parallelizing an interactive theorem prover
play

Parallelizing an Interactive Theorem Prover Functional Programming - PowerPoint PPT Presentation

Jul 23, 2023 •166 likes •751 views

Introduction Parallelism Primitives Parallelizing ACL2 Evaluate Approach Conclusion Talking Points Parallelizing an Interactive Theorem Prover Functional Programming and Proofs with ACL2 David L. Rager ragerdl@gmail.com June 17, 2013 1 /

  1. Introduction Parallelism Primitives Parallelizing ACL2 Evaluate Approach Conclusion Talking Points Parallelizing an Interactive Theorem Prover Functional Programming and Proofs with ACL2 David L. Rager ragerdl@gmail.com June 17, 2013 1 / 39

  2. Introduction Parallelism Primitives Parallelizing ACL2 Evaluate Approach Conclusion Talking Points Project Goals Add parallelism primitives to formal language Parallelize main ACL2 proof process Provide proof debugging feedback more quickly Reduce time required to replay proofs 2 / 39

  3. Introduction Parallelism Primitives Parallelizing ACL2 Evaluate Approach Conclusion Talking Points Introduction to ACL2 Functional programming language Theorem Prover is written in this programming language Automated theorem prover for first-order logic with induction Used by AMD, Centaur Technologies, IBM, and Rockwell Collins, perhaps Kestrel, and used at other industrial, academic, and government sites “... verified using Formal Methods techniques as specified by the EAL-7 level of the Common Criteria” 3 / 39

  4. Introduction Parallelism Primitives Parallelizing ACL2 Evaluate Approach Conclusion Talking Points Warmup Example Goal (2 sec) Subgoal 2 (7 sec) Subgoal 1 (1 sec) Subgoal 2.2 (1 sec) Subgoal 2.1 (3 sec) Subgoal 1' (5 sec) Subgoal 1'' (2 sec) 4 / 39

  5. Introduction Parallelism Primitives Parallelizing ACL2 Evaluate Approach Conclusion Talking Points Warmup Example Time: 0.1 sec Goal (2 sec) Subgoal 2 (7 sec) Subgoal 1 (1 sec) Subgoal 2.2 (1 sec) Subgoal 2.1 (3 sec) Subgoal 1' (5 sec) Legend pending Subgoal 1'' (2 sec) unstarted active finished 4 / 39

  6. Introduction Parallelism Primitives Parallelizing ACL2 Evaluate Approach Conclusion Talking Points Warmup Example Time: 2.1 sec Goal (2 sec) Subgoal 2 (7 sec) Subgoal 1 (1 sec) Subgoal 2.2 (1 sec) Subgoal 2.1 (3 sec) Subgoal 1' (5 sec) Legend pending Subgoal 1'' (2 sec) unstarted active finished 4 / 39

  7. Introduction Parallelism Primitives Parallelizing ACL2 Evaluate Approach Conclusion Talking Points Warmup Example Time: 9.1 sec Goal (2 sec) Subgoal 2 (7 sec) Subgoal 1 (1 sec) Subgoal 2.2 (1 sec) Subgoal 2.1 (3 sec) Subgoal 1' (5 sec) Legend pending Subgoal 1'' (2 sec) unstarted active finished 4 / 39

  8. Introduction Parallelism Primitives Parallelizing ACL2 Evaluate Approach Conclusion Talking Points Warmup Example Time: 1 0.1 sec Goal (2 sec) Subgoal 2 (7 sec) Subgoal 1 (1 sec) Subgoal 2.2 (1 sec) Subgoal 2.1 (3 sec) Subgoal 1' (5 sec) Legend pending Subgoal 1'' (2 sec) unstarted active finished 4 / 39

  9. Introduction Parallelism Primitives Parallelizing ACL2 Evaluate Approach Conclusion Talking Points Warmup Example Time: 13.1 sec Goal (2 sec) Subgoal 2 (7 sec) Subgoal 1 (1 sec) Subgoal 2.2 (1 sec) Subgoal 2.1 (3 sec) Subgoal 1' (5 sec) Legend pending Subgoal 1'' (2 sec) unstarted active finished 4 / 39

  10. Introduction Parallelism Primitives Parallelizing ACL2 Evaluate Approach Conclusion Talking Points Warmup Example Time: 1 4.1 sec Goal (2 sec) Subgoal 2 (7 sec) Subgoal 1 (1 sec) Subgoal 2.2 (1 sec) Subgoal 2.1 (3 sec) Subgoal 1' (5 sec) Legend pending Subgoal 1'' (2 sec) unstarted active finished 4 / 39

