EasyCrypt
diff --git a/‎src/ecCoreFol.ml‎
Lines changed: 6 additions & 15 deletions b/‎src/ecCoreFol.ml‎
Lines changed: 6 additions & 15 deletions
diff --git a/‎src/ecCoreFol.mli‎
Lines changed: 0 additions & 3 deletions b/‎src/ecCoreFol.mli‎
Lines changed: 0 additions & 3 deletions
diff --git a/‎src/ecCoreSubst.ml‎
Lines changed: 28 additions & 29 deletions b/‎src/ecCoreSubst.ml‎
Lines changed: 28 additions & 29 deletions
diff --git a/‎src/ecFol.mli‎
Lines changed: 0 additions & 2 deletions b/‎src/ecFol.mli‎
Lines changed: 0 additions & 2 deletions
diff --git a/‎src/ecLowPhlGoal.ml‎
Lines changed: 7 additions & 7 deletions b/‎src/ecLowPhlGoal.ml‎
Lines changed: 7 additions & 7 deletions
diff --git a/‎src/ecMatching.ml‎
Lines changed: 6 additions & 5 deletions b/‎src/ecMatching.ml‎
Lines changed: 6 additions & 5 deletions
diff --git a/‎src/ecPV.ml‎
Lines changed: 5 additions & 5 deletions b/‎src/ecPV.ml‎
Lines changed: 5 additions & 5 deletions
diff --git a/‎src/ecPV.mli‎
Lines changed: 0 additions & 4 deletions b/‎src/ecPV.mli‎
Lines changed: 0 additions & 4 deletions
diff --git a/‎src/ecPrinting.ml‎
Lines changed: 6 additions & 6 deletions b/‎src/ecPrinting.ml‎
Lines changed: 6 additions & 6 deletions
diff --git a/‎src/ecProofTyping.mli‎
Lines changed: 0 additions & 4 deletions b/‎src/ecProofTyping.mli‎
Lines changed: 0 additions & 4 deletions
@@ -274,9 +274,6 @@ let f_eqs fs1 fs2 =
 let f_hoareS_r hs = mk_form (FhoareS hs) tbool
 let f_hoareF_r hf = mk_form (FhoareF hf) tbool
 
-let f_hoareS_old hs_m hs_pr hs_s hs_po =
-  f_hoareS_r { hs_m; hs_pr; hs_s; hs_po; }
-
 let f_hoareS hs_mt hs_pr hs_s hs_po =
   assert (hs_pr.m = hs_po.m);
   f_hoareS_r { hs_m=(hs_pr.m, hs_mt); hs_pr=hs_pr.inv; hs_s; 
@@ -286,16 +283,10 @@ let f_hoareF pr hf_f po =
   assert (pr.m = po.m);
   f_hoareF_r { hf_m=pr.m; hf_pr=pr.inv; hf_f; hf_po=po.inv; } [@alert "-priv_pl"]
 
-let f_hoareF_old hf_pr hf_f hf_po =
-  f_hoareF_r { hf_m=mhr;  hf_pr; hf_f; hf_po; }
-
 (* -------------------------------------------------------------------- *)
 let f_eHoareS_r hs = mk_form (FeHoareS hs) tbool
 let f_eHoareF_r hf = mk_form (FeHoareF hf) tbool
 
-let f_eHoareS_old ehs_m ehs_pr ehs_s ehs_po =
-  f_eHoareS_r { ehs_m; ehs_pr; ehs_s; ehs_po; }
-
 let f_eHoareS ehs_mt ehs_pr ehs_s ehs_po =
   assert (ehs_pr.m = ehs_po.m);
   f_eHoareS_r { ehs_m=(ehs_pr.m, ehs_mt); ehs_pr=ehs_pr.inv; ehs_s; 
@@ -506,9 +497,9 @@ let f_map gt g fp =
         f_proj f' i ty'
 
   | FhoareF hf ->
-      let pr' = g hf.hf_pr in
-      let po' = g hf.hf_po in
-        f_hoareF_r { hf with hf_pr = pr'; hf_po = po'; }
+      let pr' = map_ss_inv1 g (hf_pr hf) in
+      let po' = map_ss_inv1 g (hf_po hf) in
+        f_hoareF pr' hf.hf_f po'
 
   | FhoareS hs ->
       let pr' = g hs.hs_pr in
@@ -574,7 +565,7 @@ let f_iter g f =
   | Ftuple   es           -> List.iter g es
   | Fproj    (e, _)       -> g e
 
