

@1898

8 years 
mulligan 
Ported changes from ASMCosts.ma into CostsProof?.ma and got everything …



@1897

8 years 
mulligan 
Changes to proof, and pushed through those changes to rest of the file.



@1896

8 years 
mulligan 
Finished horror proof



@1895

8 years 
mulligan 
Split the ASMCosts files while working on traverse_code_internal. A …



@1894

8 years 
mulligan 
Closed a hole in the proof by deriving a contradiction using even_p …



@1892

8 years 
mulligan 
Lots of work from today



@1891

8 years 
mulligan 
Nightmarish proofs on bitvectors. Trying to find some way of making …



@1890

8 years 
boender 
 added comment about bitvector translation



@1889

8 years 
boender 
 some pages of article



@1887

8 years 
boender 
 added SEFM2012 directory
 some progress in assembly



@1886

8 years 
boender 
 improvements for disambiguation and quick(er) typing



@1885

8 years 
boender 
 updated assembler with new definition of occurs_exactly_once



@1882

8 years 
tranquil 
big update, alas incomplete:
joint changed a bit, and all BE languages …



@1879

8 years 
boender 
 Policy compiles until the end, still some (fairly trivial) cases …



@1870

8 years 
boender 
 changed sigma00 in Assembly to use foldl_strong + proved invariants …



@1869

8 years 
mulligan 
a load of axioms closed in ASMCosts file



@1831

8 years 
mulligan 
small changes to asmcosts file to refactor proof



@1811

8 years 
boender 
 corrected definition of geb



@1810

8 years 
boender 
 new version of policy that compiles up to the final glue



@1809

8 years 
boender 
 committed partially compiling version of policy (up until …



@1807

8 years 
mulligan 
some changes, as finally worked out what i was up to prior to working …



@1711

8 years 
mulligan 
finished block_cost' proof: 1.5 minutes to typecheck qed.



@1710

8 years 
mulligan 
changes from friday afternoon



@1709

8 years 
mulligan 
Changes to the execution of the MOVC instruction



@1697

8 years 
mulligan 
important bug found



@1696

8 years 
mulligan 
finished adding russell types to the traverse_cost_* functions



@1695

8 years 
mulligan 
Progress on CostsProof?.ma file.



@1693

8 years 
mulligan 
Changes to ASMCosts and CostsProofs? files to get everything working again.



@1692

8 years 
mulligan 
resolved conflict in asm costs this morning



@1691

8 years 
sacerdot 
Some progress in the proof: less daemons, less hypotheses in lemmas.



@1684

8 years 
mulligan 
changes from the past week



@1669

8 years 
mulligan 
Commit for claudio



@1668

8 years 
boender 
 split build_maps into build_maps and build_maps_ok
 work with CSC …



@1667

8 years 
sacerdot 
Main lemma for the main_thm of AssemblyProof? redeclared as an axiom …



@1666

8 years 
sacerdot 
PreStatus? datatype change: the code_memory field is not a left …



@1665

8 years 
mulligan 
progress on closing holes in block_cost' proof



@1663

8 years 
mulligan 
old cases working again, work on new ones



@1658

8 years 
mulligan 
asm costs changes from today



@1650

8 years 
mulligan 
changes over the last couple of days: stuck due to matita producing …



@1649

8 years 
boender 
 changes to Assembly for integration with Policy and easier use of …



@1648

8 years 
mulligan 
new version of utilities/monad.ma with typecheck command comented out



@1646

8 years 
mulligan 
finished the block_costs computation, and propagated the changes …



@1645

8 years 
mulligan 
more progress on the ASMCosts work: block_costs is now complete …



@1642

8 years 
mulligan 
finished big proof in all but two cases



@1639

8 years 
mulligan 
changes from today



@1635

8 years 
tranquil 
* lists with binders and monads
* Joint.ma and other temprarily …



@1632

8 years 
boender 
 strengthened insert_lookup_opt



@1625

8 years 
mulligan 
before christmas



@1624

8 years 
mulligan 
commit for claudio



@1623

8 years 
mulligan 
strange matita issue



@1622

8 years 
mulligan 
to avoid conflicts, bug in typechecker?



