double rewriting for equivalential reasoning in acl2
play

Double Rewriting for Equivalential Reasoning in ACL2 Matt Kaufmann - PowerPoint PPT Presentation

Oct 17, 2022 •329 likes •537 views

Double Rewriting for Equivalential Reasoning in ACL2 Matt Kaufmann and J Strother Moore ACL2 Workshop, FLoC, Seattle, August 16, 2006 1 Introduction ACL2 provides a powerful congruence-based rewriting capability. However, some have

  1. Double Rewriting for Equivalential Reasoning in ACL2 Matt Kaufmann and J Strother Moore ACL2 Workshop, FLoC, Seattle, August 16, 2006 1

  2. Introduction ◮ ACL2 provides a powerful congruence-based rewriting capability. ◮ However, some have encountered an issue in using this feature. ◮ In this talk we describe that issue and a partial solution (starting with ACL2 Version 2.9.4, February, 2006). ◮ Above, we say “partial” because the solution requires users to annotate rewrite rules. We are soliciting ideas from the user community for how to automate this solution. 2

  3. Introduction ◮ ACL2 provides a powerful congruence-based rewriting capability. ◮ However, some have encountered an issue in using this feature. ◮ In this talk we describe that issue and a partial solution (starting with ACL2 Version 2.9.4, February, 2006). ◮ Above, we say “partial” because the solution requires users to annotate rewrite rules. We are soliciting ideas from the user community for how to automate this solution. 3

  4. Introduction ◮ ACL2 provides a powerful congruence-based rewriting capability. ◮ However, some have encountered an issue in using this feature. ◮ In this talk we describe that issue and a partial solution (starting with ACL2 Version 2.9.4, February, 2006). ◮ Above, we say “partial” because the solution requires users to annotate rewrite rules. We are soliciting ideas from the user community for how to automate this solution. 4

  5. Introduction ◮ ACL2 provides a powerful congruence-based rewriting capability. ◮ However, some have encountered an issue in using this feature. ◮ In this talk we describe that issue and a partial solution (starting with ACL2 Version 2.9.4, February, 2006). ◮ Above, we say “partial” because the solution requires users to annotate rewrite rules. We are soliciting ideas from the user community for how to automate this solution. 5

  6. Outline ◮ Introduction ◮ Review of congruence-based rewriting in ACL2 ◮ The problem with caching ◮ A partial solution ◮ Warning messages ◮ Conclusion and a plea for help 6

  7. Review of congruence-based rewriting in ACL2 The rewriter is given: ◮ a term, α ; ◮ a substitution, σ ; ◮ an equivalence relation, equiv ; and ◮ some assumptions, γ It returns a term β such that the following is an ACL2 theorem: ◮ ( implies γ ( equiv α/σ β )) The rewriter maintains a set of equivalence relations for which it can do such a rewrite. 7

  8. Review of congruence-based rewriting in ACL2 The rewriter is given: ◮ a term, α ; ◮ a substitution, σ ; ◮ an equivalence relation, equiv ; and ◮ some assumptions, γ It returns a term β such that the following is an ACL2 theorem: ◮ ( implies γ ( equiv α/σ β )) The rewriter maintains a set of equivalence relations for which it can do such a rewrite. 8

  9. Review of congruence-based rewriting in ACL2 The rewriter is given: ◮ a term, α ; ◮ a substitution, σ ; ◮ an equivalence relation, equiv ; and ◮ some assumptions, γ It returns a term β such that the following is an ACL2 theorem: ◮ ( implies γ ( equiv α/σ β )) The rewriter maintains a set of equivalence relations for which it can do such a rewrite. 9

  10. The problem with caching – Wishful thinking Distillation of an example from Dave Greve: (defequiv equiv) (defcong equiv iff (pred x) 1) (defthm pred-h (pred (h x))) (defthm g-to-h (equiv (g x) (h x))) (defthm pred-implies-f (implies (pred x) (iff (f x) t))) Consider the rewrite of (f (g y)) . NAIVELY : > (f (g y)) [matches pred-implies-f] >> (pred (g y)) [try to relieve hypothesis] >>> (g y) [rewrite inside-out, in equiv context (by defcong)] <<< (h y) [by g-to-h] << (pred (h y)) ... rewrites to t by pred-h 10

