compositional computational reflection
play

Compositional Computational Reflection Gregory Malecha Adam - PowerPoint PPT Presentation

Oct 13, 2022 •114 likes •653 views

Compositional Computational Reflection Gregory Malecha Adam Chlipala Thomas Braibant gmalecha@cs.harvard.edu Harvard SEAS MIT CSAIL Inria July 17, 2014 MirrorShard (ITP14) 1 / 13 Program Verification in Bedrock [Chl11] Imperative

  1. Compositional Computational Reflection Gregory Malecha Adam Chlipala Thomas Braibant gmalecha@cs.harvard.edu Harvard SEAS MIT CSAIL Inria July 17, 2014 MirrorShard (ITP’14) 1 / 13

  2. Program Verification in Bedrock [Chl11] Imperative Program Hints / Theorems bfunction "length" ( "x" , "n" ) [ lengthS ] Def sll : list W → W → HProp := ... "n" ← 0;; [ ∀ ls , PRE [ V ] sll ls ( V "x" ) Thm nil_fwd : ∀ ls ( p : W ), p = 0 POST [ R ] ⌈ R = V "n" + length ls ⌉ → sll ls p ⊢ ⌈ ls = nil ⌉ . ∗ sll ls ( V "x" )] Proof . .. Qed . While (” x ” � = 0 ) { ” n ” ← ” n ” + 1 ; ; Thm cons_fwd : ∀ ls ( p : W ), p � = 0 ” x ” ← ” x ” + 4 ; ; → sll ls p ⊢ ” x ” ← ∗ ” x ” ∃ x , ∃ ls ’, ⌈ ls = x :: ls ’ ⌉ ∗ } ; ; ∃ p ’, p �→ ( x , p ’) ∗ sll ls ’ p ’. Return "n" Proof . .. Qed . Thm sllMOk : moduleOk sllM . Proof . vcgen ; abstract ( sep hints ; finish ). Qed . Bedrock MirrorShard (ITP’14) 2 / 13

  3. Program Verification in Bedrock [Chl11] Imperative Program Hints / Theorems bfunction "length" ( "x" , "n" ) [ lengthS ] Def sll : list W → W → HProp := ... "n" ← 0;; [ ∀ ls , PRE [ V ] sll ls ( V "x" ) Thm nil_fwd : ∀ ls ( p : W ), p = 0 POST [ R ] ⌈ R = V "n" + length ls ⌉ → sll ls p ⊢ ⌈ ls = nil ⌉ . ∗ sll ls ( V "x" )] Proof . .. Qed . While (” x ” � = 0 ) { ” n ” ← ” n ” + 1 ; ; Thm cons_fwd : ∀ ls ( p : W ), p � = 0 ” x ” ← ” x ” + 4 ; ; → sll ls p ⊢ ” x ” ← ∗ ” x ” ∃ x , ∃ ls ’, ⌈ ls = x :: ls ’ ⌉ ∗ } ; ; ∃ p ’, p �→ ( x , p ’) ∗ sll ls ’ p ’. Return "n" Proof . .. Qed . Thm sllMOk : moduleOk sllM . Proof . vcgen ; abstract ( sep hints ; finish ). Qed . VC-gen Bedrock MirrorShard (ITP’14) 2 / 13

  4. Program Verification in Bedrock [Chl11] Imperative Program Hints / Theorems bfunction "length" ( "x" , "n" ) [ lengthS ] Def sll : list W → W → HProp := ... "n" ← 0;; [ ∀ ls , PRE [ V ] sll ls ( V "x" ) Thm nil_fwd : ∀ ls ( p : W ), p = 0 POST [ R ] ⌈ R = V "n" + length ls ⌉ → sll ls p ⊢ ⌈ ls = nil ⌉ . ∗ sll ls ( V "x" )] Proof . .. Qed . While (” x ” � = 0 ) { ” n ” ← ” n ” + 1 ; ; Thm cons_fwd : ∀ ls ( p : W ), p � = 0 ” x ” ← ” x ” + 4 ; ; → sll ls p ⊢ ” x ” ← ∗ ” x ” ∃ x , ∃ ls ’, ⌈ ls = x :: ls ’ ⌉ ∗ } ; ; ∃ p ’, p �→ ( x , p ’) ∗ sll ls ’ p ’. Return "n" Proof . .. Qed . Thm sllMOk : moduleOk sllM . Proof . vcgen ; abstract ( sep hints ; finish ). Qed . VC-gen HO Bedrock MirrorShard (ITP’14) 2 / 13

