diff --git a/_CoqProject b/_CoqProject
index 40bab7a3ce01cb4d2acdcec89c69b2803ac55e49..076f36f34c5093693100e1ffac8a93bb9c2aadea 100644
--- a/_CoqProject
+++ b/_CoqProject
@@ -54,7 +54,6 @@ algebra/upred.v
algebra/upred_tactics.v
algebra/upred_big_op.v
algebra/frac.v
-algebra/one_shot.v
algebra/csum.v
algebra/list.v
program_logic/model.v
@@ -78,7 +77,6 @@ program_logic/ectx_lifting.v
program_logic/ghost_ownership.v
program_logic/global_functor.v
program_logic/saved_prop.v
-program_logic/saved_one_shot.v
program_logic/auth.v
program_logic/sts.v
program_logic/namespaces.v
diff --git a/algebra/one_shot.v b/algebra/one_shot.v
deleted file mode 100644
index c2344ec7ff11c66b0cd9bf891285f92a74465142..0000000000000000000000000000000000000000
--- a/algebra/one_shot.v
+++ /dev/null
@@ -1,270 +0,0 @@
-From iris.algebra Require Export cmra.
-From iris.algebra Require Import upred.
-Local Arguments pcore _ _ !_ /.
-Local Arguments cmra_pcore _ !_ /.
-Local Arguments validN _ _ _ !_ /.
-Local Arguments valid _ _ !_ /.
-Local Arguments cmra_validN _ _ !_ /.
-Local Arguments cmra_valid _ !_ /.
-
-(* TODO: Really, we should have sums, and then this should be just "excl unit + A". *)
-Inductive one_shot (A : Type) :=
- | OneShotPending : one_shot A
- | Shot : A → one_shot A
- | OneShotBot : one_shot A.
-Arguments OneShotPending {_}.
-Arguments Shot {_} _.
-Arguments OneShotBot {_}.
-
-Instance maybe_Shot {A} : Maybe (@Shot A) := λ x,
- match x with Shot a => Some a | _ => None end.
-Instance: Params (@Shot) 1.
-
-Section cofe.
-Context {A : cofeT}.
-Implicit Types a b : A.
-Implicit Types x y : one_shot A.
-
-(* Cofe *)
-Inductive one_shot_equiv : Equiv (one_shot A) :=
- | OneShotPending_equiv : OneShotPending ≡ OneShotPending
- | OneShot_equiv a b : a ≡ b → Shot a ≡ Shot b
- | OneShotBot_equiv : OneShotBot ≡ OneShotBot.
-Existing Instance one_shot_equiv.
-Inductive one_shot_dist : Dist (one_shot A) :=
- | OneShotPending_dist n : OneShotPending ≡{n}≡ OneShotPending
- | OneShot_dist n a b : a ≡{n}≡ b → Shot a ≡{n}≡ Shot b
- | OneShotBot_dist n : OneShotBot ≡{n}≡ OneShotBot.
-Existing Instance one_shot_dist.
-
-Global Instance One_Shot_ne n : Proper (dist n ==> dist n) (@Shot A).
-Proof. by constructor. Qed.
-Global Instance One_Shot_proper : Proper ((≡) ==> (≡)) (@Shot A).
-Proof. by constructor. Qed.
-Global Instance One_Shot_inj : Inj (≡) (≡) (@Shot A).
-Proof. by inversion_clear 1. Qed.
-Global Instance One_Shot_dist_inj n : Inj (dist n) (dist n) (@Shot A).
-Proof. by inversion_clear 1. Qed.
-
-Program Definition one_shot_chain (c : chain (one_shot A)) (a : A) : chain A :=
- {| chain_car n := match c n return _ with Shot b => b | _ => a end |}.
-Next Obligation. intros c a n i ?; simpl. by destruct (chain_cauchy c n i). Qed.
-Instance one_shot_compl : Compl (one_shot A) := λ c,
- match c 0 with Shot a => Shot (compl (one_shot_chain c a)) | x => x end.
-Definition one_shot_cofe_mixin : CofeMixin (one_shot A).
-Proof.
- split.
- - intros mx my; split.
- + by destruct 1; subst; constructor; try apply equiv_dist.
- + intros Hxy; feed inversion (Hxy 0); subst; constructor; try done.
