CplusWf.v: Copyright 2010 Tahina Ramananandro
Require Import LibLists.
Require Export Cplusconcepts.
Require Import Coqlib.
Require Import LibMaps.
Load Param.
A hierarchy is well-formed if, and only if, all the following conditions hold:
-
it is well-founded, i.e. for any classes B and C, if B is directly reachable from C (direct base, or type of scalar array field), then B < C
-
it is complete, i.e. for any classes B and C, if C is defined and if B is directly reachable from C, then B is defined
This module presents useful consequences of the well-formedness of a hierarchy
.
Section HH.
Variable A :
ATOM.t.
Variable hierarchy :
PTree.t (
Class.t A).
Record prop :
Prop :=
intro {
well_founded :
forall ci c,
PTree.get ci hierarchy =
Some c ->
forall h cisuper,
In (
h,
cisuper) (
Class.super c) ->
Plt cisuper ci
;
well_founded_struct :
forall ci c,
PTree.get ci hierarchy =
Some c ->
forall fi,
In fi (
Class.fields c) ->
forall cl z,
FieldSignature.type fi =
FieldSignature.Struct cl z ->
Plt cl ci
;
complete :
forall ci c,
PTree.get ci hierarchy =
Some c ->
forall h cisuper,
In (
h,
cisuper) (
Class.super c) ->
PTree.get cisuper hierarchy <>
None
;
complete_struct :
forall ci c,
PTree.get ci hierarchy =
Some c ->
forall fi,
In fi (
Class.fields c) ->
forall cl z,
FieldSignature.type fi =
FieldSignature.Struct cl z ->
hierarchy !
cl <>
None
;
necessary for construction
bases_no_dup :
forall ci c,
PTree.get ci hierarchy =
Some c ->
NoDup (
Class.super c)
;
fields_no_dup :
forall ci c,
PTree.get ci hierarchy =
Some c ->
NoDup (
Class.fields c)
}.
Hint Resolve well_founded complete.
Hypothesis hyp :
prop.
Well-foundedness properties
Lemma is_virtual_base_of_defined_base :
forall vb ci,
is_virtual_base_of hierarchy vb ci ->
hierarchy !
vb <>
None.
Proof.
induction 1.
eapply complete.
auto.
eassumption.
eassumption.
assumption.
Qed.
Lemma is_virtual_base_of_lt :
forall vb ci,
is_virtual_base_of hierarchy vb ci ->
Plt vb ci.
Proof.
destruct hyp.
induction 1.
eauto.
eauto using Plt_trans.
Qed.
Corollary no_self_virtual_base :
forall ci, ~
is_virtual_base_of hierarchy ci ci.
Proof.
Lemma is_valid_repeated_subobject_le :
forall l a l',
l =
a ::
l' ->
forall z,
Cplusconcepts.last l =
Some z ->
is_valid_repeated_subobject hierarchy l =
true ->
Ple z a.
Proof.
destruct hyp.
induction l.
congruence.
injection 1 ;
intros ;
subst.
revert H3.
simpl.
case_eq (
hierarchy !
a0) ;
try congruence.
intros until 1.
remember l'
as l''.
pattern l''
at 1.
rewrite Heql''.
destruct l'.
subst ;
simpl in *.
intros.
unfold Ple.
injection H2 ;
intros ;
subst ;
omega.
destruct (
In_dec super_eq_dec (
Class.Inheritance.Repeated,
i) (
Class.super t)
);
try congruence.
intros.
subst.
replace (
Cplusconcepts.last (
a0 ::
i ::
l'))
with (
Cplusconcepts.last (
i ::
l'))
in H2.
apply Plt_Ple.
eauto using Ple_Plt_trans.
change (
a0 ::
i ::
l')
with ((
a0 ::
nil) ++
i ::
l').
rewrite last_app_left.
trivial.
congruence.
Qed.
Corollary path_le :
forall to k from p,
path hierarchy to k from p ->
Ple to from.
Proof.
Lemma self_path_trivial :
forall from k p,
path hierarchy from p from k ->
(
k,
p) = (
Class.Inheritance.Repeated,
from ::
nil).
Proof.
Lemma categorize_paths :
forall to via from,
forall kind,
path hierarchy to via from kind ->
forall h q,
via =
h ::
q ->
(
h =
from <->
kind =
Class.Inheritance.Repeated).
Proof.
intros until h.
revert h.
generalize (
path_path2 H).
clear H.
induction 1.
injection 1 ;
intros ;
subst.
tauto.
injection 1 ;
intros ;
subst.
tauto.
intros.
subst.
split.
intros.
subst.
generalize (
IHpath2 _ _ (
refl_equal _)).
destruct 1.
destruct h.
generalize (
H3 (
refl_equal _)).
intros ;
subst.
destruct (@
no_self_virtual_base interm).
eleft.
eassumption.
assumption.
generalize (
path_path0 (
path2_path H1)).
inversion 1.
subst.
injection H6 ;
intros ;
subst.
destruct (@
no_self_virtual_base base).
eapply is_virtual_base_of_trans.
eleft.
eassumption.
eassumption.
assumption.
intros ;
discriminate.
intros ;
subst.
split ;
intros ;
try discriminate.
subst.
generalize (
IHpath2 _ _ (
refl_equal _)).
destruct 1.
generalize (
path_path0 (
path2_path H1)).
inversion 1.
subst.
injection H6 ;
intros ;
subst.
destruct (@
no_self_virtual_base base).
eright.
eassumption.
eassumption.
assumption.
Qed.
Corollary path_eq_hierarchy_eq :
forall p h1 from to1,
path hierarchy to1 p from h1 ->
forall to2 h2,
path hierarchy to2 p from h2 ->
h1 =
h2.
