8d4a8eb238
SELFOUR-421: fix coding style
2016-09-22 19:23:28 +10:00
113315d9a6
SELFOUR-421: merge and fix up to ArmConfidentiality proof
2016-09-22 19:21:56 +10:00
252ce8df4c
SELFOUR-421: infoflow and infoflow_c builds
2016-09-22 19:11:37 +10:00
328846ee1a
SELFOUR-421: crefine builds
2016-09-22 19:11:37 +10:00
dced98a45d
arch_split: AInvs.thy [VER-581]
2016-07-07 14:13:40 +10:00
91bd8aebb8
inv-abstract: fewer warnings
2016-05-16 21:11:40 +10:00
1d20b393c0
arch_split: replaced sublocale with global_naming
2016-04-27 14:32:38 +10:00
fd8926d3a8
arch_split: invariants: slightly more selective interpretation up to AInvs
2016-04-20 08:36:22 +10:00
3f4c8cb188
arch_split: AInvs checking?
2016-04-19 14:27:21 +10:00
5e2f9a5e7c
arch_split: change caps_of_state to be explicit projection f caps_of_state
2016-03-04 19:03:45 +11:00
ca808130e6
repair ARM proofs up to Refine after factoring out architecture
2016-01-13 12:02:12 +11:00
0fb88ea01c
Merge branch 'master' into aep-merge
...
This commit should at least remove merge conflict markers, and the idea
is that at least refine, crefine, drefine, and infoflow (with sorrys)
build. Subsequent commits may be required to fix build issues that I
have not picked up.
2015-09-10 17:06:45 +10:00
d88a931ec7
history squashed patch for aep-binding
2015-09-02 15:43:39 +10:00
42e037ea9d
Isabelle2015 update: AInvs
2015-04-19 10:25:21 +01:00
29eb636d31
re-establish InfoFlow; generalising ptable_xn
...
UserOp_IF had its own way of extracting the XN bit from page tables.
This is now unified with the existing functions in ADT_AI, which also
means that the proof for XN bit equality is basically the same as for
pt_rights and pt_lift.
2014-11-28 08:58:57 +11:00
fc6e57716a
Proof updates, working as far as AInvs.
2014-08-11 14:50:56 +10:00
50dda7708c
comment cleanup
2014-07-22 18:10:20 +02:00
2a03e81df4
Import release snapshot.
2014-07-14 21:32:44 +02:00
Xin,Gao
Alejandro Gomez-Londono
Gerwin Klein
Daniel Matichuk
Matthew Brecknell
Ramana Kumar
Thomas Sewell