Changeset 2219 for src

Timestamp:

Jul 19, 2012, 6:45:52 PM (9 years ago)

Author:

campbell

Message:

Speed up cast simplification proof checking a bit.

File:

• src/Clight/SimplifyCasts.ma (modified) (49 diffs)

src/Clight/SimplifyCasts.ma

@@ -214 +214 @@
 | SimOk   :  (∀a:A. r1 = OK ? a → r2 = OK ? a) → res_sim A r1 r2
 | SimFail : (∃err. r1 = Error ? err) → res_sim A r1 r2.
+
+(* Trick to reduce checking time by eliminating a load of costly automation.
+   It would be nice to do this by refactoring the type and code instead, but we
+   don't want to spend lots of time on something that already works. *)
+
+lemma SimFailNicely : ∀A,err,r2. res_sim A (Error ? err) r2.
+#A #err #r2 @SimFail %{err} %
+qed.
 
 (* Invariant of simplify_expr *)
@@ -1126 +1134 @@
       cases Hexpr_sim
       [ 2: (* Case where the evaluation of e1 as an expression fails *)      
-        normalize * #err #Hfail >Hfail normalize nodelta @(SimFail ???) /2 by ex_intro/
+        normalize * #err #Hfail >Hfail normalize nodelta @SimFailNicely
       | 1: (* Case where the evaluation of e1 as an expression succeeds (maybe) *)
         #Hsim %1 * #val #trace normalize #Hstep
@@ -1156 +1164 @@
       cases Hexpr_sim
       [ 2: (* Case where the evaluation of e1 as an lvalue fails *)
-        normalize * #err #Hfail >Hfail normalize nodelta @(SimFail ???) /2 by ex_intro/
+        normalize * #err #Hfail >Hfail normalize nodelta @SimFailNicely
       | 1: (* Case where the evaluation of e1 as an expression succeeds (maybe) *)
         #Hsim %1 * * #block #offset #trace normalize #Hstep        
@@ -1183 +1191 @@
       cases Hlvalue_sim
       [ 2: (* Case where the evaluation of e1 as an expression fails *)      
-        * #err #Hfail @SimFail whd in match (exec_expr ????); >Hfail normalize nodelta /2 by ex_intro/
+        * #err #Hfail whd in match (exec_expr ????); >Hfail @SimFailNicely
       | 1: (* Case where the evaluation of e1 as an expression succeeds (maybe) *)
         #Hsim %1 * #val #trace whd in match (exec_expr ????); #Hstep
@@ -1206 +1214 @@
      ]
     | 2: (* Proving preservation of the semantics of lvalues. *)
-         @SimFail /2 by ex_intro/
+         @SimFailNicely
     ]
 | 17: destruct %1 try @refl elim (Hequiv ge en m) * #Hexpr_sim #Hlvalue_sim #Htype_eq
@@ -1212 +1220 @@
            whd in match (exec_expr ge en m (Expr ??));
            cases Hexpr_sim           
-           [ 2: * #error #Hexec >Hexec normalize nodelta @SimFail /2 by ex_intro/
+           [ 2: * #error #Hexec >Hexec normalize nodelta @SimFailNicely
            | 1: cases (exec_expr ge en m e1)
-                [ 2: #error #Hexec normalize nodelta @SimFail /2 by ex_intro/
+                [ 2: #error #Hexec normalize nodelta @SimFailNicely
                 | 1: * #val #trace #Hexec
                      >(Hexec ? (refl ? (OK ? 〈val,trace〉)))
@@ -1220 +1228 @@
                 ]
            ]
-      | 2: @SimFail /2 by ex_intro/
+      | 2: @SimFailNicely
       ]
