automatic cyclic termination proofs for recursive
play

Automatic Cyclic Termination Proofs for Recursive Procedures in - PowerPoint PPT Presentation

Jun 19, 2023 •41 likes •741 views

Automatic Cyclic Termination Proofs for Recursive Procedures in Separation Logic Reuben Rowe, University of Kent, Canterbury James Brotherston, University College London CPP, Paris, France Monday 16 th January 2017 Automatically Proving

  1. Automatic Cyclic Termination Proofs for Recursive Procedures in Separation Logic Reuben Rowe, University of Kent, Canterbury James Brotherston, University College London CPP, Paris, France Monday 16 th January 2017

  2. Automatically Proving Termination: Challenges proc shuffle(x) { if x != nil { y := *x; reverse(y); shuffle(y); } } heap manipulation intermediate procedures recursion 1/12

  3. Automatically Proving Termination: Challenges proc shuffle(x) { if x != nil { y := *x; reverse(y); shuffle(y); } } heap manipulation intermediate procedures recursion 1/12

  4. Automatically Proving Termination: Challenges proc shuffle(x) { if x != nil { y := *x; reverse(y); shuffle(y); } } heap manipulation intermediate procedures recursion 1/12

  5. Automatically Proving Termination: Challenges proc shuffle(x) { if x != nil { y := *x; reverse(y); shuffle(y); } } heap manipulation intermediate procedures recursion 1/12

  6. Automatically Proving Termination using Cyclic Proof . • We use the Cyclist framework for automation/certifjcation (Axiom) (Axiom) (Axiom) • Following the approach of Brotherston et al. (POPL ’08) (Inference) 2/12 . . . . . . . • • · • · · • . . . . . · • • • · · · φ ⊢ C

  7. Automatically Proving Termination using Cyclic Proof (Inference) • We use the Cyclist framework for automation/certifjcation semantics total correctness (Axiom) (Axiom) (Axiom) • Following the approach of Brotherston et al. (POPL ’08) 2/12 . . . . . . . . • • · • · · • . . . . . · • • • · · · φ ⊢ C

  8. Automatically Proving Termination using Cyclic Proof (Inference) • We use the Cyclist framework for automation/certifjcation semantics total correctness Separation Logic (Axiom) (Axiom) (Axiom) • Following the approach of Brotherston et al. (POPL ’08) 2/12 . . . . . . . . • • · • · · • . . . . . · • • • · · · φ ⊢ C

  9. Automatically Proving Termination using Cyclic Proof (Inference) • We use the Cyclist framework for automation/certifjcation semantics total correctness Separation Logic (Axiom) • Following the approach of Brotherston et al. (POPL ’08) 2/12 . . . . . . . . • • · • · · • . . . . . · • • • · · · φ ⊢ C

  10. Automatically Proving Termination using Cyclic Proof (Inference) • We use the Cyclist framework for automation/certifjcation semantics total correctness for data Inductive Predicates Separation Logic (Axiom) • Following the approach of Brotherston et al. (POPL ’08) 2/12 . . . . . . . . • • · • · · • . . . . . · • • • · · · φ ⊢ C

  11. Automatically Proving Termination using Cyclic Proof (Inference) • We use the Cyclist framework for automation/certifjcation semantics total correctness for data Inductive Predicates Separation Logic (Axiom) • Following the approach of Brotherston et al. (POPL ’08) 2/12 . . . . . . . . • • · • · • . . . . . · · • • • · · · { φ } C { ψ }

  12. Automatically Proving Termination using Cyclic Proof . • We use the Cyclist framework for automation/certifjcation (Axiom) • Following the approach of Brotherston et al. (POPL ’08) (Inference) . 2/12 . . . . . . • • · • · • . . . . . · · • • • · · · { φ } C { ψ }

  13. Advantages of Using Cyclic Proof • Supports compositional reasoning • Naturally encapsulates inductive principles • Invariants can be discovered • Termination measures extracted automatically 3/12

  14. Advantages of Using Cyclic Proof • Supports compositional reasoning • Naturally encapsulates inductive principles • Invariants can be discovered • Termination measures extracted automatically 3/12

  15. Advantages of Using Cyclic Proof • Supports compositional reasoning • Naturally encapsulates inductive principles • Invariants can be discovered • Termination measures extracted automatically 3/12