Proof.
Lemma is_valid_repeated_subobject_sorted :
forall l,
is_valid_repeated_subobject hierarchy l =
true ->
LibLists.sorted (
fun a b =>
Plt b a)
l.
Proof.
induction l ;
simpl.
congruence.
case_eq (
hierarchy !
a) ;
try congruence.
intros until 1.
remember l as m.
pattern m at 2.
rewrite Heqm.
destruct m ;
simpl.
intros ;
constructor.
destruct (
In_dec super_eq_dec (
Class.Inheritance.Repeated,
i) (
Class.super t)
) ;
try congruence.
intros.
generalize (
well_founded hyp H i0).
intros.
constructor.
assumption.
subst.
auto.
Qed.
Lemma array_path_le :
forall via to to_n from from_n,
valid_array_path hierarchy to to_n from from_n via ->
Ple to from.
Proof.
Construction of the list of (direct or indirect) virtual bases
Function primary_virtual_bases (
l :
list (
Class.Inheritance.t *
ident)) :
list ident :=
match l with
|
nil =>
nil
| (
Class.Inheritance.Shared,
ci) ::
q =>
ci ::
primary_virtual_bases q
|
_ ::
q =>
primary_virtual_bases q
end.
Lemma primary_virtual_bases_correct :
forall b l,
In b (
primary_virtual_bases l) ->
In (
Class.Inheritance.Shared,
b)
l.
Proof.
induction l ; simpl.
tauto.
destruct a.
destruct t.
eauto.
simpl.
inversion 1.
subst.
eauto.
eauto.
Qed.
Lemma primary_virtual_bases_complete :
forall l b,
In (
Class.Inheritance.Shared,
b)
l ->
In b (
primary_virtual_bases l).
Proof.
induction l; simpl; eauto.
inversion 1 ; subst; eauto.
destruct a ; simpl.
destruct t ; simpl ; eauto.
Qed.
Lemma virtual_bases_step :
forall n t,
(
forall i,
Plt i n ->
t !
i <>
None) ->
(
forall i l,
t !
i =
Some l ->
forall j,
In j l <->
is_virtual_base_of hierarchy j i) ->
{
l :
_ &
forall j,
In j l <->
is_virtual_base_of hierarchy j n}.
Proof.
Theorem virtual_bases :
{
t |
(
forall cn,
hierarchy !
cn <>
None ->
t !
cn <>
None) /\
forall cn l,
t !
cn =
Some l ->
forall i, (
In i l <->
is_virtual_base_of hierarchy i cn)
}.
Proof.
Construction of the list of all paths reachable from classes
Section Path_to.
Variable to :
ident.
Lemma path_to_step :
forall n t, (
forall i,
Plt i n ->
t !
i <>
None) ->
(
forall i l,
t !
i =
Some l ->
forall kp :
_ *
_,
In kp l <->
let (
k,
p) :=
kp in path hierarchy to p i k) ->
{
l :
_ &
forall kp :
_ *
_,
In kp l <->
let (
k,
p) :=
kp in path hierarchy to p n k}.
Proof.
intros.
case_eq (
hierarchy !
n).
intros.
destruct (
peq n to).
subst.
exists ((
Class.Inheritance.Repeated, (
to ::
nil)) ::
nil).
intros.
split.
simpl.
inversion 1 ;
try tauto.
subst.
apply path2_path.
constructor.
congruence.
intros.
destruct kp.
generalize (
path_path2 H2).
inversion 1.
auto.
generalize (
path2_path H6).
intros.
generalize (
well_founded hyp H4 H5).
intros.
generalize (
path_le H10).
intros.
destruct (
Plt_strict interm).
eauto using Plt_Ple_trans.
subst.
generalize (
path2_path H6).
intros.
generalize (
well_founded hyp H4 H5).
intros.
generalize (
path_le H7).
intros.
destruct (
Plt_strict interm).
eauto using Plt_Ple_trans.
subst.
generalize (
path2_path H6).
intros.
generalize (
well_founded hyp H4 H5).
intros.
generalize (
path_le H7).
intros.
destruct (
Plt_strict interm).
eauto using Plt_Ple_trans.
exists (
LibLists.flatten
(
List.map
(
fun kc :
_ *
_ =>
let (
k,
c) :=
kc in
List.map
(
concat (
k,
match k with
|
Class.Inheritance.Repeated => (
n ::
c ::
nil)
|
Class.Inheritance.Shared =>
c ::
nil
end
))
(
match t !
c with
|
Some l =>
l
|
_ =>
nil
end)
)
(
Class.super t0)
)
).
intros.
destruct kp.
simpl.
split.
intros.
generalize (
LibLists.member_flatten_elim H2).
clear H2.
destruct 1.
destruct H2.
destruct (
in_map_iff (
fun kc :
Class.Inheritance.t *
positive =>
let (
k,
c) :=
kc in
map
(
concat
(
k,
match k with
|
Class.Inheritance.Repeated =>
n ::
c ::
nil
|
Class.Inheritance.Shared =>
c ::
nil
end))
match t !
c with
|
Some l =>
l
|
None =>
nil (
A:=
Class.Inheritance.t *
list ident)
end) (
Class.super t0)
x).
clear H5.
destruct (
H4 H2).
clear H4 H2.
destruct x0.
destruct H5.
subst.
generalize (
well_founded hyp H1 H4).
intros.
generalize (
H _ H2).
intros.
case_eq (
t !
p) ;
try congruence.
intros.
rewrite H6 in H3.
destruct (
in_map_iff
(
concat
(
t2,
match t2 with
|
Class.Inheritance.Repeated =>
n ::
p ::
nil
|
Class.Inheritance.Shared =>
p ::
nil
end))
l0 (
t1,
l)
).