 | 18: destruct elim (bool_conj_inv … Hdesired_eq) #Hdesired_lhs #Hdesired_rhs -Hdesired_eq
@@ -1323 +1331 @@
       whd in match (exec_expr ????); whd in match (exec_expr ????);
       cases Hexpr_sim_lhs
-      [ 2,4,6,8: * #error #Herror >Herror @SimFail /2 by refl, ex_intro/
+      [ 2,4,6,8: * #error #Herror >Herror @SimFailNicely
       | *: cases (exec_expr ge en m lhs)
-           [ 2,4,6,8: #error #_ @SimFail /2 by refl, ex_intro/
+           [ 2,4,6,8: #error #_ @SimFailNicely
            | *: * #lval #ltrace #Hsim_lhs normalize nodelta         
                 cases Hexpr_sim_rhs
-                [ 2,4,6,8: * #error #Herror >Herror @SimFail /2 by refl, ex_intro/
+                [ 2,4,6,8: * #error #Herror >Herror @SimFailNicely
                 | *: cases (exec_expr ge en m rhs)
-                     [ 2,4,6,8: #error #_  @SimFail /2 by refl, ex_intro/
+                     [ 2,4,6,8: #error #_  @SimFailNicely
                      | *: * #rval #rtrace #Hsim_rhs
                           whd in match (exec_expr ??? (Expr (Ebinop ???) ?));
@@ -1342 +1350 @@
            ]
       ]
-   | *: @SimFail /2 by refl, ex_intro/  
+   | *: @SimFailNicely
    ]
 (* Jump to the cast cases *)   
@@ -1350 +1358 @@
   (* exec_expr simulation *)
   [ 1,3,5,7,9,11,13,15: cases Hexec_sim
-       [ 2,4,6,8,10,12,14,16: destruct * #error #Hexec_fail @SimFail whd in match (exec_expr ge en m ?);
-            >Hexec_fail /2 by refl, ex_intro/
+       [ 2,4,6,8,10,12,14,16: destruct * #error #Hexec_fail whd in match (exec_expr ge en m ?);
+            >Hexec_fail @SimFailNicely
        | 1,3,5,7,9,11,13,15: #Hsim @SimOk * #val #trace <Hexpr_eq >Hdesc_eq
             whd in match (exec_expr ge en m ?); #Hstep
@@ -1373 +1381 @@
             ]   
       ]
-  | 2,4,6,8,10,12,14,16: destruct  @SimFail /2 by refl, ex_intro/
+  | 2,4,6,8,10,12,14,16: destruct  @SimFailNicely
   ]
 | 24: destruct inversion (Hcastee_inv ge en m)
@@ -1416 +1424 @@
            #src_sz #src_sg #Htype_castee #Htype_castee2 #Hsmaller_eval #_ #Hinv_eq
            @(Inv_eq ???????) //
-           [ 1,4: >Htype_castee2 //
-           | 2,5: (* Prove simulation for exec_expr *)
+           [ 1,3: >Htype_castee2 //
+           | 2,4: (* Prove simulation for exec_expr *)
                whd in match (exec_expr ??? (Expr ??));
                cases (exec_expr ge en m castee) in Hsmaller_eval;
                [ 2,4: (* erroneous evaluation of the original expression *)
-                     #error #Hsmaller_eval @SimFail @(ex_intro … error) //
+                     #error #Hsmaller_eval @SimFailNicely
                | 1,3: * #val #trace normalize nodelta >Htype_castee
                       lapply (exec_cast_inv val src_sz src_sg cast_sz cast_sg m)
                       cases (exec_cast m val (Tint src_sz src_sg) (Tint cast_sz cast_sg))
-                      [ 2,4: #error #_ #_ @SimFail /2 by ex_intro/
+                      [ 2,4: #error #_ #_ @SimFailNicely
                       | 1,3: #result #Hinversion elim (Hinversion result (refl ??))
