a dependently typed framework for maintaining invariants
play

A Dependently Typed Framework for Maintaining Invariants Lszl Nmeth - PowerPoint PPT Presentation

Dec 31, 2023 •305 likes •434 views

A Dependently Typed Framework for Maintaining Invariants Lszl Nmeth Department of Computer Science Bilgi University, Istanbul TYPES06 - Nottingham Lszl Nmeth A Dependently Typed Framework for Maintaining Invariants

  1. A Dependently Typed Framework for Maintaining Invariants László Németh Department of Computer Science Bilgi University, Istanbul TYPES’06 - Nottingham László Németh A Dependently Typed Framework for Maintaining Invariants

  2. Introduction Maintaining accurate information about programs is important Embedded systems: run-time and space behaviour, guarantees (size) Agressively optimising compilers: any predicate which allows transformation according to some criteria (speed, space) certified compilers: ’ rewrote application of head in line 42, because the list can never be empty’ ultimately: certified code Where to find this information? given some unannotated code, try to discover it: static analysis (difficult) force the user to annotate (or write it in a sufficiently rich language) ? László Németh A Dependently Typed Framework for Maintaining Invariants

  3. Haskell: Prelude vs Report Legacy code: Haskell Prelude ⇐ ⇒ useful information: Report Examples: ’The sequence enumFromTo e 1 e 3 is the list [ e 1 , e 1 + 1 , e 1 + 2 , . . . , e 3 ] ’. The list is empty if e 1 > e 3 . ( R : A -> A -> * ; xs : List A ! data !--------------------------------! ! Sorted R xs : * ) ( a : A ; ss : Sorted R bs ; p : Sm R a bs ! where (---------------------! ; !--------------------------------------------! ! snil : Sorted R nil ) ! scons a ss p : Sorted R (cons a bs) ) ’The Ix class is used to map a contiguous subrange of values in a type onto integers. . . . the nullary constructors are assumed to be numbered left-to-right with the indices being 0 to n − 1 inclusive’. : they are N’s and SORTED careful reading of the Prelude+Report shows up dozens László Németh A Dependently Typed Framework for Maintaining Invariants

  4. Approach Devise enriched types which allows statically track 1 invariants we are interested in Transform well-typed Haskell functions to functions in a DT 2 language which manipulates those invariants Use the stronger type system to maintain and possibly 3 establish properties If typechecks extract 4 Haskell code + rewrite rules Transformed code (beware of code duplication) László Németh A Dependently Typed Framework for Maintaining Invariants

  5. In this talk Two properties Size of lists (Sortedness) We pretend that Haskell is strict deal only with a handful of functions from the Prelude ((++), filter, take, dropWhile, intersect, etc) use Epigram because it is theorem proving well disguised compiler = GHC All (well-typed) combinations of those functions maintain the invariants László Németh A Dependently Typed Framework for Maintaining Invariants

  6. Size (dependently) ( A : * ; lp : Le lb l ; up : Le l ub ! data !---------------------------------------! ! BList A lp up : * ) where (------------------------! ; ! bnil : BList A leZ leZ ) ( a : A ; as : BList A lp up ! !----------------------------------------! ! bcons a as : BList A (leS lp) (leS up) ) László Németh A Dependently Typed Framework for Maintaining Invariants

  7. Map Works ( f : all a : A => B ; xs : BList A lp up ! let !------------------------------------------! ! bmap f xs : BList B lp up ) bmap f xs <= rec xs { bmap f xs <= case xs { bmap f bnil => bnil bmap f (bcons x xs) => bcons (f x) (bmap f xs) } } and we get the usual goodies ( xs : BList A (leS n) u ! let !------------------------! ! bhead xs : A ) bhead xs <= case xs { bhead (bcons m’’ ms) => m’’ } László Németh A Dependently Typed Framework for Maintaining Invariants

  8. Other Prelude Functions append adds the lower bounds and the upper bounds (think of the definition list comprehensions!) filter changes the proof about the lower bound to zero (ie the proof of) intersect sets the lower bound to zero and the upper bound to the minimum of the length of the lists take n sets the length to be exactly n if the lower bound is greater than n . . . . László Németh A Dependently Typed Framework for Maintaining Invariants

