encoding induction in correctness proofs of program
play

Encoding Induction in Correctness Proofs of Program Transformations - PowerPoint PPT Presentation

Oct 15, 2022 •47 likes •307 views

Encoding Induction in Correctness Proofs of Program Transformations as a Termination Problem Conrad Rau, David Sabel and Manfred Schmidt-Schau Goethe-University, Frankfurt am Main, Germany WST 2012, Obergurgl, Austria 1 Introduction

  1. Encoding Induction in Correctness Proofs of Program Transformations as a Termination Problem Conrad Rau, David Sabel and Manfred Schmidt-Schauß Goethe-University, Frankfurt am Main, Germany WST 2012, Obergurgl, Austria 1

  2. Introduction Calculus & Program Transformations Proving Correctness Encoding Conclusion Introduction and Motivation Motivation: Automate correctness proofs of program transformations Programming language: Core language, modelled as extended λ -calculus Correctness of program transformations: Based on contextual equivalence Correctness proof uses: Diagrams (already automated) Induction (automate through a termination proof ) David Sabel Correctness Proofs of Program Transformations as a Termination Problem C. Rau, D. Sabel, M. Schmidt-Schauß 2/14

  3. Introduction Calculus & Program Transformations Proving Correctness Encoding Conclusion Related and Own Work Schmidt-Schauß, Sch¨ utz, Sabel, 2008 Extended λ -calculus LR and correctness of program transformations via diagrams; manual proofs Wells, Plump and Kamareddine, 2003 Diagrams to show meaning preservation R., Schmidt-Schauß, 2010, 2011 Compute diagrams in extended λ -calculi Fuhs, Giesl, Pl¨ ucker, Schneider-Kamp, Falke, 2009 Termination of integer term rewriting David Sabel Correctness Proofs of Program Transformations as a Termination Problem C. Rau, D. Sabel, M. Schmidt-Schauß 3/14

  4. Introduction Calculus & Program Transformations Proving Correctness Encoding Conclusion Program Calculus, Contextual Equivalence Definition (Program calculus ( E , C , sr − → , A ) ) E : Set of expressions C : Set of contexts sr ,l sr − →⊆ E × E : Reduction relation, usually labeled − − → A ⊆ E : Set of answers Example (Extended λ -calculus: LR) call-by-need λ -calculus, core language of pure Haskell sr , ∗ Convergence : e ⇓ iff e − − → a where a ∈ A (also called termination) Definition (Contextual Equivalence for ( E , C , sr − → , A ) ) Contextual approximation : e 1 ≤ c e 0 ⇐ ⇒ ∀ C ∈ C : C [ e 1 ] ⇓ = ⇒ C [ e 0 ] ⇓ Contextual equivalence : e 1 ∼ c e 0 ⇐ ⇒ e 1 ≤ c e 0 ∧ e 0 ≤ c e 1 David Sabel Correctness Proofs of Program Transformations as a Termination Problem C. Rau, D. Sabel, M. Schmidt-Schauß 4/14

  5. Introduction Calculus & Program Transformations Proving Correctness Encoding Conclusion Program Transformations Definition (Program Transformation, Correctness) T A Program transformation : − → ⊆ ( E × E ) is correct iff T − → e 0 = ⇒ e 1 ∼ c e 0 e 1 Focus on ≤ c , since ∼ c = ≤ c ∩ ≥ c T − → is called T convergence preserving iff e 1 − → e 0 ∧ e 1 ⇓ = ⇒ e 0 ⇓ context-closed for T ′ → iff convergence preservation of T − − → implies T ′ − → ⊆ ≤ c R ( T ) T (e.g. − − − → := { ( R [ e 1 ] , R [ e 0 ]) | e 1 − → e 0 , R ∈ R} ) Focus on c. p., since T − → can easily be context-closed David Sabel Correctness Proofs of Program Transformations as a Termination Problem C. Rau, D. Sabel, M. Schmidt-Schauß 5/14

