diff --git a/base_logic/derived.v b/base_logic/derived.v
index d3debb15f99b56d654520ada30b32adf88fc1df7..5432b0b1e677cc5bb253f615801b46b43c7a19f3 100644
--- a/base_logic/derived.v
+++ b/base_logic/derived.v
@@ -352,14 +352,8 @@ Lemma wand_elim_r P Q : P â˜… (P -â˜… Q) âŠ¢ Q.
 Proof. rewrite (comm _ P); apply wand_elim_l. Qed.
 Lemma wand_elim_r' P Q R : (Q âŠ¢ P -â˜… R) â†’ P â˜… Q âŠ¢ R.
 Proof. intros ->; apply wand_elim_r. Qed.
-Lemma wand_apply_l P Q Q' R R' : (P âŠ¢ Q' -â˜… R') â†’ (R' âŠ¢ R) â†’ (Q âŠ¢ Q') â†’ P â˜… Q âŠ¢ R.
-Proof. intros -> -> <-; apply wand_elim_l. Qed.
-Lemma wand_apply_r P Q Q' R R' : (P âŠ¢ Q' -â˜… R') â†’ (R' âŠ¢ R) â†’ (Q âŠ¢ Q') â†’ Q â˜… P âŠ¢ R.
-Proof. intros -> -> <-; apply wand_elim_r. Qed.
-Lemma wand_apply_l' P Q Q' R : (P âŠ¢ Q' -â˜… R) â†’ (Q âŠ¢ Q') â†’ P â˜… Q âŠ¢ R.
-Proof. intros -> <-; apply wand_elim_l. Qed.
-Lemma wand_apply_r' P Q Q' R : (P âŠ¢ Q' -â˜… R) â†’ (Q âŠ¢ Q') â†’ Q â˜… P âŠ¢ R.
-Proof. intros -> <-; apply wand_elim_r. Qed.
+Lemma wand_apply P Q R S : (P âŠ¢ Q -â˜… R) â†’ (S âŠ¢ P â˜… Q) â†’ S âŠ¢ R.
+Proof. intros HR%wand_elim_l' HQ. by rewrite HQ. Qed.
 Lemma wand_frame_l P Q R : (Q -â˜… R) âŠ¢ P â˜… Q -â˜… P â˜… R.
 Proof. apply wand_intro_l. rewrite -assoc. apply sep_mono_r, wand_elim_r. Qed.
 Lemma wand_frame_r P Q R : (Q -â˜… R) âŠ¢ Q â˜… P -â˜… R â˜… P.
diff --git a/heap_lang/derived.v b/heap_lang/derived.v
index cd65d6692e343290e2165cd6d0b448a70f0daba3..9a95ee5c896a723d668ce27a506ab672fcae09cb 100644
--- a/heap_lang/derived.v
+++ b/heap_lang/derived.v
@@ -46,8 +46,8 @@ Lemma wp_match_inr E e0 x1 e1 x2 e2 Î¦ :
 Proof. intros. by rewrite -wp_case_inr // -[X in _ âŠ¢ X]later_intro -wp_let. Qed.
 
 Lemma wp_le E (n1 n2 : Z) P Î¦ :
-  (n1 â‰¤ n2 â†’ P âŠ¢ â–· |={E}=> Î¦ (LitV (LitBool true))) â†’
-  (n2 < n1 â†’ P âŠ¢ â–· |={E}=> Î¦ (LitV (LitBool false))) â†’
+  (n1 â‰¤ n2 â†’ P âŠ¢ â–· Î¦ (LitV (LitBool true))) â†’
+  (n2 < n1 â†’ P âŠ¢ â–· Î¦ (LitV (LitBool false))) â†’
   P âŠ¢ WP BinOp LeOp (Lit (LitInt n1)) (Lit (LitInt n2)) @ E {{ Î¦ }}.
 Proof.
   intros. rewrite -wp_bin_op //; [].
@@ -55,8 +55,8 @@ Proof.
 Qed.
 
 Lemma wp_lt E (n1 n2 : Z) P Î¦ :
-  (n1 < n2 â†’ P âŠ¢ â–· |={E}=> Î¦ (LitV (LitBool true))) â†’
-  (n2 â‰¤ n1 â†’ P âŠ¢ â–· |={E}=> Î¦ (LitV (LitBool false))) â†’
+  (n1 < n2 â†’ P âŠ¢ â–· Î¦ (LitV (LitBool true))) â†’
+  (n2 â‰¤ n1 â†’ P âŠ¢ â–· Î¦ (LitV (LitBool false))) â†’
   P âŠ¢ WP BinOp LtOp (Lit (LitInt n1)) (Lit (LitInt n2)) @ E {{ Î¦ }}.
 Proof.
   intros. rewrite -wp_bin_op //; [].
@@ -65,8 +65,8 @@ Qed.
 
 Lemma wp_eq E e1 e2 v1 v2 P Î¦ :
   to_val e1 = Some v1 â†’ to_val e2 = Some v2 â†’
-  (v1 = v2 â†’ P âŠ¢ â–· |={E}=> Î¦ (LitV (LitBool true))) â†’
-  (v1 â‰  v2 â†’ P âŠ¢ â–· |={E}=> Î¦ (LitV (LitBool false))) â†’
+  (v1 = v2 â†’ P âŠ¢ â–· Î¦ (LitV (LitBool true))) â†’
+  (v1 â‰  v2 â†’ P âŠ¢ â–· Î¦ (LitV (LitBool false))) â†’
   P âŠ¢ WP BinOp EqOp e1 e2 @ E {{ Î¦ }}.
 Proof.
   intros. rewrite -wp_bin_op //; [].
diff --git a/heap_lang/heap.v b/heap_lang/heap.v
index 7f0dea5253dcbb2524ccb21068d1f56cc2fa1ed4..43d374169f01ec1b650edd8de9058a0b02b15a8a 100644
--- a/heap_lang/heap.v
+++ b/heap_lang/heap.v
@@ -122,12 +122,12 @@ Section heap.
   (** Weakest precondition *)
   Lemma wp_alloc E e v :
     to_val e = Some v â†’ nclose heapN âŠ† E â†’
-    {{{ heap_ctx }}} Alloc e @ E {{{ l; LitV (LitLoc l), l â†¦ v }}}.
+    {{{ heap_ctx }}} Alloc e @ E {{{ l, RET LitV (LitLoc l); l â†¦ v }}}.
   Proof.
-    iIntros (<-%of_to_val ? Î¦) "[#Hinv HÎ¦]". rewrite /heap_ctx.
+    iIntros (<-%of_to_val ? Î¦) "#Hinv HÎ¦". rewrite /heap_ctx.
     iMod (auth_empty heap_name) as "Ha".
     iMod (auth_open with "[$Hinv $Ha]") as (Ïƒ) "(%&HÏƒ&Hcl)"; first done.
-    iApply wp_alloc_pst. iFrame "HÏƒ". iNext. iIntros (l) "[% HÏƒ] !>".
+    iApply (wp_alloc_pst with "HÏƒ"). iNext. iIntros (l) "[% HÏƒ]".
     iMod ("Hcl" with "* [HÏƒ]") as "Ha".
     { iFrame. iPureIntro. rewrite to_heap_insert.
       eapply alloc_singleton_local_update; by auto using lookup_to_heap_None. }
@@ -137,26 +137,26 @@ Section heap.
   Lemma wp_load E l q v :
     nclose heapN âŠ† E â†’
     {{{ heap_ctx â˜… â–· l â†¦{q} v }}} Load (Lit (LitLoc l)) @ E
-    {{{; v, l â†¦{q} v }}}.
+    {{{ RET v; l â†¦{q} v }}}.
   Proof.
-    iIntros (? Î¦) "[[#Hinv >Hl] HÎ¦]".
+    iIntros (? Î¦) "[#Hinv >Hl] HÎ¦".
     rewrite /heap_ctx heap_mapsto_eq /heap_mapsto_def.
     iMod (auth_open with "[$Hinv $Hl]") as (Ïƒ) "(%&HÏƒ&Hcl)"; first done.
-    iApply (wp_load_pst _ Ïƒ); first eauto using heap_singleton_included.
-    iIntros "{$HÏƒ}"; iNext; iIntros "HÏƒ !>".
+    iApply (wp_load_pst _ Ïƒ with "HÏƒ"); first eauto using heap_singleton_included.
+    iNext; iIntros "HÏƒ".
     iMod ("Hcl" with "* [HÏƒ]") as "Ha"; first eauto. by iApply "HÎ¦".
   Qed.
 
   Lemma wp_store E l v' e v :
     to_val e = Some v â†’ nclose heapN âŠ† E â†’
     {{{ heap_ctx â˜… â–· l â†¦ v' }}} Store (Lit (LitLoc l)) e @ E
-    {{{; LitV LitUnit, l â†¦ v }}}.
+    {{{ RET LitV LitUnit; l â†¦ v }}}.
   Proof.
-    iIntros (<-%of_to_val ? Î¦) "[[#Hinv >Hl] HÎ¦]".
+    iIntros (<-%of_to_val ? Î¦) "[#Hinv >Hl] HÎ¦".
     rewrite /heap_ctx heap_mapsto_eq /heap_mapsto_def.
     iMod (auth_open with "[$Hinv $Hl]") as (Ïƒ) "(%&HÏƒ&Hcl)"; first done.
-    iApply (wp_store_pst _ Ïƒ); first eauto using heap_singleton_included.
-    iIntros "{$HÏƒ}"; iNext; iIntros "HÏƒ !>". iMod ("Hcl" with "* [HÏƒ]") as "Ha".
+    iApply (wp_store_pst _ Ïƒ with "HÏƒ"); first eauto using heap_singleton_included.
+    iNext; iIntros "HÏƒ". iMod ("Hcl" with "* [HÏƒ]") as "Ha".
     { iFrame. iPureIntro. rewrite to_heap_insert.
       eapply singleton_local_update, exclusive_local_update; last done.
       by eapply heap_singleton_included'. }
@@ -166,26 +166,26 @@ Section heap.
   Lemma wp_cas_fail E l q v' e1 v1 e2 v2 :
     to_val e1 = Some v1 â†’ to_val e2 = Some v2 â†’ v' â‰  v1 â†’ nclose heapN âŠ† E â†’
     {{{ heap_ctx â˜… â–· l â†¦{q} v' }}} CAS (Lit (LitLoc l)) e1 e2 @ E
-    {{{; LitV (LitBool false), l â†¦{q} v' }}}.
+    {{{ RET LitV (LitBool false); l â†¦{q} v' }}}.
   Proof.
-    iIntros (<-%of_to_val <-%of_to_val ?? Î¦) "[[#Hinv >Hl] HÎ¦]".
+    iIntros (<-%of_to_val <-%of_to_val ?? Î¦) "[#Hinv >Hl] HÎ¦".
     rewrite /heap_ctx heap_mapsto_eq /heap_mapsto_def.
     iMod (auth_open with "[$Hinv $Hl]") as (Ïƒ) "(%&HÏƒ&Hcl)"; first done.
-    iApply (wp_cas_fail_pst _ Ïƒ); [eauto using heap_singleton_included|done|].
-    iIntros "{$HÏƒ}"; iNext; iIntros "HÏƒ !>".
+    iApply (wp_cas_fail_pst _ Ïƒ with "HÏƒ"); [eauto using heap_singleton_included|done|].
+    iNext; iIntros "HÏƒ".
     iMod ("Hcl" with "* [HÏƒ]") as "Ha"; first eauto. by iApply "HÎ¦".
   Qed.
 