  11. Introduction Parallelism Primitives Parallelizing ACL2 Evaluate Approach Conclusion Talking Points Warmup Example Time: 19.1 sec Goal (2 sec) Subgoal 2 (7 sec) Subgoal 1 (1 sec) Subgoal 2.2 (1 sec) Subgoal 2.1 (3 sec) Subgoal 1' (5 sec) Legend pending Subgoal 1'' (2 sec) unstarted active finished 4 / 39

  12. Introduction Parallelism Primitives Parallelizing ACL2 Evaluate Approach Conclusion Talking Points Warmup Example Time: 2 1.0 sec Goal (2 sec) Subgoal 2 (7 sec) Subgoal 1 (1 sec) Subgoal 2.2 (1 sec) Subgoal 2.1 (3 sec) Subgoal 1' (5 sec) Legend pending Subgoal 1'' (2 sec) unstarted active finished 4 / 39

  13. Introduction Parallelism Primitives Parallelizing ACL2 Evaluate Approach Conclusion Talking Points Warmup Example Time: 0.0 sec Goal (2 sec) Subgoal 2 (7 sec) Subgoal 1 (1 sec) Subgoal 2.2 (1 sec) Subgoal 2.1 (3 sec) Subgoal 1' (5 sec) Legend pending Subgoal 1'' (2 sec) unstarted active finished Can we make this proof go faster with parallel execution? 5 / 39

  14. Introduction Parallelism Primitives Parallelizing ACL2 Evaluate Approach Conclusion Talking Points Warmup Example Time: 0.1 sec Goal (2 sec) Subgoal 2 (7 sec) Subgoal 1 (1 sec) Subgoal 2.2 (1 sec) Subgoal 2.1 (3 sec) Subgoal 1' (5 sec) Legend pending Subgoal 1'' (2 sec) unstarted active finished Can we make this proof go faster with parallel execution? 5 / 39

  15. Introduction Parallelism Primitives Parallelizing ACL2 Evaluate Approach Conclusion Talking Points Warmup Example Time: 2.1 sec Goal (2 sec) Subgoal 2 (7 sec) Subgoal 1 (1 sec) Subgoal 2.2 (1 sec) Subgoal 2.1 (3 sec) Subgoal 1' (5 sec) Legend pending Subgoal 1'' (2 sec) unstarted active finished Can we make this proof go faster with parallel execution? 5 / 39

  16. Introduction Parallelism Primitives Parallelizing ACL2 Evaluate Approach Conclusion Talking Points Warmup Example Time: 3.1 sec Goal (2 sec) Subgoal 2 (7 sec) Subgoal 1 (1 sec) Subgoal 2.2 (1 sec) Subgoal 2.1 (3 sec) Subgoal 1' (5 sec) Legend pending Subgoal 1'' (2 sec) unstarted active finished Can we make this proof go faster with parallel execution? 5 / 39

  17. Introduction Parallelism Primitives Parallelizing ACL2 Evaluate Approach Conclusion Talking Points Warmup Example Time: 8.1 sec Goal (2 sec) Subgoal 2 (7 sec) Subgoal 1 (1 sec) Subgoal 2.2 (1 sec) Subgoal 2.1 (3 sec) Subgoal 1' (5 sec) Legend pending Subgoal 1'' (2 sec) unstarted active finished Can we make this proof go faster with parallel execution? 5 / 39

  18. Introduction Parallelism Primitives Parallelizing ACL2 Evaluate Approach Conclusion Talking Points Warmup Example Time: 9.1 sec Goal (2 sec) Subgoal 2 (7 sec) Subgoal 1 (1 sec) Subgoal 2.2 (1 sec) Subgoal 2.1 (3 sec) Subgoal 1' (5 sec) Legend pending Subgoal 1'' (2 sec) unstarted active finished Can we make this proof go faster with parallel execution? 5 / 39

  19. Introduction Parallelism Primitives Parallelizing ACL2 Evaluate Approach Conclusion Talking Points Warmup Example Time: 1 0.1 sec Goal (2 sec) Subgoal 2 (7 sec) Subgoal 1 (1 sec) Subgoal 2.2 (1 sec) Subgoal 2.1 (3 sec) Subgoal 1' (5 sec) Legend pending Subgoal 1'' (2 sec) unstarted active finished Can we make this proof go faster with parallel execution? 5 / 39