  6. � � � � � � � � � � � � � � � Introduction Calculus & Program Transformations Proving Correctness Encoding Conclusion Proving Convergence Preservation Prove convergence preservation for T T − → , i.e. e 1 − → e 0 ∧ e 1 ⇓ = ⇒ e 0 ⇓ : T � e 0 e 1 sr ,l 1 sr ,l ′ 1 T Outline of Convergence Preservation Proof for − → e 2 e ′ T 2 ∀ e 1 , e 0 ∈ E with e 1 − → e 0 sr ,l T sr ,l ′ 1 Determine all overlaps e 2 sr ,l 2 ← − − e 1 − → e 0 and join 2 them into: Sets of diagrams . . . . . . 2 Construct converging reduction sequence for e 0 using the diagram sets sr ,l ′ sr ,l n m a 1 a 0 David Sabel Correctness Proofs of Program Transformations as a Termination Problem C. Rau, D. Sabel, M. Schmidt-Schauß 6/14

  7. � � � � � � Introduction Calculus & Program Transformations Proving Correctness Encoding Conclusion Forking and Answer Diagrams T Diagram for − → : Rewrite rule S L � S R on abstract reduction sequences (ARSs) sr ,l n sr ,l n − 1 sr ,l 1 T . . . � e 0 e n e 1 concrete sequence: a sr ,l n sr ,l n − 1 sr ,l 1 T � e 0 . . . e n e 1 abstract sequence: A “ + ” denotes transitive closure of reductions sr ,l ′ sr ,l ′ sr ,l n sr ,l 1 − T → � T → . . . T 1 Forking diagram : ← − − − . . . ← − − − − − → ← − − − . . . ← − − − m Finite representation of overlaps and joining sequences Represent set of rewrite rules on concrete sequences Answer diagram : A T sr ,l n sr ,l 1 − → � A ← − − − . . . ← − − − DF ( T → ) , DA ( T − − → ) : Sets of diagrams (i.e. rewriting systems) David Sabel Correctness Proofs of Program Transformations as a Termination Problem C. Rau, D. Sabel, M. Schmidt-Schauß 7/14

  8. � � � � � � � � � � � � Introduction Calculus & Program Transformations Proving Correctness Encoding Conclusion Complete Sets of Diagrams i S ,llet Example (Diagrams for − − − − → ) i S ,llet � i S ,llet � i S ,llet � i S ,llet � i S ,llet � DF · · · · · · · · · · � � � � � � � � � � � � � � � � sr ,a � sr ,a sr ,lll, + sr ,a sr ,a sr ,lll, + sr ,lll, + · sr ,a sr ,lll, + sr ,a i S ,llet � i S ,llet � · · sr ,llet � · · · · · � � � � � � i S ,llet DF A − − − − → � A T Definition (Complete Diagram Set for → ) − DF ( T − → ) is complete , if every ARS of the form sr ,l n sr ,l 1 − T → is rewritable by a diagram in DF ( T ← − − − . . . ← − − − − → ) A DA ( T → ) is complete , if every sequence A T − − → is rewritable by a diagram in DA ( T − → ) David Sabel Correctness Proofs of Program Transformations as a Termination Problem C. Rau, D. Sabel, M. Schmidt-Schauß 8/14

  9. Introduction Calculus & Program Transformations Proving Correctness Encoding Conclusion Proving Correctness through Induction Construct an evaluation through diagram application and induction David Sabel Correctness Proofs of Program Transformations as a Termination Problem C. Rau, D. Sabel, M. Schmidt-Schauß 9/14

  10. Introduction Calculus & Program Transformations Proving Correctness Encoding Conclusion Proving Correctness through Induction Construct an evaluation through diagram application and induction i S ,llet � e 0 a 1 David Sabel Correctness Proofs of Program Transformations as a Termination Problem C. Rau, D. Sabel, M. Schmidt-Schauß 9/14

  11. Introduction Calculus & Program Transformations Proving Correctness Encoding Conclusion Proving Correctness through Induction Construct an evaluation through diagram application and induction i S ,llet � e 0 a 1 i S ,llet A − − − − → � A David Sabel Correctness Proofs of Program Transformations as a Termination Problem C. Rau, D. Sabel, M. Schmidt-Schauß 9/14

