This file contains utility lemmas for the correctness proof of the
type system.
Require Import Coq.Unicode.Utf8.
Require Recdef.
Require Import FSets.
Require Import Coqlib.
Require Import Ordered.
Require Import Errors.
Require Import Maps.
Require Import Lattice.
Require Import AST.
Require Import Integers.
Require Import Values.
Require Import Globalenvs.
Require Import Events.
Require Import Smallstep.
Require Import Op.
Require Import Registers.
Require Import RTL.
Require Import RTLdfs.
Require Import Kildall.
Require Import KildallComp.
Require Import Conventions.
Require Import SSA.
Require Import SSAutils.
Require Import SSAvalid.
Require Import Utils.
Require Import Classical.
Require Import Bijection.
Unset Allow StrictProp.
Tactics
Ltac allinv :=
repeat
match goal with
| [
H1: (
fn_code ?
tf) ! ?
pc =
Some _ ,
H2: (
fn_code ?
tf) ! ?
pc =
Some _ |-
_ ] =>
rewrite H1 in H2;
inv H2
| [
H1: (
RTL.fn_code ?
tf) ! ?
pc =
Some _ ,
H2: (
RTL.fn_code ?
tf) ! ?
pc =
Some _ |-
_ ] =>
rewrite H1 in H2;
inv H2
| [
H1: (
fn_phicode ?
tf) ! ?
pc =
Some _ ,
H2: (
fn_phicode ?
tf) ! ?
pc =
Some _ |-
_ ] =>
rewrite H1 in H2;
inv H2
| [
H1: ?Γ ! ?
pc =
_ ,
H2: ?Γ ! ?
pc =
_ |-
_ ] =>
rewrite H1 in H2;
inv H2
| [
H1:
index_pred _ ?
pc ?
pc' =
Some _ ,
H2:
index_pred _ ?
pc ?
pc' =
Some _ |-
_ ] =>
rewrite H1 in H2;
inv H2
| [
H1: ?Δ ! ?
pc =
_ ,
H2: ?Δ ! ?
pc =
_ |-
_ ] =>
rewrite H1 in H2;
inv H2
| [
H: ?Γ
_ = ?Γ
_ |-
_ ] =>
rewrite H in *
|
_ =>
idtac
end.
Ltac elimAndb :=
match goal with
| [
H:
_ &&
_ =
true |-
_ ] =>
elim (
andb_prop _ _ H);
clear H;
intros;
elimAndb
|
_ =>
idtac
end.
The erasure function
This explains the correspondance between an SSA form candidate and
its initial RTL version: the latter should be recover by unindexing
registers, and removing phi-block.
Definition erase_reg (
size:
nat) (
r:
reg) :=
fst (
Bij.rmap size r).
Definition get_index (
size:
nat) (
r:
reg) :=
snd (
Bij.rmap size r).
Definition erase_instr (
size:
nat)
instr :
RTL.instruction :=
match instr with
|
Inop n =>
RTL.Inop n
|
Iop op args dst succ =>
RTL.Iop op (
List.map (
erase_reg size)
args) (
erase_reg size dst)
succ
|
Iload chunk addr args dst succ =>
RTL.Iload chunk addr (
List.map (
erase_reg size)
args) (
erase_reg size dst)
succ
|
Istore chunk addr args src succ =>
RTL.Istore chunk addr (
List.map (
erase_reg size)
args) (
erase_reg size src)
succ
|
Icall sig fn args dst succ =>
match fn with
|
inl r =>
RTL.Icall sig (
inl ident (
erase_reg size r)) (
List.map (
erase_reg size)
args) (
erase_reg size dst)
succ
|
inr id =>
RTL.Icall sig (
inr _ id) (
List.map (
erase_reg size)
args) (
erase_reg size dst)
succ
end
|
Itailcall sig fn args =>
match fn with
|
inl r =>
RTL.Itailcall sig (
inl ident (
erase_reg size r)) (
List.map (
erase_reg size)
args)
|
inr id =>
RTL.Itailcall sig (
inr _ id) (
List.map (
erase_reg size)
args)
end
|
Ibuiltin fn args dst succ =>
RTL.Ibuiltin fn
(
List.map (
map_builtin_arg (
erase_reg size))
args)
(
map_builtin_res (
erase_reg size)
dst)
succ
|
Icond cond args ifso ifnot =>
RTL.Icond cond (
List.map (
erase_reg size)
args)
ifso ifnot
|
Ijumptable arg tbl =>
RTL.Ijumptable (
erase_reg size arg)
tbl
|
Ireturn reg =>
match reg with
|
None =>
RTL.Ireturn None
|
Some r =>
RTL.Ireturn (
Some (
erase_reg size r))
end
end.
Definition erase_code (
size:
nat) (
rtlphi:
function) :
RTL.code :=
PTree.map (
fun pc i =>
erase_instr size i) (
fn_code rtlphi).
Variant check_erased_spec (
size:
nat) (
rtl:
RTLdfs.function) (
rtlphi:
SSA.function) :=
|
ces_intros:
forall
(
HSIG : (
RTLdfs.fn_sig rtl) = (
SSA.fn_sig rtlphi))
(
HPARAMS: (
RTLdfs.fn_params rtl) = (
map (
erase_reg size) (
SSA.fn_params rtlphi)))
(
HSSIZE : (
RTLdfs.fn_stacksize rtl) = (
SSA.fn_stacksize rtlphi))
(
HENTRY : (
RTLdfs.fn_entrypoint rtl) = (
SSA.fn_entrypoint rtlphi))
(
HCODE:
forall p, (
RTLdfs.fn_code rtl) !
p = (
erase_code size rtlphi) !
p),
check_erased_spec size rtl rtlphi.
Lemma extensional_assigned_code_spec :
forall m m'
pc r,
m !
pc =
m' !
pc ->
assigned_code_spec m pc r ->
assigned_code_spec m'
pc r.
Proof.
intros.
inv H0; (rewrite H in H1; eauto).
Qed.
Inductive check_args_spec (
size:
nat) :
list Registers.reg ->
list reg ->
Prop :=
|
check_args_nil:
check_args_spec size nil nil
|
check_args_cons:
forall argl argl'
arg,
check_args_spec size argl argl' ->
check_args_spec size ((
erase_reg size arg)::
argl) (
arg::
argl').
Lemma check_args_spec_erased_rwt:
forall size args args',
check_args_spec size args args' ->
(
List.map (
erase_reg size)
args') =
args.
Proof.
induction args ; intros; inv H.
constructor.
simpl. rewrite IHargs ; eauto.
Qed.
Lemma check_args_spec_erased:
forall size args,
check_args_spec size (
List.map (
erase_reg size)
args)
args.
Proof.
induction args ; simpl; constructor; auto.
Qed.
Lemma check_args_spec_erased_rwt_iff :
forall size args args',
(
List.map (
erase_reg size)
args') =
args <->
check_args_spec size args args'.
Proof.
split.
-
intros.
rewrite <-
H.
apply check_args_spec_erased.
-
revert args'.
revert args.
induction args ;
intros;
inv H.
constructor.
simpl.
rewrite IHargs ;
eauto.
Qed.
Inductive check_ros_spec (
size:
nat) :
Registers.reg +
ident ->
reg +
ident ->
Prop :=
|
check_ros_reg:
forall r,
check_ros_spec size (
inl ident (
erase_reg size r)) (
inl ident r)
|
check_ros_ident:
forall id,
check_ros_spec size (
inr _ id) (
inr reg id).
Variant check_instrs_spec (
size:
nat) (
rtlphi:
function) :
RTL.instruction ->
instruction ->
Prop :=
|
MInop:
forall n,
check_instrs_spec size rtlphi (
RTL.Inop n) (
Inop n)
|
MIop:
forall op args args'
dst succ,
(
check_args_spec size args args') ->
check_instrs_spec size rtlphi (
RTL.Iop op args (
erase_reg size dst)
succ)
(
Iop op args'
dst succ)
|
MIload:
forall chunk addr args args'
dst succ,
(
check_args_spec size args args' ) ->
check_instrs_spec size rtlphi (
RTL.Iload chunk addr args (
erase_reg size dst)
succ)
(
Iload chunk addr args'
dst succ)
|
MIstore:
forall chunk addr args args'
src succ,
(
check_args_spec size args args' ) ->
check_instrs_spec size rtlphi (
RTL.Istore chunk addr args (
erase_reg size src)
succ)
(
Istore chunk addr args'
src succ)
|
MIcall:
forall sig fn fn'
args args'
dst succ,
(
check_args_spec size args args' ) ->
(
check_ros_spec size fn fn') ->
check_instrs_spec size rtlphi (
RTL.Icall sig fn args (
erase_reg size dst)
succ)
(
Icall sig fn'
args'
dst succ)
|
MItailcall:
forall sig fn fn'
args args',
(
check_args_spec size args args' ) ->
(
check_ros_spec size fn fn') ->
check_instrs_spec size rtlphi (
RTL.Itailcall sig fn args) (
Itailcall sig fn'
args')
|
MIbuiltin:
forall fn args args'
dst succ,
(
check_args_spec size (
params_of_builtin_args args) (
params_of_builtin_args args') ) ->
check_instrs_spec size rtlphi
(
RTL.Ibuiltin fn args (
map_builtin_res (
erase_reg size)
dst)
succ)
(
Ibuiltin fn args'
dst succ)
|
MIcond:
forall cond args args'
ifso ifnot,
(
check_args_spec size args args' ) ->
check_instrs_spec size rtlphi (
RTL.Icond cond args ifso ifnot)
(
Icond cond args'
ifso ifnot)
|
MIjumptable:
forall arg tbl,
check_instrs_spec size rtlphi (
RTL.Ijumptable (
erase_reg size arg)
tbl) (
Ijumptable arg tbl)
|
MIreturn_none:
check_instrs_spec size rtlphi (
RTL.Ireturn None) (
Ireturn None)
|
MIreturn_some:
forall r,
check_instrs_spec size rtlphi (
RTL.Ireturn (
Some (
erase_reg size r))) (
Ireturn (
Some r)).
