Global Index

A

B

C

D

E

F

G

H

I

J

K

L

M

N

O

P

Q

R

S

T

U

V

W

X

Y

Z

_

other

(3800 entries)

Notation Index

A

B

C

D

E

F

G

H

I

J

K

L

M

N

O

P

Q

R

S

T

U

V

W

X

Y

Z

_

other

(50 entries)

Module Index

A

B

C

D

E

F

G

H

I

J

K

L

M

N

O

P

Q

R

S

T

U

V

W

X

Y

Z

_

other

(11 entries)

Variable Index

A

B

C

D

E

F

G

H

I

J

K

L

M

N

O

P

Q

R

S

T

U

V

W

X

Y

Z

_

other

(609 entries)

Library Index

A

B

C

D

E

F

G

H

I

J

K

L

M

N

O

P

Q

R

S

T

U

V

W

X

Y

Z

_

other

(142 entries)

Lemma Index

A

B

C

D

E

F

G

H

I

J

K

L

M

N

O

P

Q

R

S

T

U

V

W

X

Y

Z

_

other

(1022 entries)

Constructor Index

A

B

C

D

E

F

G

H

I

J

K

L

M

N

O

P

Q

R

S

T

U

V

W

X

Y

Z

_

other

(151 entries)

Projection Index

A

B

C

D

E

F

G

H

I

J

K

L

M

N

O

P

Q

R

S

T

U

V

W

X

Y

Z

_

other

(319 entries)

Inductive Index

A

B

C

D

E

F

G

H

I

J

K

L

M

N

O

P

Q

R

S

T

U

V

W

X

Y

Z

_

other

(57 entries)

Section Index

A

B

C

D

E

F

G

H

I

J

K

L

M

N

O

P

Q

R

S

T

U

V

W

X

Y

Z

_

other

(142 entries)

Instance Index

A

B

C

D

E

F

G

H

I

J

K

L

M

N

O

P

Q

R

S

T

U

V

W

X

Y

Z

_

other

(157 entries)

Abbreviation Index

A

B

C

D

E

F

G

H

I

J

K

L

M

N

O

P

Q

R

S

T

U

V

W

X

Y

Z

_

other

(88 entries)

Definition Index

A

B

C

D

E

F

G

H

I

J

K

L

M

N

O

P

Q

R

S

T

U

V

W

X

Y

Z

_

other

(1008 entries)

Record Index

A

B

C

D

E

F

G

H

I

J

K

L

M

N

O

P

Q

R

S

T

U

V

W

X

Y

Z

_

other

(44 entries)

---

Global Index

A

activation_instrs [definition, in cap_machine.examples.macros_new]
activation_code [definition, in cap_machine.examples.macros_new]
activation_instrs [definition, in cap_machine.examples.macros]
actN [definition, in cap_machine.examples.interval.interval_client_closure]
actN [definition, in cap_machine.examples.interval_arch.interval_client_closure_arch]
actN [definition, in cap_machine.examples.adder]
act_size [projection, in cap_machine.examples.adder_adequacy]
act_end [projection, in cap_machine.examples.adder_adequacy]
act_start [projection, in cap_machine.examples.adder_adequacy]
Add [constructor, in cap_machine.machine_base]
adder [section, in cap_machine.examples.adder]
adder [library]
adder_adequacy [lemma, in cap_machine.examples.adder_adequacy]
adder_adequacy' [lemma, in cap_machine.examples.adder_adequacy]
adder_full_spec [lemma, in cap_machine.examples.adder]
adder_f_spec [lemma, in cap_machine.examples.adder]
adder_g_spec [lemma, in cap_machine.examples.adder]
adder_f [definition, in cap_machine.examples.adder]
adder_g [definition, in cap_machine.examples.adder]
adder_f_instrs_length [definition, in cap_machine.examples.adder]
adder_f_instrs [definition, in cap_machine.examples.adder]
adder_g_instrs_length [definition, in cap_machine.examples.adder]
adder_g_instrs [definition, in cap_machine.examples.adder]
adder_adequacy [library]
adder.f_end [variable, in cap_machine.examples.adder]
adder.f_start [variable, in cap_machine.examples.adder]
adder.memg [variable, in cap_machine.examples.adder]
adder.MP [variable, in cap_machine.examples.adder]
adder.N [variable, in cap_machine.examples.adder]
adder.nainv [variable, in cap_machine.examples.adder]
adder.regg [variable, in cap_machine.examples.adder]
adder.sealsg [variable, in cap_machine.examples.adder]
adder.Σ [variable, in cap_machine.examples.adder]
Addr [abbreviation, in cap_machine.addr_reg]
address_neq [lemma, in cap_machine.rules.rules_base]
AddrRegionRange [definition, in cap_machine.proofmode.disjoint_regions_tactics]
AddrRegionRange_iff_incl_region_addrs [lemma, in cap_machine.proofmode.disjoint_regions_tactics]
AddrRegionRange_region_addrs [lemma, in cap_machine.proofmode.disjoint_regions_tactics]
AddrRegionRange_singleton [lemma, in cap_machine.proofmode.disjoint_regions_tactics]
AddrRegionsRange [definition, in cap_machine.proofmode.disjoint_regions_tactics]
AddrRegionsRange_cons [lemma, in cap_machine.proofmode.disjoint_regions_tactics]
AddrRegionsRange_single [lemma, in cap_machine.proofmode.disjoint_regions_tactics]
addrwordLO [definition, in cap_machine.examples.keylist]
addr_add_assoc [lemma, in cap_machine.proofmode.solve_addr]
addr_abs_next [lemma, in cap_machine.proofmode.solve_addr]
addr_next_lt_le [lemma, in cap_machine.proofmode.solve_addr]
addr_next_lt_gt_contr [lemma, in cap_machine.proofmode.solve_addr]
addr_next_lt [lemma, in cap_machine.proofmode.solve_addr]
addr_next_le [lemma, in cap_machine.proofmode.solve_addr]
addr_add_0 [lemma, in cap_machine.proofmode.solve_addr]
addr_disjoint_list_cons [lemma, in cap_machine.proofmode.disjoint_regions_tactics]
addr_disjoint_list_empty [lemma, in cap_machine.proofmode.disjoint_regions_tactics]
addr_range_disj_range_union [lemma, in cap_machine.proofmode.disjoint_regions_tactics]
addr_range_disj_union_empty [lemma, in cap_machine.proofmode.disjoint_regions_tactics]
addr_range_union_incl_range [lemma, in cap_machine.proofmode.disjoint_regions_tactics]
addr_of_arg_mono [lemma, in cap_machine.cap_lang]
addr_of_argument_Some_inv' [lemma, in cap_machine.cap_lang]
addr_of_argument_Some_inv [lemma, in cap_machine.cap_lang]
addr_of_argument [definition, in cap_machine.cap_lang]
addr_ne_reg_ne [lemma, in cap_machine.rules.rules_base]
addr_dupl_false [lemma, in cap_machine.rules.rules_base]
addr_incr_zero_nat [lemma, in cap_machine.proofmode.proofmode]
addr_incr_zero [lemma, in cap_machine.proofmode.proofmode]
addr_inhabited [instance, in cap_machine.machine_base]
addr_incr_eq [abbreviation, in cap_machine.addr_reg]
addr_reg_sample [library]
addr_reg [library]
AddSubLt [library]
AddSubLt_spec_determ [lemma, in cap_machine.ftlr_binary.AddSubLt_binary]
AddSubLt_spec_sind [definition, in cap_machine.rules.rules_AddSubLt]
AddSubLt_spec_ind [definition, in cap_machine.rules.rules_AddSubLt]
AddSubLt_spec_failure [constructor, in cap_machine.rules.rules_AddSubLt]
AddSubLt_spec_success [constructor, in cap_machine.rules.rules_AddSubLt]
AddSubLt_spec [inductive, in cap_machine.rules.rules_AddSubLt]
AddSubLt_failure_sind [definition, in cap_machine.rules.rules_AddSubLt]
AddSubLt_failure_rec [definition, in cap_machine.rules.rules_AddSubLt]
AddSubLt_failure_ind [definition, in cap_machine.rules.rules_AddSubLt]
AddSubLt_failure_rect [definition, in cap_machine.rules.rules_AddSubLt]
AddSubLt_fail_incrPC [constructor, in cap_machine.rules.rules_AddSubLt]
AddSubLt_fail_nonconst2 [constructor, in cap_machine.rules.rules_AddSubLt]
AddSubLt_fail_nonconst1 [constructor, in cap_machine.rules.rules_AddSubLt]
AddSubLt_failure [inductive, in cap_machine.rules.rules_AddSubLt]
AddSubLt_binary [library]
add_r_r [definition, in cap_machine.examples.addr_reg_sample]
add_r_z [definition, in cap_machine.examples.addr_reg_sample]
add_sub_lt_case [lemma, in cap_machine.ftlr_binary.AddSubLt_binary]
add_sub_lt_case [lemma, in cap_machine.ftlr.AddSubLt]
Adequacy [section, in cap_machine.examples.adder_adequacy]
Adequacy [section, in cap_machine.examples.counter.counter_adequacy]
Adequacy [section, in cap_machine.examples.counter_binary.counter_binary_adequacy]
adequacy [lemma, in cap_machine.examples.buffer]
adequacy [lemma, in cap_machine.examples.minimal_counter]
Adequacy.cfgg [variable, in cap_machine.examples.counter_binary.counter_binary_adequacy]
Adequacy.inv_preg [variable, in cap_machine.examples.adder_adequacy]
Adequacy.inv_preg [variable, in cap_machine.examples.counter.counter_adequacy]
Adequacy.inv_preg [variable, in cap_machine.examples.counter_binary.counter_binary_adequacy]
Adequacy.mem_preg [variable, in cap_machine.examples.adder_adequacy]
Adequacy.mem_preg [variable, in cap_machine.examples.counter.counter_adequacy]
Adequacy.mem_preg [variable, in cap_machine.examples.counter_binary.counter_binary_adequacy]
Adequacy.MP [variable, in cap_machine.examples.adder_adequacy]
Adequacy.MP [variable, in cap_machine.examples.counter.counter_adequacy]
Adequacy.MP [variable, in cap_machine.examples.counter_binary.counter_binary_adequacy]
Adequacy.na_invg [variable, in cap_machine.examples.adder_adequacy]
Adequacy.na_invg [variable, in cap_machine.examples.counter.counter_adequacy]
Adequacy.na_invg [variable, in cap_machine.examples.counter_binary.counter_binary_adequacy]
Adequacy.reg_preg [variable, in cap_machine.examples.adder_adequacy]
Adequacy.reg_preg [variable, in cap_machine.examples.counter.counter_adequacy]
Adequacy.reg_preg [variable, in cap_machine.examples.counter_binary.counter_binary_adequacy]
Adequacy.seal_store_preg [variable, in cap_machine.examples.adder_adequacy]
Adequacy.seal_store_preg [variable, in cap_machine.examples.counter.counter_adequacy]
Adequacy.seal_store_preg [variable, in cap_machine.examples.counter_binary.counter_binary_adequacy]
Adequacy.Σ [variable, in cap_machine.examples.adder_adequacy]
Adequacy.Σ [variable, in cap_machine.examples.counter.counter_adequacy]
Adequacy.Σ [variable, in cap_machine.examples.counter_binary.counter_binary_adequacy]
adv_table [definition, in cap_machine.examples.lse_adequacy]
adv_prog [definition, in cap_machine.examples.lse_adequacy]
adv_link_table_size [projection, in cap_machine.examples.lse_adequacy]
adv_link_table_end [projection, in cap_machine.examples.lse_adequacy]
adv_link_table_start [projection, in cap_machine.examples.lse_adequacy]
adv_region_start_offset [projection, in cap_machine.examples.lse_adequacy]
adv_size [projection, in cap_machine.examples.lse_adequacy]
adv_instrs [projection, in cap_machine.examples.lse_adequacy]
adv_end [projection, in cap_machine.examples.lse_adequacy]
adv_start [projection, in cap_machine.examples.lse_adequacy]
adv_region_start [projection, in cap_machine.examples.lse_adequacy]
adv_code [definition, in cap_machine.exercises.subseg_buffer]
adv_table [definition, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
adv_prog [definition, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
adv_link_table_size [projection, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
adv_link_table_end [projection, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
adv_link_table_start [projection, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
adv_region_start_offset [projection, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
adv_size [projection, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
adv_instrs [projection, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
adv_end [projection, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
adv_start [projection, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
adv_region_start [projection, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
adv_end [projection, in cap_machine.examples.adder_adequacy]
adv_start [projection, in cap_machine.examples.adder_adequacy]
adv_end [projection, in cap_machine.examples.counter.counter_adequacy]
adv_start [projection, in cap_machine.examples.counter.counter_adequacy]
adv_table [definition, in cap_machine.exercises.subseg_buffer_call]
adv_prog [definition, in cap_machine.exercises.subseg_buffer_call]
adv_link_table_size [projection, in cap_machine.exercises.subseg_buffer_call]
adv_link_table_end [projection, in cap_machine.exercises.subseg_buffer_call]
adv_link_table_start [projection, in cap_machine.exercises.subseg_buffer_call]
adv_region_start_offset [projection, in cap_machine.exercises.subseg_buffer_call]
adv_size [projection, in cap_machine.exercises.subseg_buffer_call]
adv_instrs [projection, in cap_machine.exercises.subseg_buffer_call]
adv_end [projection, in cap_machine.exercises.subseg_buffer_call]
adv_start [projection, in cap_machine.exercises.subseg_buffer_call]
adv_region_start [projection, in cap_machine.exercises.subseg_buffer_call]
adv_table [definition, in cap_machine.examples.interval.interval_client_adequacy]
adv_prog [definition, in cap_machine.examples.interval.interval_client_adequacy]
adv_link_table_size [projection, in cap_machine.examples.interval.interval_client_adequacy]
adv_link_table_end [projection, in cap_machine.examples.interval.interval_client_adequacy]
adv_link_table_start [projection, in cap_machine.examples.interval.interval_client_adequacy]
adv_region_start_offset [projection, in cap_machine.examples.interval.interval_client_adequacy]
adv_size [projection, in cap_machine.examples.interval.interval_client_adequacy]
adv_instrs [projection, in cap_machine.examples.interval.interval_client_adequacy]
adv_end [projection, in cap_machine.examples.interval.interval_client_adequacy]
adv_start [projection, in cap_machine.examples.interval.interval_client_adequacy]
adv_region_start [projection, in cap_machine.examples.interval.interval_client_adequacy]
adv_condition [definition, in cap_machine.examples.template_adequacy]
allocate_region_inv [lemma, in cap_machine.examples.malloc_binary]
alloc_low_from_high [lemma, in cap_machine.examples.ocpl_lowval_like]
allow_store_mem [definition, in cap_machine.ftlr_binary.Store_binary]
allow_store_res [definition, in cap_machine.ftlr_binary.Store_binary]
allow_load_mem_later [lemma, in cap_machine.ftlr.Load]
allow_load_mem [definition, in cap_machine.ftlr.Load]
allow_load_res [definition, in cap_machine.ftlr.Load]
allow_store_mem [definition, in cap_machine.ftlr.Store]
allow_store_res [definition, in cap_machine.ftlr.Store]
allow_store_implies_storev [lemma, in cap_machine.rules.rules_Store]
allow_store_map_or_true [definition, in cap_machine.rules.rules_Store]
allow_load_mem_later [lemma, in cap_machine.ftlr_binary.Load_binary]
allow_load_mem [definition, in cap_machine.ftlr_binary.Load_binary]
allow_load_res [definition, in cap_machine.ftlr_binary.Load_binary]
allow_load_implies_loadv [lemma, in cap_machine.rules.rules_Load]
allow_load_map_or_true [definition, in cap_machine.rules.rules_Load]
all_registers_subseteq [lemma, in cap_machine.addr_reg]
all_registers_union_r [lemma, in cap_machine.addr_reg]
all_registers_union_l [lemma, in cap_machine.addr_reg]
all_registers_correct_sub [lemma, in cap_machine.addr_reg]
all_registers_s_correct [lemma, in cap_machine.addr_reg]
all_registers_correct [lemma, in cap_machine.addr_reg]
all_registers_NoDup [lemma, in cap_machine.addr_reg]
all_registers_s [definition, in cap_machine.addr_reg]
all_registers [definition, in cap_machine.addr_reg]
App [definition, in cap_machine.proofmode.proofmode]
appendb [definition, in cap_machine.examples.keylist]
appendb_spec [lemma, in cap_machine.examples.keylist]
appendb_instr [definition, in cap_machine.examples.keylist]
App_nil_default [lemma, in cap_machine.proofmode.proofmode]
App_nil_l [lemma, in cap_machine.proofmode.proofmode]
App_nil_r [lemma, in cap_machine.proofmode.proofmode]
arch_sealing [library]
Assert [section, in cap_machine.examples.assert]
assert [definition, in cap_machine.examples.macros]
assert [library]
assertN [definition, in cap_machine.examples.counter.counter_adequacy]
assertN [definition, in cap_machine.examples.interval.interval_client_closure]
assertN [definition, in cap_machine.examples.interval_arch.interval_client_closure_arch]
assert_success [lemma, in cap_machine.examples.macros_new]
assert_instrs [definition, in cap_machine.examples.macros_new]
assert_success_spec [lemma, in cap_machine.examples.assert]
assert_subroutine_spec [lemma, in cap_machine.examples.assert]
assert_inv [definition, in cap_machine.examples.assert]
assert_subroutine_instrs [definition, in cap_machine.examples.assert]
assert_library_content [definition, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
assert_flag_size [projection, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
assert_cap_size [projection, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
assert_code_size [projection, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
assert_end [projection, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
assert_flag [projection, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
assert_cap [projection, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
assert_start [projection, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
assert_flag_size [projection, in cap_machine.examples.counter.counter_adequacy]
assert_cap_size [projection, in cap_machine.examples.counter.counter_adequacy]
assert_code_size [projection, in cap_machine.examples.counter.counter_adequacy]
assert_end [projection, in cap_machine.examples.counter.counter_adequacy]
assert_flag [projection, in cap_machine.examples.counter.counter_adequacy]
assert_cap [projection, in cap_machine.examples.counter.counter_adequacy]
assert_start [projection, in cap_machine.examples.counter.counter_adequacy]
assert_success [lemma, in cap_machine.examples.macros]
assert_instrs [definition, in cap_machine.examples.macros]
assert_call_inv [definition, in cap_machine.exercises.subseg_buffer_call]
assert_library_content [definition, in cap_machine.examples.interval.interval_client_adequacy]
assert_flag_size [projection, in cap_machine.examples.interval.interval_client_adequacy]
assert_cap_size [projection, in cap_machine.examples.interval.interval_client_adequacy]
assert_code_size [projection, in cap_machine.examples.interval.interval_client_adequacy]
assert_end [projection, in cap_machine.examples.interval.interval_client_adequacy]
assert_flag [projection, in cap_machine.examples.interval.interval_client_adequacy]
assert_cap [projection, in cap_machine.examples.interval.interval_client_adequacy]
assert_start [projection, in cap_machine.examples.interval.interval_client_adequacy]
Assert.memg [variable, in cap_machine.examples.assert]
Assert.MP [variable, in cap_machine.examples.assert]
Assert.nainv [variable, in cap_machine.examples.assert]
Assert.regg [variable, in cap_machine.examples.assert]
Assert.Σ [variable, in cap_machine.examples.assert]
AsWeakFinZIncr [record, in machine_utils.classes]
AsWeakFinZIncr [inductive, in machine_utils.classes]
AsWeakFinZIncr_no_incr [instance, in machine_utils.class_instances]
AsWeakFinZIncr_incr [instance, in machine_utils.class_instances]
as_weak_addr_incr [definition, in cap_machine.proofmode.proofmode]
auth_ucmra_mixin [lemma, in cap_machine.monotone]

B

base_program_CPS.nainv [variable, in cap_machine.exercises.subseg_buffer]
base_program_CPS.MP [variable, in cap_machine.exercises.subseg_buffer]
base_program_CPS.sealsg [variable, in cap_machine.exercises.subseg_buffer]
base_program_CPS.regg [variable, in cap_machine.exercises.subseg_buffer]
base_program_CPS.memg [variable, in cap_machine.exercises.subseg_buffer]
base_program_CPS.Σ [variable, in cap_machine.exercises.subseg_buffer]
base_program_CPS [section, in cap_machine.exercises.subseg_buffer]
base_program.MP [variable, in cap_machine.exercises.subseg_buffer]
base_program.regg [variable, in cap_machine.exercises.subseg_buffer]
base_program.memg [variable, in cap_machine.exercises.subseg_buffer]
base_program.Σ [variable, in cap_machine.exercises.subseg_buffer]
base_program [section, in cap_machine.exercises.subseg_buffer]
base_program.MP [variable, in cap_machine.exercises.cerise_tutorial]
base_program.regg [variable, in cap_machine.exercises.cerise_tutorial]
base_program.memg [variable, in cap_machine.exercises.cerise_tutorial]
base_program.Σ [variable, in cap_machine.exercises.cerise_tutorial]
base_program [section, in cap_machine.exercises.cerise_tutorial]
base_program.MP [variable, in cap_machine.exercises.cerise_tutorial_solutions]
base_program.regg [variable, in cap_machine.exercises.cerise_tutorial_solutions]
base_program.memg [variable, in cap_machine.exercises.cerise_tutorial_solutions]
base_program.Σ [variable, in cap_machine.exercises.cerise_tutorial_solutions]
base_program [section, in cap_machine.exercises.cerise_tutorial_solutions]
base_reducible_from_step [lemma, in cap_machine.cap_lang]
base_ctx_step_val [lemma, in cap_machine.cap_lang]
basic [module, in cap_machine.examples.template_adequacy]
basic.Adequacy [section, in cap_machine.examples.template_adequacy]
basic.Adequacy.I [variable, in cap_machine.examples.template_adequacy]
basic.Adequacy.inv_preg [variable, in cap_machine.examples.template_adequacy]
basic.Adequacy.mem_preg [variable, in cap_machine.examples.template_adequacy]
basic.Adequacy.MP [variable, in cap_machine.examples.template_adequacy]
basic.Adequacy.na_invg [variable, in cap_machine.examples.template_adequacy]
basic.Adequacy.P [variable, in cap_machine.examples.template_adequacy]
basic.Adequacy.reg_preg [variable, in cap_machine.examples.template_adequacy]
basic.Adequacy.seal_store_preg [variable, in cap_machine.examples.template_adequacy]
basic.Adequacy.Σ [variable, in cap_machine.examples.template_adequacy]
basic.initial_registers_full_map [lemma, in cap_machine.examples.template_adequacy]
basic.invN [definition, in cap_machine.examples.template_adequacy]
basic.is_initial_memory [definition, in cap_machine.examples.template_adequacy]
basic.is_initial_registers [definition, in cap_machine.examples.template_adequacy]
basic.template_adequacy [lemma, in cap_machine.examples.template_adequacy]
basic.template_adequacy' [lemma, in cap_machine.examples.template_adequacy]
Below [definition, in cap_machine.monotone]
Below_principal [lemma, in cap_machine.monotone]
Below_app [lemma, in cap_machine.monotone]
big_sepM_to_create_gmap_default [lemma, in cap_machine.iris_extra]
big_sepL2_to_big_sepL_replicate [lemma, in cap_machine.iris_extra]
big_sepM_exists [lemma, in cap_machine.iris_extra]
big_sepL2_bupd [lemma, in cap_machine.iris_extra]
big_sepL2_to_big_sepM [lemma, in cap_machine.iris_extra]
big_sepL_merge [lemma, in cap_machine.iris_extra]
big_sepL_delete' [lemma, in cap_machine.iris_extra]
big_sepL2_split_at [lemma, in cap_machine.iris_extra]
big_sepL2_app' [lemma, in cap_machine.iris_extra]
big_sepL2_to_big_sepL_l [lemma, in cap_machine.iris_extra]
big_sepL2_to_big_sepL_r [lemma, in cap_machine.iris_extra]
big_sepL2_close_l [lemma, in cap_machine.iris_extra]
big_sepL2_extract' [lemma, in cap_machine.iris_extra]
big_sepL2_extract_l' [lemma, in cap_machine.iris_extra]
big_sepL2_extract_l [lemma, in cap_machine.iris_extra]
big_sepM_to_big_sepL2 [lemma, in cap_machine.iris_extra]
big_sepM_to_big_sepL [lemma, in cap_machine.iris_extra]
bin_log_related [definition, in cap_machine.fundamental_binary]
bin_log_def.MP [variable, in cap_machine.fundamental_binary]
bin_log_def.cfgsg [variable, in cap_machine.fundamental_binary]
bin_log_def.nainv [variable, in cap_machine.fundamental_binary]
bin_log_def.regg [variable, in cap_machine.fundamental_binary]
bin_log_def.memg [variable, in cap_machine.fundamental_binary]
bin_log_def.Σ [variable, in cap_machine.fundamental_binary]
bin_log_def [section, in cap_machine.fundamental_binary]
boxed [definition, in cap_machine.proofmode.map_simpl]
boxed_eq [lemma, in cap_machine.proofmode.map_simpl]
buffer [section, in cap_machine.examples.buffer]
buffer [library]
buffer_inv [definition, in cap_machine.examples.buffer]
buffer_full_run_spec [lemma, in cap_machine.examples.buffer]
buffer_spec [lemma, in cap_machine.examples.buffer]
buffer_data [definition, in cap_machine.examples.buffer]
buffer_code [definition, in cap_machine.examples.buffer]
buffer.memg [variable, in cap_machine.examples.buffer]
buffer.MP [variable, in cap_machine.examples.buffer]
buffer.nainv [variable, in cap_machine.examples.buffer]
buffer.regg [variable, in cap_machine.examples.buffer]
buffer.seals [variable, in cap_machine.examples.buffer]
buffer.Σ [variable, in cap_machine.examples.buffer]
ByReflexivity [definition, in cap_machine.proofmode.disjoint_regions_tactics]

C

call [definition, in cap_machine.examples.call]
call [section, in cap_machine.examples.call]
call [library]
callback [section, in cap_machine.examples.callback]
callback [library]
callback.memg [variable, in cap_machine.examples.callback]
callback.MP [variable, in cap_machine.examples.callback]
callback.nainv [variable, in cap_machine.examples.callback]
callback.regg [variable, in cap_machine.examples.callback]
callback.sealsg [variable, in cap_machine.examples.callback]
callback.Σ [variable, in cap_machine.examples.callback]
call_table [definition, in cap_machine.exercises.subseg_buffer_call]
call_prog [definition, in cap_machine.exercises.subseg_buffer_call]
call_localsN [definition, in cap_machine.exercises.subseg_buffer_call]
call_actN [definition, in cap_machine.exercises.subseg_buffer_call]
call_codeN [definition, in cap_machine.exercises.subseg_buffer_call]
call_versionN [definition, in cap_machine.exercises.subseg_buffer_call]
call_spec [lemma, in cap_machine.examples.call]
call_instrs [definition, in cap_machine.examples.call]
call.memg [variable, in cap_machine.examples.call]
call.MP [variable, in cap_machine.examples.call]
call.nainv [variable, in cap_machine.examples.call]
call.regg [variable, in cap_machine.examples.call]
call.Σ [variable, in cap_machine.examples.call]
can_alloc_pred [definition, in cap_machine.seal_store]
can_address_only [definition, in cap_machine.examples.counter_binary.counter_binary_adequacy]
cap_lang_spec_rules [section, in cap_machine.rules_binary.rules_binary_Subseg]
cap_mem_inv [definition, in cap_machine.exercises.subseg_buffer_closure]
cap_memN [definition, in cap_machine.exercises.subseg_buffer_closure]
cap_lang_spec_rules [section, in cap_machine.rules_binary.rules_binary_AddSubLt]
cap_lang_spec_rules [section, in cap_machine.rules_binary.rules_binary_Load]
cap_lang_rules [section, in cap_machine.rules.rules_Jnz]
cap_lang_rules [section, in cap_machine.rules.rules_Subseg]
cap_lang_rules.HR [variable, in cap_machine.rules.rules_Lea]
cap_lang_rules.HM [variable, in cap_machine.rules.rules_Lea]
cap_lang_rules [section, in cap_machine.rules.rules_Lea]
cap_lang_spec_rules [section, in cap_machine.rules_binary.rules_binary_Store]
cap_lang_rules [section, in cap_machine.rules.rules_Seal]
cap_lang_rules [section, in cap_machine.rules.rules_UnSeal]
cap_lang_spec_rules [section, in cap_machine.rules_binary.rules_binary_base]
cap_lang_spec_rules [section, in cap_machine.rules_binary.rules_binary_base]
cap_lang_spec_resources [section, in cap_machine.rules_binary.rules_binary_base]
cap_lang_spec_rules [section, in cap_machine.rules_binary.rules_binary_Lea]
cap_lang_rules [section, in cap_machine.rules.rules_Mov]
cap_lang_spec_rules [section, in cap_machine.rules_binary.rules_binary_Restrict]
cap_mem_inv [definition, in cap_machine.exercises.restrict_buffer]
cap_memN [definition, in cap_machine.exercises.restrict_buffer]
cap_lang_spec_rules [section, in cap_machine.rules_binary.rules_binary_Get]
cap_lang_spec_rules [section, in cap_machine.rules_binary.rules_binary_Jmp]
cap_lang_spec_rules [section, in cap_machine.rules_binary.rules_binary_Jnz]
cap_lang_spec_rules [section, in cap_machine.rules_binary.rules_binary_Mov]
cap_lang [definition, in cap_machine.cap_lang]
cap_ectx_lang [definition, in cap_machine.cap_lang]
cap_ectxi_lang [definition, in cap_machine.cap_lang]
cap_lang_mixin [lemma, in cap_machine.cap_lang]
cap_lang_determ [lemma, in cap_machine.cap_lang]
cap_lang_rules [section, in cap_machine.rules.rules_Store]
cap_lang_rules [section, in cap_machine.rules.rules_base]
cap_lang_rules [section, in cap_machine.rules.rules_Jmp]
cap_lang_rules [section, in cap_machine.rules.rules_Load]
cap_lang_rules [section, in cap_machine.rules.rules_AddSubLt]
cap_lang_rules [section, in cap_machine.rules.rules_Restrict]
cap_size [definition, in cap_machine.machine_base]
cap_lang_rules [section, in cap_machine.rules.rules_Get]
cap_lang [library]
CbvTC [record, in machine_utils.classes]
CbvTC [inductive, in machine_utils.classes]
ccounter_inG [projection, in cap_machine.examples.keylist]
cerise_modularity [library]
cerise_modularity_solutions [library]
cerise_tutorial_solutions [library]
cerise_tutorial [library]
cfgSG [record, in cap_machine.rules_binary.rules_binary_base]
cfgUR [abbreviation, in cap_machine.rules_binary.rules_binary_base]
cfg_name [projection, in cap_machine.rules_binary.rules_binary_base]
cfg_invG [projection, in cap_machine.rules_binary.rules_binary_base]
checkiN [definition, in cap_machine.examples.interval.interval_client_closure]
checkiN [definition, in cap_machine.examples.interval_arch.interval_client_closure_arch]
check_interval_spec [lemma, in cap_machine.examples.interval.interval_client]
check_interval [definition, in cap_machine.examples.interval.interval_client]
check_interval_spec [lemma, in cap_machine.examples.interval_arch.interval_client_arch]
check_interval [definition, in cap_machine.examples.interval_arch.interval_client_arch]
check_addr_eq [definition, in cap_machine.proofmode.proofmode]
classes [library]
classes [library]
class_instances [library]
class_instances [library]
clientN [definition, in cap_machine.examples.interval.interval_client_closure]
clientN [definition, in cap_machine.examples.interval_arch.interval_client_closure_arch]
closureN [definition, in cap_machine.examples.adder]
closure_prog_safe_to_share [lemma, in cap_machine.exercises.subseg_buffer_closure]
closure_full_run_spec [lemma, in cap_machine.exercises.subseg_buffer_closure]
closure_spec [lemma, in cap_machine.exercises.subseg_buffer_closure]
closure_code [definition, in cap_machine.exercises.subseg_buffer_closure]
closure_program.nainv [variable, in cap_machine.exercises.subseg_buffer_closure]
closure_program.MP [variable, in cap_machine.exercises.subseg_buffer_closure]
closure_program.sealsg [variable, in cap_machine.exercises.subseg_buffer_closure]
closure_program.regg [variable, in cap_machine.exercises.subseg_buffer_closure]
closure_program.memg [variable, in cap_machine.exercises.subseg_buffer_closure]
closure_program.Σ [variable, in cap_machine.exercises.subseg_buffer_closure]
closure_program [section, in cap_machine.exercises.subseg_buffer_closure]
closure_activation_spec [lemma, in cap_machine.examples.macros_new]
closure_activation_spec_step [lemma, in cap_machine.examples.macros_binary]
closure_ro_safe_to_share [lemma, in cap_machine.exercises.restrict_buffer]
closure_ro_spec_full [lemma, in cap_machine.exercises.restrict_buffer]
closure_ro_spec [lemma, in cap_machine.exercises.restrict_buffer]
closure_ro_code [definition, in cap_machine.exercises.restrict_buffer]
closure_roN [definition, in cap_machine.exercises.restrict_buffer]
closure_activation_spec [lemma, in cap_machine.examples.macros]
cls_inv [definition, in cap_machine.examples.counter_binary.counter_binary_preamble_def]
codefrag [definition, in cap_machine.proofmode.region]
codefrag [section, in cap_machine.proofmode.region]
codefrag [section, in cap_machine.proofmode.proofmode]
codefrag_contiguous_region [lemma, in cap_machine.proofmode.region]
codefrag_block_acc [lemma, in cap_machine.proofmode.proofmode]
codefrag_block0_acc [lemma, in cap_machine.proofmode.proofmode]
codefrag_subblock.MP [variable, in cap_machine.proofmode.proofmode]
codefrag_subblock.regg [variable, in cap_machine.proofmode.proofmode]
codefrag_subblock.memg [variable, in cap_machine.proofmode.proofmode]
codefrag_subblock.Σ [variable, in cap_machine.proofmode.proofmode]
codefrag_subblock [section, in cap_machine.proofmode.proofmode]
codefrag_lookup_acc [lemma, in cap_machine.proofmode.proofmode]
codefrag.memg [variable, in cap_machine.proofmode.region]
codefrag.memg [variable, in cap_machine.proofmode.proofmode]
codefrag.MP [variable, in cap_machine.proofmode.region]
codefrag.MP [variable, in cap_machine.proofmode.proofmode]
codefrag.regg [variable, in cap_machine.proofmode.region]
codefrag.regg [variable, in cap_machine.proofmode.proofmode]
codefrag.Σ [variable, in cap_machine.proofmode.region]
codefrag.Σ [variable, in cap_machine.proofmode.proofmode]
codeN [definition, in cap_machine.exercises.subseg_buffer_closure]
codeN [definition, in cap_machine.exercises.subseg_buffer]
codeN [definition, in cap_machine.examples.counter_binary.counter_binary_adequacy]
code_closure_inv [definition, in cap_machine.exercises.subseg_buffer_closure]
code_inv [definition, in cap_machine.exercises.subseg_buffer]
code_closure_ro_inv [definition, in cap_machine.exercises.restrict_buffer]
code_closure_roN [definition, in cap_machine.exercises.restrict_buffer]
code_all_ints [definition, in cap_machine.examples.counter_binary.counter_binary_adequacy]
code_off [definition, in cap_machine.examples.minimal_counter]
component [inductive, in cap_machine.linking]
component_sind [definition, in cap_machine.linking]
component_rec [definition, in cap_machine.linking]
component_ind [definition, in cap_machine.linking]
component_rect [definition, in cap_machine.linking]
compute_mask_id [lemma, in cap_machine.logrel]
compute_mask_elem_of [lemma, in cap_machine.logrel]
compute_mask_subseteq [lemma, in cap_machine.logrel]
compute_mask_mono [lemma, in cap_machine.logrel]
compute_mask [definition, in cap_machine.logrel]
comp1 [definition, in cap_machine.examples.counter_binary.counter_binary_adequacy]
comp2 [definition, in cap_machine.examples.counter_binary.counter_binary_adequacy]
Conf [definition, in cap_machine.cap_lang]
ConfFlag [inductive, in cap_machine.cap_lang]
ConfFlag_sind [definition, in cap_machine.cap_lang]
ConfFlag_rec [definition, in cap_machine.cap_lang]
ConfFlag_ind [definition, in cap_machine.cap_lang]
ConfFlag_rect [definition, in cap_machine.cap_lang]
confidentiality_adequacy_r' [lemma, in cap_machine.examples.counter_binary.counter_binary_adequacy]
confidentiality_adequacy_l' [lemma, in cap_machine.examples.counter_binary.counter_binary_adequacy]
Contiguous [section, in cap_machine.proofmode.contiguous]
contiguous [library]
ContiguousRegion [definition, in machine_utils.finz_base]
ContiguousRegion_InCtx [lemma, in machine_utils.solve_pure]
contiguous_between_inj [lemma, in cap_machine.proofmode.contiguous]
contiguous_between_program_split [lemma, in cap_machine.proofmode.contiguous]
contiguous_between_spec [lemma, in cap_machine.proofmode.contiguous]
contiguous_between_app [lemma, in cap_machine.proofmode.contiguous]
contiguous_between_incr_addr_middle' [lemma, in cap_machine.proofmode.contiguous]
contiguous_between_incr_addr_middle [lemma, in cap_machine.proofmode.contiguous]
contiguous_between_link_last [lemma, in cap_machine.proofmode.contiguous]
contiguous_between_incr_addr [lemma, in cap_machine.proofmode.contiguous]
contiguous_between_middle_bounds' [lemma, in cap_machine.proofmode.contiguous]
contiguous_between_middle_bounds [lemma, in cap_machine.proofmode.contiguous]
contiguous_between_length_minus [lemma, in cap_machine.proofmode.contiguous]
contiguous_between_length [lemma, in cap_machine.proofmode.contiguous]
contiguous_between_region_addrs [lemma, in cap_machine.proofmode.contiguous]
contiguous_between_of_region_addrs [lemma, in cap_machine.proofmode.contiguous]
contiguous_between_of_region_addrs_aux [lemma, in cap_machine.proofmode.contiguous]
contiguous_between_middle_to_end [lemma, in cap_machine.proofmode.contiguous]
contiguous_between_last [lemma, in cap_machine.proofmode.contiguous]
contiguous_between_cons_inv_first [lemma, in cap_machine.proofmode.contiguous]
contiguous_between_cons_inv [lemma, in cap_machine.proofmode.contiguous]
contiguous_between_nil_inv [lemma, in cap_machine.proofmode.contiguous]
contiguous_between_bounds [lemma, in cap_machine.proofmode.contiguous]
contiguous_between_vacuous [lemma, in cap_machine.proofmode.contiguous]
contiguous_between_sind [definition, in cap_machine.proofmode.contiguous]
contiguous_between_ind [definition, in cap_machine.proofmode.contiguous]
contiguous_between_cons [constructor, in cap_machine.proofmode.contiguous]
contiguous_between_nil [constructor, in cap_machine.proofmode.contiguous]
contiguous_between [inductive, in cap_machine.proofmode.contiguous]
Contiguous.memg [variable, in cap_machine.proofmode.contiguous]
Contiguous.regg [variable, in cap_machine.proofmode.contiguous]
Contiguous.Σ [variable, in cap_machine.proofmode.contiguous]
correctPC_nonO [lemma, in cap_machine.machine_base]
counter [definition, in cap_machine.examples.counter.counter_preamble]
counter [section, in cap_machine.examples.counter.counter]
counter [section, in cap_machine.examples.counter_binary.counter_binary]
counter [section, in cap_machine.examples.minimal_counter]
counter [library]
counterN [definition, in cap_machine.examples.minimal_counter]
counter_preamble_spec [lemma, in cap_machine.examples.counter.counter_preamble]
counter_preamble_instrs_length [definition, in cap_machine.examples.counter.counter_preamble]
counter_preamble_move_offset [definition, in cap_machine.examples.counter.counter_preamble]
counter_preamble_move_offset_ [definition, in cap_machine.examples.counter.counter_preamble]
counter_preamble [definition, in cap_machine.examples.counter.counter_preamble]
counter_preamble_instrs [definition, in cap_machine.examples.counter.counter_preamble]
counter_instrs_length [definition, in cap_machine.examples.counter.counter_preamble]
counter_instrs [definition, in cap_machine.examples.counter.counter_preamble]
counter_example_preamble.MP [variable, in cap_machine.examples.counter.counter_preamble]
counter_example_preamble.nainv [variable, in cap_machine.examples.counter.counter_preamble]
counter_example_preamble.sealsg [variable, in cap_machine.examples.counter.counter_preamble]
counter_example_preamble.regg [variable, in cap_machine.examples.counter.counter_preamble]
counter_example_preamble.memg [variable, in cap_machine.examples.counter.counter_preamble]
counter_example_preamble.Σ [variable, in cap_machine.examples.counter.counter_preamble]
counter_example_preamble [section, in cap_machine.examples.counter.counter_preamble]
counter_inv [definition, in cap_machine.examples.counter.counter]
counter_preamble_instrs_length [definition, in cap_machine.examples.counter_binary.counter_binary_preamble_def]
counter_preamble_move_offset [definition, in cap_machine.examples.counter_binary.counter_binary_preamble_def]
counter_preamble_move_offset_ [definition, in cap_machine.examples.counter_binary.counter_binary_preamble_def]
counter_right_preamble' [definition, in cap_machine.examples.counter_binary.counter_binary_preamble_def]
counter_left_preamble' [definition, in cap_machine.examples.counter_binary.counter_binary_preamble_def]
counter_right_preamble [definition, in cap_machine.examples.counter_binary.counter_binary_preamble_def]
counter_left_preamble [definition, in cap_machine.examples.counter_binary.counter_binary_preamble_def]
counter_right_preamble_instrs [definition, in cap_machine.examples.counter_binary.counter_binary_preamble_def]
counter_left_preamble_instrs [definition, in cap_machine.examples.counter_binary.counter_binary_preamble_def]
counter_right_instrs_length [definition, in cap_machine.examples.counter_binary.counter_binary_preamble_def]
counter_left_instrs_length [definition, in cap_machine.examples.counter_binary.counter_binary_preamble_def]
counter_right' [definition, in cap_machine.examples.counter_binary.counter_binary_preamble_def]
counter_left' [definition, in cap_machine.examples.counter_binary.counter_binary_preamble_def]
counter_right [definition, in cap_machine.examples.counter_binary.counter_binary_preamble_def]
counter_left [definition, in cap_machine.examples.counter_binary.counter_binary_preamble_def]
counter_right_instrs [definition, in cap_machine.examples.counter_binary.counter_binary_preamble_def]
counter_left_instrs [definition, in cap_machine.examples.counter_binary.counter_binary_preamble_def]
counter_example_preamble.MP [variable, in cap_machine.examples.counter_binary.counter_binary_preamble_def]
counter_example_preamble.cfg [variable, in cap_machine.examples.counter_binary.counter_binary_preamble_def]
counter_example_preamble.nainv [variable, in cap_machine.examples.counter_binary.counter_binary_preamble_def]
counter_example_preamble.regg [variable, in cap_machine.examples.counter_binary.counter_binary_preamble_def]
counter_example_preamble.memg [variable, in cap_machine.examples.counter_binary.counter_binary_preamble_def]
counter_example_preamble.Σ [variable, in cap_machine.examples.counter_binary.counter_binary_preamble_def]
counter_example_preamble [section, in cap_machine.examples.counter_binary.counter_binary_preamble_def]
counter_inv [definition, in cap_machine.examples.counter_binary.counter_binary]
counter_adequacy [lemma, in cap_machine.examples.counter.counter_adequacy]
counter_adequacy' [lemma, in cap_machine.examples.counter.counter_adequacy]
counter_body_size [projection, in cap_machine.examples.counter.counter_adequacy]
counter_preamble_size [projection, in cap_machine.examples.counter.counter_adequacy]
counter_linking_ptr_size [projection, in cap_machine.examples.counter.counter_adequacy]
counter_region_end [projection, in cap_machine.examples.counter.counter_adequacy]
counter_body_start [projection, in cap_machine.examples.counter.counter_adequacy]
counter_preamble_start [projection, in cap_machine.examples.counter.counter_adequacy]
counter_region_start [projection, in cap_machine.examples.counter.counter_adequacy]
counter_ctx_equivalent [lemma, in cap_machine.examples.counter_binary.counter_binary_adequacy_theorem]
counter_adequacy_r [lemma, in cap_machine.examples.counter_binary.counter_binary_adequacy_theorem]
counter_adequacy_l [lemma, in cap_machine.examples.counter_binary.counter_binary_adequacy_theorem]
counter_body_size [projection, in cap_machine.examples.counter_binary.counter_binary_adequacy]
counter_preamble_size [projection, in cap_machine.examples.counter_binary.counter_binary_adequacy]
counter_linking_ptr_size [projection, in cap_machine.examples.counter_binary.counter_binary_adequacy]
counter_region_end [projection, in cap_machine.examples.counter_binary.counter_binary_adequacy]
counter_body_start [projection, in cap_machine.examples.counter_binary.counter_binary_adequacy]
counter_preamble_start [projection, in cap_machine.examples.counter_binary.counter_binary_adequacy]
counter_region_start [projection, in cap_machine.examples.counter_binary.counter_binary_adequacy]
counter_preamble_spec [lemma, in cap_machine.examples.counter_binary.counter_binary_preamble]
counter_example_preamble.MP [variable, in cap_machine.examples.counter_binary.counter_binary_preamble]
counter_example_preamble.cfg [variable, in cap_machine.examples.counter_binary.counter_binary_preamble]
counter_example_preamble.nainv [variable, in cap_machine.examples.counter_binary.counter_binary_preamble]
counter_example_preamble.regg [variable, in cap_machine.examples.counter_binary.counter_binary_preamble]
counter_example_preamble.memg [variable, in cap_machine.examples.counter_binary.counter_binary_preamble]
counter_example_preamble.Σ [variable, in cap_machine.examples.counter_binary.counter_binary_preamble]
counter_example_preamble [section, in cap_machine.examples.counter_binary.counter_binary_preamble]
counter_preamble_spec [lemma, in cap_machine.examples.counter_binary.counter_binary_preamble_left]
counter_example_preamble.MP [variable, in cap_machine.examples.counter_binary.counter_binary_preamble_left]
counter_example_preamble.cfg [variable, in cap_machine.examples.counter_binary.counter_binary_preamble_left]
counter_example_preamble.nainv [variable, in cap_machine.examples.counter_binary.counter_binary_preamble_left]
counter_example_preamble.regg [variable, in cap_machine.examples.counter_binary.counter_binary_preamble_left]
counter_example_preamble.memg [variable, in cap_machine.examples.counter_binary.counter_binary_preamble_left]
counter_example_preamble.Σ [variable, in cap_machine.examples.counter_binary.counter_binary_preamble_left]
counter_example_preamble [section, in cap_machine.examples.counter_binary.counter_binary_preamble_left]
counter_inv [definition, in cap_machine.examples.minimal_counter]
counter_full_run_spec [lemma, in cap_machine.examples.minimal_counter]
counter_code_spec [lemma, in cap_machine.examples.minimal_counter]
counter_init_spec [lemma, in cap_machine.examples.minimal_counter]
counter_code [definition, in cap_machine.examples.minimal_counter]
counter_init [definition, in cap_machine.examples.minimal_counter]
counter_data [definition, in cap_machine.examples.minimal_counter]
counter_code0 [definition, in cap_machine.examples.minimal_counter]
counter_init0 [definition, in cap_machine.examples.minimal_counter]
counter_binary_adequacy_theorem [library]
counter_binary_preamble_def [library]
counter_preamble [library]
counter_binary [library]
counter_binary_preamble [library]
counter_adequacy [library]
counter_binary_adequacy [library]
counter_binary_preamble_left [library]
counter.cfg [variable, in cap_machine.examples.counter_binary.counter_binary]
counter.memg [variable, in cap_machine.examples.counter.counter]
counter.memg [variable, in cap_machine.examples.counter_binary.counter_binary]
counter.memg [variable, in cap_machine.examples.minimal_counter]
counter.MP [variable, in cap_machine.examples.counter.counter]
counter.MP [variable, in cap_machine.examples.counter_binary.counter_binary]
counter.MP [variable, in cap_machine.examples.minimal_counter]
counter.nainv [variable, in cap_machine.examples.counter.counter]
counter.nainv [variable, in cap_machine.examples.counter_binary.counter_binary]
counter.nainv [variable, in cap_machine.examples.minimal_counter]
counter.regg [variable, in cap_machine.examples.counter.counter]
counter.regg [variable, in cap_machine.examples.counter_binary.counter_binary]
counter.regg [variable, in cap_machine.examples.minimal_counter]
counter.sealg [variable, in cap_machine.examples.minimal_counter]
counter.sealsg [variable, in cap_machine.examples.counter.counter]
counter.Σ [variable, in cap_machine.examples.counter.counter]
counter.Σ [variable, in cap_machine.examples.counter_binary.counter_binary]
counter.Σ [variable, in cap_machine.examples.minimal_counter]
countN [definition, in cap_machine.examples.counter.counter_preamble]
countN [definition, in cap_machine.examples.counter_binary.counter_binary_preamble]
countN [definition, in cap_machine.examples.counter_binary.counter_binary_preamble_left]
count_env [definition, in cap_machine.examples.counter.counter_preamble]
count_clsN [definition, in cap_machine.examples.counter.counter_preamble]
count_resetN [definition, in cap_machine.examples.counter.counter_preamble]
count_readN [definition, in cap_machine.examples.counter.counter_preamble]
count_incrN [definition, in cap_machine.examples.counter.counter_preamble]
count_invN [definition, in cap_machine.examples.counter.counter_preamble]
count_pre [definition, in cap_machine.examples.counter_binary.counter_binary_preamble]
count_tbl [definition, in cap_machine.examples.counter_binary.counter_binary_preamble]
count_env [definition, in cap_machine.examples.counter_binary.counter_binary_preamble]
count_clsN [definition, in cap_machine.examples.counter_binary.counter_binary_preamble]
count_readN [definition, in cap_machine.examples.counter_binary.counter_binary_preamble]
count_incrN [definition, in cap_machine.examples.counter_binary.counter_binary_preamble]
count_invN [definition, in cap_machine.examples.counter_binary.counter_binary_preamble]
count_pre [definition, in cap_machine.examples.counter_binary.counter_binary_preamble_left]
count_tbl [definition, in cap_machine.examples.counter_binary.counter_binary_preamble_left]
count_env [definition, in cap_machine.examples.counter_binary.counter_binary_preamble_left]
count_clsN [definition, in cap_machine.examples.counter_binary.counter_binary_preamble_left]
count_readN [definition, in cap_machine.examples.counter_binary.counter_binary_preamble_left]
count_incrN [definition, in cap_machine.examples.counter_binary.counter_binary_preamble_left]
count_invN [definition, in cap_machine.examples.counter_binary.counter_binary_preamble_left]
create_store_res [lemma, in cap_machine.ftlr_binary.Store_binary]
create_load_res [lemma, in cap_machine.ftlr.Load]
create_store_res [lemma, in cap_machine.ftlr.Store]
create_gmap_default_permutation [lemma, in cap_machine.stdpp_extra]
create_gmap_default_lookup_None [lemma, in cap_machine.stdpp_extra]
create_gmap_default_dom [lemma, in cap_machine.stdpp_extra]
create_gmap_default_lookup_is_Some [lemma, in cap_machine.stdpp_extra]
create_gmap_default_lookup [lemma, in cap_machine.stdpp_extra]
create_gmap_default [definition, in cap_machine.stdpp_extra]
create_load_res [lemma, in cap_machine.ftlr_binary.Load_binary]
crtcls [definition, in cap_machine.examples.macros]
crtcls_spec [lemma, in cap_machine.examples.macros_new]
crtcls_spec_alt [lemma, in cap_machine.examples.macros_new]
crtcls_instrs [definition, in cap_machine.examples.macros_new]
crtcls_spec [lemma, in cap_machine.examples.macros_binary]
crtcls_s [definition, in cap_machine.examples.macros_binary]
crtcls_spec [lemma, in cap_machine.examples.macros]
crtcls_instrs [definition, in cap_machine.examples.macros]
cst [definition, in cap_machine.machine_base]
csum_alter_l_r [lemma, in cap_machine.seal_store]

D

D [abbreviation, in cap_machine.ftlr_binary.Seal_binary]
D [abbreviation, in cap_machine.ftlr_binary.Store_binary]
D [abbreviation, in cap_machine.ftlr.Load]
D [abbreviation, in cap_machine.ftlr.UnSeal]
D [abbreviation, in cap_machine.ftlr.Store]
D [abbreviation, in cap_machine.ftlr.Restrict]
D [abbreviation, in cap_machine.ftlr.Subseg]
D [abbreviation, in cap_machine.ftlr.interp_weakening]
D [abbreviation, in cap_machine.ftlr_binary.AddSubLt_binary]
D [abbreviation, in cap_machine.ftlr.Mov]
D [abbreviation, in cap_machine.ftlr_binary.interp_weakening]
D [abbreviation, in cap_machine.ftlr_binary.Restrict_binary]
D [abbreviation, in cap_machine.ftlr_binary.Jnz_binary]
D [abbreviation, in cap_machine.ftlr_binary.Subseg_binary]
D [abbreviation, in cap_machine.ftlr_binary.UnSeal_binary]
D [abbreviation, in cap_machine.logrel_binary]
D [abbreviation, in cap_machine.ftlr_binary.ftlr_base_binary]
D [abbreviation, in cap_machine.ftlr.Jnz]
D [abbreviation, in cap_machine.ftlr_binary.Jmp_binary]
D [abbreviation, in cap_machine.ftlr.Lea]
D [abbreviation, in cap_machine.ftlr_binary.Lea_binary]
D [abbreviation, in cap_machine.ftlr.AddSubLt]
D [abbreviation, in cap_machine.ftlr_binary.Get_binary]
D [abbreviation, in cap_machine.ftlr.ftlr_base]
D [abbreviation, in cap_machine.ftlr.Seal]
D [abbreviation, in cap_machine.fundamental]
D [abbreviation, in cap_machine.ftlr.Jmp]
D [abbreviation, in cap_machine.ftlr.Get]
D [abbreviation, in cap_machine.logrel]
D [abbreviation, in cap_machine.ftlr_binary.Mov_binary]
D [abbreviation, in cap_machine.fundamental_binary]
D [abbreviation, in cap_machine.fundamental_binary]
D [abbreviation, in cap_machine.ftlr_binary.Load_binary]
data_off [definition, in cap_machine.examples.minimal_counter]
DecodeInstr [record, in cap_machine.proofmode.classes]
DecodeInstr [inductive, in cap_machine.proofmode.classes]
decodeInstr [projection, in cap_machine.machine_parameters]
decodeInstrW [definition, in cap_machine.machine_parameters]
DecodeInstr_encode [instance, in cap_machine.proofmode.class_instances]
DecodeInstr_prove [lemma, in cap_machine.proofmode.solve_pure]
decodePerm [projection, in cap_machine.machine_parameters]
decodeSealPerms [projection, in cap_machine.machine_parameters]
decodeWordType [projection, in cap_machine.machine_parameters]
decode_encode_instrW_inv [lemma, in cap_machine.machine_parameters]
decode_encode_word_type_inv [projection, in cap_machine.machine_parameters]
decode_encode_seal_perms_inv [projection, in cap_machine.machine_parameters]
decode_encode_perm_inv [projection, in cap_machine.machine_parameters]
decode_encode_instr_inv [projection, in cap_machine.machine_parameters]
decr_instrs_length [definition, in cap_machine.examples.counter_binary.counter_binary_preamble_def]
decr_left [definition, in cap_machine.examples.counter_binary.counter_binary]
decr_right [definition, in cap_machine.examples.counter_binary.counter_binary]
decr_instrs [definition, in cap_machine.examples.counter_binary.counter_binary]
decr_incr_closure_valid [lemma, in cap_machine.examples.counter_binary.counter_binary_preamble_left]
dec_pc [instance, in cap_machine.cap_lang]
definitionsS [section, in cap_machine.rules_binary.rules_binary_base]
Del [constructor, in cap_machine.proofmode.map_simpl]
delete_elements_eq_difference_het [lemma, in cap_machine.stdpp_extra]
delete_list_swap [lemma, in cap_machine.stdpp_extra]
delete_list_permutation [lemma, in cap_machine.stdpp_extra]
delete_list_delete [lemma, in cap_machine.stdpp_extra]
delete_list_insert [lemma, in cap_machine.stdpp_extra]
delete_list [definition, in cap_machine.stdpp_extra]
denote [definition, in cap_machine.proofmode.map_simpl]
denote [definition, in cap_machine.rules.rules_AddSubLt]
denote [definition, in cap_machine.rules.rules_Get]
denote_remove_key_none [lemma, in cap_machine.proofmode.map_simpl]
denote_remove_key_del [lemma, in cap_machine.proofmode.map_simpl]
denote_remove_key_ins [lemma, in cap_machine.proofmode.map_simpl]
denote_seal_denote [lemma, in cap_machine.rules.rules_Get]
denote_seal [definition, in cap_machine.rules.rules_Get]
denote_cap_denote [lemma, in cap_machine.rules.rules_Get]
denote_cap [definition, in cap_machine.rules.rules_Get]
denote_domain_correct [lemma, in cap_machine.proofmode.register_tactics]
denote_domain [definition, in cap_machine.proofmode.register_tactics]
denote_domain.HcountK [variable, in cap_machine.proofmode.register_tactics]
denote_domain.HeqdecK [variable, in cap_machine.proofmode.register_tactics]
denote_domain.K [variable, in cap_machine.proofmode.register_tactics]
denote_domain [section, in cap_machine.proofmode.register_tactics]
difference_het_delete_assoc [lemma, in cap_machine.stdpp_extra]
difference_het_insert_l [lemma, in cap_machine.stdpp_extra]
difference_het_insert_r [lemma, in cap_machine.stdpp_extra]
difference_het_eq_empty [lemma, in cap_machine.stdpp_extra]
difference_het_empty [lemma, in cap_machine.stdpp_extra]
difference_het_lookup_None [lemma, in cap_machine.stdpp_extra]
difference_het_lookup_Some [lemma, in cap_machine.stdpp_extra]
DisjointList [record, in cap_machine.proofmode.disjoint_regions_tactics]
DisjointList [inductive, in cap_machine.proofmode.disjoint_regions_tactics]
DisjointList_list_Addr [instance, in cap_machine.examples.lse_adequacy]
DisjointList_list_Addr [instance, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
DisjointList_list_Addr [instance, in cap_machine.examples.adder_adequacy]
DisjointList_list_Addr [instance, in cap_machine.examples.counter.counter_adequacy]
DisjointList_list_Addr [instance, in cap_machine.exercises.subseg_buffer_call]
DisjointList_list_Addr [instance, in cap_machine.examples.counter_binary.counter_binary_adequacy]
DisjointList_list_Addr [instance, in cap_machine.examples.interval.interval_client_adequacy]
disjoint_mono_r [lemma, in cap_machine.proofmode.disjoint_regions_tactics]
disjoint_mono_l [lemma, in cap_machine.proofmode.disjoint_regions_tactics]
disjoint_list_cons [lemma, in cap_machine.proofmode.disjoint_regions_tactics]
disjoint_list_nil [lemma, in cap_machine.proofmode.disjoint_regions_tactics]
disjoint_list_default_sind [definition, in cap_machine.proofmode.disjoint_regions_tactics]
disjoint_list_default_ind [definition, in cap_machine.proofmode.disjoint_regions_tactics]
disjoint_cons_2 [constructor, in cap_machine.proofmode.disjoint_regions_tactics]
disjoint_nil_2 [constructor, in cap_machine.proofmode.disjoint_regions_tactics]
disjoint_list_default [inductive, in cap_machine.proofmode.disjoint_regions_tactics]
disjoint_list.A [variable, in cap_machine.proofmode.disjoint_regions_tactics]
disjoint_list [section, in cap_machine.proofmode.disjoint_regions_tactics]
disjoint_list [projection, in cap_machine.proofmode.disjoint_regions_tactics]
disjoint_list [constructor, in cap_machine.proofmode.disjoint_regions_tactics]
disjoint_swap [lemma, in cap_machine.stdpp_extra]
disjoint_weak [lemma, in cap_machine.stdpp_extra]
disjoint_cons [lemma, in cap_machine.stdpp_extra]
disjoint_nil_r [lemma, in cap_machine.stdpp_extra]
disjoint_nil_l [lemma, in cap_machine.stdpp_extra]
disjoint_regions_tactics [library]
dom_difference_het [lemma, in cap_machine.stdpp_extra]
dom_list_to_map_singleton [lemma, in cap_machine.stdpp_extra]
dom_mkregion_eq [lemma, in cap_machine.proofmode.mkregion_helpers]
dom_mkregion_incl_rev [lemma, in cap_machine.proofmode.mkregion_helpers]
dom_mkregion_incl [lemma, in cap_machine.proofmode.mkregion_helpers]
do_step_pure [lemma, in cap_machine.rules_binary.rules_binary_base]
drop_S' [lemma, in cap_machine.stdpp_extra]
dynamic_sealing [library]

E

e [definition, in cap_machine.examples.addr_reg_sample]
E [constructor, in cap_machine.machine_base]
ectx [abbreviation, in cap_machine.cap_lang]
ectx_item_sind [definition, in cap_machine.cap_lang]
ectx_item_rec [definition, in cap_machine.cap_lang]
ectx_item_ind [definition, in cap_machine.cap_lang]
ectx_item_rect [definition, in cap_machine.cap_lang]
ectx_item [inductive, in cap_machine.cap_lang]
elem_of_finz_seq_between [lemma, in machine_utils.finz_interval]
elem_of_prefix_eq [lemma, in cap_machine.examples.interval.interval_client]
Empty_list [instance, in cap_machine.proofmode.disjoint_regions_tactics]
empty_prog_region [lemma, in cap_machine.examples.template_adequacy]
empty_prog [definition, in cap_machine.examples.template_adequacy]
encodeInstr [projection, in cap_machine.machine_parameters]
encodeInstrsW [definition, in cap_machine.machine_parameters]
encodeInstrW [definition, in cap_machine.machine_parameters]
encodePerm [projection, in cap_machine.machine_parameters]
encodePerm_inj [projection, in cap_machine.machine_parameters]
encodeSealPerms [projection, in cap_machine.machine_parameters]
encodeSealPerms_inj [projection, in cap_machine.machine_parameters]
encodeWordType [projection, in cap_machine.machine_parameters]
encodeWordType_correct_sealed [lemma, in cap_machine.machine_parameters]
encodeWordType_correct_sealrange [lemma, in cap_machine.machine_parameters]
encodeWordType_correct_int [lemma, in cap_machine.machine_parameters]
encodeWordType_correct_cap [lemma, in cap_machine.machine_parameters]
encodeWordType_correct [projection, in cap_machine.machine_parameters]
end_mem_inv [definition, in cap_machine.exercises.subseg_buffer_closure]
end_memN [definition, in cap_machine.exercises.subseg_buffer_closure]
end_mem_inv [definition, in cap_machine.exercises.subseg_buffer]
end_memN [definition, in cap_machine.exercises.subseg_buffer]
end_off [definition, in cap_machine.examples.minimal_counter]
enter_cond_contractive [instance, in cap_machine.logrel_binary]
enter_cond_ne [instance, in cap_machine.logrel_binary]
enter_cond [definition, in cap_machine.logrel_binary]
enter_cond_contractive [instance, in cap_machine.logrel]
enter_cond_ne [instance, in cap_machine.logrel]
enter_cond [definition, in cap_machine.logrel]
entry_points [definition, in cap_machine.examples.template_adequacy]
envCN [definition, in cap_machine.examples.interval.interval_client_closure]
envCN [definition, in cap_machine.examples.interval_arch.interval_client_closure_arch]
envIN [definition, in cap_machine.examples.interval.interval_client_closure]
envIN [definition, in cap_machine.examples.interval_arch.interval_client_closure_arch]
EnvsLookupSpatial [record, in machine_utils.tactics]
EnvsLookupSpatial_next [instance, in machine_utils.tactics]
EnvsLookupSpatial_here [instance, in machine_utils.tactics]
envs_entails_rew_goal [lemma, in cap_machine.proofmode.proofmode]
envs_clear_spatial_sound_rev [lemma, in cap_machine.proofmode.proofmode]
env_to_named_prop_sound [lemma, in cap_machine.proofmode.NamedProp]
env_to_named_prop_unname [lemma, in cap_machine.proofmode.NamedProp]
env_to_named_prop_go_unname [lemma, in cap_machine.proofmode.NamedProp]
env_to_named_prop [definition, in cap_machine.proofmode.NamedProp]
env_to_named_prop_go [definition, in cap_machine.proofmode.NamedProp]
eqb_otype [abbreviation, in cap_machine.addr_reg]
eqb_addr [abbreviation, in cap_machine.addr_reg]
establish_interp [lemma, in cap_machine.examples.counter_binary.counter_binary_adequacy]
Exact [definition, in cap_machine.examples.keylist]
Excl_included_false [lemma, in cap_machine.seal_store]
exec [definition, in cap_machine.cap_lang]
ExecConf [definition, in cap_machine.cap_lang]
ExecPCPerm [definition, in cap_machine.machine_base]
ExecPCPerm_readAllowed [lemma, in cap_machine.machine_base]
ExecPCPerm_not_E [lemma, in cap_machine.machine_base]
ExecPCPerm_flows_to [lemma, in cap_machine.machine_base]
ExecPCPerm_RWX [lemma, in cap_machine.machine_base]
ExecPCPerm_RX [lemma, in cap_machine.machine_base]
ExecPCPerm_InCtx [lemma, in cap_machine.proofmode.solve_pure]
Executable [constructor, in cap_machine.cap_lang]
executeAllowed [definition, in cap_machine.machine_base]
exec_wp [lemma, in cap_machine.fundamental]
exec_cond [definition, in cap_machine.fundamental]
exec_opt_exec_none [lemma, in cap_machine.cap_lang]
exec_opt_exec_some [lemma, in cap_machine.cap_lang]
exec_opt [definition, in cap_machine.cap_lang]
exec_wp [lemma, in cap_machine.fundamental_binary]
exec_cond_binary [definition, in cap_machine.fundamental_binary]
exports [definition, in cap_machine.linking]
expr [inductive, in cap_machine.cap_lang]
exprR [abbreviation, in cap_machine.rules_binary.rules_binary_base]
exprspec_pointsto_update [lemma, in cap_machine.rules_binary.rules_binary_base]
exprspec_pointsto [definition, in cap_machine.rules_binary.rules_binary_base]
expr_sind [definition, in cap_machine.cap_lang]
expr_rec [definition, in cap_machine.cap_lang]
expr_ind [definition, in cap_machine.cap_lang]
expr_rect [definition, in cap_machine.cap_lang]
extract_from_region_spec' [lemma, in cap_machine.proofmode.region]
extract_from_region_spec [lemma, in cap_machine.proofmode.region]
extract_from_region_inv_2 [lemma, in cap_machine.proofmode.region]
extract_from_region_inv [lemma, in cap_machine.proofmode.region]
extract_from_region' [lemma, in cap_machine.proofmode.region]
extract_from_region [lemma, in cap_machine.proofmode.region]
extract_r [lemma, in cap_machine.fundamental]
extract_r_ex [lemma, in cap_machine.fundamental]
extract_sep_if_split [lemma, in cap_machine.rules.rules_base]
extract_r [lemma, in cap_machine.fundamental_binary]
extract_r_ex [lemma, in cap_machine.fundamental_binary]

