|
|
|---|
|
|
|
|---|
Refine read-memory-unsigned32 to use the stobj states.
Function:
(defun read1-memory-unsigned32 (addr stat feat) (declare (xargs :non-executable t)) (declare (xargs :guard (non-exec (and (stat1p stat) (integerp addr) (statp (stat-from-stat1 stat)) (featp feat) (stat-validp (stat-from-stat1 stat) feat))))) (prog2$ (acl2::throw-nonexec-error 'read1-memory-unsigned32 (list addr stat feat)) (let ((feat1 (stat1p stat))) (cond ((acl2::mbt$ feat1) (let ((b0 (read-memory-unsigned8 addr (stat-from-stat1 stat) feat)) (stat (stat-from-stat1 stat))) (let* ((b1 (read-memory-unsigned8 (+ (lifix addr) 1) stat feat)) (b2 (read-memory-unsigned8 (+ (lifix addr) 2) stat feat)) (b3 (read-memory-unsigned8 (+ (lifix addr) 3) stat feat))) (cond ((feat-little-endianp feat) (logapp 8 b0 (logapp 8 b1 (logapp 8 b2 (logapp 8 b3 0))))) ((feat-big-endianp feat) (logapp 8 b3 (logapp 8 b2 (logapp 8 b1 (logapp 8 b0 0))))) (t (acl2::impossible-fn)))))) (t 0)))))
Theorem:
(defthm read1-memory-unsigned32-to-read-memory-unsigned32 (implies (stat1p stat) (equal (read1-memory-unsigned32 addr stat feat) (read-memory-unsigned32 addr (stat-from-stat1 stat) feat))) :rule-classes :rewrite)
Theorem:
(defthm read-memory-unsigned32-to-read1-memory-unsigned32 (implies (statp stat) (equal (read-memory-unsigned32 addr stat feat) (read1-memory-unsigned32 addr (stat1-from-stat stat) feat))) :rule-classes :rewrite)