Changeset 1588 for src/ASM/Interpret.ma

Timestamp:

Dec 6, 2011, 11:21:37 AM (8 years ago)

Author:

sacerdot

Message:

All goals generated by Russell for execute_1* are now closed, mostly by
automation. Since automation does not work on equational goals that contain
equations, I was forced to change every (?) Russel definition into triples:
fun' with Sigma type as a type; fun as @eject of fun'; fun_ok as @sig2 of fun'.

File:

• src/ASM/Interpret.ma (modified) (19 diffs)

src/ASM/Interpret.ma

@@ -18 +18 @@
  cases b
  normalize
- //
  # K
+ try %
  cases (eq_true_false K)
 qed.
@@ -126 +126 @@
 qed.
 
-lemma set_arg_8_ignores_clock:
- ∀M,s,f1,f2. clock M s = clock … (set_arg_8 … s f1 f2).
-#M #s #f1 #f2 cases (set_arg_8 M s f1 f2)
-#a #E >E //
-qed.
-
 lemma set_program_counter_ignores_clock:
   ∀M: Type[0].
@@ -163 +157 @@
     clock … (set_8051_sfr ? s sfr v) = clock … s.
   #M #s #sfr #v %
-qed.
-
-lemma set_arg_1_ignores_clock:
-  ∀m: Type[0].
-  ∀s: PreStatus m.
-  ∀addr: [[bit_addr; carry]].
-  ∀bit: Bit.
-    clock … (set_arg_1 m s addr bit) = clock … s.
-  #m #s #addr #bit
-  whd in match set_arg_1; normalize nodelta
-  cases addr #subaddressing_mode
-  cases subaddressing_mode
-  try #assm1 try #assm2
-  try (normalize in assm2; cases assm2)
-  try (normalize in assm1; cases assm1)
-  normalize nodelta
-  cases (split bool 4 4 (get_8051_sfr m s SFR_PSW))
-  #nu #nl normalize nodelta
-  [ @set_8051_sfr_ignores_clock
-  | cases(split … 1 3 nu)
-    #ignore #three_bits normalize nodelta
-    cases(get_index_v … 4 nu 0 ?)
-    normalize nodelta
-    [ <set_bit_addressable_sfr_ignores_clock | >set_low_internal_ram_ignores_clock ] %
-  ]
-qed.
-
-lemma set_arg_16_ignores_clock:
-  ∀m: Type[0].
-  ∀s: PreStatus m.
-  ∀w: Word.
-  ∀addr: [[dptr]].
-    clock … (set_arg_16 m s w addr) = clock … s.
-  #m #s #w #addr
-  whd in match set_arg_16; normalize nodelta
-  cases addr #subaddressing_modein
-  cases subaddressing_modein
-  try #assm1 try #assm2
-  try (normalize in assm2; cases assm2)
-  try (normalize in assm1; cases assm1)
-  normalize nodelta
-  cases (split … 8 8 w) #bu #bl normalize nodelta
-  >set_8051_sfr_ignores_clock >set_8051_sfr_ignores_clock %
 qed.
 
@@ -228 +179 @@
 qed.
 
