lecture 8 9 separation logic
play

Lecture 8/9 : Separation Logic Can handle reasoning of imperative - PowerPoint PPT Presentation

Aug 25, 2022 •357 likes •557 views

CS6202: Advanced Topics in Programming Hoare Logic Hoare Logic Languages and Systems Lecture 8/9 : Separation Logic Can handle reasoning of imperative programs well. Overview Notation : {P} code {Q} Assertion Logic {P}

  1. CS6202: Advanced Topics in Programming Hoare Logic Hoare Logic Languages and Systems Lecture 8/9 : Separation Logic Can handle reasoning of imperative programs well. • Overview Notation : {P} code {Q} • Assertion Logic {P} precondition before executing code • Semantic Model {Q} postcondition after executing code • Hoare-style Inference Rules • Specification and Annotations Some examples : {x=1} x:=x+1 {x=2} • Linked List and Segments • Trees and Instuitionistic Logic {x=x 0 } x:=x+1 {x=x 0 +1} • (above from John Reynold’s mini-course) • Automated Verification {Q[x+1/x]} x:=x+1 {Q} {P} x:=x+1 { � x 1 . P[x 1 /x] � x=x 1 +1} CS6202 Separation Logic 1 CS6202 Separation Logic 3 Motivation Motivation Problem Problem Program reasoning is important for: Hoare logic can handle program variables but not heap objects well due to aliasing problems. correctness of software Consider an in-place list reversal algorithm safety (fewer or no bugs) performance guarantee optimization [i] denotes a heap location at address i CS6202 Separation Logic 2 CS6202 Separation Logic 4

  2. Loop Invariant Loop Invariant B B a sics of S a sics of S eparation Logic eparation Logic Loop invariant is a statement that holds at the beginning of each iteration of the loop. heap predicate relates a list of elements and a pointer CS6202 Separation Logic 5 CS6202 Separation Logic 7 Loop Invariant Loop Invariant Simple Language with Heap Store Simple Language with Heap Store in separation logic : CS6202 Separation Logic 6 CS6202 Separation Logic 8

  3. Memory F Memory F aults aults S S emantic Model emantic Model Can be caused by out of range look up of memory. CS6202 Separation Logic 9 CS6202 Separation Logic 11 Assertion L Assertion L anguage anguage S S emantic Model emantic Model CS6202 Separation Logic 10 CS6202 Separation Logic 12

  4. S S eparation Implication - eparation Implication - Examples Examples S S eparation Conjunction eparation Conjunction - - Examples Examples CS6202 Separation Logic 13 CS6202 Separation Logic 15 Inference Rules Inference Rules Conjunction - Conjunction - Examples Examples Reasoning with normalization, weakening and strengthening. Conjunction describes the same heap space. CS6202 Separation Logic 14 CS6202 Separation Logic 16

  5. Pure Assertion Pure Assertion Partial Correctness Specification Partial Correctness Specification Axiom schematic guided by pure formulae CS6202 Separation Logic 17 CS6202 Separation Logic 19 T T wo Unsound Axiom S wo Unsound Axiom S chemata chemata T T otal Correctness Specification otal Correctness Specification Structural logic without contraction and weakening. CS6202 Separation Logic 18 CS6202 Separation Logic 20

  6. Examples of Valid Specifications Examples of Valid Specifications Hoare Inference Rules Hoare Inference Rules Structural rules are applicable to any commands. CS6202 Separation Logic 21 CS6202 Separation Logic 23 Hoare Inference Rules Hoare Inference Rules Partial Correctness of While Loop Partial Correctness of While Loop CS6202 Separation Logic 22 CS6202 Separation Logic 24

  7. T T otal Correctness of While L otal Correctness of While L oop oop Hoare Inference Rules Hoare Inference Rules CS6202 Separation Logic 25 CS6202 Separation Logic 27 Hoare Inference Rules Hoare Inference Rules Annotated Specifications Annotated Specifications In annotated specifications, additional assertions called annotations are placed in command in such a way that it assist proof construction process. Examples : CS6202 Separation Logic 26 CS6202 Separation Logic 28

