counterexample guided quantifjer instantiation for
play

Counterexample-Guided Quantifjer Instantiation for Synthesis in SMT - PowerPoint PPT Presentation

Feb 14, 2023 •30 likes •490 views

Counterexample-Guided Quantifjer Instantiation for Synthesis in SMT Andrew Reynolds, Morgan Deters, Viktor Kuncak, Cesare Tinelli, and Clark Barrett Kumar Madhukar TCS Research, Pune Formal Methods Update Meet, IIT Mandi, 17-18 July, 2017

  1. Counterexample-Guided Quantifjer Instantiation for Synthesis in SMT Andrew Reynolds, Morgan Deters, Viktor Kuncak, Cesare Tinelli, and Clark Barrett Kumar Madhukar TCS Research, Pune Formal Methods Update Meet, IIT Mandi, 17-18 July, 2017

  2. Outline ▶ The Problem ▶ Restrictions ▶ Solutions

  3. The (Synthesis) Problem reactive systems, etc. ▶ Synthesize a function that meets a given specifjcations. ▶ Example - Synthesize f such that: ▶ f ( x 1 , x 2 ) ≥ x 1 ∧ ▶ f ( x 1 , x 2 ) ≥ x 2 ∧ ▶ f ( x 1 , x 2 ) ≈ x 1 ∨ f ( x 1 , x 2 ) ≈ x 2 ▶ Applicable in synthesis of functional programs, program sketching, synthesis of

  4. If P is a formula that encodes the specifjcation, then we must have And the question that we are asking is P [ f , x 1 , x 2 ] = f ( x 1 , x 2 ) ≥ x 1 ∧ f ( x 1 , x 2 ) ≥ x 2 ∧ ( f ( x 1 , x 2 ) ≈ x 1 ∨ f ( x 1 , x 2 ) ≈ x 2 ) ∀ x 1 x 2 . P [ f , x 1 , x 2 ] ∃ f . ∀ x 1 x 2 . P [ f , x 1 , x 2 ]

  5. x . x ) is true x . ▶ Or, more generally, ∃ f . Exists a function s.t. ∀ x 1 , x 2 , ... x n . P ( f , x 1 , x 2 , ... x n ) � �� � � �� � for all ¯ x , P(f, ¯ ▶ An SMT solver may treat f as an uninterpreted function, but the real challenge here is the universal quantifjcation over ¯ ▶ The solver must construct (a fjnite representation of) an interpretation for f which is true for all ¯

  6. quantifjed formulas. refutation is found. ▶ In contrast, there are efgective techniques to show un satisfjability of universally ▶ SMT solvers use instantiation-based methods - generate ground instances until a ▶ Can we transform our problem into one of checking unsatisfjability? If satisfjability ( F ) ⇒ validity ( F ), ( F is sat) ⇔ ( ¬ F is not valid) ⇔ ( ¬ F is unsatisfjable)

  7. Restriction formulas we are interested in. datatypes, bit-vectors, etc.) are satisfaction complete wrt the class of closed fjrst-order formulas. 1. Satisfjability ⇒ Validity ▶ In other words, we will only consider theories that are satisfaction complete wrt the ▶ Most theories used in SMT (e.g. various theories of integers, reals, strings, algebraic

  8. (over function f ). sat ∃ f . ∀ ¯ x . P ( f , ¯ x ) ↓ negate ¬ ∃ f . ∀ ¯ x . P ( f , ¯ x ) unsat ↓ push ¬ ∀ f . ∃ ¯ x . ¬ P ( f , ¯ x ) unsat ▶ Another challenge: Negation introduces second-order universal quantifjcation ∃ f . ∀ ¯ x . P [ f , ¯ x ] , ▶ What if we restrict ourselves to the class of synthesis problems where every occurrence of f in P is of the form f (¯ x ) . ▶ In that case, we can transform the synthesis problem to: ∀ ¯ x . ∃ y . Q [¯ x , y ] .