- apply equiv_dist=> n; by feed inversion (Hxy n).
- - intros n; split.
- + by intros [|a|]; constructor.
- + by destruct 1; constructor.
- + destruct 1; inversion_clear 1; constructor; etrans; eauto.
- - by inversion_clear 1; constructor; done || apply dist_S.
- - intros n c; rewrite /compl /one_shot_compl.
- feed inversion (chain_cauchy c 0 n); first auto with lia; constructor.
- rewrite (conv_compl n (one_shot_chain c _)) /=. destruct (c n); naive_solver.
-Qed.
-Canonical Structure one_shotC : cofeT := CofeT (one_shot A) one_shot_cofe_mixin.
-Global Instance one_shot_discrete : Discrete A → Discrete one_shotC.
-Proof. by inversion_clear 2; constructor; done || apply (timeless _). Qed.
-Global Instance one_shot_leibniz : LeibnizEquiv A → LeibnizEquiv (one_shot A).
-Proof. by destruct 2; f_equal; done || apply leibniz_equiv. Qed.
-
-Global Instance Shot_timeless (a : A) : Timeless a → Timeless (Shot a).
-Proof. by inversion_clear 2; constructor; done || apply (timeless _). Qed.
-End cofe.
-
-Arguments one_shotC : clear implicits.
-
-(* Functor on COFEs *)
-Definition one_shot_map {A B} (f : A → B) (x : one_shot A) : one_shot B :=
- match x with
- | OneShotPending => OneShotPending
- | Shot a => Shot (f a)
- | OneShotBot => OneShotBot
- end.
-Instance: Params (@one_shot_map) 2.
-
-Lemma one_shot_map_id {A} (x : one_shot A) : one_shot_map id x = x.
-Proof. by destruct x. Qed.
-Lemma one_shot_map_compose {A B C} (f : A → B) (g : B → C) (x : one_shot A) :
- one_shot_map (g ∘ f) x = one_shot_map g (one_shot_map f x).
-Proof. by destruct x. Qed.
-Lemma one_shot_map_ext {A B : cofeT} (f g : A → B) x :
- (∀ x, f x ≡ g x) → one_shot_map f x ≡ one_shot_map g x.
-Proof. by destruct x; constructor. Qed.
-Instance one_shot_map_cmra_ne {A B : cofeT} n :
- Proper ((dist n ==> dist n) ==> dist n ==> dist n) (@one_shot_map A B).
-Proof. intros f f' Hf; destruct 1; constructor; by try apply Hf. Qed.
-Definition one_shotC_map {A B} (f : A -n> B) : one_shotC A -n> one_shotC B :=
- CofeMor (one_shot_map f).
-Instance one_shotC_map_ne A B n : Proper (dist n ==> dist n) (@one_shotC_map A B).
-Proof. intros f f' Hf []; constructor; by try apply Hf. Qed.
-
-Section cmra.
-Context {A : cmraT}.
-Implicit Types a b : A.
-Implicit Types x y : one_shot A.
-
-(* CMRA *)
-Instance one_shot_valid : Valid (one_shot A) := λ x,
- match x with
- | OneShotPending => True
- | Shot a => ✓ a
- | OneShotBot => False
- end.
-Instance one_shot_validN : ValidN (one_shot A) := λ n x,
- match x with
- | OneShotPending => True
- | Shot a => ✓{n} a
- | OneShotBot => False
- end.
-Instance one_shot_pcore : PCore (one_shot A) := λ x,
- match x with
- | OneShotPending => None
- | Shot a => Shot <$> pcore a
- | OneShotBot => Some OneShotBot
- end.
-Instance one_shot_op : Op (one_shot A) := λ x y,
- match x, y with
- | Shot a, Shot b => Shot (a â‹… b)
- | _, _ => OneShotBot
- end.
-
-Lemma Shot_op a b : Shot a â‹… Shot b = Shot (a â‹… b).
-Proof. done. Qed.
-
-Lemma one_shot_included x y :
- x ≼ y ↔ y = OneShotBot ∨ ∃ a b, x = Shot a ∧ y = Shot b ∧ a ≼ b.
-Proof.
- split.
- - intros [z Hy]; destruct x as [|a|], z as [|b|]; inversion_clear Hy; auto.