  8. Minimal Annotated Specifications Minimal Annotated Specifications Structural Inference Rules Structural Inference Rules Should attempt to minimise annotations where possible. Restrict to pre/post of methods and invariant of loops. Further advances : (i) intraprocedural inference (ii) interprocedural inference. CS6202 Separation Logic 29 CS6202 Separation Logic 31 Structural Inference Rules Structural Inference Rules Structural Inference Rules Structural Inference Rules CS6202 Separation Logic 30 CS6202 Separation Logic 32

  9. Rule of Constancy from Hoare L Rule of Constancy from Hoare L ogic ogic Local Specifications Local Specifications CS6202 Separation Logic 33 CS6202 Separation Logic 35 Frame Rule of S Frame Rule of S eparation Logic eparation Logic Inference Rules for Mutation Inference Rules for Mutation This facilitates local reasoning and specification CS6202 Separation Logic 34 CS6202 Separation Logic 36

  10. Inference Rules for Lookup Inference Rules for Lookup Inference Rules for Deallocation Inference Rules for Deallocation CS6202 Separation Logic 37 CS6202 Separation Logic 39 Notation for S equences Notation for S equences Inference Rules for Noninterfering Inference Rules for Noninterfering Allocation Allocation CS6202 Separation Logic 38 CS6202 Separation Logic 40

  11. Singly Linked List Singly Linked List S egment Singly Linked List Singly Linked List S egment Properties What is the default property (invariant) of this predicate? CS6202 Separation Logic 41 CS6202 Separation Logic 43 Singly Linked List S egment Non- - T T ouching Linked List S egment Singly Linked List S egment Non ouching Linked List S egment Easier test for emptiness CS6202 Separation Logic 42 CS6202 Separation Logic 44

  12. Doubly Linked List Doubly Linked List Braced List Segment Braced List Segment CS6202 Separation Logic 45 CS6202 Separation Logic 47 XOR XOR- - Linked List Segment Linked List Segment Bornat Bornat List List CS6202 Separation Logic 46 CS6202 Separation Logic 48

  13. Array Allocation Array Allocation DAGs DAGs Inference rule : CS6202 Separation Logic 49 CS6202 Separation Logic 51 Trees Trees Intuitionistic Intuitionistic S S eparation Logic eparation Logic Supports justification rather than truth. Things that no longer hold include: law of excluded middle (P � � P) double negation ( � � P = P) Pierce’s law (((P � Q) � P) � P) Formulae valid in intuitionistic separation logic but not the classical one. x � 1,y � emp x � 1,y * y � , nil � x � 1,_ CS6202 Separation Logic 50 CS6202 Separation Logic 52

  14. Intuitionistic Intuitionistic Assertion Assertion Copying Tree Copying Tree CS6202 Separation Logic 53 CS6202 Separation Logic 55 Inference for Procedures Inference for Procedures Copying Tree (Proof) Copying Tree (Proof) CS6202 Separation Logic 54 CS6202 Separation Logic 56

  15. Copying Tree (Proof) Copying Tree (Proof) Core Imperative Language Core Imperative Language CS6202 Separation Logic 57 CS6202 Separation Logic 59 Automated Verification Automated Verification Data Nodes and Notation Data Nodes and Notation Modular Verification (i) Given pre/post conditions for each method and loop (ii) Determine each postcondition is sound for method body. (iii) Each precondition is satisfied for each call site. Why Verification? (i) can handle more complex examples (ii) can be used to check inference algorithm (iii) grand challenge of verifiable software CS6202 Separation Logic 58 CS6202 Separation Logic 60

  16. Shape Predicates Shape Predicates Prime Notation Prime Notation Linked-list with size Prime notation is used to capture the latest values of each program variable. This allows a state transition to be expressed since the unprimed form denotes original values. Double linked-list (right traversal) with size Sorted linked-list with size, min, max CS6202 Separation Logic 61 CS6202 Separation Logic 63 Insertion Sort Algorithm Insertion Sort Algorithm Prime Notation Prime Notation Example : {x’=x � y’=y} x:=x+1 {x’=x+1 � y’=y} x:=x+y {x’=x+1+y � y’=y} y:=2 {x’=x+1+y � y’=2} CS6202 Separation Logic 62 CS6202 Separation Logic 64

