Commits · 68542925c041e5e4979912ea7bb53783a0f1c795 · RT-PROOFS / PROSA - Formally Proven Schedulability Analysis

Apr 18, 2024
- move lemmas to avoid duplication · d83b7d99
  Sergey Bozhko authored 11 months ago
  
  d83b7d99
Jan 18, 2024

prove existence of abstract busy interval · 530a743b

Sergey Bozhko authored 1 year ago

Proofs of existence for busy intervals are usually quite long. They
also depend on specific scheduling policy and preemption model. This
leads to some unnecessary duplication. This commit introduces a proof
of existence for abstract busy interval. The idea is to instantiate
this proof for specific policies removing the duplication.

530a743b

Jul 12, 2023
- introduce restricted-supply abstract RTA · 496ebce7
  Sergey Bozhko authored 2 years ago
  
  496ebce7
Jun 12, 2023

make abstract quiet time bool · ca2aaf71

Sergey Bozhko authored 1 year ago and

Björn Brandenburg committed 1 year ago

In the lemma I'm working on now, I need a bool version of this
definition. As we discussed, we should avoid two identical versions
(Prop + bool) whenever possible

ca2aaf71

Apr 20, 2023

add hints to avoid busy-window `destruct`-ing · 8483b3be

Björn Brandenburg authored 1 year ago

Proofs should avoid destruct'ing the busy-window definitions all
over the place. This patch removes all instances of busy-window
`destruct`-ing from the `results` module.

Some old code sites in `analysis` remain. See also #97.

Future code additions should avoid adding new instances of
busy-window `destruct`-ing.

8483b3be

Apr 19, 2023
- Integrate rt_eauto into done (hence by and //) · 0fee11fb
  Pierre Roux authored 1 year ago
  
  0fee11fb
Mar 30, 2023
- cleanup: remove some stale references to ideal uniprocessor · dc57c13b
  Björn Brandenburg authored 1 year ago
  
  ...and delete some trailing whitespace while at it.
  dc57c13b
Jan 20, 2023

generalize abstract RTA · d4aab506

Sergey Bozhko authored 2 years ago

Changes:

* This commit generalises aRTA to "multi-stage" aRTA. The general idea
is explained in file [analysis/abstract/abstract_rta.v]. Short idea is
that the fixpoint equation can be extended to a sequence of fixpoint
equations. Solution to an equation can be used in later fixpoints. This
way one can support move expressive models of execution. The prior
version of aRTA (applicable to ideal uni-processors) is now an
instantiation of the new RTA theorem.

* Interference and Interfering workload are now type-classes. Note that
this changes files in directory [results], since [Variables] were
replaced with [Instance] declarations.

* IBF supports arbitrary parameters (not just relative arrival time).
IBF parametrised by the relative arrival time is not expressive enough
to support restricted-supply analysis. It was generalized to support a
larger class of parameters

* Rename [run to completion] file into [lower bound on service]. The
file was slightly generalized, now  it derives a lower bound on any
pre-defined amount of service.

* Generalize instantiations of interference and interfering workload.
Now, the definitions do not directly destruct the processor state.
Also, definitions for these functions have been made opaque.

d4aab506