                              #val_int * #Hval_eq #Hresult_eq
@@ -1434 +1442 @@
                                     destruct @SimOk normalize #a #H @H ]
                 ] ]
-           | 3,6: @SimFail /2 by refl, ex_intro/
       ] ]
 | 26,28: destruct
@@ -1447 +1454 @@
             #result_flag #Hresult #Htype_eq #Hsim_expr #Hsim_lvalue #_ #Hinv
             @(Inv_eq ???????) //
-            [ 1,3: (* Simulation for exec_expr *)
                  whd in match (exec_expr ??? (Expr ??));
                  whd in match (exec_expr ??? (Expr ??));
                  cases Hsim_expr
-                 [ 2,4: * #error #Hexec_err >Hexec_err @SimFail @(ex_intro … error) //
+                 [ 2,4: * #error #Hexec_err >Hexec_err @SimFailNicely
                  | 1,3: #Hexec_ok
                       cases (exec_expr ge en m castee) in Hexec_ok;
-                      [ 2,4: #error #Hsim @SimFail normalize nodelta /2/
+                      [ 2,4: #error #Hsim @SimFailNicely
                       | 1,3: * #val #trace #Hsim normalize nodelta
                            >Htype_eq >(Hsim 〈val,trace〉 (refl ? (OK ? 〈val,trace〉))) normalize nodelta
@@ -1460 +1466 @@
                       ]
                  ]
-            | 2,4: @SimFail /2 by refl, ex_intro/
-            ]
       ]
 | 29: destruct elim (Hcastee_equiv ge en m) * #Hsim_expr #Hsim_lvalue #Htype_eq
@@ -1467 +1471 @@
       whd in match (exec_expr ??? (Expr ??));
       whd in match (exec_expr ??? (Expr ??));
-      [ 1: cases Hsim_expr
-           [ 2: * #error #Hexec_fail >Hexec_fail @SimFail /2 by refl, ex_intro/
+      cases Hsim_expr
+           [ 2: * #error #Hexec_fail >Hexec_fail @SimFailNicely
            | 1: #Hexec_ok @SimOk * #val #trace
                 cases (exec_expr ge en m castee) in Hexec_ok;
@@ -1478 +1482 @@
                 ]
            ]
-      | 2: @SimFail /2 by refl, ex_intro/
-      ]
 | 37: destruct elim (bool_conj_inv … Hdesired_eq) #Hdesired_true #Hdesired_false -Hdesired_eq
       inversion (Htrue_inv ge en m)
@@ -1543 +1545 @@
    [ 1,3,5: whd in match (exec_expr ??? (Expr ??)); whd in match (exec_expr ??? (Expr ??));
             cases (exec_expr ge en m cond) in Hsim_expr_cond;
-            [ 2,4,6: #error #_ @SimFail /2 by ex_intro/
+            [ 2,4,6: #error #_ @SimFailNicely
             | 1,3,5: * #cond_val #cond_trace normalize nodelta 
                 cases (exec_expr ge en m cond1)
@@ -1555 +1557 @@
                              #Hcond_eq normalize nodelta destruct (Hcond_eq)
                              >Htype_cond_eq cases (exec_bool_of_val cond_val (typeof cond1))
-                             [ 2,4,6: #error @SimFail normalize /2 by refl, ex_intro /
+                             [ 2,4,6: #error @SimFailNicely
                              | 1,3,5: * (* true branch *)
                                 [ 1,3,5:
@@ -1561 +1563 @@
                                  normalize in match (m_bind ?????);
                                  cases Hsim_expr_true
-                                 [ 2,4,6: * #error #Hexec_fail >Hexec_fail @SimFail /2 by refl, ex_intro/
+                                 [ 2,4,6: * #error #Hexec_fail >Hexec_fail @SimFailNicely
                                  | 1,3,5: cases (exec_expr ge en m iftrue)
-                                     [ 2,4,6: #error #_ normalize nodelta @SimFail /2 by refl, ex_intro/