  12. � � � Introduction Calculus & Program Transformations Proving Correctness Encoding Conclusion Proving Correctness through Induction Construct an evaluation through diagram application and induction i S ,llet � e 0 i S ,llet � e 0 a 1 e 1 i S ,llet sr ,l 1 A − − − − → � A e 2 sr ,l 2 . . . sr ,l n a 1 David Sabel Correctness Proofs of Program Transformations as a Termination Problem C. Rau, D. Sabel, M. Schmidt-Schauß 9/14

  13. � � � � Introduction Calculus & Program Transformations Proving Correctness Encoding Conclusion Proving Correctness through Induction Construct an evaluation through diagram application and induction i S ,llet � e 0 i S ,llet � e 0 a 1 e 1 i S ,llet sr ,l 1 A − − − − → � A e 2 sr ,l 2 . . . sr ,l n a 1 i S ,llet � · · � � � � � sr ,a sr ,a · David Sabel Correctness Proofs of Program Transformations as a Termination Problem C. Rau, D. Sabel, M. Schmidt-Schauß 9/14

  14. � � � � Introduction Calculus & Program Transformations Proving Correctness Encoding Conclusion Proving Correctness through Induction Construct an evaluation through diagram application and induction i S ,llet � e 0 i S ,llet � e 0 a 1 e 1 � ����� i S ,llet sr ,l 1 A − − − − → � A sr ,l 1 e 2 sr ,l 2 . . . sr ,l n a 1 i S ,llet � · · � � � � � sr ,a sr ,a · David Sabel Correctness Proofs of Program Transformations as a Termination Problem C. Rau, D. Sabel, M. Schmidt-Schauß 9/14

  15. � � � � � � � Introduction Calculus & Program Transformations Proving Correctness Encoding Conclusion Proving Correctness through Induction Construct an evaluation through diagram application and induction i S ,llet � e 0 i S ,llet � e 0 i S ,llet � e 0 a 1 e 1 e 1 � ����� i S ,llet sr ,l 1 sr ,l 1 A − − − − → � A sr ,l 1 e 2 e 2 sr ,l 2 sr ,l 2 . . . . . . sr ,l n sr ,l n a 1 a 1 i S ,llet � · · � � � � � sr ,a sr ,a · David Sabel Correctness Proofs of Program Transformations as a Termination Problem C. Rau, D. Sabel, M. Schmidt-Schauß 9/14

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Induction and Program Correctness Peter J. Haas INFO 150 Fall Semester 2019 Lecture 10 1/ 8

Induction and Program Correctness Peter J. Haas INFO 150 Fall Semester 2019 Lecture 10 1/ 8

Induction and Program Correctness Peter J. Haas INFO 150 Fall Semester 2019 Lecture 10 1/ 8 Overview Goal I Apply inductive reasoning to Java programs I In context of loops and recursion Lecture 10 2/ 8 Program Correctness Informally: A

143 views • 12 slides
Induction and Its Applications Example for Regular Induction: Correctness of a Decimal-

Induction and Its Applications Example for Regular Induction: Correctness of a Decimal-

10/3/2016 Lecture Outline Review of Induction and Strong Induction Example: A theorem about the first n natural numbers. CSE373: Data Structures and Algorithms Example for Strong Induction: Making Postage Induction and Its

498 views • 4 slides
Program extraction from proofs: induction and coinduction Ulrich Berger Swansea University 1 /

Program extraction from proofs: induction and coinduction Ulrich Berger Swansea University 1 /

FP Seminar, Nottingham Program extraction from proofs: induction and coinduction Ulrich Berger Swansea University 1 / 22 Program extraction? Thesis: Program extraction from proofs has a good chance to become an accepted methodology for

374 views • 22 slides
Correctness of Program Transformations: Automating Diagram-Based Proofs David Sabel

Correctness of Program Transformations: Automating Diagram-Based Proofs David Sabel

Correctness of Program Transformations: Automating Diagram-Based Proofs David Sabel Goethe-University Frankfurt am Main, Germany Research supported by the Deutsche Forschungsgemeinschaft (DFG) under grant SA 2908/3-1. Motivation reasoning

736 views • 72 slides
Induction and Its Applications Part 1: Algorithm Correctness, Loop Invariants, and Induction

Induction and Its Applications Part 1: Algorithm Correctness, Loop Invariants, and Induction

