still some useless invariants in FSetAVL

git-svn-id: svn+ssh://scm.gforge.inria.fr/svn/coq/trunk@10701 85f007b7-540e-0410-9357-904b9bb8a0f7
author: letouzey 2008-03-20 00:23:29 +0000
committer: letouzey 2008-03-20 00:23:29 +0000
commit: 5444886bda4e4f37214427eec606444f273261fc (patch)
tree: 4ae9303523a50138d37f188aea5bac14f9b7a316
parent: 3a304ad8434e1c4f5428159aaa029f4b7734685e (diff)
2 files changed, 31 insertions, 56 deletions
diff --git a/theories/FSets/FSetAVL.v b/theories/FSets/FSetAVL.v
index 024c2e9633..8d3954fa12 100644
--- a/theories/FSets/FSetAVL.v
+++ b/theories/FSets/FSetAVL.v
@@ -1604,16 +1604,7 @@ Inductive In_e (x:elt) : enumeration -> Prop :=
       forall (y : elt) (s : tree) (e : enumeration),
       In_e x e -> In_e x (More y s e).
 
-Inductive sorted_e : enumeration -> Prop :=
-  | SortedEEnd : sorted_e End
-  | SortedEMore :
-      forall (x : elt) (s : tree) (e : enumeration),
-      bst s -> gt_tree x s -> sorted_e e ->
-      (forall y, In_e y e -> X.lt x y) ->
-      (forall y, In y s -> forall z, In_e z e -> X.lt y z) ->
-      sorted_e (More x s e).
-
-Hint Constructors In_e sorted_e.
+Hint Constructors In_e.
 
 Lemma elements_app :
  forall s acc, elements_aux acc s = elements s ++ acc.
@@ -1652,18 +1643,10 @@ Fixpoint cons s e : enumeration :=
  end.
 
 Lemma cons_1 : forall s e, 
-  bst s -> sorted_e e ->
-  (forall (x y : elt), In x s -> In_e y e -> X.lt x y) ->
-  sorted_e (cons s e) /\ 
   flatten_e (cons s e) = elements s ++ flatten_e e.
 Proof.
- induction s; simpl; auto.
- clear IHs2; intros.
- inv bst.
- destruct (IHs1 (More t s2 e)); clear IHs1; intuition.
- inversion_clear H6; subst; auto; order.
- rewrite H6.
- apply flatten_e_elements.
+ induction s; simpl; auto; intros.
+ rewrite IHs1; apply flatten_e_elements.
 Qed.
 
 (** One step of comparison of elements *)
@@ -1729,29 +1712,25 @@ Proof.
 Qed.
 
 Lemma compare_cont_Cmp : forall s1 cont e2 l,
- bst s1 -> sorted_e e2 ->
- (forall e, sorted_e e -> Cmp (cont e) l (flatten_e e)) -> 
+ (forall e, Cmp (cont e) l (flatten_e e)) -> 
  Cmp (compare_cont s1 cont e2) (elements s1 ++ l) (flatten_e e2).
 Proof.
  induction s1 as [|l1 Hl1 x1 r1 Hr1 h1]; simpl; intros; auto.
  inv bst.
  rewrite <- compare_flatten_1; simpl.
- apply Hl1; auto. clear e2 H0. intros [|x2 r2 e2] He2.
+ apply Hl1; auto. clear e2. intros [|x2 r2 e2].
  simpl; auto.
  apply compare_more_Cmp.
- inversion_clear He2.
- destruct (cons_1 H H6); auto.
- rewrite <- H10; auto.
+ rewrite <- cons_1; auto.
 Qed.
 
-Lemma compare_Cmp : forall s1 s2, bst s1 -> bst s2 ->
+Lemma compare_Cmp : forall s1 s2,
  Cmp (compare s1 s2) (elements s1) (elements s2).
 Proof.
  intros; unfold compare.
- rewrite (app_nil_end (elements s1)), (app_nil_end (elements s2)).
- destruct (@cons_1 s2 End); auto.
- inversion 2.
- simpl in H2. unfold elt in *; rewrite <- H2.
+ rewrite (app_nil_end (elements s1)).
+ replace (elements s2) with (flatten_e (cons s2 End)) by 
+  (rewrite cons_1; simpl; rewrite <- app_nil_end; auto).
  apply compare_cont_Cmp; auto.
  intros.
  apply compare_end_Cmp; auto.
@@ -1769,17 +1748,17 @@ Lemma equal_1 : forall s1 s2, bst s1 -> bst s2 ->
  Equal s1 s2 -> equal s1 s2 = true.
 Proof.
 unfold equal; intros s1 s2 B1 B2 E.
-generalize (compare_Cmp B1 B2). 
+generalize (compare_Cmp s1 s2). 
 destruct (compare s1 s2); simpl in *; auto; intros.
 elim (lt_not_eq B1 B2 H E); auto.
 elim (lt_not_eq B2 B1 H (eq_sym E)); auto.
 Qed.
 