Lemma check_instr_spec_erase:
forall size f tf pc rinstr rinstr',
check_erased_spec size f tf ->
(
RTLdfs.fn_code f)!
pc =
Some rinstr ->
(
fn_code tf)!
pc =
Some rinstr' ->
(
erase_instr size rinstr' =
rinstr) /\
check_instrs_spec size tf rinstr rinstr'.
Proof.
Set Printing Notations.
Lemma erase_funct_no_add:
forall size tf f pc rinstr,
check_erased_spec size f tf ->
((
RTLdfs.fn_code f)!
pc =
Some rinstr) ->
exists pinstr, (
fn_code tf)!
pc =
Some pinstr.
Proof.
intros.
inv H.
unfold erase_code in HCODE;
simpl;
intros.
assert (
HCODEpc:=
HCODE pc).
rewrite PTree.gmap in HCODEpc.
destruct (
fn_code tf) !
pc ;
simpl;
eauto.
simpl in HCODEpc.
congruence.
Qed.
Lemma erased_funct_erased_instr:
forall size pc f tf rinstr,
check_erased_spec size f tf ->
(
RTLdfs.fn_code f)!
pc =
Some rinstr ->
exists pinstr,
(
SSA.fn_code tf) !
pc =
Some pinstr
/\ (
rinstr =
erase_instr size pinstr).
Proof.
intros.
assert (
Hpinstr:=
erase_funct_no_add size tf f pc rinstr H H0).
destruct Hpinstr as [
pinstr Hpinstr];
exists pinstr.
split ;
auto.
inv H.
rewrite HCODE in H0.
unfold erase_code in H0.
rewrite PTree.gmap in H0.
rewrite Hpinstr in H0.
inv H0 ;
auto.
Qed.
Definition assigned (
ri:
reg) (
block:
phiblock) :=
exists args,
In (
Iphi args ri)
block.
Definition erased_reg_assigned (
size:
nat) (
r:
Registers.reg) (
block:
phiblock) :=
(
exists ri, ((
assigned ri block) /\
erase_reg size ri =
r)).
Lemma not_erased_reg_assigned_cons:
forall size r a block,
~ (
erased_reg_assigned size r (
a::
block)) ->
~ (
erased_reg_assigned size r block).
Proof.
intros size r a block Hcont. intro.
elim Hcont.
destruct H as [x [Hx1 Hx2]].
exists x; intuition.
inv Hx1.
exists x0; constructor 2;auto.
Qed.
Lemma not_erased_reg_assigned_not_in:
forall size r block,
~
erased_reg_assigned size r block ->
forall x args, (
erase_reg size x =
r ->
not (
In (
Iphi args x)
block)).
Proof.
induction block;
intros.
-
intro.
elim H1.
-
intro.
assert (
Hcont:= (
in_inv H1)).
destruct Hcont.
+
assert (
IHblock2:=
IHblock (
not_erased_reg_assigned_cons size r a block H));
clear IHblock.
subst.
simpl in *.
elim H.
exists x;
auto.
split;
auto.
exists args;
auto.
+
eapply IHblock;
eauto.
eapply not_erased_reg_assigned_cons;
eauto.
Qed.
Lemma erased_reg_assigned_dec:
forall size r block,
erased_reg_assigned size r block \/
not (
erased_reg_assigned size r block).
Proof.
induction block.
-
right.
intro.
destruct H as [
ri [
Hassig Herase]].
inv Hassig.
inv H.
-
destruct IHblock as [
IHb1 |
IHb2].
+
left.
inv IHb1;
destruct H.
destruct H as [
args Hin].
exists x.
split;
auto.
exists args.
constructor 2;
auto.
+
destruct a;
case (
peq r (
erase_reg size r0));
intros.
*
inv e.
left.
exists r0;
split ;
auto.
exists l;
constructor;
auto.
*
right.
intro.
destruct H as [
x [
Hx1 Hx2]].
destruct Hx1.
assert (
Hcont:= (
not_erased_reg_assigned_not_in size r block IHb2 x x0 Hx2)).
assert (
HIninv:=
in_inv H).
destruct HIninv.
rewrite <-
Hx2 in n.
elim n.
inv H0;
auto.
intuition.
Qed.
Additional structural invariants
A phi-instruction is well formed when it has the right number of arguments,
and when at least two arguments are distinct
Definition check_phi_params_spec (
rtlphi:
function) :=
forall pc pc0 phiinstr args dst k,
rtlphi.(
fn_phicode)!
pc =
Some phiinstr ->
index_pred (
make_predecessors (
fn_code rtlphi)
successors_instr)
pc0 pc =
Some k ->
In (
Iphi args dst)
phiinstr ->
(
nth_okp k args).
Definition check_no_duplicates_spec (
size:
nat) (
rtlphi:
function) :=
forall pc phiinstr args args'
dst dst',
rtlphi.(
fn_phicode)!
pc =
Some phiinstr ->
NoDup phiinstr ->
In (
Iphi args dst)
phiinstr ->
In (
Iphi args'
dst')
phiinstr ->
(
args <>
args' \/
dst <>
dst') ->
(
erase_reg size dst) <> (
erase_reg size dst').
Definition structural_checks_spec (
size:
nat) (
rtl:
RTLdfs.function) (
rtlphi:
SSA.function) :=
(
RTLdfs.fn_sig rtl =
SSA.fn_sig rtlphi)
/\ ((
RTLdfs.fn_stacksize rtl) = (
SSA.fn_stacksize rtlphi))
/\ (
check_erased_spec size rtl rtlphi)
/\ (
unique_def_spec rtlphi)
/\ (
check_phi_params_spec rtlphi)
/\ (
check_no_duplicates_spec size rtlphi).
Utility lemmas about junction points
Lemma is_joinpoint_iff_join_point_ssa :
forall f jp,
join_point jp f <->
is_joinpoint (
make_predecessors (
fn_code f)
SSA.successors_instr)
jp =
true.
Proof.
intros.
split;
intros.
-
inv H.
unfold is_joinpoint.
rewrite Hpreds.
destruct l ;
simpl in *;
try lia.
destruct l;
simpl in *;
try (
apply False_ind;
lia).
auto.
-
unfold is_joinpoint in *.
case_eq ((
make_predecessors (
fn_code f)
SSA.successors_instr)!
jp).
*
intros l'
Hc.
rewrite Hc in *.
destruct l' ;
simpl in *;
try congruence.
destruct l' ;
simpl in *;
try congruence.
econstructor;
eauto.
simpl;
lia.
*
intros Hc.
rewrite Hc in *.
congruence.
Qed.
Lemma is_joinpoint_iff_join_point :
forall f jp,
RTLutils.join_point jp f <->
is_joinpoint (
make_predecessors (
RTLdfs.fn_code f)
RTLdfs.successors_instr)
jp =
true.
Proof.
intros.
split;
intros.
-
inv H.
unfold is_joinpoint.
rewrite Hpreds.
destruct l ;
simpl in *;
try lia.
destruct l;
simpl in *;
try (
apply False_ind;
lia).
auto.
-
unfold is_joinpoint in *.
case_eq ((
make_predecessors (
RTLdfs.fn_code f)
RTLdfs.successors_instr)!
jp).
*
intros l'
Hc.
rewrite Hc in *.
destruct l' ;
simpl in *;
try congruence.
destruct l' ;
simpl in *;
try congruence.
econstructor;
eauto.
simpl;
lia.
*
intros Hc.
rewrite Hc in *.
congruence.
Qed.