  16. Advantages of Using Cyclic Proof • Supports compositional reasoning • Naturally encapsulates inductive principles • Invariants can be discovered • Termination measures extracted automatically 3/12

  17. y n is a single memory cell referenced by x x n describe specifjc structures Ingredients of Our Approach: Separation Logic x w v list z lseg x y nil z y e.g. lseg x y , list z • Symbolic heap syntax makes reasoning easier • Formulas of SL describe portions of the program memory • Predicates P x 1 pieces of memory B is the (separate) conjunction of two domain-disjoint • A y 1 • x • emp is the empty piece of memory 4/12

  18. y n is a single memory cell referenced by x x n describe specifjc structures Ingredients of Our Approach: Separation Logic x w v list z lseg x y nil z y e.g. lseg x y , list z • Symbolic heap syntax makes reasoning easier • Formulas of SL describe portions of the program memory • Predicates P x 1 pieces of memory B is the (separate) conjunction of two domain-disjoint • A y 1 • x • emp is the empty piece of memory 4/12

  19. x n describe specifjc structures Ingredients of Our Approach: Separation Logic x w v list z lseg x y nil z y • Symbolic heap syntax makes reasoning easier • Formulas of SL describe portions of the program memory e.g. lseg x y , list z • Predicates P x 1 pieces of memory B is the (separate) conjunction of two domain-disjoint • A • emp is the empty piece of memory 4/12 • x �→ ( y 1 , . . . , y n ) is a single memory cell referenced by x

  20. x n describe specifjc structures Ingredients of Our Approach: Separation Logic y w v list z lseg x y nil z • Symbolic heap syntax makes reasoning easier x • Formulas of SL describe portions of the program memory e.g. lseg x y , list z • Predicates P x 1 pieces of memory • emp is the empty piece of memory 4/12 • x �→ ( y 1 , . . . , y n ) is a single memory cell referenced by x • A ∗ B is the (separate) conjunction of two domain-disjoint

  21. Ingredients of Our Approach: Separation Logic y w v list z lseg x y nil z x • Formulas of SL describe portions of the program memory • Symbolic heap syntax makes reasoning easier pieces of memory • emp is the empty piece of memory 4/12 • x �→ ( y 1 , . . . , y n ) is a single memory cell referenced by x • A ∗ B is the (separate) conjunction of two domain-disjoint • Predicates P ( x 1 , . . . , x n ) describe specifjc structures e.g. lseg ( x , y ) , list ( z )

  22. Ingredients of Our Approach: Separation Logic • Formulas of SL describe portions of the program memory • emp is the empty piece of memory pieces of memory • Symbolic heap syntax makes reasoning easier 4/12 • x �→ ( y 1 , . . . , y n ) is a single memory cell referenced by x • A ∗ B is the (separate) conjunction of two domain-disjoint • Predicates P ( x 1 , . . . , x n ) describe specifjc structures e.g. lseg ( x , y ) , list ( z ) x = y ∧ z � = nil ∧ lseg ( x , y ) ∗ list ( z ) ∗ v �→ w

  23. Ingredients of our Approach: Symbolic Execution C proc ( x ) C ) (body proc C (proc) v x := * y ; C y ( x fresh) x v x y x v x x (load) 5/12 { φ } C { ψ } (free) : { φ ∗ x �→ y } free( x ); C { ψ }

  24. (proc) Ingredients of our Approach: Symbolic Execution C (body proc C ) proc ( x ) 5/12 { φ } C { ψ } (free) : { φ ∗ x �→ y } free( x ); C { ψ } { x = v [ x ′ / x ] ∧ ( φ ∗ y �→ v )[ x ′ / x ] } C { ψ } (load) : ( x ′ fresh) { φ ∗ y �→ v } x := * y ; C { ψ }

  25. Ingredients of our Approach: Symbolic Execution 5/12 { φ } C { ψ } (free) : { φ ∗ x �→ y } free( x ); C { ψ } { x = v [ x ′ / x ] ∧ ( φ ∗ y �→ v )[ x ′ / x ] } C { ψ } (load) : ( x ′ fresh) { φ ∗ y �→ v } x := * y ; C { ψ } { φ } C { ψ } (proc) : (body ( proc ) = C ) { φ } proc ( � x ) { ψ }

