|
|
|
|
|
|
by jraph
258 days ago
|
|
|
Yep. Model checking is for checking that your design is sound, basically, not at all the implementation. For the implementation, you can use certified compilers like CompCert [1], but: - you still have to show your code is correct - there are still parts of CompCert that are not certified [1] https://compcert.org/ |
|
|