Changeset 1693

Timestamp:

Feb 14, 2012, 4:38:06 PM (8 years ago)

Author:

mulligan

Message:

Changes to ASMCosts and CostsProofs? files to get everything working again.

Location:

src/ASM

Files:

• ASMCosts.ma (modified) (2 diffs)
• CostsProof.ma (modified) (15 diffs)

src/ASM/ASMCosts.ma

@@ -1338 +1338 @@
 qed.
 
-definition block_cost ≝
+(*
+  (code_memory': BitVectorTrie Byte 16) (program_counter': Word)
+    (program_size: nat) (total_program_size: nat) (cost_labels: BitVectorTrie costlabel 16)
+      (reachable_program_counter_witness: reachable_program_counter code_memory' total_program_size program_counter')
+        (good_program_witness: good_program code_memory' total_program_size) (first_time_around: bool)
+          on program_size:
+          total_program_size ≤ program_size + nat_of_bitvector … program_counter' →
+          Σcost_of_block: nat.
+          if (match lookup_opt … program_counter' cost_labels with [ None ⇒ true | _ ⇒ first_time_around ]) then
+            ∀start_status: Status code_memory'.
+            ∀final_status: Status code_memory'.
+            ∀trace_ends_flag.
+            ∀the_trace: trace_any_label (ASM_abstract_status … cost_labels) trace_ends_flag start_status final_status.
+              program_counter' = program_counter … start_status →
+                (∃n: nat. trace_any_label_length … the_trace + (S n) = total_program_size) ∧
+                  cost_of_block = compute_paid_trace_any_label code_memory' cost_labels trace_ends_flag start_status final_status the_trace
+          else
+            (cost_of_block = 0)
+*)
+
+definition block_cost:
+    ∀code_memory': BitVectorTrie Byte 16.
+    ∀program_counter': Word.
+    ∀total_program_size: nat.
+    ∀cost_labels: BitVectorTrie costlabel 16.
+    ∀reachable_program_counter_witness: reachable_program_counter code_memory' total_program_size program_counter'.
+    ∀good_program_witness: good_program code_memory' total_program_size.
+      Σcost_of_block: nat.
+        ∀start_status: Status code_memory'.
+        ∀final_status: Status code_memory'.
+        ∀trace_ends_flag.
+        ∀the_trace: trace_any_label (ASM_abstract_status … cost_labels) trace_ends_flag start_status final_status.
+          program_counter' = program_counter … start_status →
+            (∃n: nat. trace_any_label_length … the_trace + (S n) = total_program_size) ∧
+              cost_of_block = compute_paid_trace_any_label code_memory' cost_labels trace_ends_flag start_status final_status the_trace ≝
   λcode_memory: BitVectorTrie Byte 16.
   λprogram_counter: Word.
@@ -1344 +1378 @@
   λcost_labels: BitVectorTrie costlabel 16.
   λreachable_program_counter_witness: reachable_program_counter code_memory total_program_size program_counter.
-  λgood_program_witness: good_program code_memory total_program_size.
-    block_cost' code_memory program_counter total_program_size total_program_size cost_labels
-      reachable_program_counter_witness good_program_witness true ?.
-  @le_plus_n_r
+  λgood_program_witness: good_program code_memory total_program_size. ?.
+  cases(block_cost' code_memory program_counter total_program_size total_program_size cost_labels
+    reachable_program_counter_witness good_program_witness true ?)
+  [1:
+    #cost_of_block #block_cost_hyp
+    %{cost_of_block}
+    cases(lookup_opt … cost_labels) in block_cost_hyp;
+    [2: #cost_label] normalize nodelta
+    #hyp assumption
+  |2:
+    @le_plus_n_r
+  ]
 qed.
 

src/ASM/CostsProof.ma

@@ -7 +7 @@
 include alias "basics/logic.ma".
 