-definition execute_1_preinstruction:
+definition execute_1_preinstruction':
   ∀ticks: nat × nat.
   ∀a, m: Type[0]. (a → PreStatus m → Word) → preinstruction a →
@@ -279 +230 @@
                   let 〈addr1, addr2〉 ≝ l' in
                   let and_val ≝ conjunction_bv ? (get_arg_8 ? s true addr1) (get_arg_8 ? s true addr2) in
-                    eject (PreStatus m) (λx. clock … s = clock … x) (set_arg_8 ? s addr1 and_val)
+                    set_arg_8 ? s addr1 and_val
                 | inr r ⇒
                   let 〈addr1, addr2〉 ≝ r in
                   let and_val ≝ conjunction_bv ? (get_arg_8 ? s true addr1) (get_arg_8 ? s true addr2) in
-                    eject (PreStatus m) (λx. clock … s = clock … x) (set_arg_8 ? s addr1 and_val)
+                    set_arg_8 ? s addr1 and_val
                 ] 
             | inr r ⇒
               let 〈addr1, addr2〉 ≝ r in
               let and_val ≝ andb (get_cy_flag ? s) (get_arg_1 ? s addr2 true) in
-                eject (PreStatus m) (λx. clock … s = clock … x) (set_flags ? s and_val (None ?) (get_ov_flag ? s))
+               set_flags ? s and_val (None ?) (get_ov_flag ? s)
             ]
         | ORL addr ⇒
@@ -294 +245 @@
           match addr with
             [ inl l ⇒
-              match l return λ_. Σs': PreStatus m. Or (clock … s' = \fst ticks + clock … s) (clock … s' = \snd ticks + clock … s) with
+              match l with
                 [ inl l' ⇒
                   let 〈addr1, addr2〉 ≝ l' in
                   let or_val ≝ inclusive_disjunction_bv ? (get_arg_8 ? s true addr1) (get_arg_8 ? s true addr2) in
-                    eject (PreStatus m) (λx. clock … s = clock … x) (set_arg_8 ? s addr1 or_val)
+                    set_arg_8 ? s addr1 or_val
                 | inr r ⇒
                   let 〈addr1, addr2〉 ≝ r in
                   let or_val ≝ inclusive_disjunction_bv ? (get_arg_8 ? s true addr1) (get_arg_8 ? s true addr2) in
-                    eject (PreStatus m) (λx. clock … s = clock … x) (set_arg_8 ? s addr1 or_val)
+                    set_arg_8 ? s addr1 or_val
                 ] 
             | inr r ⇒
               let 〈addr1, addr2〉 ≝ r in
               let or_val ≝ (get_cy_flag ? s) ∨ (get_arg_1 ? s addr2 true) in
-                eject (PreStatus m) (λx. clock … s = clock … x) (set_flags ? s or_val (None ?) (get_ov_flag ? s))
+               set_flags ? s or_val (None ?) (get_ov_flag ? s)
             ]
         | XRL addr ⇒
@@ -315 +266 @@
               let 〈addr1, addr2〉 ≝ l' in
               let xor_val ≝ exclusive_disjunction_bv ? (get_arg_8 ? s true addr1) (get_arg_8 ? s true addr2) in
-                eject (PreStatus m) (λx. clock … s = clock … x) (set_arg_8 ? s addr1 xor_val)
+                set_arg_8 ? s addr1 xor_val
             | inr r ⇒
               let 〈addr1, addr2〉 ≝ r in
               let xor_val ≝ exclusive_disjunction_bv ? (get_arg_8 ? s true addr1) (get_arg_8 ? s true addr2) in
-                eject (PreStatus m) (λx. clock … s = clock … x) (set_arg_8 ? s addr1 xor_val)
+                set_arg_8 ? s addr1 xor_val
             ]
         | INC addr ⇒
@@ -326 +277 @@
                 let s' ≝ add_ticks1 s in
                 let 〈 carry, result 〉 ≝ half_add ? (get_arg_8 ? s' true ACC_A) (bitvector_of_nat 8 1) in
-                 eject (PreStatus m) (λx. clock … s' = clock … x) (set_arg_8 ? s' ACC_A result)
+                 set_arg_8 ? s' ACC_A result
               | REGISTER r ⇒ λregister: True.
                 let s' ≝ add_ticks1 s in
                 let 〈 carry, result 〉 ≝ half_add ? (get_arg_8 ? s' true (REGISTER r)) (bitvector_of_nat 8 1) in
-                 eject (PreStatus m) (λx. clock … s' = clock … x) (set_arg_8 ? s' (REGISTER r) result)
+                 set_arg_8 ? s' (REGISTER r) result
               | DIRECT d ⇒ λdirect: True.
                 let s' ≝ add_ticks1 s in
                 let 〈 carry, result 〉 ≝ half_add ? (get_arg_8 ? s' true (DIRECT d)) (bitvector_of_nat 8 1) in