@1621

8 years 
mulligan 
to prevent conflicts



@1620

8 years 
sacerdot 
One of the mutual cases of the open proof is practically finished.



@1619

8 years 
sacerdot 
Major advancement.



@1616

8 years 
sacerdot 
Partially ported to new Matita syntax.
Because of some changes in …



@1615

8 years 
sacerdot 
Policy now depends on Assembly and not the other way around.



@1614

8 years 
boender 
 split policy from assembly



@1613

8 years 
sacerdot 
Coercion moved to Matita standard lib.



@1609

8 years 
boender 
 added alias to ASM/BitVectorTrie
 removed double include from …



@1607

8 years 
sacerdot 
Porting to new library.



@1606

8 years 
sacerdot 
Porting to last library of Matita.



@1604

8 years 
mulligan 
for jaap



@1602

8 years 
mulligan 
giving up on fetch proofs for time being



@1600

8 years 
sacerdot 
utilities and ASM ported to the new standard library



@1599

8 years 
sacerdot 
Start of merging of stuff into the standard library of Matita.



@1598

8 years 
mulligan 
changes over the last couple of days



@1597

8 years 
mulligan 
fixed fetch for jaap



@1593

8 years 
boender 
 cleaned up Assembly, moved some definitions elsewhere



@1592

8 years 
boender 
 updated definitions to work with programs of maximum 2^{16 instructions}



@1591

8 years 
mulligan 
work from today



@1588

8 years 
sacerdot 
All goals generated by Russell for execute_1* are now closed, mostly …



@1587

8 years 
mulligan 
changes from today, including removing indexing of problematic …



@1582

8 years 
mulligan 
more added to the proof of execute_1_preinstruction  ~260 cases now …



@1581

8 years 
mulligan 
Dangling de Bruijn pointer when trying to propagate russell to set_arg_1



@1579

8 years 
mulligan 
Finished proof with simpler statement, making everything a lot nicer



@1578

8 years 
boender 
 proof of termination of policy completed (needs some cleanup work …



@1577

8 years 
mulligan 
A lot more cases added to the proof at the bottom of …



@1576

8 years 
mulligan 
big changes to proofs, just two small cases remain and a few …



@1575

8 years 
mulligan 
Changes to specifications on execute functions



@1573

8 years 
mulligan 
more complicated than it appears :(



@1571

8 years 
mulligan 
small changes



@1570

8 years 
sacerdot 
Dependent type crazyness.



@1567

8 years 
mulligan 
more work on big proof, 2.5 cases left



@1564

8 years 
sacerdot 
Commit where we use a dependently typed version of bigops.
I am now …



@1562

8 years 
mulligan 
new version of assembly, fixed conflict in positivemap.ma, changed …



@1561

8 years 
sacerdot 
More dependent types to accomodate the statement.



@1560

8 years 
sacerdot 
Complete reimplementation that:
1) assumes no code before the first …



@1558

8 years 
sacerdot 
Snapshot before moving things to ASMCosts.ma.



@1557

8 years 
sacerdot 
Byte => costlabel



@1556

8 years 
mulligan 
submitting to avoid conflicts



@1555

8 years 
boender 
 changes to assembly
 added lookup to PositiveMap?
 lightly changed …



@1554

8 years 
sacerdot 
Major progress in the proof.



@1553

8 years 
boender 
 added lookup_opt_lookup lemma



@1550

8 years 
sacerdot 
Repaired after use of Russell for execute_1.



@1549

8 years 
mulligan 
removed cruft from costsproof.ma file so claudio can work in parallel



@1548

8 years 
sacerdot 
…



@1547

8 years 
sacerdot 
Invariant on cost of one execution step strengthened.



@1544

8 years 
sacerdot 
StructuredTraces? inhabited for object code.



@1541

8 years 
mulligan 
interpret.ma now compiles



@1540

8 years 
mulligan 
changes to proof in interrupt.ma