-definition current_instruction0 ≝
-  λcode_memory: BitVectorTrie Byte 16.
-  λprogram_counter: Word.
-    \fst (\fst (fetch … code_memory program_counter)).
-
-definition current_instruction ≝
-  λcm.
-  λs: Status cm.
-    current_instruction0 cm (program_counter … s).
-
-definition ASM_classify0: instruction → status_class ≝
-  λi: instruction.
-  match i with
-   [ RealInstruction pre ⇒
-     match pre with
-      [ RET ⇒ cl_return
-      | JZ _ ⇒ cl_jump
-      | JNZ _ ⇒ cl_jump
-      | JC _ ⇒ cl_jump
-      | JNC _ ⇒ cl_jump
-      | JB _ _ ⇒ cl_jump
-      | JNB _ _ ⇒ cl_jump
-      | JBC _ _ ⇒ cl_jump
-      | CJNE _ _ ⇒ cl_jump
-      | DJNZ _ _ ⇒ cl_jump
-      | _ ⇒ cl_other
-      ]
-   | ACALL _ ⇒ cl_call
-   | LCALL _ ⇒ cl_call
-   | JMP _ ⇒ cl_call
-   | AJMP _ ⇒ cl_jump
-   | LJMP _ ⇒ cl_jump
-   | SJMP _ ⇒ cl_jump
-   | _ ⇒ cl_other
-   ].
-
-definition ASM_classify: ∀cm. Status cm → status_class ≝
-  λcm.
-  λs: Status cm.
-    ASM_classify0 (current_instruction cm s).
-
-definition current_instruction_is_labelled ≝
-  λcm.
-  λcost_labels: BitVectorTrie costlabel 16.
-  λs: Status cm.
-  let pc ≝ program_counter ? cm s in
-    match lookup_opt … pc cost_labels with
-    [ None ⇒ False
-    | _    ⇒ True
-    ].
-
-definition next_instruction_properly_relates_program_counters ≝
-  λcm.
-  λbefore: Status cm.
-  λafter : Status cm.
-  let size ≝ current_instruction_cost cm before in
-  let pc_before ≝ program_counter … cm before in
-  let pc_after ≝ program_counter … cm after in
-  let sum ≝ \snd (half_add … pc_before (bitvector_of_nat … size)) in
-    sum = pc_after.
-
-definition ASM_abstract_status: ∀cm. BitVectorTrie costlabel 16 → abstract_status ≝
-  λcm.
-  λcost_labels.
-  mk_abstract_status
-   (Status cm)
-   (λs,s'. (execute_1 cm s) = s')
-   (λs,class. ASM_classify cm s = class)
-   (current_instruction_is_labelled cm cost_labels)
-   (next_instruction_properly_relates_program_counters cm).
-
 let rec compute_max_trace_label_label_cost
   (cm: ?)
@@ -97 +26 @@
        on the_trace: nat ≝
   match the_trace with
-  [ tal_base_not_return the_status _ _ _ _ ⇒ current_instruction_cost the_status
-  | tal_base_return the_status _ _ _ ⇒ current_instruction_cost the_status
+  [ tal_base_not_return the_status _ _ _ _ ⇒ current_instruction_cost cm the_status
+  | tal_base_return the_status _ _ _ ⇒ current_instruction_cost cm the_status
   | tal_base_call pre_fun_call start_fun_call final _ _ _ call_trace _ ⇒
       let current_instruction_cost ≝ current_instruction_cost cm pre_fun_call in
@@ -107 +36 @@
       let current_instruction_cost ≝ current_instruction_cost cm pre_fun_call in
       let call_trace_cost ≝ compute_max_trace_label_return_cost … call_trace in
-      let final_trace_cost ≝ compute_max_trace_any_label_cost cost_labels end_flag … final_trace in
+      let final_trace_cost ≝ compute_max_trace_any_label_cost cm cost_labels end_flag … final_trace in
         call_trace_cost + current_instruction_cost + final_trace_cost
   | tal_step_default end_flag status_pre status_init status_end _ tail_trace _ _ ⇒
       let current_instruction_cost ≝ current_instruction_cost cm status_pre in
       let tail_trace_cost ≝
-       compute_max_trace_any_label_cost cost_labels end_flag
+       compute_max_trace_any_label_cost cm cost_labels end_flag
         status_init status_end tail_trace
       in
@@ -134 +63 @@
 
