diff options
| author | Yann Herklotz <git@yannherklotz.com> | 2020-07-06 14:09:54 +0100 |
|---|---|---|
| committer | Yann Herklotz <git@yannherklotz.com> | 2020-07-06 14:09:54 +0100 |
| commit | 78e549331ba3f136ebe94955f68767bd384df454 (patch) | |
| tree | e82c58fc59b6b4b1e9472cf26ce35ce0e6efdf14 | |
| parent | c76ac9be323e3513aa0db2721ecd0f6c3987aef0 (diff) | |
| download | vericert-78e549331ba3f136ebe94955f68767bd384df454.tar.gz vericert-78e549331ba3f136ebe94955f68767bd384df454.zip | |
HTLgenproof compiles again
- Commented out Iload, Istore proofs for now
| -rw-r--r-- | src/Compiler.v | 7 | ||||
| -rw-r--r-- | src/translation/HTLgenproof.v | 44 | ||||
| -rw-r--r-- | src/verilog/HTL.v | 6 | ||||
| -rw-r--r-- | src/verilog/Verilog.v | 12 |
4 files changed, 47 insertions, 22 deletions
diff --git a/src/Compiler.v b/src/Compiler.v index a34b359..17d8921 100644 --- a/src/Compiler.v +++ b/src/Compiler.v @@ -48,7 +48,9 @@ From compcert.driver Require From coqup Require Verilog Veriloggen - HTLgen. + Veriloggenproof + HTLgen + HTLgenproof. Parameter print_RTL: Z -> RTL.program -> unit. Parameter print_HTL: HTL.program -> unit. @@ -107,6 +109,9 @@ Definition CompCert's_passes := ::: mkpass Cminorgenproof.match_prog ::: mkpass Selectionproof.match_prog ::: mkpass RTLgenproof.match_prog + ::: mkpass Inliningproof.match_prog + ::: mkpass HTLgenproof.match_prog + ::: mkpass Veriloggenproof.match_prog ::: pass_nil _. Definition match_prog: Csyntax.program -> RTL.program -> Prop := diff --git a/src/translation/HTLgenproof.v b/src/translation/HTLgenproof.v index fe4faf5..338e77d 100644 --- a/src/translation/HTLgenproof.v +++ b/src/translation/HTLgenproof.v @@ -537,7 +537,8 @@ Section CORRECTNESS. econstructor. split. apply Smallstep.plus_one. eapply HTL.step_module; eauto. - apply assumption_32bit. + inv CONST. assumption. + inv CONST. assumption. econstructor; simpl; trivial. constructor; trivial. econstructor; simpl; eauto. @@ -555,7 +556,8 @@ Section CORRECTNESS. assert (Ple res0 (RTL.max_reg_function f)) by (eapply RTL.max_reg_function_def; eauto; simpl; auto). unfold Ple in H12; lia. - unfold_merge. simpl. + Admitted. +(* unfold_merge. simpl. rewrite AssocMap.gso. apply AssocMap.gss. apply st_greater_than_res. @@ -608,7 +610,7 @@ Section CORRECTNESS. apply AssocMap.gss. apply st_greater_than_res. assumption. - Admitted. + Admitted.*) Hint Resolve transl_iop_correct : htlproof. Ltac tac := @@ -680,7 +682,7 @@ Section CORRECTNESS. (Integers.Ptrofs.of_int (Integers.Int.repr z))) as OFFSET. (** Modular preservation proof *) - assert (Integers.Ptrofs.unsigned OFFSET mod 4 = 0) as MOD_PRESERVE. + (*assert (Integers.Ptrofs.unsigned OFFSET mod 4 = 0) as MOD_PRESERVE. { rewrite HeqOFFSET. apply PtrofsExtra.add_mod; crush. rewrite Integers.Ptrofs.unsigned_repr_eq. @@ -1024,7 +1026,7 @@ Section CORRECTNESS. specialize (ASBP (Integers.Ptrofs.unsigned (Integers.Ptrofs.divu OFFSET (Integers.Ptrofs.repr 4)))). exploit ASBP; big_tac. - rewrite NORMALISE in H0. rewrite H1 in H0. assumption. + rewrite NORMALISE in H0. rewrite H1 in H0. assumption.*) Admitted. Hint Resolve transl_iload_correct : htlproof. @@ -1041,7 +1043,7 @@ Section CORRECTNESS. exists R2 : HTL.state, Smallstep.plus HTL.step tge R1 Events.E0 R2 /\ match_states (RTL.State s f sp pc' rs m') R2. Proof. - intros s f sp pc rs m chunk addr args src pc' a m' H H0 H1 R1 MSTATES. +(* intros s f sp pc rs m chunk addr args src pc' a m' H H0 H1 R1 MSTATES. inv_state. inv_arr_access. + (** Preamble *) @@ -1838,7 +1840,7 @@ Section CORRECTNESS. (Integers.Ptrofs.unsigned (Integers.Ptrofs.add (Integers.Ptrofs.repr 0) (Integers.Ptrofs.repr ptr))) v). - apply X in H0. invert H0. congruence. + apply X in H0. invert H0. congruence.*) Admitted. Hint Resolve transl_istore_correct : htlproof. @@ -1859,8 +1861,9 @@ Section CORRECTNESS. eexists. split. apply Smallstep.plus_one. eapply HTL.step_module; eauto. - apply assumption_32bit. - eapply Verilog.stmnt_runp_Vnonblock_reg with + inv CONST; assumption. + inv CONST; assumption. +(* eapply Verilog.stmnt_runp_Vnonblock_reg with (rhsval := if b then posToValue 32 ifso else posToValue 32 ifnot). constructor. @@ -1883,7 +1886,8 @@ Section CORRECTNESS. Unshelve. constructor. - Qed. + Qed.