model finding for recursive
play

Model Finding for Recursive Functions in SMT Andrew Reynolds - PowerPoint PPT Presentation

Oct 01, 2022 •132 likes •523 views

Model Finding for Recursive Functions in SMT Andrew Reynolds Jasmin Christian Blanchette Cesare Tinelli SMT July 18, 2015 Recursive Functions Recursive function definitions: f( x:Int ) := if x0 then 0 else f(x -1)+x Are useful in

  1. Model Finding for Recursive Functions in SMT Andrew Reynolds Jasmin Christian Blanchette Cesare Tinelli SMT July 18, 2015

  2. Recursive Functions • Recursive function definitions: f( x:Int ) := if x≤0 then 0 else f(x -1)+x • Are useful in applications: • Software verification • Theorem Proving • Often, interested in finding models for • Conjectures (  x.)P(f,x) in the presence of recursive functions f • This poses a challenge to current SMT solvers

  3. Recursive Functions • Recursive function definitions: f( x:Int ) := if x≤0 then 0 else f(x -1)+x • Can be expressed in SMT as quantified formulas:  x:Int. f(x)=ite(x ≤ 0,0,f(x-1)+x) • SMT solver must handle inputs of the form:  x .f 1 ( x )=t 1  G …  x .f n ( x )=t n Conjecture Set of function definitions

  4. Recursive Functions • In this talk: • Existing techniques for quantified formulas in SMT • Limited in their ability to find models when recursive functions are present • A satisfiability-preserving translation A for function definitions • Allows us to use existing techniques for model finding • Evaluation of translation A on benchmarks from theorem proving/verification

  5. Existing Techniques for Quantified Formulas in SMT • Heuristic Techniques for UNSAT: • E-matching [Detlefs et al 2003, Ge et al 2007, de Moura/Bjorner 2007] • Limited Techniques for SAT: • Local theory extensions [Sofronie-Stokkermans 2005] • Array fragments [Bradley et al 2006, Alberti et al 2014] • Complete Instantiation [Ge/de Moura 2009] • Implemented in Z3 • Finite Model Finding [Reynolds et al 2013] • Implemented in CVC4

  6. Existing Techniques for Quantified Formulas in SMT • Heuristic Techniques for UNSAT: • E-matching [Detlefs et al 2003, Ge et al 2007, de Moura/Bjorner 2007] • Limited Techniques for SAT: • Local theory extensions [Sofronie-Stokkermans 2005] • Array fragments [Bradley et al 2006, Alberti et al 2014] • Complete Instantiation [Ge/de Moura 2009] • Implemented in Z3 Focus of next slides • Finite Model Finding [Reynolds et al 2013] • Implemented in CVC4

  7. Complete Instantiation in Z3 Z3 • Complete method for  in essentially uninterpreted fragment  x:Int.(f( x )=g( x )+5)  f(a)=g(b) All occurrences of x are children of UF

  8. Complete Instantiation in Z3 Z3  x:Int.(f(x)=g(x)+5)  f(a)=g(b) R(f 1 )=R(g 1 )=R(x),a  R(f 1 ),b  R(g 1 )  R(x)={a,b} Relevant domain R(x) of variable x is {a,b}

  9. Complete Instantiation in Z3 Z3  x:Int.(f(x)=g(x)+5)  f(a)=g(b) R(f 1 )=R(g 1 )=R(x),a  R(f 1 ),b  R(g 1 )  R(x)={a,b} equisatisfiable to f(a)=g(a)+5  f(b)=g(b)+5  f(a)=g(b) SAT

  10. Finite Model Finding in CVC4 • Finite Model-complete method for finite/uninterpreted   xy: U .( x≠y  f(x) ≠f(y))  a≠b All variables have finite/uninterpreted sort U

  11. Finite Model Finding in CVC4  xy:U.( x≠y  f(x) ≠f(y))  a≠b M(U) := {a,b} Model interprets U as the set M(U)={a,b}

  12. Finite Model Finding in CVC4  xy:U.( x≠y  f(x) ≠f(y))  a≠b M(U) := {a,b} equisatisfiable to a≠a  f(a) ≠ f(a) a ≠b  f(a) ≠ f(b)  a≠b b≠ a  f(b) ≠f(a) b≠ b  f(b) ≠ f(b) SAT

  13. …Both fail o� �ost Recursive Fu�ctio� Defi�itio�s! • Example:  x:Int.(f(x)=ite(x ≤ 0,0,f(x-1)+x))  f(k)>100

