This proof establishes that seL4's compiled binary correctly implements the semantics of its C code. It uses the binary verification tool. An earlier version of this proof is described in the PLDI '13 paper.
The SEL4SimplExport theory, when executed, exports the
kernel's C semantics into the graph refinement language used by the external
graph refinement toolset. The SEL4GraphRefine theory
establishes that this exported graph semantics is a formal refinement of
the kernel's C semantics.
The external graph refinement toolset then proves that the kernel's exported graph semantics is refined by the compiled binary.
This work is currently in flux. As a result,
SEL4GraphRefine may not be currently complete.
The external graph refinement toolset is also currently in flux. An earlier version of this toolset is available here.