  17. Forward Verification Forward Verification Separation Constraint Normalization Rules Separation Constraint Normalization Rules Target : Given � 1 , infer � 2 : � { � 1 } e { � 2 } CS6202 Separation Logic 65 CS6202 Separation Logic 67 Forward Verification Forward Verification Separation Constraint Approximation Separation Constraint Approximation XPure n ( � ) returns a sound approximation of the form : non-null symbolic addresses Normalization : CS6202 Separation Logic 66 CS6202 Separation Logic 68

  18. Translating to Pure Form Translating to Pure Form Separation Constraint Entailment Separation Constraint Entailment denotes CS6202 Separation Logic 69 CS6202 Separation Logic 71 Deriving Shape Invariant Deriving Shape Invariant Separation Constraint Entailment Separation Constraint Entailment From each pure invariant, such as (n � 0) for ll<n> We use Inv 1 (..) to obtain a more precise invariant : CS6202 Separation Logic 70 CS6202 Separation Logic 72

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Hoare logic separation logic. We looked at the concepts separation logic is based on, the new

Hoare logic separation logic. We looked at the concepts separation logic is based on, the new

Introduction In the previous lecture, we saw how reasoning about pointers in Hoare logic was problematic, which motivated introducing Hoare logic separation logic. We looked at the concepts separation logic is based on, the new assertions that

396 views • 14 slides
Lecture 8/9 : Separation Logic Overview Assertion Logic Semantic Model

Lecture 8/9 : Separation Logic Overview Assertion Logic Semantic Model

CS6202: Advanced Topics in Programming Languages and Systems Lecture 8/9 : Separation Logic Overview Assertion Logic Semantic Model Hoare-style Inference Rules Specification and Annotations Linked List and Segments

1.02k views • 76 slides
Hoare Logic and Model Checking In the previous lecture we saw the informal concepts that

Hoare Logic and Model Checking In the previous lecture we saw the informal concepts that

Introduction Hoare Logic and Model Checking In the previous lecture we saw the informal concepts that Separation Logic is based on. This lecture will Kasper Svendsen University of Cambridge introduce a formal proof system for Separation

740 views • 10 slides
Hoare logic Lecture 5: Introduction to separation logic Jean Pichon-Pharabod University of

Hoare logic Lecture 5: Introduction to separation logic Jean Pichon-Pharabod University of

Hoare logic Lecture 5: Introduction to separation logic Jean Pichon-Pharabod University of Cambridge CST Part II 2017/18 Introduction In the previous lectures, we have considered a language, WHILE , where mutability only concerned program

734 views • 57 slides
Extending propositional separation logic for robustness properties of separation logic Alessio

Extending propositional separation logic for robustness properties of separation logic Alessio

Extending propositional separation logic for robustness properties of separation logic Alessio Mansutti LSV, CNRS, ENS Paris-Saclay Paris - April 2019 What we will see An extension of propositional separation logic that can express some

569 views • 42 slides
Tutorial on separation logic Viktor Vafeiadis Max Planck Institute for Software Systems (MPI-SWS)

Tutorial on separation logic Viktor Vafeiadis Max Planck Institute for Software Systems (MPI-SWS)

Tutorial on separation logic Viktor Vafeiadis Max Planck Institute for Software Systems (MPI-SWS) Dagstuhl, 2015-11-02 Plan for the talk Talk outline Motivation Basic separation logic Concurrent separation logic Frame inference

597 views • 21 slides
Temporary Read-Only Permissions for Separation Logic Making Separation Logics Small Axioms

Temporary Read-Only Permissions for Separation Logic Making Separation Logics Small Axioms