-  | FhoareF  hf   -> g hf.hf_pr; g hf.hf_po
+  | FhoareF  hf   -> g (hf_pr hf).inv; g (hf_po hf).inv
   | FhoareS  hs   -> g hs.hs_pr; g hs.hs_po
   | FeHoareF  hf  -> g hf.ehf_pr; g hf.ehf_po
   | FeHoareS  hs  -> g hs.ehs_pr; g hs.ehs_po
@@ -603,7 +594,7 @@ let form_exists g f =
   | Ftuple   es           -> List.exists g es
   | Fproj    (e, _)       -> g e
 
-  | FhoareF   hf -> g hf.hf_pr   || g hf.hf_po
+  | FhoareF   hf -> g (hf_pr hf).inv   || g (hf_po hf).inv
   | FhoareS   hs -> g hs.hs_pr   || g hs.hs_po
   | FeHoareF  hf  -> g hf.ehf_pr || g hf.ehf_po
   | FeHoareS  hs  -> g hs.ehs_pr || g hs.ehs_po
@@ -631,7 +622,7 @@ let form_forall g f =
   | Ftuple   es           -> List.for_all g es
   | Fproj    (e, _)       -> g e
 
-  | FhoareF  hf  -> g hf.hf_pr  && g hf.hf_po
+  | FhoareF  hf  -> g (hf_pr hf).inv  && g (hf_po hf).inv
   | FhoareS  hs  -> g hs.hs_pr  && g hs.hs_po
   | FbdHoareF bhf -> g bhf.bhf_pr && g bhf.bhf_po
   | FbdHoareS bhs -> g bhs.bhs_pr && g bhs.bhs_po
 
@@ -114,13 +114,10 @@ val f_lambda : bindings -> form -> form
 val f_forall_mems : (EcIdent.t * memtype) list -> form -> form
 
 val f_hoareF : ss_inv -> xpath -> ss_inv -> form
-val f_hoareF_old : form -> xpath -> form -> form
 val f_hoareS : memtype -> ss_inv -> stmt -> ss_inv -> form
-val f_hoareS_old : memenv -> form -> stmt -> form -> form
 
 val f_eHoareF_old : form -> xpath -> form -> form
 val f_eHoareF : ss_inv -> xpath -> ss_inv -> form
-val f_eHoareS_old : memenv -> form -> EcCoreModules.stmt -> form -> form
 val f_eHoareS : memtype -> ss_inv -> EcCoreModules.stmt -> ss_inv -> form
 
 (* soft-constructors - eager *)
 
@@ -453,66 +453,65 @@ module Fsubst = struct
     | FhoareF hf ->
       let hf_f   = x_subst s hf.hf_f in
       let (s, m) = add_m_binding s hf.hf_m in
-      let hf_pr  = f_subst ~tx s hf.hf_pr [@alert "-priv_pl"] in
-      let hf_po  = f_subst ~tx s hf.hf_po [@alert "-priv_pl"] in
+      let hf_pr  = f_subst ~tx s (hf_pr hf).inv in
+      let hf_po  = f_subst ~tx s (hf_po hf).inv in
       f_hoareF {m;inv=hf_pr} hf_f {m;inv=hf_po}
 
     | FhoareS hs ->
       let hs_s    = s_subst s hs.hs_s in
-      let s, hs_m = add_me_binding s hs.hs_m in
-      let m = fst hs_m in
-      let hs_pr   = f_subst ~tx s hs.hs_pr in
-      let hs_po   = f_subst ~tx s hs.hs_po in
-      f_hoareS (snd hs_m) {m;inv=hs_pr} hs_s {m;inv=hs_po}
+      let s, (m, mt) = add_me_binding s hs.hs_m in
+      let hs_pr   = f_subst ~tx s (hs_pr hs).inv in
+      let hs_po   = f_subst ~tx s (hs_po hs).inv in
+      f_hoareS mt {m;inv=hs_pr} hs_s {m;inv=hs_po}
 
