formal verification of floating point programs
play

Formal Verification of Floating-Point programs Sylvie Boldo and - PowerPoint PPT Presentation

Oct 13, 2023 •20 likes •410 views

Formal Verification of Floating-Point programs Sylvie Boldo and Jean-Christophe Filli atre Montpellier June, 26th 2007 INRIA Futurs CNRS, LRI Existing tools Model and specification of FP numbers Examples Conclusion Motivations

  1. Formal Verification of Floating-Point programs Sylvie Boldo and Jean-Christophe Filliˆ atre Montpellier – June, 26th 2007 INRIA Futurs CNRS, LRI

  2. Existing tools Model and specification of FP numbers Examples Conclusion Motivations Goal: reliability in numerical software Sylvie Boldo & Jean-Christophe Filliˆ atre Formal Verification of Floating-Point programs

  3. Existing tools Model and specification of FP numbers Examples Conclusion Motivations Goal: reliability in numerical software Tool: formal proofs Sylvie Boldo & Jean-Christophe Filliˆ atre Formal Verification of Floating-Point programs

  4. Existing tools Model and specification of FP numbers Examples Conclusion Motivations Goal: reliability in numerical software Tool: formal proofs Drawback: we were not checking the real program Sylvie Boldo & Jean-Christophe Filliˆ atre Formal Verification of Floating-Point programs

  5. Existing tools Model and specification of FP numbers Examples Conclusion Motivations Goal: reliability in numerical software Tool: formal proofs Drawback: we were not checking the real program ⇒ put together existing tools ⇒ check what is really written by programmers Sylvie Boldo & Jean-Christophe Filliˆ atre Formal Verification of Floating-Point programs

  6. Existing tools Model and specification of FP numbers Examples Conclusion Outline Existing tools Caduceus Formalization of floats Model and specification of FP numbers Examples Conclusion Sylvie Boldo & Jean-Christophe Filliˆ atre Formal Verification of Floating-Point programs

  7. Existing tools Model and specification of FP numbers Caduceus Examples Formalization of floats Conclusion What is Caduceus? The method is to annotate the C program Sylvie Boldo & Jean-Christophe Filliˆ atre Formal Verification of Floating-Point programs

  8. Existing tools Model and specification of FP numbers Caduceus Examples Formalization of floats Conclusion What is Caduceus? The method is to annotate the C program We add pre-conditions and post-conditions to functions We add variants, invariants, assertions Sylvie Boldo & Jean-Christophe Filliˆ atre Formal Verification of Floating-Point programs

  9. Existing tools Model and specification of FP numbers Caduceus Examples Formalization of floats Conclusion What is Caduceus? The method is to annotate the C program We add pre-conditions and post-conditions to functions We add variants, invariants, assertions The tool generates proof obligations (such as Coq theorems) associated to the user annotations The proof of the verification conditions ensures that the program meets its specification Sylvie Boldo & Jean-Christophe Filliˆ atre Formal Verification of Floating-Point programs

  10. Existing tools Model and specification of FP numbers Caduceus Examples Formalization of floats Conclusion Caduceus Java Java C

  11. Existing tools Model and specification of FP numbers Caduceus Examples Formalization of floats Conclusion Caduceus Java Java C Krakatoa Krakatoa Caduceus Caduceus

  12. Existing tools Model and specification of FP numbers Caduceus Examples Formalization of floats Conclusion Caduceus Java Java C Krakatoa Krakatoa Caduceus Caduceus Why Why

  13. Existing tools Model and specification of FP numbers Caduceus Examples Formalization of floats Conclusion Caduceus Java Java C Krakatoa Krakatoa Caduceus Caduceus Why Why Coq Coq PVS PVS HOL HOL Mizar Mizar Proof obligations Proof obligations