clear H8.
generalize (
H7 H3).
clear H7 H3.
destruct 1.
destruct H3.
eapply path2_path.
cut (
let (
t1',
l') := (
concat
(
t2,
match t2 with
|
Class.Inheritance.Repeated =>
n ::
p ::
nil
|
Class.Inheritance.Shared =>
p ::
nil
end)
x
)
in path2 hierarchy to l'
n t1').
rewrite H3.
tauto.
destruct x.
eapply path2_concat.
eapply path_path2.
eapply path_elem.
eassumption.
assumption.
eauto using complete.
destruct (
H0 _ _ H6 (
t3,
l1)).
apply path_path2.
auto.
intros.
generalize (
path_path2 H2).
intros.
destruct (
path2_concat_recip H3
).
destruct H4 ;
contradiction.
generalize (
H4 _ H1).
clear H4.
destruct 1.
destruct H4.
destruct H4.
destruct H4.
destruct H4.
destruct H5.
generalize (
well_founded hyp H1 H4).
intros.
generalize (
H _ H7).
intros.
case_eq (
t !
x) ;
try congruence.
intros.
destruct (
H0 _ _ H9 (
x1,
x2)).
clear H10.
generalize (
H11 (
path2_path H5)).
intros.
rewrite H6.
eapply LibLists.member_flatten_intro.
Focus 2.
eapply (
in_map
(
concat
(
x0,
match x0 with
|
Class.Inheritance.Repeated =>
n ::
x ::
nil
|
Class.Inheritance.Shared =>
x ::
nil
end)
)
).
eassumption.
replace l0 with (
match t !
x with Some l1 =>
l1 |
None =>
nil end).
remember (
x0,
x)
as kc.
replace (
(
map
(
concat
(
x0,
match x0 with
|
Class.Inheritance.Repeated =>
n ::
x ::
nil
|
Class.Inheritance.Shared =>
x ::
nil
end))
match t !
x with
|
Some l1 =>
l1
|
None =>
nil (
A:=
Class.Inheritance.t *
list ident)
end)
)
with (
let (
x0,
x) :=
kc in
(
map
(
concat
(
x0,
match x0 with
|
Class.Inheritance.Repeated =>
n ::
x ::
nil
|
Class.Inheritance.Shared =>
x ::
nil
end))
match t !
x with
|
Some l1 =>
l1
|
None =>
nil (
A:=
Class.Inheritance.t *
list ident)
end)
).
eapply (
in_map (
fun kc :
Class.Inheritance.t *
positive =>
let (
k,
c) :=
kc in
map
(
concat
(
k,
match k with
|
Class.Inheritance.Repeated =>
n ::
c ::
nil
|
Class.Inheritance.Shared =>
c ::
nil
end))
match t !
c with
|
Some l1 =>
l1
|
None =>
nil (
A:=
Class.Inheritance.t *
list ident)
end) ).
subst.
assumption.
subst.
reflexivity.
rewrite H9.
reflexivity.
intros.
exists (@
nil (
Class.Inheritance.t *
list ident)).
simpl.
intros.
split.
tauto.
destruct kp.
intros.
generalize (
path_path2 H2).
inversion 1 ;
congruence.
Qed.
Theorem path_to :
{
t |
(
forall cn,
hierarchy !
cn <>
None ->
t !
cn <>
None) /\
forall cn l,
t !
cn =
Some l ->
forall i :
_ *
_, (
In i l <->
let (
k,
p) :=
i in path hierarchy to p cn k)
}.
Proof.
End Path_to.
Theorem paths :
{
T | (
forall cn0,
hierarchy !
cn0 <>
None ->
T !
cn0 <>
None) /\
forall cn0 t,
T !
cn0 =
Some t ->
(
forall cn,
hierarchy !
cn <>
None ->
t !
cn <>
None) /\
forall cn l,
t !
cn =
Some l ->
forall i :
_ *
_, (
In i l <->
let (
k,
p) :=
i in path hierarchy cn0 p cn k)
}.
Proof.
Lemma path_eq_dec :
forall kp1 kp2 :
Class.Inheritance.t *
list ident,
{
kp1 =
kp2} + {
kp1 <>
kp2}.
Proof.
repeat decide equality.
Qed.
Dynamic cast
Lemma dynamic_cast_unique :
forall real rk rp from to k1 p1,
dynamic_cast hierarchy real rk rp from to k1 p1 ->
forall k2 p2,
dynamic_cast hierarchy real rk rp from to k2 p2 ->
(
k1,
p1) = (
k2,
p2)
.
Proof.
Lemma dynamic_cast_dec :
forall real real_inheritance real_path from cast,
{
cast_inheritance :
_ & {
cast_path |
dynamic_cast hierarchy real real_inheritance real_path from cast cast_inheritance cast_path}} +
{
forall cast_inheritance cast_path,
dynamic_cast hierarchy real real_inheritance real_path from cast cast_inheritance cast_path ->
False}.
Proof.
intros.
case_eq (
hierarchy !
real).
Focus 2.
intros.
right.
inversion 1.
generalize (
path_defined_from H1).
congruence.
generalize (
path_defined_from H1).
congruence.
generalize (
path_defined_from H1).
congruence.
intros.
case_eq (
hierarchy !
cast).
Focus 2.
intros.
right.
inversion 1.
generalize (
path_defined_to H3).
congruence.
generalize (
path_defined_to H2).
congruence.
generalize (
path_defined_to H3).
congruence.
intros.
assert (
hierarchy !
cast <>
None)
by congruence.
assert (
hierarchy !
real <>
None)
by congruence.
destruct paths.
destruct a.
generalize (
H3 _ H1).
intros.
case_eq (
x !
cast) ;
try congruence.
intros.
destruct (
H4 _ _ H6).
generalize (
H7 _ H2).
intros.
case_eq (
t1 !
real) ;
try congruence.
intros.
case_eq (
hierarchy !
from).
