diff options
| author |  xleroy <xleroy@fca1b0fc-160b-0410-b1d3-a4f43f01ea2e> | 2010-09-21 07:34:06 +0000 |
|---|---|---|
| committer | xleroy <xleroy@fca1b0fc-160b-0410-b1d3-a4f43f01ea2e> | 2010-09-21 07:34:06 +0000 |
| commit | f7270a57205abd7314203eaef9b752a7abd13ed7 (patch) | |
| tree | 21e31e9608e4af96125a0f4f8afa0e0c96859030 /common/Memtype.v | |
| parent | 30fbbdb86d2a2989062a9c82dc770a923fb19643 (diff) | |
Memory.v: added drop_perm operation
Globalenvs.v: used drop_perm to set appropriate permissions on global variables
(Notempty if volatile; Readable if readonly; Writable otherwise)
git-svn-id: https://yquem.inria.fr/compcert/svn/compcert/trunk@1510 fca1b0fc-160b-0410-b1d3-a4f43f01ea2e
Diffstat (limited to 'common/Memtype.v')
| -rw-r--r-- | common/Memtype.v | 50 |
1 files changed, 50 insertions, 0 deletions
diff --git a/common/Memtype.v b/common/Memtype.v index cbf3ffe..050cc84 100644 --- a/common/Memtype.v +++ b/common/Memtype.v @@ -137,6 +137,13 @@ Fixpoint free_list (m: mem) (l: list (block * Z * Z)) {struct l}: option mem := end end. +(** [drop_perm m b lo hi p] sets the permissions of the byte range + [(b, lo) ... (b, hi - 1)] to [p]. These bytes must have permissions + at least [p] in the initial memory state [m]. + Returns updated memory state, or [None] if insufficient permissions. *) + +Parameter drop_perm: forall (m: mem) (b: block) (lo hi: Z) (p: permission), option mem. + (** * Permissions, block validity, access validity, and bounds *) (** The next block of a memory state is the block identifier for the @@ -647,6 +654,42 @@ Axiom load_free: b <> bf \/ lo >= hi \/ ofs + size_chunk chunk <= lo \/ hi <= ofs -> load chunk m2 b ofs = load chunk m1 b ofs. +(** ** Properties of [drop_perm]. *) + +Axiom nextblock_drop: + forall m b lo hi p m', drop_perm m b lo hi p = Some m' -> + nextblock m' = nextblock m. + +Axiom range_perm_drop_1: + forall m b lo hi p m', drop_perm m b lo hi p = Some m' -> + range_perm m b lo hi p. +Axiom range_perm_drop_2: + forall m b lo hi p, + range_perm m b lo hi p -> { m' | drop_perm m b lo hi p = Some m' }. + +Axiom perm_drop_1: + forall m b lo hi p m', drop_perm m b lo hi p = Some m' -> + forall ofs, lo <= ofs < hi -> perm m' b ofs p. +Axiom perm_drop_2: + forall m b lo hi p m', drop_perm m b lo hi p = Some m' -> + forall ofs p', lo <= ofs < hi -> perm m' b ofs p' -> perm_order p p'. +Axiom perm_drop_3: + forall m b lo hi p m', drop_perm m b lo hi p = Some m' -> + forall b' ofs p', b' <> b \/ ofs < lo \/ hi <= ofs -> perm m b' ofs p' -> perm m' b' ofs p'. +Axiom perm_drop_4: + forall m b lo hi p m', drop_perm m b lo hi p = Some m' -> + forall b' ofs p', perm m' b' ofs p' -> perm m b' ofs p'. + +Axiom bounds_drop: + forall m b lo hi p m', drop_perm m b lo hi p = Some m' -> + forall b', bounds m' b' = bounds m b'. + +Axiom load_drop: + forall m b lo hi p m', drop_perm m b lo hi p = Some m' -> + forall chunk b' ofs, + b' <> b \/ ofs + size_chunk chunk <= lo \/ hi <= ofs \/ perm_order p Readable -> + load chunk m' b' ofs = load chunk m b' ofs. + (** * Relating two memory states. *) (** ** Memory extensions *) @@ -973,4 +1016,11 @@ Axiom store_inject_neutral: val_inject (flat_inj thr) v v -> inject_neutral thr m'. +Axiom drop_inject_neutral: + forall m b lo hi p m' thr, + drop_perm m b lo hi p = Some m' -> + inject_neutral thr m -> + b < thr -> + inject_neutral thr m'. + End MEM. |