| Commit message (Collapse) | Author | Age | |
|---|---|---|---|
| * | Dafny: updated test suite to new syntax |  Jason Koenig | 2012-07-30 |
| | | |||
| * | GPUVerify: add an option which controls whether to use smart predication |  Peter Collingbourne | 2012-07-30 |
| | | |||
| * | VCGeneration: implement smart predication | Peter Collingbourne | 2012-07-30 |
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This predication algorithm is intended to reduce the complexity of predicated verification conditions by reducing the amount of predicated state and using only boolean algebra, as opposed to the previous algorithm which also uses integers. It assigns a unique predicate to every superblock, which is defined per Agrawal [1] except that superblocks are further partitioned such that either no element of the same superblock may be contained within a natural loop or each element of the superblock has the same innermost natural loop head. Predicates are assigned at the element of the superblock which dominates all others, and are reset to false at a loop head and at the start of a procedure in order to ensure correct execution for future iterations. When exiting a loop, all predicates corresponding to heads of exited loops are reset to false. The algorithm requires that every successor at every divergence point in the CFG contains assumes marked with an attribute (called ':partition') which a frontend uses to certify to the predicator that for each block, if each successor of that block contains an assume statement marked with :partition, exactly one of those assume statement's predicates will hold. The frontend we use for GPUVerify generates such attributes, and as such the new predicator is only used there, and the old predicator has been retained for Corral etc. [1] Hiralal Agrawal. Dominators, super blocks, and program coverage. In POPL '94, p25-34. | ||
| * | Graph: make DomRelation and DominatorMap public | Peter Collingbourne | 2012-07-11 |
| | | |||
| * | BoogieDriver: correctly display time taken by prover if >60 seconds | Peter Collingbourne | 2012-07-30 |
| | | |||
| * | Dafny: removed allocated, changed semantics of fresh | Jason Koenig | 2012-07-29 |
| | | | | | | -allocated(x) removed, as really only useful in old(...) -old(allocated(x)) and !fresh(x) are equivalent (for x with type ref, set, sequence, and datatype). | ||
| * | Dafny: added structural refinement check | Jason Koenig | 2012-07-29 |
| | | |||
| * | Merge |  Unknown | 2012-07-20 |
| |\ | |||
| * | | Implemented Houdini-based pointer analysis. Made inter-group race checking ↵ | Unknown | 2012-07-20 |
| | | | | | | | | | default. | ||
| | * | Dafny: fixed datatype GetHashCode() to make it consistent with Equals() | Jason Koenig | 2012-07-18 |
| | | | |||
| | * | Dafny: allowed strictly finite datatypes in comprehensions, quantifiers, and ↵ | Jason Koenig | 2012-07-17 |
| | | | | | | | | | parallel statements. | ||
| | * | Dafny: compilation of abstract modules, including local definitions (as in ↵ | Jason Koenig | 2012-07-17 |
| | | | | | | | | | | | | | | | module A as B = C) * * * Dafny: compilation of abstract modules, including local definitions (as in module A as B = C) | ||
| | * | Dafny: allow implict self (as in "`field") in frame declarations. | Jason Koenig | 2012-07-16 |
| |/ | |||
| * | Merge | Unknown | 2012-07-17 |
| |\ | |||
| * | | GPUVerify only generates _READ/WRITE_OFFSET variabls if they do not already ↵ | Unknown | 2012-07-17 |
| | | | | | | | | | exist. Did some tidying up of old source code - removed functions related to Y and Z offsets which we do not use any more. | ||
| | * | Dafny: update statements match up correctly in skeletons. | Jason Koenig | 2012-07-13 |
| | | | |||
| | * | Dafny: fixed bug in which old locals were not properly forbidden from being ↵ | Jason Koenig | 2012-07-12 |
| | | | | | | | | | modified during refinement | ||
| | * | Dafny: labeled (and unlabled) block statements are now matched during ↵ | Jason Koenig | 2012-07-12 |