+                                     [ 2,4,6: #error #_ normalize nodelta @SimFailNicely
                                      | 1,3,5: * #val_true #trace_true normalize nodelta #Hsim
                                               >(Hsim 〈val_true,trace_true〉 (refl ? (OK ? 〈val_true,trace_true〉)))
@@ -1573 +1575 @@
                                  normalize in match (m_bind ?????);                             
                                  cases Hsim_expr_false
-                                 [ 2,4,6: * #error #Hexec_fail >Hexec_fail normalize nodelta @SimFail /2 by refl, ex_intro/
+                                 [ 2,4,6: * #error #Hexec_fail >Hexec_fail normalize nodelta @SimFailNicely
                                  | 1,3,5: cases (exec_expr ge en m iffalse)
-                                     [ 2,4,6: #error #_ normalize nodelta @SimFail /2 by refl, ex_intro/
+                                     [ 2,4,6: #error #_ normalize nodelta @SimFailNicely
                                      | 1,3,5: * #val_false #trace_false normalize nodelta #Hsim
                                               >(Hsim 〈val_false,trace_false〉 (refl ? (OK ? 〈val_false,trace_false〉)))
@@ -1586 +1588 @@
                 ]
             ]
-   | 2,4,6: @SimFail /2 by ex_intro/            
+   | 2,4,6: @SimFailNicely
    ]
 | 41,42: destruct
@@ -1595 +1597 @@
            whd in match (exec_expr ??? (Expr ??));
            cases Hsim_expr_lhs
-           [ 2,4: * #error #Hexec_fail >Hexec_fail normalize nodelta @SimFail /2 by refl, ex_intro/
+           [ 2,4: * #error #Hexec_fail >Hexec_fail normalize nodelta @SimFailNicely
            | 1,3: cases (exec_expr ge en m lhs) 
-              [ 2,4: #error #_ @SimFail /2 by refl, ex_intro/
+              [ 2,4: #error #_ @SimFailNicely
               | 1,3: * #lhs_val #lhs_trace #Hsim normalize nodelta
                      >(Hsim 〈lhs_val,lhs_trace〉 (refl ? (OK ? 〈lhs_val,lhs_trace〉)))
                      normalize nodelta >Htype_eq_lhs
                      cases (exec_bool_of_val lhs_val (typeof lhs1))
-                       [ 2,4: #error normalize @SimFail /2 by refl, ex_intro/
+                       [ 2,4: #error normalize @SimFailNicely
                      | 1,3: * 
                          whd in match (m_bind ?????);
@@ -1609 +1611 @@
                             @SimOk #a #H @H
                          | 1,4: cases Hsim_expr_rhs
-                            [ 2,4: * #error #Hexec >Hexec @SimFail /2 by refl, ex_intro/
+                            [ 2,4: * #error #Hexec >Hexec @SimFailNicely
                             | 1,3: cases (exec_expr ge en m rhs) 
-                                [ 2,4: #error #_ @SimFail /2 by refl, ex_intro/
+                                [ 2,4: #error #_ @SimFailNicely
                                 | 1,3: * #rhs_val #rhs_trace -Hsim #Hsim
                                        >(Hsim 〈rhs_val,rhs_trace〉 (refl ? (OK ? 〈rhs_val,rhs_trace〉)))
@@ -1622 +1624 @@
               ]
           ]
-   | 2,4:  @SimFail /2 by ex_intro/
+   | 2,4:  @SimFailNicely
    ]
 | 43: destruct
@@ -1642 +1644 @@
            cases (typeof rec_expr1) normalize nodelta
            [ 2: #sz #sg | 3: #fl | 4: #ty | 5: #ty #n | 6: #tl #ty | 7: #id #fl | 8: #id #fl | 9: #ty ]
-           [ 1,2,3,4,5,8,9: @SimFail /2 by refl, ex_intro/