  14. Existing tools Model and specification of FP numbers Caduceus Examples Formalization of floats Conclusion Caduceus Java Java C Krakatoa Krakatoa Caduceus Caduceus Why Why Coq Coq Simplify Simplify haRVey haRVey PVS PVS HOL HOL Mizar Mizar CVC CVC Proof obligations Proof obligations Sylvie Boldo & Jean-Christophe Filliˆ atre Formal Verification of Floating-Point programs

  15. Existing tools Model and specification of FP numbers Caduceus Examples Formalization of floats Conclusion Example: search in an array int index ( int t [ ] , int n , int v ) { int i = 0; while ( i < n) { i f ( t [ i ] == v ) break ; i ++; } return i ; } Sylvie Boldo & Jean-Christophe Filliˆ atre Formal Verification of Floating-Point programs

  16. Existing tools Model and specification of FP numbers Caduceus Examples Formalization of floats Conclusion Example: search in an array /*@ requires \valid_range(t,0,n-1) @ ensures @ (0 <= \result < n => t[\result] == v) && @ (\result == n => @ \forall int i; 0 <= i < n => t[i] != v) */ index ( int t [ ] , int n , v ) { int int i = 0; int /*@ invariant 0 <= i && @ \forall int k; 0 <= k < i => t[k] != v @ variant n - i */ ( i < n) { while ( t [ i ] == v ) break ; i f i ++; } return i ; } Sylvie Boldo & Jean-Christophe Filliˆ atre Formal Verification of Floating-Point programs

  17. Existing tools Model and specification of FP numbers Caduceus Examples Formalization of floats Conclusion Existing tools Caduceus Formalization of floats Model and specification of FP numbers Examples Conclusion Sylvie Boldo & Jean-Christophe Filliˆ atre Formal Verification of Floating-Point programs

  18. Existing tools Model and specification of FP numbers Caduceus Examples Formalization of floats Conclusion Coq formalization (by Daumas, Rideau, Th´ ery) Float = pair of signed integers (mantissa, exponent) ( n , e ) ∈ Z 2 Sylvie Boldo & Jean-Christophe Filliˆ atre Formal Verification of Floating-Point programs

  19. Existing tools Model and specification of FP numbers Caduceus Examples Formalization of floats Conclusion Coq formalization (by Daumas, Rideau, Th´ ery) Float = pair of signed integers (mantissa, exponent) associated to a real value n × β e ∈ R ( n , e ) ∈ Z 2 ֒ → Sylvie Boldo & Jean-Christophe Filliˆ atre Formal Verification of Floating-Point programs

  20. Existing tools Model and specification of FP numbers Caduceus Examples Formalization of floats Conclusion Coq formalization (by Daumas, Rideau, Th´ ery) Float = pair of signed integers (mantissa, exponent) associated to a real value n × β e ∈ R ( n , e ) ∈ Z 2 ֒ → 1 . 00010 2 E 4 �→ (100010 2 , − 1) 2 → 17 ֒ IEEE-754 significant of 754R real value ⇒ normal floats, subnormal floats, cohorts, overflow Sylvie Boldo & Jean-Christophe Filliˆ atre Formal Verification of Floating-Point programs

  21. Existing tools Model and specification of FP numbers Caduceus Examples Formalization of floats Conclusion Partial Conclusion ◮ We have all the needed tools ◮ program → formal theorem (obligations) ◮ formal float, formal rounding. . . Sylvie Boldo & Jean-Christophe Filliˆ atre Formal Verification of Floating-Point programs

  22. Existing tools Model and specification of FP numbers Caduceus Examples Formalization of floats Conclusion Partial Conclusion ◮ We have all the needed tools ◮ program → formal theorem (obligations) ◮ formal float, formal rounding. . . ◮ We have to merge them to get a tool: program → formal theorem on FP arithmetic Sylvie Boldo & Jean-Christophe Filliˆ atre Formal Verification of Floating-Point programs

  23. Existing tools Model and specification of FP numbers Caduceus Examples Formalization of floats Conclusion Partial Conclusion ◮ We have all the needed tools ◮ program → formal theorem (obligations) ◮ formal float, formal rounding. . . ◮ We have to merge them to get a tool: program → formal theorem on FP arithmetic ◮ We have to decide how to specify a FP program! Sylvie Boldo & Jean-Christophe Filliˆ atre Formal Verification of Floating-Point programs