-                 eject (PreStatus m) (λx. clock … s' = clock … x) (set_arg_8 ? s' (DIRECT d) result)
+                 set_arg_8 ? s' (DIRECT d) result
               | INDIRECT i ⇒ λindirect: True.
                 let s' ≝ add_ticks1 s in
                 let 〈 carry, result 〉 ≝ half_add ? (get_arg_8 ? s' true (INDIRECT i)) (bitvector_of_nat 8 1) in
-                 eject (PreStatus m) (λx. clock … s' = clock … x) (set_arg_8 ? s' (INDIRECT i) result)
+                 set_arg_8 ? s' (INDIRECT i) result
               | DPTR ⇒ λdptr: True.
                 let s' ≝ add_ticks1 s in
@@ -344 +295 @@
                 let 〈 carry, bu 〉 ≝ full_add ? (get_8051_sfr ? s' SFR_DPH) (zero 8) carry in
                 let s ≝ set_8051_sfr ? s' SFR_DPL bl in
-                  eject (PreStatus m) (λx. clock … s' = clock … x) (set_8051_sfr ? s' SFR_DPH bu)
+                 set_8051_sfr ? s' SFR_DPH bu
               | _ ⇒ λother: False. ⊥
               ] (subaddressing_modein … addr)
@@ -353 +304 @@
            let s ≝ add_ticks1 s in
            let 〈 result, flags 〉 ≝ sub_8_with_carry (get_arg_8 ? s true addr) (bitvector_of_nat 8 1) false in
-             eject (PreStatus m) (λx. clock … s = clock … x) (set_arg_8 ? s addr result)
+             set_arg_8 ? s addr result
         | MUL addr1 addr2 ⇒
            let s ≝ add_ticks1 s in
@@ -397 +348 @@
             [ ACC_A ⇒ λacc_a: True.
               let s ≝ add_ticks1 s in
-                eject (PreStatus m) (λx. clock … s = clock … x) (set_arg_8 ? s ACC_A (zero 8))
+               set_arg_8 ? s ACC_A (zero 8)
             | CARRY ⇒ λcarry: True.
               let s ≝ add_ticks1 s in
-                eject (PreStatus m) (λx. clock … s = clock … x) (set_arg_1 ? s CARRY false)
+               set_arg_1 ? s CARRY false
             | BIT_ADDR b ⇒ λbit_addr: True.
               let s ≝ add_ticks1 s in
-                eject (PreStatus m) (λx. clock … s = clock … x) (set_arg_1 ? s (BIT_ADDR b) false)
+               set_arg_1 ? s (BIT_ADDR b) false
             | _ ⇒ λother: False. ⊥
             ] (subaddressing_modein … addr)
@@ -412 +363 @@
                 let old_acc ≝ get_8051_sfr ? s SFR_ACC_A in
                 let new_acc ≝ negation_bv ? old_acc in
-                  eject (PreStatus m) (λx. clock … s = clock … x) (set_8051_sfr ? s SFR_ACC_A new_acc)
+                 set_8051_sfr ? s SFR_ACC_A new_acc
             | CARRY ⇒ λcarry: True.
                 let s ≝ add_ticks1 s in
                 let old_cy_flag ≝ get_arg_1 ? s CARRY true in
                 let new_cy_flag ≝ ¬old_cy_flag in
-                  eject (PreStatus m) (λx. clock … s = clock … x) (set_arg_1 ? s CARRY new_cy_flag)
+                 set_arg_1 ? s CARRY new_cy_flag
             | BIT_ADDR b ⇒ λbit_addr: True.
                 let s ≝ add_ticks1 s in
                 let old_bit ≝ get_arg_1 ? s (BIT_ADDR b) true in
                 let new_bit ≝ ¬old_bit in
-                  eject (PreStatus m) (λx. clock … s = clock … x) (set_arg_1 ? s (BIT_ADDR b) new_bit)
+                 set_arg_1 ? s (BIT_ADDR b) new_bit
             | _ ⇒ λother: False. ?
             ] (subaddressing_modein … addr)
@@ -480 +431 @@
             let old_acc ≝ get_8051_sfr ? s SFR_ACC_A in
             let s ≝ set_8051_sfr ? s SFR_ACC_A old_addr in
-              eject (PreStatus m) (λx. clock … s = clock … x) (set_arg_8 ? s addr2 old_acc)
+              set_arg_8 ? s addr2 old_acc
         | XCHD addr1 addr2 ⇒
             let s ≝ add_ticks1 s in
@@ -515 +466 @@
             [ inl l ⇒
               let 〈addr1, addr2〉 ≝ l in
-                eject (PreStatus m) (λx. clock … s = clock … x) (set_arg_8 ? s addr1 (get_arg_8 ? s false addr2))
+                set_arg_8 ? s addr1 (get_arg_8 ? s false addr2)
             | inr r ⇒
               let 〈addr1, addr2〉 ≝ r in
-                eject (PreStatus m) (λx. clock … s = clock … x) (set_arg_8 ? s addr1 (get_arg_8 ? s false addr2))
+                set_arg_8 ? s addr1 (get_arg_8 ? s false addr2)
             ]
         | MOV addr ⇒
