deep and shallow embeddings in coq
play

Deep and Shallow Embeddings in Coq Danil Annenkov Bas Spitters - PowerPoint PPT Presentation

Apr 08, 2023 •212 likes •359 views

Deep and Shallow Embeddings in Coq Danil Annenkov Bas Spitters Aarhus University, Concordium Blockchain Research Center TYPES June 13, 2019 Oslo 1 Danil Annenkov, Bas Spitters Deep and Shallow Embeddings in Coq Motivation We want to

  1. Deep and Shallow Embeddings in Coq Danil Annenkov Bas Spitters Aarhus University, Concordium Blockchain Research Center TYPES June 13, 2019 Oslo 1 Danil Annenkov, Bas Spitters Deep and Shallow Embeddings in Coq

  2. Motivation We want to reason about functional languages using proof assistants. New challenge: smart contract languages. But many modern smart contract languages have a functional core. We need a convenient and principled way of embedding functional languages into a proof assistant. 2 Danil Annenkov, Bas Spitters Deep and Shallow Embeddings in Coq

  3. Deep embedding VS shallow embedding in proof assistants Deep embedding: AST as an algebraic data type. Semantics: big step, small step, definitional interpreter etc. Full control over evaluation, features, etc. Suitable for meta-theoretical reasoning . Shallow embedding: Proof assistants usually come with a built-in functional language (a host language). Programming language constructs can be represented using the host language constructs. Works better if the languages are similar. Convenient for proving properties of concrete programs . 3 Danil Annenkov, Bas Spitters Deep and Shallow Embeddings in Coq

  4. Deep embedding AND shallow embedding We want both! AST for a language we want to reason about: for meta-theory. Some way of converting AST to functions in Coq. Ways of converting AST to functions: Interpret directly in NbE style ( eval : Env Γ → Expr Γ A → A ) ✗ complicated for the features we want in our language; ✗ resulting program cab be far from the “natural” representation. ✓ direct way of proving soundness of the embedding (eval is a function). Use meta-programming approach: ✓ “naturally”-looking programs; ✓ flexible in terms of language features; ✗ proofs of soundness require formalised meta-theory of the host language (we will address this later) 4 Danil Annenkov, Bas Spitters Deep and Shallow Embeddings in Coq

  5. Our approach We use meta-programming facilities of MetaCoq. unquote Smart Contract AST − → MetaCoq AST → Coq function. − − − − To prove soundness we use formalisation of Coq’s meta-theory in Coq. 5 Danil Annenkov, Bas Spitters Deep and Shallow Embeddings in Coq

  6. Our approach We use meta-programming facilities of MetaCoq. unquote Smart Contract AST − → MetaCoq AST → Coq function. − − − − To prove soundness we use formalisation of Coq’s meta-theory in Coq. Why not hs-to-coq (or coq-of-ocaml)? We want stronger correctness guarantees. We want meta-theory to be formalised as well. Meta-theory should be “in sync” with the representation in Coq. 5 Danil Annenkov, Bas Spitters Deep and Shallow Embeddings in Coq

  7. MetaCoq project Adds metaprogramming facilities to Coq (quote/unquote). Implements the kernel of Coq. Develops meta-theory of Coq (typing, reduction, etc. ) Allows for writing Coq plugins within Coq. Allows for implementing syntactic translations. Allows for proving correctness of plugins, translations, etc. 6 Danil Annenkov, Bas Spitters Deep and Shallow Embeddings in Coq

  8. MetaCoq project Adds metaprogramming facilities to Coq (quote/unquote). Implements the kernel of Coq. Develops meta-theory of Coq (typing, reduction, etc. ) Allows for writing Coq plugins within Coq. Allows for implementing syntactic translations. Allows for proving correctness of plugins, translations, etc. We will use MetaCoq for embedding of a functional core of a smart contract language. 6 Danil Annenkov, Bas Spitters Deep and Shallow Embeddings in Coq

  9. The Oak-light Language We keep our embedded functional language close to Oak — a smart contract language developed at the Concordium Foundation. Inductive expr : Set := | eRel : nat → expr | eVar : name → expr | eLambda : name → type → expr → expr | eLetIn : name → expr → type → expr → expr | eApp : expr → expr → expr | eConstr : inductive → name → expr | eConst : name → expr | eCase : ( inductive ∗ nat ) → type → expr → list ( pat ∗ expr ) → expr | eFix : name → name → type → type → expr → expr . 7 Danil Annenkov, Bas Spitters Deep and Shallow Embeddings in Coq

