Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Declarations with indexing on the left-hand side #577

Closed
brianhuffman opened this issue Mar 1, 2019 · 4 comments
Closed

Declarations with indexing on the left-hand side #577

brianhuffman opened this issue Mar 1, 2019 · 4 comments
Labels
feature request Asking for new or improved functionality

Comments

@brianhuffman
Copy link
Contributor

I thought it might be nice to be able to write declarations like this:

sbox : [256][8]
sbox @ i = gf28Inverse (xformByte i)

The idea is that like defining a function by writing an argument on the left-hand side, we should also be able to define lists by writing an indexing operator on the left-hand side. The index variable is then in scope on the right-hand side, so the element value can be defined in terms of the index.

I think this feature would let us write Cryptol specs that more obviously match the official reference spec, because sequence-indexing notation is commonly used in papers that describe crypto algorithms.

Currently our usual approach when translating a spec to Cryptol is to define sequences of values using recursive list comprehensions. The problem is that this makes all the indexing implicit, when it is usually explicit in the original paper, so it's harder to see that the two are the same. Making the indexing explicit in Cryptol should make our specs more obviously correct.

Implementation should be a straightforward desugaring. Basically f @ i = expr would be translated as f = generate (\i -> expr), where generate is a new prelude function or primitive:

generate : {n, ix, a} (fin ix, fin n, n >= 1, ix >= width (n - 1)) => ([ix] -> a) -> [n]a
generate f = [ f i | i <- [0 .. n-1] ]
@brianhuffman brianhuffman added the feature request Asking for new or improved functionality label Mar 1, 2019
@yav
Copy link
Member

yav commented Mar 1, 2019

Since I was just looking at this stuff: if we implement this, we should probably add it to record construction too (maybe update, not sure). Here is an example of what I mean:

// Currently we support this:
type T = { fun1  : [8] -> [8], fun2 : [16] -> [16] }

funs : T
funs = { fun1 x = x + 1, fun2 x = x - 1 }
// special notation for defining function fields

// With what you propose above we should probably allow it in records also:
type S = { vals1 : [8][8], vals2 : [16][8] }

lists : S
lists = { vals1 @ i = 3, vals2 @ i = i + 1 }
// special notation for defining sequnce fields

@atomb
Copy link
Contributor

atomb commented Mar 4, 2019

I like this idea.

@atomb
Copy link
Contributor

atomb commented Apr 8, 2019

Not only do I like this idea in the abstract, I'm now implementing an algorithm that's specified in a way that would line up very nicely with this notation. It would make the Cryptol and the PDF match very closely.

@brianhuffman brianhuffman mentioned this issue Jun 18, 2019
Merged
@brianhuffman
Copy link
Contributor Author

This feature is implemented in pull request #609.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
feature request Asking for new or improved functionality
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@yav @atomb @brianhuffman