+           [ 1,2,3,4,5,8,9: @SimFailNicely
            | 6,7: cases Hsim_lvalue
-              [ 2,4: * #error #Herror >Herror normalize in ⊢ (??%?); @SimFail /2 by refl, ex_intro/
+              [ 2,4: * #error #Herror >Herror normalize in ⊢ (??%?); @SimFailNicely
               | 1,3: cases (exec_lvalue ge en m rec_expr)
-                 [ 2,4: #error #_ normalize in ⊢ (??%?); @SimFail /2 by refl, ex_intro/
+                 [ 2,4: #error #_ normalize in ⊢ (??%?); @SimFailNicely
                  | 1,3: #a #Hsim >(Hsim a (refl ? (OK ? a)))
                          whd in match (m_bind ?????);
@@ -1657 +1659 @@
            cases (typeof rec_expr1) normalize nodelta
            [ 2: #sz #sg | 3: #fl | 4: #ty | 5: #ty #n | 6: #tl #ty | 7: #id #fl | 8: #id #fl | 9: #ty ]
-           [ 1,2,3,4,5,8,9: @SimFail /2 by refl, ex_intro/
+           [ 1,2,3,4,5,8,9: @SimFailNicely
            | 6,7: cases Hsim_lvalue
-              [ 2,4: * #error #Herror >Herror normalize in ⊢ (??%?); @SimFail /2 by refl, ex_intro/
+              [ 2,4: * #error #Herror >Herror normalize in ⊢ (??%?); @SimFailNicely
               | 1,3: cases (exec_lvalue ge en m rec_expr)
-                 [ 2,4: #error #_ normalize in ⊢ (??%?); @SimFail /2 by refl, ex_intro/
+                 [ 2,4: #error #_ normalize in ⊢ (??%?); @SimFailNicely
                  | 1,3: #a #Hsim >(Hsim a (refl ? (OK ? a)))
                          whd in match (m_bind ?????);
@@ -1694 +1696 @@
              whd in match (exec_expr ??? (Expr ??));
              cases Hsim_expr
-             [ 2: * #error #Hexec_error >Hexec_error @SimFail /2 by ex_intro/
+             [ 2: * #error #Hexec_error >Hexec_error @SimFailNicely
              | 1: cases (exec_expr ge en m e1)
-                  [ 2: #error #_ @SimFail /2 by ex_intro/
+                  [ 2: #error #_ @SimFailNicely
                   | 1: #a #Hsim lapply (Hsim a (refl ? (OK ? a))) #He2_exec >He2_exec
                         @SimOk #a #H @H
                   ]
              ]
-        | 3: @SimFail /2 by ex_intro/
+        | 3: @SimFailNicely
         ]
    ]
@@ -1709 +1711 @@
            whd in match (exec_expr ??? (Expr ??));
            cases Hsim_expr
-           [ 2: * #error #Hexec_fail >Hexec_fail @SimFail /2 by ex_intro/
+           [ 2: * #error #Hexec_fail >Hexec_fail @SimFailNicely
            | 1: cases (exec_expr ge en m e1)
-                [ 2: #error #_ @SimFail /2 by ex_intro/
+                [ 2: #error #_ @SimFailNicely
                 | 1: #a #Hsim lapply (Hsim a (refl ? (OK ? a))) #Hsim2 >Hsim2 @SimOk #a #H @H ]
            ]
@@ -1734 +1736 @@
   [ 1,2:  
     cases Hsim_expr
-    [ 2,4: * #error #Hexec_fail >Hexec_fail @SimFail /2 by ex_intro/
+    [ 2,4: * #error #Hexec_fail >Hexec_fail @SimFailNicely
     | 1,3: cases (exec_expr ge en m e1)
-         [ 2,4: #error #_ @SimFail /2 by ex_intro/
+         [ 2,4: #error #_ @SimFailNicely
          | 1,3: #a #Hsim lapply (Hsim a (refl ? (OK ? a))) #H >H @SimOk #a #H @H ] ]
   | 3: // ]
@@ -1746 +1748 @@
     whd in match (exec_expr ??? (Expr ??));
     cases Hsim_lvalue
-    [ 2: * #error #Hlvalue_fail >Hlvalue_fail @SimFail /2 by ex_intro/
+    [ 2: * #error #Hlvalue_fail >Hlvalue_fail @SimFailNicely
     | 1: cases (exec_lvalue ge en m e1)
-       [ 2: #error #_ @SimFail /2 by ex_intro/
+       [ 2: #error #_ @SimFailNicely