 let rec compute_max_trace_label_label_cost_is_ok
+  (cm: ?)
   (cost_labels: BitVectorTrie costlabel 16)
    (trace_ends_flag: trace_ends_with_ret)
-    (start_status: Status) (final_status: Status)
-      (the_trace: trace_label_label (ASM_abstract_status cost_labels) trace_ends_flag
+    (start_status: Status cm) (final_status: Status cm)
+      (the_trace: trace_label_label (ASM_abstract_status cm cost_labels) trace_ends_flag
         start_status final_status) on the_trace:
-          clock … final_status = (compute_max_trace_label_label_cost cost_labels trace_ends_flag start_status final_status the_trace) + (clock … start_status) ≝ ?
+          clock … cm … final_status = (compute_max_trace_label_label_cost cm cost_labels trace_ends_flag start_status final_status the_trace) + (clock … cm … start_status) ≝ ?
 and compute_max_trace_any_label_cost_is_ok
+  (cm: ?)
   (cost_labels: BitVectorTrie costlabel 16)
   (trace_ends_flag: trace_ends_with_ret)
-   (start_status: Status) (final_status: Status)
-     (the_trace: trace_any_label (ASM_abstract_status cost_labels) trace_ends_flag start_status final_status)
+   (start_status: Status cm) (final_status: Status cm)
+     (the_trace: trace_any_label (ASM_abstract_status cm cost_labels) trace_ends_flag start_status final_status)
        on the_trace:
-         clock … final_status = (compute_max_trace_any_label_cost cost_labels trace_ends_flag start_status final_status the_trace) + (clock … start_status) ≝ ?
+         clock … cm … final_status = (compute_max_trace_any_label_cost cm cost_labels trace_ends_flag start_status final_status the_trace) + (clock … cm … start_status) ≝ ?
 and compute_max_trace_label_return_cost_is_ok
-  (cost_labels: BitVectorTrie costlabel 16)
-  (start_status: Status) (final_status: Status)
-    (the_trace: trace_label_return (ASM_abstract_status cost_labels) start_status final_status)
+  (cm: ?)
+  (cost_labels: BitVectorTrie costlabel 16)
+  (start_status: Status cm) (final_status: Status cm)
+    (the_trace: trace_label_return (ASM_abstract_status cm cost_labels) start_status final_status)
       on the_trace:
-        clock … final_status = (compute_max_trace_label_return_cost cost_labels start_status final_status the_trace) + clock … start_status ≝ ?.
+        clock … cm … final_status = (compute_max_trace_label_return_cost cm cost_labels start_status final_status the_trace) + clock … cm … start_status ≝ ?.
   [1:
     cases the_trace
@@ -161 +93 @@
     [1,2:
       #start_status #final_status #is_next #is_not_return try (#is_costed)
-      change with (current_instruction_cost start_status) in ⊢ (???(?%?));
+      change with (current_instruction_cost cm start_status) in ⊢ (???(?%?));
       cases(is_next) @execute_1_ok
     |3:
+      #status_pre_fun_call #status_start_fun_call #status_final #is_next
+      #classifier_assm #after_return_assm #call_trace #costed_assm
+      whd in match (compute_max_trace_any_label_cost … (tal_base_call …));
+      >(compute_max_trace_label_return_cost_is_ok … call_trace)
+      >associative_plus @eq_f cases(is_next)
+      >execute_1_ok %
+    |4:
       #end_flag #status_pre_fun_call #status_start_fun_call #status_after_fun_call
-      #status_final #is_next #is_call #is_after_return #call_trace #final_trace
+      #status_final #is_next #is_call #is_after_return #call_trace #not_costed #final_trace
       change with (
-      let current_instruction_cost ≝ current_instruction_cost status_pre_fun_call in
-      let call_trace_cost ≝ compute_max_trace_label_return_cost … call_trace in
-      let final_trace_cost ≝ compute_max_trace_any_label_cost cost_labels end_flag … final_trace in
+      let current_instruction_cost ≝ current_instruction_cost cm status_pre_fun_call in
+      let call_trace_cost ≝ compute_max_trace_label_return_cost cm … call_trace in
+      let final_trace_cost ≝ compute_max_trace_any_label_cost cm cost_labels end_flag … final_trace in
         call_trace_cost + current_instruction_cost + final_trace_cost) in ⊢ (???(?%?));
       normalize nodelta;
-      >(compute_max_trace_any_label_cost_is_ok cost_labels end_flag status_after_fun_call
+      >(compute_max_trace_any_label_cost_is_ok … cost_labels end_flag status_after_fun_call
           status_final final_trace)
-      >(compute_max_trace_label_return_cost_is_ok cost_labels status_start_fun_call
+      >(compute_max_trace_label_return_cost_is_ok … cost_labels status_start_fun_call
         status_after_fun_call call_trace)
-      cases(is_next) in match (clock … status_start_fun_call);
-      >(execute_1_ok status_pre_fun_call)
+      cases(is_next) in match (clock … cm status_start_fun_call);
+      >(execute_1_ok … status_pre_fun_call)
       <associative_plus in ⊢ (??%?);
       <commutative_plus in match (
-        compute_max_trace_any_label_cost cost_labels end_flag status_after_fun_call status_final final_trace
-          + compute_max_trace_label_return_cost cost_labels status_start_fun_call status_after_fun_call call_trace);
-      >associative_plus in ⊢ (??%?);
-      <commutative_plus in match (
-        compute_max_trace_any_label_cost cost_labels end_flag status_after_fun_call status_final final_trace
-          + (current_instruction_cost status_pre_fun_call
-              + clock (BitVectorTrie Byte 16) status_pre_fun_call));
-      >associative_plus in ⊢ (??%?);
-      <commutative_plus in match (
-         clock (BitVectorTrie Byte 16) status_pre_fun_call
-           + compute_max_trace_any_label_cost cost_labels end_flag status_after_fun_call status_final final_trace);
-      <(associative_plus (
-         (compute_max_trace_label_return_cost cost_labels status_start_fun_call status_after_fun_call call_trace)))
-      <associative_plus in ⊢ (??%?); %
-    |4:
+        compute_max_trace_any_label_cost cm cost_labels end_flag status_after_fun_call status_final final_trace
+          + compute_max_trace_label_return_cost cm cost_labels status_start_fun_call status_after_fun_call call_trace);
+      >associative_plus in ⊢ (??%?); >associative_plus in ⊢ (???%); >associative_plus in ⊢ (???%);
+      @eq_f >commutative_plus in ⊢ (??%?); >associative_plus in ⊢ (??%?);
+      @eq_f @commutative_plus 
+    |5:
       #end_flag #status_pre #status_init #status_end #is_next
       #trace_any_label #is_other #is_not_costed
       change with (
-      let current_instruction_cost ≝ current_instruction_cost status_pre in
+      let current_instruction_cost ≝ current_instruction_cost cm status_pre in
       let tail_trace_cost ≝
-       compute_max_trace_any_label_cost cost_labels end_flag
+       compute_max_trace_any_label_cost cm cost_labels end_flag
