nested interpolants
play

Nested Interpolants Matthias Heizmann Jochen Hoenicke Andreas - PowerPoint PPT Presentation

Mar 31, 2024 •26 likes •346 views

Nested Interpolants Matthias Heizmann Jochen Hoenicke Andreas Podelski University of Freiburg, Germany POPL 2010 Result Interpolant-based software model checking for recursive programs avoid construction of an abstract program Hoare

  1. Nested Interpolants Matthias Heizmann Jochen Hoenicke Andreas Podelski University of Freiburg, Germany POPL 2010

  3. Result Interpolant-based software model checking for recursive programs ◮ avoid construction of an abstract program ◮ Hoare logic � nested words

  4. Software model checking Thomas Ball, Sriram K. Rajamani: The SLAM project: debugging system software via static analysis. (POPL 2002) Thomas A. Henzinger, Ranjit Jhala, Rupak Majumdar, Gr´ egoire Sutre Lazy abstraction. (POPL 2002) Thomas A. Henzinger, Ranjit Jhala, Rupak Majumdar, Kenneth L. McMillan Abstractions from proofs. (POPL 2004) theorem model proving checking program abstract program invariant

  5. Software model checking Thomas Ball, Sriram K. Rajamani: The SLAM project: debugging system software via static analysis. (POPL 2002) Thomas A. Henzinger, Ranjit Jhala, Rupak Majumdar, Gr´ egoire Sutre Lazy abstraction. (POPL 2002) Thomas A. Henzinger, Ranjit Jhala, Rupak Majumdar, Kenneth L. McMillan Abstractions from proofs. (POPL 2004) theorem model proving checking program abstract program invariant Bottleneck: Construction of abstract program

  6. Recent approaches: Avoid construction of abstract program Franjo Ivancic, Ilya Shlyakhter, Aarti Gupta, Malay K. Ganai Model checking C programs using F-SOFT (ICCD 2005) Kenneth L. McMillan Lazy abstraction with interpolants (CAV 2006) Nels Beckman, Aditya V. Nori, Sriram K. Rajamani, Robert J. Simmons Proofs from tests (ISSTA 2008) Bhargav S. Gulavani, Supratik Chakraborty, Aditya V. Nori, Sriram K. Rajamani Automatically refining abstract interpretations (TACAS 2008)

  7. One idea: Use interpolants to avoid construction of the abstract program theorem model proving checking program abstract program invariant interpolating theorem prover

  8. One idea: Use interpolants to avoid construction of the abstract program theorem model proving checking program abstract program invariant interpolating theorem prover Ranjit Jhala, Kenneth L. McMillan A practical and complete approach to predicate refinement (TACAS 2006) Kenneth L. McMillan Lazy abstraction with interpolants (CAV 2006) Quantified invariant generation using an interpolating saturation prover (TACAS 2008) Open: Interpolants in interprocedural analysis

  9. Interprocedural static analysis - motivation Recursive Programs?

  10. Interprocedural static analysis - motivation Modularity! Recursive Programs?

  11. Interprocedural static analysis - motivation Modularity! Recursive Programs? Interprocedural analysis, a classical topic in programming languages Micha Sharir, Amir Pnueli Two approaches to interprocedural data flow analysis (1981) Thomas W. Reps, Susan Horwitz, Shmuel Sagiv Precise interprocedural dataflow analysis via graph reachability (POPL 1995) Shaz Qadeer, Sriram K. Rajamani, Jakob Rehof Summarizing procedures in concurrent programs (POPL 2004)

  12. Interpolants Interpolant - for a proof Proof A ⇒ B Given: A ⇒ I ⇒ B . Interpolation: ... automatically generated by SMT solver (Craig interpolation)

  13. Interpolants Interpolant - for a proof Proof A ⇒ B Given: A ⇒ I ⇒ B . Interpolation: ... automatically generated by SMT solver (Craig interpolation) Interpolant - for an execution traces Infeasible trace st 1 . . . st i st i +1 . . . st n Given: Interpolation: post ( true , st 1 . . . st i ) ⊆ I ⊆ wp ( st i +1 . . . st n , false ) ... can be new formula, not contained in program

  14. Inductive interpolants Construct sequence of interpolants I 0 . . . I n inductively post ( I i , st i ) ⊆ I i +1 suitable Hoare annotation to prove infeasibility of program slice

  15. Inductive interpolants Construct sequence of interpolants I 0 . . . I n inductively post ( I i , st i ) ⊆ I i +1 suitable Hoare annotation to prove infeasibility of program slice What if execution trace contains procedure calls?

