Changeset 2172 for src/ASM

Timestamp:

Jul 10, 2012, 2:39:38 PM (8 years ago)

Author:

mulligan

Message:

Moved new versions of get_ / set_arg_* into Status.ma. Commented out proofs that are no longer working.

Location:

src/ASM

Files:

• AssemblyProofSplit.ma (modified) (3 diffs)
• Status.ma (modified) (14 diffs)
• StatusProofs.ma (modified) (5 diffs)
• StatusProofsSplit.ma (modified) (6 diffs)
• Test.ma (modified) (11 diffs)

src/ASM/AssemblyProofSplit.ma

@@ -1 @@
-include "ASM/AssemblyProof.ma".
-include alias "arithmetics/nat.ma".
-include alias "basics/logic.ma".
-
-lemma set_arg_16_mk_Status_commutation:
-  ∀M: Type[0].
-  ∀cm: M.
-  ∀s: PreStatus M cm.
-  ∀w: Word.
-  ∀d: [[dptr]].
-    set_arg_16 M cm s w d =
-      mk_PreStatus M cm
-        (low_internal_ram … s)
-        (high_internal_ram … s)
-        (external_ram … s)
-        (program_counter … s)
-        (special_function_registers_8051 … (set_arg_16 M cm s w d))
-        (special_function_registers_8052 … s)
-        (p1_latch … s)
-        (p3_latch … s)
-        (clock … s).
-  #M #cm #s #w #d
-  whd in match set_arg_16; normalize nodelta
-  whd in match set_arg_16'; normalize nodelta
-  @(subaddressing_mode_elim … d)
-  cases (vsplit bool 8 8 w) #bu #bl normalize nodelta
-  whd in match set_8051_sfr; normalize nodelta %
-qed.
-
-lemma set_program_counter_mk_Status_commutation:
-  ∀M: Type[0].
-  ∀cm: M.
-  ∀s: PreStatus M cm.
-  ∀w: Word.
-    set_program_counter M cm s w =
-      mk_PreStatus M cm
-        (low_internal_ram … s)
-        (high_internal_ram … s)
-        (external_ram … s)
-        w
-        (special_function_registers_8051 … s)
-        (special_function_registers_8052 … s)
-        (p1_latch … s)
-        (p3_latch … s)
-        (clock … s).
-  //
-qed.
-
-lemma set_clock_mk_Status_commutation:
-  ∀M: Type[0].
-  ∀cm: M.
-  ∀s: PreStatus M cm.
-  ∀c: nat.
-    set_clock M cm s c =
-      mk_PreStatus M cm
-        (low_internal_ram … s)
-        (high_internal_ram … s)
-        (external_ram … s)
-        (program_counter … s)
-        (special_function_registers_8051 … s)
-        (special_function_registers_8052 … s)
-        (p1_latch … s)
-        (p3_latch … s)
-        c.
-  //
-qed.
-
-lemma get_8051_sfr_set_clock:
-  ∀M: Type[0].
-  ∀cm: M.
-  ∀s: PreStatus M cm.
-  ∀sfr: SFR8051.
-  ∀t: Time.
-    get_8051_sfr M cm (set_clock M cm s t) sfr =
-      get_8051_sfr M cm s sfr.
-  #M #cm #s #sfr #t %
-qed.
-
-lemma get_8051_sfr_set_program_counter:
-  ∀M: Type[0].
-  ∀cm: M.
-  ∀s: PreStatus M cm.
-  ∀sfr: SFR8051.
-  ∀pc: Word.
-    get_8051_sfr M cm (set_program_counter M cm s pc) =
-      get_8051_sfr M cm s.
-  #M #cm #s #sfr #pc %
-qed.
-
-lemma special_function_registers_8051_set_arg_16:
-  ∀M, M': Type[0].
-  ∀cm: M.
-  ∀cm': M'.
-  ∀s: PreStatus M cm.
-  ∀s': PreStatus M' cm'.
-  ∀w, w': Word.
-  ∀d, d': [[dptr]].
-   special_function_registers_8051 ?? s = special_function_registers_8051 … s' →
-    w = w' →
-      special_function_registers_8051 ?? (set_arg_16 … s w d) =
-        special_function_registers_8051 ?? (set_arg_16 M' cm' s' w' d').
-  #M #M' #cm #cm' #s #s' #w #w'
-  #d @(subaddressing_mode_elim … d)
-  #d' @(subaddressing_mode_elim … d')
-  #EQ1 #EQ2 <EQ2 normalize cases (vsplit bool 8 8 w) #b1 #b2 normalize <EQ1 %
-qed.
-
-lemma program_counter_set_arg_1:
-  ∀M: Type[0].
-  ∀cm: M.
-  ∀s: PreStatus M cm.
-  ∀addr: [[bit_addr; carry]].
-  ∀b: Bit.
-    program_counter M cm (set_arg_1 M cm s addr b) = program_counter M cm s.
-  #M #cm #s whd in match set_arg_1; whd in match set_arg_1'; normalize nodelta
-  #addr #b
-  @(subaddressing_mode_elim … addr)
-  [1:
-    #byte cases (vsplit ????) #nu #nl normalize nodelta
-    cases (vsplit ????) #ignore #three_bits normalize nodelta
-    cases (get_index_v bool ????) normalize nodelta
-    [1:
-      @program_counter_set_bit_addressable_sfr
-    |2:
-      @program_counter_set_low_internal_ram
-    ]
-  |2:
-    cases (vsplit ????) //
-  ]
-qed.
-
-lemma get_ov_flag_set_program_counter:
-  ∀M: Type[0].
-  ∀cm: M.
-  ∀s: PreStatus M cm.
-  ∀pc: Word.
-    get_ov_flag M cm (set_program_counter M cm s pc) =
-      get_ov_flag M cm s.
-  #M #cm #s #pc %
-qed.
-
-lemma external_ram_set_program_counter:
-  ∀M: Type[0].
-  ∀cm: M.
-  ∀s: PreStatus M cm.
-  ∀pc: Word.
-    external_ram M cm (set_program_counter M cm s pc) =
-      external_ram M cm s.
-  #M #cm #s #pc %
-qed.
-
-lemma low_internal_ram_set_program_counter:
-  ∀M: Type[0].
-  ∀cm: M.
-  ∀s: PreStatus M cm.
-  ∀pc: Word.
-    low_internal_ram M cm (set_program_counter M cm s pc) =
-      low_internal_ram M cm s.
-  #M #cm #s #pc %
-qed.
-
-lemma high_internal_ram_set_program_counter:
-  ∀M: Type[0].
-  ∀cm: M.
-  ∀s: PreStatus M cm.
-  ∀pc: Word.
-    high_internal_ram M cm (set_program_counter M cm s pc) =
-      high_internal_ram M cm s.
-  #M #cm #s #pc %
-qed.
-
-lemma get_arg_8_set_program_counter:
-  ∀M: Type[0].
-  ∀cm: M.
-  ∀s: PreStatus M cm.
-  ∀flag: bool.
-  ∀addr: [[direct; indirect; registr; acc_a; acc_b; data; acc_dptr; ext_indirect; ext_indirect_dptr]].
-  ∀pc: Word.
-    get_arg_8 M cm (set_program_counter M cm s pc) flag addr =
-      get_arg_8 M cm s flag addr.
-  [2,3:
-    cases addr #subaddressing_mode
-    cases subaddressing_mode
-    try (#addr1 whd in ⊢ (% → %);)
-    whd in ⊢ (% → %); //
-  ]
-  #M #cm #s #flag #addr #pc
-  whd in match get_arg_8; normalize nodelta
-  cases addr *
-  try (#addr1 #absurd normalize in absurd; cases absurd @I)
-  try (#absurd normalize in absurd; cases absurd @I)
-  try (#addr1 #addr2) try #addr1
-  normalize nodelta %
-qed.
-
-lemma external_ram_set_flags:
-  ∀M: Type[0].
-  ∀cm: M.
-  ∀s: PreStatus M cm.
-  ∀opt: option Bit.
-  ∀bit1, bit2: Bit.
-    external_ram M cm (set_flags M cm s bit1 opt bit2) =
-      external_ram M cm s.
-  #M #cm #s #opt #bit1 #bit2 %
-qed.
-
-lemma low_internal_ram_set_flags:
-  ∀M: Type[0].
-  ∀cm: M.
-  ∀s: PreStatus M cm.
-  ∀opt: option Bit.
-  ∀bit1, bit2: Bit.
-    low_internal_ram M cm (set_flags M cm s bit1 opt bit2) =
-      low_internal_ram M cm s.
-  #M #cm #s #opt #bit1 #bit2 %
-qed.
-
-lemma high_internal_ram_set_flags:
-  ∀M: Type[0].
-  ∀cm: M.
-  ∀s: PreStatus M cm.
-  ∀opt: option Bit.
-  ∀bit1, bit2: Bit.
-    high_internal_ram M cm (set_flags M cm s bit1 opt bit2) =
-      high_internal_ram M cm s.
-  #M #cm #s #opt #bit1 #bit2 %
-qed.
-
-lemma low_internal_ram_set_clock:
-  ∀M: Type[0].
-  ∀cm: M.
-  ∀s: PreStatus M cm.
-  ∀t: Time.
-    low_internal_ram M cm (set_clock M cm s t) =
-      low_internal_ram M cm s.
-  #M #cm #s #t %
-qed.
-
-lemma high_internal_ram_set_clock:
-  ∀M: Type[0].
-  ∀cm: M.
-  ∀s: PreStatus M cm.
