Hashconsed arrows/abstractions in the SMT encoding must be abstracted over their free variables #3028
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
…ions and arrows are quantified with their free vars
We don't think this is really useful.
|
Sadly this breaks HACL: looking at it. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
A bug and a fix in this PR, this was previously accepted:
which is clearly pretty bad. The problem was that we were encoding the abstraction
univ -> Dv tas a single fresh top-level SMT term, with a has computed from its definition. But, this fails to consider that atis free in it, and therefore allmk _calls are provably equal by the SMT. Abstractions had a similar issue.The fix is to make these hashconsed terms dependent on their free variables, so the encoding of
unit -> Dv tis now aTermtoTermfunction. This is pretty simple and fixes the problem. Surprisingly there was only a single regressions in the examples.This PR also removes the pre-typing axiom for impure functions, as we think it's probably not very useful.