  11. The problem with caching – Wishful thinking Distillation of an example from Dave Greve: (defequiv equiv) (defcong equiv iff (pred x) 1) (defthm pred-h (pred (h x))) (defthm g-to-h (equiv (g x) (h x))) (defthm pred-implies-f (implies (pred x) (iff (f x) t))) Consider the rewrite of (f (g y)) . NAIVELY : > (f (g y)) [matches pred-implies-f] >> (pred (g y)) [try to relieve hypothesis] >>> (g y) [rewrite inside-out, in equiv context (by defcong)] <<< (h y) [by g-to-h] << (pred (h y)) ... rewrites to t by pred-h 11

  12. The problem with caching – Wishful thinking Distillation of an example from Dave Greve: (defequiv equiv) (defcong equiv iff (pred x) 1) (defthm pred-h (pred (h x))) (defthm g-to-h (equiv (g x) (h x))) (defthm pred-implies-f (implies (pred x) (iff (f x) t))) Consider the rewrite of (f (g y)) . NAIVELY : > (f (g y)) [matches pred-implies-f] >> (pred (g y)) [try to relieve hypothesis] >>> (g y) [rewrite inside-out, in equiv context (by defcong)] <<< (h y) [by g-to-h] << (pred (h y)) ... rewrites to t by pred-h 12

  13. The problem with caching – The reality (defcong equiv iff (pred x) 1) (defthm pred-h (pred (h x))) (defthm g-to-h (equiv (g x) (h x))) (defthm pred-implies-f (implies (pred x) (iff (f x) t))) ------------------------------------------------- > (f (g y)) >> (g y) [rewrite inside-out] << (g y) [unable to apply g-to-h] [Now match pred-implies-f] > (f x) {x := (g y)} >> (pred x) {x := (g y)} [relieve hyp] >>> x {x := (g y)} [rw inside-out] <<< (g y) [by lookup] << (pred (g y)) [cannot be further rewritten, so ‘relieve hyp’ fails] 13

  14. A partial solution (defcong equiv iff (pred x) 1) (defthm pred-h (pred (h x))) (defthm g-to-h (equiv (g x) (h x))) (defthm pred-implies-f (implies (pred (double-rewrite x)) (iff (f x) t))) ------------------------------------------------- > (f x) {x := (g y)} >> (pred (d-rw x)) {x := (g y)} >>> (d-rw x) {x := (g y)} [rw inside-out] >>>> (g y) {} [d-rw, so rewrite again!] <<<< (h y) [by g-to-h] <<< (h y) << (pred (h y)) [Now rewrite with pred-h.] >> (pred (h x)) {x := y} << t [by pred-h] 14

  15. Warning messages ACL2 warns as follows when it sees possible benefit for the insertion of a double-rewrite call. See the paper for details. (Most of the implementation work was in producing warnings.) ACL2 Warning [Double-rewrite] in ( DEFTHM PRED-IMPLIES-F ...): In a :REWRITE rule generated from PRED-IMPLIES-F, equivalence relation EQUIV is maintained at one problematic occurrence of variable X in the first hypothesis, but not at any binding occurrence of X. Consider replacing that occurrence of X in the first hypothesis with (DOUBLE-REWRITE X). See :doc double-rewrite for more information on this issue. 15

  16. Conclusion and a plea for help ◮ Manual insertion of double-rewrite can avoid failures to relieve hypotheses due to rewrite caching. ◮ NOTE : We automate double rewriting (since Version 2.9, October 2004) at the top level of a hypothesis. ◮ CURRENT ADVICE : Insert double-rewrite when there is a warning. If ACL2 seems slow, use accumulated-persistence for debug. ◮ CHALLENGE : Find heuristics for when to insert double-rewrite without significantly slowing down the rewriter. Insertion to eliminate every warning appears to be too expensive (see 100x example in the paper). 16

  17. Conclusion and a plea for help ◮ Manual insertion of double-rewrite can avoid failures to relieve hypotheses due to rewrite caching. ◮ NOTE : We automate double rewriting (since Version 2.9, October 2004) at the top level of a hypothesis. ◮ CURRENT ADVICE : Insert double-rewrite when there is a warning. If ACL2 seems slow, use accumulated-persistence for debug. ◮ CHALLENGE : Find heuristics for when to insert double-rewrite without significantly slowing down the rewriter. Insertion to eliminate every warning appears to be too expensive (see 100x example in the paper). 17