  14. …Both fail o� �ost Recursive Fu�ctio� Defi�itio�s! • Example:  x:Int.(f(x)=ite(x ≤ 0,0,f( x -1)+ x ))  f(k)>100 • Complete instantiation: • Fails, since body has subterm f( x -1)+ x with unshielded variable x • R(x)={k,k-1,k-2,k- 3,…}

  15. …Both fail o� �ost Recursive Fu�ctio� Defi�itio�s! • Example:  x: Int .(f(x)=ite(x ≤ 0,0,f( x -1)+ x ))  f(k)>100 • Complete instantiation: • Fails, since body has subterm f( x -1)+ x with unshielded variable x • R(x)={k,k-1,k-2,k- 3,…} • Finite Model Finding: • Fails, since quantification is over infinite type Int • M(Int )={…, -3, -2, - 1, 0, 1, 2, 3, …}

  16. Running example  x:Int.(f(x)=ite(x ≤ 0,0,f(x-1)+x))  f(k)>100 • Function f • Returns the sum of all positive integers up to x , when x is non-negative • Formula is satisfiable • By models interpreting k as an integer  14

  17. Can we make the problem easier?  x:Int.(f(x)=ite(x ≤ 0,0,f(x-1)+x))  F f(k)>100 • What if we assume function definitions in F are well-behaved ? • E.g. we know that f is terminating • Introduce translation A , which: • Restricts quantification to subset of the domain of function definitions • Under right assumptions, preserves satisfiability • Use existing techniques for model finding in Z3, CVC4 on A( F )

  18. Translation A  x:Int.ite (x≤0, f(x)=0, f(x)=f(x-1)+x))  f(k)>100

  19. Translation A : Part 1  x: a .ite( g( x)≤0, f( g( x))=0, f( g( x))=f( g( x)-1)+ g( x))  f(k)>100 • Introduce uninterpreted sort a • Conceptually, a represents the set of relevant arguments of f • Restrict the domain of function definition quantification to a • Introduce uninterpreted function g : a  Int • Maps between abstract and concrete domains

  20. Translation A : Part 2  x: a .ite( g( x)≤0, f( g( x))=0, f( g( x))=f( g( x)-1)+ g( x)  (  z: a . g( z)= g( x)-1) )  f(k)>100  (  z: a . g( z)=k) • Add appropriate constraints regarding a , g • Each relevant concrete value must be mapped to by some abstract value

  21. Translation A  x: a .ite( g( x )≤0, f( g( x ))=0, f( g( x ))=f( g( x )-1)+ g( x )  (  z: a . g( z)= g( x )-1))  f(k)>100  (  z: a . g( z)=k) •  is essentially uninterpreted

  22. Translation A  x: a .ite( g( x )≤0, f( g( x ))=0, f( g( x ))=f( g( x )-1)+ g( x )  (  z: a . g( z)= g( x )-1))  f(k)>100  (  z: a . g( z)=k) •  is essentially uninterpreted, and over finite/uninterpreted sorts

  23. Translation A  x: a .ite( g( x )≤0, f( g( x ))=0, f( g( x ))=f( g( x )-1)+ g( x )  (  z: a . g( z)= g( x )-1))  f(k)>100  (  z: a . g( z)=k) •  is essentially uninterpreted, and over finite/uninterpreted sorts  Both Z3 (complete instantiation) and CVC4 (finite model finding) find model for this benchmark in <.1 second

  24. Translation A  x: a .ite( g( x)≤0, f( g( x))=0, f( g( x))=f( g( x)-1)+ g( x)  (  z: a . g( z)= g( x)-1))  f(k)>100  (  z: a . g( z)=k) • Formula is satisfied by a model M where: • M ( k ) := 14 , M ( f ) := l x.ite (x=14,105,ite(x=13,91,… ite (x=1,1,0)…))  M is correct only for relevant inputs of original formula, and not e.g. f(15)=0 • Nevertheless, A is satisfiability-preserving under right assumptions

  25. Translation A : Properties • Translation A is: • Refutation sound • When A( F ) is unsatisfiable, F is unsatisfiable • Model sound, when function definitions are admissible • When A( F ) is satisfiable, F is satisfiable

  26. Translation A : Properties • Translation A is: • Refutation sound • When A( F ) is unsatisfiable, F is unsatisfiable • Model sound, when function definitions are admissible • When A( F ) is satisfiable, F is satisfiable Focus of next slides

