diff --git a/_CoqProject b/_CoqProject
index f62cee0429280ffc0c79596440f5aa6a3d822e80..04cd41783d35342d3d138ace27d59614743962ae 100644
--- a/_CoqProject
+++ b/_CoqProject
@@ -12,6 +12,7 @@ theories/logic/proofmode/tactics.v
theories/typing/types.v
theories/typing/interp.v
+theories/typing/fundamental.v
theories/tests/tp_tests.v
theories/tests/proofmode_tests.v
diff --git a/theories/typing/fundamental.v b/theories/typing/fundamental.v
new file mode 100644
index 0000000000000000000000000000000000000000..4b5494e99ebb80412b26d4219ec023cafef02acb
--- /dev/null
+++ b/theories/typing/fundamental.v
@@ -0,0 +1,553 @@
+(* ReLoC -- Relational logic for fine-grained concurrency *)
+(** Compatibility lemmas for the logical relation *)
+From iris.heap_lang Require Import proofmode.
+From reloc.logic Require Import model rules.
+From reloc.logic.proofmode Require Export tactics spec_tactics.
+From reloc.typing Require Export interp.
+
+From iris.proofmode Require Export tactics.
+
+Section fundamental.
+ Context `{relocG Σ}.
+ Implicit Types Δ : listC lty2C.
+ Hint Resolve to_of_val.
+
+ (** TODO: actually use this folding tactic *)
+ (* right now it is not compatible with the _atomic tactics *)
+ Local Ltac fold_logrel :=
+ lazymatch goal with
+ | |- environments.envs_entails _
+ (refines ?E (fmap (λ τ, _ _ ?Δ) ?Γ) ?e1 ?e2 (_ (interp ?T) _)) =>
+ fold (bin_log_related E Δ Γ e1 e2 T)
+ end.
+
+ Local Ltac value_case := try rel_pure_l; try rel_pure_r; rel_values.
+
+ (* Local Ltac value_case' := iApply wp_value; [cbn; rewrite ?to_of_val; trivial|]; repeat iModIntro; try solve_to_val. *)
+
+ Local Tactic Notation "rel_bind_ap" uconstr(e1) uconstr(e2) constr(IH) ident(v) ident(w) constr(Hv):=
+ rel_bind_l e1;
+ rel_bind_r e2;
+ iApply (refines_bind with IH);
+ iIntros (v w) Hv; simpl.
+
+ (* Old tactic *)
+ (* Local Tactic Notation "smart_bind" ident(j) uconstr(e) uconstr(e') constr(IH) ident(v) ident(w) constr(Hv):= *)
+ (* try (iModIntro); *)
+ (* wp_bind e; *)
+ (* tp_bind j e'; *)
+ (* iSpecialize (IH with "Hs [HΓ] Hj"); eauto; *)
+ (* iApply fupd_wp; iApply (fupd_mask_mono _); auto; *)
+ (* iMod IH as IH; iModIntro; *)
+ (* iApply (wp_wand with IH); *)
+ (* iIntros (v); *)
+ (* let vh := iFresh in *)
+ (* iIntros vh; *)
+ (* try (iMod vh); *)
+ (* iDestruct vh as (w) (String.append "[Hj " (String.append Hv " ]")); simpl. *)
+
+ Lemma bin_log_related_var Δ Γ x τ :
+ Γ !! x = Some τ →
+ {Δ;Γ} ⊨ Var x ≤log≤ Var x : τ.
+ Proof.
+ iIntros (Hx). iApply refines_var.
+ by rewrite lookup_fmap Hx /=.
+ Qed.
+
+ Lemma bin_log_related_unit Δ Γ : {Δ;Γ} ⊨ #() ≤log≤ #() : TUnit.
+ Proof. value_case. Qed.
+
+ Lemma bin_log_related_nat Δ Γ (n : nat) : {Δ;Γ} ⊨ #n ≤log≤ #n : TNat.
+ Proof. value_case. Qed.
+
+ Lemma bin_log_related_bool Δ Γ (b : bool) : {Δ;Γ} ⊨ #b ≤log≤ #b : TBool.
+ Proof. value_case. Qed.