F

Fail [constructor, in cap_machine.machine_base]
Failed [constructor, in cap_machine.cap_lang]
FailedV [constructor, in cap_machine.cap_lang]
fail_end [definition, in cap_machine.examples.addr_reg_sample]
fetch [definition, in cap_machine.examples.macros]
fetch_spec [lemma, in cap_machine.examples.macros_new]
fetch_instrs [definition, in cap_machine.examples.macros_new]
fetch_s_spec [lemma, in cap_machine.examples.macros_binary]
fetch_s [definition, in cap_machine.examples.macros_binary]
fetch_spec [lemma, in cap_machine.examples.macros]
fetch_instrs [definition, in cap_machine.examples.macros]
fill_item_no_val_inj [lemma, in cap_machine.cap_lang]
fill_item_inj [instance, in cap_machine.cap_lang]
fill_item_val [lemma, in cap_machine.cap_lang]
fill_item [definition, in cap_machine.cap_lang]
filter_dom_is_dom [lemma, in cap_machine.examples.template_adequacy]
findb [definition, in cap_machine.examples.keylist]
findb_spec [lemma, in cap_machine.examples.keylist]
findb_spec_middle [lemma, in cap_machine.examples.keylist]
findb_loop [definition, in cap_machine.examples.keylist]
findb_instr [definition, in cap_machine.examples.keylist]
finz [module, in machine_utils.finz_interval]
finz [abbreviation, in machine_utils.finz_base]
finz [module, in machine_utils.finz_base]
finz [library]
FinZEq [record, in machine_utils.classes]
FinZEq [inductive, in machine_utils.classes]
FinZEqSame [instance, in machine_utils.class_instances]
FinZEq_default_neq [instance, in machine_utils.class_instances]
FinZEq_offset_cbv [instance, in machine_utils.class_instances]
FinZLe [record, in machine_utils.classes]
FinZLe [inductive, in machine_utils.classes]
FinZLe_offsets [instance, in machine_utils.class_instances]
FinZLe_of_lt [instance, in machine_utils.class_instances]
FinZLe_refl [instance, in machine_utils.class_instances]
FinZLt [record, in machine_utils.classes]
FinZLt [inductive, in machine_utils.classes]
FinZLt_offsets [instance, in machine_utils.class_instances]
FinZOffsetLe [record, in machine_utils.classes]
FinZOffsetLe [inductive, in machine_utils.classes]
FinZOffsetLe_of_lt [instance, in machine_utils.class_instances]
FinZOffsetLe_compute [lemma, in machine_utils.class_instances]
FinZOffsetLe_refl [instance, in machine_utils.class_instances]
FinZOffsetLt [record, in machine_utils.classes]
FinZOffsetLt [inductive, in machine_utils.classes]
FinZOffsetLt_compute [lemma, in machine_utils.class_instances]
finz_seq_between_lookup [lemma, in machine_utils.finz_interval]
finz_seq_between_singleton [lemma, in machine_utils.finz_interval]
finz_seq_between_cons [lemma, in machine_utils.finz_interval]
finz_seq_between_NoDup [lemma, in machine_utils.finz_interval]
finz_seq_between_first [lemma, in machine_utils.finz_interval]
finz_seq_between_split [lemma, in machine_utils.finz_interval]
finz_seq_between_decomposition [lemma, in machine_utils.finz_interval]
finz_seq_between_empty [lemma, in machine_utils.finz_interval]
finz_seq_between_length [lemma, in machine_utils.finz_interval]
finz_seq_lookup [lemma, in machine_utils.finz_interval]
finz_seq_NoDup [lemma, in machine_utils.finz_interval]
finz_seq_notin [lemma, in machine_utils.finz_interval]
finz_seq_decomposition [lemma, in machine_utils.finz_interval]
finz_seq_singleton [lemma, in machine_utils.finz_interval]
finz_seq_length [lemma, in machine_utils.finz_interval]
finz_incr_iff_dist [lemma, in machine_utils.finz_interval]
finz_dist_incr [lemma, in machine_utils.finz_interval]
finz_dist_incr_default [lemma, in machine_utils.finz_interval]
finz_dist_split [lemma, in machine_utils.finz_interval]
finz_dist_0 [lemma, in machine_utils.finz_interval]
finz_dist_S [lemma, in machine_utils.finz_interval]
finz_add_0_default [lemma, in machine_utils.finz_lemmas]
finz_add_0 [lemma, in machine_utils.finz_lemmas]
finz_of_z_ZToFinZ [lemma, in machine_utils.solve_pure]
finz_of_z_Some_spec [lemma, in machine_utils.solve_finz]
finz_of_z_is_Some_spec [lemma, in machine_utils.solve_finz]
finz_of_z_spec [lemma, in machine_utils.solve_finz]
finz_zero_spec [lemma, in machine_utils.solve_finz]
finz_largest_spec [lemma, in machine_utils.solve_finz]
finz_mult_Some_prove_spec [lemma, in machine_utils.solve_finz]
finz_mult_is_Some_spec [lemma, in machine_utils.solve_finz]
finz_mult_Some_spec [lemma, in machine_utils.solve_finz]
finz_max_spec [lemma, in machine_utils.solve_finz]
finz_min_spec [lemma, in machine_utils.solve_finz]
finz_incr_default_spec [lemma, in machine_utils.solve_finz]
finz_incr_Some_prove_spec [lemma, in machine_utils.solve_finz]
finz_incr_is_Some_spec [lemma, in machine_utils.solve_finz]
finz_incr_Some_spec [lemma, in machine_utils.solve_finz]
finz_incr_spec [lemma, in machine_utils.solve_finz]
finz_zero_eq [lemma, in machine_utils.finz_base]
finz_largest_eq [lemma, in machine_utils.finz_base]
finz_lt_trans [instance, in machine_utils.finz_base]
finz_le_trans [instance, in machine_utils.finz_base]
finz_lt_dec [instance, in machine_utils.finz_base]
finz_le_dec [instance, in machine_utils.finz_base]
finz_countable [instance, in machine_utils.finz_base]
finz_mult_eq [lemma, in machine_utils.finz_base]
finz_incr_eq [lemma, in machine_utils.finz_base]
finz_of_z_eq_inv [lemma, in machine_utils.finz_base]
finz_of_z_to_z [lemma, in machine_utils.finz_base]
finz_spec [lemma, in machine_utils.finz_base]
finz_eq_dec [instance, in machine_utils.finz_base]
finz_unique [lemma, in machine_utils.finz_base]
finz_neq_to_z [lemma, in machine_utils.finz_base]
finz_to_z_neq [lemma, in machine_utils.finz_base]
finz_eq_to_z [lemma, in machine_utils.finz_base]
finz_to_z_eq [lemma, in machine_utils.finz_base]
finz_lemmas.finz_bound [variable, in machine_utils.finz_base]
finz_lemmas [section, in machine_utils.finz_base]
finz_cons_tl [lemma, in cap_machine.machine_base]
finz_cons_hd [lemma, in cap_machine.machine_base]
finz_empty_seq_between [lemma, in cap_machine.machine_base]
finz_0_dist [lemma, in cap_machine.machine_base]
finz_lemmas [library]
finz_base [library]
finz_interval [library]
finz.dist [definition, in machine_utils.finz_interval]
finz.eqb [definition, in machine_utils.finz_base]
finz.FinZ [constructor, in machine_utils.finz_base]
finz.finz [inductive, in machine_utils.finz_base]
finz.finz [section, in machine_utils.finz_base]
finz.finz_sind [definition, in machine_utils.finz_base]
finz.finz_rec [definition, in machine_utils.finz_base]
finz.finz_ind [definition, in machine_utils.finz_base]
finz.finz_rect [definition, in machine_utils.finz_base]
finz.finz.finz_bound [variable, in machine_utils.finz_base]
finz.incr [definition, in machine_utils.finz_base]
finz.incr_default [definition, in machine_utils.finz_base]
finz.largest [definition, in machine_utils.finz_base]
finz.le [definition, in machine_utils.finz_base]
finz.leb [definition, in machine_utils.finz_base]
finz.le_lt [definition, in machine_utils.finz_base]
finz.lt [definition, in machine_utils.finz_base]
finz.ltb [definition, in machine_utils.finz_base]
finz.max [definition, in machine_utils.finz_base]
finz.min [definition, in machine_utils.finz_base]
finz.mult [definition, in machine_utils.finz_base]
finz.mult_default [definition, in machine_utils.finz_base]
finz.of_z [definition, in machine_utils.finz_base]
finz.seq [definition, in machine_utils.finz_interval]
finz.seq_between [definition, in machine_utils.finz_interval]
finz.to_z [definition, in machine_utils.finz_base]
finz.zero [definition, in machine_utils.finz_base]
fixpoint_interp1_eq [lemma, in cap_machine.logrel_binary]
fixpoint_interp1_eq [lemma, in cap_machine.logrel]
flagN [definition, in cap_machine.examples.counter.counter_adequacy]
flag_not_in_interval [lemma, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
flag_inv_sub [lemma, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
flag_inv_is_initial_memory [lemma, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
flag_inv [definition, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
flag_call_inv [definition, in cap_machine.exercises.subseg_buffer_call]
flag_not_in_interval [lemma, in cap_machine.examples.interval.interval_client_adequacy]
flag_inv_sub [lemma, in cap_machine.examples.interval.interval_client_adequacy]
flag_inv_is_initial_memory [lemma, in cap_machine.examples.interval.interval_client_adequacy]
flag_inv [definition, in cap_machine.examples.interval.interval_client_adequacy]
focus_block_SubBounds [lemma, in cap_machine.proofmode.proofmode]
focus_block_0_SubBounds [lemma, in cap_machine.proofmode.proofmode]
FramableCodefrag [record, in cap_machine.proofmode.proofmode]
FramableCodefrag_default [instance, in cap_machine.proofmode.proofmode]
FramableMachineHyp [record, in machine_utils.tactics]
FramableMachineHyp_default [instance, in machine_utils.tactics]
FramableMachineResource [record, in machine_utils.tactics]
FramableMachineResource_codefrag [instance, in cap_machine.proofmode.proofmode]
FramableMachineResource_mem [instance, in cap_machine.proofmode.proofmode]
FramableMachineResource_reg [instance, in cap_machine.proofmode.proofmode]
FramableMemoryPointsto [record, in cap_machine.proofmode.proofmode]
FramableMemoryPointsto_default [instance, in cap_machine.proofmode.proofmode]
FramableRegisterPointsto [record, in cap_machine.proofmode.proofmode]
FramableRegisterPointsto_default [instance, in cap_machine.proofmode.proofmode]
framable_machine_hyp [definition, in machine_utils.tactics]
from_named [lemma, in cap_machine.proofmode.NamedProp]
fst_instrs [definition, in cap_machine.examples.interval_arch.interval_arch]
fst_elem_of_cons [lemma, in cap_machine.stdpp_extra]
fst_zip_prefix [lemma, in cap_machine.stdpp_extra]
fst_instrs [definition, in cap_machine.examples.interval.interval]
ftlr_instr [definition, in cap_machine.ftlr_binary.ftlr_base_binary]
ftlr_instr [definition, in cap_machine.ftlr.ftlr_base]
ftlr_base [library]
ftlr_base_binary [library]
full_map [definition, in cap_machine.logrel_binary]
full_map [definition, in cap_machine.logrel]
fundamental [section, in cap_machine.ftlr_binary.Seal_binary]
fundamental [section, in cap_machine.ftlr_binary.Store_binary]
fundamental [section, in cap_machine.ftlr.Load]
fundamental [section, in cap_machine.ftlr.UnSeal]
fundamental [section, in cap_machine.ftlr.Store]
fundamental [section, in cap_machine.ftlr.Restrict]
fundamental [section, in cap_machine.ftlr.Subseg]
fundamental [section, in cap_machine.ftlr.interp_weakening]
fundamental [section, in cap_machine.ftlr_binary.AddSubLt_binary]
fundamental [section, in cap_machine.ftlr.Mov]
fundamental [section, in cap_machine.ftlr_binary.interp_weakening]
fundamental [section, in cap_machine.ftlr_binary.Restrict_binary]
fundamental [section, in cap_machine.ftlr_binary.Jnz_binary]
fundamental [section, in cap_machine.ftlr_binary.Subseg_binary]
fundamental [section, in cap_machine.ftlr_binary.UnSeal_binary]
fundamental [section, in cap_machine.ftlr_binary.ftlr_base_binary]
fundamental [section, in cap_machine.ftlr.Jnz]
fundamental [section, in cap_machine.ftlr_binary.Jmp_binary]
fundamental [section, in cap_machine.ftlr.Lea]
fundamental [section, in cap_machine.ftlr_binary.Lea_binary]
fundamental [section, in cap_machine.ftlr.AddSubLt]
fundamental [section, in cap_machine.ftlr_binary.Get_binary]
fundamental [section, in cap_machine.ftlr.ftlr_base]
fundamental [section, in cap_machine.ftlr.Seal]
fundamental [lemma, in cap_machine.fundamental]
fundamental [section, in cap_machine.fundamental]
fundamental [section, in cap_machine.ftlr.Jmp]
fundamental [section, in cap_machine.ftlr.Get]
fundamental [section, in cap_machine.ftlr_binary.Mov_binary]
fundamental [section, in cap_machine.fundamental_binary]
fundamental [section, in cap_machine.ftlr_binary.Load_binary]
fundamental [library]
fundamental_cap [lemma, in cap_machine.fundamental]
fundamental_binary [lemma, in cap_machine.fundamental_binary]
fundamental_binary [library]
fundamental.cfgsg [variable, in cap_machine.ftlr_binary.Seal_binary]
fundamental.cfgsg [variable, in cap_machine.ftlr_binary.Store_binary]
fundamental.cfgsg [variable, in cap_machine.ftlr_binary.AddSubLt_binary]
fundamental.cfgsg [variable, in cap_machine.ftlr_binary.interp_weakening]
fundamental.cfgsg [variable, in cap_machine.ftlr_binary.Restrict_binary]
fundamental.cfgsg [variable, in cap_machine.ftlr_binary.Jnz_binary]
fundamental.cfgsg [variable, in cap_machine.ftlr_binary.Subseg_binary]
fundamental.cfgsg [variable, in cap_machine.ftlr_binary.UnSeal_binary]
fundamental.cfgsg [variable, in cap_machine.ftlr_binary.ftlr_base_binary]
fundamental.cfgsg [variable, in cap_machine.ftlr_binary.Jmp_binary]
fundamental.cfgsg [variable, in cap_machine.ftlr_binary.Lea_binary]
fundamental.cfgsg [variable, in cap_machine.ftlr_binary.Get_binary]
fundamental.cfgsg [variable, in cap_machine.ftlr_binary.Mov_binary]
fundamental.cfgsg [variable, in cap_machine.fundamental_binary]
fundamental.cfgsg [variable, in cap_machine.ftlr_binary.Load_binary]
fundamental.memg [variable, in cap_machine.ftlr_binary.Seal_binary]
fundamental.memg [variable, in cap_machine.ftlr_binary.Store_binary]
fundamental.memg [variable, in cap_machine.ftlr.Load]
fundamental.memg [variable, in cap_machine.ftlr.UnSeal]
fundamental.memg [variable, in cap_machine.ftlr.Store]
fundamental.memg [variable, in cap_machine.ftlr.Restrict]
fundamental.memg [variable, in cap_machine.ftlr.Subseg]
fundamental.memg [variable, in cap_machine.ftlr.interp_weakening]
fundamental.memg [variable, in cap_machine.ftlr_binary.AddSubLt_binary]
fundamental.memg [variable, in cap_machine.ftlr.Mov]
fundamental.memg [variable, in cap_machine.ftlr_binary.interp_weakening]
fundamental.memg [variable, in cap_machine.ftlr_binary.Restrict_binary]
fundamental.memg [variable, in cap_machine.ftlr_binary.Jnz_binary]
fundamental.memg [variable, in cap_machine.ftlr_binary.Subseg_binary]
fundamental.memg [variable, in cap_machine.ftlr_binary.UnSeal_binary]
fundamental.memg [variable, in cap_machine.ftlr_binary.ftlr_base_binary]
fundamental.memg [variable, in cap_machine.ftlr.Jnz]
fundamental.memg [variable, in cap_machine.ftlr_binary.Jmp_binary]
fundamental.memg [variable, in cap_machine.ftlr.Lea]
fundamental.memg [variable, in cap_machine.ftlr_binary.Lea_binary]
fundamental.memg [variable, in cap_machine.ftlr.AddSubLt]
fundamental.memg [variable, in cap_machine.ftlr_binary.Get_binary]
fundamental.memg [variable, in cap_machine.ftlr.ftlr_base]
fundamental.memg [variable, in cap_machine.ftlr.Seal]
fundamental.memg [variable, in cap_machine.fundamental]
fundamental.memg [variable, in cap_machine.ftlr.Jmp]
fundamental.memg [variable, in cap_machine.ftlr.Get]
fundamental.memg [variable, in cap_machine.ftlr_binary.Mov_binary]
fundamental.memg [variable, in cap_machine.fundamental_binary]
fundamental.memg [variable, in cap_machine.ftlr_binary.Load_binary]
fundamental.MP [variable, in cap_machine.fundamental]
fundamental.MP [variable, in cap_machine.fundamental_binary]
fundamental.nainv [variable, in cap_machine.ftlr_binary.Seal_binary]
fundamental.nainv [variable, in cap_machine.ftlr_binary.Store_binary]
fundamental.nainv [variable, in cap_machine.ftlr.Load]
fundamental.nainv [variable, in cap_machine.ftlr.UnSeal]
fundamental.nainv [variable, in cap_machine.ftlr.Store]
fundamental.nainv [variable, in cap_machine.ftlr.Restrict]
fundamental.nainv [variable, in cap_machine.ftlr.Subseg]
fundamental.nainv [variable, in cap_machine.ftlr.interp_weakening]
fundamental.nainv [variable, in cap_machine.ftlr_binary.AddSubLt_binary]
fundamental.nainv [variable, in cap_machine.ftlr.Mov]
fundamental.nainv [variable, in cap_machine.ftlr_binary.interp_weakening]
fundamental.nainv [variable, in cap_machine.ftlr_binary.Restrict_binary]
fundamental.nainv [variable, in cap_machine.ftlr_binary.Jnz_binary]
fundamental.nainv [variable, in cap_machine.ftlr_binary.Subseg_binary]
fundamental.nainv [variable, in cap_machine.ftlr_binary.UnSeal_binary]
fundamental.nainv [variable, in cap_machine.ftlr_binary.ftlr_base_binary]
fundamental.nainv [variable, in cap_machine.ftlr.Jnz]
fundamental.nainv [variable, in cap_machine.ftlr_binary.Jmp_binary]
fundamental.nainv [variable, in cap_machine.ftlr.Lea]
fundamental.nainv [variable, in cap_machine.ftlr_binary.Lea_binary]
fundamental.nainv [variable, in cap_machine.ftlr.AddSubLt]
fundamental.nainv [variable, in cap_machine.ftlr_binary.Get_binary]
fundamental.nainv [variable, in cap_machine.ftlr.ftlr_base]
fundamental.nainv [variable, in cap_machine.ftlr.Seal]
fundamental.nainv [variable, in cap_machine.fundamental]
fundamental.nainv [variable, in cap_machine.ftlr.Jmp]
fundamental.nainv [variable, in cap_machine.ftlr.Get]
fundamental.nainv [variable, in cap_machine.ftlr_binary.Mov_binary]
fundamental.nainv [variable, in cap_machine.fundamental_binary]
fundamental.nainv [variable, in cap_machine.ftlr_binary.Load_binary]
fundamental.regg [variable, in cap_machine.ftlr_binary.Seal_binary]
fundamental.regg [variable, in cap_machine.ftlr_binary.Store_binary]
fundamental.regg [variable, in cap_machine.ftlr.Load]
fundamental.regg [variable, in cap_machine.ftlr.UnSeal]
fundamental.regg [variable, in cap_machine.ftlr.Store]
fundamental.regg [variable, in cap_machine.ftlr.Restrict]
fundamental.regg [variable, in cap_machine.ftlr.Subseg]
fundamental.regg [variable, in cap_machine.ftlr.interp_weakening]
fundamental.regg [variable, in cap_machine.ftlr_binary.AddSubLt_binary]
fundamental.regg [variable, in cap_machine.ftlr.Mov]
fundamental.regg [variable, in cap_machine.ftlr_binary.interp_weakening]
fundamental.regg [variable, in cap_machine.ftlr_binary.Restrict_binary]
fundamental.regg [variable, in cap_machine.ftlr_binary.Jnz_binary]
fundamental.regg [variable, in cap_machine.ftlr_binary.Subseg_binary]
fundamental.regg [variable, in cap_machine.ftlr_binary.UnSeal_binary]
fundamental.regg [variable, in cap_machine.ftlr_binary.ftlr_base_binary]
fundamental.regg [variable, in cap_machine.ftlr.Jnz]
fundamental.regg [variable, in cap_machine.ftlr_binary.Jmp_binary]
fundamental.regg [variable, in cap_machine.ftlr.Lea]
fundamental.regg [variable, in cap_machine.ftlr_binary.Lea_binary]
fundamental.regg [variable, in cap_machine.ftlr.AddSubLt]
fundamental.regg [variable, in cap_machine.ftlr_binary.Get_binary]
fundamental.regg [variable, in cap_machine.ftlr.ftlr_base]
fundamental.regg [variable, in cap_machine.ftlr.Seal]
fundamental.regg [variable, in cap_machine.fundamental]
fundamental.regg [variable, in cap_machine.ftlr.Jmp]
fundamental.regg [variable, in cap_machine.ftlr.Get]
fundamental.regg [variable, in cap_machine.ftlr_binary.Mov_binary]
fundamental.regg [variable, in cap_machine.fundamental_binary]
fundamental.regg [variable, in cap_machine.ftlr_binary.Load_binary]
fundamental.sealsg [variable, in cap_machine.ftlr.Load]
fundamental.sealsg [variable, in cap_machine.ftlr.UnSeal]
fundamental.sealsg [variable, in cap_machine.ftlr.Store]
fundamental.sealsg [variable, in cap_machine.ftlr.Restrict]
fundamental.sealsg [variable, in cap_machine.ftlr.Subseg]
fundamental.sealsg [variable, in cap_machine.ftlr.interp_weakening]
fundamental.sealsg [variable, in cap_machine.ftlr.Mov]
fundamental.sealsg [variable, in cap_machine.ftlr.Jnz]
fundamental.sealsg [variable, in cap_machine.ftlr.Lea]
fundamental.sealsg [variable, in cap_machine.ftlr.AddSubLt]
fundamental.sealsg [variable, in cap_machine.ftlr.ftlr_base]
fundamental.sealsg [variable, in cap_machine.ftlr.Seal]
fundamental.sealsg [variable, in cap_machine.fundamental]
fundamental.sealsg [variable, in cap_machine.ftlr.Jmp]
fundamental.sealsg [variable, in cap_machine.ftlr.Get]
fundamental.Σ [variable, in cap_machine.ftlr_binary.Seal_binary]
fundamental.Σ [variable, in cap_machine.ftlr_binary.Store_binary]
fundamental.Σ [variable, in cap_machine.ftlr.Load]
fundamental.Σ [variable, in cap_machine.ftlr.UnSeal]
fundamental.Σ [variable, in cap_machine.ftlr.Store]
fundamental.Σ [variable, in cap_machine.ftlr.Restrict]
fundamental.Σ [variable, in cap_machine.ftlr.Subseg]
fundamental.Σ [variable, in cap_machine.ftlr.interp_weakening]
fundamental.Σ [variable, in cap_machine.ftlr_binary.AddSubLt_binary]
fundamental.Σ [variable, in cap_machine.ftlr.Mov]
fundamental.Σ [variable, in cap_machine.ftlr_binary.interp_weakening]
fundamental.Σ [variable, in cap_machine.ftlr_binary.Restrict_binary]
fundamental.Σ [variable, in cap_machine.ftlr_binary.Jnz_binary]
fundamental.Σ [variable, in cap_machine.ftlr_binary.Subseg_binary]
fundamental.Σ [variable, in cap_machine.ftlr_binary.UnSeal_binary]
fundamental.Σ [variable, in cap_machine.ftlr_binary.ftlr_base_binary]
fundamental.Σ [variable, in cap_machine.ftlr.Jnz]
fundamental.Σ [variable, in cap_machine.ftlr_binary.Jmp_binary]
fundamental.Σ [variable, in cap_machine.ftlr.Lea]
fundamental.Σ [variable, in cap_machine.ftlr_binary.Lea_binary]
fundamental.Σ [variable, in cap_machine.ftlr.AddSubLt]
fundamental.Σ [variable, in cap_machine.ftlr_binary.Get_binary]
fundamental.Σ [variable, in cap_machine.ftlr.ftlr_base]
fundamental.Σ [variable, in cap_machine.ftlr.Seal]
fundamental.Σ [variable, in cap_machine.fundamental]
fundamental.Σ [variable, in cap_machine.ftlr.Jmp]
fundamental.Σ [variable, in cap_machine.ftlr.Get]
fundamental.Σ [variable, in cap_machine.ftlr_binary.Mov_binary]
fundamental.Σ [variable, in cap_machine.fundamental_binary]
fundamental.Σ [variable, in cap_machine.ftlr_binary.Load_binary]
f_region_start_offset [projection, in cap_machine.examples.lse_adequacy]
f_size [projection, in cap_machine.examples.lse_adequacy]
f_end [projection, in cap_machine.examples.lse_adequacy]
f_start [projection, in cap_machine.examples.lse_adequacy]
f_region_start [projection, in cap_machine.examples.lse_adequacy]
f_size [projection, in cap_machine.examples.adder_adequacy]
f_end [projection, in cap_machine.examples.adder_adequacy]
f_start [projection, in cap_machine.examples.adder_adequacy]
f_region_start_offset [projection, in cap_machine.exercises.subseg_buffer_call]
f_size [projection, in cap_machine.exercises.subseg_buffer_call]
f_end [projection, in cap_machine.exercises.subseg_buffer_call]
f_start [projection, in cap_machine.exercises.subseg_buffer_call]
f_region_start [projection, in cap_machine.exercises.subseg_buffer_call]

G

gen_mem_update_inSepM [lemma, in cap_machine.rules.rules_base]
gen_mem_valid_inSepM_general [lemma, in cap_machine.rules.rules_base]
gen_mem_valid_inSepM [lemma, in cap_machine.rules.rules_base]
gen_heap_update_inSepM [lemma, in cap_machine.rules.rules_base]
gen_heap_valid_allSepM [lemma, in cap_machine.rules.rules_base]
gen_heap_valid_inclSepM [lemma, in cap_machine.rules.rules_base]
gen_heap_valid_inSepM' [lemma, in cap_machine.rules.rules_base]
gen_heap_valid_inSepM [lemma, in cap_machine.rules.rules_base]
Get [library]
geta [definition, in cap_machine.examples.addr_reg_sample]
GetA [constructor, in cap_machine.machine_base]
getb [definition, in cap_machine.examples.addr_reg_sample]
GetB [constructor, in cap_machine.machine_base]
gete [definition, in cap_machine.examples.addr_reg_sample]
GetE [constructor, in cap_machine.machine_base]
GetOType [constructor, in cap_machine.machine_base]
getp [definition, in cap_machine.examples.addr_reg_sample]
GetP [constructor, in cap_machine.machine_base]
GetTag_spec_success [constructor, in cap_machine.rules.rules_Mov]
GetWType [constructor, in cap_machine.machine_base]
getwtype_denote [lemma, in cap_machine.rules.rules_Get]
get_wtype [definition, in cap_machine.examples.addr_reg_sample]
get_otype [definition, in cap_machine.examples.addr_reg_sample]
get_addrs_from_option_addr_comm [lemma, in cap_machine.proofmode.solve_addr]
get_case [lemma, in cap_machine.ftlr_binary.Get_binary]
Get_spec_determ [lemma, in cap_machine.ftlr_binary.Get_binary]
get_case [lemma, in cap_machine.ftlr.Get]
get_partial_pref [lemma, in cap_machine.examples.keylist]
get_full_pref [lemma, in cap_machine.examples.keylist]
Get_spec_sind [definition, in cap_machine.rules.rules_Get]
Get_spec_ind [definition, in cap_machine.rules.rules_Get]
Get_spec_failure [constructor, in cap_machine.rules.rules_Get]
Get_spec_success [constructor, in cap_machine.rules.rules_Get]
Get_spec [inductive, in cap_machine.rules.rules_Get]
Get_failure_sind [definition, in cap_machine.rules.rules_Get]
Get_failure_rec [definition, in cap_machine.rules.rules_Get]
Get_failure_ind [definition, in cap_machine.rules.rules_Get]
Get_failure_rect [definition, in cap_machine.rules.rules_Get]
Get_fail_overflow_PC [constructor, in cap_machine.rules.rules_Get]
Get_fail_src_denote [constructor, in cap_machine.rules.rules_Get]
Get_failure [inductive, in cap_machine.rules.rules_Get]
Get_binary [library]
gmap_isSome_convert [lemma, in cap_machine.seal_store]
gmap_none_convert [lemma, in cap_machine.seal_store]
g_size [projection, in cap_machine.examples.adder_adequacy]
g_start [projection, in cap_machine.examples.adder_adequacy]

H

halt [definition, in cap_machine.examples.addr_reg_sample]
Halt [constructor, in cap_machine.machine_base]
Halted [constructor, in cap_machine.cap_lang]
HaltedV [constructor, in cap_machine.cap_lang]
hasValidAddress [definition, in cap_machine.logrel]
hasValidAddress_dec [instance, in cap_machine.logrel]
helpers [section, in cap_machine.proofmode.tactics_helpers]
highloc [definition, in cap_machine.examples.ocpl_lowval_like]
high_not_low [lemma, in cap_machine.examples.ocpl_lowval_like]
hw_5 [definition, in cap_machine.examples.call]
hw_4 [definition, in cap_machine.examples.call]
hw_3 [definition, in cap_machine.examples.call]
hw_2 [definition, in cap_machine.examples.call]
hw_1 [definition, in cap_machine.examples.call]

I

if_Persistent [instance, in cap_machine.ftlr.Load]
if_persistent [instance, in cap_machine.ftlr.interp_weakening]
if_persistent [instance, in cap_machine.ftlr_binary.interp_weakening]
if_Persistent [instance, in cap_machine.ftlr_binary.Load_binary]
IH [definition, in cap_machine.ftlr.interp_weakening]
IH [definition, in cap_machine.ftlr_binary.interp_weakening]
imax [definition, in cap_machine.examples.interval_arch.interval_arch]
imax [definition, in cap_machine.examples.interval.interval]
imaxN [definition, in cap_machine.examples.interval.interval_client_closure]
imaxN [definition, in cap_machine.examples.interval_arch.interval_client_closure_arch]
imax_valid [lemma, in cap_machine.examples.interval_arch.interval_arch]
imax_spec [lemma, in cap_machine.examples.interval_arch.interval_arch]
imax_valid [lemma, in cap_machine.examples.interval.interval]
imax_spec [lemma, in cap_machine.examples.interval.interval]
imin [definition, in cap_machine.examples.interval_arch.interval_arch]
imin [definition, in cap_machine.examples.interval.interval]
iminN [definition, in cap_machine.examples.interval.interval_client_closure]
iminN [definition, in cap_machine.examples.interval_arch.interval_client_closure_arch]
imin_valid [lemma, in cap_machine.examples.interval_arch.interval_arch]
imin_spec [lemma, in cap_machine.examples.interval_arch.interval_arch]
imin_valid [lemma, in cap_machine.examples.interval.interval]
imin_spec [lemma, in cap_machine.examples.interval.interval]
imports [definition, in cap_machine.linking]
InBounds [definition, in machine_utils.finz_base]
InBounds_sub [lemma, in machine_utils.finz_lemmas]
InBounds_compare [lemma, in machine_utils.solve_pure]
included [definition, in cap_machine.proofmode.region]
incr [definition, in cap_machine.examples.counter.counter]
incrementPC [definition, in cap_machine.rules.rules_base]
incrementPC_success_updatePC [lemma, in cap_machine.rules.rules_base]
incrementPC_fail_updatePC [lemma, in cap_machine.rules.rules_base]
incrementPC_overflow_mono [lemma, in cap_machine.rules.rules_base]
incrementPC_None_inv [lemma, in cap_machine.rules.rules_base]
incrementPC_Some_inv [lemma, in cap_machine.rules.rules_base]
increment_macro.MP [variable, in cap_machine.exercises.cerise_modularity]
increment_macro.regg [variable, in cap_machine.exercises.cerise_modularity]
increment_macro.memg [variable, in cap_machine.exercises.cerise_modularity]
increment_macro.Σ [variable, in cap_machine.exercises.cerise_modularity]
increment_macro [section, in cap_machine.exercises.cerise_modularity]
increment_macro.MP [variable, in cap_machine.exercises.cerise_modularity_solutions]
increment_macro.regg [variable, in cap_machine.exercises.cerise_modularity_solutions]
increment_macro.memg [variable, in cap_machine.exercises.cerise_modularity_solutions]
increment_macro.Σ [variable, in cap_machine.exercises.cerise_modularity_solutions]
increment_macro [section, in cap_machine.exercises.cerise_modularity_solutions]
IncrFinZ [record, in machine_utils.classes]
IncrFinZ [inductive, in machine_utils.classes]
IncrFinZ_InCtx [instance, in machine_utils.solve_pure]
IncrFinZ_prove [lemma, in machine_utils.solve_pure]
IncrFinZ_in_ContiguousRegion [instance, in machine_utils.solve_pure]
IncrFinZ_of_ContiguousRegion [instance, in machine_utils.solve_pure]
incr_closure_valid [lemma, in cap_machine.examples.counter.counter_preamble]
incr_instrs_length [definition, in cap_machine.examples.counter.counter_preamble]
incr_addr_of_z_i [lemma, in cap_machine.proofmode.solve_addr]
incr_addr_of_z [lemma, in cap_machine.proofmode.solve_addr]
incr_addr_ne_top [lemma, in cap_machine.proofmode.solve_addr]
incr_addr_ne [lemma, in cap_machine.proofmode.solve_addr]
incr_addr_le [lemma, in cap_machine.proofmode.solve_addr]
incr_addr_trans [lemma, in cap_machine.proofmode.solve_addr]
incr_addr_opt_add_twice' [lemma, in cap_machine.proofmode.solve_addr]
incr_addr_opt_add_twice [lemma, in cap_machine.proofmode.solve_addr]
incr_addr_one_none [lemma, in cap_machine.proofmode.solve_addr]
incr_spec [lemma, in cap_machine.examples.counter.counter]
incr_instrs [definition, in cap_machine.examples.counter.counter]
incr_instrs_length [definition, in cap_machine.examples.counter_binary.counter_binary_preamble_def]
incr_spec_opp [lemma, in cap_machine.examples.counter_binary.counter_binary]
incr_spec [lemma, in cap_machine.examples.counter_binary.counter_binary]
incr_right [definition, in cap_machine.examples.counter_binary.counter_binary]
incr_left [definition, in cap_machine.examples.counter_binary.counter_binary]
incr_instrs [definition, in cap_machine.examples.counter_binary.counter_binary]
incr_macro_spec [lemma, in cap_machine.exercises.cerise_modularity]
incr_instrs [definition, in cap_machine.exercises.cerise_modularity]
incr_decr_closure_valid [lemma, in cap_machine.examples.counter_binary.counter_binary_preamble]
incr_macro_spec [lemma, in cap_machine.exercises.cerise_modularity_solutions]
incr_instrs [definition, in cap_machine.exercises.cerise_modularity_solutions]
InCtx [record, in machine_utils.solve_pure]
InCtx [inductive, in machine_utils.solve_pure]
indom_regs_incl [lemma, in cap_machine.rules.rules_base]
inG_soundness_binaryΣ [instance, in cap_machine.examples.counter_binary.counter_binary_adequacy_theorem]
initial_registers_full_map [lemma, in cap_machine.examples.adder_adequacy]
initial_registers_full_map [lemma, in cap_machine.examples.counter.counter_adequacy]
initial_registers_full_map [lemma, in cap_machine.examples.counter_binary.counter_binary_adequacy]
initial_state_stk [definition, in cap_machine.examples.counter_binary.counter_binary_adequacy]
initial_state [definition, in cap_machine.examples.counter_binary.counter_binary_adequacy]
Ins [constructor, in cap_machine.proofmode.map_simpl]
Instr [constructor, in cap_machine.cap_lang]
instr [inductive, in cap_machine.machine_base]
instr_encodings [section, in cap_machine.examples.addr_reg_sample]
instr_atomic [lemma, in cap_machine.cap_lang]
instr_countable [instance, in cap_machine.machine_base]
instr_eq_dec [instance, in cap_machine.machine_base]
instr_sind [definition, in cap_machine.machine_base]
instr_rec [definition, in cap_machine.machine_base]
instr_ind [definition, in cap_machine.machine_base]
instr_rect [definition, in cap_machine.machine_base]
interp [definition, in cap_machine.logrel_binary]
interp [definition, in cap_machine.logrel]
interp_weakening_ot [lemma, in cap_machine.ftlr.interp_weakening]
interp_weakening [lemma, in cap_machine.ftlr.interp_weakening]
interp_weakening [lemma, in cap_machine.ftlr_binary.interp_weakening]
interp_reg_dupl [lemma, in cap_machine.logrel_binary]
interp_reg_eq [lemma, in cap_machine.logrel_binary]
interp_eq [lemma, in cap_machine.logrel_binary]
interp_persistent [instance, in cap_machine.logrel_binary]
interp_registers [definition, in cap_machine.logrel_binary]
interp_expression [definition, in cap_machine.logrel_binary]
interp_cap_RWX_contractive [instance, in cap_machine.logrel_binary]
interp_cap_E_contractive [instance, in cap_machine.logrel_binary]
interp_cap_RX_contractive [instance, in cap_machine.logrel_binary]
interp_cap_RW_contractive [instance, in cap_machine.logrel_binary]
interp_cap_RO_contractive [instance, in cap_machine.logrel_binary]
interp_cap_O_contractive [instance, in cap_machine.logrel_binary]
interp_cap_RWX [definition, in cap_machine.logrel_binary]
interp_cap_E [definition, in cap_machine.logrel_binary]
interp_cap_RX [definition, in cap_machine.logrel_binary]
interp_cap_RW [definition, in cap_machine.logrel_binary]
interp_cap_RO [definition, in cap_machine.logrel_binary]
interp_cap_O [definition, in cap_machine.logrel_binary]
interp_z [definition, in cap_machine.logrel_binary]
interp_ref_inv [definition, in cap_machine.logrel_binary]
interp_expr [definition, in cap_machine.logrel_binary]
interp_conf [definition, in cap_machine.logrel_binary]
interp_reg [definition, in cap_machine.logrel_binary]
interp_updatePcPerm [lemma, in cap_machine.fundamental]
interp_exec_cond [lemma, in cap_machine.fundamental]
interp_int [lemma, in cap_machine.logrel]
interp_persistent [instance, in cap_machine.logrel]
interp_registers [definition, in cap_machine.logrel]
interp_expression [definition, in cap_machine.logrel]
interp_sr_contractive [instance, in cap_machine.logrel]
interp_cap_RWX_contractive [instance, in cap_machine.logrel]
interp_cap_E_contractive [instance, in cap_machine.logrel]
interp_cap_RX_contractive [instance, in cap_machine.logrel]
interp_cap_RW_contractive [instance, in cap_machine.logrel]
interp_cap_RO_contractive [instance, in cap_machine.logrel]
interp_cap_O_contractive [instance, in cap_machine.logrel]
interp_sb [definition, in cap_machine.logrel]
interp_sr [definition, in cap_machine.logrel]
interp_cap_RWX [definition, in cap_machine.logrel]
interp_cap_E [definition, in cap_machine.logrel]
interp_cap_RX [definition, in cap_machine.logrel]
interp_cap_RW [definition, in cap_machine.logrel]
interp_cap_RO [definition, in cap_machine.logrel]
interp_cap_O [definition, in cap_machine.logrel]
interp_z [definition, in cap_machine.logrel]
interp_ref_inv [definition, in cap_machine.logrel]
interp_expr [definition, in cap_machine.logrel]
interp_conf [definition, in cap_machine.logrel]
interp_reg [definition, in cap_machine.logrel]
interp_exec_cond [lemma, in cap_machine.fundamental_binary]
interp_argeq [lemma, in cap_machine.fundamental_binary]
interp_valid_sealed_if [lemma, in cap_machine.examples.arch_sealing]
interp_valid_sealed [lemma, in cap_machine.examples.arch_sealing]
interp_weakening [library]
interp_weakening [library]
interp1 [definition, in cap_machine.logrel_binary]
interp1 [definition, in cap_machine.logrel]
interp1_contractive [instance, in cap_machine.logrel_binary]
interp1_contractive [instance, in cap_machine.logrel]
interval [section, in cap_machine.examples.interval_arch.interval_arch]
interval [definition, in cap_machine.examples.interval_arch.interval_closure_arch]
interval [definition, in cap_machine.examples.interval.interval_closure]
interval [section, in cap_machine.examples.interval.interval]
interval [library]
intervals_agree [lemma, in cap_machine.examples.interval_arch.interval_arch]
intervals_alloc [lemma, in cap_machine.examples.interval_arch.interval_arch]
intervals_agree [lemma, in cap_machine.examples.interval.interval]
intervals_alloc [lemma, in cap_machine.examples.interval.interval]
interval_closure_functional_spec [lemma, in cap_machine.examples.interval_arch.interval_closure_arch]
interval_closure_instrs_length [definition, in cap_machine.examples.interval_arch.interval_closure_arch]
interval_closure_move_offset [definition, in cap_machine.examples.interval_arch.interval_closure_arch]
interval_closure_move_offset_ [definition, in cap_machine.examples.interval_arch.interval_closure_arch]
interval_closure [definition, in cap_machine.examples.interval_arch.interval_closure_arch]
interval_closure.MP [variable, in cap_machine.examples.interval_arch.interval_closure_arch]
interval_closure.nainv [variable, in cap_machine.examples.interval_arch.interval_closure_arch]
interval_closure.seals [variable, in cap_machine.examples.interval_arch.interval_closure_arch]
interval_closure.regg [variable, in cap_machine.examples.interval_arch.interval_closure_arch]
interval_closure.memg [variable, in cap_machine.examples.interval_arch.interval_closure_arch]
interval_closure.Σ [variable, in cap_machine.examples.interval_arch.interval_closure_arch]
interval_closure [section, in cap_machine.examples.interval_arch.interval_closure_arch]
interval_client_table [definition, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
interval_library_content [definition, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
interval_region_start_offset [projection, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
interval_body_size [projection, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
interval_closure_size [projection, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
interval_region_end [projection, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
interval_body_start [projection, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
interval_closure_start [projection, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
interval_region_start [projection, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
interval_client_region_start_offset [projection, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
interval_client_body_size [projection, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
interval_client_closure_size [projection, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
interval_client_region_end [projection, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
interval_client_body_start [projection, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
interval_client_closure_start [projection, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
interval_client_region_start [projection, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
interval_client_closure_functional_spec [lemma, in cap_machine.examples.interval.interval_client_closure]
interval_client_closure_instrs_length [definition, in cap_machine.examples.interval.interval_client_closure]
interval_client_closure_move_offset [definition, in cap_machine.examples.interval.interval_client_closure]
interval_client_closure_move_offset_ [definition, in cap_machine.examples.interval.interval_client_closure]
interval_client_closure [definition, in cap_machine.examples.interval.interval_client_closure]
interval_client.MP [variable, in cap_machine.examples.interval.interval_client_closure]
interval_client.sealG [variable, in cap_machine.examples.interval.interval_client_closure]
interval_client.nainv [variable, in cap_machine.examples.interval.interval_client_closure]
interval_client.sealg [variable, in cap_machine.examples.interval.interval_client_closure]
interval_client.regg [variable, in cap_machine.examples.interval.interval_client_closure]
interval_client.memg [variable, in cap_machine.examples.interval.interval_client_closure]
interval_client.Σ [variable, in cap_machine.examples.interval.interval_client_closure]
interval_client [section, in cap_machine.examples.interval.interval_client_closure]
interval_env [definition, in cap_machine.examples.interval.interval_client]
interval_client.MP [variable, in cap_machine.examples.interval.interval_client]
interval_client.sealG [variable, in cap_machine.examples.interval.interval_client]
interval_client.nainv [variable, in cap_machine.examples.interval.interval_client]
interval_client.sealg [variable, in cap_machine.examples.interval.interval_client]
interval_client.regg [variable, in cap_machine.examples.interval.interval_client]
interval_client.memg [variable, in cap_machine.examples.interval.interval_client]
interval_client.Σ [variable, in cap_machine.examples.interval.interval_client]
interval_client [section, in cap_machine.examples.interval.interval_client]
interval_closure_functional_spec [lemma, in cap_machine.examples.interval.interval_closure]
interval_closure_instrs_length [definition, in cap_machine.examples.interval.interval_closure]
interval_closure_move_offset [definition, in cap_machine.examples.interval.interval_closure]
interval_closure_move_offset_ [definition, in cap_machine.examples.interval.interval_closure]
interval_closure [definition, in cap_machine.examples.interval.interval_closure]
interval_closure.MP [variable, in cap_machine.examples.interval.interval_closure]
interval_closure.sealG [variable, in cap_machine.examples.interval.interval_closure]
interval_closure.nainv [variable, in cap_machine.examples.interval.interval_closure]
interval_closure.regg [variable, in cap_machine.examples.interval.interval_closure]
interval_closure.memg [variable, in cap_machine.examples.interval.interval_closure]
interval_closure.Σ [variable, in cap_machine.examples.interval.interval_closure]
interval_closure [section, in cap_machine.examples.interval.interval_closure]
interval_env [definition, in cap_machine.examples.interval_arch.interval_client_arch]
interval_client.MP [variable, in cap_machine.examples.interval_arch.interval_client_arch]
interval_client.nainv [variable, in cap_machine.examples.interval_arch.interval_client_arch]
interval_client.sealg [variable, in cap_machine.examples.interval_arch.interval_client_arch]
interval_client.regg [variable, in cap_machine.examples.interval_arch.interval_client_arch]
interval_client.memg [variable, in cap_machine.examples.interval_arch.interval_client_arch]
interval_client.Σ [variable, in cap_machine.examples.interval_arch.interval_client_arch]
interval_client [section, in cap_machine.examples.interval_arch.interval_client_arch]
interval_client_closure_functional_spec [lemma, in cap_machine.examples.interval_arch.interval_client_closure_arch]
interval_client_closure_instrs_length [definition, in cap_machine.examples.interval_arch.interval_client_closure_arch]
interval_client_closure_move_offset [definition, in cap_machine.examples.interval_arch.interval_client_closure_arch]
interval_client_closure_move_offset_ [definition, in cap_machine.examples.interval_arch.interval_client_closure_arch]
interval_client_closure [definition, in cap_machine.examples.interval_arch.interval_client_closure_arch]
interval_client.MP [variable, in cap_machine.examples.interval_arch.interval_client_closure_arch]
interval_client.nainv [variable, in cap_machine.examples.interval_arch.interval_client_closure_arch]
interval_client.sealg [variable, in cap_machine.examples.interval_arch.interval_client_closure_arch]
interval_client.regg [variable, in cap_machine.examples.interval_arch.interval_client_closure_arch]
interval_client.memg [variable, in cap_machine.examples.interval_arch.interval_client_closure_arch]
interval_client.Σ [variable, in cap_machine.examples.interval_arch.interval_client_closure_arch]
interval_client [section, in cap_machine.examples.interval_arch.interval_client_closure_arch]
interval_client_table [definition, in cap_machine.examples.interval.interval_client_adequacy]
interval_library_content [definition, in cap_machine.examples.interval.interval_client_adequacy]
interval_region_start_offset [projection, in cap_machine.examples.interval.interval_client_adequacy]
interval_body_size [projection, in cap_machine.examples.interval.interval_client_adequacy]
interval_closure_size [projection, in cap_machine.examples.interval.interval_client_adequacy]
interval_region_end [projection, in cap_machine.examples.interval.interval_client_adequacy]
interval_body_start [projection, in cap_machine.examples.interval.interval_client_adequacy]
interval_closure_start [projection, in cap_machine.examples.interval.interval_client_adequacy]
interval_region_start [projection, in cap_machine.examples.interval.interval_client_adequacy]
interval_client_region_start_offset [projection, in cap_machine.examples.interval.interval_client_adequacy]
interval_client_body_size [projection, in cap_machine.examples.interval.interval_client_adequacy]
interval_client_closure_size [projection, in cap_machine.examples.interval.interval_client_adequacy]
interval_client_region_end [projection, in cap_machine.examples.interval.interval_client_adequacy]
interval_client_body_start [projection, in cap_machine.examples.interval.interval_client_adequacy]
interval_client_closure_start [projection, in cap_machine.examples.interval.interval_client_adequacy]
interval_client_region_start [projection, in cap_machine.examples.interval.interval_client_adequacy]
interval_client_closure_arch [library]
interval_client_adequacy_arch [library]
interval_closure [library]
interval_client_arch [library]
interval_client_closure [library]
interval_closure_arch [library]
interval_client_adequacy [library]
interval_client [library]
interval_arch [library]
interval.memg [variable, in cap_machine.examples.interval_arch.interval_arch]
interval.memg [variable, in cap_machine.examples.interval.interval]
interval.mono [variable, in cap_machine.examples.interval.interval]
interval.MP [variable, in cap_machine.examples.interval_arch.interval_arch]
interval.MP [variable, in cap_machine.examples.interval.interval]
interval.nainv [variable, in cap_machine.examples.interval_arch.interval_arch]
interval.nainv [variable, in cap_machine.examples.interval.interval]
interval.regg [variable, in cap_machine.examples.interval_arch.interval_arch]
interval.regg [variable, in cap_machine.examples.interval.interval]
interval.seals [variable, in cap_machine.examples.interval_arch.interval_arch]
interval.seals [variable, in cap_machine.examples.interval.interval]
interval.Σ [variable, in cap_machine.examples.interval_arch.interval_arch]
interval.Σ [variable, in cap_machine.examples.interval.interval]
intN [definition, in cap_machine.examples.interval_arch.interval_closure_arch]
intN [definition, in cap_machine.examples.interval.interval_closure]
int_client_correct [lemma, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
int_client_adequacy.memlayout [variable, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
int_client_adequacy.nainv [variable, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
int_client_adequacy.sealg [variable, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
int_client_adequacy.regg [variable, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
int_client_adequacy.memg [variable, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
int_client_adequacy.Σ [variable, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
int_client_adequacy [section, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
int_client_prog [definition, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
int_table_size [projection, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
int_table_end [projection, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
int_table_start [projection, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
int_offsets [definition, in cap_machine.examples.interval.interval_client_closure]
int_table [definition, in cap_machine.examples.interval.interval_client_closure]
int_bounds [definition, in cap_machine.examples.interval.interval_client_closure]
int_offsets [definition, in cap_machine.examples.interval_arch.interval_client_closure_arch]
int_table [definition, in cap_machine.examples.interval_arch.interval_client_closure_arch]
int_bounds [definition, in cap_machine.examples.interval_arch.interval_client_closure_arch]
int_client_correct [lemma, in cap_machine.examples.interval.interval_client_adequacy]
int_client_adequacy.memlayout [variable, in cap_machine.examples.interval.interval_client_adequacy]
int_client_adequacy.sealLLG [variable, in cap_machine.examples.interval.interval_client_adequacy]
int_client_adequacy.nainv [variable, in cap_machine.examples.interval.interval_client_adequacy]
int_client_adequacy.sealg [variable, in cap_machine.examples.interval.interval_client_adequacy]
int_client_adequacy.regg [variable, in cap_machine.examples.interval.interval_client_adequacy]
int_client_adequacy.memg [variable, in cap_machine.examples.interval.interval_client_adequacy]
int_client_adequacy.Σ [variable, in cap_machine.examples.interval.interval_client_adequacy]
int_client_adequacy [section, in cap_machine.examples.interval.interval_client_adequacy]
int_client_prog [definition, in cap_machine.examples.interval.interval_client_adequacy]
int_table_size [projection, in cap_machine.examples.interval.interval_client_adequacy]
int_table_end [projection, in cap_machine.examples.interval.interval_client_adequacy]
int_table_start [projection, in cap_machine.examples.interval.interval_client_adequacy]
invert_incr_addr [lemma, in cap_machine.proofmode.solve_addr]
invN [definition, in cap_machine.examples.adder_adequacy]
inv_buffer_ne [definition, in cap_machine.exercises.restrict_buffer]
inv_secret_ne [definition, in cap_machine.exercises.restrict_buffer]
inv_buffer [definition, in cap_machine.exercises.restrict_buffer]
inv_secret [definition, in cap_machine.exercises.restrict_buffer]
in_range [definition, in cap_machine.proofmode.region]
in_prefix [lemma, in cap_machine.stdpp_extra]
in_region_list [definition, in cap_machine.logrel]
in_region [definition, in cap_machine.logrel]
in_range_is_correctPC [lemma, in cap_machine.machine_base]
in_dom_mkregion' [lemma, in cap_machine.proofmode.mkregion_helpers]
in_dom_mkregion [lemma, in cap_machine.proofmode.mkregion_helpers]
iris_extra [library]
isCorrectPC [inductive, in cap_machine.machine_base]
isCorrectPCb [definition, in cap_machine.machine_base]
isCorrectPCb_nisCorrectPC [lemma, in cap_machine.machine_base]
isCorrectPCb_isCorrectPC [lemma, in cap_machine.machine_base]
isCorrectPC_range_npE [lemma, in cap_machine.proofmode.tactics_helpers]
isCorrectPC_range_perm [lemma, in cap_machine.proofmode.tactics_helpers]
isCorrectPC_contiguous_range [lemma, in cap_machine.proofmode.tactics_helpers]
isCorrectPC_inrange [lemma, in cap_machine.proofmode.tactics_helpers]
isCorrectPC_range [definition, in cap_machine.proofmode.tactics_helpers]
isCorrectPC_ExecPCPerm_InBounds [lemma, in cap_machine.machine_base]
isCorrectPC_le_addr [lemma, in cap_machine.machine_base]
isCorrectPC_withinBounds [lemma, in cap_machine.machine_base]
isCorrectPC_bounds_alt [lemma, in cap_machine.machine_base]
isCorrectPC_bounds [lemma, in cap_machine.machine_base]
isCorrectPC_ra_wb [lemma, in cap_machine.machine_base]
isCorrectPC_dec [lemma, in cap_machine.machine_base]
isCorrectPC_sind [definition, in cap_machine.machine_base]
isCorrectPC_ind [definition, in cap_machine.machine_base]
isCorrectPC_intro [constructor, in cap_machine.machine_base]
isCorrectPC_range_restrict [lemma, in cap_machine.proofmode.contiguous]
isCorrectPC_range_perm_non_E [lemma, in cap_machine.proofmode.contiguous]
isCorrectPC_range_perm [lemma, in cap_machine.proofmode.contiguous]
isCorrectPC_contiguous_range [lemma, in cap_machine.proofmode.contiguous]
isCorrectPC_inrange [lemma, in cap_machine.proofmode.contiguous]
isCorrectPC_range [definition, in cap_machine.proofmode.contiguous]
IsExistential [record, in cap_machine.proofmode.NamedProp]
isInterval [definition, in cap_machine.examples.interval_arch.interval_arch]
isInterval [definition, in cap_machine.examples.interval.interval]
isInterval_persistent [instance, in cap_machine.examples.interval_arch.interval_arch]
isInterval_timeless [instance, in cap_machine.examples.interval_arch.interval_arch]
isInterval_int [definition, in cap_machine.examples.interval_arch.interval_arch]
isInterval_persistent [instance, in cap_machine.examples.interval.interval]
isInterval_timeless [instance, in cap_machine.examples.interval.interval]
isInterval_int [definition, in cap_machine.examples.interval.interval]
isList [definition, in cap_machine.examples.keylist]
isList_extract_and_append_last [lemma, in cap_machine.examples.keylist]
isList_extract_last [lemma, in cap_machine.examples.keylist]
isList_extract [lemma, in cap_machine.examples.keylist]
isList_extract_fst [lemma, in cap_machine.examples.keylist]
isList_NoDup [lemma, in cap_machine.examples.keylist]
isList_cut [lemma, in cap_machine.examples.keylist]
isList_in_fst [lemma, in cap_machine.examples.keylist]
isList_in [lemma, in cap_machine.examples.keylist]
isList_hd_pure [lemma, in cap_machine.examples.keylist]
isList_hd [lemma, in cap_machine.examples.keylist]
isList_timeless [instance, in cap_machine.examples.keylist]
isList_hd_length [lemma, in cap_machine.examples.keylist]
isList_length_hd [lemma, in cap_machine.examples.keylist]
isPerm [definition, in cap_machine.machine_base]
isPermWord [definition, in cap_machine.machine_base]
isPermWord_cap_isPerm [lemma, in cap_machine.machine_base]
isPerm_ne [lemma, in cap_machine.machine_base]
isPerm_refl [lemma, in cap_machine.machine_base]
IsSplittable [record, in cap_machine.proofmode.NamedProp]
isWithin [definition, in cap_machine.machine_base]
isWithinBounds_bounds_alt' [lemma, in cap_machine.machine_base]
isWithinBounds_bounds_alt [lemma, in cap_machine.machine_base]
isWithinCap [definition, in cap_machine.machine_base]
isWithin_finz_seq_between_decomposition [lemma, in cap_machine.proofmode.region]
isWithin_of_le [lemma, in cap_machine.machine_base]
isWithin_implies [lemma, in cap_machine.machine_base]
is_splittable_sep [instance, in cap_machine.proofmode.NamedProp]
is_existential_exist [instance, in cap_machine.proofmode.NamedProp]
is_initial_registers [definition, in cap_machine.examples.adder_adequacy]
is_initial_memory [definition, in cap_machine.examples.adder_adequacy]
is_initial_registers [definition, in cap_machine.examples.counter.counter_adequacy]
is_initial_memory [definition, in cap_machine.examples.counter.counter_adequacy]
is_initial_configuration_right [definition, in cap_machine.examples.counter_binary.counter_binary_adequacy_theorem]
is_initial_configuration_left [definition, in cap_machine.examples.counter_binary.counter_binary_adequacy_theorem]
is_machine_context [definition, in cap_machine.examples.counter_binary.counter_binary_adequacy]
is_machine_program [definition, in cap_machine.examples.counter_binary.counter_binary_adequacy]
is_initial_context [definition, in cap_machine.examples.counter_binary.counter_binary_adequacy]
is_atomic_correct [instance, in cap_machine.cap_lang]
is_atomic [definition, in cap_machine.cap_lang]
is_context_sind [definition, in cap_machine.linking]
is_context_rec [definition, in cap_machine.linking]
is_context_ind [definition, in cap_machine.linking]
is_context_rect [definition, in cap_machine.linking]
is_context_intro [constructor, in cap_machine.linking]
is_context [inductive, in cap_machine.linking]
is_program_sind [definition, in cap_machine.linking]
is_program_ind [definition, in cap_machine.linking]
is_program_intro [constructor, in cap_machine.linking]
is_program [inductive, in cap_machine.linking]
is_AddSubLt_Lt [lemma, in cap_machine.rules.rules_AddSubLt]
is_AddSubLt_Sub [lemma, in cap_machine.rules.rules_AddSubLt]
is_AddSubLt_Add [lemma, in cap_machine.rules.rules_AddSubLt]
is_AddSubLt [definition, in cap_machine.rules.rules_AddSubLt]
is_mutable_range [definition, in cap_machine.machine_base]
is_sealed_with_o [definition, in cap_machine.machine_base]
is_sealed [definition, in cap_machine.machine_base]
is_sealr [definition, in cap_machine.machine_base]
is_cap [definition, in cap_machine.machine_base]
is_sealb [definition, in cap_machine.machine_base]
is_z [definition, in cap_machine.machine_base]
is_Get_GetWType [lemma, in cap_machine.rules.rules_Get]
is_Get_GetOType [lemma, in cap_machine.rules.rules_Get]
is_Get_GetA [lemma, in cap_machine.rules.rules_Get]
is_Get_GetE [lemma, in cap_machine.rules.rules_Get]
is_Get_GetB [lemma, in cap_machine.rules.rules_Get]
is_Get_GetP [lemma, in cap_machine.rules.rules_Get]
is_Get [definition, in cap_machine.rules.rules_Get]
iterate_to_last_spec [lemma, in cap_machine.examples.keylist]
iterate_to_last_spec_middle [lemma, in cap_machine.examples.keylist]
iterate_to_last [definition, in cap_machine.examples.keylist]
iterate_to_last_instr [definition, in cap_machine.examples.keylist]

J

jmp [definition, in cap_machine.examples.addr_reg_sample]
Jmp [constructor, in cap_machine.machine_base]
Jmp [library]
jmp_case [lemma, in cap_machine.ftlr_binary.Jmp_binary]
jmp_to_unknown [lemma, in cap_machine.fundamental]
jmp_case [lemma, in cap_machine.ftlr.Jmp]
jmp_or_fail_spec [lemma, in cap_machine.fundamental_binary]
Jmp_binary [library]
jnz [definition, in cap_machine.examples.addr_reg_sample]
Jnz [constructor, in cap_machine.machine_base]
Jnz [library]
Jnz_spec_sind [definition, in cap_machine.rules.rules_Jnz]
Jnz_spec_ind [definition, in cap_machine.rules.rules_Jnz]
Jnz_spec_success2 [constructor, in cap_machine.rules.rules_Jnz]
Jnz_spec_success1 [constructor, in cap_machine.rules.rules_Jnz]
Jnz_spec_failure [constructor, in cap_machine.rules.rules_Jnz]
Jnz_spec [inductive, in cap_machine.rules.rules_Jnz]
jnz_case [lemma, in cap_machine.ftlr_binary.Jnz_binary]
Jnz_spec_determ [lemma, in cap_machine.ftlr_binary.Jnz_binary]
jnz_case [lemma, in cap_machine.ftlr.Jnz]
Jnz_binary [library]