Utility lemmas for the checker check_unique_def
Lemma not_assigned_monotone :
forall m r k i,
m !
k =
None ->
(
forall pc :
node, ~
assigned_code_spec (
PTree.set k i m)
pc r) ->
forall pc :
node, ~
assigned_code_spec m pc r.
Proof.
Lemma record_assigned_reg_phi_preserve :
forall pc pc'
phib t l r,
t !
r =
Some l ->
In pc l ->
exists l', (
record_assigned_reg_phi t pc'
phib) !
r =
Some l' /\
In pc l'.
Proof.
induction phib;
intros.
simpl.
exists l ;
auto.
case_eq a ;
intros;
inv H1.
simpl.
destruct (
peq r0 r).
inv e.
destruct (
t!
r).
inv H.
exploit (
IHphib ((
PTree.set r (
pc' ::
l)
t)) (
pc'::
l));
eauto.
rewrite PTree.gss;
auto.
inv H.
destruct (
t!
r0).
exploit (
IHphib (
PTree.set r0 (
pc'::
l1)
t)
l);
eauto.
rewrite PTree.gso;
auto.
exploit (
IHphib (
PTree.set r0 (
pc'::
nil)
t)
l);
eauto.
rewrite PTree.gso;
auto.
Qed.
Lemma assigned_code_preserved :
forall k i m pc r,
pc <>
k ->
assigned_code_spec (
PTree.set k i m)
pc r ->
assigned_code_spec m pc r.
Proof.
induction 2;
rewrite PTree.gso in H0;
eauto.
Qed.
Global Hint Resolve assigned_code_preserved:
core.
Lemma fold_record_preserve:
forall t l pc r,
t !
r =
Some l ->
In pc l ->
forall code,
exists l', (
PTree.fold record_assigned_reg_phi code t) !
r =
Some l' /\
In pc l'.
Proof.
Lemma record_assigned_reg_phi_in_block :
forall phib x r a k l,
In (
Iphi x r)
phib ->
(
record_assigned_reg_phi a k phib) !
r =
Some l
->
In k l.
Proof.
induction phib;
intros.
inv H.
inv H.
2:
eapply IHphib ;
eauto.
simpl in H0.
case_eq (
a0 !
r).
intros.
rewrite H in *.
assert (
In k (
k::
l0))
by (
left ;
auto).
assert ((
PTree.set r (
k ::
l0)
a0) !
r =
Some (
k::
l0))
by (
rewrite PTree.gss;
auto).
eapply record_assigned_reg_phi_preserve with (
phib :=
phib) (
pc' :=
k)
in H2 ;
eauto.
destruct H2 as [
l' [
Hl'
Hinl']].
rewrite Hl'
in H0 ;
inv H0;
auto.
intros.
rewrite H in *.
assert (
In k (
k::
nil))
by (
left ;
auto).
assert ((
PTree.set r (
k ::
nil)
a0) !
r =
Some (
k::
nil))
by (
rewrite PTree.gss;
auto).
eapply record_assigned_reg_phi_preserve with (
phib :=
phib) (
pc' :=
k)
in H2 ;
eauto.
destruct H2 as [
l' [
Hl'
Hinl']].
rewrite Hl'
in H0 ;
inv H0;
auto.
Qed.
Lemma record_assigned_reg_phi_preserve2 :
forall pc phib t l r,
t !
r =
Some l ->
exists l', (
record_assigned_reg_phi t pc phib) !
r =
Some l'.
Proof.
induction phib;
intros;
eauto.
case_eq a ;
intros;
inv H0.
simpl.
destruct (
peq r0 r).
inv e.
destruct (
t!
r).
inv H.
exploit (
IHphib ((
PTree.set r (
pc ::
l)
t)) (
pc::
l));
eauto.
rewrite PTree.gss;
auto.
inv H.
destruct (
t!
r0).
exploit (
IHphib (
PTree.set r0 (
pc::
l1)
t)
l);
eauto.
rewrite PTree.gso;
auto.
exploit (
IHphib (
PTree.set r0 (
pc::
nil)
t)
l);
eauto.
rewrite PTree.gso;
auto.
Qed.
Lemma record_assigned_reg_phi_in_block2 :
forall phib x r a k,
In (
Iphi x r)
phib ->
exists l, (
record_assigned_reg_phi a k phib) !
r =
Some l.
Proof.
Lemma assigned_phi_spec_inlist2 :
forall t code r pc,
(
assigned_phi_spec code pc r) ->
exists l, ((
PTree.fold record_assigned_reg_phi code t) !
r =
Some l /\
In pc l).
Proof.
Lemma record_assigned_reg_phi_inlist3_stronger :
forall r pc phiinstr l m,
m !
r =
Some l ->
NoDup phiinstr ->
(
forall x,
In (
Iphi x r)
phiinstr ->
(
forall x',
In (
Iphi x'
r)
phiinstr ->
x' =
x) ->
exists l', (
record_assigned_reg_phi m pc phiinstr) !
r =
Some (
pc::
l'++
l))
/\
(
forall x,
In (
Iphi x r)
phiinstr ->
(
exists x',
In (
Iphi x'
r)
phiinstr /\
x' <>
x) ->
exists l',
exists l'', (
record_assigned_reg_phi m pc phiinstr) !
r =
Some (
pc::
l'++
pc::
l''++
l))
/\
((
forall x, ~
In (
Iphi x r)
phiinstr) ->
(
record_assigned_reg_phi m pc phiinstr) !
r =
Some l)
.
Proof.
induction phiinstr;
simpl;
split.
intuition.
intuition.
intuition.
subst.
simpl;
rewrite H.
elim IHphiinstr with (
pc::
l) (
PTree.set r (
pc ::
l)
m).
intros IH1 [
IH2 IH3].
destruct (
classic (
exists x,
In (
Iphi x r)
phiinstr)).
destruct H1 as [
x'
H1].
destruct (
classic (
exists x'',
In (
Iphi x''
r)
phiinstr /\
x'' <>
x'))
as [
EM1|
EM2].
destruct EM1 as [
x'' [
EM11 EM12]].
elim IH2 with (1:=
H1).
intros l'
H'.
destruct H'
as [
l''
Hl''].
exists (
l' ++
pc ::
l'' ++
pc::
nil).
rewrite app_ass;
simpl.
rewrite <-
ass_app.
simpl.
auto.
eauto.
elim IH1 with (1:=
H1).
intros.
exists (
x0++
pc::
nil).
rewrite <-
ass_app.
simpl.
auto.
intros.
destruct (
list_eq_dec peq x'
x'0).
auto.
elim EM2;
eauto.
rewrite IH3.
exists nil;
auto.
intros;
elim H1 ;
eauto.
rewrite PTree.gss;
auto.
inv H0;
auto.
destruct a as [
x'
r'].
destruct (
peq r'
r);
subst.
simpl.
rewrite H.
elim IHphiinstr with (
pc::
l) (
PTree.set r (
pc ::
l)
m).
intros IH1 [
IH2 IH3].
destruct (
classic (
exists x,
In (
Iphi x r)
phiinstr)).
destruct H1 as [
x''
H1].
destruct (
classic (
exists x',
In (
Iphi x'
r)
phiinstr /\
x'' <>
x'))
as [
EM1|
EM2].
destruct EM1 as [
x''' [
EM11 EM12]].
elim IH2 with (1:=
H1).
intros l'
H'.
destruct H'
as [
l''
Hl''].
exists (
l'++
pc::
l''++
pc::
nil).
repeat rewrite app_ass.
simpl.
rewrite <-
ass_app ;
simpl;
auto.
exists x''';
auto.
elim IH1 with (1:=
H1).
intros l'
H'.
exists (
l'++
pc::
nil).
repeat rewrite app_ass.
simpl.
auto.
intros.
destruct (
list_eq_dec peq x'0
x'').
auto.
elim EM2;
eauto.
rewrite IH3.
exists nil;
auto.
intros;
elim H1;
eauto.
rewrite PTree.gss;
auto.
inv H0 ;
auto.
elim IHphiinstr with l (
add_phi_assigned_reg pc m (
Iphi x'
r')).
intros IH1 [
IH2 IH3].
destruct (
classic (
exists x,
In (
Iphi x r)
phiinstr)).
destruct H1 as [
x''
H1].
destruct (
classic (
exists x',
In (
Iphi x'
r)
phiinstr /\
x'' <>
x'))
as [
EM1|
EM2].
destruct EM1 as [
x''' [
EM11 EM12]].
elim IH2 with (1:=
H1).
intros l'
H'.
destruct H'
as [
l''
Hl''].
eauto.
eauto.
elim IH1 with (1:=
H1).
intros l'
Hl'.
eauto.
intros.
destruct (
list_eq_dec peq x'0
x'').
auto.
elim EM2;
eauto.
rewrite IH3.
elim H1;
eauto.
intros;
elim H1;
eauto.
simpl.
destruct (
m !
r');
rewrite PTree.gso;
auto.