         status_init status_end trace_any_label
       in
         current_instruction_cost + tail_trace_cost) in ⊢ (???(?%?));
       normalize nodelta;
-      >(compute_max_trace_any_label_cost_is_ok cost_labels end_flag
+      >(compute_max_trace_any_label_cost_is_ok cm cost_labels end_flag
          status_init status_end trace_any_label)
-      cases(is_next) in match (clock … status_init);
-      >(execute_1_ok status_pre)
+      cases(is_next) in match (clock … cm status_init);
+      >(execute_1_ok cm status_pre)
       >commutative_plus >associative_plus >associative_plus @eq_f
       @commutative_plus
@@ -220 +150 @@
       #status_initial #status_labelled #status_final #labelled_trace #ret_trace
       normalize
-      >(compute_max_trace_label_return_cost_is_ok cost_labels status_labelled status_final ret_trace);
-      >(compute_max_trace_label_label_cost_is_ok cost_labels doesnt_end_with_ret status_initial status_labelled labelled_trace);
+      >(compute_max_trace_label_return_cost_is_ok cm cost_labels status_labelled status_final ret_trace);
+      >(compute_max_trace_label_label_cost_is_ok cm cost_labels doesnt_end_with_ret status_initial status_labelled labelled_trace);
       <associative_plus in ⊢ (??%?);
       >commutative_plus in match (
-        compute_max_trace_label_return_cost cost_labels status_labelled status_final ret_trace
-          + compute_max_trace_label_label_cost cost_labels doesnt_end_with_ret status_initial status_labelled labelled_trace);
+        compute_max_trace_label_return_cost cm cost_labels status_labelled status_final ret_trace
+          + compute_max_trace_label_label_cost cm cost_labels doesnt_end_with_ret status_initial status_labelled labelled_trace);
       %
     ]
-  ].
-qed.
-
-(* XXX: work below here: *)
-
-let rec compute_paid_trace_any_label
+  ]
+qed.
+
+let rec compute_trace_label_label_cost_using_paid
+  (cm: ?)
+  (cost_labels: BitVectorTrie costlabel 16)
+   (trace_ends_flag: trace_ends_with_ret)
+    (start_status: Status cm) (final_status: Status cm)
+      (the_trace: trace_label_label (ASM_abstract_status cm cost_labels) trace_ends_flag
+        start_status final_status) on the_trace: nat ≝
+  match the_trace with
+  [ tll_base ends_flag initial final given_trace labelled_proof ⇒
+      compute_paid_trace_label_label cm cost_labels … the_trace +
+      compute_trace_any_label_cost_using_paid … given_trace
+  ]
+and compute_trace_any_label_cost_using_paid
+  (cm: ?)
   (cost_labels: BitVectorTrie costlabel 16)
   (trace_ends_flag: trace_ends_with_ret)
-   (start_status: Status) (final_status: Status)
-     (the_trace: trace_any_label (ASM_abstract_status cost_labels) trace_ends_flag start_status final_status)
-       on the_trace: nat ≝
-  match the_trace with
-  [ tal_base_not_return the_status _ _ _ _ ⇒ current_instruction_cost the_status
-  | tal_base_return the_status _ _ _ ⇒ current_instruction_cost the_status
-  | tal_step_call end_flag pre_fun_call start_fun_call after_fun_call final
-     _ _ _ call_trace final_trace ⇒
-      let current_instruction_cost ≝ current_instruction_cost pre_fun_call in
-      let final_trace_cost ≝ compute_paid_trace_any_label cost_labels end_flag … final_trace in
-        current_instruction_cost + final_trace_cost
-  | tal_step_default end_flag status_pre status_init status_end _ tail_trace _ _ ⇒
-      let current_instruction_cost ≝ current_instruction_cost status_pre in
-      let tail_trace_cost ≝
-       compute_paid_trace_any_label cost_labels end_flag
-        status_init status_end tail_trace
-      in
-        current_instruction_cost + tail_trace_cost
-  ].
-
-definition compute_paid_trace_label_label ≝
- λcost_labels: BitVectorTrie costlabel 16.
-  λtrace_ends_flag: trace_ends_with_ret.
-   λstart_status: Status.
-    λfinal_status: Status.
-     λthe_trace: trace_label_label (ASM_abstract_status cost_labels) trace_ends_flag
-      start_status final_status.
-  match the_trace with
-  [ tll_base ends_flag initial final given_trace labelled_proof ⇒
-      compute_paid_trace_any_label … given_trace
-  ].
-
-let rec compute_trace_label_label_cost_using_paid
-  (cost_labels: BitVectorTrie costlabel 16)
-   (trace_ends_flag: trace_ends_with_ret)
-    (start_status: Status) (final_status: Status)
-      (the_trace: trace_label_label (ASM_abstract_status cost_labels) trace_ends_flag
-        start_status final_status) on the_trace: nat ≝
-  match the_trace with
-  [ tll_base ends_flag initial final given_trace labelled_proof ⇒
-      compute_paid_trace_label_label cost_labels … the_trace +
-      compute_trace_any_label_cost_using_paid … given_trace
-  ]
-and compute_trace_any_label_cost_using_paid
-  (cost_labels: BitVectorTrie costlabel 16)
-  (trace_ends_flag: trace_ends_with_ret)
-   (start_status: Status) (final_status: Status)
-     (the_trace: trace_any_label (ASM_abstract_status cost_labels) trace_ends_flag start_status final_status)
+   (start_status: Status cm) (final_status: Status cm)
+     (the_trace: trace_any_label (ASM_abstract_status cm cost_labels) trace_ends_flag start_status final_status)
        on the_trace: nat ≝
   match the_trace with
   [ tal_base_not_return the_status _ _ _ _ ⇒ 0
   | tal_base_return the_status _ _ _ ⇒ 0
+  | tal_base_call pre_fun_call start_fun_call final _ _ _ call_trace _ ⇒
+      compute_trace_label_return_cost_using_paid … call_trace
   | tal_step_call end_flag pre_fun_call start_fun_call after_fun_call final
-     _ _ _ call_trace final_trace ⇒
+     _ _ _ call_trace _ final_trace ⇒
       let call_trace_cost ≝ compute_trace_label_return_cost_using_paid … call_trace in
-      let final_trace_cost ≝ compute_trace_any_label_cost_using_paid cost_labels end_flag … final_trace in
+      let final_trace_cost ≝ compute_trace_any_label_cost_using_paid cm cost_labels end_flag … final_trace in
         call_trace_cost + final_trace_cost
   | tal_step_default end_flag status_pre status_init status_end _ tail_trace _ _ ⇒
-     compute_trace_any_label_cost_using_paid cost_labels end_flag
+     compute_trace_any_label_cost_using_paid cm cost_labels end_flag
       status_init status_end tail_trace
   ]
 and compute_trace_label_return_cost_using_paid
-  (cost_labels: BitVectorTrie costlabel 16)
-  (start_status: Status) (final_status: Status)
-    (the_trace: trace_label_return (ASM_abstract_status cost_labels) start_status final_status)
+  (cm: ?)
+  (cost_labels: BitVectorTrie costlabel 16)
+  (start_status: Status cm) (final_status: Status cm)
+    (the_trace: trace_label_return (ASM_abstract_status cm cost_labels) start_status final_status)
       on the_trace: nat ≝
   match the_trace with
@@ -311 +209 @@
 
