Skip to content
GitLab
Explore
Sign in
Primary navigation
Search or go to…
Project
I
iris
Manage
Activity
Members
Labels
Plan
Issues
Issue boards
Milestones
Wiki
Code
Merge requests
Repository
Branches
Commits
Tags
Repository graph
Compare revisions
Snippets
Build
Pipelines
Jobs
Pipeline schedules
Artifacts
Deploy
Releases
Model registry
Operate
Environments
Monitor
Incidents
Service Desk
Analyze
Value stream analytics
Contributor analytics
CI/CD analytics
Repository analytics
Model experiments
Help
Help
Support
GitLab documentation
Compare GitLab plans
Community forum
Contribute to GitLab
Provide feedback
Terms and privacy
Keyboard shortcuts
?
Snippets
Groups
Projects
Show more breadcrumbs
Tej Chajed
iris
Commits
17f36e7b
Commit
17f36e7b
authored
9 years ago
by
Robbert Krebbers
Browse files
Options
Downloads
Patches
Plain Diff
Move closed stuff to lang and prove some properties about it.
parent
ffe69a28
No related branches found
Branches containing commit
No related tags found
Tags containing commit
No related merge requests found
Changes
2
Hide whitespace changes
Inline
Side-by-side
Showing
2 changed files
heap_lang/lang.v
+85
-6
85 additions, 6 deletions
heap_lang/lang.v
heap_lang/substitution.v
+0
-54
0 additions, 54 deletions
heap_lang/substitution.v
with
85 additions
and
60 deletions
heap_lang/lang.v
+
85
−
6
View file @
17f36e7b
From
program_logic
Require
Export
language
.
From
program_logic
Require
Export
language
.
From
prelude
Require
Export
string
s
.
From
prelude
Require
Export
string
map
.
From
prelude
Require
Import
gmap
.
From
prelude
Require
Import
gmap
.
Module
heap_lang
.
Module
heap_lang
.
...
@@ -303,7 +303,7 @@ Proof. destruct e; naive_solver. Qed.
...
@@ -303,7 +303,7 @@ Proof. destruct e; naive_solver. Qed.
Lemma
atomic_fill_item
Ki
e
:
atomic
(
fill_item
Ki
e
)
→
is_Some
(
to_val
e
)
.
Lemma
atomic_fill_item
Ki
e
:
atomic
(
fill_item
Ki
e
)
→
is_Some
(
to_val
e
)
.
Proof
.
Proof
.
intros
.
destruct
Ki
;
simplify_eq
/=
;
destruct_
conjs
;
intros
.
destruct
Ki
;
simplify_eq
/=
;
destruct_
and
?
;
repeat
(
case_match
||
contradiction
);
eauto
.
repeat
(
case_match
||
contradiction
);
eauto
.
Qed
.
Qed
.
...
@@ -362,6 +362,88 @@ Lemma alloc_fresh e v σ :
...
@@ -362,6 +362,88 @@ Lemma alloc_fresh e v σ :
let
l
:=
fresh
(
dom
_
σ
)
in
let
l
:=
fresh
(
dom
_
σ
)
in
to_val
e
=
Some
v
→
head_step
(
Alloc
e
)
σ
(
Loc
l
)
(
<
[
l
:=
v
]
>
σ
)
None
.
to_val
e
=
Some
v
→
head_step
(
Alloc
e
)
σ
(
Loc
l
)
(
<
[
l
:=
v
]
>
σ
)
None
.
Proof
.
by
intros
;
apply
AllocS
,
(
not_elem_of_dom
(
D
:=
gset
_)),
is_fresh
.
Qed
.
Proof
.
by
intros
;
apply
AllocS
,
(
not_elem_of_dom
(
D
:=
gset
_)),
is_fresh
.
Qed
.
(** Closed expressions *)
Definition
of_binder
(
mx
:
binder
)
:
stringset
:=
match
mx
with
BAnon
=>
∅
|
BNamed
x
=>
{[
x
]}
end
.
