diff --git a/README.md b/README.md
index 4257c88376824088094496c8d1cef997f63aa70a..a5ac0b9cdafa939638430efe5f14a51c02ad4819 100644
--- a/README.md
+++ b/README.md
@@ -1,8 +1,9 @@
# ACTRIS COQ DEVELOPMENT
-This directory contains the Coq mechanisation of the Actris framework,
+This directory contains the Coq mechanization of the Actris framework,
first presented in the paper
-"Actris: Session Type Based Reasoning in Separation Logic".
+[Actris: Session Type Based Reasoning in Separation Logic](https://iris-project.org/pdfs/2020-popl-actris-final.pdf)
+at POPL'20.
It has been built and tested with the following dependencies
@@ -21,28 +22,23 @@ The individual types contain the following:
- [theories/channel/proto_model.v](theories/channel/proto_model.v): The
construction of the model of dependent separation protocols as the solution of
a recursive domain equation.
-- [theories/channel/proto.v](theories/channel/proto.v): The
- instantiation of protocols with the Iris logic, definition of the connective `↣`
- for channel endpoint ownership, and lemmas corresponding to the Actris proof rules.
+- [theories/channel/proto.v](theories/channel/proto.v): The instantiation of
+ protocols with the Iris logic, definition of `iProto_own` for channel endpoint
+ ownership, and lemmas corresponding to the Actris proof rules.
The relevant definitions and proof rules are as follows:
+ `iProto Σ`: The type of protocols.
+ `iProto_message`: The constructor for sends and receives.
+ `iProto_end`: The constructor for terminated protocols.
- + `iProto_le`: The subprotocol relation for protocols.
+ + `iProto_le`: The subprotocol relation for protocols (notation `⊑`).
- [theories/channel/channel.v](theories/channel/channel.v): The encoding of
bidirectional channels in terms of Iris's HeapLang language, with specifications
defined in terms of the dependent separation protocols.
The relevant definitions and proof rules are as follows:
- + `mapsto_proto`: endpoint ownership `↣`.
- + `new_chan_proto_spec`: proof rule for `new_chan`.
- + `send_proto_spec` and `send_proto_spec_packed`: proof rules for `send`, the
- first version is more convenient to use in Coq, but otherwise the same as
- the latter, which is a more legible rule.
- + `recv_proto_spec` and `recv_proto_spec_packed`: proof rules for `recv`, the
- first version is more convenient to use in Coq, but otherwise the same as
- the latter, which is a more legible rule.
- + `select_spec`: proof rule for `select`.
- + `branch_spec`: proof rule for `branch`.
+ + `mapsto_proto`: endpoint ownership (notation `↣`).
+ + `new_chan_spec`, `send_spec` and `recv_spec`: proof rule for `new_chan`,
+ `send`, and `recv`.
+ + `select_spec` and `branch_spec`: proof rule for the derived (binary)
+ `select` and `branch` operations.
## Notation
@@ -51,7 +47,7 @@ and the Coq mechanization:
Dependent Separation Protocols:
-| | Literature | Coq mechanization |
+| | POPL paper | Coq mechanization |
|--------|-------------------------------|---------------------------------------|
| Send | `! x_1 .. x_n <v>{ P }. prot` | `<! x_1 .. x_n> MSG v {{ P }}; prot` |
| Recv | `? x_1 .. x_n <v>{ P }. prot` | `<? x_1 .. x_n> MSG v {{ P }}; prot` |
@@ -63,7 +59,7 @@ Dependent Separation Protocols:
Semantic Session Types:
-| | Literature | Coq mechanization |
+| | CONCUR submission | Coq mechanization |
|--------|-------------------------------|---------------------------------------|
| Send | `!_{X_1 .. X_n} A . S` | `<!! X_1 .. X_n> TY A ; S` |
| Recv | `?_{X_1 .. X_n} A . S` | `<?? X_1 .. X_n> TY A ; S` |
@@ -124,8 +120,8 @@ Concretely, the normalization performs the following actions:
## Semantic Session Type System
The logical relation for type safety of a semantic session type system is contained
-in the directory [theories/logrel](theories/logrel). The logical relation is
-defined across the following files:
+in the directory [theories/logrel](theories/logrel).