-  ∀t: Time.
-    high_internal_ram M cm (set_clock M cm s t) =
-      high_internal_ram M cm s.
-  #M #cm #s #t %
-qed.
-
-lemma external_ram_set_clock:
-  ∀M: Type[0].
-  ∀cm: M.
-  ∀s: PreStatus M cm.
-  ∀t: Time.
-    external_ram M cm (set_clock M cm s t) =
-      external_ram M cm s.
-  #M #cm #s #t %
-qed.
-
-lemma set_8051_sfr_set_program_counter:
-  ∀M: Type[0].
-  ∀cm: M.
-  ∀s: PreStatus M cm.
-  ∀pc: Word.
-  ∀sfr: SFR8051.
-  ∀v: Byte.
-    set_8051_sfr M cm (set_program_counter M cm s pc) sfr v =
-      set_program_counter M cm (set_8051_sfr M cm s sfr v) pc.
-  #M #cm #s #pc #sfr #v %
-qed.
-
-lemma low_internal_ram_set_8051_sfr:
-  ∀M: Type[0].
-  ∀cm: M.
-  ∀s: PreStatus M cm.
-  ∀sfr: SFR8051.
-  ∀v: Byte.
-    low_internal_ram M cm (set_8051_sfr M cm s sfr v) =
-      low_internal_ram M cm s.
-  #M #cm #s #sfr #v %
-qed.
-
-lemma high_internal_ram_set_8051_sfr:
-  ∀M: Type[0].
-  ∀cm: M.
-  ∀s: PreStatus M cm.
-  ∀sfr: SFR8051.
-  ∀v: Byte.
-    high_internal_ram M cm (set_8051_sfr M cm s sfr v) =
-      high_internal_ram M cm s.
-  #M #cm #s #sfr #v %
-qed.
-
-lemma external_ram_set_8051_sfr:
-  ∀M: Type[0].
-  ∀cm: M.
-  ∀s: PreStatus M cm.
-  ∀sfr: SFR8051.
-  ∀v: Byte.
-    external_ram M cm (set_8051_sfr M cm s sfr v) =
-      external_ram M cm s.
-  #M #cm #s #sfr #v %
-qed.
-
-lemma get_arg_8_set_clock:
-  ∀M: Type[0].
-  ∀cm: M.
-  ∀s: PreStatus M cm.
-  ∀addr.
-  ∀t: Time.
-    get_arg_8 M cm (set_clock M cm s t) addr =
-      get_arg_8 M cm s addr.
-  #M #cm #s #addr #t %
-qed.
-
-lemma set_program_counter_set_program_counter:
-  ∀M: Type[0].
-  ∀cm: M.
-  ∀s: PreStatus M cm.
-  ∀pc: Word.
-  ∀pc': Word.
-    set_program_counter M cm (set_program_counter M cm s pc) pc' =
-      set_program_counter M cm s pc'.
-  #M #cm #s #pc #pc' %
-qed.
-
-(* XXX: move elsewhere *)
-lemma bitvector_8_cases:
-  ∀w: BitVector 8.
-    ∃b0,b1,b2,b3,b4,b5,b6,b7: bool.
-      w ≃ [[b0;b1;b2;b3;b4;b5;b6;b7]].
- #w repeat (cases (BitVector_Sn … w)  #b0 * #w0 #EQ0 >EQ0 %{b0} -w lapply w0 -w0 #w)
- >(BitVector_O … w) %
-qed.
-
-(* XXX: not true
-lemma p3_latch_set_arg_8:
-  ∀M: Type[0].
-  ∀cm: M.
-  ∀s: PreStatus M cm.
-  ∀args.
-  ∀v: Byte.
-    p3_latch M cm (set_arg_8 M cm s args v) =
-      p3_latch M cm s.
-  #M #cm #s #args #v
-  @(subaddressing_mode_elim … args)
-  try #w try %
-  whd in match set_arg_8; normalize nodelta
-  whd in match set_arg_8'; normalize nodelta
-  inversion (vsplit bool ???) #nu #nl #nu_nl_refl normalize nodelta
-  inversion (vsplit bool ???) #ignore #three_bits #ignore_three_bits_refl normalize nodelta
-  inversion (get_index_v bool ????) #get_index_v_refl normalize nodelta try %
-  whd in match set_bit_addressable_sfr; normalize nodelta
-  @(bitvector_8_elim_prop … w)
-*)
-
-lemma status_of_pseudo_status_does_not_change_8051_sfrs:
-  ∀M: internal_pseudo_address_map.
-  ∀cm: pseudo_assembly_program.
-  ∀s: PreStatus pseudo_assembly_program cm.
-  ∀sigma: Word → Word.
-  ∀policy: Word → bool.
-    \snd M = data →
-      special_function_registers_8051 pseudo_assembly_program cm s =
-        special_function_registers_8051 (BitVectorTrie Byte 16)
-          (code_memory_of_pseudo_assembly_program cm sigma policy)
-          (status_of_pseudo_status M cm s sigma policy).
-  #M #cm #s #sigma #policy #None_proof cases s
-  #H1 #H2 #H3 #H4 #H5 #H6 #H7 #H8 #H9
-  whd in match status_of_pseudo_status; normalize nodelta
-  whd in match sfr_8051_of_pseudo_sfr_8051; normalize nodelta
-  >None_proof %
-qed.
-
-lemma n_lt_19_elim_prop:
-  ∀P: nat → Prop.
-    P 0 → P 1 → P 2 → P 3 → P 4 → P 5 → P 6 → P 7 → P 8 → P 9 →
-    P 10 → P 11 → P 12 → P 13 → P 14 → P 15 → P 16 → P 17 → P 18 →
-      (∀n. n < 19 → P n).
-  #P #H1 #H2 #H3 #H4 #H5 #H6 #H7 #H8 #H9 #H10 #H11 #H12 #H13 #H14
-  #H15 #H16 #H17 #H18 #H19 #n
-  cases n [1: // ]
-  #n' cases n' [1: // ] #n' cases n' [1: // ] #n' cases n' [1: // ]
-  #n' cases n' [1: // ] #n' cases n' [1: // ] #n' cases n' [1: // ]
-  #n' cases n' [1: // ] #n' cases n' [1: // ] #n' cases n' [1: // ]
-  #n' cases n' [1: // ] #n' cases n' [1: // ] #n' cases n' [1: // ]
-  #n' cases n' [1: // ] #n' cases n' [1: // ] #n' cases n' [1: // ]
-  #n' cases n' [1: // ] #n' cases n' [1: // ] #n' cases n' [1: // ]
-  #n' normalize in ⊢ (% → ?);
-  #absurd repeat (lapply (le_S_S_to_le … absurd) #absurd)
-  cases (lt_to_not_zero … absurd)
-qed.
-
-lemma get_index_v_set_index_miss:
-  ∀T: Type[0].
-  ∀n, i, j: nat.
-  ∀v: Vector T n.
-  ∀b: T.
-  ∀i_proof: i < n.
-  ∀j_proof: j < n.
-  i ≠ j →
-    get_index_v T n (set_index T n v i b i_proof) j j_proof =
-      get_index_v T n v j j_proof.
-  #T #n #i #j #v lapply i lapply j elim v #i #j
-  [1:
-    #b #i_proof
-    cases (lt_to_not_zero … i_proof)
-  |2:
-    #tl #inductive_hypothesis #j' #i' #b #i_proof #j_proof #i_neq_j
-    lapply i_proof lapply i_neq_j cases i'
-    [1:
-      -i_neq_j #i_neq_j -i_proof #i_proof
-      whd in match (set_index ??????);
-      lapply j_proof lapply i_neq_j cases j'
-      [1:
-        #relevant @⊥ cases relevant -relevant #absurd @absurd %
-      |2:
-        #j' #_ -j_proof #j_proof %
-      ]
-    |2:
-      #i' -i_neq_j #i_neq_j -i_proof #i_proof
-      lapply j_proof lapply i_neq_j cases j'
-      [1:
-        #_ #j_proof %
-      |2:
-        #j' #i_neq_j #j_proof
-        @inductive_hypothesis @nmk #relevant
-        cases i_neq_j #absurd @absurd >relevant %
-      ]
-    ]
-  ]
-qed.
-
-lemma get_index_v_special_function_registers_8051_not_acc_a:
-  ∀M: internal_pseudo_address_map.
-  ∀cm: pseudo_assembly_program.
-  ∀s: PreStatus pseudo_assembly_program cm.
-  ∀sigma: Word → Word.
-  ∀policy: Word → bool.
-  ∀n: nat.
-  ∀proof: n < 19.
-    n ≠ 17 →
-   (get_index_v Byte 19
-    (special_function_registers_8051 pseudo_assembly_program cm s) n
-    proof =
-   get_index_v Byte 19
-     (special_function_registers_8051 (BitVectorTrie Byte 16)
-       (code_memory_of_pseudo_assembly_program cm sigma policy)
-       (status_of_pseudo_status M cm s sigma policy)) n
-       proof).
-  #M #cm #s #sigma #policy #n #proof lapply proof
-  @(n_lt_19_elim_prop … proof) -proof #proof
-  [18:
-    #absurd @⊥ cases absurd -absurd #absurd @absurd %
-  ]
-  #_ cases s #H1 #H2 #H3 #H4 #H5 #H6 #H7 #H8 #H9
-  whd in match status_of_pseudo_status; normalize nodelta
-  whd in match sfr_8051_of_pseudo_sfr_8051; normalize nodelta
-  cases M #left #right cases right normalize nodelta try %
-  -right * #address
-  @pair_elim #high #low #high_low_refl normalize nodelta
-  whd in match sfr_8051_index; normalize nodelta
-  >get_index_v_set_index_miss try %
-  #absurd destruct(absurd)
-qed.
+include "ASM/StatusProofsSplit.ma".
 