  24. Existing tools Model and specification of FP numbers Examples Conclusion Existing tools Caduceus Formalization of floats Model and specification of FP numbers Examples Conclusion Sylvie Boldo & Jean-Christophe Filliˆ atre Formal Verification of Floating-Point programs

  25. Existing tools Model and specification of FP numbers Examples Conclusion Caduceus’s model of FP numbers A “program” float is a triple: ◮ the floating-point number, as computed by the program, x → x f floating-point part Sylvie Boldo & Jean-Christophe Filliˆ atre Formal Verification of Floating-Point programs

  26. Existing tools Model and specification of FP numbers Examples Conclusion Caduceus’s model of FP numbers A “program” float is a triple: ◮ the floating-point number, as computed by the program, x → x f floating-point part ◮ the value if all previous computations were exact, x → x e exact part Sylvie Boldo & Jean-Christophe Filliˆ atre Formal Verification of Floating-Point programs

  27. Existing tools Model and specification of FP numbers Examples Conclusion Caduceus’s model of FP numbers A “program” float is a triple: ◮ the floating-point number, as computed by the program, x → x f floating-point part ◮ the value if all previous computations were exact, x → x e exact part ◮ the ideally computed value x → x m model part Sylvie Boldo & Jean-Christophe Filliˆ atre Formal Verification of Floating-Point programs

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Formal verification of floating-point algorithms John Harrison Intel Corporation Floating

Formal verification of floating-point algorithms John Harrison Intel Corporation Floating

Formal verification of floating-point algorithms 1 Formal verification of floating-point algorithms John Harrison Intel Corporation Floating point algorithm verification HOL Light Floating point numbers and formats HOL floating

636 views • 28 slides
Formal Verification of Floating-Point Arithmetic John Harrison Intel Corporation Formal

Formal Verification of Floating-Point Arithmetic John Harrison Intel Corporation Formal

Formal Verification of Floating-Point Arithmetic 1 Formal Verification of Floating-Point Arithmetic John Harrison Intel Corporation Formal verification Machine-checked proof Automatic and interactive approaches HOL Light

539 views • 19 slides
Formal Verification Methods 5: Floating-point verification John Harrison Intel Corporation

Formal Verification Methods 5: Floating-point verification John Harrison Intel Corporation

Formal Verification Methods 5: Floating-point verification John Harrison Intel Corporation Marktoberdorf 2003 Mon 4th August 2003 (10:35 11:20) 0 Summary Itanium overview Floating point numbers and Itanium formats HOL floating

532 views • 20 slides
Formal verification of floating point trigonometric functions John Harrison Intel Corporation

Formal verification of floating point trigonometric functions John Harrison Intel Corporation

Formal verification of floating point trigonometric functions 1 Formal verification of floating point trigonometric functions John Harrison Intel Corporation Levels of verification HOL Light Theories of reals and floating point

268 views • 14 slides
Formal Verification Methods 5: Floating Point Verification John Harrison Intel Corporation

Formal Verification Methods 5: Floating Point Verification John Harrison Intel Corporation

Formal Verification Methods 5: Floating Point Verification Formal Verification Methods 5: Floating Point Verification John Harrison Intel Corporation Itanium overview HOL overview Floating point numbers and Itanium formats HOL

591 views • 21 slides
Formal verification of floating-point arithmetic at Intel John Harrison johnh@ichips.intel.com

Formal verification of floating-point arithmetic at Intel John Harrison johnh@ichips.intel.com

Formal verification of floating-point arithmetic at Intel John Harrison johnh@ichips.intel.com JNAO 2nd June 2006 0 Overview Computer arithmetic bugs Formal verification and theorem proving Floating-point arithmetic Square