  9. What Transformations are Possible take 3 ==> lambda xs. case xs of (x1:xs1) -> x1 : case xs1 of (x2:xs2) -> x2 : case xs2 of (x3:xs3) -> x3 : [] László Németh A Dependently Typed Framework for Maintaining Invariants

  10. Message Instead of a whispering important properties (in the Report) SAY them in the types of (dependently typed) functions and make some compiler SEE them. László Németh A Dependently Typed Framework for Maintaining Invariants

  11. Summary more you say more you (should) get can be done under the hood (no extension to Core or Haskell itself) the approach complements the optimising capabilities of GHC TODO PiE - formalise the Prelude (plus the Report!) in Epigram: good for the soul, good for compilation, and Haskell programmers can also read it once we established some invariant (and possibly acted upon) it is a shame to throw it away László Németh A Dependently Typed Framework for Maintaining Invariants

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

A Logical Framework with Dependently Typed Records Thierry Coquand, Randy Pollack, Makoto

A Logical Framework with Dependently Typed Records Thierry Coquand, Randy Pollack, Makoto

A Logical Framework with Dependently Typed Records Thierry Coquand, Randy Pollack, Makoto Takeyama April 16, 2003 (809) A Logical Framework with Dependently Typed Records Thierry Coquand, Slide 1 Robert Pollack, Makoto Takeyama April 16,

363 views • 13 slides
Security-Typed Programming within Dependently-Typed Programming Dan Licata Joint work with

Security-Typed Programming within Dependently-Typed Programming Dan Licata Joint work with

Security-Typed Programming within Dependently-Typed Programming Dan Licata Joint work with Jamie Morgenstern Carnegie Mellon University Security-Typed Programming Access control: who gets access to what? read a file play a song make an

860 views • 62 slides
Categories with Families Unityped, Simply Typed, Dependently Typed Peter Dybjer Chalmers

Categories with Families Unityped, Simply Typed, Dependently Typed Peter Dybjer Chalmers

Categories with Families Unityped, Simply Typed, Dependently Typed Peter Dybjer Chalmers tekniska hgskola joint work with Simon Castellan, Imperial College Pierre Clairambault, ENS Lyon TYPES 2019 Oslo, 11-14 June . . . . . . . .

140 views • 12 slides
Security-Typed Programming within Dependently-Typed Programming Dan Licata Joint work with

Security-Typed Programming within Dependently-Typed Programming Dan Licata Joint work with

Security-Typed Programming within Dependently-Typed Programming Dan Licata Joint work with Jamie Morgenstern Carnegie Mellon University Supported by NSF CCF-0702381 and CNS-0716469 Security-Typed Programming Access control: who gets access

1.06k views • 79 slides
Generic Programming in a Dependently Typed Language Generic proofs for generic programs Peter

Generic Programming in a Dependently Typed Language Generic proofs for generic programs Peter

Generic Programming in a Dependently Typed Language Generic proofs for generic programs Peter Morris pwm@cs.nott.ac.uk University of Nottingham Generic Programming in a Dependently Typed Language p. 1/12 This talk We introduce a

599 views • 45 slides
Scrapping Your Dependently- Typed Boilerplate is Hard Ahmad

Scrapping Your Dependently- Typed Boilerplate is Hard Ahmad

Scrapping Your Dependently- Typed Boilerplate is Hard Ahmad Salim Al-Sibahi Supervised by: Dr. Peter Sesto@ David R. ChrisCansen IT University of

422 views • 38 slides
A Translation-Based Animation of Specifications in a Dependently-Typed Lambda Calculus Mary

A Translation-Based Animation of Specifications in a Dependently-Typed Lambda Calculus Mary

A Translation-Based Animation of Specifications in a Dependently-Typed Lambda Calculus Mary Southern and Gopalan Nadathur Department of Computer Science and Engineering University of Minnesota Other Contributors: D. Baelde, Z. Snow The Context

417 views • 14 slides
LEARN DEPENDENTLY- TYPED PROGRAMMING WITH IDRIS WHO I AM @puffnfresh Tiny contributor to