 let rec compute_trace_label_label_cost_using_paid_ok
+  (cm: ?)
   (cost_labels: BitVectorTrie costlabel 16)
    (trace_ends_flag: trace_ends_with_ret)
-    (start_status: Status) (final_status: Status)
-      (the_trace: trace_label_label (ASM_abstract_status cost_labels) trace_ends_flag
+    (start_status: Status cm) (final_status: Status cm)
+      (the_trace: trace_label_label (ASM_abstract_status cm cost_labels) trace_ends_flag
         start_status final_status) on the_trace:
- compute_trace_label_label_cost_using_paid cost_labels … the_trace =
+ compute_trace_label_label_cost_using_paid cm cost_labels … the_trace =
  compute_max_trace_label_label_cost … the_trace ≝ ?
 and compute_trace_any_label_cost_using_paid_ok
+  (cm: ?)
   (cost_labels: BitVectorTrie costlabel 16)
   (trace_ends_flag: trace_ends_with_ret)
-   (start_status: Status) (final_status: Status)
-     (the_trace: trace_any_label (ASM_abstract_status cost_labels)
+   (start_status: Status cm) (final_status: Status cm)
+     (the_trace: trace_any_label (ASM_abstract_status cm cost_labels)
       trace_ends_flag start_status final_status) on the_trace:      
-  compute_paid_trace_any_label cost_labels trace_ends_flag … the_trace
-  +compute_trace_any_label_cost_using_paid cost_labels trace_ends_flag … the_trace
-  =compute_max_trace_any_label_cost cost_labels trace_ends_flag … the_trace ≝ ?
+  compute_paid_trace_any_label cm cost_labels trace_ends_flag … the_trace
+  +compute_trace_any_label_cost_using_paid cm cost_labels trace_ends_flag … the_trace
+  =compute_max_trace_any_label_cost cm cost_labels trace_ends_flag … the_trace ≝ ?
 and compute_trace_label_return_cost_using_paid_ok
-  (cost_labels: BitVectorTrie costlabel 16)
-  (start_status: Status) (final_status: Status)
-    (the_trace: trace_label_return (ASM_abstract_status cost_labels)
+  (cm: ?)
+  (cost_labels: BitVectorTrie costlabel 16)
+  (start_status: Status cm) (final_status: Status cm)
+    (the_trace: trace_label_return (ASM_abstract_status cm cost_labels)
      start_status final_status) on the_trace:
- compute_trace_label_return_cost_using_paid cost_labels … the_trace =
- compute_max_trace_label_return_cost cost_labels … the_trace ≝ ?.
+ compute_trace_label_return_cost_using_paid cm cost_labels … the_trace =
+ compute_max_trace_label_return_cost cm cost_labels … the_trace ≝ ?.
 [ cases the_trace #endsf #ss #es #tr #H normalize
   @compute_trace_any_label_cost_using_paid_ok
@@ -339 +240 @@
   [ #ss #fs #H1 #H2 #H3 whd in ⊢ (??(?%%)%); <plus_n_O %
   | #ss #fs #H1 #H2 whd in ⊢ (??(?%%)%); <plus_n_O %
-  | #ef #spfc #ssfc #safc #sf #H1 #H2 #H3 #tr1 #tr2 whd in ⊢ (??(?%%)%);
+  |
+    #sp #ss #sf #H1 #H2 #tr1 #tr2 #H3
+    whd in ⊢ (???%); whd in ⊢ (??(??%)?); whd in ⊢ (??(?%?)?);
+    >compute_trace_label_return_cost_using_paid_ok in ⊢ (??%?);
+    >commutative_plus in ⊢ (??%?); @eq_f %
+  | #ef #spfc #ssfc #safc #sf #H1 #H2 #H3 #tr1 #H4 #tr2 whd in ⊢ (??(?%%)%);
     <compute_trace_any_label_cost_using_paid_ok
     <compute_trace_label_return_cost_using_paid_ok
@@ -374 +280 @@
 *)
 