843 views • 37 slides
NLVerify Verification of Polynomial Inequalities using Formal Floating-point Arithmetic Victor

NLVerify Verification of Polynomial Inequalities using Formal Floating-point Arithmetic Victor

NLVerify Verification of Polynomial Inequalities using Formal Floating-point Arithmetic Victor Magron (CNRS VERIMAG) Joint work with Tillmann Weisser and Benjamin Werner INRIA Spades Seminar October 27, 2015 V. Magron NLVerify 1 / 22

1.36k views • 113 slides
Floating-Point Verification by Theorem Proving John Harrison Intel Corporation Capital Normal

Floating-Point Verification by Theorem Proving John Harrison Intel Corporation Capital Normal

Floating-Point Verification by Theorem Proving John Harrison Intel Corporation Capital Normal University 13th October 2012 0 Overview Famous computer arithmetic failures Formal verification and theorem proving Floating-point

971 views • 73 slides
Formal Proofs of Floating-Point Algorithms John Harrison Intel Corporation SCAN 2010 28th

Formal Proofs of Floating-Point Algorithms John Harrison Intel Corporation SCAN 2010 28th

Formal Proofs of Floating-Point Algorithms John Harrison Intel Corporation SCAN 2010 28th September 2010 0 Overview Formal verification and theorem proving Formalizing floating-point arithmetic Square root example Reciprocal

534 views • 42 slides
Floating-Point Verification by Theorem Proving John Harrison Intel Corporation SFM-06:HV 27th

Floating-Point Verification by Theorem Proving John Harrison Intel Corporation SFM-06:HV 27th

Floating-Point Verification by Theorem Proving John Harrison Intel Corporation SFM-06:HV 27th May 2006 0 Overview Famous computer arithmetic failures Formal verification and theorem proving Floating-point arithmetic Division

1.14k views • 86 slides
Formal Verification in Industry John Harrison Intel Corporation The cost of bugs Formal

Formal Verification in Industry John Harrison Intel Corporation The cost of bugs Formal

Formal Verification in Industry 1 Formal Verification in Industry John Harrison Intel Corporation The cost of bugs Formal verification Machine-checked proof Automatic and interactive approaches HOL Light Floating point

366 views • 25 slides
Formal verification of IA-64 division algorithms John Harrison Intel Corporation IA-64

Formal verification of IA-64 division algorithms John Harrison Intel Corporation IA-64

Formal verification of IA-64 division algorithms 1 Formal verification of IA-64 division algorithms John Harrison Intel Corporation IA-64 overview Quick introduction to HOL Light Floating point numbers and IA-64 formats HOL

451 views • 19 slides
An Automatable Formal Semantics for IEEE-754 Floating-Point Arithmetic Martin Brain , Cesare

An Automatable Formal Semantics for IEEE-754 Floating-Point Arithmetic Martin Brain , Cesare

SMT SMT-LIB Theory of Floating-Point Conclusions An Automatable Formal Semantics for IEEE-754 Floating-Point Arithmetic Martin Brain , Cesare Tinelli, Philipp R ummer, Thomas Wahl (and the rest of the SMT community) University of Oxford

543 views • 29 slides
Lecture 3 Floating Point Representations 1 Floating-point arithmetic We often incur

Lecture 3 Floating Point Representations 1 Floating-point arithmetic We often incur

ECE 0142 Computer Organization Lecture 3 Floating Point Representations 1 Floating-point arithmetic We often incur floating-point programming. Floating point greatly simplifies working with large (e.g., 2 70 ) and small (e.g., 2 -17 )

638 views • 30 slides
Formal verification of numerical programs: from C annotated programs to Coq proofs Sylvie Boldo

Formal verification of numerical programs: from C annotated programs to Coq proofs Sylvie Boldo

Third International Workshop on Numerical Software Verification Formal verification of numerical programs: from C annotated programs to Coq proofs Sylvie Boldo INRIA Saclay - Ile-de-France July 15th, 2010 Thanks to the organizers !