  20. Introduction Parallelism Primitives Parallelizing ACL2 Evaluate Approach Conclusion Talking Points Warmup Example Time: 1 2.0 sec Goal (2 sec) Subgoal 2 (7 sec) Subgoal 1 (1 sec) Subgoal 2.2 (1 sec) Subgoal 2.1 (3 sec) Subgoal 1' (5 sec) Legend pending Subgoal 1'' (2 sec) unstarted active finished Can we make this proof go faster with parallel execution? 5 / 39

  21. Introduction Parallelism Primitives Parallelizing ACL2 Evaluate Approach Conclusion Talking Points Warmup Example Time: 1 2.0 sec Goal (2 sec) Subgoal 2 (7 sec) Subgoal 1 (1 sec) Subgoal 2.2 (1 sec) Subgoal 2.1 (3 sec) Subgoal 1' (5 sec) Legend pending Subgoal 1'' (2 sec) unstarted active finished Can we make this proof go faster with parallel execution? Can first subgoal failure provide feedback sooner with parallel execution? 5 / 39

  22. Introduction Parallelism Primitives Parallelizing ACL2 Evaluate Approach Conclusion Talking Points Warmup Example Time: 13.1 sec Goal (2 sec) Subgoal 2 (7 sec) Subgoal 1 (1 sec) Subgoal 2.2 (1 sec) Subgoal 2.1 (3 sec) Subgoal 1' (5 sec) Legend pending Subgoal 1'' (2 sec) unstarted active finished Can we make this proof go faster with parallel execution? Can first subgoal failure provide feedback sooner with parallel execution? 5 / 39

  23. Introduction Parallelism Primitives Parallelizing ACL2 Evaluate Approach Conclusion Talking Points Warmup Example Time: 2.1 sec Goal (2 sec) Subgoal 2 (7 sec) Subgoal 1 (1 sec) Subgoal 2.2 (1 sec) Subgoal 2.1 (3 sec) Subgoal 1' (5 sec) Legend pending Subgoal 1'' (2 sec) unstarted active finished Can we make this proof go faster with parallel execution? Can first subgoal failure provide feedback sooner with parallel execution? 5 / 39

  24. Introduction Parallelism Primitives Parallelizing ACL2 Evaluate Approach Conclusion Talking Points Key Results Integrated parallelism primitives into the logic (and programming language) Many single-threaded features now thread-safe Use spec-mv-let to run theorem prover in parallel Created a robust implementation 99.9% of the 80,000 theorem regression suite (pre-centaur directory addition) certifies 5.1x avg. speedup for 200 longest running theorems (32 cores) Some theorems obtain a ∼ 25.7x speedup At least a couple users using subgoal-level parallelism on a daily basis 6 / 39

  25. Introduction Parallelism Primitives Parallelizing ACL2 Evaluate Approach Conclusion Talking Points Overview Parallelism Primitives and Abstractions Goal: Create Lisp and ACL2 primitives and abstractions necessary to parallelize the proof process Results: Created multi-threading interface for Lisp Created futures library on top of this multi-threading interface Formalized speculative spec-mv-let primitive and implemented with futures Spec-mv-let Futures Level of Low-level multi-threading abstraction interface LispWorks CCL SBCL 7 / 39

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

A Parallelized Theorem Prover for Interactive Theorem Proving David L. Rager, Warren A. Hunt Jr.,

A Parallelized Theorem Prover for Interactive Theorem Proving David L. Rager, Warren A. Hunt Jr.,

Introduction Parallelism Primitives Parallelizing ACL2 Evaluate Approach Conclusion A Parallelized Theorem Prover for Interactive Theorem Proving David L. Rager, Warren A. Hunt Jr., and Matt Kaufmann ragerdl@defthm.com, hunt@cs.utexas.edu,

835 views • 59 slides
yet another nice and accurate interactive theorem prover (sufficiently similar, sufficiently

yet another nice and accurate interactive theorem prover (sufficiently similar, sufficiently

yet another nice and accurate interactive theorem prover (sufficiently similar, sufficiently different) Freek Wiedijk Radboud University Nijmegen 2018 06 25 0 nice combining the nicest aspects of state-of-the-art provers:

288 views • 25 slides
1 What is a Theorem Prover? What is a Theorem? Theorem: A formalizable statement which is