  16. Interpolants for interprocedural analysis What is an interpolant for an interprocedural execution?

  17. Interpolants for interprocedural analysis What is an interpolant for an interprocedural execution? ◮ state with a stack? � locality of interpolant is lost

  18. Interpolants for interprocedural analysis What is an interpolant for an interprocedural execution? ◮ state with a stack? � locality of interpolant is lost ◮ only local valuations? � call/return dependency lost, � sequence of interpolants is not a proof

  19. Our gordian knot How can we keep track of the call/return dependency in a sequence of states without a stack?

  21. Nested words Idea: Add call/return dependency explicitly to the word Rajeev Alur Marrying words and trees (PODS 2007) Rajeev Alur, P. Madhusudan Adding nesting structure to words (DLT 2006, J. ACM 56(3) 2009) Rajeev Alur, Swarat Chaudhuri Temporal reasoning for procedural programs (VMCAI 2010)

  22. Nested words Idea: Add call/return dependency explicitly to the word Rajeev Alur Marrying words and trees (PODS 2007) Rajeev Alur, P. Madhusudan Adding nesting structure to words (DLT 2006, J. ACM 56(3) 2009) Rajeev Alur, Swarat Chaudhuri Temporal reasoning for procedural programs (VMCAI 2010)

  23. Nested interpolants What is a sequence of interpolants for an interprocedural execution? Idea: Define sequence interpolants with respect to nested trace

  24. Nested interpolants What is a sequence of interpolants for an interprocedural execution? Idea: Define sequence interpolants with respect to nested trace � � post I i , I k , return ⊆ I i +1

  25. Control flow as nested word automata procedure m(x) returns (res) call m ℓ 0 ℓ 0 : if x>100 x<=100 ℓ 2 ℓ 1 : res:=x-10 x>100 else x m :=x+11 call m ℓ 3 x m := x+11 ℓ 2 : ℓ 4 ℓ 1 ℓ 3 : call m x m :=res m return m ↑ ℓ 3 ℓ 5 x m := res m ℓ 4 : res:=x-10 call m ℓ 5 : ℓ 6 res:=res m ℓ 6 : res := res m ℓ 7 return m ↑ ℓ 5 x ≤ 101 ∧ res � = 91 ℓ 7 : assert (x<=101 -> res=91) return m ℓ err McCarthy 91 function nested word automaton

  26. Floyd-Hoare proof as nested word automata procedure m(x) returns (res) call m {⊤} ⊤ ℓ 0 : if x>100 x<=100 { x ≥ 101 } x ≤ 100 ℓ 1 : res:=x-10 x>100 else x m :=x+11 call m { x ≤ 100 } x m ≤ 111 x m := x+11 ℓ 2 : { x m ≤ 111 } res m ≤ 101 x ≥ 101 ℓ 3 : call m x m :=res m return m ↑ x m ≤ 111 { res m ≤ 101 } x m ≤ 101 x m := res m ℓ 4 : { x m ≤ 101 } res:=x-10 call m ℓ 5 : res m = 91 res:=res m { res m = 91 } ℓ 6 : res := res m res = 91 ∨ x ≥ 101 ∧ res = x − 10 { res = 91 ∨ ( x ≥ 101 ∧ res = x − 10) } return m ↑ x m ≤ 101 ℓ 7 : assert (x<=101 -> res=91) return m McCarthy 91 function nested word automaton

  27. Floyd-Hoare proof as nested word automata procedure m(x) returns (res) call m {⊤} ⊤ ℓ 0 : if x>100 x<=100 { x ≥ 101 } x ≤ 100 ℓ 1 : res:=x-10 x>100 else x m :=x+11 call m { x ≤ 100 } x m ≤ 111 x m := x+11 ℓ 2 : { x m ≤ 111 } res m ≤ 101 x ≥ 101 ℓ 3 : call m x m :=res m return m ↑ x m ≤ 111 { res m ≤ 101 } x m ≤ 101 x m := res m ℓ 4 : { x m ≤ 101 } res:=x-10 call m ℓ 5 : res m = 91 res:=res m { res m = 91 } ℓ 6 : res := res m res = 91 ∨ x ≥ 101 ∧ res = x − 10 { res = 91 ∨ ( x ≥ 101 ∧ res = x − 10) } return m ↑ x m ≤ 101 ℓ 7 : assert (x<=101 -> res=91) return m McCarthy 91 function nested word automaton � x ≤ 100 , x m :=x+11 � e.g. post ⊆ x m ≤ 111

