summaryrefslogtreecommitdiff
path: root/Chalice/examples
Commit message (Collapse)AuthorAge
* Chalice: New permission model that provides more abstraction and more ↵Gravatar stefanheule2011-07-01
| | | | | | | | | | | | | | | | | | | | | | | flexibility. Details of the model can be found in the paper 'Fractional Permissions without the Fractions', FTfJP 2011 (see http://www.pm.inf.ethz.ch/publications/). This changeset also fixes several bugs not directly related to the permissions model and improves the error handling. The following features have been added or enhanced: - Error handling: If exceptions (e.g. about not supported features) are encountered, a user-friendly message is displayed - Sequence axioms: There is an additional axiom for singleton lists, which is helpful in some cases - Prelude: Chalice's prelude has been split into sections (e.g. one for permission-related stuff, one for sequence axioms, and so on), which are included on demand (less superfluous axioms, etc.) Currently not working - but planned to be updated as well - are the following features: - Stepwise refinements - autoFold - read locks There is a performance issue with permission scaling (i.e., taking non-full versions of predicates that contain read-permissions). Details can be found in the following file: Chalice/tests/permission-model/scaling.chalice. A list of fixed bugs (see http://boogie.codeplex.com/workitem/<workitem number> for details on the individual bugs) - workitem 10200: Issue with the axiom of framing functions - workitem 10197: The translation of old(waitlevel) resultet in Boogie error - workitem 10196: Quantification over empty sequences - workitem 10195: Contradiction when descending sequences are used - workitem 10192: Invalid translation of old-construct in certain cases - workitem 10190: Stack overflow when parsing large comment blocks - workitem 10147: Duplicated method parameters and return values are not detected
* server-side renameGravatar kyessenov2010-08-21
|
* Chalice: added finite differencing refinementGravatar kyessenov2010-08-19
|
* Chalice:Gravatar kyessenov2010-08-19
| | | | | | * added loop transform pattern * implemented translation of refined loops to Boogie (only assert new loop invariants) * refactored loop target computation code (async call was not handled as maybe some other statement)
* Chalice: example proving a simple identity (for refinement demonstration), ↵Gravatar kyessenov2010-08-12
| | | | revise code comments
* Chalice: fix "assume false" in the example (intended a spec statement)Gravatar kyessenov2010-08-11
|
* Chalice: finite differences with recursion instead of loopsGravatar kyessenov2010-08-10
|
* Chalice: added uninterpreted functions; attempting to re-verify Celebrity in ↵Gravatar kyessenov2010-08-10
| | | | Chalice
* Chalice: refinement of a list with nodes (instead of lists pointing to sublists)Gravatar kyessenov2010-08-06
|
* Chalice: still cannot verify refinement of List.get (Z3 goes out of memory); ↵Gravatar kyessenov2010-08-06
| | | | added classic sqrt refinement; assertions on acc(s[*].f) have now positions attached
* Chalice: try using output coupling assertion as loop invariantGravatar kyessenov2010-08-05
|
* Chalice: testing refinement of a linked listGravatar kyessenov2010-08-04
|
* Chalice: testing refinement of CounterGravatar kyessenov2010-08-04
|
* Chalice: abstract Shorr-Waite algorithm verifiedGravatar kyessenov2010-08-03
|
* Chalice: deriving SchorrWaite algorithm with ChaliceGravatar kyessenov2010-08-03
|
* Chalice:Gravatar kyessenov2010-08-02
| | | | | | | * change syntax for range: [a..b] instead of [a:b] * add multi-triggers to Boogie bindings * fix unsoundness in frame axiom for functions -- whenever acc(s[*].f,...) is detected in pre-condition, a different encoding to Boogie is applied * add limited functions to translator (disabled since Resolver is not ready yet)
* Chalice: pretty printer now prints element type for sequences; fixed a bug ↵Gravatar kyessenov2010-07-27
| | | | in copying resolved member in sequence accesses; added graph closure (DSW) verification example
* Chalice: Introduced '[[ S ]]' as a shorthand syntax for 'lock (this) { S ↵Gravatar rustanleino2010-07-19
| | | | | | | }'. Think of the new brackets as atomicity brackets (see PetersonsAlgorithm.chalice) Chalice: Added Peterson's algorithm to test suite (safety properties only) VS 2010 integration: Updated Chalice and Dafny modes, added keyword highlighting for a new Boogie mode
* Chalice: added "exists" quantifier; changed surface syntax for quantifier ↵Gravatar kyessenov2010-07-19
| | | | expressions
* Chalice: Re-designed lockchange on methods and loops. The lockchange clause ↵Gravatar mueller2010-07-18
| | | | is now required to list all objects whose held or rdheld field has changed since the _method_ prestate. It seems desirable to exclude objects that were not allocated in the prestate, but this feature is not implemented yet.
* Chalice: No longer use Mask for "held" field; instead, only use the value ↵Gravatar rustanleino2010-07-14
| | | | of the "held" field in the heap
* Chalice:Gravatar rustanleino2010-06-25
| | | | | * renamed keyword "maxlock" to "waitlevel" * added -vs switch, for I/O suitable for VS integration
* - Sieve.chalice verifies + executes fasterGravatar jansmans2009-10-20
|
* Implicitly declare as local variables undeclared variables occurring as ↵Gravatar rustanleino2009-10-16
| | | | LHS's of CALL and RECEIVE statements (as was already done for FORK statements).
* Sieve of Eratosthenes, written in Chalice.Gravatar rustanleino2009-10-15
|
* - fixed a positioning bug in Parser.scalaGravatar jansmans2009-10-07
| | | | - CopyLessMessagePassing-with-ack2.chalice verifies (i.e. separate channel for acknowledgements)
* - extended to example to use acknowledgements (but uses sending debit)Gravatar jansmans2009-10-07
|
* - verified a program inpsired by "Copyless Message Passing" in ChaliceGravatar jansmans2009-10-07
| | | | (todo: we should really support sending debit over channel to allow sending with acknowledgements)
* * Implemented channelsGravatar rustanleino2009-08-16
| | | | | | | | | | | | | | | | - channel declarations - send and receive statements - bounds clause for new, to accommodate channels - Added ProdConsChannel.chalice test case - Resolve and Translate (but no Compile yet) - Added Credits to global state in encoding (this caused changes to lots of source lines) * Simplified meaning of maxlock==E * Various parser improvements * Added alternative syntax for eval statements * Some renamings in error messages (e.g., install -> reorder) * Added preliminary parsing for condition variables and their wait and signal operations * Added new keywords to Chalice emacs mode
* Initial set of files.Gravatar mikebarnett2009-07-15