  27. Admissible Function Definitions • Given a function definition:  x.f(x)=t[x] • A set of ground formulas G is closed under function expansion wrt f if: G ╞ {f(k)=t[k] | f(k)  terms(G)} • A function definition  x.f(x)=t is admissible if: • For all G that is closed under function expansion wrt f : G is sat  G   x.f(x)=t[x] is also sat

  28. Admissible Function Definitions • Examples of admissible definitions: • Terminating functions:  x.f(x)=ite (x≤0,0,f(x -1)+x) • f is well-founded (terminating) • Consistent definitions:  x.f(x)=f(x) • f is essentially unconstrained • …eve�:  x.f(x)=f(x-1)+1

  29. Inadmissible Function Definitions • Examples of inadmissible definitions: • Inconsistent definitions:  x.f(x)=f(x)+1 • T is closed under function expansion wrt f • But no model for T   x.f(x)=f(x)+1 • Others: {  x.f(x)=f(x)+g(x),  x.g(x)=g(x)} • Although has model where f and g are l x.0 , • g(0)=1 is closed under function expansion wrt f,g • But no model for g(0)=1   x.f(x)=f(x)+g(x)   x.g(x)=g(x)

  30. Evaluation • Considered two sets of benchmarks: • Isa • Challenge problems for inductive theorem provers • Purely datatypes + recursive functions • Leon • Taken from Leon verification tool (EPFL) • Many theories: datatypes + recursive functions + bitvectors + arrays + sets + arithmetic • Consider mutated forms of these benchmarks ( Isa-mut, Leon-mut ) • Obtained by swapping subterms in conjectures • High likelihood to have models • All benchmarks considered with/without translation A

  31. Evaluation : solved SAT benchmarks Total 79 166 213 427 885 • Translation increases ability of SMT solvers for finding models: • Z3: 11 -> 112 • CVC4: 6 -> 331 • Finds counterexamples to verification conditions of interest in Leon

  32. Evaluation : solved UNSAT benchmarks Total 79 166 213 427 885 • Translation has mixed impact on UNSAT benchmarks: • Z3 : 187 -> 209 • CVC4 : 217 -> 204

  33. Translation as Preprocessor in CVC4 • CVC4 supports SMT LIB version 2.5 command: … ( define-fun-rec f ((x Int)) Int (ite (<= x 0) 0 (+ (f (- x 1)) x))) (assert (> (f k) 100)) (check-sat)

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Recursive Lexicographical Search: Finding all Markov Perfect Equilibria in Directional Dynamic

Recursive Lexicographical Search: Finding all Markov Perfect Equilibria in Directional Dynamic

Introduction: Computing All Markov Perfect Equilibria PART I : Solving the Leapfrogging Model with RLS PART II: Recursive Lexicographical Search in General DDGs Conclusions Recursive Lexicographical Search: Finding all Markov Perfect Equilibria

1.73k views • 143 slides
Recursive Methods Noter ch.2 Recursive Methods Recursive problem solution Problems

Recursive Methods Noter ch.2 Recursive Methods Recursive problem solution Problems

Recursive Methods Noter ch.2 Recursive Methods Recursive problem solution Problems that are naturally solved by recursion Examples: Recursive function: Fibonacci numbers Recursive graphics: Fractals Mutual recursion:

796 views • 61 slides
1 Recursive Definitions Infinite Recursion The recursive part of the LIST definition is used

1 Recursive Definitions Infinite Recursion The recursive part of the LIST definition is used

CSC 2014 Java Bootcamp Lecture 9 Recursion 2 Recursion Recursion is a fundamental programming technique that can provide an elegant solution certain kinds of problems RECURSIVE THINKING 3 4 Recursive Thinking Recursive Definitions

148 views • 4 slides
Recursive Methods Recursive problem solution Problems that are naturally solved by

Recursive Methods Recursive problem solution Problems that are naturally solved by

Recursive Methods Recursive problem solution Problems that are naturally solved by recursion Derivative of rational function Recursive Methods Examples: Recursive function: Fibonacci numbers Recursive graphics:

284 views • 5 slides
61A Lecture 6 Announcements Recursive Functions Recursive Functions 4 Recursive Functions

61A Lecture 6 Announcements Recursive Functions Recursive Functions 4 Recursive Functions

61A Lecture 6 Announcements Recursive Functions Recursive Functions 4 Recursive Functions Definition: A function is called recursive if the body of that function calls itself, either directly or indirectly 4 Recursive Functions Definition:

1.08k views • 88 slides
Recursion Announcements Recursive Functions Recursive Functions 4 Recursive Functions