  18. Conclusion and a plea for help ◮ Manual insertion of double-rewrite can avoid failures to relieve hypotheses due to rewrite caching. ◮ NOTE : We automate double rewriting (since Version 2.9, October 2004) at the top level of a hypothesis. ◮ CURRENT ADVICE : Insert double-rewrite when there is a warning. If ACL2 seems slow, use accumulated-persistence for debug. ◮ CHALLENGE : Find heuristics for when to insert double-rewrite without significantly slowing down the rewriter. Insertion to eliminate every warning appears to be too expensive (see 100x example in the paper). 18

  19. Conclusion and a plea for help ◮ Manual insertion of double-rewrite can avoid failures to relieve hypotheses due to rewrite caching. ◮ NOTE : We automate double rewriting (since Version 2.9, October 2004) at the top level of a hypothesis. ◮ CURRENT ADVICE : Insert double-rewrite when there is a warning. If ACL2 seems slow, use accumulated-persistence for debug. ◮ CHALLENGE : Find heuristics for when to insert double-rewrite without significantly slowing down the rewriter. Insertion to eliminate every warning appears to be too expensive (see 100x example in the paper). 19

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Hint Orchestration Using ACL2's Simplifier Sol Swords Centaur Technology, Inc. ACL2 Workshop

Hint Orchestration Using ACL2's Simplifier Sol Swords Centaur Technology, Inc. ACL2 Workshop

Hint Orchestration Using ACL2's Simplifier Sol Swords Centaur Technology, Inc. ACL2 Workshop 2018 This talk is for hint abusers This might be you if: You cant be bothered to figure out a good rewriting strategy You just dont know

541 views • 30 slides
ACL2(ml): Machine-Learning for ACL2 J. Heras and E. Komendantskaya

ACL2(ml): Machine-Learning for ACL2 J. Heras and E. Komendantskaya

ACL2(ml): Machine-Learning for ACL2 J. Heras and E. Komendantskaya http://staff.computing.dundee.ac.uk/katya/acl2ml/ 12 July 2014 ACL214 J. Heras ACL2(ml): Machine-Learning for ACL2 1/23 Outline Some Challenges in ACL2 1 An overview of

871 views • 56 slides
Reducing Invariant Proofs to Finite Search via Rewriting ACL2 Workshop 2004 Austin, Texas,

Reducing Invariant Proofs to Finite Search via Rewriting ACL2 Workshop 2004 Austin, Texas,

Reducing Invariant Proofs to Finite Search via Rewriting ACL2 Workshop 2004 Austin, Texas, November 18, 2004 Rob Sumners and Sandip Ray robert.sumners@amd.com, sandip@cs.utexas.edu 1 What are Invariants ? A Term is either a

380 views • 16 slides
Hygienic Macros for the ACL2 Theorem Prover Carl Eastlund Matthias Felleisen cce@ccs.neu.edu

Hygienic Macros for the ACL2 Theorem Prover Carl Eastlund Matthias Felleisen cce@ccs.neu.edu

Hygienic Macros for the ACL2 Theorem Prover Carl Eastlund Matthias Felleisen cce@ccs.neu.edu matthias@ccs.neu.edu Northeastern University Boston, MA, USA 1 The ACL2 Theorem Prover 2 (defun double (x) (+ x x)) (defun map-double (lst) (if

898 views • 52 slides
Automated Reasoning Rewrite Rules Jacques Fleuriot Automated Reasoning Rewrite Rules Lecture

Automated Reasoning Rewrite Rules Jacques Fleuriot Automated Reasoning Rewrite Rules Lecture

Automated Reasoning Rewrite Rules Jacques Fleuriot Automated Reasoning Rewrite Rules Lecture 8, page 1 Term Rewriting Rewriting is a technique for replacing terms in an expression with equivalent terms useful for simplification, e.g.

485 views • 23 slides
Axiomatic Events in ACL2 ( r ) Ruben Gamboa, John Cowles, and Nadya Kuzmina University of Wyoming

Axiomatic Events in ACL2 ( r ) Ruben Gamboa, John Cowles, and Nadya Kuzmina University of Wyoming

Axiomatic Events in ACL2 ( r ) Ruben Gamboa, John Cowles, and Nadya Kuzmina University of Wyoming Introduction ACL2 ( r ) is a variant of ACL2 that supports the irrational numbers It is distributed with the ACL2 sources The foundations of ACL2

479 views • 29 slides
How Can I Do That with ACL2? Recent Enhancements to ACL2 Matt Kaufmann and J Strother Moore 1

How Can I Do That with ACL2? Recent Enhancements to ACL2 Matt Kaufmann and J Strother Moore 1