K

keylist [library]
know_pref [lemma, in cap_machine.examples.keylist]

L

last_app_eq [lemma, in cap_machine.stdpp_extra]
last_app_iff [lemma, in cap_machine.stdpp_extra]
last_lookup [lemma, in cap_machine.stdpp_extra]
last_drop_lt [lemma, in cap_machine.stdpp_extra]
last_rest [lemma, in cap_machine.examples.keylist]
layout [definition, in cap_machine.examples.lse_adequacy]
layout [definition, in cap_machine.exercises.subseg_buffer_call]
Lea [constructor, in cap_machine.machine_base]
Lea [library]
lea_r [definition, in cap_machine.examples.addr_reg_sample]
lea_z [definition, in cap_machine.examples.addr_reg_sample]
Lea_spec_sind [definition, in cap_machine.rules.rules_Lea]
Lea_spec_ind [definition, in cap_machine.rules.rules_Lea]
Lea_spec_failure [constructor, in cap_machine.rules.rules_Lea]
Lea_spec_success_sr [constructor, in cap_machine.rules.rules_Lea]
Lea_spec_success_cap [constructor, in cap_machine.rules.rules_Lea]
Lea_spec [inductive, in cap_machine.rules.rules_Lea]
Lea_failure_sind [definition, in cap_machine.rules.rules_Lea]
Lea_failure_rec [definition, in cap_machine.rules.rules_Lea]
Lea_failure_ind [definition, in cap_machine.rules.rules_Lea]
Lea_failure_rect [definition, in cap_machine.rules.rules_Lea]
Lea_fail_overflow_PC_sr [constructor, in cap_machine.rules.rules_Lea]
Lea_fail_overflow_sr [constructor, in cap_machine.rules.rules_Lea]
Lea_fail_overflow_PC_cap [constructor, in cap_machine.rules.rules_Lea]
Lea_fail_overflow_cap [constructor, in cap_machine.rules.rules_Lea]
Lea_fail_allowed [constructor, in cap_machine.rules.rules_Lea]
Lea_fail_rv_nonconst [constructor, in cap_machine.rules.rules_Lea]
Lea_failure [inductive, in cap_machine.rules.rules_Lea]
lea_case [lemma, in cap_machine.ftlr.Lea]
lea_case [lemma, in cap_machine.ftlr_binary.Lea_binary]
Lea_spec_determ [lemma, in cap_machine.ftlr_binary.Lea_binary]
Lea_binary [library]
lemmas [section, in machine_utils.finz_interval]
lemmas.finz_bound [variable, in machine_utils.finz_interval]
length_restore_locals [lemma, in cap_machine.examples.callback]
length_fst_snd [lemma, in cap_machine.stdpp_extra]
length_zip_l [lemma, in cap_machine.stdpp_extra]
le_addr_withinBounds' [lemma, in cap_machine.machine_base]
le_addr_withinBounds [lemma, in cap_machine.machine_base]
Lib [constructor, in cap_machine.linking]
lib [record, in cap_machine.examples.template_adequacy]
library [definition, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
library [definition, in cap_machine.examples.interval.interval_client_adequacy]
lib_entry_interval [definition, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
lib_entry_fail [definition, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
lib_entry_salloc [definition, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
lib_entry_malloc [definition, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
lib_entry_interval [definition, in cap_machine.examples.interval.interval_client_adequacy]
lib_entry_fail [definition, in cap_machine.examples.interval.interval_client_adequacy]
lib_entry_malloc [definition, in cap_machine.examples.interval.interval_client_adequacy]
lib_region_app [lemma, in cap_machine.examples.template_adequacy]
lib_region [definition, in cap_machine.examples.template_adequacy]
lib_full_content [projection, in cap_machine.examples.template_adequacy]
lib_entrypoint [projection, in cap_machine.examples.template_adequacy]
lib_end [projection, in cap_machine.examples.template_adequacy]
lib_start [projection, in cap_machine.examples.template_adequacy]
lib_entry [record, in cap_machine.examples.template_adequacy]
link [inductive, in cap_machine.linking]
Linking [section, in cap_machine.linking]
linking [library]
linking_table.MP [variable, in cap_machine.exercises.cerise_modularity]
linking_table.regg [variable, in cap_machine.exercises.cerise_modularity]
linking_table.memg [variable, in cap_machine.exercises.cerise_modularity]
linking_table.Σ [variable, in cap_machine.exercises.cerise_modularity]
linking_table [section, in cap_machine.exercises.cerise_modularity]
linking_table.MP [variable, in cap_machine.exercises.cerise_modularity_solutions]
linking_table.regg [variable, in cap_machine.exercises.cerise_modularity_solutions]
linking_table.memg [variable, in cap_machine.exercises.cerise_modularity_solutions]
linking_table.Σ [variable, in cap_machine.exercises.cerise_modularity_solutions]
linking_table [section, in cap_machine.exercises.cerise_modularity_solutions]
Linking.can_address_only [variable, in cap_machine.linking]
Linking.is_main [variable, in cap_machine.linking]
Linking.Symbols [variable, in cap_machine.linking]
Linking.Symbols_countable [variable, in cap_machine.linking]
Linking.Symbols_eq_dec [variable, in cap_machine.linking]
Linking.Word [variable, in cap_machine.linking]
link_table_size [projection, in cap_machine.examples.lse_adequacy]
link_table_end [projection, in cap_machine.examples.lse_adequacy]
link_table_start [projection, in cap_machine.examples.lse_adequacy]
link_table_size [projection, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
link_table_end [projection, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
link_table_start [projection, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
link_table_size [projection, in cap_machine.examples.counter.counter_adequacy]
link_table_end [projection, in cap_machine.examples.counter.counter_adequacy]
link_table_start [projection, in cap_machine.examples.counter.counter_adequacy]
link_table_inv [definition, in cap_machine.exercises.subseg_buffer_malloc]
link_tableN [definition, in cap_machine.exercises.subseg_buffer_malloc]
link_table_size [projection, in cap_machine.exercises.subseg_buffer_call]
link_table_end [projection, in cap_machine.exercises.subseg_buffer_call]
link_table_start [projection, in cap_machine.exercises.subseg_buffer_call]
link_table_size [projection, in cap_machine.examples.counter_binary.counter_binary_adequacy]
link_table_end [projection, in cap_machine.examples.counter_binary.counter_binary_adequacy]
link_table_start [projection, in cap_machine.examples.counter_binary.counter_binary_adequacy]
link_sind [definition, in cap_machine.linking]
link_ind [definition, in cap_machine.linking]
link_main_lib [constructor, in cap_machine.linking]
link_lib_main [constructor, in cap_machine.linking]
link_lib_lib [constructor, in cap_machine.linking]
link_pre_comp_sind [definition, in cap_machine.linking]
link_pre_comp_ind [definition, in cap_machine.linking]
link_pre_comp_intro [constructor, in cap_machine.linking]
link_pre_comp [inductive, in cap_machine.linking]
link_table_size [projection, in cap_machine.examples.interval.interval_client_adequacy]
link_table_end [projection, in cap_machine.examples.interval.interval_client_adequacy]
link_table_start [projection, in cap_machine.examples.interval.interval_client_adequacy]
list [section, in cap_machine.examples.keylist]
list_addr_semiset [instance, in cap_machine.examples.counter_binary.counter_binary_adequacy]
list_to_set_map_to_list [lemma, in cap_machine.stdpp_extra]
list_difference_cons [lemma, in cap_machine.stdpp_extra]
list_to_set_difference [lemma, in cap_machine.stdpp_extra]
list_difference_length [lemma, in cap_machine.stdpp_extra]
list_difference_Permutation [lemma, in cap_machine.stdpp_extra]
list_difference_app [lemma, in cap_machine.stdpp_extra]
list_difference_single_length [lemma, in cap_machine.stdpp_extra]
list_difference_length_ni [lemma, in cap_machine.stdpp_extra]
list_difference_nested [lemma, in cap_machine.stdpp_extra]
list_difference_skip [lemma, in cap_machine.stdpp_extra]
list_difference_length_cons [lemma, in cap_machine.stdpp_extra]
list_difference_nil [lemma, in cap_machine.stdpp_extra]
list_to_set_disj [lemma, in cap_machine.stdpp_extra]
list_filter_forall [lemma, in cap_machine.stdpp_extra]
list_to_map_lookup_is_Some [lemma, in cap_machine.stdpp_extra]
list_to_map_app [lemma, in cap_machine.proofmode.mkregion_helpers]
list.memg [variable, in cap_machine.examples.keylist]
list.mono [variable, in cap_machine.examples.keylist]
list.MP [variable, in cap_machine.examples.keylist]
list.nainv [variable, in cap_machine.examples.keylist]
list.regg [variable, in cap_machine.examples.keylist]
list.seals [variable, in cap_machine.examples.keylist]
list.Σ [variable, in cap_machine.examples.keylist]
Load [constructor, in cap_machine.machine_base]
Load [library]
load_spec [lemma, in cap_machine.exercises.subseg_buffer_closure]
load_code [definition, in cap_machine.exercises.subseg_buffer_closure]
load_case [lemma, in cap_machine.ftlr.Load]
load_res_implies_mem_map [lemma, in cap_machine.ftlr.Load]
load_inr_eq [lemma, in cap_machine.ftlr.Load]
load_r [definition, in cap_machine.examples.addr_reg_sample]
load_spec [lemma, in cap_machine.exercises.restrict_buffer]
load_code [definition, in cap_machine.exercises.restrict_buffer]
load_case [lemma, in cap_machine.ftlr_binary.Load_binary]
Load_spec_determ [lemma, in cap_machine.ftlr_binary.Load_binary]
load_res_implies_mem_map [lemma, in cap_machine.ftlr_binary.Load_binary]
load_inr_eq [lemma, in cap_machine.ftlr_binary.Load_binary]
Load_spec_sind [definition, in cap_machine.rules.rules_Load]
Load_spec_ind [definition, in cap_machine.rules.rules_Load]
Load_spec_failure [constructor, in cap_machine.rules.rules_Load]
Load_spec_success [constructor, in cap_machine.rules.rules_Load]
Load_spec [inductive, in cap_machine.rules.rules_Load]
Load_failure_sind [definition, in cap_machine.rules.rules_Load]
Load_failure_rec [definition, in cap_machine.rules.rules_Load]
Load_failure_ind [definition, in cap_machine.rules.rules_Load]
Load_failure_rect [definition, in cap_machine.rules.rules_Load]
Load_fail_invalid_PC [constructor, in cap_machine.rules.rules_Load]
Load_fail_bounds [constructor, in cap_machine.rules.rules_Load]
Load_fail_const [constructor, in cap_machine.rules.rules_Load]
Load_failure [inductive, in cap_machine.rules.rules_Load]
Load_binary [library]
logN [definition, in cap_machine.logrel_binary]
logN [definition, in cap_machine.logrel]
logrel [section, in cap_machine.logrel_binary]
logrel [section, in cap_machine.logrel]
logrel [library]
logrel_nais [projection, in cap_machine.logrel]
logrel_na_invG [projection, in cap_machine.logrel]
logrel_na_invs [record, in cap_machine.logrel]
logrel_binary [library]
logrel.cfgsg [variable, in cap_machine.logrel_binary]
logrel.memg [variable, in cap_machine.logrel_binary]
logrel.memg [variable, in cap_machine.logrel]
logrel.nainv [variable, in cap_machine.logrel_binary]
logrel.nainv [variable, in cap_machine.logrel]
logrel.regg [variable, in cap_machine.logrel_binary]
logrel.regg [variable, in cap_machine.logrel]
logrel.sealsg [variable, in cap_machine.logrel]
logrel.Σ [variable, in cap_machine.logrel_binary]
logrel.Σ [variable, in cap_machine.logrel]
LookupFramableMachineResource [record, in machine_utils.tactics]
LookupFramableMachineResource_later [instance, in machine_utils.tactics]
LookupFramableMachineResource_sep_r [instance, in machine_utils.tactics]
LookupFramableMachineResource_sep_l [instance, in machine_utils.tactics]
LookupFramableMachineResource_framable [instance, in machine_utils.tactics]
lookup_to_spec_map_None [lemma, in cap_machine.rules_binary.rules_binary_base]
lookup_delete_list_notin [lemma, in cap_machine.stdpp_extra]
lowloc [definition, in cap_machine.examples.ocpl_lowval_like]
lowloc_persistent [instance, in cap_machine.examples.ocpl_lowval_like]
lowval [definition, in cap_machine.examples.ocpl_lowval_like]
lowval_persistent [instance, in cap_machine.examples.ocpl_lowval_like]
lse [library]
lse_adequacy [library]
Lt [constructor, in cap_machine.machine_base]
lt_r_z [definition, in cap_machine.examples.addr_reg_sample]
lt_z_r [definition, in cap_machine.examples.addr_reg_sample]
lt_r_r [definition, in cap_machine.examples.addr_reg_sample]
l_assert_flag_size [projection, in cap_machine.examples.lse_adequacy]
l_assert_cap_size [projection, in cap_machine.examples.lse_adequacy]
l_assert_code_size [projection, in cap_machine.examples.lse_adequacy]
l_assert_end [projection, in cap_machine.examples.lse_adequacy]
l_assert_flag [projection, in cap_machine.examples.lse_adequacy]
l_assert_cap [projection, in cap_machine.examples.lse_adequacy]
l_assert_start [projection, in cap_machine.examples.lse_adequacy]
l_malloc_mem_size [projection, in cap_machine.examples.lse_adequacy]
l_malloc_memptr_size [projection, in cap_machine.examples.lse_adequacy]
l_malloc_code_size [projection, in cap_machine.examples.lse_adequacy]
l_malloc_end [projection, in cap_machine.examples.lse_adequacy]
l_malloc_mem_start [projection, in cap_machine.examples.lse_adequacy]
l_malloc_memptr [projection, in cap_machine.examples.lse_adequacy]
l_malloc_start [projection, in cap_machine.examples.lse_adequacy]
l_assert_flag_size [projection, in cap_machine.exercises.subseg_buffer_call]
l_assert_cap_size [projection, in cap_machine.exercises.subseg_buffer_call]
l_assert_code_size [projection, in cap_machine.exercises.subseg_buffer_call]
l_assert_end [projection, in cap_machine.exercises.subseg_buffer_call]
l_assert_flag [projection, in cap_machine.exercises.subseg_buffer_call]
l_assert_cap [projection, in cap_machine.exercises.subseg_buffer_call]
l_assert_start [projection, in cap_machine.exercises.subseg_buffer_call]
l_malloc_mem_size [projection, in cap_machine.exercises.subseg_buffer_call]
l_malloc_memptr_size [projection, in cap_machine.exercises.subseg_buffer_call]
l_malloc_code_size [projection, in cap_machine.exercises.subseg_buffer_call]
l_malloc_end [projection, in cap_machine.exercises.subseg_buffer_call]
l_malloc_mem_start [projection, in cap_machine.exercises.subseg_buffer_call]
l_malloc_memptr [projection, in cap_machine.exercises.subseg_buffer_call]
l_malloc_start [projection, in cap_machine.exercises.subseg_buffer_call]

M

MachineParameters [record, in cap_machine.machine_parameters]
machine_run_correct [lemma, in cap_machine.machine_run]
machine_run [definition, in cap_machine.machine_run]
machine_component [definition, in cap_machine.examples.counter_binary.counter_binary_adequacy]
machine_run [library]
machine_parameters [library]
machine_base [library]
macros [section, in cap_machine.examples.macros_new]
macros [section, in cap_machine.examples.macros_binary]
macros [section, in cap_machine.examples.macros]
macros [library]
macros_new [library]
macros_binary [library]
macros.cfg [variable, in cap_machine.examples.macros_binary]
macros.memg [variable, in cap_machine.examples.macros_new]
macros.memg [variable, in cap_machine.examples.macros_binary]
macros.memg [variable, in cap_machine.examples.macros]
macros.MP [variable, in cap_machine.examples.macros_new]
macros.MP [variable, in cap_machine.examples.macros_binary]
macros.MP [variable, in cap_machine.examples.macros]
macros.nainv [variable, in cap_machine.examples.macros_new]
macros.nainv [variable, in cap_machine.examples.macros_binary]
macros.nainv [variable, in cap_machine.examples.macros]
macros.regg [variable, in cap_machine.examples.macros_new]
macros.regg [variable, in cap_machine.examples.macros_binary]
macros.regg [variable, in cap_machine.examples.macros]
macros.seals [variable, in cap_machine.examples.macros_new]
macros.Σ [variable, in cap_machine.examples.macros_new]
macros.Σ [variable, in cap_machine.examples.macros_binary]
macros.Σ [variable, in cap_machine.examples.macros]
Main [constructor, in cap_machine.linking]
main_of [definition, in cap_machine.examples.counter_binary.counter_binary_adequacy]
makeint [definition, in cap_machine.examples.interval_arch.interval_arch]
makeint [definition, in cap_machine.examples.interval.interval]
makeint_spec [lemma, in cap_machine.examples.interval_arch.interval_arch]
makeint_spec [lemma, in cap_machine.examples.interval.interval]
make_seal_spec [lemma, in cap_machine.examples.dynamic_sealing]
make_seal_preamble [definition, in cap_machine.examples.dynamic_sealing]
make_seal_preamble_instrs [definition, in cap_machine.examples.dynamic_sealing]
make_seal_spec [lemma, in cap_machine.examples.arch_sealing]
make_seal_preamble [definition, in cap_machine.examples.arch_sealing]
make_seal_preamble_instrs [definition, in cap_machine.examples.arch_sealing]
makint_valid [lemma, in cap_machine.examples.interval_arch.interval_arch]
makint_valid [lemma, in cap_machine.examples.interval.interval]
malloc [definition, in cap_machine.examples.macros]
malloc [library]
mallocN [definition, in cap_machine.examples.counter.counter_adequacy]
mallocN [definition, in cap_machine.examples.interval.interval_client_closure]
mallocN [definition, in cap_machine.exercises.subseg_buffer_malloc]
mallocN [definition, in cap_machine.examples.counter_binary.counter_binary_preamble]
mallocN [definition, in cap_machine.examples.interval_arch.interval_client_closure_arch]
mallocN [definition, in cap_machine.examples.counter_binary.counter_binary_preamble_left]
malloc_spec [lemma, in cap_machine.examples.macros_new]
malloc_spec_alt [lemma, in cap_machine.examples.macros_new]
malloc_instrs [definition, in cap_machine.examples.macros_new]
malloc_inv_binary [definition, in cap_machine.examples.malloc_binary]
malloc_library_content [definition, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
malloc_mem_size [projection, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
malloc_memptr_size [projection, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
malloc_code_size [projection, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
malloc_end [projection, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
malloc_mem_start [projection, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
malloc_memptr [projection, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
malloc_start [projection, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
malloc_s_spec [lemma, in cap_machine.examples.macros_binary]
malloc_s [definition, in cap_machine.examples.macros_binary]
malloc_mem_size [projection, in cap_machine.examples.counter.counter_adequacy]
malloc_memptr_size [projection, in cap_machine.examples.counter.counter_adequacy]
malloc_code_size [projection, in cap_machine.examples.counter.counter_adequacy]
malloc_end [projection, in cap_machine.examples.counter.counter_adequacy]
malloc_mem_start [projection, in cap_machine.examples.counter.counter_adequacy]
malloc_memptr [projection, in cap_machine.examples.counter.counter_adequacy]
malloc_start [projection, in cap_machine.examples.counter.counter_adequacy]
malloc_inv [definition, in cap_machine.examples.malloc]
malloc_subroutine_instrs [definition, in cap_machine.examples.malloc]
malloc_subroutine_instrs_length [definition, in cap_machine.examples.malloc]
malloc_subroutine_instrs' [definition, in cap_machine.examples.malloc]
malloc_nainv [definition, in cap_machine.exercises.subseg_buffer_malloc]
malloc_codeN [definition, in cap_machine.exercises.subseg_buffer_malloc]
malloc_versionN [definition, in cap_machine.exercises.subseg_buffer_malloc]
malloc_program.MP [variable, in cap_machine.exercises.subseg_buffer_malloc]
malloc_program.nainv [variable, in cap_machine.exercises.subseg_buffer_malloc]
malloc_program.sealsg [variable, in cap_machine.exercises.subseg_buffer_malloc]
malloc_program.regg [variable, in cap_machine.exercises.subseg_buffer_malloc]
malloc_program.memg [variable, in cap_machine.exercises.subseg_buffer_malloc]
malloc_program.Σ [variable, in cap_machine.exercises.subseg_buffer_malloc]
malloc_program [section, in cap_machine.exercises.subseg_buffer_malloc]
malloc_spec_alt [lemma, in cap_machine.examples.macros]
malloc_spec [lemma, in cap_machine.examples.macros]
malloc_instrs [definition, in cap_machine.examples.macros]
malloc_call_inv [definition, in cap_machine.exercises.subseg_buffer_call]
malloc_mem_size [projection, in cap_machine.examples.counter_binary.counter_binary_adequacy]
malloc_memptr_size [projection, in cap_machine.examples.counter_binary.counter_binary_adequacy]
malloc_code_size [projection, in cap_machine.examples.counter_binary.counter_binary_adequacy]
malloc_end [projection, in cap_machine.examples.counter_binary.counter_binary_adequacy]
malloc_mem_start [projection, in cap_machine.examples.counter_binary.counter_binary_adequacy]
malloc_memptr [projection, in cap_machine.examples.counter_binary.counter_binary_adequacy]
malloc_start [projection, in cap_machine.examples.counter_binary.counter_binary_adequacy]
malloc_library_content [definition, in cap_machine.examples.interval.interval_client_adequacy]
malloc_mem_size [projection, in cap_machine.examples.interval.interval_client_adequacy]
malloc_memptr_size [projection, in cap_machine.examples.interval.interval_client_adequacy]
malloc_code_size [projection, in cap_machine.examples.interval.interval_client_adequacy]
malloc_end [projection, in cap_machine.examples.interval.interval_client_adequacy]
malloc_mem_start [projection, in cap_machine.examples.interval.interval_client_adequacy]
malloc_memptr [projection, in cap_machine.examples.interval.interval_client_adequacy]
malloc_start [projection, in cap_machine.examples.interval.interval_client_adequacy]
malloc_binary [library]
map_of_regs_4 [lemma, in cap_machine.rules_binary.rules_binary_base]
map_of_regs_3 [lemma, in cap_machine.rules_binary.rules_binary_base]
map_of_regs_2 [lemma, in cap_machine.rules_binary.rules_binary_base]
map_of_regs_1 [lemma, in cap_machine.rules_binary.rules_binary_base]
map_to_list_delete_fst [lemma, in cap_machine.stdpp_extra]
map_to_list_delete [lemma, in cap_machine.stdpp_extra]
map_eq' [lemma, in cap_machine.stdpp_extra]
map_difference_het [definition, in cap_machine.stdpp_extra]
map_to_list_fst [lemma, in cap_machine.stdpp_extra]
map_of_regs_4 [lemma, in cap_machine.rules.rules_base]
map_of_regs_3 [lemma, in cap_machine.rules.rules_base]
map_of_regs_2 [lemma, in cap_machine.rules.rules_base]
map_of_regs_1 [lemma, in cap_machine.rules.rules_base]
map_simpl [library]
match_perm_with_E_rewrite [lemma, in cap_machine.ftlr.Restrict]
mbkregion [definition, in cap_machine.proofmode.mkregion_helpers]
mbkregion_prepare [lemma, in cap_machine.proofmode.mkregion_helpers]
mclear [definition, in cap_machine.examples.macros]
mclear_spec [lemma, in cap_machine.examples.macros]
mclear_iter_spec [lemma, in cap_machine.examples.macros]
mclear_instrs [definition, in cap_machine.examples.macros]
mclear_off_iter [definition, in cap_machine.examples.macros]
mclear_off_end [definition, in cap_machine.examples.macros]
mem [definition, in cap_machine.cap_lang]
Mem [definition, in cap_machine.machine_base]
memG [record, in cap_machine.rules.rules_base]
memG_irisG [instance, in cap_machine.rules.rules_base]
memMap_resource_2ne [lemma, in cap_machine.rules_binary.rules_binary_base]
memMap_delete [lemma, in cap_machine.rules.rules_base]
memMap_resource_2gen_clater_dq [lemma, in cap_machine.rules.rules_base]
memMap_resource_2gen_clater [lemma, in cap_machine.rules.rules_base]
memMap_resource_2gen_d_dq [lemma, in cap_machine.rules.rules_base]
memMap_resource_2gen_d [lemma, in cap_machine.rules.rules_base]
memMap_resource_2gen [lemma, in cap_machine.rules.rules_base]
memMap_resource_2ne_apply [lemma, in cap_machine.rules.rules_base]
memMap_resource_2ne [lemma, in cap_machine.rules.rules_base]
memMap_resource_1_dq [lemma, in cap_machine.rules.rules_base]
memMap_resource_1 [lemma, in cap_machine.rules.rules_base]
memMap_resource_0 [lemma, in cap_machine.rules.rules_base]
MemNum [definition, in cap_machine.addr_reg]
memory_layout [record, in cap_machine.examples.lse_adequacy]
memory_layout [record, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
memory_layout [record, in cap_machine.examples.adder_adequacy]
memory_layout [record, in cap_machine.examples.counter.counter_adequacy]
memory_layout [record, in cap_machine.exercises.subseg_buffer_call]
memory_layout [record, in cap_machine.examples.counter_binary.counter_binary_adequacy]
memory_layout [record, in cap_machine.examples.interval.interval_client_adequacy]
memory_inv [record, in cap_machine.examples.template_adequacy]
memreg_specUR [abbreviation, in cap_machine.rules_binary.rules_binary_base]
memspecUR [abbreviation, in cap_machine.rules_binary.rules_binary_base]
memspec_heap_update_inSepM [lemma, in cap_machine.rules_binary.rules_binary_base]
memspec_v_implies_m_v [lemma, in cap_machine.rules_binary.rules_binary_base]
memspec_heap_valid_allSepM [lemma, in cap_machine.rules_binary.rules_binary_base]
memspec_heap_valid_inclSepM [lemma, in cap_machine.rules_binary.rules_binary_base]
memspec_heap_valid_inSepM' [lemma, in cap_machine.rules_binary.rules_binary_base]
memspec_heap_valid_inSepM [lemma, in cap_machine.rules_binary.rules_binary_base]
memspec_pointsto_update [lemma, in cap_machine.rules_binary.rules_binary_base]
memspec_pointsto_valid_2 [lemma, in cap_machine.rules_binary.rules_binary_base]
memspec_pointsto_valid [lemma, in cap_machine.rules_binary.rules_binary_base]
memspec_pointsto_agree [lemma, in cap_machine.rules_binary.rules_binary_base]
memspec_pointsto_timeless [instance, in cap_machine.rules_binary.rules_binary_base]
memspec_pointsto [definition, in cap_machine.rules_binary.rules_binary_base]
memspec_alloc_big [lemma, in cap_machine.examples.counter_binary.counter_binary_adequacy]
memspec_pointsto_alloc [lemma, in cap_machine.examples.counter_binary.counter_binary_adequacy]
mem_map_recover_res [lemma, in cap_machine.ftlr_binary.Store_binary]
mem_map_implies_pure_conds [lemma, in cap_machine.ftlr_binary.Store_binary]
mem_map_recover_res [lemma, in cap_machine.ftlr.Load]
mem_map_implies_pure_conds [lemma, in cap_machine.ftlr.Load]
mem_map_recover_res [lemma, in cap_machine.ftlr.Store]
mem_map_implies_pure_conds [lemma, in cap_machine.ftlr.Store]
mem_implies_allow_store_map [lemma, in cap_machine.rules.rules_Store]
mem_neq_implies_allow_store_map [lemma, in cap_machine.rules.rules_Store]
mem_eq_implies_allow_store_map [lemma, in cap_machine.rules.rules_Store]
mem_remove_dq [lemma, in cap_machine.rules.rules_base]
mem_gen_memG [projection, in cap_machine.rules.rules_base]
mem_invG [projection, in cap_machine.rules.rules_base]
mem_map_recover_res [lemma, in cap_machine.ftlr_binary.Load_binary]
mem_map_implies_pure_conds [lemma, in cap_machine.ftlr_binary.Load_binary]
mem_implies_loadv [lemma, in cap_machine.rules.rules_Load]
mem_implies_allow_load_map [lemma, in cap_machine.rules.rules_Load]
mem_neq_implies_allow_load_map [lemma, in cap_machine.rules.rules_Load]
mem_eq_implies_allow_load_map [lemma, in cap_machine.rules.rules_Load]
minimal_counter [library]
minv [projection, in cap_machine.examples.template_adequacy]
minv_sep [definition, in cap_machine.examples.template_adequacy]
minv_sub_restrict [lemma, in cap_machine.examples.template_adequacy]
minv_sub_extend [lemma, in cap_machine.examples.template_adequacy]
minv_dom_correct [projection, in cap_machine.examples.template_adequacy]
minv_dom [projection, in cap_machine.examples.template_adequacy]
MkAsWeakFinZIncr [projection, in machine_utils.classes]
MkAsWeakFinZIncr [constructor, in machine_utils.classes]
MkCbvTc [projection, in machine_utils.classes]
MkCbvTc [constructor, in machine_utils.classes]
MkDecodeInstr [projection, in cap_machine.proofmode.classes]
MkDecodeInstr [constructor, in cap_machine.proofmode.classes]
MkFinZEq [projection, in machine_utils.classes]
MkFinZEq [constructor, in machine_utils.classes]
MkFinZLe [projection, in machine_utils.classes]
MkFinZLe [constructor, in machine_utils.classes]
MkFinZLt [projection, in machine_utils.classes]
MkFinZLt [constructor, in machine_utils.classes]
MkFinZOffsetLe [projection, in machine_utils.classes]
MkFinZOffsetLe [constructor, in machine_utils.classes]
MkFinZOffsetLt [projection, in machine_utils.classes]
MkFinZOffsetLt [constructor, in machine_utils.classes]
MkIncrFinZ [projection, in machine_utils.classes]
MkIncrFinZ [constructor, in machine_utils.classes]
MkInCtx [projection, in machine_utils.solve_pure]
MkInCtx [constructor, in machine_utils.solve_pure]
mkintN [definition, in cap_machine.examples.interval.interval_client_closure]
mkintN [definition, in cap_machine.examples.interval_arch.interval_client_closure_arch]
mkregion [definition, in cap_machine.proofmode.mkregion_helpers]
mkregion_sepM_to_sepL2_zip [lemma, in cap_machine.proofmode.mkregion_helpers]
mkregion_prepare_spec [lemma, in cap_machine.proofmode.mkregion_helpers]
mkregion_prepare [lemma, in cap_machine.proofmode.mkregion_helpers]
mkregion_sepM_to_sepL2 [lemma, in cap_machine.proofmode.mkregion_helpers]
mkregion_lookup [lemma, in cap_machine.proofmode.mkregion_helpers]
mkregion_app [lemma, in cap_machine.proofmode.mkregion_helpers]
mkregion_helpers [library]
MkSimplTc [projection, in machine_utils.classes]
MkSimplTc [constructor, in machine_utils.classes]
MkZToFinZ [projection, in machine_utils.classes]
MkZToFinZ [constructor, in machine_utils.classes]
mk_initial_memory [definition, in cap_machine.examples.adder_adequacy]
mk_initial_memory [definition, in cap_machine.examples.counter.counter_adequacy]
mk_initial_memory_right [definition, in cap_machine.examples.counter_binary.counter_binary_adequacy]
mk_initial_memory_left [definition, in cap_machine.examples.counter_binary.counter_binary_adequacy]
monotone [section, in cap_machine.monotone]
monotone [definition, in cap_machine.monotone]
monotone [library]
monotoneC [definition, in cap_machine.monotone]
monotoneR [definition, in cap_machine.monotone]
monotoneUR [definition, in cap_machine.monotone]
monotone_update [lemma, in cap_machine.monotone]
monotone_local_update_get_frag [lemma, in cap_machine.monotone]
monotone_local_update_grow [lemma, in cap_machine.monotone]
monotone_equivI [lemma, in cap_machine.monotone]
monotone_empty [instance, in cap_machine.monotone]
monotone_cmra_discrete [instance, in cap_machine.monotone]
monotone_core_id [instance, in cap_machine.monotone]
monotone_cmra_total [instance, in cap_machine.monotone]
monotone_cmra_mixin [definition, in cap_machine.monotone]
monotone_included [lemma, in cap_machine.monotone]
monotone_op_proper [instance, in cap_machine.monotone]
monotone_op_ne [instance, in cap_machine.monotone]
monotone_op_ne' [instance, in cap_machine.monotone]
monotone_validN_proper [instance, in cap_machine.monotone]
monotone_validN_ne [instance, in cap_machine.monotone]
monotone_idemp [lemma, in cap_machine.monotone]
monotone_assoc [instance, in cap_machine.monotone]
monotone_comm [instance, in cap_machine.monotone]
monotone_pcore [instance, in cap_machine.monotone]
monotone_op [instance, in cap_machine.monotone]
monotone_valid [instance, in cap_machine.monotone]
monotone_validN [instance, in cap_machine.monotone]
monotone_ofe_mixin [definition, in cap_machine.monotone]
monotone_equiv [instance, in cap_machine.monotone]
monotone_dist [instance, in cap_machine.monotone]
monotone.A [variable, in cap_machine.monotone]
monotone.R [variable, in cap_machine.monotone]
Mov [constructor, in cap_machine.machine_base]
Mov [library]
move_r [definition, in cap_machine.examples.addr_reg_sample]
move_z [definition, in cap_machine.examples.addr_reg_sample]
mov_case [lemma, in cap_machine.ftlr.Mov]
Mov_spec_sind [definition, in cap_machine.rules.rules_Mov]
Mov_spec_ind [definition, in cap_machine.rules.rules_Mov]
Mov_spec_failure [constructor, in cap_machine.rules.rules_Mov]
Mov_spec [inductive, in cap_machine.rules.rules_Mov]
mov_case [lemma, in cap_machine.ftlr_binary.Mov_binary]
Mov_spec_determ [lemma, in cap_machine.ftlr_binary.Mov_binary]
Mov_binary [library]
ms_of [definition, in cap_machine.examples.counter_binary.counter_binary_adequacy]

N

N [definition, in cap_machine.exercises.subseg_buffer]
N [definition, in cap_machine.examples.minimal_counter]
named [section, in cap_machine.proofmode.NamedProp]
named [definition, in cap_machine.proofmode.NamedProp]
NamedProp [library]
named.PROP [variable, in cap_machine.proofmode.NamedProp]
Nclosure [definition, in cap_machine.exercises.subseg_buffer_closure]
NextI [constructor, in cap_machine.cap_lang]
NextIV [constructor, in cap_machine.cap_lang]
next_lt_top [lemma, in cap_machine.proofmode.solve_addr]
next_le_i [lemma, in cap_machine.proofmode.solve_addr]
next_lt_i [lemma, in cap_machine.proofmode.solve_addr]
next_lt [lemma, in cap_machine.proofmode.solve_addr]
NoDup_of_sepL2_exclusive [lemma, in cap_machine.iris_extra]
NoDup_map_to_list_fst [lemma, in cap_machine.stdpp_extra]
NoDup_fst [lemma, in cap_machine.stdpp_extra]
NoDup_prefix [lemma, in cap_machine.stdpp_extra]
nonZero [definition, in cap_machine.machine_base]
normal_always_base_reducible [lemma, in cap_machine.cap_lang]
normal_always_step [lemma, in cap_machine.cap_lang]
not_elem_of_finz_seq_between [lemma, in machine_utils.finz_interval]
not_elem_of_list [lemma, in cap_machine.stdpp_extra]
not_isCorrectPC_bounds [lemma, in cap_machine.machine_base]
not_isCorrectPC_perm [lemma, in cap_machine.machine_base]
NthSubBlock [definition, in cap_machine.proofmode.proofmode]
NthSubBlock_S [lemma, in cap_machine.proofmode.proofmode]
NthSubBlock_O_last [lemma, in cap_machine.proofmode.proofmode]
NthSubBlock_O_rest [lemma, in cap_machine.proofmode.proofmode]
n_to_regname [definition, in cap_machine.addr_reg]

O

O [constructor, in cap_machine.machine_base]
ocpl [module, in cap_machine.examples.template_adequacy_ocpl]
OCPLLibrary [definition, in cap_machine.examples.lse_adequacy]
OCPLLibrary [definition, in cap_machine.exercises.subseg_buffer_call]
ocpl_lowval_like [library]
ocpl.assertInv [definition, in cap_machine.examples.template_adequacy_ocpl]
ocpl.assertN [definition, in cap_machine.examples.template_adequacy_ocpl]
ocpl.assert_library_content [definition, in cap_machine.examples.template_adequacy_ocpl]
ocpl.assert_flag_size [projection, in cap_machine.examples.template_adequacy_ocpl]
ocpl.assert_cap_size [projection, in cap_machine.examples.template_adequacy_ocpl]
ocpl.assert_code_size [projection, in cap_machine.examples.template_adequacy_ocpl]
ocpl.assert_end [projection, in cap_machine.examples.template_adequacy_ocpl]
ocpl.assert_flag [projection, in cap_machine.examples.template_adequacy_ocpl]
ocpl.assert_cap [projection, in cap_machine.examples.template_adequacy_ocpl]
ocpl.assert_start [projection, in cap_machine.examples.template_adequacy_ocpl]
ocpl.flag_inv_sub [lemma, in cap_machine.examples.template_adequacy_ocpl]
ocpl.flag_inv_is_initial_memory [lemma, in cap_machine.examples.template_adequacy_ocpl]
ocpl.flag_inv [definition, in cap_machine.examples.template_adequacy_ocpl]
ocpl.library [definition, in cap_machine.examples.template_adequacy_ocpl]
ocpl.libs_disjoint [projection, in cap_machine.examples.template_adequacy_ocpl]
ocpl.lib_entry_assert [definition, in cap_machine.examples.template_adequacy_ocpl]
ocpl.lib_entry_malloc [definition, in cap_machine.examples.template_adequacy_ocpl]
ocpl.mallocInv [definition, in cap_machine.examples.template_adequacy_ocpl]
ocpl.mallocN [definition, in cap_machine.examples.template_adequacy_ocpl]
ocpl.malloc_library_content [definition, in cap_machine.examples.template_adequacy_ocpl]
ocpl.malloc_mem_size [projection, in cap_machine.examples.template_adequacy_ocpl]
ocpl.malloc_memptr_size [projection, in cap_machine.examples.template_adequacy_ocpl]
ocpl.malloc_code_size [projection, in cap_machine.examples.template_adequacy_ocpl]
ocpl.malloc_end [projection, in cap_machine.examples.template_adequacy_ocpl]
ocpl.malloc_mem_start [projection, in cap_machine.examples.template_adequacy_ocpl]
ocpl.malloc_memptr [projection, in cap_machine.examples.template_adequacy_ocpl]
ocpl.malloc_start [projection, in cap_machine.examples.template_adequacy_ocpl]
ocpl.ocpl_template_adequacy [lemma, in cap_machine.examples.template_adequacy_ocpl]
ocpl.ocpl_library [record, in cap_machine.examples.template_adequacy_ocpl]
ocpl.OK_dom_correct [definition, in cap_machine.examples.template_adequacy_ocpl]
ocpl.OK_dom [definition, in cap_machine.examples.template_adequacy_ocpl]
ocpl.OK_invariant [definition, in cap_machine.examples.template_adequacy_ocpl]
offset_to_interval [definition, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
offset_to_checki [definition, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
offset_to_awkward [definition, in cap_machine.examples.counter.counter_adequacy]
offset_to_awkward [definition, in cap_machine.examples.counter_binary.counter_binary_adequacy]
offset_to_cont_call [definition, in cap_machine.examples.call]
offset_to_interval [definition, in cap_machine.examples.interval.interval_client_adequacy]
offset_to_checki [definition, in cap_machine.examples.interval.interval_client_adequacy]
offset_to_f [definition, in cap_machine.examples.adder]
of_to_val [lemma, in cap_machine.cap_lang]
of_val [definition, in cap_machine.cap_lang]
OK_dom_correct [definition, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
OK_dom [definition, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
OK_invariant [definition, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
OK_dom_correct [definition, in cap_machine.examples.interval.interval_client_adequacy]
OK_dom [definition, in cap_machine.examples.interval.interval_client_adequacy]
OK_invariant [definition, in cap_machine.examples.interval.interval_client_adequacy]
ONum [definition, in cap_machine.addr_reg]
opsem [section, in cap_machine.cap_lang]
Op_RegName_eq [instance, in cap_machine.addr_reg]
OType [abbreviation, in cap_machine.addr_reg]
otype_of_arg_mono [lemma, in cap_machine.cap_lang]
otype_of_argument_Some_inv' [lemma, in cap_machine.cap_lang]
otype_of_argument_Some_inv [lemma, in cap_machine.cap_lang]
otype_of_argument [definition, in cap_machine.cap_lang]
otype_inhabited [instance, in cap_machine.machine_base]
otype_incr_eq [abbreviation, in cap_machine.addr_reg]

P

pair_eq_inv [lemma, in cap_machine.stdpp_extra]
PC [constructor, in cap_machine.addr_reg]
PCPerm_nonO [lemma, in cap_machine.machine_base]
Perm [inductive, in cap_machine.machine_base]
PermFlows [definition, in cap_machine.machine_base]
PermFlowsTo [definition, in cap_machine.machine_base]
PermFlowsToCap [definition, in cap_machine.machine_base]
PermFlowsToPermFlows [lemma, in cap_machine.machine_base]
PermFlowsToReflexive [lemma, in cap_machine.machine_base]
PermFlowsToTransitive [lemma, in cap_machine.machine_base]
PermFlows_trans [lemma, in cap_machine.machine_base]
PermFlows_refl [lemma, in cap_machine.machine_base]
permit_unseal_flowsto [lemma, in cap_machine.ftlr.interp_weakening]
permit_seal_flowsto [lemma, in cap_machine.ftlr.interp_weakening]
permit_unseal [definition, in cap_machine.machine_base]
permit_seal [definition, in cap_machine.machine_base]
PermPairFlows_interp_preserved [lemma, in cap_machine.ftlr.Restrict]
perm_countable [instance, in cap_machine.machine_base]
perm_eq_dec [instance, in cap_machine.machine_base]
Perm_sind [definition, in cap_machine.machine_base]
Perm_rec [definition, in cap_machine.machine_base]
Perm_ind [definition, in cap_machine.machine_base]
Perm_rect [definition, in cap_machine.machine_base]
pointsto_exclusive [lemma, in cap_machine.examples.ocpl_lowval_like]
pointsto_decomposition_spec [lemma, in cap_machine.proofmode.region]
pointsto_decomposition [lemma, in cap_machine.proofmode.region]
pos_word_Persistent [instance, in cap_machine.examples.counter.counter]
pos_word_Timeless [instance, in cap_machine.examples.counter.counter]
pos_word [definition, in cap_machine.examples.counter.counter]
prefix_of_nil [lemma, in cap_machine.stdpp_extra]
prefLL [definition, in cap_machine.examples.keylist]
prefR [definition, in cap_machine.examples.keylist]
prepa_assert_spec [lemma, in cap_machine.exercises.subseg_buffer_call]
pre_component [definition, in cap_machine.linking]
prim_step_and_step_exec [lemma, in cap_machine.cap_lang]
prim_step_exec_inv [lemma, in cap_machine.cap_lang]
prim_step_sind [definition, in cap_machine.cap_lang]
prim_step_ind [definition, in cap_machine.cap_lang]
prim_step [inductive, in cap_machine.cap_lang]
principal [definition, in cap_machine.monotone]
principal_included [lemma, in cap_machine.monotone]
principal_includedN [lemma, in cap_machine.monotone]
principal_op_R' [lemma, in cap_machine.monotone]
principal_op_R [lemma, in cap_machine.monotone]
principal_op_RN [lemma, in cap_machine.monotone]
principal_R_op [lemma, in cap_machine.monotone]
principal_R_opN [lemma, in cap_machine.monotone]
principal_R_opN_base [lemma, in cap_machine.monotone]
principal_inj [instance, in cap_machine.monotone]
principal_injN [instance, in cap_machine.monotone]
principal_inj_general' [instance, in cap_machine.monotone]
principal_injN_general' [instance, in cap_machine.monotone]
principal_inj_general [lemma, in cap_machine.monotone]
principal_injN_general [lemma, in cap_machine.monotone]
principal_discrete [instance, in cap_machine.monotone]
principal_proper [instance, in cap_machine.monotone]
principal_ne [instance, in cap_machine.monotone]
priv_libs [projection, in cap_machine.examples.template_adequacy]
prod_merge [definition, in cap_machine.stdpp_extra]
prod_op [definition, in cap_machine.stdpp_extra]
prog [record, in cap_machine.examples.template_adequacy]
program_closure_ro.nainv [variable, in cap_machine.exercises.restrict_buffer]
program_closure_ro.MP [variable, in cap_machine.exercises.restrict_buffer]
program_closure_ro.sealsg [variable, in cap_machine.exercises.restrict_buffer]
program_closure_ro.regg [variable, in cap_machine.exercises.restrict_buffer]
program_closure_ro.memg [variable, in cap_machine.exercises.restrict_buffer]
program_closure_ro.Σ [variable, in cap_machine.exercises.restrict_buffer]
program_closure_ro [section, in cap_machine.exercises.restrict_buffer]
program_ro.nainv [variable, in cap_machine.exercises.restrict_buffer]
program_ro.MP [variable, in cap_machine.exercises.restrict_buffer]
program_ro.sealsg [variable, in cap_machine.exercises.restrict_buffer]
program_ro.regg [variable, in cap_machine.exercises.restrict_buffer]
program_ro.memg [variable, in cap_machine.exercises.restrict_buffer]
program_ro.Σ [variable, in cap_machine.exercises.restrict_buffer]
program_ro [section, in cap_machine.exercises.restrict_buffer]
program_call_adequacy.prog_call_correct.memlayout [variable, in cap_machine.exercises.subseg_buffer_call]
program_call_adequacy.prog_call_correct.nainv [variable, in cap_machine.exercises.subseg_buffer_call]
program_call_adequacy.prog_call_correct.sealsg [variable, in cap_machine.exercises.subseg_buffer_call]
program_call_adequacy.prog_call_correct.regg [variable, in cap_machine.exercises.subseg_buffer_call]
program_call_adequacy.prog_call_correct.memg [variable, in cap_machine.exercises.subseg_buffer_call]
program_call_adequacy.prog_call_correct.Σ [variable, in cap_machine.exercises.subseg_buffer_call]
program_call_adequacy.prog_call_correct [section, in cap_machine.exercises.subseg_buffer_call]
program_call_adequacy.HVsize [variable, in cap_machine.exercises.subseg_buffer_call]
program_call_adequacy.size [variable, in cap_machine.exercises.subseg_buffer_call]
program_call_adequacy.secret_val [variable, in cap_machine.exercises.subseg_buffer_call]
program_call_adequacy.secret_off [variable, in cap_machine.exercises.subseg_buffer_call]
program_call_adequacy [section, in cap_machine.exercises.subseg_buffer_call]
program_call.nainv [variable, in cap_machine.exercises.subseg_buffer_call]
program_call.MP [variable, in cap_machine.exercises.subseg_buffer_call]
program_call.sealsg [variable, in cap_machine.exercises.subseg_buffer_call]
program_call.regg [variable, in cap_machine.exercises.subseg_buffer_call]
program_call.memg [variable, in cap_machine.exercises.subseg_buffer_call]
program_call.Σ [variable, in cap_machine.exercises.subseg_buffer_call]
program_call [section, in cap_machine.exercises.subseg_buffer_call]
prog_closure_spec [lemma, in cap_machine.exercises.subseg_buffer_closure]
prog_CPS_safe_to_share [lemma, in cap_machine.exercises.subseg_buffer]
prog_spec_CPS_full [lemma, in cap_machine.exercises.subseg_buffer]
prog_spec_CPS [lemma, in cap_machine.exercises.subseg_buffer]
prog_base_spec [lemma, in cap_machine.exercises.subseg_buffer]
prog_spec [lemma, in cap_machine.exercises.subseg_buffer]
prog_code [definition, in cap_machine.exercises.subseg_buffer]
prog_base_instrs [definition, in cap_machine.exercises.subseg_buffer]
prog_spec [lemma, in cap_machine.exercises.cerise_modularity]
prog_instrs [definition, in cap_machine.exercises.cerise_modularity]
prog_spec_detailed [lemma, in cap_machine.exercises.cerise_tutorial]
prog_spec_igo [lemma, in cap_machine.exercises.cerise_tutorial]
prog_spec_instr [lemma, in cap_machine.exercises.cerise_tutorial]
prog_instrs [definition, in cap_machine.exercises.cerise_tutorial]
prog_ro_spec_full [lemma, in cap_machine.exercises.restrict_buffer]
prog_ro_spec [lemma, in cap_machine.exercises.restrict_buffer]
prog_ro_spec_base [lemma, in cap_machine.exercises.restrict_buffer]
prog_ro_inv [definition, in cap_machine.exercises.restrict_buffer]
prog_roN [definition, in cap_machine.exercises.restrict_buffer]
prog_ro_code [definition, in cap_machine.exercises.restrict_buffer]
prog_malloc_safe_to_share [lemma, in cap_machine.exercises.subseg_buffer_malloc]
prog_malloc_full_run_spec [lemma, in cap_machine.exercises.subseg_buffer_malloc]
prog_malloc_spec [lemma, in cap_machine.exercises.subseg_buffer_malloc]
prog_malloc_inv [definition, in cap_machine.exercises.subseg_buffer_malloc]
prog_malloc_code [definition, in cap_machine.exercises.subseg_buffer_malloc]
prog_malloc_instrs [definition, in cap_machine.exercises.subseg_buffer_malloc]
prog_spec_detailed [lemma, in cap_machine.exercises.cerise_tutorial_solutions]
prog_spec_igo [lemma, in cap_machine.exercises.cerise_tutorial_solutions]
prog_instrs [definition, in cap_machine.exercises.cerise_tutorial_solutions]
prog_call_adequacy [lemma, in cap_machine.exercises.subseg_buffer_call]
prog_call_correct [lemma, in cap_machine.exercises.subseg_buffer_call]
prog_call_full_run_spec [lemma, in cap_machine.exercises.subseg_buffer_call]
prog_call_full_run_spec_aux [lemma, in cap_machine.exercises.subseg_buffer_call]
prog_secret_spec [lemma, in cap_machine.exercises.subseg_buffer_call]
prog_call_inv [definition, in cap_machine.exercises.subseg_buffer_call]
prog_call_code [definition, in cap_machine.exercises.subseg_buffer_call]
prog_call_instrs [definition, in cap_machine.exercises.subseg_buffer_call]
prog_secret_instrs [definition, in cap_machine.exercises.subseg_buffer_call]
prog_spec [lemma, in cap_machine.exercises.cerise_modularity_solutions]
prog_instrs [definition, in cap_machine.exercises.cerise_modularity_solutions]
prog_lower_bound_region_cons [lemma, in cap_machine.examples.template_adequacy]
prog_tbl_data_region [definition, in cap_machine.examples.template_adequacy]
prog_tbl_region [definition, in cap_machine.examples.template_adequacy]
prog_lower_bound_region [definition, in cap_machine.examples.template_adequacy]
prog_lower_bound [projection, in cap_machine.examples.template_adequacy]
prog_region_dom [lemma, in cap_machine.examples.template_adequacy]
prog_region [definition, in cap_machine.examples.template_adequacy]
prog_size [projection, in cap_machine.examples.template_adequacy]
prog_instrs [projection, in cap_machine.examples.template_adequacy]
prog_end [projection, in cap_machine.examples.template_adequacy]
prog_start [projection, in cap_machine.examples.template_adequacy]
proofmode [library]
proofmode_instr_rules [library]
ProperPreOrder [record, in cap_machine.monotone]
ProperPreOrder_ne [projection, in cap_machine.monotone]
ProperPreOrder_preorder [projection, in cap_machine.monotone]
PS_no_fork_fail [constructor, in cap_machine.cap_lang]
PS_no_fork_halt [constructor, in cap_machine.cap_lang]
PS_no_fork_seq [constructor, in cap_machine.cap_lang]
PS_no_fork_instr [constructor, in cap_machine.cap_lang]
pub_libs [projection, in cap_machine.examples.template_adequacy]
pure_seq_done [instance, in cap_machine.rules.rules_base]
pure_seq_halted [instance, in cap_machine.rules.rules_base]
pure_seq_failed [instance, in cap_machine.rules.rules_base]