        | 1: #a #Hsim lapply (Hsim a (refl ? (OK ? a))) #H >H @SimOk #a #H @H ] ]
-  | 2: @SimFail /2 by ex_intro/
+  | 2: @SimFailNicely
   | 3: // ]
 | 52: (* Unop *) destruct
@@ -1759 +1761 @@
     whd in match (exec_expr ??? (Expr ??));
     cases Hsim_expr
-    [ 2: * #error #Hexec_fail >Hexec_fail @SimFail /2 by ex_intro/
+    [ 2: * #error #Hexec_fail >Hexec_fail @SimFailNicely
     | 1: cases (exec_expr ge en m e1)
-         [ 2: #error #_ @SimFail /2 by ex_intro/
+         [ 2: #error #_ @SimFailNicely
          | 1: #a #Hsim lapply (Hsim a (refl ? (OK ? a))) #H >H @SimOk
               >Htype_eq #a #H @H ] ]
-  | 2: @SimFail /2 by ex_intro/              
+  | 2: @SimFailNicely              
   | 3: // ]
 | 53: (* Binop *) destruct
@@ -1774 +1776 @@
     whd in match (exec_expr ??? (Expr ??));
     cases Hsim_expr_lhs
-    [ 2: * #error #Hexec_fail >Hexec_fail @SimFail /2 by ex_intro/
+    [ 2: * #error #Hexec_fail >Hexec_fail @SimFailNicely
     | 1: cases (exec_expr ge en m lhs)
-         [ 2: #error #_ @SimFail /2 by ex_intro/
+         [ 2: #error #_ @SimFailNicely
          | 1: #lhs_value #Hsim_lhs cases Hsim_expr_rhs
-              [ 2: * #error #Hexec_fail >Hexec_fail @SimFail /2 by ex_intro/
+              [ 2: * #error #Hexec_fail >Hexec_fail @SimFailNicely
               | 1: cases (exec_expr ge en m rhs)
-                   [ 2: #error #_ @SimFail /2 by ex_intro/
+                   [ 2: #error #_ @SimFailNicely
                    | 1: #rhs_value #Hsim_rhs 
                         lapply (Hsim_lhs lhs_value (refl ? (OK ? lhs_value)))
@@ -1790 +1792 @@
          ]
     ]
-  | 2: @SimFail /2 by ex_intro/
+  | 2: @SimFailNicely
   | 3: //
   ]
@@ -1805 +1807 @@
        [ 1: whd in match (exec_expr ??? (Expr ??));
             cases (exec_expr ge en m castee) in Hsmaller;
-            [ 2: #error #_ @SimFail /2 by ex_intro/
+            [ 2: #error #_ @SimFailNicely
             | 1: * #val #trace normalize nodelta >Hsrc_type_eq
                  lapply (exec_cast_inv val src_sz src_sg cast_sz cast_sg m)
                  cases (exec_cast m val ??)
-                 [ 2: #error #_ #_ @SimFail /2 by ex_intro/
+                 [ 2: #error #_ #_ @SimFailNicely
                  | 1: #result #Hinversion elim (Hinversion result (refl ??)) 
                       #val_int * #Hval_eq #Hcast
@@ -1819 +1821 @@
                       ]
              ]
-      | 2: @SimFail /2 by ex_intro/
+      | 2: @SimFailNicely
       | 3: >Htarget_type_eq //
       ]
@@ -1833 +1835 @@
             whd in match (exec_expr ??? (Expr ??));
             cases Hsim_expr
-            [ 2: * #error #Hexec_fail >Hexec_fail @SimFail /2 by ex_intro/
+            [ 2: * #error #Hexec_fail >Hexec_fail @SimFailNicely
             | 1: cases (exec_expr ??? castee)
-                 [ 2: #error #_ @SimFail /2 by ex_intro/
+                 [ 2: #error #_ @SimFailNicely
                  | 1: #a #Hsim lapply (Hsim a (refl ? (OK ? a))) #Hexec_ok >Hexec_ok
                        @SimOk >Htype_eq #a #H @H ]
             ]
-       | 2: @SimFail /2 by ex_intro/
+       | 2: @SimFailNicely
        | 3: //
        ]
@@ -1854 +1856 @@
        whd in match (exec_expr ??? (Expr ??));
        cases Hsim_exec_cond
-       [ 2: * #error #Hexec_fail >Hexec_fail @SimFail /2 by ex_intro/
+       [ 2: * #error #Hexec_fail >Hexec_fail @SimFailNicely
