diff options
| author |  jadep <jade.philipoom@gmail.com> | 2019-02-07 19:11:16 -0500 |
|---|---|---|
| committer | jadep <jade.philipoom@gmail.com> | 2019-02-07 19:11:16 -0500 |
| commit | 59d5e5fd6a225e731e5149c1afcf5f26051d02d8 (patch) | |
| tree | 3aa91fb93245fd6946eb18dab6d68255cf4dcd2f /src/Fancy/Barrett256.v | |
| parent | ce583d76bdb8f15148fc4222d8bdec096547682a (diff) | |
Fix instruction-order admit; still neads cleanup
Diffstat (limited to 'src/Fancy/Barrett256.v')
| -rw-r--r-- | src/Fancy/Barrett256.v | 78 |
1 files changed, 74 insertions, 4 deletions
diff --git a/src/Fancy/Barrett256.v b/src/Fancy/Barrett256.v index 46e8f6f52..5bd2df9e7 100644 --- a/src/Fancy/Barrett256.v +++ b/src/Fancy/Barrett256.v @@ -232,6 +232,7 @@ Module Barrett256. 0 <= start_context x < 2^machine_wordsize -> 0 <= start_context xHigh < 2^machine_wordsize -> 0 <= start_context RegMuLow < 2^machine_wordsize -> + 0 <= start_context RegZero < 2^machine_wordsize -> interp (barrett_red256_alloc r0 r1 r30 errorP errorR) cc_start_state (fun r => if reg_eqb r r0 @@ -256,12 +257,81 @@ Module Barrett256. | H : ~ False |- _ => clear H end. - step. - step. + repeat step_lhs. - (* TODO: To prove equivalence between these two, we need to either relocate the RSHI instructions so they're in the same places or use instruction commutativity to push them down. *) - Admitted. + repeat step_rhs. + rewrite interp_Mul256x256 with (tmp2 := extra_reg) by + (try congruence; push_value_unused). + repeat step_rhs. + rewrite mulhh_comm. + repeat step_rhs. + rewrite mulll_comm. + repeat step_rhs. + + rewrite swap_add_chain + by + repeat match goal with + | |- _ <> _ => congruence + | _ => rewrite reg_eqb_refl + | _ => rewrite reg_eqb_neq by congruence + | H : ?y = _ mod ?m |- 0 <= ?y < ?m => + rewrite H; apply Z.mod_pos_bound; omega + | |- _ = 2 ^ 256 => reflexivity + | |- flags_unused _ _ => + cbv [flags_unused]; intros; + do 2 step; reflexivity + end. + + Local Ltac simplify := + repeat match goal with + | _ => rewrite reg_eqb_refl + | _ => rewrite reg_eqb_neq by congruence + | H : ?y = _ mod ?m |- 0 <= ?y < _ => + rewrite H; apply Z.mod_pos_bound; omega + | _ => assumption + end. + + repeat step_rhs. + + assert (0 < 2 ^ 256) by ZeroBounds.Z.zero_bounds. + rewrite add_comm by simplify. + step_rhs. + rewrite addc_comm by simplify. + step_rhs. + rewrite add_comm by simplify. + step_rhs. + rewrite addc_comm by simplify. + step_rhs. + repeat step_rhs. + rewrite interp_Mul256x256 with (tmp2 := extra_reg) by + (try congruence; push_value_unused). + repeat step_rhs. + rewrite mulhh_comm by simplify. + repeat step_rhs. + rewrite mulll_comm by simplify. + repeat step_rhs. + + rewrite swap_add_chain + by + repeat match goal with + | |- _ <> _ => congruence + | _ => rewrite reg_eqb_refl + | _ => rewrite reg_eqb_neq by congruence + | H : ?y = _ mod ?m |- 0 <= ?y < ?m => + rewrite H; apply Z.mod_pos_bound; omega + | |- _ = 2 ^ 256 => reflexivity + | |- flags_unused _ _ => + cbv [flags_unused]; intros; + repeat (step; try reflexivity) + end. + + repeat step_rhs. + + cbv [Spec.interp]. + rewrite !reg_eqb_refl. + reflexivity. + Qed. Lemma prod_barrett_red256_correct : forall (cc_start_state : CC.state) (* starting carry flags *) |