  9. Restrictions formulas we are interested in datatypes, bit-vectors, etc.) are satisfaction complete wrt the class of closed fjrst-order formulas. 2. P consists of single-invocation properties 1. Satisfjability ⇒ Validity ▶ In other words, we will only consider theories that are satisfaction complete wrt the ▶ Most theories used in SMT (e.g. various theories of integers, reals, strings, algebraic f ( x 1 , x 2 ) ≥ x 1 ∧ f ( x 1 , x 2 ) ≥ x 2 ∧ ( f ( x 1 , x 2 ) ≈ x 1 ∨ f ( x 1 , x 2 ) ≈ x 2 ) c ( x 1 , x 2 ) ≈ c ( x 2 , x 1 )

  10. Recall Synthesis conjecture: one. ∃ f . ∀ x 1 ... x n . P [ f , x 1 , ..., x n ] ▶ avoid second-order quantifjcation, and ▶ solve an unsatisfjability (universal quantifjcation) problem instead of a satisfjability

  11. So far.. ∃ f . ∀ ¯ x . P ( f , ¯ x ) sat ↓ (single-invocation property) ∀ ¯ x . ∃ g . P ( g , ¯ x ) sat ↓ (satisfaction-complete theory) ∀ ¯ x . ∃ g . P ( g , ¯ x ) valid ↓ (negate) ¬∀ ¯ x . ∃ g . P ( g , ¯ x ) unsat ↓ (push ¬ ) ∃ ¯ x . ∀ g . ¬ P ( g , ¯ x ) unsat

  12. Our fjrst example ∃ f . ∀ x 1 x 2 . ( f ( x 1 , x 2 ) ≥ x 1 ∧ f ( x 1 , x 2 ) ≥ x 2 ∧ ( f ( x 1 , x 2 ) ≈ x 1 ∨ f ( x 1 , x 2 ) ≈ x 2 )) sat ↓ (single-invocation property) ∀ x 1 x 2 . ∃ g . ( g ≥ x 1 ∧ g ≥ x 2 ∧ ( g ≈ x 1 ∨ g ≈ x 2 )) sat ↓ negate (satisfaction-complete theory) ∃ x 1 x 2 . ∀ g . ( g < x 1 ∨ g < x 2 ∨ ( g ̸≈ x 1 ∧ g ̸≈ x 2 )) unsat ↓ Skolemize, for fresh a, b ∀ g . ( g < a ∨ g < b ∨ ( g ̸≈ a ∧ g ̸≈ b )) unsat

  13. Solving Max Example  g.(g<a  g<b  (g ≠a  g ≠b )) Quantifiers Ground Module solver

  14. Solving Max Example ( a <a  a <b  ( a ≠a  a ≠b ))   g.(g<a  g<b  (g ≠a  g ≠b )) ( b <a  b <b  ( b ≠ a  b ≠ b))  Quantifiers instances Ground a /g, b /g Module solver

  15. Solving Max Example a<b   g.(g<a  g<b  (g ≠a  g ≠b )) simplify b<a  Quantifiers Ground Module solver

  16. Solving Max Example a<b   g.(g<a  g<b  (g ≠a  g ≠b )) b<a  Quantifiers Ground Module solver   g.(g<a  g<b  ( g≠a  g≠b )) is unsatisfable, unsat implies original synthesis conjecture has a solution

  17.  f.  x .P(f( x ), x ) How do we get solutions? negate, translate to FO  P(t 1 , k ),…,  P(t n , k )  g.  P(g, k ) Quantifiers instances Ground Module solver unsat  P(t 1 , k ),…,  P(t n , k )|= false

  18.  f.  x .P(f( x ), x ) How do we get solutions? negate, translate to FO  P(t 1 , k ),…,  P(t n , k )  g.  P(g, k ) Quantifiers instances Ground Module solver Claim the following is a solution for f : l x . ite( P(t 1 , k ), t 1 , unsat ite( P(t 2 , k ), t 2 , …  P(t 1 , k ),…,  P(t n , k )|= false ite( P(t n-1 , k ), t n-1 , t n )…)[ x / k ]

