From 53925f1a1f52dac3bdfeb3b6f2b9862af485c94e Mon Sep 17 00:00:00 2001
From: Adam Chlipala <adam@chlipala.net>
Date: Mon, 15 Feb 2016 18:59:39 -0500
Subject: [PATCH] Renaming invariantFor_monotone to invariant_weaken

---
 Invariant.v         | 2 +-
 TransitionSystems.v | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/Invariant.v b/Invariant.v
index 9c06c74..4337c11 100644
--- a/Invariant.v
+++ b/Invariant.v
@@ -22,7 +22,7 @@ Proof.
   firstorder.
 Qed.
 
-Theorem invariantFor_monotone : forall {state} (sys : trsys state)
+Theorem invariant_weaken : forall {state} (sys : trsys state)
   (invariant1 invariant2 : state -> Prop),
   invariantFor sys invariant1
   -> (forall s, invariant1 s -> invariant2 s)
diff --git a/TransitionSystems.v b/TransitionSystems.v
index ef37767..5a32d48 100644
--- a/TransitionSystems.v
+++ b/TransitionSystems.v
@@ -647,7 +647,7 @@ Qed.
 
 (* Now, to prove our final result about the two incrementing threads, let's use
  * a more general fact, about when one invariant implies another. *)
-Theorem invariantFor_weaken : forall {state} (sys : trsys state)
+Theorem invariant_weaken : forall {state} (sys : trsys state)
   (invariant1 invariant2 : state -> Prop),
   invariantFor sys invariant1
   -> (forall s, invariant1 s -> invariant2 s)
@@ -674,7 +674,7 @@ Theorem increment2_sys_correct : forall s,
 Proof.
   simplify.
   eapply use_invariant.
-  apply invariantFor_weaken with (invariant1 := increment2_invariant).
+  apply invariant_weaken with (invariant1 := increment2_invariant).
   (* Note the use of a [with] clause to specify a quantified variable's
    * value. *)