R

R [abbreviation, in cap_machine.ftlr_binary.Seal_binary]
R [abbreviation, in cap_machine.ftlr_binary.Store_binary]
R [abbreviation, in cap_machine.ftlr.Load]
R [abbreviation, in cap_machine.ftlr.UnSeal]
R [abbreviation, in cap_machine.ftlr.Store]
R [abbreviation, in cap_machine.ftlr.Restrict]
R [abbreviation, in cap_machine.ftlr.Subseg]
R [abbreviation, in cap_machine.ftlr.interp_weakening]
R [abbreviation, in cap_machine.ftlr_binary.AddSubLt_binary]
R [abbreviation, in cap_machine.ftlr.Mov]
R [abbreviation, in cap_machine.ftlr_binary.interp_weakening]
R [abbreviation, in cap_machine.ftlr_binary.Restrict_binary]
R [abbreviation, in cap_machine.ftlr_binary.Jnz_binary]
R [abbreviation, in cap_machine.ftlr_binary.Subseg_binary]
R [abbreviation, in cap_machine.ftlr_binary.UnSeal_binary]
R [abbreviation, in cap_machine.logrel_binary]
R [abbreviation, in cap_machine.ftlr_binary.ftlr_base_binary]
R [abbreviation, in cap_machine.ftlr.Jnz]
R [abbreviation, in cap_machine.ftlr_binary.Jmp_binary]
R [abbreviation, in cap_machine.ftlr.Lea]
R [abbreviation, in cap_machine.ftlr_binary.Lea_binary]
R [abbreviation, in cap_machine.ftlr.AddSubLt]
R [abbreviation, in cap_machine.ftlr_binary.Get_binary]
R [abbreviation, in cap_machine.ftlr.ftlr_base]
R [abbreviation, in cap_machine.ftlr.Seal]
R [abbreviation, in cap_machine.fundamental]
R [abbreviation, in cap_machine.ftlr.Jmp]
R [abbreviation, in cap_machine.ftlr.Get]
R [abbreviation, in cap_machine.logrel]
R [abbreviation, in cap_machine.ftlr_binary.Mov_binary]
R [abbreviation, in cap_machine.fundamental_binary]
R [abbreviation, in cap_machine.ftlr_binary.Load_binary]
R [constructor, in cap_machine.addr_reg]
rclear [definition, in cap_machine.examples.macros]
rclear_spec [lemma, in cap_machine.examples.macros_new]
rclear_instrs_cons [lemma, in cap_machine.examples.macros_new]
rclear_instrs [definition, in cap_machine.examples.macros_new]
rclear_s_spec [lemma, in cap_machine.examples.macros_binary]
rclear_s [definition, in cap_machine.examples.macros_binary]
rclear_macro.MP [variable, in cap_machine.exercises.cerise_modularity]
rclear_macro.regg [variable, in cap_machine.exercises.cerise_modularity]
rclear_macro.memg [variable, in cap_machine.exercises.cerise_modularity]
rclear_macro.Σ [variable, in cap_machine.exercises.cerise_modularity]
rclear_macro [section, in cap_machine.exercises.cerise_modularity]
rclear_spec [lemma, in cap_machine.examples.macros]
rclear_instrs_cons [lemma, in cap_machine.examples.macros]
rclear_instrs [definition, in cap_machine.examples.macros]
rclear_macro.MP [variable, in cap_machine.exercises.cerise_modularity_solutions]
rclear_macro.regg [variable, in cap_machine.exercises.cerise_modularity_solutions]
rclear_macro.memg [variable, in cap_machine.exercises.cerise_modularity_solutions]
rclear_macro.Σ [variable, in cap_machine.exercises.cerise_modularity_solutions]
rclear_macro [section, in cap_machine.exercises.cerise_modularity_solutions]
rclear_length [lemma, in cap_machine.examples.call]
read [definition, in cap_machine.examples.counter.counter]
readAllowed [definition, in cap_machine.machine_base]
readAllowed_nonO [lemma, in cap_machine.machine_base]
read_closure_valid [lemma, in cap_machine.examples.counter.counter_preamble]
read_instrs_length [definition, in cap_machine.examples.counter.counter_preamble]
read_spec [lemma, in cap_machine.examples.counter.counter]
read_instrs [definition, in cap_machine.examples.counter.counter]
read_neg_instrs_length [definition, in cap_machine.examples.counter_binary.counter_binary_preamble_def]
read_instrs_length [definition, in cap_machine.examples.counter_binary.counter_binary_preamble_def]
read_spec_opp [lemma, in cap_machine.examples.counter_binary.counter_binary]
read_spec [lemma, in cap_machine.examples.counter_binary.counter_binary]
read_neg_left [definition, in cap_machine.examples.counter_binary.counter_binary]
read_neg_right [definition, in cap_machine.examples.counter_binary.counter_binary]
read_neg_instrs [definition, in cap_machine.examples.counter_binary.counter_binary]
read_right [definition, in cap_machine.examples.counter_binary.counter_binary]
read_left [definition, in cap_machine.examples.counter_binary.counter_binary]
read_instrs [definition, in cap_machine.examples.counter_binary.counter_binary]
read_allowed_inv_regs [lemma, in cap_machine.logrel_binary]
read_allowed_inv [lemma, in cap_machine.logrel_binary]
read_cond_contractive [instance, in cap_machine.logrel_binary]
read_cond_ne [instance, in cap_machine.logrel_binary]
read_cond [definition, in cap_machine.logrel_binary]
read_allowed_inv_regs [lemma, in cap_machine.logrel]
read_allowed_inv [lemma, in cap_machine.logrel]
read_cond_contractive [instance, in cap_machine.logrel]
read_cond_ne [instance, in cap_machine.logrel]
read_cond [definition, in cap_machine.logrel]
read_read_neg_closure_valid [lemma, in cap_machine.examples.counter_binary.counter_binary_preamble]
read_reg_inr [definition, in cap_machine.rules.rules_base]
read_neg_read_closure_valid [lemma, in cap_machine.examples.counter_binary.counter_binary_preamble_left]
Reflexive_ofe_equiv_Word [instance, in cap_machine.cap_lang]
reg [definition, in cap_machine.cap_lang]
Reg [definition, in cap_machine.machine_base]
regG [record, in cap_machine.rules.rules_base]
region [section, in cap_machine.proofmode.region]
region [library]
regions_disjoint [projection, in cap_machine.examples.lse_adequacy]
regions_disjoint [projection, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
regions_disjoint [projection, in cap_machine.examples.adder_adequacy]
regions_disjoint [projection, in cap_machine.examples.counter.counter_adequacy]
regions_disjoint [projection, in cap_machine.exercises.subseg_buffer_call]
regions_disjoint_eq [lemma, in cap_machine.examples.counter_binary.counter_binary_adequacy]
regions_disjoint [projection, in cap_machine.examples.counter_binary.counter_binary_adequacy]
regions_disjoint [projection, in cap_machine.examples.interval.interval_client_adequacy]
region_open_resources [definition, in cap_machine.ftlr_binary.Store_binary]
region_open_resources [definition, in cap_machine.ftlr.Load]
region_addrs_zeroes_split [lemma, in cap_machine.examples.addr_reg_sample]
region_addrs_zeroes_lookup [lemma, in cap_machine.examples.addr_reg_sample]
region_addrs_zeroes [definition, in cap_machine.examples.addr_reg_sample]
region_open_resources [definition, in cap_machine.ftlr.Store]
region_pointsto_split_spec [lemma, in cap_machine.proofmode.region]
region_pointsto_single_spec [lemma, in cap_machine.proofmode.region]
region_pointsto_cons_spec [lemma, in cap_machine.proofmode.region]
region_pointsto_spec [definition, in cap_machine.proofmode.region]
region_pointsto_split [lemma, in cap_machine.proofmode.region]
region_pointsto_single [lemma, in cap_machine.proofmode.region]
region_pointsto_cons [lemma, in cap_machine.proofmode.region]
region_pointsto [definition, in cap_machine.proofmode.region]
region_inv_alloc [lemma, in cap_machine.logrel_binary]
region_addrs_exists2 [lemma, in cap_machine.iris_extra]
region_addrs_exists_zip [lemma, in cap_machine.iris_extra]
region_addrs_exists [lemma, in cap_machine.iris_extra]
region_in_region_alloc' [lemma, in cap_machine.fundamental]
region_valid_alloc' [lemma, in cap_machine.fundamental]
region_integers_alloc' [lemma, in cap_machine.fundamental]
region_can_alloc_interp [lemma, in cap_machine.logrel]
region_seal_pred_interp [lemma, in cap_machine.logrel]
region_valid_in_region [lemma, in cap_machine.logrel]
region_valid_in_region_ind [lemma, in cap_machine.logrel]
region_valid_alloc [lemma, in cap_machine.logrel]
region_integers_alloc [lemma, in cap_machine.logrel]
region_inv_alloc [lemma, in cap_machine.logrel]
region_open_resources [definition, in cap_machine.ftlr_binary.Load_binary]
region_addrs_of_contiguous_between [lemma, in cap_machine.proofmode.contiguous]
region_addrs_aux_of_contiguous_between [lemma, in cap_machine.proofmode.contiguous]
region.cfg [variable, in cap_machine.proofmode.region]
[[ _ , _ ]] ↣ₐ [[ _ ]] (bi_scope) [notation, in cap_machine.proofmode.region]
[[ _ , _ ]] ↦ₐ [[ _ ]] (bi_scope) [notation, in cap_machine.proofmode.region]
registers_pointsto [definition, in cap_machine.logrel]
register_tactics [library]
regmap_full_dom [lemma, in cap_machine.addr_reg]
regn [definition, in cap_machine.machine_base]
RegName [inductive, in cap_machine.addr_reg]
regname_neq [lemma, in cap_machine.rules_binary.rules_binary_base]
regname_dupl_false [lemma, in cap_machine.rules_binary.rules_binary_base]
regname_neq [lemma, in cap_machine.rules.rules_base]
regname_dupl_false [lemma, in cap_machine.rules.rules_base]
RegName_InjTyp [instance, in cap_machine.addr_reg]
RegName_sind [definition, in cap_machine.addr_reg]
RegName_rec [definition, in cap_machine.addr_reg]
RegName_ind [definition, in cap_machine.addr_reg]
RegName_rect [definition, in cap_machine.addr_reg]
RegNum [definition, in cap_machine.addr_reg]
regspecUR [abbreviation, in cap_machine.rules_binary.rules_binary_base]
regspec_heap_update_inSepM [lemma, in cap_machine.rules_binary.rules_binary_base]
regspec_heap_valid_allSepM [lemma, in cap_machine.rules_binary.rules_binary_base]
regspec_heap_valid_inclSepM [lemma, in cap_machine.rules_binary.rules_binary_base]
regspec_heap_valid_inSepM' [lemma, in cap_machine.rules_binary.rules_binary_base]
regspec_heap_valid_inSepM [lemma, in cap_machine.rules_binary.rules_binary_base]
regspec_pointsto_update [lemma, in cap_machine.rules_binary.rules_binary_base]
regspec_pointsto_valid_2 [lemma, in cap_machine.rules_binary.rules_binary_base]
regspec_pointsto_valid [lemma, in cap_machine.rules_binary.rules_binary_base]
regspec_pointsto_agree [lemma, in cap_machine.rules_binary.rules_binary_base]
regspec_pointsto_timeless [instance, in cap_machine.rules_binary.rules_binary_base]
regspec_pointsto [definition, in cap_machine.rules_binary.rules_binary_base]
regspec_alloc_big [lemma, in cap_machine.examples.counter_binary.counter_binary_adequacy]
regspec_pointsto_alloc [lemma, in cap_machine.examples.counter_binary.counter_binary_adequacy]
regs_of_map_4 [lemma, in cap_machine.rules_binary.rules_binary_base]
regs_of_map_3 [lemma, in cap_machine.rules_binary.rules_binary_base]
regs_of_map_2 [lemma, in cap_machine.rules_binary.rules_binary_base]
regs_of_map_1 [lemma, in cap_machine.rules_binary.rules_binary_base]
regs_of [definition, in cap_machine.rules.rules_base]
regs_of_argument [definition, in cap_machine.rules.rules_base]
regs_of_map_4 [lemma, in cap_machine.rules.rules_base]
regs_of_map_3 [lemma, in cap_machine.rules.rules_base]
regs_of_map_2 [lemma, in cap_machine.rules.rules_base]
regs_of_map_1 [lemma, in cap_machine.rules.rules_base]
regs_of_is_AddSubLt [lemma, in cap_machine.rules.rules_AddSubLt]
regs_of_is_Get [lemma, in cap_machine.rules.rules_Get]
reg_allows_store [definition, in cap_machine.rules.rules_Store]
reg_gen_regG [projection, in cap_machine.rules.rules_base]
reg_invG [projection, in cap_machine.rules.rules_base]
reg_allows_load [definition, in cap_machine.rules.rules_Load]
reg_finite [instance, in cap_machine.machine_base]
reg_countable [instance, in cap_machine.addr_reg]
reg_eq_sym [lemma, in cap_machine.addr_reg]
reg_eq_dec [instance, in cap_machine.addr_reg]
remove_key [definition, in cap_machine.proofmode.map_simpl]
reqperm [definition, in cap_machine.examples.macros]
reqperm_spec [lemma, in cap_machine.examples.macros_new]
reqperm_instrs [definition, in cap_machine.examples.macros_new]
reqperm_spec [lemma, in cap_machine.examples.macros]
reqperm_instrs [definition, in cap_machine.examples.macros]
reqsize [definition, in cap_machine.examples.macros]
reqsize_spec [lemma, in cap_machine.examples.macros_new]
reqsize_exact_instrs [definition, in cap_machine.examples.macros_new]
reqsize_spec [lemma, in cap_machine.examples.macros]
reqsize_instrs [definition, in cap_machine.examples.macros]
reset [definition, in cap_machine.examples.counter.counter]
reset_closure_valid [lemma, in cap_machine.examples.counter.counter_preamble]
reset_instrs_length [definition, in cap_machine.examples.counter.counter_preamble]
reset_spec [lemma, in cap_machine.examples.counter.counter]
reset_instrs [definition, in cap_machine.examples.counter.counter]
resolve_imports_spec_not_in [lemma, in cap_machine.linking]
resolve_imports_spec_in [lemma, in cap_machine.linking]
resolve_imports_spec [lemma, in cap_machine.linking]
resolve_imports [definition, in cap_machine.linking]
restore_locals_spec [lemma, in cap_machine.examples.callback]
restore_locals_spec_middle [lemma, in cap_machine.examples.callback]
restore_locals [definition, in cap_machine.examples.callback]
restore_locals_instrs [definition, in cap_machine.examples.callback]
Restrict [constructor, in cap_machine.machine_base]
Restrict [library]
restrict_z [definition, in cap_machine.examples.addr_reg_sample]
restrict_r [definition, in cap_machine.examples.addr_reg_sample]
restrict_case [lemma, in cap_machine.ftlr.Restrict]
restrict_case [lemma, in cap_machine.ftlr_binary.Restrict_binary]
Restrict_spec_determ [lemma, in cap_machine.ftlr_binary.Restrict_binary]
Restrict_spec_sind [definition, in cap_machine.rules.rules_Restrict]
Restrict_spec_ind [definition, in cap_machine.rules.rules_Restrict]
Restrict_spec_failure [constructor, in cap_machine.rules.rules_Restrict]
Restrict_spec_success_sr [constructor, in cap_machine.rules.rules_Restrict]
Restrict_spec_success_cap [constructor, in cap_machine.rules.rules_Restrict]
Restrict_spec [inductive, in cap_machine.rules.rules_Restrict]
Restrict_failure_sind [definition, in cap_machine.rules.rules_Restrict]
Restrict_failure_rec [definition, in cap_machine.rules.rules_Restrict]
Restrict_failure_ind [definition, in cap_machine.rules.rules_Restrict]
Restrict_failure_rect [definition, in cap_machine.rules.rules_Restrict]
Restrict_fail_PC_overflow_sr [constructor, in cap_machine.rules.rules_Restrict]
Restrict_fail_invalid_perm_sr [constructor, in cap_machine.rules.rules_Restrict]
Restrict_fail_PC_overflow_cap [constructor, in cap_machine.rules.rules_Restrict]
Restrict_fail_invalid_perm_cap [constructor, in cap_machine.rules.rules_Restrict]
Restrict_fail_allowed [constructor, in cap_machine.rules.rules_Restrict]
Restrict_fail_src_nonz [constructor, in cap_machine.rules.rules_Restrict]
Restrict_failure [inductive, in cap_machine.rules.rules_Restrict]
Restrict_binary [library]
restrict_buffer [library]
rest_last [lemma, in cap_machine.examples.keylist]
rev_cons_inv [lemma, in cap_machine.stdpp_extra]
rev_lookup [lemma, in cap_machine.stdpp_extra]
rev_singleton_inv [lemma, in cap_machine.stdpp_extra]
rev_nil_inv [lemma, in cap_machine.stdpp_extra]
rgmap [inductive, in cap_machine.proofmode.map_simpl]
rgmap_sind [definition, in cap_machine.proofmode.map_simpl]
rgmap_rec [definition, in cap_machine.proofmode.map_simpl]
rgmap_ind [definition, in cap_machine.proofmode.map_simpl]
rgmap_rect [definition, in cap_machine.proofmode.map_simpl]
rlength [definition, in cap_machine.proofmode.map_simpl]
rlength_remove_key [lemma, in cap_machine.proofmode.map_simpl]
rmapfinal [definition, in cap_machine.examples.interval_arch.interval_closure_arch]
rmapfinal [definition, in cap_machine.examples.interval.interval_closure]
ro [definition, in cap_machine.examples.lse]
RO [constructor, in cap_machine.machine_base]
roe [definition, in cap_machine.examples.lse]
roe [section, in cap_machine.examples.lse]
roeN [definition, in cap_machine.examples.lse]
roeN_prog [definition, in cap_machine.examples.lse]
roeN_b [definition, in cap_machine.examples.lse]
roeN_locals [definition, in cap_machine.examples.lse]
roeN_act [definition, in cap_machine.examples.lse]
roeN_link [definition, in cap_machine.examples.lse]
roe_adequacy [lemma, in cap_machine.examples.lse_adequacy]
roe_correct [lemma, in cap_machine.examples.lse_adequacy]
roe_adequacy.memlayout [variable, in cap_machine.examples.lse_adequacy]
roe_adequacy.nainv [variable, in cap_machine.examples.lse_adequacy]
roe_adequacy.sealsg [variable, in cap_machine.examples.lse_adequacy]
roe_adequacy.regg [variable, in cap_machine.examples.lse_adequacy]
roe_adequacy.memg [variable, in cap_machine.examples.lse_adequacy]
roe_adequacy.Σ [variable, in cap_machine.examples.lse_adequacy]
roe_adequacy [section, in cap_machine.examples.lse_adequacy]
roe_table [definition, in cap_machine.examples.lse_adequacy]
roe_prog [definition, in cap_machine.examples.lse_adequacy]
roe_spec [lemma, in cap_machine.examples.lse]
roe_inv [definition, in cap_machine.examples.lse]
roe_instrs [definition, in cap_machine.examples.lse]
roe.memg [variable, in cap_machine.examples.lse]
roe.MP [variable, in cap_machine.examples.lse]
roe.nainv [variable, in cap_machine.examples.lse]
roe.regg [variable, in cap_machine.examples.lse]
roe.sealsg [variable, in cap_machine.examples.lse]
roe.Σ [variable, in cap_machine.examples.lse]
roN [definition, in cap_machine.exercises.restrict_buffer]
rtc_or_intro_l [lemma, in cap_machine.stdpp_extra]
rtc_or_intro [lemma, in cap_machine.stdpp_extra]
rtc_implies [lemma, in cap_machine.stdpp_extra]
rules [section, in cap_machine.examples.ocpl_lowval_like]
rules [library]
rules_binary_Lea [library]
rules_Load [library]
rules_binary_Get [library]
rules_binary_AddSubLt [library]
rules_UnSeal [library]
rules_Jmp [library]
rules_Mov [library]
rules_binary_Subseg [library]
rules_binary_base [library]
rules_binary [library]
rules_Store [library]
rules_Subseg [library]
rules_binary_Jnz [library]
rules_binary_Mov [library]
rules_Jnz [library]
rules_binary_Store [library]
rules_binary_Load [library]
rules_Seal [library]
rules_base [library]
rules_Get [library]
rules_binary_Restrict [library]
rules_binary_Jmp [library]
rules_Lea [library]
rules_Restrict [library]
rules_AddSubLt [library]
rules.memg [variable, in cap_machine.examples.ocpl_lowval_like]
rules.MP [variable, in cap_machine.examples.ocpl_lowval_like]
rules.nainv [variable, in cap_machine.examples.ocpl_lowval_like]
rules.regg [variable, in cap_machine.examples.ocpl_lowval_like]
rules.sealg [variable, in cap_machine.examples.ocpl_lowval_like]
rules.Σ [variable, in cap_machine.examples.ocpl_lowval_like]
RW [constructor, in cap_machine.machine_base]
RWX [constructor, in cap_machine.machine_base]
RX [constructor, in cap_machine.machine_base]
r_stk_ne [lemma, in cap_machine.examples.addr_reg_sample]
r_env [definition, in cap_machine.examples.addr_reg_sample]
r_stk [definition, in cap_machine.examples.addr_reg_sample]
r_temp6 [definition, in cap_machine.examples.interval_arch.interval_closure_arch]
r_temp4 [definition, in cap_machine.examples.interval_arch.interval_closure_arch]
r_temp3 [definition, in cap_machine.examples.interval_arch.interval_closure_arch]
r_temp2 [definition, in cap_machine.examples.interval_arch.interval_closure_arch]
r_temp1 [definition, in cap_machine.examples.interval_arch.interval_closure_arch]
r_ret [definition, in cap_machine.examples.counter.counter]
r_ret [definition, in cap_machine.examples.counter_binary.counter_binary]
r_adv [definition, in cap_machine.examples.lse]
r_temp8 [definition, in cap_machine.examples.interval.interval_client_closure]
r_temp7 [definition, in cap_machine.examples.interval.interval_client_closure]
r_temp6 [definition, in cap_machine.examples.interval.interval_closure]
r_temp4 [definition, in cap_machine.examples.interval.interval_closure]
r_temp3 [definition, in cap_machine.examples.interval.interval_closure]
r_temp2 [definition, in cap_machine.examples.interval.interval_closure]
r_temp1 [definition, in cap_machine.examples.interval.interval_closure]
r_temp8 [definition, in cap_machine.examples.interval_arch.interval_client_closure_arch]
r_temp7 [definition, in cap_machine.examples.interval_arch.interval_client_closure_arch]
r_t31 [definition, in cap_machine.addr_reg]
r_t30 [definition, in cap_machine.addr_reg]
r_t29 [definition, in cap_machine.addr_reg]
r_t28 [definition, in cap_machine.addr_reg]
r_t27 [definition, in cap_machine.addr_reg]
r_t26 [definition, in cap_machine.addr_reg]
r_t25 [definition, in cap_machine.addr_reg]
r_t24 [definition, in cap_machine.addr_reg]
r_t23 [definition, in cap_machine.addr_reg]
r_t22 [definition, in cap_machine.addr_reg]
r_t21 [definition, in cap_machine.addr_reg]
r_t20 [definition, in cap_machine.addr_reg]
r_t19 [definition, in cap_machine.addr_reg]
r_t18 [definition, in cap_machine.addr_reg]
r_t17 [definition, in cap_machine.addr_reg]
r_t16 [definition, in cap_machine.addr_reg]
r_t15 [definition, in cap_machine.addr_reg]
r_t14 [definition, in cap_machine.addr_reg]
r_t13 [definition, in cap_machine.addr_reg]
r_t12 [definition, in cap_machine.addr_reg]
r_t11 [definition, in cap_machine.addr_reg]
r_t10 [definition, in cap_machine.addr_reg]
r_t9 [definition, in cap_machine.addr_reg]
r_t8 [definition, in cap_machine.addr_reg]
r_t7 [definition, in cap_machine.addr_reg]
r_t6 [definition, in cap_machine.addr_reg]
r_t5 [definition, in cap_machine.addr_reg]
r_t4 [definition, in cap_machine.addr_reg]
r_t3 [definition, in cap_machine.addr_reg]
r_t2 [definition, in cap_machine.addr_reg]
r_t1 [definition, in cap_machine.addr_reg]
r_t0 [definition, in cap_machine.addr_reg]

S

safe_to_seal_weakening [lemma, in cap_machine.ftlr.interp_weakening]
safe_to_unseal_weakening [lemma, in cap_machine.ftlr.interp_weakening]
safe_to_unseal [definition, in cap_machine.logrel]
safe_to_seal [definition, in cap_machine.logrel]
salloc [library]
sallocN [definition, in cap_machine.examples.interval_arch.interval_client_closure_arch]
salloc_spec [lemma, in cap_machine.examples.macros_new]
salloc_spec_alt [lemma, in cap_machine.examples.macros_new]
salloc_instrs [definition, in cap_machine.examples.macros_new]
salloc_library_content [definition, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
salloc_o_lt [projection, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
salloc_o_e [projection, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
salloc_o_b [projection, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
salloc_optr_size [projection, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
salloc_memptr_size [projection, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
salloc_code_size [projection, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
salloc_end [projection, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
salloc_optr [projection, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
salloc_memptr [projection, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
salloc_start [projection, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
salloc_inv [definition, in cap_machine.examples.salloc]
salloc_subroutine_instrs [definition, in cap_machine.examples.salloc]
salloc_subroutine_instrs_length [definition, in cap_machine.examples.salloc]
salloc_subroutine_instrs' [definition, in cap_machine.examples.salloc]
scall_epilogue_spec [lemma, in cap_machine.examples.callback]
SCap [constructor, in cap_machine.machine_base]
scrtcls [definition, in cap_machine.examples.macros]
scrtcls_spec [lemma, in cap_machine.examples.macros_new]
scrtcls_instrs [definition, in cap_machine.examples.macros_new]
scrtcls_s_spec [lemma, in cap_machine.examples.macros_binary]
scrtcls_s [definition, in cap_machine.examples.macros_binary]
scrtcls_spec [lemma, in cap_machine.examples.macros]
scrtcls_instrs [definition, in cap_machine.examples.macros]
Seal [constructor, in cap_machine.machine_base]
Seal [library]
Sealable [inductive, in cap_machine.machine_base]
sealable_countable [instance, in cap_machine.machine_base]
Sealable_sind [definition, in cap_machine.machine_base]
Sealable_rec [definition, in cap_machine.machine_base]
Sealable_ind [definition, in cap_machine.machine_base]
Sealable_rect [definition, in cap_machine.machine_base]
sealb_eq_dec [instance, in cap_machine.machine_base]
sealing [section, in cap_machine.examples.dynamic_sealing]
sealing [section, in cap_machine.examples.arch_sealing]
sealing_preserves_interp [lemma, in cap_machine.ftlr.Seal]
sealing.memg [variable, in cap_machine.examples.dynamic_sealing]
sealing.memg [variable, in cap_machine.examples.arch_sealing]
sealing.mono [variable, in cap_machine.examples.dynamic_sealing]
sealing.MP [variable, in cap_machine.examples.dynamic_sealing]
sealing.MP [variable, in cap_machine.examples.arch_sealing]
sealing.nainv [variable, in cap_machine.examples.dynamic_sealing]
sealing.nainv [variable, in cap_machine.examples.arch_sealing]
sealing.regg [variable, in cap_machine.examples.dynamic_sealing]
sealing.regg [variable, in cap_machine.examples.arch_sealing]
sealing.seals [variable, in cap_machine.examples.dynamic_sealing]
sealing.seals [variable, in cap_machine.examples.arch_sealing]
sealing.Σ [variable, in cap_machine.examples.dynamic_sealing]
sealing.Σ [variable, in cap_machine.examples.arch_sealing]
sealLL [definition, in cap_machine.examples.keylist]
sealLLG [record, in cap_machine.examples.keylist]
sealLLN [definition, in cap_machine.examples.interval_arch.interval_closure_arch]
sealLLN [definition, in cap_machine.examples.interval.interval_closure]
sealLL_alloc [lemma, in cap_machine.examples.dynamic_sealing]
sealLL_alloc [lemma, in cap_machine.examples.arch_sealing]
sealLL_pred_interp [lemma, in cap_machine.examples.arch_sealing]
sealLL_valid_sealed_pred_eq [lemma, in cap_machine.examples.arch_sealing]
sealN [definition, in cap_machine.examples.interval_arch.interval_closure_arch]
sealN [definition, in cap_machine.examples.interval.interval_closure]
SealPermFlowsTo [definition, in cap_machine.machine_base]
SealPermFlowsToReflexive [lemma, in cap_machine.machine_base]
SealPermFlowsToTransitive [lemma, in cap_machine.machine_base]
SealPermFlows_refl [lemma, in cap_machine.machine_base]
SealPerms [definition, in cap_machine.machine_base]
sealStoreG [record, in cap_machine.seal_store]
sealStoreG_preG [instance, in cap_machine.seal_store]
sealStorePreG [record, in cap_machine.seal_store]
sealStorePreΣ [definition, in cap_machine.seal_store]
seal_spec [lemma, in cap_machine.examples.dynamic_sealing]
seal_instrs_length [definition, in cap_machine.examples.dynamic_sealing]
seal_instrs [definition, in cap_machine.examples.dynamic_sealing]
seal_env [definition, in cap_machine.examples.interval_arch.interval_arch]
seal_case [lemma, in cap_machine.ftlr_binary.Seal_binary]
seal_library_content [definition, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
seal_table_size [projection, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
seal_table_end [projection, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
seal_table_start [projection, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
seal_region_start_offset [projection, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
seal_makeseal_entrypoint_correct [projection, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
seal_makeseal_entrypoint [projection, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
seal_size [projection, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
seal_region_end [projection, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
seal_body_start [projection, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
seal_region_start [projection, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
seal_store_init [lemma, in cap_machine.seal_store]
seal_store_update_alloc [lemma, in cap_machine.seal_store]
seal_pred_agree [lemma, in cap_machine.seal_store]
seal_pred_persistent [instance, in cap_machine.seal_store]
seal_pred [definition, in cap_machine.seal_store]
Seal_spec_sind [definition, in cap_machine.rules.rules_Seal]
Seal_spec_ind [definition, in cap_machine.rules.rules_Seal]
Seal_spec_failure [constructor, in cap_machine.rules.rules_Seal]
Seal_spec_success [constructor, in cap_machine.rules.rules_Seal]
Seal_spec [inductive, in cap_machine.rules.rules_Seal]
Seal_failure_sind [definition, in cap_machine.rules.rules_Seal]
Seal_failure_ind [definition, in cap_machine.rules.rules_Seal]
Seal_fail_incrPC [constructor, in cap_machine.rules.rules_Seal]
Seal_fail_bounds [constructor, in cap_machine.rules.rules_Seal]
Seal_fail_sealb [constructor, in cap_machine.rules.rules_Seal]
Seal_fail_sealr [constructor, in cap_machine.rules.rules_Seal]
Seal_failure [inductive, in cap_machine.rules.rules_Seal]
seal_case [lemma, in cap_machine.ftlr.Seal]
seal_env [definition, in cap_machine.examples.interval.interval]
seal_library_content [definition, in cap_machine.examples.interval.interval_client_adequacy]
seal_table_size [projection, in cap_machine.examples.interval.interval_client_adequacy]
seal_table_end [projection, in cap_machine.examples.interval.interval_client_adequacy]
seal_table_start [projection, in cap_machine.examples.interval.interval_client_adequacy]
seal_region_start_offset [projection, in cap_machine.examples.interval.interval_client_adequacy]
seal_makeseal_entrypoint_correct [projection, in cap_machine.examples.interval.interval_client_adequacy]
seal_makeseal_entrypoint [projection, in cap_machine.examples.interval.interval_client_adequacy]
seal_size [projection, in cap_machine.examples.interval.interval_client_adequacy]
seal_region_end [projection, in cap_machine.examples.interval.interval_client_adequacy]
seal_body_start [projection, in cap_machine.examples.interval.interval_client_adequacy]
seal_region_start [projection, in cap_machine.examples.interval.interval_client_adequacy]
seal_spec [lemma, in cap_machine.examples.arch_sealing]
seal_instrs_length [definition, in cap_machine.examples.arch_sealing]
seal_instrs [definition, in cap_machine.examples.arch_sealing]
seal_state [definition, in cap_machine.examples.arch_sealing]
Seal_binary [library]
seal_store [library]
secretN [definition, in cap_machine.exercises.subseg_buffer_closure]
secretN [definition, in cap_machine.exercises.subseg_buffer]
secret_inv [definition, in cap_machine.exercises.subseg_buffer_closure]
secret_inv [definition, in cap_machine.exercises.subseg_buffer]
secret_add_instrs [definition, in cap_machine.exercises.cerise_modularity]
secret_add_spec [lemma, in cap_machine.exercises.cerise_modularity_solutions]
secret_add_instrs [definition, in cap_machine.exercises.cerise_modularity_solutions]
segment [definition, in cap_machine.linking]
Seq [constructor, in cap_machine.cap_lang]
SeqCtx [constructor, in cap_machine.cap_lang]
seq_between_dist_Some [lemma, in cap_machine.machine_base]
setunfold_all_regs [instance, in cap_machine.addr_reg]
SG_storedPredsPre [projection, in cap_machine.seal_store]
SG_sealStorePre [projection, in cap_machine.seal_store]
SG_sealN [projection, in cap_machine.seal_store]
SG_storedPreds [projection, in cap_machine.seal_store]
SG_sealStore [projection, in cap_machine.seal_store]
SimpleMalloc [section, in cap_machine.examples.malloc_binary]
SimpleMalloc [section, in cap_machine.examples.malloc]
SimpleMalloc.cfg [variable, in cap_machine.examples.malloc_binary]
SimpleMalloc.memg [variable, in cap_machine.examples.malloc_binary]
SimpleMalloc.memg [variable, in cap_machine.examples.malloc]
SimpleMalloc.MP [variable, in cap_machine.examples.malloc_binary]
SimpleMalloc.MP [variable, in cap_machine.examples.malloc]
SimpleMalloc.nainv [variable, in cap_machine.examples.malloc_binary]
SimpleMalloc.nainv [variable, in cap_machine.examples.malloc]
SimpleMalloc.regg [variable, in cap_machine.examples.malloc_binary]
SimpleMalloc.regg [variable, in cap_machine.examples.malloc]
SimpleMalloc.sealsg [variable, in cap_machine.examples.malloc]
SimpleMalloc.Σ [variable, in cap_machine.examples.malloc_binary]
SimpleMalloc.Σ [variable, in cap_machine.examples.malloc]
SimpleSalloc [section, in cap_machine.examples.salloc]
SimpleSalloc.memg [variable, in cap_machine.examples.salloc]
SimpleSalloc.MP [variable, in cap_machine.examples.salloc]
SimpleSalloc.nainv [variable, in cap_machine.examples.salloc]
SimpleSalloc.regg [variable, in cap_machine.examples.salloc]
SimpleSalloc.sealsg [variable, in cap_machine.examples.salloc]
SimpleSalloc.Σ [variable, in cap_machine.examples.salloc]
simple_malloc_subroutine_valid [lemma, in cap_machine.examples.malloc_binary]
simple_malloc_subroutine_spec [lemma, in cap_machine.examples.malloc_binary]
simple_malloc_subroutine_valid [lemma, in cap_machine.examples.malloc]
simple_malloc_subroutine_spec [lemma, in cap_machine.examples.malloc]
simple_salloc_subroutine_valid [lemma, in cap_machine.examples.salloc]
simple_salloc_subroutine_spec [lemma, in cap_machine.examples.salloc]
SimplTC [record, in machine_utils.classes]
SimplTC [inductive, in machine_utils.classes]
simpl_rmap_correct [lemma, in cap_machine.proofmode.map_simpl]
simpl_rmap_correct' [lemma, in cap_machine.proofmode.map_simpl]
simpl_rmap [definition, in cap_machine.proofmode.map_simpl]
simpl_gmap.HcountK [variable, in cap_machine.proofmode.map_simpl]
simpl_gmap.HeqdecK [variable, in cap_machine.proofmode.map_simpl]
simpl_gmap.K [variable, in cap_machine.proofmode.map_simpl]
simpl_gmap [section, in cap_machine.proofmode.map_simpl]
Singleton_list [instance, in cap_machine.proofmode.disjoint_regions_tactics]
snd_instrs [definition, in cap_machine.examples.interval_arch.interval_arch]
snd_instrs [definition, in cap_machine.examples.interval.interval]
snoc_ll [lemma, in cap_machine.examples.keylist]
solve_pure [library]
solve_pure [library]
solve_addr [library]
solve_finz [library]
solve_addr_extra [library]
Some_eq_inj [lemma, in machine_utils.solve_finz]
soundness_binaryΣ [definition, in cap_machine.examples.counter_binary.counter_binary_adequacy_theorem]
specN [definition, in cap_machine.rules_binary.rules_binary_base]
spec_step_pure [lemma, in cap_machine.rules_binary.rules_binary_base]
spec_step_bind [lemma, in cap_machine.rules_binary.rules_binary_base]
spec_memMap_resource_2ne_apply [lemma, in cap_machine.rules_binary.rules_binary_base]
spec_expr_valid [lemma, in cap_machine.rules_binary.rules_binary_base]
spec_regs_valid [lemma, in cap_machine.rules_binary.rules_binary_base]
spec_heap_valid [lemma, in cap_machine.rules_binary.rules_binary_base]
spec_ctx_persistent [instance, in cap_machine.rules_binary.rules_binary_base]
spec_ctx [definition, in cap_machine.rules_binary.rules_binary_base]
spec_inv [definition, in cap_machine.rules_binary.rules_binary_base]
spec_res [definition, in cap_machine.rules_binary.rules_binary_base]
spec_map_singleton_included [lemma, in cap_machine.rules_binary.rules_binary_base]
spec_registers_pointsto [definition, in cap_machine.logrel_binary]
SSealRange [constructor, in cap_machine.machine_base]
start_mem_inv [definition, in cap_machine.exercises.subseg_buffer_closure]
start_memN [definition, in cap_machine.exercises.subseg_buffer_closure]
start_mem_inv [definition, in cap_machine.exercises.subseg_buffer]
start_memN [definition, in cap_machine.exercises.subseg_buffer]
state [definition, in cap_machine.cap_lang]
stdpp_extra [library]
step [inductive, in cap_machine.cap_lang]
step_subseg_success [lemma, in cap_machine.rules_binary.rules_binary_Subseg]
step_Subseg [lemma, in cap_machine.rules_binary.rules_binary_Subseg]
step_add_sub_lt_success_dst_z [lemma, in cap_machine.rules_binary.rules_binary_AddSubLt]
step_add_sub_lt_success_z_dst [lemma, in cap_machine.rules_binary.rules_binary_AddSubLt]
step_add_sub_lt_success_dst_r [lemma, in cap_machine.rules_binary.rules_binary_AddSubLt]
step_add_sub_lt_success_z_r [lemma, in cap_machine.rules_binary.rules_binary_AddSubLt]
step_AddSubLt_fail [lemma, in cap_machine.rules_binary.rules_binary_AddSubLt]
step_AddSubLt [lemma, in cap_machine.rules_binary.rules_binary_AddSubLt]
step_load_success_alt [lemma, in cap_machine.rules_binary.rules_binary_Load]
step_load_success [lemma, in cap_machine.rules_binary.rules_binary_Load]
step_load_success_same_alt [lemma, in cap_machine.rules_binary.rules_binary_Load]
step_load_success_same [lemma, in cap_machine.rules_binary.rules_binary_Load]
step_Load [lemma, in cap_machine.rules_binary.rules_binary_Load]
step_store_success_z [lemma, in cap_machine.rules_binary.rules_binary_Store]
step_store_success_reg [lemma, in cap_machine.rules_binary.rules_binary_Store]
step_store [lemma, in cap_machine.rules_binary.rules_binary_Store]
step_fail [lemma, in cap_machine.rules_binary.rules_binary_base]
step_halt [lemma, in cap_machine.rules_binary.rules_binary_base]
step_lea_success_reg [lemma, in cap_machine.rules_binary.rules_binary_Lea]
step_lea_success_z [lemma, in cap_machine.rules_binary.rules_binary_Lea]
step_lea [lemma, in cap_machine.rules_binary.rules_binary_Lea]
step_restrict_success_z [lemma, in cap_machine.rules_binary.rules_binary_Restrict]
step_Restrict [lemma, in cap_machine.rules_binary.rules_binary_Restrict]
step_Get_success [lemma, in cap_machine.rules_binary.rules_binary_Get]
step_Get [lemma, in cap_machine.rules_binary.rules_binary_Get]
step_jmp_success [lemma, in cap_machine.rules_binary.rules_binary_Jmp]
step_jnz_success_jmp [lemma, in cap_machine.rules_binary.rules_binary_Jnz]
step_jnz_success_next [lemma, in cap_machine.rules_binary.rules_binary_Jnz]
step_Jnz [lemma, in cap_machine.rules_binary.rules_binary_Jnz]
step_move_success_z [lemma, in cap_machine.rules_binary.rules_binary_Mov]
step_move_success_reg [lemma, in cap_machine.rules_binary.rules_binary_Mov]
step_move_success_reg_fromPC [lemma, in cap_machine.rules_binary.rules_binary_Mov]
step_Mov [lemma, in cap_machine.rules_binary.rules_binary_Mov]
step_fail_inv [lemma, in cap_machine.cap_lang]
step_exec_inv [lemma, in cap_machine.cap_lang]
step_deterministic [lemma, in cap_machine.cap_lang]
step_sind [definition, in cap_machine.cap_lang]
step_ind [definition, in cap_machine.cap_lang]
step_exec_instr [constructor, in cap_machine.cap_lang]
step_exec_memfail [constructor, in cap_machine.cap_lang]
step_exec_corrfail [constructor, in cap_machine.cap_lang]
step_exec_regfail [constructor, in cap_machine.cap_lang]
Store [section, in cap_machine.seal_store]
Store [constructor, in cap_machine.machine_base]
Store [library]
store_case [lemma, in cap_machine.ftlr_binary.Store_binary]
store_res_implies_mem_map [lemma, in cap_machine.ftlr_binary.Store_binary]
store_inr_eq [lemma, in cap_machine.ftlr_binary.Store_binary]
Store_spec_determ [lemma, in cap_machine.ftlr_binary.Store_binary]
store_r [definition, in cap_machine.examples.addr_reg_sample]
store_z [definition, in cap_machine.examples.addr_reg_sample]
store_case [lemma, in cap_machine.ftlr.Store]
store_res_implies_mem_map [lemma, in cap_machine.ftlr.Store]
store_inr_eq [lemma, in cap_machine.ftlr.Store]
Store_spec_sind [definition, in cap_machine.rules.rules_Store]
Store_spec_ind [definition, in cap_machine.rules.rules_Store]
Store_spec_failure_store [constructor, in cap_machine.rules.rules_Store]
Store_spec_success [constructor, in cap_machine.rules.rules_Store]
Store_spec [inductive, in cap_machine.rules.rules_Store]
Store_failure_incr_sind [definition, in cap_machine.rules.rules_Store]
Store_failure_incr_rec [definition, in cap_machine.rules.rules_Store]
Store_failure_incr_ind [definition, in cap_machine.rules.rules_Store]
Store_failure_incr_rect [definition, in cap_machine.rules.rules_Store]
Store_failure_incr [inductive, in cap_machine.rules.rules_Store]
Store_failure_store_sind [definition, in cap_machine.rules.rules_Store]
Store_failure_store_rec [definition, in cap_machine.rules.rules_Store]
Store_failure_store_ind [definition, in cap_machine.rules.rules_Store]
Store_failure_store_rect [definition, in cap_machine.rules.rules_Store]
Store_fail_invalid_PC [constructor, in cap_machine.rules.rules_Store]
Store_fail_bounds [constructor, in cap_machine.rules.rules_Store]
Store_fail_const [constructor, in cap_machine.rules.rules_Store]
Store_failure_store [inductive, in cap_machine.rules.rules_Store]
store_locals_spec [lemma, in cap_machine.examples.call]
store_locals_spec_middle [lemma, in cap_machine.examples.call]
store_locals [definition, in cap_machine.examples.call]
store_locals_instrs [definition, in cap_machine.examples.call]
Store_binary [library]
Sub [constructor, in cap_machine.machine_base]
SubBounds [definition, in machine_utils.finz_base]
SubBounds_lt_of_inner [instance, in machine_utils.solve_pure]
SubBounds_le_b'_e [instance, in machine_utils.solve_pure]
SubBounds_le_b_e [instance, in machine_utils.solve_pure]
SubBounds_le_b_e' [instance, in machine_utils.solve_pure]
SubBounds_le_e_e' [instance, in machine_utils.solve_pure]
SubBounds_le_b'_e' [instance, in machine_utils.solve_pure]
SubBounds_le_b_b' [instance, in machine_utils.solve_pure]
SubBounds_InCtx [lemma, in machine_utils.solve_pure]
subG_sealStorePreΣ [instance, in cap_machine.seal_store]
submseteq_list_difference [lemma, in cap_machine.stdpp_extra]
Subseg [constructor, in cap_machine.machine_base]
Subseg [library]
subseg_z_z [definition, in cap_machine.examples.addr_reg_sample]
subseg_r_r [definition, in cap_machine.examples.addr_reg_sample]
subseg_case [lemma, in cap_machine.ftlr.Subseg]
subseg_interp_preserved [lemma, in cap_machine.ftlr.Subseg]
Subseg_spec_sind [definition, in cap_machine.rules.rules_Subseg]
Subseg_spec_ind [definition, in cap_machine.rules.rules_Subseg]
Subseg_spec_failure [constructor, in cap_machine.rules.rules_Subseg]
Subseg_spec_success_sr [constructor, in cap_machine.rules.rules_Subseg]
Subseg_spec_success_cap [constructor, in cap_machine.rules.rules_Subseg]
Subseg_spec [inductive, in cap_machine.rules.rules_Subseg]
Subseg_failure_sind [definition, in cap_machine.rules.rules_Subseg]
Subseg_failure_ind [definition, in cap_machine.rules.rules_Subseg]
Subseg_fail_incrPC_sr [constructor, in cap_machine.rules.rules_Subseg]
Subseg_fail_not_iswithin_sr [constructor, in cap_machine.rules.rules_Subseg]
Subseg_fail_incrPC_cap [constructor, in cap_machine.rules.rules_Subseg]
Subseg_fail_not_iswithin_cap [constructor, in cap_machine.rules.rules_Subseg]
Subseg_fail_src2_nonotype [constructor, in cap_machine.rules.rules_Subseg]
Subseg_fail_src1_nonotype [constructor, in cap_machine.rules.rules_Subseg]
Subseg_fail_src2_nonaddr [constructor, in cap_machine.rules.rules_Subseg]
Subseg_fail_src1_nonaddr [constructor, in cap_machine.rules.rules_Subseg]
Subseg_fail_allowed [constructor, in cap_machine.rules.rules_Subseg]
Subseg_failure [inductive, in cap_machine.rules.rules_Subseg]
subseg_case [lemma, in cap_machine.ftlr_binary.Subseg_binary]
Subseg_spec_determ [lemma, in cap_machine.ftlr_binary.Subseg_binary]
subseg_buffer_closure [library]
subseg_buffer_malloc [library]
Subseg_binary [library]
subseg_buffer_call [library]
subseg_buffer [library]
sub_z_z [definition, in cap_machine.examples.addr_reg_sample]
sub_z_r [definition, in cap_machine.examples.addr_reg_sample]
sub_r_z [definition, in cap_machine.examples.addr_reg_sample]
sub_r_r [definition, in cap_machine.examples.addr_reg_sample]
Symb [constructor, in cap_machine.proofmode.map_simpl]

T

tactics [library]
tactics_helpers [library]
tac_name_intuitionistic [lemma, in cap_machine.proofmode.NamedProp]
tac_name_replace [lemma, in cap_machine.proofmode.NamedProp]
tac_named_accu [lemma, in cap_machine.proofmode.NamedProp]
tac_specialize_assert_delay [lemma, in cap_machine.proofmode.proofmode]
take_lookup_Some_inv [lemma, in cap_machine.stdpp_extra]
tbl [record, in cap_machine.examples.template_adequacy]
tbl_priv [definition, in cap_machine.examples.template_adequacy]
tbl_pub [definition, in cap_machine.examples.template_adequacy]
tbl_region [definition, in cap_machine.examples.template_adequacy]
tbl_disj [projection, in cap_machine.examples.template_adequacy]
tbl_prog_link [projection, in cap_machine.examples.template_adequacy]
tbl_size [projection, in cap_machine.examples.template_adequacy]
tbl_end [projection, in cap_machine.examples.template_adequacy]
tbl_start [projection, in cap_machine.examples.template_adequacy]
template_adequacy [lemma, in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
template_adequacy [lemma, in cap_machine.examples.interval.interval_client_adequacy]
template_adequacy_ocpl [library]
template_adequacy [library]
tests [module, in cap_machine.proofmode.NamedProp]
tests.env_modus_ponens [lemma, in cap_machine.proofmode.NamedProp]
tests.rep_invariant [definition, in cap_machine.proofmode.NamedProp]
tests.simple_rep [definition, in cap_machine.proofmode.NamedProp]
tests.tests [section, in cap_machine.proofmode.NamedProp]
tests.tests.Haffine [variable, in cap_machine.proofmode.NamedProp]
tests.tests.PROP [variable, in cap_machine.proofmode.NamedProp]
tests.test_inamedaccu_serialize [definition, in cap_machine.proofmode.NamedProp]
tests.test_frame_named_pure [definition, in cap_machine.proofmode.NamedProp]
tests.test_frame_named_persistent [definition, in cap_machine.proofmode.NamedProp]
tests.test_frame_named_spatial [definition, in cap_machine.proofmode.NamedProp]
tests.test_nested_destruct_middle [definition, in cap_machine.proofmode.NamedProp]
tests.test_nested_destruct_conjuncts [definition, in cap_machine.proofmode.NamedProp]
tests.test_nested_destruct [definition, in cap_machine.proofmode.NamedProp]
tests.test_destruct_singleton_under_definition [definition, in cap_machine.proofmode.NamedProp]
tests.test_exists_freshen [definition, in cap_machine.proofmode.NamedProp]
tests.test_exists [definition, in cap_machine.proofmode.NamedProp]
tests.test_named_not_found [definition, in cap_machine.proofmode.NamedProp]
tests.test_named_from_pure [definition, in cap_machine.proofmode.NamedProp]
tests.test_named_last_not_named [definition, in cap_machine.proofmode.NamedProp]
tests.test_named_already_persistent [definition, in cap_machine.proofmode.NamedProp]
tests.test_named_persistent_context [definition, in cap_machine.proofmode.NamedProp]
tests.test_named_persistent_conjuncts [definition, in cap_machine.proofmode.NamedProp]
tests.test_named_persistent_same_name [definition, in cap_machine.proofmode.NamedProp]
tests.test_named_persistent [definition, in cap_machine.proofmode.NamedProp]
tests.test_named_into_pure [definition, in cap_machine.proofmode.NamedProp]
tests.test_iNamed_destruct_pat [definition, in cap_machine.proofmode.NamedProp]
tests.test_multiple_exist_destruct [definition, in cap_machine.proofmode.NamedProp]
tests.test_exist_destruct_no_naming [definition, in cap_machine.proofmode.NamedProp]
tests.test_exist_destruct_under_definition [definition, in cap_machine.proofmode.NamedProp]
tests.test_exist_destruct [definition, in cap_machine.proofmode.NamedProp]
tests.test_remove_named_in_goal [definition, in cap_machine.proofmode.NamedProp]
tests.test_frame_named_sep [definition, in cap_machine.proofmode.NamedProp]
tests.test_frame_named [definition, in cap_machine.proofmode.NamedProp]
tests.test_destruct_pat [definition, in cap_machine.proofmode.NamedProp]
tests.test_destruct_named [definition, in cap_machine.proofmode.NamedProp]
tests.test_pure_pattern_freshen [definition, in cap_machine.proofmode.NamedProp]
tests.test_name_named_2 [definition, in cap_machine.proofmode.NamedProp]
tests.test_name_named_1 [definition, in cap_machine.proofmode.NamedProp]
top [abbreviation, in cap_machine.addr_reg]
top_not_le_eq [lemma, in cap_machine.proofmode.solve_addr]
top_le_eq [lemma, in cap_machine.proofmode.solve_addr]
top_ot [abbreviation, in cap_machine.addr_reg]
to_named [lemma, in cap_machine.proofmode.NamedProp]
to_spec_map_insert [lemma, in cap_machine.rules_binary.rules_binary_base]
to_spec_map.V [variable, in cap_machine.rules_binary.rules_binary_base]
to_spec_map.L [variable, in cap_machine.rules_binary.rules_binary_base]
to_spec_map [section, in cap_machine.rules_binary.rules_binary_base]
to_spec_map [definition, in cap_machine.rules_binary.rules_binary_base]
to_of_val [lemma, in cap_machine.cap_lang]
to_val [definition, in cap_machine.cap_lang]

U

Union_list [instance, in cap_machine.proofmode.disjoint_regions_tactics]
Unnamed_thm0 [definition, in machine_utils.class_instances]
Unnamed_thm [definition, in machine_utils.class_instances]
Unnamed_thm15 [definition, in machine_utils.finz_lemmas]
Unnamed_thm14 [definition, in machine_utils.finz_lemmas]
Unnamed_thm13 [definition, in machine_utils.finz_lemmas]
Unnamed_thm12 [definition, in machine_utils.finz_lemmas]
Unnamed_thm11 [definition, in machine_utils.finz_lemmas]
Unnamed_thm10 [definition, in machine_utils.finz_lemmas]
Unnamed_thm9 [definition, in machine_utils.finz_lemmas]
Unnamed_thm8 [definition, in machine_utils.finz_lemmas]
Unnamed_thm7 [definition, in machine_utils.finz_lemmas]
Unnamed_thm6 [definition, in machine_utils.finz_lemmas]
Unnamed_thm5 [definition, in machine_utils.finz_lemmas]
Unnamed_thm4 [definition, in machine_utils.finz_lemmas]
Unnamed_thm3 [definition, in machine_utils.finz_lemmas]
Unnamed_thm2 [definition, in machine_utils.finz_lemmas]
Unnamed_thm1 [definition, in machine_utils.finz_lemmas]
Unnamed_thm0 [definition, in machine_utils.finz_lemmas]
Unnamed_thm [definition, in machine_utils.finz_lemmas]
Unnamed_thm3 [definition, in machine_utils.solve_pure]
Unnamed_thm3 [definition, in machine_utils.solve_pure]
Unnamed_thm3 [definition, in machine_utils.solve_pure]
Unnamed_thm3 [definition, in machine_utils.solve_pure]
Unnamed_thm2 [definition, in machine_utils.solve_pure]
Unnamed_thm1 [definition, in machine_utils.solve_pure]
Unnamed_thm0 [definition, in machine_utils.solve_pure]
Unnamed_thm [definition, in machine_utils.solve_pure]
Unnamed_thm [definition, in cap_machine.proofmode.solve_addr_extra]
Unnamed_thm4 [definition, in machine_utils.solve_finz]
Unnamed_thm3 [definition, in machine_utils.solve_finz]
Unnamed_thm2 [definition, in machine_utils.solve_finz]
Unnamed_thm1 [definition, in machine_utils.solve_finz]
Unnamed_thm0 [definition, in machine_utils.solve_finz]
Unnamed_thm [definition, in machine_utils.solve_finz]
Unnamed_thm5 [definition, in cap_machine.proofmode.solve_pure]
Unnamed_thm4 [definition, in cap_machine.proofmode.solve_pure]
Unnamed_thm3 [definition, in cap_machine.proofmode.solve_pure]
Unnamed_thm2 [definition, in cap_machine.proofmode.solve_pure]
Unnamed_thm1 [definition, in cap_machine.proofmode.solve_pure]
Unnamed_thm0 [definition, in cap_machine.proofmode.solve_pure]
Unnamed_thm [definition, in cap_machine.proofmode.solve_pure]
UnSeal [constructor, in cap_machine.machine_base]
UnSeal [library]
unsealing_preserves_interp [lemma, in cap_machine.ftlr.UnSeal]
unseal_spec [lemma, in cap_machine.examples.dynamic_sealing]
unseal_instrs_length [definition, in cap_machine.examples.dynamic_sealing]
unseal_instrs [definition, in cap_machine.examples.dynamic_sealing]
unseal_case [lemma, in cap_machine.ftlr.UnSeal]
UnSeal_spec_sind [definition, in cap_machine.rules.rules_UnSeal]
UnSeal_spec_ind [definition, in cap_machine.rules.rules_UnSeal]
UnSeal_spec_failure [constructor, in cap_machine.rules.rules_UnSeal]
UnSeal_spec_success [constructor, in cap_machine.rules.rules_UnSeal]
UnSeal_spec [inductive, in cap_machine.rules.rules_UnSeal]
UnSeal_failure_sind [definition, in cap_machine.rules.rules_UnSeal]
UnSeal_failure_ind [definition, in cap_machine.rules.rules_UnSeal]
UnSeal_fail_incrPC [constructor, in cap_machine.rules.rules_UnSeal]
UnSeal_fail_bounds [constructor, in cap_machine.rules.rules_UnSeal]
UnSeal_fail_sealed [constructor, in cap_machine.rules.rules_UnSeal]
UnSeal_fail_sealr [constructor, in cap_machine.rules.rules_UnSeal]
UnSeal_failure [inductive, in cap_machine.rules.rules_UnSeal]
unseal_case [lemma, in cap_machine.ftlr_binary.UnSeal_binary]
unseal_spec [lemma, in cap_machine.examples.arch_sealing]
unseal_instrs_length [definition, in cap_machine.examples.arch_sealing]
unseal_instrs [definition, in cap_machine.examples.arch_sealing]
UnSeal_binary [library]
updatePC [definition, in cap_machine.cap_lang]
updatePcPerm [definition, in cap_machine.machine_base]
updatePcPerm_cap_non_E [lemma, in cap_machine.machine_base]
updatePC_some [lemma, in cap_machine.cap_lang]
updatePC_fail_incl [lemma, in cap_machine.rules.rules_base]
updatePC_success_incl [lemma, in cap_machine.rules.rules_base]
update_mem [definition, in cap_machine.cap_lang]
update_reg [definition, in cap_machine.cap_lang]
update_ll [lemma, in cap_machine.examples.keylist]

V

val [inductive, in cap_machine.cap_lang]
valid_sealed_interp [lemma, in cap_machine.examples.arch_sealing]
valid_sealed_persistent [instance, in cap_machine.examples.arch_sealing]
valid_sealed [definition, in cap_machine.examples.arch_sealing]
val_stuck [lemma, in cap_machine.cap_lang]
val_sind [definition, in cap_machine.cap_lang]
val_rec [definition, in cap_machine.cap_lang]
val_ind [definition, in cap_machine.cap_lang]
val_rect [definition, in cap_machine.cap_lang]
v1 [definition, in cap_machine.examples.macros_new]
v1 [definition, in cap_machine.examples.macros]
v2 [definition, in cap_machine.examples.macros_new]
v2 [definition, in cap_machine.examples.macros]
v3 [definition, in cap_machine.examples.macros_new]
v3 [definition, in cap_machine.examples.macros]
v4 [definition, in cap_machine.examples.macros_new]
v4 [definition, in cap_machine.examples.macros]
v5 [definition, in cap_machine.examples.macros_new]
v5 [definition, in cap_machine.examples.macros]
v6 [definition, in cap_machine.examples.macros_new]
v6 [definition, in cap_machine.examples.macros]

W

WCap [abbreviation, in cap_machine.machine_base]
well_formed_comp_sind [definition, in cap_machine.linking]
well_formed_comp_ind [definition, in cap_machine.linking]
well_formed_comp [inductive, in cap_machine.linking]
well_formed_pre_comp_sind [definition, in cap_machine.linking]
well_formed_pre_comp_ind [definition, in cap_machine.linking]
well_formed_pre_comp [inductive, in cap_machine.linking]
wf_main [constructor, in cap_machine.linking]
wf_lib [constructor, in cap_machine.linking]
wf_pre_intro [constructor, in cap_machine.linking]
WInt [constructor, in cap_machine.machine_base]
withinBounds [definition, in cap_machine.machine_base]
withinBounds_InBounds [lemma, in cap_machine.machine_base]
withinBounds_le_addr [lemma, in cap_machine.machine_base]
withinBounds_true_iff [lemma, in cap_machine.machine_base]
withinBounds_InCtx [lemma, in cap_machine.proofmode.solve_pure]
within_in_range [lemma, in cap_machine.ftlr.Subseg]
with_adv_and_link_ints.template_adequacy_no_seals [lemma, in cap_machine.examples.template_adequacy]
with_adv_and_link_ints.template_adequacy [lemma, in cap_machine.examples.template_adequacy]
with_adv_and_link_ints.template_adequacy' [lemma, in cap_machine.examples.template_adequacy]
with_adv_and_link_ints.invN [definition, in cap_machine.examples.template_adequacy]
with_adv_and_link_ints.Adequacy.r_adv [variable, in cap_machine.examples.template_adequacy]
with_adv_and_link_ints.Adequacy.I [variable, in cap_machine.examples.template_adequacy]
with_adv_and_link_ints.Adequacy.Adv_tbl [variable, in cap_machine.examples.template_adequacy]
with_adv_and_link_ints.Adequacy.P_tbl [variable, in cap_machine.examples.template_adequacy]
with_adv_and_link_ints.Adequacy.Lib [variable, in cap_machine.examples.template_adequacy]
with_adv_and_link_ints.Adequacy.Adv [variable, in cap_machine.examples.template_adequacy]
with_adv_and_link_ints.Adequacy.P [variable, in cap_machine.examples.template_adequacy]
with_adv_and_link_ints.Adequacy.MP [variable, in cap_machine.examples.template_adequacy]
with_adv_and_link_ints.Adequacy.na_invg [variable, in cap_machine.examples.template_adequacy]
with_adv_and_link_ints.Adequacy.seal_store_preg [variable, in cap_machine.examples.template_adequacy]
with_adv_and_link_ints.Adequacy.reg_preg [variable, in cap_machine.examples.template_adequacy]
with_adv_and_link_ints.Adequacy.mem_preg [variable, in cap_machine.examples.template_adequacy]
with_adv_and_link_ints.Adequacy.inv_preg [variable, in cap_machine.examples.template_adequacy]
with_adv_and_link_ints.Adequacy.Σ [variable, in cap_machine.examples.template_adequacy]
with_adv_and_link_ints.Adequacy [section, in cap_machine.examples.template_adequacy]
with_adv_and_link_ints.initial_memory_domain [definition, in cap_machine.examples.template_adequacy]
with_adv_and_link_ints.is_initial_memory [definition, in cap_machine.examples.template_adequacy]
with_adv_and_link_ints.initial_registers_full_map [lemma, in cap_machine.examples.template_adequacy]
with_adv_and_link_ints.is_initial_registers [definition, in cap_machine.examples.template_adequacy]
with_adv_and_link_ints [module, in cap_machine.examples.template_adequacy]
with_adv_and_link.template_adequacy_no_seals [lemma, in cap_machine.examples.template_adequacy]
with_adv_and_link.template_adequacy [lemma, in cap_machine.examples.template_adequacy]
with_adv_and_link.template_adequacy' [lemma, in cap_machine.examples.template_adequacy]
with_adv_and_link.invN [definition, in cap_machine.examples.template_adequacy]
with_adv_and_link.Adequacy.r_adv [variable, in cap_machine.examples.template_adequacy]
with_adv_and_link.Adequacy.I [variable, in cap_machine.examples.template_adequacy]
with_adv_and_link.Adequacy.Adv_tbl [variable, in cap_machine.examples.template_adequacy]
with_adv_and_link.Adequacy.P_tbl [variable, in cap_machine.examples.template_adequacy]
with_adv_and_link.Adequacy.Lib [variable, in cap_machine.examples.template_adequacy]
with_adv_and_link.Adequacy.Adv [variable, in cap_machine.examples.template_adequacy]
with_adv_and_link.Adequacy.P [variable, in cap_machine.examples.template_adequacy]
with_adv_and_link.Adequacy.MP [variable, in cap_machine.examples.template_adequacy]
with_adv_and_link.Adequacy.na_invg [variable, in cap_machine.examples.template_adequacy]
with_adv_and_link.Adequacy.seal_store_preg [variable, in cap_machine.examples.template_adequacy]
with_adv_and_link.Adequacy.reg_preg [variable, in cap_machine.examples.template_adequacy]
with_adv_and_link.Adequacy.mem_preg [variable, in cap_machine.examples.template_adequacy]
with_adv_and_link.Adequacy.inv_preg [variable, in cap_machine.examples.template_adequacy]
with_adv_and_link.Adequacy.Σ [variable, in cap_machine.examples.template_adequacy]
with_adv_and_link.Adequacy [section, in cap_machine.examples.template_adequacy]
with_adv_and_link.initial_memory_domain [definition, in cap_machine.examples.template_adequacy]
with_adv_and_link.is_initial_memory [definition, in cap_machine.examples.template_adequacy]
with_adv_and_link.initial_registers_full_map [lemma, in cap_machine.examples.template_adequacy]
with_adv_and_link.is_initial_registers [definition, in cap_machine.examples.template_adequacy]
with_adv_and_link [module, in cap_machine.examples.template_adequacy]
with_adv_and_data_and_link.template_adequacy_no_seals [lemma, in cap_machine.examples.template_adequacy]
with_adv_and_data_and_link.template_adequacy [lemma, in cap_machine.examples.template_adequacy]
with_adv_and_data_and_link.template_adequacy' [lemma, in cap_machine.examples.template_adequacy]
with_adv_and_data_and_link.invN [definition, in cap_machine.examples.template_adequacy]
with_adv_and_data_and_link.Adequacy.r_adv [variable, in cap_machine.examples.template_adequacy]
with_adv_and_data_and_link.Adequacy.I [variable, in cap_machine.examples.template_adequacy]
with_adv_and_data_and_link.Adequacy.Adv_tbl [variable, in cap_machine.examples.template_adequacy]
with_adv_and_data_and_link.Adequacy.P_tbl [variable, in cap_machine.examples.template_adequacy]
with_adv_and_data_and_link.Adequacy.Lib [variable, in cap_machine.examples.template_adequacy]
with_adv_and_data_and_link.Adequacy.AdvData [variable, in cap_machine.examples.template_adequacy]
with_adv_and_data_and_link.Adequacy.Adv [variable, in cap_machine.examples.template_adequacy]
with_adv_and_data_and_link.Adequacy.P [variable, in cap_machine.examples.template_adequacy]
with_adv_and_data_and_link.Adequacy.MP [variable, in cap_machine.examples.template_adequacy]
with_adv_and_data_and_link.Adequacy.na_invg [variable, in cap_machine.examples.template_adequacy]
with_adv_and_data_and_link.Adequacy.seal_store_preg [variable, in cap_machine.examples.template_adequacy]
with_adv_and_data_and_link.Adequacy.reg_preg [variable, in cap_machine.examples.template_adequacy]
with_adv_and_data_and_link.Adequacy.mem_preg [variable, in cap_machine.examples.template_adequacy]
with_adv_and_data_and_link.Adequacy.inv_preg [variable, in cap_machine.examples.template_adequacy]
with_adv_and_data_and_link.Adequacy.Σ [variable, in cap_machine.examples.template_adequacy]
with_adv_and_data_and_link.Adequacy [section, in cap_machine.examples.template_adequacy]
with_adv_and_data_and_link.initial_memory_domain [definition, in cap_machine.examples.template_adequacy]
with_adv_and_data_and_link.is_initial_memory [definition, in cap_machine.examples.template_adequacy]
with_adv_and_data_and_link.initial_registers_full_map [lemma, in cap_machine.examples.template_adequacy]
with_adv_and_data_and_link.is_initial_registers [definition, in cap_machine.examples.template_adequacy]
with_adv_and_data_and_link [module, in cap_machine.examples.template_adequacy]
with_adv_ints.template_adequacy [lemma, in cap_machine.examples.template_adequacy]
with_adv_ints.template_adequacy' [lemma, in cap_machine.examples.template_adequacy]
with_adv_ints.invN [definition, in cap_machine.examples.template_adequacy]
with_adv_ints.Adequacy.r_adv [variable, in cap_machine.examples.template_adequacy]
with_adv_ints.Adequacy.I [variable, in cap_machine.examples.template_adequacy]
with_adv_ints.Adequacy.Adv [variable, in cap_machine.examples.template_adequacy]
with_adv_ints.Adequacy.P [variable, in cap_machine.examples.template_adequacy]
with_adv_ints.Adequacy.MP [variable, in cap_machine.examples.template_adequacy]
with_adv_ints.Adequacy.na_invg [variable, in cap_machine.examples.template_adequacy]
with_adv_ints.Adequacy.seal_store_preg [variable, in cap_machine.examples.template_adequacy]
with_adv_ints.Adequacy.reg_preg [variable, in cap_machine.examples.template_adequacy]
with_adv_ints.Adequacy.mem_preg [variable, in cap_machine.examples.template_adequacy]
with_adv_ints.Adequacy.inv_preg [variable, in cap_machine.examples.template_adequacy]
with_adv_ints.Adequacy.Σ [variable, in cap_machine.examples.template_adequacy]
with_adv_ints.Adequacy [section, in cap_machine.examples.template_adequacy]
with_adv_ints.is_initial_memory [definition, in cap_machine.examples.template_adequacy]
with_adv_ints.initial_registers_full_map [lemma, in cap_machine.examples.template_adequacy]
with_adv_ints.is_initial_registers [definition, in cap_machine.examples.template_adequacy]
with_adv_ints [module, in cap_machine.examples.template_adequacy]
with_adv.template_adequacy [lemma, in cap_machine.examples.template_adequacy]
with_adv.template_adequacy' [lemma, in cap_machine.examples.template_adequacy]
with_adv.invN [definition, in cap_machine.examples.template_adequacy]
with_adv.Adequacy.r_adv [variable, in cap_machine.examples.template_adequacy]
with_adv.Adequacy.I [variable, in cap_machine.examples.template_adequacy]
with_adv.Adequacy.Adv [variable, in cap_machine.examples.template_adequacy]
with_adv.Adequacy.P [variable, in cap_machine.examples.template_adequacy]
with_adv.Adequacy.MP [variable, in cap_machine.examples.template_adequacy]
with_adv.Adequacy.na_invg [variable, in cap_machine.examples.template_adequacy]
with_adv.Adequacy.seal_store_preg [variable, in cap_machine.examples.template_adequacy]
with_adv.Adequacy.reg_preg [variable, in cap_machine.examples.template_adequacy]
with_adv.Adequacy.mem_preg [variable, in cap_machine.examples.template_adequacy]
with_adv.Adequacy.inv_preg [variable, in cap_machine.examples.template_adequacy]
with_adv.Adequacy.Σ [variable, in cap_machine.examples.template_adequacy]
with_adv.Adequacy [section, in cap_machine.examples.template_adequacy]
with_adv.is_initial_memory [definition, in cap_machine.examples.template_adequacy]
with_adv.initial_registers_full_map [lemma, in cap_machine.examples.template_adequacy]
with_adv.is_initial_registers [definition, in cap_machine.examples.template_adequacy]
with_adv [module, in cap_machine.examples.template_adequacy]
with_adv_and_data.template_adequacy [lemma, in cap_machine.examples.template_adequacy]
with_adv_and_data.template_adequacy' [lemma, in cap_machine.examples.template_adequacy]
with_adv_and_data.invN [definition, in cap_machine.examples.template_adequacy]
with_adv_and_data.Adequacy.r_adv [variable, in cap_machine.examples.template_adequacy]
with_adv_and_data.Adequacy.I [variable, in cap_machine.examples.template_adequacy]
with_adv_and_data.Adequacy.AdvData [variable, in cap_machine.examples.template_adequacy]
with_adv_and_data.Adequacy.Adv [variable, in cap_machine.examples.template_adequacy]
with_adv_and_data.Adequacy.P [variable, in cap_machine.examples.template_adequacy]
with_adv_and_data.Adequacy.MP [variable, in cap_machine.examples.template_adequacy]
with_adv_and_data.Adequacy.na_invg [variable, in cap_machine.examples.template_adequacy]
with_adv_and_data.Adequacy.seal_store_preg [variable, in cap_machine.examples.template_adequacy]
with_adv_and_data.Adequacy.reg_preg [variable, in cap_machine.examples.template_adequacy]
with_adv_and_data.Adequacy.mem_preg [variable, in cap_machine.examples.template_adequacy]
with_adv_and_data.Adequacy.inv_preg [variable, in cap_machine.examples.template_adequacy]
with_adv_and_data.Adequacy.Σ [variable, in cap_machine.examples.template_adequacy]
with_adv_and_data.Adequacy [section, in cap_machine.examples.template_adequacy]
with_adv_and_data.is_initial_memory [definition, in cap_machine.examples.template_adequacy]
with_adv_and_data.initial_registers_full_map [lemma, in cap_machine.examples.template_adequacy]
with_adv_and_data.is_initial_registers [definition, in cap_machine.examples.template_adequacy]
with_adv_and_data [module, in cap_machine.examples.template_adequacy]
Word [inductive, in cap_machine.machine_base]
word_of_arg_mono [lemma, in cap_machine.cap_lang]
word_of_argument_inr [lemma, in cap_machine.cap_lang]
word_of_argument_Some_inv' [lemma, in cap_machine.cap_lang]
word_of_argument_Some_inv [lemma, in cap_machine.cap_lang]
word_of_argument [definition, in cap_machine.cap_lang]
word_inhabited [instance, in cap_machine.machine_base]
word_countable [instance, in cap_machine.machine_base]
word_eq_dec [instance, in cap_machine.machine_base]
Word_sind [definition, in cap_machine.machine_base]
Word_rec [definition, in cap_machine.machine_base]
Word_ind [definition, in cap_machine.machine_base]
Word_rect [definition, in cap_machine.machine_base]
word_type_encoding [section, in cap_machine.machine_parameters]
wp_jnz_success_next [lemma, in cap_machine.rules.rules_Jnz]
wp_jnz_success_jmpPC2 [lemma, in cap_machine.rules.rules_Jnz]
wp_jnz_success_jmpPC1 [lemma, in cap_machine.rules.rules_Jnz]
wp_jnz_success_jmpPC [lemma, in cap_machine.rules.rules_Jnz]
wp_jnz_success_jmp2 [lemma, in cap_machine.rules.rules_Jnz]
wp_jnz_success_jmp [lemma, in cap_machine.rules.rules_Jnz]
wp_Jnz [lemma, in cap_machine.rules.rules_Jnz]
wp_subseg_success_lr_sr [lemma, in cap_machine.rules.rules_Subseg]
wp_subseg_success_r_sr [lemma, in cap_machine.rules.rules_Subseg]
wp_subseg_success_l_sr [lemma, in cap_machine.rules.rules_Subseg]
wp_subseg_success_same_sr [lemma, in cap_machine.rules.rules_Subseg]
wp_subseg_success_sr [lemma, in cap_machine.rules.rules_Subseg]
wp_subseg_success_pc_lr [lemma, in cap_machine.rules.rules_Subseg]
wp_subseg_success_pc_r [lemma, in cap_machine.rules.rules_Subseg]
wp_subseg_success_pc_l [lemma, in cap_machine.rules.rules_Subseg]
wp_subseg_success_pc_same [lemma, in cap_machine.rules.rules_Subseg]
wp_subseg_success_pc [lemma, in cap_machine.rules.rules_Subseg]
wp_subseg_fail_lr [lemma, in cap_machine.rules.rules_Subseg]
wp_subseg_success_lr [lemma, in cap_machine.rules.rules_Subseg]
wp_subseg_success_r [lemma, in cap_machine.rules.rules_Subseg]
wp_subseg_success_l [lemma, in cap_machine.rules.rules_Subseg]
wp_subseg_success_same [lemma, in cap_machine.rules.rules_Subseg]
wp_subseg_success [lemma, in cap_machine.rules.rules_Subseg]
wp_Subseg [lemma, in cap_machine.rules.rules_Subseg]
wp_Lea_fail_none [lemma, in cap_machine.rules.rules_Lea]
wp_lea_success_z_sr [lemma, in cap_machine.rules.rules_Lea]
wp_lea_success_reg_sr [lemma, in cap_machine.rules.rules_Lea]
wp_lea_success_z [lemma, in cap_machine.rules.rules_Lea]
wp_lea_success_z_PC [lemma, in cap_machine.rules.rules_Lea]
wp_lea_success_reg [lemma, in cap_machine.rules.rules_Lea]
wp_lea_success_reg_PC [lemma, in cap_machine.rules.rules_Lea]
wp_lea [lemma, in cap_machine.rules.rules_Lea]
wp_seal_nosb_r2 [lemma, in cap_machine.rules.rules_Seal]
wp_seal_PC_eq [lemma, in cap_machine.rules.rules_Seal]
wp_seal_PC [lemma, in cap_machine.rules.rules_Seal]
wp_seal_r2 [lemma, in cap_machine.rules.rules_Seal]
wp_seal_r1 [lemma, in cap_machine.rules.rules_Seal]
wp_seal_success [lemma, in cap_machine.rules.rules_Seal]
wp_Seal [lemma, in cap_machine.rules.rules_Seal]
wp_unseal_nomatch_r2 [lemma, in cap_machine.rules.rules_UnSeal]
wp_unseal_PC [lemma, in cap_machine.rules.rules_UnSeal]
wp_unseal_r2 [lemma, in cap_machine.rules.rules_UnSeal]
wp_unseal_r1 [lemma, in cap_machine.rules.rules_UnSeal]
wp_unseal_success [lemma, in cap_machine.rules.rules_UnSeal]
wp_UnSeal [lemma, in cap_machine.rules.rules_UnSeal]
wp_store_success_reg_low [lemma, in cap_machine.examples.ocpl_lowval_like]
wp_load_success_same_notinstr_low [lemma, in cap_machine.examples.ocpl_lowval_like]
wp_move_success_reg_fromPC [lemma, in cap_machine.rules.rules_Mov]
wp_move_success_reg_toPC [lemma, in cap_machine.rules.rules_Mov]
wp_move_success_reg_samePC [lemma, in cap_machine.rules.rules_Mov]
wp_move_success_reg_same [lemma, in cap_machine.rules.rules_Mov]
wp_move_success_reg [lemma, in cap_machine.rules.rules_Mov]
wp_move_success_z [lemma, in cap_machine.rules.rules_Mov]
wp_Mov [lemma, in cap_machine.rules.rules_Mov]
wp_jmp_successPC [lemma, in cap_machine.rules_binary.rules_binary_Jmp]
wp_store_success_z [lemma, in cap_machine.rules.rules_Store]
wp_store_success_reg_same [lemma, in cap_machine.rules.rules_Store]
wp_store_success_reg [lemma, in cap_machine.rules.rules_Store]
wp_store_success_reg_same_a [lemma, in cap_machine.rules.rules_Store]
wp_store_success_reg_same' [lemma, in cap_machine.rules.rules_Store]
wp_store_success_reg_frominstr [lemma, in cap_machine.rules.rules_Store]
wp_store_success_reg_frominstr_same [lemma, in cap_machine.rules.rules_Store]
wp_store_success_reg' [lemma, in cap_machine.rules.rules_Store]
wp_store_success_same [lemma, in cap_machine.rules.rules_Store]
wp_store_success_reg_PC_same [lemma, in cap_machine.rules.rules_Store]
wp_store_success_reg_PC [lemma, in cap_machine.rules.rules_Store]
wp_store_success_z_PC [lemma, in cap_machine.rules.rules_Store]
wp_store [lemma, in cap_machine.rules.rules_Store]
wp_fail [lemma, in cap_machine.rules.rules_base]
wp_halt [lemma, in cap_machine.rules.rules_base]
wp_notCorrectPC_range [lemma, in cap_machine.rules.rules_base]
wp_notCorrectPC_perm [lemma, in cap_machine.rules.rules_base]
wp_notCorrectPC [lemma, in cap_machine.rules.rules_base]
wp_lift_atomic_base_step_no_fork_determ [definition, in cap_machine.rules.rules_base]
wp_jmp_successPC [lemma, in cap_machine.rules.rules_Jmp]
wp_jmp_success [lemma, in cap_machine.rules.rules_Jmp]
wp_Get_fail [lemma, in cap_machine.examples.keylist]
wp_load_success_same_alt [lemma, in cap_machine.rules.rules_Load]
wp_load_success_alt [lemma, in cap_machine.rules.rules_Load]
wp_load_success_fromPC [lemma, in cap_machine.rules.rules_Load]
wp_load_success_PC [lemma, in cap_machine.rules.rules_Load]
wp_load_success_same_frominstr [lemma, in cap_machine.rules.rules_Load]
wp_load_success_same_notinstr [lemma, in cap_machine.rules.rules_Load]
wp_load_success_same [lemma, in cap_machine.rules.rules_Load]
wp_load_success_frominstr [lemma, in cap_machine.rules.rules_Load]
wp_load_success_notinstr [lemma, in cap_machine.rules.rules_Load]
wp_load_success [lemma, in cap_machine.rules.rules_Load]
wp_load [lemma, in cap_machine.rules.rules_Load]
wp_load_general [lemma, in cap_machine.rules.rules_Load]
wp_add_sub_lt_fail_r_r_2 [lemma, in cap_machine.rules.rules_AddSubLt]
wp_add_sub_lt_fail_r_r_1 [lemma, in cap_machine.rules.rules_AddSubLt]
wp_add_sub_lt_fail_z_r [lemma, in cap_machine.rules.rules_AddSubLt]
wp_add_sub_lt_success_dst_dst [lemma, in cap_machine.rules.rules_AddSubLt]
wp_add_sub_lt_success_r_dst [lemma, in cap_machine.rules.rules_AddSubLt]
wp_add_sub_lt_success_dst_r [lemma, in cap_machine.rules.rules_AddSubLt]
wp_add_sub_lt_success_z_dst [lemma, in cap_machine.rules.rules_AddSubLt]
wp_add_sub_lt_success_dst_z [lemma, in cap_machine.rules.rules_AddSubLt]
wp_add_sub_lt_success_r_r_same [lemma, in cap_machine.rules.rules_AddSubLt]
wp_add_sub_lt_success_r_r [lemma, in cap_machine.rules.rules_AddSubLt]
wp_add_sub_lt_success_z_r [lemma, in cap_machine.rules.rules_AddSubLt]
wp_add_sub_lt_success_r_z [lemma, in cap_machine.rules.rules_AddSubLt]
wp_add_sub_lt_success_z_z [lemma, in cap_machine.rules.rules_AddSubLt]
wp_AddSubLt [lemma, in cap_machine.rules.rules_AddSubLt]
wp_restrict_success_z_sr [lemma, in cap_machine.rules.rules_Restrict]
wp_restrict_success_reg_sr [lemma, in cap_machine.rules.rules_Restrict]
wp_restrict_success_z [lemma, in cap_machine.rules.rules_Restrict]
wp_restrict_success_z_PC [lemma, in cap_machine.rules.rules_Restrict]
wp_restrict_success_reg [lemma, in cap_machine.rules.rules_Restrict]
wp_restrict_success_reg_PC [lemma, in cap_machine.rules.rules_Restrict]
wp_Restrict [lemma, in cap_machine.rules.rules_Restrict]
wp_Get_fail [lemma, in cap_machine.rules.rules_Get]
wp_Get_success [lemma, in cap_machine.rules.rules_Get]
wp_Get_same_success [lemma, in cap_machine.rules.rules_Get]
wp_Get_PC_success [lemma, in cap_machine.rules.rules_Get]
wp_Get [lemma, in cap_machine.rules.rules_Get]
writeAllowed [definition, in cap_machine.machine_base]
writeAllowedWord [definition, in cap_machine.logrel]
writeAllowedWord_dec [instance, in cap_machine.logrel]
writeAllowed_in_r_a_Persistent [instance, in cap_machine.logrel_binary]
writeAllowed_in_r_a_Persistent [instance, in cap_machine.logrel]
writeAllowed_in_r_a_Decidable [instance, in cap_machine.logrel]
writeAllowed_in_r_a [definition, in cap_machine.logrel]
writeAllowed_nonO [lemma, in cap_machine.machine_base]
writeA_implies_readA [lemma, in cap_machine.machine_base]
write_allowed_inv [lemma, in cap_machine.logrel_binary]
write_cond_ne [instance, in cap_machine.logrel_binary]
write_cond [definition, in cap_machine.logrel_binary]
write_allowed_inv [lemma, in cap_machine.logrel]
write_cond_ne [instance, in cap_machine.logrel]
write_cond [definition, in cap_machine.logrel]
WSealable [constructor, in cap_machine.machine_base]
WSealed [constructor, in cap_machine.machine_base]
WSealRange [abbreviation, in cap_machine.machine_base]
wt_int [definition, in cap_machine.machine_parameters]
wt_sealed [definition, in cap_machine.machine_parameters]
wt_sealrange [definition, in cap_machine.machine_parameters]
wt_cap [definition, in cap_machine.machine_parameters]
w_4c [definition, in cap_machine.examples.addr_reg_sample]
w_4b [definition, in cap_machine.examples.addr_reg_sample]
w_4a [definition, in cap_machine.examples.addr_reg_sample]
w_3 [definition, in cap_machine.examples.addr_reg_sample]
w_2_U [definition, in cap_machine.examples.addr_reg_sample]
w_2 [definition, in cap_machine.examples.addr_reg_sample]
w_1 [definition, in cap_machine.examples.addr_reg_sample]

