• Top
    • Documentation
    • Books
    • Boolean-reasoning
    • Projects
    • Debugging
    • Community
    • Std
    • Proof-automation
    • Macro-libraries
    • ACL2
    • Interfacing-tools
    • Hardware-verification
    • Software-verification
      • Kestrel-books
        • Crypto-hdwallet
        • Apt
        • Error-checking
        • Fty-extensions
        • Isar
        • Kestrel-utilities
        • Set
        • C
          • Syntax-for-tools
          • Atc
          • Transformation-tools
          • Language
            • Abstract-syntax
            • Integer-ranges
            • Implementation-environments
            • Dynamic-semantics
              • Exec-expr
              • Exec
              • Exec-arrsub
              • Variable-resolution-preservation
              • Init-value-to-value
              • Apconvert-expr-value
              • Execution-limit-monotonicity
                • Exec-2limits
                • Exec-monotone
                  • Exec-2limits-to-exec
                • Exec-memberp
                • Exec-stmt
                • Exec-address
                • Init-scope
                • Exec-unary
                • Exec-member
                • Exec-fun
                • Exec-stmt-while
                • Eval-iconst
                • Exec-binary-strict-pure
                • Variable-visibility-preservation
                • Object-type-preservation
                • Eval-binary-strict-pure
                • Exec-block-item-list
                • Exec-indir
                • Exec-ident
                • Exec-block-item
                • Eval-cast
                • Frame-and-scope-peeling
                • Exec-expr-list
                • Exec-obj-declon
                • Exec-cast
                • Exec-const
                • Eval-unary
                • Exec-stmt-dowhile
                • Exec-initer
                • Eval-const
                • Execution-without-function-calls
              • Static-semantics
              • Grammar
              • Types
              • Integer-formats-definitions
              • Computation-states
              • Portable-ascii-identifiers
              • Values
              • Integer-operations
              • Object-designators
              • Operations
              • Errors
              • Tag-environments
              • Function-environments
              • Character-sets
              • Flexible-array-member-removal
              • Arithmetic-operations
              • Pointer-operations
              • Real-operations
              • Array-operations
              • Scalar-operations
              • Structure-operations
            • Representation
            • Insertion-sort
            • Pack
          • Soft
          • Bv
          • Imp-language
          • Ethereum
          • Event-macros
          • Java
          • Riscv
          • Bitcoin
          • Zcash
          • Yul
          • ACL2-programming-language
          • Prime-fields
          • Json
          • Syntheto
          • File-io-light
          • Cryptography
          • Number-theory
          • Axe
          • Lists-light
          • Builtins
          • Solidity
          • Helpers
          • Htclient
          • Typed-lists-light
          • Arithmetic-light
        • X86isa
        • Axe
        • Execloader
      • Math
      • Testing-utilities
    • Execution-limit-monotonicity

    Exec-monotone

    Monotonicity of the execution functions with respect to limits.

    See execution-limit-monotonicity for motivation.

    we also disable the theorems in exec-2limits-to-exec, now that they have served their purpose in the proof here.

    Definitions and Theorems

    Theorem: exec-fun-limit-monotone

    (defthm exec-fun-limit-monotone
  (b* (((mv val? &)
        (exec-fun fun args compst fenv limit)))
    (implies (and (not (errorp val?))
                  (>= (nfix limit1) (nfix limit)))
             (equal (exec-fun fun args compst fenv limit1)
                    (exec-fun fun args compst fenv limit)))))

    Theorem: exec-expr-limit-monotone

    (defthm exec-expr-limit-monotone
  (b* (((mv eval? &)
        (exec-expr e compst fenv limit)))
    (implies (and (not (errorp eval?))
                  (>= (nfix limit1) (nfix limit)))
             (equal (exec-expr e compst fenv limit1)
                    (exec-expr e compst fenv limit)))))

    Theorem: exec-expr-list-limit-monotone

    (defthm exec-expr-list-limit-monotone
  (b* (((mv eval? &)
        (exec-expr-list es compst fenv limit)))
    (implies (and (not (errorp eval?))
                  (>= (nfix limit1) (nfix limit)))
             (equal (exec-expr-list es compst fenv limit1)
                    (exec-expr-list es compst fenv limit)))))

    Theorem: exec-stmt-limit-monotone

    (defthm exec-stmt-limit-monotone
  (b* (((mv sval &)
        (exec-stmt s compst fenv limit)))
    (implies (and (not (errorp sval))
                  (>= (nfix limit1) (nfix limit)))
             (equal (exec-stmt s compst fenv limit1)
                    (exec-stmt s compst fenv limit)))))

    Theorem: exec-stmt-while-limit-monotone

    (defthm exec-stmt-while-limit-monotone
 (b* (((mv sval &)
       (exec-stmt-while test body compst fenv limit)))
   (implies (and (not (errorp sval))
                 (>= (nfix limit1) (nfix limit)))
            (equal (exec-stmt-while test body compst fenv limit1)
                   (exec-stmt-while test body compst fenv limit)))))

    Theorem: exec-stmt-dowhile-limit-monotone

    (defthm exec-stmt-dowhile-limit-monotone
  (b* (((mv sval &)
        (exec-stmt-dowhile body test compst fenv limit)))
    (implies
         (and (not (errorp sval))
              (>= (nfix limit1) (nfix limit)))
         (equal (exec-stmt-dowhile body test compst fenv limit1)
                (exec-stmt-dowhile body test compst fenv limit)))))

    Theorem: exec-initer-limit-monotone

    (defthm exec-initer-limit-monotone
  (b* (((mv ival &)
        (exec-initer initer compst fenv limit)))
    (implies (and (not (errorp ival))
                  (>= (nfix limit1) (nfix limit)))
             (equal (exec-initer initer compst fenv limit1)
                    (exec-initer initer compst fenv limit)))))

    Theorem: exec-obj-declon-limit-monotone

    (defthm exec-obj-declon-limit-monotone
  (b* ((compst1 (exec-obj-declon declon compst fenv limit)))
    (implies (and (not (errorp compst1))
                  (>= (nfix limit1) (nfix limit)))
             (equal (exec-obj-declon declon compst fenv limit1)
                    (exec-obj-declon declon compst fenv limit)))))

    Theorem: exec-block-item-limit-monotone

    (defthm exec-block-item-limit-monotone
  (b* (((mv sval &)
        (exec-block-item item compst fenv limit)))
    (implies (and (not (errorp sval))
                  (>= (nfix limit1) (nfix limit)))
             (equal (exec-block-item item compst fenv limit1)
                    (exec-block-item item compst fenv limit)))))

    Theorem: exec-block-item-list-limit-monotone

    (defthm exec-block-item-list-limit-monotone
 (b* (((mv sval &)
       (exec-block-item-list items compst fenv limit)))
  (implies (and (not (errorp sval))
                (>= (nfix limit1) (nfix limit)))
           (equal (exec-block-item-list items compst fenv limit1)
                  (exec-block-item-list items compst fenv limit)))))