     | FeHoareF hf ->
       let hf_f  = x_subst s hf.ehf_f in
       let (s, m) = add_m_binding s hf.ehf_m in
-      let hf_pr = f_subst ~tx s hf.ehf_pr in
-      let hf_po = f_subst ~tx s hf.ehf_po in
-      f_eHoareF_old hf_pr hf_f hf_po
+      let hf_pr = f_subst ~tx s (ehf_pr hf).inv in
+      let hf_po = f_subst ~tx s (ehf_po hf).inv in
+      f_eHoareF {m;inv=hf_pr} hf_f {m;inv=hf_po}
 
     | FeHoareS hs ->
       let hs_s    = s_subst s hs.ehs_s in
-      let s, hs_m = add_me_binding s hs.ehs_m in
-      let hs_pr   = f_subst ~tx s hs.ehs_pr in
-      let hs_po   = f_subst ~tx s hs.ehs_po in
-      f_eHoareS_old hs_m hs_pr hs_s hs_po
+      let s, (m, mt) = add_me_binding s hs.ehs_m in
+      let hs_pr   = f_subst ~tx s (ehs_pr hs).inv in
+      let hs_po   = f_subst ~tx s (ehs_po hs).inv in
+      f_eHoareS mt {m;inv=hs_pr} hs_s {m;inv=hs_po}
 
     | FbdHoareF hf ->
       let hf_f  = x_subst s hf.bhf_f in
       let (s, m) = add_m_binding s hf.bhf_m in
-      let hf_pr = f_subst ~tx s hf.bhf_pr in
-      let hf_po = f_subst ~tx s hf.bhf_po in
-      let hf_bd = f_subst ~tx s hf.bhf_bd in
+      let hf_pr = f_subst ~tx s (bhf_pr hf).inv in
+      let hf_po = f_subst ~tx s (bhf_po hf).inv in
+      let hf_bd = f_subst ~tx s (bhf_bd hf).inv in
       f_bdHoareF {m;inv=hf_pr} hf_f {m;inv=hf_po} hf.bhf_cmp {m;inv=hf_bd}
 
     | FbdHoareS hs ->
       let hs_s = s_subst s hs.bhs_s in
       let s, hs_m = add_me_binding s hs.bhs_m in
       let m = fst hs_m in
-      let hs_pr = f_subst ~tx s hs.bhs_pr in
-      let hs_po = f_subst ~tx s hs.bhs_po in
-      let hs_bd = f_subst ~tx s hs.bhs_bd in
+      let hs_pr = f_subst ~tx s (bhs_pr hs).inv in
+      let hs_po = f_subst ~tx s (bhs_po hs).inv in
+      let hs_bd = f_subst ~tx s (bhs_bd hs).inv in
       f_bdHoareS (snd hs_m) {m;inv=hs_pr} hs_s {m;inv=hs_po} hs.bhs_cmp {m;inv=hs_bd}
 
     | FequivF ef ->
       let ef_fl = x_subst s ef.ef_fl in
       let ef_fr = x_subst s ef.ef_fr in
       let (s, ml) = add_m_binding s ef.ef_ml in
       let (s, mr) = add_m_binding s ef.ef_mr in
-      let ef_pr = f_subst ~tx s ef.ef_pr in
-      let ef_po = f_subst ~tx s ef.ef_po in
+      let ef_pr = f_subst ~tx s (ef_pr ef).inv in
+      let ef_po = f_subst ~tx s (ef_po ef).inv in
       f_equivF {ml;mr;inv=ef_pr} ef_fl ef_fr {ml;mr;inv=ef_po}
 
     | FequivS es ->
       let es_sl = s_subst s es.es_sl in
       let es_sr = s_subst s es.es_sr in
-      let s, es_ml = add_me_binding s es.es_ml in
-      let s, es_mr = add_me_binding s es.es_mr in
-      let es_pr = f_subst ~tx s es.es_pr in
-      let es_po = f_subst ~tx s es.es_po in
-      f_equivS_old es_ml es_mr es_pr es_sl es_sr es_po
+      let s, (ml, mlt) = add_me_binding s es.es_ml in
+      let s, (mr, mrt) = add_me_binding s es.es_mr in
+      let es_pr = f_subst ~tx s (es_pr es).inv in
+      let es_po = f_subst ~tx s (es_po es).inv in
+      f_equivS mlt mrt {ml;mr;inv=es_pr} es_sl es_sr {ml;mr;inv=es_po}
 
