From b26be52c3142d0b97fba8086b4bb4c8ddb3f7385 Mon Sep 17 00:00:00 2001
From: Yann Herklotz <git@yannherklotz.com>
Date: Wed, 13 Oct 2021 08:54:36 +0100
Subject: [sched] Add proofs of sem_pred_det

---
 src/hls/Abstr.v | 52 ++++++++++++++++++++++++++++++++++++++++++++--------
 1 file changed, 44 insertions(+), 8 deletions(-)

(limited to 'src/hls')

diff --git a/src/hls/Abstr.v b/src/hls/Abstr.v
index c04b31c..512235e 100644
--- a/src/hls/Abstr.v
+++ b/src/hls/Abstr.v
@@ -749,16 +749,52 @@ Section CORRECT.
   Context (ictx: @ctx fd) (octx: @ctx tfd) (HSIM: similar ictx octx).
 
   Lemma sem_value_det:
-    forall e v v', sem_value ictx e v -> sem_value octx e v' -> v = v'.
-  Proof.
+    forall e v v' m m',
+      (sem_value ictx e v -> sem_value octx e v' -> v = v')
+      /\ (sem_mem ictx e m -> sem_mem octx e m' -> m = m').
+  Proof using HSIM.
     induction e using expression_ind2
-      with (P0 := fun p => forall v, sem_val_list ictx p v -> sem_val_list octx p v);
+      with (P0 := fun p => forall v v',
+                    sem_val_list ictx p v -> sem_val_list octx p v' -> v = v');
     try solve [inversion 1];
-    simplify; inv HSIM.
-    - inv H0. inv H. eauto.
-    - inv H0. inv H. simplify.
-      simplify. unfold ge_preserved in *; crush.
-    - inv H. simplify. econstructor.
+    simplify; inv HSIM; simplify.
+    - inv H0. inv H1. auto.
+    - inv H0. inv H1. auto.
+    - inv H0. inv H1. simplify.
+      assert (lv = lv0). apply IHe; eauto. subst.
+      inv H. rewrite H0 in H7; crush.
+    - inv H0.
+    - inv H1. inv H0. simplify.
+      assert (lv0 = lv). apply IHe; eauto. subst.
+      inv H. rewrite H1 in H13.
+      assert (a0 = a1) by crush. subst.
+      assert (m'1 = m'0). apply IHe0; eauto. subst.
+      crush.
+    - inv H0.
+    - inv H0.
+    - inv H0. inv H1. simplify.
+      assert (lv = lv0). { apply IHe2; eauto. } subst.
+      assert (a1 = a0). { inv H.  rewrite H1 in H12. crush. } subst.
+      assert (v0 = v1). { apply IHe1; auto. } subst.
+      assert (m'0 = m'1). { apply IHe3; auto. } subst.
+      crush.
+    - inv H0.
+    - inv H0.
+    - inv H0. inv H. auto.
+    - inv H0. inv H. f_equal. apply IHe; auto.
+      apply IHe0; auto.
+  Qed.
+
+  Lemma sem_pred_det:
+    forall e v v',
+      sem_pred ictx e v -> sem_pred octx e v' -> v = v'.
+  Proof.
+    induction e using expression_ind2
+      with (P0 := fun p => forall v v',
+                    sem_val_list ictx p v -> sem_val_list octx p v' -> v = v');
+    try solve [inversion 1]; inv HSIM; simplify.
+    - inv H0. inv H1. auto.
+    - inv H0. inv H1.
 
   Lemma check_correct_sem_value:
     forall x x' v v' n,
-- 
cgit