

@1538

8 years 
mulligan 
changes to execute_1_0 proof



@1537

8 years 
campbell 
A preliminary definition of the abstract status record for RTLabs.



@1536

8 years 
campbell 
Use predicates throughout the structured traces.



@1535

8 years 
campbell 
Make RTLabs semantics use knowledge that the next instruction always …



@1534

8 years 
mulligan 
committing my changes to interpret to prevent any further conflicts



@1533

8 years 
sacerdot 
Proof of execute_1 with Russell completed (up to some daemon used before).



@1532

8 years 
campbell 
Remove jump classification from structured traces.



@1531

8 years 
campbell 
A notion of abstract structured traces.



@1530

8 years 
campbell 
Update due to Russell changes.



@1529

8 years 
campbell 
Update RTLabs to RTL with unary operation types.



@1528

8 years 
campbell 
Update most of Assembly.ma with new syntax and identifier maps.
Change …



@1527

8 years 
sacerdot 
More on Russell.



@1526

8 years 
sacerdot 
Using Russell to prove some properties.



@1524

8 years 
boender 
 adapted files to new Matita syntax



@1523

8 years 
campbell 
Separate out positive and Z definitions from extralib.ma.
Minor syntax …



@1522

8 years 
mulligan 
changes to preamble and lin to asm pass, resolved conflict in interpret



@1521

8 years 
sacerdot 
Syntax change in Matita: change what where => change where what.



@1520

8 years 
campbell 
Generate cost labels with correct type.



@1519

8 years 
campbell 
More syntax updates.



@1518

8 years 
campbell 
Update to new syntax.



@1517

8 years 
sacerdot 
Ported to syntax of Matita 0.99.1.



@1516

8 years 
sacerdot 
Ported to syntax of Matita 0.99.1.



@1515

8 years 
campbell 
Add type of maps on positive binary numbers, and use them for …



@1514

8 years 
mulligan 
changes from today. matita keeps dieing



@1513

8 years 
campbell 
Fix up Clight examples.



@1512

8 years 
campbell 
Shorten proof of goal that solves now.



@1511

8 years 
mulligan 
proofs, added, changes to execute_1_0 function therefore required to …



@1510

8 years 
sacerdot 
All files ported to new dependent inversion.



@1509

8 years 
mulligan 
i hate subtraction over the nats



@1506

8 years 
mulligan 
changes to costs proof over weekend



@1503

8 years 
mulligan 
inductive type complete



@1502

8 years 
mulligan 
changes to inductive defn



@1501

8 years 
sacerdot 
We must take in account the labelled_p predicate.



@1500

8 years 
sacerdot 
Proof sketch for one of the two main proofs.



@1499

8 years 
mulligan 
part way through main statement transcription



@1498

8 years 
mulligan 
added new file for proof that costs are preserved at asm level



@1497

8 years 
mulligan 
a bit of tidying up, removing dead code, etc.



@1496

8 years 
mulligan 
problem fixed with tactics missing a semicolon to stop greedy parsing



@1495

8 years 
mulligan 
proper calculation of costs



@1494

8 years 
mulligan 
changes to get everything compiling again



@1493

8 years 
mulligan 
finished well labeled check, up to injectivity of the label map



@1489

8 years 
campbell 
Fix up a couple of lemmas affected by the change to add_with_carries.



@1487

8 years 
mulligan 
committing some code for well labelling



@1486

8 years 
mulligan 
finished asm costs



@1485

8 years 
sacerdot 
Less nice definitiion of add_with_carries that avoids a quadratic …



@1484

8 years 
sacerdot 
…



@1482

8 years 
sacerdot 
1. very long standing conflict committed (but don't ask me what the …



@1481

8 years 
sacerdot 
Proof fixed. The new standard library does not index any longer the …



@1480

8 years 
sacerdot 
Proof changed (to use new automation).
BUG FOUND: automation fails if …



@1479

8 years 
boender 
 added insert_lookup_opt
 assembly compiles now



@1478

8 years 
sacerdot 
Almost completed (up to is_finals).