     | FeagerF eg ->
       let eg_fl = x_subst s eg.eg_fl in
@@ -521,8 +520,8 @@ module Fsubst = struct
       let eg_sr = s_subst s eg.eg_sr in
       let (s, ml) = add_m_binding s eg.eg_ml in
       let (s, mr) = add_m_binding s eg.eg_mr in
-      let eg_pr = f_subst ~tx s eg.eg_pr in
-      let eg_po = f_subst ~tx s eg.eg_po in
+      let eg_pr = f_subst ~tx s (eg_pr eg).inv in
+      let eg_po = f_subst ~tx s (eg_po eg).inv in
       f_eagerF {ml;mr;inv=eg_pr} eg_sl eg_fl eg_fr eg_sr {ml;mr;inv=eg_po}
 
     | Fpr pr ->
 
@@ -1,8 +1,6 @@
 (* -------------------------------------------------------------------- *)
 open EcBigInt
 open EcPath
-open EcTypes
-open EcMemory
 open EcAst
 
 (* -------------------------------------------------------------------- *)
 
@@ -210,7 +210,7 @@ let tc1_get_stmt side tc =
 let hl_set_stmt (side : side option) (f : form) (s : stmt) =
   match side, f.f_node with
   | None       , FhoareS   hs -> f_hoareS (snd hs.hs_m) (hs_pr hs) s (hs_po hs)
-  | None       , FeHoareS  hs -> f_eHoareS_old hs.ehs_m hs.ehs_pr s hs.ehs_po
+  | None       , FeHoareS  hs -> f_eHoareS (snd hs.ehs_m) (ehs_pr hs) s (ehs_po hs)
   | None       , FbdHoareS hs -> f_bdHoareS (snd hs.bhs_m) (bhs_pr hs) s (bhs_po hs) hs.bhs_cmp (bhs_bd hs)
   | Some `Left , FequivS   es -> f_equivS (snd es.es_ml) (snd es.es_mr) (es_pr es) s es.es_sr (es_po es)
   | Some `Right, FequivS   es -> f_equivS (snd es.es_ml) (snd es.es_mr) (es_pr es) es.es_sl s (es_po es)
@@ -264,10 +264,10 @@ let set_pre ~pre f =
     f_hoareS (snd hs.hs_m) pre hs.hs_s (hs_po hs)
  | FeHoareF hf, Inv_ss pre  -> 
     let pre = ss_inv_rebind pre hf.ehf_m in
-    f_eHoareF_old pre.inv hf.ehf_f hf.ehf_po
+    f_eHoareF pre hf.ehf_f (ehf_po hf)
  | FeHoareS hs, Inv_ss pre  -> 
     let pre = ss_inv_rebind pre (fst hs.ehs_m) in
-    f_eHoareS_old hs.ehs_m pre.inv hs.ehs_s hs.ehs_po
+    f_eHoareS (snd hs.ehs_m) pre hs.ehs_s (ehs_po hs)
  | FbdHoareF hf, Inv_ss pre ->
     let pre = ss_inv_rebind pre hf.bhf_m in
     f_bdHoareF pre hf.bhf_f (bhf_po hf) hf.bhf_cmp (bhf_bd hf)
@@ -279,7 +279,7 @@ let set_pre ~pre f =
     f_equivF pre ef.ef_fl ef.ef_fr (ef_po ef)
  | FequivS es, Inv_ts pre   -> 
     let pre = ts_inv_rebind pre (fst es.es_ml) (fst es.es_mr) in
-    f_equivS_old es.es_ml es.es_mr pre.inv es.es_sl es.es_sr es.es_po
+    f_equivS (snd es.es_ml) (snd es.es_mr) pre es.es_sl es.es_sr (es_po es)
  | _            -> assert false
 
