|
|
|---|
|
|
|
|---|
Refine write-memory-unsigned16 to use the stobj states.
Function:
(defun write1-memory-unsigned16 (addr val stat feat) (declare (xargs :non-executable t)) (declare (xargs :guard (non-exec (and (stat1p stat) (integerp addr) (ubyte16p val) (statp (stat-from-stat1 stat)) (featp feat) (stat-validp (stat-from-stat1 stat) feat))))) (prog2$ (acl2::throw-nonexec-error 'write1-memory-unsigned16 (list addr val stat feat)) (if (acl2::mbt$ (stat1p stat)) (let ((val (ubyte16-fix val)) (stat (stat-from-stat1 stat))) (let* ((b0 (bitops::part-select-width-low val 8 0)) (b1 (bitops::part-select-width-low val 8 8))) (mv-let (1st-byte 2nd-byte) (if (feat-little-endianp feat) (mv b0 b1) (mv b1 b0)) (let* ((stat (write-memory-unsigned8 addr 1st-byte stat feat)) (stat (write-memory-unsigned8 (+ (lifix addr) 1) 2nd-byte stat feat))) stat)))) 0)))
Theorem:
(defthm write1-memory-unsigned16-to-write-memory-unsigned16 (implies (stat1p stat) (equal (write1-memory-unsigned16 addr val stat feat) (write-memory-unsigned16 addr val (stat-from-stat1 stat) feat))) :rule-classes :rewrite)
Theorem:
(defthm write-memory-unsigned16-to-write1-memory-unsigned16 (implies (statp stat) (equal (write-memory-unsigned16 addr val stat feat) (write1-memory-unsigned16 addr val (stat1-from-stat stat) feat))) :rule-classes :rewrite)