+include alias "ASM/BitVectorTrie.ma".
+
 let rec compute_cost_trace_label_label
+  (cm: BitVectorTrie Byte 16)
   (cost_labels: BitVectorTrie costlabel 16)
    (trace_ends_flag: trace_ends_with_ret)
-    (start_status: Status) (final_status: Status)
-      (the_trace: trace_label_label (ASM_abstract_status cost_labels) trace_ends_flag
+    (start_status: Status cm) (final_status: Status cm)
+      (the_trace: trace_label_label (ASM_abstract_status cm cost_labels) trace_ends_flag
         start_status final_status) on the_trace:
-         list (Σk:costlabel. ∃pc. lookup_opt … pc cost_labels = Some … k) ≝
+         list (Σk:costlabel. ∃pc: Word. lookup_opt … pc cost_labels = Some … k) ≝
   match the_trace with
   [ tll_base ends_flag initial final given_trace labelled_proof ⇒
-     let pc ≝ program_counter … initial in
+     let pc ≝ program_counter ? cm initial in
      let label ≝
-      match lookup_opt … pc cost_labels return λx. match x with [None ⇒ False | Some _ ⇒ True] → costlabel with
+      match lookup_opt … pc cost_labels return λx: option ?. match x with [None ⇒ False | Some _ ⇒ True] → costlabel with
       [ None ⇒ λabs. ⊥
       | Some l ⇒ λ_. l ] labelled_proof in
-     (mk_Sig … label ?)::compute_cost_trace_any_label … given_trace
+      (mk_Sig ?? label ?)::compute_cost_trace_any_label cm cost_labels ends_flag initial final … given_trace
   ]
 and compute_cost_trace_any_label
+  (cm: BitVectorTrie Byte 16)
   (cost_labels: BitVectorTrie costlabel 16)
   (trace_ends_flag: trace_ends_with_ret)
-   (start_status: Status) (final_status: Status)
-     (the_trace: trace_any_label (ASM_abstract_status cost_labels) trace_ends_flag start_status final_status)
+   (start_status: Status cm) (final_status: Status cm)
+     (the_trace: trace_any_label (ASM_abstract_status cm cost_labels) trace_ends_flag start_status final_status)
        on the_trace: list (Σk:costlabel. ∃pc. lookup_opt … pc cost_labels = Some … k) ≝
   match the_trace with
-  [ tal_base_not_return the_status _ _ _ _ ⇒ []
-  | tal_base_return the_status _ _ _ ⇒ []
+  [ tal_base_not_return the_status _ _ _ _ ⇒ [ ]
+  | tal_base_call pre_fun_call start_fun_call final _ _ _ call_trace _ ⇒
+      compute_cost_trace_label_return … call_trace
+  | tal_base_return the_status _ _ _ ⇒ [ ]
   | tal_step_call end_flag pre_fun_call start_fun_call after_fun_call final
-     _ _ _ call_trace final_trace ⇒
+     _ _ _ call_trace _ final_trace ⇒
       let call_cost_trace ≝ compute_cost_trace_label_return … call_trace in
-      let final_cost_trace ≝ compute_cost_trace_any_label cost_labels end_flag … final_trace in
+      let final_cost_trace ≝ compute_cost_trace_any_label cm cost_labels end_flag … final_trace in
         call_cost_trace @ final_cost_trace
   | tal_step_default end_flag status_pre status_init status_end _ tail_trace _ _ ⇒
-       compute_cost_trace_any_label cost_labels end_flag
+       compute_cost_trace_any_label cm cost_labels end_flag
         status_init status_end tail_trace
   ]
 and compute_cost_trace_label_return
-  (cost_labels: BitVectorTrie costlabel 16)
-  (start_status: Status) (final_status: Status)
-    (the_trace: trace_label_return (ASM_abstract_status cost_labels) start_status final_status)
+  (cm: BitVectorTrie Byte 16)
+  (cost_labels: BitVectorTrie costlabel 16)
+  (start_status: Status cm) (final_status: Status cm)
+    (the_trace: trace_label_return (ASM_abstract_status cm cost_labels) start_status final_status)
       on the_trace: list (Σk:costlabel. ∃pc. lookup_opt … pc cost_labels = Some … k) ≝
   match the_trace with
-  [ tlr_base before after trace_to_lift ⇒ compute_cost_trace_label_label … trace_to_lift
+  [ tlr_base before after trace_to_lift ⇒ compute_cost_trace_label_label cm … trace_to_lift
   | tlr_step initial labelled final labelled_trace ret_trace ⇒
-      let labelled_cost ≝ compute_cost_trace_label_label … labelled_trace in
-      let return_cost ≝ compute_cost_trace_label_return … ret_trace in
+      let labelled_cost ≝ compute_cost_trace_label_label cm … labelled_trace in
+      let return_cost ≝ compute_cost_trace_label_return cm … ret_trace in
         labelled_cost @ return_cost
   ].
@@ -425 +338 @@
  | // ]
 qed.
-
-(* XXX: zero in base cases (where the trace is a singleton transition) because
-        we are counting until one from end
-*)
-let rec trace_any_label_length
-  (cost_labels: BitVectorTrie costlabel 16) (trace_ends_flag: trace_ends_with_ret)
-    (start_status: Status) (final_status: Status)
-      (the_trace: trace_any_label (ASM_abstract_status cost_labels) trace_ends_flag start_status final_status)
-        on the_trace: nat ≝
-  match the_trace with
-  [ tal_base_not_return the_status _ _ _ _ ⇒ 0
-  | tal_base_return the_status _ _ _ ⇒ 0
-  | tal_step_call end_flag pre_fun_call start_fun_call after_fun_call final _ _ _ call_trace final_trace ⇒
-      let tail_length ≝ trace_any_label_length … final_trace in
-      let pc_difference ≝ nat_of_bitvector … (program_counter … after_fun_call) - nat_of_bitvector … (program_counter … pre_fun_call) in        
-        pc_difference + tail_length
-  | tal_step_default end_flag status_pre status_init status_end _ tail_trace _ _ ⇒
-      let tail_length ≝ trace_any_label_length … tail_trace in
-      let pc_difference ≝ nat_of_bitvector … (program_counter … status_init) - nat_of_bitvector … (program_counter … status_pre) in
-        pc_difference + tail_length        
-  ].
 