Lemma
elem_of_of_binder
x
mx
:
x
∈
of_binder
mx
↔
mx
=
BNamed
x
.
Proof
.
destruct
mx
;
set_solver
.
Qed
.
Global
Instance
set_unfold_of_binder
(
mx
:
binder
)
x
:
SetUnfold
(
x
∈
of_binder
mx
)
(
mx
=
BNamed
x
)
.
Proof
.
constructor
;
destruct
mx
;
set_solver
.
Qed
.
Fixpoint
is_closed
(
X
:
stringset
)
(
e
:
expr
)
:
bool
:=
match
e
with
|
Var
x
=>
bool_decide
(
x
∈
X
)
|
Rec
f
y
e
=>
is_closed
(
of_binder
f
∪
of_binder
y
∪
X
)
e
|
App
e1
e2
=>
is_closed
X
e1
&&
is_closed
X
e2
|
Lit
l
=>
true
|
UnOp
_
e
=>
is_closed
X
e
|
BinOp
_
e1
e2
=>
is_closed
X
e1
&&
is_closed
X
e2
|
If
e0
e1
e2
=>
is_closed
X
e0
&&
is_closed
X
e1
&&
is_closed
X
e2
|
Pair
e1
e2
=>
is_closed
X
e1
&&
is_closed
X
e2
|
Fst
e
=>
is_closed
X
e
|
Snd
e
=>
is_closed
X
e
|
InjL
e
=>
is_closed
X
e
|
InjR
e
=>
is_closed
X
e
|
Case
e0
e1
e2
=>
is_closed
X
e0
&&
is_closed
X
e1
&&
is_closed
X
e2
|
Fork
e
=>
is_closed
X
e
|
Loc
l
=>
true
|
Alloc
e
=>
is_closed
X
e
|
Load
e
=>
is_closed
X
e
|
Store
e1
e2
=>
is_closed
X
e1
&&
is_closed
X
e2
|
Cas
e0
e1
e2
=>
is_closed
X
e0
&&
is_closed
X
e1
&&
is_closed
X
e2
end
.
Class
Closed
(
e
:
expr
)
:=
closed
:
∀
x
v
,
subst
e
x
v
=
e
.
Lemma
is_closed_subst_same
X
e
x
v
:
is_closed
X
e
→
x
∉
X
→
subst
e
x
v
=
e
.
Proof
.
revert
X
.
induction
e
;
simpl
;
repeat
case_decide
;
naive_solver
eauto
with
f_equal
set_solver
.
Qed
.
Lemma
is_closed_Closed
e
:
is_closed
∅
e
→
Closed
e
.
Proof
.
intros
?
x
v
.
by
eapply
is_closed_subst_same
,
not_elem_of_empty
.
Qed
.
Ltac
solve_closed
:=
apply
is_closed_Closed
;
vm_compute
;
exact
I
.
Lemma
is_closed_weaken
X
Y
e
:
is_closed
X
e
→
X
⊆
Y
→
is_closed
Y
e
.
Proof
.
revert
X
Y
.
induction
e
;
simpl
;
intros
;
naive_solver
eauto
with
f_equal
set_solver
.
Qed
.
Lemma
is_closed_fill_item
X
Ki
e
:
is_closed
X
(
fill_item
Ki
e
)
→
is_closed
X
e
.
Proof
.
destruct
Ki
;
rewrite
/=
?andb_True
;
tauto
.
Qed
.
Lemma
is_closed_fill
X
K
e
:
is_closed
X
(
fill
K
e
)
→
is_closed
X
e
.
Proof
.
induction
K
;
simpl
;
eauto
using
is_closed_fill_item
.
Qed
.
Lemma
is_closed_subst
X
e
x
v
:
is_closed
({[
x
]}
∪
X
)
e
→
is_closed
∅
(
of_val
v
)
→
is_closed
X
(
subst
e
x
v
)
.
Proof
.
revert
X
.
elim
:
e
;
simpl
;
try
by
intros
;
destruct_and
?;
split_and
?;
auto
.
-
intros
y
X
;
rewrite
bool_decide_spec
=>??
