Library mcertikos.layerlib.LAsmModuleSemHighInv

This file provide the semantics for the Asm instructions. Since we introduce paging mechanisms, the semantics of memory load and store are different from Compcert Asm
Require Import Coqlib.
Require Import Maps.
Require Import ASTExtra.
Require Import Integers.
Require Import Floats.
Require Import Values.
Require Import Memory.
Require Import Events.
Require Import Globalenvs.
Require Import Smallstep.
Require Import AsmX.
Require Import Conventions.
Require Import Machregs.
Require Import AuxLemma.
Require Import CommonTactic.
Require Import liblayers.logic.PTreeModules.
Require Import liblayers.logic.PTreeSemantics.
Require Import liblayers.compcertx.MemWithData.
Require Import liblayers.compcertx.Stencil.
Require Import liblayers.compcertx.MakeProgram.
Require Import liblayers.compat.CompatData.
Require Import liblayers.compat.CompatPrimSem.
Require Import liblayers.compat.CompatLayers.
Require Import liblayers.compat.CompatExternalCalls.
Require Import CompCertBuiltins.
Require Import LAsm.
Require Import MemoryExtra.
Require Import LAsmModuleSemDef.
Require Import Observation.

Invariants preserved by LAsm modules

Section ModuleSemantics_High_Invariant.

  Context `{Hobs: Observation}.
  Context `{Hstencil: Stencil}.
  Context `{Hmem: Mem.MemoryModel}.
  Context `{Hmwd: UseMemWithData mem}.

  Context `{make_program_ops: !MakeProgramOps function Ctypes.type fundef unit}.
  Context `{make_program_prf: !MakeProgram function Ctypes.type fundef unit}.


  Lemma exec_load_high_level_invariant {D: compatdata}
        {L} `{acc_def_prf: !AccessorsDefined (D:= D) L}:
     {F V} (ge: Genv.t F V) d rs rs' m m' d' rd chunk a,
      high_level_invariant d
      (acc_exec_load L) F V ge chunk (m, d) a rs rd = Next rs' (m', d')
      high_level_invariant d'.
    unfold acc_exec_load; intros.
    destruct (acc_exec_load_strong (acc_def:= acc_def_prf) L).
    destruct x. simpl in ×.
    exploit (exec_load_high_level_invariant ge); simpl; eauto.

  Lemma exec_store_high_level_invariant {D: compatdata}
        {L} `{acc_def_prf: !AccessorsDefined (D:= D) L}:
     {F V} (ge: Genv.t F V) d rs rs' m m' d' rd chunk a rl,
      high_level_invariant d
      (acc_exec_store L) F V ge chunk (m, d) a rs rd rl = Next rs' (m', d')
      high_level_invariant d'.
    unfold acc_exec_store; intros.
    destruct (acc_exec_store_strong (acc_def:= acc_def_prf) L).
    destruct x. simpl in ×.
    exploit (exec_store_high_level_invariant ge); simpl; eauto.

  Lemma goto_label_high_level_invariant {D: compatdata}
        {L} `{acc_def_prf: !AccessorsDefined (D:= D) L}:
     d rs m rs' m' d' f0 l,
      high_level_invariant d
      goto_label (Hfl:= FindLabels_instance_0) f0 l rs (m, d) =
      Next (mem:= mwd D) rs' (m', d')
      high_level_invariant d'.
    unfold goto_label; intros.
    destruct (label_pos l 0 (fn_code f0)); try discriminate.
    destruct (rs PC); contra_inv.
    inv H0; trivial.