  5. Program Verification in Bedrock [Chl11] Imperative Program Hints / Theorems bfunction "length" ( "x" , "n" ) [ lengthS ] Def sll : list W → W → HProp := ... "n" ← 0;; [ ∀ ls , PRE [ V ] sll ls ( V "x" ) Thm nil_fwd : ∀ ls ( p : W ), p = 0 POST [ R ] ⌈ R = V "n" + length ls ⌉ → sll ls p ⊢ ⌈ ls = nil ⌉ . ∗ sll ls ( V "x" )] Proof . .. Qed . While (” x ” � = 0 ) { ” n ” ← ” n ” + 1 ; ; Thm cons_fwd : ∀ ls ( p : W ), p � = 0 ” x ” ← ” x ” + 4 ; ; → sll ls p ⊢ ” x ” ← ∗ ” x ” ∃ x , ∃ ls ’, ⌈ ls = x :: ls ’ ⌉ ∗ } ; ; ∃ p ’, p �→ ( x , p ’) ∗ sll ls ’ p ’. Return "n" Proof . .. Qed . Thm sllMOk : moduleOk sllM . Proof . vcgen ; abstract ( sep hints ; finish ). Qed . VC-gen HO Sym Exec Bedrock MirrorShard (ITP’14) 2 / 13

  6. Program Verification in Bedrock [Chl11] Imperative Program Hints / Theorems bfunction "length" ( "x" , "n" ) [ lengthS ] Def sll : list W → W → HProp := ... "n" ← 0;; [ ∀ ls , PRE [ V ] sll ls ( V "x" ) Thm nil_fwd : ∀ ls ( p : W ), p = 0 POST [ R ] ⌈ R = V "n" + length ls ⌉ → sll ls p ⊢ ⌈ ls = nil ⌉ . ∗ sll ls ( V "x" )] Proof . .. Qed . While (” x ” � = 0 ) { ” n ” ← ” n ” + 1 ; ; Thm cons_fwd : ∀ ls ( p : W ), p � = 0 ” x ” ← ” x ” + 4 ; ; → sll ls p ⊢ ” x ” ← ∗ ” x ” ∃ x , ∃ ls ’, ⌈ ls = x :: ls ’ ⌉ ∗ } ; ; ∃ p ’, p �→ ( x , p ’) ∗ sll ls ’ p ’. Return "n" Proof . .. Qed . Thm sllMOk : moduleOk sllM . Proof . vcgen ; abstract ( sep hints ; finish ). Qed . VC-gen HO Sym Exec HO Bedrock MirrorShard (ITP’14) 2 / 13

  7. Program Verification in Bedrock [Chl11] Imperative Program Hints / Theorems bfunction "length" ( "x" , "n" ) [ lengthS ] Def sll : list W → W → HProp := ... "n" ← 0;; [ ∀ ls , PRE [ V ] sll ls ( V "x" ) Thm nil_fwd : ∀ ls ( p : W ), p = 0 POST [ R ] ⌈ R = V "n" + length ls ⌉ → sll ls p ⊢ ⌈ ls = nil ⌉ . ∗ sll ls ( V "x" )] Proof . .. Qed . While (” x ” � = 0 ) { ” n ” ← ” n ” + 1 ; ; Thm cons_fwd : ∀ ls ( p : W ), p � = 0 ” x ” ← ” x ” + 4 ; ; → sll ls p ⊢ ” x ” ← ∗ ” x ” ∃ x , ∃ ls ’, ⌈ ls = x :: ls ’ ⌉ ∗ } ; ; ∃ p ’, p �→ ( x , p ’) ∗ sll ls ’ p ’. Return "n" Proof . .. Qed . Thm sllMOk : moduleOk sllM . Proof . vcgen ; abstract ( sep hints ; finish ). Qed . VC-gen HO Sym Exec HO Entailment Bedrock MirrorShard (ITP’14) 2 / 13