+
+ Lemma bin_log_related_pair Δ Γ e1 e2 e1' e2' (τ1 τ2 : type) :
+ ({Δ;Γ} ⊨ e1 ≤log≤ e1' : τ1) -∗
+ ({Δ;Γ} ⊨ e2 ≤log≤ e2' : τ2) -∗
+ {Δ;Γ} ⊨ Pair e1 e2 ≤log≤ Pair e1' e2' : TProd τ1 τ2.
+ Proof.
+ iIntros "IH1 IH2".
+ rel_bind_ap e2 e2' "IH2" v2 v2' "Hvv2".
+ rel_bind_ap e1 e1' "IH1" v1 v1' "Hvv1".
+ rel_pure_l. rel_pure_r.
+ rel_values.
+ iExists _, _, _, _; eauto.
+ Qed.
+
+ Lemma bin_log_related_fst Δ Γ e e' τ1 τ2 :
+ ({Δ;Γ} ⊨ e ≤log≤ e' : TProd τ1 τ2) -∗
+ {Δ;Γ} ⊨ Fst e ≤log≤ Fst e' : τ1.
+ Proof.
+ iIntros "IH".
+ rel_bind_ap e e' "IH" v w "IH".
+ iDestruct "IH" as (v1 v2 w1 w2) "(% & % & IHw & IHw')". simplify_eq/=.
+ rel_proj_l.
+ rel_proj_r.
+ value_case.
+ Qed.
+
+ Lemma bin_log_related_snd Δ Γ e e' τ1 τ2 :
+ ({Δ;Γ} ⊨ e ≤log≤ e' : TProd τ1 τ2) -∗
+ {Δ;Γ} ⊨ Snd e ≤log≤ Snd e' : τ2.
+ Proof.
+ iIntros "IH".
+ rel_bind_ap e e' "IH" v w "IH".
+ iDestruct "IH" as (v1 v2 w1 w2) "(% & % & IHw & IHw')". simplify_eq/=.
+ rel_proj_l.
+ rel_proj_r.
+ value_case.
+ Qed.
+
+ Lemma bin_log_related_app Δ Γ e1 e2 e1' e2' τ1 τ2 :
+ ({Δ;Γ} ⊨ e1 ≤log≤ e1' : TArrow τ1 τ2) -∗
+ ({Δ;Γ} ⊨ e2 ≤log≤ e2' : τ1) -∗
+ {Δ;Γ} ⊨ App e1 e2 ≤log≤ App e1' e2' : τ2.
+ Proof.
+ iIntros "IH1 IH2".
+ rel_bind_ap e2 e2' "IH2" v v' "Hvv".
+ rel_bind_ap e1 e1' "IH1" f f' "Hff".
+ (* TODO better proof here, without exposing interp_expr *)
+ iSpecialize ("Hff" with "Hvv"). simpl.
+ iApply refines_ret'; eauto.
+ Admitted.
+
+ Lemma bin_log_related_rec Δ (Γ : stringmap type) (f x : binder) (e e' : expr) τ1 τ2 :
+ □ ({Δ;<[f:=TArrow τ1 τ2]>(<[x:=τ1]>Γ)} ⊨ e ≤log≤ e' : τ2) -∗
+ {Δ;Γ} ⊨ Rec f x e ≤log≤ Rec f x e' : TArrow τ1 τ2.
+ Proof.
+ iIntros "#Ht".
+ iApply refines_rec. fold interp. (* TODO: why do I need to fold it here? *)
+ iAlways.
+ by rewrite /bin_log_related !binder_insert_fmap.
+ Qed.
+
+ Lemma bin_log_related_seq R Δ Γ e1 e2 e1' e2' τ1 τ2 :
+ ({(R::Δ);⤉Γ} ⊨ e1 ≤log≤ e1' : τ1) -∗
+ ({Δ;Γ} ⊨ e2 ≤log≤ e2' : τ2) -∗
+ {Δ;Γ} ⊨ (e1;; e2) ≤log≤ (e1';; e2') : τ2.
+ Proof.
+ iIntros "He1 He2".
+ rel_bind_l e1.
+ rel_bind_r e1'.
+ iApply (refines_bind _ _ _ _ (interp τ1 (R :: Δ)) with "[He1] [He2]").
+ - rewrite /bin_log_related.
+ assert (((λ τ : type, (interp τ) (R :: Δ)) <$> ⤉Γ)
+ ≡ ((λ τ : type, (interp τ) Δ) <$> Γ)). admit.