inv H0;
auto.
intuition.
inv H3.
simpl.
destruct m!
r.
inv H.
elim IHphiinstr with (
pc::
l) (
PTree.set r (
pc::
l)
m).
intros IH1 [
IH2 IH3].
destruct H2.
destruct H.
destruct H.
inv H.
elim H1;
auto.
destruct (
classic (
exists x',
In (
Iphi x'
r)
phiinstr /\
x' <>
x0))
as [
EM1|
EM2].
destruct EM1 as [
x''' [
EM11 EM12]].
elim IH2 with (1:=
H).
intros l'
H'.
destruct H'.
exists l'.
exists (
x1++
pc::
nil).
rewrite app_ass ;
eauto.
eauto.
elim IH1 with (1:=
H).
intros.
exists x1.
exists nil.
eauto.
intros.
destruct (
list_eq_dec peq x'
x0);
auto.
elim EM2 ;
eauto.
rewrite PTree.gss ;
auto.
inv H0;
auto.
inv H.
destruct a.
destruct (
peq r0 r).
inv e.
assert (
x <>
l0)
by (
intro;
inv H;
inv H0;
elim H4;
auto).
simpl.
destruct m!
r.
inv H.
elim IHphiinstr with (
pc::
l) (
PTree.set r (
pc::
l)
m).
intros IH1 [
IH2 IH3].
destruct (
classic (
exists x',
In (
Iphi x'
r)
phiinstr /\
x' <>
x))
as [
EM1|
EM2].
destruct EM1 as [
x''' [
EM11 EM12]].
elim IH2 with (1:=
H3).
intros l'
H'.
destruct H'.
exists l'.
exists (
x0++
pc::
nil).
rewrite app_ass;
eauto.
eauto.
elim IH1 with (1:=
H3).
intros.
exists x0.
exists nil.
simpl.
eauto.
intros.
destruct (
list_eq_dec peq x'
x);
auto.
elim EM2 ;
eauto.
rewrite PTree.gss ;
auto.
inv H0;
auto.
inv H.
destruct H2.
destruct H1.
destruct H1.
inv H1.
elim n;
auto.
simpl.
destruct m!
r0.
elim IHphiinstr with l (
PTree.set r0 (
pc::
l1)
m).
intros IH1 [
IH2 IH3].
destruct (
classic (
exists x',
In (
Iphi x'
r)
phiinstr /\
x' <>
x))
as [
EM1|
EM2].
destruct EM1 as [
x''' [
EM11 EM12]].
elim IH2 with (1:=
H3).
intros l'
H'.
destruct H'.
eauto.
eauto.
elim EM2.
eauto.
rewrite PTree.gso ;
auto.
inv H0;
auto.
elim IHphiinstr with l (
PTree.set r0 (
pc::
nil)
m).
intros IH1 [
IH2 IH3].
destruct (
classic (
exists x',
In (
Iphi x'
r)
phiinstr /\
x' <>
x))
as [
EM1|
EM2].
destruct EM1 as [
x''' [
EM11 EM12]].
elim IH2 with (1:=
H3).
intros l'
H'.
destruct H'.
eauto.
eauto.
elim EM2.
eauto.
rewrite PTree.gso ;
auto.
inv H0;
auto.
destruct a.
destruct (
peq r r0).
inv e.
elim H1 with l0;
eauto.
elim IHphiinstr with l (
add_phi_assigned_reg pc m (
Iphi l0 r0)).
intros IH1 [
IH2 IH3].
rewrite IH3.
auto.
intros.
elim H1 with x;
auto.
simpl.
destruct m!
r0;
rewrite PTree.gso ;
auto.
inv H0;
auto.
Qed.
Lemma record_assigned_reg_phi_inlist3_none_stronger :
forall r pc phiinstr m,
m !
r =
None ->
NoDup phiinstr ->
(
forall x,
In (
Iphi x r)
phiinstr ->
(
forall x',
In (
Iphi x'
r)
phiinstr ->
x' =
x) ->
exists l', (
record_assigned_reg_phi m pc phiinstr) !
r =
Some (
pc::
l'))
/\
(
forall x,
In (
Iphi x r)
phiinstr ->
(
exists x',
In (
Iphi x'
r)
phiinstr /\
x' <>
x) ->
exists l',
exists l'', (
record_assigned_reg_phi m pc phiinstr) !
r =
Some (
pc::
l'++
pc::
l''))
/\
((
forall x, ~
In (
Iphi x r)
phiinstr) ->
(
record_assigned_reg_phi m pc phiinstr) !
r =
None)
.
Proof.
induction phiinstr;
simpl;
repeat split.
intuition.
intuition.
intuition.
destruct a.
intuition.
inv H3.
destruct (
classic (
exists x',
In (
Iphi x'
r)
phiinstr))
as [
EM1|
EM2].
destruct EM1 as [
x'''
EM11].
assert (
x''' <>
x)
by (
intro;
inv H1;
inv H0;
auto).
elim record_assigned_reg_phi_inlist3_stronger with r pc phiinstr (
pc::
nil) (
add_phi_assigned_reg pc m (
Iphi x r));
eauto.
intros IH1 [
IH2 IH3].
destruct (
classic (
exists x',
In (
Iphi x'
r)
phiinstr /\
x' <>
x'''))
as [
EM1|
EM2].
destruct EM1 as [
x' [
EM1 EM2]].
elim IH2 with x''';
auto.
intros.
destruct H3.
eauto.
eauto.
elim IH1 with x''';
eauto.
intros.
destruct (
list_eq_dec peq x'
x''') ;
auto;
elim EM2 ;
eauto.
simpl.
rewrite H.
rewrite PTree.gss ;
auto.
inv H0 ;
auto.
exists nil.
elim record_assigned_reg_phi_inlist3_stronger with r pc phiinstr (
pc::
nil) (
add_phi_assigned_reg pc m (
Iphi x r));
eauto.
intros IH1 [
IH2 IH3].
rewrite IH3.
auto.
intros.
intro.
elim EM2 ;
eauto.
simpl.
rewrite H;
auto.
rewrite PTree.gss ;
auto.
inv H0;
auto.
destruct (
peq r0 r).
inv e.
exploit (
H2 l).
left ;
auto.
intros.
inv H1.
inv H0.
elim H5 ;
auto.
destruct (
classic (
exists x',
In (
Iphi x'
r)
phiinstr /\
x' <>
x))
as [
EM1|
EM2].
destruct EM1 as [
x' [
EM1 EM2]].
elim IHphiinstr with (
add_phi_assigned_reg pc m (
Iphi l r0)).
intros IH1 [
IH2 IH3].
elim IH2 with x';
auto.
intros.
destruct H1.
eauto.
eauto.
simpl.
destruct m!
r0;
rewrite PTree.gso ;
auto.
inv H0 ;
auto.
elim IHphiinstr with (
add_phi_assigned_reg pc m (
Iphi l r0)).
intros IH1 [
IH2 IH3].
elim IH1 with x;
auto.
intros.
eauto.
simpl.
destruct m!
r0;
rewrite PTree.gso ;
auto.
inv H0 ;
auto.
intros.
intuition.
inv H3.
destruct H2.
destruct H1.
destruct H1.
inv H1.
elim H2.
auto.
destruct (
classic (
exists x',
In (
Iphi x'
r)
phiinstr /\
x' <>
x0))
as [
EM1|
EM2].
destruct EM1 as [
x' [
EM1 EM2]].
elim record_assigned_reg_phi_inlist3_stronger with r pc phiinstr (
pc::
nil) (
add_phi_assigned_reg pc m (
Iphi x r));
eauto.
intros IH1 [
IH2 IH3].
elim IH2 with (1:=
H1).
intros.
destruct H3.
eauto.
eauto.
simpl.
rewrite H;
auto.
rewrite PTree.gss ;
auto.
inv H0;
auto.
elim record_assigned_reg_phi_inlist3_stronger with r pc phiinstr (
pc::
nil) (
add_phi_assigned_reg pc m (
Iphi x r));
eauto.
intros IH1 [
IH2 IH3].
elim IH1 with (1:=
H1).
intros.
eauto.
intros.
destruct (
list_eq_dec peq x'
x0) ;
auto.
elim EM2 ;
auto.
eauto.
simpl.
rewrite H;
auto.
rewrite PTree.gss ;
auto.
inv H0;
auto.
destruct H2.
destruct H1.
destruct H1.
inv H1.
destruct (
classic (
exists x',
In (
Iphi x'
r)
phiinstr /\
x' <>
x))
as [
EM1|
EM2].
destruct EM1 as [
x' [
EM1 EM2]].
elim record_assigned_reg_phi_inlist3_stronger with r pc phiinstr (
pc::
nil) (
add_phi_assigned_reg pc m (
Iphi x r));
eauto.
intros IH1 [
IH2 IH3].