  28. Constructing a proof of correctness Compute sequence of nested interpolants I 0 : ⊤ ϕ 0 : x − 1 ≤ 100 x<=100 I 1 : x ≤ 100 ϕ 1 : x 1 m = x − 1 +11 x m :=x+11 ϕ 2 : x 2 = x 1 call m I 2 : x m ≤ 111 I 3 : ⊤ m ϕ 3 : x 2 > 100 x>100 I 4 : ⊤ ϕ 4 : res 4 = x 2 − 10 res:=x-10 ϕ 5 : res 5 m = res 4 return m I 6 : res m ≤ 101 I 5 : res ≤ x − 10 ϕ 6 : x 6 m = res 5 x m :=res m m ϕ 7 : x 7 = x 6 call m I 7 : x m ≤ 101 I 8 : ⊤ m ϕ 8 : x 7 > 100 x>100 I 9 : x ≥ 101 ϕ 9 : res 9 = x 7 − 10 res:=x-10 return m ϕ 10 : res 10 m = res 9 I 11 : res m =91 I 10 : x ≥ 101 ∧ res = x − 10 ϕ 11 : res 11 = res 10 res:=res m m I 12 : res =91 ϕ 12 : x − 1 ≤ 100 ∧ res 11 � = 91 x ≤ 101 ∧ res � = 91) I 13 : ⊥ infeasible nested trace π SSA of π sequence of interpolants for π

  29. Constructing a proof of correctness Nested interpolant automaton I 0 : ⊤ q 0 x<=100 I 1 : x ≤ 100 x<=100 q 1 x<=100 x m :=x+11 I 2 : x m ≤ 111 I 3 : ⊤ q 2 q 3 call m x>100 I 4 : ⊤ q 4 res:=x-10 I 6 : res m ≤ 101 I 5 : res ≤ x − 10 q 6 return m ↑ q 2 q 5 x m :=res m I 7 : x m ≤ 101 I 8 : ⊤ q 7 q 8 call m x>100 I 9 : x ≥ 101 return m ↑ q 2 q 9 res:=x-10 I 11 : res m =91 I 10 : x ≥ 101 ∧ res = x − 10 q 11 q 10 return m ↑ q 7 res:=res m return m ↑ q 7 I 12 : res =91 q 12 x ≤ 101 ∧ res � = 91) q 13 I 13 : ⊥ nested interpolant automaton sequence of interpolants for π

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Nested Word Automata Jens Stimpfle 30.6.2014 Nested Words Nested Words Theoretically and

Nested Word Automata Jens Stimpfle 30.6.2014 Nested Words Nested Words Theoretically and

Nested Word Automata Jens Stimpfle 30.6.2014 Nested Words Nested Words Theoretically and practically pleasant model for the representation of data with both: a linear ordering a hierarchically nested matching Nested Words

796 views • 58 slides
Exploring Interpolants Philipp R ummer, Pavle Suboti c Uppsala University, Sweden COST

Exploring Interpolants Philipp R ummer, Pavle Suboti c Uppsala University, Sweden COST

Exploring Interpolants Philipp R ummer, Pavle Suboti c Uppsala University, Sweden COST Meeting, October 17 R ummer, Suboti c Exploring Interpolants COST Meeting, October 17 1 / 39 Introduction Interpolants in Model Checking Craig

754 views • 60 slides
Nested Transactions Nested Transactions Flat transactions The rules for committing of

Nested Transactions Nested Transactions Flat transactions The rules for committing of

Nested Transactions Nested Transactions Flat transactions The rules for committing of nested transactions Nested Transactions A transaction commits or aborts only after its child transactions have completed; Structured in

808 views • 11 slides
Advanced OpenMP Lecture 6: Nested parallelism Nested parallelism Nested parallelism is

Advanced OpenMP Lecture 6: Nested parallelism Nested parallelism Nested parallelism is

Advanced OpenMP Lecture 6: Nested parallelism Nested parallelism Nested parallelism is supported in OpenMP. If a PARALLEL directive is encountered within another PARALLEL directive, a new team of threads will be created. This is

242 views • 11 slides
Comparing Nested Models Two models are nested if one model contains all the terms of the other,

Comparing Nested Models Two models are nested if one model contains all the terms of the other,

ST 430/514 Introduction to Regression Analysis/Statistics for Management and the Social Sciences II Comparing Nested Models Two models are nested if one model contains all the terms of the other, and at least one additional term. The larger model