 (* -------------------------------------------------------------------- *)
@@ -690,11 +690,11 @@ let t_code_transform (side : oside) ?(bdhoare = false) cpos tr tx tc =
         match side with
         | `Left  -> (es.es_ml, es.es_sl)
         | `Right -> (es.es_mr, es.es_sr) in
-      let me, stmt, cs = tx (pf, hyps) cpos (pre, post) (me, stmt) in
+      let (_, mt), stmt, cs = tx (pf, hyps) cpos (pre, post) (me, stmt) in
       let concl =
         match side with
-        | `Left  -> f_equivS_old me es.es_mr es.es_pr stmt es.es_sr es.es_po
-        | `Right -> f_equivS_old es.es_ml me es.es_pr es.es_sl stmt es.es_po
+        | `Left  -> f_equivS mt (snd es.es_mr) (es_pr es) stmt es.es_sr (es_po es)
+        | `Right -> f_equivS (snd es.es_ml) mt (es_pr es) es.es_sl stmt (es_po es)
       in
 
       FApi.xmutate1 tc (tr (Some side)) (cs @ [concl])
 
@@ -692,7 +692,7 @@ let f_match_core opts hyps (ue, ev) f1 f2 =
             assert (not (Mid.mem hf1.hf_m mxs) && not (Mid.mem hf2.hf_m mxs));
             let mxs = Mid.add hf1.hf_m hf2.hf_m mxs in
           List.iter2 (doit env (subst, mxs))
-            [hf1.hf_pr; hf1.hf_po] [hf2.hf_pr; hf2.hf_po]
+            [(hf_pr hf1).inv; (hf_po hf1).inv] [(hf_pr hf2).inv; (hf_po hf2).inv]
       end
 
       | FbdHoareF hf1, FbdHoareF hf2 -> begin
@@ -994,12 +994,12 @@ module FPosition = struct
               doit pos (`WithSubCtxt [(ctxt, pr.pr_args); (subctxt, pr.pr_event)])
 
           | FhoareF hs ->
-              doit pos (`WithCtxt (Sid.add EcFol.mhr ctxt, [hs.hf_pr; hs.hf_po]))
+              doit pos (`WithCtxt (Sid.add hs.hf_m ctxt, [(hf_pr hs).inv; (hf_po hs).inv]))
 
           (* TODO: A: From what I undertand, there is an error there:
              it should be  (subctxt, hs.bhf_bd) *)
           | FbdHoareF hs ->
-              let subctxt = Sid.add EcFol.mhr ctxt in
+              let subctxt = Sid.add hs.bhf_m ctxt in
               doit pos (`WithSubCtxt ([(subctxt, hs.bhf_pr);
                                        (subctxt, hs.bhf_po);
                                        (   ctxt, hs.bhf_bd)]))
@@ -1142,15 +1142,16 @@ module FPosition = struct
               f_pr pr.pr_mem pr.pr_fun args' event'
 
           | FhoareF hf ->
-              let (hf_pr, hf_po) = as_seq2 (doit p [hf.hf_pr; hf.hf_po]) in
+              let (hf_pr, hf_po) = as_seq2 (doit p [(hf_pr hf).inv; (hf_po hf).inv]) in
               let m = hf.hf_m in
               f_hoareF {m;inv=hf_pr} hf.hf_f {m;inv=hf_po}
 
           | FeHoareF hf ->
               let (ehf_pr, ehf_po) =
                 as_seq2 (doit p [hf.ehf_pr; hf.ehf_po;])
               in
-              f_eHoareF_old ehf_pr hf.ehf_f ehf_po
+              let m = hf.ehf_m in
+              f_eHoareF {m;inv=ehf_pr} hf.ehf_f {m;inv=ehf_po}
 
           | FbdHoareF hf ->
               let sub = doit p [hf.bhf_pr; hf.bhf_po; hf.bhf_bd] in
 
@@ -329,32 +329,32 @@ module PV = struct
           aux env fv e
 
       | FhoareF hf ->
-          in_mem_scope env fv [mhr] [hf.hf_pr; hf.hf_po]
+          in_mem_scope env fv [hf.hf_m] [(hf_pr hf).inv; (hf_po hf).inv]
 
       | FhoareS hs ->
           in_mem_scope env fv [fst hs.hs_m] [hs.hs_pr; hs.hs_po]
 
       | FeHoareF hf ->
-          in_mem_scope env fv [mhr] [hf.ehf_pr; hf.ehf_po]
+          in_mem_scope env fv [hf.ehf_m] [hf.ehf_pr; hf.ehf_po]
 