elim IH2 with (1:=
EM1).
intros.
destruct H1.
eauto.
eauto.
simpl.
rewrite H;
auto.
rewrite PTree.gss ;
auto.
inv H0;
auto.
elim record_assigned_reg_phi_inlist3_stronger with r pc phiinstr (
pc::
nil) (
add_phi_assigned_reg pc m (
Iphi x r));
eauto.
intros IH1 [
IH2 IH3].
elim IH1 with (1:=
H3).
intros.
eauto.
intros.
destruct (
list_eq_dec peq x'
x) ;
auto.
elim EM2 ;
auto.
eauto.
simpl.
rewrite H;
auto.
rewrite PTree.gss ;
auto.
inv H0;
auto.
destruct a.
destruct (
peq r r0).
inv e.
destruct (
classic (
exists x',
In (
Iphi x'
r0)
phiinstr /\
x' <>
x))
as [
EM1|
EM2].
destruct EM1 as [
x' [
EM1 EM2]].
elim record_assigned_reg_phi_inlist3_stronger with r0 pc phiinstr (
pc::
nil) (
add_phi_assigned_reg pc m (
Iphi l r0));
eauto.
intros IH1 [
IH2 IH3].
elim IH2 with (1:=
EM1).
intros.
destruct H4.
eauto.
eauto.
simpl.
rewrite H;
auto.
rewrite PTree.gss ;
auto.
inv H0;
auto.
elim record_assigned_reg_phi_inlist3_stronger with r0 pc phiinstr (
pc::
nil) (
add_phi_assigned_reg pc m (
Iphi l r0));
eauto.
intros IH1 [
IH2 IH3].
elim IH1 with (1:=
H3).
intros.
eauto.
intros.
destruct (
list_eq_dec peq x'
x) ;
auto.
elim EM2 ;
auto.
eauto.
simpl.
rewrite H;
auto.
rewrite PTree.gss ;
auto.
inv H0;
auto.
elim IHphiinstr with (
add_phi_assigned_reg pc m (
Iphi l r0)).
intros IH1 [
IH2 IH3].
elim IH2 with (1:=
H1).
intros l'
H'.
destruct H'
as [
l''
Hl''].
eauto.
eauto.
simpl.
destruct m!
r0 ;
rewrite PTree.gso ;
auto.
inv H0 ;
auto.
intros.
destruct a.
elim IHphiinstr with (
add_phi_assigned_reg pc m (
Iphi l r0)).
intros IH1 [
IH2 IH3].
rewrite IH3.
auto.
intros.
intro.
elim (
H1 x).
right ;
auto.
simpl.
destruct m!
r0 ;
rewrite PTree.gso ;
auto.
intro.
inv H2.
elim (
H1 l) ;
auto.
intro.
inv H2.
elim (
H1 l) ;
auto.
inv H0 ;
auto.
Qed.
Lemma record_assigned_reg_phi_inlist2_stronger :
forall r pc phiinstr l m,
m !
r =
Some l ->
(
forall x,
In (
Iphi x r)
phiinstr ->
exists l', (
record_assigned_reg_phi m pc phiinstr) !
r =
Some (
pc::
l'++
l))
/\
((
forall x, ~
In (
Iphi x r)
phiinstr) ->
(
record_assigned_reg_phi m pc phiinstr) !
r =
Some l)
.
Proof.
induction phiinstr;
simpl;
split;
intuition;
subst.
simpl;
rewrite H.
elim IHphiinstr with (
pc::
l) (
PTree.set r (
pc ::
l)
m).
intros IH1 IH2.
destruct (
classic (
exists x,
In (
Iphi x r)
phiinstr)).
destruct H0 as [
x'
H0].
elim IH1 with (1:=
H0);
intros l'
H'.
exists (
l'++
pc::
nil).
rewrite app_ass;
simpl;
auto.
rewrite IH2.
exists nil;
auto.
intros;
elim H0;
eauto.
rewrite PTree.gss;
auto.
destruct a as [
x'
r'].
destruct (
peq r'
r);
subst.
simpl.
rewrite H.
elim IHphiinstr with (
pc::
l) (
PTree.set r (
pc ::
l)
m).
intros IH1 IH2.
destruct (
classic (
exists x,
In (
Iphi x r)
phiinstr)).
destruct H0 as [
x''
H0].
elim IH1 with (1:=
H0);
intros l'
H'.
exists (
l'++
pc::
nil).
rewrite app_ass;
simpl;
auto.
rewrite IH2.
exists nil;
auto.
intros;
elim H0;
eauto.
rewrite PTree.gss;
auto.
elim IHphiinstr with l (
add_phi_assigned_reg pc m (
Iphi x'
r')).
intros IH1 IH2.
destruct (
classic (
exists x,
In (
Iphi x r)
phiinstr)).
destruct H0 as [
x''
H0].
elim IH1 with (1:=
H0);
intros l'
H'.
eauto.
rewrite IH2.
elim H0;
eauto.
intros;
elim H0;
eauto.
simpl.
destruct (
m !
r');
rewrite PTree.gso;
auto.
destruct a as [
x'
r'].
destruct (
peq r'
r);
subst.
elim H0 with x';
auto.
elim IHphiinstr with l (
add_phi_assigned_reg pc m (
Iphi x'
r')).
intros IH1 IH2.
rewrite IH2;
auto.
intros.
elim H0 with x;
eauto.
simpl.
destruct (
m !
r');
rewrite PTree.gso;
auto.
Qed.
Variant assigned_phi_spec_twice (
phicode:
phicode) (
pc:
node):
reg ->
Prop :=
APhi2:
forall phi dst,
(
phicode!
pc) =
Some phi ->
(∃
args :
list reg,
exists args',
In (
Iphi args dst)
phi /\
In (
Iphi args'
dst)
phi /\
args' <>
args) ->
assigned_phi_spec_twice phicode pc dst.
Lemma record_assigned_reg_phi_preserve3 :
forall phiinstr a r pc l,
a !
r =
Some l ->
exists l', (
record_assigned_reg_phi a pc phiinstr) !
r =
Some (
l' ++
l).
Proof.
induction phiinstr.
intros.
simpl.
exists nil.
auto.
destruct a.
intros.
simpl.
destruct (
peq r r0).
inv e.
rewrite H.
elim IHphiinstr with (
PTree.set r0 (
pc::
l0)
a)
r0 pc (
pc::
l0).
intros.
exists (
x++
pc::
nil).
rewrite app_ass ;
auto.
rewrite PTree.gss ;
auto.
destruct a!
r.
elim IHphiinstr with (
PTree.set r (
pc::
l1)
a)
r0 pc (
l0).
intros.
eauto.
rewrite PTree.gso ;
auto.
elim IHphiinstr with (
PTree.set r (
pc::
nil)
a)
r0 pc (
l0).
intros.
eauto.
rewrite PTree.gso ;
auto.
Qed.
Variant assigned_phi_spec_once (
phicode:
phicode) (
pc:
node):
reg ->
Prop :=
APhi1:
forall phi dst,
(
phicode!
pc) =
Some phi ->
(∃
args :
list reg,
In (
Iphi args dst)
phi /\
forall args',
In (
Iphi args'
dst)
phi ->
args' =
args) ->
(
NoDup phi) ->
assigned_phi_spec_once phicode pc dst.
Lemma assigned_phi_spec_none_stronger :
forall r code t,
t !
r =
None ->
(
forall pc phi,
code !
pc =
Some phi ->
NoDup phi) ->
(
forall pc phi,
code !
pc =
Some phi ->
NoDup phi) ->
(
forall pc, (
assigned_phi_spec_once code pc r) ->
exists l',
exists l'', (
PTree.fold record_assigned_reg_phi code t) !
r =
Some (
l'++
pc::
l''))
/\
(
forall pc, (
assigned_phi_spec_twice code pc r) ->
exists l',
exists l'',
exists l''', (
PTree.fold record_assigned_reg_phi code t) !
r =
Some (
l'++
pc::
l''++
pc::
l'''))
/\
((
forall pc, ~ (
assigned_phi_spec code pc r)) ->
(
PTree.fold record_assigned_reg_phi code t) !
r =
None).
