Cleaning up proof a bit.

apetcher-amazon · Mar 28, 2024 · 31fff76 · 31fff76
1 parent 7630c6b
commit 31fff76
Show file tree

Hide file tree

Showing 5 changed files with 298 additions and 317 deletions.
diff --git a/Coq/EC/Curve.v b/Coq/EC/Curve.v
@@ -405,6 +405,25 @@ Section CurveFacts.
 
   Qed.
 
+  Theorem mul_nz_if : forall x y,
+    ~ Feq x 0 ->
+    ~ Feq y 0 -> 
+    ~Feq (x * y) 0.
+
+    intros.
+    intuition idtac.
+    assert (Feq ((Finv x) * (x * y)) ((Finv x) * 0)).
+    rewrite H1.
+    reflexivity.
+    rewrite associative in H2.
+    rewrite left_multiplicative_inverse in H2.
+    rewrite left_identity in H2.
+    subst.
+    apply H0.
+    nsatz.
+    trivial.
+  Qed.
+
   Theorem inv_mul_eq : forall (x y : F),
     ~(Feq y 0) ->
     ~(Feq x 0) ->
@@ -522,6 +541,169 @@ Section CurveFacts.
 
   Qed.
 
+  Theorem Fpow_0 : forall n,
+    n <> O ->
+    Feq (Fpow n 0) 0.
+
+    destruct n; intros; simpl in *.
+    intuition idtac.
+    nsatz.
+
+  Qed.
+
+  Theorem Fpow_minus_1_div : forall n x,
+    n <> 0%nat -> 
+    ~(Feq x 0) -> 
+    Feq (Fpow (n - 1) x) (Fdiv (Fpow n x) x).
+
+    intros.
+
+    destruct n.
+    lia.
+    simpl.
+    replace (n - 0)%nat with n.
+    rewrite field_div_definition.
+    rewrite <- associative.
+    rewrite commutative.
+    rewrite <- associative.
+    rewrite left_multiplicative_inverse.
+    nsatz.
+    intuition idtac.
+    lia.
+  Qed.
+
+  Theorem Fmul_same_l : forall z x y,
+    ~(Feq z 0) -> 
+    Feq (z * x) (z * y) ->
+    Feq x y.
+
+    intros.
+    assert (Feq ((Finv z) * (z * x)) ((Finv z) * (z * y))).
+    rewrite H0.
+    reflexivity.
+    rewrite associative in H1.
+    rewrite left_multiplicative_inverse in H1.
+    rewrite left_identity in H1.
+    rewrite H1.
+    rewrite associative.
+    rewrite left_multiplicative_inverse.
+    nsatz.
+    trivial.
+    trivial.
+
+  Qed.
+
+  Theorem Fmul_nz : forall x y,
+    ~Feq x 0 ->
+    ~Feq y 0 -> 
+    ~Feq (x * y) 0.
+
+    intros.
+    intuition idtac.
+    assert (Feq ((Finv x) * (x * y))  ((Finv x) * 0)).
+    rewrite H1.
+    reflexivity.
+    rewrite associative in H2.
+    rewrite left_multiplicative_inverse in H2.
+    rewrite left_identity in H2.
+    apply H0.
+    nsatz.
+    trivial.
+  Qed.
+
+  Theorem Fpow_nz : forall n x,
+    ~Feq x 0 ->
+    ~Feq (Fpow n x) 0.
+
+    induction n; intros; simpl in *.
+    assert (~ Feq 0 1).
+    apply zero_neq_one.
+    intuition idtac.
+    apply H0.
+    symmetry.
+    trivial.
+    apply Fmul_nz; eauto.
+  Qed.
+
+  Theorem Finv_1 :
+    Feq (Finv 1) 1.
+
+    apply (Fmul_same_l 1).
+    assert (~Feq 0 1).
+    apply zero_neq_one.
+    intuition idtac.
+    apply H.
+    symmetry.
+    trivial.
+    rewrite commutative.
+    rewrite left_multiplicative_inverse.
+    rewrite left_identity.
+    reflexivity.
+    assert (~Feq 0 1).
+    apply zero_neq_one.
+    intuition idtac.
+    apply H.
+    symmetry.
+    trivial.
+  Qed.
+
+
+  Theorem Fpow_minus_div : forall n2 n1 x,
+    n1 >= n2 -> 
+    ~Feq x 0 -> 
+    Feq (Fpow (n1 - n2) x) (Fdiv (Fpow n1 x) (Fpow n2 x)).
+
+    induction n2; intros; simpl.
+    replace (n1 - 0)%nat with n1.
+    rewrite field_div_definition.
+    rewrite commutative.
+    rewrite Finv_1.
+    nsatz.
+    lia.
+
+    destruct n1.
+    lia.
+    simpl.
+    rewrite IHn2.
+    rewrite field_div_definition.
+    rewrite field_div_definition.
+    rewrite inv_mul_eq.
+    setoid_replace ( x * Fpow n1 x * (Finv x * Finv (Fpow n2 x))) with ( ((Finv x) * x) * Fpow n1 x * (Finv (Fpow n2 x))).
+    rewrite left_multiplicative_inverse.
+    nsatz.
+    intuition idtac.
+    nsatz.
+    trivial.
+    apply Fpow_nz; eauto.
+    trivial.
+    lia.
+    trivial.
+
+  Qed.
+
+  Theorem Fpow_add: forall x y z,
+    Feq (Fpow (x + y) z) ((Fpow x z) * (Fpow y z)).
+
+    induction x; intros; simpl.
+    rewrite left_identity.
+    reflexivity.
+
+    rewrite IHx.
+    rewrite associative.
+    reflexivity.
+
+  Qed.
+
+  Theorem Fpow_mul : forall x y z,
+    Feq (Fpow (x * y) z) ((Fpow x (Fpow y z))).
+
+    induction x; intros; simpl.
+    reflexivity.
+    rewrite Fpow_add.
+    rewrite IHx.
+    reflexivity.
+  Qed.
+
   (* Facts about jac_eq *)
   Theorem jac_eq_refl : forall p, jac_eq p p.
 

