On branch master
	modified:   algebra/fin_maps.v
Untracked files:
	heap_lang/heap.v
no changes added to commit (use "git add" and/or "git commit -a")

(missed practically everything in the previous commit)

Also, make our redefinition of done more robust under different
orders of Importing modules.

Also do some minor clean up.

Introduce the notion of "Frame Shift Assertions", and use to prove the rules about inv and auth at once for pvs and wp

Yeah, the name is horrible... but on the plus side, I think it should be possible to show that atomic triples and atomic shifts are also frame shift assertions, and then we get all this stuff for them for free.

Instead, I separate it into a total function and a predicate
describe whether the action is allowed or not. This has some
advantages:

* It is much easier to deal with total functions and predicates
  in Coq than with functions into option.
* Already existing functions do not need to be wrapped. Instead,
  when using a local update you end up with a sensible side
  condition as a Coq Prop.
* The definition of local updates (and all CMRA instances) no
  longer depend on option.

This way we avoid many one-off indexes and no longer need special cases for
index 0 in many definitions. For example, the definition of the distance
relation on option and excl has become much easier. Also, uPreds no longer need
to hold at index 0.

In order to make this change possible, we had to change the notions of
"contractive functions" and "chains" slightly.

Thanks to Aleš Bizjak and Amin Timany for suggesting this change and to help
with the proofs.

* Insert and singleton operation.
* Identity element.
* Non-expansiveness and properness of insert and singleton.
* Frame preserving updates.
* Functoriality.

Instead, we have just a construction to create a CMRA from a RA. This
construction is also slightly generalized, it now works for RAs over any
timeless COFE instead of just the discrete COFE.

Also:
* Put tactics and big_ops for CMRAs in a separate file.
* Valid is now a derived notion (as the limit of validN), so it does not have
  to be defined by hand for each CMRA.

Todo:
Make the constructions DRA -> CMRA and RA -> CMRA more uniform.