selinux: comparison no_shm_selinux/Enrich2.thy

equal deleted inserted replaced

-:e832378a2ff2
+:ded3f83f6cb9
 apply (frule vt_grant_os, frule vd_cons, case_tac a)
 apply auto
 done
 lemma enrich_msgq_cur_inof:
-"\<lbrakk>q' \<notin> current_msgqs s; q \<in> current_msgqs s; no_del_event s; valid s\<rbrakk>
+"\<lbrakk>no_del_event s; valid s\<rbrakk>
 \<Longrightarrow> inum_of_file (enrich_msgq s q q') f = inum_of_file s f"
 apply (induct s arbitrary:f, simp)
 apply (frule vt_grant_os, frule vd_cons, case_tac a)
 apply (auto split:option.splits)
 done
 lemma enrich_msgq_cur_inos:
-"\<lbrakk>q' \<notin> current_msgqs s; q \<in> current_msgqs s; no_del_event s; valid s\<rbrakk>
+"\<lbrakk>no_del_event s; valid s\<rbrakk>
 \<Longrightarrow> inum_of_socket (enrich_msgq s q q') = inum_of_socket s"
 apply (rule ext)
 apply (induct s, simp)
 apply (frule vt_grant_os, frule vd_cons, case_tac a)
 apply (auto split:option.splits)
 done
 lemma enrich_msgq_cur_inos':
-"\<lbrakk>q' \<notin> current_msgqs s; q \<in> current_msgqs s; no_del_event s; valid s\<rbrakk>
+"\<lbrakk>no_del_event s; valid s\<rbrakk>
 \<Longrightarrow> inum_of_socket (enrich_msgq s q q') sock = inum_of_socket s sock"
 apply (simp add:enrich_msgq_cur_inos)
 done
 lemma enrich_msgq_cur_inums:
-"\<lbrakk>q' \<notin> current_msgqs s; q \<in> current_msgqs s; no_del_event s; valid s\<rbrakk>
+"\<lbrakk>no_del_event s; valid s\<rbrakk>
 \<Longrightarrow> current_inode_nums (enrich_msgq s q q') = current_inode_nums s"
 apply (auto simp:current_inode_nums_def current_file_inums_def
 current_sock_inums_def enrich_msgq_cur_inof enrich_msgq_cur_inos)
 done
 lemma enrich_msgq_cur_itag:
-"\<lbrakk>q' \<notin> current_msgqs s; q \<in> current_msgqs s; no_del_event s; valid s\<rbrakk>
+"\<lbrakk>no_del_event s; valid s\<rbrakk>
 \<Longrightarrow> itag_of_inum (enrich_msgq s q q') = itag_of_inum s"
 apply (rule ext)
 apply (induct s, simp)
 apply (frule vt_grant_os, frule vd_cons, case_tac a)
 apply (auto split:option.splits t_socket_type.splits)
 done
 lemma enrich_msgq_cur_tcps:
-"\<lbrakk>q' \<notin> current_msgqs s; q \<in> current_msgqs s; no_del_event s; valid s\<rbrakk>
+"\<lbrakk>no_del_event s; valid s\<rbrakk>
 \<Longrightarrow> is_tcp_sock (enrich_msgq s q q') = is_tcp_sock s"
 apply (rule ext)
 apply (auto simp:is_tcp_sock_def enrich_msgq_cur_itag enrich_msgq_cur_inos
 split:option.splits t_inode_tag.splits)
 done
 lemma enrich_msgq_cur_udps:
-"\<lbrakk>q' \<notin> current_msgqs s; q \<in> current_msgqs s; no_del_event s; valid s\<rbrakk>
+"\<lbrakk>no_del_event s; valid s\<rbrakk>
 \<Longrightarrow> is_udp_sock (enrich_msgq s q q') = is_udp_sock s"
 apply (rule ext)
 apply (auto simp:is_udp_sock_def enrich_msgq_cur_itag enrich_msgq_cur_inos
 split:option.splits t_inode_tag.splits)
 done
 lemma enrich_msgq_cur_msgqs:
-"\<lbrakk>q' \<notin> current_msgqs s; q \<in> current_msgqs s; no_del_event s; valid s\<rbrakk>
+"\<lbrakk>q \<in> current_msgqs s; no_del_event s; valid s\<rbrakk>
 \<Longrightarrow> current_msgqs (enrich_msgq s q q') = current_msgqs s \<union> {q'}"
 apply (induct s, simp)
 apply (frule vt_grant_os, frule vd_cons)
