Word_Lib: enable "eval" for word quantifiers (#574)

Enable use of "eval" and "value" for formulas that quantify over word values. The code generator will exhaustively run all possible values. For small word sizes, this works in very reasonable time. E.g. try lemma "∀(x::8 word) y. x + y = (x AND y) + (x OR y)" by eval or value "∀(x::4 word) y z. y mod z = 0 ⟶ (x * y) div z = x * (y div z)" Note that as usual for "eval" and "value" terms have to be close, i.e. you need to use object logic quantifiers. Signed-off-by: Gerwin Klein <gerwin.klein@proofcraft.systems>
2023-02-10 08:54:18 +11:00 · 2023-02-10 08:54:18 +11:00 · 0bee918631
parent e89813ecf2
commit 0bee918631
1 changed files with 7 additions and 0 deletions
--- a/lib/Word_Lib/Word_Lemmas_Internal.thy
+++ b/lib/Word_Lib/Word_Lemmas_Internal.thy
@ -30,6 +30,13 @@ unbundle bit_operations_syntax
 unbundle bit_projection_infix_syntax
 unbundle l4v_word_context

+(* Override default word enum code generation setup, so that "value" and "eval"
+   work with quantification over word. *)
+lemma [code]:
+  \<open>Enum.enum_all P \<longleftrightarrow> list_all P enum\<close>
+  \<open>Enum.enum_ex P \<longleftrightarrow> list_ex P enum\<close> for P :: \<open>'a::len word \<Rightarrow> bool\<close>
+  by (auto simp: list_all_iff list_ex_iff)
+
 lemmas shiftl_nat_def = push_bit_eq_mult[of _ a for a::nat, folded shiftl_def]
 lemmas shiftr_nat_def = drop_bit_eq_div[of _ a for a::nat, folded shiftr_def]