len0rd/FreeRTOS-Kernel
1
0
Fork 0
mirror of https://github.com/FreeRTOS/FreeRTOS-Kernel.git synced 2025-12-12 06:35:19 -05:00
Code Issues Projects Releases Packages Wiki Activity
3157 commits 3 branches 99 tags 214 MiB
Commit graph

3157 commits

This branch
This branch
All branches
Author SHA1 Message Date
Tobias Reinhard
1393ae3c34 Set up lemma DLS_close_2 in accordance to DLS_open_2. Proved cases relating to empty prefix. 2022-11-28 08:44:58 -05:00
Tobias Reinhard
28fb658a59 Proved last case in lemma DLS_open_2. Will need to revisit once the lemma's postcondition has been strengtened. 2022-11-27 09:29:17 -05:00
Tobias Reinhard
53189c46d4 Added new version of DLS opening lemma that reduces case splits in DLS proofs. Proved 3/4 of it. 2022-11-26 12:15:34 -05:00
Tobias Reinhard
49af8fd30f Finished verification of iteration updates in prvSelectHighestPriorityTask. 2022-11-23 15:18:11 -05:00
Tobias Reinhard
9d1b47c5e5 Added lemmas to simplify opening and closing DLS for cases of the form pxTask->pxNext 2022-11-23 13:53:10 -05:00
Tobias Reinhard
f44473b47c Applied closing lemmas. 2022-11-23 11:34:47 -05:00
Tobias Reinhard
be9de4d570 Added lemma DLS_nonEndItem_next_close to help closing DLS opened with DLS_nonEndItem_next_open. 2022-11-23 11:28:27 -05:00
Tobias Reinhard
9e3ea9016e Added lemma DLS_end_next_close to help closing DLS opened with DLS_end_next_open 2022-11-23 08:31:07 -05:00
Tobias Reinhard
5e2f51caa8 Reformatted lemma proofs to improve readability. 2022-11-22 13:26:26 -05:00
Tobias Reinhard
397cb12abb Added lemmas to reason about updates to pointers in the ready list of the form pxTaskItem = pxTaskItem->pxNext 2022-11-22 13:08:22 -05:00
Tobias Reinhard
538f29caeb Closed some predicates to simplify proof state. 2022-11-22 10:17:37 -05:00
Tobias Reinhard
f7e537a19f Restructured proof. 
New proof opens the DLS predicate to justify accesses to `pxTaskItem->next` and proves that `pxTaskItem->next` points to a valid list item.
 2022-11-22 10:10:41 -05:00
Tobias Reinhard
49643b6f5e Partial proof justifying that updates of pxTaskItem in inner search loop in prvSelectHighestPriorityTask are safe. 2022-11-22 07:18:45 -05:00
Tobias Reinhard
2fd6bcc2d7 Updated predicate xLIST_ITEM to jeep up with breaking VF change. 
VeriFast now ensures that no uninitialised values are read. `x |-> _` is interpreted as "uninitialised", `x |-> ?v` is interpreted as "initialised".
 2022-11-22 07:14:21 -05:00
Tobias Reinhard
35aef80072 Proved that pxTaskItem points to valid list item before inner search loop. 2022-11-21 14:02:23 -05:00
Tobias Reinhard
de3657239f Added minimal loop invariant to inner search loop in prvSelectHighestPriorityTask. 2022-11-21 11:32:25 -05:00
Tobias Reinhard
92a925bb59 Verified selection of initial task item in search loop in prvSelectHighestPriorityTask. 2022-11-21 09:45:22 -05:00
Tobias Reinhard
3fee2ec01f Added more DLS lemmas. 2022-11-21 08:16:28 -05:00
Tobias Reinhard
5cf8b4ed1c Added shared global variable xSchedulerRunning to task-isr lock invariant. 2022-11-21 08:06:19 -05:00
Tobias Reinhard
81355bc42f Added DLS lemmas related tosplit. 2022-11-21 08:05:32 -05:00
Tobias Reinhard
5b6a92f023 Added TODO 2022-11-18 16:47:47 -05:00
Tobias Reinhard
cf65065a0c Used single-core list predicate xLIST to express access permissions to ready lists in readyLists_p. 2022-11-18 16:27:38 -05:00
Tobias Reinhard
8f463be9d8 VF rewrite: Changed type of List_t.xListEnd to match expectations of single-core list proofs. 2022-11-18 15:39:41 -05:00