  8. Program Verification in Bedrock [Chl11] Imperative Program Hints / Theorems bfunction "length" ( "x" , "n" ) [ lengthS ] Def sll : list W → W → HProp := ... "n" ← 0;; [ ∀ ls , PRE [ V ] sll ls ( V "x" ) Thm nil_fwd : ∀ ls ( p : W ), p = 0 POST [ R ] ⌈ R = V "n" + length ls ⌉ → sll ls p ⊢ ⌈ ls = nil ⌉ . ∗ sll ls ( V "x" )] Proof . .. Qed . While (” x ” � = 0 ) { ” n ” ← ” n ” + 1 ; ; Thm cons_fwd : ∀ ls ( p : W ), p � = 0 ” x ” ← ” x ” + 4 ; ; → sll ls p ⊢ ” x ” ← ∗ ” x ” ∃ x , ∃ ls ’, ⌈ ls = x :: ls ’ ⌉ ∗ } ; ; ∃ p ’, p �→ ( x , p ’) ∗ sll ls ’ p ’. Return "n" Proof . .. Qed . Thm sllMOk : moduleOk sllM . Proof . vcgen ; abstract ( sep hints ; finish ). Qed . VC-gen HO Sym Exec HO Entailment Bedrock MirrorShard (ITP’14) 2 / 13

  9. Ltac-based Symbolic Execution Coq’s tactic language Ltac Automation bfunction "length" ( "x" , "n" ) [ lengthS ] "n" ← 0;; [ ∀ ls , Ltac sym_eval := PRE [ V ] sll ls ( V "x" ) repeat first POST [ R ] ⌈ R = V "n" + length ls ⌉ ∗ sll ls ( V "x" )] [ eapply step_read ; side_condition While ( "x" � = 0) { | ... "n" ← "n" + 1;; "x" ← "x" + 4;; | autorewrite with lemmas ]. "x" ← ∗ "x" } ;; Return "n" P ′′′ ⊢ R { P ′′′ } c 4 { R } ... { P ′′ } c 3 ; c 4 { R } ... { P ′ } c 2 ; c 3 ; c 4 { R } ... { P } c 1 ; c 2 ; c 3 ; c 4 { R } Bedrock MirrorShard (ITP’14) 3 / 13

  10. Ltac-based Symbolic Execution Ltac Automation bfunction "length" ( "x" , "n" ) [ lengthS ] "n" ← 0;; [ ∀ ls , Ltac sym_eval := PRE [ V ] sll ls ( V "x" ) repeat first POST [ R ] ⌈ R = V "n" + length ls ⌉ ∗ sll ls ( V "x" )] [ eapply step_read ; side_condition While ( "x" � = 0) { | ... "n" ← "n" + 1;; "x" ← "x" + 4;; | autorewrite with lemmas ]. "x" ← ∗ "x" } ;; Return "n" P ′′′ ⊢ R { P ′′′ } c 4 { R } ... { P ′′ } c 3 ; c 4 { R } ... { P ′ } c 2 ; c 3 ; c 4 { R } ... { P } c 1 ; c 2 ; c 3 ; c 4 { R } assume x � = 0 c 1 Bedrock MirrorShard (ITP’14) 3 / 13