+ (* rewrite H0. *)
+ (* TODO *) admit.
+ - iIntros (? ?) "? /=".
+ rel_pure_l. rel_rec_l.
+ rel_pure_r. rel_rec_r.
+ done.
+ Admitted.
+
+ (* TODO
+ Lemma bin_log_related_seq' Δ Γ e1 e2 e1' e2' τ1 τ2 :
+ ({Δ;Γ} ⊨ e1 ≤log≤ e1' : τ1) -∗
+ ({Δ;Γ} ⊨ e2 ≤log≤ e2' : τ2) -∗
+ {Δ;Γ} ⊨ (e1;; e2) ≤log≤ (e1';; e2') : τ2.
+ Proof.
+ iIntros "He1 He2".
+ iApply (bin_log_related_seq (λne _, True%I) _ _ _ _ _ _ τ1.[ren (+1)] with "[He1]"); auto.
+ by iApply bin_log_related_weaken_2.
+ Qed. *)
+
+ Lemma bin_log_related_injl Δ Γ e e' τ1 τ2 :
+ ({Δ;Γ} ⊨ e ≤log≤ e' : τ1) -∗
+ {Δ;Γ} ⊨ InjL e ≤log≤ InjL e' : (TSum τ1 τ2).
+ Proof.
+ iIntros "IH".
+ rel_bind_ap e e' "IH" v v' "Hvv".
+ value_case. iExists _,_. eauto.
+ Qed.
+
+ Lemma bin_log_related_injr Δ Γ e e' τ1 τ2 :
+ ({Δ;Γ} ⊨ e ≤log≤ e' : τ2) -∗
+ {Δ;Γ} ⊨ InjR e ≤log≤ InjR e' : TSum τ1 τ2.
+ Proof.
+ iIntros "IH".
+ rel_bind_ap e e' "IH" v v' "Hvv".
+ value_case. iExists _,_. eauto.
+ Qed.
+
+ Lemma bin_log_related_case Δ Γ e0 e1 e2 e0' e1' e2' τ1 τ2 τ3 :
+ ({Δ;Γ} ⊨ e0 ≤log≤ e0' : TSum τ1 τ2) -∗
+ ({Δ;Γ} ⊨ e1 ≤log≤ e1' : TArrow τ1 τ3) -∗
+ ({Δ;Γ} ⊨ e2 ≤log≤ e2' : TArrow τ2 τ3) -∗
+ {Δ;Γ} ⊨ Case e0 e1 e2 ≤log≤ Case e0' e1' e2' : τ3.
+ Proof.
+ iIntros "IH1 IH2 IH3".
+ rel_bind_ap e0 e0' "IH1" v0 v0' "IH1".
+ iDestruct "IH1" as (w w') "[(% & % & #Hw)|(% & % & #Hw)]"; simplify_eq/=;
+ rel_case_l; rel_case_r.
+ - iApply (bin_log_related_app with "IH2").
+ value_case.
+ - iApply (bin_log_related_app with "IH3").
+ value_case.
+ Qed.
+
+ Lemma bin_log_related_if Δ Γ e0 e1 e2 e0' e1' e2' τ :
+ ({Δ;Γ} ⊨ e0 ≤log≤ e0' : TBool) -∗
+ ({Δ;Γ} ⊨ e1 ≤log≤ e1' : τ) -∗
+ ({Δ;Γ} ⊨ e2 ≤log≤ e2' : τ) -∗
+ {Δ;Γ} ⊨ If e0 e1 e2 ≤log≤ If e0' e1' e2' : τ.
+ Proof.
+ iIntros "IH1 IH2 IH3".
+ rel_bind_ap e0 e0' "IH1" v0 v0' "IH1".
+ iDestruct "IH1" as ([]) "[% %]"; simplify_eq/=;
+ rel_if_l; rel_if_r; iAssumption.
+ Qed.
+
+ Lemma bin_log_related_fork Δ Γ e e' :
+ ({Δ;Γ} ⊨ e ≤log≤ e' : TUnit) -∗
+ {Δ;Γ} ⊨ Fork e ≤log≤ Fork e' : TUnit.
+ Proof.
+ iIntros "IH".
+ rewrite /bin_log_related refines_eq /refines_def.