Proof.
intros r.
intros code t Ha Hcode.
set (
P :=
fun (
code :
phicode) (
t :
PTree.t (
list positive)) =>
(
forall pc phi,
code !
pc =
Some phi ->
NoDup phi) ->
(
forall pc,
assigned_phi_spec_once code pc r
→ (∃
l', ∃
l'',
t !
r =
Some (
l'++
pc ::
l'')))
/\
(
forall pc,
assigned_phi_spec_twice code pc r
→ (∃
l', ∃
l'',
exists l''',
t !
r =
Some (
l'++
pc ::
l'' ++
pc::
l''')))
∧ ((
forall pc, ~
assigned_phi_spec code pc r)
→
t !
r =
None)).
apply PTree_Properties.fold_rec with (
P:=
P);
unfold P in *;
clear P;
intros.
split ;
intros.
elim H0.
intros IH1 [
IH2 IH3].
elim IH1 with pc.
intros.
eauto.
inv H2.
rewrite <- (
H pc)
in H3 ;
destruct H4.
exists phi ;
eauto.
intros.
rewrite (
H pc0)
in H3.
eapply H1 ;
eauto.
split ;
intros.
elim H0.
intros IH1 [
IH2 IH3].
elim IH2 with pc.
intros.
eauto.
inv H2.
rewrite <- (
H pc)
in H3 ;
destruct H4.
exists phi ;
eauto.
intros.
eapply (
H1 pc0) ;
eauto.
rewrite (
H pc0)
in H3;
auto.
elim H0.
intros IH1 [
IH2 IH3].
rewrite IH3.
auto.
intros.
intro.
elim H2 with pc.
inv H3.
rewrite (
H pc)
in H4.
eauto.
intros.
rewrite (
H pc)
in H3.
eapply H1 ;
eauto.
split;
intros;
auto.
inv H0.
rewrite PTree.gempty in H1;
congruence.
split ;
intros.
inv H0.
rewrite PTree.gempty in H1;
congruence.
auto.
assert (
HNodup:
forall pc phi,
m !
pc =
Some phi ->
NoDup phi).
intros.
destruct (
peq k pc).
inv e.
congruence.
eapply (
H2 pc) ;
eauto.
rewrite PTree.gso;
auto.
assert (
HH :=
H1 HNodup) ;
eauto.
clear H1.
destruct HH as [
IH1 [
IH2 IH3]].
intuition;
intros.
destruct (
peq pc k)
as [
eq|
neq] ;
inv H1.
rewrite PTree.gss in H3.
inv H3.
inv H4.
destruct (
classic (
exists pc,
assigned_phi_spec m pc r))
as [
EM1|
EM2].
destruct EM1 as [
pc EM1].
generalize EM1 ;
inv EM1 ;
intros EM1.
destruct H4.
destruct (
classic (
exists args',
In (
Iphi args'
r)
phiinstr /\
x0 <>
args'))
as [
EM11|
EM12].
destruct EM11 as [
args'
EM11].
elim IH2 with pc;
auto.
intros l' [
l'' [
l'''
H']].
elim record_assigned_reg_phi_inlist2_stronger with r k phi (
l' ++
pc ::
l'' ++
pc::
l''')
a;
auto.
intros.
elim H6 with x;
auto.
intros l''''
H''.
exists nil.
exists (
l''''++
l' ++
pc ::
l''++
pc::
l''').
simpl.
repeat (
rewrite app_ass ; (
repeat rewrite <-
app_comm_cons)).
eauto.
intuition ;
auto.
destruct EM11.
exists phiinstr;
eauto.
elim IH1 with pc;
auto.
intros l'''
H''.
destruct H''.
elim record_assigned_reg_phi_inlist2_stronger with r k phi (
l'''++
pc::
x1)
a;
auto.
intros.
elim H7 with x;
auto.
intros l''
H''.
exists nil;
simpl;
eauto.
intuition;
auto.
exists phiinstr;
eauto.
exists x0 ;
eauto.
split ;
auto.
intros.
destruct (
list_eq_dec peq args'
x0);
auto.
elim EM12;
auto.
exists args'.
split ;
auto.
elim record_assigned_reg_phi_inlist3_none_stronger with r k phi a.
intros.
elim H3 with x.
intros.
exists nil.
simpl.
exists x0 ;
auto.
destruct H1 ;
auto.
eapply H1;
eauto.
rewrite IH3.
auto.
intros.
elim EM2.
eauto.
eapply Hcode ;
eauto.
rewrite PTree.gso in H3 ;
auto.
destruct H4.
destruct H1.
elim IH1 with pc.
intros.
destruct H6.
elim record_assigned_reg_phi_inlist2_stronger with r k v (
x0++
pc::
x1)
a ;
auto.
intros.
destruct (
classic (
exists x,
In (
Iphi x r)
v))
as [
EM1 |
EM2].
destruct EM1 as [
args Hargs].
elim H7 with args;
auto.
intros.
exists (
k::
x2++
x0).
exists x1.
repeat rewrite ass_app in H9.
repeat rewrite app_ass.
rewrite app_comm_cons in H9.
auto.
rewrite H8.
eauto.
intros.
intro.
elim EM2 ;
eauto.
exists phi ;
eauto.
destruct (
peq pc k)
as [
eq |
neq] ;
inv H1 .
rewrite PTree.gss in H3.
inv H3.
destruct (
classic (
exists pc,
assigned_phi_spec m pc r))
as [
EM1|
EM2].
destruct EM1 as [
pc EM1].
generalize EM1 ;
inv EM1 ;
intros EM1.
destruct H3.
destruct (
classic (
exists args',
In (
Iphi args'
r)
phiinstr /\
x <>
args'))
as [
EM11|
EM12].
destruct EM11 as [
args'
EM11].
elim IH2 with pc;
auto.
intros l' [
l'' [
l'''
H']].
elim record_assigned_reg_phi_inlist3_stronger with r k phi (
l' ++
pc ::
l'' ++
pc::
l''')
a;
auto.
intros.
elim H6 ;
auto.
intros.
destruct H4.
destruct H4.
elim H7 with x0.
intros.
exists nil.
simpl.
exists x2.
destruct H9.
exists (
x3++
l' ++
pc ::
l''++
pc::
l''').
simpl.
repeat (
rewrite app_ass ; (
repeat rewrite <-
app_comm_cons)).
eauto.
intuition.
auto.
exists x1 ;
intuition ;
eauto.
eapply Hcode ;
eauto.
exists phiinstr;
eauto.
exists args' ;
exists x ;
intuition ;
eauto.
elim IH1 with pc;
auto.
intros l' [
l''
H''].
elim record_assigned_reg_phi_inlist3_stronger with r k phi (
l' ++
pc ::
l'')
a;
auto.
intros.
elim H6 ;
auto.
intros.
destruct H4.
destruct H4.
elim H7 with x0.
intros.
exists nil.
simpl.
exists x2.
destruct H9.
exists (
x3++
l' ++
pc ::
l'').
simpl.
repeat (
rewrite app_ass ; (
repeat rewrite <-
app_comm_cons)).
eauto.
intuition ;
auto.
intuition ;
eauto.
eapply Hcode ;
eauto.
exists phiinstr;
eauto.
exists x ;
intuition;
eauto.
destruct (
list_eq_dec peq args'
x);
auto.
elim EM12 ;
eauto.
elim record_assigned_reg_phi_inlist3_none_stronger with r k phi a.
intros.
destruct H4.
destruct H4.
elim H3.
intros.
elim H5 with x.
intros.
exists nil.
simpl.
eauto.
intuition;
eauto.
intuition;
eauto.
rewrite IH3.
auto.
intros.
elim EM2.
eauto.
eapply Hcode ;
eauto.
rewrite PTree.gso in H3 ;
auto.
destruct H4 as [
x [
x0 Hx]].
elim IH2 with pc.
intros.
destruct H1 as [
l'' [
l'''
H''']].
elim record_assigned_reg_phi_inlist2_stronger with r k v (
x1++
pc::
l''++
pc::
l''')
a ;
auto.
intros.
destruct (
classic (
exists x,
In (
Iphi x r)
v))
as [
EM1 |
EM2].
destruct EM1 as [
args Hargs].
elim H1 with args;
auto.
intros.
exists (
k::
x2++
x1).
exists l''.
exists l'''.
repeat rewrite ass_app in H5.
repeat rewrite app_ass.
rewrite app_comm_cons in H5.
auto.
rewrite H4.
eauto.
intros.
intro.
elim EM2 ;
eauto.
exists phi ;
eauto.
destruct (
classic (
exists pc,
assigned_phi_spec m pc r))
as [
EM1|
EM2].
generalize EM1 ;
inv EM1 ;
intros EM1.
destruct H3.
elim record_assigned_reg_phi_inlist3_none_stronger with dst k v a ;
auto.
intros.
elim H6 ;
intros.
rewrite H8;
auto.
intros.
intro.
elim (
H1 k).
exists v;
eauto.
rewrite PTree.gss ;
auto.
rewrite IH3;
auto.
intros.
elim H1 with x.
exists phiinstr ;
eauto.
rewrite PTree.gso;
auto.
intro.
inv H6.
congruence.
eapply Hcode ;
eauto.
elim record_assigned_reg_phi_inlist3_none_stronger with r k v a ;
auto.
intros.
elim H4 ;
intros.
rewrite H6;
auto.
intros.
intro.
elim (
H1 k).
exists v;
eauto.
rewrite PTree.gss ;
auto.
rewrite IH3;
auto.
intros.
elim EM2.
eauto.
eapply Hcode ;
eauto.
