adbrucker
/
lh-l4v
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
lh-l4v/proof/asmrefine
History
Rafal Kolanski 27607011cd verification update for seL4 arm_hyp merge to master 2016-06-22 22:28:36 +10:00
..
README.md misc: Proofing and formatting of README.md files. 2014-07-28 13:15:48 +10:00
SEL4GlobalsSwap.thy WIP on WCET annotations. 2015-07-14 14:23:29 +10:00
SEL4GraphRefine.thy verification update for seL4 arm_hyp merge to master 2016-06-22 22:28:36 +10:00
SEL4SimplExport.thy WIP on WCET annotations. 2015-07-14 14:23:29 +10:00
TestGraphRefine.thy Don't reuse the s_footprint_intvl theorem name. 2014-10-01 11:16:40 +10:00

README.md

Assembly Refinement Proof

This proof establishes that seL4's compiled binary correctly implements the semantics of its C code. It uses the binary verification tool. An earlier version of this proof is described in the PLDI '13 paper.

Important Theories

The SEL4SimplExport theory, when executed, exports the kernel's C semantics into the graph refinement language used by the external graph refinement toolset. The SEL4GraphRefine theory establishes that this exported graph semantics is a formal refinement of the kernel's C semantics.

The external graph refinement toolset then proves that the kernel's exported graph semantics is refined by the compiled binary.

Current Status

This work is currently in flux. As a result, SEL4GraphRefine may not be currently complete.

The external graph refinement toolset is also currently in flux. An earlier version of this toolset is available here.