adbrucker
/
lh-l4v
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
lh-l4v/proof/capDL-api
History
Gerwin Klein 1af1d2b67b some of the global Isabelle2014 renames 
option_case -> case_option
sum_case -> case_sum
prod_case -> case_prod
Option.set -> set_option
Option.map -> map_option
option_rel -> rel_option
list_all2_def -> list_all2_iff
map.simps -> list.map
tl.simps -> list.sel(2-3)
the.simps -> option.sel
 		2014-08-09 15:39:20 +10:00
..
API_DP.thy Add a top-level file for the capDL API proofs. 2014-07-24 19:56:24 +10:00
Arch_DP.thy Cleanup of a number of definitions of the separation algebra for capDL. 2014-07-22 14:37:37 +10:00
CNode_DP.thy Cleanup of a number of definitions of the separation algebra for capDL. 2014-07-22 14:37:37 +10:00
IRQ_DP.thy Cleanup of a number of definitions of the separation algebra for capDL. 2014-07-22 14:37:37 +10:00
Invocation_DP.thy some of the global Isabelle2014 renames 2014-08-09 15:39:20 +10:00
KHeap_DP.thy Cleanup of a number of definitions of the separation algebra for capDL. 2014-07-22 14:37:37 +10:00
Kernel_DP.thy Import release snapshot. 2014-07-14 21:32:44 +02:00
ProofHelpers_DP.thy Import release snapshot. 2014-07-14 21:32:44 +02:00
README.md misc: Proofing and formatting of README.md files. 2014-07-28 13:15:48 +10:00
RWHelper_DP.thy Cleanup of a number of definitions of the separation algebra for capDL. 2014-07-22 14:37:37 +10:00
Retype_DP.thy some of the global Isabelle2014 renames 2014-08-09 15:39:20 +10:00
Sep_Tactic_Examples.thy release cleanup 2014-07-17 18:22:50 +02:00
TCB_DP.thy Cleanup of a number of definitions of the separation algebra for capDL. 2014-07-22 14:37:37 +10:00

README.md

CapDL API Proofs

This proof develops a formal API description for a number of the seL4 system calls, of the capDL kernel specification. This API description is a set of lemmas describing the behaviour of various system calls in terms of a separation logic defined over that kernel specification.

When reasoning about system calls this proof treats the kernel like a library invoked directly from user-space and does not reason about scheduling. These proofs are used by the system initialiser proof, as described in the ICFEM '13 paper and Andrew Boyton's PhD thesis.

Building

To build from the l4v/ directory, run:

./isabelle/bin/isabelle build -d . -v -b DSpecProofs

Important Theories

The top-level theory is API_DP. The seL4 API and kernel model are located in Kernel_DP.