+ iIntros (vvs Ï) "#Hs HΓ"; iIntros (j K) "Hj /=".
+ tp_fork j as i "Hi". iModIntro.
+ iApply (wp_fork with "[-Hj]").
+ - iNext. iSpecialize ("IH" with "Hs HΓ").
+ iSpecialize ("IH" $! i []). simpl.
+ iSpecialize ("IH" with "Hi").
+ iMod "IH". iApply (wp_wand with "IH"). eauto.
+ - iExists #(); eauto.
+ Qed.
+
+ Lemma bin_log_related_load Δ Γ e e' τ :
+ ({Δ;Γ} ⊨ e ≤log≤ e' : (Tref τ)) -∗
+ {Δ;Γ} ⊨ Load e ≤log≤ Load e' : τ.
+ Proof.
+ iIntros "IH".
+ rel_bind_ap e e' "IH" v v' "IH".
+ iDestruct "IH" as (l l') "(% & % & Hinv)"; simplify_eq/=.
+ rel_load_l_atomic.
+ iInv (relocN .@ "ref" .@ (l,l')) as (w w') "[Hw1 [>Hw2 #Hw]]" "Hclose"; simpl.
+ iModIntro. iExists _; iFrame "Hw1".
+ iNext. iIntros "Hw1".
+ rel_load_r.
+ iMod ("Hclose" with "[Hw1 Hw2]").
+ { iNext. iExists w,w'; by iFrame. }
+ value_case.
+ Qed.
+
+ Lemma bin_log_related_store Δ Γ e1 e2 e1' e2' τ :
+ ({Δ;Γ} ⊨ e1 ≤log≤ e1' : (Tref τ)) -∗
+ ({Δ;Γ} ⊨ e2 ≤log≤ e2' : τ) -∗
+ {Δ;Γ} ⊨ Store e1 e2 ≤log≤ Store e1' e2' : TUnit.
+ Proof.
+ iIntros "IH1 IH2".
+ rel_bind_ap e2 e2' "IH2" w w' "IH2".
+ rel_bind_ap e1 e1' "IH1" v v' "IH1".
+ iDestruct "IH1" as (l l') "(% & % & Hinv)"; simplify_eq/=.
+ rel_store_l_atomic.
+ iInv (relocN .@ "ref" .@ (l,l')) as (v v') "[Hv1 [>Hv2 #Hv]]" "Hclose".
+ iModIntro. iExists _; iFrame "Hv1".
+ iNext. iIntros "Hw1".
+ rel_store_r.
+ iMod ("Hclose" with "[Hw1 Hv2 IH2]").
+ { iNext; iExists _, _; simpl; iFrame. }
+ value_case.
+ Qed.
+
+ Lemma bin_log_related_CAS Δ Γ e1 e2 e3 e1' e2' e3' τ
+ (HEqτ : EqType τ)
+ (HUbτ : UnboxedType τ) :
+ ({Δ;Γ} ⊨ e1 ≤log≤ e1' : Tref τ) -∗
+ ({Δ;Γ} ⊨ e2 ≤log≤ e2' : τ) -∗
+ ({Δ;Γ} ⊨ e3 ≤log≤ e3' : τ) -∗
+ {Δ;Γ} ⊨ CAS e1 e2 e3 ≤log≤ CAS e1' e2' e3' : TBool.
+ Proof.
+ iIntros "IH1 IH2 IH3".
+ rel_bind_ap e3 e3' "IH3" v3 v3' "#IH3".
+ rel_bind_ap e2 e2' "IH2" v2 v2' "#IH2".
+ rel_bind_ap e1 e1' "IH1" v1 v1' "#IH1".
+ iDestruct "IH1" as (l l') "(% & % & Hinv)"; simplify_eq/=.
+ iDestruct (unboxed_type_sound with "IH2") as "[% %]"; try fast_done.
+ iDestruct (eq_type_sound with "IH2") as "%"; first fast_done.
+ iDestruct (eq_type_sound with "IH3") as "%"; first fast_done.
+ simplify_eq. rel_cas_l_atomic.
+ iInv (relocN .@ "ref" .@ (l,l')) as (v1 v1') "[Hv1 [>Hv2 #Hv]]" "Hclose".
+ iModIntro. iExists _; iFrame. simpl.
