Marianna Rapoport
iriscoq
Commits
5e7d9ca7
Commit
5e7d9ca7
authored
Apr 03, 2018
by
Robbert Krebbers
Browse files
Stronger version of `inv_open` that allows to close invariants in a different order.
parent
7143c8b7
Changes
1
Hide whitespace changes
Inline
Sidebyside
theories/base_logic/lib/invariants.v
View file @
5e7d9ca7
...
...
@@ 94,6 +94,20 @@ Proof.
iApply
"HP'"
.
iFrame
.
Qed
.
Lemma
inv_open_strong
E
N
P
:
↑
N
⊆
E
→
inv
N
P
={
E
,
E
∖↑
N
}=
∗
▷
P
∗
∀
E'
,
⌜
↑
N
⊆
E'
⌝
→
▷
P
={
E'
∖↑
N
,
E'
}=
∗
True
.
Proof
.
iIntros
(?)
"Hinv"
.
iPoseProof
(
inv_open
(
↑
N
)
N
P
with
"Hinv"
)
as
"H"
;
first
done
.
rewrite
difference_diag_L
.
iPoseProof
(
fupd_mask_frame_r
_
_
(
E
∖
↑
N
)
with
"H"
)
as
"H"
;
first
set_solver
.
rewrite
left_id_L

union_difference_L
//.
iMod
"H"
as
"[$ H]"
;
iModIntro
.
iIntros
(
E'
?)
"HP"
.
iSpecialize
(
"H"
with
"HP"
).
iPoseProof
(
fupd_mask_frame_r
_
_
(
E'
∖
↑
N
)
with
"H"
)
as
"H"
;
first
set_solver
.
by
rewrite
left_id_L

union_difference_L
.
Qed
.
Lemma
inv_open_timeless
E
N
P
`
{!
Timeless
P
}
:
↑
N
⊆
E
→
inv
N
P
={
E
,
E
∖↑
N
}=
∗
P
∗
(
P
={
E
∖↑
N
,
E
}=
∗
True
).
Proof
.
...
...