        | 1: cases (exec_expr ??? cond)
-            [ 2: #error #_ @SimFail /2 by ex_intro/
+            [ 2: #error #_ @SimFailNicely
             | 1: * #condb #condtrace #Hcond_sim lapply (Hcond_sim 〈condb, condtrace〉 (refl ? (OK ? 〈condb, condtrace〉)))
                  #Hcond_ok >Hcond_ok >Htype_eq_cond
                  normalize nodelta
                  cases (exec_bool_of_val condb (typeof cond1))
-                 [ 2: #error @SimFail /2 by ex_intro/
+                 [ 2: #error @SimFailNicely
                  | 1: * whd in match (m_bind ?????); whd in match (m_bind ?????);
                       normalize nodelta
                       [ 1: (* true branch taken *)
                            cases Hsim_exec_true
-                           [ 2: * #error #Hexec_fail >Hexec_fail @SimFail /2 by ex_intro/
+                           [ 2: * #error #Hexec_fail >Hexec_fail @SimFailNicely
                            | 1: cases (exec_expr ??? iftrue)
-                                [ 2: #error #_ @SimFail /2 by ex_intro/
+                                [ 2: #error #_ @SimFailNicely
                                 | 1: #a #Hsim lapply (Hsim a (refl ? (OK ? a))) #H >H
                                      @SimOk #a #H @H
@@ -1875 +1877 @@
                       | 2: (* false branch taken *)
                            cases Hsim_exec_false
-                           [ 2: * #error #Hexec_fail >Hexec_fail @SimFail /2 by ex_intro/
+                           [ 2: * #error #Hexec_fail >Hexec_fail @SimFailNicely
                            | 1: cases (exec_expr ??? iffalse)
-                                [ 2: #error #_ @SimFail /2 by ex_intro/
+                                [ 2: #error #_ @SimFailNicely
                                 | 1: #a #Hsim lapply (Hsim a (refl ? (OK ? a))) #H >H
                                      @SimOk #a #H @H
@@ -1886 +1888 @@
            ]
       ]
-  | 2: @SimFail /2 by ex_intro/
+  | 2: @SimFailNicely
   | 3: //
   ]
@@ -1896 +1898 @@
   whd in match (exec_expr ??? (Expr ??));
   [ 1,4: cases Hsim_exec_lhs 
-       [ 2,4: * #error #Hexec_fail >Hexec_fail @SimFail /2 by ex_intro/
+       [ 2,4: * #error #Hexec_fail >Hexec_fail @SimFailNicely
        | 1,3: cases (exec_expr ??? lhs)
-            [ 2,4: #error #_ @SimFail /2 by ex_intro/
+            [ 2,4: #error #_ @SimFailNicely
             | 1,3: #a #Hsim lapply (Hsim a (refl ? (OK ? a))) #Hlhs >Hlhs >Htype_eq_lhs
                    normalize nodelta elim a #lhs_val #lhs_trace
                    cases (exec_bool_of_val lhs_val (typeof lhs1))
-                   [ 2,4: #error @SimFail /2 by ex_intro/
+                   [ 2,4: #error @SimFailNicely
                    | 1,3: * whd in match (m_bind ?????); whd in match (m_bind ?????);
                         [ 2,3: @SimOk //
                         | 1,4: cases Hsim_exec_rhs
-                            [ 2,4: * #error #Hexec_fail >Hexec_fail @SimFail /2 by ex_intro/
+                            [ 2,4: * #error #Hexec_fail >Hexec_fail @SimFailNicely
                             | 1,3: cases (exec_expr ??? rhs)
-                               [ 2,4: #error #_ @SimFail /2 by ex_intro/
+                               [ 2,4: #error #_ @SimFailNicely
                                | 1,3: #a #Hsim lapply (Hsim a (refl ? (OK ? a))) #Hrhs >Hrhs >Htype_eq_rhs