 include alias "arithmetics/nat.ma".
@@ -473 +10 @@
   ∀i: instruction.
     fetch_many code_memory final_pc start_pc [i] →
-      〈i, final_pc, ticks_of_instruction i〉 = fetch code_memory start_pc.
+      〈i, final_pc, ticks_of_instruction i〉 = fetch code_memory
+start_pc.
   #code_memory #final_pc #start_pc #i * #new_pc
   #fetch_many_assm whd in fetch_many_assm;
@@ -479 +17 @@
 qed.
 
-(* XXX: this needs an extra invariant relating address and word that we look
-        up!
-*)
-definition map_lower_internal_ram_address_using_pseudo_address_map:
-    ∀M: internal_pseudo_address_map. (Word → Word) → Byte → Byte → Byte ≝
-  λM: internal_pseudo_address_map.
-  λsigma: Word → Word.
-  λaddress: Byte.
-  λvalue: Byte.
-  match assoc_list_lookup ?? address (eq_bv …) (\fst M) with
-  [ None ⇒ value
-  | Some upper_lower_word ⇒
-    let 〈upper_lower, word〉 ≝ upper_lower_word in
-    let 〈high, low〉 ≝ vsplit bool 8 8 (sigma word) in
-      if eq_upper_lower upper_lower upper then
-        high
-      else
-        low
-  ].
-
-lemma get_8051_sfr_status_of_pseudo_status:
-  ∀M.
-  ∀cm, ps, sigma, policy.
-  ∀sfr.
-    (sfr = SFR_ACC_A → \snd M = data) →
-    get_8051_sfr (BitVectorTrie Byte 16)
-      (code_memory_of_pseudo_assembly_program cm sigma policy)
-      (status_of_pseudo_status M cm ps sigma policy) sfr =
-    get_8051_sfr pseudo_assembly_program cm ps sfr.
-  #M #cm #ps #sigma #policy * cases M #fstM #sndM #relevant
-  [18:
-     >relevant %
-  ]
-  cases sndM try % * #address
-  whd in match get_8051_sfr;
-  whd in match status_of_pseudo_status; normalize nodelta
-  whd in match sfr_8051_of_pseudo_sfr_8051; normalize nodelta
-  @pair_elim #upper #lower #upper_lower_refl
-  @get_index_v_set_index_miss @nmk #relevant
-  normalize in relevant; destruct(relevant)
-qed.
-
-lemma bitvector_cases_hd_tl:
-  ∀n: nat.
-  ∀w: BitVector (S n).
-   ∃hd: bool. ∃tl: BitVector n.
-    w ≃ hd:::tl.
-  #n #w cases (BitVector_Sn … w) #hd #relevant %{hd} @relevant
-qed.
-
-lemma external_ram_set_bit_addressable_sfr:
-  ∀M: Type[0].
-  ∀cm: M.
-  ∀ps.
-  ∀w.
-  ∀result: Byte.
-    external_ram M cm
-      (set_bit_addressable_sfr M cm ps w result) =
-    external_ram M cm ps.
-  #M #cm #ps #w #result cases daemon (* XXX: prove this with Russell in Status.ma!
-  whd in match set_bit_addressable_sfr; normalize nodelta
-  cases (eqb ??) normalize nodelta [1: cases not_implemented ]
-  cases (eqb ??) normalize nodelta [1: % ]
-  cases (eqb ??) normalize nodelta [1: cases not_implemented ]
-  cases (eqb ??) normalize nodelta [1: % ]
-  cases (eqb ??) normalize nodelta [1: % ]
-  cases (eqb ??) normalize nodelta [1: % ]
-  cases (eqb ??) normalize nodelta [1: % ]
-  cases (eqb ??) normalize nodelta [1: % ]
-  cases (eqb ??) normalize nodelta [1: % ]
-  cases (eqb ??) normalize nodelta [1: % ]
-  cases (eqb ??) normalize nodelta [1: % ]
-  cases (eqb ??) normalize nodelta [1: % ]
-  cases (eqb ??) normalize nodelta [1: % ]
-  cases (eqb ??) normalize nodelta [1: % ]
-  cases (eqb ??) normalize nodelta [1: % ]
-  cases (eqb ??) normalize nodelta [1: % ]
-  cases (eqb ??) normalize nodelta [1: % ]
-  cases (eqb ??) normalize nodelta [1: % ]
-  cases (eqb ??) normalize nodelta [1: % ]
-  cases (eqb ??) normalize nodelta [1: % ]
-  cases (eqb ??) normalize nodelta [1: % ]
-  cases (eqb ??) normalize nodelta [1: % ]
-  cases (eqb ??) normalize nodelta [1: % ]
-  cases (eqb ??) normalize nodelta [1: % ]
-  cases (eqb ??) normalize nodelta [1: % ]
-  cases (eqb ??) normalize nodelta [1: % ]
-  cases not_implemented *)
-qed.
-
-lemma external_ram_set_arg_8:
-  ∀M: Type[0].
-  ∀cm: M.
-  ∀ps.
-  ∀addr1: [[direct; indirect; registr; acc_a; acc_b ]].
-  ∀result.
-    external_ram M cm (set_arg_8 M cm ps addr1 result) =
-      external_ram M cm ps.
-  [2: /2 by is_in_subvector_is_in_supervector, subaddressing_modein, I/ ]
-  #M #cm #ps #addr1 #result
-  @(subaddressing_mode_elim … addr1) try #w try %
-  whd in ⊢ (??(???%)?); whd in ⊢ (??(???(???%))?); (* XXX: to be understood, slow match *)
-  [1:
-    cases (vsplit bool ???) #nu #nl normalize nodelta
-    cases (vsplit bool ???) #ignore #three_bits normalize nodelta
-    cases (get_index_v bool ????) normalize nodelta try %
-    @external_ram_set_bit_addressable_sfr
-  |2:
-    cases (vsplit bool ???) #nu #nl normalize nodelta
-    cases (vsplit bool ???) #ignore #three_bits normalize nodelta
-    cases (get_index_v bool ????) normalize nodelta %
-  ]
-qed.
-
-lemma special_function_registers_8051_set_clock:
-  ∀M: Type[0].
-  ∀cm: M.
-  ∀ps.
-  ∀t.
-    special_function_registers_8051 M cm (set_clock M cm ps t) =
-      special_function_registers_8051 M cm ps.
-  //
-qed.
-
-lemma get_arg_8_pseudo_addressing_mode_ok:
-  ∀M: internal_pseudo_address_map.
-  ∀cm: pseudo_assembly_program.
-  ∀ps: PreStatus pseudo_assembly_program cm.
-  ∀sigma: Word → Word.
-  ∀policy: Word → bool.
-  ∀addr1: [[registr; direct]].
-    addressing_mode_ok pseudo_assembly_program M cm ps addr1 = true →
-      get_arg_8 (BitVectorTrie Byte 16)
-        (code_memory_of_pseudo_assembly_program cm sigma policy)
-        (status_of_pseudo_status M cm ps sigma policy) true addr1 =
-      get_arg_8 pseudo_assembly_program cm ps true addr1.
-  [2,3: /2 by is_in_subvector_is_in_supervector, subaddressing_modein, I/ ]
-  #M #cm #ps #sigma #policy #addr1
-  @(subaddressing_mode_elim … addr1) #arg whd in ⊢ (? → ???%);
-  [1:
-    whd in ⊢ (??%? → ??%?);
-    whd in match bit_address_of_register; normalize nodelta
-    @pair_elim #un #ln #un_ln_refl
-    lapply (refl_to_jmrefl ??? un_ln_refl) -un_ln_refl #un_ln_refl
-    @(pair_replace ?????????? un_ln_refl)
-    [1:
-      whd in match get_8051_sfr; normalize nodelta
-      whd in match sfr_8051_index; normalize nodelta
-      @eq_f <get_index_v_special_function_registers_8051_not_acc_a
-      try % #absurd destruct(absurd)
-    |2:
-      #assembly_mode_ok_refl
-      >low_internal_ram_of_pseudo_internal_ram_miss
-      [1:
-        %
-      |2:
-        cases (assoc_list_exists ?????) in assembly_mode_ok_refl; normalize nodelta
-        #absurd try % @sym_eq assumption
-      ]
-    ]
-  |2:
-    #addressing_mode_ok_refl whd in ⊢ (??%?);
-    @pair_elim #nu #nl #nu_nl_refl normalize nodelta
-    @pair_elim #ignore #three_bits #ignore_three_bits_refl normalize nodelta
-    inversion (get_index_v bool ????) #get_index_v_refl normalize nodelta
-    [1:
-      whd in ⊢ (??%%); normalize nodelta
-      cases (eqb ??) normalize nodelta [1: % ]
-      cases (eqb ??) normalize nodelta [1: % ]
-      cases (eqb ??) normalize nodelta [1: % ]
-      cases (eqb ??) normalize nodelta [1: % ]
-      cases (eqb ??) normalize nodelta [1:
-        @get_8051_sfr_status_of_pseudo_status
-        #absurd destruct(absurd)
-      ]
-      cases (eqb ??) normalize nodelta [1:
-        @get_8051_sfr_status_of_pseudo_status
-        #absurd destruct(absurd)
-      ]
-      cases (eqb ??) normalize nodelta [1:
-        @get_8051_sfr_status_of_pseudo_status
-        #absurd destruct(absurd)
-      ]
-      cases (eqb ??) normalize nodelta [1:
-        @get_8051_sfr_status_of_pseudo_status
-        #absurd destruct(absurd)
-      ]
-      cases (eqb ??) normalize nodelta [1:
-        @get_8051_sfr_status_of_pseudo_status
-        #absurd destruct(absurd)
-      ]
-      cases (eqb ??) normalize nodelta [1: % ]
-      cases (eqb ??) normalize nodelta [1: % ]
-      cases (eqb ??) normalize nodelta [1: % ]
-      cases (eqb ??) normalize nodelta [1: % ]
-      cases (eqb ??) normalize nodelta [1: % ]
-      cases (eqb ??) normalize nodelta [1:
-        @get_8051_sfr_status_of_pseudo_status
-        #absurd destruct(absurd)
-      ]
-      cases (eqb ??) normalize nodelta [1:
-        @get_8051_sfr_status_of_pseudo_status
-        #absurd destruct(absurd)
-      ]
-      cases (eqb ??) normalize nodelta [1:
-        @get_8051_sfr_status_of_pseudo_status
-        #absurd destruct(absurd)
-      ]
-      cases (eqb ??) normalize nodelta [1:
-        @get_8051_sfr_status_of_pseudo_status
-        #absurd destruct(absurd)
-      ]
-      cases (eqb ??) normalize nodelta [1:
-        @get_8051_sfr_status_of_pseudo_status
-        #absurd destruct(absurd)
-      ]
-      cases (eqb ??) normalize nodelta [1:
-        @get_8051_sfr_status_of_pseudo_status
-        #absurd destruct(absurd)
-      ]
-      cases (eqb ??) normalize nodelta [1:
-        @get_8051_sfr_status_of_pseudo_status
-        #absurd destruct(absurd)
-      ]
-      cases (eqb ??) normalize nodelta [1:
-        @get_8051_sfr_status_of_pseudo_status
-        #absurd destruct(absurd)
-      ]
-      cases (eqb ??) normalize nodelta [1:
-        @get_8051_sfr_status_of_pseudo_status
-        #absurd destruct(absurd)
-      ]
-      cases (eqb ??) normalize nodelta [1:
