adbrucker
/
lh-l4v
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
lh-l4v/proof/bisim
History
Gerwin Klein baa5791918 Isabelle2015 update: Bisim 2015-04-19 10:25:42 +01:00
..
document integrate separation kernel config proofs 2014-08-13 22:08:46 +10:00
README.md integrate separation kernel config proofs 2014-08-13 22:08:46 +10:00
Separation.thy bisim: Isabelle 2014 changes. 2014-09-24 12:24:00 +10:00
Syscall_S.thy Isabelle2015 update: Bisim 2015-04-19 10:25:42 +01:00

README.md

Separation Kernel Bisimilarity

This proof establishes that seL4, if configured fully statically with 1-level CSpaces and async endpoint caps only, is bi-similar to a static separation kernel that has no other system calls than asynchronous notification.

Building

To build from the l4v/ directory, run:

./isabelle/bin/isabelle build -d . -v -b Bisim

Important Theories

Theory Separation defines static configurations, and theory Syscall_S contains the proof that this is equivalent to a static kernel.

The definition of a static kernel API can be found in the spec directory under sep-abstract.