• Top
    • Documentation
    • Books
    • Boolean-reasoning
    • Projects
      • Apt
      • Zfc
      • Acre
      • Milawa
      • Smtlink
      • Abnf
      • Vwsim
      • Isar
      • Wp-gen
      • Dimacs-reader
      • Pfcs
      • Legacy-defrstobj
      • C
      • Proof-checker-array
      • Soft
      • Farray
      • Rp-rewriter
      • Instant-runoff-voting
      • Imp-language
      • Sidekick
      • Ethereum
      • Leftist-trees
      • Java
      • Riscv
      • Taspi
      • Bitcoin
      • Zcash
      • Des
      • X86isa
      • Sha-2
      • Yul
      • Proof-checker-itp13
      • Regex
      • ACL2-programming-language
      • Json
      • Jfkr
      • Equational
      • Cryptography
      • Axe
      • Poseidon
      • Where-do-i-place-my-book
      • Aleo
        • Aleobft
        • Aleovm
          • Circuits
            • Circuits-pfcs
            • Circuits-r1cs
            • Field-div-flagged
            • Boolean-assert-true
            • Field-inv-flagged
            • Boolean-assert
            • Field-div-unchecked
            • Field-neq
            • Boolean-not
            • Boolean-assert-all
            • Boolean-if
            • Field-if
            • Boolean-xor
            • Boolean-or
            • Boolean-nor
            • Boolean-and
            • Boolean-nand
            • Boolean-neq
            • Boolean-eq
            • Field-div-checked
            • Field-inv-checked
            • Boolean-assert-neq
            • Boolean-assert-eq
            • Field-eq
            • Field-assert-neq
            • Field-assert-eq
            • Field-mul
            • Field-sub
              • Field-sub-spec
              • Field-sub-correctness
                • Field-sub-circuit
                • Field-sub-lifting
              • Field-square
              • Field-neg
              • Field-double
              • Field-add
            • Language
          • Leo
        • Bigmems
        • Builtins
        • Execloader
        • Solidity
        • Paco
        • Concurrent-programs
        • Bls12-377-curves
      • Debugging
      • Community
      • Std
      • Proof-automation
      • Macro-libraries
      • ACL2
      • Interfacing-tools
      • Hardware-verification
      • Software-verification
      • Math
      • Testing-utilities
    • Field-sub

    Field-sub-correctness

    Correctness of the circuit.

    The equivalence between predicate and specification is proved automatically via the prime fields library rules.

    The extension to the circuit is boilerplate.

    Definitions and Theorems

    Theorem: field-sub-pred-to-spec

    (defthm field-sub-pred-to-spec
  (implies (and (primep prime)
                (pfield::fep x prime)
                (pfield::fep y prime)
                (pfield::fep z prime))
           (equal (field-sub-pred x y z prime)
                  (field-sub-spec x y z prime))))

    Theorem: field-sub-circuit-to-spec

    (defthm field-sub-circuit-to-spec
  (implies (and (equal (pfcs::lookup-definition (pfname "field_sub")
                                                defs)
                       (field-sub-circuit))
                (primep prime)
                (pfield::fep x prime)
                (pfield::fep y prime)
                (pfield::fep z prime))
           (equal (pfcs::definition-satp (pfname "field_sub")
                                         defs (list x y z)
                                         prime)
                  (field-sub-spec x y z prime))))