Fix JGross' Word Admits #91
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
JasonGross
previously requested changes
Nov 1, 2016
There was a problem hiding this comment.
Thanks! Looking good. In addition to the specific changes mentioned in the review comments, I'd like the following three changes:
- There are a lot of long proofs in
Z.Interpretationsnow. Could you factor each of the proofs into "lemmas just about words", which belong inCrypto.WordUtil, and "lemmas just about boundedness ofZoperations", which belong inCrypto.ZUtil, and then just make use of those lemmas inZ.Interpretations, like I did for addition, subtractions, and multiplication? - Please merge in or rebase on top of current master.
- Please move or copy the lemmas that you need about words and Zs out of the
Assembly/folder, and stick them inWordUtilorZUtil.
| @@ -342,50 +399,204 @@ Module BoundedWord64. | |||
| | progress autorewrite with push_word64ToZ | |||
| | progress repeat apply conj ]. | |||
|
|
|||
| Tactic Notation "admit" := abstract case proof_admitted. | |||
| Ltac ktrans k := do k (etransitivity; [|eassumption]); assumption. | |||
| Ltac trans' := first [ assumption | ktrans ltac:1 | ktrans ltac:2 ]. | |||
There was a problem hiding this comment.
This is not valid in 8.6. Try ltac:(1) and ltac:(2)?
| Defined. | ||
|
|
||
| Definition mul : t -> t -> t. | ||
| Proof. | ||
| Ltac mul_mono := |
There was a problem hiding this comment.
Please don't put tactics inside proofs. Do Local Ltac ... right above the theorem statement.
| Defined. | ||
|
|
||
| Definition shl : t -> t -> t. | ||
| Proof. | ||
| build_binop Word64.w64shl ZBounds.shl; t_start; | ||
| admit. | ||
| Ltac shl_mono := etransitivity; |
There was a problem hiding this comment.
Same here: move the Ltac up, make it local
| Defined. | ||
|
|
||
| Definition shr : t -> t -> t. | ||
| Proof. | ||
| build_binop Word64.w64shr ZBounds.shr; t_start; | ||
| admit. | ||
| Ltac shr_mono := etransitivity; |
There was a problem hiding this comment.
And here: move the Ltac
| @@ -164,10 +221,11 @@ Module ZBounds. | |||
| Definition shr : t -> t -> t | |||
| := t_map2 (fun lx ly ux uy => {| lower := lx >> uy ; upper := ux >> ly |}). | |||
| Definition land : t -> t -> t | |||
| := t_map2 (fun lx ly ux uy => {| lower := 0 ; upper := Z.min ux uy |}). | |||
| := t_map2 (fun lx ly ux uy => {| lower := 0 ; | |||
| upper := 2^(Z.succ (Z.min (Z.log2 ux) (Z.log2 uy))) |}). | |||
There was a problem hiding this comment.
This is unnecessarily tight. There should be a proof already in ZUtil or the standard library that Z.land x y <= x and Z.land x y <= y for nonnegative things.
| Definition lor : t -> t -> t | ||
| := t_map2 (fun lx ly ux uy => {| lower := Z.max lx ly; | ||
| upper := 2^(Z.max (Z.log2 (ux+1)) (Z.log2 (uy+1))) - 1 |}). | ||
| upper := 2^(Z.succ (Z.max (Z.log2 ux) (Z.log2 uy))) |}). |
There was a problem hiding this comment.
Isn't there a tighter bound? It would be nice if lor (2^k-1) (2^k-1) said that the upper bound is 2^k-1, not 2^k. (That is, it would be nice if it's always possible to saturate the upper bounds, and if it's the case that repeatedly applying an operation that doesn't change the value won't make the upper bound grow without bound.)
| -> (Z.log2 (Zop (Z.of_N (wordToN x)) (Z.of_N (wordToN y))) < Z.of_nat sz) | ||
| -> (Z.of_N (wordToN (wop x y)) = (Zop (Z.of_N (wordToN x)) (Z.of_N (wordToN y)))))%Z). | ||
|
|
||
| Require Import Crypto.Assembly.WordizeUtil. |
There was a problem hiding this comment.
