keccak: more wip

Author: clarus

RocqOfNoir/RocqOfNoir.v

@@ -63,7 +63,6 @@ End Pointer.
 
 Module IntegerKind.
   Inductive t : Set :=
-  | Field
   | U1
   | U8
   | U16
@@ -79,6 +78,7 @@ End IntegerKind.
 Module Value.
   Inductive t : Set :=
   | Bool (b : bool)
+  | Field (integer : Z)
   | Integer (kind : IntegerKind.t) (integer : Z)
   | String (s : string)
   | FmtStr : string -> Z -> t -> t
@@ -366,19 +366,24 @@ Module M.
     | _ => LowM.Impossible "assert: expected a boolean"
     end.
 
+  Definition cast_to_field (value : Value.t) : M.t :=
+    match value with
+    | Value.Integer _ i =>
+      LowM.CallPrimitive Primitive.GetFieldPrime (fun p =>
+      if (0 <=? i) && (i <? p) then
+        pure (Value.Field i)
+      else
+        panic ("cast_to_field: out of bounds", value))
+    | _ => impossible "cast_to_field: expected a field"
+    end.
+
   (** We only consider cast between integer values. We consider that the cast succeed if we are
       in the bounds of the target type. For casts to fields we need to retrieve the current
       field prime, which could change depending on the backend. *)
   Definition cast (value : Value.t) (integer_kind : IntegerKind.t) : M.t :=
     match value with
     | Value.Integer _ i =>
       match integer_kind with
-      | IntegerKind.Field =>
-        LowM.CallPrimitive Primitive.GetFieldPrime (fun p =>
-        if (0 <=? i) && (i <? p) then
-          pure (Value.Integer integer_kind i)
-        else
-          panic ("cast: out of bounds", value, integer_kind))
       | IntegerKind.U1 =>
         if (0 <=? i) && (i <? 2) then
           pure (Value.Integer integer_kind i)
@@ -589,7 +594,13 @@ Module Binary.
 
   Parameter greater : Value.t -> Value.t -> M.t.
 
-  Parameter greater_equal : Value.t -> Value.t -> M.t.
+  Definition greater_equal (x y : Value.t) : M.t :=
+    match x, y with
+    | Value.Integer _ x, Value.Integer _ y =>
+      M.pure (Value.Bool (x >=? y))
+    | _, _ =>
+      M.impossible "greater_equal: expected non-field integer values"
+    end.
 
   Parameter and_ : Value.t -> Value.t -> M.t.
 

RocqOfNoir/base64/simulation.v

@@ -287,10 +287,10 @@ Lemma run_base64_encode_elements
         base64_encode_elements.State.result := Some (to_value (snd output));
       |}
     |> in
-    {{ p, State.init ⏩
-      polymorphic.base64_encode_elements InputElements [to_value input] 🔽
-      Panic.to_result (fst output)
-    ⏩ state_end }}.
+  {{ p, State.init ⏩
+    polymorphic.base64_encode_elements InputElements [to_value input] 🔽
+    Panic.to_result (fst output)
+  ⏩ state_end }}.
 Proof.
   unfold polymorphic.base64_encode_elements, base64_encode_elements.
   eapply Run.Let. {

RocqOfNoir/keccak/monomorphic.v

@@ -712,10 +712,10 @@ Definition keccak256₀ (α : list Value.t) : M.t :=
             |))
           |) ]] in
           let~ sliced := [[ M.copy_mutable (|
-            M.alloc (Value.Integer IntegerKind.Field 0)
+            M.alloc (Value.Field 0)
           |) ]] in
           let~ v := [[ M.copy_mutable (|
-            M.alloc (Value.Integer IntegerKind.Field 1)
+            M.alloc (Value.Field 1)
           |) ]] in
           do~ [[
             M.for_ (|
@@ -729,15 +729,14 @@ Definition keccak256₀ (α : list Value.t) : M.t :=
                     M.read (| sliced |),
                     Binary.multiply (|
                       M.read (| v |),
-                      M.cast (|
+                      M.cast_to_field (|
                         M.read (| M.index (|
                           block_bytes,
                           Binary.add (|
                             M.read (| limb_start |),
                             M.read (| k |)
                           |)
-                        |) |),
-                        IntegerKind.Field
+                        |) |)
                       |)
                     |)
                   |)
@@ -748,7 +747,7 @@ Definition keccak256₀ (α : list Value.t) : M.t :=
                   v,
                   Binary.multiply (|
                     M.read (| v |),
-                    Value.Integer IntegerKind.Field 256
+                    Value.Field 256
                   |)
                 |))
               ]]
@@ -1011,12 +1010,11 @@ Definition keccak256₀ (α : list Value.t) : M.t :=
           Value.Integer IntegerKind.U32 4,
           fun (i : Value.t) =>
           let~ lane := [[ M.copy (|
-            M.alloc (M.cast (|
+            M.alloc (M.cast_to_field (|
               M.read (| M.index (|
                 state,
                 M.read (| i |)
-              |) |),
-              IntegerKind.Field
+              |) |)
             |))
           |) ]] in
           let~ lane_le := [[ M.copy (|

