

@2755

8 years 
tranquil 
* changed primitives of abstract status (with stuf that is probably …



@2754

8 years 
sacerdot 
1. WARNING: I commented out one of James's function used in …



@2753

8 years 
mckinna 
Further tidying up thanks to Claudio's strong_decidable intervention; …



@2752

8 years 
mckinna 
Fixed TODO regarding length of list_instr
Added ASM/CodeMemory.ma to …



@2751

8 years 
mckinna 
Added
 AssemblyTooLarge? : ErrorMessage?
to complete compiler.ma



@2750

8 years 
mckinna 
Miscellany on 2^{16 bounds, memory, lemmas+definitions.
Completes …}



@2749

8 years 
regisgia 
* Updated version of the FramaC plugin.



@2748

8 years 
regisgia 
* Remove the old version of the plugin.



@2747

8 years 
sacerdot 
The compiler (frontend + backend)



@2746

8 years 
sacerdot 
1. debugging code in glue
2. updated version



@2745

8 years 
sacerdot 
1. Complexity of policy computation lowered from O(n^{2) to O(n)
2. …}



@2744

8 years 
sacerdot 
Build no longer fails.



@2743

8 years 
sacerdot 
Latest version of the compiler, extracted with the latest version of …



@2742

8 years 
sacerdot 
Untrusted register colouring fully branched.



@2741

8 years 
sacerdot 
File used only by untrusted code.
Implemented in Matita to exploit …



@2740

8 years 
sacerdot 
Graph colouring terminated up to Uses that will be implemented
in Matita.



@2739

8 years 
sacerdot 
The graph colouring algorithm takes in input also the function.



@2738

8 years 
sacerdot 
Porting the graph colouring stuff from the untrusted prototype to the …



@2737

8 years 
garnier 
Commit of current proof state for Clight to Cminor translation.



@2736

8 years 
sacerdot 
Untrusted fixpoint computation branched in.



@2735

8 years 
campbell 
Note about loose end in FEMeasurable.



@2734

8 years 
mckinna 
yet another puzzling automation failure, in the repaired case:
"" …



@2733

8 years 
sacerdot 
All axioms in set_adt implemented by hand.



@2732

8 years 
sacerdot 
Unused code removed.



@2731

8 years 
sacerdot 
Minimal set of axioms implemented to make the driver run.



@2730

8 years 
sacerdot 
Exported again.



@2729

8 years 
sacerdot 
More errors recognized



@2728

8 years 
sacerdot 
listb.ma => listb_extra.ma for extraction



@2727

8 years 
campbell 
Remove a couple of redundant hypotheses.



@2726

8 years 
campbell 
Show max stack preserved in FEMeasurable.



@2725

8 years 
campbell 
Add observables to FEMeasurable proof; fix silly typo.



@2724

8 years 
campbell 
Add RTLabs cost labelling checks to compiler.ma.



@2723

8 years 
campbell 
Library name typo fixed.



@2722

8 years 
campbell 
It's easier to keep the real function identifier in frontend …



@2721

8 years 
campbell 
Give the real error in the driver.



@2720

8 years 
tranquil 
implemented back end ops that were still axioms



@2719

8 years 
sacerdot 
More values manually abstracted to functions to avoid failwiths at …



@2718

8 years 
sacerdot 
set_empty turned from a value to a function because it is not …



@2717

8 years 
sacerdot 
Extracted code for the whole compiler.
The space cost model is not …



@2716

8 years 
sacerdot 
utilities/deqsets.ma => utilities/deqsets_extra.ma for extraction



@2715

8 years 
sacerdot 
Policy.ma repaired



@2714

8 years 
sacerdot 
PolicyStep?.ma repaired



@2713

8 years 
sacerdot 
PolicyFront?.ma repaired



@2712

8 years 
tranquil 
changed some fields of joint_internal_function's invariant
fixed linearise



@2711

8 years 
sacerdot 
…



@2710

8 years 
sacerdot 
ASMCosts.ma repaired



@2709

8 years 
sacerdot 
LINToAsm repaired



@2708

8 years 
tranquil 
fixed linearise and LINToASM
LINToASM has now correct transformation …



@2707

8 years 
sacerdot 
Assembly repaired.