- right; eexists _, _; split_and!; eauto.
- setoid_subst; eauto using cmra_included_l.
- - intros [->|(a&b&->&->&c&?)].
- + destruct x; exists OneShotBot; constructor.
- + exists (Shot c); by constructor.
-Qed.
-
-Lemma one_shot_cmra_mixin : CMRAMixin (one_shot A).
-Proof.
- split.
- - intros n []; destruct 1; constructor; by cofe_subst.
- - intros ???? [n|n a b Hab|n] [=]; subst; eauto.
- destruct (pcore a) as [ca|] eqn:?; simplify_option_eq.
- destruct (cmra_pcore_ne n a b ca) as (cb&->&?); auto.
- exists (Shot cb); by repeat constructor.
- - intros ? [|a|] [|b|] H; inversion_clear H; cofe_subst; done.
- - intros [|a|]; rewrite /= ?cmra_valid_validN; naive_solver eauto using O.
- - intros n [|a|]; simpl; auto using cmra_validN_S.
- - intros [|a1|] [|a2|] [|a3|]; constructor; by rewrite ?assoc.
- - intros [|a1|] [|a2|]; constructor; by rewrite 1?comm.
- - intros [|a|] ? [=]; subst; auto.
- destruct (pcore a) as [ca|] eqn:?; simplify_option_eq.
- constructor; eauto using cmra_pcore_l.
- - intros [|a|] ? [=]; subst; auto.
- destruct (pcore a) as [ca|] eqn:?; simplify_option_eq.
- feed inversion (cmra_pcore_idemp a ca); repeat constructor; auto.
- - intros x y ? [->|(a&b&->&->&?)]%one_shot_included [=].
- { exists OneShotBot. rewrite one_shot_included; eauto. }
- destruct (pcore a) as [ca|] eqn:?; simplify_option_eq.
- destruct (cmra_pcore_preserving a b ca) as (cb&->&?); auto.
- exists (Shot cb). rewrite one_shot_included; eauto 10.
- - intros n [|a1|] [|a2|]; simpl; eauto using cmra_validN_op_l; done.
- - intros n [|a|] y1 y2 Hx Hx'.
- + destruct y1, y2; exfalso; by inversion_clear Hx'.
- + destruct y1 as [|b1|], y2 as [|b2|]; try (exfalso; by inversion_clear Hx').
- apply (inj Shot) in Hx'.
- destruct (cmra_extend n a b1 b2) as ([z1 z2]&?&?&?); auto.
- exists (Shot z1, Shot z2). by repeat constructor.
- + by exists (OneShotBot, OneShotBot); destruct y1, y2; inversion_clear Hx'.
-Qed.
-Canonical Structure one_shotR :=
- CMRAT (one_shot A) one_shot_cofe_mixin one_shot_cmra_mixin.
-
-Global Instance one_shot_cmra_discrete : CMRADiscrete A → CMRADiscrete one_shotR.
-Proof.
- split; first apply _.
- intros [|a|]; simpl; auto using cmra_discrete_valid.
-Qed.
-
-Global Instance Shot_persistent a : Persistent a → Persistent (Shot a).
-Proof. rewrite /Persistent /=. inversion_clear 1; by repeat constructor. Qed.
-
-(** Internalized properties *)
-Lemma one_shot_equivI {M} (x y : one_shot A) :
- x ≡ y ⊣⊢ (match x, y with
- | OneShotPending, OneShotPending => True
- | Shot a, Shot b => a ≡ b
- | OneShotBot, OneShotBot => True
- | _, _ => False
- end : uPred M).
-Proof.
- uPred.unseal; do 2 split; first by destruct 1.
- by destruct x, y; try destruct 1; try constructor.
-Qed.
-Lemma one_shot_validI {M} (x : one_shot A) :
- ✓ x ⊣⊢ (match x with
- | Shot a => ✓ a
- | OneShotBot => False
- | _ => True
- end : uPred M).
-Proof. uPred.unseal. by destruct x. Qed.
-
-(** Updates *)
-Lemma one_shot_update_shoot (a : A) : ✓ a → OneShotPending ~~> Shot a.
-Proof. move=> ? n [y|] //= ?. by apply cmra_valid_validN. Qed.
