lean4-htt

max/lean4-htt

Fork 0

Commit graph

Author	SHA1	Message	Date
Leonardo de Moura	f9fb041e04	fix(library/comp_val): mk_int_val_ne_proof There was a typo in the proof generation. The weird part is that the proof was valid, but it was very inefficient to check. The proof was valid because ((n:int) ≥ m) reduces to true/false if n and m are integer numerals. Thus, if ((n:int) ≥ m) holds then `trivial` is a valid proof. However, the reduction is extremely inefficient since it relies on computations in unary. In the buggy version, we provided a proof for (a >= 0) where (b >= 0) was expected. However, both types are definitionally equal to true. This is why the proof worked.	2016-12-24 15:54:48 -08:00

Author

SHA1

Message

Date

Leonardo de Moura

f9fb041e04

fix(library/comp_val): mk_int_val_ne_proof

There was a typo in the proof generation. The weird part is that the
proof was valid, but it was very inefficient to check.
The proof was valid because ((n:int) ≥ m) reduces to true/false if n and
m are integer numerals. Thus, if ((n:int) ≥ m) holds then `trivial` is a
valid proof.
However, the reduction is extremely inefficient since it relies on
computations in unary.

In the buggy version, we provided a proof for (a >= 0) where (b >= 0)
was expected. However, both types are definitionally equal to true.
This is why the proof worked.

2016-12-24 15:54:48 -08:00

1 commit