source: src

Revision Log Mode:


Legend:

Added
Modified
Copied or renamed
Diff Rev Age Author Log Message
(edit) @2032   8 years sacerdot !! BEWARE: major commit !! 1) [affects everybody] split for …
(edit) @2030   8 years garnier Cast simplification was too conservative, now reasonably aggressive.
(edit) @2028   8 years boender - bugfix to Assembly (forgotten sigma) - added …
(edit) @2027   8 years mulligan Got the main lemma to apply in the proof of main theorem again and …
(edit) @2026   8 years mulligan Added a new file to house the main theorem as the type checking time …
(edit) @2025   8 years campbell Silly typo and old comment.
(edit) @2024   8 years mulligan Updated AssemblyProof? to fix mismatch in definition of lookup_labels …
(edit) @2023   8 years mulligan Closed main lemma modulo closing trivial subgoals about commutations …
(edit) @2022   8 years boender - corrected jump calculation algorithm
(edit) @2021   8 years sacerdot Proof skeleton in place. Several daemons to be closed adding invariants.
(edit) @2020   8 years mulligan CJNE case complete, DJNZ case almost complete
(edit) @2019   8 years campbell Split out special induction principle for Clight from soundness file. …
(edit) @2018   8 years mulligan CJNE case a complete mess.
(edit) @2017   8 years mulligan Large swathes of proof of main lemma added.
(edit) @2016   8 years garnier Slight change in simplification strategy to better match the semantics
(edit) @2015   8 years mulligan Changes following a conversation with Jaap: as it stands computation …
(edit) @2014   8 years mulligan Fixed problem in James' email message.
(edit) @2011   8 years garnier Minor cleanup.
(edit) @2010   8 years campbell Make globalenvs use proper maps.
(edit) @2009   8 years garnier Proof of simulation completed for singe-step executions.
(edit) @2008   8 years boender - substantial closing of holes in proof
(edit) @2006   8 years boender - added alias for bitvector zero - changed extralib bounded …
(edit) @2005   8 years boender - minor changes to make things compile with a clean checkout
(edit) @2004   9 years campbell Minor edits from discussion.
(edit) @2003   9 years campbell Some discussion of correctness statements.
(edit) @2001   9 years campbell Get the compiler to output more.
(edit) @2000   9 years campbell Fix g.e. glitch in label simulation.
(edit) @1999   9 years campbell Make back-end use the main global envs.
(edit) @1996   9 years campbell Work on correctness from yesterday.
(edit) @1995   9 years campbell Overall compiler definition; bits and pieces to make everything happy(ish).
(edit) @1994   9 years campbell Remove redundant allocation definition in Globalenvs.
(edit) @1993   9 years campbell Make front-end memory model only depend on the general definitions by …
(edit) @1991   9 years campbell Put the front end transformations together and make an example use it.
(edit) @1988   9 years campbell Abstraction of the memory contents in the memory models is no longer …
(edit) @1987   9 years campbell Move BEValues to common to reflect their use in the memory model for …
(edit) @1986   9 years campbell Get rid of unused abstraction of Globalenvs.
(edit) @1985   9 years mulligan A single `false' case for unconditional jumps completed.
(edit) @1984   9 years mulligan Most proof obligations closed in main_lemma apart from those of the …
(edit) @1983   9 years mulligan Changes to simplify the simpler cases of the main_lemma.
(edit) @1979   9 years sacerdot Very very very tricky lemma closed. A dreadful mix of JM equality …
(edit) @1978   9 years sacerdot Two more cases completed.
(edit) @1977   9 years sacerdot Unblocked: let ... as hides two different terms, one that uses Leibniz …
(edit) @1976   9 years tranquil * monads: just changed some defs, which had to be propagated in some …
(edit) @1975   9 years mulligan Work from today on closing main_thm.
(edit) @1974   9 years garnier Progress on the cast simplification proof.
(edit) @1973   9 years boender - removed superfluous match - displaced 'cases daemon'
(edit) @1972   9 years mulligan Simple lemma with strangely complex proof complete.
(edit) @1971   9 years sacerdot 1. Interpret.ma: we need to prove \sigma (execute_preinstruction …
(edit) @1970   9 years garnier Work-in-progress: correction proof for the cast removal on expressions.