   Lemma wp_cas_suc E l e1 v1 e2 v2 :
     to_val e1 = Some v1 â†’ to_val e2 = Some v2 â†’ nclose heapN âŠ† E â†’
     {{{ heap_ctx â˜… â–· l â†¦ v1 }}} CAS (Lit (LitLoc l)) e1 e2 @ E
-    {{{; LitV (LitBool true), l â†¦ v2 }}}.
+    {{{ RET LitV (LitBool true); l â†¦ v2 }}}.
   Proof.
-    iIntros (<-%of_to_val <-%of_to_val ? Î¦) "[[#Hinv >Hl] HÎ¦]".
+    iIntros (<-%of_to_val <-%of_to_val ? Î¦) "[#Hinv >Hl] HÎ¦".
     rewrite /heap_ctx heap_mapsto_eq /heap_mapsto_def.
     iMod (auth_open with "[$Hinv $Hl]") as (Ïƒ) "(%&HÏƒ&Hcl)"; first done.
-    iApply (wp_cas_suc_pst _ Ïƒ); first eauto using heap_singleton_included.
-    iIntros "{$HÏƒ}"; iNext; iIntros "HÏƒ !>". iMod ("Hcl" with "* [HÏƒ]") as "Ha".
+    iApply (wp_cas_suc_pst _ Ïƒ with "HÏƒ"); first by eauto using heap_singleton_included.
+    iNext. iIntros "HÏƒ". iMod ("Hcl" with "* [HÏƒ]") as "Ha".
     { iFrame. iPureIntro. rewrite to_heap_insert.
       eapply singleton_local_update, exclusive_local_update; last done.
       by eapply heap_singleton_included'. }
diff --git a/heap_lang/lib/barrier/proof.v b/heap_lang/lib/barrier/proof.v
index 9436c07e1bd22d0433797b8262ffab1a4d2682e9..764fa2347341f2acc3f1a3f010cd5555ef9f3815 100644
--- a/heap_lang/lib/barrier/proof.v
+++ b/heap_lang/lib/barrier/proof.v
@@ -92,10 +92,10 @@ Qed.
 (** Actual proofs *)
 Lemma newbarrier_spec (P : iProp Î£) :
   heapN âŠ¥ N â†’
-  {{{ heap_ctx }}} newbarrier #() {{{ l; #l, recv l P â˜… send l P }}}.
+  {{{ heap_ctx }}} newbarrier #() {{{ l, RET #l; recv l P â˜… send l P }}}.
 Proof.
-  iIntros (HN Î¦) "[#? HÎ¦]".
-  rewrite /newbarrier /=. wp_seq. wp_alloc l as "Hl".
+  iIntros (HN Î¦) "#? HÎ¦".
+  rewrite -wp_fupd /newbarrier /=. wp_seq. wp_alloc l as "Hl".
   iApply ("HÎ¦" with ">[-]").
   iMod (saved_prop_alloc (F:=idCF) P) as (Î³) "#?".
   iMod (sts_alloc (barrier_inv l P) _ N (State Low {[ Î³ ]}) with "[-]")
@@ -117,10 +117,10 @@ Proof.
 Qed.
 
 Lemma signal_spec l P :
-  {{{ send l P â˜… P }}} signal #l {{{; #(), True }}}.
+  {{{ send l P â˜… P }}} signal #l {{{ RET #(); True }}}.
 Proof.
   rewrite /signal /send /barrier_ctx /=.
-  iIntros (Î¦) "((Hs&HP)&HÎ¦)"; iDestruct "Hs" as (Î³) "[#(%&Hh&Hsts) HÎ³]". wp_let.
+  iIntros (Î¦) "(Hs&HP) HÎ¦"; iDestruct "Hs" as (Î³) "[#(%&Hh&Hsts) HÎ³]". wp_let.
   iMod (sts_openS (barrier_inv l P) _ _ Î³ with "[HÎ³]")
     as ([p I]) "(% & [Hl Hr] & Hclose)"; eauto.
   destruct p; [|done]. wp_store.
@@ -133,10 +133,10 @@ Proof.
 Qed.
 
 Lemma wait_spec l P:
-  {{{ recv l P }}} wait #l {{{ ; #(), P }}}.
+  {{{ recv l P }}} wait #l {{{ RET #(); P }}}.
 Proof.
   rename P into R; rewrite /recv /barrier_ctx.
-  iIntros (Î¦) "[Hr HÎ¦]"; iDestruct "Hr" as (Î³ P Q i) "(#(%&Hh&Hsts)&HÎ³&#HQ&HQR)".
+  iIntros (Î¦) "Hr HÎ¦"; iDestruct "Hr" as (Î³ P Q i) "(#(%&Hh&Hsts)&HÎ³&#HQ&HQR)".
   iLÃ¶b as "IH". wp_rec. wp_bind (! _)%E.
   iMod (sts_openS (barrier_inv l P) _ _ Î³ with "[HÎ³]")
     as ([p I]) "(% & [Hl Hr] & Hclose)"; eauto.
@@ -158,7 +158,7 @@ Proof.
       iNext. rewrite {2}/barrier_inv /=; iFrame "Hl". iExists Î¨; iFrame. auto. }
     iPoseProof (saved_prop_agree i Q (Î¨ i) with "[#]") as "Heq"; first by auto.
     iModIntro. wp_if.
-    iModIntro. iApply "HÎ¦". iApply "HQR". by iRewrite "Heq".
+    iApply "HÎ¦". iApply "HQR". by iRewrite "Heq".
 Qed.
 
 Lemma recv_split E l P1 P2 :
diff --git a/heap_lang/lib/barrier/specification.v b/heap_lang/lib/barrier/specification.v
index 319dd0be941307eabc4823e1bf0b6d677ca40116..c0de6dd97b73b9b7fcb0d23bc392441152673cd3 100644
--- a/heap_lang/lib/barrier/specification.v
+++ b/heap_lang/lib/barrier/specification.v
@@ -20,10 +20,10 @@ Proof.
   intros HN.
   exists (Î» l, CofeMor (recv N l)), (Î» l, CofeMor (send N l)).
   split_and?; simpl.
-  - iIntros (P) "#? !# _". iApply (newbarrier_spec _ P); first done.
-    iSplit; first done. iNext. eauto.
-  - iIntros (l P) "!# [Hl HP]". iApply signal_spec; iFrame "Hl HP"; by eauto.
-  - iIntros (l P) "!# Hl". iApply wait_spec; iFrame "Hl"; eauto.
+  - iIntros (P) "#? !# _". iApply (newbarrier_spec _ P with "[]"); [done..|].
+    iNext. eauto.
+  - iIntros (l P) "!# [Hl HP]". iApply (signal_spec with "[$Hl $HP]"). by eauto.
+  - iIntros (l P) "!# Hl". iApply (wait_spec with "Hl"). eauto.
   - iIntros (l P Q) "!#". by iApply recv_split.
   - apply recv_weaken.
 Qed.
diff --git a/heap_lang/lib/counter.v b/heap_lang/lib/counter.v
index 60f534434f849879387697fc8566c238d9c4e878..16a4967301f07a33b4341755c147a9337cc96397 100644
--- a/heap_lang/lib/counter.v
+++ b/heap_lang/lib/counter.v
@@ -35,9 +35,9 @@ Section mono_proof.
 
   Lemma newcounter_mono_spec (R : iProp Î£) :
     heapN âŠ¥ N â†’
-    {{{ heap_ctx }}} newcounter #() {{{ l; #l, mcounter l 0 }}}.
+    {{{ heap_ctx }}} newcounter #() {{{ l, RET #l; mcounter l 0 }}}.
   Proof.
-    iIntros (? Î¦) "[#Hh HÎ¦]". rewrite /newcounter /=. wp_seq. wp_alloc l as "Hl".
+    iIntros (? Î¦) "#Hh HÎ¦". rewrite -wp_fupd /newcounter /=. wp_seq. wp_alloc l as "Hl".
     iMod (own_alloc (â— (O:mnat) â‹… â—¯ (O:mnat))) as (Î³) "[HÎ³ HÎ³']"; first done.
     iMod (inv_alloc N _ (mcounter_inv Î³ l) with "[Hl HÎ³]").
     { iNext. iExists 0%nat. by iFrame. }
@@ -45,9 +45,9 @@ Section mono_proof.
   Qed.
 
   Lemma inc_mono_spec l n :
-    {{{ mcounter l n }}} inc #l {{{; #(), mcounter l (S n) }}}.
+    {{{ mcounter l n }}} inc #l {{{ RET #(); mcounter l (S n) }}}.
   Proof.
-    iIntros (Î¦) "[Hl HÎ¦]". iLÃ¶b as "IH". wp_rec.
+    iIntros (Î¦) "Hl HÎ¦". iLÃ¶b as "IH". wp_rec.
     iDestruct "Hl" as (Î³) "(% & #? & #Hinv & HÎ³f)".
     wp_bind (! _)%E. iInv N as (c) ">[HÎ³ Hl]" "Hclose".
     wp_load. iMod ("Hclose" with "[Hl HÎ³]") as "_"; [iNext; iExists c; by iFrame|].
@@ -70,9 +70,9 @@ Section mono_proof.
   Qed.
 