Focus 2.
intros.
right.
inversion 1.
generalize (
path_defined_to H13).
congruence.
generalize (
path_defined_to H14).
congruence.
generalize (
path_defined_to H13).
congruence.
intros.
assert (
hierarchy !
from <>
None)
by congruence.
generalize (
H3 _ H12).
intros.
case_eq (
x !
from) ;
try congruence.
intros.
destruct (
H4 _ _ H14).
generalize (
H15 _ H2).
intros.
case_eq (
t3 !
real) ;
try congruence.
intros.
generalize (
H16 _ _ H18).
intros.
destruct (
H19 (
real_inheritance,
real_path)).
destruct (
In_dec path_eq_dec (
real_inheritance,
real_path)
l0).
Focus 2.
intros.
right.
inversion 1.
generalize (
H21 H23).
assumption.
generalize (
path_concat H23 H24 H25).
intros.
generalize (
H21 H26).
assumption.
generalize (
H21 H23).
assumption.
generalize (
H20 i).
intros.
destruct (
at_most_list path_eq_dec l).
assert (
forall a b, {
(
real_inheritance,
real_path) =
concat a b /\
exists c,
b = (
Class.Inheritance.Repeated,
c)
} + { ~ (
(
real_inheritance,
real_path) =
concat a b /\
exists c,
b = (
Class.Inheritance.Repeated,
c)
) }
).
destruct b.
destruct t4.
destruct (
path_eq_dec (
real_inheritance,
real_path) (
concat a (
Class.Inheritance.Repeated,
l1)) ).
left.
split.
assumption.
esplit.
reflexivity.
right.
intro.
destruct H23.
contradiction.
right.
intro.
destruct H23.
destruct H24.
discriminate.
generalize (
H15 _ H1).
intros.
case_eq (
t3 !
cast) ;
try congruence.
intros.
generalize (
H16 _ _ H25).
intros.
destruct (
list_product H23 l l1
).
destruct x0.
simpl in *.
intros.
generalize (
H7 _ H12).
intros.
case_eq (
t1 !
from) ;
try congruence.
intros.
generalize (
H8 _ _ H28).
intros.
destruct l2.
simpl in *.
right.
inversion 1.
destruct (
H29 (
k,
p)).
contradiction.
destruct (
H26 (
Class.Inheritance.Repeated,
p)).
generalize (
H35 H32).
intros.
generalize (
H8 _ _ H10).
intros.
destruct (
H37 (
cast_inheritance,
cast_path)).
generalize (
H39 H31).
intros.
destruct (
i0 (
cast_inheritance,
cast_path) (
Class.Inheritance.Repeated,
p)).
apply H42.
split ;
try assumption.
split ;
try assumption.
split ;
try assumption.
esplit ;
reflexivity.
destruct s.
destruct s.
destruct a.
destruct H35.
destruct H36.
generalize (
H8 _ _ H10).
intros.
destruct (
H36 x0).
destruct (
H36 x1).
destruct x0.
destruct x1.
transitivity (
cast_inheritance,
cast_path).
eauto.
symmetry.
eauto.
destruct (
at_most_list path_eq_dec (
p ::
l2)).
right.
inversion 1.
destruct s0.
destruct s0.
destruct a.
destruct H36.
destruct (
H29 x0).
destruct (
H29 x1).
destruct x0.
destruct x1.
destruct H37.
transitivity (
k,
p0).
symmetry.
eauto.
eauto.
destruct (
H26 (
Class.Inheritance.Repeated,
p0)).
generalize (
H35 H32).
intros.
generalize (
H8 _ _ H10).
intros.
destruct (
H37 (
cast_inheritance,
cast_path)).
generalize (
H39 H31).
intros.
destruct (
i0 (
cast_inheritance,
cast_path) (
Class.Inheritance.Repeated,
p0)).
apply H42.
split ;
try assumption.
split ;
try assumption.
split ;
try assumption.
esplit ;
reflexivity.
destruct s.
destruct s.
destruct a.
destruct H35.
destruct H36.
generalize (
H8 _ _ H10).
intros.
destruct (
H36 x0).
destruct (
H36 x1).
destruct x0.
destruct x1.
transitivity (
cast_inheritance,
cast_path).
eauto.
symmetry.
eauto.
destruct p.
destruct (
H29 (
t4,
l3)).
simpl in H30.
generalize (
H30 (
or_introl _ (
refl_equal _))).
intros.
case_eq (
concat (
real_inheritance,
real_path) (
t4,
l3)).
intros.
symmetry in H33.
left.
exists t5.
exists l4.
eapply dynamic_cast_upcast.
assumption.
eassumption.
intros.
apply e.
simpl ;
auto.
destruct (
H29 (
k',
p')).
auto.
assumption.
destruct p.
simpl in *.
destruct (
i0 p p0).
destruct (
H27 (
or_introl _ (
refl_equal _))).
destruct H30.
destruct H31.
destruct p0.
destruct t4.