| | | | | | | | | | refinement. | ||
| | * | Dafny: check that resolution successfully resolved all types, where appropriate. | Jason Koenig | 2012-07-12 |
| | | | |||
| | * | Merge |  Unknown | 2012-07-12 |
| | |\ | |||
| | | * | Dafny: restored soundness for refinement by disallowing certain updates and ↵ | Jason Koenig | 2012-07-11 |
| | | | | | | | | | | | | | method calls | ||
| | | * | Dafny: fixed translation bug in maps with objects in the domain, added test case | Jason Koenig | 2012-07-11 |
| | | | | |||
| | * | | Dafny: added a copredicate test case | Unknown | 2012-07-11 |
| | |/ | |||
| | * | Dafny: fixed ghost checking for labeled (i.e. named) expressions, changed to ↵ | Jason Koenig | 2012-07-10 |
| |/ | | | | parallel syntax, other minor fixes | ||
| * | Add some Mono/MonoDevelop files to .hgignore | Peter Collingbourne | 2012-07-09 |
| | | |||
| * | Merge |  Unknown | 2012-07-10 |
| |\ | |||
| * | | Read and write logging variables are now only generated if they do not ↵ | Unknown | 2012-07-10 |
| | | | | | | | | | already exist. | ||
| | * | Boogie build succeeded | CodeplexBot | 2012-07-10 |
| | | | |||
| | * | Dafny: fixed bad merge |  Rustan Leino | 2012-07-09 |
| | | | |||
| | * | Dafny: rebuilt parser/scanner after previous merge | Rustan Leino | 2012-07-09 |
| | | | |||
| | * | Merge | Rustan Leino | 2012-07-09 |
| | |\ | |||
| | * | | Dafny: More work on the coinduction principle | Rustan Leino | 2012-07-09 |
| | | | | |||
| | | * | Merge | Jason Koenig | 2012-07-09 |
| | | |\ | |||
| | | * | | Dafny: fixed test case | Jason Koenig | 2012-07-09 |
| | | | | | |||
| | | * | | Dafny: added verification that replaced expressions are the same as the original | Jason Koenig | 2012-07-09 |
| | | | | | |||
| | | * | | Dafny: added named expressions and replacement | Jason Koenig | 2012-07-09 |
| | | | | | |||
| | | | * | GPUVerify: add beginnings of a test suite | Peter Collingbourne | 2012-07-04 |
| | | | | | |||
| | | | * | GPUVerify: merge blocks into predecessors before and after predication | Peter Collingbourne | 2012-07-09 |
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Because predication produces straight line control flow, merging after predication can dramatically reduce the number of blocks to 1 plus 2-3 per loop. We also merge before predication, which reduces VC complexity by reducing the number of possible values for cur. | ||
| | | | * | VCGen: add MergeBlocksIntoPredecessors function | Peter Collingbourne | 2012-07-09 |
| | | |/ | |||
| | | * | Dafny: types can now be qualified with full module paths | Jason Koenig | 2012-07-06 |
| | | | | |||
| | | * | Dafny: datatype constructors can be accessed across module boundaries. | Jason Koenig | 2012-07-06 |
| | | | | |||
| | | * | Dafny: fixed a crash in datatype argument resolution | Jason Koenig | 2012-07-05 |
| | | | | |||
| | | * | Merge | Jason Koenig | 2012-07-05 |
| | | |\ | |||
| | | * | | Dafny: Fixed bug in autocontracts where the post resolver was run even if ↵ | Jason Koenig | 2012-07-05 |
| | | | | | | | | | | | | | | | | | there were resolution errors. | ||
| | | * | | Dafny: disallow importing ghost modules into physical ones. | Jason Koenig | 2012-07-05 |
| | | | | | |||
| | * | | | Merge | Rustan Leino | 2012-07-04 |
| | |\ \ \ | | | |/ | | |/| | |||
| | | * | | Made error trace generation (without labels) more general for stratified |  Unknown | 2012-07-04 |
| | | |/ | | | | | | | | | | inlining | ||
| | | * | Dafny: added static members of _default to the module level scope, at low ↵ | Jason Koenig | 2012-07-03 |
| | | | | | | | | | | | | | priority. | ||
| | | * | Merge | Jason Koenig | 2012-07-03 |
| | |/| |/| | | |||
| | | * | Dafny: added support for nested abstract modules, fixed some translation issues | Jason Koenig | 2012-07-03 |
| | | | | |||
 |
index : debian-boogie | |
| Debian packaging for Boogie |
| summaryrefslogtreecommitdiff |