   Lemma read_mono_spec l j :
-    {{{ mcounter l j }}} read #l {{{ i; #i, â–  (j â‰¤ i)%nat âˆ§ mcounter l i }}}.
+    {{{ mcounter l j }}} read #l {{{ i, RET #i; â–  (j â‰¤ i)%nat âˆ§ mcounter l i }}}.
   Proof.
-    iIntros (Ï•) "[Hc HÎ¦]". iDestruct "Hc" as (Î³) "(% & #? & #Hinv & HÎ³f)".
+    iIntros (Ï•) "Hc HÎ¦". iDestruct "Hc" as (Î³) "(% & #? & #Hinv & HÎ³f)".
     rewrite /read /=. wp_let. iInv N as (c) ">[HÎ³ Hl]" "Hclose". wp_load.
     iDestruct (own_valid_2 with "[$HÎ³ $HÎ³f]")
       as %[?%mnat_included _]%auth_valid_discrete_2.
@@ -112,9 +112,9 @@ Section contrib_spec.
   Lemma newcounter_contrib_spec (R : iProp Î£) :
     heapN âŠ¥ N â†’
     {{{ heap_ctx }}} newcounter #()
-    {{{ Î³ l; #l, ccounter_ctx Î³ l â˜… ccounter Î³ 1 0 }}}.
+    {{{ Î³ l, RET #l; ccounter_ctx Î³ l â˜… ccounter Î³ 1 0 }}}.
   Proof.
-    iIntros (? Î¦) "[#Hh HÎ¦]". rewrite /newcounter /=. wp_seq. wp_alloc l as "Hl".
+    iIntros (? Î¦) "#Hh HÎ¦". rewrite -wp_fupd /newcounter /=. wp_seq. wp_alloc l as "Hl".
     iMod (own_alloc (â— (Some (1%Qp, O%nat)) â‹… â—¯ (Some (1%Qp, 0%nat))))
       as (Î³) "[HÎ³ HÎ³']"; first done.
     iMod (inv_alloc N _ (ccounter_inv Î³ l) with "[Hl HÎ³]").
@@ -124,9 +124,9 @@ Section contrib_spec.
 
   Lemma inc_contrib_spec Î³ l q n :
     {{{ ccounter_ctx Î³ l â˜… ccounter Î³ q n }}} inc #l
-    {{{; #(), ccounter Î³ q (S n) }}}.
+    {{{ RET #(); ccounter Î³ q (S n) }}}.
   Proof.
-    iIntros (Î¦) "((#(%&?&?) & HÎ³f) & HÎ¦)". iLÃ¶b as "IH". wp_rec.
+    iIntros (Î¦) "(#(%&?&?) & HÎ³f) HÎ¦". iLÃ¶b as "IH". wp_rec.
     wp_bind (! _)%E. iInv N as (c) ">[HÎ³ Hl]" "Hclose".
     wp_load. iMod ("Hclose" with "[Hl HÎ³]") as "_"; [iNext; iExists c; by iFrame|].
     iModIntro. wp_let. wp_op.
@@ -145,9 +145,9 @@ Section contrib_spec.
 
   Lemma read_contrib_spec Î³ l q n :
     {{{ ccounter_ctx Î³ l â˜… ccounter Î³ q n }}} read #l
-    {{{ c; #c, â–  (n â‰¤ c)%nat âˆ§ ccounter Î³ q n }}}.
+    {{{ c, RET #c; â–  (n â‰¤ c)%nat âˆ§ ccounter Î³ q n }}}.
   Proof.
-    iIntros (Î¦) "((#(%&?&?) & HÎ³f) & HÎ¦)".
+    iIntros (Î¦) "(#(%&?&?) & HÎ³f) HÎ¦".
     rewrite /read /=. wp_let. iInv N as (c) ">[HÎ³ Hl]" "Hclose". wp_load.
     iDestruct (own_valid_2 with "[$HÎ³ $HÎ³f]")
       as %[[? ?%nat_included]%Some_pair_included_total_2 _]%auth_valid_discrete_2.
@@ -157,9 +157,9 @@ Section contrib_spec.
 
   Lemma read_contrib_spec_1 Î³ l n :
     {{{ ccounter_ctx Î³ l â˜… ccounter Î³ 1 n }}} read #l
-    {{{ n; #n, ccounter Î³ 1 n }}}.
+    {{{ n, RET #n; ccounter Î³ 1 n }}}.
   Proof.
-    iIntros (Î¦) "((#(%&?&?) & HÎ³f) & HÎ¦)".
+    iIntros (Î¦) "(#(%&?&?) & HÎ³f) HÎ¦".
     rewrite /read /=. wp_let. iInv N as (c) ">[HÎ³ Hl]" "Hclose". wp_load.
     iDestruct (own_valid_2 with "[$HÎ³ $HÎ³f]") as %[Hn _]%auth_valid_discrete_2.
     apply (Some_included_exclusive _) in Hn as [= ->]%leibniz_equiv; last done.
diff --git a/heap_lang/lib/lock.v b/heap_lang/lib/lock.v
index 42bc6a572dcdb160d017b0476184733b4f147a94..43f81ecb517a61995abe5797328987b1f0344588 100644
--- a/heap_lang/lib/lock.v
+++ b/heap_lang/lib/lock.v
@@ -18,11 +18,11 @@ Structure lock Î£ `{!heapG Î£} := Lock {
   (* -- operation specs -- *)
   newlock_spec N (R : iProp Î£) :
     heapN âŠ¥ N â†’
-    {{{ heap_ctx â˜… R }}} newlock #() {{{ lk Î³; lk, is_lock N Î³ lk R }}};
+    {{{ heap_ctx â˜… R }}} newlock #() {{{ lk Î³, RET lk; is_lock N Î³ lk R }}};
   acquire_spec N Î³ lk R :
-    {{{ is_lock N Î³ lk R }}} acquire lk {{{; #(), locked Î³ â˜… R }}};
+    {{{ is_lock N Î³ lk R }}} acquire lk {{{ RET #(); locked Î³ â˜… R }}};
   release_spec N Î³ lk R :
-    {{{ is_lock N Î³ lk R â˜… locked Î³ â˜… R }}} release lk {{{; #(), True }}}
+    {{{ is_lock N Î³ lk R â˜… locked Î³ â˜… R }}} release lk {{{ RET #(); True }}}
 }.
 
 Arguments newlock {_ _} _.
diff --git a/heap_lang/lib/par.v b/heap_lang/lib/par.v
index bae873a2327d28d564a6b690f1c3f448a1cf53f1..5efd170e7884bd36fd559a0530ccc5dba22e8a46 100644
--- a/heap_lang/lib/par.v
+++ b/heap_lang/lib/par.v
@@ -16,6 +16,10 @@ Global Opaque par.
 Section proof.
 Context `{!heapG Î£, !spawnG Î£}.
 
+(* Notice that this allows us to strip a later *after* the two Î¨ have been
+   brought together.  That is strictly stronger than first stripping a later
+   and then merging them, as demonstrated by [tests/joining_existentials.v].
+   This is why these are not Texan triples. *)
 Lemma par_spec (Î¨1 Î¨2 : val â†’ iProp Î£) e (f1 f2 : val) (Î¦ : val â†’ iProp Î£) :
   to_val e = Some (f1,f2)%V â†’
   (heap_ctx â˜… WP f1 #() {{ Î¨1 }} â˜… WP f2 #() {{ Î¨2 }} â˜…
@@ -23,11 +27,11 @@ Lemma par_spec (Î¨1 Î¨2 : val â†’ iProp Î£) e (f1 f2 : val) (Î¦ : val â†’ iProp
   âŠ¢ WP par e {{ Î¦ }}.
 Proof.
   iIntros (?) "(#Hh&Hf1&Hf2&HÎ¦)".
-  rewrite /par. wp_value. iModIntro. wp_let. wp_proj.
-  wp_apply (spawn_spec parN with "[- $Hh $Hf1]"); try wp_done; try solve_ndisj.
+  rewrite /par. wp_value. wp_let. wp_proj.
+  wp_apply (spawn_spec parN with "[$Hh $Hf1]"); try wp_done; try solve_ndisj.
   iIntros (l) "Hl". wp_let. wp_proj. wp_bind (f2 _).
   iApply (wp_wand_r with "[- $Hf2]"); iIntros (v) "H2". wp_let.
-  wp_apply (join_spec with "[- $Hl]"). iIntros (w) "H1".
+  wp_apply (join_spec with "[$Hl]"). iIntros (w) "H1".
   iSpecialize ("HÎ¦" with "* [-]"); first by iSplitL "H1". by wp_let.
 Qed.
 
diff --git a/heap_lang/lib/spawn.v b/heap_lang/lib/spawn.v
index 9c4bb70c3aa9baf8e9213251fc55fd1ea3689106..54053ad1b2c77989ddb5fb5fbf17a270da244ac0 100644
--- a/heap_lang/lib/spawn.v
+++ b/heap_lang/lib/spawn.v
@@ -49,31 +49,31 @@ Proof. solve_proper. Qed.
 Lemma spawn_spec (Î¨ : val â†’ iProp Î£) e (f : val) :
   to_val e = Some f â†’
   heapN âŠ¥ N â†’
-  {{{ heap_ctx â˜… WP f #() {{ Î¨ }} }}} spawn e {{{ l; #l, join_handle l Î¨ }}}.
+  {{{ heap_ctx â˜… WP f #() {{ Î¨ }} }}} spawn e {{{ l, RET #l; join_handle l Î¨ }}}.
 Proof.
-  iIntros (<-%of_to_val ? Î¦) "((#Hh & Hf) & HÎ¦)". rewrite /spawn /=.
+  iIntros (<-%of_to_val ? Î¦) "(#Hh & Hf) HÎ¦". rewrite /spawn /=.
   wp_let. wp_alloc l as "Hl". wp_let.
   iMod (own_alloc (Excl ())) as (Î³) "HÎ³"; first done.
   iMod (inv_alloc N _ (spawn_inv Î³ l Î¨) with "[Hl]") as "#?".
   { iNext. iExists NONEV. iFrame; eauto. }
   wp_apply wp_fork; simpl. iSplitR "Hf".
-  - iModIntro. wp_seq. iModIntro. iApply "HÎ¦". rewrite /join_handle. eauto.
+  - wp_seq. iApply "HÎ¦". rewrite /join_handle. eauto.
   - wp_bind (f _). iApply (wp_wand_r with "[ $Hf]"); iIntros (v) "Hv".
     iInv N as (v') "[Hl _]" "Hclose".
     wp_store. iApply "Hclose". iNext. iExists (SOMEV v). iFrame. eauto.
 Qed.
 
