Finish seperating our specs: remove old non-specified code

author: Andres Erbsen <andreser@mit.edu> 2016-02-15 15:21:29 -0500
committer: Andres Erbsen <andreser@mit.edu> 2016-02-15 15:21:49 -0500
commit: c711c52d057024c4b40a86f6f77f2e96ae2208ef (patch)
tree: e032092b0313157fe0d3848370616855c30bd845 /src/ModularArithmetic/ModularBaseSystem.v
parent: 0b5115da9d2b1d9a32bdb11eb9f81ceec9999c1d (diff)
1 files changed, 625 insertions, 0 deletions
diff --git a/src/ModularArithmetic/ModularBaseSystem.v b/src/ModularArithmetic/ModularBaseSystem.v
new file mode 100644
index 000000000..8c22a8091
--- /dev/null
+++ b/src/ModularArithmetic/ModularBaseSystem.v
@@ -0,0 +1,625 @@
+Require Import Zpower ZArith.
+Require Import List.
+Require Import Crypto.Util.ListUtil Crypto.Util.CaseUtil Crypto.Util.ZUtil.
+Require Import Crypto.ModularArithmetic.PrimeFieldTheorems.
+Require Import Crypto.BaseSystem.
+Require Import VerdiTactics.
+Local Open Scope Z_scope.
+
+Module Type PseudoMersenneBaseParams (Import B:BaseCoefs) (Import M:Modulus).
+  Parameter k : Z.
+  Parameter c : Z.
+  Axiom modulus_pseudomersenne : modulus = 2^k - c.
+
+  Axiom base_matches_modulus :
+    forall i j,
+    (i   <  length base)%nat ->
+    (j   <  length base)%nat ->
+    (i+j >= length base)%nat->
+    let b := nth_default 0 base in
+    let r := (b i * b j)  /   (2^k * b (i+j-length base)%nat) in
+              b i * b j = r * (2^k * b (i+j-length base)%nat).
+
+  Axiom base_succ : forall i, ((S i) < length base)%nat -> 
+    let b := nth_default 0 base in
+    b (S i) mod b i = 0.
+
+  Axiom base_tail_matches_modulus:
+    2^k mod nth_default 0 base (pred (length base)) = 0.
+
+  (* Probably implied by modulus_pseudomersenne. *)
+  Axiom k_nonneg : 0 <= k.
+
+End PseudoMersenneBaseParams.
+
+Module Type RepZMod (Import M:Modulus).
+  Parameter T : Type.
+  Parameter encode : F modulus -> T.
+  Parameter decode : T -> F modulus.
+
+  Parameter rep : T -> F modulus -> Prop.
+  Local Notation "u '~=' x" := (rep u x) (at level 70).
+  Axiom encode_rep : forall x, encode x ~= x.
+  Axiom rep_decode : forall u x, u ~= x -> decode u = x.
+
+  Parameter add : T -> T -> T.
+  Axiom add_rep : forall u v x y, u ~= x -> v ~= y -> add u v ~= (x+y)%F.
+
+  Parameter sub : T -> T -> T.
+  Axiom sub_rep : forall u v x y, u ~= x -> v ~= y -> sub u v ~= (x-y)%F.
+
+  Parameter mul : T -> T -> T.
+  Axiom mul_rep : forall u v x y, u ~= x -> v ~= y -> mul u v ~= (x*y)%F.
+End RepZMod.
+
+Module PseudoMersenneBase (BC:BaseCoefs) (Import M:PrimeModulus) (P:PseudoMersenneBaseParams BC M) <: RepZMod M.
+  Module EC <: BaseCoefs.
+    Definition base := BC.base ++ (map (Z.mul (2^(P.k))) BC.base).
+    
+    Lemma base_positive : forall b, In b base -> b > 0.
+    Proof.
+      unfold base. intros.
+      rewrite in_app_iff in H.
+      destruct H. {
+        apply BC.base_positive; auto.
+      } {
+        specialize BC.base_positive.
+        induction BC.base; intros. {
+          simpl in H; intuition.
+        } {
+          simpl in H.
+          destruct H; subst.
+          replace 0 with (2 ^ P.k * 0) by auto.
