Add legal permissions invariant for tagged capabilities

mayyamal · mayyamal · commit 5edad1f39545 · 2024-11-13T14:29:09.000+01:00
diff --git a/src/cap-description.adoc b/src/cap-description.adoc
@@ -560,6 +560,7 @@ CHERI enforces the following invariants for all valid (i.e., tagged) capabilitie
 
 . The bounds are not malformed.
 . No reserved bit in the capability encoding is set.
+. The permissions are legally produced by <<ACPERM>>.
 
 A tagged capability that violates those invariants (i.e., a tagged but malformed capability or a tagged
 capability with any reserved bit set) can only possibly be caused by
