debian-dafny - Debian packaging for Dafny

	Commit message (Collapse)	Author	Age
*	Stop pretty-print from emitting deprecated semi-colons.	qunyanm	2015-03-05
\|
*	Set up the same test infrastructure as in Boogie.	wuestholz	2014-05-29
\|
*	Allow "match" expressions anywhere	Rustan Leino	2014-01-03
\|
*	Fixed a problem where changes to a substMap were not being undone, curing ↵	Rustan Leino	2013-06-20
\| \| \| \| \| \|	Issue 15 on dafny.codeplex.com. Also fixed some code that make an optimization possible.
*	One more test case for the "datatype constructor cases" axiom, namely the ↵	Rustan Leino	2013-06-20
\| \| \| \|	example given in Issue 18 on dafny.codeplex.com (which was fixed in the previous check-in).
*	Make "datatype constructor cases" axiom available whenever the discriminator ↵	Rustan Leino	2013-06-20
\| \| \| \|	for any constructor is uttered.
*	Added a test case for "all cases of a datatype"	Unknown	2012-10-17
\|
*	Dafny: updated test suite to new syntax	Jason Koenig	2012-07-30
\|
*	Dafny: for a datatype with just one constructor, don't check (but do assume) ↵	Rustan Leino	2011-12-19
\| \| \| \|	that destructors are applied only to those values constructed by that one-and-only constructor
*	Dafny: implemented the wellformedness check that datatype destructors are ↵	Rustan Leino	2011-11-11
\| \| \| \| \| \|	only applied to values created by the corresponding constructor Dafny: implement ghost destructors properly
*	Dafny: fixed parsing bug with "!in"	Rustan Leino	2011-09-08
\| \| \| \| \|	Dafny: fixed translation bug with missing match cases (where the constructor has some parameters) Dafny: fixed translation bug where the program had forward references to members of a datatype
*	Dafny: added implicit datatype query fields and datatype destructor fields	Rustan Leino	2011-06-05
\|
*	Dafny: permanently changed the syntax of "datatype" declarations to what ↵	Rustan Leino	2011-05-27
\| \| \| \|	previously was an alternative syntax
*	Dafny:	Rustan Leino	2011-05-21
\| \| \| \| \| \| \| \| \| \|	* started rewriting parsing of qualified identifiers in expressions * annoyingly, had to introduce AST nodes for concrete syntax * previous syntax for invoking datatype constructors: #List.Cons(h, t) new syntax: List.Cons(h, t) or, if only one datatype has a constructor named Cons: Cons(h, t) * Removed type parameters for datatype constructors from the grammar * Helped Test/VSI-Benchmarks/b4.dfy along with a couple of assertions (previously, its proving performance was highly varied)
*	Dafny: support for nested match expressions	rustanleino	2011-03-01
\|
*	Dafny:	rustanleino	2011-02-17
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	* Big change: Add type and allocatedness information everywhere in the Boogie translation. This not only fixes some potential soundness problems (see Test/dafny1/TypeAntecedents.dfy), but it also gives more information about the program. On the downside, it also requires discharging more antecedents in order to use some axioms. Another downside is that overall performance has gone down (however, this may be just an indirect consequence of the change, as it was in one investigated case). * Increase the applicability of function axioms (extending the coarse-grain function/module height mechanism used as an antecedent of function axioms). (Internally, this uses the new canCall mechanism.) * Extend language with "allocated( Expr )" expressions, which for any type of expression "Expr" says that "Expr" is allocated and has the expected type. * More details error messages about ill-defined expressions (internally, by using CheckWellformedness instead of "assert IsTotal") * Add axioms about idempotence of set union and intersection * The compiler does not support (the experimental feature) coupling invariants, so generate error if the compiler ever gets one * In the implementation, combine common behavior of MatchCaseStmt and MatchCaseExpr into a superclass MatchCase * Fixed error in translation of while(*)
*	Added wellformedness checks to method specifications	rustanleino	2010-03-12
\|
*	* Added decreases clauses to functions	rustanleino	2009-11-24
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	* If no decreases clause is given, the decreases clause defaults to the set of objects denoted by the reads clause, which was the previous Dafny behavior * Made Dafny check loops for termination by default. Previously, this was done only if the loop had a decreases clause. To indicate that a loop is to be checked only for partial correctness, Dafny now allows "decreases ". Allow "reads " to say that the function may read anything at all (sound, but not very useful) Adjusted frame axioms of functions to speak of allocated objects more liberally; and also added antecedents about the heaps being well-formed and the parameters being allocated * Added some previously omitted well-definedness checks. * Fixed some bugs in the resolver that caused some type errors not to be reported * Added some messages to go with some (previously rather opaquely reported) errors * Fixed some test cases that previously had ordered conjuncts incorrectly to prove termination and reads checks (such checks were previously omitted) * Beefed up Test/dafny0/SchorrWaite.dfy to use datatypes to specify that no garbage gets marked. The full-functional total-correctness verification of this Schorr-Waite method now takes about 3.2 seconds.
*	Added resolution and translation of algebraic datatypes and (in function ↵	rustanleino	2009-11-20
\| \| \| \| \| \|	bodies) match expressions. Addressed a couple of todos, including checking the well-formedness of quantifiers and if-then-else expressions in function bodies.
*	Swapped previous file (Datatypes.bpl) for the correct test file (Datatypes.dfy).	rustanleino	2009-11-14