert (∀ R1 R2, RelIncl R1 R2 → RelIncl (transp_rel x y R1) (transp_rel x y R2)).
  { intros R1 R2 H12 e v H; simpl in *; apply H12; auto. }
  intros R1 R2; split; intro H12; auto.
  apply H in H12.
  repeat rewrite transp_rel_involution in H12.
  assumption.
Qed.

Lemma in_rel_equivariant x y R e v:
  in_rel R e v ↔ in_rel (transp_rel x y R) (transp_env_term x y e) (transp_term x y v).
Proof.
  simpl.
  rewrite transp_env_term_involution.
  rewrite transp_term_involution.
  reflexivity.
Qed.

Add Parametric Morphism: transp_rel
    with signature eq ==> eq ==> RelEquiv ==> RelEquiv
      as transp_rel_morphism_eq.
Proof.
  intros x y R1 R2 HR.
  intros e v. split; intro Hev; simpl in *; apply HR; assumption.
Qed.

Add Parametric Morphism: transp_rel
    with signature eq ==> eq ==> RelIncl ==> RelIncl
      as transp_rel_morphism_incl.
Proof.
  intros x y R1 R2 HR.
  intros e v Hev; simpl in ×.
  apply HR. assumption.
Qed.

Add Parametric Morphism: supported_rel
    with signature AtomSetImpl.Equal ==> RelEquiv ==> iff
      as supported_rel_morphism_equiv.
Proof.
  intros S1 S2 HS R1 R2 HR.
  split; intros H x y Hx Hy.
  - rewrite <- HR. rewrite <- HS in Hx. rewrite <- HS in Hy. apply (H x y); auto.
  - rewrite HR. rewrite HS in Hx. rewrite HS in Hy. apply (H x y); auto.
Qed.

Lemma supported_rel_equivariant x y S R:
  supported_rel (transp_atoms x y S) (transp_rel x y R) ↔ supported_rel S R.
Proof.
  revert S R.
  assert (∀ S R, supported_rel (transp_atoms x y S) (transp_rel x y R) →
                 supported_rel S R).
  { intros S R H.
    intros z1 z2 Hz1 Hz2.
    apply (RelEquiv_equivariant x y).
    rewrite transp_rel_compose.
    apply (notin_equivariant x y) in Hz1.
    apply (notin_equivariant x y) in Hz2.
    apply (H _ _ Hz1 Hz2).
  }
  intros S R; split; intro H'; auto.
  rewrite <- (transp_atoms_involution x y) in H'.
  rewrite <- (transp_rel_involution x y) in H'.
  apply H in H'.
  assumption.
Qed.

Definition transp_family_rel x y (R: atom → rel (env term) term) : atom → rel (env term) term :=
  fun z ⇒ transp_rel x y (R (transp_atom x y z)).

Lemma transp_family_rel_swap x y S R:
  FamilyRelEquiv S (transp_family_rel x y R) (transp_family_rel y x R).
Proof.
  intros z Hz e v.
  split; intro H; simpl in *;
    rewrite transp_atom_swap;
    rewrite transp_env_term_swap;
    rewrite transp_term_swap;
    assumption.
Qed.

Definition supported_family_rel (S: atoms) (R: atom → rel (env term) term) : Prop :=
  ∀ x y, x `notin` S → y `notin` S → FamilyRelEquiv S (transp_family_rel x y R) R.

Lemma supported_family_rel_subset (S1 S2: atoms) R:
  S1 [<=] S2 →
  supported_family_rel S1 R →
  supported_family_rel S2 R.
Proof.
  intros HS H1 x y Hx Hy.
  eapply FamilyRelEquiv_subset; eauto.
  apply (H1 x y); auto.
Qed.

Lemma transp_family_rel_fresh_eq S x y R:
  supported_family_rel S R →
  x `notin` S →
  y `notin` S →
  FamilyRelEquiv S (transp_family_rel x y R) R.
Proof.
  intros HS Hx Hy. eauto.
Qed.