Qed.
Lemma assigned_phi_spec_inlist2_stronger :
forall r l code t,
t !
r =
Some l ->
(
forall pc, (
assigned_phi_spec code pc r) ->
exists l',
exists l'', (
PTree.fold record_assigned_reg_phi code t) !
r =
Some (
l'++
pc::
l''++
l))
/\
((
forall pc, ~ (
assigned_phi_spec code pc r)) ->
(
PTree.fold record_assigned_reg_phi code t) !
r =
Some l).
Proof.
intros r l.
intros code t Ha.
set (
P :=
fun (
code :
phicode) (
t :
PTree.t (
list positive)) =>
(
forall pc,
assigned_phi_spec code pc r
→ (∃
l', ∃
l'',
t !
r =
Some (
l'++
pc ::
l'' ++
l)))
∧ ((
forall pc, ~
assigned_phi_spec code pc r)
→
t !
r =
Some l)).
apply PTree_Properties.fold_rec with (
P:=
P);
unfold P in *;
clear P;
intros.
destruct H0;
split;
intros.
apply H0;
eauto.
inv H2;
rewrite <- (
H pc)
in H3 ;
eauto.
apply H1;
eauto.
intros pc T;
elim H2 with pc;
inv T;
rewrite (
H pc)
in H3 ;
eauto.
split;
intros;
auto.
inv H;
rewrite PTree.gempty in H0;
congruence.
split;
intros;
destruct H1.
destruct (
peq pc k) ;
inv H2.
rewrite PTree.gss in H4.
inv H4.
inv H5.
destruct (
classic (
exists pc,
assigned_phi_spec m pc r))
as [
EM|
EM].
destruct EM as [
pc EM].
elim H1 with pc;
auto;
intros l' [
l''
H'].
elim record_assigned_reg_phi_inlist2_stronger with r k phiinstr (
l' ++
pc ::
l'' ++
l)
a;
auto.
intros.
elim H4 with x;
auto;
intros l'''
H''.
exists nil.
exists (
l'''++
l' ++
pc ::
l'').
repeat rewrite app_ass;
auto.
elim record_assigned_reg_phi_inlist2_stronger with r k phiinstr l a;
auto.
intros.
elim H4 with x;
auto;
intros l''
H''.
exists nil;
simpl;
eauto.
apply H3;
intros.
intro;
elim EM;
eauto.
rewrite PTree.gso in *;
auto.
destruct H5 as [
x H5].
destruct (
classic (
exists pc,
assigned_phi_spec m pc r))
as [
EM|
EM].
destruct EM as [
pc'
EM].
elim H1 with pc;
auto.
intros l' [
l''
H'].
elim record_assigned_reg_phi_inlist2_stronger with r k v (
l' ++
pc ::
l'' ++
l)
a;
auto.
intros.
destruct (
classic (
exists x,
In (
Iphi x r)
v))
as [
EM1|
EM1].
destruct EM1 as [
x'
EM1].
elim H2 with x';
auto;
intros l'''
H''.
exists ((
k ::
l''') ++
l').
exists l''.
rewrite app_ass;
auto.
rewrite H6;
eauto.
exists phiinstr;
eauto.
clear H1.
elim EM;
exists pc;
exists phiinstr;
eauto.
elim record_assigned_reg_phi_inlist2_stronger with r k v l a;
auto.
intros _ H5.
rewrite H5;
auto.
red;
intros.
elim H2 with k.
exists v.
rewrite PTree.gss;
auto.
eauto.
apply H3.
intros.
intro.
elim H2 with pc;
clear H2.
destruct (
peq k pc);
inv H4.
congruence.
exists phiinstr;
eauto.
rewrite PTree.gso;
auto.
Qed.
Lemma ex_nodup {
A:
Type} :
(
forall x y:
A, {
x =
y}+{
x <>
y}) ->
forall (
l:
list A),
NoDup l \/ ~
NoDup l.
Proof.
induction l.
left;
econstructor.
destruct (
In_dec X a l).
right.
intro.
inv H.
elim H2 ;
auto.
destruct IHl.
left.
econstructor;
auto.
right.
intro.
inv H0.
congruence.
Qed.
Lemma assigned_code_spec_inlist2 :
forall code r pc,
(
assigned_code_spec code pc r) ->
exists l, ((
PTree.fold record_assigned_reg code (
PTree.empty (
list positive))) !
r =
Some l
/\
In pc l).
Proof.
set (
P :=
fun (
code :
code) (
c :
PTree.t (
list positive)) =>
forall r pc,
assigned_code_spec code pc r ->
exists l,
c !
r =
Some l /\
In pc l).
intros code.
apply PTree_Properties.fold_rec with (
P:=
P).
unfold P;
intros.
apply H0;
eauto.
inv H1;
rewrite <- (
H pc)
in H2 ;
eauto.
red.
intros.
inv H;
rewrite PTree.gempty in H0;
congruence.
unfold P;
intros.
unfold record_assigned_reg.
destruct v;
try (
destruct s0);
try (
destruct b);
match goal with
| [
H : ?
code ! ?
k =
Some ?
i |-
_ ] =>
try (
destruct (
peq k pc)
as [
Heq1 |
Heq2];
try inv Heq1;
[(
assert (
Hk : ((
PTree.set pc i m) !
pc =
Some i))
by (
rewrite PTree.gss ;
auto));
try (
destruct (
peq r0 r)
as [
Heq1 |
Heq2];
try inv Heq1);
[
destruct (
a !
r);
eauto;
[
exists (
pc::
l0) ;
rewrite PTree.gss ;
eauto
|
exists (
pc::
nil) ;
rewrite PTree.gss ;
eauto]
|
inv H2;
rewrite H3 in Hk ;
inv Hk;
elim Heq2 ;
eauto]
|
exploit (
H1 r pc) ;
eauto; (
intros;
destruct H3);
try (
destruct (
peq r r0)
as [
rr0 |
diff]);
try inv rr0;
[
destruct H3 ;
rewrite H3 in * ;
exists (
k::
x) ;
rewrite PTree.gss ;
eauto
|
destruct (
a !
r0);
rewrite PTree.gso ;
eauto ]]);
try (
eapply H1;
eauto;
destruct (
peq k pc)
as [
Heq1 |
Heq2];
try inv Heq1;
[(
assert (
Hk : ((
PTree.set pc i m) !
pc =
Some i))
by (
rewrite PTree.gss ;
auto)); (
inv H2;
try congruence)
| (
assert (
Hk : ((
PTree.set k i m) !
pc =
m !
pc))
by (
rewrite PTree.gso ;
auto));
inv H2;
try (
rewrite Hk in * ;
eauto)])
end.
destruct (
peq k pc)
as [
Heq1 |
Heq2];
try inv Heq1.
- (
assert (
Hk : ((
PTree.set pc (
Ibuiltin e l (
BR x)
n)
m) !
pc =
Some (
Ibuiltin e l (
BR x)
n)))
by (
rewrite PTree.gss ;
auto)).
(
destruct (
peq x r)
as [
Heq1 |
Heq2];
try inv Heq1);
[
destruct (
a !
r);
eauto;
[
exists (
pc::
l0) ;
rewrite PTree.gss ;
eauto
|
exists (
pc::
nil);
rewrite PTree.gss ;
eauto ]
|
inv H2;
rewrite H3 in Hk ;
inv Hk;
elim Heq2 ;
eauto ].
-
exploit (
H1 r pc) ;
eauto; (
intros;
destruct H3);
try (
destruct (
peq r x)
as [
rr0 |
diff]);
try inv rr0;
[
destruct H3 ;
rewrite H3 in * ;
exists (
k::
x0) ;
rewrite PTree.gss ;
eauto
|
destruct (
a !
x);
rewrite PTree.gso ;
eauto ] .
Qed.
Lemma check_unique_def_correct1 :
forall tf,
check_unique_def tf =
true ->
(
forall (
r :
reg) (
pc pc' :
node),
assigned_code_spec (
fn_code tf)
pc r ->
assigned_code_spec (
fn_code tf)
pc'
r ->
pc =
pc').
Proof.
intros tf CHECK ;
intros.
generalize CHECK ;
intros CHECK'.
generalize H H0 ;
intros.
eapply assigned_code_spec_inlist2 in H;
eauto.
destruct H as [
lr [
Hlr Hinpc]].
eapply assigned_code_spec_inlist2 in H0;
eauto.
destruct H0 as [
lr' [
Hlr'
Hinpc']].
rewrite Hlr in Hlr'.
inv Hlr'.
generalize Hlr ;
intro Hlr'.
eapply fold_record_preserve with (
pc:=
pc') (
code:= (
fn_phicode tf))
in Hlr;
eauto.
eapply fold_record_preserve with (
pc:=
pc) (
code:= (
fn_phicode tf))
in Hlr';
eauto.
destruct Hlr'
as [
llr' [
Hllr'
Hinllr']].
destruct Hlr as [
llr [
Hllr Hinllr]].
rewrite Hllr'
in *.
inv Hllr'.
inv Hllr.
eapply ptree_forall with (
i :=
r)
in CHECK';
eauto.
rewrite H0 in *.
destruct llr.
inv Hinllr'.
case_eq llr ;
intros;
rewrite H in *.
inv Hinllr;
auto.
inv Hinllr';
auto.
elim H.
elim H3.
inv CHECK'.