  19. Why is this a solution?  f.  x .P(f( x ), x ) Given  P(t 1 , k ),…,  P(t n , k )|= false Found Claim the following is a solution for f : l x . ite( P(t 1 , k ), t 1 , ite( P(t 2 , k ), t 2 , … ite( P(t n-1 , k ), t n-1 , t n )…)[ x / k ]

  20. Why is this a solution?  f.  x .P(f( x ), x ) Given  P(t 1 , k ),…,  P(t n , k )|= false Found Claim the following is a solution for f : l x . ite( P(t 1 , k ), t 1 , If P holds for t 1 , return t 1 ite( P(t 2 , k ), t 2 , … ite( P(t n-1 , k ), t n-1 , t n )…)[ x / k ]

  21. Why is this a solution?  f.  x .P(f( x ), x ) Given  P(t 1 , k ),…,  P(t n , k )|= false Found Claim the following is a solution for f : l x . ite( P(t 1 , k ), t 1 , ite( P(t 2 , k ), t 2 , If P holds for t 2 , return t 2 … ite( P(t n-1 , k ), t n-1 , t n )…)[ x / k ]

  22. Why is this a solution?  f.  x .P(f( x ), x ) Given  P(t 1 , k ),…,  P(t n , k )|= false Found Claim the following is a solution for f : l x . ite( P(t 1 , k ), t 1 , ite( P(t 2 , k ), t 2 , … ite( P(t n-1 , k ), t n-1 , If P holds for t n-1 , return t n-1 t n )…)[ x / k ]

  23. Why is this a solution?  f.  x .P(f( x ), x ) Given  P(t 1 , k ),…,  P(t n , k )|= false Found Claim the following is a solution for f : l x . ite( P(t 1 , k ), t 1 , ite( P(t 2 , k ), t 2 , … ite( P(t n-1 , k ), t n-1 , t n )…)[ x / k ] Why does P(t n , k ) hold?

  24. Solution for Max Example  f.  xy.(f(x,y )≥x  f(x,y) ≥y  (f(x,y)=x  f(x,y)=y)) Given Found  (a ≥a  a ≥b  (a=a  a=b)), |= false  (b ≥a  b ≥b  (b=a  b=b)) Claim the following is a solution for f : l xy. ite( a≥a  a ≥b  (a=a  a=b), a, b)…)[x/a][y/b]

  25. Solution for Max Example  f.  xy.(f(x,y )≥x  f(x,y) ≥y  (f(x,y)=x  f(x,y)=y)) Given Found  (a ≥a  a ≥b  (a=a  a=b)), |= false  (b ≥a  b ≥b  (b=a  b=b)) Claim the following is a solution for f : l xy. ite( x ≥ x  x ≥y  (x=x  x=y), x, y)…)

  26. Solution for Max Example  f.  xy.(f(x,y )≥x  f(x,y) ≥y  (f(x,y)=x  f(x,y)=y)) Given Found  (a ≥a  a ≥b  (a=a  a=b)), |= false  (b ≥a  b ≥b  (b=a  b=b)) Claim the following is a solution for f : l xy. ite( x ≥y , x, y )

  27. Lifting the single-invocation property restriction ▶ Can we still refute negated synthesis conjectures? ▶ Yes, under syntactic restrictions.

  28. Int : embedding S in Int. Bool : embedding C in Bool. Example: Syntax-Guided Synthesis And an interpretation of these datatypes in terms of the original theory. 1. ev S Int Int 2. ev C Int Int ▶ Syntactic restriction for the solution space, expressed by these algebraic datatypes: S := t 1 | t 2 | zero | one | plus ( S , S ) | minus ( S , S ) | if ( C , S , S ) C := leq ( S , S ) | eq ( S , S ) | and ( C , C ) | not ( C )

  29. Example: Syntax-Guided Synthesis ▶ Syntactic restriction for the solution space, expressed by these algebraic datatypes: S := t 1 | t 2 | zero | one | plus ( S , S ) | minus ( S , S ) | if ( C , S , S ) C := leq ( S , S ) | eq ( S , S ) | and ( C , C ) | not ( C ) ▶ And an interpretation of these datatypes in terms of the original theory. 1. ev S × Int × Int → Int : embedding S in Int. 2. ev C × Int × Int → Bool : embedding C in Bool.