LEARN DEPENDENTLY- TYPED PROGRAMMING WITH IDRIS WHO I AM @puffnfresh Tiny contributor to

LEARN DEPENDENTLY- TYPED PROGRAMMING WITH IDRIS WHO I AM @puffnfresh Tiny contributor to Idris (18 commits) Played with dependent types for 2 years Been doing Idris for 6 months ASSUMPTIONS Small experience with Haskell

739 views • 39 slides
Compiling Dependent Types Much recent focus on verified compilation of dependently typed

Compiling Dependent Types Much recent focus on verified compilation of dependently typed

CPS Translation of Dependent Types Amal Ahmed Northeastern University Work in progress, with Nick Rioux and William Bowman Compiling Dependent Types Much recent focus on verified compilation of dependently typed languages: Coqonut, CertiCoq

708 views • 44 slides
Dependently typed superposition in Lean Gabriel Ebner Matryoshka 2018 2018-06-27 TU Wien

Dependently typed superposition in Lean Gabriel Ebner Matryoshka 2018 2018-06-27 TU Wien

Dependently typed superposition in Lean Gabriel Ebner Matryoshka 2018 2018-06-27 TU Wien Introduction Calculus Implementation Conclusion 1 Lean Proof assistant based on dependent type theory terms, types, formulas, proofs are all

458 views • 33 slides
Dependently Typed Programming with Finite Sets Denis Firsov and Tarmo Uustalu Institute of

Dependently Typed Programming with Finite Sets Denis Firsov and Tarmo Uustalu Institute of

Dependently Typed Programming with Finite Sets Denis Firsov and Tarmo Uustalu Institute of Cybernetics at TUT November 13, 2015 1 / 67 Outline The problem and motivation Different notions of finiteness Pragmatic finite subsets Approaches to

860 views • 57 slides
A Translation-Based Approach to Reasoning About Dependently Typed Specifications 1 Mary Southern

A Translation-Based Approach to Reasoning About Dependently Typed Specifications 1 Mary Southern

A Translation-Based Approach to Reasoning About Dependently Typed Specifications 1 Mary Southern Department of Computer Science and Engineering University of Minnesota Joint work with Kaustuv Chaudhuri, INRIA 1 Based on work which will be

571 views • 36 slides
Super advanced functional programming Or: dependently-typed programming in Agda Dr. Dominic

Super advanced functional programming Or: dependently-typed programming in Agda Dr. Dominic

Super advanced functional programming Or: dependently-typed programming in Agda Dr. Dominic Mulligan Programming, Logic, and Semantics Group, University of Cambridge Part III, Advanced Functional Programming, March 2017 1 System F Very

130 views • 9 slides
Unifiers as Equivalences Proof-Relevant Unification of Dependently Typed Data Jesper Cockx

Unifiers as Equivalences Proof-Relevant Unification of Dependently Typed Data Jesper Cockx

Unifiers as Equivalences Proof-Relevant Unification of Dependently Typed Data Jesper Cockx Dominique Devriese Frank Piessens 20 September 2016 data Vec ( A : Set ) : N Set where [] : Vec A zero cons : ( n : N ) A Vec A n Vec A

876 views • 77 slides
Dependently Typed Programming with Domain-Specific Logics Dan Licata Thesis Committee: Robert

Dependently Typed Programming with Domain-Specific Logics Dan Licata Thesis Committee: Robert

Dependently Typed Programming with Domain-Specific Logics Dan Licata Thesis Committee: Robert Harper Karl Crary Frank Pfenning Greg Morrisett, Harvard 1 Domain-specific logics Type systems for reasoning about a specific application

985 views • 67 slides
Dependently-Typed Programming in Economic Modelling Cezar Ionescu (PIK) with Edwin Brady

Dependently-Typed Programming in Economic Modelling Cezar Ionescu (PIK) with Edwin Brady

DTP11, Nijmegen, 26-08-2011 Dependently-Typed Programming in Economic Modelling Cezar Ionescu (PIK) with Edwin Brady (University of St. Andrews) and members of the Cartesian Seminar at PIK DTP11, Nijmegen, 26-08-2011 PIK : Potsdam Institute

