

@2899

8 years 
sacerdot 
1. some renaming ASM_xxx to OC_xxx
2. ASM_pre_classified_system …



@2898

8 years 
piccolo 
1) simplification of cond and seq case for StatusSimulationHelper? …



@2897

8 years 
campbell 
Minor tidying.



@2896

8 years 
campbell 
Complete part of measurable to structured subtraces proof that
shows …



@2895

8 years 
campbell 
Match up function id from RTLabs Callstate with shadow stack,
use in …



@2894

8 years 
campbell 
Some progress on showing that the change to structured traces …



@2893

8 years 
campbell 
Add tlr_unrepeating.



@2892

8 years 
campbell 
Add cost hypotheses.



@2891

8 years 
piccolo 
added precondition on seq statement and tested correct in the …



@2889

8 years 
sacerdot 
It works very nice!



@2888

8 years 
tranquil 
backtracked some partial changes



@2887

8 years 
tranquil 
Corrected bug where eliminable statements where not eliminated. …



@2886

8 years 
piccolo 
partial commit



@2885

8 years 
sacerdot 
Hint at how to change everything.



@2883

8 years 
piccolo 
partial commit



@2879

8 years 
tranquil 
changed coercion from list of joint_seq to blocks to a more efficient one



@2878

8 years 
tranquil 
backtracked some changes that were not ready for commit



@2877

8 years 
garnier 
Correction of a bug in my former bug correction.



@2876

8 years 
tranquil 
corrected another endianess bug in joint_semantics. Switched some …



@2875

8 years 
sacerdot 
Pretty printing of object code integrated too.
A couple of axioms make …



@2871

8 years 
tranquil 
op2 evaluation on beval's rendered oblivious to carry bit when …



@2870

8 years 
sacerdot 
Proof fixed.



@2869

8 years 
tranquil 
some reorganization of definitions, and a new taaf_append_taaf



@2868

8 years 
sacerdot 
Pretty printing of ERTL and ERTLptr code.



@2866

8 years 
tranquil 
corrected two bugs of the translation: constant translation used wrong …



@2865

8 years 
sacerdot 
…



@2863

8 years 
piccolo 
Added new invariant to good_if
Generalized version of cond case for …



@2862

8 years 
sacerdot 
Repaired, a reverse was enough.



@2861

8 years 
mckinna 
PROVISIONAL commit:
Unintentional list reversal cause final step of …



@2860

8 years 
sacerdot 
RTL printing, core dumps ATM



@2859

8 years 
sacerdot 
Pretty printing improved (now it always starts the visit from lbl 1).



@2858

8 years 
sacerdot 
Trying to pretty print the code graph in visit order.
Slightly bugged …



@2857

8 years 
garnier 
CL to CM: some invariants strengthened.



@2855

8 years 
piccolo 
little bug fixed in TranslateUtils?.



@2853

8 years 
sacerdot 
Pretty printing of line/label numbers.



@2852

8 years 
mckinna 
Interim commit to reestablish welltypedness after all the recent …



@2851

8 years 
piccolo 
partial commit



@2850

8 years 
garnier 
Progress on CL to CM. Some more cases closed modulo some critical …



@2849

8 years 
piccolo 
partial commit



@2848

8 years 
sacerdot 
The pretty printer for LTL.



@2847

8 years 
sacerdot 
…



@2846

8 years 
sacerdot 
Pretty printing of joint programs.



@2845

8 years 
piccolo 
ERTLptr to LTL correctness proof started



@2844

8 years 
piccolo 
Stupid bug fixed



@2843

8 years 
piccolo 
1) Fixed a litte bug in Joint.ma
2) ERTL to ERTLptr correctness proof …



@2841

8 years 
sacerdot 
The compiler now computes also the stack cost for every intermediate …



@2840

8 years 
campbell 
Remove irrelevant stuff from RTLabs_partial_traces



@2839

8 years 
campbell 
Basic structure of RTLabs measurable to structured traces results.



@2838

8 years 
garnier 
Closing some more cases



@2837

8 years 
tranquil 
* filled in evaluation of LTL/LIN's extended instrucitons



@2835

8 years 
sacerdot 
Included Uses.ma which is required by the untrusted code.
The …



@2832

8 years 
sacerdot 
Added abstraction in front of cases daemon for code extraction.