  11. Ltac-based Symbolic Execution Ltac Automation bfunction "length" ( "x" , "n" ) [ lengthS ] "n" ← 0;; [ ∀ ls , Ltac sym_eval := PRE [ V ] sll ls ( V "x" ) repeat first POST [ R ] ⌈ R = V "n" + length ls ⌉ ∗ sll ls ( V "x" )] [ eapply step_read ; side_condition While ( "x" � = 0) { | ... "n" ← "n" + 1;; "x" ← "x" + 4;; | autorewrite with lemmas ]. "x" ← ∗ "x" } ;; Return "n" P ′′′ ⊢ R { P ′′′ } c 4 { R } ... { P ′′ } c 3 ; c 4 { R } ... { P ′ } c 2 ; c 3 ; c 4 { R } ... { P } c 1 ; c 2 ; c 3 ; c 4 { R } assume x � = 0 n ← n + 1 c 1 c 2 Bedrock MirrorShard (ITP’14) 3 / 13

  12. Ltac-based Symbolic Execution Ltac Automation bfunction "length" ( "x" , "n" ) [ lengthS ] "n" ← 0;; [ ∀ ls , Ltac sym_eval := PRE [ V ] sll ls ( V "x" ) repeat first POST [ R ] ⌈ R = V "n" + length ls ⌉ ∗ sll ls ( V "x" )] [ eapply step_read ; side_condition While ( "x" � = 0) { | ... "n" ← "n" + 1;; "x" ← "x" + 4;; | autorewrite with lemmas ]. "x" ← ∗ "x" } ;; Return "n" P ′′′ ⊢ R { P ′′′ } c 4 { R } ... { P ′′ } c 3 ; c 4 { R } ... { P ′ } c 2 ; c 3 ; c 4 { R } ... { P } c 1 ; c 2 ; c 3 ; c 4 { R } assume x � = 0 n ← n + 1 x ← x + 4 c 1 c 2 c 3 Bedrock MirrorShard (ITP’14) 3 / 13

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Topic 9: Lighting & Reflection models Lighting & reflection The Phong reflection

Topic 9: Lighting & Reflection models Lighting & reflection The Phong reflection

9/10/2016 Topic 9: Lighting & Reflection models Lighting & reflection The Phong reflection model diffuse component ambient component specular component Spot the differences Terminology Illumination The transport

339 views • 5 slides
Topic 8: Lighting & Reflection models Lighting & reflection The Phong reflection

Topic 8: Lighting & Reflection models Lighting & reflection The Phong reflection

Topic 8: Lighting & Reflection models Lighting & reflection The Phong reflection model diffuse component ambient component specular component Showtime Logistics Welcome back Professor Singh is away for the

1.24k views • 87 slides
Topic 10: Lighting & Reflection models Lighting & reflection The Phong reflection

Topic 10: Lighting & Reflection models Lighting & reflection The Phong reflection

Topic 10: Lighting & Reflection models Lighting & reflection The Phong reflection model diffuse component ambient component specular component Spot the differences Terminology Illumination The transport of

1.08k views • 30 slides
Concept Alignment for Compositional Translation Aarne Ranta Department of Computer Science and

Concept Alignment for Compositional Translation Aarne Ranta Department of Computer Science and

Concept Alignment for Compositional Translation Aarne Ranta Department of Computer Science and Engineering, Chalmers & University of Gothenburg and Digital Grammars AB Logic and Algorithms in Computational Linguistics (LACompLing2018)

1.15k views • 78 slides
A Compositional Logic A Compositional Logic for Control Flow for Control Flow Gang Tan, Boston

A Compositional Logic A Compositional Logic for Control Flow for Control Flow Gang Tan, Boston

A Compositional Logic A Compositional Logic for Control Flow for Control Flow Gang Tan, Boston College g , g Andrew W. Appel, Princeton University Jan 8 2006 Jan 8, 2006 1 Mobile Code Security Protect trusted system against

561 views • 26 slides
Specular Reflection CS418 Computer Graphics John C. Hart Diffuse Reflection diffuse reflection

Specular Reflection CS418 Computer Graphics John C. Hart Diffuse Reflection diffuse reflection