*) + Admitted. Hint Resolve transl_icond_correct : htlproof. Lemma transl_ijumptable_correct: @@ -1921,7 +1925,8 @@ Section CORRECTNESS. eapply Smallstep.plus_two. eapply HTL.step_module; eauto. - apply assumption_32bit. + inv CONST; assumption. + inv CONST; assumption. constructor. econstructor; simpl; trivial. econstructor; simpl; trivial. @@ -1932,6 +1937,9 @@ Section CORRECTNESS. constructor. constructor. unfold state_st_wf in WF; big_tac; eauto. + destruct wf as [HCTRL HDATA]. apply HCTRL. + apply AssocMapExt.elements_iff. eexists. + match goal with H: control ! pc = Some _ |- _ => apply H end. apply HTL.step_finish. unfold Verilog.merge_regs. @@ -1948,7 +1956,8 @@ Section CORRECTNESS. - econstructor. split. eapply Smallstep.plus_two. eapply HTL.step_module; eauto. - apply assumption_32bit. + inv CONST; assumption. + inv CONST; assumption. constructor. econstructor; simpl; trivial. econstructor; simpl; trivial. @@ -1957,6 +1966,10 @@ Section CORRECTNESS. unfold state_st_wf in WF; big_tac; eauto. + destruct wf as [HCTRL HDATA]. apply HCTRL. + apply AssocMapExt.elements_iff. eexists. + match goal with H: control ! pc = Some _ |- _ => apply H end. + apply HTL.step_finish. unfold Verilog.merge_regs. unfold_merge. @@ -2001,8 +2014,9 @@ Section CORRECTNESS. all: big_tac. - apply regs_lessdef_add_greater. - unfold Plt; lia. + apply regs_lessdef_add_greater. unfold Plt; lia. + apply regs_lessdef_add_greater. unfold Plt; lia. + apply regs_lessdef_add_greater. unfold Plt; lia. apply init_reg_assoc_empty. constructor. @@ -2078,6 +2092,8 @@ Section CORRECTNESS. match goal with | H8 : context[if ?x then _ else _] |- _ => destruct x eqn:EQ end; try contradiction. crush. apply proj_sumbool_true in H10. lia. + constructor. simplify. rewrite AssocMap.gss. + simplify. rewrite AssocMap.gso. apply AssocMap.gss. simplify. lia. Opaque Mem.alloc. Opaque Mem.load. Opaque Mem.store. diff --git a/src/verilog/HTL.v b/src/verilog/HTL.v index 3ba5b59..b3d1442 100644 --- a/src/verilog/HTL.v +++ b/src/verilog/HTL.v @@ -141,8 +141,10 @@ Inductive step : genv -> state -> Events.trace -> state -> Prop := forall g m args res, step g (Callstate res m args) Events.E0 (State res m m.(mod_entrypoint) - (AssocMap.set (mod_st m) (posToValue m.(mod_entrypoint)) - (init_regs args m.(mod_params))) + (AssocMap.set (mod_reset m) (ZToValue 0) + (AssocMap.set (mod_finish m) (ZToValue 0) + (AssocMap.set (mod_st m) (posToValue m.(mod_entrypoint)) + (init_regs args m.(mod_params))))) (empty_stack m)) | step_return : forall g m asr asa i r sf pc mst, diff --git a/src/verilog/Verilog.v b/src/verilog/Verilog.v index 064474a..9659189 100644 --- a/src/verilog/Verilog.v +++ b/src/verilog/Verilog.v @@ -736,8 +736,10 @@ Inductive step : genv -> state -> Events.trace -> state -> Prop := forall g res m args, step g (Callstate res m args) Events.E0 (State res m m.(mod_entrypoint) - (AssocMap.set m.(mod_st) (posToValue m.(mod_entrypoint)) - (init_params args m.(mod_args))) + (AssocMap.set (mod_reset m) (ZToValue 0) + (AssocMap.set (mod_finish m) (ZToValue 0) + (AssocMap.set m.(mod_st) (posToValue m.(mod_entrypoint)) + (init_params args m.(mod_args))))) (empty_stack m)) | step_return : forall g m asr i r sf pc mst asa, @@ -884,9 +886,9 @@ Lemma semantics_determinate : Proof. intros. constructor; set (ge := Globalenvs.Genv.globalenv p); simplify. - invert H; invert H0; constructor. (* Traces are always empty *) - - invert H; invert H0; crush. - (*pose proof (mis_stepp_determinate H4 H13)*) - admit. + - invert H; invert H0; crush. assert (f = f0) by admit; subst. + pose proof (mis_stepp_determinate H5 H15). + crush. - constructor. invert H; crush. - invert H; invert H0; unfold ge0, ge1 in *; crush. - red; simplify; intro; invert H0; invert H; crush. |