       | FeHoareS hs ->
           in_mem_scope env fv [fst hs.ehs_m] [hs.ehs_pr; hs.ehs_po]
 
       | FbdHoareF bhf ->
-          in_mem_scope env fv [mhr] [bhf.bhf_pr; bhf.bhf_po; bhf.bhf_bd]
+          in_mem_scope env fv [bhf.bhf_m] [bhf.bhf_pr; bhf.bhf_po; bhf.bhf_bd]
 
       | FbdHoareS bhs ->
           in_mem_scope env fv
             [fst bhs.bhs_m] [bhs.bhs_pr; bhs.bhs_po; bhs.bhs_bd]
 
       | FequivF ef ->
-          in_mem_scope env fv [mleft; mright] [ef.ef_pr; ef.ef_po]
+          in_mem_scope env fv [ef.ef_ml; ef.ef_mr] [ef.ef_pr; ef.ef_po]
 
       | FequivS es ->
           in_mem_scope env fv [fst es.es_ml; fst es.es_mr] [es.es_pr; es.es_po]
 
       | FeagerF eg ->
-          in_mem_scope env fv [mhr] [eg.eg_pr; eg.eg_po]
+          in_mem_scope env fv [eg.eg_ml; eg.eg_mr] [eg.eg_pr; eg.eg_po]
 
       | Fpr pr ->
           let fv = aux env fv pr.pr_args in
 
@@ -1,11 +1,7 @@
 (* -------------------------------------------------------------------- *)
 open EcMaps
 open EcPath
-open EcTypes
-open EcModules
-open EcMemory
 open EcEnv
-open EcFol
 open EcAst
 
 (* -------------------------------------------------------------------- *)
 
@@ -1938,13 +1938,13 @@ and pp_form_core_r
         Format.fprintf fmt "hoare[@[<hov 2>@ %a {%a} :@ @[%a ==>@ %a@]@]]"
           (pp_funname ppe) hf.hf_f
           (pp_mem ppe) hf.hf_m
-          (pp_form ppepr) hf.hf_pr
-          (pp_form ppepo) hf.hf_po
+          (pp_form ppepr) (hf_pr hf).inv
+          (pp_form ppepo) (hf_po hf).inv
       else
         Format.fprintf fmt "hoare[@[<hov 2>@ %a :@ @[%a ==>@ %a@]@]]"
           (pp_funname ppe) hf.hf_f
-          (pp_form ppepr) hf.hf_pr
-          (pp_form ppepo) hf.hf_po
+          (pp_form ppepr) (hf_pr hf).inv
+          (pp_form ppepo) (hf_po hf).inv
 
   | FhoareS hs ->
       let ppe = PPEnv.push_mem ppe ~active:true hs.hs_m in
@@ -2986,12 +2986,12 @@ let pp_hoareF (ppe : PPEnv.t) ?prpo fmt hf =
   let ppepr = PPEnv.create_and_push_mem ppe ~active:true mepr in
   let ppepo = PPEnv.create_and_push_mem ppe ~active:true mepo in
 
-  Format.fprintf fmt "%a@\n%!" (pp_pre ppepr ?prpo) hf.hf_pr;
+  Format.fprintf fmt "%a@\n%!" (pp_pre ppepr ?prpo) (hf_pr hf).inv;
   if debug_mode then
     Format.fprintf fmt "    %a {%a}@\n%!" (pp_funname ppe) hf.hf_f (pp_mem ppe) hf.hf_m
   else
     Format.fprintf fmt "    %a@\n%!" (pp_funname ppe) hf.hf_f;
-  Format.fprintf fmt "@\n%a%!" (pp_post ppepo ?prpo) hf.hf_po
+  Format.fprintf fmt "@\n%a%!" (pp_post ppepo ?prpo) (hf_po hf).inv
 
 (* -------------------------------------------------------------------- *)
 
 
@@ -1,13 +1,9 @@
 (* -------------------------------------------------------------------- *)
 open EcParsetree
 open EcIdent
-open EcTypes
-open EcFol
 open EcDecl
-open EcModules
 open EcEnv
 open EcCoreGoal
-open EcMemory
 open EcMatching.Position
 open EcAst