X

x [projection, in cap_machine.examples.adder_adequacy]
x_size [projection, in cap_machine.examples.adder_adequacy]
x' [projection, in cap_machine.examples.adder_adequacy]

Z

za [abbreviation, in cap_machine.addr_reg]
za_ot [abbreviation, in cap_machine.addr_reg]
zip_app [lemma, in cap_machine.stdpp_extra]
zip_seq_between_lookup [lemma, in cap_machine.proofmode.mkregion_helpers]
ZToFinZ [record, in machine_utils.classes]
ZToFinZ [inductive, in machine_utils.classes]
ZToFinZ_z_of [instance, in machine_utils.class_instances]
z_cond [definition, in cap_machine.logrel_binary]
z_of_arg_mono [lemma, in cap_machine.cap_lang]
z_of_argument_Some_inv' [lemma, in cap_machine.cap_lang]
z_of_argument_Some_inv [lemma, in cap_machine.cap_lang]
z_of_argument [definition, in cap_machine.cap_lang]
z_addr_base [lemma, in cap_machine.proofmode.proofmode]
z_of_ot [abbreviation, in cap_machine.addr_reg]
z_to_otype [abbreviation, in cap_machine.addr_reg]
z_of [abbreviation, in cap_machine.addr_reg]
z_to_addr [abbreviation, in cap_machine.addr_reg]
Z_of_regname [definition, in cap_machine.addr_reg]

other

_ =? _ (Addr_scope) [notation, in cap_machine.addr_reg]
0 (Addr_scope) [notation, in cap_machine.addr_reg]
_ ^+ _ (Addr_scope) [notation, in cap_machine.addr_reg]
_ + _ (Addr_scope) [notation, in cap_machine.addr_reg]
_ <? _ (Addr_scope) [notation, in cap_machine.addr_reg]
_ < _ (Addr_scope) [notation, in cap_machine.addr_reg]
_ <=? _ (Addr_scope) [notation, in cap_machine.addr_reg]
_ <= _ (Addr_scope) [notation, in cap_machine.addr_reg]
_ <= _ < _ (Addr_scope) [notation, in cap_machine.addr_reg]
_ ↪ₐ _ (bi_scope) [notation, in cap_machine.examples.interval_arch.interval_arch]
⤇ _ (bi_scope) [notation, in cap_machine.rules_binary.rules_binary_base]
_ ↣ᵣ _ (bi_scope) [notation, in cap_machine.rules_binary.rules_binary_base]
_ ↣ᵣ{ _ } _ (bi_scope) [notation, in cap_machine.rules_binary.rules_binary_base]
_ ↣ₐ _ (bi_scope) [notation, in cap_machine.rules_binary.rules_binary_base]
_ ↣ₐ{ _ } _ (bi_scope) [notation, in cap_machine.rules_binary.rules_binary_base]
[[ _ , _ ]] ↣ₐ [[ _ ]] (bi_scope) [notation, in cap_machine.proofmode.region]
_ ∈ₐ [[ _ , _ ]] (bi_scope) [notation, in cap_machine.proofmode.region]
[[ _ , _ ]] ⊂ₐ [[ _ , _ ]] (bi_scope) [notation, in cap_machine.proofmode.region]
[[ _ , _ ]] ↦ₐ [[ _ ]] (bi_scope) [notation, in cap_machine.proofmode.region]
_ ↦ₐ _ (bi_scope) [notation, in cap_machine.rules.rules_base]
_ ↦ₐ{ _ } _ (bi_scope) [notation, in cap_machine.rules.rules_base]
_ ↦ᵣ _ (bi_scope) [notation, in cap_machine.rules.rules_base]
_ ↦ᵣ{ _ } _ (bi_scope) [notation, in cap_machine.rules.rules_base]
_ ↪ₐ _ (bi_scope) [notation, in cap_machine.examples.interval.interval]
_ ^* _ (finz_scope) [notation, in machine_utils.finz_base]
_ * _ (finz_scope) [notation, in machine_utils.finz_base]
_ ^- _ (finz_scope) [notation, in machine_utils.finz_base]
_ ^+ _ (finz_scope) [notation, in machine_utils.finz_base]
_ + _ (finz_scope) [notation, in machine_utils.finz_base]
_ =? _ (finz_scope) [notation, in machine_utils.finz_base]
_ <? _ (finz_scope) [notation, in machine_utils.finz_base]
_ < _ (finz_scope) [notation, in machine_utils.finz_base]
_ <=? _ (finz_scope) [notation, in machine_utils.finz_base]
_ <= _ (finz_scope) [notation, in machine_utils.finz_base]
_ <= _ < _ (finz_scope) [notation, in machine_utils.finz_base]
_ =? _ (OType_scope) [notation, in cap_machine.addr_reg]
0 (OType_scope) [notation, in cap_machine.addr_reg]
_ ^+ _ (OType_scope) [notation, in cap_machine.addr_reg]
_ + _ (OType_scope) [notation, in cap_machine.addr_reg]
_ <? _ (OType_scope) [notation, in cap_machine.addr_reg]
_ < _ (OType_scope) [notation, in cap_machine.addr_reg]
_ <=? _ (OType_scope) [notation, in cap_machine.addr_reg]
_ <= _ (OType_scope) [notation, in cap_machine.addr_reg]
_ <= _ < _ (OType_scope) [notation, in cap_machine.addr_reg]
##@{ _ } _ (stdpp_scope) [notation, in cap_machine.proofmode.disjoint_regions_tactics]
## _ (stdpp_scope) [notation, in cap_machine.proofmode.disjoint_regions_tactics]
_ ∷ _ [notation, in cap_machine.proofmode.NamedProp]
_ ∖∖ _ [notation, in cap_machine.stdpp_extra]

---

Notation Index

R

[[ _ , _ ]] ↣ₐ [[ _ ]] (bi_scope) [in cap_machine.proofmode.region]
[[ _ , _ ]] ↦ₐ [[ _ ]] (bi_scope) [in cap_machine.proofmode.region]

other

_ =? _ (Addr_scope) [in cap_machine.addr_reg]
0 (Addr_scope) [in cap_machine.addr_reg]
_ ^+ _ (Addr_scope) [in cap_machine.addr_reg]
_ + _ (Addr_scope) [in cap_machine.addr_reg]
_ <? _ (Addr_scope) [in cap_machine.addr_reg]
_ < _ (Addr_scope) [in cap_machine.addr_reg]
_ <=? _ (Addr_scope) [in cap_machine.addr_reg]
_ <= _ (Addr_scope) [in cap_machine.addr_reg]
_ <= _ < _ (Addr_scope) [in cap_machine.addr_reg]
_ ↪ₐ _ (bi_scope) [in cap_machine.examples.interval_arch.interval_arch]
⤇ _ (bi_scope) [in cap_machine.rules_binary.rules_binary_base]
_ ↣ᵣ _ (bi_scope) [in cap_machine.rules_binary.rules_binary_base]
_ ↣ᵣ{ _ } _ (bi_scope) [in cap_machine.rules_binary.rules_binary_base]
_ ↣ₐ _ (bi_scope) [in cap_machine.rules_binary.rules_binary_base]
_ ↣ₐ{ _ } _ (bi_scope) [in cap_machine.rules_binary.rules_binary_base]
[[ _ , _ ]] ↣ₐ [[ _ ]] (bi_scope) [in cap_machine.proofmode.region]
_ ∈ₐ [[ _ , _ ]] (bi_scope) [in cap_machine.proofmode.region]
[[ _ , _ ]] ⊂ₐ [[ _ , _ ]] (bi_scope) [in cap_machine.proofmode.region]
[[ _ , _ ]] ↦ₐ [[ _ ]] (bi_scope) [in cap_machine.proofmode.region]
_ ↦ₐ _ (bi_scope) [in cap_machine.rules.rules_base]
_ ↦ₐ{ _ } _ (bi_scope) [in cap_machine.rules.rules_base]
_ ↦ᵣ _ (bi_scope) [in cap_machine.rules.rules_base]
_ ↦ᵣ{ _ } _ (bi_scope) [in cap_machine.rules.rules_base]
_ ↪ₐ _ (bi_scope) [in cap_machine.examples.interval.interval]
_ ^* _ (finz_scope) [in machine_utils.finz_base]
_ * _ (finz_scope) [in machine_utils.finz_base]
_ ^- _ (finz_scope) [in machine_utils.finz_base]
_ ^+ _ (finz_scope) [in machine_utils.finz_base]
_ + _ (finz_scope) [in machine_utils.finz_base]
_ =? _ (finz_scope) [in machine_utils.finz_base]
_ <? _ (finz_scope) [in machine_utils.finz_base]
_ < _ (finz_scope) [in machine_utils.finz_base]
_ <=? _ (finz_scope) [in machine_utils.finz_base]
_ <= _ (finz_scope) [in machine_utils.finz_base]
_ <= _ < _ (finz_scope) [in machine_utils.finz_base]
_ =? _ (OType_scope) [in cap_machine.addr_reg]
0 (OType_scope) [in cap_machine.addr_reg]
_ ^+ _ (OType_scope) [in cap_machine.addr_reg]
_ + _ (OType_scope) [in cap_machine.addr_reg]
_ <? _ (OType_scope) [in cap_machine.addr_reg]
_ < _ (OType_scope) [in cap_machine.addr_reg]
_ <=? _ (OType_scope) [in cap_machine.addr_reg]
_ <= _ (OType_scope) [in cap_machine.addr_reg]
_ <= _ < _ (OType_scope) [in cap_machine.addr_reg]
##@{ _ } _ (stdpp_scope) [in cap_machine.proofmode.disjoint_regions_tactics]
## _ (stdpp_scope) [in cap_machine.proofmode.disjoint_regions_tactics]
_ ∷ _ [in cap_machine.proofmode.NamedProp]
_ ∖∖ _ [in cap_machine.stdpp_extra]

---

Module Index

B

basic [in cap_machine.examples.template_adequacy]

F

finz [in machine_utils.finz_interval]
finz [in machine_utils.finz_base]

O

ocpl [in cap_machine.examples.template_adequacy_ocpl]

T

tests [in cap_machine.proofmode.NamedProp]

W

with_adv_and_link_ints [in cap_machine.examples.template_adequacy]
with_adv_and_link [in cap_machine.examples.template_adequacy]
with_adv_and_data_and_link [in cap_machine.examples.template_adequacy]
with_adv_ints [in cap_machine.examples.template_adequacy]
with_adv [in cap_machine.examples.template_adequacy]
with_adv_and_data [in cap_machine.examples.template_adequacy]

---

Variable Index

A

adder.f_end [in cap_machine.examples.adder]
adder.f_start [in cap_machine.examples.adder]
adder.memg [in cap_machine.examples.adder]
adder.MP [in cap_machine.examples.adder]
adder.N [in cap_machine.examples.adder]
adder.nainv [in cap_machine.examples.adder]
adder.regg [in cap_machine.examples.adder]
adder.sealsg [in cap_machine.examples.adder]
adder.Σ [in cap_machine.examples.adder]
Adequacy.cfgg [in cap_machine.examples.counter_binary.counter_binary_adequacy]
Adequacy.inv_preg [in cap_machine.examples.adder_adequacy]
Adequacy.inv_preg [in cap_machine.examples.counter.counter_adequacy]
Adequacy.inv_preg [in cap_machine.examples.counter_binary.counter_binary_adequacy]
Adequacy.mem_preg [in cap_machine.examples.adder_adequacy]
Adequacy.mem_preg [in cap_machine.examples.counter.counter_adequacy]
Adequacy.mem_preg [in cap_machine.examples.counter_binary.counter_binary_adequacy]
Adequacy.MP [in cap_machine.examples.adder_adequacy]
Adequacy.MP [in cap_machine.examples.counter.counter_adequacy]
Adequacy.MP [in cap_machine.examples.counter_binary.counter_binary_adequacy]
Adequacy.na_invg [in cap_machine.examples.adder_adequacy]
Adequacy.na_invg [in cap_machine.examples.counter.counter_adequacy]
Adequacy.na_invg [in cap_machine.examples.counter_binary.counter_binary_adequacy]
Adequacy.reg_preg [in cap_machine.examples.adder_adequacy]
Adequacy.reg_preg [in cap_machine.examples.counter.counter_adequacy]
Adequacy.reg_preg [in cap_machine.examples.counter_binary.counter_binary_adequacy]
Adequacy.seal_store_preg [in cap_machine.examples.adder_adequacy]
Adequacy.seal_store_preg [in cap_machine.examples.counter.counter_adequacy]
Adequacy.seal_store_preg [in cap_machine.examples.counter_binary.counter_binary_adequacy]
Adequacy.Σ [in cap_machine.examples.adder_adequacy]
Adequacy.Σ [in cap_machine.examples.counter.counter_adequacy]
Adequacy.Σ [in cap_machine.examples.counter_binary.counter_binary_adequacy]
Assert.memg [in cap_machine.examples.assert]
Assert.MP [in cap_machine.examples.assert]
Assert.nainv [in cap_machine.examples.assert]
Assert.regg [in cap_machine.examples.assert]
Assert.Σ [in cap_machine.examples.assert]

B

base_program_CPS.nainv [in cap_machine.exercises.subseg_buffer]
base_program_CPS.MP [in cap_machine.exercises.subseg_buffer]
base_program_CPS.sealsg [in cap_machine.exercises.subseg_buffer]
base_program_CPS.regg [in cap_machine.exercises.subseg_buffer]
base_program_CPS.memg [in cap_machine.exercises.subseg_buffer]
base_program_CPS.Σ [in cap_machine.exercises.subseg_buffer]
base_program.MP [in cap_machine.exercises.subseg_buffer]
base_program.regg [in cap_machine.exercises.subseg_buffer]
base_program.memg [in cap_machine.exercises.subseg_buffer]
base_program.Σ [in cap_machine.exercises.subseg_buffer]
base_program.MP [in cap_machine.exercises.cerise_tutorial]
base_program.regg [in cap_machine.exercises.cerise_tutorial]
base_program.memg [in cap_machine.exercises.cerise_tutorial]
base_program.Σ [in cap_machine.exercises.cerise_tutorial]
base_program.MP [in cap_machine.exercises.cerise_tutorial_solutions]
base_program.regg [in cap_machine.exercises.cerise_tutorial_solutions]
base_program.memg [in cap_machine.exercises.cerise_tutorial_solutions]
base_program.Σ [in cap_machine.exercises.cerise_tutorial_solutions]
basic.Adequacy.I [in cap_machine.examples.template_adequacy]
basic.Adequacy.inv_preg [in cap_machine.examples.template_adequacy]
basic.Adequacy.mem_preg [in cap_machine.examples.template_adequacy]
basic.Adequacy.MP [in cap_machine.examples.template_adequacy]
basic.Adequacy.na_invg [in cap_machine.examples.template_adequacy]
basic.Adequacy.P [in cap_machine.examples.template_adequacy]
basic.Adequacy.reg_preg [in cap_machine.examples.template_adequacy]
basic.Adequacy.seal_store_preg [in cap_machine.examples.template_adequacy]
basic.Adequacy.Σ [in cap_machine.examples.template_adequacy]
bin_log_def.MP [in cap_machine.fundamental_binary]
bin_log_def.cfgsg [in cap_machine.fundamental_binary]
bin_log_def.nainv [in cap_machine.fundamental_binary]
bin_log_def.regg [in cap_machine.fundamental_binary]
bin_log_def.memg [in cap_machine.fundamental_binary]
bin_log_def.Σ [in cap_machine.fundamental_binary]
buffer.memg [in cap_machine.examples.buffer]
buffer.MP [in cap_machine.examples.buffer]
buffer.nainv [in cap_machine.examples.buffer]
buffer.regg [in cap_machine.examples.buffer]
buffer.seals [in cap_machine.examples.buffer]
buffer.Σ [in cap_machine.examples.buffer]

C

callback.memg [in cap_machine.examples.callback]
callback.MP [in cap_machine.examples.callback]
callback.nainv [in cap_machine.examples.callback]
callback.regg [in cap_machine.examples.callback]
callback.sealsg [in cap_machine.examples.callback]
callback.Σ [in cap_machine.examples.callback]
call.memg [in cap_machine.examples.call]
call.MP [in cap_machine.examples.call]
call.nainv [in cap_machine.examples.call]
call.regg [in cap_machine.examples.call]
call.Σ [in cap_machine.examples.call]
cap_lang_rules.HR [in cap_machine.rules.rules_Lea]
cap_lang_rules.HM [in cap_machine.rules.rules_Lea]
closure_program.nainv [in cap_machine.exercises.subseg_buffer_closure]
closure_program.MP [in cap_machine.exercises.subseg_buffer_closure]
closure_program.sealsg [in cap_machine.exercises.subseg_buffer_closure]
closure_program.regg [in cap_machine.exercises.subseg_buffer_closure]
closure_program.memg [in cap_machine.exercises.subseg_buffer_closure]
closure_program.Σ [in cap_machine.exercises.subseg_buffer_closure]
codefrag_subblock.MP [in cap_machine.proofmode.proofmode]
codefrag_subblock.regg [in cap_machine.proofmode.proofmode]
codefrag_subblock.memg [in cap_machine.proofmode.proofmode]
codefrag_subblock.Σ [in cap_machine.proofmode.proofmode]
codefrag.memg [in cap_machine.proofmode.region]
codefrag.memg [in cap_machine.proofmode.proofmode]
codefrag.MP [in cap_machine.proofmode.region]
codefrag.MP [in cap_machine.proofmode.proofmode]
codefrag.regg [in cap_machine.proofmode.region]
codefrag.regg [in cap_machine.proofmode.proofmode]
codefrag.Σ [in cap_machine.proofmode.region]
codefrag.Σ [in cap_machine.proofmode.proofmode]
Contiguous.memg [in cap_machine.proofmode.contiguous]
Contiguous.regg [in cap_machine.proofmode.contiguous]
Contiguous.Σ [in cap_machine.proofmode.contiguous]
counter_example_preamble.MP [in cap_machine.examples.counter.counter_preamble]
counter_example_preamble.nainv [in cap_machine.examples.counter.counter_preamble]
counter_example_preamble.sealsg [in cap_machine.examples.counter.counter_preamble]
counter_example_preamble.regg [in cap_machine.examples.counter.counter_preamble]
counter_example_preamble.memg [in cap_machine.examples.counter.counter_preamble]
counter_example_preamble.Σ [in cap_machine.examples.counter.counter_preamble]
counter_example_preamble.MP [in cap_machine.examples.counter_binary.counter_binary_preamble_def]
counter_example_preamble.cfg [in cap_machine.examples.counter_binary.counter_binary_preamble_def]
counter_example_preamble.nainv [in cap_machine.examples.counter_binary.counter_binary_preamble_def]
counter_example_preamble.regg [in cap_machine.examples.counter_binary.counter_binary_preamble_def]
counter_example_preamble.memg [in cap_machine.examples.counter_binary.counter_binary_preamble_def]
counter_example_preamble.Σ [in cap_machine.examples.counter_binary.counter_binary_preamble_def]
counter_example_preamble.MP [in cap_machine.examples.counter_binary.counter_binary_preamble]
counter_example_preamble.cfg [in cap_machine.examples.counter_binary.counter_binary_preamble]
counter_example_preamble.nainv [in cap_machine.examples.counter_binary.counter_binary_preamble]
counter_example_preamble.regg [in cap_machine.examples.counter_binary.counter_binary_preamble]
counter_example_preamble.memg [in cap_machine.examples.counter_binary.counter_binary_preamble]
counter_example_preamble.Σ [in cap_machine.examples.counter_binary.counter_binary_preamble]
counter_example_preamble.MP [in cap_machine.examples.counter_binary.counter_binary_preamble_left]
counter_example_preamble.cfg [in cap_machine.examples.counter_binary.counter_binary_preamble_left]
counter_example_preamble.nainv [in cap_machine.examples.counter_binary.counter_binary_preamble_left]
counter_example_preamble.regg [in cap_machine.examples.counter_binary.counter_binary_preamble_left]
counter_example_preamble.memg [in cap_machine.examples.counter_binary.counter_binary_preamble_left]
counter_example_preamble.Σ [in cap_machine.examples.counter_binary.counter_binary_preamble_left]
counter.cfg [in cap_machine.examples.counter_binary.counter_binary]
counter.memg [in cap_machine.examples.counter.counter]
counter.memg [in cap_machine.examples.counter_binary.counter_binary]
counter.memg [in cap_machine.examples.minimal_counter]
counter.MP [in cap_machine.examples.counter.counter]
counter.MP [in cap_machine.examples.counter_binary.counter_binary]
counter.MP [in cap_machine.examples.minimal_counter]
counter.nainv [in cap_machine.examples.counter.counter]
counter.nainv [in cap_machine.examples.counter_binary.counter_binary]
counter.nainv [in cap_machine.examples.minimal_counter]
counter.regg [in cap_machine.examples.counter.counter]
counter.regg [in cap_machine.examples.counter_binary.counter_binary]
counter.regg [in cap_machine.examples.minimal_counter]
counter.sealg [in cap_machine.examples.minimal_counter]
counter.sealsg [in cap_machine.examples.counter.counter]
counter.Σ [in cap_machine.examples.counter.counter]
counter.Σ [in cap_machine.examples.counter_binary.counter_binary]
counter.Σ [in cap_machine.examples.minimal_counter]

D

denote_domain.HcountK [in cap_machine.proofmode.register_tactics]
denote_domain.HeqdecK [in cap_machine.proofmode.register_tactics]
denote_domain.K [in cap_machine.proofmode.register_tactics]
disjoint_list.A [in cap_machine.proofmode.disjoint_regions_tactics]

F

finz_lemmas.finz_bound [in machine_utils.finz_base]
finz.finz.finz_bound [in machine_utils.finz_base]
fundamental.cfgsg [in cap_machine.ftlr_binary.Seal_binary]
fundamental.cfgsg [in cap_machine.ftlr_binary.Store_binary]
fundamental.cfgsg [in cap_machine.ftlr_binary.AddSubLt_binary]
fundamental.cfgsg [in cap_machine.ftlr_binary.interp_weakening]
fundamental.cfgsg [in cap_machine.ftlr_binary.Restrict_binary]
fundamental.cfgsg [in cap_machine.ftlr_binary.Jnz_binary]
fundamental.cfgsg [in cap_machine.ftlr_binary.Subseg_binary]
fundamental.cfgsg [in cap_machine.ftlr_binary.UnSeal_binary]
fundamental.cfgsg [in cap_machine.ftlr_binary.ftlr_base_binary]
fundamental.cfgsg [in cap_machine.ftlr_binary.Jmp_binary]
fundamental.cfgsg [in cap_machine.ftlr_binary.Lea_binary]
fundamental.cfgsg [in cap_machine.ftlr_binary.Get_binary]
fundamental.cfgsg [in cap_machine.ftlr_binary.Mov_binary]
fundamental.cfgsg [in cap_machine.fundamental_binary]
fundamental.cfgsg [in cap_machine.ftlr_binary.Load_binary]
fundamental.memg [in cap_machine.ftlr_binary.Seal_binary]
fundamental.memg [in cap_machine.ftlr_binary.Store_binary]
fundamental.memg [in cap_machine.ftlr.Load]
fundamental.memg [in cap_machine.ftlr.UnSeal]
fundamental.memg [in cap_machine.ftlr.Store]
fundamental.memg [in cap_machine.ftlr.Restrict]
fundamental.memg [in cap_machine.ftlr.Subseg]
fundamental.memg [in cap_machine.ftlr.interp_weakening]
fundamental.memg [in cap_machine.ftlr_binary.AddSubLt_binary]
fundamental.memg [in cap_machine.ftlr.Mov]
fundamental.memg [in cap_machine.ftlr_binary.interp_weakening]
fundamental.memg [in cap_machine.ftlr_binary.Restrict_binary]
fundamental.memg [in cap_machine.ftlr_binary.Jnz_binary]
fundamental.memg [in cap_machine.ftlr_binary.Subseg_binary]
fundamental.memg [in cap_machine.ftlr_binary.UnSeal_binary]
fundamental.memg [in cap_machine.ftlr_binary.ftlr_base_binary]
fundamental.memg [in cap_machine.ftlr.Jnz]
fundamental.memg [in cap_machine.ftlr_binary.Jmp_binary]
fundamental.memg [in cap_machine.ftlr.Lea]
fundamental.memg [in cap_machine.ftlr_binary.Lea_binary]
fundamental.memg [in cap_machine.ftlr.AddSubLt]
fundamental.memg [in cap_machine.ftlr_binary.Get_binary]
fundamental.memg [in cap_machine.ftlr.ftlr_base]
fundamental.memg [in cap_machine.ftlr.Seal]
fundamental.memg [in cap_machine.fundamental]
fundamental.memg [in cap_machine.ftlr.Jmp]
fundamental.memg [in cap_machine.ftlr.Get]
fundamental.memg [in cap_machine.ftlr_binary.Mov_binary]
fundamental.memg [in cap_machine.fundamental_binary]
fundamental.memg [in cap_machine.ftlr_binary.Load_binary]
fundamental.MP [in cap_machine.fundamental]
fundamental.MP [in cap_machine.fundamental_binary]
fundamental.nainv [in cap_machine.ftlr_binary.Seal_binary]
fundamental.nainv [in cap_machine.ftlr_binary.Store_binary]
fundamental.nainv [in cap_machine.ftlr.Load]
fundamental.nainv [in cap_machine.ftlr.UnSeal]
fundamental.nainv [in cap_machine.ftlr.Store]
fundamental.nainv [in cap_machine.ftlr.Restrict]
fundamental.nainv [in cap_machine.ftlr.Subseg]
fundamental.nainv [in cap_machine.ftlr.interp_weakening]
fundamental.nainv [in cap_machine.ftlr_binary.AddSubLt_binary]
fundamental.nainv [in cap_machine.ftlr.Mov]
fundamental.nainv [in cap_machine.ftlr_binary.interp_weakening]
fundamental.nainv [in cap_machine.ftlr_binary.Restrict_binary]
fundamental.nainv [in cap_machine.ftlr_binary.Jnz_binary]
fundamental.nainv [in cap_machine.ftlr_binary.Subseg_binary]
fundamental.nainv [in cap_machine.ftlr_binary.UnSeal_binary]
fundamental.nainv [in cap_machine.ftlr_binary.ftlr_base_binary]
fundamental.nainv [in cap_machine.ftlr.Jnz]
fundamental.nainv [in cap_machine.ftlr_binary.Jmp_binary]
fundamental.nainv [in cap_machine.ftlr.Lea]
fundamental.nainv [in cap_machine.ftlr_binary.Lea_binary]
fundamental.nainv [in cap_machine.ftlr.AddSubLt]
fundamental.nainv [in cap_machine.ftlr_binary.Get_binary]
fundamental.nainv [in cap_machine.ftlr.ftlr_base]
fundamental.nainv [in cap_machine.ftlr.Seal]
fundamental.nainv [in cap_machine.fundamental]
fundamental.nainv [in cap_machine.ftlr.Jmp]
fundamental.nainv [in cap_machine.ftlr.Get]
fundamental.nainv [in cap_machine.ftlr_binary.Mov_binary]
fundamental.nainv [in cap_machine.fundamental_binary]
fundamental.nainv [in cap_machine.ftlr_binary.Load_binary]
fundamental.regg [in cap_machine.ftlr_binary.Seal_binary]
fundamental.regg [in cap_machine.ftlr_binary.Store_binary]
fundamental.regg [in cap_machine.ftlr.Load]
fundamental.regg [in cap_machine.ftlr.UnSeal]
fundamental.regg [in cap_machine.ftlr.Store]
fundamental.regg [in cap_machine.ftlr.Restrict]
fundamental.regg [in cap_machine.ftlr.Subseg]
fundamental.regg [in cap_machine.ftlr.interp_weakening]
fundamental.regg [in cap_machine.ftlr_binary.AddSubLt_binary]
fundamental.regg [in cap_machine.ftlr.Mov]
fundamental.regg [in cap_machine.ftlr_binary.interp_weakening]
fundamental.regg [in cap_machine.ftlr_binary.Restrict_binary]
fundamental.regg [in cap_machine.ftlr_binary.Jnz_binary]
fundamental.regg [in cap_machine.ftlr_binary.Subseg_binary]
fundamental.regg [in cap_machine.ftlr_binary.UnSeal_binary]
fundamental.regg [in cap_machine.ftlr_binary.ftlr_base_binary]
fundamental.regg [in cap_machine.ftlr.Jnz]
fundamental.regg [in cap_machine.ftlr_binary.Jmp_binary]
fundamental.regg [in cap_machine.ftlr.Lea]
fundamental.regg [in cap_machine.ftlr_binary.Lea_binary]
fundamental.regg [in cap_machine.ftlr.AddSubLt]
fundamental.regg [in cap_machine.ftlr_binary.Get_binary]
fundamental.regg [in cap_machine.ftlr.ftlr_base]
fundamental.regg [in cap_machine.ftlr.Seal]
fundamental.regg [in cap_machine.fundamental]
fundamental.regg [in cap_machine.ftlr.Jmp]
fundamental.regg [in cap_machine.ftlr.Get]
fundamental.regg [in cap_machine.ftlr_binary.Mov_binary]
fundamental.regg [in cap_machine.fundamental_binary]
fundamental.regg [in cap_machine.ftlr_binary.Load_binary]
fundamental.sealsg [in cap_machine.ftlr.Load]
fundamental.sealsg [in cap_machine.ftlr.UnSeal]
fundamental.sealsg [in cap_machine.ftlr.Store]
fundamental.sealsg [in cap_machine.ftlr.Restrict]
fundamental.sealsg [in cap_machine.ftlr.Subseg]
fundamental.sealsg [in cap_machine.ftlr.interp_weakening]
fundamental.sealsg [in cap_machine.ftlr.Mov]
fundamental.sealsg [in cap_machine.ftlr.Jnz]
fundamental.sealsg [in cap_machine.ftlr.Lea]
fundamental.sealsg [in cap_machine.ftlr.AddSubLt]
fundamental.sealsg [in cap_machine.ftlr.ftlr_base]
fundamental.sealsg [in cap_machine.ftlr.Seal]
fundamental.sealsg [in cap_machine.fundamental]
fundamental.sealsg [in cap_machine.ftlr.Jmp]
fundamental.sealsg [in cap_machine.ftlr.Get]
fundamental.Σ [in cap_machine.ftlr_binary.Seal_binary]
fundamental.Σ [in cap_machine.ftlr_binary.Store_binary]
fundamental.Σ [in cap_machine.ftlr.Load]
fundamental.Σ [in cap_machine.ftlr.UnSeal]
fundamental.Σ [in cap_machine.ftlr.Store]
fundamental.Σ [in cap_machine.ftlr.Restrict]
fundamental.Σ [in cap_machine.ftlr.Subseg]
fundamental.Σ [in cap_machine.ftlr.interp_weakening]
fundamental.Σ [in cap_machine.ftlr_binary.AddSubLt_binary]
fundamental.Σ [in cap_machine.ftlr.Mov]
fundamental.Σ [in cap_machine.ftlr_binary.interp_weakening]
fundamental.Σ [in cap_machine.ftlr_binary.Restrict_binary]
fundamental.Σ [in cap_machine.ftlr_binary.Jnz_binary]
fundamental.Σ [in cap_machine.ftlr_binary.Subseg_binary]
fundamental.Σ [in cap_machine.ftlr_binary.UnSeal_binary]
fundamental.Σ [in cap_machine.ftlr_binary.ftlr_base_binary]
fundamental.Σ [in cap_machine.ftlr.Jnz]
fundamental.Σ [in cap_machine.ftlr_binary.Jmp_binary]
fundamental.Σ [in cap_machine.ftlr.Lea]
fundamental.Σ [in cap_machine.ftlr_binary.Lea_binary]
fundamental.Σ [in cap_machine.ftlr.AddSubLt]
fundamental.Σ [in cap_machine.ftlr_binary.Get_binary]
fundamental.Σ [in cap_machine.ftlr.ftlr_base]
fundamental.Σ [in cap_machine.ftlr.Seal]
fundamental.Σ [in cap_machine.fundamental]
fundamental.Σ [in cap_machine.ftlr.Jmp]
fundamental.Σ [in cap_machine.ftlr.Get]
fundamental.Σ [in cap_machine.ftlr_binary.Mov_binary]
fundamental.Σ [in cap_machine.fundamental_binary]
fundamental.Σ [in cap_machine.ftlr_binary.Load_binary]

I

increment_macro.MP [in cap_machine.exercises.cerise_modularity]
increment_macro.regg [in cap_machine.exercises.cerise_modularity]
increment_macro.memg [in cap_machine.exercises.cerise_modularity]
increment_macro.Σ [in cap_machine.exercises.cerise_modularity]
increment_macro.MP [in cap_machine.exercises.cerise_modularity_solutions]
increment_macro.regg [in cap_machine.exercises.cerise_modularity_solutions]
increment_macro.memg [in cap_machine.exercises.cerise_modularity_solutions]
increment_macro.Σ [in cap_machine.exercises.cerise_modularity_solutions]
interval_closure.MP [in cap_machine.examples.interval_arch.interval_closure_arch]
interval_closure.nainv [in cap_machine.examples.interval_arch.interval_closure_arch]
interval_closure.seals [in cap_machine.examples.interval_arch.interval_closure_arch]
interval_closure.regg [in cap_machine.examples.interval_arch.interval_closure_arch]
interval_closure.memg [in cap_machine.examples.interval_arch.interval_closure_arch]
interval_closure.Σ [in cap_machine.examples.interval_arch.interval_closure_arch]
interval_client.MP [in cap_machine.examples.interval.interval_client_closure]
interval_client.sealG [in cap_machine.examples.interval.interval_client_closure]
interval_client.nainv [in cap_machine.examples.interval.interval_client_closure]
interval_client.sealg [in cap_machine.examples.interval.interval_client_closure]
interval_client.regg [in cap_machine.examples.interval.interval_client_closure]
interval_client.memg [in cap_machine.examples.interval.interval_client_closure]
interval_client.Σ [in cap_machine.examples.interval.interval_client_closure]
interval_client.MP [in cap_machine.examples.interval.interval_client]
interval_client.sealG [in cap_machine.examples.interval.interval_client]
interval_client.nainv [in cap_machine.examples.interval.interval_client]
interval_client.sealg [in cap_machine.examples.interval.interval_client]
interval_client.regg [in cap_machine.examples.interval.interval_client]
interval_client.memg [in cap_machine.examples.interval.interval_client]
interval_client.Σ [in cap_machine.examples.interval.interval_client]
interval_closure.MP [in cap_machine.examples.interval.interval_closure]
interval_closure.sealG [in cap_machine.examples.interval.interval_closure]
interval_closure.nainv [in cap_machine.examples.interval.interval_closure]
interval_closure.regg [in cap_machine.examples.interval.interval_closure]
interval_closure.memg [in cap_machine.examples.interval.interval_closure]
interval_closure.Σ [in cap_machine.examples.interval.interval_closure]
interval_client.MP [in cap_machine.examples.interval_arch.interval_client_arch]
interval_client.nainv [in cap_machine.examples.interval_arch.interval_client_arch]
interval_client.sealg [in cap_machine.examples.interval_arch.interval_client_arch]
interval_client.regg [in cap_machine.examples.interval_arch.interval_client_arch]
interval_client.memg [in cap_machine.examples.interval_arch.interval_client_arch]
interval_client.Σ [in cap_machine.examples.interval_arch.interval_client_arch]
interval_client.MP [in cap_machine.examples.interval_arch.interval_client_closure_arch]
interval_client.nainv [in cap_machine.examples.interval_arch.interval_client_closure_arch]
interval_client.sealg [in cap_machine.examples.interval_arch.interval_client_closure_arch]
interval_client.regg [in cap_machine.examples.interval_arch.interval_client_closure_arch]
interval_client.memg [in cap_machine.examples.interval_arch.interval_client_closure_arch]
interval_client.Σ [in cap_machine.examples.interval_arch.interval_client_closure_arch]
interval.memg [in cap_machine.examples.interval_arch.interval_arch]
interval.memg [in cap_machine.examples.interval.interval]
interval.mono [in cap_machine.examples.interval.interval]
interval.MP [in cap_machine.examples.interval_arch.interval_arch]
interval.MP [in cap_machine.examples.interval.interval]
interval.nainv [in cap_machine.examples.interval_arch.interval_arch]
interval.nainv [in cap_machine.examples.interval.interval]
interval.regg [in cap_machine.examples.interval_arch.interval_arch]
interval.regg [in cap_machine.examples.interval.interval]
interval.seals [in cap_machine.examples.interval_arch.interval_arch]
interval.seals [in cap_machine.examples.interval.interval]
interval.Σ [in cap_machine.examples.interval_arch.interval_arch]
interval.Σ [in cap_machine.examples.interval.interval]
int_client_adequacy.memlayout [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
int_client_adequacy.nainv [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
int_client_adequacy.sealg [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
int_client_adequacy.regg [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
int_client_adequacy.memg [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
int_client_adequacy.Σ [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
int_client_adequacy.memlayout [in cap_machine.examples.interval.interval_client_adequacy]
int_client_adequacy.sealLLG [in cap_machine.examples.interval.interval_client_adequacy]
int_client_adequacy.nainv [in cap_machine.examples.interval.interval_client_adequacy]
int_client_adequacy.sealg [in cap_machine.examples.interval.interval_client_adequacy]
int_client_adequacy.regg [in cap_machine.examples.interval.interval_client_adequacy]
int_client_adequacy.memg [in cap_machine.examples.interval.interval_client_adequacy]
int_client_adequacy.Σ [in cap_machine.examples.interval.interval_client_adequacy]

L

lemmas.finz_bound [in machine_utils.finz_interval]
linking_table.MP [in cap_machine.exercises.cerise_modularity]
linking_table.regg [in cap_machine.exercises.cerise_modularity]
linking_table.memg [in cap_machine.exercises.cerise_modularity]
linking_table.Σ [in cap_machine.exercises.cerise_modularity]
linking_table.MP [in cap_machine.exercises.cerise_modularity_solutions]
linking_table.regg [in cap_machine.exercises.cerise_modularity_solutions]
linking_table.memg [in cap_machine.exercises.cerise_modularity_solutions]
linking_table.Σ [in cap_machine.exercises.cerise_modularity_solutions]
Linking.can_address_only [in cap_machine.linking]
Linking.is_main [in cap_machine.linking]
Linking.Symbols [in cap_machine.linking]
Linking.Symbols_countable [in cap_machine.linking]
Linking.Symbols_eq_dec [in cap_machine.linking]
Linking.Word [in cap_machine.linking]
list.memg [in cap_machine.examples.keylist]
list.mono [in cap_machine.examples.keylist]
list.MP [in cap_machine.examples.keylist]
list.nainv [in cap_machine.examples.keylist]
list.regg [in cap_machine.examples.keylist]
list.seals [in cap_machine.examples.keylist]
list.Σ [in cap_machine.examples.keylist]
logrel.cfgsg [in cap_machine.logrel_binary]
logrel.memg [in cap_machine.logrel_binary]
logrel.memg [in cap_machine.logrel]
logrel.nainv [in cap_machine.logrel_binary]
logrel.nainv [in cap_machine.logrel]
logrel.regg [in cap_machine.logrel_binary]
logrel.regg [in cap_machine.logrel]
logrel.sealsg [in cap_machine.logrel]
logrel.Σ [in cap_machine.logrel_binary]
logrel.Σ [in cap_machine.logrel]

M

macros.cfg [in cap_machine.examples.macros_binary]
macros.memg [in cap_machine.examples.macros_new]
macros.memg [in cap_machine.examples.macros_binary]
macros.memg [in cap_machine.examples.macros]
macros.MP [in cap_machine.examples.macros_new]
macros.MP [in cap_machine.examples.macros_binary]
macros.MP [in cap_machine.examples.macros]
macros.nainv [in cap_machine.examples.macros_new]
macros.nainv [in cap_machine.examples.macros_binary]
macros.nainv [in cap_machine.examples.macros]
macros.regg [in cap_machine.examples.macros_new]
macros.regg [in cap_machine.examples.macros_binary]
macros.regg [in cap_machine.examples.macros]
macros.seals [in cap_machine.examples.macros_new]
macros.Σ [in cap_machine.examples.macros_new]
macros.Σ [in cap_machine.examples.macros_binary]
macros.Σ [in cap_machine.examples.macros]
malloc_program.MP [in cap_machine.exercises.subseg_buffer_malloc]
malloc_program.nainv [in cap_machine.exercises.subseg_buffer_malloc]
malloc_program.sealsg [in cap_machine.exercises.subseg_buffer_malloc]
malloc_program.regg [in cap_machine.exercises.subseg_buffer_malloc]
malloc_program.memg [in cap_machine.exercises.subseg_buffer_malloc]
malloc_program.Σ [in cap_machine.exercises.subseg_buffer_malloc]
monotone.A [in cap_machine.monotone]
monotone.R [in cap_machine.monotone]

N

named.PROP [in cap_machine.proofmode.NamedProp]

P

program_closure_ro.nainv [in cap_machine.exercises.restrict_buffer]
program_closure_ro.MP [in cap_machine.exercises.restrict_buffer]
program_closure_ro.sealsg [in cap_machine.exercises.restrict_buffer]
program_closure_ro.regg [in cap_machine.exercises.restrict_buffer]
program_closure_ro.memg [in cap_machine.exercises.restrict_buffer]
program_closure_ro.Σ [in cap_machine.exercises.restrict_buffer]
program_ro.nainv [in cap_machine.exercises.restrict_buffer]
program_ro.MP [in cap_machine.exercises.restrict_buffer]
program_ro.sealsg [in cap_machine.exercises.restrict_buffer]
program_ro.regg [in cap_machine.exercises.restrict_buffer]
program_ro.memg [in cap_machine.exercises.restrict_buffer]
program_ro.Σ [in cap_machine.exercises.restrict_buffer]
program_call_adequacy.prog_call_correct.memlayout [in cap_machine.exercises.subseg_buffer_call]
program_call_adequacy.prog_call_correct.nainv [in cap_machine.exercises.subseg_buffer_call]
program_call_adequacy.prog_call_correct.sealsg [in cap_machine.exercises.subseg_buffer_call]
program_call_adequacy.prog_call_correct.regg [in cap_machine.exercises.subseg_buffer_call]
program_call_adequacy.prog_call_correct.memg [in cap_machine.exercises.subseg_buffer_call]
program_call_adequacy.prog_call_correct.Σ [in cap_machine.exercises.subseg_buffer_call]
program_call_adequacy.HVsize [in cap_machine.exercises.subseg_buffer_call]
program_call_adequacy.size [in cap_machine.exercises.subseg_buffer_call]
program_call_adequacy.secret_val [in cap_machine.exercises.subseg_buffer_call]
program_call_adequacy.secret_off [in cap_machine.exercises.subseg_buffer_call]
program_call.nainv [in cap_machine.exercises.subseg_buffer_call]
program_call.MP [in cap_machine.exercises.subseg_buffer_call]
program_call.sealsg [in cap_machine.exercises.subseg_buffer_call]
program_call.regg [in cap_machine.exercises.subseg_buffer_call]
program_call.memg [in cap_machine.exercises.subseg_buffer_call]
program_call.Σ [in cap_machine.exercises.subseg_buffer_call]

R

rclear_macro.MP [in cap_machine.exercises.cerise_modularity]
rclear_macro.regg [in cap_machine.exercises.cerise_modularity]
rclear_macro.memg [in cap_machine.exercises.cerise_modularity]
rclear_macro.Σ [in cap_machine.exercises.cerise_modularity]
rclear_macro.MP [in cap_machine.exercises.cerise_modularity_solutions]
rclear_macro.regg [in cap_machine.exercises.cerise_modularity_solutions]
rclear_macro.memg [in cap_machine.exercises.cerise_modularity_solutions]
rclear_macro.Σ [in cap_machine.exercises.cerise_modularity_solutions]
region.cfg [in cap_machine.proofmode.region]
roe_adequacy.memlayout [in cap_machine.examples.lse_adequacy]
roe_adequacy.nainv [in cap_machine.examples.lse_adequacy]
roe_adequacy.sealsg [in cap_machine.examples.lse_adequacy]
roe_adequacy.regg [in cap_machine.examples.lse_adequacy]
roe_adequacy.memg [in cap_machine.examples.lse_adequacy]
roe_adequacy.Σ [in cap_machine.examples.lse_adequacy]
roe.memg [in cap_machine.examples.lse]
roe.MP [in cap_machine.examples.lse]
roe.nainv [in cap_machine.examples.lse]
roe.regg [in cap_machine.examples.lse]
roe.sealsg [in cap_machine.examples.lse]
roe.Σ [in cap_machine.examples.lse]
rules.memg [in cap_machine.examples.ocpl_lowval_like]
rules.MP [in cap_machine.examples.ocpl_lowval_like]
rules.nainv [in cap_machine.examples.ocpl_lowval_like]
rules.regg [in cap_machine.examples.ocpl_lowval_like]
rules.sealg [in cap_machine.examples.ocpl_lowval_like]
rules.Σ [in cap_machine.examples.ocpl_lowval_like]

S

sealing.memg [in cap_machine.examples.dynamic_sealing]
sealing.memg [in cap_machine.examples.arch_sealing]
sealing.mono [in cap_machine.examples.dynamic_sealing]
sealing.MP [in cap_machine.examples.dynamic_sealing]
sealing.MP [in cap_machine.examples.arch_sealing]
sealing.nainv [in cap_machine.examples.dynamic_sealing]
sealing.nainv [in cap_machine.examples.arch_sealing]
sealing.regg [in cap_machine.examples.dynamic_sealing]
sealing.regg [in cap_machine.examples.arch_sealing]
sealing.seals [in cap_machine.examples.dynamic_sealing]
sealing.seals [in cap_machine.examples.arch_sealing]
sealing.Σ [in cap_machine.examples.dynamic_sealing]
sealing.Σ [in cap_machine.examples.arch_sealing]
SimpleMalloc.cfg [in cap_machine.examples.malloc_binary]
SimpleMalloc.memg [in cap_machine.examples.malloc_binary]
SimpleMalloc.memg [in cap_machine.examples.malloc]
SimpleMalloc.MP [in cap_machine.examples.malloc_binary]
SimpleMalloc.MP [in cap_machine.examples.malloc]
SimpleMalloc.nainv [in cap_machine.examples.malloc_binary]
SimpleMalloc.nainv [in cap_machine.examples.malloc]
SimpleMalloc.regg [in cap_machine.examples.malloc_binary]
SimpleMalloc.regg [in cap_machine.examples.malloc]
SimpleMalloc.sealsg [in cap_machine.examples.malloc]
SimpleMalloc.Σ [in cap_machine.examples.malloc_binary]
SimpleMalloc.Σ [in cap_machine.examples.malloc]
SimpleSalloc.memg [in cap_machine.examples.salloc]
SimpleSalloc.MP [in cap_machine.examples.salloc]
SimpleSalloc.nainv [in cap_machine.examples.salloc]
SimpleSalloc.regg [in cap_machine.examples.salloc]
SimpleSalloc.sealsg [in cap_machine.examples.salloc]
SimpleSalloc.Σ [in cap_machine.examples.salloc]
simpl_gmap.HcountK [in cap_machine.proofmode.map_simpl]
simpl_gmap.HeqdecK [in cap_machine.proofmode.map_simpl]
simpl_gmap.K [in cap_machine.proofmode.map_simpl]

T

tests.tests.Haffine [in cap_machine.proofmode.NamedProp]
tests.tests.PROP [in cap_machine.proofmode.NamedProp]
to_spec_map.V [in cap_machine.rules_binary.rules_binary_base]
to_spec_map.L [in cap_machine.rules_binary.rules_binary_base]

W

with_adv_and_link_ints.Adequacy.r_adv [in cap_machine.examples.template_adequacy]
with_adv_and_link_ints.Adequacy.I [in cap_machine.examples.template_adequacy]
with_adv_and_link_ints.Adequacy.Adv_tbl [in cap_machine.examples.template_adequacy]
with_adv_and_link_ints.Adequacy.P_tbl [in cap_machine.examples.template_adequacy]
with_adv_and_link_ints.Adequacy.Lib [in cap_machine.examples.template_adequacy]
with_adv_and_link_ints.Adequacy.Adv [in cap_machine.examples.template_adequacy]
with_adv_and_link_ints.Adequacy.P [in cap_machine.examples.template_adequacy]
with_adv_and_link_ints.Adequacy.MP [in cap_machine.examples.template_adequacy]
with_adv_and_link_ints.Adequacy.na_invg [in cap_machine.examples.template_adequacy]
with_adv_and_link_ints.Adequacy.seal_store_preg [in cap_machine.examples.template_adequacy]
with_adv_and_link_ints.Adequacy.reg_preg [in cap_machine.examples.template_adequacy]
with_adv_and_link_ints.Adequacy.mem_preg [in cap_machine.examples.template_adequacy]
with_adv_and_link_ints.Adequacy.inv_preg [in cap_machine.examples.template_adequacy]
with_adv_and_link_ints.Adequacy.Σ [in cap_machine.examples.template_adequacy]
with_adv_and_link.Adequacy.r_adv [in cap_machine.examples.template_adequacy]
with_adv_and_link.Adequacy.I [in cap_machine.examples.template_adequacy]
with_adv_and_link.Adequacy.Adv_tbl [in cap_machine.examples.template_adequacy]
with_adv_and_link.Adequacy.P_tbl [in cap_machine.examples.template_adequacy]
with_adv_and_link.Adequacy.Lib [in cap_machine.examples.template_adequacy]
with_adv_and_link.Adequacy.Adv [in cap_machine.examples.template_adequacy]
with_adv_and_link.Adequacy.P [in cap_machine.examples.template_adequacy]
with_adv_and_link.Adequacy.MP [in cap_machine.examples.template_adequacy]
with_adv_and_link.Adequacy.na_invg [in cap_machine.examples.template_adequacy]
with_adv_and_link.Adequacy.seal_store_preg [in cap_machine.examples.template_adequacy]
with_adv_and_link.Adequacy.reg_preg [in cap_machine.examples.template_adequacy]
with_adv_and_link.Adequacy.mem_preg [in cap_machine.examples.template_adequacy]
with_adv_and_link.Adequacy.inv_preg [in cap_machine.examples.template_adequacy]
with_adv_and_link.Adequacy.Σ [in cap_machine.examples.template_adequacy]
with_adv_and_data_and_link.Adequacy.r_adv [in cap_machine.examples.template_adequacy]
with_adv_and_data_and_link.Adequacy.I [in cap_machine.examples.template_adequacy]
with_adv_and_data_and_link.Adequacy.Adv_tbl [in cap_machine.examples.template_adequacy]
with_adv_and_data_and_link.Adequacy.P_tbl [in cap_machine.examples.template_adequacy]
with_adv_and_data_and_link.Adequacy.Lib [in cap_machine.examples.template_adequacy]
with_adv_and_data_and_link.Adequacy.AdvData [in cap_machine.examples.template_adequacy]
with_adv_and_data_and_link.Adequacy.Adv [in cap_machine.examples.template_adequacy]
with_adv_and_data_and_link.Adequacy.P [in cap_machine.examples.template_adequacy]
with_adv_and_data_and_link.Adequacy.MP [in cap_machine.examples.template_adequacy]
with_adv_and_data_and_link.Adequacy.na_invg [in cap_machine.examples.template_adequacy]
with_adv_and_data_and_link.Adequacy.seal_store_preg [in cap_machine.examples.template_adequacy]
with_adv_and_data_and_link.Adequacy.reg_preg [in cap_machine.examples.template_adequacy]
with_adv_and_data_and_link.Adequacy.mem_preg [in cap_machine.examples.template_adequacy]
with_adv_and_data_and_link.Adequacy.inv_preg [in cap_machine.examples.template_adequacy]
with_adv_and_data_and_link.Adequacy.Σ [in cap_machine.examples.template_adequacy]
with_adv_ints.Adequacy.r_adv [in cap_machine.examples.template_adequacy]
with_adv_ints.Adequacy.I [in cap_machine.examples.template_adequacy]
with_adv_ints.Adequacy.Adv [in cap_machine.examples.template_adequacy]
with_adv_ints.Adequacy.P [in cap_machine.examples.template_adequacy]
with_adv_ints.Adequacy.MP [in cap_machine.examples.template_adequacy]
with_adv_ints.Adequacy.na_invg [in cap_machine.examples.template_adequacy]
with_adv_ints.Adequacy.seal_store_preg [in cap_machine.examples.template_adequacy]
with_adv_ints.Adequacy.reg_preg [in cap_machine.examples.template_adequacy]
with_adv_ints.Adequacy.mem_preg [in cap_machine.examples.template_adequacy]
with_adv_ints.Adequacy.inv_preg [in cap_machine.examples.template_adequacy]
with_adv_ints.Adequacy.Σ [in cap_machine.examples.template_adequacy]
with_adv.Adequacy.r_adv [in cap_machine.examples.template_adequacy]
with_adv.Adequacy.I [in cap_machine.examples.template_adequacy]
with_adv.Adequacy.Adv [in cap_machine.examples.template_adequacy]
with_adv.Adequacy.P [in cap_machine.examples.template_adequacy]
with_adv.Adequacy.MP [in cap_machine.examples.template_adequacy]
with_adv.Adequacy.na_invg [in cap_machine.examples.template_adequacy]
with_adv.Adequacy.seal_store_preg [in cap_machine.examples.template_adequacy]
with_adv.Adequacy.reg_preg [in cap_machine.examples.template_adequacy]
with_adv.Adequacy.mem_preg [in cap_machine.examples.template_adequacy]
with_adv.Adequacy.inv_preg [in cap_machine.examples.template_adequacy]
with_adv.Adequacy.Σ [in cap_machine.examples.template_adequacy]
with_adv_and_data.Adequacy.r_adv [in cap_machine.examples.template_adequacy]
with_adv_and_data.Adequacy.I [in cap_machine.examples.template_adequacy]
with_adv_and_data.Adequacy.AdvData [in cap_machine.examples.template_adequacy]
with_adv_and_data.Adequacy.Adv [in cap_machine.examples.template_adequacy]
with_adv_and_data.Adequacy.P [in cap_machine.examples.template_adequacy]
with_adv_and_data.Adequacy.MP [in cap_machine.examples.template_adequacy]
with_adv_and_data.Adequacy.na_invg [in cap_machine.examples.template_adequacy]
with_adv_and_data.Adequacy.seal_store_preg [in cap_machine.examples.template_adequacy]
with_adv_and_data.Adequacy.reg_preg [in cap_machine.examples.template_adequacy]
with_adv_and_data.Adequacy.mem_preg [in cap_machine.examples.template_adequacy]
with_adv_and_data.Adequacy.inv_preg [in cap_machine.examples.template_adequacy]
with_adv_and_data.Adequacy.Σ [in cap_machine.examples.template_adequacy]

---

Library Index

A

adder
adder_adequacy
addr_reg_sample
addr_reg
AddSubLt
AddSubLt_binary
arch_sealing
assert

B

buffer

C

call
callback
cap_lang
cerise_modularity
cerise_modularity_solutions
cerise_tutorial_solutions
cerise_tutorial
classes
classes
class_instances
class_instances
contiguous
counter
counter_binary_adequacy_theorem
counter_binary_preamble_def
counter_preamble
counter_binary
counter_binary_preamble
counter_adequacy
counter_binary_adequacy
counter_binary_preamble_left

D

disjoint_regions_tactics
dynamic_sealing

F

finz
finz_lemmas
finz_base
finz_interval
ftlr_base
ftlr_base_binary
fundamental
fundamental_binary

