A Proof System for Unsolvable Planning Tasks Salom e Eriksson - - PowerPoint PPT Presentation

a proof system for unsolvable planning tasks
SMART_READER_LITE
LIVE PREVIEW

A Proof System for Unsolvable Planning Tasks Salom e Eriksson - - PowerPoint PPT Presentation

Feb 23, 2023 106 likes •329 views

Introduction Proof System Applications Experiments A Proof System for Unsolvable Planning Tasks Salom e Eriksson Gabriele R oger Malte Helmert University of Basel, Switzerland ICAPS 2018 Introduction Proof System Applications

slide-1
SLIDE 1

Introduction Proof System Applications Experiments

A Proof System for Unsolvable Planning Tasks

Salom´ e Eriksson Gabriele R¨

  • ger

Malte Helmert

University of Basel, Switzerland

ICAPS 2018

slide-2
SLIDE 2

Introduction Proof System Applications Experiments

Motivation

validating correctness of planner output: Why? software bugs, hardware faults, malicious reasons . . . How?

(a) plan output: VAL/INVAL (b) unsolvability claim: inductive certificates [Eriksson et al. 2017]

slide-3
SLIDE 3

Introduction Proof System Applications Experiments

Inductive Certificates

find set S with no successors (written: S[A] ⊆ S) containing I no goal S I G weakness: not compositional new approach: proof system

slide-4
SLIDE 4

Introduction Proof System Applications Experiments

Proof System

collection of knowledge (A ∩ C) ⊂ B, a ∈ A . . . new knowledge gained through: basic statements A ⊂ B

state facts about concrete objects need to be verified

derivation rules X ⊂ Y and Y ⊂ Z → X ⊂ Z

derive new knowledge from existing knowledge universally true (only verify correct application)

slide-5
SLIDE 5

Introduction Proof System Applications Experiments

Unsolvability Proof System

  • bjects: state sets S in different formalisms

BDDs Horn formulas 2CNF formulas explicit types of statements: S dead (no plan through any s ∈ S) S ⊆ S′ task unsolvable

slide-6
SLIDE 6

Introduction Proof System Applications Experiments

Rules

D1 ∅ is dead D2 S dead, S′ dead → S ∪ S′ dead D3 S′ ⊆ S, S dead → S′ dead D4 {I} dead → task unsolvable D5 G dead → task unsolvable D6 S[A] ⊆ S ∪ S′, S′ dead, G ∩ S dead → S dead D7 S[A] ⊆ S ∪ S′, S′ dead, {I} ⊆ S → S dead D8 [A]S ⊆ S ∪ S′, S′ dead, G ∩ S dead → S dead D9 [A]S ⊆ S ∪ S′, S′ dead, {I} ⊆ S → S dead

slide-7
SLIDE 7

Introduction Proof System Applications Experiments

Rules

D1 ∅ is dead D2 S dead, S′ dead → S ∪ S′ dead D3 S′ ⊆ S, S dead → S′ dead D4 {I} dead → task unsolvable D5 G dead → task unsolvable D6 S[A] ⊆ S ∪ S′, S′ dead, G ∩ S dead → S dead D7 S[A] ⊆ S ∪ S′, S′ dead, {I} ⊆ S → S dead D8 [A]S ⊆ S ∪ S′, S′ dead, G ∩ S dead → S dead D9 [A]S ⊆ S ∪ S′, S′ dead, {I} ⊆ S → S dead

slide-8
SLIDE 8

Introduction Proof System Applications Experiments

Rules

D1 ∅ is dead D2 S dead, S′ dead → S ∪ S′ dead D3 S′ ⊆ S, S dead → S′ dead D4 {I} dead → task unsolvable D5 G dead → task unsolvable D6 S[A] ⊆ S ∪ S′, S′ dead, G ∩ S dead → S dead D7 S[A] ⊆ S ∪ S′, S′ dead, {I} ⊆ S → S dead D8 [A]S ⊆ S ∪ S′, S′ dead, G ∩ S dead → S dead D9 [A]S ⊆ S ∪ S′, S′ dead, {I} ⊆ S → S dead S S′ I

slide-9
SLIDE 9

Introduction Proof System Applications Experiments

Basic Statements

currently restricted to certain subset relations: B1 S ⊆ S′ B2 S ⊆ S′ ∪ S′′ B3 S ∩ G ⊆ S′ B4 S[A] ⊆ S ∪ S′ B5 [A]S ⊆ S ∪ S′

