lh-l4v/proof/bisim/README.md

Separation Kernel Bisimilarity
==============================

This proof establishes that seL4, if configured fully statically with 1-level
CSpaces and async endpoint caps only, is bi-similar to a static separation
kernel that has no other system calls than asynchronous notification.

Building
--------

To build from the `l4v/` directory, run:

    ./isabelle/bin/isabelle build -d . -v -b Bisim

Important Theories
------------------

Theory [`Separation`](Separation.thy) defines static configurations, and
theory [`Syscall_S`](Syscall_S.thy) contains the proof that this is equivalent
to a static kernel.

The definition of a static kernel API can be found in the `spec` directory
under [`sep-abstract`](../../spec/sep-abstract/).
integrate separation kernel config proofs Hooked up into build system and regression test; added READMEs 2014-08-13 12:08:46 +00:00			`Separation Kernel Bisimilarity`
			`==============================`

			`This proof establishes that seL4, if configured fully statically with 1-level`
			`CSpaces and async endpoint caps only, is bi-similar to a static separation`
			`kernel that has no other system calls than asynchronous notification.`

			`Building`
			`--------`

			To build from the `l4v/` directory, run:

			`./isabelle/bin/isabelle build -d . -v -b Bisim`

			`Important Theories`
			`------------------`

			Theory [`Separation`](Separation.thy) defines static configurations, and
			theory [`Syscall_S`](Syscall_S.thy) contains the proof that this is equivalent
			`to a static kernel.`

			The definition of a static kernel API can be found in the `spec` directory
			under [`sep-abstract`](../../spec/sep-abstract/).