  26. Ingredients of our Approach: Inductive Predicates emp C x list C x list y x C nil • We support user-defjned inductive predicates, e.g. x • A logical rule schema allows case split C x list • Predicate labels identify termination measures, e.g. 6/12 x = nil ∧ emp x �→ y ∗ list ( y ) list ( x ) list ( x )

  27. Ingredients of our Approach: Inductive Predicates C C x list C x list y x emp • We support user-defjned inductive predicates, e.g. nil x • A logical rule schema allows case split • Predicate labels identify termination measures, e.g. 6/12 x = nil ∧ emp x �→ y ∗ list ( y ) list ( x ) list ( x ) { list α ( x ) ∗ φ } C { ψ }

  28. Ingredients of our Approach: Inductive Predicates • We support user-defjned inductive predicates, e.g. • Predicate labels identify termination measures, e.g. • A logical rule schema allows case split 6/12 x = nil ∧ emp x �→ y ∗ list ( y ) list ( x ) list ( x ) { list α ( x ) ∗ φ } C { ψ } { ( x = nil ∧ emp ) ∗ φ } C { ψ } { ( β < α ∧ x �→ y ∗ list β ( x )) ∗ φ } C { ψ } { list α ( x ) ∗ φ } C { ψ }

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Automatic Cyclic Termination Proofs for Recursive Procedures in Separation Logic Reuben Rowe and

Automatic Cyclic Termination Proofs for Recursive Procedures in Separation Logic Reuben Rowe and

Automatic Cyclic Termination Proofs for Recursive Procedures in Separation Logic Reuben Rowe and James Brotherston University College London TAPAS, Edinburgh, Wednesday 7 th September 2016 Automatically Proving Termination: Challenges proc

815 views • 57 slides
Cyclic Proofs of Program Termination in Separation Logic James Brotherston 1 , Richard Bornat

Cyclic Proofs of Program Termination in Separation Logic James Brotherston 1 , Richard Bornat

Cyclic Proofs of Program Termination in Separation Logic James Brotherston 1 , Richard Bornat 2 , and Cristiano Calcagno 1 1 Imperial College, London 2 Middlesex University, London Me 10 January, 2008 Overview We give a new method for

373 views • 11 slides
An Introduction to Cyclic Proofs (part II) James Brotherston University College London PARIS

An Introduction to Cyclic Proofs (part II) James Brotherston University College London PARIS

An Introduction to Cyclic Proofs (part II) James Brotherston University College London PARIS workshop, FLoC, Oxford, 8th July 2018 1/ 13 Cyclic proofs Cyclic pre-proofs are derivation trees with backlinks: (Axiom)

142 views • 13 slides
Types of Termination Mutual With Consent Termination Automatic Termination

Types of Termination Mutual With Consent Termination Automatic Termination

Types of Termination Mutual With Consent Termination Automatic Termination Termination Termination for Convenience Without Consent Frustration /Force Majeure Contractual Breach Breach Common Law Breach

444 views • 29 slides
An Introduction to Cyclic Proofs James Brotherston University College London PARIS workshop,

An Introduction to Cyclic Proofs James Brotherston University College London PARIS workshop,

An Introduction to Cyclic Proofs James Brotherston University College London PARIS workshop, FLoC, Oxford, 7th July 2018 1/ 21 Cyclic pre-proofs A cyclic pre-proof is a derivation tree with a backlink from each open leaf (bud) to an

818 views • 62 slides
Cyclic abduction of inductive safety &amp; termination preconditions James Brotherston

Cyclic abduction of inductive safety &amp; termination preconditions James Brotherston

Cyclic abduction of inductive safety &amp; termination preconditions James Brotherston University College London LIX Colloquium, Tues 5 Nov 2013 Joint work with Nikos Gorogiannis (Middlesex) 1/ 27 Part I Introduction and motivations 2/ 27

1.54k views • 122 slides
Direct construction of quasi-involutory recursive-like MDS matrices from 2 -cyclic codes Cauchois

Direct construction of quasi-involutory recursive-like MDS matrices from 2 -cyclic codes Cauchois

