development of a verified efficient checker for sat proofs
play

Development of a Verified, Efficient Checker for SAT Proofs Matt - PowerPoint PPT Presentation

Oct 08, 2023 •116 likes •621 views

I NTRODUCTION A S EQUENCE OF C HECKERS C ONCLUSION R EFERENCES Development of a Verified, Efficient Checker for SAT Proofs Matt Kaufmann (In collaboration with Marijn Heule and Warren Hunt, Jr.) ACL2 Seminar The University of Texas at Austin

  1. I NTRODUCTION A S EQUENCE OF C HECKERS C ONCLUSION R EFERENCES Development of a Verified, Efficient Checker for SAT Proofs Matt Kaufmann (In collaboration with Marijn Heule and Warren Hunt, Jr.) ACL2 Seminar The University of Texas at Austin February 3, 2017 1/49

  2. I NTRODUCTION A S EQUENCE OF C HECKERS C ONCLUSION R EFERENCES ABSTRACT I’ll present a case study, consisting of a sequence of verified checkers that validate SAT proofs. These culminate in an efficient checker that can be used in SAT competitions and in industry. No background in SAT is assumed. 2/49

  3. I NTRODUCTION A S EQUENCE OF C HECKERS C ONCLUSION R EFERENCES O UTLINE I NTRODUCTION The Problem Towards a Solution Clauses Semantics: Assignments and Truth Proofs Formalizing Soundness Efficient Proof-checking A S EQUENCE OF C HECKERS [drat] The LRAT Proof Format [lrat-1] [lrat-2] [lrat-3] [lrat-4] C ONCLUSION R EFERENCES 3/49

  4. I NTRODUCTION A S EQUENCE OF C HECKERS C ONCLUSION R EFERENCES O UTLINE I NTRODUCTION The Problem Towards a Solution Clauses Semantics: Assignments and Truth Proofs Formalizing Soundness Efficient Proof-checking A S EQUENCE OF C HECKERS [drat] The LRAT Proof Format [lrat-1] [lrat-2] [lrat-3] [lrat-4] C ONCLUSION R EFERENCES 4/49

  5. I NTRODUCTION A S EQUENCE OF C HECKERS C ONCLUSION R EFERENCES I NTRODUCTION Questions welcome during the talk, feedback afterwards. Feel free to slow me down (will move quickly through early stuff that is probably familiar to all). Brief summary of talk: ◮ Nathan Wetzler wrote and verified an ACL2 program that validates SAT proofs. ◮ This talk discusses development of an efficient such verified checker. Underlining denotes links to the ACL2+books online manual. 5/49

  6. I NTRODUCTION A S EQUENCE OF C HECKERS C ONCLUSION R EFERENCES T HE P ROBLEM Boolean Satisfiability (SAT) solvers are proliferating and useful. But how can we trust them? Modern ones [3] admit proofs ! But how do we know that these “proofs” are valid? We check them with software programs called checkers ! But how do we know that a checker is sound ? Inspection? ◮ Checkers are typically simpler than solvers... ◮ ... but not that simple, and inspection is error-prone . 6/49

  7. I NTRODUCTION A S EQUENCE OF C HECKERS C ONCLUSION R EFERENCES T OWARDS A S OLUTION Nathan Wetzler, under the direction of Marijn Heule and Warren Hunt, developed an ACL2-based solution [6, 5, 4]. He wrote a SAT proof-checker in ACL2, then formalized and proved its correctness (soundness): Suppose the checker takes inputs p (an alleged proof) and F (a formula), and checks that p legally derives a contradiction from F . Then F is always false. Background: 7/49

  8. I NTRODUCTION A S EQUENCE OF C HECKERS C ONCLUSION R EFERENCES C LAUSES A variable is a propositional atom. ◮ Traditionally, a Boolean formula might be P 1 ∧ ¬ P 2 , where P 1 and P 2 are symbols known as variables . ◮ For us, variables are positive integers. A literal is a variable or its negative (negation), e.g., 3 or -3. Complementary literals are negations of each other. A clause is a set of literals, implicitly disjoined, containing no complementary literals. ◮ In ACL2: duplicate-free lists of non-zero integers without complementary literals. Example: (3 7 -2 4) . A formula is a set (or list) of clauses, implicitly conjoined. (This is commonly called conjunctive normal form .) 8/49

