diff options
| author |  Jason Gross <jgross@mit.edu> | 2016-11-25 13:40:42 -0500 |
|---|---|---|
| committer | Jason Gross <jgross@mit.edu> | 2016-11-25 13:40:42 -0500 |
| commit | 304704ceb8e93555c63fb76412baa0428f4a04f3 (patch) | |
| tree | f2773fdb1d87fb8e3cd71596354eb39d25f943e0 /src | |
| parent | 13c218f6a5e43d307958f95adfbea3e5fb45eaac (diff) | |
Add inm_op_correct_and_bounded_iff_prefix
Diffstat (limited to 'src')
| -rw-r--r-- | src/Specific/GF25519BoundedCommon.v | 48 |
1 files changed, 48 insertions, 0 deletions
diff --git a/src/Specific/GF25519BoundedCommon.v b/src/Specific/GF25519BoundedCommon.v index 6167fec18..30954fe48 100644 --- a/src/Specific/GF25519BoundedCommon.v +++ b/src/Specific/GF25519BoundedCommon.v @@ -1,3 +1,4 @@ +Require Import Coq.Classes.Morphisms. Require Import Crypto.BaseSystem. Require Import Crypto.ModularArithmetic.PrimeFieldTheorems. Require Import Crypto.ModularArithmetic.PseudoMersenneBaseParams. @@ -744,6 +745,52 @@ Fixpoint inm_op_correct_and_bounded' (count_in count_out : nat) Definition inm_op_correct_and_bounded count_in count_out irop op := Eval cbv [inm_op_correct_and_bounded' Tower.tower_nd Tuple.tuple Tuple.tuple' HList.hlistP HList.hlistP'] in inm_op_correct_and_bounded' count_in count_out irop op (fun P => P). +Fixpoint inm_op_correct_and_bounded_prefix' (count_in count_out : nat) + : forall (irop : Tower.tower_nd fe25519W (Tuple.tuple fe25519W count_out) count_in) + (op : Tower.tower_nd GF25519.fe25519 (Tuple.tuple GF25519.fe25519 count_out) count_in), + Prop + := match count_in return + forall (irop : Tower.tower_nd fe25519W (Tuple.tuple fe25519W count_out) count_in) + (op : Tower.tower_nd GF25519.fe25519 (Tuple.tuple GF25519.fe25519 count_out) count_in), + Prop + with + | O => fun irop op => in_op_correct_and_bounded count_out irop op + | S n => fun irop op + => forall x : fe25519W, + is_bounded (fe25519WToZ x) = true + -> @inm_op_correct_and_bounded_prefix' + n count_out (irop x) (op (fe25519WToZ x)) + end. +Definition inm_op_correct_and_bounded_prefix count_in count_out irop op + := Eval cbv [inm_op_correct_and_bounded_prefix' Tower.tower_nd Tuple.tuple Tuple.tuple' HList.hlistP HList.hlistP'] in + inm_op_correct_and_bounded_prefix' count_in count_out irop op. + +Lemma inm_op_correct_and_bounded_iff_prefix' count_in count_out irop op + (cont : Prop -> Prop) + (cont_forall : forall T (P : T -> Prop), cont (forall x : T, P x) <-> forall x : T, cont (P x)) + : inm_op_correct_and_bounded' count_in count_out irop op cont <-> cont (inm_op_correct_and_bounded_prefix' count_in count_out irop op). +Proof. + revert dependent cont; induction count_in as [|count_in IHcount_in]; intros. + { reflexivity. } + { simpl. + rewrite cont_forall. + split; intros H' x; specialize (H' x); + specialize (IHcount_in (irop x) (op (fe25519WToZ x)) (fun P => cont (is_bounded (fe25519WToZ x) = true -> P))); + cbv beta in *; + [ erewrite <- IHcount_in; [ assumption | .. ] + | erewrite -> IHcount_in; [ assumption | .. ] ]; + clear IHcount_in. + { intros; repeat setoid_rewrite cont_forall; split; eauto. } + { intros; repeat setoid_rewrite cont_forall; split; eauto. } } +Qed. + +Lemma inm_op_correct_and_bounded_iff_prefix count_in count_out irop op + : inm_op_correct_and_bounded count_in count_out irop op <-> inm_op_correct_and_bounded_prefix count_in count_out irop op. +Proof. + apply (inm_op_correct_and_bounded_iff_prefix' count_in count_out irop op (fun P => P)). + reflexivity. +Qed. + Definition inm_op_correct_and_bounded1 count_in irop op := Eval cbv [inm_op_correct_and_bounded Tuple.map Tuple.to_list Tuple.to_list' Tuple.from_list Tuple.from_list' Tuple.on_tuple List.map] in inm_op_correct_and_bounded count_in 1 irop op. @@ -789,3 +836,4 @@ Notation i9top_correct_and_bounded k irop op (only parsing). Definition prefreeze := GF25519.prefreeze. +< |