  Lemma exec_instr_high_level_invariant {D: compatdata}
        {L} `{acc_def_prf: !AccessorsDefined (D:= D) L}:
     ge rs rs' m m' d d' f0 i,
      (exec_instr (lcfg_ops:= LC L)) ge f0 i rs (m, d) = Next rs' (m', d')
      high_level_invariant d
      high_level_invariant d'.
    intros. unfold exec_instr in ×.
    destruct i;
      lazymatch goal with
    | H: context[exec_loadex _ _ _ _ _ _] |- _simpl in *; eapply exec_load_high_level_invariant; eauto 1
    | H: context[exec_storeex _ _ _ _ _ _ _] |- _simpl in *; eapply exec_store_high_level_invariant; eauto 1
    | H: context[Asm.exec_instr _ _ _ _ _] |- _idtac
    | [HW: _ = Next _ _ |- _]=>
      inv HW; eauto
    destruct i; simpl in *;
    match goal with
      | H: context[(acc_exec_load _)] |-_eapply exec_load_high_level_invariant; eauto 1
      | H: context[(acc_exec_store _)] |- _eapply exec_store_high_level_invariant; eauto 1
      | HW: _ = Next _ _ |- _try (inv HW; trivial; fail)
      | _idtac
    lift_unfold; subdestruct;
    match goal with
      | HW: _ = Next _ _ |- _
        inv HW; trivial;
        eapply goto_label_high_level_invariant; eauto 1

  Lemma external_call_high_level_invariant' {D: compatdata}
        {L} `{acc_def_prf: !AccessorsDefined (D:= D) L}:
     {F V} (ge: Genv.t F V) ef
           args m m' t vl d d'
           (BUILTIN_ENABLED : match ef with
                                | EF_external _ _False
                                | _True
      external_call' (mem:= mwd D)
                     (external_calls_ops:= (compatlayer_extcall_ops L))
                     (fun bTrue) ef ge args (m, d) t vl (m', d')
      high_level_invariant d
      high_level_invariant d'.
    Opaque decode_longs encode_long.
    destruct ef; inv BUILTIN_ENABLED; inv H; simpl in *;
    inv H1; trivial.

      exploit (volatile_store_without_d (D:=D) ge); eauto.
      intros [_ ?]; subst; trivial.
      exploit (volatile_store_without_d (D:=D) ge); eauto.
      intros [_ ?]; subst; trivial.
      lift_unfold. destruct H2 as [_ ?].
      destruct H3 as [_ ?]. congruence.
      lift_unfold. destruct H4 as [_ ?]. congruence.
      lift_unfold. destruct H9 as [_ ?]. congruence.

  Lemma step_high_level_invariant {D: compatdata}
        {L} `{acc_def_prf: !AccessorsDefined L}:
     `{extcall_inv_avail_prf: !ExtcallInvariantsAvailable L},
     `{primcall_inv_avail_prf: !PrimcallInvariantsAvailable L},
     ge rs rs' m m' d d' t,
               b ef,
                Genv.find_funct_ptr ge b = Some (External ef) →
                 i sg, ef = EF_external i sg),
      (step (mem:= mwd D) (lcfg_ops:= LC L))
        ge (State rs (m, d)) t (State rs' (m', d')) →
      high_level_invariant d
      high_level_invariant d'.
    intros until ge.
    inversion 2; subst.
      eapply exec_instr_high_level_invariant; eauto.
      eapply external_call_high_level_invariant'; eauto.
      eapply external_call_high_level_invariant'; eauto.
      destruct (Hge_external _ _ H5) as [i[sg ?]]; subst.
      inv H8. inv H0.
      destruct H1 as [? Hsem].
      inv Hsem. destruct H1 as [?[_[Hsem'[?[? ?]]]]]; subst.
      pose proof (extcall_invariants_available _ _ H0).
      eapply external_call_high_level_invariant; eauto.
      destruct (Hge_external _ _ H6) as [i[sg ?]]; subst.
      inv H7.
      destruct H0 as [?[?[?[? Hsem]]]]; subst.
      inv Hsem.
      pose proof (primcall_invariants_available _ _ H1).
      eapply primitive_call_high_level_invariant; eauto.


End ModuleSemantics_High_Invariant.