  9. I NTRODUCTION A S EQUENCE OF C HECKERS C ONCLUSION R EFERENCES S EMANTICS : A SSIGNMENTS AND T RUTH An assignment is a finite function mapping variables to Booleans. ◮ In ACL2: same representation as for clauses, e.g., (3 7 -2 4) . Truth value under an assignment : recursively defined for literals, then clauses, then formulas, to be T , NIL , or 0 (unknown). Example: Is F true under assignment a ? F : ((1 7 -2) (-3 -5 6) (9 2 3)) a : (7 -3) Answer: No — the truth value is 0 because of the third clause. A formula is satisfiable if it is true under some assignment; otherwise, it is unsatisfiable . 9/49

  10. I NTRODUCTION A S EQUENCE OF C HECKERS C ONCLUSION R EFERENCES P ROOFS A proof (or clausal proof , or refutation ) for a formula F is a sequence p = � p 1 , p 2 , ..., p k � such that: ◮ Each p i is � b i , c i � , where b i is a Boolean and c i is a clause. Deletion step : b i is true Addition step : b i is false ◮ b k is false and c k is the empty clause. ◮ All addition steps preserve satisfiability (see next slide). 10/49

  11. I NTRODUCTION A S EQUENCE OF C HECKERS C ONCLUSION R EFERENCES P ROOFS (2) For p = � p 1 , p 2 , ..., p k � as above, recursively define formulas � F 0 , F 1 , ..., F k � by executing the p i : ◮ F 0 = F . ◮ For b i true, delete c i + 1 from F i to get F i + 1 . ◮ For b i false, add c i + 1 to F i to get F i + 1 . Then p preserves satisfiability when for each addition step p i , if F i − 1 is satisfiable then F i is satisfiable. 11/49

  12. I NTRODUCTION A S EQUENCE OF C HECKERS C ONCLUSION R EFERENCES P ROOFS (3) NOTE : The definition above of clausal proof is very general. A checker may impose more specific syntactic requirements that guarantee the property. The next slide shows Nathan’s formalization based on the RAT (Reduced Asymmetric Tautology) check. Details on RAT are not the subject of today’s talk. All checkers discussed today use a formalization like the one on the next slide, based on RAT. 12/49

  13. I NTRODUCTION A S EQUENCE OF C HECKERS C ONCLUSION R EFERENCES F ORMALIZING S OUNDNESS Below, proofp is a recognizer for proofs, and solutionp checks that a formula is true under a given assignment, (defun refutationp (proof formula) (declare (xargs :guard (formulap formula))) (and (proofp proof formula) (member *empty-clause* proof))) (defun-sk exists-solution (formula) (exists assignment (solutionp assignment formula))) (defthm main-theorem (implies (and (formulap formula) (refutationp clause-list formula)) (not (exists-solution formula)))) 13/49

  14. I NTRODUCTION A S EQUENCE OF C HECKERS C ONCLUSION R EFERENCES F ORMALIZING S OUNDNESS (2) The following is easily proved by induction. Lemma. Suppose that p = � p 1 , p 2 , ..., p k � is a proof and F 0 is satisfiable. Then each F i is satisfiable. Soundness argument: 1. Deletion steps clearly preserve satisfiability. 2. Addition steps preserve satisfiability. [Must be proved!] 3. By the lemma, if F 0 is satisfiable then F k is satisfiable. 4. Since p k adds the empty clause, F k is unsatisfiable. 5. It follows immediately that F 0 is unsatisfiable. 14/49

  15. I NTRODUCTION A S EQUENCE OF C HECKERS C ONCLUSION R EFERENCES E FFICIENT P ROOF - CHECKING HOWEVER: Nathan’s checker was intended to be a proof of concept, not an efficient tool. On one example: ◮ Marijns’s checker: 1.5 seconds ◮ Nathan’s checker: 1 week Marijn’s request: a formally verified checker for SAT competitions This talk tells the (true) story of the development of such a checker. ◮ Its efficiency benefits in part from some techniques not yet invented at the time of Nathan’s work. 15/49

  16. I NTRODUCTION A S EQUENCE OF C HECKERS C ONCLUSION R EFERENCES E FFICIENT P ROOF - CHECKING (2) The flow for efficient, verified SAT proof-checking: 1. SAT solver verifies unsatisfiability of formula F ; generates alleged proof, p 0 . 2. DRAT-trim [2] consumes p 0 , outputs alleged proof p 1 for checker, in a format amenable to efficient checking. 3. Verified ACL2 checker validates that p 1 is a proof for F . 16/49

  17. I NTRODUCTION A S EQUENCE OF C HECKERS C ONCLUSION R EFERENCES O UTLINE I NTRODUCTION The Problem Towards a Solution Clauses Semantics: Assignments and Truth Proofs Formalizing Soundness Efficient Proof-checking A S EQUENCE OF C HECKERS [drat] The LRAT Proof Format [lrat-1] [lrat-2] [lrat-3] [lrat-4] C ONCLUSION R EFERENCES 17/49

