mem_ssa: defs + cheated property statements

[charles-cooper]

co-authored by claude opus 4.6

Port of vyper/venom/analysis/mem_ssa.py to HOL4. LLVM-style Memory SSA tracks memory state versions through the program — each store creates a new version (MemDef), each load reads a version (MemUse), join points get MemPhi nodes.

Files

File	LOC	Content
defs/memSSADefsScript.sml	515	Types, construction (4 phases), queries, instantiations
proofs/memSSAProofsScript.sml	229	7 cheated property proofs + wf sub-predicates
memSSAPropsScript.sml	129	Public API re-exports via ACCEPT_TAC

Definitions

All definitions use mem_ssa_ prefix.

• Types: mssa_node (MnDef/MnUse/MnPhi), mem_ssa_state (flat map: access_id 0 = LiveOnEntry sentinel)
• Phase 1: Collect defs/uses via bp_get_read/write_location
• Phase 2: Insert MemPhi at dominance frontiers (worklist, fuel-based)
• Phase 3: Connect reaching definitions (backward scan + idom walk)
• Phase 4: Remove redundant phis (all-same operands)
• Queries: mem_ssa_get_clobbered (clobber walk), mem_ssa_get_aliased (alias walk)
• Instantiations: memory_ssa_analyze, storage_ssa_analyze, transient_ssa_analyze

Properties (7 cheats)

Theorem	Description
mem_ssa_build_wf	Construction produces well-formed state
mem_ssa_reaching_def_exists_and_valid	Non-phi accesses have valid reaching defs
mem_ssa_reaching_def_dominates	Reaching def's block dominates use's block
mem_ssa_phi_at_frontier	Phis placed at dominance frontiers of def blocks
mem_ssa_no_redundant_phis	No remaining phi has all-identical operands
mem_ssa_reaching_acyclic	Reaching-def chain has no cycles
mem_ssa_clobber_sound	Clobber walk structural soundness

Well-formedness decomposed into named sub-predicates: mem_ssa_ids_valid, mem_ssa_edges_valid, mem_ssa_inst_maps_consistent, mem_ssa_reaching_complete.

Dependencies

Ancestors: memAliasDefs, dominatorDefs (defs); dominatorAnalysisProps, cfgAnalysisProps, memAliasProps (proofs).

Consumer

dead_store_elimination pass (future).