Focus 2.
apply False_rect.
destruct H32.
discriminate.
destruct p.
generalize (
H8 _ _ H10).
intros.
destruct (
H33 (
t4,
l3)).
destruct (
H26 (
Class.Inheritance.Repeated,
l2)).
left.
exists t4.
exists l3.
eapply dynamic_cast_downcast.
eauto.
eauto.
assumption.
generalize (
H8 _ _ H10).
intros.
destruct l.
simpl in *.
right.
inversion 1.
generalize (
path_concat H25 H26 H28).
intros.
destruct (
H23 (
cast_inheritance,
cast_path)).
eauto.
destruct (
H23 (
cast_inheritance,
cast_path)).
eauto.
destruct (
H23 (
cast_inheritance,
cast_path)).
eauto.
destruct p.
simpl in *.
destruct (
H23 (
t4,
l1)).
generalize (
H24 (
or_introl _ (
refl_equal _))).
intros.
left.
exists t4.
exists l1.
eapply dynamic_cast_crosscast.
assumption.
assumption.
intros.
apply e.
destruct (
H23 (
k,
p)).
eauto.
auto.
Qed.
Function non_virtual_bases (
l :
list (
Class.Inheritance.t *
ident)) :
list ident :=
match l with
|
nil =>
nil
| (
Class.Inheritance.Repeated,
ci) ::
q =>
ci ::
non_virtual_bases q
|
_ ::
q =>
non_virtual_bases q
end.
Lemma non_virtual_bases_correct :
forall l b,
In b (
non_virtual_bases l) ->
In (
Class.Inheritance.Repeated,
b)
l.
Proof.
induction l ; simpl.
tauto.
destruct a.
destruct t.
simpl.
inversion 1.
subst.
eauto.
eauto.
eauto.
Qed.
Lemma non_virtual_bases_complete :
forall l b,
In (
Class.Inheritance.Repeated,
b)
l ->
In b (
non_virtual_bases l).
Proof.
induction l; simpl; eauto.
inversion 1 ; subst; eauto.
destruct a ; simpl.
destruct t ; simpl ; eauto.
Qed.
Section Filtered_paths.
Variable P :
ident ->
Prop.
Hypothesis P_dec :
forall i, {
P i} + {~
P i}.
Lemma filtered_repeated_paths_step :
forall n t, (
forall i,
Plt i n ->
t !
i <>
None) ->
(
forall i l,
t !
i =
Some l -> (
forall p,
In p l <->
exists l',
p =
i ::
l' /\
is_valid_repeated_subobject hierarchy p =
true /\
forall j,
Cplusconcepts.last p =
Some j ->
P j)) ->
{
l :
_ & (
forall p,
In p l <->
exists l',
p =
n ::
l' /\
is_valid_repeated_subobject hierarchy p =
true /\
forall j,
Cplusconcepts.last p =
Some j ->
P j)
}.
Proof.
Theorem filtered_paths_aux :
{
t |
(
forall cn,
hierarchy !
cn <>
None ->
t !
cn <>
None) /\
forall cn l,
t !
cn =
Some l ->
forall i, (
In i l <->
exists i',
i =
cn ::
i' /\
is_valid_repeated_subobject hierarchy i =
true /\
forall j,
Cplusconcepts.last i =
Some j ->
P j
)
} ->
forall from,
{
l |
forall k p,
(
In (
k,
p)
l <->
exists to,
path hierarchy to p from k /\
P to
)
}
.
Proof.
destruct 1.
destruct a.
intros.
case_eq (
hierarchy !
from).
intros.
assert (
hierarchy !
from <>
None)
by congruence.
generalize (
H _ H2).
intros.
case_eq (
x !
from) ;
try congruence.
intros.
generalize (
H0 _ _ H4).
intros.
destruct (
virtual_bases).
destruct a.
generalize (
H6 _ H2).
intros.
case_eq (
x0 !
from) ;
try congruence.
intros.
generalize (
H7 _ _ H9).
clear H3 H7 H8.
intros.
exists (
List.map (
fun p => (
Class.Inheritance.Repeated,
p))
l
++
LibLists.flatten
(
List.map
(
fun b =>
match x !
b with
|
None =>
nil
|
Some lb =>
List.map (
fun p => (
Class.Inheritance.Shared,
p))
lb
end)
l0
)
).
split.
intro.
destruct (
in_app_or _ _ _ H7).
clear H7.
destruct (
LibLists.map_elim H8).
clear H8.
destruct H7.
injection H8 ;
clear H8 ;
intros ;
subst.
destruct (
H5 p).
clear H10.
destruct (
H8 H7).
destruct H10.
subst.
clear H8 H7.
destruct H11.
clear H3.
assert (
from ::
x1 <>
nil)
by congruence.
generalize (
last_nonempty H3).
intros.
case_eq (
Cplusconcepts.last (
from ::
x1)) ;
try congruence.
intros.
destruct (
last_correct H11).
esplit.
asplit.
eapply path0_path.
econstructor.
reflexivity.
eassumption.
assumption.
apply H8.
assumption.
destruct (
LibLists.member_flatten_elim H8).
destruct H10.
clear H8.
clear H7.
destruct (
LibLists.map_elim H10).
clear H10.
destruct H7.
subst.
destruct (
H3 x2).
clear H10.
generalize (
H8 H7).
clear H8 H7.
intros.
generalize (
is_virtual_base_of_defined_base H7).
intros.
generalize (
H _ H8).
intros.
case_eq (
x !
x2) ;
try congruence.
intros.
clear H10.
rewrite H12 in H11.
destruct (
LibLists.map_elim H11).
clear H11.
destruct H10.
injection H11.
clear H11.
intros ;
subst.
destruct (
H0 _ _ H12 p).
clear H13.
destruct (
H11 H10).
clear H11 H10.
destruct H13.
subst.
destruct H11.
assert (
x2 ::
x1 <>
nil)
by congruence.
generalize (
last_nonempty H13).
intros.
case_eq (
Cplusconcepts.last (
x2 ::
x1)) ;
try congruence.
intros.
destruct (
last_correct H15).
rewrite H15 in H11.
esplit.
split.
eapply path0_path.
econstructor.
eassumption.
reflexivity.
eassumption.
assumption.
auto.
destruct 1.
destruct H7.
generalize (
path_path0 H7).
clear H7.
intro.
apply in_or_app.
inversion H7.
subst.
left.
eapply LibLists.map_intro.