  10. Semantics of Oak-light We formalise the semantics of the language in the definitional-interpreter style. We define our interpreter using a fuel idiom : by structural recursion on an additional argument (a natural number). The interpreter works for both named and nameless representations of terms. We define a translation of Oak-light to MetaCoq terms. We want to show that our embedding is sound on terminating programs. 8 Danil Annenkov, Bas Spitters Deep and Shallow Embeddings in Coq

  11. Examples (* Define a program using Custom Entries for parsing *) Definition plus_syn : expr := [ | fix "plus" ( x : Nat ) : Nat → Nat := case x : Nat return Nat → Nat of | Z → \ y : Nat → y | Suc y → \ z : Nat → Suc ( "plus" y z ) | ]. (* Unquoting the translated syntax into a Coq function *) Make Definition my_plus := Eval compute in ( expr_to_term ( indexify plus_syn )). (* Proving correctness by comparing with Coq’s addition on nat *) Lemma my_plus_correct n m : my_plus n m = n + m . Proof . induction n ; simpl ; auto . Qed . (* Computing with the interpreter *) Compute ( eval 10 [ | { plus_syn } 1 1 | ]). 9 Danil Annenkov, Bas Spitters Deep and Shallow Embeddings in Coq

  12. Soundness Computational soundness: we compare our interpreter with the call-by-value evaluation (CbV) relation of MetaCoq. The CbV relation is a sub-relation of the reflexive transitive closure of the one-step Coq’s reduction relation. Complications: closures should be converted to expression by substituting the closed environments, n-ary application of MetaCoq vs unary in our language. 10 Danil Annenkov, Bas Spitters Deep and Shallow Embeddings in Coq

  13. Conclusion Deep embedding: syntax and (executable) semantics for Oak-light. Shallow embedding: programs in Gallina language of Coq from the Oak-light syntax. Computational soundness proof — WIP. Some small things: customised embedded syntax using Custom Entries notation feature. 11 Danil Annenkov, Bas Spitters Deep and Shallow Embeddings in Coq

  14. Future Work Develop more meta-theory of Oak-light. Add support for primitives: bounded integers, addresses, hashes, etc. Take into account a cost semantics and reasoning about “gas”. Integrate with the execution framework for reasoning about inter-contract communication. 12 Danil Annenkov, Bas Spitters Deep and Shallow Embeddings in Coq

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Folding Domain-Specific Languages: Deep and Shallow Embeddings Jeremy Gibbons, University of

Folding Domain-Specific Languages: Deep and Shallow Embeddings Jeremy Gibbons, University of

Folding Domain-Specific Languages: Deep and Shallow Embeddings Jeremy Gibbons, University of Oxford AiPL, Heriot Watt, August 2014 Folding DSLs 2 1. Context general-purpose PLs standalone domain-specific deep

1.11k views • 32 slides
Word Embeddings CS 6956: Deep Learning for NLP Overview Representing meaning Word

Word Embeddings CS 6956: Deep Learning for NLP Overview Representing meaning Word

Word Embeddings CS 6956: Deep Learning for NLP Overview Representing meaning Word embeddings: Early work Word embeddings via language models Word2vec and Glove Evaluating embeddings Design choices and open questions 1

2k views • 24 slides
Word Embeddings CS 6956: Deep Learning for NLP Overview Representing meaning Word

Word Embeddings CS 6956: Deep Learning for NLP Overview Representing meaning Word

Word Embeddings CS 6956: Deep Learning for NLP Overview Representing meaning Word embeddings: Early work Word embeddings via language models Word2vec and Glove Evaluating embeddings Design choices and open questions 1

422 views • 17 slides
Word Embeddings CS 6956: Deep Learning for NLP Overview Representing meaning Word

Word Embeddings CS 6956: Deep Learning for NLP Overview Representing meaning Word

Word Embeddings CS 6956: Deep Learning for NLP Overview Representing meaning Word embeddings: Early work Word embeddings via language models Word2vec and Glove Evaluating embeddings Design choices and open questions 1

1.25k views • 75 slides
Word Embeddings CS 6956: Deep Learning for NLP Overview Representing meaning Word

Word Embeddings CS 6956: Deep Learning for NLP Overview Representing meaning Word

Word Embeddings CS 6956: Deep Learning for NLP Overview Representing meaning Word embeddings: Early work Word embeddings via language models Word2vec and Glove Evaluating embeddings Design choices and open questions 1