 (* XXX: commented out in favour of above
@@ -586 +478 @@
   ]
 qed.
-    
-let rec block_cost_trace_any_label_static_dynamic_ok
-  (total_program_size: nat) (cost_labels: BitVectorTrie costlabel 16)
-    (trace_ends_flag: ?) (start_status: Status) (final_status: Status)
-      (the_trace: trace_any_label (ASM_abstract_status cost_labels) trace_ends_flag start_status final_status)
-        on the_trace:
-          let code_memory ≝ code_memory … start_status in
-          let program_counter ≝ program_counter … start_status in
-            ∀reachable_program_counter_witness: reachable_program_counter code_memory total_program_size program_counter.
-            ∀good_program_witness: good_program code_memory total_program_size.
-              (∃n: nat. trace_any_label_length … the_trace + (S n) = total_program_size) ∧
-                block_cost code_memory program_counter total_program_size cost_labels reachable_program_counter_witness good_program_witness =
-                  compute_paid_trace_any_label cost_labels trace_ends_flag start_status final_status the_trace ≝ ?.
-    letin code_memory ≝ (code_memory … start_status)
-    letin program_counter ≝ (program_counter … start_status)
-    #reachable_program_counter_witness #good_program_witness
-    generalize in match (refl … final_status);
-    generalize in match (refl … start_status);
-    cases the_trace in ⊢ (???% → ???% → %);
-    [1:
-      #start_status' #final_status' #execute_hyp #classifier_hyp #costed_hyp
-      #start_status_refl #final_status_refl destruct
-      whd in match (trace_any_label_length ? ? ? ? ?);
-      whd in match (compute_paid_trace_any_label ? ? ? ? ?);
-      @and_intro_right
-      [1:
-        generalize in match reachable_program_counter_witness;
-        whd in match (reachable_program_counter code_memory total_program_size program_counter);
-        * #irrelevant #relevant
-        lapply (exists_plus_m_n_to_exists_Sn (nat_of_bitvector … program_counter) total_program_size relevant)
-        #hyp assumption
-      |2:
-        * #n #trace_length_hyp
-        whd in match block_cost; normalize nodelta
-        generalize in match reachable_program_counter_witness;
-        generalize in match good_program_witness;
-        <trace_length_hyp in ⊢ (∀_:?. ∀_:?. ??(???%??????)?);
-        -reachable_program_counter_witness #reachable_program_counter_witness
-        -good_program_witness #good_program_witness
-        whd in ⊢ (??%?); @pair_elim
-      ]
-    |2:
-      #start_status' #final_status' #execute_hyp #classified_hyp
-      #start_status_refl #final_status_refl destruct
-      whd in match (trace_any_label_length ? ? ? ? ?);
-      whd in match (compute_paid_trace_any_label ? ? ? ? ?);
-      @and_intro_right
-      [1:
-        generalize in match reachable_program_counter_witness;
-        whd in match (reachable_program_counter code_memory total_program_size program_counter);
-        * #irrelevant #relevant
-        lapply (exists_plus_m_n_to_exists_Sn (nat_of_bitvector … program_counter) total_program_size relevant)
-        #hyp assumption
-      |2:
-        * #n #trace_length_hyp
-        whd in match block_cost; normalize nodelta
-        generalize in match reachable_program_counter_witness;
-        generalize in match good_program_witness;
-        <trace_length_hyp in ⊢ (∀_:?. ∀_:?. ??(???%??????)?);
-        -reachable_program_counter_witness #reachable_program_counter_witness
-        -good_program_witness #good_program_witness
-        whd in match (0 + S n); whd in ⊢ (??%?);
-      ] 
-    |3:
-      #end_flag #status_pre_fun_call #status_start_fun_call #status_after_fun_call
-      #status_final #execute_hyp #classifier_hyp #after_return_hyp
-      #trace_label_return #trace_any_label #start_status_refl #final_status_refl
-      destruct
-      whd in match (trace_any_label_length ? ? ? ? ?);
-      whd in match (compute_paid_trace_any_label ? ? ? ? ?);
-      @and_intro_right
-      [1:
-      |2:
-      ]
-    |4:
-      #end_flag #status_pre #status_init #status_end #execute_hyp #trace_any_label
-      #classifier_hyp #costed_hyp #start_status_refl #final_status_refl
-      destruct
-      whd in match (trace_any_label_length ? ? ? ? ?);
-      whd in match (compute_paid_trace_any_label ? ? ? ? ?);
-      @and_intro_right
-      [1:
-      |2:
-      ]
-    ]
-  ]
-  
-corollary block_cost_trace_label_labelstatic_dynamic_ok:
-  ∀program_size: nat.
-  ∀cost_labels: BitVectorTrie costlabel 16.
-  ∀trace_ends_flag.
-  ∀start_status: Status.
-  ∀final_status: Status.
-  ∀the_trace: trace_label_label (ASM_abstract_status cost_labels) trace_ends_flag start_status final_status.
-  let code_memory ≝ code_memory … start_status in
-  let program_counter ≝ program_counter … start_status in
-  ∀reachable_program_counter_witness: reachable_program_counter code_memory program_size program_counter.
-  ∀good_program_witness: good_program code_memory program_size.
-    (∃n: nat. trace_length start_status final_status + n = program_size) ∧
-      block_cost code_memory program_counter program_size program_size cost_labels reachable_program_counter_witness good_program_witness ? =
-        compute_paid_trace_label_label cost_labels trace_ends_flag start_status final_status the_trace.
-  [2:
-    @le_plus_n_r
-  |1:
-    #program_size #cost_labels #trace_ends_flag #start_status #final_status
-    #the_trace normalize nodelta
-    #reachable_program_counter_witness #good_program_witness
-    generalize in match start_status;
-qed.
 