-        @get_8051_sfr_status_of_pseudo_status
-        #absurd destruct(absurd)
-      ]
-      inversion (eqb ??) #eqb_refl normalize nodelta [1:
-        @get_8051_sfr_status_of_pseudo_status lapply addressing_mode_ok_refl
-        whd in ⊢ (??%? → ?); <(eqb_true_to_eq … eqb_refl)
-        >bitvector_of_nat_inverse_nat_of_bitvector >eq_bv_refl normalize nodelta
-        #assoc_list_assm cases (conjunction_true … assoc_list_assm) #_
-        #relevant #_ cases (eq_accumulator_address_map_entry_true_to_eq … relevant) %
-      ]
-      cases (eqb ??) normalize nodelta [1:
-        @get_8051_sfr_status_of_pseudo_status
-        #absurd destruct(absurd)
-      ] %
-    |2:
-      lapply addressing_mode_ok_refl whd in ⊢ (??%? → ?); #relevant
-      whd in match status_of_pseudo_status; normalize nodelta
-      >low_internal_ram_of_pseudo_internal_ram_miss try %
-      cut(arg = false:::(three_bits@@nl))
-      [1:
-        <get_index_v_refl
-        cut(nu=get_index_v bool 4 nu O (le_S_S O 3 (le_O_n 3)):::three_bits)
-        [1:
-          cut(ignore = [[get_index_v bool 4 nu 0 ?]])
-          [1:
-            @le_S_S @le_O_n
-          |2:
-            cut(ignore = \fst (vsplit bool 1 3 nu))
-            [1:
-              >ignore_three_bits_refl %
-            |2:
-              #ignore_refl >ignore_refl
-              cases (bitvector_cases_hd_tl … nu) #hd * #tl #nu_refl
-              >nu_refl %
-            ]
-          |3:
-            #ignore_refl >ignore_refl in ignore_three_bits_refl;
-            #relevant lapply (vsplit_ok ?????? (sym_eq … relevant))
-            #nu_refl <nu_refl %
-          ]
-        |2:
-          #nu_refl change with (? = (?:::three_bits)@@?) <nu_refl
-          @sym_eq @vsplit_ok >nu_nl_refl %
-        ]
-      |2:
-        #arg_refl <arg_refl cases (assoc_list_exists ?????) in relevant;
-        normalize nodelta
-        [1:
-          cases (eq_bv ???) normalize #absurd destruct(absurd)
-        |2:
-          #_ %
-        ]
-      ]
-    ]
-  ]
-qed.
-
-lemma special_function_registers_8051_set_program_counter:
-  ∀M: Type[0].
-  ∀cm: M.
-  ∀ps.
-  ∀pc: Word.
-    special_function_registers_8051 M cm (set_program_counter M cm ps pc) =
-      special_function_registers_8051 M cm ps.
-  //
-qed.
-
-lemma special_function_registers_8052_set_program_counter:
-  ∀M: Type[0].
-  ∀cm: M.
-  ∀ps.
-  ∀pc: Word.
-    special_function_registers_8052 M cm (set_program_counter M cm ps pc) =
-      special_function_registers_8052 M cm ps.
-  //
-qed.
-
-lemma set_index_set_index_commutation:
-  ∀A: Type[0].
-  ∀n: nat.
-  ∀v: Vector A n.
-  ∀m, o: nat.
-  ∀m_lt_proof: m < n.
-  ∀o_lt_proof: o < n.
-  ∀e, f: A.
-    m ≠ o →
-      set_index A n (set_index A n v o f o_lt_proof) m e m_lt_proof =
-        set_index A n (set_index A n v m e m_lt_proof) o f o_lt_proof.
-  #A #n #v elim v
-  [1:
-    #m #o #m_lt_proof
-    normalize in m_lt_proof; cases (lt_to_not_zero … m_lt_proof)
-  |2:
-    #n' #hd #tl #inductive_hypothesis
-    #m #o
-    cases m cases o
-    [1:
-      #m_lt_proof #o_lt_proof #e #f #absurd @⊥ cases absurd #relevant
-      @relevant %
-    |2,3:
-      #o' normalize //
-    |4:
-      #m' #o' #m_lt_proof #o_lt_proof #e #f #o_neq_m_assm
-      normalize @eq_f @inductive_hypothesis @nmk #relevant
-      >relevant in o_neq_m_assm; #relevant @(absurd ?? relevant) %
-    ]
-  ]
-qed.
-
-lemma special_function_registers_8051_sfr_8051_of_pseudo_sfr_8051:
-  ∀M: internal_pseudo_address_map.
-  ∀cm: pseudo_assembly_program.
-  ∀ps.
-  ∀sigma: Word → Word.
-  ∀policy: Word → bool.
-  ∀sfr.
-  ∀result: Byte.
-    eqb (sfr_8051_index sfr) (sfr_8051_index SFR_ACC_A) = false →
-      special_function_registers_8051 (BitVectorTrie Byte 16)
-        (code_memory_of_pseudo_assembly_program cm sigma policy)
-        (set_8051_sfr (BitVectorTrie Byte 16)
-        (code_memory_of_pseudo_assembly_program cm sigma policy)
-        (status_of_pseudo_status M cm ps sigma policy) sfr result) =
-      sfr_8051_of_pseudo_sfr_8051 M
-        (special_function_registers_8051 pseudo_assembly_program cm
-        (set_8051_sfr pseudo_assembly_program cm ps sfr result)) sigma.
-  #M #cm #ps #sigma #policy #sfr #result #sfr_neq_assm
-  whd in match (set_8051_sfr ?????);
-  cases M #callM * try % #upper_lower #address
-  whd in match (special_function_registers_8051 ???);
-  whd in match (sfr_8051_of_pseudo_sfr_8051 ???);
-  @pair_elim #high #low #high_low_refl normalize nodelta
-  cases (eq_upper_lower ??) normalize nodelta
-  whd in match (set_8051_sfr ?????);
-  @set_index_set_index_commutation @nmk #relevant
-  @(absurd ? relevant (eqb_false_to_not_eq ?? sfr_neq_assm))
-qed.
-
-lemma special_function_registers_8051_set_arg_8:
-  ∀M: internal_pseudo_address_map.
-  ∀cm: pseudo_assembly_program.
-  ∀ps.
-  ∀sigma: Word → Word.
-  ∀policy: Word → bool.
-  ∀addr1: [[ registr; direct ]].
-  ∀result.
-    addressing_mode_ok pseudo_assembly_program M cm ps addr1 = true →
-    special_function_registers_8051 (BitVectorTrie Byte 16)
-      (code_memory_of_pseudo_assembly_program cm sigma policy)
-      (set_arg_8 (BitVectorTrie Byte 16)
-        (code_memory_of_pseudo_assembly_program cm sigma policy)
-        (status_of_pseudo_status M cm ps sigma policy) addr1 result) =
-   sfr_8051_of_pseudo_sfr_8051 M
-     (special_function_registers_8051 pseudo_assembly_program cm
-     (set_arg_8 pseudo_assembly_program cm ps addr1 result)) sigma.
-  cases daemon
-(*
-  [2,3: /2 by is_in_subvector_is_in_supervector, subaddressing_modein, I/ ]
-  #M #cm #ps #sigma #policy #addr1 #result
-  @(subaddressing_mode_elim … addr1) #w #addressing_mode_ok_refl try %
-  whd in match (set_arg_8 ?????); whd in ⊢ (??(???(???%))?); 
-  whd in match (set_arg_8 ?????) in ⊢ (???%); whd in ⊢ (???(??(???(???%))?));
-  cases (vsplit bool ???) #nu #nl normalize nodelta
-  cases (vsplit bool ???) #ignore #three_bits normalize nodelta
-  cases (get_index_v bool ????) normalize nodelta try %
-  whd in match (set_bit_addressable_sfr ?????); whd in match (set_bit_addressable_sfr ?????) in ⊢ (???%);
-  cases (eqb ??) normalize nodelta [1: cases not_implemented ]
-  cases (eqb ??) normalize nodelta [1: % ]
-  cases (eqb ??) normalize nodelta [1: cases not_implemented ]
-  cases (eqb ??) normalize nodelta [1: % ]
-  cases (eqb ??) normalize nodelta [1: @special_function_registers_8051_sfr_8051_of_pseudo_sfr_8051 %  ]
-  cases (eqb ??) normalize nodelta [1: @special_function_registers_8051_sfr_8051_of_pseudo_sfr_8051 %  ]
-  cases (eqb ??) normalize nodelta [1: @special_function_registers_8051_sfr_8051_of_pseudo_sfr_8051 %  ]
-  cases (eqb ??) normalize nodelta [1: @special_function_registers_8051_sfr_8051_of_pseudo_sfr_8051 %  ]
-  cases (eqb ??) normalize nodelta [1: @special_function_registers_8051_sfr_8051_of_pseudo_sfr_8051 %  ]
-  cases (eqb ??) normalize nodelta [1: % ]
-  cases (eqb ??) normalize nodelta [1: % ]
-  cases (eqb ??) normalize nodelta [1: % ]
-  cases (eqb ??) normalize nodelta [1: % ]
-  cases (eqb ??) normalize nodelta [1: % ]
-  cases (eqb ??) normalize nodelta [1: @special_function_registers_8051_sfr_8051_of_pseudo_sfr_8051 %  ]
-  cases (eqb ??) normalize nodelta [1: @special_function_registers_8051_sfr_8051_of_pseudo_sfr_8051 %  ]
-  cases (eqb ??) normalize nodelta [1: @special_function_registers_8051_sfr_8051_of_pseudo_sfr_8051 %  ]
-  cases (eqb ??) normalize nodelta [1: @special_function_registers_8051_sfr_8051_of_pseudo_sfr_8051 %  ]
-  cases (eqb ??) normalize nodelta [1: @special_function_registers_8051_sfr_8051_of_pseudo_sfr_8051 %  ]
-  cases (eqb ??) normalize nodelta [1: @special_function_registers_8051_sfr_8051_of_pseudo_sfr_8051 %  ]
-  cases (eqb ??) normalize nodelta [1: @special_function_registers_8051_sfr_8051_of_pseudo_sfr_8051 %  ]
-  cases (eqb ??) normalize nodelta [1: @special_function_registers_8051_sfr_8051_of_pseudo_sfr_8051 %  ]
-  cases (eqb ??) normalize nodelta [1: @special_function_registers_8051_sfr_8051_of_pseudo_sfr_8051 %  ]
-  cases (eqb ??) normalize nodelta [1: @special_function_registers_8051_sfr_8051_of_pseudo_sfr_8051 %  ]
-  inversion (eqb ??) #eqb_refl normalize nodelta [1:
-    whd in addressing_mode_ok_refl:(??%?); <(eqb_true_to_eq … eqb_refl) in addressing_mode_ok_refl;
-    >bitvector_of_nat_inverse_nat_of_bitvector >eq_bv_refl normalize nodelta
-    #relevant cases (conjunction_true … relevant) #_ #eq_acc_assm
-    whd in match (status_of_pseudo_status ?????);
-    whd in match sfr_8051_of_pseudo_sfr_8051; normalize nodelta
-    >(eq_accumulator_address_map_entry_true_to_eq … eq_acc_assm) normalize nodelta %
-  ]
-  cases (eqb ??) normalize nodelta [1: @special_function_registers_8051_sfr_8051_of_pseudo_sfr_8051 %  ]
-  cases not_implemented *)
-qed.
-
 include alias "ASM/Vector.ma".
+include "ASM/Test.ma".
 
