The @License tags are no longer used, and SPDX tags are checked in CI,
and name tags are no longer used in the sources either.
Signed-off-by: Gerwin Klein <gerwin.klein@proofcraft.systems>
PR seL4/seL4#1105 moves config generation back to configure time.
This means we can revert eaf735c38f.
Signed-off-by: Gerwin Klein <gerwin.klein@proofcraft.systems>
This generalises the rule ccorres_call_getter_setter by allowing the return
relation between the "getter" and the C function called to be arbitrary,
rather than just the identity relation.
A variant of this rule, ccorres_call_getter_setter_dc, is provided for
when we do not care about the return relation.
Signed-off-by: Michael McInerney <michael.mcinerney@proofcraft.systems>
The SimplExportAndRefine session is only needed for binary verification
and is currently failing. There are no plans yet for binary
verification on AArch64, so the session will remain disabled for now.
Signed-off-by: Gerwin Klein <gerwin.klein@proofcraft.systems>
Refine for AArch64 is now completed and doesn't need quick_and_dirty
any more. CRefine is now in development mode.
Signed-off-by: Gerwin Klein <gerwin.klein@proofcraft.systems>
The AFP linter is stricter about this than we are, and it is definitely
bad style to start with "proof (clarsimp ..)"
Signed-off-by: Gerwin Klein <gerwin.klein@proofcraft.systems>
Fix document preparation issues in the theory files that have been
added to ROOT in the previous commit.
Signed-off-by: Gerwin Klein <gerwin.klein@proofcraft.systems>
As the AFP submission system correctly points out, these theory files
had not been included in any session yet.
Signed-off-by: Gerwin Klein <gerwin.klein@proofcraft.systems>
Now that we're producing a proof document, theory order and
chapter/section nesting matters more.
Signed-off-by: Gerwin Klein <gerwin.klein@proofcraft.systems>
Fix remaining unquoted underscore names and similar to make the LaTeX
document preparation pass.
Signed-off-by: Gerwin Klein <gerwin.klein@proofcraft.systems>
Abstract and author list for upcoming AFP entry. Author list is
determined separate for each session (ML_Utils, Eisbach_Tools, Monads)
by lines added/removed over the repo history. Acknowledgements are from
the repo history.
The latter might be incomplete, because git has trouble following more
than a single file through renames, and these files were renamed a lot.
Signed-off-by: Gerwin Klein <gerwin.klein@proofcraft.systems>
This wrapper around Apple llvm-gcc has been obsolete and unused for a
few years now. Remove to avoid confusion.
Signed-off-by: Gerwin Klein <gerwin.klein@proofcraft.systems>
The code draws in table.ML from the Isabelle source, which changed
in the 2023 release. This commit adds further library functions from
Isabelle library.ML and extracts the parts of unsynchronized.ML that
work with mlton.
Signed-off-by: Gerwin Klein <gerwin.klein@proofcraft.systems>
In particular, try to remove as many as possible _tac methods that refer
to system-generated variable names. Any remaining uses are explicitly
protected by a rename_tac.
Signed-off-by: Corey Lewis <corey.lewis@proofcraft.systems>
This commit has all of the changes required so that the definitions and
rules added in the previous commit work for the trace monad.
Signed-off-by: Corey Lewis <corey.lewis@proofcraft.systems>
This fills out the trace monad rule set by copying in as many
definitions and rules as possible from the nondet monad. Most of these
do not immediately work for the trace monad, see the next commit for the
required changes.
Signed-off-by: Corey Lewis <corey.lewis@proofcraft.systems>
The old version of dom_ucast_eq in AInvs is not useful, because the
necessary constants are not available yet in AInvs.
Signed-off-by: Gerwin Klein <gerwin.klein@proofcraft.systems>
Collect all operator lifting lemmas in one place under
hoare_vcg_op_lift. (Moved from Refine)
Move the lifting lemmas that were still in AInvs up to lib.
Signed-off-by: Gerwin Klein <gerwin.klein@proofcraft.systems>
Gerwin Klein
Michael McInerney
Corey Lewis
Rafal Kolanski
Achim D. Brucker