Involutory recursive MDS matrices Quasi-involutory recursive-like MDS matrices Implementations Direct construction of quasi-involutory recursive-like MDS matrices from 2 -cyclic codes Cauchois Victor 1 Loidreau Pierre 1 Merkiche Nabil 23 1 DGA-MI

540 views • 25 slides
Decision Procedures for Automating Termination Proofs Ruzica Piskac, EPFL Thomas Wies, IST

Decision Procedures for Automating Termination Proofs Ruzica Piskac, EPFL Thomas Wies, IST

Decision Procedures for Automating Termination Proofs Ruzica Piskac, EPFL Thomas Wies, IST Austria Proving Program Termination assum sume x &gt; 0 le x 0 do while do y := 1 while y &lt; x do do y := 2 y end x := x 1 end Ranking

489 views • 28 slides
Encoding Induction in Correctness Proofs of Program Transformations as a Termination Problem

Encoding Induction in Correctness Proofs of Program Transformations as a Termination Problem

Encoding Induction in Correctness Proofs of Program Transformations as a Termination Problem Conrad Rau, David Sabel and Manfred Schmidt-Schau Goethe-University, Frankfurt am Main, Germany WST 2012, Obergurgl, Austria 1 Introduction

307 views • 26 slides
Week 9 Difference Equations Discrete Math April 23, 2020 Marie Demlova: Discrete Math Cyclic

Week 9 Difference Equations Discrete Math April 23, 2020 Marie Demlova: Discrete Math Cyclic

Cyclic groups Difference Equations, Recursive Equations Week 9 Difference Equations Discrete Math April 23, 2020 Marie Demlova: Discrete Math Cyclic groups Subgroups of a Finite Cyclic Group Difference Equations, Recursive Equations Cyclic

405 views • 13 slides
Foundations of Computer Science Lecture 8 Proofs with Recursive Objects Structural Induction:

Foundations of Computer Science Lecture 8 Proofs with Recursive Objects Structural Induction:

Foundations of Computer Science Lecture 8 Proofs with Recursive Objects Structural Induction: Induction on Recursively Defined Objects Proving an object is not in a recursive set Examples: sets, sequences, trees Last Time 1 Recursion. 2

169 views • 15 slides
Equivalence of Inductive Definitions and Cyclic Proofs under Arithmetic Makoto Tatsuta (National

Equivalence of Inductive Definitions and Cyclic Proofs under Arithmetic Makoto Tatsuta (National

Equivalence of Inductive Definitions and Cyclic Proofs under Arithmetic Makoto Tatsuta (National Institute of Informatics) joint work with: Stefano Berardi (Torino University) MLA 2018 Kanazawa, Japan March 59, 2018 1 Introduction

590 views • 15 slides
Foundations of Computer Science Last Time Lecture 8 Proofs with Recursive Objects Structural

Foundations of Computer Science Last Time Lecture 8 Proofs with Recursive Objects Structural

Foundations of Computer Science Last Time Lecture 8 Proofs with Recursive Objects Structural Induction: Induction on Recursively Defined Objects Proving an object is not in a recursive set Examples: sets, sequences, trees 1 Recursion. 2

627 views • 4 slides
Automatic Proofs for Symmetric Encryption Modes e 2 Pascal Lafourcade 1 Yassine Lakhnech 1 Martin

Automatic Proofs for Symmetric Encryption Modes e 2 Pascal Lafourcade 1 Yassine Lakhnech 1 Martin

Automatic Proofs for Symmetric Encryption Modes Automatic Proofs for Symmetric Encryption Modes e 2 Pascal Lafourcade 1 Yassine Lakhnech 1 Martin Gagn Reihaneh Safavi-Naini 2 1 Universit e Grenoble 1, CNRS, Verimag , FRANCE 2 Department of

538 views • 29 slides
Automatic Early Termination under the ISDA, the GMRA, the GMSLA and the EMA: issues and

Automatic Early Termination under the ISDA, the GMRA, the GMSLA and the EMA: issues and

EFMLG Symposium on Standard Market Documentation Automatic Early Termination under the ISDA, the GMRA, the GMSLA and the EMA: issues and perspectives Mario Fiorenzo Bona London, September 15, 2009 Current status: ISDA ISDA Master

132 views • 12 slides
Combinatorial and colorful proofs of cyclic sieving phenomena Bruce Sagan Michigan State

