History

Thomas Sewell caf0529c7f Move burden of 'halt' proof, use less modifies. In detail: - add a general user-specified exception to c_exntype (for use in tools like Substitute) - wrap calls to 'halt' in Guard {}, making it clearer that halt is never called, simplifying asmrefine - repair halt changes in crefine - avoid use of some suspicious 'modifies' properties in crefine which were generated by the parser for functions where inline ASM blocks have been elided, and which may be inaccurate.		2014-08-29 13:57:28 +10:00
..
asmrefine	Move burden of 'halt' proof, use less modifies.	2014-08-29 13:57:28 +10:00
autocorres	misc: Proofing and formatting of README.md files.	2014-07-28 13:15:48 +10:00
c-parser	Move burden of 'halt' proof, use less modifies.	2014-08-29 13:57:28 +10:00
haskell-translator	fix haskell version generation	2014-07-21 11:18:14 +02:00
README.md	misc: Proofing and formatting of README.md files.	2014-07-28 13:15:48 +10:00
ROOTS	Import release snapshot.	2014-07-14 21:32:44 +02:00
tests.xml	Import release snapshot.	2014-07-14 21:32:44 +02:00

Proof Tools

This directory contains proof tools, most of which are used in one or more of the seL4 proofs. Each has its own directory:

asmrefine - Generic Isabelle/HOL part of the binary verification tool, for use in the seL4 Assembly Refinement Proof.
autocorres - Tool for easing manual proofs about C code, described in this PLDI '14 paper.
c-parser - Tool for translating C code into Isabelle/HOL, used to give seL4's C code its semantics in e.g. the seL4 C Refinement Proof.
haskell-translator - Tool for translating Haskell into Isabelle/HOL, used to generate the seL4 design specification.