Appendices with PVS source code and proofs for the document Nova Micro-Hypervisor Verification B PVS Theory Sources
ثبت نشده
چکیده
Read Write[State, Data : Type] : TheoryBeginIMPORTING Memory Change[State]IMPORTING State Transformer Lift, Interpreted Datadt : Var (interpreted data type?[Data]) % dt aka Data typeaddr : Var Addresss : Var State % s aka statedata : Var Datapm : Var Memory struct[State]valid in mem(pm,dt)(addr)(s) : bool =Cases memory read list(pm)(addr, size(uidt(dt)))(s) OFOK(sn, bl) : dt‘uidt‘valid?(bl, addr)Else trueEndCasesread data(pm,dt)(addr) : [State −> ExprResult[State, Data]] =(memory read list(pm)(addr, size(uidt(dt))) ##Lambda(bl : list[Byte]) : ok lift(from byte(dt)(bl, addr)))write data(pm,dt)(addr, data) : [State −> ExprResult[State, Unit]] =memory write list(pm)(addr, to byte(dt)(data, addr))% proof status :−)read data valid in mem : LemmaOK?(read data(pm, dt)(addr)(s)) Implies valid in mem(pm, dt)(addr)(s)End Abstract Read WriteB.2 allocators.pvs Allocator[State : Type] : Theory% Specification of memory allocators working on plain memory,% such as the stack allocator and the one for global variables.BeginImporting Plain Memory[State]% The allocator interface consists of two real methods and four% logical ones.% alloc allocates memory
منابع مشابه
A Formal Model of Memory Peculiarities for the Verification of Low-Level Operating-System Code
This paper presents our solutions to some problems we encountered in an ongoing attempt to verify the micro-hypervisor currently developed within the Robin project. The problems that we discuss are (1) efficient automatic reasoning for type-correct programs in virtual memory, and (2) modeling memory-mapped devices with alignment requirements. The discussed solutions are integrated in our verifi...
متن کاملPVS Linear Algebra Libraries for Verification of Control Software Algorithms in C/ACSL
The problem of ensuring control software properties hold on their actual implementation is rarely tackled. While stability proofs are widely used on models, they are never carried to the code. Using program verification techniques requires express these properties at the level of the code but also to have theorem provers that can manipulate the proof elements. We propose to address this challen...
متن کاملFormalization of the Integral Calculus in the PVS Theorem Prover
The PVS theorem prover is a widely used formal verification tool used for the analysis of safetycritical systems. The PVS prover, though fully equipped to support deduction in a very general logic framework, namely higher-order logic, it must nevertheless, be augmented with the definitions and associated theorems for every branch of mathematics and computer science that is used in a verificatio...
متن کاملFrom Verified Specifications to Verifiable Software∗
Declarative specifications of digital systems often contain parts that can be automatically translated into executable code. Automated code generation, as opposed to manual code writing, eliminates a potential source of errors when a prototype implementation of these models is required. Furthermore, code generation allows for better integration of formal methods into the software development pr...
متن کاملFormal Verification of a Combination Decision Procedure
Decision procedures for combinations of theories are at the core of many modern theorem provers such as ACL2, Ehdm, PVS, SIMPLIFY, the Stanford Pascal Verifier, STeP, SVC, and Z/Eves. Shostak, in 1984, published a decision procedure for the combination of canonizable and solvable theories. Recently, Ruess and Shankar showed Shostak’s method to be incomplete and nonterminating, and presented a c...
متن کامل