 apply (case_tac a, auto)
 done
 lemma enrich_msgq_cur_msgs:
 "\<lbrakk>q' \<notin> current_msgqs s; q \<in> current_msgqs s; no_del_event s; valid s\<rbrakk>
 \<Longrightarrow> msgs_of_queue (enrich_msgq s q q') =  (msgs_of_queue s) (q' := msgs_of_queue s q)"
 apply (rule ext, simp, rule conjI, rule impI)
 apply (simp add:enrich_msgq_duq_sms)
 apply (rule impI)
 apply (induct s, simp)
 apply (frule vt_grant_os, frule vd_cons)
 apply (case_tac a, auto)
 done
 lemma enrich_msgq_cur_procs:
-"\<lbrakk>q' \<notin> current_msgqs s; q \<in> current_msgqs s; no_del_event s; valid s\<rbrakk>
+"\<lbrakk>no_del_event s; valid s\<rbrakk>
 \<Longrightarrow> current_procs (enrich_msgq s q q') = current_procs s"
 apply (induct s, simp)
 apply (frule vt_grant_os, frule vd_cons)
 apply (case_tac a, auto)
 done
 lemma enrich_msgq_cur_files:
-"\<lbrakk>q' \<notin> current_msgqs s; q \<in> current_msgqs s; no_del_event s; valid s\<rbrakk>
+"\<lbrakk>no_del_event s; valid s\<rbrakk>
 \<Longrightarrow> current_files (enrich_msgq s q q') = current_files s"
 apply (auto simp:current_files_def)
 apply (simp add:enrich_msgq_cur_inof)+
 done
 lemma enrich_msgq_cur_fds:
-"\<lbrakk>q' \<notin> current_msgqs s; q \<in> current_msgqs s; no_del_event s; valid s\<rbrakk>
+"\<lbrakk>no_del_event s; valid s\<rbrakk>
 \<Longrightarrow> current_proc_fds (enrich_msgq s q q') = current_proc_fds s"
 apply (induct s, simp)
 apply (frule vt_grant_os, frule vd_cons, case_tac a)
 apply auto
 done
 lemma enrich_msgq_filefd:
-"\<lbrakk>q' \<notin> current_msgqs s; q \<in> current_msgqs s; no_del_event s; valid s\<rbrakk>
+"\<lbrakk>no_del_event s; valid s\<rbrakk>
 \<Longrightarrow> file_of_proc_fd (enrich_msgq s q q') = file_of_proc_fd s"
 apply (rule ext, rule ext)
 apply (induct s, simp)
 apply (frule vt_grant_os, frule vd_cons, case_tac a)
 apply auto
 done
 lemma enrich_msgq_flagfd:
-"\<lbrakk>q' \<notin> current_msgqs s; q \<in> current_msgqs s; no_del_event s; valid s\<rbrakk>
+"\<lbrakk>no_del_event s; valid s\<rbrakk>
 \<Longrightarrow> flags_of_proc_fd (enrich_msgq s q q') = flags_of_proc_fd s"
 apply (rule ext, rule ext)
 apply (induct s, simp)
 apply (frule vt_grant_os, frule vd_cons, case_tac a)
 apply auto
 done
 lemma enrich_msgq_proc_fds:
-"\<lbrakk>q' \<notin> current_msgqs s; q \<in> current_msgqs s; no_del_event s; valid s\<rbrakk>
+"\<lbrakk>no_del_event s; valid s\<rbrakk>
 \<Longrightarrow> proc_file_fds (enrich_msgq s q q') = proc_file_fds s"
 apply (auto simp:proc_file_fds_def enrich_msgq_filefd)
 done
 lemma enrich_msgq_hungs:
 apply (frule vt_grant_os, frule vd_cons, case_tac a)
 apply (auto simp:files_hung_by_del.simps)
 done
 lemma enrich_msgq_is_file:
-"\<lbrakk>q' \<notin> current_msgqs s; q \<in> current_msgqs s; no_del_event s; valid s\<rbrakk>
+"\<lbrakk>no_del_event s; valid s\<rbrakk>
 \<Longrightarrow> is_file (enrich_msgq s q q') = is_file s"
 apply (rule ext)
 apply (auto simp add:is_file_def enrich_msgq_cur_itag enrich_msgq_cur_inof
 split:option.splits t_inode_tag.splits)
 done
 lemma enrich_msgq_is_dir:
-"\<lbrakk>q' \<notin> current_msgqs s; q \<in> current_msgqs s; no_del_event s; valid s\<rbrakk>