-Lemma equal_2 : forall s1 s2, bst s1 -> bst s2 ->   
+Lemma equal_2 : forall s1 s2,  
  equal s1 s2 = true -> Equal s1 s2.
 Proof.
-unfold equal; intros s1 s2 B1 B2 E.
-generalize (compare_Cmp B1 B2); 
+unfold equal; intros s1 s2 E.
+generalize (compare_Cmp s1 s2); 
  destruct compare; auto; discriminate.
 Qed.
 
@@ -1849,7 +1828,7 @@ Module IntMake (I:Int)(X: OrderedType) <: S with Module E := X.
  Definition compare (s s':t) : Compare lt eq s s'.
  Proof.
   intros (s,b) (s',b').
-  generalize (Raw.compare_Cmp b b').
+  generalize (Raw.compare_Cmp s s').
   destruct Raw.compare; intros; [apply EQ|apply LT|apply GT]; red; auto.
  Defined.
 
@@ -1868,7 +1847,7 @@ Module IntMake (I:Int)(X: OrderedType) <: S with Module E := X.
  Lemma equal_1 : Equal s s' -> equal s s' = true.
  Proof. exact (Raw.equal_1 (is_bst s) (is_bst s')). Qed.
  Lemma equal_2 : equal s s' = true -> Equal s s'.
- Proof. exact (Raw.equal_2 (is_bst s) (is_bst s')). Qed.
+ Proof. exact (@Raw.equal_2 s s'). Qed.
 
  Ltac wrap t H := unfold t, In; simpl; rewrite H; auto; intuition.
 
diff --git a/theories/FSets/FSetFullAVL.v b/theories/FSets/FSetFullAVL.v
index 748658c9ca..3082102c65 100644
--- a/theories/FSets/FSetFullAVL.v
+++ b/theories/FSets/FSetFullAVL.v
@@ -734,7 +734,6 @@ Definition ocaml_compare s1 s2 :=
  ocaml_compare_aux (cons s1 End, cons s2 End).
 
 Lemma ocaml_compare_aux_Cmp : forall e, 
- sorted_e e#1 -> sorted_e e#2 -> 
  Cmp (ocaml_compare_aux e) (flatten_e e#1) (flatten_e e#2).
 Proof.
  intros e; functional induction ocaml_compare_aux e; simpl; intros; 
@@ -742,27 +741,24 @@ Proof.
  apply L.eq_refl.
  simpl in *.
  apply cons_Cmp; auto.
- inversion H; subst; clear H.
- inversion H0; subst; clear H0.
- destruct (@cons_1 r1 e1); destruct (@cons_1 r2 e2); auto.
- rewrite <-H0, <-H2; auto.
+ rewrite <- 2 cons_1; auto.
 Qed.
 
-Lemma ocaml_compare_Cmp : forall s1 s2, bst s1 -> bst s2 ->
+Lemma ocaml_compare_Cmp : forall s1 s2,
  Cmp (ocaml_compare s1 s2) (elements s1) (elements s2).
 Proof.
  unfold ocaml_compare; intros.
- destruct (@cons_1 s1 End) as (S1,E1); auto; try inversion 2.
- destruct (@cons_1 s2 End) as (S2,E2); auto; try inversion 2.
- simpl in *; rewrite <- app_nil_end, <- E1, <- E2 in *.
- apply (@ocaml_compare_aux_Cmp (cons s1 End, cons s2 End)); simpl; auto.
+ assert (H1:=cons_1 s1 End).
+ assert (H2:=cons_1 s2 End).
+ simpl in *; rewrite <- app_nil_end in *; rewrite <-H1,<-H2.
+ apply (@ocaml_compare_aux_Cmp (cons s1 End, cons s2 End)).
 Qed.
 