-Lemma one_shot_update (a1 a2 : A) : a1 ~~> a2 → Shot a1 ~~> Shot a2.
-Proof.
- intros Ha n [[|b|]|] ?; simpl in *; auto.
- - by apply (Ha n (Some b)).
- - by apply (Ha n None).
-Qed.
-Lemma one_shot_updateP (P : A → Prop) (Q : one_shot A → Prop) a :
- a ~~>: P → (∀ b, P b → Q (Shot b)) → Shot a ~~>: Q.
-Proof.
- intros Hx HP n mf Hm. destruct mf as [[|b|]|]; try by destruct Hm.
- - destruct (Hx n (Some b)) as (c&?&?); naive_solver.
- - destruct (Hx n None) as (c&?&?); naive_solver eauto using cmra_validN_op_l.
-Qed.
-Lemma one_shot_updateP' (P : A → Prop) a :
- a ~~>: P → Shot a ~~>: λ m', ∃ b, m' = Shot b ∧ P b.
-Proof. eauto using one_shot_updateP. Qed.
-End cmra.
-
-Arguments one_shotR : clear implicits.
-
-(* Functor *)
-Instance one_shot_map_cmra_monotone {A B : cmraT} (f : A → B) :
- CMRAMonotone f → CMRAMonotone (one_shot_map f).
-Proof.
- split; try apply _.
- - intros n [|a|]; simpl; auto using validN_preserving.
- - intros x y; rewrite !one_shot_included.
- intros [->|(a&b&->&->&?)]; simpl; eauto 10 using included_preserving.
-Qed.
-
-Program Definition one_shotRF (F : rFunctor) : rFunctor := {|
- rFunctor_car A B := one_shotR (rFunctor_car F A B);
- rFunctor_map A1 A2 B1 B2 fg := one_shotC_map (rFunctor_map F fg)
-|}.
-Next Obligation.
- by intros F A1 A2 B1 B2 n f g Hfg; apply one_shotC_map_ne, rFunctor_ne.
-Qed.
-Next Obligation.
- intros F A B x. rewrite /= -{2}(one_shot_map_id x).
- apply one_shot_map_ext=>y; apply rFunctor_id.
-Qed.
-Next Obligation.
- intros F A1 A2 A3 B1 B2 B3 f g f' g' x. rewrite /= -one_shot_map_compose.
- apply one_shot_map_ext=>y; apply rFunctor_compose.
-Qed.
-
-Instance one_shotRF_contractive F :
- rFunctorContractive F → rFunctorContractive (one_shotRF F).
-Proof.
- by intros ? A1 A2 B1 B2 n f g Hfg; apply one_shotC_map_ne, rFunctor_contractive.
-Qed.
diff --git a/program_logic/saved_one_shot.v b/program_logic/saved_one_shot.v
deleted file mode 100644
index be0f838ffca722eb6cc4005e2857ee9583f66e8f..0000000000000000000000000000000000000000
--- a/program_logic/saved_one_shot.v
+++ /dev/null
@@ -1,59 +0,0 @@
-From iris.algebra Require Export agree one_shot.
-From iris.program_logic Require Export ghost_ownership.
-Import uPred.
-
-Class oneShotG (Λ : language) (Σ : gFunctors) (F : cFunctor) :=
- one_shot_inG :> inG Λ Σ (one_shotR $ agreeR $ laterC $ F (iPrePropG Λ Σ)).
-Definition oneShotGF (F : cFunctor) : gFunctor :=
- GFunctor (one_shotRF (agreeRF (â–¶ F))).
-Instance inGF_oneShotG `{inGF Λ Σ (oneShotGF F)} : oneShotG Λ Σ F.
-Proof. apply: inGF_inG. Qed.
-
-Definition one_shot_pending `{oneShotG Λ Σ F} (γ : gname) : iPropG Λ Σ :=
- own γ OneShotPending.
-Definition one_shot_own `{oneShotG Λ Σ F}
- (γ : gname) (x : F (iPropG Λ Σ)) : iPropG Λ Σ :=
- own γ (Shot $ to_agree $ Next (cFunctor_map F (iProp_fold, iProp_unfold) x)).
-Typeclasses Opaque one_shot_pending one_shot_own.