10/3/2016 CSE373: Data Structures and Algorithms Induction and Its Applications Part 1: Algorithm Correctness, Loop Invariants, and Induction Steve Tanimoto Autumn 2016 The cover from Francesco Maurolico's Arithmeticorum Libri Duo (1575),

154 views • 3 slides
Logic for Computer Science 10 Proofs by induction Wouter Swierstra University of Utrecht 1

Logic for Computer Science 10 Proofs by induction Wouter Swierstra University of Utrecht 1

Logic for Computer Science 10 Proofs by induction Wouter Swierstra University of Utrecht 1 Last time Induction 2 This lecture Proofs by induction 3 Previously: definitions using induction In the last lecture, we studied how to give an

831 views • 68 slides
Program Verification (Rosen, Sections 5.5) TOPICS Program Correctness Preconditions &

Program Verification (Rosen, Sections 5.5) TOPICS Program Correctness Preconditions &

Program Verification (Rosen, Sections 5.5) TOPICS Program Correctness Preconditions & Postconditions Program Verification Assignments Composition Conditionals Loops Proofs about Programs Why

537 views • 36 slides
Proofs about Programs Why make you study logic? Program Verification Why make you do

Proofs about Programs Why make you study logic? Program Verification Why make you do

Proofs about Programs Why make you study logic? Program Verification Why make you do proofs? (Rosen, Sections 5.5) Because we want to prove properties of TOPICS programs: Program Correctness Preconditions &

323 views • 8 slides
Customised Induction Rules for Proving Correctness of Imperative Programs Angela Wallenburg

Customised Induction Rules for Proving Correctness of Imperative Programs Angela Wallenburg

Customised Induction Rules for Proving Correctness of Imperative Programs Angela Wallenburg angelaw@cs.chalmers.se 4th International Symposium June 9, 2005, L okeberg Outline 1. Problem: Induction and Loops 2. First approach: Use idea

821 views • 34 slides
A3.1 Mathematical Induction direct proof indirect proof (proof by contradiction)

A3.1 Mathematical Induction direct proof indirect proof (proof by contradiction)

Discrete Mathematics in Computer Science September 23, 2020 A3. Proofs II Discrete Mathematics in Computer Science A3. Proofs II A3.1 Mathematical Induction Malte Helmert, Gabriele R oger A3.2 Structural Induction University of Basel

188 views • 6 slides
Program Correctness Assert formal correctness statements about

Program Correctness Assert formal correctness statements about

Program Correctness Assert formal correctness statements about cri4cal parts of a program and reason effec4vely A program is intended to carry out a

1.01k views • 57 slides
Proving Program Correctness The Axiomatic Approach What is Correctness? Correctness:

Proving Program Correctness The Axiomatic Approach What is Correctness? Correctness:

3/10/10 Proving Program Correctness The Axiomatic Approach What is Correctness? Correctness: partial correctness + termination Partial correctness: Program implements its specification 1 3/10/10 Proving Partial Correctness

420 views • 13 slides
Foundations of Computer Science Lecture 8 Proofs with Recursive Objects Structural Induction:

Foundations of Computer Science Lecture 8 Proofs with Recursive Objects Structural Induction:

Foundations of Computer Science Lecture 8 Proofs with Recursive Objects Structural Induction: Induction on Recursively Defined Objects Proving an object is not in a recursive set Examples: sets, sequences, trees Last Time 1 Recursion. 2

169 views • 15 slides
08Program Verification II CS 5209: Foundation in Logic and AI Martin Henz and Aquinas Hobor

08Program Verification II CS 5209: Foundation in Logic and AI Martin Henz and Aquinas Hobor

Review Hoare Triples; Partial and Total Correctness Practical Aspects of Correctness Proofs Correctness of the Factorial Function Proof Calculus for Total Correctness 08Program Verification II CS 5209: Foundation in Logic and AI Martin

778 views • 39 slides
Induction and Its Applications Steve Tanimoto Winter 2016 This lecture material is based on

Induction and Its Applications Steve Tanimoto Winter 2016 This lecture material is based on

1/7/2016 Lecture Outline Proving the Correctness of Algorithms Preconditions and Postconditions Loop Invariants CSE373: Data Structures and Algorithms Induction Math Review Using Induction to Prove Algorithms