@@ -533 +484 @@
                             [ inl l'''' ⇒
                               let 〈addr1, addr2〉 ≝ l'''' in
-                                eject (PreStatus m) (λx. clock … s = clock … x) (set_arg_8 ? s addr1 (get_arg_8 ? s false addr2))
+                                set_arg_8 ? s addr1 (get_arg_8 ? s false addr2)
                             | inr r'''' ⇒
                               let 〈addr1, addr2〉 ≝ r'''' in
-                                eject (PreStatus m) (λx. clock … s = clock … x) (set_arg_8 ? s addr1 (get_arg_8 ? s false addr2))
+                                set_arg_8 ? s addr1 (get_arg_8 ? s false addr2)
                             ]
                         | inr r''' ⇒
                           let 〈addr1, addr2〉 ≝ r''' in
-                            eject (PreStatus m) (λx. clock … s = clock … x) (set_arg_8 ? s addr1 (get_arg_8 ? s false addr2))
+                            set_arg_8 ? s addr1 (get_arg_8 ? s false addr2)
                         ]
                     | inr r'' ⇒
                       let 〈addr1, addr2〉 ≝ r'' in
-                        eject (PreStatus m) (λx. clock … s = clock … x) (set_arg_16 ? s (get_arg_16 ? s addr2) addr1)
+                       set_arg_16 ? s (get_arg_16 ? s addr2) addr1
                     ]
                 | inr r ⇒
                   let 〈addr1, addr2〉 ≝ r in
-                    eject (PreStatus m) (λx. clock … s = clock … x) (set_arg_1 ? s addr1 (get_arg_1 ? s addr2 false))
+                   set_arg_1 ? s addr1 (get_arg_1 ? s addr2 false)
                 ]
             | inr r ⇒
               let 〈addr1, addr2〉 ≝ r in
-                eject (PreStatus m) (λx. clock … s = clock … x) (set_arg_1 ? s addr1 (get_arg_1 ? s addr2 false))
+               set_arg_1 ? s addr1 (get_arg_1 ? s addr2 false)
             ]
           | JC addr ⇒
@@ -638 +589 @@
                  let s ≝ add_ticks2 s in
                   s
-        ]. (*15s*) (*
+        ]. (*15s*)
     try (cases(other))
     try assumption (*20s*)
-    try % (*6s*)
+    try (% @False) (*6s*) (* Bug exploited here to implement solve :-*)
     try (
       @ (execute_1_technical … (subaddressing_modein …))
       @ I
     ) (*66s*)
-    try (<set_arg_8_ignores_clock normalize nodelta /demod/ %)
-    try (/demod/ normalize nodelta <set_arg_8_ignores_clock /demod/ %)
-    try (/demod/ normalize nodelta >set_8051_sfr_ignores_clock /demod/ %)
-    try (normalize nodelta <set_flags_ignores_clock /demod/ %)
-    try (/demod/ normalize nodelta >set_8051_sfr_ignores_clock >set_8051_sfr_ignores_clock >clock_set_clock @commutative_plus)
-    try (/demod/ normalize nodelta >clock_set_clock @commutative_plus)
-    try (/demod/ normalize nodelta >clock_set_clock >set_arg_1_ignores_clock @commutative_plus)
-    try (/demod/ normalize nodelta >clock_set_clock <set_arg_8_ignores_clock @commutative_plus)
-    try (/demod/ normalize nodelta >set_arg_1_ignores_clock >clock_set_clock @commutative_plus)
-    try (normalize nodelta >clock_set_clock >set_arg_1_ignores_clock >clock_set_clock %)
-    try (normalize nodelta <set_arg_8_ignores_clock >set_8051_sfr_ignores_clock >clock_set_clock %)
-    try (normalize nodelta >set_arg_1_ignores_clock >clock_set_clock %)
-    try (normalize nodelta >clock_set_clock >set_arg_16_ignores_clock >clock_set_clock %)
-    try (normalize nodelta >set_arg_16_ignores_clock >clock_set_clock %) *) (* XXX: for convenience *)
-    cases daemon
+    normalize nodelta /2 by or_introl, or_intror/ (*35s*)
+qed.
+
+definition execute_1_preinstruction:
+  ∀ticks: nat × nat.
+  ∀a, m: Type[0]. (a → PreStatus m → Word) → preinstruction a →
+  PreStatus m → PreStatus m ≝ execute_1_preinstruction'.
+  
+lemma execute_1_preinstruction_ok:
+ ∀ticks,a,m,f,i,s.
+  clock ? (execute_1_preinstruction ticks a m f i s) = \fst ticks + clock … s ∨
+  clock ? (execute_1_preinstruction ticks a m f i s) = \snd ticks + clock … s.
+ #ticks #a #m #f #i #s whd in match execute_1_preinstruction; normalize nodelta @sig2
 qed.
 
