History

Gerwin Klein db70e3ea75 aarch64 aspec+ainvs: symbolic vs_index_len Making vs_index_len a sybmolic value instead of a plain number means we have to unfold config_ARM_PA_SIZE_BITS_40 less often (instead, we need to consider both cases, which forces us to stay generic). This also makes sure the type vs_index_len is always distinct from pt_index_len (even if the sizes are the same), which was only guaranteed in one of the two configurations before. Signed-off-by: Gerwin Klein <gerwin.klein@proofcraft.systems>		2022-05-05 09:17:25 +10:00
..
abstract	aarch64 aspec+ainvs: symbolic vs_index_len	2022-05-05 09:17:25 +10:00
capDL	isabelle2021-1: DSpec	2022-03-29 08:38:25 +11:00
cspec	gen_config: add generator as dependency	2022-04-20 09:16:19 +10:00
design	machine: make Kernel_Config available earlier	2022-04-20 09:16:19 +10:00
haskell	aarch64 aspec+haskell: generalise pt_bits_left	2022-05-05 09:17:25 +10:00
machine	aarch64 aspec+ainvs: adjust canonical_user to IPA	2022-05-05 09:17:25 +10:00
sep-abstract	license: provide documentation under CC-BY-SA-4.0	2020-03-16 14:19:15 +08:00
take-grant	isabelle2021-1: global hide_lams -> opaque_lifting	2022-03-29 08:38:25 +11:00
Makefile	spec+proof: use generated config constants	2021-12-23 14:54:13 +11:00
README.md	license: provide documentation under CC-BY-SA-4.0	2020-03-16 14:19:15 +08:00
ROOT	isabelle2021-1: DSpec	2022-03-29 08:38:25 +11:00
tests.xml	run_tests: increase timeout for Haskell kernel	2022-05-02 12:54:10 +10:00

Formal Specifications of seL4

See the sub directories for more details.

The Makefile and ROOT file define runnable Isabelle sessions for these specifications.