  30. The evaluation operators ev ( t 1 , x , y ) ≈ x ev ( zero , x , y ) ≈ 0 ev ( not ( c ) , x , y ) ≈ ¬ ev ( c , x , y ) ev ( and ( c 1 , c 2 ) , x , y ) ≈ ev ( c 1 , x , y ) ∧ ev ( c 2 , x , y ) ev ( plus ( s 1 , s 2 ) , x , y ) ≈ ev ( s 1 , x , y ) + ev ( s 2 , x , y ) ev ( if ( c , s 1 , s 2 ) , x , y ) ≈ ite ( ev ( c , x , y ) , ev ( s 1 , x , y ) , ev ( s 2 , x , y ))

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Counterexample-Guided Polynomial Quantitative Loop Invariants by Lagrange Interpolation Yu-Fang

Counterexample-Guided Polynomial Quantitative Loop Invariants by Lagrange Interpolation Yu-Fang

Counterexample-Guided Polynomial Quantitative Loop Invariants by Lagrange Interpolation Yu-Fang Chen 1 Chih-Duo Hong 1 Bow-Yaw Wang 1 Lijun Zhang 2 Institute of Information Science, Academia Sinica, Taiwan Institute of Software, Chinese Academy

540 views • 39 slides
Counterexample-guided Cartesian Abstraction Refinement and Saturated Cost Partitioning for

Counterexample-guided Cartesian Abstraction Refinement and Saturated Cost Partitioning for

Counterexample-guided Cartesian Abstraction Refinement and Saturated Cost Partitioning for Optimal Classical Planning Jendrik Seipp February 28, 2018 University of Basel Planning Find a sequence of actions that achieves a goal. 1/35 Optimal

1.08k views • 85 slides
COUNTEREXAMPLE-GUIDED MODEL SYNTHESIS Mathias Preiner , Aina Niemetz and Armin

COUNTEREXAMPLE-GUIDED MODEL SYNTHESIS Mathias Preiner , Aina Niemetz and Armin

COUNTEREXAMPLE-GUIDED MODEL SYNTHESIS Mathias Preiner , Aina Niemetz and Armin Biere Johannes Kepler University Stanford University SMT Workshop July 22-23, 2017 Heidelberg, Germany Introduction

572 views • 20 slides
Counterexample Guided Abstraction Refinement (CEGAR) Peyman Rasouli Gianluca Turin 1

Counterexample Guided Abstraction Refinement (CEGAR) Peyman Rasouli Gianluca Turin 1

Counterexample Guided Abstraction Refinement (CEGAR) Peyman Rasouli Gianluca Turin 1 Abstraction Definition of abstraction on Wikipedia: Abstractions may be formed by reducing the information content of a concept or an observable

575 views • 18 slides
COUNTEREXAMPLE-GUIDED MODEL SYNTHESIS Mathias Preiner, Aina Niemetz and Armin Biere Institute

COUNTEREXAMPLE-GUIDED MODEL SYNTHESIS Mathias Preiner, Aina Niemetz and Armin Biere Institute

COUNTEREXAMPLE-GUIDED MODEL SYNTHESIS Mathias Preiner, Aina Niemetz and Armin Biere Institute for Formal Models and Verification (FMV) Johannes Kepler University, Linz, Austria http://fmv.jku.at/ TACAS 2017 April 24-28, 2017 Uppsala, Sweden

562 views • 16 slides
Counterexample Guided Abstraction Refinement in Blast Reading: Checking Memory Safety with Blast

Counterexample Guided Abstraction Refinement in Blast Reading: Checking Memory Safety with Blast

Counterexample Guided Abstraction Refinement in Blast Reading: Checking Memory Safety with Blast 17-654/17-754 Analysis of Software Artifacts Jonathan Aldrich

400 views • 14 slides
Computing Abstract Plans for Counterexample-Guided Cartesian Abstraction Refinement Samuel von