Combinatorial and colorful proofs of cyclic sieving phenomena Bruce Sagan Michigan State

Combinatorial and colorful proofs of cyclic sieving phenomena Bruce Sagan Michigan State University and the National Science Foundation www.math.msu.edu/ sagan and Yuval Roichman Bar Ilan University September 22, 2010 Definitions and an

1.27k views • 101 slides
Compound Monads in Specification Languages Jeremy Dawson Logic and Computation Program, NICTA 1

Compound Monads in Specification Languages Jeremy Dawson Logic and Computation Program, NICTA 1

Introduction The Operational Models The Monads used in these Models Compound Monads in Specification Languages Jeremy Dawson Logic and Computation Program, NICTA 1 Automated Reasoning Group, Australian National University, Canberra, ACT 0200,

456 views • 30 slides
COMP2111 Week 9 Term 1, 2020 Hoare Logic 1 Summary Weakest precondition reasoning Handling

COMP2111 Week 9 Term 1, 2020 Hoare Logic 1 Summary Weakest precondition reasoning Handling

COMP2111 Week 9 Term 1, 2020 Hoare Logic 1 Summary Weakest precondition reasoning Handling termination Operational semantics Adding non-determinism Refinement calculus 2 Summary Weakest precondition reasoning Handling termination

1.22k views • 85 slides
Lecture 15: Software Quality Assurance 2015-07-09 Prof. Dr. Andreas Podelski, Dr. Bernd Westphal

Lecture 15: Software Quality Assurance 2015-07-09 Prof. Dr. Andreas Podelski, Dr. Bernd Westphal

Softwaretechnik / Software-Engineering Lecture 15: Software Quality Assurance 2015-07-09 Prof. Dr. Andreas Podelski, Dr. Bernd Westphal 15 2015-07-09 main Albert-Ludwigs-Universit at Freiburg, Germany Contents of the Block

535 views • 30 slides
Specification as a development task Given precondition and postcondition develop a program S

Specification as a development task Given precondition and postcondition develop a program S

Specification as a development task Given precondition and postcondition develop a program S such that { } S { } Andrzej Tarlecki: Semantics &amp; Verification - 174 - For instance Find S such that { n 0 } S { rt 2 n n

585 views • 22 slides
Minimum Spanning Trees: Prim-Jarnik &amp; Kruskal CS16: Introduction to Data Structures &amp;

Minimum Spanning Trees: Prim-Jarnik &amp; Kruskal CS16: Introduction to Data Structures &amp;

Minimum Spanning Trees: Prim-Jarnik &amp; Kruskal CS16: Introduction to Data Structures &amp; Algorithms Spring 2020 Outline Minimum Spanning Trees Prim-Jarnik Algorithm Analysis Proof of Correctness Kruskals Algorithm

1.07k views • 91 slides
Todays programme: Programming language PLN - syntax Limitations of Program Verification

Todays programme: Programming language PLN - syntax Limitations of Program Verification

Todays programme: Programming language PLN - syntax Limitations of Program Verification Constants: natural numbers: 0, 1, 2,.. To prove fundamental limitations of formalization boolean constants: true, false Program correctness

479 views • 14 slides
CSC2/458 Parallel and Distributed Systems Consensus and Failures Sreepathi Pai April 10, 2018

CSC2/458 Parallel and Distributed Systems Consensus and Failures Sreepathi Pai April 10, 2018

CSC2/458 Parallel and Distributed Systems Consensus and Failures Sreepathi Pai April 10, 2018 URCS Outline The FLP theorem Outline The FLP theorem The Consensus Problem: Informal A set of processes must decide on 0 or 1 as output starting

338 views • 15 slides
JUST THE MATHS SLIDES NUMBER 14.4 PARTIAL DIFFERENTIATION 4 (Exact differentials) by

JUST THE MATHS SLIDES NUMBER 14.4 PARTIAL DIFFERENTIATION 4 (Exact differentials) by

JUST THE MATHS SLIDES NUMBER 14.4 PARTIAL DIFFERENTIATION 4 (Exact differentials) by A.J.Hobson 14.4.1 Total differentials 14.4.2 Testing for exact differentials 14.4.3 Integration of exact differentials UNIT 14.4 PARTIAL

453 views • 11 slides

More recommend