adbrucker
/
lh-l4v
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
lh-l4v/proof/bisim
History
Gerwin Klein 913026178a bisim: Isabelle2020 update 
Signed-off-by: Gerwin Klein <gerwin.klein@data61.csiro.au>
 		2020-10-27 15:52:31 +10:00
..
document license: provide documentation under CC-BY-SA-4.0 2020-03-16 14:19:15 +08:00
README.md license: provide documentation under CC-BY-SA-4.0 2020-03-16 14:19:15 +08:00
Separation.thy licenses: convert license tags to SPDX 2020-03-13 14:38:24 +08:00
Syscall_S.thy bisim: Isabelle2020 update 2020-10-27 15:52:31 +10:00

README.md

Separation Kernel Bisimilarity

This proof establishes that seL4, if configured fully statically with 1-level CSpaces and notification caps only, is bi-similar to a static separation kernel that has no other system calls than signalling notifications.

Building

To build from the l4v/ directory, run:

./isabelle/bin/isabelle build -d . -v -b Bisim

Important Theories

Theory Separation defines static configurations, and theory Syscall_S contains the proof that this is equivalent to a static kernel.

The definition of a static kernel API can be found in the spec directory under sep-abstract.