adbrucker
/
lh-l4v
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
lh-l4v/proof/drefine
History
Joel Beeren 71e2db88a4 arm: refactor sanitise_register to take a bool instead of a kernel_object 
This simplified the sanitise_register logic in CRefine for arm-hyp.
 		2017-05-03 21:51:57 +10:00
..
Arch_DR.thy wp: update the proofs for the new wp/wpc/wpsimp 2017-03-16 19:39:11 +11:00
CNode_DR.thy wp_cleanup: update proofs for new wp behaviour 2017-01-13 14:04:15 +01:00
Corres_D.thy wp_cleanup: update proofs for new wp behaviour 2017-01-13 14:04:15 +01:00
Finalise_DR.thy wp: update the proofs for the new wp/wpc/wpsimp 2017-03-16 19:39:11 +11:00
Include_D.thy move refine/* to refine/ARM/*, parametrise over $L4V_ARCH 2017-01-30 12:22:22 +11:00
Intent_DR.thy wp_cleanup: update proofs for new wp behaviour 2017-01-13 14:04:15 +01:00
Interrupt_DR.thy wp_cleanup: update proofs for new wp behaviour 2017-01-13 14:04:15 +01:00
Ipc_DR.thy arm: refactor sanitise_register to take a bool instead of a kernel_object 2017-05-03 21:51:57 +10:00
KHeap_DR.thy backport changes to ARM proofs from X64 work in progress 2017-01-27 08:31:07 +11:00
Lemmas_D.thy move refine/* to refine/ARM/*, parametrise over $L4V_ARCH 2017-01-30 12:22:22 +11:00
MoreCorres.thy Fix DRefine to accommodate corres_underlying changes. 2016-05-13 12:05:53 +10:00
MoreHOL.thy Import release snapshot. 2014-07-14 21:32:44 +02:00
README.md misc: Proofing and formatting of README.md files. 2014-07-28 13:15:48 +10:00
Refine_D.thy wp_cleanup: update proofs for new wp behaviour 2017-01-13 14:04:15 +01:00
Schedule_DR.thy wp: update the proofs for the new wp/wpc/wpsimp 2017-03-16 19:39:11 +11:00
StateTranslationProofs_DR.thy Isabelle2016-1: update references to renamed constants and facts 2017-01-05 14:23:05 +11:00
StateTranslation_D.thy Isabelle2016-1: rename free variables to avoid capture 2017-01-05 14:24:36 +11:00
Syscall_DR.thy capDL spec and DRefine: updates for Hypervisor stub 2017-02-22 15:26:50 +11:00
Tcb_DR.thy arm: refactor sanitise_register to take a bool instead of a kernel_object 2017-05-03 21:51:57 +10:00
Untyped_DR.thy backport changes to ARM proofs from X64 work in progress 2017-01-27 08:31:07 +11:00

README.md

CapDL Refinement Proof

This proof establishes that seL4's abstract specification is a formal refinement (i.e. a correct implementation) of its capDL specification. It is described as part of an ICFEM '13 paper.

Building

To build from the l4v/ directory, run:

./isabelle/bin/isabelle build -d . -v -b DRefine

Important Theories

The top-level theory where the refinement statement is established over the entire kernel is Refine_D; the state-relation that relates the state-spaces of the two specifications is defined in StateTranslation_D and the basic correspondence property proved over each kernel function is defined in Corres_D.