-Instance: Params (@one_shot_own) 4.
-
-Section one_shot.
- Context `{oneShotG Λ Σ F}.
- Implicit Types x y : F (iPropG Λ Σ).
- Implicit Types γ : gname.
-
- Global Instance ne_shot_own_persistent γ x : PersistentP (one_shot_own γ x).
- Proof. rewrite /one_shot_own; apply _. Qed.
-
- Lemma one_shot_alloc_strong E (G : gset gname) :
- True ={E}=> ∃ γ, ■(γ ∉ G) ∧ one_shot_pending γ.
- Proof. by apply own_alloc_strong. Qed.
-
- Lemma one_shot_alloc E : True ={E}=> ∃ γ, one_shot_pending γ.
- Proof. by apply own_alloc. Qed.
-
- Lemma one_shot_init E γ x : one_shot_pending γ ={E}=> one_shot_own γ x.
- Proof. by apply own_update, one_shot_update_shoot. Qed.
-
- Lemma one_shot_alloc_init E x : True ={E}=> ∃ γ, one_shot_own γ x.
- Proof.
- rewrite (one_shot_alloc E). apply pvs_strip_pvs.
- apply exist_elim=>γ. rewrite -(exist_intro γ).
- apply one_shot_init.
- Qed.
-
- Lemma one_shot_agree γ x y : one_shot_own γ x ★ one_shot_own γ y ⊢ ▷ (x ≡ y).
- Proof.
- rewrite -own_op own_valid one_shot_validI /= agree_validI.
- rewrite agree_equivI later_equivI.
- set (G1 := cFunctor_map F (iProp_fold, iProp_unfold)).
- set (G2 := cFunctor_map F (@iProp_unfold Λ (globalF Σ),
- @iProp_fold Λ (globalF Σ))).
- assert (∀ z, G2 (G1 z) ≡ z) as help.
- { intros z. rewrite /G1 /G2 -cFunctor_compose -{2}[z]cFunctor_id.
- apply (ne_proper (cFunctor_map F)); split=>?; apply iProp_fold_unfold. }
- rewrite -{2}[x]help -{2}[y]help. apply later_mono.
- apply (eq_rewrite (G1 x) (G1 y) (λ z, G2 (G1 x) ≡ G2 z))%I;
- first solve_proper; auto with I.
- Qed.
-End one_shot.
diff --git a/tests/joining_existentials.v b/tests/joining_existentials.v
index dad62ca2ac08c8dbddee1b6cfe47c77212a77396..e637415fd8f19401cc5699077720da05cdbbcf41 100644
--- a/tests/joining_existentials.v
+++ b/tests/joining_existentials.v
@@ -1,9 +1,18 @@
-From iris.program_logic Require Import saved_one_shot hoare.
+From iris.algebra Require Import csum.
+From iris.program_logic Require Import hoare.
From iris.heap_lang.lib.barrier Require Import proof specification.
From iris.heap_lang Require Import notation par proofmode.
From iris.proofmode Require Import invariants.
Import uPred.
+Class oneShotG (Λ : language) (Σ : gFunctors) (F : cFunctor) :=
+ one_shot_inG :>
+ inG Λ Σ (csumR (exclR unitC) (agreeR $ laterC $ F (iPrePropG Λ Σ))).
+Definition oneShotGF (F : cFunctor) : gFunctor :=
+ GFunctor (csumRF (exclRF unitC) (agreeRF (â–¶ F))).
+Instance inGF_oneShotG `{inGF Λ Σ (oneShotGF F)} : oneShotG Λ Σ F.
+Proof. apply: inGF_inG. Qed.
+
Definition client eM eW1 eW2 : expr [] :=
let: "b" := newbarrier #() in
(eM ;; ^signal '"b") || ((^wait '"b" ;; eW1) || (^wait '"b" ;; eW2)).
@@ -17,7 +26,8 @@ Local Notation iProp := (iPropG heap_lang Σ).
Local Notation X := (G iProp).
Definition barrier_res γ (Φ : X → iProp) : iProp :=
- (∃ x, one_shot_own γ x ★ Φ x)%I.
+ (∃ x, own γ (Cinr $ to_agree $
+ Next (cFunctor_map G (iProp_fold, iProp_unfold) x)) ★ Φ x)%I.
