Skip to content
GitLab
Explore
Sign in
Primary navigation
Search or go to…
Project
S
stdpp
Manage
Activity
Members
Labels
Plan
Issues
Issue boards
Milestones
Wiki
Code
Merge requests
Repository
Branches
Commits
Tags
Repository graph
Compare revisions
Build
Pipelines
Jobs
Pipeline schedules
Artifacts
Deploy
Releases
Model registry
Monitor
Service Desk
Analyze
Value stream analytics
Contributor analytics
CI/CD analytics
Repository analytics
Model experiments
Help
Help
Support
GitLab documentation
Compare GitLab plans
Community forum
Contribute to GitLab
Provide feedback
Terms and privacy
Keyboard shortcuts
?
Snippets
Groups
Projects
Show more breadcrumbs
Iris
stdpp
Commits
0a52e84c
Commit
0a52e84c
authored
1 year ago
by
Robbert Krebbers
Browse files
Options
Downloads
Patches
Plain Diff
CHANGELOG.
parent
211ee09d
No related branches found
Branches containing commit
No related tags found
Tags containing commit
2 merge requests
!532
Provide "lookup" and commuting lemmas as equations that always apply, and fix some inconsistent lemma naming
,
!526
Provide "lookup" and "commuting" lemmas that handle "eq" and "ne" case in a single statement.
Pipeline
#91376
passed
1 year ago
Changes
1
Pipelines
1
Hide whitespace changes
Inline
Side-by-side
Showing
1 changed file
CHANGELOG.md
+148
-0
148 additions, 0 deletions
CHANGELOG.md
with
148 additions
and
0 deletions
CHANGELOG.md
+
148
−
0
View file @
0a52e84c
...
...
@@ -23,6 +23,88 @@ API-breaking change is listed.
-
Add
`inv`
tactic as a more well-behaved alternative to
`inversion_clear`
(inspired by CompCert), and
`oinv`
as its version on open terms.
-
Add
`prod_swap : A * B → B * A`
and some basic theory about it.
-
Adjust the
`lookup`
and
`lookup_total`
lemmas for lists and maps to cover the
"eq" and "ne" case in a single lemma statement.
+
The new lemmas are of the form
`lookup_op : op .. i !! j = if decide (i = j) then .. else ..`
, e.g.,
`lookup_delete : delete i m !! j = if decide (i = j) then None else m !! j`
.
These lemmas are convenient because proofs of the form:
`destruct (decide (i = j)). { rewrite lookup_op_eq .. } { rewrite lookup_op_ne .. }`
can often be shortened to
`rewrite lookup_op; case_decide`
.
+
The original lemma
`lookup_op : op .. i !! i = ...`
is renamed into
`lookup_op_eq`
. For example,
`lookup_delete`
becomes
`lookup_delete_eq`
.
A full list of renames can be found in the
`sed`
script.
+
The original lemma
`lookup_op_ne : op .. i !! j = ...`
is unaffected.
-
Rename
`multiplicity_singleton`
→
`multiplicity_singleton_eq`
and
`multiplicity_singleton'`
→
`multiplicity_singleton`
. That is, the lemma
`multiplicity_singleton`
becomes the version with
`decide`
in order to be
consistent with the
`lookup`
lemmas.
-
Adjust the "commuting" lemmas for lists and maps to cover the "eq" and "ne"
case in a single lemma statement.
+
The new lemmas are of the form
`op1_op2 : op1 .. i (op2 .. j) = if decide (i = j) then .. else ..`
, e.g.,
`insert_delete <[i:=x]> (delete j m) = if decide (i = j) then <[i:=x]> m else delete j (<[i:=x]> m)`
.
+
Consistently provide versions
`op1_op2_eq`
and
`op1_op2_ne`
. For example,
`insert_delete_eq : <[i:=x]> (delete i m) = <[i:=x]> m`
and
`insert_delete_ne : i ≠ j → <[i:=x]> (delete j m) = delete j (<[i:=x]> m)`
.
+
For maps, lemmas have been added for all combinations of
`op1`
being
`partial_alter`
,
`alter`
,
`delete`
and
`insert`
; and
`op2`
being any of the
aforementioned operations or
`singleton`
.
