• Top
    • Documentation
    • Books
    • Boolean-reasoning
    • Projects
    • Debugging
    • Std
    • Proof-automation
    • Macro-libraries
    • ACL2
    • Interfacing-tools
    • Hardware-verification
    • Software-verification
    • Math
      • 100-theorems
      • Arithmetic
        • Lispfloat
        • Arithmetic-1
        • Number-theory
        • Proof-by-arith
        • Arith-equivs
        • Include-an-arithmetic-book
        • Number-theory
          • Euler
          • Euclid
          • Fermat
          • Arithmetic-3
          • Arithmetic-2
          • Arithmetic-light
          • Arithmetic-5
        • Bit-vectors
        • Algebra
      • Testing-utilities
    • Number-theory

    Fermat

    This book contains a proof of Fermat's Theorem: if p is a prime and m is not divisible by p, then mod(m^(p-1),p) = 1.

    The proof depends on Euclid's Theorem:

    Definitions and Theorems

    We shall construct two lists of integers, each of which is a permutation of the other.

    Function: perm

    (defun perm (a b)
  (if (consp a)
      (if (member (car a) b)
          (perm (cdr a) (remove1 (car a) b))
        nil)
    (not (consp b))))
    The first list is 
    positives(p-1) = (1, 2, ..., p-1)

    Function: positives

    (defun positives (n)
  (if (zp n)
      nil
    (cons n (positives (1- n)))))
    The second list is 
    mod-prods(p-1,a,p) = (mod(a,p), mod(2*a,p), ..., mod((p-1)*a,p))

    Function: mod-prods

    (defun mod-prods (n m p)
  (if (zp n)
      nil
    (cons (mod (* m n) p)
          (mod-prods (1- n) m p))))
    The proof is based on the pigeonhole principle, as stated below.

    Theorem: not-member-remove1

    (defthm not-member-remove1
  (implies (not (member x l))
           (not (member x (remove1 y l)))))

    Theorem: perm-member

    (defthm perm-member
  (implies (and (perm a b) (member x a))
           (member x b)))

    Function: distinct-positives

    (defun distinct-positives (l n)
  (if (consp l)
      (and (not (zp n))
           (not (zp (car l)))
           (<= (car l) n)
           (not (member (car l) (cdr l)))
           (distinct-positives (cdr l) n))
    t))

    Theorem: member-positives

    (defthm member-positives
  (iff (member x (positives n))
       (and (not (zp n))
            (not (zp x))
            (<= x n))))

    Theorem: pigeonhole-principle

    (defthm pigeonhole-principle
  (implies (distinct-positives l (len l))
           (perm (positives (len l)) l))
  :rule-classes nil)
    We must show that mod-prods(p-1,m,p) is a list of length p-1 of distinct integers between 1 and p-1.

    Theorem: len-mod-prods

    (defthm len-mod-prods
  (implies (natp n)
           (equal (len (mod-prods n m p)) n)))

    Theorem: mod-distinct

    (defthm mod-distinct
  (implies (and (primep p)
                (not (zp i))
                (< i p)
                (not (zp j))
                (< j p)
                (not (= j i))
                (integerp m)
                (not (divides p m)))
           (not (equal (mod (* m i) p)
                       (mod (* m j) p)))))

    Theorem: mod-p-bnds

    (defthm mod-p-bnds
  (implies (and (primep p)
                (not (zp i))
                (< i p)
                (integerp m)
                (not (divides p m)))
           (and (< 0 (mod (* m i) p))
                (> p (mod (* m i) p))))
  :rule-classes nil)

    Theorem: mod-prods-distinct-positives

    (defthm mod-prods-distinct-positives
  (implies (and (primep p)
                (natp n)
                (< n p)
                (integerp m)
                (not (divides p m)))
           (distinct-positives (mod-prods n m p)
                               (1- p)))
  :rule-classes nil)

    Theorem: perm-mod-prods

    (defthm perm-mod-prods
  (implies (and (primep p)
                (integerp m)
                (not (divides p m)))
           (perm (positives (1- p))
                 (mod-prods (1- p) m p)))
  :rule-classes nil)
    The product of the members of a list is invariant under permutation:

    Function: times-list

    (defun times-list (l)
  (if (consp l)
      (* (ifix (car l)) (times-list (cdr l)))
    1))

    Theorem: perm-times-list

    (defthm perm-times-list
  (implies (perm l1 l2)
           (equal (times-list l1) (times-list l2)))
  :rule-classes nil)
    It follows that the product of the members of mod-prods(p-1,m,p) is (p-1)!.

    Theorem: times-list-positives

    (defthm times-list-positives
  (equal (times-list (positives n))
         (fact n)))

    Theorem: times-list-equal-fact

    (defthm times-list-equal-fact
  (implies (perm (positives n) l)
           (equal (times-list l) (fact n))))

    Theorem: times-list-mod-prods

    (defthm times-list-mod-prods
  (implies (and (primep p)
                (integerp m)
                (not (divides p m)))
           (equal (times-list (mod-prods (1- p) m p))
                  (fact (1- p)))))
    On the other hand, the product modulo p may be computed as follows.

    Theorem: mod-mod-prods

    (defthm mod-mod-prods
  (implies (and (not (zp p)) (integerp m) (natp n))
           (equal (mod (times-list (mod-prods n m p)) p)
                  (mod (* (fact n) (expt m n)) p)))
  :rule-classes nil)
    Fermat's theorem now follows easily.

    Theorem: not-divides-p-fact

    (defthm not-divides-p-fact
  (implies (and (primep p) (natp n) (< n p))
           (not (divides p (fact n))))
  :rule-classes nil)

    Theorem: mod-times-prime

    (defthm mod-times-prime
  (implies (and (primep p)
                (integerp a)
                (integerp b)
                (integerp c)
                (not (divides p a))
                (= (mod (* a b) p) (mod (* a c) p)))
           (= (mod b p) (mod c p)))
  :rule-classes nil)

    Theorem: fermat

    (defthm fermat
  (implies (and (primep p)
                (integerp m)
                (not (divides p m)))
           (equal (mod (expt m (1- p)) p) 1))
  :rule-classes nil)