| #
6b9d9d24 |
|
09-Jun-2018 |
Gerwin Klein <gerwin.klein@data61.csiro.au> |
Isabelle2018: new "op x" syntax; now is "(x)"
(result of "isabelle update_op -m <dir>")
|
| #
16346084 |
|
03-Apr-2018 |
Joel Beeren <joel.beeren@data61.csiro.au> |
arm: ioportcontrol: Fixes after adding IOPortControlCaps to x64
|
| #
6d8e9170 |
|
19-Jul-2017 |
Miki Tanaka <miki.tanaka@nicta.com.au> |
Remove valid_arch_objs
now that we have valid_vspace_objs to express validiy of
vspace objects, we do not need valid_arch_objs: we have
valid_objs to state the validity of non-vspace arch objects.
|
| #
2f70a304 |
|
09-Aug-2017 |
Matthew Brecknell <Matthew.Brecknell@data61.csiro.au> |
ainvs: integrate all architectures
|
| #
796887d9 |
|
11-Jul-2017 |
Alejandro Gomez-Londono <alejandro.gomez@nicta.com.au> |
Removes all trailing whitespaces
|
| #
702bfecd |
|
17-May-2017 |
Joel Beeren <joel.beeren@nicta.com.au> |
ainvs: reintroduce second_level_tables all over the place, update generic Arch_AI and various ArchArch_AI's to match
|
| #
993f6a01 |
|
16-May-2017 |
Miki Tanaka <miki.tanaka@nicta.com.au> |
arm ainvs: Updated up to ArchFinalise_AI
|
| #
3dafec7d |
|
25-Jan-2017 |
Joel Beeren <Joel.Beeren@nicta.com.au> |
backport changes to ARM proofs from X64 work in progress
- replace ARM-specific constants and types with aliases which can be
instantiated separately for each architecture.
- expand lib with lemmas used in X64 proofs.
- simplify some proofs.
Also-by: Matthew Brecknell <Matthew.Brecknell@data61.csiro.au>
|
| #
f8dadc16 |
|
24-Jan-2017 |
Matthew Brecknell <Matthew.Brecknell@data61.csiro.au> |
x64: fix ArchRetype_AI
- Port from ARM to X64:
- Definitions and lemmas relating to copy_global_mappings.
- Device untyped patch.
- Pre-emptible retype patch.
Includes some fixes to ArchVSpace_AI and ArchVSpaceAcc_A.
There is one "sorry" in ArchRetype_AI which is waiting for a refactoring
of ArchAcc_AI and ArchVSpace_AI for simpler proofs concerning vs_lookup,
store_pml4e, etc.
|
| #
47119bf4 |
|
13-Jan-2017 |
Gerwin Klein <gerwin.klein@nicta.com.au> |
wp_cleanup: update proofs for new wp behaviour
The things that usually go wrong:
- wp fall through: add +, e.g.
apply (wp select_wp) -> apply (wp select_wp)+
- precondition: you can remove most hoare_pre, but wpc still needs it, and
sometimes the wp instance relies on being able to fit a rule to the
current non-schematic precondition. In that case, use "including no_pre"
to switch off the automatic hoare_pre application.
- very rarely there is a schematic postcondition that interferes with the
new trivial cleanup rules, because the rest of the script assumes some
specific state afterwards (shouldn't happen in a reasonable proof, but
not all proofs are reasonable..). In that case, (wp_once ...)+ should
emulate the old behaviour precisely.
|
| #
41d4aa4f |
|
25-Oct-2016 |
Matthew Brecknell <Matthew.Brecknell@data61.csiro.au> |
Isabelle2016-1: update references to renamed constants and facts
|
| #
f21d06d3 |
|
01-Dec-2016 |
Joel Beeren <joel.beeren@nicta.com.au> |
AInvs: remove 32-bit references in Untyped_AI
|
| #
63888fa9 |
|
16-May-2016 |
Thomas Sewell <Thomas.Sewell@nicta.com.au> |
SELFOUR-444: AInvs proven for preemptible retype.
|
| #
8d4a8eb2 |
|
21-Sep-2016 |
Xin,Gao <xin.gao@nicta.com.au> |
SELFOUR-421: fix coding style
|
| #
1013e959 |
|
30-Jul-2016 |
Matthew Brecknell <Matthew.Brecknell@data61.csiro.au> |
arch_split: give some vspace concepts more generic names
In particular rename "pd" to "vspace", when the pd represents
an address space.
|
| #
b9313f6d |
|
14-Jun-2016 |
Matthew Brecknell <Matthew.Brecknell@nicta.com.au> |
arch_split: invariants: tidied
|
| #
aceb021f |
|
13-May-2016 |
Matthew Brecknell <Matthew.Brecknell@nicta.com.au> |
arch_split: invariants: split Retype_AI [VER-556]
|
| #
3e900418 |
|
12-May-2016 |
Matthew Brecknell <Matthew.Brecknell@nicta.com.au> |
arch_split: access: fixup locale introduction rule
|
| #
9f626225 |
|
10-May-2016 |
Daniel Matichuk <daniel.matichuk@nicta.com.au> |
arch_split: skeleton arch files for AInvs
|