G

Get
Get_binary

I

interp_weakening
interp_weakening
interval
interval_client_closure_arch
interval_client_adequacy_arch
interval_closure
interval_client_arch
interval_client_closure
interval_closure_arch
interval_client_adequacy
interval_client
interval_arch
iris_extra

J

Jmp
Jmp_binary
Jnz
Jnz_binary

K

keylist

L

Lea
Lea_binary
linking
Load
Load_binary
logrel
logrel_binary
lse
lse_adequacy

M

machine_run
machine_parameters
machine_base
macros
macros_new
macros_binary
malloc
malloc_binary
map_simpl
minimal_counter
mkregion_helpers
monotone
Mov
Mov_binary

N

NamedProp

O

ocpl_lowval_like

P

proofmode
proofmode_instr_rules

R

region
register_tactics
Restrict
Restrict_binary
restrict_buffer
rules
rules_binary_Lea
rules_Load
rules_binary_Get
rules_binary_AddSubLt
rules_UnSeal
rules_Jmp
rules_Mov
rules_binary_Subseg
rules_binary_base
rules_binary
rules_Store
rules_Subseg
rules_binary_Jnz
rules_binary_Mov
rules_Jnz
rules_binary_Store
rules_binary_Load
rules_Seal
rules_base
rules_Get
rules_binary_Restrict
rules_binary_Jmp
rules_Lea
rules_Restrict
rules_AddSubLt

S

salloc
Seal
Seal_binary
seal_store
solve_pure
solve_pure
solve_addr
solve_finz
solve_addr_extra
stdpp_extra
Store
Store_binary
Subseg
subseg_buffer_closure
subseg_buffer_malloc
Subseg_binary
subseg_buffer_call
subseg_buffer

T

tactics
tactics_helpers
template_adequacy_ocpl
template_adequacy

U

UnSeal
UnSeal_binary

---

Lemma Index

A

adder_adequacy [in cap_machine.examples.adder_adequacy]
adder_adequacy' [in cap_machine.examples.adder_adequacy]
adder_full_spec [in cap_machine.examples.adder]
adder_f_spec [in cap_machine.examples.adder]
adder_g_spec [in cap_machine.examples.adder]
address_neq [in cap_machine.rules.rules_base]
AddrRegionRange_iff_incl_region_addrs [in cap_machine.proofmode.disjoint_regions_tactics]
AddrRegionRange_region_addrs [in cap_machine.proofmode.disjoint_regions_tactics]
AddrRegionRange_singleton [in cap_machine.proofmode.disjoint_regions_tactics]
AddrRegionsRange_cons [in cap_machine.proofmode.disjoint_regions_tactics]
AddrRegionsRange_single [in cap_machine.proofmode.disjoint_regions_tactics]
addr_add_assoc [in cap_machine.proofmode.solve_addr]
addr_abs_next [in cap_machine.proofmode.solve_addr]
addr_next_lt_le [in cap_machine.proofmode.solve_addr]
addr_next_lt_gt_contr [in cap_machine.proofmode.solve_addr]
addr_next_lt [in cap_machine.proofmode.solve_addr]
addr_next_le [in cap_machine.proofmode.solve_addr]
addr_add_0 [in cap_machine.proofmode.solve_addr]
addr_disjoint_list_cons [in cap_machine.proofmode.disjoint_regions_tactics]
addr_disjoint_list_empty [in cap_machine.proofmode.disjoint_regions_tactics]
addr_range_disj_range_union [in cap_machine.proofmode.disjoint_regions_tactics]
addr_range_disj_union_empty [in cap_machine.proofmode.disjoint_regions_tactics]
addr_range_union_incl_range [in cap_machine.proofmode.disjoint_regions_tactics]
addr_of_arg_mono [in cap_machine.cap_lang]
addr_of_argument_Some_inv' [in cap_machine.cap_lang]
addr_of_argument_Some_inv [in cap_machine.cap_lang]
addr_ne_reg_ne [in cap_machine.rules.rules_base]
addr_dupl_false [in cap_machine.rules.rules_base]
addr_incr_zero_nat [in cap_machine.proofmode.proofmode]
addr_incr_zero [in cap_machine.proofmode.proofmode]
AddSubLt_spec_determ [in cap_machine.ftlr_binary.AddSubLt_binary]
add_sub_lt_case [in cap_machine.ftlr_binary.AddSubLt_binary]
add_sub_lt_case [in cap_machine.ftlr.AddSubLt]
adequacy [in cap_machine.examples.buffer]
adequacy [in cap_machine.examples.minimal_counter]
allocate_region_inv [in cap_machine.examples.malloc_binary]
alloc_low_from_high [in cap_machine.examples.ocpl_lowval_like]
allow_load_mem_later [in cap_machine.ftlr.Load]
allow_store_implies_storev [in cap_machine.rules.rules_Store]
allow_load_mem_later [in cap_machine.ftlr_binary.Load_binary]
allow_load_implies_loadv [in cap_machine.rules.rules_Load]
all_registers_subseteq [in cap_machine.addr_reg]
all_registers_union_r [in cap_machine.addr_reg]
all_registers_union_l [in cap_machine.addr_reg]
all_registers_correct_sub [in cap_machine.addr_reg]
all_registers_s_correct [in cap_machine.addr_reg]
all_registers_correct [in cap_machine.addr_reg]
all_registers_NoDup [in cap_machine.addr_reg]
appendb_spec [in cap_machine.examples.keylist]
App_nil_default [in cap_machine.proofmode.proofmode]
App_nil_l [in cap_machine.proofmode.proofmode]
App_nil_r [in cap_machine.proofmode.proofmode]
assert_success [in cap_machine.examples.macros_new]
assert_success_spec [in cap_machine.examples.assert]
assert_subroutine_spec [in cap_machine.examples.assert]
assert_success [in cap_machine.examples.macros]
auth_ucmra_mixin [in cap_machine.monotone]

B

base_reducible_from_step [in cap_machine.cap_lang]
base_ctx_step_val [in cap_machine.cap_lang]
basic.initial_registers_full_map [in cap_machine.examples.template_adequacy]
basic.template_adequacy [in cap_machine.examples.template_adequacy]
basic.template_adequacy' [in cap_machine.examples.template_adequacy]
Below_principal [in cap_machine.monotone]
Below_app [in cap_machine.monotone]
big_sepM_to_create_gmap_default [in cap_machine.iris_extra]
big_sepL2_to_big_sepL_replicate [in cap_machine.iris_extra]
big_sepM_exists [in cap_machine.iris_extra]
big_sepL2_bupd [in cap_machine.iris_extra]
big_sepL2_to_big_sepM [in cap_machine.iris_extra]
big_sepL_merge [in cap_machine.iris_extra]
big_sepL_delete' [in cap_machine.iris_extra]
big_sepL2_split_at [in cap_machine.iris_extra]
big_sepL2_app' [in cap_machine.iris_extra]
big_sepL2_to_big_sepL_l [in cap_machine.iris_extra]
big_sepL2_to_big_sepL_r [in cap_machine.iris_extra]
big_sepL2_close_l [in cap_machine.iris_extra]
big_sepL2_extract' [in cap_machine.iris_extra]
big_sepL2_extract_l' [in cap_machine.iris_extra]
big_sepL2_extract_l [in cap_machine.iris_extra]
big_sepM_to_big_sepL2 [in cap_machine.iris_extra]
big_sepM_to_big_sepL [in cap_machine.iris_extra]
boxed_eq [in cap_machine.proofmode.map_simpl]
buffer_full_run_spec [in cap_machine.examples.buffer]
buffer_spec [in cap_machine.examples.buffer]

C

call_spec [in cap_machine.examples.call]
cap_lang_mixin [in cap_machine.cap_lang]
cap_lang_determ [in cap_machine.cap_lang]
check_interval_spec [in cap_machine.examples.interval.interval_client]
check_interval_spec [in cap_machine.examples.interval_arch.interval_client_arch]
closure_prog_safe_to_share [in cap_machine.exercises.subseg_buffer_closure]
closure_full_run_spec [in cap_machine.exercises.subseg_buffer_closure]
closure_spec [in cap_machine.exercises.subseg_buffer_closure]
closure_activation_spec [in cap_machine.examples.macros_new]
closure_activation_spec_step [in cap_machine.examples.macros_binary]
closure_ro_safe_to_share [in cap_machine.exercises.restrict_buffer]
closure_ro_spec_full [in cap_machine.exercises.restrict_buffer]
closure_ro_spec [in cap_machine.exercises.restrict_buffer]
closure_activation_spec [in cap_machine.examples.macros]
codefrag_contiguous_region [in cap_machine.proofmode.region]
codefrag_block_acc [in cap_machine.proofmode.proofmode]
codefrag_block0_acc [in cap_machine.proofmode.proofmode]
codefrag_lookup_acc [in cap_machine.proofmode.proofmode]
compute_mask_id [in cap_machine.logrel]
compute_mask_elem_of [in cap_machine.logrel]
compute_mask_subseteq [in cap_machine.logrel]
compute_mask_mono [in cap_machine.logrel]
confidentiality_adequacy_r' [in cap_machine.examples.counter_binary.counter_binary_adequacy]
confidentiality_adequacy_l' [in cap_machine.examples.counter_binary.counter_binary_adequacy]
ContiguousRegion_InCtx [in machine_utils.solve_pure]
contiguous_between_inj [in cap_machine.proofmode.contiguous]
contiguous_between_program_split [in cap_machine.proofmode.contiguous]
contiguous_between_spec [in cap_machine.proofmode.contiguous]
contiguous_between_app [in cap_machine.proofmode.contiguous]
contiguous_between_incr_addr_middle' [in cap_machine.proofmode.contiguous]
contiguous_between_incr_addr_middle [in cap_machine.proofmode.contiguous]
contiguous_between_link_last [in cap_machine.proofmode.contiguous]
contiguous_between_incr_addr [in cap_machine.proofmode.contiguous]
contiguous_between_middle_bounds' [in cap_machine.proofmode.contiguous]
contiguous_between_middle_bounds [in cap_machine.proofmode.contiguous]
contiguous_between_length_minus [in cap_machine.proofmode.contiguous]
contiguous_between_length [in cap_machine.proofmode.contiguous]
contiguous_between_region_addrs [in cap_machine.proofmode.contiguous]
contiguous_between_of_region_addrs [in cap_machine.proofmode.contiguous]
contiguous_between_of_region_addrs_aux [in cap_machine.proofmode.contiguous]
contiguous_between_middle_to_end [in cap_machine.proofmode.contiguous]
contiguous_between_last [in cap_machine.proofmode.contiguous]
contiguous_between_cons_inv_first [in cap_machine.proofmode.contiguous]
contiguous_between_cons_inv [in cap_machine.proofmode.contiguous]
contiguous_between_nil_inv [in cap_machine.proofmode.contiguous]
contiguous_between_bounds [in cap_machine.proofmode.contiguous]
contiguous_between_vacuous [in cap_machine.proofmode.contiguous]
correctPC_nonO [in cap_machine.machine_base]
counter_preamble_spec [in cap_machine.examples.counter.counter_preamble]
counter_adequacy [in cap_machine.examples.counter.counter_adequacy]
counter_adequacy' [in cap_machine.examples.counter.counter_adequacy]
counter_ctx_equivalent [in cap_machine.examples.counter_binary.counter_binary_adequacy_theorem]
counter_adequacy_r [in cap_machine.examples.counter_binary.counter_binary_adequacy_theorem]
counter_adequacy_l [in cap_machine.examples.counter_binary.counter_binary_adequacy_theorem]
counter_preamble_spec [in cap_machine.examples.counter_binary.counter_binary_preamble]
counter_preamble_spec [in cap_machine.examples.counter_binary.counter_binary_preamble_left]
counter_full_run_spec [in cap_machine.examples.minimal_counter]
counter_code_spec [in cap_machine.examples.minimal_counter]
counter_init_spec [in cap_machine.examples.minimal_counter]
create_store_res [in cap_machine.ftlr_binary.Store_binary]
create_load_res [in cap_machine.ftlr.Load]
create_store_res [in cap_machine.ftlr.Store]
create_gmap_default_permutation [in cap_machine.stdpp_extra]
create_gmap_default_lookup_None [in cap_machine.stdpp_extra]
create_gmap_default_dom [in cap_machine.stdpp_extra]
create_gmap_default_lookup_is_Some [in cap_machine.stdpp_extra]
create_gmap_default_lookup [in cap_machine.stdpp_extra]
create_load_res [in cap_machine.ftlr_binary.Load_binary]
crtcls_spec [in cap_machine.examples.macros_new]
crtcls_spec_alt [in cap_machine.examples.macros_new]
crtcls_spec [in cap_machine.examples.macros_binary]
crtcls_spec [in cap_machine.examples.macros]
csum_alter_l_r [in cap_machine.seal_store]

D

DecodeInstr_prove [in cap_machine.proofmode.solve_pure]
decode_encode_instrW_inv [in cap_machine.machine_parameters]
decr_incr_closure_valid [in cap_machine.examples.counter_binary.counter_binary_preamble_left]
delete_elements_eq_difference_het [in cap_machine.stdpp_extra]
delete_list_swap [in cap_machine.stdpp_extra]
delete_list_permutation [in cap_machine.stdpp_extra]
delete_list_delete [in cap_machine.stdpp_extra]
delete_list_insert [in cap_machine.stdpp_extra]
denote_remove_key_none [in cap_machine.proofmode.map_simpl]
denote_remove_key_del [in cap_machine.proofmode.map_simpl]
denote_remove_key_ins [in cap_machine.proofmode.map_simpl]
denote_seal_denote [in cap_machine.rules.rules_Get]
denote_cap_denote [in cap_machine.rules.rules_Get]
denote_domain_correct [in cap_machine.proofmode.register_tactics]
difference_het_delete_assoc [in cap_machine.stdpp_extra]
difference_het_insert_l [in cap_machine.stdpp_extra]
difference_het_insert_r [in cap_machine.stdpp_extra]
difference_het_eq_empty [in cap_machine.stdpp_extra]
difference_het_empty [in cap_machine.stdpp_extra]
difference_het_lookup_None [in cap_machine.stdpp_extra]
difference_het_lookup_Some [in cap_machine.stdpp_extra]
disjoint_mono_r [in cap_machine.proofmode.disjoint_regions_tactics]
disjoint_mono_l [in cap_machine.proofmode.disjoint_regions_tactics]
disjoint_list_cons [in cap_machine.proofmode.disjoint_regions_tactics]
disjoint_list_nil [in cap_machine.proofmode.disjoint_regions_tactics]
disjoint_swap [in cap_machine.stdpp_extra]
disjoint_weak [in cap_machine.stdpp_extra]
disjoint_cons [in cap_machine.stdpp_extra]
disjoint_nil_r [in cap_machine.stdpp_extra]
disjoint_nil_l [in cap_machine.stdpp_extra]
dom_difference_het [in cap_machine.stdpp_extra]
dom_list_to_map_singleton [in cap_machine.stdpp_extra]
dom_mkregion_eq [in cap_machine.proofmode.mkregion_helpers]
dom_mkregion_incl_rev [in cap_machine.proofmode.mkregion_helpers]
dom_mkregion_incl [in cap_machine.proofmode.mkregion_helpers]
do_step_pure [in cap_machine.rules_binary.rules_binary_base]
drop_S' [in cap_machine.stdpp_extra]

E

elem_of_finz_seq_between [in machine_utils.finz_interval]
elem_of_prefix_eq [in cap_machine.examples.interval.interval_client]
empty_prog_region [in cap_machine.examples.template_adequacy]
encodeWordType_correct_sealed [in cap_machine.machine_parameters]
encodeWordType_correct_sealrange [in cap_machine.machine_parameters]
encodeWordType_correct_int [in cap_machine.machine_parameters]
encodeWordType_correct_cap [in cap_machine.machine_parameters]
envs_entails_rew_goal [in cap_machine.proofmode.proofmode]
envs_clear_spatial_sound_rev [in cap_machine.proofmode.proofmode]
env_to_named_prop_sound [in cap_machine.proofmode.NamedProp]
env_to_named_prop_unname [in cap_machine.proofmode.NamedProp]
env_to_named_prop_go_unname [in cap_machine.proofmode.NamedProp]
establish_interp [in cap_machine.examples.counter_binary.counter_binary_adequacy]
Excl_included_false [in cap_machine.seal_store]
ExecPCPerm_readAllowed [in cap_machine.machine_base]
ExecPCPerm_not_E [in cap_machine.machine_base]
ExecPCPerm_flows_to [in cap_machine.machine_base]
ExecPCPerm_RWX [in cap_machine.machine_base]
ExecPCPerm_RX [in cap_machine.machine_base]
ExecPCPerm_InCtx [in cap_machine.proofmode.solve_pure]
exec_wp [in cap_machine.fundamental]
exec_opt_exec_none [in cap_machine.cap_lang]
exec_opt_exec_some [in cap_machine.cap_lang]
exec_wp [in cap_machine.fundamental_binary]
exprspec_pointsto_update [in cap_machine.rules_binary.rules_binary_base]
extract_from_region_spec' [in cap_machine.proofmode.region]
extract_from_region_spec [in cap_machine.proofmode.region]
extract_from_region_inv_2 [in cap_machine.proofmode.region]
extract_from_region_inv [in cap_machine.proofmode.region]
extract_from_region' [in cap_machine.proofmode.region]
extract_from_region [in cap_machine.proofmode.region]
extract_r [in cap_machine.fundamental]
extract_r_ex [in cap_machine.fundamental]
extract_sep_if_split [in cap_machine.rules.rules_base]
extract_r [in cap_machine.fundamental_binary]
extract_r_ex [in cap_machine.fundamental_binary]

F

fetch_spec [in cap_machine.examples.macros_new]
fetch_s_spec [in cap_machine.examples.macros_binary]
fetch_spec [in cap_machine.examples.macros]
fill_item_no_val_inj [in cap_machine.cap_lang]
fill_item_val [in cap_machine.cap_lang]
filter_dom_is_dom [in cap_machine.examples.template_adequacy]
findb_spec [in cap_machine.examples.keylist]
findb_spec_middle [in cap_machine.examples.keylist]
FinZOffsetLe_compute [in machine_utils.class_instances]
FinZOffsetLt_compute [in machine_utils.class_instances]
finz_seq_between_lookup [in machine_utils.finz_interval]
finz_seq_between_singleton [in machine_utils.finz_interval]
finz_seq_between_cons [in machine_utils.finz_interval]
finz_seq_between_NoDup [in machine_utils.finz_interval]
finz_seq_between_first [in machine_utils.finz_interval]
finz_seq_between_split [in machine_utils.finz_interval]
finz_seq_between_decomposition [in machine_utils.finz_interval]
finz_seq_between_empty [in machine_utils.finz_interval]
finz_seq_between_length [in machine_utils.finz_interval]
finz_seq_lookup [in machine_utils.finz_interval]
finz_seq_NoDup [in machine_utils.finz_interval]
finz_seq_notin [in machine_utils.finz_interval]
finz_seq_decomposition [in machine_utils.finz_interval]
finz_seq_singleton [in machine_utils.finz_interval]
finz_seq_length [in machine_utils.finz_interval]
finz_incr_iff_dist [in machine_utils.finz_interval]
finz_dist_incr [in machine_utils.finz_interval]
finz_dist_incr_default [in machine_utils.finz_interval]
finz_dist_split [in machine_utils.finz_interval]
finz_dist_0 [in machine_utils.finz_interval]
finz_dist_S [in machine_utils.finz_interval]
finz_add_0_default [in machine_utils.finz_lemmas]
finz_add_0 [in machine_utils.finz_lemmas]
finz_of_z_ZToFinZ [in machine_utils.solve_pure]
finz_of_z_Some_spec [in machine_utils.solve_finz]
finz_of_z_is_Some_spec [in machine_utils.solve_finz]
finz_of_z_spec [in machine_utils.solve_finz]
finz_zero_spec [in machine_utils.solve_finz]
finz_largest_spec [in machine_utils.solve_finz]
finz_mult_Some_prove_spec [in machine_utils.solve_finz]
finz_mult_is_Some_spec [in machine_utils.solve_finz]
finz_mult_Some_spec [in machine_utils.solve_finz]
finz_max_spec [in machine_utils.solve_finz]
finz_min_spec [in machine_utils.solve_finz]
finz_incr_default_spec [in machine_utils.solve_finz]
finz_incr_Some_prove_spec [in machine_utils.solve_finz]
finz_incr_is_Some_spec [in machine_utils.solve_finz]
finz_incr_Some_spec [in machine_utils.solve_finz]
finz_incr_spec [in machine_utils.solve_finz]
finz_zero_eq [in machine_utils.finz_base]
finz_largest_eq [in machine_utils.finz_base]
finz_mult_eq [in machine_utils.finz_base]
finz_incr_eq [in machine_utils.finz_base]
finz_of_z_eq_inv [in machine_utils.finz_base]
finz_of_z_to_z [in machine_utils.finz_base]
finz_spec [in machine_utils.finz_base]
finz_unique [in machine_utils.finz_base]
finz_neq_to_z [in machine_utils.finz_base]
finz_to_z_neq [in machine_utils.finz_base]
finz_eq_to_z [in machine_utils.finz_base]
finz_to_z_eq [in machine_utils.finz_base]
finz_cons_tl [in cap_machine.machine_base]
finz_cons_hd [in cap_machine.machine_base]
finz_empty_seq_between [in cap_machine.machine_base]
finz_0_dist [in cap_machine.machine_base]
fixpoint_interp1_eq [in cap_machine.logrel_binary]
fixpoint_interp1_eq [in cap_machine.logrel]
flag_not_in_interval [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
flag_inv_sub [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
flag_inv_is_initial_memory [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
flag_not_in_interval [in cap_machine.examples.interval.interval_client_adequacy]
flag_inv_sub [in cap_machine.examples.interval.interval_client_adequacy]
flag_inv_is_initial_memory [in cap_machine.examples.interval.interval_client_adequacy]
focus_block_SubBounds [in cap_machine.proofmode.proofmode]
focus_block_0_SubBounds [in cap_machine.proofmode.proofmode]
from_named [in cap_machine.proofmode.NamedProp]
fst_elem_of_cons [in cap_machine.stdpp_extra]
fst_zip_prefix [in cap_machine.stdpp_extra]
fundamental [in cap_machine.fundamental]
fundamental_cap [in cap_machine.fundamental]
fundamental_binary [in cap_machine.fundamental_binary]

G

gen_mem_update_inSepM [in cap_machine.rules.rules_base]
gen_mem_valid_inSepM_general [in cap_machine.rules.rules_base]
gen_mem_valid_inSepM [in cap_machine.rules.rules_base]
gen_heap_update_inSepM [in cap_machine.rules.rules_base]
gen_heap_valid_allSepM [in cap_machine.rules.rules_base]
gen_heap_valid_inclSepM [in cap_machine.rules.rules_base]
gen_heap_valid_inSepM' [in cap_machine.rules.rules_base]
gen_heap_valid_inSepM [in cap_machine.rules.rules_base]
getwtype_denote [in cap_machine.rules.rules_Get]
get_addrs_from_option_addr_comm [in cap_machine.proofmode.solve_addr]
get_case [in cap_machine.ftlr_binary.Get_binary]
Get_spec_determ [in cap_machine.ftlr_binary.Get_binary]
get_case [in cap_machine.ftlr.Get]
get_partial_pref [in cap_machine.examples.keylist]
get_full_pref [in cap_machine.examples.keylist]
gmap_isSome_convert [in cap_machine.seal_store]
gmap_none_convert [in cap_machine.seal_store]

H

high_not_low [in cap_machine.examples.ocpl_lowval_like]

I

imax_valid [in cap_machine.examples.interval_arch.interval_arch]
imax_spec [in cap_machine.examples.interval_arch.interval_arch]
imax_valid [in cap_machine.examples.interval.interval]
imax_spec [in cap_machine.examples.interval.interval]
imin_valid [in cap_machine.examples.interval_arch.interval_arch]
imin_spec [in cap_machine.examples.interval_arch.interval_arch]
imin_valid [in cap_machine.examples.interval.interval]
imin_spec [in cap_machine.examples.interval.interval]
InBounds_sub [in machine_utils.finz_lemmas]
InBounds_compare [in machine_utils.solve_pure]
incrementPC_success_updatePC [in cap_machine.rules.rules_base]
incrementPC_fail_updatePC [in cap_machine.rules.rules_base]
incrementPC_overflow_mono [in cap_machine.rules.rules_base]
incrementPC_None_inv [in cap_machine.rules.rules_base]
incrementPC_Some_inv [in cap_machine.rules.rules_base]
IncrFinZ_prove [in machine_utils.solve_pure]
incr_closure_valid [in cap_machine.examples.counter.counter_preamble]
incr_addr_of_z_i [in cap_machine.proofmode.solve_addr]
incr_addr_of_z [in cap_machine.proofmode.solve_addr]
incr_addr_ne_top [in cap_machine.proofmode.solve_addr]
incr_addr_ne [in cap_machine.proofmode.solve_addr]
incr_addr_le [in cap_machine.proofmode.solve_addr]
incr_addr_trans [in cap_machine.proofmode.solve_addr]
incr_addr_opt_add_twice' [in cap_machine.proofmode.solve_addr]
incr_addr_opt_add_twice [in cap_machine.proofmode.solve_addr]
incr_addr_one_none [in cap_machine.proofmode.solve_addr]
incr_spec [in cap_machine.examples.counter.counter]
incr_spec_opp [in cap_machine.examples.counter_binary.counter_binary]
incr_spec [in cap_machine.examples.counter_binary.counter_binary]
incr_macro_spec [in cap_machine.exercises.cerise_modularity]
incr_decr_closure_valid [in cap_machine.examples.counter_binary.counter_binary_preamble]
incr_macro_spec [in cap_machine.exercises.cerise_modularity_solutions]
indom_regs_incl [in cap_machine.rules.rules_base]
initial_registers_full_map [in cap_machine.examples.adder_adequacy]
initial_registers_full_map [in cap_machine.examples.counter.counter_adequacy]
initial_registers_full_map [in cap_machine.examples.counter_binary.counter_binary_adequacy]
instr_atomic [in cap_machine.cap_lang]
interp_weakening_ot [in cap_machine.ftlr.interp_weakening]
interp_weakening [in cap_machine.ftlr.interp_weakening]
interp_weakening [in cap_machine.ftlr_binary.interp_weakening]
interp_reg_dupl [in cap_machine.logrel_binary]
interp_reg_eq [in cap_machine.logrel_binary]
interp_eq [in cap_machine.logrel_binary]
interp_updatePcPerm [in cap_machine.fundamental]
interp_exec_cond [in cap_machine.fundamental]
interp_int [in cap_machine.logrel]
interp_exec_cond [in cap_machine.fundamental_binary]
interp_argeq [in cap_machine.fundamental_binary]
interp_valid_sealed_if [in cap_machine.examples.arch_sealing]
interp_valid_sealed [in cap_machine.examples.arch_sealing]
intervals_agree [in cap_machine.examples.interval_arch.interval_arch]
intervals_alloc [in cap_machine.examples.interval_arch.interval_arch]
intervals_agree [in cap_machine.examples.interval.interval]
intervals_alloc [in cap_machine.examples.interval.interval]
interval_closure_functional_spec [in cap_machine.examples.interval_arch.interval_closure_arch]
interval_client_closure_functional_spec [in cap_machine.examples.interval.interval_client_closure]
interval_closure_functional_spec [in cap_machine.examples.interval.interval_closure]
interval_client_closure_functional_spec [in cap_machine.examples.interval_arch.interval_client_closure_arch]
int_client_correct [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
int_client_correct [in cap_machine.examples.interval.interval_client_adequacy]
invert_incr_addr [in cap_machine.proofmode.solve_addr]
in_prefix [in cap_machine.stdpp_extra]
in_range_is_correctPC [in cap_machine.machine_base]
in_dom_mkregion' [in cap_machine.proofmode.mkregion_helpers]
in_dom_mkregion [in cap_machine.proofmode.mkregion_helpers]
isCorrectPCb_nisCorrectPC [in cap_machine.machine_base]
isCorrectPCb_isCorrectPC [in cap_machine.machine_base]
isCorrectPC_range_npE [in cap_machine.proofmode.tactics_helpers]
isCorrectPC_range_perm [in cap_machine.proofmode.tactics_helpers]
isCorrectPC_contiguous_range [in cap_machine.proofmode.tactics_helpers]
isCorrectPC_inrange [in cap_machine.proofmode.tactics_helpers]
isCorrectPC_ExecPCPerm_InBounds [in cap_machine.machine_base]
isCorrectPC_le_addr [in cap_machine.machine_base]
isCorrectPC_withinBounds [in cap_machine.machine_base]
isCorrectPC_bounds_alt [in cap_machine.machine_base]
isCorrectPC_bounds [in cap_machine.machine_base]
isCorrectPC_ra_wb [in cap_machine.machine_base]
isCorrectPC_dec [in cap_machine.machine_base]
isCorrectPC_range_restrict [in cap_machine.proofmode.contiguous]
isCorrectPC_range_perm_non_E [in cap_machine.proofmode.contiguous]
isCorrectPC_range_perm [in cap_machine.proofmode.contiguous]
isCorrectPC_contiguous_range [in cap_machine.proofmode.contiguous]
isCorrectPC_inrange [in cap_machine.proofmode.contiguous]
isList_extract_and_append_last [in cap_machine.examples.keylist]
isList_extract_last [in cap_machine.examples.keylist]
isList_extract [in cap_machine.examples.keylist]
isList_extract_fst [in cap_machine.examples.keylist]
isList_NoDup [in cap_machine.examples.keylist]
isList_cut [in cap_machine.examples.keylist]
isList_in_fst [in cap_machine.examples.keylist]
isList_in [in cap_machine.examples.keylist]
isList_hd_pure [in cap_machine.examples.keylist]
isList_hd [in cap_machine.examples.keylist]
isList_hd_length [in cap_machine.examples.keylist]
isList_length_hd [in cap_machine.examples.keylist]
isPermWord_cap_isPerm [in cap_machine.machine_base]
isPerm_ne [in cap_machine.machine_base]
isPerm_refl [in cap_machine.machine_base]
isWithinBounds_bounds_alt' [in cap_machine.machine_base]
isWithinBounds_bounds_alt [in cap_machine.machine_base]
isWithin_finz_seq_between_decomposition [in cap_machine.proofmode.region]
isWithin_of_le [in cap_machine.machine_base]
isWithin_implies [in cap_machine.machine_base]
is_AddSubLt_Lt [in cap_machine.rules.rules_AddSubLt]
is_AddSubLt_Sub [in cap_machine.rules.rules_AddSubLt]
is_AddSubLt_Add [in cap_machine.rules.rules_AddSubLt]
is_Get_GetWType [in cap_machine.rules.rules_Get]
is_Get_GetOType [in cap_machine.rules.rules_Get]
is_Get_GetA [in cap_machine.rules.rules_Get]
is_Get_GetE [in cap_machine.rules.rules_Get]
is_Get_GetB [in cap_machine.rules.rules_Get]
is_Get_GetP [in cap_machine.rules.rules_Get]
iterate_to_last_spec [in cap_machine.examples.keylist]
iterate_to_last_spec_middle [in cap_machine.examples.keylist]

J

jmp_case [in cap_machine.ftlr_binary.Jmp_binary]
jmp_to_unknown [in cap_machine.fundamental]
jmp_case [in cap_machine.ftlr.Jmp]
jmp_or_fail_spec [in cap_machine.fundamental_binary]
jnz_case [in cap_machine.ftlr_binary.Jnz_binary]
Jnz_spec_determ [in cap_machine.ftlr_binary.Jnz_binary]
jnz_case [in cap_machine.ftlr.Jnz]

K

know_pref [in cap_machine.examples.keylist]

L

last_app_eq [in cap_machine.stdpp_extra]
last_app_iff [in cap_machine.stdpp_extra]
last_lookup [in cap_machine.stdpp_extra]
last_drop_lt [in cap_machine.stdpp_extra]
last_rest [in cap_machine.examples.keylist]
lea_case [in cap_machine.ftlr.Lea]
lea_case [in cap_machine.ftlr_binary.Lea_binary]
Lea_spec_determ [in cap_machine.ftlr_binary.Lea_binary]
length_restore_locals [in cap_machine.examples.callback]
length_fst_snd [in cap_machine.stdpp_extra]
length_zip_l [in cap_machine.stdpp_extra]
le_addr_withinBounds' [in cap_machine.machine_base]
le_addr_withinBounds [in cap_machine.machine_base]
lib_region_app [in cap_machine.examples.template_adequacy]
list_to_set_map_to_list [in cap_machine.stdpp_extra]
list_difference_cons [in cap_machine.stdpp_extra]
list_to_set_difference [in cap_machine.stdpp_extra]
list_difference_length [in cap_machine.stdpp_extra]
list_difference_Permutation [in cap_machine.stdpp_extra]
list_difference_app [in cap_machine.stdpp_extra]
list_difference_single_length [in cap_machine.stdpp_extra]
list_difference_length_ni [in cap_machine.stdpp_extra]
list_difference_nested [in cap_machine.stdpp_extra]
list_difference_skip [in cap_machine.stdpp_extra]
list_difference_length_cons [in cap_machine.stdpp_extra]
list_difference_nil [in cap_machine.stdpp_extra]
list_to_set_disj [in cap_machine.stdpp_extra]
list_filter_forall [in cap_machine.stdpp_extra]
list_to_map_lookup_is_Some [in cap_machine.stdpp_extra]
list_to_map_app [in cap_machine.proofmode.mkregion_helpers]
load_spec [in cap_machine.exercises.subseg_buffer_closure]
load_case [in cap_machine.ftlr.Load]
load_res_implies_mem_map [in cap_machine.ftlr.Load]
load_inr_eq [in cap_machine.ftlr.Load]
load_spec [in cap_machine.exercises.restrict_buffer]
load_case [in cap_machine.ftlr_binary.Load_binary]
Load_spec_determ [in cap_machine.ftlr_binary.Load_binary]
load_res_implies_mem_map [in cap_machine.ftlr_binary.Load_binary]
load_inr_eq [in cap_machine.ftlr_binary.Load_binary]
lookup_to_spec_map_None [in cap_machine.rules_binary.rules_binary_base]
lookup_delete_list_notin [in cap_machine.stdpp_extra]

M

machine_run_correct [in cap_machine.machine_run]
makeint_spec [in cap_machine.examples.interval_arch.interval_arch]
makeint_spec [in cap_machine.examples.interval.interval]
make_seal_spec [in cap_machine.examples.dynamic_sealing]
make_seal_spec [in cap_machine.examples.arch_sealing]
makint_valid [in cap_machine.examples.interval_arch.interval_arch]
makint_valid [in cap_machine.examples.interval.interval]
malloc_spec [in cap_machine.examples.macros_new]
malloc_spec_alt [in cap_machine.examples.macros_new]
malloc_s_spec [in cap_machine.examples.macros_binary]
malloc_spec_alt [in cap_machine.examples.macros]
malloc_spec [in cap_machine.examples.macros]
map_of_regs_4 [in cap_machine.rules_binary.rules_binary_base]
map_of_regs_3 [in cap_machine.rules_binary.rules_binary_base]
map_of_regs_2 [in cap_machine.rules_binary.rules_binary_base]
map_of_regs_1 [in cap_machine.rules_binary.rules_binary_base]
map_to_list_delete_fst [in cap_machine.stdpp_extra]
map_to_list_delete [in cap_machine.stdpp_extra]
map_eq' [in cap_machine.stdpp_extra]
map_to_list_fst [in cap_machine.stdpp_extra]
map_of_regs_4 [in cap_machine.rules.rules_base]
map_of_regs_3 [in cap_machine.rules.rules_base]
map_of_regs_2 [in cap_machine.rules.rules_base]
map_of_regs_1 [in cap_machine.rules.rules_base]
match_perm_with_E_rewrite [in cap_machine.ftlr.Restrict]
mbkregion_prepare [in cap_machine.proofmode.mkregion_helpers]
mclear_spec [in cap_machine.examples.macros]
mclear_iter_spec [in cap_machine.examples.macros]
memMap_resource_2ne [in cap_machine.rules_binary.rules_binary_base]
memMap_delete [in cap_machine.rules.rules_base]
memMap_resource_2gen_clater_dq [in cap_machine.rules.rules_base]
memMap_resource_2gen_clater [in cap_machine.rules.rules_base]
memMap_resource_2gen_d_dq [in cap_machine.rules.rules_base]
memMap_resource_2gen_d [in cap_machine.rules.rules_base]
memMap_resource_2gen [in cap_machine.rules.rules_base]
memMap_resource_2ne_apply [in cap_machine.rules.rules_base]
memMap_resource_2ne [in cap_machine.rules.rules_base]
memMap_resource_1_dq [in cap_machine.rules.rules_base]
memMap_resource_1 [in cap_machine.rules.rules_base]
memMap_resource_0 [in cap_machine.rules.rules_base]
memspec_heap_update_inSepM [in cap_machine.rules_binary.rules_binary_base]
memspec_v_implies_m_v [in cap_machine.rules_binary.rules_binary_base]
memspec_heap_valid_allSepM [in cap_machine.rules_binary.rules_binary_base]
memspec_heap_valid_inclSepM [in cap_machine.rules_binary.rules_binary_base]
memspec_heap_valid_inSepM' [in cap_machine.rules_binary.rules_binary_base]
memspec_heap_valid_inSepM [in cap_machine.rules_binary.rules_binary_base]
memspec_pointsto_update [in cap_machine.rules_binary.rules_binary_base]
memspec_pointsto_valid_2 [in cap_machine.rules_binary.rules_binary_base]
memspec_pointsto_valid [in cap_machine.rules_binary.rules_binary_base]
memspec_pointsto_agree [in cap_machine.rules_binary.rules_binary_base]
memspec_alloc_big [in cap_machine.examples.counter_binary.counter_binary_adequacy]
memspec_pointsto_alloc [in cap_machine.examples.counter_binary.counter_binary_adequacy]
mem_map_recover_res [in cap_machine.ftlr_binary.Store_binary]
mem_map_implies_pure_conds [in cap_machine.ftlr_binary.Store_binary]
mem_map_recover_res [in cap_machine.ftlr.Load]
mem_map_implies_pure_conds [in cap_machine.ftlr.Load]
mem_map_recover_res [in cap_machine.ftlr.Store]
mem_map_implies_pure_conds [in cap_machine.ftlr.Store]
mem_implies_allow_store_map [in cap_machine.rules.rules_Store]
mem_neq_implies_allow_store_map [in cap_machine.rules.rules_Store]
mem_eq_implies_allow_store_map [in cap_machine.rules.rules_Store]
mem_remove_dq [in cap_machine.rules.rules_base]
mem_map_recover_res [in cap_machine.ftlr_binary.Load_binary]
mem_map_implies_pure_conds [in cap_machine.ftlr_binary.Load_binary]
mem_implies_loadv [in cap_machine.rules.rules_Load]
mem_implies_allow_load_map [in cap_machine.rules.rules_Load]
mem_neq_implies_allow_load_map [in cap_machine.rules.rules_Load]
mem_eq_implies_allow_load_map [in cap_machine.rules.rules_Load]
minv_sub_restrict [in cap_machine.examples.template_adequacy]
minv_sub_extend [in cap_machine.examples.template_adequacy]
mkregion_sepM_to_sepL2_zip [in cap_machine.proofmode.mkregion_helpers]
mkregion_prepare_spec [in cap_machine.proofmode.mkregion_helpers]
mkregion_prepare [in cap_machine.proofmode.mkregion_helpers]
mkregion_sepM_to_sepL2 [in cap_machine.proofmode.mkregion_helpers]
mkregion_lookup [in cap_machine.proofmode.mkregion_helpers]
mkregion_app [in cap_machine.proofmode.mkregion_helpers]
monotone_update [in cap_machine.monotone]
monotone_local_update_get_frag [in cap_machine.monotone]
monotone_local_update_grow [in cap_machine.monotone]
monotone_equivI [in cap_machine.monotone]
monotone_included [in cap_machine.monotone]
monotone_idemp [in cap_machine.monotone]
mov_case [in cap_machine.ftlr.Mov]
mov_case [in cap_machine.ftlr_binary.Mov_binary]
Mov_spec_determ [in cap_machine.ftlr_binary.Mov_binary]

N

next_lt_top [in cap_machine.proofmode.solve_addr]
next_le_i [in cap_machine.proofmode.solve_addr]
next_lt_i [in cap_machine.proofmode.solve_addr]
next_lt [in cap_machine.proofmode.solve_addr]
NoDup_of_sepL2_exclusive [in cap_machine.iris_extra]
NoDup_map_to_list_fst [in cap_machine.stdpp_extra]
NoDup_fst [in cap_machine.stdpp_extra]
NoDup_prefix [in cap_machine.stdpp_extra]
normal_always_base_reducible [in cap_machine.cap_lang]
normal_always_step [in cap_machine.cap_lang]
not_elem_of_finz_seq_between [in machine_utils.finz_interval]
not_elem_of_list [in cap_machine.stdpp_extra]
not_isCorrectPC_bounds [in cap_machine.machine_base]
not_isCorrectPC_perm [in cap_machine.machine_base]
NthSubBlock_S [in cap_machine.proofmode.proofmode]
NthSubBlock_O_last [in cap_machine.proofmode.proofmode]
NthSubBlock_O_rest [in cap_machine.proofmode.proofmode]

O

ocpl.flag_inv_sub [in cap_machine.examples.template_adequacy_ocpl]
ocpl.flag_inv_is_initial_memory [in cap_machine.examples.template_adequacy_ocpl]
ocpl.ocpl_template_adequacy [in cap_machine.examples.template_adequacy_ocpl]
of_to_val [in cap_machine.cap_lang]
otype_of_arg_mono [in cap_machine.cap_lang]
otype_of_argument_Some_inv' [in cap_machine.cap_lang]
otype_of_argument_Some_inv [in cap_machine.cap_lang]

P

pair_eq_inv [in cap_machine.stdpp_extra]
PCPerm_nonO [in cap_machine.machine_base]
PermFlowsToPermFlows [in cap_machine.machine_base]
PermFlowsToReflexive [in cap_machine.machine_base]
PermFlowsToTransitive [in cap_machine.machine_base]
PermFlows_trans [in cap_machine.machine_base]
PermFlows_refl [in cap_machine.machine_base]
permit_unseal_flowsto [in cap_machine.ftlr.interp_weakening]
permit_seal_flowsto [in cap_machine.ftlr.interp_weakening]
PermPairFlows_interp_preserved [in cap_machine.ftlr.Restrict]
pointsto_exclusive [in cap_machine.examples.ocpl_lowval_like]
pointsto_decomposition_spec [in cap_machine.proofmode.region]
pointsto_decomposition [in cap_machine.proofmode.region]
prefix_of_nil [in cap_machine.stdpp_extra]
prepa_assert_spec [in cap_machine.exercises.subseg_buffer_call]
prim_step_and_step_exec [in cap_machine.cap_lang]
prim_step_exec_inv [in cap_machine.cap_lang]
principal_included [in cap_machine.monotone]
principal_includedN [in cap_machine.monotone]
principal_op_R' [in cap_machine.monotone]
principal_op_R [in cap_machine.monotone]
principal_op_RN [in cap_machine.monotone]
principal_R_op [in cap_machine.monotone]
principal_R_opN [in cap_machine.monotone]
principal_R_opN_base [in cap_machine.monotone]
principal_inj_general [in cap_machine.monotone]
principal_injN_general [in cap_machine.monotone]
prog_closure_spec [in cap_machine.exercises.subseg_buffer_closure]
prog_CPS_safe_to_share [in cap_machine.exercises.subseg_buffer]
prog_spec_CPS_full [in cap_machine.exercises.subseg_buffer]
prog_spec_CPS [in cap_machine.exercises.subseg_buffer]
prog_base_spec [in cap_machine.exercises.subseg_buffer]
prog_spec [in cap_machine.exercises.subseg_buffer]
prog_spec [in cap_machine.exercises.cerise_modularity]
prog_spec_detailed [in cap_machine.exercises.cerise_tutorial]
prog_spec_igo [in cap_machine.exercises.cerise_tutorial]
prog_spec_instr [in cap_machine.exercises.cerise_tutorial]
prog_ro_spec_full [in cap_machine.exercises.restrict_buffer]
prog_ro_spec [in cap_machine.exercises.restrict_buffer]
prog_ro_spec_base [in cap_machine.exercises.restrict_buffer]
prog_malloc_safe_to_share [in cap_machine.exercises.subseg_buffer_malloc]
prog_malloc_full_run_spec [in cap_machine.exercises.subseg_buffer_malloc]
prog_malloc_spec [in cap_machine.exercises.subseg_buffer_malloc]
prog_spec_detailed [in cap_machine.exercises.cerise_tutorial_solutions]
prog_spec_igo [in cap_machine.exercises.cerise_tutorial_solutions]
prog_call_adequacy [in cap_machine.exercises.subseg_buffer_call]
prog_call_correct [in cap_machine.exercises.subseg_buffer_call]
prog_call_full_run_spec [in cap_machine.exercises.subseg_buffer_call]
prog_call_full_run_spec_aux [in cap_machine.exercises.subseg_buffer_call]
prog_secret_spec [in cap_machine.exercises.subseg_buffer_call]
prog_spec [in cap_machine.exercises.cerise_modularity_solutions]
prog_lower_bound_region_cons [in cap_machine.examples.template_adequacy]
prog_region_dom [in cap_machine.examples.template_adequacy]

R

rclear_spec [in cap_machine.examples.macros_new]
rclear_instrs_cons [in cap_machine.examples.macros_new]
rclear_s_spec [in cap_machine.examples.macros_binary]
rclear_spec [in cap_machine.examples.macros]
rclear_instrs_cons [in cap_machine.examples.macros]
rclear_length [in cap_machine.examples.call]
readAllowed_nonO [in cap_machine.machine_base]
read_closure_valid [in cap_machine.examples.counter.counter_preamble]
read_spec [in cap_machine.examples.counter.counter]
read_spec_opp [in cap_machine.examples.counter_binary.counter_binary]
read_spec [in cap_machine.examples.counter_binary.counter_binary]
read_allowed_inv_regs [in cap_machine.logrel_binary]
read_allowed_inv [in cap_machine.logrel_binary]
read_allowed_inv_regs [in cap_machine.logrel]
read_allowed_inv [in cap_machine.logrel]
read_read_neg_closure_valid [in cap_machine.examples.counter_binary.counter_binary_preamble]
read_neg_read_closure_valid [in cap_machine.examples.counter_binary.counter_binary_preamble_left]
regions_disjoint_eq [in cap_machine.examples.counter_binary.counter_binary_adequacy]
region_addrs_zeroes_split [in cap_machine.examples.addr_reg_sample]
region_addrs_zeroes_lookup [in cap_machine.examples.addr_reg_sample]
region_pointsto_split_spec [in cap_machine.proofmode.region]
region_pointsto_single_spec [in cap_machine.proofmode.region]
region_pointsto_cons_spec [in cap_machine.proofmode.region]
region_pointsto_split [in cap_machine.proofmode.region]
region_pointsto_single [in cap_machine.proofmode.region]
region_pointsto_cons [in cap_machine.proofmode.region]
region_inv_alloc [in cap_machine.logrel_binary]
region_addrs_exists2 [in cap_machine.iris_extra]
region_addrs_exists_zip [in cap_machine.iris_extra]
region_addrs_exists [in cap_machine.iris_extra]
region_in_region_alloc' [in cap_machine.fundamental]
region_valid_alloc' [in cap_machine.fundamental]
region_integers_alloc' [in cap_machine.fundamental]
region_can_alloc_interp [in cap_machine.logrel]
region_seal_pred_interp [in cap_machine.logrel]
region_valid_in_region [in cap_machine.logrel]
region_valid_in_region_ind [in cap_machine.logrel]
region_valid_alloc [in cap_machine.logrel]
region_integers_alloc [in cap_machine.logrel]
region_inv_alloc [in cap_machine.logrel]
region_addrs_of_contiguous_between [in cap_machine.proofmode.contiguous]
region_addrs_aux_of_contiguous_between [in cap_machine.proofmode.contiguous]
regmap_full_dom [in cap_machine.addr_reg]
regname_neq [in cap_machine.rules_binary.rules_binary_base]
regname_dupl_false [in cap_machine.rules_binary.rules_binary_base]
regname_neq [in cap_machine.rules.rules_base]
regname_dupl_false [in cap_machine.rules.rules_base]
regspec_heap_update_inSepM [in cap_machine.rules_binary.rules_binary_base]
regspec_heap_valid_allSepM [in cap_machine.rules_binary.rules_binary_base]
regspec_heap_valid_inclSepM [in cap_machine.rules_binary.rules_binary_base]
regspec_heap_valid_inSepM' [in cap_machine.rules_binary.rules_binary_base]
regspec_heap_valid_inSepM [in cap_machine.rules_binary.rules_binary_base]
regspec_pointsto_update [in cap_machine.rules_binary.rules_binary_base]
regspec_pointsto_valid_2 [in cap_machine.rules_binary.rules_binary_base]
regspec_pointsto_valid [in cap_machine.rules_binary.rules_binary_base]
regspec_pointsto_agree [in cap_machine.rules_binary.rules_binary_base]
regspec_alloc_big [in cap_machine.examples.counter_binary.counter_binary_adequacy]
regspec_pointsto_alloc [in cap_machine.examples.counter_binary.counter_binary_adequacy]
regs_of_map_4 [in cap_machine.rules_binary.rules_binary_base]
regs_of_map_3 [in cap_machine.rules_binary.rules_binary_base]
regs_of_map_2 [in cap_machine.rules_binary.rules_binary_base]
regs_of_map_1 [in cap_machine.rules_binary.rules_binary_base]
regs_of_map_4 [in cap_machine.rules.rules_base]
regs_of_map_3 [in cap_machine.rules.rules_base]
regs_of_map_2 [in cap_machine.rules.rules_base]
regs_of_map_1 [in cap_machine.rules.rules_base]
regs_of_is_AddSubLt [in cap_machine.rules.rules_AddSubLt]
regs_of_is_Get [in cap_machine.rules.rules_Get]
reg_eq_sym [in cap_machine.addr_reg]
reqperm_spec [in cap_machine.examples.macros_new]
reqperm_spec [in cap_machine.examples.macros]
reqsize_spec [in cap_machine.examples.macros_new]
reqsize_spec [in cap_machine.examples.macros]
reset_closure_valid [in cap_machine.examples.counter.counter_preamble]
reset_spec [in cap_machine.examples.counter.counter]
resolve_imports_spec_not_in [in cap_machine.linking]
resolve_imports_spec_in [in cap_machine.linking]
resolve_imports_spec [in cap_machine.linking]
restore_locals_spec [in cap_machine.examples.callback]
restore_locals_spec_middle [in cap_machine.examples.callback]
restrict_case [in cap_machine.ftlr.Restrict]
restrict_case [in cap_machine.ftlr_binary.Restrict_binary]
Restrict_spec_determ [in cap_machine.ftlr_binary.Restrict_binary]
rest_last [in cap_machine.examples.keylist]
rev_cons_inv [in cap_machine.stdpp_extra]
rev_lookup [in cap_machine.stdpp_extra]
rev_singleton_inv [in cap_machine.stdpp_extra]
rev_nil_inv [in cap_machine.stdpp_extra]
rlength_remove_key [in cap_machine.proofmode.map_simpl]
roe_adequacy [in cap_machine.examples.lse_adequacy]
roe_correct [in cap_machine.examples.lse_adequacy]
roe_spec [in cap_machine.examples.lse]
rtc_or_intro_l [in cap_machine.stdpp_extra]
rtc_or_intro [in cap_machine.stdpp_extra]
rtc_implies [in cap_machine.stdpp_extra]
r_stk_ne [in cap_machine.examples.addr_reg_sample]

S

safe_to_seal_weakening [in cap_machine.ftlr.interp_weakening]
safe_to_unseal_weakening [in cap_machine.ftlr.interp_weakening]
salloc_spec [in cap_machine.examples.macros_new]
salloc_spec_alt [in cap_machine.examples.macros_new]
scall_epilogue_spec [in cap_machine.examples.callback]
scrtcls_spec [in cap_machine.examples.macros_new]
scrtcls_s_spec [in cap_machine.examples.macros_binary]
scrtcls_spec [in cap_machine.examples.macros]
sealing_preserves_interp [in cap_machine.ftlr.Seal]
sealLL_alloc [in cap_machine.examples.dynamic_sealing]
sealLL_alloc [in cap_machine.examples.arch_sealing]
sealLL_pred_interp [in cap_machine.examples.arch_sealing]
sealLL_valid_sealed_pred_eq [in cap_machine.examples.arch_sealing]
SealPermFlowsToReflexive [in cap_machine.machine_base]
SealPermFlowsToTransitive [in cap_machine.machine_base]
SealPermFlows_refl [in cap_machine.machine_base]
seal_spec [in cap_machine.examples.dynamic_sealing]
seal_case [in cap_machine.ftlr_binary.Seal_binary]
seal_store_init [in cap_machine.seal_store]
seal_store_update_alloc [in cap_machine.seal_store]
seal_pred_agree [in cap_machine.seal_store]
seal_case [in cap_machine.ftlr.Seal]
seal_spec [in cap_machine.examples.arch_sealing]
secret_add_spec [in cap_machine.exercises.cerise_modularity_solutions]
seq_between_dist_Some [in cap_machine.machine_base]
simple_malloc_subroutine_valid [in cap_machine.examples.malloc_binary]
simple_malloc_subroutine_spec [in cap_machine.examples.malloc_binary]
simple_malloc_subroutine_valid [in cap_machine.examples.malloc]
simple_malloc_subroutine_spec [in cap_machine.examples.malloc]
simple_salloc_subroutine_valid [in cap_machine.examples.salloc]
simple_salloc_subroutine_spec [in cap_machine.examples.salloc]
simpl_rmap_correct [in cap_machine.proofmode.map_simpl]
simpl_rmap_correct' [in cap_machine.proofmode.map_simpl]
snoc_ll [in cap_machine.examples.keylist]
Some_eq_inj [in machine_utils.solve_finz]
spec_step_pure [in cap_machine.rules_binary.rules_binary_base]
spec_step_bind [in cap_machine.rules_binary.rules_binary_base]
spec_memMap_resource_2ne_apply [in cap_machine.rules_binary.rules_binary_base]
spec_expr_valid [in cap_machine.rules_binary.rules_binary_base]
spec_regs_valid [in cap_machine.rules_binary.rules_binary_base]
spec_heap_valid [in cap_machine.rules_binary.rules_binary_base]
spec_map_singleton_included [in cap_machine.rules_binary.rules_binary_base]
step_subseg_success [in cap_machine.rules_binary.rules_binary_Subseg]
step_Subseg [in cap_machine.rules_binary.rules_binary_Subseg]
step_add_sub_lt_success_dst_z [in cap_machine.rules_binary.rules_binary_AddSubLt]
step_add_sub_lt_success_z_dst [in cap_machine.rules_binary.rules_binary_AddSubLt]
step_add_sub_lt_success_dst_r [in cap_machine.rules_binary.rules_binary_AddSubLt]
step_add_sub_lt_success_z_r [in cap_machine.rules_binary.rules_binary_AddSubLt]
step_AddSubLt_fail [in cap_machine.rules_binary.rules_binary_AddSubLt]
step_AddSubLt [in cap_machine.rules_binary.rules_binary_AddSubLt]
step_load_success_alt [in cap_machine.rules_binary.rules_binary_Load]
step_load_success [in cap_machine.rules_binary.rules_binary_Load]
step_load_success_same_alt [in cap_machine.rules_binary.rules_binary_Load]
step_load_success_same [in cap_machine.rules_binary.rules_binary_Load]
step_Load [in cap_machine.rules_binary.rules_binary_Load]
step_store_success_z [in cap_machine.rules_binary.rules_binary_Store]
step_store_success_reg [in cap_machine.rules_binary.rules_binary_Store]
step_store [in cap_machine.rules_binary.rules_binary_Store]
step_fail [in cap_machine.rules_binary.rules_binary_base]
step_halt [in cap_machine.rules_binary.rules_binary_base]
step_lea_success_reg [in cap_machine.rules_binary.rules_binary_Lea]
step_lea_success_z [in cap_machine.rules_binary.rules_binary_Lea]
step_lea [in cap_machine.rules_binary.rules_binary_Lea]
step_restrict_success_z [in cap_machine.rules_binary.rules_binary_Restrict]
step_Restrict [in cap_machine.rules_binary.rules_binary_Restrict]
step_Get_success [in cap_machine.rules_binary.rules_binary_Get]
step_Get [in cap_machine.rules_binary.rules_binary_Get]
step_jmp_success [in cap_machine.rules_binary.rules_binary_Jmp]
step_jnz_success_jmp [in cap_machine.rules_binary.rules_binary_Jnz]
step_jnz_success_next [in cap_machine.rules_binary.rules_binary_Jnz]
step_Jnz [in cap_machine.rules_binary.rules_binary_Jnz]
step_move_success_z [in cap_machine.rules_binary.rules_binary_Mov]
step_move_success_reg [in cap_machine.rules_binary.rules_binary_Mov]
step_move_success_reg_fromPC [in cap_machine.rules_binary.rules_binary_Mov]
step_Mov [in cap_machine.rules_binary.rules_binary_Mov]
step_fail_inv [in cap_machine.cap_lang]
step_exec_inv [in cap_machine.cap_lang]
step_deterministic [in cap_machine.cap_lang]
store_case [in cap_machine.ftlr_binary.Store_binary]
store_res_implies_mem_map [in cap_machine.ftlr_binary.Store_binary]
store_inr_eq [in cap_machine.ftlr_binary.Store_binary]
Store_spec_determ [in cap_machine.ftlr_binary.Store_binary]
store_case [in cap_machine.ftlr.Store]
store_res_implies_mem_map [in cap_machine.ftlr.Store]
store_inr_eq [in cap_machine.ftlr.Store]
store_locals_spec [in cap_machine.examples.call]
store_locals_spec_middle [in cap_machine.examples.call]
SubBounds_InCtx [in machine_utils.solve_pure]
submseteq_list_difference [in cap_machine.stdpp_extra]
subseg_case [in cap_machine.ftlr.Subseg]
subseg_interp_preserved [in cap_machine.ftlr.Subseg]
subseg_case [in cap_machine.ftlr_binary.Subseg_binary]
Subseg_spec_determ [in cap_machine.ftlr_binary.Subseg_binary]

T

tac_name_intuitionistic [in cap_machine.proofmode.NamedProp]
tac_name_replace [in cap_machine.proofmode.NamedProp]
tac_named_accu [in cap_machine.proofmode.NamedProp]
tac_specialize_assert_delay [in cap_machine.proofmode.proofmode]
take_lookup_Some_inv [in cap_machine.stdpp_extra]
template_adequacy [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
template_adequacy [in cap_machine.examples.interval.interval_client_adequacy]
tests.env_modus_ponens [in cap_machine.proofmode.NamedProp]
top_not_le_eq [in cap_machine.proofmode.solve_addr]
top_le_eq [in cap_machine.proofmode.solve_addr]
to_named [in cap_machine.proofmode.NamedProp]
to_spec_map_insert [in cap_machine.rules_binary.rules_binary_base]
to_of_val [in cap_machine.cap_lang]

U

unsealing_preserves_interp [in cap_machine.ftlr.UnSeal]
unseal_spec [in cap_machine.examples.dynamic_sealing]
unseal_case [in cap_machine.ftlr.UnSeal]
unseal_case [in cap_machine.ftlr_binary.UnSeal_binary]
unseal_spec [in cap_machine.examples.arch_sealing]
updatePcPerm_cap_non_E [in cap_machine.machine_base]
updatePC_some [in cap_machine.cap_lang]
updatePC_fail_incl [in cap_machine.rules.rules_base]
updatePC_success_incl [in cap_machine.rules.rules_base]
update_ll [in cap_machine.examples.keylist]

V

valid_sealed_interp [in cap_machine.examples.arch_sealing]
val_stuck [in cap_machine.cap_lang]

