History

Daniel Matichuk a1f23e5b28 arch_split: DRefine now builds		2016-01-25 18:42:27 +11:00
..
access-control	arch_split: Access and InfoFlow now build	2016-01-25 18:42:06 +11:00
asmrefine	Reduce verbosity in GraphRefine.	2015-12-08 19:36:28 +11:00
bisim	terminology in comments: async ep -> notifications	2015-11-24 16:58:22 +13:00
capDL-api	add arch_tcb object to C, rename aep -> ntfn	2015-11-20 16:02:13 +11:00
crefine	arch_split: fixed CRefine	2016-01-22 10:34:54 +11:00
drefine	arch_split: DRefine now builds	2016-01-25 18:42:27 +11:00
infoflow	arch_split: Access and InfoFlow now build	2016-01-25 18:42:06 +11:00
invariant-abstract	Merge remote-tracking branch 'verification/master' into arch_split	2016-01-21 10:22:48 +11:00
refine	Merge remote-tracking branch 'verification/master' into arch_split	2016-01-21 10:22:48 +11:00
sep-capDL	add arch_tcb object to C, rename aep -> ntfn	2015-11-20 16:02:13 +11:00
Makefile	avoid `make` warning, remove SimplExportOnly from HEAPS	2015-11-20 16:02:14 +11:00
README.md	integrate separation kernel config proofs	2014-08-13 22:08:46 +10:00
ROOT	aep-binding: removed quick and dirty from AInvs build options	2015-10-07 13:58:11 +11:00
tests.xml	regression: adjust unnecessarily large test timeouts.	2016-01-13 16:59:25 +11:00

Formal Proofs about seL4

This directory contains the formal proofs about seL4, which mostly prove properties about the various seL4 specifications.

Each such proof lives in its own subdirectory: