automatic cyclic termination proofs for recursive
play

Automatic Cyclic Termination Proofs for Recursive Procedures in - PowerPoint PPT Presentation

Jul 07, 2023 •237 likes •815 views

Automatic Cyclic Termination Proofs for Recursive Procedures in Separation Logic Reuben Rowe and James Brotherston University College London TAPAS, Edinburgh, Wednesday 7 th September 2016 Automatically Proving Termination: Challenges proc

  1. Automatic Cyclic Termination Proofs for Recursive Procedures in Separation Logic Reuben Rowe and James Brotherston University College London TAPAS, Edinburgh, Wednesday 7 th September 2016

  2. Automatically Proving Termination: Challenges proc shuffle(x) { if x != nil { y := *x; reverse(y); shuffle(y); } } heap manipulation intermediate procedures recursion 1/11

  3. Automatically Proving Termination: Challenges proc shuffle(x) { if x != nil { y := *x; reverse(y); shuffle(y); } } heap manipulation intermediate procedures recursion 1/11

  4. Automatically Proving Termination: Challenges proc shuffle(x) { if x != nil { y := *x; reverse(y); shuffle(y); } } heap manipulation intermediate procedures recursion 1/11

  5. Automatically Proving Termination: Challenges proc shuffle(x) { if x != nil { y := *x; reverse(y); shuffle(y); } } heap manipulation intermediate procedures recursion 1/11

  6. Automatically Proving Termination: Some Solutions • Mutant, Thor • Julia, Costa, AProVE • Dafny • HipTNT 2/11

  7. Automatically Proving Termination: Some Solutions • Mutant, Thor • Julia, Costa, AProVE • Dafny • HipTNT 2/11

  8. Automatically Proving Termination: Some Solutions • Mutant, Thor • Julia, Costa, AProVE • Dafny • HipTNT 2/11

  9. Automatically Proving Termination: Some Solutions • Mutant, Thor • Julia, Costa, AProVE • Dafny 2/11 • HipTNT +

  10. Automatically Proving Termination using Cyclic Proof . • We use the Cyclist framework for automation (Axiom) • Following the approach of Brotherston Et Al. (POPL ’08) (Inference) . 3/11 . . . . . . • • · • · · • . . . . . · • • • · · · φ ⊢ C

  11. Automatically Proving Termination using Cyclic Proof . • We use the Cyclist framework for automation Separation Logic (Axiom) • Following the approach of Brotherston Et Al. (POPL ’08) (Inference) 3/11 . . . . . . . • • · • · · • . . . . . · • • • · · · φ ⊢ C

  12. Automatically Proving Termination using Cyclic Proof (Inference) • We use the Cyclist framework for automation for data Inductive Predicates Separation Logic (Axiom) • Following the approach of Brotherston Et Al. (POPL ’08) 3/11 . . . . . . . . • • · • · · • . . . . . · • • • · · · φ ⊢ C

  13. Automatically Proving Termination using Cyclic Proof (Inference) • We use the Cyclist framework for automation semantics total correctness for data Inductive Predicates Separation Logic (Axiom) • Following the approach of Brotherston Et Al. (POPL ’08) 3/11 . . . . . . . . • • · • · · • . . . . . · • • • · · · φ ⊢ C

  14. Automatically Proving Termination using Cyclic Proof (Inference) • We use the Cyclist framework for automation semantics total correctness for data Inductive Predicates Separation Logic (Axiom) • Following the approach of Brotherston Et Al. (POPL ’08) 3/11 . . . . . . . . • • · • · · • . . . . . · • • • · · · { φ } C { ψ }

  15. Automatically Proving Termination using Cyclic Proof . • We use the Cyclist framework for automation (Axiom) • Following the approach of Brotherston Et Al. (POPL ’08) (Inference) . 3/11 . . . . . . • • · • · · • . . . . . · • • • · · · { φ } C { ψ }

  16. Advantages of Using Cyclic Proof • Termination measures extracted automatically • Supports compositional reasoning • Naturally encapsulates inductive principles 4/11

  17. Advantages of Using Cyclic Proof • Termination measures extracted automatically • Supports compositional reasoning • Naturally encapsulates inductive principles 4/11

  18. Advantages of Using Cyclic Proof • Termination measures extracted automatically • Supports compositional reasoning • Naturally encapsulates inductive principles 4/11

  19. Ingredients of our Approach: Symbolic Execution C proc ( x ) C) (body proc C (proc): v x := * y ; C y (x fresh) x (free): v x y x v x x (load): 5/11 { φ } C { ψ } { φ ∗ x �→ y } free( x ); C { ψ }

  20. Ingredients of our Approach: Symbolic Execution (free): (load): (proc): C (body proc C) proc ( x ) 5/11 { φ } C { ψ } { φ ∗ x �→ y } free( x ); C { ψ } { x = v [ x ′ / x ] ∧ ( φ ∗ y �→ v )[ x ′ / x ] } C { ψ } (x ′ fresh) { φ ∗ y �→ v } x := * y ; C { ψ }

  21. Ingredients of our Approach: Symbolic Execution (free): (load): (proc): 5/11 { φ } C { ψ } { φ ∗ x �→ y } free( x ); C { ψ } { x = v [ x ′ / x ] ∧ ( φ ∗ y �→ v )[ x ′ / x ] } C { ψ } (x ′ fresh) { φ ∗ y �→ v } x := * y ; C { ψ } { φ } C { ψ } (body ( proc ) = C) { φ } proc ( � x ) { ψ }

  22. Ingredients of our Approach: Inductive Predicates emp C x list C x list y x C nil • We support user-defjned inductive predicates, e.g. x • A logical rule schema allows case split C x list • Explicit approximations used as termination measures, e.g. 6/11 x = nil ∧ emp x �→ y ∗ list ( y ) list ( x ) list ( x )

  23. Ingredients of our Approach: Inductive Predicates C C x list C x list y x emp • We support user-defjned inductive predicates, e.g. nil x • A logical rule schema allows case split • Explicit approximations used as termination measures, e.g. 6/11 x = nil ∧ emp x �→ y ∗ list ( y ) list ( x ) list ( x ) { list α ( x ) ∗ φ } C { ψ }

  24. Ingredients of our Approach: Inductive Predicates • We support user-defjned inductive predicates, e.g. • Explicit approximations used as termination measures, e.g. • A logical rule schema allows case split 6/11 x = nil ∧ emp x �→ y ∗ list ( y ) list ( x ) list ( x ) { list α ( x ) ∗ φ } C { ψ } { ( x = nil ∧ emp ) ∗ φ } C { ψ } { ( β < α ∧ x �→ y ∗ list β ( x )) ∗ φ } C { ψ } { list α ( x ) ∗ φ } C { ψ }

  25. Ingredients of our Approach: Inductive Predicates • We support user-defjned inductive predicates, e.g. • Explicit approximations used as termination measures, e.g. • A logical rule schema allows case split 6/11 x = nil ∧ emp x �→ y ∗ list ( y ) list ( x ) list ( x ) { list α ( x ) ∗ φ } C { ψ } { ( x = nil ∧ emp ) ∗ φ } C { ψ } { ( β < α ∧ x �→ y ∗ list β ( x )) ∗ φ } C { ψ } { list α ( x ) ∗ φ } C { ψ }

  26. A Cyclic Termination Proof for shuffle proc shuffle(x) { if x!=nil { y:=*x; reverse(y); shuffle(y); } } 7/11

  27. A Cyclic Termination Proof for shuffle proc shuffle(x) { if x!=nil { y:=*x; reverse(y); shuffle(y); } } 7/11 · · · { list β ( y ) } reverse(y) { list β ( y ) }

  28. A Cyclic Termination Proof for shuffle proc shuffle(x) { if x!=nil { y:=*x; reverse(y); shuffle(y); } } 7/11 { list α ( x ) } shuffle(x) { list α ( x ) }

  29. A Cyclic Termination Proof for shuffle rev(y); v list v x (load) x list y list list y x (seq) x list shuf(y); y:=*x; x proc shuffle(x) { if x!=nil { y:=*x; reverse(y); shuffle(y); } } x (proc) (if) x list x list nil ) (case list ) ( x list y:=*x; x list nil x y list y list list y list y x rev(y); y y x x frame y list rev(y); y list x shuf(x); list x (conseq) y list y x shuf(y); y list y x (frame) y list shuf(y); y list (subst) 7/11 { list α ( x ) } if x!=nil { y:=*x; reverse(y); shuffle(y); *x:=y; } { list α ( x ) } { list α ( x ) } shuffle(x) { list α ( x ) }

  30. A Cyclic Termination Proof for shuffle rev(y); v list v x (load) x list y list list y x (seq) x list shuf(y); y:=*x; x proc shuffle(x) { if x!=nil { y:=*x; reverse(y); shuffle(y); } } x (proc) (if) x list x list nil ) (case list ) ( x list y:=*x; x list nil x y list y list list y list y x rev(y); y y x x frame y list rev(y); y list x shuf(x); list x (conseq) y list y x shuf(y); y list y x (frame) y list shuf(y); y list (subst) 7/11 { list α ( x ) } if x!=nil . . . { list α ( x ) } { list α ( x ) } shuffle(x) { list α ( x ) }

  31. A Cyclic Termination Proof for shuffle rev(y); y (conseq) x y list y shuf(y); list x (seq) x y list y list y x (load) x v list v y:=*x; list x (case list ) ( ) (if) (proc) proc shuffle(x) { if x!=nil { y:=*x; reverse(y); shuffle(y); } } list x y list y rev(y); list y frame x y list y rev(y); x y shuf(y); list list list y list y x (frame) x y shuf(y); y list (subst) x list shuf(x); 7/11 { x � = nil ∧ list α ( x ) } y:=*x; . . . { list α ( x ) } { x = nil ∧ list α ( x ) } ǫ { list α ( x ) } { list α ( x ) } if x!=nil . . . { list α ( x ) } { list α ( x ) } shuffle(x) { list α ( x ) }

  32. A Cyclic Termination Proof for shuffle list proc shuffle(x) { if x!=nil { y:=*x; reverse(y); shuffle(y); } } y (conseq) x y list y shuf(y); list x (seq) x y y x rev(y); list x (load) x v list v y:=*x; list x (case list ) (if) (proc) y list shuf(y); y list y rev(y); list y frame x y list y rev(y); x y list y list list list y x x y (frame) shuf(y); y list (subst) x list shuf(x); 7/11 ( | = ) { x � = nil ∧ list α ( x ) } y:=*x; . . . { list α ( x ) } { x = nil ∧ list α ( x ) } ǫ { list α ( x ) } { list α ( x ) } if x!=nil . . . { list α ( x ) } { list α ( x ) } shuffle(x) { list α ( x ) }

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Automatic Cyclic Termination Proofs for Recursive Procedures in Separation Logic Reuben Rowe,

Automatic Cyclic Termination Proofs for Recursive Procedures in Separation Logic Reuben Rowe,

Automatic Cyclic Termination Proofs for Recursive Procedures in Separation Logic Reuben Rowe, University of Kent, Canterbury James Brotherston, University College London CPP, Paris, France Monday 16 th January 2017 Automatically Proving

741 views • 70 slides
Cyclic Proofs of Program Termination in Separation Logic James Brotherston 1 , Richard Bornat

Cyclic Proofs of Program Termination in Separation Logic James Brotherston 1 , Richard Bornat

Cyclic Proofs of Program Termination in Separation Logic James Brotherston 1 , Richard Bornat 2 , and Cristiano Calcagno 1 1 Imperial College, London 2 Middlesex University, London Me 10 January, 2008 Overview We give a new method for

373 views • 11 slides
An Introduction to Cyclic Proofs (part II) James Brotherston University College London PARIS

An Introduction to Cyclic Proofs (part II) James Brotherston University College London PARIS

An Introduction to Cyclic Proofs (part II) James Brotherston University College London PARIS workshop, FLoC, Oxford, 8th July 2018 1/ 13 Cyclic proofs Cyclic pre-proofs are derivation trees with backlinks: (Axiom)

142 views • 13 slides
Types of Termination Mutual With Consent Termination Automatic Termination

Types of Termination Mutual With Consent Termination Automatic Termination

Types of Termination Mutual With Consent Termination Automatic Termination Termination Termination for Convenience Without Consent Frustration /Force Majeure Contractual Breach Breach Common Law Breach

444 views • 29 slides
An Introduction to Cyclic Proofs James Brotherston University College London PARIS workshop,

An Introduction to Cyclic Proofs James Brotherston University College London PARIS workshop,

An Introduction to Cyclic Proofs James Brotherston University College London PARIS workshop, FLoC, Oxford, 7th July 2018 1/ 21 Cyclic pre-proofs A cyclic pre-proof is a derivation tree with a backlink from each open leaf (bud) to an

818 views • 62 slides
Cyclic abduction of inductive safety &amp; termination preconditions James Brotherston

Cyclic abduction of inductive safety &amp; termination preconditions James Brotherston

Cyclic abduction of inductive safety &amp; termination preconditions James Brotherston University College London LIX Colloquium, Tues 5 Nov 2013 Joint work with Nikos Gorogiannis (Middlesex) 1/ 27 Part I Introduction and motivations 2/ 27

1.54k views • 122 slides
Direct construction of quasi-involutory recursive-like MDS matrices from 2 -cyclic codes Cauchois

Direct construction of quasi-involutory recursive-like MDS matrices from 2 -cyclic codes Cauchois

Involutory recursive MDS matrices Quasi-involutory recursive-like MDS matrices Implementations Direct construction of quasi-involutory recursive-like MDS matrices from 2 -cyclic codes Cauchois Victor 1 Loidreau Pierre 1 Merkiche Nabil 23 1 DGA-MI

540 views • 25 slides
Decision Procedures for Automating Termination Proofs Ruzica Piskac, EPFL Thomas Wies, IST

Decision Procedures for Automating Termination Proofs Ruzica Piskac, EPFL Thomas Wies, IST

Decision Procedures for Automating Termination Proofs Ruzica Piskac, EPFL Thomas Wies, IST Austria Proving Program Termination assum sume x &gt; 0 le x 0 do while do y := 1 while y &lt; x do do y := 2 y end x := x 1 end Ranking

489 views • 28 slides
Encoding Induction in Correctness Proofs of Program Transformations as a Termination Problem

Encoding Induction in Correctness Proofs of Program Transformations as a Termination Problem

Encoding Induction in Correctness Proofs of Program Transformations as a Termination Problem Conrad Rau, David Sabel and Manfred Schmidt-Schau Goethe-University, Frankfurt am Main, Germany WST 2012, Obergurgl, Austria 1 Introduction

307 views • 26 slides
Week 9 Difference Equations Discrete Math April 23, 2020 Marie Demlova: Discrete Math Cyclic

Week 9 Difference Equations Discrete Math April 23, 2020 Marie Demlova: Discrete Math Cyclic

Cyclic groups Difference Equations, Recursive Equations Week 9 Difference Equations Discrete Math April 23, 2020 Marie Demlova: Discrete Math Cyclic groups Subgroups of a Finite Cyclic Group Difference Equations, Recursive Equations Cyclic

405 views • 13 slides
Foundations of Computer Science Lecture 8 Proofs with Recursive Objects Structural Induction:

Foundations of Computer Science Lecture 8 Proofs with Recursive Objects Structural Induction:

Foundations of Computer Science Lecture 8 Proofs with Recursive Objects Structural Induction: Induction on Recursively Defined Objects Proving an object is not in a recursive set Examples: sets, sequences, trees Last Time 1 Recursion. 2

169 views • 15 slides
Equivalence of Inductive Definitions and Cyclic Proofs under Arithmetic Makoto Tatsuta (National

Equivalence of Inductive Definitions and Cyclic Proofs under Arithmetic Makoto Tatsuta (National

Equivalence of Inductive Definitions and Cyclic Proofs under Arithmetic Makoto Tatsuta (National Institute of Informatics) joint work with: Stefano Berardi (Torino University) MLA 2018 Kanazawa, Japan March 59, 2018 1 Introduction

590 views • 15 slides
Foundations of Computer Science Last Time Lecture 8 Proofs with Recursive Objects Structural

Foundations of Computer Science Last Time Lecture 8 Proofs with Recursive Objects Structural

Foundations of Computer Science Last Time Lecture 8 Proofs with Recursive Objects Structural Induction: Induction on Recursively Defined Objects Proving an object is not in a recursive set Examples: sets, sequences, trees 1 Recursion. 2

627 views • 4 slides
Automatic Proofs for Symmetric Encryption Modes e 2 Pascal Lafourcade 1 Yassine Lakhnech 1 Martin

Automatic Proofs for Symmetric Encryption Modes e 2 Pascal Lafourcade 1 Yassine Lakhnech 1 Martin

Automatic Proofs for Symmetric Encryption Modes Automatic Proofs for Symmetric Encryption Modes e 2 Pascal Lafourcade 1 Yassine Lakhnech 1 Martin Gagn Reihaneh Safavi-Naini 2 1 Universit e Grenoble 1, CNRS, Verimag , FRANCE 2 Department of

538 views • 29 slides
Automatic Early Termination under the ISDA, the GMRA, the GMSLA and the EMA: issues and

Automatic Early Termination under the ISDA, the GMRA, the GMSLA and the EMA: issues and

EFMLG Symposium on Standard Market Documentation Automatic Early Termination under the ISDA, the GMRA, the GMSLA and the EMA: issues and perspectives Mario Fiorenzo Bona London, September 15, 2009 Current status: ISDA ISDA Master

132 views • 12 slides
Combinatorial and colorful proofs of cyclic sieving phenomena Bruce Sagan Michigan State

Combinatorial and colorful proofs of cyclic sieving phenomena Bruce Sagan Michigan State