Lemma transp_family_rel_refl x S R :
  FamilyRelEquiv S (transp_family_rel x x R) R.
Proof.
  intros z Hz e v. split; intro H; simpl in ×.
  - rewrite transp_atom_refl in H.
    rewrite transp_env_term_refl in H.
    rewrite transp_term_refl in H.
    assumption.
  - rewrite transp_atom_refl.
    rewrite transp_env_term_refl.
    rewrite transp_term_refl.
    assumption.
Qed.

Lemma transp_family_rel_trans S x1 x2 x3 R:
  supported_family_rel S R →
  x1 `notin` S →
  x2 `notin` S →
  x3 `notin` S →
  FamilyRelEquiv S
    (transp_family_rel x1 x2 (transp_family_rel x2 x3 R))
    (transp_family_rel x1 x3 R).
Proof.
  intros HS H1 H2 H3.
  destruct (x1 == x2); subst.
  - rewrite transp_family_rel_refl. reflexivity.
  - intros z Hz e v; split; intro Hev; simpl in ×.
    + destruct (x1 == x3); [| destruct (x2 == x3)]; subst.
      × rewrite (transp_atom_swap x2 x3) in Hev.
        rewrite transp_atom_involution in Hev.
        rewrite (transp_env_term_swap x2 x3) in Hev.
        rewrite transp_env_term_involution in Hev.
        rewrite (transp_term_swap x2 x3) in Hev.
        rewrite transp_term_involution in Hev.
        rewrite transp_atom_refl.
        rewrite transp_env_term_refl.
        rewrite transp_term_refl.
        assumption.
      × rewrite transp_atom_refl in Hev.
        rewrite transp_env_term_refl in Hev.
        rewrite transp_term_refl in Hev.
        assumption.
      × { apply (HS x1 x2) in Hev; auto.
          - simpl in Hev.
            rewrite transp_atom_compose in Hev.
            rewrite transp_env_term_compose in Hev.
            rewrite transp_term_compose in Hev.
            rewrite transp_atom_thisR in Hev.
            rewrite (transp_atom_other x1 x2 x3) in Hev; auto.
            rewrite transp_atom_involution in Hev.
            rewrite transp_env_term_involution in Hev.
            rewrite transp_term_involution in Hev.
            assumption.
          - destruct (z == x1); [| destruct (z == x2)]; subst.
            + repeat rewrite transp_atom_thisL. assumption.
            + rewrite transp_atom_thisR. rewrite transp_atom_other; auto.
            + rewrite (transp_atom_other x1 x2); auto.
              destruct (x3 == z); subst.
              × rewrite transp_atom_thisR. assumption.
              × rewrite (transp_atom_other x2 x3); auto.
        }
    + destruct (x1 == x3); [| destruct (x2 == x3)]; subst.
      × rewrite (transp_atom_swap x2 x3).
        rewrite transp_atom_involution.
        rewrite (transp_env_term_swap x2 x3).
        rewrite transp_env_term_involution.
        rewrite (transp_term_swap x2 x3).
        rewrite transp_term_involution.
        rewrite transp_atom_refl in Hev.
        rewrite transp_env_term_refl in Hev.
        rewrite transp_term_refl in Hev.
        assumption.
      × rewrite transp_atom_refl.
        rewrite transp_env_term_refl.
        rewrite transp_term_refl.
        assumption.
      × { apply (HS x1 x2); auto.
          - destruct (z == x1); [| destruct (z == x2)]; subst.
            + repeat rewrite transp_atom_thisL. assumption.
            + rewrite transp_atom_thisR. rewrite transp_atom_other; auto.
            + rewrite (transp_atom_other x1 x2); auto.
              destruct (x3 == z); subst.
              × rewrite transp_atom_thisR. assumption.
              × rewrite (transp_atom_other x2 x3); auto.
          - simpl.
            rewrite transp_atom_compose.
            rewrite transp_env_term_compose.
            rewrite transp_term_compose.
            rewrite transp_atom_thisR.
            rewrite (transp_atom_other x1 x2 x3); auto.
            rewrite transp_atom_involution.
            rewrite transp_env_term_involution.
            rewrite transp_term_involution.
            assumption.
        }
Qed.