Temporary Read-Only Permissions for Separation Logic Making Separation Logics Small Axioms Smaller Arthur Charguraud Franois Pottier LTP meeting Saclay, November 28, 2016 Motivation More Motivation Separation Logic with Read-Only

441 views • 27 slides
Separation Logic, Abstraction and Inheritance M. Parkinson, G. Bierman, in Proc. POPL , 2008

Separation Logic, Abstraction and Inheritance M. Parkinson, G. Bierman, in Proc. POPL , 2008

Separation Logic, Abstraction and Inheritance M. Parkinson, G. Bierman, in Proc. POPL , 2008 Timothe Martiel Research Topics in Software Engineering 1 / 19 Outline 1 From Separation Logic to Inheritance 2 Beyond Separation Logic 3 What About

553 views • 24 slides
An introduction to separation logic James Brotherston Programming Principles, Logic and

An introduction to separation logic James Brotherston Programming Principles, Logic and

An introduction to separation logic James Brotherston Programming Principles, Logic and Verification Group Dept. of Computer Science University College London, UK J.Brotherston@ucl.ac.uk Logic Summer School, ANU, 7 December 2015 1/ 19

789 views • 63 slides
Internal calculi for Separation Logic ephane Demri 1 Etienne Lozes 2 Alessio Mansutti 1 St

Internal calculi for Separation Logic ephane Demri 1 Etienne Lozes 2 Alessio Mansutti 1 St

Internal calculi for Separation Logic ephane Demri 1 Etienne Lozes 2 Alessio Mansutti 1 St January 14, 2020 1 LSV, CNRS, ENS Paris-Saclay 2 I3S, Universit e C ote dAzur Separation Logic 99 Logic of Bunched Implication ( BI ) [P.

310 views • 27 slides
Undecidability of propositional separation logic and its neighbours James Brotherston 1 and Max

Undecidability of propositional separation logic and its neighbours James Brotherston 1 and Max

Undecidability of propositional separation logic and its neighbours James Brotherston 1 and Max Kanovich 2 1 Imperial College London 2 Queen Mary University of London LICS-25, University of Edinburgh, 12 July 2010 Separation logic (Reynolds,

1.11k views • 31 slides
Biabduction (and Related Problems) in Array Separation Logic James Brotherston 1 Nikos Gorogiannis

Biabduction (and Related Problems) in Array Separation Logic James Brotherston 1 Nikos Gorogiannis

Biabduction (and Related Problems) in Array Separation Logic James Brotherston 1 Nikos Gorogiannis 2 Max Kanovich 1 1 UCL 2 Middlesex University University of Vienna, 14 Mar 2017 1/ 19 Compositional proofs in separation logic (1) Separation

1.14k views • 91 slides
Separation logic and fragments: from expressive power to decision procedures St ephane Demri

Separation logic and fragments: from expressive power to decision procedures St ephane Demri

Separation logic and fragments: from expressive power to decision procedures St ephane Demri CNRS Marie Curie Fellow Yorktown Heights, March 2015 In Memoriam: Morgan Deters 2 Overview Separation Logic in a Nutshell 1 2 Expressive

915 views • 55 slides
An introduction to separation logic James Brotherston Programming Principles, Logic and

An introduction to separation logic James Brotherston Programming Principles, Logic and

An introduction to separation logic James Brotherston Programming Principles, Logic and Verification Group Dept. of Computer Science University College London, UK J.Brotherston@ucl.ac.uk Oracle Labs, Brisbane, 4 December 2015 1/ 19

291 views • 27 slides
Reasoning over Permissions Regions in Concurrent Separation Logic James Brotherston, Diana Costa,

Reasoning over Permissions Regions in Concurrent Separation Logic James Brotherston, Diana Costa,

Reasoning over Permissions Regions in Concurrent Separation Logic James Brotherston, Diana Costa, Aquinas Hobor and John Wickerson IRIS Day OScience, Coronavirus Lockdown Edition Tuesday 7th April, 2020 1/ 13 Concurrent separation logic (

164 views • 13 slides
On Temporal and Separation Logics St ephane Demri CNRS, LSV, ENS Paris-Saclay TIME18