@2830

8 years 
sacerdot 
Added abstractions in front of cases daemon for code extraction.



@2828

8 years 
sacerdot 
1. New semantics.ma file that puts together all semantics.
It …



@2825

8 years 
garnier 
Progress, Clight to Cminor



@2824

8 years 
tranquil 
* moved sum on lists notation to extranat
* used sum on lists to …



@2823

8 years 
tranquil 
* corrected bug in ERTL semantics (both delframe and newframe did the …



@2822

8 years 
garnier 
A consitent proof state for Clight to Cminor, with some progress (and …



@2821

8 years 
tranquil 
* implemented preclassified system for joint (in joint/joint_fullexec.ma)



@2820

8 years 
sacerdot 
Proof obligation closed.



@2819

8 years 
sacerdot 
Proof obligation closed.



@2818

8 years 
sacerdot 
"Repaired", using non computational daemons.



@2817

8 years 
sacerdot 
Repaired after Paolo's commit.



@2816

8 years 
sacerdot 
Repaired after Paolo's commit.



@2811

8 years 
sacerdot 
Preclassified system for RTLabs.



@2809

8 years 
sacerdot 
…



@2808

8 years 
tranquil 
added local_stacksize to joint internal functions to accomodate for …



@2807

8 years 
mckinna 
Yet another ErrorMessage?
Removed corresponding axiom in …



@2806

8 years 
tranquil 
new b_graph_translate obligations



@2802

8 years 
sacerdot 
New file Clight_classified_system with the classified system for …



@2801

8 years 
piccolo 
Partial commit not yet finished



@2800

8 years 
campbell 
Tidy up Measurable.ma a little, get rid of obsolete comments.



@2799

8 years 
tranquil 
* added taaf_to_taa, conversion from trace_any_any_free to …



@2796

8 years 
tranquil 
* added global notation for existence in Type[1] (\exists[1] x.P)
* in …



@2795

8 years 
sacerdot 
Added new function Measurable.observe_all_in_measurable to be used to …



@2794

8 years 
mckinna 
Minor tweaks/tidying up



@2793

8 years 
campbell 
Oops, gave fields wrong order during initialisation.



@2786

8 years 
piccolo 
Splitted ERTLtoERTLptrOK.ma and added new file with commutation lemmas



@2785

8 years 
piccolo 
Traces.ma repaired



@2784

8 years 
sacerdot 
Repaired after Mauro's commit.



@2783

8 years 
piccolo 
modified joint_closed_internal_function definition (added condition on …



@2782

8 years 
sacerdot 
1. Paolo's bv_of_nat/nat_of_bv in BitVector? used to work with the …



@2781

8 years 
sacerdot 
One more computational daemon closed.



@2774

8 years 
sacerdot 
1. the compiler now outputs both the stack cost model and the max …



@2772

8 years 
sacerdot 
Useless code removed.



@2771

8 years 
sacerdot 
Some speed up in Policy.ma.



@2770

8 years 
mckinna 
WARNING: another big commit, touching many files in ASM/*.ma
This …



@2769

8 years 
mckinna 
Mistakenly commented out
both as_cost_get_label (needed; OK)
as well …



@2768

8 years 
mckinna 
Nightmare: file no longer typechecks,
because defn as_cost_get_labels …



@2767

8 years 
mckinna 
WARNING: BIG commit, which pushes code_size_opt check into …



@2766

8 years 
mckinna 
pruned redundant dependency on Clight/Cexec?.ma



@2765

8 years 
sacerdot 
1. correctness.ma repaired
2. we used the OC_preclassified_system to …



@2764

8 years 
sacerdot 
preclassified_system for object code



@2763

8 years 
sacerdot 
All daemons in compiler.ma closed (i.e. proof obligations added
to the …



@2762

8 years 
sacerdot 
All repaired up to compiler.ma.
Note: one daemon is left for one …



@2761

8 years 
sacerdot 
Unused (but not useless) code commented out.



@2760

8 years 
sacerdot 
1. Many files repaired.
2. 3 new daemons: 2 in Assembly.ma, 1 in …



@2757

8 years 
tranquil 
many things are still broken, but there is a partial backtrack on …



@2756

8 years 
sacerdot 
WARNING: this commit breaks things, sorry, Paolo is going to fix …



@2755

8 years 
tranquil 
* changed primitives of abstract status (with stuf that is probably …