+ destruct (decide (v1 = v2')) as [|Hneq]; subst.
+ - iSplitR; first by (iIntros (?); contradiction).
+ iIntros (?). iNext. iIntros "Hv1".
+ iDestruct (eq_type_sound with "Hv") as "%"; first fast_done.
+ rel_cas_suc_r.
+ iMod ("Hclose" with "[-]").
+ { iNext; iExists _, _; by iFrame. }
+ rel_values.
+ - iSplitL; last by (iIntros (?); congruence).
+ iIntros (?). iNext. iIntros "Hv1".
+ iDestruct (eq_type_sound with "Hv") as "%"; first fast_done.
+ rel_cas_fail_r.
+ iMod ("Hclose" with "[-]").
+ { iNext; iExists _, _; by iFrame. }
+ rel_values.
+ Qed.
+
+ Lemma bin_log_related_tlam Δ Γ (e e' : expr) τ :
+ (∀ (A : lty2),
+ □ ({(A::Δ);⤉Γ} ⊨ e ≤log≤ e' : τ)) -∗
+ {Δ;Γ} ⊨ (Λ: e) ≤log≤ (Λ: e') : TForall τ.
+ Proof.
+ iIntros "H".
+ (* TODO: here it is also better to use some sort of characterization
+ of the semantic type for forall *)
+ rewrite /bin_log_related refines_eq.
+ iIntros (vvs Ï) "#Hs #HΓ"; iIntros (j K) "Hj /=".
+ iModIntro. tp_pure j _. wp_pures. iExists _; iFrame.
+ iIntros (A). iDestruct ("H" $! A) as "#H". iAlways.
+ iSpecialize ("H" $! vvs with "Hs [HΓ]"); auto.
+ { rewrite -map_fmap_compose /=. admit. }
+ iIntros (j' K') "Hj". iModIntro.
+ wp_pures. tp_pure j' _.
+ iMod ("H" $! j' K' with "Hj") as "H".
+ iApply "H".
+ Admitted.
+
+ Lemma bin_log_related_alloc Δ Γ e e' τ :
+ ({Δ;Γ} ⊨ e ≤log≤ e' : τ) -∗
+ {Δ;Γ} ⊨ Alloc e ≤log≤ Alloc e' : Tref τ.
+ Proof.
+ iIntros "IH".
+ rel_bind_ap e e' "IH" v v' "IH".
+ rel_alloc_l l as "Hl".
+ rel_alloc_r k as "Hk".
+ iMod (inv_alloc (relocN .@ "ref" .@ (l,k)) _ (∃ w1 w2,
+ l ↦ w1 ∗ k ↦ₛ w2 ∗ interp τ Δ w1 w2)%I with "[Hl Hk IH]") as "HN"; eauto.
+ { iNext. iExists v, v'; simpl; iFrame. }
+ rel_values. iExists l, k. eauto.
+ Qed.
+
+ Lemma bin_log_related_ref_binop Δ Γ e1 e2 e1' e2' τ :
+ ({Δ;Γ} ⊨ e1 ≤log≤ e1' : Tref τ) -∗
+ ({Δ;Γ} ⊨ e2 ≤log≤ e2' : Tref τ) -∗
+ {Δ;Γ} ⊨ BinOp EqOp e1 e2 ≤log≤ BinOp EqOp e1' e2' : TBool.
+ Proof.
+ iIntros "IH1 IH2".
+ rel_bind_ap e2 e2' "IH2" v2 v2' "#IH2".
+ rel_bind_ap e1 e1' "IH1" v1 v1' "#IH1".
+ iDestruct "IH1" as (l1 l2) "[% [% #Hl]]"; simplify_eq/=.
+ iDestruct "IH2" as (l1' l2') "[% [% #Hl']]"; simplify_eq/=.
+ rel_op_l. rel_op_r.
+ destruct (decide (l1 = l1')) as [->|?].
+ - iMod (interp_ref_funct _ _ l1' l2 l2' with "[Hl Hl']") as %->.
+ { solve_ndisj. }
+ { iSplit; iExists _,_; eauto. }
+ rewrite !bool_decide_true //.
+ value_case.
+ - destruct (decide (l2 = l2')) as [->|?].
+ + iMod (interp_ref_inj _ _ l2' l1 l1' with "[Hl Hl']") as %->.