 Lemma join_spec (Î¨ : val â†’ iProp Î£) l :
-  {{{ join_handle l Î¨ }}} join #l {{{ v; v, Î¨ v }}}.
+  {{{ join_handle l Î¨ }}} join #l {{{ v, RET v; Î¨ v }}}.
 Proof.
-  rewrite /join_handle; iIntros (Î¦) "[[% H] Hv]". iDestruct "H" as (Î³) "(#?&HÎ³&#?)".
+  rewrite /join_handle; iIntros (Î¦) "[% H] HÎ¦". iDestruct "H" as (Î³) "(#?&HÎ³&#?)".
   iLÃ¶b as "IH". wp_rec. wp_bind (! _)%E. iInv N as (v) "[Hl Hinv]" "Hclose".
   wp_load. iDestruct "Hinv" as "[%|Hinv]"; subst.
   - iMod ("Hclose" with "[Hl]"); [iNext; iExists _; iFrame; eauto|].
-    iModIntro. wp_match. iApply ("IH" with "HÎ³ [Hv]"). auto.
+    iModIntro. wp_match. iApply ("IH" with "HÎ³ [HÎ¦]"). auto.
   - iDestruct "Hinv" as (v') "[% [HÎ¨|HÎ³']]"; simplify_eq/=.
     + iMod ("Hclose" with "[Hl HÎ³]"); [iNext; iExists _; iFrame; eauto|].
-      iModIntro. wp_match. by iApply "Hv".
+      iModIntro. wp_match. by iApply "HÎ¦".
     + iCombine "HÎ³" "HÎ³'" as "HÎ³". iDestruct (own_valid with "HÎ³") as %[].
 Qed.
 End proof.
diff --git a/heap_lang/lib/spin_lock.v b/heap_lang/lib/spin_lock.v
index 34b5b22c352803a5a7fda785a797b86184f3b7fa..44443f4f66b634ddfa680dfbd231b61e67be6317 100644
--- a/heap_lang/lib/spin_lock.v
+++ b/heap_lang/lib/spin_lock.v
@@ -47,9 +47,9 @@ Section proof.
 
   Lemma newlock_spec (R : iProp Î£):
     heapN âŠ¥ N â†’
-    {{{ heap_ctx â˜… R }}} newlock #() {{{ lk Î³; lk, is_lock Î³ lk R }}}.
+    {{{ heap_ctx â˜… R }}} newlock #() {{{ lk Î³, RET lk; is_lock Î³ lk R }}}.
   Proof.
-    iIntros (? Î¦) "[[#Hh HR] HÎ¦]". rewrite /newlock /=.
+    iIntros (? Î¦) "[#Hh HR] HÎ¦". rewrite -wp_fupd /newlock /=.
     wp_seq. wp_alloc l as "Hl".
     iMod (own_alloc (Excl ())) as (Î³) "HÎ³"; first done.
     iMod (inv_alloc N _ (lock_inv Î³ l R) with "[-HÎ¦]") as "#?".
@@ -59,9 +59,9 @@ Section proof.
 
   Lemma try_acquire_spec Î³ lk R :
     {{{ is_lock Î³ lk R }}} try_acquire lk
-    {{{b; #b, if b is true then locked Î³ â˜… R else True }}}.
+    {{{ b, RET #b; if b is true then locked Î³ â˜… R else True }}}.
   Proof.
-    iIntros (Î¦) "[#Hl HÎ¦]". iDestruct "Hl" as (l) "(% & #? & % & #?)". subst.
+    iIntros (Î¦) "#Hl HÎ¦". iDestruct "Hl" as (l) "(% & #? & % & #?)". subst.
     wp_rec. iInv N as ([]) "[Hl HR]" "Hclose".
     - wp_cas_fail. iMod ("Hclose" with "[Hl]"); first (iNext; iExists true; eauto).
       iModIntro. iApply ("HÎ¦" $! false). done.
@@ -71,18 +71,18 @@ Section proof.
   Qed.
 
   Lemma acquire_spec Î³ lk R :
-    {{{ is_lock Î³ lk R }}} acquire lk {{{; #(), locked Î³ â˜… R }}}.
+    {{{ is_lock Î³ lk R }}} acquire lk {{{ RET #(); locked Î³ â˜… R }}}.
   Proof.
-    iIntros (Î¦) "[#Hl HÎ¦]". iLÃ¶b as "IH". wp_rec.
-    wp_apply (try_acquire_spec with "[- $Hl]"). iIntros ([]).
-    - iIntros "[Hlked HR]". wp_if. iModIntro. iApply "HÎ¦"; iFrame.
+    iIntros (Î¦) "#Hl HÎ¦". iLÃ¶b as "IH". wp_rec.
+    wp_apply (try_acquire_spec with "Hl"). iIntros ([]).
+    - iIntros "[Hlked HR]". wp_if. iApply "HÎ¦"; iFrame.
     - iIntros "_". wp_if. iApply ("IH" with "[HÎ¦]"). auto.
   Qed.
 
   Lemma release_spec Î³ lk R :
-    {{{ is_lock Î³ lk R â˜… locked Î³ â˜… R }}} release lk {{{; #(), True }}}.
+    {{{ is_lock Î³ lk R â˜… locked Î³ â˜… R }}} release lk {{{ RET #(); True }}}.
   Proof.
-    iIntros (Î¦) "((Hlock & Hlocked & HR) & HÎ¦)".
+    iIntros (Î¦) "(Hlock & Hlocked & HR) HÎ¦".
     iDestruct "Hlock" as (l) "(% & #? & % & #?)". subst.
     rewrite /release /=. wp_let. iInv N as (b) "[Hl _]" "Hclose".
     wp_store. iApply "HÎ¦". iApply "Hclose". iNext. iExists false. by iFrame.
diff --git a/heap_lang/lib/ticket_lock.v b/heap_lang/lib/ticket_lock.v
index 3846ddebefa8f41ff6bab1ada82abb1c695bb7d7..5300485fcc6ef81e7e75f321a8451c104c8321ff 100644
--- a/heap_lang/lib/ticket_lock.v
+++ b/heap_lang/lib/ticket_lock.v
@@ -76,9 +76,9 @@ Section proof.
 
   Lemma newlock_spec (R : iProp Î£) :
     heapN âŠ¥ N â†’
-    {{{ heap_ctx â˜… R }}} newlock #() {{{ lk Î³; lk, is_lock Î³ lk R }}}.
+    {{{ heap_ctx â˜… R }}} newlock #() {{{ lk Î³, RET lk; is_lock Î³ lk R }}}.
   Proof.
-    iIntros (HN Î¦) "((#Hh & HR) & HÎ¦)". rewrite /newlock /=.
+    iIntros (HN Î¦) "(#Hh & HR) HÎ¦". rewrite -wp_fupd /newlock /=.
     wp_seq. wp_alloc lo as "Hlo". wp_alloc ln as "Hln".
     iMod (own_alloc (â— (Excl' 0%nat, âˆ…) â‹… â—¯ (Excl' 0%nat, âˆ…))) as (Î³) "[HÎ³ HÎ³']".
     { by rewrite -auth_both_op. }
@@ -89,9 +89,9 @@ Section proof.
   Qed.
 
   Lemma wait_loop_spec Î³ lk x R :
-    {{{ issued Î³ lk x R }}} wait_loop #x lk {{{; #(), locked Î³ â˜… R }}}.
+    {{{ issued Î³ lk x R }}} wait_loop #x lk {{{ RET #(); locked Î³ â˜… R }}}.
   Proof.
-    iIntros (Î¦) "[Hl HÎ¦]". iDestruct "Hl" as (lo ln) "(% & #? & % & #? & Ht)".
+    iIntros (Î¦) "Hl HÎ¦". iDestruct "Hl" as (lo ln) "(% & #? & % & #? & Ht)".
     iLÃ¶b as "IH". wp_rec. subst. wp_let. wp_proj. wp_bind (! _)%E.
     iInv N as (o n) "(Hlo & Hln & Ha)" "Hclose".
     wp_load. destruct (decide (x = o)) as [->|Hneq].
@@ -99,7 +99,7 @@ Section proof.
       + iMod ("Hclose" with "[Hlo Hln Hainv Ht]") as "_".
         { iNext. iExists o, n. iFrame. eauto. }
         iModIntro. wp_let. wp_op=>[_|[]] //.
-        wp_if. iModIntro.
+        wp_if. 
         iApply ("HÎ¦" with "[-]"). rewrite /locked. iFrame. eauto.
       + iDestruct (own_valid_2 with "[$Ht $Haown]") as % [_ ?%gset_disj_valid_op].
         set_solver.
@@ -110,9 +110,9 @@ Section proof.
   Qed.
 