698 views • 22 slides
The XML Query Language Xcerpt Pattern Queries for XML and Semistructured Data Franc ois Bry

The XML Query Language Xcerpt Pattern Queries for XML and Semistructured Data Franc ois Bry

L M U Ludwig Maximilians Universitt Mnchen The XML Query Language Xcerpt Pattern Queries for XML and Semistructured Data Franc ois Bry and Sebastian Schaffert http://www.pms.informatik.uni-muenchen.de Institut f ur Informatik, LMU

217 views • 21 slides
Ontology-Based XQuerying of XML-Encoded Language Resources on Multiple Annotation Layers Georg

Ontology-Based XQuerying of XML-Encoded Language Resources on Multiple Annotation Layers Georg

Ontology-Based XQuerying of XML-Encoded Language Resources on Multiple Annotation Layers Georg Rehm 1 , Richard Eckart 2 , Christian Chiarcos 3 , Johannes Dellert 1 University of Tbingen 1 TU Darmstadt 2 University of Potsdam 3 SFB 441:

414 views • 27 slides
An Introduction to the Coalition Battle Management Services CBMS Overview and Objectives CBMS

An Introduction to the Coalition Battle Management Services CBMS Overview and Objectives CBMS

An Introduction to the Coalition Battle Management Services CBMS Overview and Objectives CBMS is a web service infrastructure that supports : The exchange of C-BML messages before, during and after runtime Data Distribution

647 views • 11 slides
Pathfinder: /| child::element person { item* } (iter, item1) /| child::element closed_auction {

Pathfinder: /| child::element person { item* } (iter, item1) /| child::element closed_auction {

SERIALIZE (item, pos) ROW# (pos:&lt;pos1&gt;) (pos1, item) FRAG_UNION |X| (iter = iter1) FRAGs ROOTS ELEM (iter1, item:&lt;iter1, item&gt;&lt;iter1, pos, item&gt;) ELEM_TAG (iter1, item, pos) @ (item), val: item ROW#

300 views • 13 slides
WiFi security Joeri de Ruiter Agenda WiFi security WPA(2) Personal Enterprise

WiFi security Joeri de Ruiter Agenda WiFi security WPA(2) Personal Enterprise

Advanced Network Security WiFi security Joeri de Ruiter Agenda WiFi security WPA(2) Personal Enterprise WPA3 Key reinstallaton aaacas 2 WiFi IEEE 802.11 standard Some terminology: Staton (STA) is a

479 views • 46 slides
Nonlinear Control Lecture # 12 Nonlinear Observers and Output Feedback Stabilization Nonlinear

Nonlinear Control Lecture # 12 Nonlinear Observers and Output Feedback Stabilization Nonlinear

Nonlinear Control Lecture # 12 Nonlinear Observers and Output Feedback Stabilization Nonlinear Control Lecture # 12 Nonlinear Observers and Output Feedback Stabilization Local Observers x = f ( x, u ) , y = h ( x ) x = f ( x, u )

467 views • 30 slides
A few security issues to takeover 34% of all websites Johannes Dahse, PHP.RUHR 2019 Dortmund,

A few security issues to takeover 34% of all websites Johannes Dahse, PHP.RUHR 2019 Dortmund,

A few security issues to takeover 34% of all websites Johannes Dahse, PHP.RUHR 2019 Dortmund, Germany, 08.11.2019 1 Intro Johannes Dahse Former CTF addict Security Consultant RIPS open source, static analysis for PHP security Ph.D. Static

643 views • 37 slides
Dont trust user input Kirk Jackson, RedShield security.ac.nz, 25 Aug 2019 Building a secure

Dont trust user input Kirk Jackson, RedShield security.ac.nz, 25 Aug 2019 Building a secure

Dont trust user input Kirk Jackson, RedShield security.ac.nz, 25 Aug 2019 Building a secure web app Vulnerability Scan Configuration Review Penetration Testing Production Proxy IDS DLP File integrity monitoring Attacks AV Web

459 views • 30 slides

More recommend