+          apply (Zmult_gt_compat_l a 0 (2 ^ P.k)).
+          rewrite Z.gt_lt_iff.
+          apply Z.pow_pos_nonneg; intuition.
+          pose proof P.k_nonneg; omega.
+          apply H0; left; auto.
+          apply IHl; auto.
+          intros. apply H0; auto. right; auto.
+        }
+      }
+    Qed.
+
+    Lemma base_length_nonzero : (0 < length BC.base)%nat.
+    Proof.
+      assert (nth_default 0 BC.base 0 = 1) by (apply BC.b0_1).
+      unfold nth_default in H.
+      case_eq (nth_error BC.base 0); intros;
+        try (rewrite H0 in H; omega).
+      apply (nth_error_value_length _ 0 BC.base z); auto.
+    Qed.
+
+    Lemma b0_1 : forall x, nth_default x base 0 = 1.
+    Proof.
+      intros. unfold base.
+      rewrite nth_default_app.
+      assert (0 < length BC.base)%nat by (apply base_length_nonzero).
+      destruct (lt_dec 0 (length BC.base)); try apply BC.b0_1; try omega.
+    Qed.
+
+    Lemma two_k_nonzero : 2^P.k <> 0.
+      pose proof (Z.pow_eq_0 2 P.k P.k_nonneg).
+      intuition.
+    Qed.
+
+    Lemma map_nth_default_base_high : forall n, (n < (length BC.base))%nat -> 
+      nth_default 0 (map (Z.mul (2 ^ P.k)) BC.base) n =
+      (2 ^ P.k) * (nth_default 0 BC.base n).
+    Proof.
+      intros.
+      erewrite map_nth_default; auto.
+    Qed.
+
+    Lemma base_succ : forall i, ((S i) < length base)%nat ->
+    let b := nth_default 0 base in
+    b (S i) mod b i = 0.
+    Proof.
+      intros; subst b; unfold base.
+      repeat rewrite nth_default_app.
+      do 2 break_if; try apply P.base_succ; try omega. {
+        destruct (lt_eq_lt_dec (S i) (length BC.base)). {
+          destruct s; intuition.
+          rewrite map_nth_default_base_high by omega.
+          replace i with (pred(length BC.base)) by omega.
+          rewrite <- Zmult_mod_idemp_l.
+          rewrite P.base_tail_matches_modulus; simpl.
+          rewrite Zmod_0_l; auto.
+        } {
+          assert (length BC.base <= i)%nat by (apply lt_n_Sm_le; auto); omega.
+        }
+      } {
+        unfold base in H; rewrite app_length, map_length in H.
+        repeat rewrite map_nth_default_base_high by omega.
+        rewrite Zmult_mod_distr_l.
+        rewrite <- minus_Sn_m by omega.
+        rewrite P.base_succ by omega; auto.
+      }
+    Qed. 
+
+    Lemma base_good_over_boundary : forall
+      (i : nat)
+      (l : (i < length BC.base)%nat)
+      (j' : nat)
+      (Hj': (i + j' < length BC.base)%nat)
+      ,
+      2 ^ P.k * (nth_default 0 BC.base i * nth_default 0 BC.base j') =
+      2 ^ P.k * (nth_default 0 BC.base i * nth_default 0 BC.base j') /
+      (2 ^ P.k * nth_default 0 BC.base (i + j')) *
+      (2 ^ P.k * nth_default 0 BC.base (i + j'))
+    .
+    Proof. intros.
+      remember (nth_default 0 BC.base) as b.
+      rewrite Zdiv_mult_cancel_l by (exact two_k_nonzero).
+      replace (b i * b j' / b (i + j')%nat * (2 ^ P.k * b (i + j')%nat))
+       with  ((2 ^ P.k * (b (i + j')%nat * (b i * b j' / b (i + j')%nat)))) by ring.
+      rewrite Z.mul_cancel_l by (exact two_k_nonzero).
+      replace (b (i + j')%nat * (b i * b j' / b (i + j')%nat))
+       with ((b i * b j' / b (i + j')%nat) * b (i + j')%nat) by ring.
+      subst b.
+      apply (BC.base_good i j'); omega.
+    Qed.