   Lemma acquire_spec Î³ lk R :
-    {{{ is_lock Î³ lk R }}} acquire lk {{{; #(), locked Î³ â˜… R }}}.
+    {{{ is_lock Î³ lk R }}} acquire lk {{{ RET #(); locked Î³ â˜… R }}}.
   Proof.
-    iIntros (Ï•) "[Hl HÎ¦]". iDestruct "Hl" as (lo ln) "(% & #? & % & #?)".
+    iIntros (Ï•) "Hl HÎ¦". iDestruct "Hl" as (lo ln) "(% & #? & % & #?)".
     iLÃ¶b as "IH". wp_rec. wp_bind (! _)%E. subst. wp_proj.
     iInv N as (o n) "[Hlo [Hln Ha]]" "Hclose".
     wp_load. iMod ("Hclose" with "[Hlo Hln Ha]") as "_".
@@ -131,8 +131,9 @@ Section proof.
       { iNext. iExists o', (S n).
         rewrite Nat2Z.inj_succ -Z.add_1_r. by iFrame. }
       iModIntro. wp_if.
-      iApply (wait_loop_spec Î³ (#lo, #ln)).
-      iFrame "HÎ¦". rewrite /issued; eauto 10.
+      iApply (wait_loop_spec Î³ (#lo, #ln) with "[-HÎ¦]").
+      + rewrite /issued; eauto 10.
+      + by iNext. 
     - wp_cas_fail.
       iMod ("Hclose" with "[Hlo' Hln' Hauth Haown]") as "_".
       { iNext. iExists o', n'. by iFrame. }
@@ -140,9 +141,9 @@ Section proof.
   Qed.
 
   Lemma release_spec Î³ lk R :
-    {{{ is_lock Î³ lk R â˜… locked Î³ â˜… R }}} release lk {{{; #(), True }}}.
+    {{{ is_lock Î³ lk R â˜… locked Î³ â˜… R }}} release lk {{{ RET #(); True }}}.
   Proof.
-    iIntros (Î¦) "((Hl & HÎ³ & HR) & HÎ¦)".
+    iIntros (Î¦) "(Hl & HÎ³ & HR) HÎ¦".
     iDestruct "Hl" as (lo ln) "(% & #? & % & #?)"; subst.
     iDestruct "HÎ³" as (o) "HÎ³o".
     rewrite /release. wp_let. wp_proj. wp_proj. wp_bind (! _)%E.
diff --git a/heap_lang/lifting.v b/heap_lang/lifting.v
index 2d2e5be870f440c0c6c28cf9719b6546ee6e2a1a..71ce9d61655dd367d747d5f57388522078ca6c3c 100644
--- a/heap_lang/lifting.v
+++ b/heap_lang/lifting.v
@@ -46,59 +46,59 @@ Lemma wp_bind_ctxi {E e} Ki Î¦ :
 Proof. exact: weakestpre.wp_bind. Qed.
 
 (** Base axioms for core primitives of the language: Stateful reductions. *)
-Lemma wp_alloc_pst E Ïƒ v Î¦ :
-  â–· ownP Ïƒ â˜… â–· (âˆ€ l, Ïƒ !! l = None âˆ§ ownP (<[l:=v]>Ïƒ) ={E}=â˜… Î¦ (LitV (LitLoc l)))
-  âŠ¢ WP Alloc (of_val v) @ E {{ Î¦ }}.
+Lemma wp_alloc_pst E Ïƒ v :
+  {{{ â–· ownP Ïƒ }}} Alloc (of_val v) @ E
+  {{{ l, RET LitV (LitLoc l); Ïƒ !! l = None âˆ§ ownP (<[l:=v]>Ïƒ) }}}.
 Proof.
-  iIntros "[HP HÎ¦]".
+  iIntros (Î¦) "HP HÎ¦".
   iApply (wp_lift_atomic_head_step (Alloc (of_val v)) Ïƒ); eauto.
   iFrame "HP". iNext. iIntros (v2 Ïƒ2 ef) "[% HP]". inv_head_step.
   match goal with H: _ = of_val v2 |- _ => apply (inj of_val (LitV _)) in H end.
   subst v2. iSplit. iApply "HÎ¦"; by iSplit. by iApply big_sepL_nil.
 Qed.
 
-Lemma wp_load_pst E Ïƒ l v Î¦ :
+Lemma wp_load_pst E Ïƒ l v :
   Ïƒ !! l = Some v â†’
-  â–· ownP Ïƒ â˜… â–· (ownP Ïƒ ={E}=â˜… Î¦ v) âŠ¢ WP Load (Lit (LitLoc l)) @ E {{ Î¦ }}.
+  {{{ â–· ownP Ïƒ }}} Load (Lit (LitLoc l)) @ E {{{ RET v; ownP Ïƒ }}}.
 Proof.
-  intros. rewrite -(wp_lift_atomic_det_head_step' Ïƒ v Ïƒ); eauto.
+  intros ? Î¦. apply (wp_lift_atomic_det_head_step' Ïƒ v Ïƒ); eauto.
   intros; inv_head_step; eauto.
 Qed.
 
-Lemma wp_store_pst E Ïƒ l v v' Î¦ :
+Lemma wp_store_pst E Ïƒ l v v' :
   Ïƒ !! l = Some v' â†’
-  â–· ownP Ïƒ â˜… â–· (ownP (<[l:=v]>Ïƒ) ={E}=â˜… Î¦ (LitV LitUnit))
-  âŠ¢ WP Store (Lit (LitLoc l)) (of_val v) @ E {{ Î¦ }}.
+  {{{ â–· ownP Ïƒ }}} Store (Lit (LitLoc l)) (of_val v) @ E
+  {{{ RET LitV LitUnit; ownP (<[l:=v]>Ïƒ) }}}.
 Proof.
-  intros. rewrite-(wp_lift_atomic_det_head_step' Ïƒ (LitV LitUnit) (<[l:=v]>Ïƒ)); eauto.
+  intros. apply (wp_lift_atomic_det_head_step' Ïƒ (LitV LitUnit) (<[l:=v]>Ïƒ)); eauto.
   intros; inv_head_step; eauto.
 Qed.
 
-Lemma wp_cas_fail_pst E Ïƒ l v1 v2 v' Î¦ :
+Lemma wp_cas_fail_pst E Ïƒ l v1 v2 v' :
   Ïƒ !! l = Some v' â†’ v' â‰  v1 â†’
-  â–· ownP Ïƒ â˜… â–· (ownP Ïƒ ={E}=â˜… Î¦ (LitV $ LitBool false))
-  âŠ¢ WP CAS (Lit (LitLoc l)) (of_val v1) (of_val v2) @ E {{ Î¦ }}.
+  {{{ â–· ownP Ïƒ }}} CAS (Lit (LitLoc l)) (of_val v1) (of_val v2) @ E
+  {{{ RET LitV $ LitBool false; ownP Ïƒ }}}.
 Proof.
-  intros. rewrite -(wp_lift_atomic_det_head_step' Ïƒ (LitV $ LitBool false) Ïƒ); eauto.
+  intros. apply (wp_lift_atomic_det_head_step' Ïƒ (LitV $ LitBool false) Ïƒ); eauto.
   intros; inv_head_step; eauto.
 Qed.
 
-Lemma wp_cas_suc_pst E Ïƒ l v1 v2 Î¦ :
+Lemma wp_cas_suc_pst E Ïƒ l v1 v2 :
   Ïƒ !! l = Some v1 â†’
-  â–· ownP Ïƒ â˜… â–· (ownP (<[l:=v2]>Ïƒ) ={E}=â˜… Î¦ (LitV $ LitBool true))
-  âŠ¢ WP CAS (Lit (LitLoc l)) (of_val v1) (of_val v2) @ E {{ Î¦ }}.
+  {{{ â–· ownP Ïƒ }}} CAS (Lit (LitLoc l)) (of_val v1) (of_val v2) @ E
+  {{{ RET LitV $ LitBool true; ownP (<[l:=v2]>Ïƒ) }}}.
 Proof.
-  intros. rewrite -(wp_lift_atomic_det_head_step' Ïƒ (LitV $ LitBool true)
+  intros. apply (wp_lift_atomic_det_head_step' Ïƒ (LitV $ LitBool true)
     (<[l:=v2]>Ïƒ)); eauto.
   intros; inv_head_step; eauto.
 Qed.
 
 (** Base axioms for core primitives of the language: Stateless reductions *)
 Lemma wp_fork E e Î¦ :
-  â–· (|={E}=> Î¦ (LitV LitUnit)) â˜… â–· WP e {{ _, True }} âŠ¢ WP Fork e @ E {{ Î¦ }}.
+  â–· Î¦ (LitV LitUnit) â˜… â–· WP e {{ _, True }} âŠ¢ WP Fork e @ E {{ Î¦ }}.
 Proof.
   rewrite -(wp_lift_pure_det_head_step (Fork e) (Lit LitUnit) [e]) //=; eauto.
-  - by rewrite later_sep -(wp_value_fupd _ _ (Lit _)) // big_sepL_singleton.
+  - by rewrite later_sep -(wp_value _ _ (Lit _)) // big_sepL_singleton.
   - intros; inv_head_step; eauto.
 Qed.
 
@@ -116,20 +116,20 @@ Qed.
 Lemma wp_un_op E op e v v' Î¦ :
   to_val e = Some v â†’
   un_op_eval op v = Some v' â†’
-  â–· (|={E}=> Î¦ v') âŠ¢ WP UnOp op e @ E {{ Î¦ }}.
+  â–· Î¦ v' âŠ¢ WP UnOp op e @ E {{ Î¦ }}.
 Proof.
   intros. rewrite -(wp_lift_pure_det_head_step' (UnOp op _) (of_val v'))
-    -?wp_value_fupd'; eauto.
+    -?wp_value'; eauto.
   intros; inv_head_step; eauto.
 Qed.
 
 Lemma wp_bin_op E op e1 e2 v1 v2 v' Î¦ :
   to_val e1 = Some v1 â†’ to_val e2 = Some v2 â†’
   bin_op_eval op v1 v2 = Some v' â†’
-  â–· (|={E}=> Î¦ v') âŠ¢ WP BinOp op e1 e2 @ E {{ Î¦ }}.
+  â–· (Î¦ v') âŠ¢ WP BinOp op e1 e2 @ E {{ Î¦ }}.
 Proof.
   intros. rewrite -(wp_lift_pure_det_head_step' (BinOp op _ _) (of_val v'))
-    -?wp_value_fupd'; eauto.
+    -?wp_value'; eauto.
   intros; inv_head_step; eauto.
 Qed.
 
@@ -149,19 +149,19 @@ Qed.
 