 lemma main_lemma_preinstruction:

src/ASM/Status.ma

@@ -546 +546 @@
     set_8051_sfr ?? status SFR_SP (bitvector_of_nat 8 7).
   
-definition get_bit_addressable_sfr ≝
-  λM: Type[0].
-  λcode_memory:M.
-  λs: PreStatus M code_memory.
-  λn: nat.
-  λb: BitVector n.
+
+definition sfr_of_Byte: Byte → option (SFR8051 + SFR8052) ≝
+  λb: Byte.
+    let address ≝ nat_of_bitvector … b in
+      if (eqb address 128) then None ?
+      else if (eqb address 144) then Some … (inl … SFR_P1)
+      else if (eqb address 160) then None ?
+      else if (eqb address 176) then Some … (inl … SFR_P3)
+      else if (eqb address 153) then Some … (inl … SFR_SBUF)
+      else if (eqb address 138) then Some … (inl … SFR_TL0)
+      else if (eqb address 139) then Some … (inl … SFR_TL1)
+      else if (eqb address 140) then Some … (inl … SFR_TH0)
+      else if (eqb address 141) then Some … (inl … SFR_TH1)
+      else if (eqb address 200) then Some … (inr … SFR_T2CON)
+      else if (eqb address 202) then Some … (inr … SFR_RCAP2L)
+      else if (eqb address 203) then Some … (inr … SFR_RCAP2H)
+      else if (eqb address 204) then Some … (inr … SFR_TL2)
+      else if (eqb address 205) then Some … (inr … SFR_TH2)
+      else if (eqb address 135) then Some … (inl … SFR_PCON)
+      else if (eqb address 136) then Some … (inl … SFR_TCON)
+      else if (eqb address 137) then Some … (inl … SFR_TMOD)
+      else if (eqb address 152) then Some … (inl … SFR_SCON)
+      else if (eqb address 168) then Some … (inl … SFR_IE)
+      else if (eqb address 184) then Some … (inl … SFR_IP)
+      else if (eqb address 129) then Some … (inl … SFR_SP)
+      else if (eqb address 130) then Some … (inl … SFR_DPL)
+      else if (eqb address 131) then Some … (inl … SFR_DPH)
+      else if (eqb address 208) then Some … (inl … SFR_PSW)
+      else if (eqb address 224) then Some … (inl … SFR_ACC_A)
+      else if (eqb address 240) then Some … (inl … SFR_ACC_B)
+      else None ?.
+
+definition get_bit_addressable_sfr:
+    ∀M: Type[0]. ∀code_memory: M. ∀s: PreStatus M code_memory. Byte → bool → Byte ≝
+  λM: Type[0].
+  λcode_memory:M.
+  λs: PreStatus M code_memory.
+  λb: Byte.
   λl: bool.
-    let address ≝ nat_of_bitvector … b in
-      if (eqb address 128) then
-        ?
-      else if (eqb address 144) then
+  match sfr_of_Byte b with
+  [ None ⇒ match not_implemented in False with [ ]
+  | Some sfr8051_8052 ⇒
+    match sfr8051_8052 with
+    [ inl sfr ⇒
+      match sfr with
+      [ SFR_P1 ⇒
         if l then
-          (p1_latch ?? s)
+          p1_latch … s
         else
-          (get_8051_sfr ?? s SFR_P1)
-      else if (eqb address 160) then
-        ?
-      else if (eqb address 176) then
+          get_8051_sfr … s SFR_P1
+      | SFR_P3 ⇒
         if l then
-          (p3_latch ?? s)
+          p3_latch … s
         else
-          (get_8051_sfr ?? s SFR_P3)
-      else if (eqb address 153) then
-        get_8051_sfr ?? s SFR_SBUF
-      else if (eqb address 138) then
-        get_8051_sfr ?? s SFR_TL0
-      else if (eqb address 139) then
-        get_8051_sfr ?? s SFR_TL1
-      else if (eqb address 140) then
-        get_8051_sfr ?? s SFR_TH0
-      else if (eqb address 141) then
-        get_8051_sfr ?? s SFR_TH1
-      else if (eqb address 200) then
-        get_8052_sfr ?? s SFR_T2CON
-      else if (eqb address 202) then
-        get_8052_sfr ?? s SFR_RCAP2L
-      else if (eqb address 203) then
-        get_8052_sfr ?? s SFR_RCAP2H
-      else if (eqb address 204) then
-        get_8052_sfr ?? s SFR_TL2
-      else if (eqb address 205) then
-        get_8052_sfr ?? s SFR_TH2
-      else if (eqb address 135) then
-        get_8051_sfr ?? s SFR_PCON
-      else if (eqb address 136) then
-        get_8051_sfr ?? s SFR_TCON
-      else if (eqb address 137) then
-        get_8051_sfr ?? s SFR_TMOD
-      else if (eqb address 152) then
-        get_8051_sfr ?? s SFR_SCON
-      else if (eqb address 168) then
-        get_8051_sfr ?? s SFR_IE
-      else if (eqb address 184) then
-        get_8051_sfr ?? s SFR_IP
-      else if (eqb address 129) then
-        get_8051_sfr ?? s SFR_SP
-      else if (eqb address 130) then
-        get_8051_sfr ?? s SFR_DPL
-      else if (eqb address 131) then
-        get_8051_sfr ?? s SFR_DPH
-      else if (eqb address 208) then
-        get_8051_sfr ?? s SFR_PSW
-      else if (eqb address 224) then
-        get_8051_sfr ?? s SFR_ACC_A
-      else if (eqb address 240) then
-        get_8051_sfr ?? s SFR_ACC_B
-      else
-        ?.
-      cases not_implemented
-qed.
-
-definition set_bit_addressable_sfr':
-    ∀M: Type[0]. ∀code_memory: M. ∀s: PreStatus M code_memory. Byte → Byte →
-      Σs':PreStatus M code_memory.
-        clock … code_memory s = clock … code_memory s' ∧
-        program_counter … code_memory s = program_counter … code_memory s' ≝
+          get_8051_sfr … s SFR_P3
+      | _ ⇒ get_8051_sfr … s sfr
+      ]
+    | inr sfr ⇒ get_8052_sfr M code_memory s sfr
+    ]
+  ].
+
+definition set_bit_addressable_sfr:
+    ∀M: Type[0]. ∀code_memory: M. ∀s: PreStatus M code_memory. Byte → Byte → PreStatus M code_memory ≝
   λM: Type[0].
   λcode_memory:M.
@@ -627 +614 @@
   λb: Byte.
   λv: Byte.
-    let address ≝ nat_of_bitvector … b in
-      if (eqb address 128) then
-        match not_implemented in False with [ ]
-      else if (eqb address 144) then
-        let status_1 ≝ set_8051_sfr ?? s SFR_P1 v in
-        let status_2 ≝ set_p1_latch ?? s v in
-          status_2
-      else if (eqb address 160) then
-        match not_implemented in False with [ ]
-      else if (eqb address 176) then
-        let status_1 ≝ set_8051_sfr ?? s SFR_P3 v in
-        let status_2 ≝ set_p3_latch ?? s v in
-          status_2
-      else if (eqb address 153) then
-        set_8051_sfr ?? s SFR_SBUF v
-      else if (eqb address 138) then
-        set_8051_sfr ?? s SFR_TL0 v
-      else if (eqb address 139) then
-        set_8051_sfr ?? s SFR_TL1 v
-      else if (eqb address 140) then
-        set_8051_sfr ?? s SFR_TH0 v
-      else if (eqb address 141) then
-        set_8051_sfr ?? s SFR_TH1 v
-      else if (eqb address 200) then
-        set_8052_sfr ?? s SFR_T2CON v
-      else if (eqb address 202) then
-        set_8052_sfr ?? s SFR_RCAP2L v
-      else if (eqb address 203) then
-        set_8052_sfr ?? s SFR_RCAP2H v
-      else if (eqb address 204) then
-        set_8052_sfr ?? s SFR_TL2 v
-      else if (eqb address 205) then
-        set_8052_sfr ?? s SFR_TH2 v
-      else if (eqb address 135) then
-        set_8051_sfr ?? s SFR_PCON v
-      else if (eqb address 136) then
-        set_8051_sfr ?? s SFR_TCON v
-      else if (eqb address 137) then
-        set_8051_sfr ?? s SFR_TMOD v
-      else if (eqb address 152) then
-        set_8051_sfr ?? s SFR_SCON v
-      else if (eqb address 168) then
-        set_8051_sfr ?? s SFR_IE v
-      else if (eqb address 184) then
-        set_8051_sfr ?? s SFR_IP v
-      else if (eqb address 129) then
-        set_8051_sfr ?? s SFR_SP v
-      else if (eqb address 130) then
-        set_8051_sfr ?? s SFR_DPL v
-      else if (eqb address 131) then
-        set_8051_sfr ?? s SFR_DPH v
-      else if (eqb address 208) then
-        set_8051_sfr ?? s SFR_PSW v
-      else if (eqb address 224) then
-        set_8051_sfr ?? s SFR_ACC_A v
-      else if (eqb address 240) then
-        set_8051_sfr ?? s SFR_ACC_B v
-      else
-        match not_implemented in False with [ ].
-  /2 by refl, pair_destruct/
-qed.
-
-definition set_bit_addressable_sfr:
-    ∀M: Type[0]. ∀code_memory: M. ∀s: PreStatus M code_memory. Byte → Byte →
-      PreStatus M code_memory ≝ set_bit_addressable_sfr'.
+   match sfr_of_Byte b with
+   [ None ⇒ match not_implemented in False with [ ]
+   | Some sfr8051_8052 ⇒
+      match sfr8051_8052 with
+      [ inl sfr ⇒
+         match sfr with
+         [ SFR_P1 ⇒
+           let status_1 ≝ set_8051_sfr ?? s SFR_P1 v in
+           set_p1_latch ?? s v
+         | SFR_P3 ⇒
+           let status_1 ≝ set_8051_sfr ?? s SFR_P3 v in
+           set_p3_latch ?? s v
+         | _ ⇒ set_8051_sfr ?? s sfr v ]
+      | inr sfr ⇒ set_8052_sfr ?? s sfr v ]].
 
 lemma clock_set_bit_addressable_sfr:
@@ -697 +633 @@
         clock … code_memory s = clock … code_memory (set_bit_addressable_sfr M code_memory s b v).
   #M #code_memory #s #b #v whd in match (set_bit_addressable_sfr ?????);
-  cases (set_bit_addressable_sfr' ?????) #s' * //
+  cases (sfr_of_Byte ?)
+  [1:
+    normalize nodelta cases not_implemented
+  |2:
+    * * normalize nodelta %
+  ]
 qed.
 
@@ -704 +645 @@
         program_counter … code_memory s = program_counter … code_memory (set_bit_addressable_sfr M code_memory s b v).
   #M #code_memory #s #b #v whd in match (set_bit_addressable_sfr ?????);
-  cases (set_bit_addressable_sfr' ?????) #s' * //
+  cases (sfr_of_Byte ?)
+  [1:
+    normalize nodelta cases not_implemented
+  |2:
+    * * %
+  ]
 qed.
 
@@ -863 +809 @@
           let dptr ≝ (get_8051_sfr ?? s SFR_DPH) @@ (get_8051_sfr ?? s SFR_DPL) in
           let padded_acc ≝ pad 8 8 (get_8051_sfr ?? s SFR_ACC_A) in
-          let 〈 carry, address 〉 ≝ half_add 16 dptr padded_acc in
+          let 〈carry, address〉 ≝ half_add 16 dptr padded_acc in
             lookup ? 16 address (external_ram ?? s) (zero 8)
       | ACC_PC ⇒
@@ -872 +818 @@
       | DIRECT d ⇒
         λdirect: True.
-          let 〈 nu, nl 〉 ≝ vsplit ? 4 4 d in
-          let bit_one ≝ get_index_v ? ? nu 0 ? in
-          let 〈 ignore, three_bits 〉 ≝ vsplit ? 1 3 nu in
-            match bit_one with
-              [ false ⇒
-                  let address ≝ three_bits @@ nl in
-                    lookup ? 7 address (low_internal_ram ?? s) (zero 8)
-              | true ⇒ get_bit_addressable_sfr ?? s 8 d l
-              ]
+          let 〈hd, seven_bits〉 ≝ vsplit bool 1 7 d in
+            match head' … hd with
+            [ true ⇒ get_bit_addressable_sfr m cm s (true:::seven_bits) l
+            | false ⇒ lookup ? 7 seven_bits (low_internal_ram … s) (zero …)
+            ]
       | INDIRECT i ⇒
         λindirect: True.
-          let 〈 nu, nl 〉 ≝ vsplit ? 4 4 (get_register ?? s [[ false; false; i]]) in
-          let 〈 bit_one_v, three_bits 〉 ≝ vsplit ? 1 3 nu in
-          let bit_1 ≝ get_index_v ?? bit_one_v O ? in
-          match  bit_1 with
-            [ false ⇒
-                lookup ? 7 (three_bits @@ nl) (low_internal_ram ?? s) (zero 8)
-            | true ⇒ 
-                lookup ? 7 (three_bits @@ nl) (high_internal_ram ?? s) (zero 8)
+          let 〈hd, seven_bits〉 ≝ vsplit bool 1 7 (get_register … s [[false;false;i]]) in
+            match head' … hd with
+            [ true ⇒ lookup ? 7 seven_bits (high_internal_ram … s) (zero …)
+            | false ⇒ lookup ? 7 seven_bits (low_internal_ram … s) (zero …)
             ]
       | _ ⇒ λother.
         match other in False with [ ]
       ] (subaddressing_modein … a).
-  [1,2:
-     normalize
-     repeat (@ le_S_S)
-     @ le_O_n
-  ]
-qed.
-
-definition set_arg_8': ∀M: Type[0]. ∀code_memory:M. ∀s:PreStatus M code_memory. ∀addr: [[ direct ; indirect ; registr ;
+
+definition set_arg_8: ∀M: Type[0]. ∀code_memory:M. ∀s:PreStatus M code_memory. ∀addr: [[ direct ; indirect ; registr ;
                                    acc_a ; acc_b ; ext_indirect ;
-                                   ext_indirect_dptr ]]. Byte → Σs':PreStatus M code_memory.
-                                   clock … code_memory s = clock … code_memory s' ∧
-                                   (¬(is_a … direct addr) → p1_latch … code_memory s = p1_latch … code_memory s') ∧
-                                   (¬(is_a … direct addr) → p3_latch … code_memory s = p3_latch … code_memory s') ∧
-                                   program_counter … code_memory s = program_counter … code_memory s' ∧
-                                   (¬(is_a … direct addr) → special_function_registers_8052 … code_memory s = special_function_registers_8052 … code_memory s') ≝
+                                   ext_indirect_dptr ]]. Byte → PreStatus M code_memory ≝
   λm, cm, s, a, v.
     match a return λx. bool_to_Prop (is_in ? [[ direct ; indirect ; registr ;
                                                 acc_a ; acc_b ; ext_indirect ;
                                                 ext_indirect_dptr ]] x) →
-                   Σs':PreStatus m cm. ?
-                   (*CSC: bug here if one specified the two clock above*)
+                   PreStatus m cm
             with
       [ DIRECT d ⇒
         λdirect: True.
-          let 〈 nu, nl 〉 ≝ vsplit … 4 4 d in
-          let bit_one ≝ get_index_v ? ? nu 0 ? in
-          let 〈 ignore, three_bits 〉 ≝ vsplit ? 1 3 nu in
-            match bit_one with
-              [ true ⇒ set_bit_addressable_sfr ?? s d v
+          let 〈 bit_one, seven_bits 〉 ≝ vsplit ? 1 7 d in
+            match head' … bit_one with
+              [ true ⇒ set_bit_addressable_sfr ?? s (true:::seven_bits) v
               | false ⇒
-                let memory ≝ insert ? 7 (three_bits @@ nl) v (low_internal_ram ?? s) in
+                let memory ≝ insert ? 7 seven_bits v (low_internal_ram ?? s) in
                   set_low_internal_ram ?? s memory
               ]
@@ -931 +855 @@
         λindirect: True.
           let register ≝ get_register ?? s [[ false; false; i ]] in
-          let 〈nu, nl〉 ≝ vsplit ? 4 4 register in
-          let bit_1 ≝ get_index_v … nu 0 ? in
-          let 〈ignore, three_bits〉 ≝ vsplit ? 1 3 nu in
-            match bit_1 with
+          let 〈bit_one, seven_bits〉 ≝ vsplit ? 1 7 register in
+            match head' … bit_one with
               [ false ⇒
-                let memory ≝ insert … (three_bits @@ nl) v (low_internal_ram ?? s) in
+                let memory ≝ insert … seven_bits v (low_internal_ram ?? s) in
                   set_low_internal_ram ?? s memory
               | true ⇒ 
-                let memory ≝ insert … (three_bits @@ nl) v (high_internal_ram ?? s) in
+                let memory ≝ insert … seven_bits v (high_internal_ram ?? s) in
                   set_high_internal_ram ?? s memory
               ]
@@ -960 +882 @@
           match other in False with [ ]
       ] (subaddressing_modein … a).
-  /6 by conj, False_ind/
-qed.
-
-definition set_arg_8: ∀M: Type[0]. ∀code_memory:M. ∀s:PreStatus M code_memory. [[ direct ; indirect ; registr ; acc_a ; acc_b ; ext_indirect ; ext_indirect_dptr ]] → Byte → PreStatus M code_memory ≝
- set_arg_8'.
 
 lemma clock_set_arg_8: ∀M,cm,s,x,v. clock M cm s = clock … (set_arg_8 M cm s x v).
- #M #cm #s #x #v whd in match set_arg_8; normalize nodelta
- cases (set_arg_8' ?????) #s' * * * * //
+  cases daemon
 qed.
 
 lemma program_counter_set_arg_8: ∀M,cm,s,x,v. program_counter M cm s = program_counter … (set_arg_8 M cm s x v).
- #M #cm #s #x #v whd in match set_arg_8; normalize nodelta
- cases (set_arg_8' ?????) #s' * * * * //
+  cases daemon
 qed.
 