  18. I NTRODUCTION A S EQUENCE OF C HECKERS C ONCLUSION R EFERENCES A S EQUENCE OF C HECKERS This table shows times (in seconds) for some checker runs, on examples provided by Marijn. test [rat] [drat] [lrat-1] [lrat-2] [lrat-3] [lrat-4] (Wetzler) (deletion) (fast-alist) (shrink) (clean up) (stobjs) uuf-100-3 20.64 8.59 0.01 0.01 0.01 0.00 tph6[-dd] - - 6.18 0.56 0.54 0.46 R_4_4_18 ∼ 1 week - 217.91 9.62 3.21 2.56 transform - - 47.80 9.59 8.82 8.77 schur - - 4674.18 1872.07 1884.23 246.94 Times do not include parsing. Warren Hunt has sped up our original parser, and there are plans to speed it up further by using a binary proof format (not discussed further here). 18/49

  19. I NTRODUCTION A S EQUENCE OF C HECKERS C ONCLUSION R EFERENCES A S EQUENCE OF C HECKERS (2) How this work progressed (will elaborate on the next slides). 1. [rat] Nathan’s RAT checker: no deletion 2. [drat] Added deletion (thus implementing DRAT) 3. [lrat-1] Avoid search and delete clauses efficiently, using fast-alists (applicative hash tables) and a linear proof format, and with soundness proved from scratch 4. [lrat-2] Shrink fast-alists to keep the formulas F i small 5. [lrat-3] Minor tweak to formula data-structure 6. [lrat-4] Added stobjs for assignments 19/49

  20. I NTRODUCTION A S EQUENCE OF C HECKERS C ONCLUSION R EFERENCES A S EQUENCE OF C HECKERS (3) Acknowledgments: ◮ Marijn helped a lot with getting us up to speed on SAT proof-checking based on RAT, and by supplying examples. ◮ Warren worked with me in the initial stages. Profiling (Marijn’s suggestion) helped with discovering bottlenecks: (include-book "centaur/memoize/old/profile" :dir :system) (profile-acl2) <evaluate forms> (memsum) 20/49

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Development of a Verified, Efficient Checker for SAT Proofs Matt Kaufmann (With contributions

Development of a Verified, Efficient Checker for SAT Proofs Matt Kaufmann (With contributions

T HE P ROBLEM T OWARDS A S OLUTION A S EQUENCE OF C HECKERS R ELATED W ORK C ONCLUSION R EFERENCES Development of a Verified, Efficient Checker for SAT Proofs Matt Kaufmann (With contributions from Marijn Heule, Warren Hunt, and Nathan Wetzler)

216 views • 21 slides
Verified Efficient Clausal Proof Checking for SAT Filip Mari c, Faculty of Mathematics,

Verified Efficient Clausal Proof Checking for SAT Filip Mari c, Faculty of Mathematics,

Introduction Unsatisfiability proof formats for SAT Verified efficient checking of clausal proofs Verified Efficient Clausal Proof Checking for SAT Filip Mari c, Faculty of Mathematics, Belgrade (joint work with Florian Haftmann, TU Munich)

516 views • 26 slides
How to get an efficient yet verified arbitrary-precision integer library Raphal Rieu-Helft

How to get an efficient yet verified arbitrary-precision integer library Raphal Rieu-Helft

How to get an efficient yet verified arbitrary-precision integer library Raphal Rieu-Helft (joint work with Guillaume Melquiond and Claude March) TrustInSoft Inria 1 / 20 Context, motivation, goals goal: efficient and formally verified

508 views • 22 slides
Proofs in the Pilots Seat Toward Verified Simultaneous Maneuvers in the Next-Generation

Proofs in the Pilots Seat Toward Verified Simultaneous Maneuvers in the Next-Generation

Proofs in the Pilots Seat Toward Verified Simultaneous Maneuvers in the Next-Generation Airborne Collision Avoidance System Brandon Bohrer (bbohrer@cs.cmu.edu) Who Came Here By Plane? Want to Get Home Alive? Background: Collision Avoidance

315 views • 13 slides
How to get an efficient yet verified arbitrary-precision integer library Raphal Rieu-Helft

How to get an efficient yet verified arbitrary-precision integer library Raphal Rieu-Helft

How to get an efficient yet verified arbitrary-precision integer library Raphal Rieu-Helft (joint work with Guillaume Melquiond and Claude March) TrustInSoft Inria November 13, 2018 1/21 Context, motivation, goals goal: efficient and