.
case_decide
;
subst
;
last
set_solver
.
eauto
using
is_closed_weaken
with
set_solver
.
-
intros
f
y
e
IH
X
??
.
case_decide
as
Hx
.
+
apply
IH
;
clear
IH
;
eauto
using
is_closed_weaken
with
set_solver
.
+
clear
IH
;
apply
not_and_l
in
Hx
;
destruct
Hx
as
[
Hx
|
Hx
];
apply
dec_stable
in
Hx
;
subst
;
eauto
using
is_closed_weaken
with
set_solver
.
Qed
.
Lemma
is_closed_subst'
X
e
x
v
:
is_closed
(
of_binder
x
∪
X
)
e
→
is_closed
∅
(
of_val
v
)
→
is_closed
X
(
subst'
e
x
v
)
.
Proof
.
destruct
x
;
rewrite
/=
?left_id_L
;
auto
using
is_closed_subst
.
Qed
.
Lemma
is_closed_head_step
e1
σ1
e2
σ2
ef
:
(* for load, the state should be closed *)
match
e1
with
Load
_
=>
False
|
_
=>
True
end
→
head_step
e1
σ1
e2
σ2
ef
→
is_closed
∅
e1
→
is_closed
∅
e2
.
Proof
.
destruct
2
;
rewrite
/=
?andb_True
;
try
match
goal
with
H
:
to_val
_
=
_
|
-
_
=>
apply
of_to_val
in
H
;
subst
end
;
try
tauto
.
intros
[??]
.
repeat
apply
is_closed_subst'
;
rewrite
/=
?assoc_L
;
auto
.
Qed
.
End
heap_lang
.
End
heap_lang
.
(** Language *)
(** Language *)
...
@@ -389,7 +471,4 @@ Qed.
...
@@ -389,7 +471,4 @@ Qed.
Global
Instance
heap_lang_ctx_item
Ki
:
Global
Instance
heap_lang_ctx_item
Ki
:
LanguageCtx
heap_lang
(
heap_lang
.
fill_item
Ki
)
.
LanguageCtx
heap_lang
(
heap_lang
.
fill_item
Ki
)
.
Proof
.
Proof
.
change
(
LanguageCtx
heap_lang
(
heap_lang
.
fill
[
Ki
]))
.
apply
_
.
Qed
.
change
(
LanguageCtx
heap_lang
(
heap_lang
.
fill
[
Ki
]))
.
by
apply
_
.
Qed
.
This diff is collapsed.
Click to expand it.
heap_lang/substitution.v
+
0
−
54
View file @
17f36e7b
...
@@ -6,7 +6,6 @@ Import heap_lang.
...
@@ -6,7 +6,6 @@ Import heap_lang.
can be tuned using instances of the type class [Closed e], which can be used
can be tuned using instances of the type class [Closed e], which can be used
to mark that expressions are closed, and should thus not be substituted into. *)
to mark that expressions are closed, and should thus not be substituted into. *)
Class
Closed
(
e
:
expr
)
:=
closed
:
∀
x
v
,
subst
e
x
v
=
e
.
Class
Subst
(
e
:
expr
)
(
x
:
string
)
(
v
:
val
)
(
er
:
expr
)
:=
Class
Subst
(
e
:
expr
)
(
x
:
string
)
(
v
:
val
)
(
er
:
expr
)
:=
do_subst
:
subst
e
x
v
=
er
.
do_subst
:
subst
e
x
v
=
er
.
Hint
Mode
Subst
+
+
+
-
:
typeclass_instances
.
Hint
Mode
Subst
+
+
+
-
:
typeclass_instances
.
...
@@ -110,57 +109,4 @@ Instance subst_cas e0 e1 e2 x v e0r e1r e2r :
...
@@ -110,57 +109,4 @@ Instance subst_cas e0 e1 e2 x v e0r e1r e2r :
Subst
(
Cas
e0
e1
e2
)
x
v
(
Cas
e0r
e1r
e2r
)
.
Subst
(
Cas
e0
e1
e2
)
x
v
(
Cas
e0r
e1r
e2r
)
.