Qed.
Lemma check_unique_def_correct2 :
forall tf,
check_unique_def tf =
true ->
(
forall (
r :
reg) (
pc pc' :
node),
assigned_phi_spec (
fn_phicode tf)
pc r ->
assigned_phi_spec (
fn_phicode tf)
pc'
r ->
pc =
pc').
Proof.
intros tf CHECK ;
intros.
generalize CHECK ;
intros CHECK'.
generalize H H0 ;
intros.
set (
t:=
PTree.fold record_assigned_reg (
fn_code tf) (
PTree.empty (
list positive))).
eapply assigned_phi_spec_inlist2 with (
t :=
t)
in H;
eauto.
destruct H as [
lr [
Hlr Hinpc]].
eapply assigned_phi_spec_inlist2 with (
t :=
t)
in H0;
eauto.
destruct H0 as [
lr' [
Hlr'
Hinpc']].
rewrite Hlr in Hlr'.
inv Hlr'.
eapply ptree_forall with (
i :=
r)
in CHECK';
eauto.
unfold t in Hlr.
rewrite Hlr in *.
destruct lr'.
inv Hinpc.
case_eq lr' ;
intros;
rewrite H in *.
assert (
p =
pc).
inv Hinpc ;
auto ;
elim H0.
rewrite <-
H0.
inv Hinpc';
auto.
elim H3.
inv CHECK'.
Qed.
Lemma check_unique_def_correct3_help :
forall tf,
check_unique_def tf =
true ->
(
forall (
r :
reg) (
pc pc' :
node),
assigned_code_spec (
fn_code tf)
pc r ->
assigned_phi_spec (
fn_phicode tf)
pc'
r ->
False).
Proof.
Lemma check_unique_def_correct31 :
forall tf,
check_unique_def tf =
true ->
(
forall (
r :
reg) (
pc pc' :
node),
(
assigned_phi_spec (
fn_phicode tf)
pc'
r) -> ~
assigned_code_spec (
fn_code tf)
pc r).
Proof.
Lemma check_unique_def_correct32 :
forall tf,
check_unique_def tf =
true ->
(
forall (
r :
reg) (
pc pc' :
node),
(
assigned_code_spec (
fn_code tf)
pc'
r) -> ~
assigned_phi_spec (
fn_phicode tf)
pc r).
Proof.
Lemma not_assigned_code_spec_none :
forall code r,
(
forall pc, ~
assigned_code_spec code pc r) ->
(
PTree.fold record_assigned_reg code (
PTree.empty (
list positive))) !
r =
None.
Proof.
Lemma check_unique_def_correct41 :
forall tf,
check_unique_def tf =
true ->
(
forall pc phi,
tf.(
fn_phicode) !
pc =
Some phi ->
NoDup phi) ->
forall pc phiinstr,
tf.(
fn_phicode) !
pc =
Some phiinstr ->
(
forall r args args',
In (
Iphi args r)
phiinstr ->
In (
Iphi args'
r)
phiinstr ->
args =
args').
Proof.
Inductive dup :
list phiinstruction ->
reg ->
Prop :=
|
dup_intro1:
forall args reg phi,
In (
Iphi args reg)
phi ->
dup ((
Iphi args reg)::
phi)
reg
|
dup_intro2:
forall r phi iphi,
dup phi r ->
dup (
iphi::
phi)
r.
Lemma not_nodup_dup :
forall phiblock,
~
NoDup phiblock ->
exists r,
dup phiblock r.
Proof.
induction phiblock ;
intros ;
auto.
elim H.
econstructor ;
eauto.
assert (
forall (
iphi1 iphi2:
phiinstruction), {
iphi1 =
iphi2}+{
iphi1 <>
iphi2})
by
(
repeat decide equality).
destruct a.
destruct (
In_dec X (
Iphi l r)
phiblock).
exists r.
econstructor 1 ;
eauto.
exploit IHphiblock ;
eauto.
intro Hcont.
elim H ;
auto.
econstructor ;
eauto.
intros [
r'
Hr'].
exists r'.
econstructor ;
eauto.
Qed.
Lemma dup_v_in_v :
forall phi v,
dup phi v ->
exists args,
In (
Iphi args v)
phi.
Proof.
induction 1 ; intros.
exists args ; auto.
destruct IHdup ; eauto.
Qed.
Lemma dup_record_assigned_reg_phi :
forall phi dst a pc,
dup phi dst ->
∃
l :
list positive,
(
record_assigned_reg_phi a pc phi) !
dst =
Some l ∧
List.length l ≥ 2.
Proof.
induction phi ;
intros.
inv H.
inv H.
simpl.
destruct a0 !
dst.
exploit (
record_assigned_reg_phi_inlist2_stronger dst pc phi (
pc::
l) (
PTree.set dst (
pc::
l)
a0)) ;
eauto.
rewrite PTree.gss ;
auto.
intros.
destruct H as [
HH _].
exploit (
HH args) ;
eauto.
intros.
destruct H.
exists (
pc::
x ++
pc::
l) ;
split ;
eauto.
destruct x;
destruct l; (
simpl;
lia).
exploit (
record_assigned_reg_phi_inlist2_stronger dst pc phi (
pc::
nil) (
PTree.set dst (
pc::
nil)
a0)) ;
eauto.
rewrite PTree.gss ;
auto.
intros.
destruct H as [
HH _].
exploit (
HH args) ;
eauto.
intros.
destruct H.
exists (
pc::
x ++
pc::
nil) ;
split ;
eauto.
destruct x; (
simpl;
lia).
simpl.
exploit IHphi ;
eauto.
Qed.
Lemma dup_more_than_two :
forall phicode t pc dst phi ,
phicode !
pc =
Some phi ->
dup phi dst ->
exists l,
(
PTree.fold record_assigned_reg_phi phicode t) !
dst =
Some l
/\ (
List.length l >= 2)%
nat.
Proof.
Lemma check_unique_def_correct42 :
forall tf,
check_unique_def tf =
true ->
(
forall pc phi,
tf.(
fn_phicode) !
pc =
Some phi ->
NoDup phi).
Proof.
Lemma check_unique_def_correct :
forall tf,
check_unique_def tf =
true ->
unique_def_spec tf.
Proof.
Lemma phi_store_copy:
forall k block rs dst arg args
(
NODUP:
NoDup block)
(
NODUP': (
forall r args args',
In (
Iphi args r)
block ->
In (
Iphi args'
r)
block →
args =
args'))
(
IN:
In (
Iphi args dst)
block /\
nth_error args k =
Some arg),
(
phi_store k block rs)#
dst =
rs#
arg.
Proof.
induction block;
intros;
destruct IN as [
Hin Hnth].
inv Hin.
destruct a;
inv Hin.
inv H;
simpl.
rewrite Hnth.
rewrite PMap.gss ;
eauto.
case_eq (
nth_error l k);
intros;
simpl;
rewrite H0.
assert (
dst <>
r)
by (
intro;
inv H1;
inv NODUP;
exploit (
NODUP'
r args l);
eauto;
intro;
inv H1;
elim H3 ;
auto).
rewrite PMap.gso ;
eauto.
symmetry;
rewrite <-
IHblock with (
dst:=
dst) (
arg:=
arg) (
args:=
args)
at 1 ;
eauto.
inv NODUP;
auto.
eapply IHblock ;
eauto;
inv NODUP ;
eauto.
Qed.
Lemma check_udef_spec_no_dup:
forall tf pc block,
unique_def_spec tf ->
(
fn_phicode tf) !
pc =
Some block ->
NoDup block.
Proof.
intros. destruct H as [_ Hdup].
exploit (Hdup pc); eauto.
intro. intuition.
Qed.
Lemma phi_store_copy2:
forall f,
wf_ssa_function f ->
forall rs pc phiinstr args arg dst k,
(
fn_phicode f) !
pc =
Some phiinstr ->
In (
Iphi args dst)
phiinstr ->
nth_error args k =
Some arg ->
(
phi_store k phiinstr rs) #
dst =
rs #
arg.
Proof.
Lemma phi_store_notin_preserved_map:
forall k block rs args,
(
forall dst,
In dst args ->
forall phiargs, ~
In (
Iphi phiargs dst)
block)->
(
phi_store k block rs) ##
args =
rs ##
args.
Proof.