 Lemma wp_fst E e1 v1 e2 Î¦ :
   to_val e1 = Some v1 â†’ is_Some (to_val e2) â†’
-  â–· (|={E}=> Î¦ v1) âŠ¢ WP Fst (Pair e1 e2) @ E {{ Î¦ }}.
+  â–· Î¦ v1 âŠ¢ WP Fst (Pair e1 e2) @ E {{ Î¦ }}.
 Proof.
   intros ? [v2 ?].
-  rewrite -(wp_lift_pure_det_head_step' (Fst _) e1) -?wp_value_fupd; eauto.
+  rewrite -(wp_lift_pure_det_head_step' (Fst _) e1) -?wp_value; eauto.
   intros; inv_head_step; eauto.
 Qed.
 
 Lemma wp_snd E e1 e2 v2 Î¦ :
   is_Some (to_val e1) â†’ to_val e2 = Some v2 â†’
-  â–· (|={E}=> Î¦ v2) âŠ¢ WP Snd (Pair e1 e2) @ E {{ Î¦ }}.
+  â–· Î¦ v2 âŠ¢ WP Snd (Pair e1 e2) @ E {{ Î¦ }}.
 Proof.
   intros [v1 ?] ?.
-  rewrite -(wp_lift_pure_det_head_step' (Snd _) e2) -?wp_value_fupd; eauto.
+  rewrite -(wp_lift_pure_det_head_step' (Snd _) e2) -?wp_value; eauto.
   intros; inv_head_step; eauto.
 Qed.
 
diff --git a/heap_lang/proofmode.v b/heap_lang/proofmode.v
index 83e5f27d00ba2390f98a71e38b4ac89dc6ccb3d6..e0fba481b36dda57309490ba0a88933cc8ab127b 100644
--- a/heap_lang/proofmode.v
+++ b/heap_lang/proofmode.v
@@ -22,10 +22,10 @@ Lemma tac_wp_alloc Î” Î”' E j e v Î¦ :
   IntoLaterEnvs Î” Î”' â†’
   (âˆ€ l, âˆƒ Î”'',
     envs_app false (Esnoc Enil j (l â†¦ v)) Î”' = Some Î”'' âˆ§
-    (Î”'' âŠ¢ |={E}=> Î¦ (LitV (LitLoc l)))) â†’
+    (Î”'' âŠ¢ Î¦ (LitV (LitLoc l)))) â†’
   Î” âŠ¢ WP Alloc e @ E {{ Î¦ }}.
 Proof.
-  intros ???? HÎ”. rewrite -wp_fupd -wp_alloc // -always_and_sep_l.
+  intros ???? HÎ”. eapply wand_apply; first exact:wp_alloc. rewrite -always_and_sep_l.
   apply and_intro; first done.
   rewrite into_later_env_sound; apply later_mono, forall_intro=> l.
   destruct (HÎ” l) as (Î”''&?&HÎ”'). rewrite envs_app_sound //; simpl.
@@ -36,10 +36,10 @@ Lemma tac_wp_load Î” Î”' E i l q v Î¦ :
   (Î” âŠ¢ heap_ctx) â†’ nclose heapN âŠ† E â†’
   IntoLaterEnvs Î” Î”' â†’
   envs_lookup i Î”' = Some (false, l â†¦{q} v)%I â†’
-  (Î”' âŠ¢ |={E}=> Î¦ v) â†’
+  (Î”' âŠ¢ Î¦ v) â†’
   Î” âŠ¢ WP Load (Lit (LitLoc l)) @ E {{ Î¦ }}.
 Proof.
-  intros. rewrite -wp_fupd -wp_load // -assoc -always_and_sep_l.
+  intros. eapply wand_apply; first exact:wp_load. rewrite -assoc -always_and_sep_l.
   apply and_intro; first done.
   rewrite into_later_env_sound -later_sep envs_lookup_split //; simpl.
   by apply later_mono, sep_mono_r, wand_mono.
@@ -51,10 +51,10 @@ Lemma tac_wp_store Î” Î”' Î”'' E i l v e v' Î¦ :
   IntoLaterEnvs Î” Î”' â†’
   envs_lookup i Î”' = Some (false, l â†¦ v)%I â†’
   envs_simple_replace i false (Esnoc Enil i (l â†¦ v')) Î”' = Some Î”'' â†’
-  (Î”'' âŠ¢ |={E}=> Î¦ (LitV LitUnit)) â†’
+  (Î”'' âŠ¢ Î¦ (LitV LitUnit)) â†’
   Î” âŠ¢ WP Store (Lit (LitLoc l)) e @ E {{ Î¦ }}.
 Proof.
-  intros. rewrite -wp_fupd -wp_store // -assoc -always_and_sep_l.
+  intros. eapply wand_apply; first by eapply wp_store. rewrite -assoc -always_and_sep_l.
   apply and_intro; first done.
   rewrite into_later_env_sound -later_sep envs_simple_replace_sound //; simpl.
   rewrite right_id. by apply later_mono, sep_mono_r, wand_mono.
@@ -65,10 +65,10 @@ Lemma tac_wp_cas_fail Î” Î”' E i l q v e1 v1 e2 v2 Î¦ :
   (Î” âŠ¢ heap_ctx) â†’ nclose heapN âŠ† E â†’
   IntoLaterEnvs Î” Î”' â†’
   envs_lookup i Î”' = Some (false, l â†¦{q} v)%I â†’ v â‰  v1 â†’
-  (Î”' âŠ¢ |={E}=> Î¦ (LitV (LitBool false))) â†’
+  (Î”' âŠ¢ Î¦ (LitV (LitBool false))) â†’
   Î” âŠ¢ WP CAS (Lit (LitLoc l)) e1 e2 @ E {{ Î¦ }}.
 Proof.
-  intros. rewrite -wp_fupd -wp_cas_fail // -assoc -always_and_sep_l.
+  intros. eapply wand_apply; first exact:wp_cas_fail. rewrite -assoc -always_and_sep_l.
   apply and_intro; first done.
   rewrite into_later_env_sound -later_sep envs_lookup_split //; simpl.
   by apply later_mono, sep_mono_r, wand_mono.
@@ -80,10 +80,10 @@ Lemma tac_wp_cas_suc Î” Î”' Î”'' E i l v e1 v1 e2 v2 Î¦ :
   IntoLaterEnvs Î” Î”' â†’
   envs_lookup i Î”' = Some (false, l â†¦ v)%I â†’ v = v1 â†’
   envs_simple_replace i false (Esnoc Enil i (l â†¦ v2)) Î”' = Some Î”'' â†’
-  (Î”'' âŠ¢ |={E}=> Î¦ (LitV (LitBool true))) â†’
+  (Î”'' âŠ¢ Î¦ (LitV (LitBool true))) â†’
   Î” âŠ¢ WP CAS (Lit (LitLoc l)) e1 e2 @ E {{ Î¦ }}.
 Proof.
-  intros; subst. rewrite -wp_fupd -wp_cas_suc // -assoc -always_and_sep_l.
+  intros; subst. eapply wand_apply; first exact:wp_cas_suc. rewrite -assoc -always_and_sep_l.
   apply and_intro; first done.
   rewrite into_later_env_sound -later_sep envs_simple_replace_sound //; simpl.
   rewrite right_id. by apply later_mono, sep_mono_r, wand_mono.
diff --git a/heap_lang/wp_tactics.v b/heap_lang/wp_tactics.v
index 4f7309555bbfc5606058cedeb1615d816dbdd867..26856a3a1c5bdf5314a02b82dbc404df9d86b90d 100644
--- a/heap_lang/wp_tactics.v
+++ b/heap_lang/wp_tactics.v
@@ -18,20 +18,7 @@ Ltac wp_done :=
   | _ => fast_done
   end.
 
-(* sometimes, we want to keep the update modality, so only apply [fupd_intro]
-if we obtain a consecutive wp *)
-Ltac wp_strip_fupd :=
-  lazymatch goal with
-  | |- _ âŠ¢ |={?E}=> _ =>
-    etrans; [|apply fupd_intro];
-    match goal with
-    | |- _ âŠ¢ wp E _ _ => simpl
-    | |- _ âŠ¢ |={E,_}=> _ => simpl
-    | _ => fail
-    end
-  end.
-
-Ltac wp_value_head := etrans; [|eapply wp_value_fupd; wp_done]; lazy beta.
+Ltac wp_value_head := etrans; [|eapply wp_value; wp_done]; lazy beta.
 
 Ltac wp_strip_later := idtac. (* a hook to be redefined later *)
 
@@ -48,7 +35,6 @@ Ltac wp_finish := intros_revert ltac:(
   | |- _ âŠ¢ wp ?E (Seq _ _) ?Q =>
      etrans; [|eapply wp_seq; wp_done]; wp_strip_later
   | |- _ âŠ¢ wp ?E _ ?Q => wp_value_head
-  | |- _ âŠ¢ |={_,_}=> _ => wp_strip_fupd
   end).
 
 Tactic Notation "wp_value" :=
diff --git a/program_logic/ectx_lifting.v b/program_logic/ectx_lifting.v
index 99df308b6349a696739113de8675c689a07faef9..28a3e76362232b50d58a109c386771279b0163cd 100644
--- a/program_logic/ectx_lifting.v
+++ b/program_logic/ectx_lifting.v
@@ -43,7 +43,7 @@ Lemma wp_lift_atomic_head_step {E Î¦} e1 Ïƒ1 :
   head_reducible e1 Ïƒ1 â†’
   â–· ownP Ïƒ1 â˜… â–· (âˆ€ v2 Ïƒ2 efs,
   â–  head_step e1 Ïƒ1 (of_val v2) Ïƒ2 efs âˆ§ ownP Ïƒ2 -â˜…
-    (|={E}=> Î¦ v2) â˜… [â˜… list] ef âˆˆ efs, WP ef {{ _, True }})
+    Î¦ v2 â˜… [â˜… list] ef âˆˆ efs, WP ef {{ _, True }})
   âŠ¢ WP e1 @ E {{ Î¦ }}.
 Proof.
   iIntros (??) "[? H]". iApply wp_lift_atomic_step; eauto. iFrame. iNext.
@@ -56,19 +56,19 @@ Lemma wp_lift_atomic_det_head_step {E Î¦ e1} Ïƒ1 v2 Ïƒ2 efs :
   (âˆ€ e2' Ïƒ2' efs', head_step e1 Ïƒ1 e2' Ïƒ2' efs' â†’
     Ïƒ2 = Ïƒ2' âˆ§ to_val e2' = Some v2 âˆ§ efs = efs') â†’
   â–· ownP Ïƒ1 â˜… â–· (ownP Ïƒ2 -â˜…
-    (|={E}=> Î¦ v2) â˜… [â˜… list] ef âˆˆ efs, WP ef {{ _, True }})
+    Î¦ v2 â˜… [â˜… list] ef âˆˆ efs, WP ef {{ _, True }})
   âŠ¢ WP e1 @ E {{ Î¦ }}.
 Proof. eauto using wp_lift_atomic_det_step. Qed.
 