+
Existing lemmas have been renamed to follow the new scheme:
`partial_alter_compose`
→
`partial_alter_partial_alter_eq`
(direction also
changed),
`partial_alter_commute`
→
`partial_alter_partial_alter_ne`
,
`alter_compose`
→
`alter_alter_eq`
(direction also changed),
`alter_commute`
→
`alter_alter_ne`
.
`delete_commute`
→
`delete_delete`
(no
`_ne`
suffix because the lemmas holds
without
`≠`
premise),
`delete_idemp`
→
`delete_delete_eq`
,
`insert_commute`
→
`insert_insert_ne`
,
`alter_insert`
→
`alter_insert_eq`
,
`delete_insert_delete`
→
`delete_insert_eq`
,
`delete_alter`
→
`delete_alter_eq`
,
`insert_delete_insert`
→
`insert_delete_eq`
,
`delete_insert_delete`
→
`delete_insert_eq`
,
`delete_alter`
→
`delete_alter_eq`
,
`insert_delete_insert`
→
`insert_delete_eq`
,
`delete_alter`
→
`delete_alter_eq`
,
`alter_singleton`
→
`alter_singleton_eq`
,
`delete_singleton`
→
`delete_singleton_eq`
,
`insert_singleton`
→
`insert_singleton_eq`
,
`foldr_delete_commute`
→
`delete_foldr_delete`
,
`list_insert_insert`
→
`list_insert_insert_eq`
,
`list_insert_commute`
→
`list_insert_insert_ne`
,
`list_alter_compose`
→
`list_alter_alter_eq`
(direction also changed),
`list_alter_commute`
→
`list_alter_alter_eq`
,
`take_insert`
→
`take_insert_ge`
,
`take_alter`
→
`take_alter_ge`
,
`drop_alter`
→
`drop_alter_lt`
.
+
Add
`alter_app`
and
`insert_app`
.
+
Other related renames:
`foldr_delete_insert`
→
`foldr_delete_insert_in`
`foldr_delete_insert_ne`
→
`foldr_delete_insert_notin`
.
-
The names
`op1_op2`
were sometimes used for lemmas of the shape
`.. → op1 .. (op2 .. m) = m`
. These lemmas are now called
`op1_op2_id`
(because they are the "identity", but that requires preconditions to hold):
`partial_alter_self_alt`
→
`partial_alter_id`
(also became stronger, but
should be backwards compatible),
`delete_notin`
→
`delete_id`
,
`delete_insert`
→
`delete_insert_id`
,
`insert_delete`
→
`insert_delete_id`
,
`foldr_delete_notin`
→
`foldr_delete_id`
.
-
Add lemma
`partial_alter_id`
.
-
Rename
`lookup_delete_lt`
→
`list_lookup_delete_lt`
,
`lookup_delete_ge`
→
`list_lookup_delete_ge`
,
`lookup_total_delete_lt`
→
`list_lookup_total_delete_lt`
`lookup_total_delete_ge`
→
`list_lookup_total_delete_ge`
.
The
`list_`
suffix is needed to avoid conflicts with the map lemmas.
-
Add lemmas
`list_lookup_delete`
and
`list_lookup_total_delete`
that combine
both versions.
-
Rename
`drop_insert_le`
→
`drop_insert_gt`
and
`drop_insert_gt`
→
`drop_insert_lt`
to make the direction of the inequality consistent with the
`take`
lemmas.
-
Add lemmas
`lookup_singleton_is_Some`
,
`list_lookup_insert_is_Some`
,
`list_lookup_insert_None`
.
The following
`sed`
script should perform most of the renaming
(on macOS, replace
`sed`
by
`gsed`
, installed via e.g.
`brew install gnu-sed`
).
...
...