Proof
.
by
intros
;
red
;
f_equal
/=.
Qed
.
Proof
.
by
intros
;
red
;
f_equal
/=.
Qed
.
Definition
of_binder
(
mx
:
binder
)
:
stringset
:=
match
mx
with
BAnon
=>
∅
|
BNamed
x
=>
{[
x
]}
end
.
Lemma
elem_of_of_binder
x
mx
:
x
∈
of_binder
mx
↔
mx
=
BNamed
x
.
Proof
.
destruct
mx
;
set_solver
.
Qed
.
Global
Instance
set_unfold_of_binder
(
mx
:
binder
)
x
:
SetUnfold
(
x
∈
of_binder
mx
)
(
mx
=
BNamed
x
)
.
Proof
.
constructor
;
destruct
mx
;
set_solver
.
Qed
.
(** * Solver for [Closed] *)
Fixpoint
is_closed
(
X
:
stringset
)
(
e
:
expr
)
:
bool
:=
match
e
with
|
Var
x
=>
bool_decide
(
x
∈
X
)
|
Rec
f
y
e
=>
is_closed
(
of_binder
f
∪
of_binder
y
∪
X
)
e
|
App
e1
e2
=>
is_closed
X
e1
&&
is_closed
X
e2
|
Lit
l
=>
true
|
UnOp
_
e
=>
is_closed
X
e
|
BinOp
_
e1
e2
=>
is_closed
X
e1
&&
is_closed
X
e2
|
If
e0
e1
e2
=>
is_closed
X
e0
&&
is_closed
X
e1
&&
is_closed
X
e2
|
Pair
e1
e2
=>
is_closed
X
e1
&&
is_closed
X
e2
|
Fst
e
=>
is_closed
X
e
|
Snd
e
=>
is_closed
X
e
|
InjL
e
=>
is_closed
X
e
|
InjR
e
=>
is_closed
X
e
|
Case
e0
e1
e2
=>
is_closed
X
e0
&&
is_closed
X
e1
&&
is_closed
X
e2
|
Fork
e
=>
is_closed
X
e
|
Loc
l
=>
true
|
Alloc
e
=>
is_closed
X
e
|
Load
e
=>
is_closed
X
e
|
Store
e1
e2
=>
is_closed
X
e1
&&
is_closed
X
e2
|
Cas
e0
e1
e2
=>
is_closed
X
e0
&&
is_closed
X
e1
&&
is_closed
X
e2
end
.
Lemma
is_closed_sound
e
:
is_closed
∅
e
→
Closed
e
.
Proof
.
cut
(
∀
x
v
X
,
is_closed
X
e
→
x
∉
X
→
subst
e
x
v
=
e
)
.
{
intros
help
?
x
v
.
by
apply
(
help
x
v
∅
)
.
}
intros
x
v
;
induction
e
;
simpl
;
intros
;
repeat
match
goal
with
|
_
=>
progress
subst
|
_
=>
contradiction
|
H
:
Is_true
(
bool_decide
_)
|
-
_
=>
apply
(
bool_decide_unpack
_)
in
H
|
H
:
Is_true
(_
&&
_)
|
-
_
=>
apply
andb_True
in
H
|
H
:
_
∧
_
|
-
_
=>
destruct
H
|
_
=>
case_decide
|
_
=>
f_equal
end
;
eauto
;
try
match
goal
with
|
H
:
∀
_,
_
→
_
∉
_
→
subst
_
_
_
=
_
|
-
_
=>
eapply
H
;
first
done
;
rewrite
!
elem_of_union
!
elem_of_of_binder
;
intuition
congruence
end
.
Qed
.
Ltac
solve_closed
:=
apply
is_closed_sound
;
vm_compute
;
exact
I
.
Global
Opaque
subst
.
Global
Opaque
subst
.
This diff is collapsed.
Click to expand it.
Preview
0%
Loading
Try again
or
attach a new file
.
Cancel
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Save comment
Cancel
Please
register
or
sign in
to comment