-Lemma wp_lift_atomic_det_head_step' {E Î¦ e1} Ïƒ1 v2 Ïƒ2 :
+Lemma wp_lift_atomic_det_head_step' {E e1} Ïƒ1 v2 Ïƒ2 :
   atomic e1 â†’
   head_reducible e1 Ïƒ1 â†’
   (âˆ€ e2' Ïƒ2' efs', head_step e1 Ïƒ1 e2' Ïƒ2' efs' â†’
     Ïƒ2 = Ïƒ2' âˆ§ to_val e2' = Some v2 âˆ§ [] = efs') â†’
-  â–· ownP Ïƒ1 â˜… â–· (ownP Ïƒ2 ={E}=â˜… Î¦ v2) âŠ¢ WP e1 @ E {{ Î¦ }}.
+  {{{ â–· ownP Ïƒ1 }}} e1 @ E {{{ RET v2; ownP Ïƒ2 }}}.
 Proof.
-  intros. rewrite -(wp_lift_atomic_det_head_step Ïƒ1 v2 Ïƒ2 [])
-    ?big_sepL_nil ?right_id; eauto.
+  intros. rewrite -(wp_lift_atomic_det_head_step Ïƒ1 v2 Ïƒ2 []); [|done..].
+  rewrite big_sepL_nil right_id. by apply uPred.wand_intro_r.
 Qed.
 
 Lemma wp_lift_pure_det_head_step {E Î¦} e1 e2 efs :
diff --git a/program_logic/lifting.v b/program_logic/lifting.v
index 8b05a82900fd167ef8c0e56d1d29d2fe362867e4..a3335b346e5a4aea35d697cf96decfc8b6e78206 100644
--- a/program_logic/lifting.v
+++ b/program_logic/lifting.v
@@ -48,7 +48,7 @@ Lemma wp_lift_atomic_step {E Î¦} e1 Ïƒ1 :
   atomic e1 â†’
   reducible e1 Ïƒ1 â†’
   (â–· ownP Ïƒ1 â˜… â–· âˆ€ v2 Ïƒ2 efs, â–  prim_step e1 Ïƒ1 (of_val v2) Ïƒ2 efs â˜… ownP Ïƒ2 -â˜…
-    (|={E}=> Î¦ v2) â˜… [â˜… list] ef âˆˆ efs, WP ef {{ _, True }})
+    Î¦ v2 â˜… [â˜… list] ef âˆˆ efs, WP ef {{ _, True }})
   âŠ¢ WP e1 @ E {{ Î¦ }}.
 Proof.
   iIntros (Hatomic ?) "[HÏƒ H]". iApply (wp_lift_step E _ e1).
@@ -57,7 +57,7 @@ Proof.
   iNext; iIntros (e2 Ïƒ2 efs) "[% HÏƒ]".
   edestruct (Hatomic Ïƒ1 e2 Ïƒ2 efs) as [v2 <-%of_to_val]; eauto.
   iDestruct ("H" $! v2 Ïƒ2 efs with "[HÏƒ]") as "[HÎ¦ $]"; first by eauto.
-  iMod "Hclose". iMod "HÎ¦". iApply wp_value; auto using to_of_val.
+  iMod "Hclose". iApply wp_value; auto using to_of_val.
 Qed.
 
 Lemma wp_lift_atomic_det_step {E Î¦ e1} Ïƒ1 v2 Ïƒ2 efs :
@@ -66,7 +66,7 @@ Lemma wp_lift_atomic_det_step {E Î¦ e1} Ïƒ1 v2 Ïƒ2 efs :
   (âˆ€ e2' Ïƒ2' efs', prim_step e1 Ïƒ1 e2' Ïƒ2' efs' â†’
                    Ïƒ2 = Ïƒ2' âˆ§ to_val e2' = Some v2 âˆ§ efs = efs') â†’
   â–· ownP Ïƒ1 â˜… â–· (ownP Ïƒ2 -â˜…
-    (|={E}=> Î¦ v2) â˜… [â˜… list] ef âˆˆ efs, WP ef {{ _, True }})
+    Î¦ v2 â˜… [â˜… list] ef âˆˆ efs, WP ef {{ _, True }})
   âŠ¢ WP e1 @ E {{ Î¦ }}.
 Proof.
   iIntros (?? Hdet) "[HÏƒ1 HÏƒ2]". iApply (wp_lift_atomic_step _ Ïƒ1); try done.
diff --git a/program_logic/weakestpre.v b/program_logic/weakestpre.v
index 6b98efa4d050cbbc1f0b58d1f8b81a40dc897dcc..d5f94f1c4b34ddf051e6c31fc16143f02f5acc62 100644
--- a/program_logic/weakestpre.v
+++ b/program_logic/weakestpre.v
@@ -68,43 +68,43 @@ Notation "'WP' e {{ v , Q } }" := (wp âŠ¤ e%E (Î» v, Q))
    format "'WP'  e  {{  v ,  Q  } }") : uPred_scope.
 
 (* Texan triples *)
-Notation "'{{{' P } } } e {{{ x .. y ; pat , Q } } }" :=
+Notation "'{{{' P } } } e {{{ x .. y , 'RET' pat ; Q } } }" :=
   (â–¡ âˆ€ Î¦,
-      P â˜… â–· (âˆ€ x, .. (âˆ€ y, Q -â˜… Î¦ pat%V) .. ) -â˜… WP e {{ Î¦ }})%I
+      P -â˜… â–· (âˆ€ x, .. (âˆ€ y, Q -â˜… Î¦ pat%V) .. ) -â˜… WP e {{ Î¦ }})%I
     (at level 20, x closed binder, y closed binder,
-     format "{{{  P  } } }  e  {{{ x .. y ;  pat ,  Q } } }") : uPred_scope.
-Notation "'{{{' P } } } e @ E {{{ x .. y ; pat , Q } } }" :=
+     format "{{{  P  } } }  e  {{{  x .. y ,   RET  pat ;  Q } } }") : uPred_scope.
+Notation "'{{{' P } } } e @ E {{{ x .. y , 'RET' pat ; Q } } }" :=
   (â–¡ âˆ€ Î¦,
-      P â˜… â–· (âˆ€ x, .. (âˆ€ y, Q -â˜… Î¦ pat%V) .. ) -â˜… WP e @ E {{ Î¦ }})%I
+      P -â˜… â–· (âˆ€ x, .. (âˆ€ y, Q -â˜… Î¦ pat%V) .. ) -â˜… WP e @ E {{ Î¦ }})%I
     (at level 20, x closed binder, y closed binder,
-     format "{{{  P  } } }  e  @  E  {{{ x .. y ;  pat ,  Q } } }") : uPred_scope.
-Notation "'{{{' P } } } e {{{ ; pat , Q } } }" :=
-  (â–¡ âˆ€ Î¦, P â˜… â–· (Q -â˜… Î¦ pat%V) -â˜… WP e {{ Î¦ }})%I
+     format "{{{  P  } } }  e  @  E  {{{  x .. y ,  RET  pat ;  Q } } }") : uPred_scope.
+Notation "'{{{' P } } } e {{{ 'RET' pat ; Q } } }" :=
+  (â–¡ âˆ€ Î¦, P -â˜… â–· (Q -â˜… Î¦ pat%V) -â˜… WP e {{ Î¦ }})%I
     (at level 20,
-     format "{{{  P  } } }  e  {{{ ; pat ,  Q } } }") : uPred_scope.
-Notation "'{{{' P } } } e @ E {{{ ; pat , Q } } }" :=
-  (â–¡ âˆ€ Î¦, P â˜… â–· (Q -â˜… Î¦ pat%V) -â˜… WP e @ E {{ Î¦ }})%I
+     format "{{{  P  } } }  e  {{{  RET  pat ;  Q } } }") : uPred_scope.
+Notation "'{{{' P } } } e @ E {{{ 'RET' pat ; Q } } }" :=
+  (â–¡ âˆ€ Î¦, P -â˜… â–· (Q -â˜… Î¦ pat%V) -â˜… WP e @ E {{ Î¦ }})%I
     (at level 20,
-     format "{{{  P  } } }  e  @  E  {{{ ; pat ,  Q } } }") : uPred_scope.
+     format "{{{  P  } } }  e  @  E  {{{  RET  pat ;  Q } } }") : uPred_scope.
 