+
+    Lemma base_good :
+      forall i j, (i+j < length base)%nat ->
+      let b := nth_default 0 base in
+      let r := (b i * b j) / b (i+j)%nat in
+      b i * b j = r * b (i+j)%nat.
+    Proof.
+      intros.
+      subst b. subst r.
+      unfold base in *.
+      rewrite app_length in H; rewrite map_length in H.
+      repeat rewrite nth_default_app.
+      destruct (lt_dec i (length BC.base));
+        destruct (lt_dec j (length BC.base));
+        destruct (lt_dec (i + j) (length BC.base));
+        try omega.
+      { (* i < length BC.base, j < length BC.base, i + j < length BC.base *)
+        apply BC.base_good; auto.
+      } { (* i < length BC.base, j < length BC.base, i + j >= length BC.base *)
+        rewrite (map_nth_default _ _ _ _ 0) by omega.
+        apply P.base_matches_modulus; omega.
+      } { (* i < length BC.base, j >= length BC.base, i + j >= length BC.base *)
+        do 2 rewrite map_nth_default_base_high by omega.
+        remember (j - length BC.base)%nat as j'.
+        replace (i + j - length BC.base)%nat with (i + j')%nat by omega.
+        replace (nth_default 0 BC.base i * (2 ^ P.k * nth_default 0 BC.base j'))
+           with (2 ^ P.k * (nth_default 0 BC.base i * nth_default 0 BC.base j'))
+           by ring.
+        eapply base_good_over_boundary; eauto; omega.
+      } { (* i >= length BC.base, j < length BC.base, i + j >= length BC.base *)
+        do 2 rewrite map_nth_default_base_high by omega.
+        remember (i - length BC.base)%nat as i'.
+        replace (i + j - length BC.base)%nat with (j + i')%nat by omega.
+        replace (2 ^ P.k * nth_default 0 BC.base i' * nth_default 0 BC.base j)
+           with (2 ^ P.k * (nth_default 0 BC.base j * nth_default 0 BC.base i'))
+           by ring.
+        eapply base_good_over_boundary; eauto; omega.
+      }
+    Qed.
+  End EC.
+
+  Module E := BaseSystem EC.
+  Module B := BaseSystem BC.
+
+  Definition T := B.digits.
+  Local Hint Unfold T.
+  Definition decode (us : T) : F modulus := ZToField (B.decode us).
+  Local Hint Unfold decode.
+  Definition rep (us : T) (x : F modulus) := (length us <= length BC.base)%nat /\ decode us = x.
+  Local Notation "u '~=' x" := (rep u x) (at level 70).
+  Local Hint Unfold rep.
+
+  Lemma rep_decode : forall us x, us ~= x -> decode us = x.
+  Proof.
+    autounfold; intuition.
+  Qed.
+
+  Definition encode (x : F modulus) := B.encode x.
+
+  Lemma encode_rep : forall x : F modulus, encode x ~= x.
+  Proof.
+    intros. unfold encode, rep.
+    split. {
+      unfold B.encode; simpl.
+      apply EC.base_length_nonzero.
+    } {
+      unfold decode.
+      rewrite B.encode_rep.
+      apply ZToField_idempotent. (* TODO: rename this lemma *)
+    }
+  Qed.
+
+  Definition add (us vs : T) := B.add us vs.
+  Lemma add_rep : forall u v x y, u ~= x -> v ~= y -> add u v ~= (x+y)%F.
+  Proof.
+    autounfold; intuition. {
+      unfold add.
+      rewrite B.add_length_le_max.
+      case_max; try rewrite Max.max_r; omega.
+    }
+    unfold decode in *; unfold B.decode in *.
+    rewrite B.add_rep.
+    rewrite ZToField_add.
+    subst; auto.
+  Qed.
+
+  Definition sub (us vs : T) := B.sub us vs.
+  Lemma sub_rep : forall u v x y, u ~= x -> v ~= y -> sub u v ~= (x-y)%F.
+  Proof.
+    autounfold; intuition. {
+      rewrite B.sub_length_le_max.
+      case_max; try rewrite Max.max_r; omega.
+    }
+    unfold decode in *; unfold B.decode in *.