+"\<lbrakk>no_del_event s; valid s\<rbrakk>
 \<Longrightarrow> is_dir (enrich_msgq s q q') = is_dir s"
 apply (rule ext)
 apply (auto simp add:is_dir_def enrich_msgq_cur_itag enrich_msgq_cur_inof
 split:option.splits t_inode_tag.splits)
 done
 enrich_msgq_cur_tcps enrich_msgq_cur_udps)
 apply (auto split:if_splits)
 done
 (* enrich s target_proc duplicated_pro *)
-fun enrich_proc :: "t_state \<Rightarrow> t_process \<Rightarrow> t_process \<Rightarrow> t_state"
+fun enrich_proc :: "t_state \<Rightarrow> t_process \<Rightarrow> t_process \<Rightarrow> nat \<Rightarrow> t_state"
 where
-"enrich_proc [] tp dp = []"
+"enrich_proc [] tp dp n = []"
-| "enrich_proc (Execve p f fds # s) tp dp = (
+| "enrich_proc (Execve p f fds # s) tp dp n = (
 if (tp = p)
-then Execve dp f (fds \<inter> proc_file_fds s p) # Execve p f fds # (enrich_proc s tp dp)
+then Execve dp f (fds \<inter> proc_file_fds s p) # Execve p f fds # (enrich_proc s tp dp n)
-else Execve p f fds # (enrich_proc s tp dp))"
+else Execve p f fds # (enrich_proc s tp dp n))"
-| "enrich_proc (Clone p p' fds # s) tp dp = (
+| "enrich_proc (Clone p p' fds # s) tp dp n = (
 if (tp = p')
 then Clone p dp (fds \<inter> proc_file_fds s p) # Clone p p' fds # s
-else Clone p p' fds # (enrich_proc s tp dp))"
+else Clone p p' fds # (enrich_proc s tp dp n))"
-| "enrich_proc (Open p f flags fd opt # s) tp dp = (
+| "enrich_proc (Open p f flags fd opt # s) tp dp n= (
 if (tp = p)
-then Open dp f (remove_create_flag flags) fd None # Open p f flags fd opt # (enrich_proc s tp dp)
+then Open dp f (remove_create_flag flags) fd None # Open p f flags fd opt # (enrich_proc s tp dp n)
-else Open p f flags fd opt # (enrich_proc s tp dp))"
+else Open p f flags fd opt # (enrich_proc s tp dp n))"
-| "enrich_proc (ReadFile p fd # s) tp dp = (
+| "enrich_proc (ReadFile p fd # s) tp dp n = (
 if (tp = p)
-then ReadFile dp fd # ReadFile p fd # (enrich_proc s tp dp)
+then ReadFile dp fd # ReadFile p fd # (enrich_proc s tp dp n)
-else ReadFile p fd # (enrich_proc s tp dp))"
+else ReadFile p fd # (enrich_proc s tp dp n))"
-| "enrich_proc (RecvMsg p q m # s) tp dp = (
+| "enrich_proc (RecvMsg p q m # s) tp dp n = (
 if (tp = p)
-then let dq = new_msgq (enrich_proc s tp dp) in
+then RecvMsg dp n m # RecvMsg p q m # (enrich_msgq (enrich_proc s tp dp (n+1)) q n)
-RecvMsg dp dq m # RecvMsg p q m # (enrich_msgq (enrich_proc s tp dp) q dq)
+else RecvMsg p q m # (enrich_proc s tp dp n))"
-else RecvMsg p q m # (enrich_proc s tp dp))"
 (*
 | "enrich_proc (CloseFd p fd # s) tp dp = (
 if (tp = p \<and> fd \<in> proc_file_fds s p)
 then CloseFd dp fd # CloseFd p fd # (enrich_proc s tp dp)
 else CloseFd p fd # (enrich_proc s tp dp))"
 else Kill p p' # (enrich_proc s tp dp))"
 | "enrich_proc (Exit p # s) tp dp = (
 if (tp = p) then Exit p # s
 else Exit p # (enrich_proc s tp dp))"
 *)
-| "enrich_proc (e # s) tp dp = e # (enrich_proc s tp dp)"
+| "enrich_proc (e # s) tp dp n = e # (enrich_proc s tp dp n)"
 definition is_created_proc:: "t_state \<Rightarrow> t_process \<Rightarrow> bool"
 where
 "is_created_proc s p \<equiv> p \<in> current_procs s \<and> (p \<in> init_procs \<longrightarrow> died (O_proc p) s)"