1.72k views • 136 slides
Floating-point numbers Fractional binary numbers IEEE floating-point standard Floating-point

Floating-point numbers Fractional binary numbers IEEE floating-point standard Floating-point

Floating-point numbers Fractional binary numbers IEEE floating-point standard Floating-point operations and rounding Lessons for programmers Many more details we will skip (its a 58-page standard) See CSAPP 2.4 for more detail. 1

381 views • 15 slides
t r ts t

t r ts t

trt ts tss ss s t r ts t

805 views • 59 slides
CSE 527 Computational Biology http://www.cs.washington.edu/527 Lecture 1: Overview &amp; Bio

CSE 527 Computational Biology http://www.cs.washington.edu/527 Lecture 1: Overview &amp; Bio

CSE 527 Computational Biology http://www.cs.washington.edu/527 Lecture 1: Overview &amp; Bio Review Autumn 2004 Larry Ruzzo He who asks is a fool for five minutes, but he who does not ask remains a fool forever. -- Chinese Proverb Related

525 views • 25 slides
Easy Software-Installation on Linux, Solaris, NetBSD, etc. using pkgsrc Hubert Feyrer &lt;

Easy Software-Installation on Linux, Solaris, NetBSD, etc. using pkgsrc Hubert Feyrer &lt;

Easy Software-Installation on Linux, Solaris, NetBSD, etc. using pkgsrc Hubert Feyrer &lt; hubertf@pkgsrc.org &gt; Easy Software-Installation on Linux, Solaris and NetBSD using pkgsrc p.1/34 Problems Installation of Open Source software on

550 views • 34 slides
Consider gathering some food and drink for communion WELCOME Ca Candle le Lig Lightin ing

Consider gathering some food and drink for communion WELCOME Ca Candle le Lig Lightin ing

Immanuel Lutheran Church March 29, 2020 Worship begins at 9:30 a.m. Consider gathering some food and drink for communion WELCOME Ca Candle le Lig Lightin ing Prayer A: Light of Christ, Shine on our path Chase away all darkness And lead

962 views • 56 slides
The Why/Krakatoa/Caduceus Platform for Deductive Program Verification Jean-Christophe Filli

The Why/Krakatoa/Caduceus Platform for Deductive Program Verification Jean-Christophe Filli

The Why/Krakatoa/Caduceus Platform for Deductive Program Verification Jean-Christophe Filli atre CNRS Universit e Paris Sud TYPES Summer School August 30th, 2007 TYPES Summer School August 30th, 2007 Jean-Christophe Filli

2.04k views • 181 slides
Queens on a Chessboard an exercise in program verification Jean-Christophe Filli atre

Queens on a Chessboard an exercise in program verification Jean-Christophe Filli atre

Queens on a Chessboard an exercise in program verification Jean-Christophe Filli atre Krakatoa/Caduceus working group December 15th, 2006 Jean-Christophe Filli atre Queens on a Chessboard Krakatoa/Caduceus WG Introduction challenge for

569 views • 35 slides
Proof Technology for High-Assurance Runtime Systems Andrew Tolmach, Andrew McCreight, and the

Proof Technology for High-Assurance Runtime Systems Andrew Tolmach, Andrew McCreight, and the

Proof Technology for High-Assurance Runtime Systems Andrew Tolmach, Andrew McCreight, and the Programatica team WG2.8 08 1 Functional Languages for High- Assurance Applications Goal: rely on properties of functional languages to

774 views • 59 slides
Towards Secure Things, or How to Verify IoT Software with Frama-C Tutorial at ZINC 2018 Allan

Towards Secure Things, or How to Verify IoT Software with Frama-C Tutorial at ZINC 2018 Allan

Towards Secure Things, or How to Verify IoT Software with Frama-C Tutorial at ZINC 2018 Allan Blanchard, Nikolai Kosmatov, Fr ed eric Loulergue some slides authored by Julien Signoles Email: allan.blanchard@inria.fr,

1.79k views • 151 slides

More recommend