Specular Reflection CS418 Computer Graphics John C. Hart Diffuse Reflection diffuse reflection Specular Reflection diffuse reflection diffuse + specular reflection Specular Reflection n v l Specular gleem is a diffused mirror

860 views • 19 slides
Reflection is a way of thinking about learning and What is reflection? Employability skills The

Reflection is a way of thinking about learning and What is reflection? Employability skills The

Reflection is a way of thinking about learning and What is reflection? Employability skills The EURO Process How to access Advantage and the EE resources Q&A might take you Reflection is a way of thinking about learning and helping you to

457 views • 29 slides
VI. Using the Self-Reflection Rubric for Dialogue and Reflection Alicia Ausara, Senior Manager of

VI. Using the Self-Reflection Rubric for Dialogue and Reflection Alicia Ausara, Senior Manager of

VI. Using the Self-Reflection Rubric for Dialogue and Reflection Alicia Ausara, Senior Manager of Training, California Collaborative for Educational Excellence California English Learner Roadmap Launch Event Self-Reflection Rubric Purpose

274 views • 6 slides
Refinement Calculus for Compositional System Reasoning Viorel Preoteasa Joint work with Stavros

Refinement Calculus for Compositional System Reasoning Viorel Preoteasa Joint work with Stavros

Relational Interfaces and Refinement Calculus for Compositional System Reasoning Viorel Preoteasa Joint work with Stavros Tripakis and Iulia Dragomir 08.12.2015 Computational Logic Day 2015 1 Overview Motivation General refinement

341 views • 20 slides
FDP101X: Lab Assignment 2 REFLECTION SPOT ACTIVITY IMAGE ON ALU IN MICROPROCESSOR Reflection

FDP101X: Lab Assignment 2 REFLECTION SPOT ACTIVITY IMAGE ON ALU IN MICROPROCESSOR Reflection

FDP101X: Lab Assignment 2 REFLECTION SPOT ACTIVITY IMAGE ON ALU IN MICROPROCESSOR Reflection Spot time stamp : #Reflection Spot time: (12.12) Reflection Spot question What is ALU? Answer ALU is a temperory register used to hold

186 views • 15 slides
Semi-stationary reflection, stationary reflection and combinatorics Hiroshi Sakai (joint work

Semi-stationary reflection, stationary reflection and combinatorics Hiroshi Sakai (joint work

Semi-stationary reflection, stationary reflection and combinatorics Hiroshi Sakai (joint work with Boban Veli ckovi c) October 28, 2010 1.1 Stationary reflection For a cardinal 2 , the stationary reflection in [ ] is

157 views • 14 slides
Bruno Gavranovi c SYCO2 Compositional Deep Learning December 18, 2018 1 / 36 Compositional

Bruno Gavranovi c SYCO2 Compositional Deep Learning December 18, 2018 1 / 36 Compositional

Bruno Gavranovi c SYCO2 Compositional Deep Learning December 18, 2018 1 / 36 Compositional Deep Learning Bruno Gavranovi c Faculty of Electrical Engineering and Computing (FER) University of Zagreb, Croatia bruno.gavranovic@fer.hr

1.22k views • 102 slides
s X reflecting hyperplane

s X reflecting hyperplane

Reflection groups and q -reflection groups Yuri Bazlov Geometry seminar 24 November 2009 Reflections vector space over k , is finite. s is a (pseudo) reflection if s is of finite order,

753 views • 23 slides
Advanced Java Course Reflection Reflection API What if you want to access information not

Advanced Java Course Reflection Reflection API What if you want to access information not

Advanced Java Course Reflection Reflection API What if you want to access information not just about the Object, but about that Objects Class? What if you want to access a method, field, or constructor whose name you dont know

574 views • 23 slides
Introduction to neutron reflection Adrian Rennie Outline Inteference of waves Refractive index

Introduction to neutron reflection Adrian Rennie Outline Inteference of waves Refractive index