+ { solve_ndisj. }
+ { iSplit; iExists _,_; eauto. }
+ congruence.
+ + rewrite !bool_decide_false //; try congruence.
+ value_case.
+ Qed.
+
+ Lemma bin_log_related_nat_binop Δ Γ op e1 e2 e1' e2' τ :
+ binop_nat_res_type op = Some τ →
+ ({Δ;Γ} ⊨ e1 ≤log≤ e1' : TNat) -∗
+ ({Δ;Γ} ⊨ e2 ≤log≤ e2' : TNat) -∗
+ {Δ;Γ} ⊨ BinOp op e1 e2 ≤log≤ BinOp op e1' e2' : τ.
+ Proof.
+ iIntros (Hopτ) "IH1 IH2".
+ rel_bind_ap e2 e2' "IH2" v2 v2' "IH2".
+ rel_bind_ap e1 e1' "IH1" v1 v1' "IH1".
+ iDestruct "IH1" as (n) "[% %]"; simplify_eq/=.
+ iDestruct "IH2" as (n') "[% %]"; simplify_eq/=.
+ destruct (binop_nat_typed_safe op n n' _ Hopτ) as [v' Hopv'].
+ rel_op_l; eauto.
+ rel_op_r; eauto.
+ value_case.
+ destruct op; inversion Hopv'; simplify_eq/=; try case_match; eauto.
+ Qed.
+
+ Lemma bin_log_related_bool_binop Δ Γ op e1 e2 e1' e2' τ :
+ binop_bool_res_type op = Some τ →
+ ({Δ;Γ} ⊨ e1 ≤log≤ e1' : TBool) -∗
+ ({Δ;Γ} ⊨ e2 ≤log≤ e2' : TBool) -∗
+ {Δ;Γ} ⊨ BinOp op e1 e2 ≤log≤ BinOp op e1' e2' : τ.
+ Proof.
+ iIntros (Hopτ) "IH1 IH2".
+ rel_bind_ap e2 e2' "IH2" v2 v2' "IH2".
+ rel_bind_ap e1 e1' "IH1" v1 v1' "IH1".
+ iDestruct "IH1" as (n) "[% %]"; simplify_eq/=.
+ iDestruct "IH2" as (n') "[% %]"; simplify_eq/=.
+ destruct (binop_bool_typed_safe op n n' _ Hopτ) as [v' Hopv'].
+ rel_op_l; eauto.
+ rel_op_r; eauto.
+ value_case.
+ destruct op; inversion Hopv'; simplify_eq/=; eauto.
+ Qed.
+
+ (* TODO *)
+
+ From Autosubst Require Import Autosubst.
+ Lemma bin_log_related_tapp' Δ Γ e e' τ τ' :
+ ({Δ;Γ} ⊨ e ≤log≤ e' : TForall τ) -∗
+ {Δ;Γ} ⊨ (TApp e) ≤log≤ (TApp e') : τ.[τ'/].
+ Proof.
+ (* TODO: here it is also better to use some sort of characterization
+ of the semantic type for forall *)
+ iIntros "IH".
+ rel_bind_ap e e' "IH" v v' "IH".
+ iDestruct ("IH" $! (interp τ' Δ)) as "#IH".
+ iApply refines_ret'; auto.
+ admit.
+ Admitted.
+
+(*
+ Lemma bin_log_related_tapp (τi : D) Δ Γ e e' τ :
+ {Δ;Γ} ⊨ e ≤log≤ e' : TForall τ -∗
+ {τi::Δ;⤉Γ} ⊨ TApp e ≤log≤ TApp e' : τ.
+ Proof.
+ rewrite bin_log_related_eq.
+ iIntros "IH".
+ iIntros (vvs Ï) "#Hs #HΓ"; iIntros (j K) "Hj /=".
+ wp_bind (env_subst _ e).
+ tp_bind j (env_subst _ e').
+ iSpecialize ("IH" with "Hs [HΓ] Hj").
+ { by rewrite interp_env_ren. }
+ iMod "IH" as "IH /=". iModIntro.
+ iApply (wp_wand with "IH").
+ iIntros (v). iDestruct 1 as (v') "[Hj #IH]".
+ iMod ("IH" $! Ï„i with "Hj"); auto.
+ Qed.