Computing Abstract Plans for Counterexample-Guided Cartesian Abstraction Refinement Samuel von

Introduction Perfect Information Summary Computing Abstract Plans for Counterexample-Guided Cartesian Abstraction Refinement Samuel von Allmen 2019-05-21 1 / 20 Introduction Perfect Information Summary The Big Picture What are we trying

586 views • 20 slides
Instantiation-based Methods and Equality Instantiation-based methods Decision procedure for

Instantiation-based Methods and Equality Instantiation-based methods Decision procedure for

ormal ethods roup iProver-Eq: An Instantiation-based Theorem Prover with Equality Konstantin Korovin and Christoph Sticksel (joint work with Renate Schmidt) The University of Manchester 17th July 2010 1 Konstantin Korovin and

318 views • 18 slides
No-counterexample Interpretations of Logic and the Geometry of Interaction Masaru Shirahata

No-counterexample Interpretations of Logic and the Geometry of Interaction Masaru Shirahata

No-counterexample Interpretations of Logic and the Geometry of Interaction Masaru Shirahata Keio University, Hiyoshi Campus The Plan of the Talk I will first explain the motivation. Then I will mostly explain the no- counterexample

711 views • 38 slides
FFR Guided Functional FFR Guided Functional FFR Guided Functional FFR Guided Functional

FFR Guided Functional FFR Guided Functional FFR Guided Functional FFR Guided Functional

FFR Guided Functional FFR Guided Functional FFR Guided Functional FFR Guided Functional Angioplasty Angioplasty g g p p y y in Complex Anatomy in Complex Anatomy Jung-Min Ahn, MD g , Heart Institute Asan Medical Center Heart

671 views • 27 slides
MVC Guided Pathways Brief review of Guided Pathways at MVC Plan for Today Spring

MVC Guided Pathways Brief review of Guided Pathways at MVC Plan for Today Spring

MVC Guided Pathways Brief review of Guided Pathways at MVC Plan for Today Spring 2018-Summer 2019 Action Plan and Budget Guided Pathways in California A Framework for Improving Completion Multiple Guided Pathways Initiatives

407 views • 13 slides
Policy-Based Instantiation of Norms in MAS Andreea Urzic and Cristian Gratie Policy-Based

Policy-Based Instantiation of Norms in MAS Andreea Urzic and Cristian Gratie Policy-Based

6th International Symposium on Intelligent Distributed Computing IDC 2012 Policy-Based Instantiation of Norms in MAS Andreea Urzic and Cristian Gratie Policy-Based Instantiation of Norms in MAS Paper outline A unified format for

378 views • 10 slides
Labelled Unit Superposition for Instantiation-Based Reasoning Konstantin Korovin joint work with

Labelled Unit Superposition for Instantiation-Based Reasoning Konstantin Korovin joint work with

Labelled Unit Superposition for Instantiation-Based Reasoning Konstantin Korovin joint work with Christoph Sticksel 1 Instantiation, Labelled Superposition SAT/SMT vs First-Order The problem: Show that a given formula is a theorem. Ground

759 views • 60 slides
Background Instantiation-based methods for first-order logic Decision procedure for

Background Instantiation-based methods for first-order logic Decision procedure for

ormal ethods roup Labelled Unit Superposition Calculi for Instantiation-Based Reasoning Konstantin Korovin and Christoph Sticksel (joint work with Renate Schmidt) The University of Manchester 14th October 2010 1 Konstantin Korovin and

851 views • 34 slides
A CSP Approach for Meta Model Instantiation Adel Ferdjoukh , Anne-Elisabeth Baert, Annie Chateau,

A CSP Approach for Meta Model Instantiation Adel Ferdjoukh , Anne-Elisabeth Baert, Annie Chateau,

A CSP Approach for Meta Model Instantiation Adel Ferdjoukh , Anne-Elisabeth Baert, Annie Chateau, R emi Coletta and Cl ementine Nebut Montpellier, France null A CSP Approach for Meta Model Instantiation Summary 1 Model Driven Engineering