@@ -31,6 +113,72 @@ Note that the script is not idempotent, do not run it twice.
sed -i -E -f- $(find theories -name "*.v") <<EOF
# well_founded
s/\bwf\b/well_founded/g
# map _eq lookup lemmas
s/\blookup_partial_alter\b/lookup_partial_alter_eq/g
s/\blookup_total_partial_alter\b/lookup_total_partial_alter_eq/g
s/\blookup_alter\b/lookup_alter_eq/g # total_lookup_version was missing, added
s/\blookup_delete\b/lookup_delete_eq/g
s/\blookup_total_delete\b/lookup_total_delete_eq/g
s/\blookup_insert\b/lookup_insert_eq/g
s/\blookup_total_insert\b/lookup_total_insert_eq/g
s/\blookup_singleton\b/lookup_singleton_eq/g
s/\blookup_total_singleton\b/lookup_total_singleton_eq/g
# map _eq commute lemmas
s/\bpartial_alter_compose\b/partial_alter_partial_alter_eq/g # direction changed
s/\bpartial_alter_commute\b/partial_alter_partial_alter_ne/g
s/\balter_compose\b/alter_alter_eq/g # direction changed
s/\balter_commute\b/alter_alter_ne/g
s/\bdelete_commute\b/delete_delete/g # no _ne since no ≠ premise is needed
s/\bdelete_idemp\b/delete_delete_eq/g
s/\binsert_insert\b/insert_insert_eq/g
s/\binsert_commute\b/insert_insert_ne/g
s/\balter_insert\b/alter_insert_eq/g
s/\bdelete_insert\b/delete_insert_id/g # Has m !! i = None premise, and gives .. = m
s/\bdelete_insert_delete\b/delete_insert_eq/g
s/\bdelete_alter\b/delete_alter_eq/g
s/\binsert_delete_insert\b/insert_delete_eq/g
s/\binsert_delete\b/insert_delete_id/g # Has m !! i = Some .. premise, and gives .. = m
s/\bdelete_alter\b/delete_alter_eq/g
s/\balter_singleton\b/alter_singleton_eq/g
s/\bdelete_singleton\b/delete_singleton_eq/g
s/\binsert_singleton\b/insert_singleton_eq/g
s/\bfoldr_delete_commute\b/delete_foldr_delete/g
s/\bfoldr_delete_notin\b/foldr_delete_id/g
s/\bfoldr_delete_insert\b/foldr_delete_insert_in/g
s/\bfoldr_delete_insert_ne\b/foldr_delete_insert_notin/g
# map misc changes
s/\bdelete_notin\b/delete_id/g # instance of partial_alter_id
s/\bpartial_alter_self_alt\b/partial_alter_id/g # also became stronger, but should be backwards compatible
# _eq lemmas for multiset
s/\bmultiplicity_singleton\b/multiplicity_singleton_eq/g
s/\bmultiplicity_singleton'\b/multiplicity_singleton/g
# list _eq lookup lemmas
s/\blist_lookup_insert\b/list_lookup_insert_eq/g
s/\blist_lookup_total_insert\b/list_lookup_total_insert_eq/g
s/\blist_lookup_alter\b/list_lookup_alter_eq/g
s/\blist_lookup_total_alter\b/list_lookup_total_alter_eq/g
s/\blookup_delete_lt\b/list_lookup_delete_lt/g
s/\blookup_delete_ge\b/list_lookup_delete_ge/g
s/\blookup_total_delete_lt\b/list_lookup_total_delete_lt/g
s/\blookup_total_delete_ge\b/list_lookup_total_delete_ge/g
s/\blookup_take\b/lookup_take_lt/g
s/\blookup_total_take\b/lookup_total_take_lt/g
# list _eq commute lemmas
s/\blist_insert_insert\b/list_insert_insert_eq/g
s/\blist_insert_commute\b/list_insert_insert_ne/g
s/\blist_alter_compose\b/list_alter_alter_eq/g # direction changed
s/\blist_alter_commute\b/list_alter_alter_eq/g
s/\btake_insert\b/take_insert_ge/g
s/\btake_alter\b/take_alter_ge/g
s/\bdrop_alter\b/drop_alter_lt/g
s/\bdrop_insert_le\b/drop_insert_gt/g # make inequality consistent with take lemma
s/\bdrop_insert_gt\b/drop_insert_lt/g # make inequality consistent with take lemma
EOF
```
...
...
This diff is collapsed.
Click to expand it.
Preview
0%
Loading
Try again
or
attach a new file
.
Cancel
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Save comment
Cancel
Please
register
or
sign in
to comment