564 views • 21 slides
How to get an efficient yet verified arbitrary-precision integer library Raphal Rieu-Helft

How to get an efficient yet verified arbitrary-precision integer library Raphal Rieu-Helft

How to get an efficient yet verified arbitrary-precision integer library Raphal Rieu-Helft (joint work with Guillaume Melquiond and Claude March) TrustInSoft Inria May 28, 2018 1/31 Context, motivation, goals goal: efficient and

663 views • 33 slides
Automated and machine-verified security proofs of stateful protocols Andreas Hess 1 Sebastian

Automated and machine-verified security proofs of stateful protocols Andreas Hess 1 Sebastian

Automated and machine-verified security proofs of stateful protocols Andreas Hess 1 Sebastian Mdersheim 1 Achim Brucker 2,3 Anders Schlichtkrull 1 1 Technical University of Denmark 2 The University of Sheffield 3 University of Exeter Overview 1

650 views • 26 slides
Easy Generation and Efficient Validation of Proofs for SAT and QBF Marijn J.H. Heule 1/37

Easy Generation and Efficient Validation of Proofs for SAT and QBF Marijn J.H. Heule 1/37

Easy Generation and Efficient Validation of Proofs for SAT and QBF Marijn J.H. Heule 1/37 Introduction to SAT and QBF Clausal Proof Systems for SAT and QBF Abstract Proof System for SAT Inprocessing Clausal Proofs for QBF Preprocessing

919 views • 48 slides
Efficient Extraction of Skolem Functions from QRAT Proofs Marijn J.H. Heule Joint work with

Efficient Extraction of Skolem Functions from QRAT Proofs Marijn J.H. Heule Joint work with

Efficient Extraction of Skolem Functions from QRAT Proofs Marijn J.H. Heule Joint work with Martina Seidl and Armin Biere FMCAD, October 23, 2014 1/22 Introduction and Challenges From Clausal Proofs to Skolem Functions Running Example

322 views • 28 slides
Invisible Formal Methods: Generating Efficient Test Sets With a Model Checker John Rushby with

Invisible Formal Methods: Generating Efficient Test Sets With a Model Checker John Rushby with

Invisible Formal Methods: Generating Efficient Test Sets With a Model Checker John Rushby with Gr egoire Hamon and Leonardo de Moura Computer Science Laboratory SRI International Menlo Park, California, USA John Rushby, SR I Invisible FM

466 views • 44 slides
Efficient Delegation of Zero-Knowledge Proofs of Knowledge in a Pairing-Friendly Setting ebastien

Efficient Delegation of Zero-Knowledge Proofs of Knowledge in a Pairing-Friendly Setting ebastien

Efficient Delegation of Zero-Knowledge Proofs of Knowledge in a Pairing-Friendly Setting ebastien Canard (1) , David Pointcheval (2) and Olivier Sanders (1 , 2) S (1) Orange Labs, Caen, France (2) Ecole Normale Sup erieure, Paris,

556 views • 31 slides
Towards self-verification of HOL Light John Harrison Intel Corporation IJCAR 2006, Seattle

Towards self-verification of HOL Light John Harrison Intel Corporation IJCAR 2006, Seattle

Towards self-verification of HOL Light John Harrison Intel Corporation IJCAR 2006, Seattle August 18, 2006 0 Who checks the checker? Formalization in a proof checker is often used to ensure correctness of proofs. Pure mathematics

335 views • 21 slides
Nuspell: version 3 of the new spell checker FOSS spell checker implemented in C++17 with aid of

Nuspell: version 3 of the new spell checker FOSS spell checker implemented in C++17 with aid of

Nuspell: version 3 of the new spell checker FOSS spell checker implemented in C++17 with aid of Mozilla Sander van Geloven FOSDEM, Brussels February 1, 2020 . . . . . . . . . . . . . . . . . . . . . . . . . . . . .

611 views • 39 slides
Nuspell: the new spell checker FOSS spell checker implemented in C++14 with aid of Mozilla.

Nuspell: the new spell checker FOSS spell checker implemented in C++14 with aid of Mozilla.

Nuspell: the new spell checker FOSS spell checker implemented in C++14 with aid of Mozilla. Sander van Geloven FOSDEM, Brussels February 2, 2019 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .

327 views • 21 slides
DRAT-trim: Efficient Checking and Trimming Using Expressive Clausal Proofs Nathan Wetzler

DRAT-trim: Efficient Checking and Trimming Using Expressive Clausal Proofs Nathan Wetzler

DRAT-trim: Efficient Checking and Trimming Using Expressive Clausal Proofs Nathan Wetzler Marijn J.H. Heule Warren A. Hunt, Jr. The University of Texas at Austin Theory and Applications of Satisfiability Solving (SAT)

531 views • 33 slides
Efficient and Verified Finite-Field Operations Andres Erbsen, Jade Philipoom, Jason Gross, Robert

Efficient and Verified Finite-Field Operations Andres Erbsen, Jade Philipoom, Jason Gross, Robert

Efficient and Verified Finite-Field Operations Andres Erbsen, Jade Philipoom, Jason Gross, Robert Sloan, Adam Chlipala RWC 2019 g i t h u b . c o m / m i t - p l v / fi a t - c r y p t o Example of Tricky Tedium:

513 views • 25 slides
Outline Introduction Sigma-point Kalman filters Introduction Simulations with Lorenz model

Outline Introduction Sigma-point Kalman filters Introduction Simulations with Lorenz model

8 February 2008 Advanced Data Assimilation in strongly nonlinear systems Youmin Tang and Jaison Thomas Ambadan Environmental Science &amp; Engineering Program Natural Resources &amp; Environmental Science Data assimilation workshop at Banff,

444 views • 12 slides
FIRST QUARTER 2018 REVIEW Seth P. Bernstein President &amp; Chief Executive Officer John C.

FIRST QUARTER 2018 REVIEW Seth P. Bernstein President &amp; Chief Executive Officer John C.

April 26, 2018 FIRST QUARTER 2018 REVIEW Seth P. Bernstein President &amp; Chief Executive Officer John C. Weisenseel Chief Financial Officer Cautions Regarding Forward-Looking Statements Certain statements provided by management in this

400 views • 37 slides
Investing in Bostons Future Why Investing in Boston 2024 Is a Smart Opportunity The

Investing in Bostons Future Why Investing in Boston 2024 Is a Smart Opportunity The

Boston 2024: Investing in Bostons Future Why Investing in Boston 2024 Is a Smart Opportunity The International Olympic Committee has said it wants the U.S. to bid for the 2024 Olympic and Paralympic Games. Boston is the best city to

288 views • 10 slides
Fault-zone structure and weakening processes in basin- scale reverse faults: The Moonlight Fault

Fault-zone structure and weakening processes in basin- scale reverse faults: The Moonlight Fault

Fault-zone structure and weakening processes in basin- scale reverse faults: The Moonlight Fault Zone, South Island, New Zealand A Presentation by Richard Butts Titanium Rich Amphibole Kaersutite Pseudotachylite Gold Magnetite Works

138 views • 12 slides
Action Team Comfort Letter Presentation DNREC HSCA Advisory Committee September 4, 2014

Action Team Comfort Letter Presentation DNREC HSCA Advisory Committee September 4, 2014

EPA Region 3 Land Revitalization Action Team Comfort Letter Presentation DNREC HSCA Advisory Committee September 4, 2014 9/15/2014 1 U.S. Environmental Protection Agency Chris Thomas, Team Leader EPA Region 3 Land Revitalization Action

571 views • 29 slides
RED BANK CORRIDOR Public Involvement Meeting Madisonville Recreation Center October 1, 2013 !

RED BANK CORRIDOR Public Involvement Meeting Madisonville Recreation Center October 1, 2013 !

RED BANK CORRIDOR Public Involvement Meeting Madisonville Recreation Center October 1, 2013 ! start www.EasternCorridor.org The(Eastern(Corridor( Providing)east.west)connec1vity)for)the)Greater)Cincinna1)region) ! RegionallyCsupported!!! !

287 views • 24 slides
The Love Of God D W Behold, what manner of love the father hath bestowed upon us. - 1 Jn. 3:1 - 3

The Love Of God D W Behold, what manner of love the father hath bestowed upon us. - 1 Jn. 3:1 - 3

The Love Of God D W Behold, what manner of love the father hath bestowed upon us. - 1 Jn. 3:1 - 3 - DO Frederick M. Lehman, 1917 Frederick M. Lehman, 1917 Vs. 3 Meir Ben Isaac Nehoral, 1050 Arr. Claudia Lehman Mays Public Domain

612 views • 19 slides
Dean Lobdell Waste Management Director Fluor-B&amp;W Portsmouth Work Scope Description of

Dean Lobdell Waste Management Director Fluor-B&amp;W Portsmouth Work Scope Description of

Dean Lobdell Waste Management Director Fluor-B&amp;W Portsmouth Work Scope Description of scope of work &gt; X-326 Overview &gt; Waste Management &gt; Challenges and Successes &gt; Scope of Work Site Overview Portsmouth

598 views • 26 slides

More recommend