Lemma worker_spec e γ l (Φ Ψ : X → iProp) :
recv heapN N l (barrier_res γ Φ) ★ (∀ x, {{ Φ x }} e {{ _, Ψ x }})
@@ -43,7 +53,13 @@ Lemma Q_res_join γ : barrier_res γ Ψ1 ★ barrier_res γ Ψ2 ⊢ ▷ barrier_
Proof.
iIntros "[Hγ Hγ']";
iDestruct "Hγ" as {x} "[#Hγ Hx]"; iDestruct "Hγ'" as {x'} "[#Hγ' Hx']".
- iDestruct (one_shot_agree γ x x' with "[#]") as "Hxx"; first (by iSplit).
+ iAssert (▷ (x ≡ x'):iProp)%I as "Hxx" .
+ { iCombine "Hγ" "Hγ'" as "Hγ2". iClear "Hγ Hγ'".
+ rewrite own_valid csum_validI /= agree_validI agree_equivI later_equivI /=.
+ rewrite -{2}[x]cFunctor_id -{2}[x']cFunctor_id.
+ rewrite (ne_proper (cFunctor_map G) (cid, cid) (_ â—Ž _, _ â—Ž _)).
+ 2:by split; intro; simpl; symmetry; apply iProp_fold_unfold.
+ rewrite !cFunctor_compose. iNext. by iRewrite "Hγ2". }
iNext. iRewrite -"Hxx" in "Hx'".
iExists x; iFrame "Hγ". iApply Ψ_join; by iSplitL "Hx".
Qed.
@@ -57,7 +73,7 @@ Lemma client_spec_new (eM eW1 eW2 : expr []) (eM' eW1' eW2' : expr ("b" :b: []))
⊢ WP client eM' eW1' eW2' {{ _, ∃ γ, barrier_res γ Ψ }}.
Proof.
iIntros {HN -> -> ->} "/= (#Hh&HP&#He&#He1&#He2)"; rewrite /client.
- iPvs one_shot_alloc as {γ} "Hγ".
+ iPvs (own_alloc (Cinl (Excl ()))) as {γ} "Hγ". done.
wp_apply (newbarrier_spec heapN N (barrier_res γ Φ)); auto.
iFrame "Hh". iIntros {l} "[Hr Hs]".
set (workers_post (v : val) := (barrier_res γ Ψ1 ★ barrier_res γ Ψ2)%I).
@@ -65,7 +81,8 @@ Proof.
iFrame "Hh". iSplitL "HP Hs Hγ"; [|iSplitL "Hr"].
- wp_focus eM. iApply wp_wand_l; iSplitR "HP"; [|by iApply "He"].
iIntros {v} "HP"; iDestruct "HP" as {x} "HP". wp_let.
- iPvs (one_shot_init _ _ x with "Hγ") as "Hx".
+ iPvs (own_update _ _ (Cinr (to_agree _)) with "Hγ") as "Hx".
+ by apply cmra_update_exclusive.
iApply signal_spec; iFrame "Hs"; iSplit; last done.
iExists x; auto.
- iDestruct (recv_weaken with "[] Hr") as "Hr"; first by iApply P_res_split.
diff --git a/tests/one_shot.v b/tests/one_shot.v
index 84c3be3c31c6e77026a84816b1e6f6e6e85b7423..a7b267d76d1c50f44a7830f2a5b173c7a21e90b3 100644
--- a/tests/one_shot.v
+++ b/tests/one_shot.v
@@ -1,4 +1,4 @@
-From iris.algebra Require Import one_shot dec_agree.
+From iris.algebra Require Import dec_agree csum.
From iris.program_logic Require Import hoare.
From iris.heap_lang Require Import assert proofmode notation.
From iris.proofmode Require Import invariants ghost_ownership.
@@ -21,11 +21,13 @@ Definition one_shot_example : val := λ: <>,
Global Opaque one_shot_example.
Class one_shotG Σ :=
- OneShotG { one_shot_inG :> inG heap_lang Σ (one_shotR (dec_agreeR Z)) }.
+ one_shot_inG :> inG heap_lang Σ (csumR (exclR unitC)(dec_agreeR Z)).