Tobias Reinhard
b1fc658413 Added single-core list predicates and proofs. Most proofs are commented out for the moment. 2022-11-18 15:38:32 -05:00
Tobias Reinhard
f5c0a64f86 Made isr lock predicate abstract. 2022-11-18 14:31:37 -05:00
Tobias Reinhard
02e019fe45 Highlighted that reused list proofs assume single-core setting. 2022-11-18 13:46:43 -05:00
Tobias Reinhard
1888670656 Removed unneeded precondition 2022-11-18 13:35:06 -05:00
Tobias Reinhard
e629319b9f Relaxed contract of xTaskGetCurrentTaskHandle. 2022-11-18 09:32:24 -05:00
Tobias Reinhard
c9e61fce49 Introduced initial formulation of predicate to capture shared ready lists. 2022-11-18 09:22:31 -05:00
Tobias Reinhard
6dcaef48d6 Added loop invariant to main search loop in prvSelectHighestPriorityTask. 2022-11-17 14:24:44 -05:00
Tobias Reinhard
9b2871bc92 Formulated first version of contract for prvSelectHighestPriorityTask and adapted proof of vTaskSwitchContext accordingly. 2022-11-17 12:55:01 -05:00
Tobias Reinhard
fb01980b63 Verified new contract for xTaskGetCurrentTaskHandle. 2022-11-17 12:08:38 -05:00
Tobias Reinhard
63a8d73ecc Apdated proof for vTaskSwitchContext to rely on the proof of taskCHECK_FOR_STACK_OVERFLOW 2022-11-17 10:23:39 -05:00
Tobias Reinhard
d3bda01f16 Verified macro taskCHECK_FOR_STACK_OVERFLOW. 2022-11-17 09:20:21 -05:00
Tobias Reinhard
2f0b8bc82f Added proof steps outlining the verification of stack inspection. Also added TODOs concerning rewrites necessary for the verification of the macro. 2022-11-16 16:08:15 -05:00
Tobias Reinhard
a7d1ca343a VF rewrite: Fixed an evaluation order in taskCHECK_FOR_STACK_OVERFLOW. 2022-11-16 15:50:09 -05:00
Tobias Reinhard
c3c350f8dc vTaskSwitchContext now has access to the current task's stack. 2022-11-16 15:31:49 -05:00
Tobias Reinhard
383a055872 taskCHECK_FOR_STACK_OVERFLOW assumes minimal stack size. Updated stack predicate accordingly. 2022-11-16 15:30:40 -05:00
Tobias Reinhard
7675b3bbe4 Rewrote macro taskCHECK_FOR_STACK_OVERFLOW such that VF can handle it. 2022-11-16 15:28:33 -05:00
Tobias Reinhard
b330847935 Added preliminary post condition for vTaskSwitchContext 2022-11-16 14:26:37 -05:00
Tobias Reinhard
4eb2fa573e Wrote contracts for lock release operations. 2022-11-16 14:18:03 -05:00
Tobias Reinhard
54523ecdce Included global variables pxCurrentTCBs and pxYieldingPendings in interrupt invariant. 2022-11-16 13:53:22 -05:00
Tobias Reinhard
d63a8f83cd Renamed predicate encapsulating access permissions to core local variables to coreLocalInterruptInv_p. 2022-11-16 11:31:12 -05:00
Tobias Reinhard
327423ef67 TCB of currently scheduled task on core C is interrupt protected on core C. Updated invariants to reflect that. 2022-11-16 11:25:37 -05:00
Tobias Reinhard
dbf03a0ab2 Introduced predicates to differentiate between public and private parts of a TCB. 2022-11-16 10:55:25 -05:00
Tobias Reinhard
360afe4374 Cleaned up lock predicate header. 2022-11-16 10:37:12 -05:00
Tobias Reinhard
d95976ebe5 Added info about available tasks to lock predicate. 2022-11-16 10:28:31 -05:00
Tobias Reinhard
7a5119e324 Nightly build of Nov 14, 2022 broke old proof for vTaskCreate. Ignoring these proofs for now. 2022-11-15 09:31:56 -05:00
Tobias Reinhard
d2f10a6b25 vTaskSwitchContexxt assumes that that interrupts have been deactivated. 2022-11-15 08:28:21 -05:00
Tobias Reinhard
a7fdaca373 Reverted manual rewrites involving const pointers. Automatic rewrites are in place. 2022-11-13 14:52:14 -05:00