Lemma transp_family_rel_involution x y S R:
  FamilyRelEquiv S (transp_family_rel x y (transp_family_rel x y R)) R.
Proof.
  intros z Hz e v. split; intro H; simpl in ×.
  - rewrite transp_atom_involution in H.
    rewrite transp_env_term_involution in H.
    rewrite transp_term_involution in H.
    assumption.
  - rewrite transp_atom_involution.
    rewrite transp_env_term_involution.
    rewrite transp_term_involution.
    assumption.
Qed.

Lemma transp_family_rel_compose x1 x2 y1 y2 S R:
  FamilyRelEquiv S
    (transp_family_rel x1 x2 (transp_family_rel y1 y2 R))
    (transp_family_rel
       (transp_atom x1 x2 y1)
       (transp_atom x1 x2 y2)
       (transp_family_rel x1 x2 R)).
Proof.
  intros z Hz e v. split; intro H; simpl in ×.
  - rewrite transp_atom_compose.
    rewrite transp_env_term_compose.
    rewrite transp_term_compose.
    repeat rewrite transp_atom_involution.
    assumption.
  - rewrite transp_atom_compose in H.
    rewrite transp_env_term_compose in H.
    rewrite transp_term_compose in H.
    repeat rewrite transp_atom_involution in H.
    assumption.
Qed.

Definition parametric_family_rel S R : Prop :=
  ∀ x y,
    x `notin` S →
    y `notin` S →
    RelEquiv (transp_rel x y (R x)) (R y).

Lemma supported_family_rel_intro S R:
  (∀ z, z `notin` S → supported_rel (add z S) (R z)) →
  parametric_family_rel S R →
  supported_family_rel S R.
Proof.
  intros H Hrename x y Hx Hy.
  destruct (x == y); subst.
  - rewrite transp_family_rel_refl. reflexivity.
  - intros z Hz e v. simpl.
    destruct (x == z); [| destruct (y == z)]; subst.
    + rewrite transp_atom_thisL.
      rewrite <- (Hrename y z); auto.
      rewrite (transp_rel_swap y z).
      rewrite (in_rel_equivariant z y).
      rewrite transp_env_term_involution.
      rewrite transp_term_involution.
      reflexivity.
    + rewrite transp_atom_thisR.
      rewrite <- (Hrename x z); auto.
      rewrite (in_rel_equivariant x z).
      rewrite transp_env_term_involution.
      rewrite transp_term_involution.
      reflexivity.
    + rewrite <- (H z Hz x y); auto.
      simpl.
      rewrite transp_atom_other; auto.
      reflexivity.
Qed.

Lemma supported_family_parametric S R:
  supported_family_rel S R →
  parametric_family_rel S R.
Proof.
  intros H x y Hx Hy e v. simpl.
  transitivity (in_rel (transp_family_rel x y R y) e v).
  - simpl. rewrite transp_atom_thisR. reflexivity.
  - rewrite (H x y Hx Hy y); auto.
    reflexivity.
Qed.

Lemma supported_family_instantiate S R:
  supported_family_rel S R →
  (∀ z, z `notin` S → supported_rel (add z S) (R z)).
Proof.
  intros H z Hz x y Hx Hy e v. simpl.
  transitivity (in_rel (transp_family_rel x y R (transp_atom x y z)) e v).
  - simpl. rewrite transp_atom_involution. reflexivity.
  - assert (x `notin` S) as Hx2 by fsetdec.
    assert (y `notin` S) as Hy2 by fsetdec.
    rewrite (H x y Hx2 Hy2 (transp_atom x y z)); auto.
    + rewrite transp_atom_other; auto.
      reflexivity.
    + rewrite transp_atom_other; auto.
Qed.

Lemma supported_family_iff S R:
  supported_family_rel S R
  ↔ (parametric_family_rel S R ∧ (∀ z, z `notin` S → supported_rel (add z S) (R z))).
Proof.
  split; intro.
  - split.
    + apply supported_family_parametric. assumption.
    + apply supported_family_instantiate. assumption.
  - apply supported_family_rel_intro; tauto.
Qed.

Lemma parametric_family_rel_subset S1 S2 R:
  S1 [<=] S2 →
  parametric_family_rel S1 R →
  parametric_family_rel S2 R.
Proof.
  intros HS H x y Hx Hy. apply H; fsetdec.
Qed.