418 views • 20 slides
Nested Virtualization on ARM NEVE: Nested Virtualization Extensions Jin Tack Lim

Nested Virtualization on ARM NEVE: Nested Virtualization Extensions Jin Tack Lim

Nested Virtualization on ARM NEVE: Nested Virtualization Extensions Jin Tack Lim Christoffer Dall Shih-Wei Li Jason Nieh Marc Zyngier LEADING jitack@cs.columbia.edu christo ff er.dall@linaro.org

986 views • 51 slides
Producing Effective Interpolants for SAT-based Incremental Verification and Upgrade Checking

Producing Effective Interpolants for SAT-based Incremental Verification and Upgrade Checking

Producing Effective Interpolants for SAT-based Incremental Verification and Upgrade Checking Grigory Fedyukovich Joint work with: Ondrej Sery, Simone Fulvio Rollini, Leonardo Alt, Antti E. J. Hyvrinen, and Natasha Sharygina F ORMAL V ERIFICATION

843 views • 81 slides
Nested and Composite Classes Lecture 14 COP 3252 Summer 2017 May 30, 2017 Nested Classes

Nested and Composite Classes Lecture 14 COP 3252 Summer 2017 May 30, 2017 Nested Classes

Nested and Composite Classes Lecture 14 COP 3252 Summer 2017 May 30, 2017 Nested Classes The Java programming language allows you to define a class within another class. Such a class is called a nested class. Nested classes are divided

587 views • 6 slides
6 Subsequences and sequential compactness 6.1 Nested intervals and nested d -cells Recall the

6 Subsequences and sequential compactness 6.1 Nested intervals and nested d -cells Recall the

6 Subsequences and sequential compactness 6.1 Nested intervals and nested d -cells Recall the nested intervals principle from G11ACF: Let I k = [ a k , b k ] R be closed (non-empty) intervals in R with I 1 I 2 I 3 . . . (such a

157 views • 13 slides
Nonlinear Polynomials, Interpolants and Invariant Generation for System Analysis Deepak Kapur

Nonlinear Polynomials, Interpolants and Invariant Generation for System Analysis Deepak Kapur

Nonlinear Polynomials, Interpolants and Invariant Generation for System Analysis Deepak Kapur Department of Computer Science University of New Mexico Albuquerque, NM, USA with Rodriguez-Carbonell, Zhihai Zhang, Hengjun Zhao, Stephan Falke,

2.07k views • 183 slides
NEVE: Nested Virtualization Extensions for ARM Jin Tack Lim, Christo ff er Dall, Shih-Wei Li, Jason

NEVE: Nested Virtualization Extensions for ARM Jin Tack Lim, Christo ff er Dall, Shih-Wei Li, Jason

NEVE: Nested Virtualization Extensions for ARM Jin Tack Lim, Christo ff er Dall, Shih-Wei Li, Jason Nieh, and Marc Zyngier* * Nested Virtualization VM Nested VM Nested VM App App App App VM Kernel Kernel App App Guest Hypervisor

407 views • 39 slides
On the Lebesgue constant of the Floater-Hormann rational interpolants Stefano De Marchi

On the Lebesgue constant of the Floater-Hormann rational interpolants Stefano De Marchi

On the Lebesgue constant of the Floater-Hormann rational interpolants Stefano De Marchi Department of Mathematics University of Padova Fribourg, November 3, 2015 Joint work with L. Bos (Verona), K. Hormann (Lugano), G. Klein (Fribourg),

1.05k views • 63 slides
Comparing Nested Models Two regression models are called nested if one contains all the predictors

Comparing Nested Models Two regression models are called nested if one contains all the predictors

ST 370 Probability and Statistics for Engineers Comparing Nested Models Two regression models are called nested if one contains all the predictors of the other, and some additional predictors. For example, the first-order model in two

322 views • 17 slides
On smooth spline spaces and quasi-interpolants over Powell-Sabin triangulations Hendrik Speleers

On smooth spline spaces and quasi-interpolants over Powell-Sabin triangulations Hendrik Speleers

Intro PS r -splines Quasi-interpolation Conclusions On smooth spline spaces and quasi-interpolants over Powell-Sabin triangulations Hendrik Speleers Katholieke Universiteit Leuven Department of Computer Science MAIA Conference Erice,

537 views • 32 slides
Threaded Programming Lecture 6: Further topics in OpenMP Overview Nested parallelism

Threaded Programming Lecture 6: Further topics in OpenMP Overview Nested parallelism