828 views • 15 slides
XX Shan Deep Somehistory 80 S N N 2018 Approximation Theory is depth better why Shallow

XX Shan Deep Somehistory 80 S N N 2018 Approximation Theory is depth better why Shallow

Why deep nets Is deep better than shallow When Why in i w XX Shan Deep Somehistory 80 S N N 2018 Approximation Theory is depth better why Shallow networks wit O O 02 k X kernel machine Rain example 9 K x a xi y ta Ef Gil

536 views • 31 slides
Deep Image-Text Embeddings Learning Deep Structure-Preserving Image-Text Embeddings (CVPR 2016)

Deep Image-Text Embeddings Learning Deep Structure-Preserving Image-Text Embeddings (CVPR 2016)

CS688 Paper Presentation 1 Deep Image-Text Embeddings Learning Deep Structure-Preserving Image-Text Embeddings (CVPR 2016) Woobin Im ( ) 2016-11-08 Sentence-to-image Retrieval Retrieval system Query text A cat next to a blue chair

594 views • 28 slides
Question-Answering: Shallow & Deep Techniques for NLP Deep Processing Techniques for NLP

Question-Answering: Shallow & Deep Techniques for NLP Deep Processing Techniques for NLP

Question-Answering: Shallow & Deep Techniques for NLP Deep Processing Techniques for NLP Ling 571 March 12, 2014 (Examples from Dan Jurafsky) Roadmap Question-Answering: Definitions & Motivation Basic pipeline:

426 views • 32 slides
CS 4803 / 7643: Deep Learning Guest Lecture: Embeddings and world2vec Feb. 18 th 2020 Ledell Wu

CS 4803 / 7643: Deep Learning Guest Lecture: Embeddings and world2vec Feb. 18 th 2020 Ledell Wu

CS 4803 / 7643: Deep Learning Guest Lecture: Embeddings and world2vec Feb. 18 th 2020 Ledell Wu Research Engineer, Facebook AI ledell@fb.com 1 Outline Word Embeddings word2vec Graph Embeddings Applications world2vec

769 views • 41 slides
High resolution 3-D LES simulations: a link between shallow and deep cumulus? Jon Petch Met

High resolution 3-D LES simulations: a link between shallow and deep cumulus? Jon Petch Met

High resolution 3-D LES simulations: a link between shallow and deep cumulus? Jon Petch Met Office December 16th 2002 EUROCS Madrid APR 2002 1 Content Results from shallow cumulus ARM diurnal cycle case (thanks to Andy Brown)

651 views • 40 slides
Shallow vs. deep networks Restricted Boltzmann Machines Shallow : one hidden layer Features

Shallow vs. deep networks Restricted Boltzmann Machines Shallow : one hidden layer Features

Shallow vs. deep networks Restricted Boltzmann Machines Shallow : one hidden layer Features can be learned more-or-less independently Arbitrary function approximator (with enough hidden units) No connections among units within a layer;

197 views • 5 slides
Category embeddings ADVAN CED DEEP LEARN IN G W ITH K ERAS Zach Deane Mayer Data Scientist

Category embeddings ADVAN CED DEEP LEARN IN G W ITH K ERAS Zach Deane Mayer Data Scientist

Category embeddings ADVAN CED DEEP LEARN IN G W ITH K ERAS Zach Deane Mayer Data Scientist Category embeddings Input: integers Output: oats Note: Increased dimensionality: output layer attens back to 2D ADVANCED DEEP LEARNING WITH

713 views • 26 slides
Question-Answering: Shallow & Deep Techniques for NLP Ling571 Deep Processing Techniques

Question-Answering: Shallow & Deep Techniques for NLP Ling571 Deep Processing Techniques

Question-Answering: Shallow & Deep Techniques for NLP Ling571 Deep Processing Techniques for NLP March 9, 2011 Examples from Dan Jurafsky) Roadmap Question-Answering: Definitions & Motivation Basic pipeline:

993 views • 84 slides
Word Embeddings Revisited: Contextual Embeddings CS 6956: Deep Learning for NLP Overview

Word Embeddings Revisited: Contextual Embeddings CS 6956: Deep Learning for NLP Overview

Word Embeddings Revisited: Contextual Embeddings CS 6956: Deep Learning for NLP Overview Word types and tokens Training contextual embeddings Embeddings from Language Models (ELMo) 1 Overview Word types and tokens Training

670 views • 40 slides
Tab N, No. 4 Shallow Deep LIGHT! No light! Low nutrient- Low nutrient