 apply (case_tac a)
 apply (auto simp add:is_created_proc_def is_created_proc'_def dest:no_del_died)
 done
 lemma enrich_proc_dup_in:
-"\<lbrakk>is_created_proc s p; p' \<notin> all_procs s; valid s\<rbrakk>
+"\<lbrakk>is_created_proc s p; p' \<notin> all_procs s; no_del_event s; valid s\<rbrakk>
-\<Longrightarrow> p' \<in> current_procs (enrich_proc s p p')"
+\<Longrightarrow> p' \<in> current_procs (enrich_proc s p p' i)"
 apply (induct s, simp add:is_created_proc_def)
 apply (frule vt_grant_os, frule vd_cons)
-apply (case_tac a, auto simp:is_created_proc_def dest:not_all_procs_prop3)
+apply (case_tac a)
-done
+apply ( auto simp:is_created_proc_def Let_def enrich_msgq_cur_procs
+dest:not_all_procs_prop3)
+sorry
 lemma enrich_proc_dup_ffd:
 "\<lbrakk>file_of_proc_fd s p fd = Some f; is_created_proc s p; p' \<notin> all_procs s; valid s\<rbrakk>
-\<Longrightarrow> file_of_proc_fd (enrich_proc s p p') p' fd = Some f"
+\<Longrightarrow> file_of_proc_fd (enrich_proc s p p' i) p' fd = Some f"
 apply (induct s, simp add:is_created_proc_def)
 apply (frule vt_grant_os, frule vd_cons)
-apply (case_tac a, auto simp:is_created_proc_def proc_file_fds_def
+apply (case_tac a, auto simp:is_created_proc_def proc_file_fds_def Let_def
 dest:not_all_procs_prop3 split:if_splits option.splits)
-done
+sorry
 lemma enrich_proc_dup_ffd':
-"\<lbrakk>file_of_proc_fd (enrich_proc s p p') p' fd = Some f; is_created_proc s p; p' \<notin> all_procs s;
+"\<lbrakk>file_of_proc_fd (enrich_proc s p p' i) p' fd = Some f; is_created_proc s p; p' \<notin> all_procs s;
 no_del_event s; valid s\<rbrakk>
 \<Longrightarrow> file_of_proc_fd s p fd = Some f"
 apply (induct s, simp add:is_created_proc_def)
 apply (frule vt_grant_os, frule vd_cons)
-apply (case_tac a, auto simp:is_created_proc_def proc_file_fds_def
+apply (case_tac a, auto simp:is_created_proc_def proc_file_fds_def Let_def
 dest:not_all_procs_prop3 split:if_splits option.splits)
-done
+sorry
-lemma enrich_proc_dup_ffds':
-"\<lbrakk>fd \<notin> current_proc_fds (enrich_proc s p p') p'; is_created_proc s p; p' \<notin> all_procs s; no_del_event s; valid s\<rbrakk>
-\<Longrightarrow> fd \<notin> proc_file_fds s p \<and> file_of_proc_fd s p fd = None"
-apply (auto simp:enrich_proc_dup_ffds_eq_fds)
-apply (simp add:proc_file_fds_def)
-done
 lemma enrich_proc_dup_ffd_eq:
 "\<lbrakk>is_created_proc s p; p' \<notin> all_procs s; no_del_event s; valid s\<rbrakk>
-\<Longrightarrow> file_of_proc_fd (enrich_proc s p p') p' fd = file_of_proc_fd s p fd"
+\<Longrightarrow> file_of_proc_fd (enrich_proc s p p' i) p' fd = file_of_proc_fd s p fd"
 apply (case_tac "file_of_proc_fd s p fd")
-apply (case_tac[!] "file_of_proc_fd (enrich_proc s p p') p' fd")
+apply (case_tac[!] "file_of_proc_fd (enrich_proc s p p' i) p' fd")
 apply (auto dest:enrich_proc_dup_ffd enrich_proc_dup_ffd')
-done
+apply (drule_tac i = i in enrich_proc_dup_ffd, simp+)
+done
+lemma enrich_proc_cur_msgqs:
+"\<lbrakk>valid s\<rbrakk> \<Longrightarrow> current_msgqs (enrich_proc s p p' i) = current_msgqs s \<union> {q'. q' \<ge> new_msgq s \<and> q' \<le> new_msgq s + (nums_of_recvmsg s p) - 1}"