Introduction to neutron reflection Adrian Rennie Outline Inteference of waves Refractive index Critical angle, total reflection Reflection Light oil water Reflection Light oil water Reflection and Refraction: Snells Law For

1.04k views • 66 slides
Compositional Real-Time Scheduling Framework Insik Shin 1 , Insup Lee 1 1 University of

Compositional Real-Time Scheduling Framework Insik Shin 1 , Insup Lee 1 1 University of

Compositional Framework Bounded Delay Resource Model Schedulability Analysis Utilization Bounds Component Abstraction Conclusion Compositional Real-Time Scheduling Framework Insik Shin 1 , Insup Lee 1 1 University of Pennsylvania 15 November

362 views • 33 slides
Lightweight proof by reflection using a posteriori simulation of effectful computation Guillaume

Lightweight proof by reflection using a posteriori simulation of effectful computation Guillaume

Lightweight proof by reflection using a posteriori simulation of effectful computation Guillaume Claret 1 Lourdes del Carmen Gonzlez Huesca 1 Yann Rgis-Gianas 1 Beta Ziliani 2 lgonzale@pps.univ-paris-diderot.fr 1 PPS, team r 2 (University

882 views • 62 slides
q t

q t

q t r Prr t tt r t q t

437 views • 11 slides
Cloudster K -means algorithm for cloud computing {stephane.caron, guillaume.claret,

Cloudster K -means algorithm for cloud computing {stephane.caron, guillaume.claret,

Cloudster ? Design User interaction Future enhancements Cloudster K -means algorithm for cloud computing {stephane.caron, guillaume.claret, anisse.ismaili, jacques-henri.jourdan, michael.mathieu, mathieu.prevot, guillaume.seguin,

525 views • 14 slides
Claret Using Data Types for High Contention Distributed Transactions Brandon Holt, Irene Zhang,

Claret Using Data Types for High Contention Distributed Transactions Brandon Holt, Irene Zhang,

Claret Using Data Types for High Contention Distributed Transactions Brandon Holt, Irene Zhang, Dan Ports, Mark Oskin, Luis Ceze PaPoC15 @ EuroSys Brandon Holt @holtbg At #EuroSys right now! EuroSys 2015 @EuroSys2015

1.05k views • 48 slides
Tools for Scalable Data Mining XANDA SCHOFIELD CS 6410 11/13/2014 1. Astrolabe Large,

Tools for Scalable Data Mining XANDA SCHOFIELD CS 6410 11/13/2014 1. Astrolabe Large,

Tools for Scalable Data Mining XANDA SCHOFIELD CS 6410 11/13/2014 1. Astrolabe Large, eventually- consistent distributed system [Source: Wikipedia] ROBERT VAN RENESSE, KEN BIRMAN, WERNER VOGELS The Problem How do we quickly find out

823 views • 35 slides
Inclusion in Preschool Highlights of Key Considera;ons Ann

Inclusion in Preschool Highlights of Key Considera;ons Ann

12/7/17 Inclusion in Preschool Highlights of Key Considera;ons Ann Kremer & Emily Ropars www.eclre.org Evidenced Adapta;ons Based Collabora;on &

398 views • 4 slides
FE FE Minut inute! e! Cornell Design Standards and Details are available again! Here is

FE FE Minut inute! e! Cornell Design Standards and Details are available again! Here is

FE FE Minut inute! e! Cornell Design Standards and Details are available again! Here is the URL: https://fcs.cornell.edu/cornell- design-standards Log-in Now Required! Non- Cornell User: hit the second button! Login! (and

122 views • 8 slides
Primary Clarification Step Evaluation Implementation of 3M Technologies During Transition to Late

Primary Clarification Step Evaluation Implementation of 3M Technologies During Transition to Late

Primary Clarification Step Evaluation Implementation of 3M Technologies During Transition to Late Stage Process Development 03/01/2017 / Mark Shannon, Development Scientist / BPI West 2017 Page 1 Biologics Development at Bayer

365 views • 20 slides

More recommend