2 :
reflexivity.
destruct (
H5 (
from ::
lf)).
clear H10.
apply H13.
esplit.
split.
reflexivity.
split.
assumption.
rewrite (
H11).
rewrite last_complete.
intros.
congruence.
subst.
right.
destruct (
H3 base).
clear H11.
generalize (
H14 H10).
clear H14.
intros.
clear H4 H5.
generalize (
is_virtual_base_of_defined_base H10).
intros.
generalize (
H _ H4).
intros.
case_eq (
x !
base) ;
try congruence.
intros.
destruct (
H0 _ _ H14 (
base ::
lf)).
clear H15.
eapply LibLists.member_flatten_intro.
eapply LibLists.map_intro.
eassumption.
rewrite H14.
reflexivity.
eapply LibLists.map_intro.
eapply H16.
esplit.
split.
reflexivity.
split.
assumption.
rewrite H12.
rewrite last_complete.
congruence.
trivial.
intros.
exists (@
nil (
Class.Inheritance.t *
list ident)).
simpl.
split.
tauto.
destruct 1.
destruct H2.
generalize (
path_path2 H2).
inversion 1 ;
congruence.
Qed.
Lemma filtered_repeated_paths :
{
t |
(
forall cn,
hierarchy !
cn <>
None ->
t !
cn <>
None) /\
forall cn l,
t !
cn =
Some l ->
forall i, (
In i l <->
exists i',
i =
cn ::
i' /\
is_valid_repeated_subobject hierarchy i =
true /\
forall j,
Cplusconcepts.last i =
Some j ->
P j
)
}.
Proof.
Theorem filtered_paths :
{
t |
(
forall cn,
hierarchy !
cn <>
None ->
t !
cn <>
None) /\
forall from l,
t !
from =
Some l ->
forall k p,
(
In (
k,
p)
l <->
exists to,
path hierarchy to p from k /\
P to
)
}
.
Proof.
End Filtered_paths.
Domination
Lemma dominates_antisym :
forall from kp1 kp2,
dominates hierarchy from kp1 kp2 ->
dominates hierarchy from kp2 kp1 ->
kp1 =
kp2.
Proof.
Lemma dominates_dec_aux_accu :
forall kp1 kp2 l accu,
(
forall kp,
In kp (
rev accu) ->
kp2 <>
concat kp1 kp) ->
{
kp |
In kp (
rev accu ++
l) /\
kp2 =
concat kp1 kp} +
{
forall kp,
In kp (
rev accu ++
l) ->
kp2 <>
concat kp1 kp}.
Proof.
induction l.
intros.
rewrite <-
app_nil_end.
tauto.
intros.
destruct (
path_eq_dec kp2 (
concat kp1 a)).
left.
esplit.
split.
2 :
eassumption.
apply in_or_app.
simpl.
tauto.
change (
a ::
l)
with ((
a ::
nil) ++
l).
rewrite <-
app_ass.
change (
rev accu ++
a ::
nil)
with (
rev (
a ::
accu)).
apply IHl.
simpl.
intros.
destruct (
in_app_or _ _ _ H0).
auto.
inversion H1.
congruence.
contradiction.
Qed.
Corollary dominates_dec_aux :
forall kp1 kp2 l,
{
kp |
In kp (
l) /\
kp2 =
concat kp1 kp} +
{
forall kp,
In kp (
l) ->
kp2 <>
concat kp1 kp}.
Proof.
Theorem dominates_dec :
forall from kp1 kp2,
{
dominates hierarchy from kp1 kp2} + {~
dominates hierarchy from kp1 kp2}.
Proof.
intro from.
case_eq (
hierarchy !
from).
Focus 2.
intros.
right.
intro Habs.
destruct Habs.
subst.
generalize (
path_path2 H1).
inversion 1 ;
subst ;
congruence.
intros cfrom Hcfrom.
destruct kp1 as [
k1 p1].
case_eq (
Cplusconcepts.last p1).
Focus 2.
destruct p1.
intros.
right.
intro Habs.
destruct Habs.
injection H0 ;
intros ;
subst.
generalize (
path_path0 H1).
inversion 1 ;
discriminate.
intros.
assert (
i ::
p1 <>
nil)
by congruence.
generalize (
last_nonempty H0).
intros.
contradiction.
intros to1 Hlast1.
case_eq (
hierarchy !
to1).
Focus 2.
intros.
right.
intro Habs.
destruct Habs.
injection H0 ;
intros ;
subst.
generalize (
path_last H1).
intros.
replace to0 with to1 in *
by congruence.
destruct (
last_correct Hlast1).
subst.
assert (
In to1 (
x ++
to1 ::
nil)).
apply in_or_app.
simpl.
tauto.
generalize (
path_path0 H1).
inversion 1 ;
subst.
exact (
is_valid_repeated_subobject_defined H8 H4 H).
exact (
is_valid_repeated_subobject_defined H9 H4 H).
intros cto1 Hcto1.
assert (
hierarchy !
to1 <>
None)
by congruence.
destruct kp2 as (
k2,
p2).
case_eq (
Cplusconcepts.last p2).
Focus 2.
intros.
destruct p2.
right.
intros Habs.
inversion Habs.
injection H1 ;
intros ;
subst.
generalize (
path_last H2).
intros.
replace to0 with to1 in *
by congruence.
generalize (
path_concat (
H2) (
H3)
H4).
intros.
generalize (
path_path0 H6).
inversion 1 ;
discriminate.
assert (
i ::
p2 <>
nil)
by congruence.
generalize (
last_nonempty H1).
intros.
contradiction.
intros to2 Hlast2.
case_eq (
hierarchy !
to2).