(edit) @1969   9 years sacerdot Some more progress, but now we must prove something on a Russell …
(edit) @1967   9 years sacerdot Mov case completed.
(edit) @1966   9 years mulligan Progress made on main_thm proof: trying to find a pattern to use …
(edit) @1965   9 years boender - further completed proof, changed jump_expansion' to reflect new type …
(edit) @1964   9 years tranquil introduced as_label_of_cost and adapted accordingly. Equality of cost …
(edit) @1963   9 years sacerdot More progress in restoring the original proof.
(edit) @1962   9 years sacerdot More examples are now indexed.
(edit) @1961   9 years sacerdot No more interaction required.
(edit) @1960   9 years campbell Update RTLabs structured traces to make minor changes in definitions.
(edit) @1959   9 years mulligan Commented out diverging application of demodulation and closed goals …
(edit) @1958   9 years mulligan Marked divergence in StatusProofs?.ma
(edit) @1957   9 years mulligan Stitching proofs back together after slight change in statement of …
(edit) @1956   9 years boender - finished proof of lemma (where auto does strange things again)
(edit) @1955   9 years mulligan Completed proof of snd_assembly_1_pseudoinstruction_ok, modulo some …
(edit) @1954   9 years campbell Initial state is in the labelling simulation (modulo global envs results).
(edit) @1953   9 years mulligan Commit to avoid conflicts.
(edit) @1952   9 years sacerdot AssemblyProof? splitted.
(edit) @1951   9 years sacerdot Bug with overloaded names in the context.
(edit) @1950   9 years boender - advances in policy
(edit) @1949   9 years tranquil * lemma trace rel to eq flatten trace * some more properties of …
(edit) @1948   9 years mulligan Weakened statements of ASM/Assembly.ma and ASM/AssemblyProof.ma, so …
(edit) @1947   9 years sacerdot Failure of automation/demod investigated a little bit.
(edit) @1946   9 years sacerdot \snd half_add => add everywhere
(edit) @1945   9 years sacerdot All proof statements repaired.
(edit) @1944   9 years sacerdot common/StructuredTraces no longer depends on ASM/AbstractStatus (again)
(edit) @1943   9 years boender - changed 'labels okay' part of create_label_cost_map
(edit) @1942   9 years mulligan Work on showing the equivalence of two methods of looking up from the maps.
(edit) @1941   9 years mulligan Changes to the AssemblyProof? with a few more (large) axioms closed.
(edit) @1940   9 years boender - committed new version of final invariant
(edit) @1939   9 years mulligan Changes to get things to compile and to avoid the dependency …
(edit) @1938   9 years sacerdot Definitions moved to the right places, now everything compiles again.
(edit) @1937   9 years boender - filled in some of the gaps in the proof of Policy - reverted …
(edit) @1936   9 years mulligan Some holes filled in AssemblyProof?.ma.
(edit) @1935   9 years mulligan Generalized some lemma in ASM/CostsProof.ma to work on abstract …
(edit) @1934   9 years boender - various & sundry moves of lemmas to better places - integrated …
(edit) @1933   9 years boender - slight revamp
(edit) @1932   9 years boender - added some more dependent types (we love 'em)
(edit) @1931   9 years boender - added latest bvt alias - temporary "cases daemon" commit of new …
(edit) @1930   9 years campbell Tidy up labelling simulation stuff a bit.
(edit) @1929   9 years mulligan Simplified proof by removing most of the invariants on the statements …
(edit) @1928   9 years mulligan Moved code from in ASM/ASMCosts*.ma and ASM/CostsProof.ma that should …
(edit) @1927   9 years mulligan Reduced complexity of good_program predicate, ported to new notion of …
(edit) @1926   9 years tranquil * added as_label to abstract status, with as_costed defined with it. …
(edit) @1925   9 years boender - re-added jump_lenggh
(edit) @1924   9 years mulligan Added comment
(edit) @1923   9 years mulligan Small change, closing daemon that went under the RADAR
(edit) @1922   9 years campbell Main labelling simulation proof complete.
(edit) @1921   9 years mulligan Horror proof mostly finished (compiles all way until end of CostsProof?.ma).
(edit) @1920   9 years campbell Most of the labelling simulation. Still need to sort out switch …
(edit) @1919   9 years mulligan Fixes to get everything compiling again
(edit) @1918   9 years tranquil using listb.ma now
Note: See TracRevisionLog for help on using the revision log.