Tab N, No. 4 Shallow Deep LIGHT! No light! Low nutrient- Low nutrient

Tab N, No. 4 Shallow Deep LIGHT! No light! Low nutrient- Low nutrient zooxanthellae Slow growing Dynamic (generally) environment Static environment Temp, salinity, etc. dark, low oxygen, cold 5-12

229 views • 20 slides
UAT: From Shallow to Deep Ju Sun Computer Science & Engineering University of Minnesota,

UAT: From Shallow to Deep Ju Sun Computer Science & Engineering University of Minnesota,

UAT: From Shallow to Deep Ju Sun Computer Science & Engineering University of Minnesota, Twin Cities January 30, 2020 1 / 22 Logistics L A T EX source of homework posted in Canvas (Thanks to Logan Stapleton!) 2 / 22 Logistics

777 views • 59 slides
Moving Right Along: Motion verb sequences in Urdu Annette Hautli Universit at Konstanz lfg

Moving Right Along: Motion verb sequences in Urdu Annette Hautli Universit at Konstanz lfg

Moving Right Along: Motion verb sequences in Urdu Annette Hautli Universit at Konstanz lfg 13, Debrecen, Hungary, July 19th, 2013 1 Introduction Various types of complex verbal constructions in Urdu/Hindi (e.g., Mohanan (1994), Butt

401 views • 11 slides
Decision Procedures for Verification Combinations of Decision Procedures (3) 4.02.2019 Viorica

Decision Procedures for Verification Combinations of Decision Procedures (3) 4.02.2019 Viorica

Decision Procedures for Verification Combinations of Decision Procedures (3) 4.02.2019 Viorica Sofronie-Stokkermans sofronie@uni-koblenz.de 1 Last time Combinations of Decision Procedures The Nelson/Oppen Procedure (for theories with

1.14k views • 72 slides
History A (brief) history of interaction 1 CS349 -- History Outline Major paradigms of

History A (brief) history of interaction 1 CS349 -- History Outline Major paradigms of

History A (brief) history of interaction 1 CS349 -- History Outline Major paradigms of interaction Batch interfaces Conversational interfaces Graphical interfaces Visionaries who inspired advances Vannevar Bush Ivan

793 views • 30 slides
Entropy production and steady states in quantum statistical mechanics Vojkan Jaksic and

Entropy production and steady states in quantum statistical mechanics Vojkan Jaksic and

Entropy production and steady states in quantum statistical mechanics Vojkan Jaksic and Claude-Alain Pillet McGill University, Universit e de Toulon March 20, 2014 Statistical mechanics away from equilibrium is in a formative stage, where

1.2k views • 98 slides
Reactive, Message- Driven & Scalable Todd L. Montgomery @toddlmontgomery Why Reactive!?

Reactive, Message- Driven & Scalable Todd L. Montgomery @toddlmontgomery Why Reactive!?

Reactive, Message- Driven & Scalable Todd L. Montgomery @toddlmontgomery Why Reactive!? Why Message-Driven!? The most scalable, resilient, & fast systems seem to follow some common principles http://www.reactivemanifesto.org/

897 views • 60 slides
Why Pybackpack Sucks And how to make it suck less Andy Price SUCS Talks 2007.03.20 Why

Why Pybackpack Sucks And how to make it suck less Andy Price SUCS Talks 2007.03.20 Why

Background Analysis Solutions The End Why Pybackpack Sucks And how to make it suck less Andy Price SUCS Talks 2007.03.20 Why Pybackpack Sucks 2007.03.20 1 / 17 Background Analysis How it all began Solutions The End Google Summer

313 views • 17 slides
Introduction to UML C++ Object Oriented Programming Pei-yih Ting NTOU CS 1 Contents

Introduction to UML C++ Object Oriented Programming Pei-yih Ting NTOU CS 1 Contents

Introduction to UML C++ Object Oriented Programming Pei-yih Ting NTOU CS 1 Contents Software modeling What is UML? What is UML for? UML history UML artifacts: Things, Relationships, and Diagrams Things Relationships

895 views • 58 slides
Reassemble or GTFO Getting The Fragments Out finux@finux.co.uk Arron Finnon - 17

Reassemble or GTFO Getting The Fragments Out finux@finux.co.uk Arron Finnon - 17

Reassemble or GTFO Getting The Fragments Out finux@finux.co.uk Arron Finnon - 17 th November 2011 -Deepsec Intrusion Detection Systems (IDS for short) main purpose is to monitor systems for signs of intrusion or malicious use.

270 views • 25 slides

More recommend