W

withinBounds_InBounds [in cap_machine.machine_base]
withinBounds_le_addr [in cap_machine.machine_base]
withinBounds_true_iff [in cap_machine.machine_base]
withinBounds_InCtx [in cap_machine.proofmode.solve_pure]
within_in_range [in cap_machine.ftlr.Subseg]
with_adv_and_link_ints.template_adequacy_no_seals [in cap_machine.examples.template_adequacy]
with_adv_and_link_ints.template_adequacy [in cap_machine.examples.template_adequacy]
with_adv_and_link_ints.template_adequacy' [in cap_machine.examples.template_adequacy]
with_adv_and_link_ints.initial_registers_full_map [in cap_machine.examples.template_adequacy]
with_adv_and_link.template_adequacy_no_seals [in cap_machine.examples.template_adequacy]
with_adv_and_link.template_adequacy [in cap_machine.examples.template_adequacy]
with_adv_and_link.template_adequacy' [in cap_machine.examples.template_adequacy]
with_adv_and_link.initial_registers_full_map [in cap_machine.examples.template_adequacy]
with_adv_and_data_and_link.template_adequacy_no_seals [in cap_machine.examples.template_adequacy]
with_adv_and_data_and_link.template_adequacy [in cap_machine.examples.template_adequacy]
with_adv_and_data_and_link.template_adequacy' [in cap_machine.examples.template_adequacy]
with_adv_and_data_and_link.initial_registers_full_map [in cap_machine.examples.template_adequacy]
with_adv_ints.template_adequacy [in cap_machine.examples.template_adequacy]
with_adv_ints.template_adequacy' [in cap_machine.examples.template_adequacy]
with_adv_ints.initial_registers_full_map [in cap_machine.examples.template_adequacy]
with_adv.template_adequacy [in cap_machine.examples.template_adequacy]
with_adv.template_adequacy' [in cap_machine.examples.template_adequacy]
with_adv.initial_registers_full_map [in cap_machine.examples.template_adequacy]
with_adv_and_data.template_adequacy [in cap_machine.examples.template_adequacy]
with_adv_and_data.template_adequacy' [in cap_machine.examples.template_adequacy]
with_adv_and_data.initial_registers_full_map [in cap_machine.examples.template_adequacy]
word_of_arg_mono [in cap_machine.cap_lang]
word_of_argument_inr [in cap_machine.cap_lang]
word_of_argument_Some_inv' [in cap_machine.cap_lang]
word_of_argument_Some_inv [in cap_machine.cap_lang]
wp_jnz_success_next [in cap_machine.rules.rules_Jnz]
wp_jnz_success_jmpPC2 [in cap_machine.rules.rules_Jnz]
wp_jnz_success_jmpPC1 [in cap_machine.rules.rules_Jnz]
wp_jnz_success_jmpPC [in cap_machine.rules.rules_Jnz]
wp_jnz_success_jmp2 [in cap_machine.rules.rules_Jnz]
wp_jnz_success_jmp [in cap_machine.rules.rules_Jnz]
wp_Jnz [in cap_machine.rules.rules_Jnz]
wp_subseg_success_lr_sr [in cap_machine.rules.rules_Subseg]
wp_subseg_success_r_sr [in cap_machine.rules.rules_Subseg]
wp_subseg_success_l_sr [in cap_machine.rules.rules_Subseg]
wp_subseg_success_same_sr [in cap_machine.rules.rules_Subseg]
wp_subseg_success_sr [in cap_machine.rules.rules_Subseg]
wp_subseg_success_pc_lr [in cap_machine.rules.rules_Subseg]
wp_subseg_success_pc_r [in cap_machine.rules.rules_Subseg]
wp_subseg_success_pc_l [in cap_machine.rules.rules_Subseg]
wp_subseg_success_pc_same [in cap_machine.rules.rules_Subseg]
wp_subseg_success_pc [in cap_machine.rules.rules_Subseg]
wp_subseg_fail_lr [in cap_machine.rules.rules_Subseg]
wp_subseg_success_lr [in cap_machine.rules.rules_Subseg]
wp_subseg_success_r [in cap_machine.rules.rules_Subseg]
wp_subseg_success_l [in cap_machine.rules.rules_Subseg]
wp_subseg_success_same [in cap_machine.rules.rules_Subseg]
wp_subseg_success [in cap_machine.rules.rules_Subseg]
wp_Subseg [in cap_machine.rules.rules_Subseg]
wp_Lea_fail_none [in cap_machine.rules.rules_Lea]
wp_lea_success_z_sr [in cap_machine.rules.rules_Lea]
wp_lea_success_reg_sr [in cap_machine.rules.rules_Lea]
wp_lea_success_z [in cap_machine.rules.rules_Lea]
wp_lea_success_z_PC [in cap_machine.rules.rules_Lea]
wp_lea_success_reg [in cap_machine.rules.rules_Lea]
wp_lea_success_reg_PC [in cap_machine.rules.rules_Lea]
wp_lea [in cap_machine.rules.rules_Lea]
wp_seal_nosb_r2 [in cap_machine.rules.rules_Seal]
wp_seal_PC_eq [in cap_machine.rules.rules_Seal]
wp_seal_PC [in cap_machine.rules.rules_Seal]
wp_seal_r2 [in cap_machine.rules.rules_Seal]
wp_seal_r1 [in cap_machine.rules.rules_Seal]
wp_seal_success [in cap_machine.rules.rules_Seal]
wp_Seal [in cap_machine.rules.rules_Seal]
wp_unseal_nomatch_r2 [in cap_machine.rules.rules_UnSeal]
wp_unseal_PC [in cap_machine.rules.rules_UnSeal]
wp_unseal_r2 [in cap_machine.rules.rules_UnSeal]
wp_unseal_r1 [in cap_machine.rules.rules_UnSeal]
wp_unseal_success [in cap_machine.rules.rules_UnSeal]
wp_UnSeal [in cap_machine.rules.rules_UnSeal]
wp_store_success_reg_low [in cap_machine.examples.ocpl_lowval_like]
wp_load_success_same_notinstr_low [in cap_machine.examples.ocpl_lowval_like]
wp_move_success_reg_fromPC [in cap_machine.rules.rules_Mov]
wp_move_success_reg_toPC [in cap_machine.rules.rules_Mov]
wp_move_success_reg_samePC [in cap_machine.rules.rules_Mov]
wp_move_success_reg_same [in cap_machine.rules.rules_Mov]
wp_move_success_reg [in cap_machine.rules.rules_Mov]
wp_move_success_z [in cap_machine.rules.rules_Mov]
wp_Mov [in cap_machine.rules.rules_Mov]
wp_jmp_successPC [in cap_machine.rules_binary.rules_binary_Jmp]
wp_store_success_z [in cap_machine.rules.rules_Store]
wp_store_success_reg_same [in cap_machine.rules.rules_Store]
wp_store_success_reg [in cap_machine.rules.rules_Store]
wp_store_success_reg_same_a [in cap_machine.rules.rules_Store]
wp_store_success_reg_same' [in cap_machine.rules.rules_Store]
wp_store_success_reg_frominstr [in cap_machine.rules.rules_Store]
wp_store_success_reg_frominstr_same [in cap_machine.rules.rules_Store]
wp_store_success_reg' [in cap_machine.rules.rules_Store]
wp_store_success_same [in cap_machine.rules.rules_Store]
wp_store_success_reg_PC_same [in cap_machine.rules.rules_Store]
wp_store_success_reg_PC [in cap_machine.rules.rules_Store]
wp_store_success_z_PC [in cap_machine.rules.rules_Store]
wp_store [in cap_machine.rules.rules_Store]
wp_fail [in cap_machine.rules.rules_base]
wp_halt [in cap_machine.rules.rules_base]
wp_notCorrectPC_range [in cap_machine.rules.rules_base]
wp_notCorrectPC_perm [in cap_machine.rules.rules_base]
wp_notCorrectPC [in cap_machine.rules.rules_base]
wp_jmp_successPC [in cap_machine.rules.rules_Jmp]
wp_jmp_success [in cap_machine.rules.rules_Jmp]
wp_Get_fail [in cap_machine.examples.keylist]
wp_load_success_same_alt [in cap_machine.rules.rules_Load]
wp_load_success_alt [in cap_machine.rules.rules_Load]
wp_load_success_fromPC [in cap_machine.rules.rules_Load]
wp_load_success_PC [in cap_machine.rules.rules_Load]
wp_load_success_same_frominstr [in cap_machine.rules.rules_Load]
wp_load_success_same_notinstr [in cap_machine.rules.rules_Load]
wp_load_success_same [in cap_machine.rules.rules_Load]
wp_load_success_frominstr [in cap_machine.rules.rules_Load]
wp_load_success_notinstr [in cap_machine.rules.rules_Load]
wp_load_success [in cap_machine.rules.rules_Load]
wp_load [in cap_machine.rules.rules_Load]
wp_load_general [in cap_machine.rules.rules_Load]
wp_add_sub_lt_fail_r_r_2 [in cap_machine.rules.rules_AddSubLt]
wp_add_sub_lt_fail_r_r_1 [in cap_machine.rules.rules_AddSubLt]
wp_add_sub_lt_fail_z_r [in cap_machine.rules.rules_AddSubLt]
wp_add_sub_lt_success_dst_dst [in cap_machine.rules.rules_AddSubLt]
wp_add_sub_lt_success_r_dst [in cap_machine.rules.rules_AddSubLt]
wp_add_sub_lt_success_dst_r [in cap_machine.rules.rules_AddSubLt]
wp_add_sub_lt_success_z_dst [in cap_machine.rules.rules_AddSubLt]
wp_add_sub_lt_success_dst_z [in cap_machine.rules.rules_AddSubLt]
wp_add_sub_lt_success_r_r_same [in cap_machine.rules.rules_AddSubLt]
wp_add_sub_lt_success_r_r [in cap_machine.rules.rules_AddSubLt]
wp_add_sub_lt_success_z_r [in cap_machine.rules.rules_AddSubLt]
wp_add_sub_lt_success_r_z [in cap_machine.rules.rules_AddSubLt]
wp_add_sub_lt_success_z_z [in cap_machine.rules.rules_AddSubLt]
wp_AddSubLt [in cap_machine.rules.rules_AddSubLt]
wp_restrict_success_z_sr [in cap_machine.rules.rules_Restrict]
wp_restrict_success_reg_sr [in cap_machine.rules.rules_Restrict]
wp_restrict_success_z [in cap_machine.rules.rules_Restrict]
wp_restrict_success_z_PC [in cap_machine.rules.rules_Restrict]
wp_restrict_success_reg [in cap_machine.rules.rules_Restrict]
wp_restrict_success_reg_PC [in cap_machine.rules.rules_Restrict]
wp_Restrict [in cap_machine.rules.rules_Restrict]
wp_Get_fail [in cap_machine.rules.rules_Get]
wp_Get_success [in cap_machine.rules.rules_Get]
wp_Get_same_success [in cap_machine.rules.rules_Get]
wp_Get_PC_success [in cap_machine.rules.rules_Get]
wp_Get [in cap_machine.rules.rules_Get]
writeAllowed_nonO [in cap_machine.machine_base]
writeA_implies_readA [in cap_machine.machine_base]
write_allowed_inv [in cap_machine.logrel_binary]
write_allowed_inv [in cap_machine.logrel]

Z

zip_app [in cap_machine.stdpp_extra]
zip_seq_between_lookup [in cap_machine.proofmode.mkregion_helpers]
z_of_arg_mono [in cap_machine.cap_lang]
z_of_argument_Some_inv' [in cap_machine.cap_lang]
z_of_argument_Some_inv [in cap_machine.cap_lang]
z_addr_base [in cap_machine.proofmode.proofmode]

---

Constructor Index

A

Add [in cap_machine.machine_base]
AddSubLt_spec_failure [in cap_machine.rules.rules_AddSubLt]
AddSubLt_spec_success [in cap_machine.rules.rules_AddSubLt]
AddSubLt_fail_incrPC [in cap_machine.rules.rules_AddSubLt]
AddSubLt_fail_nonconst2 [in cap_machine.rules.rules_AddSubLt]
AddSubLt_fail_nonconst1 [in cap_machine.rules.rules_AddSubLt]

C

contiguous_between_cons [in cap_machine.proofmode.contiguous]
contiguous_between_nil [in cap_machine.proofmode.contiguous]

D

Del [in cap_machine.proofmode.map_simpl]
disjoint_cons_2 [in cap_machine.proofmode.disjoint_regions_tactics]
disjoint_nil_2 [in cap_machine.proofmode.disjoint_regions_tactics]
disjoint_list [in cap_machine.proofmode.disjoint_regions_tactics]

E

E [in cap_machine.machine_base]
Executable [in cap_machine.cap_lang]

F

Fail [in cap_machine.machine_base]
Failed [in cap_machine.cap_lang]
FailedV [in cap_machine.cap_lang]
finz.FinZ [in machine_utils.finz_base]

G

GetA [in cap_machine.machine_base]
GetB [in cap_machine.machine_base]
GetE [in cap_machine.machine_base]
GetOType [in cap_machine.machine_base]
GetP [in cap_machine.machine_base]
GetTag_spec_success [in cap_machine.rules.rules_Mov]
GetWType [in cap_machine.machine_base]
Get_spec_failure [in cap_machine.rules.rules_Get]
Get_spec_success [in cap_machine.rules.rules_Get]
Get_fail_overflow_PC [in cap_machine.rules.rules_Get]
Get_fail_src_denote [in cap_machine.rules.rules_Get]

H

Halt [in cap_machine.machine_base]
Halted [in cap_machine.cap_lang]
HaltedV [in cap_machine.cap_lang]

I

Ins [in cap_machine.proofmode.map_simpl]
Instr [in cap_machine.cap_lang]
isCorrectPC_intro [in cap_machine.machine_base]
is_context_intro [in cap_machine.linking]
is_program_intro [in cap_machine.linking]

J

Jmp [in cap_machine.machine_base]
Jnz [in cap_machine.machine_base]
Jnz_spec_success2 [in cap_machine.rules.rules_Jnz]
Jnz_spec_success1 [in cap_machine.rules.rules_Jnz]
Jnz_spec_failure [in cap_machine.rules.rules_Jnz]

L

Lea [in cap_machine.machine_base]
Lea_spec_failure [in cap_machine.rules.rules_Lea]
Lea_spec_success_sr [in cap_machine.rules.rules_Lea]
Lea_spec_success_cap [in cap_machine.rules.rules_Lea]
Lea_fail_overflow_PC_sr [in cap_machine.rules.rules_Lea]
Lea_fail_overflow_sr [in cap_machine.rules.rules_Lea]
Lea_fail_overflow_PC_cap [in cap_machine.rules.rules_Lea]
Lea_fail_overflow_cap [in cap_machine.rules.rules_Lea]
Lea_fail_allowed [in cap_machine.rules.rules_Lea]
Lea_fail_rv_nonconst [in cap_machine.rules.rules_Lea]
Lib [in cap_machine.linking]
link_main_lib [in cap_machine.linking]
link_lib_main [in cap_machine.linking]
link_lib_lib [in cap_machine.linking]
link_pre_comp_intro [in cap_machine.linking]
Load [in cap_machine.machine_base]
Load_spec_failure [in cap_machine.rules.rules_Load]
Load_spec_success [in cap_machine.rules.rules_Load]
Load_fail_invalid_PC [in cap_machine.rules.rules_Load]
Load_fail_bounds [in cap_machine.rules.rules_Load]
Load_fail_const [in cap_machine.rules.rules_Load]
Lt [in cap_machine.machine_base]

M

Main [in cap_machine.linking]
MkAsWeakFinZIncr [in machine_utils.classes]
MkCbvTc [in machine_utils.classes]
MkDecodeInstr [in cap_machine.proofmode.classes]
MkFinZEq [in machine_utils.classes]
MkFinZLe [in machine_utils.classes]
MkFinZLt [in machine_utils.classes]
MkFinZOffsetLe [in machine_utils.classes]
MkFinZOffsetLt [in machine_utils.classes]
MkIncrFinZ [in machine_utils.classes]
MkInCtx [in machine_utils.solve_pure]
MkSimplTc [in machine_utils.classes]
MkZToFinZ [in machine_utils.classes]
Mov [in cap_machine.machine_base]
Mov_spec_failure [in cap_machine.rules.rules_Mov]

N

NextI [in cap_machine.cap_lang]
NextIV [in cap_machine.cap_lang]

O

O [in cap_machine.machine_base]

P

PC [in cap_machine.addr_reg]
PS_no_fork_fail [in cap_machine.cap_lang]
PS_no_fork_halt [in cap_machine.cap_lang]
PS_no_fork_seq [in cap_machine.cap_lang]
PS_no_fork_instr [in cap_machine.cap_lang]

R

R [in cap_machine.addr_reg]
Restrict [in cap_machine.machine_base]
Restrict_spec_failure [in cap_machine.rules.rules_Restrict]
Restrict_spec_success_sr [in cap_machine.rules.rules_Restrict]
Restrict_spec_success_cap [in cap_machine.rules.rules_Restrict]
Restrict_fail_PC_overflow_sr [in cap_machine.rules.rules_Restrict]
Restrict_fail_invalid_perm_sr [in cap_machine.rules.rules_Restrict]
Restrict_fail_PC_overflow_cap [in cap_machine.rules.rules_Restrict]
Restrict_fail_invalid_perm_cap [in cap_machine.rules.rules_Restrict]
Restrict_fail_allowed [in cap_machine.rules.rules_Restrict]
Restrict_fail_src_nonz [in cap_machine.rules.rules_Restrict]
RO [in cap_machine.machine_base]
RW [in cap_machine.machine_base]
RWX [in cap_machine.machine_base]
RX [in cap_machine.machine_base]

S

SCap [in cap_machine.machine_base]
Seal [in cap_machine.machine_base]
Seal_spec_failure [in cap_machine.rules.rules_Seal]
Seal_spec_success [in cap_machine.rules.rules_Seal]
Seal_fail_incrPC [in cap_machine.rules.rules_Seal]
Seal_fail_bounds [in cap_machine.rules.rules_Seal]
Seal_fail_sealb [in cap_machine.rules.rules_Seal]
Seal_fail_sealr [in cap_machine.rules.rules_Seal]
Seq [in cap_machine.cap_lang]
SeqCtx [in cap_machine.cap_lang]
SSealRange [in cap_machine.machine_base]
step_exec_instr [in cap_machine.cap_lang]
step_exec_memfail [in cap_machine.cap_lang]
step_exec_corrfail [in cap_machine.cap_lang]
step_exec_regfail [in cap_machine.cap_lang]
Store [in cap_machine.machine_base]
Store_spec_failure_store [in cap_machine.rules.rules_Store]
Store_spec_success [in cap_machine.rules.rules_Store]
Store_fail_invalid_PC [in cap_machine.rules.rules_Store]
Store_fail_bounds [in cap_machine.rules.rules_Store]
Store_fail_const [in cap_machine.rules.rules_Store]
Sub [in cap_machine.machine_base]
Subseg [in cap_machine.machine_base]
Subseg_spec_failure [in cap_machine.rules.rules_Subseg]
Subseg_spec_success_sr [in cap_machine.rules.rules_Subseg]
Subseg_spec_success_cap [in cap_machine.rules.rules_Subseg]
Subseg_fail_incrPC_sr [in cap_machine.rules.rules_Subseg]
Subseg_fail_not_iswithin_sr [in cap_machine.rules.rules_Subseg]
Subseg_fail_incrPC_cap [in cap_machine.rules.rules_Subseg]
Subseg_fail_not_iswithin_cap [in cap_machine.rules.rules_Subseg]
Subseg_fail_src2_nonotype [in cap_machine.rules.rules_Subseg]
Subseg_fail_src1_nonotype [in cap_machine.rules.rules_Subseg]
Subseg_fail_src2_nonaddr [in cap_machine.rules.rules_Subseg]
Subseg_fail_src1_nonaddr [in cap_machine.rules.rules_Subseg]
Subseg_fail_allowed [in cap_machine.rules.rules_Subseg]
Symb [in cap_machine.proofmode.map_simpl]

U

UnSeal [in cap_machine.machine_base]
UnSeal_spec_failure [in cap_machine.rules.rules_UnSeal]
UnSeal_spec_success [in cap_machine.rules.rules_UnSeal]
UnSeal_fail_incrPC [in cap_machine.rules.rules_UnSeal]
UnSeal_fail_bounds [in cap_machine.rules.rules_UnSeal]
UnSeal_fail_sealed [in cap_machine.rules.rules_UnSeal]
UnSeal_fail_sealr [in cap_machine.rules.rules_UnSeal]

W

wf_main [in cap_machine.linking]
wf_lib [in cap_machine.linking]
wf_pre_intro [in cap_machine.linking]
WInt [in cap_machine.machine_base]
WSealable [in cap_machine.machine_base]
WSealed [in cap_machine.machine_base]

---

Projection Index

A

act_size [in cap_machine.examples.adder_adequacy]
act_end [in cap_machine.examples.adder_adequacy]
act_start [in cap_machine.examples.adder_adequacy]
adv_link_table_size [in cap_machine.examples.lse_adequacy]
adv_link_table_end [in cap_machine.examples.lse_adequacy]
adv_link_table_start [in cap_machine.examples.lse_adequacy]
adv_region_start_offset [in cap_machine.examples.lse_adequacy]
adv_size [in cap_machine.examples.lse_adequacy]
adv_instrs [in cap_machine.examples.lse_adequacy]
adv_end [in cap_machine.examples.lse_adequacy]
adv_start [in cap_machine.examples.lse_adequacy]
adv_region_start [in cap_machine.examples.lse_adequacy]
adv_link_table_size [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
adv_link_table_end [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
adv_link_table_start [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
adv_region_start_offset [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
adv_size [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
adv_instrs [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
adv_end [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
adv_start [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
adv_region_start [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
adv_end [in cap_machine.examples.adder_adequacy]
adv_start [in cap_machine.examples.adder_adequacy]
adv_end [in cap_machine.examples.counter.counter_adequacy]
adv_start [in cap_machine.examples.counter.counter_adequacy]
adv_link_table_size [in cap_machine.exercises.subseg_buffer_call]
adv_link_table_end [in cap_machine.exercises.subseg_buffer_call]
adv_link_table_start [in cap_machine.exercises.subseg_buffer_call]
adv_region_start_offset [in cap_machine.exercises.subseg_buffer_call]
adv_size [in cap_machine.exercises.subseg_buffer_call]
adv_instrs [in cap_machine.exercises.subseg_buffer_call]
adv_end [in cap_machine.exercises.subseg_buffer_call]
adv_start [in cap_machine.exercises.subseg_buffer_call]
adv_region_start [in cap_machine.exercises.subseg_buffer_call]
adv_link_table_size [in cap_machine.examples.interval.interval_client_adequacy]
adv_link_table_end [in cap_machine.examples.interval.interval_client_adequacy]
adv_link_table_start [in cap_machine.examples.interval.interval_client_adequacy]
adv_region_start_offset [in cap_machine.examples.interval.interval_client_adequacy]
adv_size [in cap_machine.examples.interval.interval_client_adequacy]
adv_instrs [in cap_machine.examples.interval.interval_client_adequacy]
adv_end [in cap_machine.examples.interval.interval_client_adequacy]
adv_start [in cap_machine.examples.interval.interval_client_adequacy]
adv_region_start [in cap_machine.examples.interval.interval_client_adequacy]
assert_flag_size [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
assert_cap_size [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
assert_code_size [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
assert_end [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
assert_flag [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
assert_cap [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
assert_start [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
assert_flag_size [in cap_machine.examples.counter.counter_adequacy]
assert_cap_size [in cap_machine.examples.counter.counter_adequacy]
assert_code_size [in cap_machine.examples.counter.counter_adequacy]
assert_end [in cap_machine.examples.counter.counter_adequacy]
assert_flag [in cap_machine.examples.counter.counter_adequacy]
assert_cap [in cap_machine.examples.counter.counter_adequacy]
assert_start [in cap_machine.examples.counter.counter_adequacy]
assert_flag_size [in cap_machine.examples.interval.interval_client_adequacy]
assert_cap_size [in cap_machine.examples.interval.interval_client_adequacy]
assert_code_size [in cap_machine.examples.interval.interval_client_adequacy]
assert_end [in cap_machine.examples.interval.interval_client_adequacy]
assert_flag [in cap_machine.examples.interval.interval_client_adequacy]
assert_cap [in cap_machine.examples.interval.interval_client_adequacy]
assert_start [in cap_machine.examples.interval.interval_client_adequacy]

C

ccounter_inG [in cap_machine.examples.keylist]
cfg_name [in cap_machine.rules_binary.rules_binary_base]
cfg_invG [in cap_machine.rules_binary.rules_binary_base]
counter_body_size [in cap_machine.examples.counter.counter_adequacy]
counter_preamble_size [in cap_machine.examples.counter.counter_adequacy]
counter_linking_ptr_size [in cap_machine.examples.counter.counter_adequacy]
counter_region_end [in cap_machine.examples.counter.counter_adequacy]
counter_body_start [in cap_machine.examples.counter.counter_adequacy]
counter_preamble_start [in cap_machine.examples.counter.counter_adequacy]
counter_region_start [in cap_machine.examples.counter.counter_adequacy]
counter_body_size [in cap_machine.examples.counter_binary.counter_binary_adequacy]
counter_preamble_size [in cap_machine.examples.counter_binary.counter_binary_adequacy]
counter_linking_ptr_size [in cap_machine.examples.counter_binary.counter_binary_adequacy]
counter_region_end [in cap_machine.examples.counter_binary.counter_binary_adequacy]
counter_body_start [in cap_machine.examples.counter_binary.counter_binary_adequacy]
counter_preamble_start [in cap_machine.examples.counter_binary.counter_binary_adequacy]
counter_region_start [in cap_machine.examples.counter_binary.counter_binary_adequacy]

D

decodeInstr [in cap_machine.machine_parameters]
decodePerm [in cap_machine.machine_parameters]
decodeSealPerms [in cap_machine.machine_parameters]
decodeWordType [in cap_machine.machine_parameters]
decode_encode_word_type_inv [in cap_machine.machine_parameters]
decode_encode_seal_perms_inv [in cap_machine.machine_parameters]
decode_encode_perm_inv [in cap_machine.machine_parameters]
decode_encode_instr_inv [in cap_machine.machine_parameters]
disjoint_list [in cap_machine.proofmode.disjoint_regions_tactics]

E

encodeInstr [in cap_machine.machine_parameters]
encodePerm [in cap_machine.machine_parameters]
encodePerm_inj [in cap_machine.machine_parameters]
encodeSealPerms [in cap_machine.machine_parameters]
encodeSealPerms_inj [in cap_machine.machine_parameters]
encodeWordType [in cap_machine.machine_parameters]
encodeWordType_correct [in cap_machine.machine_parameters]

F

f_region_start_offset [in cap_machine.examples.lse_adequacy]
f_size [in cap_machine.examples.lse_adequacy]
f_end [in cap_machine.examples.lse_adequacy]
f_start [in cap_machine.examples.lse_adequacy]
f_region_start [in cap_machine.examples.lse_adequacy]
f_size [in cap_machine.examples.adder_adequacy]
f_end [in cap_machine.examples.adder_adequacy]
f_start [in cap_machine.examples.adder_adequacy]
f_region_start_offset [in cap_machine.exercises.subseg_buffer_call]
f_size [in cap_machine.exercises.subseg_buffer_call]
f_end [in cap_machine.exercises.subseg_buffer_call]
f_start [in cap_machine.exercises.subseg_buffer_call]
f_region_start [in cap_machine.exercises.subseg_buffer_call]

G

g_size [in cap_machine.examples.adder_adequacy]
g_start [in cap_machine.examples.adder_adequacy]

I

interval_region_start_offset [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
interval_body_size [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
interval_closure_size [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
interval_region_end [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
interval_body_start [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
interval_closure_start [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
interval_region_start [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
interval_client_region_start_offset [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
interval_client_body_size [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
interval_client_closure_size [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
interval_client_region_end [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
interval_client_body_start [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
interval_client_closure_start [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
interval_client_region_start [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
interval_region_start_offset [in cap_machine.examples.interval.interval_client_adequacy]
interval_body_size [in cap_machine.examples.interval.interval_client_adequacy]
interval_closure_size [in cap_machine.examples.interval.interval_client_adequacy]
interval_region_end [in cap_machine.examples.interval.interval_client_adequacy]
interval_body_start [in cap_machine.examples.interval.interval_client_adequacy]
interval_closure_start [in cap_machine.examples.interval.interval_client_adequacy]
interval_region_start [in cap_machine.examples.interval.interval_client_adequacy]
interval_client_region_start_offset [in cap_machine.examples.interval.interval_client_adequacy]
interval_client_body_size [in cap_machine.examples.interval.interval_client_adequacy]
interval_client_closure_size [in cap_machine.examples.interval.interval_client_adequacy]
interval_client_region_end [in cap_machine.examples.interval.interval_client_adequacy]
interval_client_body_start [in cap_machine.examples.interval.interval_client_adequacy]
interval_client_closure_start [in cap_machine.examples.interval.interval_client_adequacy]
interval_client_region_start [in cap_machine.examples.interval.interval_client_adequacy]
int_table_size [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
int_table_end [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
int_table_start [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
int_table_size [in cap_machine.examples.interval.interval_client_adequacy]
int_table_end [in cap_machine.examples.interval.interval_client_adequacy]
int_table_start [in cap_machine.examples.interval.interval_client_adequacy]

L

lib_full_content [in cap_machine.examples.template_adequacy]
lib_entrypoint [in cap_machine.examples.template_adequacy]
lib_end [in cap_machine.examples.template_adequacy]
lib_start [in cap_machine.examples.template_adequacy]
link_table_size [in cap_machine.examples.lse_adequacy]
link_table_end [in cap_machine.examples.lse_adequacy]
link_table_start [in cap_machine.examples.lse_adequacy]
link_table_size [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
link_table_end [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
link_table_start [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
link_table_size [in cap_machine.examples.counter.counter_adequacy]
link_table_end [in cap_machine.examples.counter.counter_adequacy]
link_table_start [in cap_machine.examples.counter.counter_adequacy]
link_table_size [in cap_machine.exercises.subseg_buffer_call]
link_table_end [in cap_machine.exercises.subseg_buffer_call]
link_table_start [in cap_machine.exercises.subseg_buffer_call]
link_table_size [in cap_machine.examples.counter_binary.counter_binary_adequacy]
link_table_end [in cap_machine.examples.counter_binary.counter_binary_adequacy]
link_table_start [in cap_machine.examples.counter_binary.counter_binary_adequacy]
link_table_size [in cap_machine.examples.interval.interval_client_adequacy]
link_table_end [in cap_machine.examples.interval.interval_client_adequacy]
link_table_start [in cap_machine.examples.interval.interval_client_adequacy]
logrel_nais [in cap_machine.logrel]
logrel_na_invG [in cap_machine.logrel]
l_assert_flag_size [in cap_machine.examples.lse_adequacy]
l_assert_cap_size [in cap_machine.examples.lse_adequacy]
l_assert_code_size [in cap_machine.examples.lse_adequacy]
l_assert_end [in cap_machine.examples.lse_adequacy]
l_assert_flag [in cap_machine.examples.lse_adequacy]
l_assert_cap [in cap_machine.examples.lse_adequacy]
l_assert_start [in cap_machine.examples.lse_adequacy]
l_malloc_mem_size [in cap_machine.examples.lse_adequacy]
l_malloc_memptr_size [in cap_machine.examples.lse_adequacy]
l_malloc_code_size [in cap_machine.examples.lse_adequacy]
l_malloc_end [in cap_machine.examples.lse_adequacy]
l_malloc_mem_start [in cap_machine.examples.lse_adequacy]
l_malloc_memptr [in cap_machine.examples.lse_adequacy]
l_malloc_start [in cap_machine.examples.lse_adequacy]
l_assert_flag_size [in cap_machine.exercises.subseg_buffer_call]
l_assert_cap_size [in cap_machine.exercises.subseg_buffer_call]
l_assert_code_size [in cap_machine.exercises.subseg_buffer_call]
l_assert_end [in cap_machine.exercises.subseg_buffer_call]
l_assert_flag [in cap_machine.exercises.subseg_buffer_call]
l_assert_cap [in cap_machine.exercises.subseg_buffer_call]
l_assert_start [in cap_machine.exercises.subseg_buffer_call]
l_malloc_mem_size [in cap_machine.exercises.subseg_buffer_call]
l_malloc_memptr_size [in cap_machine.exercises.subseg_buffer_call]
l_malloc_code_size [in cap_machine.exercises.subseg_buffer_call]
l_malloc_end [in cap_machine.exercises.subseg_buffer_call]
l_malloc_mem_start [in cap_machine.exercises.subseg_buffer_call]
l_malloc_memptr [in cap_machine.exercises.subseg_buffer_call]
l_malloc_start [in cap_machine.exercises.subseg_buffer_call]

M

malloc_mem_size [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
malloc_memptr_size [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
malloc_code_size [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
malloc_end [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
malloc_mem_start [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
malloc_memptr [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
malloc_start [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
malloc_mem_size [in cap_machine.examples.counter.counter_adequacy]
malloc_memptr_size [in cap_machine.examples.counter.counter_adequacy]
malloc_code_size [in cap_machine.examples.counter.counter_adequacy]
malloc_end [in cap_machine.examples.counter.counter_adequacy]
malloc_mem_start [in cap_machine.examples.counter.counter_adequacy]
malloc_memptr [in cap_machine.examples.counter.counter_adequacy]
malloc_start [in cap_machine.examples.counter.counter_adequacy]
malloc_mem_size [in cap_machine.examples.counter_binary.counter_binary_adequacy]
malloc_memptr_size [in cap_machine.examples.counter_binary.counter_binary_adequacy]
malloc_code_size [in cap_machine.examples.counter_binary.counter_binary_adequacy]
malloc_end [in cap_machine.examples.counter_binary.counter_binary_adequacy]
malloc_mem_start [in cap_machine.examples.counter_binary.counter_binary_adequacy]
malloc_memptr [in cap_machine.examples.counter_binary.counter_binary_adequacy]
malloc_start [in cap_machine.examples.counter_binary.counter_binary_adequacy]
malloc_mem_size [in cap_machine.examples.interval.interval_client_adequacy]
malloc_memptr_size [in cap_machine.examples.interval.interval_client_adequacy]
malloc_code_size [in cap_machine.examples.interval.interval_client_adequacy]
malloc_end [in cap_machine.examples.interval.interval_client_adequacy]
malloc_mem_start [in cap_machine.examples.interval.interval_client_adequacy]
malloc_memptr [in cap_machine.examples.interval.interval_client_adequacy]
malloc_start [in cap_machine.examples.interval.interval_client_adequacy]
mem_gen_memG [in cap_machine.rules.rules_base]
mem_invG [in cap_machine.rules.rules_base]
minv [in cap_machine.examples.template_adequacy]
minv_dom_correct [in cap_machine.examples.template_adequacy]
minv_dom [in cap_machine.examples.template_adequacy]
MkAsWeakFinZIncr [in machine_utils.classes]
MkCbvTc [in machine_utils.classes]
MkDecodeInstr [in cap_machine.proofmode.classes]
MkFinZEq [in machine_utils.classes]
MkFinZLe [in machine_utils.classes]
MkFinZLt [in machine_utils.classes]
MkFinZOffsetLe [in machine_utils.classes]
MkFinZOffsetLt [in machine_utils.classes]
MkIncrFinZ [in machine_utils.classes]
MkInCtx [in machine_utils.solve_pure]
MkSimplTc [in machine_utils.classes]
MkZToFinZ [in machine_utils.classes]

O

ocpl.assert_flag_size [in cap_machine.examples.template_adequacy_ocpl]
ocpl.assert_cap_size [in cap_machine.examples.template_adequacy_ocpl]
ocpl.assert_code_size [in cap_machine.examples.template_adequacy_ocpl]
ocpl.assert_end [in cap_machine.examples.template_adequacy_ocpl]
ocpl.assert_flag [in cap_machine.examples.template_adequacy_ocpl]
ocpl.assert_cap [in cap_machine.examples.template_adequacy_ocpl]
ocpl.assert_start [in cap_machine.examples.template_adequacy_ocpl]
ocpl.libs_disjoint [in cap_machine.examples.template_adequacy_ocpl]
ocpl.malloc_mem_size [in cap_machine.examples.template_adequacy_ocpl]
ocpl.malloc_memptr_size [in cap_machine.examples.template_adequacy_ocpl]
ocpl.malloc_code_size [in cap_machine.examples.template_adequacy_ocpl]
ocpl.malloc_end [in cap_machine.examples.template_adequacy_ocpl]
ocpl.malloc_mem_start [in cap_machine.examples.template_adequacy_ocpl]
ocpl.malloc_memptr [in cap_machine.examples.template_adequacy_ocpl]
ocpl.malloc_start [in cap_machine.examples.template_adequacy_ocpl]

P

priv_libs [in cap_machine.examples.template_adequacy]
prog_lower_bound [in cap_machine.examples.template_adequacy]
prog_size [in cap_machine.examples.template_adequacy]
prog_instrs [in cap_machine.examples.template_adequacy]
prog_end [in cap_machine.examples.template_adequacy]
prog_start [in cap_machine.examples.template_adequacy]
ProperPreOrder_ne [in cap_machine.monotone]
ProperPreOrder_preorder [in cap_machine.monotone]
pub_libs [in cap_machine.examples.template_adequacy]

R

regions_disjoint [in cap_machine.examples.lse_adequacy]
regions_disjoint [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
regions_disjoint [in cap_machine.examples.adder_adequacy]
regions_disjoint [in cap_machine.examples.counter.counter_adequacy]
regions_disjoint [in cap_machine.exercises.subseg_buffer_call]
regions_disjoint [in cap_machine.examples.counter_binary.counter_binary_adequacy]
regions_disjoint [in cap_machine.examples.interval.interval_client_adequacy]
reg_gen_regG [in cap_machine.rules.rules_base]
reg_invG [in cap_machine.rules.rules_base]

S

salloc_o_lt [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
salloc_o_e [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
salloc_o_b [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
salloc_optr_size [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
salloc_memptr_size [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
salloc_code_size [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
salloc_end [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
salloc_optr [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
salloc_memptr [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
salloc_start [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
seal_table_size [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
seal_table_end [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
seal_table_start [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
seal_region_start_offset [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
seal_makeseal_entrypoint_correct [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
seal_makeseal_entrypoint [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
seal_size [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
seal_region_end [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
seal_body_start [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
seal_region_start [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
seal_table_size [in cap_machine.examples.interval.interval_client_adequacy]
seal_table_end [in cap_machine.examples.interval.interval_client_adequacy]
seal_table_start [in cap_machine.examples.interval.interval_client_adequacy]
seal_region_start_offset [in cap_machine.examples.interval.interval_client_adequacy]
seal_makeseal_entrypoint_correct [in cap_machine.examples.interval.interval_client_adequacy]
seal_makeseal_entrypoint [in cap_machine.examples.interval.interval_client_adequacy]
seal_size [in cap_machine.examples.interval.interval_client_adequacy]
seal_region_end [in cap_machine.examples.interval.interval_client_adequacy]
seal_body_start [in cap_machine.examples.interval.interval_client_adequacy]
seal_region_start [in cap_machine.examples.interval.interval_client_adequacy]
SG_storedPredsPre [in cap_machine.seal_store]
SG_sealStorePre [in cap_machine.seal_store]
SG_sealN [in cap_machine.seal_store]
SG_storedPreds [in cap_machine.seal_store]
SG_sealStore [in cap_machine.seal_store]

T

tbl_disj [in cap_machine.examples.template_adequacy]
tbl_prog_link [in cap_machine.examples.template_adequacy]
tbl_size [in cap_machine.examples.template_adequacy]
tbl_end [in cap_machine.examples.template_adequacy]
tbl_start [in cap_machine.examples.template_adequacy]

X

x [in cap_machine.examples.adder_adequacy]
x_size [in cap_machine.examples.adder_adequacy]
x' [in cap_machine.examples.adder_adequacy]

---

Inductive Index

A

AddSubLt_spec [in cap_machine.rules.rules_AddSubLt]
AddSubLt_failure [in cap_machine.rules.rules_AddSubLt]
AsWeakFinZIncr [in machine_utils.classes]

C

CbvTC [in machine_utils.classes]
component [in cap_machine.linking]
ConfFlag [in cap_machine.cap_lang]
contiguous_between [in cap_machine.proofmode.contiguous]

D

DecodeInstr [in cap_machine.proofmode.classes]
DisjointList [in cap_machine.proofmode.disjoint_regions_tactics]
disjoint_list_default [in cap_machine.proofmode.disjoint_regions_tactics]

E

ectx_item [in cap_machine.cap_lang]
expr [in cap_machine.cap_lang]

F

FinZEq [in machine_utils.classes]
FinZLe [in machine_utils.classes]
FinZLt [in machine_utils.classes]
FinZOffsetLe [in machine_utils.classes]
FinZOffsetLt [in machine_utils.classes]
finz.finz [in machine_utils.finz_base]

G

Get_spec [in cap_machine.rules.rules_Get]
Get_failure [in cap_machine.rules.rules_Get]

I

IncrFinZ [in machine_utils.classes]
InCtx [in machine_utils.solve_pure]
instr [in cap_machine.machine_base]
isCorrectPC [in cap_machine.machine_base]
is_context [in cap_machine.linking]
is_program [in cap_machine.linking]

J

Jnz_spec [in cap_machine.rules.rules_Jnz]

L

Lea_spec [in cap_machine.rules.rules_Lea]
Lea_failure [in cap_machine.rules.rules_Lea]
link [in cap_machine.linking]
link_pre_comp [in cap_machine.linking]
Load_spec [in cap_machine.rules.rules_Load]
Load_failure [in cap_machine.rules.rules_Load]

M

Mov_spec [in cap_machine.rules.rules_Mov]

P

Perm [in cap_machine.machine_base]
prim_step [in cap_machine.cap_lang]

R

RegName [in cap_machine.addr_reg]
Restrict_spec [in cap_machine.rules.rules_Restrict]
Restrict_failure [in cap_machine.rules.rules_Restrict]
rgmap [in cap_machine.proofmode.map_simpl]

S

Sealable [in cap_machine.machine_base]
Seal_spec [in cap_machine.rules.rules_Seal]
Seal_failure [in cap_machine.rules.rules_Seal]
SimplTC [in machine_utils.classes]
step [in cap_machine.cap_lang]
Store_spec [in cap_machine.rules.rules_Store]
Store_failure_incr [in cap_machine.rules.rules_Store]
Store_failure_store [in cap_machine.rules.rules_Store]
Subseg_spec [in cap_machine.rules.rules_Subseg]
Subseg_failure [in cap_machine.rules.rules_Subseg]

U

UnSeal_spec [in cap_machine.rules.rules_UnSeal]
UnSeal_failure [in cap_machine.rules.rules_UnSeal]

V

val [in cap_machine.cap_lang]

W

well_formed_comp [in cap_machine.linking]
well_formed_pre_comp [in cap_machine.linking]
Word [in cap_machine.machine_base]

Z

ZToFinZ [in machine_utils.classes]

---

Section Index

A

adder [in cap_machine.examples.adder]
Adequacy [in cap_machine.examples.adder_adequacy]
Adequacy [in cap_machine.examples.counter.counter_adequacy]
Adequacy [in cap_machine.examples.counter_binary.counter_binary_adequacy]
Assert [in cap_machine.examples.assert]

B

base_program_CPS [in cap_machine.exercises.subseg_buffer]
base_program [in cap_machine.exercises.subseg_buffer]
base_program [in cap_machine.exercises.cerise_tutorial]
base_program [in cap_machine.exercises.cerise_tutorial_solutions]
basic.Adequacy [in cap_machine.examples.template_adequacy]
bin_log_def [in cap_machine.fundamental_binary]
buffer [in cap_machine.examples.buffer]

C

call [in cap_machine.examples.call]
callback [in cap_machine.examples.callback]
cap_lang_spec_rules [in cap_machine.rules_binary.rules_binary_Subseg]
cap_lang_spec_rules [in cap_machine.rules_binary.rules_binary_AddSubLt]
cap_lang_spec_rules [in cap_machine.rules_binary.rules_binary_Load]
cap_lang_rules [in cap_machine.rules.rules_Jnz]
cap_lang_rules [in cap_machine.rules.rules_Subseg]
cap_lang_rules [in cap_machine.rules.rules_Lea]
cap_lang_spec_rules [in cap_machine.rules_binary.rules_binary_Store]
cap_lang_rules [in cap_machine.rules.rules_Seal]
cap_lang_rules [in cap_machine.rules.rules_UnSeal]
cap_lang_spec_rules [in cap_machine.rules_binary.rules_binary_base]
cap_lang_spec_rules [in cap_machine.rules_binary.rules_binary_base]
cap_lang_spec_resources [in cap_machine.rules_binary.rules_binary_base]
cap_lang_spec_rules [in cap_machine.rules_binary.rules_binary_Lea]
cap_lang_rules [in cap_machine.rules.rules_Mov]
cap_lang_spec_rules [in cap_machine.rules_binary.rules_binary_Restrict]
cap_lang_spec_rules [in cap_machine.rules_binary.rules_binary_Get]
cap_lang_spec_rules [in cap_machine.rules_binary.rules_binary_Jmp]
cap_lang_spec_rules [in cap_machine.rules_binary.rules_binary_Jnz]
cap_lang_spec_rules [in cap_machine.rules_binary.rules_binary_Mov]
cap_lang_rules [in cap_machine.rules.rules_Store]
cap_lang_rules [in cap_machine.rules.rules_base]
cap_lang_rules [in cap_machine.rules.rules_Jmp]
cap_lang_rules [in cap_machine.rules.rules_Load]
cap_lang_rules [in cap_machine.rules.rules_AddSubLt]
cap_lang_rules [in cap_machine.rules.rules_Restrict]
cap_lang_rules [in cap_machine.rules.rules_Get]
closure_program [in cap_machine.exercises.subseg_buffer_closure]
codefrag [in cap_machine.proofmode.region]
codefrag [in cap_machine.proofmode.proofmode]
codefrag_subblock [in cap_machine.proofmode.proofmode]
Contiguous [in cap_machine.proofmode.contiguous]
counter [in cap_machine.examples.counter.counter]
counter [in cap_machine.examples.counter_binary.counter_binary]
counter [in cap_machine.examples.minimal_counter]
counter_example_preamble [in cap_machine.examples.counter.counter_preamble]
counter_example_preamble [in cap_machine.examples.counter_binary.counter_binary_preamble_def]
counter_example_preamble [in cap_machine.examples.counter_binary.counter_binary_preamble]
counter_example_preamble [in cap_machine.examples.counter_binary.counter_binary_preamble_left]

D

definitionsS [in cap_machine.rules_binary.rules_binary_base]
denote_domain [in cap_machine.proofmode.register_tactics]
disjoint_list [in cap_machine.proofmode.disjoint_regions_tactics]

F

finz_lemmas [in machine_utils.finz_base]
finz.finz [in machine_utils.finz_base]
fundamental [in cap_machine.ftlr_binary.Seal_binary]
fundamental [in cap_machine.ftlr_binary.Store_binary]
fundamental [in cap_machine.ftlr.Load]
fundamental [in cap_machine.ftlr.UnSeal]
fundamental [in cap_machine.ftlr.Store]
fundamental [in cap_machine.ftlr.Restrict]
fundamental [in cap_machine.ftlr.Subseg]
fundamental [in cap_machine.ftlr.interp_weakening]
fundamental [in cap_machine.ftlr_binary.AddSubLt_binary]
fundamental [in cap_machine.ftlr.Mov]
fundamental [in cap_machine.ftlr_binary.interp_weakening]
fundamental [in cap_machine.ftlr_binary.Restrict_binary]
fundamental [in cap_machine.ftlr_binary.Jnz_binary]
fundamental [in cap_machine.ftlr_binary.Subseg_binary]
fundamental [in cap_machine.ftlr_binary.UnSeal_binary]
fundamental [in cap_machine.ftlr_binary.ftlr_base_binary]
fundamental [in cap_machine.ftlr.Jnz]
fundamental [in cap_machine.ftlr_binary.Jmp_binary]
fundamental [in cap_machine.ftlr.Lea]
fundamental [in cap_machine.ftlr_binary.Lea_binary]
fundamental [in cap_machine.ftlr.AddSubLt]
fundamental [in cap_machine.ftlr_binary.Get_binary]
fundamental [in cap_machine.ftlr.ftlr_base]
fundamental [in cap_machine.ftlr.Seal]
fundamental [in cap_machine.fundamental]
fundamental [in cap_machine.ftlr.Jmp]
fundamental [in cap_machine.ftlr.Get]
fundamental [in cap_machine.ftlr_binary.Mov_binary]
fundamental [in cap_machine.fundamental_binary]
fundamental [in cap_machine.ftlr_binary.Load_binary]

H

helpers [in cap_machine.proofmode.tactics_helpers]

I

increment_macro [in cap_machine.exercises.cerise_modularity]
increment_macro [in cap_machine.exercises.cerise_modularity_solutions]
instr_encodings [in cap_machine.examples.addr_reg_sample]
interval [in cap_machine.examples.interval_arch.interval_arch]
interval [in cap_machine.examples.interval.interval]
interval_closure [in cap_machine.examples.interval_arch.interval_closure_arch]
interval_client [in cap_machine.examples.interval.interval_client_closure]
interval_client [in cap_machine.examples.interval.interval_client]
interval_closure [in cap_machine.examples.interval.interval_closure]
interval_client [in cap_machine.examples.interval_arch.interval_client_arch]
interval_client [in cap_machine.examples.interval_arch.interval_client_closure_arch]
int_client_adequacy [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
int_client_adequacy [in cap_machine.examples.interval.interval_client_adequacy]

L

lemmas [in machine_utils.finz_interval]
Linking [in cap_machine.linking]
linking_table [in cap_machine.exercises.cerise_modularity]
linking_table [in cap_machine.exercises.cerise_modularity_solutions]
list [in cap_machine.examples.keylist]
logrel [in cap_machine.logrel_binary]
logrel [in cap_machine.logrel]

M

macros [in cap_machine.examples.macros_new]
macros [in cap_machine.examples.macros_binary]
macros [in cap_machine.examples.macros]
malloc_program [in cap_machine.exercises.subseg_buffer_malloc]
monotone [in cap_machine.monotone]

N

named [in cap_machine.proofmode.NamedProp]

O

opsem [in cap_machine.cap_lang]

P

program_closure_ro [in cap_machine.exercises.restrict_buffer]
program_ro [in cap_machine.exercises.restrict_buffer]
program_call_adequacy.prog_call_correct [in cap_machine.exercises.subseg_buffer_call]
program_call_adequacy [in cap_machine.exercises.subseg_buffer_call]
program_call [in cap_machine.exercises.subseg_buffer_call]

R

rclear_macro [in cap_machine.exercises.cerise_modularity]
rclear_macro [in cap_machine.exercises.cerise_modularity_solutions]
region [in cap_machine.proofmode.region]
roe [in cap_machine.examples.lse]
roe_adequacy [in cap_machine.examples.lse_adequacy]
rules [in cap_machine.examples.ocpl_lowval_like]

S

sealing [in cap_machine.examples.dynamic_sealing]
sealing [in cap_machine.examples.arch_sealing]
SimpleMalloc [in cap_machine.examples.malloc_binary]
SimpleMalloc [in cap_machine.examples.malloc]
SimpleSalloc [in cap_machine.examples.salloc]
simpl_gmap [in cap_machine.proofmode.map_simpl]
Store [in cap_machine.seal_store]

T

tests.tests [in cap_machine.proofmode.NamedProp]
to_spec_map [in cap_machine.rules_binary.rules_binary_base]

W

with_adv_and_link_ints.Adequacy [in cap_machine.examples.template_adequacy]
with_adv_and_link.Adequacy [in cap_machine.examples.template_adequacy]
with_adv_and_data_and_link.Adequacy [in cap_machine.examples.template_adequacy]
with_adv_ints.Adequacy [in cap_machine.examples.template_adequacy]
with_adv.Adequacy [in cap_machine.examples.template_adequacy]
with_adv_and_data.Adequacy [in cap_machine.examples.template_adequacy]
word_type_encoding [in cap_machine.machine_parameters]

---

Instance Index

A

addr_inhabited [in cap_machine.machine_base]
AsWeakFinZIncr_no_incr [in machine_utils.class_instances]
AsWeakFinZIncr_incr [in machine_utils.class_instances]

D

DecodeInstr_encode [in cap_machine.proofmode.class_instances]
dec_pc [in cap_machine.cap_lang]
DisjointList_list_Addr [in cap_machine.examples.lse_adequacy]
DisjointList_list_Addr [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
DisjointList_list_Addr [in cap_machine.examples.adder_adequacy]
DisjointList_list_Addr [in cap_machine.examples.counter.counter_adequacy]
DisjointList_list_Addr [in cap_machine.exercises.subseg_buffer_call]
DisjointList_list_Addr [in cap_machine.examples.counter_binary.counter_binary_adequacy]
DisjointList_list_Addr [in cap_machine.examples.interval.interval_client_adequacy]

E

Empty_list [in cap_machine.proofmode.disjoint_regions_tactics]
enter_cond_contractive [in cap_machine.logrel_binary]
enter_cond_ne [in cap_machine.logrel_binary]
enter_cond_contractive [in cap_machine.logrel]
enter_cond_ne [in cap_machine.logrel]
EnvsLookupSpatial_next [in machine_utils.tactics]
EnvsLookupSpatial_here [in machine_utils.tactics]

F

fill_item_inj [in cap_machine.cap_lang]
FinZEqSame [in machine_utils.class_instances]
FinZEq_default_neq [in machine_utils.class_instances]
FinZEq_offset_cbv [in machine_utils.class_instances]
FinZLe_offsets [in machine_utils.class_instances]
FinZLe_of_lt [in machine_utils.class_instances]
FinZLe_refl [in machine_utils.class_instances]
FinZLt_offsets [in machine_utils.class_instances]
FinZOffsetLe_of_lt [in machine_utils.class_instances]
FinZOffsetLe_refl [in machine_utils.class_instances]
finz_lt_trans [in machine_utils.finz_base]
finz_le_trans [in machine_utils.finz_base]
finz_lt_dec [in machine_utils.finz_base]
finz_le_dec [in machine_utils.finz_base]
finz_countable [in machine_utils.finz_base]
finz_eq_dec [in machine_utils.finz_base]
FramableCodefrag_default [in cap_machine.proofmode.proofmode]
FramableMachineHyp_default [in machine_utils.tactics]
FramableMachineResource_codefrag [in cap_machine.proofmode.proofmode]
FramableMachineResource_mem [in cap_machine.proofmode.proofmode]
FramableMachineResource_reg [in cap_machine.proofmode.proofmode]
FramableMemoryPointsto_default [in cap_machine.proofmode.proofmode]
FramableRegisterPointsto_default [in cap_machine.proofmode.proofmode]

H

hasValidAddress_dec [in cap_machine.logrel]

I

if_Persistent [in cap_machine.ftlr.Load]
if_persistent [in cap_machine.ftlr.interp_weakening]
if_persistent [in cap_machine.ftlr_binary.interp_weakening]
if_Persistent [in cap_machine.ftlr_binary.Load_binary]
IncrFinZ_InCtx [in machine_utils.solve_pure]
IncrFinZ_in_ContiguousRegion [in machine_utils.solve_pure]
IncrFinZ_of_ContiguousRegion [in machine_utils.solve_pure]
inG_soundness_binaryΣ [in cap_machine.examples.counter_binary.counter_binary_adequacy_theorem]
instr_countable [in cap_machine.machine_base]
instr_eq_dec [in cap_machine.machine_base]
interp_persistent [in cap_machine.logrel_binary]
interp_cap_RWX_contractive [in cap_machine.logrel_binary]
interp_cap_E_contractive [in cap_machine.logrel_binary]
interp_cap_RX_contractive [in cap_machine.logrel_binary]
interp_cap_RW_contractive [in cap_machine.logrel_binary]
interp_cap_RO_contractive [in cap_machine.logrel_binary]
interp_cap_O_contractive [in cap_machine.logrel_binary]
interp_persistent [in cap_machine.logrel]
interp_sr_contractive [in cap_machine.logrel]
interp_cap_RWX_contractive [in cap_machine.logrel]
interp_cap_E_contractive [in cap_machine.logrel]
interp_cap_RX_contractive [in cap_machine.logrel]
interp_cap_RW_contractive [in cap_machine.logrel]
interp_cap_RO_contractive [in cap_machine.logrel]
interp_cap_O_contractive [in cap_machine.logrel]
interp1_contractive [in cap_machine.logrel_binary]
interp1_contractive [in cap_machine.logrel]
isInterval_persistent [in cap_machine.examples.interval_arch.interval_arch]
isInterval_timeless [in cap_machine.examples.interval_arch.interval_arch]
isInterval_persistent [in cap_machine.examples.interval.interval]
isInterval_timeless [in cap_machine.examples.interval.interval]
isList_timeless [in cap_machine.examples.keylist]
is_splittable_sep [in cap_machine.proofmode.NamedProp]
is_existential_exist [in cap_machine.proofmode.NamedProp]
is_atomic_correct [in cap_machine.cap_lang]

L

list_addr_semiset [in cap_machine.examples.counter_binary.counter_binary_adequacy]
LookupFramableMachineResource_later [in machine_utils.tactics]
LookupFramableMachineResource_sep_r [in machine_utils.tactics]
LookupFramableMachineResource_sep_l [in machine_utils.tactics]
LookupFramableMachineResource_framable [in machine_utils.tactics]
lowloc_persistent [in cap_machine.examples.ocpl_lowval_like]
lowval_persistent [in cap_machine.examples.ocpl_lowval_like]

M

memG_irisG [in cap_machine.rules.rules_base]
memspec_pointsto_timeless [in cap_machine.rules_binary.rules_binary_base]
monotone_empty [in cap_machine.monotone]
monotone_cmra_discrete [in cap_machine.monotone]
monotone_core_id [in cap_machine.monotone]
monotone_cmra_total [in cap_machine.monotone]
monotone_op_proper [in cap_machine.monotone]
monotone_op_ne [in cap_machine.monotone]
monotone_op_ne' [in cap_machine.monotone]
monotone_validN_proper [in cap_machine.monotone]
monotone_validN_ne [in cap_machine.monotone]
monotone_assoc [in cap_machine.monotone]
monotone_comm [in cap_machine.monotone]
monotone_pcore [in cap_machine.monotone]
monotone_op [in cap_machine.monotone]
monotone_valid [in cap_machine.monotone]
monotone_validN [in cap_machine.monotone]
monotone_equiv [in cap_machine.monotone]
monotone_dist [in cap_machine.monotone]

O

Op_RegName_eq [in cap_machine.addr_reg]
otype_inhabited [in cap_machine.machine_base]

P

perm_countable [in cap_machine.machine_base]
perm_eq_dec [in cap_machine.machine_base]
pos_word_Persistent [in cap_machine.examples.counter.counter]
pos_word_Timeless [in cap_machine.examples.counter.counter]
principal_inj [in cap_machine.monotone]
principal_injN [in cap_machine.monotone]
principal_inj_general' [in cap_machine.monotone]
principal_injN_general' [in cap_machine.monotone]
principal_discrete [in cap_machine.monotone]
principal_proper [in cap_machine.monotone]
principal_ne [in cap_machine.monotone]
pure_seq_done [in cap_machine.rules.rules_base]
pure_seq_halted [in cap_machine.rules.rules_base]
pure_seq_failed [in cap_machine.rules.rules_base]

R

read_cond_contractive [in cap_machine.logrel_binary]
read_cond_ne [in cap_machine.logrel_binary]
read_cond_contractive [in cap_machine.logrel]
read_cond_ne [in cap_machine.logrel]
Reflexive_ofe_equiv_Word [in cap_machine.cap_lang]
RegName_InjTyp [in cap_machine.addr_reg]
regspec_pointsto_timeless [in cap_machine.rules_binary.rules_binary_base]
reg_finite [in cap_machine.machine_base]
reg_countable [in cap_machine.addr_reg]
reg_eq_dec [in cap_machine.addr_reg]

S

sealable_countable [in cap_machine.machine_base]
sealb_eq_dec [in cap_machine.machine_base]
sealStoreG_preG [in cap_machine.seal_store]
seal_pred_persistent [in cap_machine.seal_store]
setunfold_all_regs [in cap_machine.addr_reg]
Singleton_list [in cap_machine.proofmode.disjoint_regions_tactics]
spec_ctx_persistent [in cap_machine.rules_binary.rules_binary_base]
SubBounds_lt_of_inner [in machine_utils.solve_pure]
SubBounds_le_b'_e [in machine_utils.solve_pure]
SubBounds_le_b_e [in machine_utils.solve_pure]
SubBounds_le_b_e' [in machine_utils.solve_pure]
SubBounds_le_e_e' [in machine_utils.solve_pure]
SubBounds_le_b'_e' [in machine_utils.solve_pure]
SubBounds_le_b_b' [in machine_utils.solve_pure]
subG_sealStorePreΣ [in cap_machine.seal_store]

U

Union_list [in cap_machine.proofmode.disjoint_regions_tactics]

V

valid_sealed_persistent [in cap_machine.examples.arch_sealing]

W

word_inhabited [in cap_machine.machine_base]
word_countable [in cap_machine.machine_base]
word_eq_dec [in cap_machine.machine_base]
writeAllowedWord_dec [in cap_machine.logrel]
writeAllowed_in_r_a_Persistent [in cap_machine.logrel_binary]
writeAllowed_in_r_a_Persistent [in cap_machine.logrel]
writeAllowed_in_r_a_Decidable [in cap_machine.logrel]
write_cond_ne [in cap_machine.logrel_binary]
write_cond_ne [in cap_machine.logrel]

Z

ZToFinZ_z_of [in machine_utils.class_instances]

---

Abbreviation Index

A

Addr [in cap_machine.addr_reg]
addr_incr_eq [in cap_machine.addr_reg]

C

cfgUR [in cap_machine.rules_binary.rules_binary_base]

D

D [in cap_machine.ftlr_binary.Seal_binary]
D [in cap_machine.ftlr_binary.Store_binary]
D [in cap_machine.ftlr.Load]
D [in cap_machine.ftlr.UnSeal]
D [in cap_machine.ftlr.Store]
D [in cap_machine.ftlr.Restrict]
D [in cap_machine.ftlr.Subseg]
D [in cap_machine.ftlr.interp_weakening]
D [in cap_machine.ftlr_binary.AddSubLt_binary]
D [in cap_machine.ftlr.Mov]
D [in cap_machine.ftlr_binary.interp_weakening]
D [in cap_machine.ftlr_binary.Restrict_binary]
D [in cap_machine.ftlr_binary.Jnz_binary]
D [in cap_machine.ftlr_binary.Subseg_binary]
D [in cap_machine.ftlr_binary.UnSeal_binary]
D [in cap_machine.logrel_binary]
D [in cap_machine.ftlr_binary.ftlr_base_binary]
D [in cap_machine.ftlr.Jnz]
D [in cap_machine.ftlr_binary.Jmp_binary]
D [in cap_machine.ftlr.Lea]
D [in cap_machine.ftlr_binary.Lea_binary]
D [in cap_machine.ftlr.AddSubLt]
D [in cap_machine.ftlr_binary.Get_binary]
D [in cap_machine.ftlr.ftlr_base]
D [in cap_machine.ftlr.Seal]
D [in cap_machine.fundamental]
D [in cap_machine.ftlr.Jmp]
D [in cap_machine.ftlr.Get]
D [in cap_machine.logrel]
D [in cap_machine.ftlr_binary.Mov_binary]
D [in cap_machine.fundamental_binary]
D [in cap_machine.fundamental_binary]
D [in cap_machine.ftlr_binary.Load_binary]

E

ectx [in cap_machine.cap_lang]
eqb_otype [in cap_machine.addr_reg]
eqb_addr [in cap_machine.addr_reg]
exprR [in cap_machine.rules_binary.rules_binary_base]

F

finz [in machine_utils.finz_base]

M

memreg_specUR [in cap_machine.rules_binary.rules_binary_base]
memspecUR [in cap_machine.rules_binary.rules_binary_base]

O

OType [in cap_machine.addr_reg]
otype_incr_eq [in cap_machine.addr_reg]

R

R [in cap_machine.ftlr_binary.Seal_binary]
R [in cap_machine.ftlr_binary.Store_binary]
R [in cap_machine.ftlr.Load]
R [in cap_machine.ftlr.UnSeal]
R [in cap_machine.ftlr.Store]
R [in cap_machine.ftlr.Restrict]
R [in cap_machine.ftlr.Subseg]
R [in cap_machine.ftlr.interp_weakening]
R [in cap_machine.ftlr_binary.AddSubLt_binary]
R [in cap_machine.ftlr.Mov]
R [in cap_machine.ftlr_binary.interp_weakening]
R [in cap_machine.ftlr_binary.Restrict_binary]
R [in cap_machine.ftlr_binary.Jnz_binary]
R [in cap_machine.ftlr_binary.Subseg_binary]
R [in cap_machine.ftlr_binary.UnSeal_binary]
R [in cap_machine.logrel_binary]
R [in cap_machine.ftlr_binary.ftlr_base_binary]
R [in cap_machine.ftlr.Jnz]
R [in cap_machine.ftlr_binary.Jmp_binary]
R [in cap_machine.ftlr.Lea]
R [in cap_machine.ftlr_binary.Lea_binary]
R [in cap_machine.ftlr.AddSubLt]
R [in cap_machine.ftlr_binary.Get_binary]
R [in cap_machine.ftlr.ftlr_base]
R [in cap_machine.ftlr.Seal]
R [in cap_machine.fundamental]
R [in cap_machine.ftlr.Jmp]
R [in cap_machine.ftlr.Get]
R [in cap_machine.logrel]
R [in cap_machine.ftlr_binary.Mov_binary]
R [in cap_machine.fundamental_binary]
R [in cap_machine.ftlr_binary.Load_binary]
regspecUR [in cap_machine.rules_binary.rules_binary_base]

T

top [in cap_machine.addr_reg]
top_ot [in cap_machine.addr_reg]

W

WCap [in cap_machine.machine_base]
WSealRange [in cap_machine.machine_base]

Z

za [in cap_machine.addr_reg]
za_ot [in cap_machine.addr_reg]
z_of_ot [in cap_machine.addr_reg]
z_to_otype [in cap_machine.addr_reg]
z_of [in cap_machine.addr_reg]
z_to_addr [in cap_machine.addr_reg]

---

Definition Index

A

activation_instrs [in cap_machine.examples.macros_new]
activation_code [in cap_machine.examples.macros_new]
activation_instrs [in cap_machine.examples.macros]
actN [in cap_machine.examples.interval.interval_client_closure]
actN [in cap_machine.examples.interval_arch.interval_client_closure_arch]
actN [in cap_machine.examples.adder]
adder_f [in cap_machine.examples.adder]
adder_g [in cap_machine.examples.adder]
adder_f_instrs_length [in cap_machine.examples.adder]
adder_f_instrs [in cap_machine.examples.adder]
adder_g_instrs_length [in cap_machine.examples.adder]
adder_g_instrs [in cap_machine.examples.adder]
AddrRegionRange [in cap_machine.proofmode.disjoint_regions_tactics]
AddrRegionsRange [in cap_machine.proofmode.disjoint_regions_tactics]
addrwordLO [in cap_machine.examples.keylist]
addr_of_argument [in cap_machine.cap_lang]
AddSubLt_spec_sind [in cap_machine.rules.rules_AddSubLt]
AddSubLt_spec_ind [in cap_machine.rules.rules_AddSubLt]
AddSubLt_failure_sind [in cap_machine.rules.rules_AddSubLt]
AddSubLt_failure_rec [in cap_machine.rules.rules_AddSubLt]
AddSubLt_failure_ind [in cap_machine.rules.rules_AddSubLt]
AddSubLt_failure_rect [in cap_machine.rules.rules_AddSubLt]
add_r_r [in cap_machine.examples.addr_reg_sample]
add_r_z [in cap_machine.examples.addr_reg_sample]
adv_table [in cap_machine.examples.lse_adequacy]
adv_prog [in cap_machine.examples.lse_adequacy]
adv_code [in cap_machine.exercises.subseg_buffer]
adv_table [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
adv_prog [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
adv_table [in cap_machine.exercises.subseg_buffer_call]
adv_prog [in cap_machine.exercises.subseg_buffer_call]
adv_table [in cap_machine.examples.interval.interval_client_adequacy]
adv_prog [in cap_machine.examples.interval.interval_client_adequacy]
adv_condition [in cap_machine.examples.template_adequacy]
allow_store_mem [in cap_machine.ftlr_binary.Store_binary]
allow_store_res [in cap_machine.ftlr_binary.Store_binary]
allow_load_mem [in cap_machine.ftlr.Load]
allow_load_res [in cap_machine.ftlr.Load]
allow_store_mem [in cap_machine.ftlr.Store]
allow_store_res [in cap_machine.ftlr.Store]
allow_store_map_or_true [in cap_machine.rules.rules_Store]
allow_load_mem [in cap_machine.ftlr_binary.Load_binary]
allow_load_res [in cap_machine.ftlr_binary.Load_binary]
allow_load_map_or_true [in cap_machine.rules.rules_Load]
all_registers_s [in cap_machine.addr_reg]
all_registers [in cap_machine.addr_reg]
App [in cap_machine.proofmode.proofmode]
appendb [in cap_machine.examples.keylist]
appendb_instr [in cap_machine.examples.keylist]
assert [in cap_machine.examples.macros]
assertN [in cap_machine.examples.counter.counter_adequacy]
assertN [in cap_machine.examples.interval.interval_client_closure]
assertN [in cap_machine.examples.interval_arch.interval_client_closure_arch]
assert_instrs [in cap_machine.examples.macros_new]
assert_inv [in cap_machine.examples.assert]
assert_subroutine_instrs [in cap_machine.examples.assert]
assert_library_content [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
assert_instrs [in cap_machine.examples.macros]
assert_call_inv [in cap_machine.exercises.subseg_buffer_call]
assert_library_content [in cap_machine.examples.interval.interval_client_adequacy]
as_weak_addr_incr [in cap_machine.proofmode.proofmode]