S / S′: constants ({I}, G, ∅), set variables or their complement

Verification in polynomial time: B1-B5 if homogeneous (same representation for all S) B1 for heterogeneous in some cases

slide-10
SLIDE 10

Introduction Proof System Applications Experiments

Covered techniques

blind search (explicit and symbolic) heuristic search with one heuristic:

delete-relaxation (hmax, hLM-Cut, . . . ) hM&S with linear merge strategy hm (and hC)

trapper [Lipovetzky et al. 2016] not covered by old approach heuristic search with multiple heuristics h2-based preprocessing [Alc´ azar and Torralba 2015]

slide-11
SLIDE 11

Introduction Proof System Applications Experiments

Translating Inductive Certificates

inductive certificate S: no successor containing I no goal (1) ∅ dead D1 (2) S[A] ⊆ S ∪ ∅ B4 (3) S ∩ G ⊆ ∅ B3 (4) S ∩ G dead D3 (3),(1) (5) S dead D6 (2),(1),(4) (6) {I} ⊆ S B1 (7) {I} dead D3 (6),(5) (8) unsolvable D5 (7)

slide-12
SLIDE 12

Introduction Proof System Applications Experiments

Heuristic Search

How does heuristic search show unsolvability? dead-ends are dead expanded states lead only to expanded states or dead ends showing deadness of dead states independently

slide-13
SLIDE 13

Introduction Proof System Applications Experiments

Heuristic Search - Example

Sd1 I d1 d2 (1) ∅ dead D1 (2) Sd1[A] ⊆ Sd1 ∪ ∅ B4 (3) Sd1 ∩ G ⊆ ∅ B3 (4) Sd1 ∩ G dead D3 (3),(1) (5) Sd1 dead D6 (2),(1),(4) (6) {d1} ⊆ Sd1 B1 (7) {d1} dead D3 (6),(5)

slide-14
SLIDE 14

Introduction Proof System Applications Experiments

Heuristic Search - Example

Sd2 Sd1 I d1 d2 (1) ∅ dead D1 (8) Sd2[A] ⊆ Sd2 ∪ ∅ B4 (9) Sd2 ∩ G ⊆ ∅ B3 (10) Sd2 ∩ G dead D3 (9),(1) (11) Sd2 dead D6 (8),(1),(10) (12) {d2} ⊆ Sd2 B1 (13) {d2} dead D3 (12),(11)

slide-15
SLIDE 15

Introduction Proof System Applications Experiments

Heuristic Search - Example

SD Sd1 Sd2 I d1 d2 (7) {d1} dead (13) {d2} dead (14) {d1} ∪ {d2} dead D2 (7),(13) (15) SD ⊆ {d1} ∪ {d2} B2 (16) SD dead D3 (15),(14)

slide-16
SLIDE 16

Introduction Proof System Applications Experiments

Heuristic Search - Example

Sexp Sd1 Sd2 SD I d1 d2 (1) ∅ dead D1 (16) SD dead (17) Sexp[A] ⊆ Sexp ∪ SD B4 (18) Sexp ∩ G ⊆ ∅ B3 (19) Sexp ∩ G dead D3 (18),(1) (20) Sexp dead D6 (17),(16),(19) (21) {I} ⊆ Sexp B1 (22) {I} dead D3 (21),(20) (23) task unsolvable D4 (22)

slide-17
SLIDE 17

Introduction Proof System Applications Experiments

Experimental evaluation

implementation of proof generation and independent verifier1 algorithms: A∗ search with hmax hM&S and h2 A∗ with maximum of hM&S and h2 clause-learning state space search (DFS-CL) [Steinmetz and Hoffmann 2016] limits: proof generation: 30min, 2GiB proof verification: 4h, 2GiB

1both available at https://doi.org/10.5281/zenodo.1196473

slide-18
SLIDE 18

Introduction Proof System Applications Experiments

Coverage

base certifying verifier FD-hmax 211 168 (135)* 167 (125)* FD-hM&S 230 191 (200)* 184 (163)* FD-h2 183 177 177 FD-max(hM&S, h2) 204 199 195 DFS-CL 385 386 383

*inductive certificates approach

generate proofs in 92% within limits verify proofs in 99% within limits better coverage than certificates

slide-19
SLIDE 19

Introduction Proof System Applications Experiments

Conclusion

Compositional Proof System combination of different approaches possible covers wide area of planning techniques efficient generation and verification future work: partial order reduction flow & potential heuristics

slide-20
SLIDE 20

Introduction Proof System Applications Experiments

Overhead

10−2 10−1 100 101 102 103 10−2 10−1 100 101 102 103 failed failed base planner runtime (in s) certifying planner runtime (in s) hmax hM&S hm max(hM&S,hm) DFS-CL

slide-21
SLIDE 21

Introduction Proof System Applications Experiments

Comparison Certificate Size

10−2 10−1 100 101 102 103 104 10−2 10−1 100 101 102 103 104 failed failed inductive certificate size (in MiB) proof certificate size (in MiB) hmax hM&S