diff --git a/Coq/EC/ECEqProof.v b/Coq/EC/ECEqProof.v
@@ -844,45 +844,6 @@ Section ECEqProof.
   Definition from_bytes_2 p :=
     (felem_from_bytes (fst p), felem_from_bytes (snd p)).
 
-  Theorem inv_mul_distr : forall x y,
-    x <> 0 ->
-    y <> 0 -> 
-    Finv (x * y) = (Finv x) * (Finv y).
-
-    intros.
-    apply (Fmul_same_l (x * y)).
-    apply Fmul_nz; eauto.
-    rewrite (commutative (x * y)).
-    rewrite left_multiplicative_inverse.
-    replace (x * y * (Finv x * Finv y)) with (((Finv x) * x) * ((Finv y) * y)).
-    rewrite left_multiplicative_inverse.
-    rewrite left_multiplicative_inverse.
-    nsatz.
-    trivial.
-    trivial.
-    nsatz.
-    apply Fmul_nz; auto.
-
-  Qed.
-
-  Theorem Fmul_nz : forall x y,
-    x <> 0 ->
-    y <> 0 -> 
-    x * y <> 0.
-
-    intros.
-    intuition idtac.
-    assert ((Finv x) * (x * y) = (Finv x) * 0).
-    congruence.
-    rewrite associative in H2.
-    rewrite left_multiplicative_inverse in H2.
-    rewrite left_identity in H2.
-    subst.
-    apply H0.
-    nsatz.
-    trivial.
-  Qed.
-
   Variable F_order_correct : nat -> Prop.
   Context `{F_FiniteField : @FiniteField F_order_correct F Feq _ _ _ _ _ _ _ _ F_field}.
   Hypothesis p384_field_order_correct : F_order_correct p384_field_order.
@@ -931,7 +892,7 @@ Section ECEqProof.
     f_equal.
     rewrite felem_sqr_spec.
     repeat rewrite associative.
-    repeat rewrite inv_mul_distr.
+    repeat rewrite inv_mul_eq.
     repeat rewrite associative.
 
     replace (f * Finv f * Finv f * Finv f * Finv f ) with ((Finv f * f) * Finv f * Finv f * Finv f).
@@ -942,8 +903,8 @@ Section ECEqProof.
     nsatz.
     trivial.
     trivial.
-    apply Fmul_nz; trivial.
     trivial.
+    apply mul_nz_if; trivial.
     trivial.
 
   Qed.