@1476

8 years 
sacerdot 
…



@1475

8 years 
sacerdot 
Towards the two fullexec transition systems that represent …



@1474

8 years 
mulligan 
adding missing asmcosts file for computing the costs of an assembly …



@1472

8 years 
mulligan 
moved proof utils to erasure.ma



@1471

8 years 
mulligan 
finished erasure and generalised so as to work on arbitrary joint programs



@1470

8 years 
mulligan 
finished, pretty ugly though as matita's disambiguation is a …



@1469

8 years 
mulligan 
finished new relabelling for graphs subject to one axiom closed



@1467

8 years 
mulligan 
small change, adding entry and exit labels into the internal function, …



@1466

8 years 
mulligan 
erasure for graph based joint languages almost complete



@1465

8 years 
sacerdot 
Dead code removed.



@1464

8 years 
campbell 
Use unification hints to simplify the graph monotonicity proofs.



@1463

8 years 
mulligan 
added erasure for lin



@1461

8 years 
mulligan 
rewrote erasure for assembly programs



@1460

8 years 
mulligan 
most of cost label erasure for assembly language complete, with one …



@1459

8 years 
boender 
 moved stronger occurs_exactly_once lemma to its proper place in …



@1458

8 years 
mulligan 
added skeleton file for erasure function for joint languages



@1457

8 years 
sacerdot 
Bug fixed: when calling an internal function, the pc block is now set …



@1453

8 years 
sacerdot 
…



@1452

8 years 
sacerdot 
Bug fixed: labels MUST be represented as pointers whose block is the …



@1451

8 years 
sacerdot 
1. All axioms in LIN/semantics.ma closed
2. succ_pc and …



@1450

8 years 
sacerdot 
Disambiguation problem avoided.



@1431

8 years 
sacerdot 
Backend todo (in Italian only, sorry...)



@1430

8 years 
sacerdot 
Bug fixed: push/pop must work on the isp (now added).
Note: the sp is …



@1429

8 years 
sacerdot 
Useless and removed.



@1426

8 years 
boender 
removed axiom



@1425

8 years 
mulligan 
changes to the fixpoint calculation in ertl



@1424

8 years 
sacerdot 
1. fold function over BitVectorTries? moved from ERTLToLTL to …



@1423

8 years 
sacerdot 
 spill no longer used
 BUG IN Interference: generating the destruct …



@1419

8 years 
sacerdot 
All axioms closed.



@1417

8 years 
boender 
 proved that jumps always increase  this should make termination easy



@1416

8 years 
sacerdot 
Maps from hardware registers to beval now implemented in ASM/I8051 (in …



@1415

8 years 
sacerdot 
1. hwreg_store/retrieve no longer returns a res (but it is still …



@1412

8 years 
sacerdot 
Tailcalls (via ids or pointers) to internal functions implemented. …



@1411

8 years 
sacerdot 
1. sem_params2 splitted into sem_params1 + sem_params2 to take out the …



@1410

8 years 
campbell 
Remove a few old workarounds.



@1408

8 years 
sacerdot 
1. Added joint/BEGlobalenvs that is a modification of …



@1404

8 years 
boender 
 reworked + added
 added an axiom to arithmetic, but should be provable



@1401

8 years 
ricciott 
Changes concerning the new behavior of destruct.



@1396

8 years 
sacerdot 
Proof obligation closed.



@1395

8 years 
sacerdot 
1) New versions of pointer_of_beval/beval_of_pointer with a stricter …



@1393

8 years 
boender 
 added invariant for policy trie to assembly
 change (syntax only) …



@1390

8 years 
sacerdot 
All fetch_result implementations have been factorized out, leaving …



@1389

8 years 
sacerdot 
One more axiom closed.



@1388

8 years 
sacerdot 
fetch_result implemented for ERTL. This required a different …



@1387

8 years 
sacerdot 
Further simplification *params1 no longer used.



@1386

8 years 
sacerdot 
Structure of semantic parameters simplified.



@1385

8 years 
sacerdot 
1. fetch_result and pop_frame now takes the genv in input
2. …



@1384

8 years 
sacerdot 
* fetch_ra taken out of pop_frame again since it is used uniformly and …



@1383

8 years 
sacerdot 
Potential bug fixed and bug found: the way pointers and labels are put …