 (*
@@ -703 +486 @@
 *)
 
+include alias "arithmetics/bigops.ma".
+
 (* This shoudl go in bigops! *)
 theorem bigop_sum_rev: ∀k1,k2,p,B,nil.∀op:Aop B nil.∀f:nat→B.
  \big[op,nil]_{i<k1+k2|p i} (f i) =
  op \big[op,nil]_{i<k2|p (i+k1)} (f (i+k1)) \big[op,nil]_{i<k1|p i} (f i).
- #k1 #k2 #p #B #nil #op #f >bigop_sum >commutative_plus @same_bigop #i @leb_elim normalize
+ #k1 #k2 #p #B #nil #op #f >bigop_sum
+ >commutative_plus @same_bigop #i @leb_elim normalize
  [2,4: //
  | #H1 #H2 <plus_minus_m_m //
@@ -751 +537 @@
   with precedence 20
 for @{'bigop $n plus 0 (λ${ident i}:$X.true) (λ${ident i}:$Y. $f)}.
-
-axiom code_memory_ro_label_label:
- ∀cost_labels. ∀ends_flag.
- ∀initial,final. trace_label_label (ASM_abstract_status cost_labels) ends_flag initial final →
-  code_memory … initial = code_memory … final.
-
-(*
-axiom code_memory_ro_label_return:
- ∀cost_labels.
- ∀initial,final. trace_label_return (ASM_abstract_status cost_labels) initial final →
-  code_memory … initial = code_memory … final.
-*)
 
 definition tech_cost_of_label0:
@@ -870 +644 @@
 
 let rec compute_max_trace_label_return_cost_ok_with_trace
+ (cm: ?) (total_program_size: nat) (good_program_witness: good_program cm total_program_size)
  (cost_labels: BitVectorTrie costlabel 16)
  (cost_map: identifier_map CostTag nat)
- (initial: Status) (final: Status)
- (trace: trace_label_return (ASM_abstract_status cost_labels) initial final)
+ (initial: Status cm) (final: Status cm)
+ (trace: trace_label_return (ASM_abstract_status cm cost_labels) initial final)
  (codom_dom: (∀pc,k. lookup_opt … pc cost_labels = Some … k → present … cost_map k))
  on trace:
  ∀dom_codom:(∀k. ∀k_pres:present … cost_map k. ∃pc. lookup_opt … pc cost_labels = Some … k →
-   block_cost (code_memory … initial) cost_labels pc 2^16 = lookup_present … k_pres).
-  let ctrace ≝ compute_cost_trace_label_return … trace in
-  compute_max_trace_label_return_cost … trace =
+   ∃reachable_witness: reachable_program_counter cm total_program_size pc.
+   pi1 … (block_cost cm pc total_program_size cost_labels reachable_witness good_program_witness) = lookup_present … k_pres).
+  let ctrace ≝ compute_cost_trace_label_return cm … trace in
+  compute_max_trace_label_return_cost cm … trace =
    (Σ_{i < |ctrace|} (tech_cost_of_label cost_labels cost_map codom_dom ctrace i))
     ≝ ?
 and compute_max_trace_label_label_cost_ok_with_trace
+ (cm: ?) (total_program_size: nat) (good_program_witness: good_program cm total_program_size)
  (cost_labels: BitVectorTrie costlabel 16)
  (trace_ends_flag: trace_ends_with_ret)
  (cost_map: identifier_map CostTag nat)
- (initial: Status) (final: Status)
- (trace: trace_label_label (ASM_abstract_status cost_labels) trace_ends_flag initial final)
+ (initial: Status cm) (final: Status cm)
+ (trace: trace_label_label (ASM_abstract_status cm cost_labels) trace_ends_flag initial final)
  (codom_dom: (∀pc,k. lookup_opt … pc cost_labels = Some … k → present … cost_map k))
  (dom_codom:(∀k. ∀k_pres:present … cost_map k. ∃pc. lookup_opt … pc cost_labels = Some … k →
-   block_cost (code_memory … initial) cost_labels pc 2^16 = lookup_present … k_pres))
+   ∃reachable_witness: reachable_program_counter cm total_program_size pc.
+   pi1 … (block_cost cm pc total_program_size cost_labels reachable_witness good_program_witness) = lookup_present … k_pres))
  on trace:
   let ctrace ≝ compute_cost_trace_label_label … trace in
@@ -896 +674 @@
    (Σ_{i < |ctrace|} (tech_cost_of_label cost_labels cost_map codom_dom ctrace i))
     ≝ ?.
-cases trace
-[ #sb #sa #tr #dom_codom
-  @compute_max_trace_label_label_cost_ok_with_trace @dom_codom
-| #si #sl #sf #tr1 #tr2 #dom_codom whd in ⊢ (let ctrace ≝ % in ??%?);
-  change with (let ctrace ≝ ? in ? = bigop (|? @ ?|) ?????)
-  >append_length in ⊢ (let ctrace ≝ ? in ???(?%?????));
-  change with (?=?) >bigop_sum_rev >commutative_plus @eq_f2
-  [ >(compute_max_trace_label_return_cost_ok_with_trace … cost_map … codom_dom)
-    -compute_max_trace_label_return_cost_ok_with_trace     
-    [2:lapply (code_memory_ro_label_label … tr1) #E2 <E2 @dom_codom]
+cases trace normalize nodelta
+[ #sb #sa #tr #dom_codom whd in ⊢ (??%?);
+  whd in match (compute_cost_trace_label_return ?????);
+  @(compute_max_trace_label_label_cost_ok_with_trace … good_program_witness) @dom_codom
+| #si #sl #sf #tr1 #tr2 #dom_codom
+  whd in ⊢ (??%?);
+  whd in match (compute_cost_trace_label_return ?????);
+  >append_length >bigop_sum_rev >commutative_plus @eq_f2
+  [ >(compute_max_trace_label_return_cost_ok_with_trace … good_program_witness … cost_map … codom_dom dom_codom)
+    -compute_max_trace_label_return_cost_ok_with_trace
     @same_bigop [//] #i #H #_ -dom_codom @tech_cost_of_label_shift //
-  | >(compute_max_trace_label_label_cost_ok_with_trace … cost_map … codom_dom … dom_codom)
+  | >(compute_max_trace_label_label_cost_ok_with_trace … good_program_witness … cost_map … codom_dom … dom_codom)
+    -compute_max_trace_label_return_cost_ok_with_trace
     @same_bigop [//] #i #H #_
 ]