                                     @SimOk #a #H @H
@@ -1917 +1919 @@
              ]
         ]
-  | 2,5: @SimFail /2 by ex_intro/
+  | 2,5: @SimFailNicely
   | 3,6: //
   ]
@@ -1930 +1932 @@
        [ 2: #sz #sg | 3: #fl | 4: #ty' | 5: #ty #n | 6: #tl #ty'
        | 7: #id #fl | 8: #id #fl | 9: #id ]
-       try (@SimFail /2 by ex_intro/)
+       try (@SimFailNicely)
        cases Hsim_lvalue
-       [ 2,4: * #error #Hlvalue_fail >Hlvalue_fail @SimFail /2 by ex_intro/
+       [ 2,4: * #error #Hlvalue_fail >Hlvalue_fail @SimFailNicely
        | 1,3: cases (exec_lvalue ge en m rec_expr)
-            [ 2,4: #error #_ @SimFail /2 by ex_intro/
+            [ 2,4: #error #_ @SimFailNicely
             | 1,3: #a #Hsim lapply (Hsim a (refl ? (OK ? a))) #Hexec >Hexec
                    @SimOk #a #H @H ]
@@ -1942 +1944 @@
        [ 2: #sz #sg | 3: #fl | 4: #ty' | 5: #ty #n | 6: #tl #ty'
        | 7: #id #fl | 8: #id #fl | 9: #id ]
-       try (@SimFail /2 by ex_intro/)
+       try (@SimFailNicely)
        cases Hsim_lvalue
-       [ 2,4: * #error #Hlvalue_fail >Hlvalue_fail @SimFail /2 by ex_intro/
+       [ 2,4: * #error #Hlvalue_fail >Hlvalue_fail @SimFailNicely
        | 1,3: cases (exec_lvalue ge en m rec_expr)
-            [ 2,4: #error #_ @SimFail /2 by ex_intro/
+            [ 2,4: #error #_ @SimFailNicely
             | 1,3: #a #Hsim lapply (Hsim a (refl ? (OK ? a))) #Hexec >Hexec
                    @SimOk #a #H @H ]
@@ -1958 +1960 @@
    [ 1:
      cases Hsim_expr
-     [ 2: * #error #Hexec >Hexec @SimFail /2 by ex_intro/
+     [ 2: * #error #Hexec >Hexec @SimFailNicely
      | 1: cases (exec_expr ??? e1)
-          [ 2: #error #_ @SimFail /2 by ex_intro/
+          [ 2: #error #_ @SimFailNicely
           | 1: #a #Hsim lapply (Hsim a (refl ? (OK ? a))) #H >H
                @SimOk #a #H @H ]
@@ -2176 +2178 @@
 | 11,12: #ty #e1 #e2 #Hsim1 #Hsim2 whd in match (exec_expr ??? (Expr ??)); whd in match (exec_expr ??? (Expr ??));
      cases Hsim1
-     [ 2,4: * #error #Hfail >Hfail @SimFail /2 by ex_intro/
+     [ 2,4: * #error #Hfail >Hfail @SimFailNicely
      | 1,3: cases (exec_expr ge en m e1)
-          [ 2,4: #error #_ @SimFail /2 by ex_intro/
+          [ 2,4: #error #_ @SimFailNicely
           | 1,3: #a #Hsim lapply (Hsim a (refl ? (OK ? a))) #Hrewrite >Hrewrite normalize nodelta
                  cases (exec_bool_of_val ??)
-                 [ 2,4: #erro @SimFail /2 by ex_intro/
+                 [ 2,4: #erro @SimFailNicely
                  | 1,3: * whd in match (m_bind ?????); whd in match (m_bind ?????); 
                         [ 2,3: @SimOk //
@@ -2229 +2231 @@
       #ty normalize in match (is_not_lvalue ?);
       [ 3,4,13: #Habsurd @(False_ind … Habsurd) ] #_
-      @SimFail /2 by ex_intro/
+      @SimFailNicely
 ] qed.
 
@@ -2243 +2245 @@
 * * try //
 cases (exec_expr ge en m (Expr ??))
-try (#error #_ #_ #_ @SimFail /2 by ex_intro/)
+try (#error #_ #_ #_ @SimFailNicely)
 * #val #trace #Hsim_expr #Hsim_lvalue #Htype_eq
 try @(simulation_transitive ???? Hsim_expr (proj1 ?? (sim_related_globals ge ge' en m Hrelated) ?))
@@ -2259 +2261 @@
 * * try //
 cases (exec_lvalue ge en m (Expr ??))
-try (#error #_ #_ #_ @SimFail /2 by ex_intro/)
+try (#error #_ #_ #_ @SimFailNicely)
 * #val #trace #Hsim_expr #Hsim_lvalue #Htype_eq
 (* Having to distinguish between exec_lvalue' and exec_lvalue is /ugly/. *)