+    rewrite B.sub_rep.
+    rewrite ZToField_sub.
+    subst; auto.
+  Qed.
+
+  Lemma decode_short : forall (us : B.digits), 
+    (length us <= length BC.base)%nat -> B.decode us = E.decode us.
+  Proof.
+    intros.
+    unfold B.decode, B.decode', E.decode, E.decode'.
+    rewrite combine_truncate_r.
+    rewrite (combine_truncate_r us EC.base).
+    f_equal; f_equal.
+    unfold EC.base.
+    rewrite firstn_app_inleft; auto; omega.
+  Qed.
+
+  Lemma extended_base_length:
+      length EC.base = (length BC.base + length BC.base)%nat.
+  Proof.
+    unfold EC.base; rewrite app_length; rewrite map_length; auto.
+  Qed.
+
+  Lemma mul_rep_extended : forall (us vs : B.digits),
+      (length us <= length BC.base)%nat -> 
+      (length vs <= length BC.base)%nat ->
+      B.decode us * B.decode vs = E.decode (E.mul us vs).
+  Proof.
+      intros. 
+      rewrite E.mul_rep by (unfold EC.base; simpl_list; omega).
+      f_equal; rewrite decode_short; auto.
+  Qed.
+
+  (* Converts from length of E.base to length of B.base by reduction modulo M.*)
+  Definition reduce (us : E.digits) : B.digits :=
+    let high := skipn (length BC.base) us in
+    let low := firstn (length BC.base) us in
+    let wrap := map (Z.mul P.c) high in
+    B.add low wrap.
+
+  Lemma two_k_nonzero : 2^P.k <> 0.
+    pose proof (Z.pow_eq_0 2 P.k P.k_nonneg).
+    intuition.
+  Qed.
+
+  Lemma modulus_nonzero : modulus <> 0.
+    pose proof (Znumtheory.prime_ge_2 _ prime_modulus); omega.
+  Qed.
+
+  (* a = r + s(2^k) = r + s(2^k - c + c) = r + s(2^k - c) + cs = r + cs *) 
+  Lemma pseudomersenne_add: forall x y, (x + ((2^P.k) * y)) mod modulus = (x + (P.c * y)) mod modulus.
+  Proof.
+    intros.
+    replace (2^P.k) with (((2^P.k) - P.c) + P.c) by auto.
+    rewrite Z.mul_add_distr_r.
+    rewrite Zplus_mod.
+    rewrite <- P.modulus_pseudomersenne.
+    rewrite Z.mul_comm.
+    rewrite mod_mult_plus; auto using modulus_nonzero.
+    rewrite <- Zplus_mod; auto.
+  Qed.
+
+  Lemma extended_shiftadd: forall (us : E.digits), E.decode us =
+      B.decode (firstn (length BC.base) us) +
+      (2^P.k * B.decode (skipn (length BC.base) us)).
+  Proof.
+    intros.
+    unfold B.decode, E.decode; rewrite <- B.mul_each_rep.
+    replace B.decode' with E.decode' by auto.
+    unfold EC.base.
+    replace (map (Z.mul (2 ^ P.k)) BC.base) with (E.mul_each (2 ^ P.k) BC.base) by auto.
+    rewrite E.base_mul_app.
+    rewrite <- E.mul_each_rep; auto.
+  Qed.
+
+  Lemma reduce_rep : forall us, B.decode (reduce us) mod modulus = (E.decode us) mod modulus.
+  Proof.
+    intros.
+    rewrite extended_shiftadd.
+    rewrite pseudomersenne_add.
+    unfold reduce.
+    remember (firstn (length BC.base) us) as low.
+    remember (skipn (length BC.base) us) as high.
+    unfold B.decode.
+    rewrite B.add_rep.
+    replace (map (Z.mul P.c) high) with (B.mul_each P.c high) by auto.
+    rewrite B.mul_each_rep; auto.
+  Qed.
+
+  Lemma reduce_length : forall us, 
+      (length us <= length EC.base)%nat ->
+      (length (reduce us) <= length (BC.base))%nat.
+  Proof.
+    intros.
+    unfold reduce.
+    remember (map (Z.mul P.c) (skipn (length BC.base) us)) as high.
