adbrucker
/
lh-l4v
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
lh-l4v/proof/bisim
History
Miki Tanaka 7ad3ef3b3e wp: update the proofs for the new wp/wpc/wpsimp 2017-03-16 19:39:11 +11:00
..
document add workaround for building documents with TeX Live 2016 [VER-622] 2016-07-22 07:48:08 +10:00
README.md terminology in comments: async ep -> notifications 2015-11-24 16:58:22 +13:00
Separation.thy Isabelle2016-1: syntax: use semantic markup instead of "header" 2017-01-05 14:22:24 +11:00
Syscall_S.thy wp: update the proofs for the new wp/wpc/wpsimp 2017-03-16 19:39:11 +11:00

README.md

Separation Kernel Bisimilarity

This proof establishes that seL4, if configured fully statically with 1-level CSpaces and notification caps only, is bi-similar to a static separation kernel that has no other system calls than signalling notifications.

Building

To build from the l4v/ directory, run:

./isabelle/bin/isabelle build -d . -v -b Bisim

Important Theories

Theory Separation defines static configurations, and theory Syscall_S contains the proof that this is equivalent to a static kernel.

The definition of a static kernel API can be found in the spec directory under sep-abstract.