B

basic.invN [in cap_machine.examples.template_adequacy]
basic.is_initial_memory [in cap_machine.examples.template_adequacy]
basic.is_initial_registers [in cap_machine.examples.template_adequacy]
Below [in cap_machine.monotone]
bin_log_related [in cap_machine.fundamental_binary]
boxed [in cap_machine.proofmode.map_simpl]
buffer_inv [in cap_machine.examples.buffer]
buffer_data [in cap_machine.examples.buffer]
buffer_code [in cap_machine.examples.buffer]
ByReflexivity [in cap_machine.proofmode.disjoint_regions_tactics]

C

call [in cap_machine.examples.call]
call_table [in cap_machine.exercises.subseg_buffer_call]
call_prog [in cap_machine.exercises.subseg_buffer_call]
call_localsN [in cap_machine.exercises.subseg_buffer_call]
call_actN [in cap_machine.exercises.subseg_buffer_call]
call_codeN [in cap_machine.exercises.subseg_buffer_call]
call_versionN [in cap_machine.exercises.subseg_buffer_call]
call_instrs [in cap_machine.examples.call]
can_alloc_pred [in cap_machine.seal_store]
can_address_only [in cap_machine.examples.counter_binary.counter_binary_adequacy]
cap_mem_inv [in cap_machine.exercises.subseg_buffer_closure]
cap_memN [in cap_machine.exercises.subseg_buffer_closure]
cap_mem_inv [in cap_machine.exercises.restrict_buffer]
cap_memN [in cap_machine.exercises.restrict_buffer]
cap_lang [in cap_machine.cap_lang]
cap_ectx_lang [in cap_machine.cap_lang]
cap_ectxi_lang [in cap_machine.cap_lang]
cap_size [in cap_machine.machine_base]
checkiN [in cap_machine.examples.interval.interval_client_closure]
checkiN [in cap_machine.examples.interval_arch.interval_client_closure_arch]
check_interval [in cap_machine.examples.interval.interval_client]
check_interval [in cap_machine.examples.interval_arch.interval_client_arch]
check_addr_eq [in cap_machine.proofmode.proofmode]
clientN [in cap_machine.examples.interval.interval_client_closure]
clientN [in cap_machine.examples.interval_arch.interval_client_closure_arch]
closureN [in cap_machine.examples.adder]
closure_code [in cap_machine.exercises.subseg_buffer_closure]
closure_ro_code [in cap_machine.exercises.restrict_buffer]
closure_roN [in cap_machine.exercises.restrict_buffer]
cls_inv [in cap_machine.examples.counter_binary.counter_binary_preamble_def]
codefrag [in cap_machine.proofmode.region]
codeN [in cap_machine.exercises.subseg_buffer_closure]
codeN [in cap_machine.exercises.subseg_buffer]
codeN [in cap_machine.examples.counter_binary.counter_binary_adequacy]
code_closure_inv [in cap_machine.exercises.subseg_buffer_closure]
code_inv [in cap_machine.exercises.subseg_buffer]
code_closure_ro_inv [in cap_machine.exercises.restrict_buffer]
code_closure_roN [in cap_machine.exercises.restrict_buffer]
code_all_ints [in cap_machine.examples.counter_binary.counter_binary_adequacy]
code_off [in cap_machine.examples.minimal_counter]
component_sind [in cap_machine.linking]
component_rec [in cap_machine.linking]
component_ind [in cap_machine.linking]
component_rect [in cap_machine.linking]
compute_mask [in cap_machine.logrel]
comp1 [in cap_machine.examples.counter_binary.counter_binary_adequacy]
comp2 [in cap_machine.examples.counter_binary.counter_binary_adequacy]
Conf [in cap_machine.cap_lang]
ConfFlag_sind [in cap_machine.cap_lang]
ConfFlag_rec [in cap_machine.cap_lang]
ConfFlag_ind [in cap_machine.cap_lang]
ConfFlag_rect [in cap_machine.cap_lang]
ContiguousRegion [in machine_utils.finz_base]
contiguous_between_sind [in cap_machine.proofmode.contiguous]
contiguous_between_ind [in cap_machine.proofmode.contiguous]
counter [in cap_machine.examples.counter.counter_preamble]
counterN [in cap_machine.examples.minimal_counter]
counter_preamble_instrs_length [in cap_machine.examples.counter.counter_preamble]
counter_preamble_move_offset [in cap_machine.examples.counter.counter_preamble]
counter_preamble_move_offset_ [in cap_machine.examples.counter.counter_preamble]
counter_preamble [in cap_machine.examples.counter.counter_preamble]
counter_preamble_instrs [in cap_machine.examples.counter.counter_preamble]
counter_instrs_length [in cap_machine.examples.counter.counter_preamble]
counter_instrs [in cap_machine.examples.counter.counter_preamble]
counter_inv [in cap_machine.examples.counter.counter]
counter_preamble_instrs_length [in cap_machine.examples.counter_binary.counter_binary_preamble_def]
counter_preamble_move_offset [in cap_machine.examples.counter_binary.counter_binary_preamble_def]
counter_preamble_move_offset_ [in cap_machine.examples.counter_binary.counter_binary_preamble_def]
counter_right_preamble' [in cap_machine.examples.counter_binary.counter_binary_preamble_def]
counter_left_preamble' [in cap_machine.examples.counter_binary.counter_binary_preamble_def]
counter_right_preamble [in cap_machine.examples.counter_binary.counter_binary_preamble_def]
counter_left_preamble [in cap_machine.examples.counter_binary.counter_binary_preamble_def]
counter_right_preamble_instrs [in cap_machine.examples.counter_binary.counter_binary_preamble_def]
counter_left_preamble_instrs [in cap_machine.examples.counter_binary.counter_binary_preamble_def]
counter_right_instrs_length [in cap_machine.examples.counter_binary.counter_binary_preamble_def]
counter_left_instrs_length [in cap_machine.examples.counter_binary.counter_binary_preamble_def]
counter_right' [in cap_machine.examples.counter_binary.counter_binary_preamble_def]
counter_left' [in cap_machine.examples.counter_binary.counter_binary_preamble_def]
counter_right [in cap_machine.examples.counter_binary.counter_binary_preamble_def]
counter_left [in cap_machine.examples.counter_binary.counter_binary_preamble_def]
counter_right_instrs [in cap_machine.examples.counter_binary.counter_binary_preamble_def]
counter_left_instrs [in cap_machine.examples.counter_binary.counter_binary_preamble_def]
counter_inv [in cap_machine.examples.counter_binary.counter_binary]
counter_inv [in cap_machine.examples.minimal_counter]
counter_code [in cap_machine.examples.minimal_counter]
counter_init [in cap_machine.examples.minimal_counter]
counter_data [in cap_machine.examples.minimal_counter]
counter_code0 [in cap_machine.examples.minimal_counter]
counter_init0 [in cap_machine.examples.minimal_counter]
countN [in cap_machine.examples.counter.counter_preamble]
countN [in cap_machine.examples.counter_binary.counter_binary_preamble]
countN [in cap_machine.examples.counter_binary.counter_binary_preamble_left]
count_env [in cap_machine.examples.counter.counter_preamble]
count_clsN [in cap_machine.examples.counter.counter_preamble]
count_resetN [in cap_machine.examples.counter.counter_preamble]
count_readN [in cap_machine.examples.counter.counter_preamble]
count_incrN [in cap_machine.examples.counter.counter_preamble]
count_invN [in cap_machine.examples.counter.counter_preamble]
count_pre [in cap_machine.examples.counter_binary.counter_binary_preamble]
count_tbl [in cap_machine.examples.counter_binary.counter_binary_preamble]
count_env [in cap_machine.examples.counter_binary.counter_binary_preamble]
count_clsN [in cap_machine.examples.counter_binary.counter_binary_preamble]
count_readN [in cap_machine.examples.counter_binary.counter_binary_preamble]
count_incrN [in cap_machine.examples.counter_binary.counter_binary_preamble]
count_invN [in cap_machine.examples.counter_binary.counter_binary_preamble]
count_pre [in cap_machine.examples.counter_binary.counter_binary_preamble_left]
count_tbl [in cap_machine.examples.counter_binary.counter_binary_preamble_left]
count_env [in cap_machine.examples.counter_binary.counter_binary_preamble_left]
count_clsN [in cap_machine.examples.counter_binary.counter_binary_preamble_left]
count_readN [in cap_machine.examples.counter_binary.counter_binary_preamble_left]
count_incrN [in cap_machine.examples.counter_binary.counter_binary_preamble_left]
count_invN [in cap_machine.examples.counter_binary.counter_binary_preamble_left]
create_gmap_default [in cap_machine.stdpp_extra]
crtcls [in cap_machine.examples.macros]
crtcls_instrs [in cap_machine.examples.macros_new]
crtcls_s [in cap_machine.examples.macros_binary]
crtcls_instrs [in cap_machine.examples.macros]
cst [in cap_machine.machine_base]

D

data_off [in cap_machine.examples.minimal_counter]
decodeInstrW [in cap_machine.machine_parameters]
decr_instrs_length [in cap_machine.examples.counter_binary.counter_binary_preamble_def]
decr_left [in cap_machine.examples.counter_binary.counter_binary]
decr_right [in cap_machine.examples.counter_binary.counter_binary]
decr_instrs [in cap_machine.examples.counter_binary.counter_binary]
delete_list [in cap_machine.stdpp_extra]
denote [in cap_machine.proofmode.map_simpl]
denote [in cap_machine.rules.rules_AddSubLt]
denote [in cap_machine.rules.rules_Get]
denote_seal [in cap_machine.rules.rules_Get]
denote_cap [in cap_machine.rules.rules_Get]
denote_domain [in cap_machine.proofmode.register_tactics]
disjoint_list_default_sind [in cap_machine.proofmode.disjoint_regions_tactics]
disjoint_list_default_ind [in cap_machine.proofmode.disjoint_regions_tactics]

E

e [in cap_machine.examples.addr_reg_sample]
ectx_item_sind [in cap_machine.cap_lang]
ectx_item_rec [in cap_machine.cap_lang]
ectx_item_ind [in cap_machine.cap_lang]
ectx_item_rect [in cap_machine.cap_lang]
empty_prog [in cap_machine.examples.template_adequacy]
encodeInstrsW [in cap_machine.machine_parameters]
encodeInstrW [in cap_machine.machine_parameters]
end_mem_inv [in cap_machine.exercises.subseg_buffer_closure]
end_memN [in cap_machine.exercises.subseg_buffer_closure]
end_mem_inv [in cap_machine.exercises.subseg_buffer]
end_memN [in cap_machine.exercises.subseg_buffer]
end_off [in cap_machine.examples.minimal_counter]
enter_cond [in cap_machine.logrel_binary]
enter_cond [in cap_machine.logrel]
entry_points [in cap_machine.examples.template_adequacy]
envCN [in cap_machine.examples.interval.interval_client_closure]
envCN [in cap_machine.examples.interval_arch.interval_client_closure_arch]
envIN [in cap_machine.examples.interval.interval_client_closure]
envIN [in cap_machine.examples.interval_arch.interval_client_closure_arch]
env_to_named_prop [in cap_machine.proofmode.NamedProp]
env_to_named_prop_go [in cap_machine.proofmode.NamedProp]
Exact [in cap_machine.examples.keylist]
exec [in cap_machine.cap_lang]
ExecConf [in cap_machine.cap_lang]
ExecPCPerm [in cap_machine.machine_base]
executeAllowed [in cap_machine.machine_base]
exec_cond [in cap_machine.fundamental]
exec_opt [in cap_machine.cap_lang]
exec_cond_binary [in cap_machine.fundamental_binary]
exports [in cap_machine.linking]
exprspec_pointsto [in cap_machine.rules_binary.rules_binary_base]
expr_sind [in cap_machine.cap_lang]
expr_rec [in cap_machine.cap_lang]
expr_ind [in cap_machine.cap_lang]
expr_rect [in cap_machine.cap_lang]

F

fail_end [in cap_machine.examples.addr_reg_sample]
fetch [in cap_machine.examples.macros]
fetch_instrs [in cap_machine.examples.macros_new]
fetch_s [in cap_machine.examples.macros_binary]
fetch_instrs [in cap_machine.examples.macros]
fill_item [in cap_machine.cap_lang]
findb [in cap_machine.examples.keylist]
findb_loop [in cap_machine.examples.keylist]
findb_instr [in cap_machine.examples.keylist]
finz.dist [in machine_utils.finz_interval]
finz.eqb [in machine_utils.finz_base]
finz.finz_sind [in machine_utils.finz_base]
finz.finz_rec [in machine_utils.finz_base]
finz.finz_ind [in machine_utils.finz_base]
finz.finz_rect [in machine_utils.finz_base]
finz.incr [in machine_utils.finz_base]
finz.incr_default [in machine_utils.finz_base]
finz.largest [in machine_utils.finz_base]
finz.le [in machine_utils.finz_base]
finz.leb [in machine_utils.finz_base]
finz.le_lt [in machine_utils.finz_base]
finz.lt [in machine_utils.finz_base]
finz.ltb [in machine_utils.finz_base]
finz.max [in machine_utils.finz_base]
finz.min [in machine_utils.finz_base]
finz.mult [in machine_utils.finz_base]
finz.mult_default [in machine_utils.finz_base]
finz.of_z [in machine_utils.finz_base]
finz.seq [in machine_utils.finz_interval]
finz.seq_between [in machine_utils.finz_interval]
finz.to_z [in machine_utils.finz_base]
finz.zero [in machine_utils.finz_base]
flagN [in cap_machine.examples.counter.counter_adequacy]
flag_inv [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
flag_call_inv [in cap_machine.exercises.subseg_buffer_call]
flag_inv [in cap_machine.examples.interval.interval_client_adequacy]
framable_machine_hyp [in machine_utils.tactics]
fst_instrs [in cap_machine.examples.interval_arch.interval_arch]
fst_instrs [in cap_machine.examples.interval.interval]
ftlr_instr [in cap_machine.ftlr_binary.ftlr_base_binary]
ftlr_instr [in cap_machine.ftlr.ftlr_base]
full_map [in cap_machine.logrel_binary]
full_map [in cap_machine.logrel]

G

geta [in cap_machine.examples.addr_reg_sample]
getb [in cap_machine.examples.addr_reg_sample]
gete [in cap_machine.examples.addr_reg_sample]
getp [in cap_machine.examples.addr_reg_sample]
get_wtype [in cap_machine.examples.addr_reg_sample]
get_otype [in cap_machine.examples.addr_reg_sample]
Get_spec_sind [in cap_machine.rules.rules_Get]
Get_spec_ind [in cap_machine.rules.rules_Get]
Get_failure_sind [in cap_machine.rules.rules_Get]
Get_failure_rec [in cap_machine.rules.rules_Get]
Get_failure_ind [in cap_machine.rules.rules_Get]
Get_failure_rect [in cap_machine.rules.rules_Get]

H

halt [in cap_machine.examples.addr_reg_sample]
hasValidAddress [in cap_machine.logrel]
highloc [in cap_machine.examples.ocpl_lowval_like]
hw_5 [in cap_machine.examples.call]
hw_4 [in cap_machine.examples.call]
hw_3 [in cap_machine.examples.call]
hw_2 [in cap_machine.examples.call]
hw_1 [in cap_machine.examples.call]

I

IH [in cap_machine.ftlr.interp_weakening]
IH [in cap_machine.ftlr_binary.interp_weakening]
imax [in cap_machine.examples.interval_arch.interval_arch]
imax [in cap_machine.examples.interval.interval]
imaxN [in cap_machine.examples.interval.interval_client_closure]
imaxN [in cap_machine.examples.interval_arch.interval_client_closure_arch]
imin [in cap_machine.examples.interval_arch.interval_arch]
imin [in cap_machine.examples.interval.interval]
iminN [in cap_machine.examples.interval.interval_client_closure]
iminN [in cap_machine.examples.interval_arch.interval_client_closure_arch]
imports [in cap_machine.linking]
InBounds [in machine_utils.finz_base]
included [in cap_machine.proofmode.region]
incr [in cap_machine.examples.counter.counter]
incrementPC [in cap_machine.rules.rules_base]
incr_instrs_length [in cap_machine.examples.counter.counter_preamble]
incr_instrs [in cap_machine.examples.counter.counter]
incr_instrs_length [in cap_machine.examples.counter_binary.counter_binary_preamble_def]
incr_right [in cap_machine.examples.counter_binary.counter_binary]
incr_left [in cap_machine.examples.counter_binary.counter_binary]
incr_instrs [in cap_machine.examples.counter_binary.counter_binary]
incr_instrs [in cap_machine.exercises.cerise_modularity]
incr_instrs [in cap_machine.exercises.cerise_modularity_solutions]
initial_state_stk [in cap_machine.examples.counter_binary.counter_binary_adequacy]
initial_state [in cap_machine.examples.counter_binary.counter_binary_adequacy]
instr_sind [in cap_machine.machine_base]
instr_rec [in cap_machine.machine_base]
instr_ind [in cap_machine.machine_base]
instr_rect [in cap_machine.machine_base]
interp [in cap_machine.logrel_binary]
interp [in cap_machine.logrel]
interp_registers [in cap_machine.logrel_binary]
interp_expression [in cap_machine.logrel_binary]
interp_cap_RWX [in cap_machine.logrel_binary]
interp_cap_E [in cap_machine.logrel_binary]
interp_cap_RX [in cap_machine.logrel_binary]
interp_cap_RW [in cap_machine.logrel_binary]
interp_cap_RO [in cap_machine.logrel_binary]
interp_cap_O [in cap_machine.logrel_binary]
interp_z [in cap_machine.logrel_binary]
interp_ref_inv [in cap_machine.logrel_binary]
interp_expr [in cap_machine.logrel_binary]
interp_conf [in cap_machine.logrel_binary]
interp_reg [in cap_machine.logrel_binary]
interp_registers [in cap_machine.logrel]
interp_expression [in cap_machine.logrel]
interp_sb [in cap_machine.logrel]
interp_sr [in cap_machine.logrel]
interp_cap_RWX [in cap_machine.logrel]
interp_cap_E [in cap_machine.logrel]
interp_cap_RX [in cap_machine.logrel]
interp_cap_RW [in cap_machine.logrel]
interp_cap_RO [in cap_machine.logrel]
interp_cap_O [in cap_machine.logrel]
interp_z [in cap_machine.logrel]
interp_ref_inv [in cap_machine.logrel]
interp_expr [in cap_machine.logrel]
interp_conf [in cap_machine.logrel]
interp_reg [in cap_machine.logrel]
interp1 [in cap_machine.logrel_binary]
interp1 [in cap_machine.logrel]
interval [in cap_machine.examples.interval_arch.interval_closure_arch]
interval [in cap_machine.examples.interval.interval_closure]
interval_closure_instrs_length [in cap_machine.examples.interval_arch.interval_closure_arch]
interval_closure_move_offset [in cap_machine.examples.interval_arch.interval_closure_arch]
interval_closure_move_offset_ [in cap_machine.examples.interval_arch.interval_closure_arch]
interval_closure [in cap_machine.examples.interval_arch.interval_closure_arch]
interval_client_table [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
interval_library_content [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
interval_client_closure_instrs_length [in cap_machine.examples.interval.interval_client_closure]
interval_client_closure_move_offset [in cap_machine.examples.interval.interval_client_closure]
interval_client_closure_move_offset_ [in cap_machine.examples.interval.interval_client_closure]
interval_client_closure [in cap_machine.examples.interval.interval_client_closure]
interval_env [in cap_machine.examples.interval.interval_client]
interval_closure_instrs_length [in cap_machine.examples.interval.interval_closure]
interval_closure_move_offset [in cap_machine.examples.interval.interval_closure]
interval_closure_move_offset_ [in cap_machine.examples.interval.interval_closure]
interval_closure [in cap_machine.examples.interval.interval_closure]
interval_env [in cap_machine.examples.interval_arch.interval_client_arch]
interval_client_closure_instrs_length [in cap_machine.examples.interval_arch.interval_client_closure_arch]
interval_client_closure_move_offset [in cap_machine.examples.interval_arch.interval_client_closure_arch]
interval_client_closure_move_offset_ [in cap_machine.examples.interval_arch.interval_client_closure_arch]
interval_client_closure [in cap_machine.examples.interval_arch.interval_client_closure_arch]
interval_client_table [in cap_machine.examples.interval.interval_client_adequacy]
interval_library_content [in cap_machine.examples.interval.interval_client_adequacy]
intN [in cap_machine.examples.interval_arch.interval_closure_arch]
intN [in cap_machine.examples.interval.interval_closure]
int_client_prog [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
int_offsets [in cap_machine.examples.interval.interval_client_closure]
int_table [in cap_machine.examples.interval.interval_client_closure]
int_bounds [in cap_machine.examples.interval.interval_client_closure]
int_offsets [in cap_machine.examples.interval_arch.interval_client_closure_arch]
int_table [in cap_machine.examples.interval_arch.interval_client_closure_arch]
int_bounds [in cap_machine.examples.interval_arch.interval_client_closure_arch]
int_client_prog [in cap_machine.examples.interval.interval_client_adequacy]
invN [in cap_machine.examples.adder_adequacy]
inv_buffer_ne [in cap_machine.exercises.restrict_buffer]
inv_secret_ne [in cap_machine.exercises.restrict_buffer]
inv_buffer [in cap_machine.exercises.restrict_buffer]
inv_secret [in cap_machine.exercises.restrict_buffer]
in_range [in cap_machine.proofmode.region]
in_region_list [in cap_machine.logrel]
in_region [in cap_machine.logrel]
isCorrectPCb [in cap_machine.machine_base]
isCorrectPC_range [in cap_machine.proofmode.tactics_helpers]
isCorrectPC_sind [in cap_machine.machine_base]
isCorrectPC_ind [in cap_machine.machine_base]
isCorrectPC_range [in cap_machine.proofmode.contiguous]
isInterval [in cap_machine.examples.interval_arch.interval_arch]
isInterval [in cap_machine.examples.interval.interval]
isInterval_int [in cap_machine.examples.interval_arch.interval_arch]
isInterval_int [in cap_machine.examples.interval.interval]
isList [in cap_machine.examples.keylist]
isPerm [in cap_machine.machine_base]
isPermWord [in cap_machine.machine_base]
isWithin [in cap_machine.machine_base]
isWithinCap [in cap_machine.machine_base]
is_initial_registers [in cap_machine.examples.adder_adequacy]
is_initial_memory [in cap_machine.examples.adder_adequacy]
is_initial_registers [in cap_machine.examples.counter.counter_adequacy]
is_initial_memory [in cap_machine.examples.counter.counter_adequacy]
is_initial_configuration_right [in cap_machine.examples.counter_binary.counter_binary_adequacy_theorem]
is_initial_configuration_left [in cap_machine.examples.counter_binary.counter_binary_adequacy_theorem]
is_machine_context [in cap_machine.examples.counter_binary.counter_binary_adequacy]
is_machine_program [in cap_machine.examples.counter_binary.counter_binary_adequacy]
is_initial_context [in cap_machine.examples.counter_binary.counter_binary_adequacy]
is_atomic [in cap_machine.cap_lang]
is_context_sind [in cap_machine.linking]
is_context_rec [in cap_machine.linking]
is_context_ind [in cap_machine.linking]
is_context_rect [in cap_machine.linking]
is_program_sind [in cap_machine.linking]
is_program_ind [in cap_machine.linking]
is_AddSubLt [in cap_machine.rules.rules_AddSubLt]
is_mutable_range [in cap_machine.machine_base]
is_sealed_with_o [in cap_machine.machine_base]
is_sealed [in cap_machine.machine_base]
is_sealr [in cap_machine.machine_base]
is_cap [in cap_machine.machine_base]
is_sealb [in cap_machine.machine_base]
is_z [in cap_machine.machine_base]
is_Get [in cap_machine.rules.rules_Get]
iterate_to_last [in cap_machine.examples.keylist]
iterate_to_last_instr [in cap_machine.examples.keylist]

J

jmp [in cap_machine.examples.addr_reg_sample]
jnz [in cap_machine.examples.addr_reg_sample]
Jnz_spec_sind [in cap_machine.rules.rules_Jnz]
Jnz_spec_ind [in cap_machine.rules.rules_Jnz]

L

layout [in cap_machine.examples.lse_adequacy]
layout [in cap_machine.exercises.subseg_buffer_call]
lea_r [in cap_machine.examples.addr_reg_sample]
lea_z [in cap_machine.examples.addr_reg_sample]
Lea_spec_sind [in cap_machine.rules.rules_Lea]
Lea_spec_ind [in cap_machine.rules.rules_Lea]
Lea_failure_sind [in cap_machine.rules.rules_Lea]
Lea_failure_rec [in cap_machine.rules.rules_Lea]
Lea_failure_ind [in cap_machine.rules.rules_Lea]
Lea_failure_rect [in cap_machine.rules.rules_Lea]
library [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
library [in cap_machine.examples.interval.interval_client_adequacy]
lib_entry_interval [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
lib_entry_fail [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
lib_entry_salloc [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
lib_entry_malloc [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
lib_entry_interval [in cap_machine.examples.interval.interval_client_adequacy]
lib_entry_fail [in cap_machine.examples.interval.interval_client_adequacy]
lib_entry_malloc [in cap_machine.examples.interval.interval_client_adequacy]
lib_region [in cap_machine.examples.template_adequacy]
link_table_inv [in cap_machine.exercises.subseg_buffer_malloc]
link_tableN [in cap_machine.exercises.subseg_buffer_malloc]
link_sind [in cap_machine.linking]
link_ind [in cap_machine.linking]
link_pre_comp_sind [in cap_machine.linking]
link_pre_comp_ind [in cap_machine.linking]
load_code [in cap_machine.exercises.subseg_buffer_closure]
load_r [in cap_machine.examples.addr_reg_sample]
load_code [in cap_machine.exercises.restrict_buffer]
Load_spec_sind [in cap_machine.rules.rules_Load]
Load_spec_ind [in cap_machine.rules.rules_Load]
Load_failure_sind [in cap_machine.rules.rules_Load]
Load_failure_rec [in cap_machine.rules.rules_Load]
Load_failure_ind [in cap_machine.rules.rules_Load]
Load_failure_rect [in cap_machine.rules.rules_Load]
logN [in cap_machine.logrel_binary]
logN [in cap_machine.logrel]
lowloc [in cap_machine.examples.ocpl_lowval_like]
lowval [in cap_machine.examples.ocpl_lowval_like]
lt_r_z [in cap_machine.examples.addr_reg_sample]
lt_z_r [in cap_machine.examples.addr_reg_sample]
lt_r_r [in cap_machine.examples.addr_reg_sample]

M

machine_run [in cap_machine.machine_run]
machine_component [in cap_machine.examples.counter_binary.counter_binary_adequacy]
main_of [in cap_machine.examples.counter_binary.counter_binary_adequacy]
makeint [in cap_machine.examples.interval_arch.interval_arch]
makeint [in cap_machine.examples.interval.interval]
make_seal_preamble [in cap_machine.examples.dynamic_sealing]
make_seal_preamble_instrs [in cap_machine.examples.dynamic_sealing]
make_seal_preamble [in cap_machine.examples.arch_sealing]
make_seal_preamble_instrs [in cap_machine.examples.arch_sealing]
malloc [in cap_machine.examples.macros]
mallocN [in cap_machine.examples.counter.counter_adequacy]
mallocN [in cap_machine.examples.interval.interval_client_closure]
mallocN [in cap_machine.exercises.subseg_buffer_malloc]
mallocN [in cap_machine.examples.counter_binary.counter_binary_preamble]
mallocN [in cap_machine.examples.interval_arch.interval_client_closure_arch]
mallocN [in cap_machine.examples.counter_binary.counter_binary_preamble_left]
malloc_instrs [in cap_machine.examples.macros_new]
malloc_inv_binary [in cap_machine.examples.malloc_binary]
malloc_library_content [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
malloc_s [in cap_machine.examples.macros_binary]
malloc_inv [in cap_machine.examples.malloc]
malloc_subroutine_instrs [in cap_machine.examples.malloc]
malloc_subroutine_instrs_length [in cap_machine.examples.malloc]
malloc_subroutine_instrs' [in cap_machine.examples.malloc]
malloc_nainv [in cap_machine.exercises.subseg_buffer_malloc]
malloc_codeN [in cap_machine.exercises.subseg_buffer_malloc]
malloc_versionN [in cap_machine.exercises.subseg_buffer_malloc]
malloc_instrs [in cap_machine.examples.macros]
malloc_call_inv [in cap_machine.exercises.subseg_buffer_call]
malloc_library_content [in cap_machine.examples.interval.interval_client_adequacy]
map_difference_het [in cap_machine.stdpp_extra]
mbkregion [in cap_machine.proofmode.mkregion_helpers]
mclear [in cap_machine.examples.macros]
mclear_instrs [in cap_machine.examples.macros]
mclear_off_iter [in cap_machine.examples.macros]
mclear_off_end [in cap_machine.examples.macros]
mem [in cap_machine.cap_lang]
Mem [in cap_machine.machine_base]
MemNum [in cap_machine.addr_reg]
memspec_pointsto [in cap_machine.rules_binary.rules_binary_base]
minv_sep [in cap_machine.examples.template_adequacy]
mkintN [in cap_machine.examples.interval.interval_client_closure]
mkintN [in cap_machine.examples.interval_arch.interval_client_closure_arch]
mkregion [in cap_machine.proofmode.mkregion_helpers]
mk_initial_memory [in cap_machine.examples.adder_adequacy]
mk_initial_memory [in cap_machine.examples.counter.counter_adequacy]
mk_initial_memory_right [in cap_machine.examples.counter_binary.counter_binary_adequacy]
mk_initial_memory_left [in cap_machine.examples.counter_binary.counter_binary_adequacy]
monotone [in cap_machine.monotone]
monotoneC [in cap_machine.monotone]
monotoneR [in cap_machine.monotone]
monotoneUR [in cap_machine.monotone]
monotone_cmra_mixin [in cap_machine.monotone]
monotone_ofe_mixin [in cap_machine.monotone]
move_r [in cap_machine.examples.addr_reg_sample]
move_z [in cap_machine.examples.addr_reg_sample]
Mov_spec_sind [in cap_machine.rules.rules_Mov]
Mov_spec_ind [in cap_machine.rules.rules_Mov]
ms_of [in cap_machine.examples.counter_binary.counter_binary_adequacy]

N

N [in cap_machine.exercises.subseg_buffer]
N [in cap_machine.examples.minimal_counter]
named [in cap_machine.proofmode.NamedProp]
Nclosure [in cap_machine.exercises.subseg_buffer_closure]
nonZero [in cap_machine.machine_base]
NthSubBlock [in cap_machine.proofmode.proofmode]
n_to_regname [in cap_machine.addr_reg]

O

OCPLLibrary [in cap_machine.examples.lse_adequacy]
OCPLLibrary [in cap_machine.exercises.subseg_buffer_call]
ocpl.assertInv [in cap_machine.examples.template_adequacy_ocpl]
ocpl.assertN [in cap_machine.examples.template_adequacy_ocpl]
ocpl.assert_library_content [in cap_machine.examples.template_adequacy_ocpl]
ocpl.flag_inv [in cap_machine.examples.template_adequacy_ocpl]
ocpl.library [in cap_machine.examples.template_adequacy_ocpl]
ocpl.lib_entry_assert [in cap_machine.examples.template_adequacy_ocpl]
ocpl.lib_entry_malloc [in cap_machine.examples.template_adequacy_ocpl]
ocpl.mallocInv [in cap_machine.examples.template_adequacy_ocpl]
ocpl.mallocN [in cap_machine.examples.template_adequacy_ocpl]
ocpl.malloc_library_content [in cap_machine.examples.template_adequacy_ocpl]
ocpl.OK_dom_correct [in cap_machine.examples.template_adequacy_ocpl]
ocpl.OK_dom [in cap_machine.examples.template_adequacy_ocpl]
ocpl.OK_invariant [in cap_machine.examples.template_adequacy_ocpl]
offset_to_interval [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
offset_to_checki [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
offset_to_awkward [in cap_machine.examples.counter.counter_adequacy]
offset_to_awkward [in cap_machine.examples.counter_binary.counter_binary_adequacy]
offset_to_cont_call [in cap_machine.examples.call]
offset_to_interval [in cap_machine.examples.interval.interval_client_adequacy]
offset_to_checki [in cap_machine.examples.interval.interval_client_adequacy]
offset_to_f [in cap_machine.examples.adder]
of_val [in cap_machine.cap_lang]
OK_dom_correct [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
OK_dom [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
OK_invariant [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
OK_dom_correct [in cap_machine.examples.interval.interval_client_adequacy]
OK_dom [in cap_machine.examples.interval.interval_client_adequacy]
OK_invariant [in cap_machine.examples.interval.interval_client_adequacy]
ONum [in cap_machine.addr_reg]
otype_of_argument [in cap_machine.cap_lang]

P

PermFlows [in cap_machine.machine_base]
PermFlowsTo [in cap_machine.machine_base]
PermFlowsToCap [in cap_machine.machine_base]
permit_unseal [in cap_machine.machine_base]
permit_seal [in cap_machine.machine_base]
Perm_sind [in cap_machine.machine_base]
Perm_rec [in cap_machine.machine_base]
Perm_ind [in cap_machine.machine_base]
Perm_rect [in cap_machine.machine_base]
pos_word [in cap_machine.examples.counter.counter]
prefLL [in cap_machine.examples.keylist]
prefR [in cap_machine.examples.keylist]
pre_component [in cap_machine.linking]
prim_step_sind [in cap_machine.cap_lang]
prim_step_ind [in cap_machine.cap_lang]
principal [in cap_machine.monotone]
prod_merge [in cap_machine.stdpp_extra]
prod_op [in cap_machine.stdpp_extra]
prog_code [in cap_machine.exercises.subseg_buffer]
prog_base_instrs [in cap_machine.exercises.subseg_buffer]
prog_instrs [in cap_machine.exercises.cerise_modularity]
prog_instrs [in cap_machine.exercises.cerise_tutorial]
prog_ro_inv [in cap_machine.exercises.restrict_buffer]
prog_roN [in cap_machine.exercises.restrict_buffer]
prog_ro_code [in cap_machine.exercises.restrict_buffer]
prog_malloc_inv [in cap_machine.exercises.subseg_buffer_malloc]
prog_malloc_code [in cap_machine.exercises.subseg_buffer_malloc]
prog_malloc_instrs [in cap_machine.exercises.subseg_buffer_malloc]
prog_instrs [in cap_machine.exercises.cerise_tutorial_solutions]
prog_call_inv [in cap_machine.exercises.subseg_buffer_call]
prog_call_code [in cap_machine.exercises.subseg_buffer_call]
prog_call_instrs [in cap_machine.exercises.subseg_buffer_call]
prog_secret_instrs [in cap_machine.exercises.subseg_buffer_call]
prog_instrs [in cap_machine.exercises.cerise_modularity_solutions]
prog_tbl_data_region [in cap_machine.examples.template_adequacy]
prog_tbl_region [in cap_machine.examples.template_adequacy]
prog_lower_bound_region [in cap_machine.examples.template_adequacy]
prog_region [in cap_machine.examples.template_adequacy]

R

rclear [in cap_machine.examples.macros]
rclear_instrs [in cap_machine.examples.macros_new]
rclear_s [in cap_machine.examples.macros_binary]
rclear_instrs [in cap_machine.examples.macros]
read [in cap_machine.examples.counter.counter]
readAllowed [in cap_machine.machine_base]
read_instrs_length [in cap_machine.examples.counter.counter_preamble]
read_instrs [in cap_machine.examples.counter.counter]
read_neg_instrs_length [in cap_machine.examples.counter_binary.counter_binary_preamble_def]
read_instrs_length [in cap_machine.examples.counter_binary.counter_binary_preamble_def]
read_neg_left [in cap_machine.examples.counter_binary.counter_binary]
read_neg_right [in cap_machine.examples.counter_binary.counter_binary]
read_neg_instrs [in cap_machine.examples.counter_binary.counter_binary]
read_right [in cap_machine.examples.counter_binary.counter_binary]
read_left [in cap_machine.examples.counter_binary.counter_binary]
read_instrs [in cap_machine.examples.counter_binary.counter_binary]
read_cond [in cap_machine.logrel_binary]
read_cond [in cap_machine.logrel]
read_reg_inr [in cap_machine.rules.rules_base]
reg [in cap_machine.cap_lang]
Reg [in cap_machine.machine_base]
region_open_resources [in cap_machine.ftlr_binary.Store_binary]
region_open_resources [in cap_machine.ftlr.Load]
region_addrs_zeroes [in cap_machine.examples.addr_reg_sample]
region_open_resources [in cap_machine.ftlr.Store]
region_pointsto_spec [in cap_machine.proofmode.region]
region_pointsto [in cap_machine.proofmode.region]
region_open_resources [in cap_machine.ftlr_binary.Load_binary]
registers_pointsto [in cap_machine.logrel]
regn [in cap_machine.machine_base]
RegName_sind [in cap_machine.addr_reg]
RegName_rec [in cap_machine.addr_reg]
RegName_ind [in cap_machine.addr_reg]
RegName_rect [in cap_machine.addr_reg]
RegNum [in cap_machine.addr_reg]
regspec_pointsto [in cap_machine.rules_binary.rules_binary_base]
regs_of [in cap_machine.rules.rules_base]
regs_of_argument [in cap_machine.rules.rules_base]
reg_allows_store [in cap_machine.rules.rules_Store]
reg_allows_load [in cap_machine.rules.rules_Load]
remove_key [in cap_machine.proofmode.map_simpl]
reqperm [in cap_machine.examples.macros]
reqperm_instrs [in cap_machine.examples.macros_new]
reqperm_instrs [in cap_machine.examples.macros]
reqsize [in cap_machine.examples.macros]
reqsize_exact_instrs [in cap_machine.examples.macros_new]
reqsize_instrs [in cap_machine.examples.macros]
reset [in cap_machine.examples.counter.counter]
reset_instrs_length [in cap_machine.examples.counter.counter_preamble]
reset_instrs [in cap_machine.examples.counter.counter]
resolve_imports [in cap_machine.linking]
restore_locals [in cap_machine.examples.callback]
restore_locals_instrs [in cap_machine.examples.callback]
restrict_z [in cap_machine.examples.addr_reg_sample]
restrict_r [in cap_machine.examples.addr_reg_sample]
Restrict_spec_sind [in cap_machine.rules.rules_Restrict]
Restrict_spec_ind [in cap_machine.rules.rules_Restrict]
Restrict_failure_sind [in cap_machine.rules.rules_Restrict]
Restrict_failure_rec [in cap_machine.rules.rules_Restrict]
Restrict_failure_ind [in cap_machine.rules.rules_Restrict]
Restrict_failure_rect [in cap_machine.rules.rules_Restrict]
rgmap_sind [in cap_machine.proofmode.map_simpl]
rgmap_rec [in cap_machine.proofmode.map_simpl]
rgmap_ind [in cap_machine.proofmode.map_simpl]
rgmap_rect [in cap_machine.proofmode.map_simpl]
rlength [in cap_machine.proofmode.map_simpl]
rmapfinal [in cap_machine.examples.interval_arch.interval_closure_arch]
rmapfinal [in cap_machine.examples.interval.interval_closure]
ro [in cap_machine.examples.lse]
roe [in cap_machine.examples.lse]
roeN [in cap_machine.examples.lse]
roeN_prog [in cap_machine.examples.lse]
roeN_b [in cap_machine.examples.lse]
roeN_locals [in cap_machine.examples.lse]
roeN_act [in cap_machine.examples.lse]
roeN_link [in cap_machine.examples.lse]
roe_table [in cap_machine.examples.lse_adequacy]
roe_prog [in cap_machine.examples.lse_adequacy]
roe_inv [in cap_machine.examples.lse]
roe_instrs [in cap_machine.examples.lse]
roN [in cap_machine.exercises.restrict_buffer]
r_env [in cap_machine.examples.addr_reg_sample]
r_stk [in cap_machine.examples.addr_reg_sample]
r_temp6 [in cap_machine.examples.interval_arch.interval_closure_arch]
r_temp4 [in cap_machine.examples.interval_arch.interval_closure_arch]
r_temp3 [in cap_machine.examples.interval_arch.interval_closure_arch]
r_temp2 [in cap_machine.examples.interval_arch.interval_closure_arch]
r_temp1 [in cap_machine.examples.interval_arch.interval_closure_arch]
r_ret [in cap_machine.examples.counter.counter]
r_ret [in cap_machine.examples.counter_binary.counter_binary]
r_adv [in cap_machine.examples.lse]
r_temp8 [in cap_machine.examples.interval.interval_client_closure]
r_temp7 [in cap_machine.examples.interval.interval_client_closure]
r_temp6 [in cap_machine.examples.interval.interval_closure]
r_temp4 [in cap_machine.examples.interval.interval_closure]
r_temp3 [in cap_machine.examples.interval.interval_closure]
r_temp2 [in cap_machine.examples.interval.interval_closure]
r_temp1 [in cap_machine.examples.interval.interval_closure]
r_temp8 [in cap_machine.examples.interval_arch.interval_client_closure_arch]
r_temp7 [in cap_machine.examples.interval_arch.interval_client_closure_arch]
r_t31 [in cap_machine.addr_reg]
r_t30 [in cap_machine.addr_reg]
r_t29 [in cap_machine.addr_reg]
r_t28 [in cap_machine.addr_reg]
r_t27 [in cap_machine.addr_reg]
r_t26 [in cap_machine.addr_reg]
r_t25 [in cap_machine.addr_reg]
r_t24 [in cap_machine.addr_reg]
r_t23 [in cap_machine.addr_reg]
r_t22 [in cap_machine.addr_reg]
r_t21 [in cap_machine.addr_reg]
r_t20 [in cap_machine.addr_reg]
r_t19 [in cap_machine.addr_reg]
r_t18 [in cap_machine.addr_reg]
r_t17 [in cap_machine.addr_reg]
r_t16 [in cap_machine.addr_reg]
r_t15 [in cap_machine.addr_reg]
r_t14 [in cap_machine.addr_reg]
r_t13 [in cap_machine.addr_reg]
r_t12 [in cap_machine.addr_reg]
r_t11 [in cap_machine.addr_reg]
r_t10 [in cap_machine.addr_reg]
r_t9 [in cap_machine.addr_reg]
r_t8 [in cap_machine.addr_reg]
r_t7 [in cap_machine.addr_reg]
r_t6 [in cap_machine.addr_reg]
r_t5 [in cap_machine.addr_reg]
r_t4 [in cap_machine.addr_reg]
r_t3 [in cap_machine.addr_reg]
r_t2 [in cap_machine.addr_reg]
r_t1 [in cap_machine.addr_reg]
r_t0 [in cap_machine.addr_reg]

S

safe_to_unseal [in cap_machine.logrel]
safe_to_seal [in cap_machine.logrel]
sallocN [in cap_machine.examples.interval_arch.interval_client_closure_arch]
salloc_instrs [in cap_machine.examples.macros_new]
salloc_library_content [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
salloc_inv [in cap_machine.examples.salloc]
salloc_subroutine_instrs [in cap_machine.examples.salloc]
salloc_subroutine_instrs_length [in cap_machine.examples.salloc]
salloc_subroutine_instrs' [in cap_machine.examples.salloc]
scrtcls [in cap_machine.examples.macros]
scrtcls_instrs [in cap_machine.examples.macros_new]
scrtcls_s [in cap_machine.examples.macros_binary]
scrtcls_instrs [in cap_machine.examples.macros]
Sealable_sind [in cap_machine.machine_base]
Sealable_rec [in cap_machine.machine_base]
Sealable_ind [in cap_machine.machine_base]
Sealable_rect [in cap_machine.machine_base]
sealLL [in cap_machine.examples.keylist]
sealLLN [in cap_machine.examples.interval_arch.interval_closure_arch]
sealLLN [in cap_machine.examples.interval.interval_closure]
sealN [in cap_machine.examples.interval_arch.interval_closure_arch]
sealN [in cap_machine.examples.interval.interval_closure]
SealPermFlowsTo [in cap_machine.machine_base]
SealPerms [in cap_machine.machine_base]
sealStorePreΣ [in cap_machine.seal_store]
seal_instrs_length [in cap_machine.examples.dynamic_sealing]
seal_instrs [in cap_machine.examples.dynamic_sealing]
seal_env [in cap_machine.examples.interval_arch.interval_arch]
seal_library_content [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
seal_pred [in cap_machine.seal_store]
Seal_spec_sind [in cap_machine.rules.rules_Seal]
Seal_spec_ind [in cap_machine.rules.rules_Seal]
Seal_failure_sind [in cap_machine.rules.rules_Seal]
Seal_failure_ind [in cap_machine.rules.rules_Seal]
seal_env [in cap_machine.examples.interval.interval]
seal_library_content [in cap_machine.examples.interval.interval_client_adequacy]
seal_instrs_length [in cap_machine.examples.arch_sealing]
seal_instrs [in cap_machine.examples.arch_sealing]
seal_state [in cap_machine.examples.arch_sealing]
secretN [in cap_machine.exercises.subseg_buffer_closure]
secretN [in cap_machine.exercises.subseg_buffer]
secret_inv [in cap_machine.exercises.subseg_buffer_closure]
secret_inv [in cap_machine.exercises.subseg_buffer]
secret_add_instrs [in cap_machine.exercises.cerise_modularity]
secret_add_instrs [in cap_machine.exercises.cerise_modularity_solutions]
segment [in cap_machine.linking]
simpl_rmap [in cap_machine.proofmode.map_simpl]
snd_instrs [in cap_machine.examples.interval_arch.interval_arch]
snd_instrs [in cap_machine.examples.interval.interval]
soundness_binaryΣ [in cap_machine.examples.counter_binary.counter_binary_adequacy_theorem]
specN [in cap_machine.rules_binary.rules_binary_base]
spec_ctx [in cap_machine.rules_binary.rules_binary_base]
spec_inv [in cap_machine.rules_binary.rules_binary_base]
spec_res [in cap_machine.rules_binary.rules_binary_base]
spec_registers_pointsto [in cap_machine.logrel_binary]
start_mem_inv [in cap_machine.exercises.subseg_buffer_closure]
start_memN [in cap_machine.exercises.subseg_buffer_closure]
start_mem_inv [in cap_machine.exercises.subseg_buffer]
start_memN [in cap_machine.exercises.subseg_buffer]
state [in cap_machine.cap_lang]
step_sind [in cap_machine.cap_lang]
step_ind [in cap_machine.cap_lang]
store_r [in cap_machine.examples.addr_reg_sample]
store_z [in cap_machine.examples.addr_reg_sample]
Store_spec_sind [in cap_machine.rules.rules_Store]
Store_spec_ind [in cap_machine.rules.rules_Store]
Store_failure_incr_sind [in cap_machine.rules.rules_Store]
Store_failure_incr_rec [in cap_machine.rules.rules_Store]
Store_failure_incr_ind [in cap_machine.rules.rules_Store]
Store_failure_incr_rect [in cap_machine.rules.rules_Store]
Store_failure_store_sind [in cap_machine.rules.rules_Store]
Store_failure_store_rec [in cap_machine.rules.rules_Store]
Store_failure_store_ind [in cap_machine.rules.rules_Store]
Store_failure_store_rect [in cap_machine.rules.rules_Store]
store_locals [in cap_machine.examples.call]
store_locals_instrs [in cap_machine.examples.call]
SubBounds [in machine_utils.finz_base]
subseg_z_z [in cap_machine.examples.addr_reg_sample]
subseg_r_r [in cap_machine.examples.addr_reg_sample]
Subseg_spec_sind [in cap_machine.rules.rules_Subseg]
Subseg_spec_ind [in cap_machine.rules.rules_Subseg]
Subseg_failure_sind [in cap_machine.rules.rules_Subseg]
Subseg_failure_ind [in cap_machine.rules.rules_Subseg]
sub_z_z [in cap_machine.examples.addr_reg_sample]
sub_z_r [in cap_machine.examples.addr_reg_sample]
sub_r_z [in cap_machine.examples.addr_reg_sample]
sub_r_r [in cap_machine.examples.addr_reg_sample]

T

tbl_priv [in cap_machine.examples.template_adequacy]
tbl_pub [in cap_machine.examples.template_adequacy]
tbl_region [in cap_machine.examples.template_adequacy]
tests.rep_invariant [in cap_machine.proofmode.NamedProp]
tests.simple_rep [in cap_machine.proofmode.NamedProp]
tests.test_inamedaccu_serialize [in cap_machine.proofmode.NamedProp]
tests.test_frame_named_pure [in cap_machine.proofmode.NamedProp]
tests.test_frame_named_persistent [in cap_machine.proofmode.NamedProp]
tests.test_frame_named_spatial [in cap_machine.proofmode.NamedProp]
tests.test_nested_destruct_middle [in cap_machine.proofmode.NamedProp]
tests.test_nested_destruct_conjuncts [in cap_machine.proofmode.NamedProp]
tests.test_nested_destruct [in cap_machine.proofmode.NamedProp]
tests.test_destruct_singleton_under_definition [in cap_machine.proofmode.NamedProp]
tests.test_exists_freshen [in cap_machine.proofmode.NamedProp]
tests.test_exists [in cap_machine.proofmode.NamedProp]
tests.test_named_not_found [in cap_machine.proofmode.NamedProp]
tests.test_named_from_pure [in cap_machine.proofmode.NamedProp]
tests.test_named_last_not_named [in cap_machine.proofmode.NamedProp]
tests.test_named_already_persistent [in cap_machine.proofmode.NamedProp]
tests.test_named_persistent_context [in cap_machine.proofmode.NamedProp]
tests.test_named_persistent_conjuncts [in cap_machine.proofmode.NamedProp]
tests.test_named_persistent_same_name [in cap_machine.proofmode.NamedProp]
tests.test_named_persistent [in cap_machine.proofmode.NamedProp]
tests.test_named_into_pure [in cap_machine.proofmode.NamedProp]
tests.test_iNamed_destruct_pat [in cap_machine.proofmode.NamedProp]
tests.test_multiple_exist_destruct [in cap_machine.proofmode.NamedProp]
tests.test_exist_destruct_no_naming [in cap_machine.proofmode.NamedProp]
tests.test_exist_destruct_under_definition [in cap_machine.proofmode.NamedProp]
tests.test_exist_destruct [in cap_machine.proofmode.NamedProp]
tests.test_remove_named_in_goal [in cap_machine.proofmode.NamedProp]
tests.test_frame_named_sep [in cap_machine.proofmode.NamedProp]
tests.test_frame_named [in cap_machine.proofmode.NamedProp]
tests.test_destruct_pat [in cap_machine.proofmode.NamedProp]
tests.test_destruct_named [in cap_machine.proofmode.NamedProp]
tests.test_pure_pattern_freshen [in cap_machine.proofmode.NamedProp]
tests.test_name_named_2 [in cap_machine.proofmode.NamedProp]
tests.test_name_named_1 [in cap_machine.proofmode.NamedProp]
to_spec_map [in cap_machine.rules_binary.rules_binary_base]
to_val [in cap_machine.cap_lang]

U

Unnamed_thm0 [in machine_utils.class_instances]
Unnamed_thm [in machine_utils.class_instances]
Unnamed_thm15 [in machine_utils.finz_lemmas]
Unnamed_thm14 [in machine_utils.finz_lemmas]
Unnamed_thm13 [in machine_utils.finz_lemmas]
Unnamed_thm12 [in machine_utils.finz_lemmas]
Unnamed_thm11 [in machine_utils.finz_lemmas]
Unnamed_thm10 [in machine_utils.finz_lemmas]
Unnamed_thm9 [in machine_utils.finz_lemmas]
Unnamed_thm8 [in machine_utils.finz_lemmas]
Unnamed_thm7 [in machine_utils.finz_lemmas]
Unnamed_thm6 [in machine_utils.finz_lemmas]
Unnamed_thm5 [in machine_utils.finz_lemmas]
Unnamed_thm4 [in machine_utils.finz_lemmas]
Unnamed_thm3 [in machine_utils.finz_lemmas]
Unnamed_thm2 [in machine_utils.finz_lemmas]
Unnamed_thm1 [in machine_utils.finz_lemmas]
Unnamed_thm0 [in machine_utils.finz_lemmas]
Unnamed_thm [in machine_utils.finz_lemmas]
Unnamed_thm3 [in machine_utils.solve_pure]
Unnamed_thm3 [in machine_utils.solve_pure]
Unnamed_thm3 [in machine_utils.solve_pure]
Unnamed_thm3 [in machine_utils.solve_pure]
Unnamed_thm2 [in machine_utils.solve_pure]
Unnamed_thm1 [in machine_utils.solve_pure]
Unnamed_thm0 [in machine_utils.solve_pure]
Unnamed_thm [in machine_utils.solve_pure]
Unnamed_thm [in cap_machine.proofmode.solve_addr_extra]
Unnamed_thm4 [in machine_utils.solve_finz]
Unnamed_thm3 [in machine_utils.solve_finz]
Unnamed_thm2 [in machine_utils.solve_finz]
Unnamed_thm1 [in machine_utils.solve_finz]
Unnamed_thm0 [in machine_utils.solve_finz]
Unnamed_thm [in machine_utils.solve_finz]
Unnamed_thm5 [in cap_machine.proofmode.solve_pure]
Unnamed_thm4 [in cap_machine.proofmode.solve_pure]
Unnamed_thm3 [in cap_machine.proofmode.solve_pure]
Unnamed_thm2 [in cap_machine.proofmode.solve_pure]
Unnamed_thm1 [in cap_machine.proofmode.solve_pure]
Unnamed_thm0 [in cap_machine.proofmode.solve_pure]
Unnamed_thm [in cap_machine.proofmode.solve_pure]
unseal_instrs_length [in cap_machine.examples.dynamic_sealing]
unseal_instrs [in cap_machine.examples.dynamic_sealing]
UnSeal_spec_sind [in cap_machine.rules.rules_UnSeal]
UnSeal_spec_ind [in cap_machine.rules.rules_UnSeal]
UnSeal_failure_sind [in cap_machine.rules.rules_UnSeal]
UnSeal_failure_ind [in cap_machine.rules.rules_UnSeal]
unseal_instrs_length [in cap_machine.examples.arch_sealing]
unseal_instrs [in cap_machine.examples.arch_sealing]
updatePC [in cap_machine.cap_lang]
updatePcPerm [in cap_machine.machine_base]
update_mem [in cap_machine.cap_lang]
update_reg [in cap_machine.cap_lang]

V

valid_sealed [in cap_machine.examples.arch_sealing]
val_sind [in cap_machine.cap_lang]
val_rec [in cap_machine.cap_lang]
val_ind [in cap_machine.cap_lang]
val_rect [in cap_machine.cap_lang]
v1 [in cap_machine.examples.macros_new]
v1 [in cap_machine.examples.macros]
v2 [in cap_machine.examples.macros_new]
v2 [in cap_machine.examples.macros]
v3 [in cap_machine.examples.macros_new]
v3 [in cap_machine.examples.macros]
v4 [in cap_machine.examples.macros_new]
v4 [in cap_machine.examples.macros]
v5 [in cap_machine.examples.macros_new]
v5 [in cap_machine.examples.macros]
v6 [in cap_machine.examples.macros_new]
v6 [in cap_machine.examples.macros]

W

well_formed_comp_sind [in cap_machine.linking]
well_formed_comp_ind [in cap_machine.linking]
well_formed_pre_comp_sind [in cap_machine.linking]
well_formed_pre_comp_ind [in cap_machine.linking]
withinBounds [in cap_machine.machine_base]
with_adv_and_link_ints.invN [in cap_machine.examples.template_adequacy]
with_adv_and_link_ints.initial_memory_domain [in cap_machine.examples.template_adequacy]
with_adv_and_link_ints.is_initial_memory [in cap_machine.examples.template_adequacy]
with_adv_and_link_ints.is_initial_registers [in cap_machine.examples.template_adequacy]
with_adv_and_link.invN [in cap_machine.examples.template_adequacy]
with_adv_and_link.initial_memory_domain [in cap_machine.examples.template_adequacy]
with_adv_and_link.is_initial_memory [in cap_machine.examples.template_adequacy]
with_adv_and_link.is_initial_registers [in cap_machine.examples.template_adequacy]
with_adv_and_data_and_link.invN [in cap_machine.examples.template_adequacy]
with_adv_and_data_and_link.initial_memory_domain [in cap_machine.examples.template_adequacy]
with_adv_and_data_and_link.is_initial_memory [in cap_machine.examples.template_adequacy]
with_adv_and_data_and_link.is_initial_registers [in cap_machine.examples.template_adequacy]
with_adv_ints.invN [in cap_machine.examples.template_adequacy]
with_adv_ints.is_initial_memory [in cap_machine.examples.template_adequacy]
with_adv_ints.is_initial_registers [in cap_machine.examples.template_adequacy]
with_adv.invN [in cap_machine.examples.template_adequacy]
with_adv.is_initial_memory [in cap_machine.examples.template_adequacy]
with_adv.is_initial_registers [in cap_machine.examples.template_adequacy]
with_adv_and_data.invN [in cap_machine.examples.template_adequacy]
with_adv_and_data.is_initial_memory [in cap_machine.examples.template_adequacy]
with_adv_and_data.is_initial_registers [in cap_machine.examples.template_adequacy]
word_of_argument [in cap_machine.cap_lang]
Word_sind [in cap_machine.machine_base]
Word_rec [in cap_machine.machine_base]
Word_ind [in cap_machine.machine_base]
Word_rect [in cap_machine.machine_base]
wp_lift_atomic_base_step_no_fork_determ [in cap_machine.rules.rules_base]
writeAllowed [in cap_machine.machine_base]
writeAllowedWord [in cap_machine.logrel]
writeAllowed_in_r_a [in cap_machine.logrel]
write_cond [in cap_machine.logrel_binary]
write_cond [in cap_machine.logrel]
wt_int [in cap_machine.machine_parameters]
wt_sealed [in cap_machine.machine_parameters]
wt_sealrange [in cap_machine.machine_parameters]
wt_cap [in cap_machine.machine_parameters]
w_4c [in cap_machine.examples.addr_reg_sample]
w_4b [in cap_machine.examples.addr_reg_sample]
w_4a [in cap_machine.examples.addr_reg_sample]
w_3 [in cap_machine.examples.addr_reg_sample]
w_2_U [in cap_machine.examples.addr_reg_sample]
w_2 [in cap_machine.examples.addr_reg_sample]
w_1 [in cap_machine.examples.addr_reg_sample]

Z

z_cond [in cap_machine.logrel_binary]
z_of_argument [in cap_machine.cap_lang]
Z_of_regname [in cap_machine.addr_reg]

---

Record Index

A

AsWeakFinZIncr [in machine_utils.classes]

C

CbvTC [in machine_utils.classes]
cfgSG [in cap_machine.rules_binary.rules_binary_base]

D

DecodeInstr [in cap_machine.proofmode.classes]
DisjointList [in cap_machine.proofmode.disjoint_regions_tactics]

E

EnvsLookupSpatial [in machine_utils.tactics]

F

FinZEq [in machine_utils.classes]
FinZLe [in machine_utils.classes]
FinZLt [in machine_utils.classes]
FinZOffsetLe [in machine_utils.classes]
FinZOffsetLt [in machine_utils.classes]
FramableCodefrag [in cap_machine.proofmode.proofmode]
FramableMachineHyp [in machine_utils.tactics]
FramableMachineResource [in machine_utils.tactics]
FramableMemoryPointsto [in cap_machine.proofmode.proofmode]
FramableRegisterPointsto [in cap_machine.proofmode.proofmode]

I

IncrFinZ [in machine_utils.classes]
InCtx [in machine_utils.solve_pure]
IsExistential [in cap_machine.proofmode.NamedProp]
IsSplittable [in cap_machine.proofmode.NamedProp]

L

lib [in cap_machine.examples.template_adequacy]
lib_entry [in cap_machine.examples.template_adequacy]
logrel_na_invs [in cap_machine.logrel]
LookupFramableMachineResource [in machine_utils.tactics]

M

MachineParameters [in cap_machine.machine_parameters]
memG [in cap_machine.rules.rules_base]
memory_layout [in cap_machine.examples.lse_adequacy]
memory_layout [in cap_machine.examples.interval_arch.interval_client_adequacy_arch]
memory_layout [in cap_machine.examples.adder_adequacy]
memory_layout [in cap_machine.examples.counter.counter_adequacy]
memory_layout [in cap_machine.exercises.subseg_buffer_call]
memory_layout [in cap_machine.examples.counter_binary.counter_binary_adequacy]
memory_layout [in cap_machine.examples.interval.interval_client_adequacy]
memory_inv [in cap_machine.examples.template_adequacy]

O

ocpl.ocpl_library [in cap_machine.examples.template_adequacy_ocpl]

P

prog [in cap_machine.examples.template_adequacy]
ProperPreOrder [in cap_machine.monotone]

R

regG [in cap_machine.rules.rules_base]

S

sealLLG [in cap_machine.examples.keylist]
sealStoreG [in cap_machine.seal_store]
sealStorePreG [in cap_machine.seal_store]
SimplTC [in machine_utils.classes]

T

tbl [in cap_machine.examples.template_adequacy]

Z

ZToFinZ [in machine_utils.classes]

---

Global Index

A

B

C

D

E

F

G

H

I

J

K

L

M

N

O

P

Q

R

S

T

U

V

W

X

Y

Z

_

other

(3800 entries)

Notation Index

A

B

C

D

E

F

G

H

I

J

K

L

M

N

O

P

Q

R

S

T

U

V

W

X

Y

Z

_

other

(50 entries)

Module Index

A

B

C

D

E

F

G

H

I

J

K

L

M

N

O

P

Q

R

S

T

U

V

W

X

Y

Z

_

other

(11 entries)

Variable Index

A

B

C

D

E

F

G

H

I

J

K

L

M

N

O

P

Q

R

S

T

U

V

W

X

Y

Z

_

other

(609 entries)

Library Index

A

B

C

D

E

F

G

H

I

J

K

L

M

N

O

P

Q

R

S

T

U

V

W

X

Y

Z

_

other

(142 entries)

Lemma Index

A

B

C

D

E

F

G

H

I

J

K

L

M

N

O

P

Q

R

S

T

U

V

W

X

Y

Z

_

other

(1022 entries)

Constructor Index

A

B

C

D

E

F

G

H

I

J

K

L

M

N

O

P

Q

R

S

T

U

V

W

X

Y

Z

_

other

(151 entries)

Projection Index

A

B

C

D

E

F

G

H

I

J

K

L

M

N

O

P

Q

R

S

T

U

V

W

X

Y

Z

_

other

(319 entries)

Inductive Index

A

B

C

D

E

F

G

H

I

J

K

L

M

N

O

P

Q

R

S

T

U

V

W

X

Y

Z

_

other

(57 entries)

Section Index

A

B

C

D

E

F

G

H

I

J

K

L

M

N

O

P

Q

R

S

T

U

V

W

X

Y

Z

_

other

(142 entries)

Instance Index

A

B

C

D

E

F

G

H

I

J

K

L

M

N

O

P

Q

R

S

T

U

V

W

X

Y

Z

_

other

(157 entries)

Abbreviation Index

A

B

C

D

E

F

G

H

I

J

K

L

M

N

O

P

Q

R

S

T

U

V

W

X

Y

Z

_

other

(88 entries)

Definition Index

A

B

C

D

E

F

G

H

I

J

K

L

M

N

O

P

Q

R

S

T

U

V

W

X

Y

Z

_

other

(1008 entries)

Record Index

A

B

C

D

E

F

G

H

I

J

K

L

M

N

O

P

Q

R

S

T

U

V

W

X

Y

Z

_

other

(44 entries)