+    remember (firstn (length BC.base) us) as low.
+    assert (length low >= length high)%nat. {
+      subst. rewrite firstn_length.
+      rewrite map_length.
+      rewrite skipn_length.
+      destruct (le_dec (length BC.base) (length us)). {
+        rewrite Min.min_l by omega.
+        rewrite extended_base_length in H. omega.
+      } {
+        rewrite Min.min_r by omega. omega.
+      }
+    }
+    assert ((length low <= length BC.base)%nat)
+      by (rewrite Heqlow; rewrite firstn_length; apply Min.le_min_l).
+    assert (length high <= length BC.base)%nat 
+      by (rewrite Heqhigh; rewrite map_length; rewrite skipn_length;
+      rewrite extended_base_length in H; omega).
+    rewrite B.add_trailing_zeros; auto.
+    rewrite (B.add_same_length _ _ (length low)); auto.
+    rewrite app_length.
+    rewrite B.length_zeros; intuition.
+  Qed.
+
+  Definition mul (us vs : T) := reduce (E.mul us vs).
+  Lemma mul_rep : forall u v x y, u ~= x -> v ~= y -> mul u v ~= (x*y)%F.
+  Proof.
+    autounfold; unfold mul; intuition. {
+      rewrite reduce_length; try omega.
+      rewrite E.mul_length.
+      rewrite extended_base_length.
+      omega.
+    }
+    rewrite ZToField_mod, reduce_rep, <-ZToField_mod.
+    rewrite E.mul_rep; try (rewrite extended_base_length; omega).
+    subst; auto.
+    replace (E.decode u) with (B.decode u) by (apply decode_short; omega).
+    replace (E.decode v) with (B.decode v) by (apply decode_short; omega).
+    apply ZToField_mul.
+  Qed.
+
+  Definition add_to_nth n (x:Z) xs :=
+    set_nth n (x + nth_default 0 xs n) xs.
+  Hint Unfold add_to_nth.
+
+  (* i must be in the domain of BC.base *)
+  Definition cap i := 
+    if eq_nat_dec i (pred (length BC.base))
+    then (2^P.k) / nth_default 0 BC.base i
+    else nth_default 0 BC.base (S i) / nth_default 0 BC.base i.
+
+  Definition carry_simple i := fun us =>
+    let di := nth_default 0 us      i in
+    let us' := set_nth i (di mod cap i) us in
+    add_to_nth (S i) (      (di / cap i)) us'.
+
+  Definition carry_and_reduce i := fun us =>
+    let di := nth_default 0 us      i in
+    let us' := set_nth i (di mod cap i) us in
+    add_to_nth   0   (P.c * (di / cap i)) us'.
+
+  Definition carry i : B.digits -> B.digits := 
+    if eq_nat_dec i (pred (length BC.base))
+    then carry_and_reduce i
+    else carry_simple i.
+
+  Lemma decode'_splice : forall xs ys bs,
+    B.decode' bs (xs ++ ys) = 
+    B.decode' (firstn (length xs) bs) xs + 
+    B.decode' (skipn (length xs) bs) ys.
+  Proof.
+    induction xs; destruct ys, bs; boring.
+    unfold B.decode'.
+    rewrite combine_truncate_r.
+    ring.
+  Qed.
+
+  Lemma set_nth_sum : forall n x us, (n < length us)%nat ->
+    B.decode (set_nth n x us) = 
+    (x - nth_default 0 us n) * nth_default 0 BC.base n + B.decode us.
+  Proof.
+    intros.
+    unfold B.decode.
+    nth_inbounds; auto. (* TODO(andreser): nth_inbounds should do this auto*)
+    unfold splice_nth.
+    rewrite <- (firstn_skipn n us) at 4.
+    do 2 rewrite decode'_splice.
+    remember (length (firstn n us)) as n0.
+    ring_simplify.
+    remember (B.decode' (firstn n0 BC.base) (firstn n us)).
+    rewrite (skipn_nth_default n us 0) by omega.
+    rewrite firstn_length in Heqn0.
+    rewrite Min.min_l in Heqn0 by omega; subst n0.