RocqOfNoir/keccak/polymorphic.v

@@ -358,10 +358,10 @@ Definition keccak256 (N : U32.t) (α : list Value.t) : M.t :=
             |))
           |) ]] in
           let~ sliced := [[ M.copy_mutable (|
-            M.alloc (Value.Integer IntegerKind.Field 0)
+            M.alloc (Value.Field 0)
           |) ]] in
           let~ v := [[ M.copy_mutable (|
-            M.alloc (Value.Integer IntegerKind.Field 1)
+            M.alloc (Value.Field 1)
           |) ]] in
           do~ [[
             M.for_ (|
@@ -375,15 +375,14 @@ Definition keccak256 (N : U32.t) (α : list Value.t) : M.t :=
                     M.read (| sliced |),
                     Binary.multiply (|
                       M.read (| v |),
-                      M.cast (|
+                      M.cast_to_field (|
                         M.read (| M.index (|
                           block_bytes,
                           Binary.add (|
                             M.read (| limb_start |),
                             M.read (| k |)
                           |)
-                        |) |),
-                        IntegerKind.Field
+                        |) |)
                       |)
                     |)
                   |)
@@ -394,7 +393,7 @@ Definition keccak256 (N : U32.t) (α : list Value.t) : M.t :=
                   v,
                   Binary.multiply (|
                     M.read (| v |),
-                    Value.Integer IntegerKind.Field 256
+                    Value.Field 256
                   |)
                 |))
               ]]
@@ -414,7 +413,11 @@ Definition keccak256 (N : U32.t) (α : list Value.t) : M.t :=
           ]]
         |)
       ]] in
-      let~ state := [[ M.copy_mutable (|
+      [[
+        sliced_buffer
+      ]] in
+    M.read result
+      (* let~ state := [[ M.copy_mutable (|
         M.alloc (Value.Array [
           Value.Integer IntegerKind.U64 0;
           Value.Integer IntegerKind.U64 0;
@@ -657,12 +660,11 @@ Definition keccak256 (N : U32.t) (α : list Value.t) : M.t :=
           Value.Integer IntegerKind.U32 4,
           fun (i : Value.t) =>
           let~ lane := [[ M.copy (|
-            M.alloc (M.cast (|
+            M.alloc (M.cast_to_field (|
               M.read (| M.index (|
                 state,
                 M.read (| i |)
-              |) |),
-              IntegerKind.Field
+              |) |)
             |))
           |) ]] in
           let~ lane_le := [[ M.copy (|
@@ -703,16 +705,16 @@ Definition keccak256 (N : U32.t) (α : list Value.t) : M.t :=
       [[
         result
       ]] in
-    M.read result
+    M.read result *)
   | _ => M.impossible "wrong number of arguments"
   end.
 
-Lemma eq_keccak256₀ :
+(* Lemma eq_keccak256₀ :
   get_function "keccak256" 0 = closure (keccak256 {| Integer.value := 1 |}).
 Proof.
   autorewrite with get_function; apply f_equal.
   apply functional_extensionality; intro α.
   unfold keccak256₀.
   reflexivity.
 Qed.
-Global Hint Rewrite eq_keccak256₀ : get_function_eq.
+Global Hint Rewrite eq_keccak256₀ : get_function_eq. *)