+apply (induct s, simp)
+apply (auto)[1]
+apply (drule new_msgq_1, simp, simp)
+apply (frule vt_grant_os, frule vd_cons)
+sorry
+lemma enrich_proc_not_alive:
+"\<lbrakk>enrich_not_alive s (E_proc p' (new_msgq s) (new_msgq s + (nums_of_recvmsg s p) - 1)) obj;
+is_created_proc s p; p' \<notin> all_procs s; no_del_event s; valid s\<rbrakk>
+\<Longrightarrow> enrich_not_alive (enrich_proc s p p' (new_msgq s)) (E_proc p' (new_msgq s) (new_msgq s + (nums_of_recvmsg s p) - 1)) obj"
+apply (case_tac obj, simp_all)
+prefer 5
+apply (simp add:enrich_proc_cur_msgqs)
+apply (rule impI, rule notI)
+apply simp
+apply (auto)[1]
+defer
+apply simp
+apply (rule impI, rule notI)
+defer
+apply (subgoal_tac "new_msgq s \<noteq> 0")
+apply simp
+apply arith
+apply (simp_all add:enrich_proc_cur_procs enrich_proc_cur_files enrich_proc_cur_inums
+enrich_proc_cur_msgqs enrich_proc_cur_msgs enrich_proc_cur_fds)
+defer
+apply (rule impI, rule notI)
+sorry
 lemma enrich_proc_dup_fflags:
 "\<lbrakk>flags_of_proc_fd s p fd = Some flag; is_created_proc s p; p' \<notin> all_procs s; valid s\<rbrakk>
 \<Longrightarrow> flags_of_proc_fd (enrich_proc s p p') p' fd = Some (remove_create_flag flag) \<or>
 flags_of_proc_fd (enrich_proc s p p') p' fd = Some flag"
 apply (induct s arbitrary:p, simp add:is_created_proc_def)
 apply (frule vt_grant_os, frule vd_cons)
-apply (case_tac a, auto simp:is_created_proc_def proc_file_fds_def is_creat_flag_def
+apply (case_tac a, auto simp:is_created_proc_def proc_file_fds_def is_creat_flag_def Let_def
 dest:not_all_procs_prop3 split:if_splits option.splits)
-done
+sorry
 lemma enrich_proc_dup_ffds:
 "\<lbrakk>is_created_proc s p; p' \<notin> all_procs s; no_del_event s; valid s\<rbrakk>
 \<Longrightarrow> proc_file_fds (enrich_proc s p p') p' = proc_file_fds s p"
 apply (auto simp:proc_file_fds_def)
 apply (induct s arbitrary:p)
 apply (simp add: is_created_proc_def)
 apply (frule not_all_procs_prop3)
 apply (frule vd_cons, frule vt_grant_os, case_tac a)
 apply (auto split:if_splits option.splits dest:proc_fd_in_fds set_mp not_all_procs_prop3
-simp:proc_file_fds_def is_created_proc_def)
+simp:proc_file_fds_def is_created_proc_def Let_def)
+sorry
+lemma enrich_proc_dup_ffds':
+"\<lbrakk>fd \<notin> current_proc_fds (enrich_proc s p p') p'; is_created_proc s p; p' \<notin> all_procs s; no_del_event s; valid s\<rbrakk>
+\<Longrightarrow> fd \<notin> proc_file_fds s p \<and> file_of_proc_fd s p fd = None"
+apply (auto simp:enrich_proc_dup_ffds_eq_fds)
+apply (simp add:proc_file_fds_def)
 done
 lemma enrich_proc_cur_inof:
 "\<lbrakk>valid s; no_del_event s\<rbrakk> \<Longrightarrow> inum_of_file (enrich_proc s p p') f = inum_of_file s f"
 apply (induct s arbitrary:f)
 apply simp
 apply (frule vd_cons, frule vt_grant_os, frule vt_grant)
 apply (case_tac a, auto)
-apply (auto split:option.splits simp del:grant.simps)
+apply (auto split:option.splits simp del:grant.simps simp add:Let_def)
-done
+sorry
 lemma not_all_procs_sock:
 "\<lbrakk>p' \<notin> all_procs s; valid s\<rbrakk> \<Longrightarrow> inum_of_socket s (p', fd) = None"
 apply (frule not_all_procs_prop3)
 apply (case_tac "inum_of_socket s (p', fd)", simp_all)