+    destruct (le_lt_dec (length BC.base) n). {
+      rewrite nth_default_out_of_bounds by auto.
+      rewrite skipn_all by omega.
+      do 2 rewrite B.decode_base_nil.
+      ring_simplify; auto.
+    } {
+      rewrite (skipn_nth_default n BC.base 0) by omega.
+      do 2 rewrite B.decode'_cons.
+      ring_simplify; ring.
+    }
+  Qed.
+
+  Lemma add_to_nth_sum : forall n x us, (n < length us)%nat ->
+    B.decode (add_to_nth n x us) = 
+    x * nth_default 0 BC.base n + B.decode us.
+  Proof.
+    unfold add_to_nth; intros; rewrite set_nth_sum; try ring_simplify; auto.
+  Qed.
+
+  Lemma nth_default_base_positive : forall i, (i < length BC.base)%nat ->
+    nth_default 0 BC.base i > 0.
+  Proof.
+    intros.
+    pose proof (nth_error_length_exists_value _ _ H).
+    destruct H0.
+    pose proof (nth_error_value_In _ _ _ H0).
+    pose proof (BC.base_positive _ H1).
+    unfold nth_default.
+    rewrite H0; auto.
+  Qed.
+
+  Lemma base_succ_div_mult : forall i, ((S i) < length BC.base)%nat ->
+    nth_default 0 BC.base (S i) = nth_default 0 BC.base i *
+    (nth_default 0 BC.base (S i) / nth_default 0 BC.base i).
+  Proof.
+    intros.
+    apply Z_div_exact_2; try (apply nth_default_base_positive; omega).
+    apply P.base_succ; auto.
+  Qed.
+
+  Lemma base_length_lt_pred : (pred (length BC.base) < length BC.base)%nat.
+  Proof.
+    pose proof EC.base_length_nonzero; omega.
+  Qed.
+  Hint Resolve base_length_lt_pred.
+
+  Lemma cap_positive: forall i, (i < length BC.base)%nat -> cap i > 0.
+  Proof.
+    unfold cap; intros; break_if. {
+      apply div_positive_gt_0; try (subst; apply P.base_tail_matches_modulus). {
+        rewrite <- two_p_equiv.
+        apply two_p_gt_ZERO.
+        apply P.k_nonneg.
+      } {
+        apply nth_default_base_positive; subst; auto.
+      }
+    } {
+      apply div_positive_gt_0; try (apply P.base_succ; omega); 
+        try (apply nth_default_base_positive; omega).
+    }
+  Qed.
+
+  Lemma cap_div_mod : forall us i, (i < (pred (length BC.base)))%nat ->
+    let di := nth_default 0 us i in
+    (di - (di mod cap i)) * nth_default 0 BC.base i = 
+    (di / cap i)          * nth_default 0 BC.base (S i).
+  Proof.
+    intros.
+    rewrite (Z_div_mod_eq di (cap i)) at 1 by (apply cap_positive; omega);
+      ring_simplify.
+    unfold cap; break_if; intuition.
+    rewrite base_succ_div_mult at 4 by omega; ring.
+  Qed.
+
+  Lemma carry_simple_decode_eq : forall i us,
+    (length us = length BC.base) ->
+    (i < (pred (length BC.base)))%nat ->
+    B.decode (carry_simple i us) = B.decode us.
+  Proof.
+    unfold carry_simple. intros.
+    rewrite add_to_nth_sum by (rewrite length_set_nth; omega).
+    rewrite set_nth_sum by omega.
+    rewrite <- cap_div_mod by auto; ring_simplify; auto.
+  Qed.
+
+  Lemma two_k_div_mul_last :
+     2 ^ P.k = nth_default 0 BC.base (pred (length BC.base)) *
+    (2 ^ P.k / nth_default 0 BC.base (pred (length BC.base))).
+  Proof.
+    intros.
+    pose proof P.base_tail_matches_modulus.
+    rewrite (Z_div_mod_eq (2 ^ P.k) (nth_default 0 BC.base (pred (length BC.base)))) at 1 by
+      (apply nth_default_base_positive; auto); omega.
+  Qed.
