From c59815c860a11948359e96ecc51d566bb5e5d8fb Mon Sep 17 00:00:00 2001
From: Jason Gross
Date: Fri, 25 Oct 2019 15:28:37 -0400
Subject: `assert_succeeds`&`assert_fails`: multisuccess fix

These tactics now work correctly with multisuccess tactics by wrapping
the tactic argument in `once`.

Fixes #10965
---
 doc/changelog/04-tactics/10966-assert-succeeds-once.rst | 6 ++++++
 doc/sphinx/proof-engine/ltac.rst                        | 2 +-
 2 files changed, 7 insertions(+), 1 deletion(-)
 create mode 100644 doc/changelog/04-tactics/10966-assert-succeeds-once.rst

(limited to 'doc')

diff --git a/doc/changelog/04-tactics/10966-assert-succeeds-once.rst b/doc/changelog/04-tactics/10966-assert-succeeds-once.rst
new file mode 100644
index 0000000000..d97c69737e
--- /dev/null
+++ b/doc/changelog/04-tactics/10966-assert-succeeds-once.rst
@@ -0,0 +1,6 @@
+- The :tacn:`assert_succeeds` and :tacn:`assert_fails` tactics now
+  only run their tactic argument once, even if it has multiple
+  successes.  This prevents blow-up and looping from using
+  multisuccess tactics with :tacn:`assert_succeeds`.  (`#10966
+  <https://github.com/coq/coq/pull/10966>`_ fixes `#10965
+  <https://github.com/coq/coq/issues/10965>`_, by Jason Gross).
diff --git a/doc/sphinx/proof-engine/ltac.rst b/doc/sphinx/proof-engine/ltac.rst
index 79eddbd3b5..aa4e90560b 100644
--- a/doc/sphinx/proof-engine/ltac.rst
+++ b/doc/sphinx/proof-engine/ltac.rst
@@ -516,7 +516,7 @@ Coq provides a derived tactic to check that a tactic *fails*:
 .. tacn:: assert_fails @ltac_expr
    :name: assert_fails
 
-   This behaves like :n:`tryif @ltac_expr then fail 0 tac "succeeds" else idtac`.
+   This behaves like :n:`tryif once @ltac_expr then fail 0 tac "succeeds" else idtac`.
 
 Checking the success
 ~~~~~~~~~~~~~~~~~~~~
-- 
cgit v1.2.3


From c9adfcd356f2563d7c4b3927669a8268f184ec24 Mon Sep 17 00:00:00 2001
From: Jason Gross
Date: Sat, 26 Oct 2019 00:46:14 -0400
Subject: Fix #9114, assert_succeeds (exact I) solves goal

---
 doc/changelog/04-tactics/10966-assert-succeeds-once.rst | 5 +++++
 doc/sphinx/proof-engine/ltac.rst                        | 6 ++++--
 2 files changed, 9 insertions(+), 2 deletions(-)

(limited to 'doc')

diff --git a/doc/changelog/04-tactics/10966-assert-succeeds-once.rst b/doc/changelog/04-tactics/10966-assert-succeeds-once.rst
index d97c69737e..09bef82c80 100644
--- a/doc/changelog/04-tactics/10966-assert-succeeds-once.rst
+++ b/doc/changelog/04-tactics/10966-assert-succeeds-once.rst
@@ -4,3 +4,8 @@
   multisuccess tactics with :tacn:`assert_succeeds`.  (`#10966
   <https://github.com/coq/coq/pull/10966>`_ fixes `#10965
   <https://github.com/coq/coq/issues/10965>`_, by Jason Gross).
+
+- The :tacn:`assert_succeeds` and :tacn:`assert_fails` tactics now
+  behave correctly when their tactic fully solves the goal.  (`#10966
+  <https://github.com/coq/coq/pull/10966>`_ fixes `#9114
+  <https://github.com/coq/coq/issues/9114>`_, by Jason Gross).
diff --git a/doc/sphinx/proof-engine/ltac.rst b/doc/sphinx/proof-engine/ltac.rst
index aa4e90560b..6efc634087 100644
--- a/doc/sphinx/proof-engine/ltac.rst
+++ b/doc/sphinx/proof-engine/ltac.rst
@@ -516,7 +516,9 @@ Coq provides a derived tactic to check that a tactic *fails*:
 .. tacn:: assert_fails @ltac_expr
    :name: assert_fails
 
-   This behaves like :n:`tryif once @ltac_expr then fail 0 tac "succeeds" else idtac`.
+   This behaves like :tacn:`idtac` if :n:`@ltac_expr` fails, and
+   behaves like :n:`fail 0 @ltac_expr "succeeds"` if :n:`@ltac_expr`
+   has at least one success.
 
 Checking the success
 ~~~~~~~~~~~~~~~~~~~~
@@ -528,7 +530,7 @@ success:
    :name: assert_succeeds
 
    This behaves like
-   :n:`tryif (assert_fails tac) then fail 0 tac "fails" else idtac`.
+   :n:`tryif (assert_fails @ltac_expr) then fail 0 @ltac_expr "fails" else idtac`.
 
 Solving
 ~~~~~~~
-- 
cgit v1.2.3