@@ -979 +894 @@
   [2: /2 by subaddressing_modein, orb_Prop_r/ ]
   #M #cm #s #x #v whd in match set_arg_8; normalize nodelta
-  cases (set_arg_8' ?????) #s' @(subaddressing_mode_elim … x) [1,2,5: #w ]
-  * * * * #_ #relevant #_ #_ #_ @relevant @I 
+  cases daemon
 qed.
 
@@ -986 +900 @@
   [2: /2 by subaddressing_modein, orb_Prop_r/ ]
   #M #cm #s #x #v whd in match set_arg_8; normalize nodelta
-  cases (set_arg_8' ?????) #s' @(subaddressing_mode_elim … x) [1,2,5: #w ]
-  * * * * #_ #_ #relevant #_ #_ @relevant @I
+  cases daemon
 qed.
 
@@ -993 +906 @@
   [2: /2 by subaddressing_modein, orb_Prop_r/ ]
   #M #cm #s #x #v whd in match set_arg_8; normalize nodelta
-  cases (set_arg_8' ?????) #s' @(subaddressing_mode_elim … x) [1,2,5: #w ]
-  * * * * #_ #_ #_ #_ #relevant @relevant @I
+  cases daemon
 qed.
 
@@ -1056 +968 @@
       [ BIT_ADDR b ⇒
         λbit_addr: True.
-          let 〈 nu, nl 〉 ≝ vsplit … 4 4 b in
-          let bit_1 ≝ get_index_v ? ? nu 0 ? in
-          let 〈 bit_one_v, three_bits 〉 ≝ vsplit ? 1 3 nu in
-            match bit_1 with
-              [ true ⇒
-                let address ≝ nat_of_bitvector … (three_bits @@ nl) in
-                let d ≝ address ÷ 8 in
-                let m ≝ address mod 8 in
-                let trans ≝ bitvector_of_nat 8 ((d * 8) + 128) in
-                let sfr ≝ get_bit_addressable_sfr ?? s ? trans l in
-                  get_index_v … sfr m ?
-              | false ⇒
-                let address ≝ nat_of_bitvector … (three_bits @@ nl) in
-                let address' ≝ bitvector_of_nat 7 ((address ÷ 8) + 32) in
-                let t ≝ lookup … 7 address' (low_internal_ram ?? s) (zero 8) in
-                  get_index_v … t (modulus address 8) ? 
-              ]
+        let 〈bit_1, seven_bits〉 ≝ vsplit … 1 7 b in
+        match head' … bit_1 with
+        [ true ⇒
+          let address ≝ nat_of_bitvector … seven_bits in
+          let d ≝ address ÷ 8 in
+          let m ≝ address mod 8 in
+          let trans ≝ bitvector_of_nat 8 ((d * 8) + 128) in
+          let sfr ≝ get_bit_addressable_sfr ?? s trans l in
+            get_index_v … sfr m ?
+        | false ⇒
+          let address ≝ nat_of_bitvector … seven_bits in
+          let address' ≝ bitvector_of_nat 7 ((address ÷ 8) + 32) in
+          let t ≝ lookup … 7 address' (low_internal_ram ?? s) (zero 8) in
+            get_index_v … t (modulus address 8) ? 
+        ]
       | N_BIT_ADDR n ⇒
         λn_bit_addr: True.
-          let 〈 nu, nl 〉 ≝ vsplit … 4 4 n in
-          let bit_1 ≝ get_index_v ? ? nu 0 ? in
-          let 〈 bit_one_v, three_bits 〉 ≝ vsplit ? 1 3 nu in
-            match bit_1 with
-              [ true ⇒
-                let address ≝ nat_of_bitvector … (three_bits @@ nl) in
-                let d ≝ address ÷ 8 in
-                let m ≝ address mod 8 in
-                let trans ≝ bitvector_of_nat 8 ((d * 8) + 128) in
-                let sfr ≝ get_bit_addressable_sfr ?? s ? trans l in
-                  ¬(get_index_v … sfr m ?)
-              | false ⇒
-                let address ≝ nat_of_bitvector … (three_bits @@ nl) in
-                let address' ≝ bitvector_of_nat 7 ((address ÷ 8) + 32) in
-                let trans ≝ lookup ? 7 address' (low_internal_ram ?? s) (zero 8) in
-                  ¬(get_index_v … trans (modulus address 8) ?)
-              ]
+        let 〈bit_1, seven_bits〉 ≝ vsplit … 1 7 n in
+        match head' … bit_1 with
+        [ true ⇒
+          let address ≝ nat_of_bitvector … seven_bits in
+          let d ≝ address ÷ 8 in
+          let m ≝ address mod 8 in
+          let trans ≝ bitvector_of_nat 8 ((d * 8) + 128) in
+          let sfr ≝ get_bit_addressable_sfr ?? s trans l in
+            ¬(get_index_v … sfr m ?)
+        | false ⇒
+          let address ≝ nat_of_bitvector … seven_bits in
+          let address' ≝ bitvector_of_nat 7 ((address ÷ 8) + 32) in
+          let t ≝ lookup … 7 address' (low_internal_ram ?? s) (zero 8) in
+            ¬(get_index_v … t (modulus address 8) ?)
+        ]
       | CARRY ⇒ λcarry: True. get_cy_flag ?? s
       | _ ⇒ λother.
         match other in False with [ ]
       ] (subaddressing_modein … a).
-      [3,6:
-         normalize
-         repeat (@ le_S_S)
-         @ le_O_n
-      |1,2,4,5:
-         @modulus_less_than
-      ]
+      @modulus_less_than
 qed.
       
-definition set_arg_1': ∀M: Type[0]. ∀code_memory:M. ∀s:PreStatus M code_memory. [[bit_addr; carry]] → Bit → Σs':PreStatus M code_memory. clock ? code_memory s = clock ? code_memory s' ≝
+definition set_arg_1: ∀M: Type[0]. ∀code_memory:M. ∀s:PreStatus M code_memory. [[bit_addr; carry]] → Bit → PreStatus M code_memory ≝
   λm: Type[0].
   λcm.
@@ -1111 +1013 @@
   λa: [[bit_addr; carry]].
   λv: Bit.
-    match a return λx. bool_to_Prop (is_in ? [[bit_addr ; carry]] x) → Σs'. clock m cm s = clock m cm s' with
+    match a return λx. bool_to_Prop (is_in ? [[bit_addr ; carry]] x) → ? with
       [ BIT_ADDR b ⇒ λbit_addr: True.
-        let 〈nu, nl〉 ≝ vsplit ? 4 4 (get_8051_sfr ?? s SFR_PSW) in
-        let bit_1 ≝ get_index_v ?? nu 0 ? in
-        let 〈ignore, three_bits〉 ≝ vsplit ? 1 3 nu in
-        match bit_1 return λ_. ? with
-          [ true ⇒
-            let address ≝ nat_of_bitvector … (three_bits @@ nl) in
-            let d ≝ address ÷ 8 in
-            let m ≝ address mod 8 in
-            let t ≝ bitvector_of_nat 8 ((d * 8) + 128) in
-            let sfr ≝ get_bit_addressable_sfr ?? s ? t true in
-            let new_sfr ≝ set_index … sfr m v ? in
-              set_bit_addressable_sfr ?? s new_sfr t
-          | false ⇒
-            let address ≝ nat_of_bitvector … (three_bits @@ nl) in
-            let address' ≝ bitvector_of_nat 7 ((address ÷ 8) + 32) in
-            let t ≝ lookup ? 7 address' (low_internal_ram ?? s) (zero 8) in
-            let n_bit ≝ set_index … t (modulus address 8) v ? in
-            let memory ≝ insert ? 7 address' n_bit (low_internal_ram ?? s) in
-              set_low_internal_ram ?? s memory
-          ]
+        let 〈bit_1, seven_bits〉 ≝ vsplit bool 1 7 (get_8051_sfr … s SFR_PSW) in
+        match head' … bit_1 with
+        [ true ⇒
+          let address ≝ nat_of_bitvector … seven_bits in
+          let d ≝ address ÷ 8 in
+          let m ≝ address mod 8 in
+          let t ≝ bitvector_of_nat 8 ((d * 8) + 128) in
+          let sfr ≝ get_bit_addressable_sfr … s t true in
+          let new_sfr ≝ set_index … sfr m v ? in
+            set_bit_addressable_sfr … s new_sfr t
+        | false ⇒
+          let address ≝ nat_of_bitvector … seven_bits in
+          let address' ≝ bitvector_of_nat 7 ((address ÷ 8) + 32) in
+          let t ≝ lookup ? 7 address' (low_internal_ram ?? s) (zero 8) in
+          let n_bit ≝ set_index … t (modulus address 8) v ? in
+          let memory ≝ insert ? 7 address' n_bit (low_internal_ram ?? s) in
+            set_low_internal_ram … s memory
+        ]
       | CARRY ⇒
         λcarry: True.
-        let 〈nu, nl〉 ≝ vsplit ? 4 4 (get_8051_sfr ?? s SFR_PSW) in
-        let bit_1 ≝ get_index_v… nu 1 ? in
-        let bit_2 ≝ get_index_v… nu 2 ? in
-        let bit_3 ≝ get_index_v… nu 3 ? in
-        let new_psw ≝ [[ v; bit_1 ; bit_2; bit_3 ]] @@ nl in
+        let 〈ignore, seven_bits〉 ≝ vsplit bool 1 7 (get_8051_sfr … s SFR_PSW) in
+        let new_psw ≝ v:::seven_bits in
           set_8051_sfr ?? s SFR_PSW new_psw
       | _ ⇒
@@ -1146 +1043 @@
             [ ]
       ] (subaddressing_modein … a).
-try (repeat @le_S_S @le_O_n)
-/by/
-qed.
-
-definition set_arg_1: ∀M: Type[0]. ∀code_memory:M. PreStatus M code_memory → [[bit_addr; carry]] → Bit → PreStatus M code_memory ≝ set_arg_1'.
+  @modulus_less_than
+qed.
 
 lemma set_arg_1_ok: ∀M,cm,s,x,v. clock M cm s = clock … (set_arg_1 M cm s x v).
- #M #cm #s #x #v whd in match set_arg_1; normalize nodelta @pi2
+  cases daemon
 qed.
 

src/ASM/StatusProofs.ma

@@ -200 +200 @@
   #x try (#y #H) try #H whd in H; try cases H try %
   whd in match set_arg_8; normalize nodelta
-  whd in match set_arg_8'; normalize nodelta
-  cases (vsplit bool 4 4 ?) #nu' #nl' normalize nodelta
-  cases (vsplit bool 1 3 nu') #bit1' #ignore' normalize nodelta
-  cases (get_index_v bool 4 nu' 0 ?) normalize nodelta
-  try % cases daemon (*@(set_bit_addressable_sfr_set_program_counter)*)
+  cases (vsplit bool ???) #bit_one #seven_bits normalize nodelta
+  cases (head' bool ??) normalize nodelta
+  try % cases daemon (* XXX: need @(set_bit_addressable_sfr_set_program_counter) *)
 qed.
   