+
+ Lemma bin_log_related_fold Δ Γ e e' τ :
+ {Δ;Γ} ⊨ e ≤log≤ e' : τ.[(TRec τ)/] -∗
+ {Δ;Γ} ⊨ Fold e ≤log≤ Fold e' : TRec τ.
+ Proof.
+ iIntros "IH".
+ rel_bind_ap e e' "IH" v v' "IH".
+ value_case.
+ rewrite fixpoint_unfold /= -interp_subst.
+ iExists (_, _); eauto.
+ Qed.
+
+ Lemma bin_log_related_unfold Δ Γ e e' τ :
+ {Δ;Γ} ⊨ e ≤log≤ e' : TRec τ -∗
+ {Δ;Γ} ⊨ Unfold e ≤log≤ Unfold e' : τ.[(TRec τ)/].
+ Proof.
+ iIntros "IH".
+ rel_bind_ap e e' "IH" v v' "IH".
+ rewrite /= fixpoint_unfold /=.
+ change (fixpoint _) with (interp ⊤ (TRec τ) Δ).
+ iDestruct "IH" as ([w w']) "#[% Hiz]"; simplify_eq/=.
+ rel_unfold_l.
+ rel_unfold_r.
+ value_case. by rewrite -interp_subst.
+ Qed.
+
+ Lemma bin_log_related_pack' Δ Γ e e' τ τ' :
+ {Δ;Γ} ⊨ e ≤log≤ e' : τ.[τ'/] -∗
+ {Δ;Γ} ⊨ Pack e ≤log≤ Pack e' : TExists τ.
+ Proof.
+ iIntros "IH".
+ rel_bind_ap e e' "IH" v v' "#IH".
+ value_case.
+ iExists (v, v'). iModIntro. simpl; iSplit; eauto.
+ iExists (⟦ τ' ⟧ Δ).
+ by rewrite interp_subst.
+ Qed.
+
+ Lemma bin_log_related_pack (τi : D) Δ Γ e e' τ :
+ {τi::Δ;⤉Γ} ⊨ e ≤log≤ e' : τ -∗
+ {Δ;Γ} ⊨ Pack e ≤log≤ Pack e' : TExists τ.
+ Proof.
+ rewrite bin_log_related_eq.
+ iIntros "IH".
+ iIntros (vvs Ï) "#Hs #HΓ"; iIntros (j K) "Hj /=".
+ wp_bind (env_subst _ e).
+ tp_bind j (env_subst _ e').
+ iSpecialize ("IH" with "Hs [HΓ] Hj").
+ { by rewrite interp_env_ren. }
+ iMod "IH" as "IH /=". iModIntro.
+ iApply (wp_wand with "IH").
+ iIntros (v). iDestruct 1 as (v') "[Hj #IH]".
+ iApply wp_value.
+ iExists (PackV v'). simpl. iFrame.
+ iExists (v, v'). simpl; iSplit; eauto.
+ Qed.
+
+ Lemma bin_log_related_unpack Δ Γ e1 e1' e2 e2' τ τ2 :
+ {Δ;Γ} ⊨ e1 ≤log≤ e1' : TExists τ -∗
+ (∀ τi : D,
+ {τi::Δ;⤉Γ} ⊨
+ e2 ≤log≤ e2' : TArrow τ (asubst (ren (+1)) τ2)) -∗
+ {Δ;Γ} ⊨ Unpack e1 e2 ≤log≤ Unpack e1' e2' : τ2.
+ Proof.
+ rewrite bin_log_related_eq.
+ iIntros "IH1 IH2".
+ iIntros (vvs Ï) "#Hs #HΓ"; iIntros (j K) "Hj /=".
+ smart_bind j (env_subst _ e1) (env_subst _ e1') "IH1" v v' "IH1".
+ iDestruct "IH1" as ([w w']) "[% #HÏ„i]"; simplify_eq/=.
+ iDestruct "HÏ„i" as (Ï„i) "#HÏ„i"; simplify_eq/=.
+ wp_unpack.
+ iApply fupd_wp.
+ tp_pack j; eauto. iModIntro.
+ iSpecialize ("IH2" $! τi with "Hs [HΓ]"); auto.
+ { by rewrite interp_env_ren. }
+ tp_bind j (env_subst (snd <$> vvs) e2').