Recursion Announcements Recursive Functions Recursive Functions 4 Recursive Functions

Recursion Announcements Recursive Functions Recursive Functions 4 Recursive Functions Definition : A function is called recursive if the body of that function calls itself, either directly or indirectly 4 Recursive Functions Definition

1.11k views • 89 slides
Model-Based Recursive Partitioning Beautiful professors Choosey students Achim Zeileis Software

Model-Based Recursive Partitioning Beautiful professors Choosey students Achim Zeileis Software

Overview Motivation: Trees and leaves Methodology Model estimation Tests for parameter instability Segmentation Pruning Applications Costly journals Model-Based Recursive Partitioning Beautiful professors Choosey students Achim Zeileis

299 views • 9 slides
Section 5.3 Recursively Defined Functions Definition : A recursive or inductive definition of a

Section 5.3 Recursively Defined Functions Definition : A recursive or inductive definition of a

Section 5.3 Recursively Defined Functions Definition : A recursive or inductive definition of a function consists of two steps. BASIS STEP: Specify the value of the function at zero. RECURSIVE STEP: Give a rule for finding its value at an

319 views • 17 slides
Faster Algorithms for Weighted Recursive State Machines Krishnendu Chatterjee Bernhard Kragl

Faster Algorithms for Weighted Recursive State Machines Krishnendu Chatterjee Bernhard Kragl

Faster Algorithms for Weighted Recursive State Machines Krishnendu Chatterjee Bernhard Kragl Samarth Mishra Andreas Pavlogiannis Recursive State Machines (RSMs) 1 Formal model of recursive computation B Linearly equivalent to pushdown

321 views • 18 slides
Model-based recursive partitioning for Bradley-Terry models Florian Wickelmaier Carolin Strobl

Model-based recursive partitioning for Bradley-Terry models Florian Wickelmaier Carolin Strobl

Model-based recursive partitioning for Bradley-Terry models Florian Wickelmaier Carolin Strobl Achim Zeileis 2nd Workshop on Psychometric Computing February 25-26, 2010 Goal of model based partitioning Motivation The preference scaling

182 views • 17 slides
Lesson 9 Recursive Types 2/19, 21 Chapters 20, 21 Recursive type Recursive type terms are

Lesson 9 Recursive Types 2/19, 21 Chapters 20, 21 Recursive type Recursive type terms are

Lesson 9: Recursive Types Lesson 9 Recursive Types 2/19, 21 Chapters 20, 21 Recursive type Recursive type terms are infinite, but regular For finite terms, use induction based on least fixed points For infinite terms/trees, we

232 views • 7 slides
Review Recursion Factorial (Iterative and Recursive versions) Call Stack (Last-in,

Review Recursion Factorial (Iterative and Recursive versions) Call Stack (Last-in,

Review Recursion Factorial (Iterative and Recursive versions) Call Stack (Last-in, first-out Queue) Tracing recursive functions Fibonacci Sequence Recursive Implementation Recursive Maze Generation One can declare an

921 views • 16 slides
Assessing the Stability of Forecasting Models: Recursive Parameter Estimation and Recursive

Assessing the Stability of Forecasting Models: Recursive Parameter Estimation and Recursive

Assessing the Stability of Forecasting Models: Recursive Parameter Estimation and Recursive Residuals At each t, t = k, ... ,T-1, compute: Recursive parameter est. and forecast: Recursive residual: If all is well: Sequence of 1-step forecast

650 views • 39 slides
Finding your way in a graph Finding your way in a graph Finding your way in a graph Finding your

Finding your way in a graph Finding your way in a graph Finding your way in a graph Finding your

Finding your way in a graph Finding your way in a graph Finding your way in a graph Finding your way in a graph = station One loop = junction A system of interconnected loops L L What is the best way to go from L to ? L L L 1 ? L

2.13k views • 166 slides
Recursion Announcements Recursive Functions Recursive Functions Definition : A function is

Recursion Announcements Recursive Functions Recursive Functions Definition : A function is

Recursion Announcements Recursive Functions Recursive Functions Definition : A function is called recursive if the body of that function calls itself, either directly or indirectly Implication : Executing the body of a recursive function may

320 views • 18 slides
Accelerating MUS Extraction with Recursive Model Rotation Anton Belov and Joao Marques-Silva

Accelerating MUS Extraction with Recursive Model Rotation Anton Belov and Joao Marques-Silva