On Temporal and Separation Logics St ephane Demri CNRS, LSV, ENS Paris-Saclay TIME18

On Temporal and Separation Logics St ephane Demri CNRS, LSV, ENS Paris-Saclay TIME18 Warsaw, October 2018 The blossom of separation logics Separation logic: extension of Hoare-Floyd logic for (concurrent) programs with mutable data

642 views • 48 slides
Struktur Data &amp; Algoritme ( Data Structures &amp; Algorithms ) Linked-List Denny (

Struktur Data &amp; Algoritme ( Data Structures &amp; Algorithms ) Linked-List Denny (

Struktur Data &amp; Algoritme ( Data Structures &amp; Algorithms ) Linked-List Denny ( denny@cs.ui.ac.id ) Suryana Setiawan ( setiawan@cs.ui.ac.id ) Fakultas I lm u Kom puter Universitas I ndonesia Sem ester Genap - 2 0 0 4 / 2 0 0 5 Version 2

562 views • 25 slides
Self-referential Structures A basic data type (building block) for complex data structures

Self-referential Structures A basic data type (building block) for complex data structures

4/8/14 Self-referential Structures A basic data type (building block) for complex data structures such as trees and linked lists. Linked List Structure tags (i.e. tnode , node ) are required for self-referential structure

256 views • 3 slides
L i n k e d l i s t s L i n k e d l i s t s L i n k e d l i s t s

L i n k e d l i s t s L i n k e d l i s t s L i n k e d l i s t s

L i n k e d l i s t s L i n k e d l i s t s L i n k e d l i s t s a r e a d a t a s t r u c t u r e d e s i g n e d f o r t o a l i s t s e q u e n t i a l a c c e s

1.07k views • 58 slides
Topic 14 Li k d Li t Linked Lists &quot;All the kids who did great in high school writing g g

Topic 14 Li k d Li t Linked Lists &quot;All the kids who did great in high school writing g g

Topic 14 Li k d Li t Linked Lists &quot;All the kids who did great in high school writing g g g pong games in BASIC for their Apple II would get to college, take CompSci 101, a data structures course and when they hit the pointers business

595 views • 36 slides
Data Structures in Java Lecture 2: Array and Linked Lists. 9/9/2015 Daniel Bauer 1 The List

Data Structures in Java Lecture 2: Array and Linked Lists. 9/9/2015 Daniel Bauer 1 The List

Data Structures in Java Lecture 2: Array and Linked Lists. 9/9/2015 Daniel Bauer 1 The List ADT A 0 A 1 A 2 A 3 A 4 A 5 A 6 The List ADT A list L is a sequence of N objects A 0 , A 1, A 2, , A N-1 A 0 A 1 A 2 A 3 A 4 A 5 A 6 The List

973 views • 47 slides
Heap Exploitation Heap Primitives malloc free calloc Organization of chunks Bins

Heap Exploitation Heap Primitives malloc free calloc Organization of chunks Bins

Heap Exploitation Heap Primitives malloc free calloc Organization of chunks Bins Fast Singly linked list 16, 24, 32, 40, 48, 56, 64, 72, 80 and 88 bytes Small Doubly linked list 16, 24, ... , 504 bytes

406 views • 19 slides
Linked Lists Comp 1402/1002 Using Defined Types Data Structures are key to Computer Science

Linked Lists Comp 1402/1002 Using Defined Types Data Structures are key to Computer Science

Linked Lists Comp 1402/1002 Using Defined Types Data Structures are key to Computer Science JAVA libraries: Vector, ArrayList, Hashtable C Arrays 1 Arrays Properties Elements are consecutive in memory

384 views • 13 slides
Linear Structures Every non-empty linear structure has A unique element called first A

Linear Structures Every non-empty linear structure has A unique element called first A

4/18/2013 Linear Structure Linear Structures Every non-empty linear structure has A unique element called first A unique element called last Every element except last has a unique successor Chapter 4 Every element except first

234 views • 11 slides

More recommend