Threaded Programming Lecture 6: Further topics in OpenMP Overview Nested parallelism Orphaned constructs Thread-private globals Timing routines 2 Nested parallelism Nested parallelism is supported in OpenMP. If a

225 views • 20 slides
Effectively Propositional Interpolants Samuel Drews and Aws Albarghouthi Effectively

Effectively Propositional Interpolants Samuel Drews and Aws Albarghouthi Effectively

Effectively Propositional Interpolants Samuel Drews and Aws Albarghouthi Effectively Propositional Logic (EPR) Quantifier-free No function symbols EPR Decidable satisfiability! EPR Decidable satisfiability! Expressive: Linked lists

1.12k views • 55 slides
Whole-body Compliant Dynamical Contacts for Humanoids: the CoDyCo project (FP7 EU project No.

Whole-body Compliant Dynamical Contacts for Humanoids: the CoDyCo project (FP7 EU project No.

Whole-body Compliant Dynamical Contacts for Humanoids: the CoDyCo project (FP7 EU project No. 600716 / 2013-2017) Vincent Padois, Matre de Confrences vincent.padois@upmc.fr Institut des Systmes Intelligents et de Robotique Sorbonne

702 views • 44 slides
Make your code count Quantum simulations and collaborative code QuTiP: Shahnawaz Ahmed The

Make your code count Quantum simulations and collaborative code QuTiP: Shahnawaz Ahmed The

Make your code count Quantum simulations and collaborative code QuTiP: Shahnawaz Ahmed The Quantum Toolbox in Python 1 About me sahmed.in PhD @Applied Quantum Physics, Quantum simulations, 2019 Machine

864 views • 44 slides
Probabilistic Programming Frank Wood frank@invrea.com

Probabilistic Programming Frank Wood frank@invrea.com

Probabilistic Programming Frank Wood frank@invrea.com fwood@robots.ox.ac.uk http://www.invrea.com/ http://www.robots.ox.ac.uk/~fwood PPAML Summer School, Portland 2016 Objectives For This

1.51k views • 106 slides
Criticality Aware Tiered Cache Hierarchy (CATCH) Anant Nori*, Jayesh Gaur*, Siddharth Rai # ,

Criticality Aware Tiered Cache Hierarchy (CATCH) Anant Nori*, Jayesh Gaur*, Siddharth Rai # ,

Criticality Aware Tiered Cache Hierarchy (CATCH) Anant Nori*, Jayesh Gaur*, Siddharth Rai # , Sreenivas Subramoney*, Hong Wang* * Microarchitecture Research Lab, Intel # Indian Institute of Technology Kanpur, India Popular Three Level Cache

887 views • 72 slides
Chapter 6 Digital Design and Computer Architecture , 2 nd Edition David Money Harris and Sarah L.

Chapter 6 Digital Design and Computer Architecture , 2 nd Edition David Money Harris and Sarah L.

Chapter 6 Digital Design and Computer Architecture , 2 nd Edition David Money Harris and Sarah L. Harris Chapter 6 &lt;1&gt; Chapter 6 :: Topics Introduction Assembly Language Machine Language Programming Addressing Modes

1.8k views • 135 slides
The Dynamics Group of Asynchronous Systems Henning S. Mortveit Department of Mathematics &amp;

The Dynamics Group of Asynchronous Systems Henning S. Mortveit Department of Mathematics &amp;

Background and Terminology Update Sequence Independent SDS Closing Remarks and Outlook The Dynamics Group of Asynchronous Systems Henning S. Mortveit Department of Mathematics &amp; NDSSL, Virginia Bioinformatics Institute Dedicated to Eric

883 views • 55 slides
Abelian Varieties with Big Monodromy David Zureick-Brown (Emory University) David Zywina (IAS)

Abelian Varieties with Big Monodromy David Zureick-Brown (Emory University) David Zywina (IAS)

Abelian Varieties with Big Monodromy David Zureick-Brown (Emory University) David Zywina (IAS) Slides available at http://www.mathcs.emory.edu/~dzb/slides/ 2013 Joint Math Meetings Special Session on Number Theory and Geometry San Diego, CA

449 views • 23 slides
Mul$SE: Mul$-Path Symbolic Execu$on using Value Summaries

Mul$SE: Mul$-Path Symbolic Execu$on using Value Summaries

Mul$SE: Mul$-Path Symbolic Execu$on using Value Summaries Koushik Sen University of California, Berkeley Joint work with George Necula, Liang Gong,

988 views • 70 slides

More recommend