Please move these to the top of the file.
dderjoel
added a commit
to dderjoel/fiat-crypto
that referenced
this pull request
Mar 22, 2022
Unable to unify: [inr [351, 349, 350]] == [inr [103, 108, 110]] Could not unify the values at index 0: [mit-plv#351, mit-plv#349, mit-plv#350] != [mit-plv#103, mit-plv#108, mit-plv#110] index 0: mit-plv#351 != mit-plv#103 (slice 0 44, [mit-plv#345]) != (slice 0 44, [mit-plv#100]) index 0: mit-plv#345 != mit-plv#100 (add 64, [mit-plv#58, mit-plv#95, mit-plv#343]) != (add 64, [mit-plv#58, mit-plv#98]) (add 64, [mit-plv#95, mit-plv#343]) != (add 64, [mit-plv#98]) (add 64, [mit-plv#95, (mul 64, [mit-plv#95, mit-plv#331])]) != (add 64, [(mul 64, [#3, mit-plv#95])]) (add 64, [mit-plv#95, (mul 64, [mit-plv#95, (const 4, [])])]) != (add 64, [(mul 64, [#3, mit-plv#95])]) (add 64, [(or 64, [mit-plv#91, mit-plv#93]), (mul 64, [(or 64, [mit-plv#91, mit-plv#93]), (const 4, [])])]) != (add 64, [(mul 64, [(const 5, []), (or 64, [mit-plv#91, mit-plv#93])])])
JasonGross
pushed a commit
to dderjoel/fiat-crypto
that referenced
this pull request
Mar 22, 2022
Unable to unify: [inr [351, 349, 350]] == [inr [103, 108, 110]] Could not unify the values at index 0: [mit-plv#351, mit-plv#349, mit-plv#350] != [mit-plv#103, mit-plv#108, mit-plv#110] index 0: mit-plv#351 != mit-plv#103 (slice 0 44, [mit-plv#345]) != (slice 0 44, [mit-plv#100]) index 0: mit-plv#345 != mit-plv#100 (add 64, [mit-plv#58, mit-plv#95, mit-plv#343]) != (add 64, [mit-plv#58, mit-plv#98]) (add 64, [mit-plv#95, mit-plv#343]) != (add 64, [mit-plv#98]) (add 64, [mit-plv#95, (mul 64, [mit-plv#95, mit-plv#331])]) != (add 64, [(mul 64, [#3, mit-plv#95])]) (add 64, [mit-plv#95, (mul 64, [mit-plv#95, (const 4, [])])]) != (add 64, [(mul 64, [#3, mit-plv#95])]) (add 64, [(or 64, [mit-plv#91, mit-plv#93]), (mul 64, [(or 64, [mit-plv#91, mit-plv#93]), (const 4, [])])]) != (add 64, [(mul 64, [(const 5, []), (or 64, [mit-plv#91, mit-plv#93])])])
JasonGross
pushed a commit
that referenced
this pull request
Mar 23, 2022
Unable to unify: [inr [351, 349, 350]] == [inr [103, 108, 110]] Could not unify the values at index 0: [#351, #349, #350] != [#103, #108, #110] index 0: #351 != #103 (slice 0 44, [#345]) != (slice 0 44, [#100]) index 0: #345 != #100 (add 64, [#58, #95, #343]) != (add 64, [#58, #98]) (add 64, [#95, #343]) != (add 64, [#98]) (add 64, [#95, (mul 64, [#95, #331])]) != (add 64, [(mul 64, [#3, #95])]) (add 64, [#95, (mul 64, [#95, (const 4, [])])]) != (add 64, [(mul 64, [#3, #95])]) (add 64, [(or 64, [#91, #93]), (mul 64, [(or 64, [#91, #93]), (const 4, [])])]) != (add 64, [(mul 64, [(const 5, []), (or 64, [#91, #93])])])
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
@JasonGross Almost done -- I'm using a PR so you can review it easily