-Notation "'{{{' P } } } e {{{ x .. y ; pat , Q } } }" :=
+Notation "'{{{' P } } } e {{{ x .. y , 'RET' pat ; Q } } }" :=
   (âˆ€ Î¦ : _ â†’ uPred _,
-      P â˜… â–· (âˆ€ x, .. (âˆ€ y, Q -â˜… Î¦ pat%V) .. ) âŠ¢ WP e {{ Î¦ }})
+      P âŠ¢ â–· (âˆ€ x, .. (âˆ€ y, Q -â˜… Î¦ pat%V) .. ) -â˜… WP e {{ Î¦ }})
     (at level 20, x closed binder, y closed binder,
-     format "{{{  P  } } }  e  {{{ x .. y ;  pat ,  Q } } }") : C_scope.
-Notation "'{{{' P } } } e @ E {{{ x .. y ; pat , Q } } }" :=
+     format "{{{  P  } } }  e  {{{  x .. y ,  RET  pat ;  Q } } }") : C_scope.
+Notation "'{{{' P } } } e @ E {{{ x .. y , 'RET' pat ; Q } } }" :=
   (âˆ€ Î¦ : _ â†’ uPred _,
-      P â˜… â–· (âˆ€ x, .. (âˆ€ y, Q -â˜… Î¦ pat%V) .. ) âŠ¢ WP e @ E {{ Î¦ }})
+      P âŠ¢ â–· (âˆ€ x, .. (âˆ€ y, Q -â˜… Î¦ pat%V) .. ) -â˜… WP e @ E {{ Î¦ }})
     (at level 20, x closed binder, y closed binder,
-     format "{{{  P  } } }  e  @  E  {{{ x .. y ;  pat ,  Q } } }") : C_scope.
-Notation "'{{{' P } } } e {{{ ; pat , Q } } }" :=
-  (âˆ€ Î¦ : _ â†’ uPred _, P â˜… â–· (Q -â˜… Î¦ pat%V) âŠ¢ WP e {{ Î¦ }})
+     format "{{{  P  } } }  e  @  E  {{{  x .. y ,  RET  pat ;  Q } } }") : C_scope.
+Notation "'{{{' P } } } e {{{ 'RET' pat ; Q } } }" :=
+  (âˆ€ Î¦ : _ â†’ uPred _, P âŠ¢ â–· (Q -â˜… Î¦ pat%V) -â˜… WP e {{ Î¦ }})
     (at level 20,
-     format "{{{  P  } } }  e  {{{ ; pat ,  Q } } }") : C_scope.
-Notation "'{{{' P } } } e @ E {{{ ; pat , Q } } }" :=
-  (âˆ€ Î¦ : _ â†’ uPred _, P â˜… â–· (Q -â˜… Î¦ pat%V) âŠ¢ WP e @ E {{ Î¦ }})
+     format "{{{  P  } } }  e  {{{  RET  pat ;  Q } } }") : C_scope.
+Notation "'{{{' P } } } e @ E {{{ 'RET' pat ; Q } } }" :=
+  (âˆ€ Î¦ : _ â†’ uPred _, P âŠ¢ â–· (Q -â˜… Î¦ pat%V) -â˜… WP e @ E {{ Î¦ }})
     (at level 20,
-     format "{{{  P  } } }  e  @  E  {{{ ; pat ,  Q } } }") : C_scope.
+     format "{{{  P  } } }  e  @  E  {{{  RET  pat ;  Q } } }") : C_scope.
 
 Section wp.
 Context `{irisG Î› Î£}.
diff --git a/tests/barrier_client.v b/tests/barrier_client.v
index 71071bc05d5319c5e3d7440e580f613c146939e7..e29e8cbb59ad1e391f54c422550a8c0d4b74f3b3 100644
--- a/tests/barrier_client.v
+++ b/tests/barrier_client.v
@@ -37,11 +37,12 @@ Section client.
   Lemma client_safe : heapN âŠ¥ N â†’ heap_ctx âŠ¢ WP client {{ _, True }}.
   Proof.
     iIntros (?) "#Hh"; rewrite /client. wp_alloc y as "Hy". wp_let.
-    wp_apply (newbarrier_spec N (y_inv 1 y) with "[- $Hh]"); first done.
+    wp_apply (newbarrier_spec N (y_inv 1 y) with "Hh"); first done.
     iIntros (l) "[Hr Hs]". wp_let.
     iApply (wp_par (Î» _, True%I) (Î» _, True%I) with "[-$Hh]"). iSplitL "Hy Hs".
     - (* The original thread, the sender. *)
-      wp_store. iApply (signal_spec with "[- $Hs]"). iSplitL "Hy"; [|by eauto].
+      wp_store. iApply (signal_spec with "[-]"); last by iNext; auto.
+      iSplitR "Hy"; first by eauto.
       iExists _; iSplitL; [done|]. iAlways; iIntros (n). wp_let. by wp_op.
     - (* The two spawned threads, the waiters. *)
       iSplitL; [|by iIntros (_ _) "_ !>"].
diff --git a/tests/counter.v b/tests/counter.v
index 8986a132626462a7db31da9255fd4a2963d53c4b..7056e303ccc6b4ec6ecbc956399033ab881d68bd 100644
--- a/tests/counter.v
+++ b/tests/counter.v
@@ -95,7 +95,7 @@ Lemma newcounter_spec N :
   heapN âŠ¥ N â†’
   heap_ctx âŠ¢ {{ True }} newcounter #() {{ v, âˆƒ l, v = #l âˆ§ C l 0 }}.
 Proof.
-  iIntros (?) "#Hh !# _ /=". rewrite /newcounter /=. wp_seq. wp_alloc l as "Hl".
+  iIntros (?) "#Hh !# _ /=". rewrite -wp_fupd /newcounter /=. wp_seq. wp_alloc l as "Hl".
   iMod (own_alloc (Auth 0)) as (Î³) "HÎ³"; first done.
   rewrite (auth_frag_op 0 0) //; iDestruct "HÎ³" as "[HÎ³ HÎ³f]".
   iMod (inv_alloc N _ (I Î³ l) with "[Hl HÎ³]") as "#?".
@@ -119,7 +119,7 @@ Proof.
     rewrite (auth_frag_op (S n) (S c)); last lia; iDestruct "HÎ³" as "[HÎ³ HÎ³f]".
     wp_cas_suc. iMod ("Hclose" with "[Hl HÎ³]").
     { iNext. iExists (S c). rewrite Nat2Z.inj_succ Z.add_1_l. by iFrame. }
-    iModIntro. wp_if. iModIntro; rewrite {3}/C; eauto 10.
+    iModIntro. wp_if. rewrite {3}/C; eauto 10.
   - wp_cas_fail; first (intros [=]; abstract omega).
     iMod ("Hclose" with "[Hl HÎ³]"); [iNext; iExists c'; by iFrame|].
     iModIntro. wp_if. iApply ("IH" with "[HÎ³f]"). rewrite {3}/C; eauto 10.
diff --git a/tests/heap_lang.v b/tests/heap_lang.v
index 5f05dd6f3f0bc60d80101eed65f9f1d9b464df96..4cd2dd065c4d698c85de78cea753d0904c4db8fa 100644
--- a/tests/heap_lang.v
+++ b/tests/heap_lang.v
@@ -46,7 +46,7 @@ Section LiftingTests.
     iIntros (Hn) "HÎ¦". iLÃ¶b as "IH" forall (n1 Hn).
     wp_rec. wp_let. wp_op. wp_let. wp_op=> ?; wp_if.
     - iApply ("IH" with "[%] HÎ¦"). omega.
-    - iApply fupd_intro. by assert (n1 = n2 - 1) as -> by omega.
+    - by assert (n1 = n2 - 1) as -> by omega.
   Qed.
 
   Lemma Pred_spec n E Î¦ : â–· Î¦ #(n - 1) âŠ¢ WP Pred #n @ E {{ Î¦ }}.
diff --git a/tests/joining_existentials.v b/tests/joining_existentials.v
index b2351a1ab107d335f34f2f0ab1db0a16693034e1..2abc3576672b5ddb0a36598748fef86e839f4068 100644
--- a/tests/joining_existentials.v
+++ b/tests/joining_existentials.v
@@ -76,7 +76,7 @@ Lemma client_spec_new eM eW1 eW2 `{!Closed [] eM, !Closed [] eW1, !Closed [] eW2
 Proof.
   iIntros (HN) "/= (#Hh&HP&#He&#He1&#He2)"; rewrite /client.
   iMod (own_alloc (Pending : one_shotR Î£ F)) as (Î³) "HÎ³"; first done.
-  wp_apply (newbarrier_spec N (barrier_res Î³ Î¦) with "[- $Hh]"); auto.
+  wp_apply (newbarrier_spec N (barrier_res Î³ Î¦) with "Hh"); auto.
   iIntros (l) "[Hr Hs]".
   set (workers_post (v : val) := (barrier_res Î³ Î¨1 â˜… barrier_res Î³ Î¨2)%I).
   wp_let. wp_apply (wp_par  (Î» _, True)%I workers_post with "[- $Hh]").
@@ -85,7 +85,7 @@ Proof.
     iIntros (v) "HP"; iDestruct "HP" as (x) "HP". wp_let.
     iMod (own_update with "HÎ³") as "Hx".
     { by apply (cmra_update_exclusive (Shot x)). }
-    iApply (signal_spec with "[- $Hs]"). iSplitR ""; last auto.
+    iApply (signal_spec with "[- $Hs]"); last auto.
     iExists x; auto.
   - iDestruct (recv_weaken with "[] Hr") as "Hr"; first by iApply P_res_split.
     iMod (recv_split with "Hr") as "[H1 H2]"; first done.
diff --git a/tests/one_shot.v b/tests/one_shot.v
index aaeeaf2b20d2ae5b5136bfbfb8ab35b661abdd88..cfdaecc0d7d65d69725a09230f3fe2f357d05cc1 100644
--- a/tests/one_shot.v
+++ b/tests/one_shot.v
@@ -42,7 +42,7 @@ Lemma wp_one_shot (Î¦ : val â†’ iProp Î£) :
   âŠ¢ WP one_shot_example #() {{ Î¦ }}.
 Proof.
   iIntros "[#? Hf] /=".
-  rewrite /one_shot_example /=. wp_seq. wp_alloc l as "Hl". wp_let.
+  rewrite -wp_fupd /one_shot_example /=. wp_seq. wp_alloc l as "Hl". wp_let.
   iMod (own_alloc Pending) as (Î³) "HÎ³"; first done.
   iMod (inv_alloc N _ (one_shot_inv Î³ l) with "[Hl HÎ³]") as "#HN".
   { iNext. iLeft. by iSplitL "Hl". }
@@ -69,7 +69,7 @@ Proof.
       + iSplit. iLeft; by iSplitL "Hl". eauto.
       + iSplit. iRight; iExists m; by iSplitL "Hl". eauto. }
     iMod ("Hclose" with "[Hinv]") as "_"; eauto; iModIntro.
-    wp_let. iModIntro. iIntros "!#". wp_seq.
+    wp_let. iIntros "!#". wp_seq.
     iDestruct "Hv" as "[%|Hv]"; last iDestruct "Hv" as (m) "[% HÎ³']"; subst.
     { by wp_match. }
     wp_match. wp_bind (! _)%E.