diff options
| author | Pierre-Marie Pédrot | 2019-10-15 21:33:31 +0200 |
|---|---|---|
| committer | Gaëtan Gilbert | 2019-10-16 10:57:47 +0200 |
| commit | 5c5790d587ad425a882ea8bcdcf28d5ac046aaa3 (patch) | |
| tree | 53ed7fe07593a86c2bd6e85e61ca20bae1a38e37 | |
| parent | fcd8a670b4e56e69e67315d9bf40130cff68312b (diff) | |
Fix a De Bruijn bug in the computation of term relevance in the kernel.
Opening up a lambda should always lift the substitution attached to it.
| -rw-r--r-- | dev/doc/critical-bugs | 11 | ||||
| -rw-r--r-- | doc/changelog/01-kernel/10904-fix-debruijn-sprop-rel.rst | 3 | ||||
| -rw-r--r-- | kernel/retypeops.ml | 1 | ||||
| -rw-r--r-- | test-suite/bugs/closed/bug_10904.v | 8 |
4 files changed, 23 insertions, 0 deletions
diff --git a/dev/doc/critical-bugs b/dev/doc/critical-bugs index 78d7061259..6d90ced12d 100644 --- a/dev/doc/critical-bugs +++ b/dev/doc/critical-bugs @@ -250,6 +250,17 @@ Conversion machines exploit: test-suite/bugs/closed/bug_9684.v GH issue number: #9684 + component: lazy machine + summary: incorrect De Bruijn handling when inferring the relevance mark for a lambda + introduced: 2019-03-15, 23f84f37c674a07e925925b7e0d50d7ee8414093 and 71b9ad8526155020c8451dd326a52e391a9a8585, SkySkimmer + impacted released versions: 8.10.0 + impacted coqchk versions: 8.10.0 + found by: ppedrot investigating unexpected conversion failures with SProp + exploit: test-suite/bugs/closed/bug_10904.v + GH issue number: #10904 + risk: none without using -allow-sprop (off by default in 8.10.0), + otherwise could be exploited by mistake + Conflicts with axioms in library component: library of real numbers diff --git a/doc/changelog/01-kernel/10904-fix-debruijn-sprop-rel.rst b/doc/changelog/01-kernel/10904-fix-debruijn-sprop-rel.rst new file mode 100644 index 0000000000..6cab6a1c13 --- /dev/null +++ b/doc/changelog/01-kernel/10904-fix-debruijn-sprop-rel.rst @@ -0,0 +1,3 @@ +- Fix proof of False when using |SProp| (incorrect De Bruijn handling + when inferring the relevance mark of a function) (`#10904 + <https://github.com/coq/coq/pull/10904>`_, by Pierre-Marie Pédrot). diff --git a/kernel/retypeops.ml b/kernel/retypeops.ml index a51b762f95..f398e6a5da 100644 --- a/kernel/retypeops.ml +++ b/kernel/retypeops.ml @@ -71,6 +71,7 @@ let rec relevance_of_fterm env extra lft f = | FLambda (len, tys, bdy, e) -> let extra = List.rev_append (List.map (fun (x,_) -> binder_relevance x) tys) extra in let lft = Esubst.el_liftn len lft in + let e = Esubst.subs_liftn len e in relevance_of_term_extra env extra lft e bdy | FLetIn (x, _, _, bdy, e) -> relevance_of_term_extra env (x.binder_relevance :: extra) diff --git a/test-suite/bugs/closed/bug_10904.v b/test-suite/bugs/closed/bug_10904.v new file mode 100644 index 0000000000..32b25ff726 --- /dev/null +++ b/test-suite/bugs/closed/bug_10904.v @@ -0,0 +1,8 @@ +Definition a := fun (P:SProp) (p:P) => p. + +Lemma foo : (let k := a in let k' := a in fun (x:nat) y => x) = (let k := a in fun x y => y). +Proof. + Fail reflexivity. + match goal with |- ?l = _ => exact_no_check (eq_refl l) end. +Fail Qed. +Abort. |