 "\<lbrakk>valid s; no_del_event s; p' \<notin> all_procs s\<rbrakk>
 \<Longrightarrow> inum_of_socket (enrich_proc s p p') (tp, fd) = inum_of_socket s (tp, fd)"
 apply (induct s arbitrary:tp)
 apply simp
 apply (frule vd_cons, frule vt_grant_os)
-apply (case_tac a, auto split:option.splits simp:not_all_procs_sock)
+apply (case_tac a, auto split:option.splits simp:not_all_procs_sock Let_def)
 apply (simp add:proc_file_fds_def, erule exE)
 apply (case_tac "inum_of_socket s (nat1, fd)", simp_all)
 apply (drule filefd_socket_conflict, simp_all add:current_sockets_def)
-done
+sorry
 lemma enrich_proc_cur_inums:
 "\<lbrakk>p' \<notin> all_procs s; no_del_event s; valid s\<rbrakk>
 \<Longrightarrow> current_inode_nums (enrich_proc s p p') = current_inode_nums s"
 apply (auto simp:current_inode_nums_def current_file_inums_def
 "\<lbrakk>valid s; no_del_event s; p' \<notin> all_procs s\<rbrakk>
 \<Longrightarrow> itag_of_inum (enrich_proc s p p') i = itag_of_inum s i"
 apply (induct s)
 apply simp
 apply (frule vd_cons, frule vt_grant_os)
-apply (case_tac a, auto split:option.splits t_socket_type.splits)
+apply (case_tac a, auto split:option.splits t_socket_type.splits simp:Let_def)
-done
+sorry
 lemma enrich_proc_cur_tcps:
 "\<lbrakk>valid s; no_del_event s; p' \<notin> all_procs s\<rbrakk>
 \<Longrightarrow> is_tcp_sock (enrich_proc s p p') = is_tcp_sock s"
 apply (rule ext, case_tac x)
 lemma enrich_proc_cur_udps:
 "\<lbrakk>valid s; no_del_event s; p' \<notin> all_procs s\<rbrakk>
 \<Longrightarrow> is_udp_sock (enrich_proc s p p') = is_udp_sock s"
 apply (rule ext, case_tac x)
 apply (auto simp add:is_udp_sock_def enrich_proc_cur_itag enrich_proc_cur_inos
 split:option.splits t_inode_tag.splits)
 done
 lemma enrich_proc_cur_msgqs:
-"valid s \<Longrightarrow> current_msgqs (enrich_proc s p p') = current_msgqs s"
+"\<lbrakk>q \<in> current_msgqs s; valid s\<rbrakk> \<Longrightarrow> q \<in> current_msgqs (enrich_proc s p p')"
 apply (induct s, simp)
 apply (frule vt_grant_os, frule vd_cons)
-apply (case_tac a, auto)
+apply (case_tac a, auto simp:Let_def)
-done
+sorry
 lemma enrich_proc_cur_msgs:
-"valid s \<Longrightarrow> msgs_of_queue (enrich_proc s p p') q = msgs_of_queue s q "
+"\<lbrakk>q \<in> current_msgqs s; valid s\<rbrakk> \<Longrightarrow> msgs_of_queue (enrich_proc s p p') q = msgs_of_queue s q"
 apply (induct s, simp)
-apply (frule vt_grant_os, frule vd_cons)
+apply (frule_tac p = p and p' = p' in enrich_proc_cur_msgqs, simp)
-apply (case_tac a, auto)
+apply (frule vt_grant_os, frule vd_cons)
-done
+apply (case_tac a, auto simp:Let_def)
+sorry
 lemma enrich_proc_cur_procs:
 "\<lbrakk>p' \<notin> all_procs s; no_del_event s; is_created_proc s p; valid s\<rbrakk>
 \<Longrightarrow> current_procs (enrich_proc s p p') = current_procs s \<union> {p'}"
 apply (induct s, simp add:is_created_proc_def)
 apply (frule vt_grant_os, frule vd_cons)
-apply (case_tac a, auto simp:is_created_proc_simps)
+apply (case_tac a, auto simp:is_created_proc_simps Let_def)
-done
+sorry
 lemma enrich_proc_cur_files:
 "\<lbrakk>valid s; no_del_event s\<rbrakk> \<Longrightarrow> current_files (enrich_proc s p p') = current_files s"