@2706

8 years 
mckinna 
repaired contentious broken automation
at end of subgoal 9 of case (* …



@2705

8 years 
sacerdot 
More progress in ASM towards implementing the new pseudoinstructions.



@2704

8 years 
tranquil 
moved JMP from instructions to preinstructions, and added MovSuccessor? …



@2703

8 years 
mckinna 
now includes defn of costlabel_map



@2702

8 years 
sacerdot 
1. proof closed in ASM/UtilBranch
2. more passes integrated in the …



@2701

8 years 
sacerdot 
Automation failure fixed by replacing with hand made proof.



@2700

8 years 
sacerdot 
1. exponential function dropped in favour of standard library
2. …



@2699

8 years 
mckinna 
simplified dependencies somewhat



@2698

8 years 
mckinna 
simplified dependencies



@2697

8 years 
sacerdot 
Compiler fixed to include the ERTLptrToLTL pass.



@2696

8 years 
sacerdot 
I can't get this right... :(



@2695

8 years 
sacerdot 
Renamed again.



@2694

8 years 
tranquil 
completed ERTLptrToLTL



@2693

8 years 
sacerdot 
1. Stuff moved to correct places.
2. ERTLptr pass added



@2692

8 years 
garnier 
Add some more constraints in clight_cminor_data.



@2691

8 years 
sacerdot 
ERTLtoERTLptr* moved to the proper place



@2690

8 years 
campbell 
Most of the measurable subtrace preservation proof done.



@2689

8 years 
tranquil 
* fixed passes up to linearisation



@2688

8 years 
tranquil 
* in Arithmeticcs.ma: commented include that breaks script in latest …



@2687

8 years 
tranquil 
* polished some interfaces



@2686

8 years 
mckinna 
two minor modifications to assist disambiguation of "lookup"
file …



@2685

8 years 
campbell 
Progress on measurable trace preservation: prefix preserves observable …



@2684

8 years 
sacerdot 
…



@2683

8 years 
tranquil 
proof of properties of b_graph_program_transform (with an open axiom)



@2682

8 years 
campbell 
Don't apply inv in after_n_steps to last state.



@2681

8 years 
tranquil 
* improvements to the graph translation function
* fixed passes up to LTL



@2680

8 years 
mckinna 
proofs which previously succeeded fail, thanks to fold on positive_map …



@2679

8 years 
mckinna 
Further tweak to Brian's changes: no normalization reqd at all!



@2678

8 years 
campbell 
Switch to single source step simulations for frontend measurable …



@2677

8 years 
campbell 
Retain the pointer for the function called in frontend call states
so …



@2676

8 years 
campbell 
Less aggressive normalisation in ASMCosts to prevent memory blowup.



@2675

8 years 
tranquil 
* a generic graph program transformation



@2674

8 years 
tranquil 
* another change in block definition
* RTLabs > RTL and ERTL > …



@2673

8 years 
tranquil 
corrected some compilation errors (that might depend on some matita update)



@2672

8 years 
sacerdot 
One less axiom on bitvectors.



@2671

8 years 
sacerdot 
simplification



@2670

8 years 
campbell 
Clean up from recent commits.



@2669

8 years 
campbell 
Tweak exec_steps output; show that simulations extend to measurable …



@2668

8 years 
campbell 
Intermediate measurable proof checkin before I change its traces again.



@2667

8 years 
garnier 
Clight to Cminor, statements: some cases down. Subset of the …



@2666

8 years 
piccolo 
bug fixed in blocks.ma



@2665

8 years 
sacerdot 
…



@2664

8 years 
sacerdot 
Tailcall case implemented (it does not happen ATM).



@2663

8 years 
piccolo 
some minor modifications to ERTLtoERTLptr



@2662

8 years 
piccolo 
Towards a very generalized lemma that summarizes all of Paolo's results.



@2661

8 years 
sacerdot 
stacksize "repaired" by "considering" tailcalls
Some daemons added …



@2660

8 years 
sacerdot 
…



@2659

8 years 
sacerdot 
Tailcall elimination no longer necessary:
1. the backend is almost …



@2658

8 years 
sacerdot 
…



@2657

8 years 
sacerdot 
Cost proof fully repaired. It was broken by the definitions used in …



@2656

8 years 
sacerdot 
Ported to tailcalls (currently nothing is classified as a tailcall).