Focus 2.
intros.
right.
intro Habs.
inversion Habs.
injection H1 ;
intros ;
subst.
generalize (
path_last H2).
intros.
replace to0 with to1 in *
by congruence.
generalize (
path_concat (
H2) (
H3)
H4).
intros.
destruct (
last_correct Hlast2).
subst.
assert (
In to2 (
x ++
to2 ::
nil)).
apply in_or_app.
simpl.
tauto.
generalize (
path_path0 (
H6)).
inversion 1 ;
subst.
exact (
is_valid_repeated_subobject_defined H11 H7 H0).
exact (
is_valid_repeated_subobject_defined H12 H7 H0).
intros cto2 Hcto2.
destruct paths as [
T [
HT H1]].
generalize (
HT _ H).
intros.
case_eq (
T !
to1) ;
try congruence.
intros.
destruct (
H1 _ _ H2).
assert (
hierarchy !
from <>
None)
by congruence.
generalize (
H3 _ H5).
intros.
case_eq (
t !
from) ;
try congruence.
intros.
destruct (
H4 _ _ H7 (
k1,
p1)).
destruct (
In_dec path_eq_dec (
k1,
p1)
l).
Focus 2.
right.
intro Habs.
inversion Habs.
injection H10 ;
intros ;
subst.
generalize (
path_last H11).
intros.
replace to0 with to1 in *
by congruence.
eauto.
generalize (
H8 i).
intros.
assert (
hierarchy !
to2 <>
None)
by congruence.
generalize (
HT _ H11).
intros.
case_eq (
T !
to2) ;
try congruence.
intros.
generalize (
H1 _ _ H13).
destruct 1.
generalize (
H14 _ H).
intros.
case_eq (
t0 !
to1) ;
try congruence.
intros.
destruct (
dominates_dec_aux (
k1,
p1) (
k2,
p2)
l0
).
destruct s.
destruct x.
destruct a.
destruct (
H15 _ _ H17 (
t1,
l1)).
generalize (
H20 H18).
intros.
left.
econstructor.
reflexivity.
eassumption.
eassumption.
assumption.
right.
intro Habs.
destruct Habs.
injection H18 ;
intros ;
subst.
generalize (
path_last H19).
intros.
replace to0 with to1 in *
by congruence.
generalize (
path_concat (
H10) (
H20)
H21).
intro.
generalize (
path_last H23).
intros.
replace to3 with to2 in *
by congruence.
destruct (
H15 _ _ H17 (
k,
p)).
generalize (
H26 H20).
intros.
exact (
n _ H27 H21).
Qed.
Method dispatch
Theorem method_dispatch_dominates :
forall ms ac1 rc rck1 rcp1 rk1 rp1,
method_dispatch hierarchy ms ac1 rc rck1 rcp1 rk1 rp1 ->
forall ac2 k12 p12,
path hierarchy ac2 p12 ac1 k12 ->
forall ak2 ap2 am2,
path hierarchy am2 ap2 ac2 ak2 ->
forall amc2,
hierarchy !
am2 =
Some amc2 ->
Method.find ms (
Class.methods amc2) <>
None ->
(
forall to k p,
path hierarchy to p ac2 k ->
forall c,
hierarchy !
to =
Some c ->
Method.find ms (
Class.methods c) <>
None ->
dominates hierarchy ac2 (
ak2,
ap2) (
k,
p)
) ->
forall rck2 rcp2,
(
rck2,
rcp2) =
concat (
rck1,
rcp1) (
k12,
p12) ->
method_dispatch hierarchy ms ac2 rc rck2 rcp2 rk1 rp1
.
Proof.
inversion 1.
inversion H7.
injection H11 ;
clear H11 ;
intros until 2 ;
subst.
intros.
generalize (
path_concat H0 H11 H19).
intros.
case_eq (
concat (
rck2,
rcp2) (
ak2,
ap2)).
intros.
symmetry in H21.
generalize H21.
intros.
rewrite H19 in H22.
rewrite concat_assoc in H22.
case_eq (
concat (
k12,
p12) (
ak2,
ap2)).
intros.
rewrite H23 in H22.
symmetry in H23.
econstructor.
assumption.
eassumption.
eassumption.
assumption.
assumption.
eassumption.
eassumption.
eapply dominates_trans.
eassumption.
eapply (
dominates_concat_left H0 H5 H22).
eapply H4.
eapply path_concat.
eassumption.
eassumption.
assumption.
eassumption.
assumption.
eassumption.
assumption.
assumption.
Qed.
Theorem method_dispatch_list :
forall
(
ms :
MethodSignature.t A) (
apparent_class :
ident) (
real_class :
ident) (
real_class_inheritance :
Class.Inheritance.t) (
real_class_path :
list ident) ,
{
l |
forall (
real_inheritance:
Class.Inheritance.t) (
real_path :
list ident),
In (
real_inheritance,
real_path)
l <->
method_dispatch hierarchy ms apparent_class real_class real_class_inheritance real_class_path real_inheritance real_path }.
Proof.
intros.
case_eq (
hierarchy !
apparent_class) ;
intros.
Focus 2.
exists (@
nil (
Class.Inheritance.t *
list ident)) ;
simpl ;
split ;
try tauto.
inversion 1.
generalize (
path_defined_to H1).
congruence.
intros.
case_eq (
hierarchy !
real_class) ;
intros.