@@ -669 +618 @@
     let 〈instr, pc〉 ≝ 〈fst … instr_pc, snd … instr_pc〉 in
     let s ≝ set_program_counter ? s0 pc in
-      match instr return λ_. Σs': Status. clock … s' = ticks + clock … s0 with
-      [ RealInstruction instr ⇒ eject … (execute_1_preinstruction 〈ticks, ticks〉 [[ relative ]] ?
+      match instr return λ_.Status with
+      [ RealInstruction instr ⇒ execute_1_preinstruction 〈ticks, ticks〉 [[ relative ]] ?
         (λx. λs.
         match x return λs. bool_to_Prop (is_in ? [[ relative ]] s) → Word with
         [ RELATIVE r ⇒ λ_. \snd (half_add ? (program_counter ? s) (sign_extension r))
         | _ ⇒ λabsd. ⊥
-        ] (subaddressing_modein … x)) instr s)
+        ] (subaddressing_modein … x)) instr s
       | MOVC addr1 addr2 ⇒
           let s ≝ set_clock ? s (ticks + clock ? s) in
@@ -763 +712 @@
             ] (subaddressing_modein … addr)
       ]. (*10s*)
-    try (cases(other))
-    [2: normalize nodelta
-        >set_program_counter_ignores_clock
-        >write_at_stack_pointer_ignores_clock
-        >set_8051_sfr_ignores_clock
-        >write_at_stack_pointer_ignores_clock
-        >set_8051_sfr_ignores_clock >clock_set_clock
-        >set_program_counter_ignores_clock %
-    |*:  cases daemon
-    ]
-(*
     [||||||||*:try assumption]
-    [1,2,3,4,5,7: @sig2 (*7s*)
-    |8: cases (execute_1_preinstruction ??????) #a * #H @H]
-    [2,3: >set_program_counter_ignores_clock normalize nodelta
-      >write_at_stack_pointer_ignores_clock
-      >set_8051_sfr_ignores_clock
-      >write_at_stack_pointer_ignores_clock
-      >set_8051_sfr_ignores_clock >clock_set_clock
-      >set_program_counter_ignores_clock
-      cut (∀n,m. n+m-m = n) [1,3:#n #m /by/ |*: #H @H] (*Andrea: ???*)
-    |1,4,5,6: >set_program_counter_ignores_clock normalize nodelta
-     >clock_set_clock >set_program_counter_ignores_clock
-     cut (∀n,m. n+m-m = n) [1,3,5,7:#n #m /by/ |*: #H @H] (*Andrea: ???*)
-    |7: >set_8051_sfr_ignores_clock normalize nodelta
-      >clock_set_clock >set_program_counter_ignores_clock
-      cut (∀n,m. n+m-m = n) [1,3:#n #m /by/ |*: #H @H]
-    |8: >set_8051_sfr_ignores_clock normalize nodelta
-      >set_program_counter_ignores_clock >clock_set_clock
-      >set_program_counter_ignores_clock
-      cut (∀n,m. n+m-m = n) [1,3:#n #m /by/ |*: #H @H]] *)
+    [1,2,3,4,5,7: @sig2 (*35s*)
+    |8: lapply (execute_1_preinstruction_ok 〈ticks, ticks〉 [[ relative ]] ?
+        (λx. λs.
+        match x return λs. bool_to_Prop (is_in ? [[ relative ]] s) → Word with
+        [ RELATIVE r ⇒ λ_. \snd (half_add ? (program_counter ? s) (sign_extension r))
+        | _ ⇒ λabsd. ⊥
+        ] (subaddressing_modein … x)) instr1 s1) try @absd * #H @H
+    |*: normalize nodelta try // (*17s*)
+        >set_program_counter_ignores_clock // (* Andrea:??*) ]
 qed.
 
@@ -800 +728 @@
     \snd (fetch (code_memory … s) (program_counter … s)).
 
-definition execute_1: ∀s:Status.
+definition execute_1': ∀s:Status.
   Σs':Status. clock … s' = current_instruction_cost s + clock … s ≝
   λs: Status.
     let instr_pc_ticks ≝ fetch (code_memory ? s) (program_counter ? s) in
      execute_1_0 s instr_pc_ticks.
+
+definition execute_1: Status → Status ≝ execute_1'.
+
+lemma execute_1_ok: ∀s. clock … (execute_1 s) = current_instruction_cost s + clock … s.
+ #s whd in match execute_1; normalize nodelta @sig2
+qed-. (*x Andrea: indexing takes ages here *)
 
 definition execute_1_pseudo_instruction0: (nat × nat) → PseudoStatus → ? → ? → PseudoStatus ≝