How Can I Do That with ACL2? Recent Enhancements to ACL2 Matt Kaufmann and J Strother Moore 1 Introduction (1) ACL2 Version 3.5 was released in May, 2009. Release note items (see :DOC release-notes) since then: (+ 41 ; 3.6 (8/2009) 3 ;

622 views • 49 slides
Flat Domains and Recursive Equations in ACL2 by John Cowles University of Wyoming 1 ACL2 is a

Flat Domains and Recursive Equations in ACL2 by John Cowles University of Wyoming 1 ACL2 is a

Flat Domains and Recursive Equations in ACL2 by John Cowles University of Wyoming 1 ACL2 is a logic of total functions. Some recursive equations have no satisfying ACL2 functions: No ACL2 function g satisfies this recursive equation

518 views • 35 slides
A Simple Java Code Generator for ACL2 Based on a Deep Embedding of ACL2 in Java Alessandro

A Simple Java Code Generator for ACL2 Based on a Deep Embedding of ACL2 in Java Alessandro

A Simple Java Code Generator for ACL2 Based on a Deep Embedding of ACL2 in Java Alessandro Coglio Kestrel Institute Workshop 2018 ATJ Java code generator for ACL2 (ACL2 To Java) based on AIJ deep embedding of ACL2 in Java (ACL2 In Java)

901 views • 38 slides
Hygienic Macros for ACL2 Carl Eastlund Matthias Felleisen cce@ccs.neu.edu matthias@ccs.neu.edu

Hygienic Macros for ACL2 Carl Eastlund Matthias Felleisen cce@ccs.neu.edu matthias@ccs.neu.edu

Hygienic Macros for ACL2 Carl Eastlund Matthias Felleisen cce@ccs.neu.edu matthias@ccs.neu.edu Northeastern University Boston, MA, USA 1 ACL2 2 ACL2 Formal verification based on pure, first-order Common Lisp. Used to model critical

909 views • 61 slides
Computer Supported Modeling and Reasoning David Basin, Achim D. Brucker, Jan-Georg Smaus, and

Computer Supported Modeling and Reasoning David Basin, Achim D. Brucker, Jan-Georg Smaus, and

Computer Supported Modeling and Reasoning David Basin, Achim D. Brucker, Jan-Georg Smaus, and Burkhart Wolff April 2005 http://www.infsec.ethz.ch/education/permanent/csmr/ Isabelle: Term Rewriting Burkhart Wolff Isabelle: Term Rewriting 555

662 views • 32 slides
Computer Supported Modeling and Reasoning David Basin, Achim D. Brucker, Jan-Georg Smaus, and

Computer Supported Modeling and Reasoning David Basin, Achim D. Brucker, Jan-Georg Smaus, and

Computer Supported Modeling and Reasoning David Basin, Achim D. Brucker, Jan-Georg Smaus, and Burkhart Wolff April 2005 http://www.infsec.ethz.ch/education/permanent/csmr/ Isabelle: Term Rewriting Burkhart Wolff Isabelle: Term Rewriting 555

762 views • 43 slides
Adding a typing Adding a typing mechanism to ACL2 mechanism to ACL2 Vernon Austel Vernon

Adding a typing Adding a typing mechanism to ACL2 mechanism to ACL2 Vernon Austel Vernon

Adding a typing Adding a typing mechanism to ACL2 mechanism to ACL2 Vernon Austel Vernon Austel IBM IBM Outline Outline What a typed ACL2 might look like Vague proposal concerning how to change ACL2 to allow experimentation with type

873 views • 19 slides
Automated Reasoning Rewriting-Based Deduction Temur Kutsia RISC, Johannes Kepler University,

Automated Reasoning Rewriting-Based Deduction Temur Kutsia RISC, Johannes Kepler University,

Automated Reasoning Rewriting-Based Deduction Temur Kutsia RISC, Johannes Kepler University, Linz, Austria kutsia@risc.jku.at The Equality Relation Equality . = : A very important relation Reflexive Symmetric Transitive

1.32k views • 117 slides
Term-Level Reasoning in Support of Bit-blasting Sol Swords Centaur Technology, Inc. Tool

Term-Level Reasoning in Support of Bit-blasting Sol Swords Centaur Technology, Inc. Tool

Term-Level Reasoning in Support of Bit-blasting Sol Swords Centaur Technology, Inc. Tool for proving ACL2 theorems via bit-level methods Introduction Supports BDD and AIG/SAT based reasoning The GL Bit-blasting Library

581 views • 27 slides
DrACuLa: ACL2 in DrScheme Dale Vaillancourt Rex Page Matthias Felleisen ACL2 Workshop August