Focus 2.
exists (@
nil (
Class.Inheritance.t *
list ident)) ;
simpl ;
split ;
try tauto.
inversion 1.
generalize (
path_defined_from H2).
congruence.
destruct (
paths).
destruct a.
assert (
hierarchy !
apparent_class <>
None)
as H'
by congruence.
generalize (
H1 _ H').
intros H'0.
case_eq (
x !
apparent_class) ;
try congruence.
intros.
destruct (
H2 _ _ H3).
assert (
hierarchy !
real_class <>
None)
by congruence.
generalize (
H4 _ H6).
intros.
case_eq (
t1 !
real_class) ;
try congruence.
intros.
destruct (
H5 _ _ H8 (
real_class_inheritance,
real_class_path)).
destruct (
In_dec path_eq_dec (
real_class_inheritance,
real_class_path)
l).
Focus 2.
exists (@
nil (
Class.Inheritance.t *
list ident)).
simpl.
split ;
try tauto.
inversion 1.
generalize (
H10 H12).
assumption.
generalize (
H9 i).
intros.
assert (
forall cn,
{
exists c,
hierarchy !
cn =
Some c /\
Method.find ms (
Class.methods c) <>
None} +
{~
exists c,
hierarchy !
cn =
Some c /\
Method.find ms (
Class.methods c) <>
None}
).
intros.
destruct (
hierarchy !
cn).
case_eq (
Method.find ms (
Class.methods t2)).
intros.
left.
esplit.
split.
reflexivity.
congruence.
right.
intro.
invall.
congruence.
right.
intro.
invall.
discriminate.
destruct (
filtered_paths H12).
destruct a.
assert (
hierarchy !
apparent_class <>
None)
by congruence.
generalize (
H13 _ H15).
intros.
case_eq (
x0 !
apparent_class) ;
try congruence.
intros.
generalize (
H14 _ _ H17).
intros.
destruct (@
LibLists.minimum_partial_order _ _ (@
dominates_antisym apparent_class) (@
dominates_trans _ hierarchy apparent_class) (@
dominates_dec apparent_class)
l0).
intros.
destruct a.
destruct (
H18 t2 l1).
destruct (
H20 H19).
invall.
eauto using dominates_refl_weak.
Focus 2.
exists (@
nil (
Class.Inheritance.t *
list ident)).
simpl.
split ;
try tauto.
inversion 1.
apply f with (
apparent_method_inheritance,
apparent_method_path).
destruct (
H18 apparent_method_inheritance apparent_method_path).
apply H32.
esplit.
split.
eassumption.
esplit.
split.
eassumption.
assumption.
intros.
destruct b.
destruct (
H18 t2 l1).
destruct (
H32 H31).
invall.
eauto.
destruct s.
invall.
destruct x1.
case_eq (
concat (
real_class_inheritance,
real_class_path) (
t2,
l1)).
intros.
symmetry in H21.
generalize (
H13 _ H6).
intros.
case_eq (
x0 !
real_class) ;
try congruence.
intros.
generalize (
H14 _ _ H23).
intros.
generalize (
fun x => @
filter_In _ (
fun b =>
if dominates_dec real_class b (
t3,
l2)
then true else false)
x l3).
generalize (
(
filter
(
fun b :
Class.Inheritance.t *
list ident =>
if dominates_dec real_class b (
t3,
l2)
then true else false)
l3)
).
intros.
destruct (@
LibLists.minimals _ _ (@
dominates_antisym real_class) (
dominates_dec real_class)
l4).
intros.
destruct (
H25 j).
destruct (
H27 H26).
destruct j.
destruct (
H24 t4 l5).
destruct (
H31 H29).
invall.
eauto using dominates_refl_weak.
destruct (
H18 t2 l1).
generalize (
H26 H19).
intros.
exists x1.
invall.
split.
intros.
destruct (
i0 (
real_inheritance,
real_path)).
destruct (
H32 H29).
generalize (
H35 _ H34).
intros.
destruct (
H25 (
real_inheritance,
real_path)).
destruct (
H37 H34).
destruct (
H24 real_inheritance real_path).
destruct (
H41 H39).
invall.
econstructor.
assumption.
eassumption.
eassumption.
assumption.
intros.
apply H20.
destruct (
H18 k p).
apply H50.
esplit.
split.
eassumption.
esplit.
split.
eassumption.
assumption.
eassumption.
eassumption.
destruct (
dominates_dec real_class (
real_inheritance,
real_path) (
t3,
l2)
) ;
try congruence.
eassumption.
assumption.
intros.
apply H35 ;
auto.
destruct (
H25 (
k,
p)).
apply H51.
split.
destruct (
H24 k p).
apply H53.
esplit.
split.
eassumption.
esplit.
split.
eassumption.
assumption.
destruct (
dominates_dec real_class (
k,
p) (
t3,
l2)
) ;
try congruence.
destruct n.
destruct (
dominates_dec real_class (
real_inheritance,
real_path) (
t3,
l2)
);
try congruence.
eauto using dominates_trans.
inversion 1.
destruct (
i0 (
real_inheritance,
real_path)).
apply H44.
split.
destruct (
H25 (
real_inheritance,
real_path)).
apply H46.
split.
destruct (
H24 real_inheritance real_path).
apply H48.
esplit.
split.
eassumption.
esplit.
split.
eassumption.
assumption.
destruct (
dominates_dec real_class (
real_inheritance,
real_path) (
t3,
l2)
) ;
try congruence.
destruct n.
eapply dominates_trans.
eassumption.
eapply dominates_concat_left.
2 :
eassumption.
eassumption.
eassumption.
eapply H36.
eassumption.
eassumption.
assumption.
invall.
intros.
destruct (
H25 k).
destruct (
H47 H45).
destruct k.
destruct (
H24 t4 l5).
destruct (
H51 H49).
invall.
eauto.
Qed.
End HH.
End Well_formed_hierarchy.