1.18k views • 73 slides
Year 3 Guided Pathways Plan Presentation Presented by: Palomar Guided Pathways Team DATE: May

Year 3 Guided Pathways Plan Presentation Presented by: Palomar Guided Pathways Team DATE: May

Year 3 Guided Pathways Plan Presentation Presented by: Palomar Guided Pathways Team DATE: May 15, 2020 Presenters: Glyn Bongolan, Alex Cuatok, Kelly Falcone, Katy Farrell, Wendy Nelson And our Guided Pathways Ambassadors Focus for Today:

656 views • 50 slides
Inner Class Inner Classes A &quot;regular&quot; inner class is declared inside the curly

Inner Class Inner Classes A &quot;regular&quot; inner class is declared inside the curly

Inner Class Inner Classes A &quot;regular&quot; inner class is declared inside the curly braces of another class, but outside any method or other code block. An inner class is a full-fledged member of the enclosing (outer) class, so it can

381 views • 6 slides
Objects Announcements for Today Assignment 1 Assignment 2 We are starting grading

Objects Announcements for Today Assignment 1 Assignment 2 We are starting grading

Lecture 9 Objects Announcements for Today Assignment 1 Assignment 2 We are starting grading Posted Today Will take most of the day Written assignment Grades 9am tomorrow Do while revising A1 Resubmit until correct

500 views • 32 slides
Composing read-Safe Objects . Jesper qvist . . . Object State . All objects with mutable

Composing read-Safe Objects . Jesper qvist . . . Object State . All objects with mutable

. Composing read-Safe Objects . Jesper qvist . . . Object State . All objects with mutable state are potentially non thread safe. To guarrantee thread safety a synchronization policy is needed. The policy documents how objects are

373 views • 11 slides
K8s or Die! You must do Kubernetes. Or should you? If so when, where, why? How?! Marco Ceppi

K8s or Die! You must do Kubernetes. Or should you? If so when, where, why? How?! Marco Ceppi

K8s or Die! You must do Kubernetes. Or should you? If so when, where, why? How?! Marco Ceppi @marcoceppi Ryan Beisner @ryanbeisner Why Kubernetes Computing in the modern age Virtual Process Machines Containers Traditional Container

516 views • 24 slides
Integrated Language Definition Testing Lennart Kats Delft University of Technology Rob Vermaas

Integrated Language Definition Testing Lennart Kats Delft University of Technology Rob Vermaas

Integrated Language Definition Testing Lennart Kats Delft University of Technology Rob Vermaas LogicBlox Eelco Visser Delft University of Technology Language Workbenches Testing DOES THE TYPE CHECKER CATCH THIS? Testing DOES THIS

872 views • 43 slides
REMOTE HOMEBOUND INSTRUCTION FUNDING Dr. Linda Webb, Principal Gonzalo Garza Independence High

REMOTE HOMEBOUND INSTRUCTION FUNDING Dr. Linda Webb, Principal Gonzalo Garza Independence High

REMOTE HOMEBOUND INSTRUCTION FUNDING Dr. Linda Webb, Principal Gonzalo Garza Independence High School Linda.webb@austinisd.org (512) 414-8618 GONZALO GARZA INDEPENDENCE HIGH SCHOOL AUSTIN INDEPENDENT SCHOOL DISTRICT Established in 1998 to

318 views • 8 slides
Understanding Behaviors of Attendance in Supplemental Instruction and Subsequent Academic

Understanding Behaviors of Attendance in Supplemental Instruction and Subsequent Academic

Understanding Behaviors of Attendance in Supplemental Instruction and Subsequent Academic Success in a First Year Engineering Course Nisha Abraham &amp; Nina Telang The University of Texas at Austin In this Presentation Introduction to

420 views • 26 slides
Fuller Middle School Framingham Public Schools Where every child can and will reach high levels

Fuller Middle School Framingham Public Schools Where every child can and will reach high levels

Fuller Middle School Framingham Public Schools Where every child can and will reach high levels of achievement Standard I: Curriculum, Planning, and Assessment Promote the learning and growth of all students by providing high-quality and

612 views • 32 slides

More recommend