Accelerating MUS Extraction with Recursive Model Rotation Anton Belov and Joao Marques-Silva Complex and Adaptive Systems Laboratory School of Computer Science and Informatics University College Dublin, Ireland FMCAD 2011 October 31, 2011

1.24k views • 69 slides
Guarantees in in Program Synthesis Qinheping Hu , Jason Breck , John Cyphert , Loris D'Antoni ,

Guarantees in in Program Synthesis Qinheping Hu , Jason Breck , John Cyphert , Loris D'Antoni ,

Guarantees in in Program Synthesis Qinheping Hu , Jason Breck , John Cyphert , Loris D'Antoni , Thomas Reps Program Synthesis Specification Solution Program Synthesizer Search space Program Synthesis is Un Unpredicta edictable ble

1.05k views • 41 slides
The Nuts and Bolts of Yices Bruno Dutertre SRI International SMT 2016 Coimbra, Portugal

The Nuts and Bolts of Yices Bruno Dutertre SRI International SMT 2016 Coimbra, Portugal

Computer Science Laboratory, SRI International The Nuts and Bolts of Yices Bruno Dutertre SRI International SMT 2016 Coimbra, Portugal Computer Science Laboratory, SRI International Yices 2 Ancestors ICS (Rue &amp; de Moura, 2002)

345 views • 30 slides
Data-efficient causal effect estimation Adith Swaminathan adswamin@microsoft.com Joint work with

Data-efficient causal effect estimation Adith Swaminathan adswamin@microsoft.com Joint work with

Data-efficient causal effect estimation Adith Swaminathan adswamin@microsoft.com Joint work with Maggie Makar (MIT) and Emre Kcman (MSR AI) Brown TRIPODS 1.16.2019 1. Improve ML applications using Causal Reasoning Causal ML Reasoning

803 views • 25 slides
CMPS 112: Spring 2019 Comparative Programming Languages Lambda Calculus Owen Arden

CMPS 112: Spring 2019 Comparative Programming Languages Lambda Calculus Owen Arden

CMPS 112: Spring 2019 Comparative Programming Languages Lambda Calculus Owen Arden UC Santa Cruz Based on course materials developed by Ranjit Jhala Your favorite language Probably has lots of features: Assignment

598 views • 33 slides
Adaptive)Concretization)for) Parallel)Program)Synthesis) Jinseong(Jeon 1 ,)Xiaokang)Qiu 2 ,)

Adaptive)Concretization)for) Parallel)Program)Synthesis) Jinseong(Jeon 1 ,)Xiaokang)Qiu 2 ,)

Adaptive)Concretization)for) Parallel)Program)Synthesis) Jinseong(Jeon 1 ,)Xiaokang)Qiu 2 ,) Armando)Solar@Lezama 2 ,)and)Jeffrey)S.)Foster 1) ) 1.)University)of)Maryland,)College)Park) 2.)MIT)CSAIL ) Syntax@guided)Synthesis) bit[32]

579 views • 57 slides
In times of unforeseen events 2014 2010 Fire at Dover Campus 2009 H1N1 Outbreak 2003 SARS

In times of unforeseen events 2014 2010 Fire at Dover Campus 2009 H1N1 Outbreak 2003 SARS

E-LAB IN INSTITUTE OF TECHNICAL EDUCATION (ITE) Chua Wee Seng Ong Chao Xiang 1 INSTITUTE OF TECHNICAL EDUCATION In times of unforeseen events 2014 2010 Fire at Dover Campus 2009 H1N1 Outbreak 2003 SARS Outbreak 2 INSTITUTE OF TECHNICAL

466 views • 32 slides
Scaling symbolic evaluation for automated verification of systems code with Serval Luke Nelson

Scaling symbolic evaluation for automated verification of systems code with Serval Luke Nelson

Scaling symbolic evaluation for automated verification of systems code with Serval Luke Nelson , James Bornholt , Ronghui Gu , Andrew Baumann , Emina Torlak , Xi Wang University of Washington, Columbia University,

713 views • 38 slides
MaxSAT and Related Optimization Problems Joao Marques-Silva 1 , 2 1 University College Dublin,

MaxSAT and Related Optimization Problems Joao Marques-Silva 1 , 2 1 University College Dublin,

MaxSAT and Related Optimization Problems Joao Marques-Silva 1 , 2 1 University College Dublin, Ireland 2 IST/INESC-ID, Lisbon, Portugal SAT/SMT Summer School 2012 FBK, Trento, Italy Example Problem: Minimum Vertex Cover The problem: Graph

1.66k views • 145 slides

More recommend