DrACuLa: ACL2 in DrScheme Dale Vaillancourt Rex Page Matthias Felleisen ACL2 Workshop August

DrACuLa: ACL2 in DrScheme Dale Vaillancourt Rex Page Matthias Felleisen ACL2 Workshop August 16, 2006 1 Undergraduate Software Engineering Page teaches two SE courses at Oklahoma U. Covers usual topics - specification, documentation,

557 views • 51 slides
Reducing Metadata Leakage from Encrypted Files and Communication with PURBs Kirill Nikitin * ,

Reducing Metadata Leakage from Encrypted Files and Communication with PURBs Kirill Nikitin * ,

Reducing Metadata Leakage from Encrypted Files and Communication with PURBs Kirill Nikitin * , Ludovic Barman * , Wouter Lueks, Matthew Underwood, Jean-Pierre Hubaux, and Bryan Ford cole polytechnique fdrale de Lausanne (EPFL) @ni_kirill

992 views • 67 slides
Q2 Fiscal Year 2021 Financial Review 1 | DocuSign PUBLIC DocuSign PUBLIC DocuSign PUBLIC Safe

Q2 Fiscal Year 2021 Financial Review 1 | DocuSign PUBLIC DocuSign PUBLIC DocuSign PUBLIC Safe

Q2 Fiscal Year 2021 Financial Review 1 | DocuSign PUBLIC DocuSign PUBLIC DocuSign PUBLIC Safe Harbor This presentation contains forward- looking statements that are based on our managements beliefs and assumptions and on informat ion

298 views • 15 slides
An Introduc tion to We b Eng ine e ring We e k 1 Syllabus Syllabus

An Introduc tion to We b Eng ine e ring We e k 1 Syllabus Syllabus

An Introduc tion to We b Eng ine e ring We e k 1 Syllabus Syllabus http://www.csun.edu/~twang/595WEB/Syllab p // / g/ / y us Introduction Session Introduction Session Introduce yourself I t d lf Name, majors, expertise,

2.31k views • 32 slides
Stokes waves with constant vorticity: Numerical computation Vera Mikyoung Hur with Sergey

Stokes waves with constant vorticity: Numerical computation Vera Mikyoung Hur with Sergey

Stokes waves with constant vorticity: Numerical computation Vera Mikyoung Hur with Sergey Dyachenko F . Trlrs do, Silva (md I ) . 298 A . 11. Peregrine Special thanks to ICERM (Image from Teles da Silva and Peregrine (1988)) FICCKE 1.5. X

288 views • 15 slides
Inter-procedural Control Flow Analysis Using Constraint-based Approach cs6463 1 The Dynamic

Inter-procedural Control Flow Analysis Using Constraint-based Approach cs6463 1 The Dynamic

Inter-procedural Control Flow Analysis Using Constraint-based Approach cs6463 1 The Dynamic Dispatch Problem Which function is called by p(x)? int myFunc ( int (*p)(int), ) { return p(x); } P is a function pointer. What

364 views • 20 slides
On Tight Security Proofs for Schnorr Signatures Nils Fleischhacker 1 Tibor Jager 2 oder 1

On Tight Security Proofs for Schnorr Signatures Nils Fleischhacker 1 Tibor Jager 2 oder 1

On Tight Security Proofs for Schnorr Signatures Nils Fleischhacker 1 Tibor Jager 2 oder 1 Dominique Schr 1 Saarland University 2 Horst G ortz Institute for IT Security, Ruhr-University Bochum December 9, 2014 (Informal) main Result The

1.35k views • 36 slides
Amenable actions of the infinite permutation group Lecture III Juris Stepr ans York

Amenable actions of the infinite permutation group Lecture III Juris Stepr ans York

Amenable actions of the infinite permutation group Lecture III Juris Stepr ans York University Young Set Theorists Meeting March 2011, Bonn Juris Stepr ans Amenable actions It will be shown in Lecture III that if the natural

404 views • 18 slides
MATH529 Fundamentals of Optimization Fundamentals of Constrained Optimization II Marco A.

MATH529 Fundamentals of Optimization Fundamentals of Constrained Optimization II Marco A.

MATH529 Fundamentals of Optimization Fundamentals of Constrained Optimization II Marco A. Montes de Oca Mathematical Sciences, University of Delaware, USA 1 / 33 Multiple equality constraints: Example A motor company makes cars, trucks and

1.09k views • 33 slides

More recommend