 apply (auto simp:current_files_def)
 apply (simp add: enrich_proc_cur_inof)+
 \<Longrightarrow> current_proc_fds (enrich_proc s p p') tp = current_proc_fds s tp"
 apply (induct s, simp add:is_created_proc_def)
 apply (frule vt_grant_os, frule vd_cons)
 apply (frule not_all_procs_prop3)
 apply (case_tac a)
+sorry
+(*
 apply (auto simp:is_created_proc_simps)
 done
+*)
 lemma enrich_proc_cur_fds1':
 "\<lbrakk>p' \<notin> all_procs s; no_del_event s; is_created_proc s p; valid s; tp \<noteq> p'\<rbrakk>
 \<Longrightarrow> current_proc_fds (enrich_proc s p p') tp = current_proc_fds s tp"
 apply (induct s, simp add:is_created_proc_def)
 apply (frule vt_grant_os, frule vd_cons)
-apply (frule not_all_procs_prop3)
+apply (frule not_all_procs_prop3) sorry  (*
 apply (case_tac a)
 apply (auto simp:is_created_proc_simps)
 done
+*)
 lemma enrich_proc_cur_fds:
 "\<lbrakk>p' \<notin> all_procs s; no_del_event s; is_created_proc s p; valid s\<rbrakk>
 \<Longrightarrow> current_proc_fds (enrich_proc s p p') tp = (if (tp = p') then proc_file_fds s p else current_proc_fds s tp)"
 apply (simp add:enrich_proc_cur_fds1' enrich_proc_dup_ffds_eq_fds split:if_splits)
 "\<lbrakk>enrich_not_alive s (E_proc p') obj; is_created_proc s p; p' \<notin> all_procs s; no_del_event s; valid s\<rbrakk>
 \<Longrightarrow> enrich_not_alive (enrich_proc s p p') (E_proc p') obj"
 apply (case_tac obj)
 apply (simp_all add:enrich_proc_cur_procs enrich_proc_cur_files enrich_proc_cur_inums
 enrich_proc_cur_msgqs enrich_proc_cur_msgs enrich_proc_cur_fds)
-done
+defer
+apply (rule impI, rule notI)
+sorry
 lemma enrich_proc_filefd:
 "\<lbrakk>file_of_proc_fd s tp fd = Some f; is_created_proc s p; p' \<notin> all_procs s; no_del_event s; valid s\<rbrakk>
 \<Longrightarrow> file_of_proc_fd (enrich_proc s p p') tp fd = Some f"
 apply (induct s arbitrary:tp, simp add:is_created_proc_def)
 apply (frule vt_grant_os, frule vd_cons)
 apply (frule not_all_procs_prop3)
 apply (case_tac a)
 apply (auto simp:is_created_proc_simps dest:proc_fd_in_procs split:if_splits)
-done
+sorry
 lemma enrich_proc_flagfd:
 "\<lbrakk>flags_of_proc_fd s tp fd = Some f; is_created_proc s p; p' \<notin> all_procs s; no_del_event s; valid s\<rbrakk>
 \<Longrightarrow> flags_of_proc_fd (enrich_proc s p p') tp fd = Some f"
 apply (induct s arbitrary:tp, simp add:is_created_proc_def)
 apply (frule vt_grant_os, frule vd_cons)
 apply (frule not_all_procs_prop3)
 apply (case_tac a)
 apply (auto simp:is_created_proc_simps dest:proc_fd_in_procs current_fflag_has_ffd split:if_splits option.splits)
-done
+sorry
 lemma enrich_proc_hungs:
 "\<lbrakk>valid s; no_del_event s\<rbrakk> \<Longrightarrow> files_hung_by_del (enrich_proc s p p') = files_hung_by_del s"
 apply (induct s, simp)
 apply (frule vt_grant_os, frule vd_cons)
 apply (case_tac a, auto simp:files_hung_by_del.simps)
-done
+sorry
 lemma enrich_proc_is_file:
 "\<lbrakk>valid s; no_del_event s; p' \<notin> all_procs s\<rbrakk>
 \<Longrightarrow> is_file (enrich_proc s p p') = is_file s"
 apply (rule ext, case_tac x)

changeset 89	ded3f83f6cb9
parent 88	e832378a2ff2
child 90	003cac7b8bf5