[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Alleged "microkernel mathematically proven to be bug free"

To: Lodewijk andré de la porte <[email protected]>
Subject: Alleged "microkernel mathematically proven to be bug free"
From: [email protected] (Georgi Guninski)
Date: Tue, 29 Jul 2014 19:14:18 +0300
Cc: "[email protected]" <[email protected]>
In-reply-to: <CAHWD2rKH-DzbJGxj8-yr+0zWc68gvtC=uDVXvBL_tGxzfuMxCw@mail.gmail.com>
References: <[email protected]$> <CAHWD2r+c0dA7oxysb69oZEcxcADUPfGLpLd2X0Q3hU1iTxcCHg@mail.gmail.com> <[email protected]$> <CAHWD2rKrwACtitw3CegHehWpbRETHpQN-DABUC59jAYzf20O_w@mail.gmail.com> <[email protected]$> <CAHWD2rKH-DzbJGxj8-yr+0zWc68gvtC=uDVXvBL_tGxzfuMxCw@mail.gmail.com>

>These proofs tie a meta-specification to the actual code. Look into the
>sort of proofs they use. Basically they're saying "the code does what we
>said it has to. Only if we accidentally told it to go skynet on us, it will
>work perfectly". Things like segfaults would be pretty clearly not as
>specified.

By browsing the proofs, I have the impression
they don't depend on the C code (and Isabelle
parsing C appears not very trivial, though 
possible).

If I backdoor the C code of the kernel, will
the proof fail?

Follow-Ups:
- Alleged "microkernel mathematically proven to be bug free"
  - From: [email protected] (Lodewijk andré de la porte)
- Alleged "microkernel mathematically proven to be bug free"
  - From: [email protected] (Ted Smith)

References:
- Alleged "microkernel mathematically proven to be bug free"
  - From: [email protected] (Georgi Guninski)
- Alleged "microkernel mathematically proven to be bug free"
  - From: [email protected] (Lodewijk andré de la porte)
- Alleged "microkernel mathematically proven to be bug free"
  - From: [email protected] (Georgi Guninski)
- Alleged "microkernel mathematically proven to be bug free"
  - From: [email protected] (Lodewijk andré de la porte)
- Alleged "microkernel mathematically proven to be bug free"
  - From: [email protected] (Georgi Guninski)
- Alleged "microkernel mathematically proven to be bug free"
  - From: [email protected] (Lodewijk andré de la porte)

Prev by Date: Alleged "microkernel mathematically proven to be bug free"
Next by Date: Alleged "microkernel mathematically proven to be bug free"
Previous by thread: Alleged "microkernel mathematically proven to be bug free"
Next by thread: Alleged "microkernel mathematically proven to be bug free"
Index(es):
- Date
- Thread