+ iMod ("IH2" with "Hj") as "IH2". simpl.
+ wp_bind (env_subst (fst <$> vvs) e2).
+ iApply (wp_wand with "IH2").
+ iIntros (v). iDestruct 1 as (v') "[Hj #Hvv']".
+ iSpecialize ("Hvv'" $! (w,w') with "HÏ„i Hj"). simpl.
+ iMod "Hvv'".
+ iApply (wp_wand with "Hvv'"). clear v v'.
+ iIntros (v). iDestruct 1 as (v') "[Hj #Hvv']".
+ rewrite (interp_weaken [] [τi] Δ _ τ2) /=.
+ eauto.
+ Qed.
+
+
+ Theorem binary_fundamental Δ Γ e τ :
+ Γ ⊢ₜ e : τ → ({Δ;Γ} ⊨ e ≤log≤ e : τ)%I.
+ Proof.
+ intros Ht. iInduction Ht as [] "IH" forall (Δ).
+ - by iApply bin_log_related_var.
+ - iApply bin_log_related_unit.
+ - by iApply bin_log_related_nat.
+ - by iApply bin_log_related_bool.
+ - by iApply (bin_log_related_nat_binop with "[]").
+ - by iApply (bin_log_related_bool_binop with "[]").
+ - by iApply bin_log_related_ref_binop.
+ - by iApply (bin_log_related_pair with "[]").
+ - by iApply bin_log_related_fst.
+ - by iApply bin_log_related_snd.
+ - by iApply bin_log_related_injl.
+ - by iApply bin_log_related_injr.
+ - by iApply (bin_log_related_case with "[] []").
+ - by iApply (bin_log_related_if with "[] []").
+ - assert (Closed (x :b: f :b: dom (gset string) Γ) e).
+ { apply typed_X_closed in Ht.
+ rewrite !dom_insert_binder in Ht.
+ revert Ht. destruct x,f; cbn-[union];
+ (* TODO: why is simple rewriting is not sufficient here? *)
+ erewrite ?(left_id ∅); eauto.
+ all: apply _. }
+ iApply (bin_log_related_rec with "[]"); eauto.
+ - by iApply (bin_log_related_app with "[] []").
+ - assert (Closed (dom _ Γ) e).
+ { apply typed_X_closed in Ht.
+ pose (K:=(dom_fmap (asubst (ren (+1))) Γ (D:=stringset))).
+ fold_leibniz. by rewrite -K. }
+ iApply bin_log_related_tlam; eauto.
+ - by iApply bin_log_related_tapp'.
+ - by iApply bin_log_related_fold.
+ - by iApply bin_log_related_unfold.
+ - by iApply bin_log_related_pack'.
+ - iApply (bin_log_related_unpack with "[]"); eauto.
+ - by iApply bin_log_related_fork.
+ - by iApply bin_log_related_alloc.
+ - by iApply bin_log_related_load.
+ - by iApply (bin_log_related_store with "[]").
+ - by iApply (bin_log_related_CAS with "[] []").
+ Qed.
+*)
+End fundamental.
diff --git a/theories/typing/types.v b/theories/typing/types.v
index 87da16ae383260f0555821b13b0244f70002a66b..2dad64f3bd4a107fc390198d8b79a423dc5d6fd6 100644
--- a/theories/typing/types.v
+++ b/theories/typing/types.v
@@ -139,3 +139,11 @@ Inductive typed (Γ : stringmap type) : expr → type → Prop :=
EqType τ → Γ ⊢ₜ e1 : Tref τ → Γ ⊢ₜ e2 : τ → Γ ⊢ₜ e3 : τ →
Γ ⊢ₜ CAS e1 e2 e3 : TBool
where "Γ ⊢ₜ e : τ" := (typed Γ e τ).
+
+Lemma binop_nat_typed_safe (op : bin_op) (n1 n2 : Z) Ï„ :
+ binop_nat_res_type op = Some τ → is_Some (bin_op_eval op #n1 #n2).
+Proof. destruct op; simpl; eauto. Qed.
+
+Lemma binop_bool_typed_safe (op : bin_op) (b1 b2 : bool) Ï„ :
+ binop_bool_res_type op = Some τ → is_Some (bin_op_eval op #b1 #b2).
+Proof. destruct op; naive_solver. Qed.