Combinatorial and colorful proofs of cyclic sieving phenomena Bruce Sagan Michigan State University and the National Science Foundation www.math.msu.edu/ sagan and Yuval Roichman Bar Ilan University September 22, 2010 Definitions and an

1.27k views • 101 slides
ggeqt.FI IItaeA Imt Ker h add Ae prg A.TT B B B pmjAkes EAe3 Recollement of abelian cat's

ggeqt.FI IItaeA Imt Ker h add Ae prg A.TT B B B pmjAkes EAe3 Recollement of abelian cat's

lk1k field cat of f cog Htt comod cat cat of f g mod cat mod right comod add 1h linear category 1k cat a A f d.lk alg AEA proj Ican.my 1k cat's Vasserotivaragaolo of Short exact sequence G B B B O o i findary 1k cat's Bi F fully

176 views • 4 slides
Question-Answering: Overview Ling573 Systems &amp; Applications April 3, 2014 Roadmap

Question-Answering: Overview Ling573 Systems &amp; Applications April 3, 2014 Roadmap

Question-Answering: Overview Ling573 Systems &amp; Applications April 3, 2014 Roadmap Dimensions of the problem A (very) brief history Architecture of a QA system QA and resources Evaluation Challenges

445 views • 17 slides
Classification March 19, 2020 Data Science CSCI 1951A Brown University Instructor: Ellie

Classification March 19, 2020 Data Science CSCI 1951A Brown University Instructor: Ellie

Classification March 19, 2020 Data Science CSCI 1951A Brown University Instructor: Ellie Pavlick HTAs: Josh Levin, Diane Mutako, Sol Zitter 1 Today Generative vs. Discriminative Models KNN, Naive Bayes, Logistic Regression SciKit

1.44k views • 99 slides
Arlington Democrats July 2020 General Meeting July 1, 2020 7:00 PM Welcome to Resisting While

Arlington Democrats July 2020 General Meeting July 1, 2020 7:00 PM Welcome to Resisting While

Arlington Democrats July 2020 General Meeting July 1, 2020 7:00 PM Welcome to Resisting While Social Distancing And Welcome to a New Day in Virginia! Thanks to your votes and the new Democratic majority in the General Assembly, many great

1.23k views • 84 slides
SpecNet: Spectrum Sensing Sans Frontires Anand Iyer * , Krishna Chintalapudi * , Vishnu Navda *

SpecNet: Spectrum Sensing Sans Frontires Anand Iyer * , Krishna Chintalapudi * , Vishnu Navda *

SpecNet: Spectrum Sensing Sans Frontires Anand Iyer * , Krishna Chintalapudi * , Vishnu Navda * , Ramachandran Ramjee * , Venkata N. Padmanabhan * and Chandra R. Murthy + + Indian Institute of Science * Microsoft Research India Spectrum

533 views • 42 slides
R . O. U . T. E . S . w w w. t r a n s p o r t a t i o n . g o v / r u r a l R . O . U . T . E .

R . O. U . T. E . S . w w w. t r a n s p o r t a t i o n . g o v / r u r a l R . O . U . T . E .

R U R A L O P P O R T U N I T I E S TO U S E T R A N S P O R TAT I O N F O R E C O N O M I C S U C C E S S R . O. U . T. E . S . w w w. t r a n s p o r t a t i o n . g o v / r u r a l R . O . U . T . E . S . 1 U . S . D E P A R T M E N

756 views • 23 slides
Outline The eXpressive Internet Architecture a proposal Example and concepts E l d

Outline The eXpressive Internet Architecture a proposal Example and concepts E l d

6/29/2011 XIA: An Architecture for a Trustworthy and Evolvable Internet Peter Steenkiste Dave Andersen, David Eckhardt, Sara Kiesler, Jon Peha, Adrian Perrig, Srini Seshan, Marvin Sirbu, Hui Zhang Carnegie Mellon University Aditya Akella, University

678 views • 21 slides
Trainer: Mr Roger Lee (TAPA-APAC Hon Secretary) Date: 2-Apr 2020 Supported by Jollibee

Trainer: Mr Roger Lee (TAPA-APAC Hon Secretary) Date: 2-Apr 2020 Supported by Jollibee

Trainer: Mr Elliot Lee (Managing Partner IOF Consulants) Trainer: Mr Roger Lee (TAPA-APAC Hon Secretary) Date: 2-Apr 2020 Supported by Jollibee (Philippines) Supply Chain Resilience Framework Business Continuity Management in Supply Chain

577 views • 21 slides

More recommend