Definition one_shotGF : gFunctorList :=
- [GFunctor (constRF (one_shotR (dec_agreeR Z)))].
+ [GFunctor (constRF (csumR (exclR unitC)(dec_agreeR Z)))].
Instance inGF_one_shotG Σ : inGFs heap_lang Σ one_shotGF → one_shotG Σ.
-Proof. intros [? _]; split; apply: inGF_inG. Qed.
+Proof. intros [? _]; apply: inGF_inG. Qed.
+
+Notation Pending := (Cinl (Excl ())).
Section proof.
Context {Σ : gFunctors} `{!heapG Σ, !one_shotG Σ}.
@@ -33,8 +35,8 @@ Context (heapN N : namespace) (HN : heapN ⊥ N).
Local Notation iProp := (iPropG heap_lang Σ).
Definition one_shot_inv (γ : gname) (l : loc) : iProp :=
- (l ↦ InjLV #0 ★ own γ OneShotPending ∨
- ∃ n : Z, l ↦ InjRV #n ★ own γ (Shot (DecAgree n)))%I.
+ (l ↦ InjLV #0 ★ own γ Pending ∨
+ ∃ n : Z, l ↦ InjRV #n ★ own γ (Cinr (DecAgree n)))%I.
Lemma wp_one_shot (Φ : val → iProp) :
heap_ctx heapN ★ (∀ f1 f2 : val,
@@ -44,7 +46,7 @@ Lemma wp_one_shot (Φ : val → iProp) :
Proof.
iIntros "[#? Hf] /=".
rewrite /one_shot_example. wp_seq. wp_alloc l as "Hl". wp_let.
- iPvs (own_alloc OneShotPending) as {γ} "Hγ"; first done.
+ iPvs (own_alloc Pending) as {γ} "Hγ"; first done.
iPvs (inv_alloc N _ (one_shot_inv γ l) with "[Hl Hγ]") as "#HN"; first done.
{ iNext. iLeft. by iSplitL "Hl". }
iPvsIntro. iApply "Hf"; iSplit.
@@ -52,18 +54,18 @@ Proof.
iInv> N as "[[Hl Hγ]|H]"; last iDestruct "H" as {m} "[Hl Hγ]".
+ iApply wp_pvs. wp_cas_suc. iSplitL; [|by iLeft; iPvsIntro].
iPvs (own_update with "Hγ") as "Hγ".
- { by apply (one_shot_update_shoot (DecAgree n)). }
+ { by apply cmra_update_exclusive with (y:=Cinr (DecAgree n)). }
iPvsIntro; iRight; iExists n; by iSplitL "Hl".
+ wp_cas_fail. iSplitL. iRight; iExists m; by iSplitL "Hl". by iRight.
- iIntros "!". wp_seq. wp_focus (! _)%E. iInv> N as "Hγ".
- iAssert (∃ v, l ↦ v ★ ((v = InjLV #0 ★ own γ OneShotPending) ∨
- ∃ n : Z, v = InjRV #n ★ own γ (Shot (DecAgree n))))%I with "[-]" as "Hv".
+ iAssert (∃ v, l ↦ v ★ ((v = InjLV #0 ★ own γ Pending) ∨
+ ∃ n : Z, v = InjRV #n ★ own γ (Cinr (DecAgree n))))%I with "[-]" as "Hv".
{ iDestruct "Hγ" as "[[Hl Hγ]|Hl]"; last iDestruct "Hl" as {m} "[Hl Hγ]".
+ iExists (InjLV #0). iFrame. eauto.
+ iExists (InjRV #m). iFrame. eauto. }
iDestruct "Hv" as {v} "[Hl Hv]". wp_load.
iAssert (one_shot_inv γ l ★ (v = InjLV #0 ∨ ∃ n : Z,
- v = InjRV #n ★ own γ (Shot (DecAgree n))))%I with "[-]" as "[$ #Hv]".
+ v = InjRV #n ★ own γ (Cinr (DecAgree n))))%I with "[-]" as "[$ #Hv]".
{ iDestruct "Hv" as "[[% ?]|Hv]"; last iDestruct "Hv" as {m} "[% ?]"; subst.
+ iSplit. iLeft; by iSplitL "Hl". eauto.
+ iSplit. iRight; iExists m; by iSplitL "Hl". eauto. }