@@ -349 +347 @@
   #m #cm #s #addr #byte
   whd in match set_arg_8; normalize nodelta
+  cases daemon (*
   whd in match set_arg_8'; normalize nodelta
   cases addr #subaddressing_modein_proof
@@ -357 +356 @@
   cases (vsplit bool 4 4 ?) #nu #nl normalize nodelta
   cases (vsplit bool 1 3 ?) #ignore #three_bits normalize nodelta
-  cases (get_index_v bool 4 nu ? ?) normalize nodelta try /demod/ try %
+  cases (get_index_v bool 4 nu ? ?) normalize nodelta try /demod/ try % *)
 qed.
 
@@ -366 +365 @@
   #m #cm #s #addr #v
   whd in match set_arg_1; normalize nodelta
+  cases daemon (*
   whd in match set_arg_1'; normalize nodelta
   cases addr #subaddressing_modein_proof
@@ -376 +376 @@
   cases (get_index_v bool 4 nu ??) normalize nodelta
   (* XXX: try /demod/ try % *)
-  cases daemon
+  cases daemon *)
 qed.
 

src/ASM/StatusProofsSplit.ma

@@ -113 +113 @@
   ∀b: Bit.
     program_counter M cm (set_arg_1 M cm s addr b) = program_counter M cm s.
-  #M #cm #s whd in match set_arg_1; whd in match set_arg_1'; normalize nodelta
+  #M #cm #s whd in match set_arg_1; cases daemon (* whd in match set_arg_1'; normalize nodelta
   #addr #b
   @(subaddressing_mode_elim … addr)
@@ -127 +127 @@
   |2:
     cases (vsplit ????) //
-  ]
+  ] *)
 qed.
 
@@ -551 +551 @@
   #M #cm #ps #addr1 #result
   @(subaddressing_mode_elim … addr1) try #w try %
-  whd in ⊢ (??(???%)?); whd in ⊢ (??(???(???%))?); (* XXX: to be understood, slow match *)
+  whd in ⊢ (??(???%)?); cases daemon (*whd in ⊢ (??(???(???%))?); (* XXX: to be understood, slow match *)
   [1:
     cases (vsplit bool ???) #nu #nl normalize nodelta
@@ -561 +561 @@
     cases (vsplit bool ???) #ignore #three_bits normalize nodelta
     cases (get_index_v bool ????) normalize nodelta %
-  ]
+  ] *)
 qed.
 
@@ -612 +612 @@
   |2:
     #addressing_mode_ok_refl whd in ⊢ (??%?);
-    @pair_elim #nu #nl #nu_nl_refl normalize nodelta
+    @pair_elim #nu #nl #nu_nl_refl normalize nodelta cases daemon (*
     @pair_elim #ignore #three_bits #ignore_three_bits_refl normalize nodelta
     inversion (get_index_v bool ????) #get_index_v_refl normalize nodelta
@@ -737 +737 @@
       ]
     ]
-  ]
+  ] *)
 qed.
 

src/ASM/Test.ma

@@ -1 @@
-(**************************************************************************)
-(*       ___                                                              *)
-(*      ||M||                                                             *)
-(*      ||A||       A project by Andrea Asperti                           *)
-(*      ||T||                                                             *)
-(*      ||I||       Developers:                                           *)
-(*      ||T||         The HELM team.                                      *)
-(*      ||A||         http://helm.cs.unibo.it                             *)
-(*      \   /                                                             *)
-(*       \ /        This file is distributed under the terms of the       *)
-(*        v         GNU General Public License Version 2                  *)
-(*                                                                        *)
-(**************************************************************************)
-
 include "ASM/Assembly.ma".
 include "ASM/Interpret.ma".
@@ -316 +302 @@
  //
 qed.
-
-definition sfr_of_Byte: Byte → option (SFR8051 + SFR8052) ≝
-  λb: Byte.
-    let address ≝ nat_of_bitvector … b in
-      if (eqb address 128) then None ?
-      else if (eqb address 144) then Some … (inl … SFR_P1)
-      else if (eqb address 160) then None ?
-      else if (eqb address 176) then Some … (inl … SFR_P3)
-      else if (eqb address 153) then Some … (inl … SFR_SBUF)
-      else if (eqb address 138) then Some … (inl … SFR_TL0)
-      else if (eqb address 139) then Some … (inl … SFR_TL1)
-      else if (eqb address 140) then Some … (inl … SFR_TH0)
-      else if (eqb address 141) then Some … (inl … SFR_TH1)
-      else if (eqb address 200) then Some … (inr … SFR_T2CON)
-      else if (eqb address 202) then Some … (inr … SFR_RCAP2L)
-      else if (eqb address 203) then Some … (inr … SFR_RCAP2H)
-      else if (eqb address 204) then Some … (inr … SFR_TL2)
-      else if (eqb address 205) then Some … (inr … SFR_TH2)
-      else if (eqb address 135) then Some … (inl … SFR_PCON)
-      else if (eqb address 136) then Some … (inl … SFR_TCON)
-      else if (eqb address 137) then Some … (inl … SFR_TMOD)
-      else if (eqb address 152) then Some … (inl … SFR_SCON)
-      else if (eqb address 168) then Some … (inl … SFR_IE)
-      else if (eqb address 184) then Some … (inl … SFR_IP)
-      else if (eqb address 129) then Some … (inl … SFR_SP)
-      else if (eqb address 130) then Some … (inl … SFR_DPL)
-      else if (eqb address 131) then Some … (inl … SFR_DPH)
-      else if (eqb address 208) then Some … (inl … SFR_PSW)
-      else if (eqb address 224) then Some … (inl … SFR_ACC_A)
-      else if (eqb address 240) then Some … (inl … SFR_ACC_B)
-      else None ?.
-
-definition set_bit_addressable_sfr:
-    ∀M: Type[0]. ∀code_memory: M. ∀s: PreStatus M code_memory. Byte → Byte →
-      PreStatus M code_memory ≝
-  λM: Type[0].
-  λcode_memory:M.
-  λs: PreStatus M code_memory.
-  λb: Byte.
-  λv: Byte.
-   match sfr_of_Byte b with
-   [ None ⇒ match not_implemented in False with [ ]
-   | Some sfr8051_8052 ⇒
-      match sfr8051_8052 with
-      [ inl sfr ⇒
-         match sfr with
-         [ SFR_P1 ⇒
-           let status_1 ≝ set_8051_sfr ?? s SFR_P1 v in
-           set_p1_latch ?? s v
-         | SFR_P3 ⇒
-           let status_1 ≝ set_8051_sfr ?? s SFR_P3 v in
-           set_p3_latch ?? s v
-         | _ ⇒ set_8051_sfr ?? s sfr v ]
-      | inr sfr ⇒ set_8052_sfr ?? s sfr v ]].
-
+  
 definition map_address_Byte_using_internal_pseudo_address_map ≝
  λM,sigma,d,v.
@@ -376 +308 @@
   [ None ⇒ v
   | Some sfr8051_8052 ⇒
-     match sfr8051_8052 with
-     [ inl sfr ⇒
-        map_address_using_internal_pseudo_address_map M sigma sfr v
-     | inr _ ⇒ v ]].
+    match sfr8051_8052 with
+    [ inl sfr ⇒
+      map_address_using_internal_pseudo_address_map M sigma sfr v
+    | inr _ ⇒ v
+    ]
+  ].
 
 lemma set_bit_addressable_sfr_status_of_pseudo_status':
@@ -390 +324 @@
   =status_of_pseudo_status M code_memory
    (set_bit_addressable_sfr pseudo_assembly_program code_memory s d v) sigma policy).
+  whd in match map_address_Byte_using_internal_pseudo_address_map;
   whd in match set_bit_addressable_sfr;
-  whd in match map_address_Byte_using_internal_pseudo_address_map;
   normalize nodelta
   @(let M ≝ pseudo_assembly_program in
@@ -412 +346 @@
          | _ ⇒ set_8051_sfr ?? s sfr v ]
       | inr sfr ⇒ set_8052_sfr ?? s sfr v ]])
- normalize nodelta
- /2 by refl, set_8051_sfr_status_of_pseudo_status, set_8052_sfr_status_of_pseudo_status/
- whd in match map_address_using_internal_pseudo_address_map; normalize nodelta //
+  normalize nodelta
+  /2 by refl, set_8051_sfr_status_of_pseudo_status, set_8052_sfr_status_of_pseudo_status/
+  whd in match map_address_using_internal_pseudo_address_map; normalize nodelta //
 qed.
 
@@ -610 +544 @@
      map_address_using_internal_pseudo_address_map M sigma SFR_ACC_A v
   | _ ⇒ v ].
-
-definition set_arg_8: ∀M: Type[0]. ∀code_memory:M. ∀s:PreStatus M code_memory. ∀addr: [[ direct ; indirect ; registr ;
-                                   acc_a ; acc_b ; ext_indirect ;
-                                   ext_indirect_dptr ]]. Byte → PreStatus M code_memory ≝
-  λm, cm, s, a, v.
-    match a return λx. bool_to_Prop (is_in ? [[ direct ; indirect ; registr ;
-                                                acc_a ; acc_b ; ext_indirect ;
-                                                ext_indirect_dptr ]] x) →
-                   PreStatus m cm
-            with
-      [ DIRECT d ⇒
-        λdirect: True.
-          let 〈 bit_one, seven_bits 〉 ≝ vsplit ? 1 7 d in
-            match head' … bit_one with
-              [ true ⇒ set_bit_addressable_sfr ?? s (true:::seven_bits) v
-              | false ⇒
-                let memory ≝ insert ? 7 seven_bits v (low_internal_ram ?? s) in
-                  set_low_internal_ram ?? s memory
-              ]
-      | INDIRECT i ⇒
-        λindirect: True.
-          let register ≝ get_register ?? s [[ false; false; i ]] in
-          let 〈bit_one, seven_bits〉 ≝ vsplit ? 1 7 register in
-            match head' … bit_one with
-              [ false ⇒
-                let memory ≝ insert … seven_bits v (low_internal_ram ?? s) in
-                  set_low_internal_ram ?? s memory
-              | true ⇒ 
-                let memory ≝ insert … seven_bits v (high_internal_ram ?? s) in
-                  set_high_internal_ram ?? s memory
-              ]
-      | REGISTER r ⇒ λregister: True. set_register ?? s r v
-      | ACC_A ⇒ λacc_a: True. set_8051_sfr ?? s SFR_ACC_A v
-      | ACC_B ⇒ λacc_b: True. set_8051_sfr ?? s SFR_ACC_B v
-      | EXT_INDIRECT e ⇒
-        λext_indirect: True.
-          let address ≝ get_register ?? s [[ false; false; e ]] in
-          let padded_address ≝ pad 8 8 address in
-          let memory ≝ insert ? 16 padded_address v (external_ram ?? s) in
-            set_external_ram ?? s memory
-      | EXT_INDIRECT_DPTR ⇒
-        λext_indirect_dptr: True.
-          let address ≝ (get_8051_sfr ?? s SFR_DPH) @@ (get_8051_sfr ?? s SFR_DPL) in
-          let memory ≝ insert ? 16 address v (external_ram ?? s) in
-            set_external_ram ?? s memory
-      | _ ⇒ 
-        λother: False.
-          match other in False with [ ]
-      ] (subaddressing_modein … a).
 