 Lemma ocaml_compare_alt : forall s1 s2, bst s1 -> bst s2 -> 
  ocaml_compare s1 s2 = compare s1 s2.
 Proof.
  intros s1 s2 B1 B2.
- generalize (ocaml_compare_Cmp B1 B2)(compare_Cmp B1 B2). 
+ generalize (ocaml_compare_Cmp s1 s2)(compare_Cmp s1 s2). 
  unfold Cmp.
  destruct ocaml_compare; destruct compare; auto; intros; elimtype False.
  elim (lt_not_eq B1 B2 H0); auto.
@@ -793,17 +789,17 @@ Lemma ocaml_equal_1 : forall s1 s2, bst s1 -> bst s2 ->
  Equal s1 s2 -> ocaml_equal s1 s2 = true.
 Proof.
 unfold ocaml_equal; intros s1 s2 B1 B2 E.
-generalize (ocaml_compare_Cmp B1 B2).
+generalize (ocaml_compare_Cmp s1 s2).
 destruct (ocaml_compare s1 s2); auto; intros.
 elim (lt_not_eq B1 B2 H E); auto.
 elim (lt_not_eq B2 B1 H (eq_sym E)); auto.
 Qed.
 
-Lemma ocaml_equal_2 : forall s1 s2, bst s1 -> bst s2 ->
+Lemma ocaml_equal_2 : forall s1 s2,
  ocaml_equal s1 s2 = true -> Equal s1 s2.
 Proof.
-unfold ocaml_equal; intros s1 s2 B1 B2 E.
-generalize (ocaml_compare_Cmp B1 B2); 
+unfold ocaml_equal; intros s1 s2 E.
+generalize (ocaml_compare_Cmp s1 s2); 
  destruct ocaml_compare; auto; discriminate.
 Qed.
 
@@ -901,7 +897,7 @@ Module IntMake (I:Int)(X: OrderedType) <: S with Module E := X.
  Definition compare (s s':t) : Compare lt eq s s'.
  Proof.
   intros (s,b,a) (s',b',a').
-  generalize (compare_Cmp b b').
+  generalize (compare_Cmp s s').
   destruct Raw.compare; intros; [apply EQ|apply LT|apply GT]; red; auto.
   change (Raw.Equal s s'); auto.
  Defined.
@@ -909,7 +905,7 @@ Module IntMake (I:Int)(X: OrderedType) <: S with Module E := X.
  Definition ocaml_compare (s s':t) : Compare lt eq s s'.
  Proof.
   intros (s,b,a) (s',b',a').
-  generalize (ocaml_compare_Cmp b b').
+  generalize (ocaml_compare_Cmp s s').
   destruct ocaml_compare; intros; [apply EQ|apply LT|apply GT]; red; auto.
   change (Raw.Equal s s'); auto.
  Defined.
@@ -929,7 +925,7 @@ Module IntMake (I:Int)(X: OrderedType) <: S with Module E := X.
  Lemma equal_1 : Equal s s' -> equal s s' = true.
  Proof. exact (equal_1 (is_bst s) (is_bst s')). Qed.
  Lemma equal_2 : equal s s' = true -> Equal s s'.
- Proof. exact (equal_2 (is_bst s) (is_bst s')). Qed.
+ Proof. exact (@equal_2 s s'). Qed.
 
  Lemma ocaml_equal_alt : ocaml_equal s s' = equal s s'.
  Proof. 
@@ -940,7 +936,7 @@ Module IntMake (I:Int)(X: OrderedType) <: S with Module E := X.
  Lemma ocaml_equal_1 : Equal s s' -> ocaml_equal s s' = true.
  Proof. exact (ocaml_equal_1 (is_bst s) (is_bst s')). Qed.
  Lemma ocaml_equal_2 : ocaml_equal s s' = true -> Equal s s'.
- Proof. exact (ocaml_equal_2 (is_bst s) (is_bst s')). Qed. 
+ Proof. exact (@ocaml_equal_2 s s'). Qed. 
 
  Ltac wrap t H := unfold t, In; simpl; rewrite H; auto; intuition.
author	letouzey	2008-03-20 00:23:29 +0000
committer	letouzey	2008-03-20 00:23:29 +0000
commit	5444886bda4e4f37214427eec606444f273261fc (patch)
tree	4ae9303523a50138d37f188aea5bac14f9b7a316
parent	3a304ad8434e1c4f5428159aaa029f4b7734685e (diff)