+ 
+  Lemma cap_div_mod_reduce : forall us,
+    let i  := pred (length BC.base) in
+    let di := nth_default 0 us i in
+    (di - (di mod cap i)) * nth_default 0 BC.base i =
+    (di / cap i)          * 2 ^ P.k.
+  Proof.
+    intros.
+    rewrite (Z_div_mod_eq di (cap i)) at 1 by
+      (apply cap_positive; auto); ring_simplify.
+    unfold cap; break_if; intuition.
+    rewrite Z.mul_comm, Z.mul_assoc.
+    subst i; rewrite <- two_k_div_mul_last; auto.
+  Qed.
+
+  Lemma carry_decode_eq_reduce : forall us,
+    (length us = length BC.base) ->
+    B.decode (carry_and_reduce (pred (length BC.base)) us) mod modulus
+    = B.decode us mod modulus.
+  Proof.
+    unfold carry_and_reduce; intros.
+    pose proof EC.base_length_nonzero.
+    rewrite add_to_nth_sum by (rewrite length_set_nth; omega).
+    rewrite set_nth_sum by omega.
+    rewrite Zplus_comm; rewrite <- Z.mul_assoc.
+    rewrite <- pseudomersenne_add.
+    rewrite BC.b0_1.
+    rewrite (Z.mul_comm (2 ^ P.k)).
+    rewrite <- Zred_factor0.
+    rewrite <- cap_div_mod_reduce by auto; auto.
+  Qed.
+
+  Lemma carry_length : forall i us,
+    (length       us     <= length BC.base)%nat ->
+    (length (carry i us) <= length BC.base)%nat.
+  Proof.
+    unfold carry, carry_simple, carry_and_reduce, add_to_nth.
+    intros; break_if; subst; repeat (rewrite length_set_nth); auto.
+  Qed.
+  Hint Resolve carry_length.
+
+  Lemma carry_rep : forall i us x,
+    (length us = length BC.base) ->
+    (i < length BC.base)%nat ->
+    us ~= x -> carry i us ~= x.
+  Proof.
+    pose carry_length. pose carry_decode_eq_reduce. pose carry_simple_decode_eq.
+    unfold rep, decode, carry in *; intros.
+    intuition; break_if; subst; eauto;
+    apply F_eq; simpl; intuition.
+  Qed.
+  Hint Resolve carry_rep.
+
+  Definition carry_sequence is us := fold_right carry us is.
+
+  Lemma carry_sequence_length: forall is us,
+    (length us <= length BC.base)%nat ->
+    (length (carry_sequence is us) <= length BC.base)%nat.
+  Proof.
+    induction is; boring.
+  Qed.
+  Hint Resolve carry_sequence_length.
+
+  Lemma carry_length_exact : forall i us,
+    (length       us     = length BC.base)%nat ->
+    (length (carry i us) = length BC.base)%nat.
+  Proof.
+    unfold carry, carry_simple, carry_and_reduce, add_to_nth.
+    intros; break_if; subst; repeat (rewrite length_set_nth); auto.
+  Qed.
+
+  Lemma carry_sequence_length_exact: forall is us,
+    (length us = length BC.base)%nat ->
+    (length (carry_sequence is us) = length BC.base)%nat.
+  Proof.
+    induction is; boring.
+    apply carry_length_exact; auto.
+  Qed.
+  Hint Resolve carry_sequence_length_exact.
+
+  Lemma carry_sequence_rep : forall is us x,
+    (forall i, In i is -> (i < length BC.base)%nat) ->
+    (length us = length BC.base) ->
+    us ~= x -> carry_sequence is us ~= x.
+  Proof.
+    induction is; boring.
+  Qed.
+End PseudoMersenneBase.
+\ No newline at end of file
author	Andres Erbsen <andreser@mit.edu>	2016-02-15 15:21:29 -0500
committer	Andres Erbsen <andreser@mit.edu>	2016-02-15 15:21:49 -0500
commit	c711c52d057024c4b40a86f6f77f2e96ae2208ef (patch)
tree	e032092b0313157fe0d3848370616855c30bd845 /src/ModularArithmetic/ModularBaseSystem.v
parent	0b5115da9d2b1d9a32bdb11eb9f81ceec9999c1d (diff)