220 views • 6 slides
Structured Induction Proofs in Isabelle/Isar Makarius April 2006 1. Motivation 2. The

Structured Induction Proofs in Isabelle/Isar Makarius April 2006 1. Motivation 2. The

Structured Induction Proofs in Isabelle/Isar Makarius April 2006 1. Motivation 2. The Isabelle/Isar framework 3. The induct method 4. Common induction patterns Motivation Introduction Isabelle/Pure: simple logical framework (models abstract

585 views • 24 slides
ranges from 1 to the n um b er of i clauses | certainly ( n ), where = the O

ranges from 1 to the n um b er of i clauses | certainly ( n ), where = the O

Indep enden t Set Problem Input: a graph and a lo w er b ound . G k Output: \y es" i there are at least k indep endent no des of G ; i.e., no des with no edges in terconnecting. Reduction from: 3SA

189 views • 5 slides
Recursion READING: LC textbook chapter 7 Recursion Recursive algorithms A

Recursion READING: LC textbook chapter 7 Recursion Recursive algorithms A

Summary Topics recursion overview simple examples Sierpinski gasket counting blobs in a grid csci 210: Data Structures Hanoi towers Recursion READING: LC textbook chapter 7 Recursion Recursive

308 views • 7 slides
Proving Correctness of Compilers Using Structured Graphs Patrick Bahr University of Copenhagen,

Proving Correctness of Compilers Using Structured Graphs Patrick Bahr University of Copenhagen,

u n i v e r s i t y o f c o p e n h a g e n d e p a r t m e n t o f c o m p u t e r s c i e n c e Faculty of Science Proving Correctness of Compilers Using Structured Graphs Patrick Bahr University of Copenhagen, Department of Computer

628 views • 21 slides
Combining Automated and Interactive Theorem Proving in Agda Anton Setzer (Joint work with Karim

Combining Automated and Interactive Theorem Proving in Agda Anton Setzer (Joint work with Karim

Combining Automated and Interactive Theorem Proving in Agda Anton Setzer (Joint work with Karim Kanso) May 21, 2010 1/ 38 1. An Introduction to Agda 2. Integrating Automated Theorem Proving into Agda 3. Defining the Mini SAT Solver in Agda

556 views • 38 slides
Lecture 06: DC Properties I 2014-05-22 Dr. Bernd Westphal 06 2014-05-22 main

Lecture 06: DC Properties I 2014-05-22 Dr. Bernd Westphal 06 2014-05-22 main

Real-Time Systems Lecture 06: DC Properties I 2014-05-22 Dr. Bernd Westphal 06 2014-05-22 main Albert-Ludwigs-Universit at Freiburg, Germany Contents & Goals Last Lecture: DC Syntax and Semantics: Abbreviations

403 views • 21 slides
In proof based classes My Background 4x Intro to proofs course 2x Abstract algebra Intro

In proof based classes My Background 4x Intro to proofs course 2x Abstract algebra Intro

In proof based classes My Background 4x Intro to proofs course 2x Abstract algebra Intro to proofs: The Challenge The same question is relevant on day 1 and the last day of class. Example: Show that the sum of two odd integers is

424 views • 9 slides
Concrete Semantics with Isabelle/HOL Tobias Nipkow Fakult at f ur Informatik Technische

Concrete Semantics with Isabelle/HOL Tobias Nipkow Fakult at f ur Informatik Technische

Concrete Semantics with Isabelle/HOL Tobias Nipkow Fakult at f ur Informatik Technische Universit at M unchen 2015-9-23 1 Chapter 1 Introduction 2 1 Background 2 This Course 3 1 Background 2 This Course 4 Why Semantics?

538 views • 27 slides
Better 2-round adaptive MPC Ran Canetti, Oxana Poburinnaya TAU and BU BU Adaptive Security of

Better 2-round adaptive MPC Ran Canetti, Oxana Poburinnaya TAU and BU BU Adaptive Security of

Better 2-round adaptive MPC Ran Canetti, Oxana Poburinnaya TAU and BU BU Adaptive Security of MPC Adaptive corruptions: Adaptive corruptions: adversary can decide who to corrupt adaptively during the adversary can decide who to corrupt

974 views • 83 slides

More recommend