1. 24 Jun, 2019 5 commits
  2. 21 Jun, 2019 2 commits
    • Jakob Botsch Nielsen's avatar
      Fix for Coq 8.8 · f4bc2be8
      Jakob Botsch Nielsen authored
      f4bc2be8
    • Jakob Botsch Nielsen's avatar
      Refactor to remove compute_block_reward · e7245511
      Jakob Botsch Nielsen authored
      - No longer require that block reward can be computed from height.
      - Remove Chain's dependence on BlockHeader. Instead inline appropriate
        fields in Chain structure.
      - Change step_block to use a BlockHeader now instead of manually
        specifying all the fields. The new BlockHeader now additionally
        contains the creator and reward of that block, so step_block in effect
        contains the reward.
      - These refactorings means that the circulation proof changes. Introduce
        created_blocks to get list of blocks created by user, and prove
        instead that the circulation equals the sum of rewards in blocks.
      - Rename "baker" to a more general "creator" globally
      e7245511
  3. 17 Jun, 2019 1 commit
  4. 14 Jun, 2019 2 commits
  5. 13 Jun, 2019 1 commit
  6. 11 Jun, 2019 1 commit
  7. 10 Jun, 2019 1 commit
  8. 07 Jun, 2019 2 commits
  9. 06 Jun, 2019 2 commits
  10. 31 May, 2019 3 commits
  11. 27 May, 2019 1 commit
  12. 24 May, 2019 1 commit
  13. 22 May, 2019 1 commit
  14. 15 May, 2019 1 commit
  15. 14 May, 2019 1 commit
  16. 10 May, 2019 1 commit
  17. 09 May, 2019 3 commits
  18. 05 May, 2019 2 commits
  19. 03 May, 2019 2 commits
  20. 02 May, 2019 2 commits
    • Jakob Botsch Nielsen's avatar
      Add a comment for permutation case · 197cbb99
      Jakob Botsch Nielsen authored
      197cbb99
    • Jakob Botsch Nielsen's avatar
      Prove a property for the Congress contract · 1b1c9908
      Jakob Botsch Nielsen authored
      This proves a concrete property about any Congress contract deployed to
      a blockchain. More specifically, we show that the count of transactions
      sent out by any Congress contract will always be less than or equal to
      the total number of actions it has receive in "create proposal"
      messages.
      Thus, this property is stated only over the transactions going in and
      out to the Congress contract.
      To prove this, we reason over incoming and outgoing transactions, the
      internal state of the congress and also the actions in the blockchain
      queue.
      1b1c9908
  21. 01 May, 2019 2 commits
  22. 29 Apr, 2019 2 commits
  23. 27 Apr, 2019 1 commit
    • Jakob Botsch Nielsen's avatar
      Move ChainStep and ChainTrace to Type · 5221931a
      Jakob Botsch Nielsen authored
      This moves ChainStep and ChainTrace to type. The reason being that our
      proofs will depend on prefixes of traces and it will be very useful (if
      not required) to be able to match on the trace and the steps.
      ChainBuilderType is changed appropriately: now, an implementation just
      needs to prove that ChainTrace empty_env [] cur_env [] is inhabited.
      Thus, ChainTrace can basically be seen as one particular way to order
      the execution so that we reach a state. When it is inhabited, it thus
      means that there exists a proper way to order actions so that we reach
      the state we are in.
      5221931a