+The logical relation is defined across the following files:
- [theories/logrel/model.v](theories/logrel/model.v): Definition of the
notions of a semantic term type and a semantic session type in terms of
@@ -133,10 +129,9 @@ defined across the following files:
provides the required Coq definitions for creating recursive term/session
types.
- [theories/logrel/term_types.v](theories/logrel/term_types.v): Definitions
- of the following semantic term types: basic types (integers, booleans,
- unit), sums, products, copyable/affine functions, universally and
- existentially quantified types, unique/shared references, and
- session-typed channels.
+ of the following semantic term types: basic types (integers, Booleans, unit),
+ sums, products, copyable/affine functions, universally and existentially
+ quantified types, unique/shared references, and session-typed channels.
- [theories/logrel/session_types.v](theories/logrel/session_types.v):
Definitions of the following semantic session types: sending and receiving
with session polymorphism, n-ary choice. Session type duality is also
@@ -168,4 +163,5 @@ threads.
## Paper-specific remarks
-For CONCUR 2020 specific remarks see [papers/CONCUR20.md](papers/CONCUR20.md).
+For remarks about the CONCUR 2020 submission, see
+[papers/CONCUR20.md](papers/CONCUR20.md).
diff --git a/papers/CONCUR20.md b/papers/CONCUR20.md
index 060813e2a56ff91c2e3da91be7cd142b9cc3c5a5..7bb70e34d97a8da804b47850e18c09c56121d35d 100644
--- a/papers/CONCUR20.md
+++ b/papers/CONCUR20.md
@@ -1,27 +1,26 @@
## Differences
-The semantic encoding of ground types use existential quantification in the
-mechanisation (e.g. `λ w. ∃ (x:Z), w = int`, while the paper uses set
-inclusion (e.g. `λ w. w ∈ Z`). The definitions are effectively identical.
-
-Polymorphism in the paper is done over the type kinds (e.g. `∀ (X :k).A`),
-where the mechanisation uses concrete types that are parametric on a kind
-(e.g. `∀ (X : lty k Σ).A`). This is just syntactic sugar to be less explicit
-in the paper.
+- The semantic encoding of ground types use existential quantification in the
+ mechanization (e.g., `λ w. ∃ (x:Z), w = int`, while the paper uses set
+ inclusion (e.g., `λ w. w ∈ Z`). The definitions are effectively identical.
+- Polymorphism in the paper is written over the type kinds, e.g., `∀ (X : k).A`,
+ whereas that is written `∀ (X : lty k Σ). A` in Coq. This notation is used to
+ make Coq's parser happy, the underlying definitions are the same in Coq and
+ the paper.
+- The typing rule for branching (`ltyped_branch`) is written as a function
+ instead of an n-ary rule with multiple premises.
## Examples
-The parallel receive example in Section 4 can be found in
+- The parallel receive example in Section 4 can be found in
[theories/logrel/examples/double.v](../theories/logrel/examples/double.v):
- This program performs two ``racy'' parallel receives on the same channel from two
- different threads, using locks to allow the channel to be shared. This
+ This program performs two ``racy'' parallel receives on the same channel from
+ two different threads, using locks to allow the channel to be shared. This
program cannot be shown to be well-typed using the semantic typing rules.
Therefore, a manual proof of the well-typedness is given.
-
-The subprotocol assertion over two protocols that sends reference ownerships in
-Section 5 can be found in
+- The subprotocol assertion over two protocols that sends reference ownerships in
+ Section 5 can be found in
[theories/examples/subprotocols.v](../theories/examples/subprotocols.v):
It contains the proof of the example.
-
-The recursive session subtyping example in Section 5 can be found in
+- The recursive session subtyping example in Section 5 can be found in
[theories/logrel/examples/subtyping.v](../theories/logrel/examples/subtyping.v):