 (*CSC: move elsewhere*)
@@ -767 +652 @@
       >external_ram_status_of_pseudo_status @set_external_ram_status_of_pseudo_status ]
 qed.
-
-definition get_bit_addressable_sfr:
-    ∀M: Type[0]. ∀code_memory: M. ∀s: PreStatus M code_memory. Byte → bool → Byte ≝
-  λM: Type[0].
-  λcode_memory:M.
-  λs: PreStatus M code_memory.
-  λb: Byte.
-  λl: bool.
-  match sfr_of_Byte b with
-  [ None ⇒ match not_implemented in False with [ ]
-  | Some sfr8051_8052 ⇒
-    match sfr8051_8052 with
-    [ inl sfr ⇒
-      match sfr with
-      [ SFR_P1 ⇒
-        if l then
-          p1_latch … s
-        else
-          get_8051_sfr … s SFR_P1
-      | SFR_P3 ⇒
-        if l then
-          p3_latch … s
-        else
-          get_8051_sfr … s SFR_P3
-      | _ ⇒ get_8051_sfr … s sfr
-      ]
-    | inr sfr ⇒ get_8052_sfr M code_memory s sfr
-    ]
-  ].
-
-definition get_arg_8: ∀M: Type[0]. ∀code_memory:M. PreStatus M code_memory → bool → [[ direct ; indirect ; registr ;
-                                          acc_a ; acc_b ; data ; acc_dptr ;
-                                          acc_pc ; ext_indirect ;
-                                          ext_indirect_dptr ]] → Byte ≝
-  λm, cm, s, l, a.
-    match a return λx. bool_to_Prop (is_in ? [[ direct ; indirect ; registr ;
-                                                acc_a ; acc_b ; data ; acc_dptr ;
-                                                acc_pc ; ext_indirect ;
-                                                ext_indirect_dptr ]] x) → ? with
-      [ ACC_A ⇒ λacc_a: True. get_8051_sfr ?? s SFR_ACC_A
-      | ACC_B ⇒ λacc_b: True. get_8051_sfr ?? s SFR_ACC_B
-      | DATA d ⇒ λdata: True. d
-      | REGISTER r ⇒ λregister: True. get_register ?? s r
-      | EXT_INDIRECT_DPTR ⇒
-        λext_indirect_dptr: True.
-          let address ≝ (get_8051_sfr ?? s SFR_DPH) @@ (get_8051_sfr ?? s SFR_DPL) in
-            lookup ? 16 address (external_ram ?? s) (zero 8)
-      | EXT_INDIRECT e ⇒
-        λext_indirect: True.
-          let address ≝ get_register ?? s [[ false; false; e ]]  in
-          let padded_address ≝ pad 8 8 address in
-            lookup ? 16 padded_address (external_ram ?? s) (zero 8)
-      | ACC_DPTR ⇒
-        λacc_dptr: True.
-          let dptr ≝ (get_8051_sfr ?? s SFR_DPH) @@ (get_8051_sfr ?? s SFR_DPL) in
-          let padded_acc ≝ pad 8 8 (get_8051_sfr ?? s SFR_ACC_A) in
-          let 〈carry, address〉 ≝ half_add 16 dptr padded_acc in
-            lookup ? 16 address (external_ram ?? s) (zero 8)
-      | ACC_PC ⇒
-        λacc_pc: True.
-          let padded_acc ≝ pad 8 8 (get_8051_sfr ?? s SFR_ACC_A) in
-          let 〈 carry, address 〉 ≝ half_add 16 (program_counter ?? s) padded_acc in
-            lookup ? 16 address (external_ram ?? s) (zero 8)
-      | DIRECT d ⇒
-        λdirect: True.
-          let 〈hd, seven_bits〉 ≝ vsplit bool 1 7 d in
-            match head' … hd with
-            [ true ⇒ get_bit_addressable_sfr m cm s (true:::seven_bits) l
-            | false ⇒ lookup ? 7 seven_bits (low_internal_ram … s) (zero …)
-            ]
-      | INDIRECT i ⇒
-        λindirect: True.
-          let 〈hd, seven_bits〉 ≝ vsplit bool 1 7 (get_register … s [[false;false;i]]) in
-            match head' … hd with
-            [ true ⇒ lookup ? 7 seven_bits (high_internal_ram … s) (zero …)
-            | false ⇒ lookup ? 7 seven_bits (low_internal_ram … s) (zero …)
-            ]
-      | _ ⇒ λother.
-        match other in False with [ ]
-      ] (subaddressing_modein … a).
 
 lemma p1_latch_status_of_pseudo_status:
@@ -1081 +886 @@
 qed.
 
-definition get_arg_1: ∀M: Type[0]. ∀code_memory:M. PreStatus M code_memory → [[ bit_addr ; n_bit_addr ; carry ]] →
-                       bool → bool ≝
-  λm, cm, s, a, l.
-    match a return λx. bool_to_Prop (is_in ? [[ bit_addr ;
-                                                 n_bit_addr ;
-                                                 carry ]] x) → ? with
-      [ BIT_ADDR b ⇒
-        λbit_addr: True.
-        let 〈bit_1, seven_bits〉 ≝ vsplit … 1 7 b in
-        match head' … bit_1 with
-        [ true ⇒
-          let address ≝ nat_of_bitvector … seven_bits in
-          let d ≝ address ÷ 8 in
-          let m ≝ address mod 8 in
-          let trans ≝ bitvector_of_nat 8 ((d * 8) + 128) in
-          let sfr ≝ get_bit_addressable_sfr ?? s trans l in
-            get_index_v … sfr m ?
-        | false ⇒
-          let address ≝ nat_of_bitvector … seven_bits in
-          let address' ≝ bitvector_of_nat 7 ((address ÷ 8) + 32) in
-          let t ≝ lookup … 7 address' (low_internal_ram ?? s) (zero 8) in
-            get_index_v … t (modulus address 8) ? 
-        ]
-      | N_BIT_ADDR n ⇒
-        λn_bit_addr: True.
-        let 〈bit_1, seven_bits〉 ≝ vsplit … 1 7 n in
-        match head' … bit_1 with
-        [ true ⇒
-          let address ≝ nat_of_bitvector … seven_bits in
-          let d ≝ address ÷ 8 in
-          let m ≝ address mod 8 in
-          let trans ≝ bitvector_of_nat 8 ((d * 8) + 128) in
-          let sfr ≝ get_bit_addressable_sfr ?? s trans l in
-            ¬(get_index_v … sfr m ?)
-        | false ⇒
-          let address ≝ nat_of_bitvector … seven_bits in
-          let address' ≝ bitvector_of_nat 7 ((address ÷ 8) + 32) in
-          let t ≝ lookup … 7 address' (low_internal_ram ?? s) (zero 8) in
-            ¬(get_index_v … t (modulus address 8) ?)
-        ]
-      | CARRY ⇒ λcarry: True. get_cy_flag ?? s
-      | _ ⇒ λother.
-        match other in False with [ ]
-      ] (subaddressing_modein … a).
-      @modulus_less_than
-qed.
-
 definition map_bit_address_mode_using_internal_pseudo_address_map_get ≝
  λM:internal_pseudo_address_map.λcm: pseudo_assembly_program.λs:PreStatus ? cm.λsigma: Word → Word. λaddr. λl.
@@ -1250 +1008 @@
 qed.
 
-definition set_arg_1': ∀M: Type[0]. ∀code_memory:M. ∀s:PreStatus M code_memory. [[bit_addr; carry]] → Bit → Σs':PreStatus M code_memory. clock ? code_memory s = clock ? code_memory s' ≝
-  λm: Type[0].
-  λcm.
-  λs: PreStatus m cm.
-  λa: [[bit_addr; carry]].
-  λv: Bit.
-    match a return λx. bool_to_Prop (is_in ? [[bit_addr ; carry]] x) → Σs'. clock m cm s = clock m cm s' with
-      [ BIT_ADDR b ⇒ λbit_addr: True.
-        let 〈bit_1, seven_bits〉 ≝ vsplit bool 1 7 (get_8051_sfr … s SFR_PSW) in
-        match head' … bit_1 with
-        [ true ⇒
-          let address ≝ nat_of_bitvector … seven_bits in
-          let d ≝ address ÷ 8 in
-          let m ≝ address mod 8 in
-          let t ≝ bitvector_of_nat 8 ((d * 8) + 128) in
-          let sfr ≝ get_bit_addressable_sfr … s t true in
-          let new_sfr ≝ set_index … sfr m v ? in
-            set_bit_addressable_sfr … s new_sfr t
-        | false ⇒
-          let address ≝ nat_of_bitvector … seven_bits in
-          let address' ≝ bitvector_of_nat 7 ((address ÷ 8) + 32) in
-          let t ≝ lookup ? 7 address' (low_internal_ram ?? s) (zero 8) in
-          let n_bit ≝ set_index … t (modulus address 8) v ? in
-          let memory ≝ insert ? 7 address' n_bit (low_internal_ram ?? s) in
-            set_low_internal_ram … s memory
-        ]
-      | CARRY ⇒
-        λcarry: True.
-        let 〈ignore, seven_bits〉 ≝ vsplit bool 1 7 (get_8051_sfr … s SFR_PSW) in
-        let new_psw ≝ v:::seven_bits in
-          set_8051_sfr ?? s SFR_PSW new_psw
-      | _ ⇒
-        λother: False.
-          match other in False with
-            [ ]
-      ] (subaddressing_modein … a).
-  try (repeat @le_S_S @le_O_n)
-  try @modulus_less_than
-  /by/
-  cases daemon (* XXX: russell type for preservation of clock on set_bit_addressable_sfr *)
-qed.
-
-definition set_arg_1:
-    ∀M: Type[0]. ∀code_memory:M. PreStatus M code_memory → [[bit_addr; carry]] →
-      Bit → PreStatus M code_memory ≝ set_arg_1'.
-
 definition map_bit_address_mode_using_internal_pseudo_address_map_set_1 ≝
   λM: internal_pseudo_address_map.
@@ -1372 +1084 @@
         status_of_pseudo_status M cm (set_arg_1 … cm ps addr b) sigma policy.
   whd in match set_arg_1; normalize nodelta
-  whd in match set_arg_1'; normalize nodelta
   whd in match map_bit_address_mode_using_internal_pseudo_address_map_set_1; normalize nodelta
   whd in match map_bit_address_mode_using_internal_pseudo_address_map_set_2; normalize nodelta
@@ -1433 +1144 @@
   ]
 qed.
+
+lemma clock_status_of_pseudo_status:
+ ∀M,cm,sigma,policy,s.
+  clock …
+   (code_memory_of_pseudo_assembly_program cm sigma policy)
+   (status_of_pseudo_status M cm s sigma policy)
+  = clock … cm s.
+//
+qed.
+
+lemma set_clock_status_of_pseudo_status:
+ ∀M,cm,sigma,policy,s,v.
+  set_clock …
+   (code_memory_of_pseudo_assembly_program cm sigma policy)
+   (status_of_pseudo_status M cm s sigma policy) v
+  = status_of_pseudo_status M cm (set_clock … cm s v) sigma policy.
+//
+qed.