1 What is a Theorem Prover? What is a Theorem? Theorem: A formalizable statement which is

Prerequisites Course 2D1453, 2006-07 Undergraduate logic and discrete maths CS literacy Advanced Formal Methods Some functional programming experience useful The theorem prover Isabelle is programming in SML Some SML

644 views • 4 slides
The Abella Interactive Theorem Prover (System Description) Andrew Gacek Department of Computer

The Abella Interactive Theorem Prover (System Description) Andrew Gacek Department of Computer

The Abella Interactive Theorem Prover (System Description) Andrew Gacek Department of Computer Science and Engineering University of Minnesota IJCAR 08 August 12, 2008 Characteristics of the Abella System Abella is a theorem proving

794 views • 40 slides
Meditation for a Theorem Prover Reasoning and Consciousness Teaching a Theorem Prover to let

Meditation for a Theorem Prover Reasoning and Consciousness Teaching a Theorem Prover to let

Meditation for a Theorem Prover Reasoning and Consciousness Teaching a Theorem Prover to let its Mind Wander Ulrich Furbach Claudia Schon Univ. Koblenz - DFG Project Cognitive Reasoning Reasoning and Consciousness Teaching a

715 views • 55 slides
Metamath Zero or: How to verify a verifier Mario Carneiro Carnegie Mellon University January 9,

Metamath Zero or: How to verify a verifier Mario Carneiro Carnegie Mellon University January 9,

Metamath Zero or: How to verify a verifier Mario Carneiro Carnegie Mellon University January 9, 2020 What is an interactive theorem prover? What is an interactive theorem prover? Interactive: You and the computer collaborate to

700 views • 49 slides
Lean Theorem Prover Tom van Bussel June 14, 2017 Goals It aims to bridge the gap between

Lean Theorem Prover Tom van Bussel June 14, 2017 Goals It aims to bridge the gap between

Lean Theorem Prover Tom van Bussel June 14, 2017 Goals It aims to bridge the gap between interactive and automated theorem proving, by situating automated tools and methods in a framework that supports user interaction and the construction

324 views • 21 slides
A Self-Verifying Theorem Prover Jared Davis (advertisement by J Strother Moore)

A Self-Verifying Theorem Prover Jared Davis (advertisement by J Strother Moore)

A Self-Verifying Theorem Prover Jared Davis (advertisement by J Strother Moore) Department of Computer Sciences University of Texas at Austin September 18, 2009 1 Theorem Prover ? Yes Proof Checker Yes No 2 Rules of

693 views • 40 slides
Batch Proving and Proof Scripting in PVS C esar A. Mu noz munoz@nianet.org National

Batch Proving and Proof Scripting in PVS C esar A. Mu noz munoz@nianet.org National

Batch Proving and Proof Scripting in PVS C esar A. Mu noz munoz@nianet.org National Institute of Aerospace AFM 2006 NIA @ NASA LaRC 1 The PVS Theorem Prover PVS is a powerful interactive theorem prover. For expert users: PVS provides

442 views • 33 slides
CML Theorem Prover Simon Foster 2nd Review Brussels, 21 November, 2013 Deliverable: D33.2 (m24)

CML Theorem Prover Simon Foster 2nd Review Brussels, 21 November, 2013 Deliverable: D33.2 (m24)

CML Theorem Prover Simon Foster 2nd Review Brussels, 21 November, 2013 Deliverable: D33.2 (m24) www.compass-research.eu Theorem Prover Usage CML specifications to be verified by the COMPASS tool type-checking alone is insufficient to

311 views • 8 slides
Interactive Theorem Proving in Industry John Harrison Intel Corporation 16 April 2012 1 Milner

Interactive Theorem Proving in Industry John Harrison Intel Corporation 16 April 2012 1 Milner

Interactive Theorem Proving in Industry John Harrison Intel Corporation 16 April 2012 1 Milner on automation and interaction I wrote an automatic theorem prover in Swansea for myself and became shattered with the difficulty of doing anything

1.16k views • 81 slides
SMAC and XGBoost your Theorem Prover Edvard K. Holden Konstantin Korovin The University of

SMAC and XGBoost your Theorem Prover Edvard K. Holden Konstantin Korovin The University of

SMAC and XGBoost your Theorem Prover Edvard K. Holden Konstantin Korovin The University of Manchester 1 Theorem Proving in First-Order Logic Proof Axioms + Conjecture iProver | Counter model | Timeout 2 Heuristics - The Key to Success

1.03k views • 26 slides
Hygienic Macros for the ACL2 Theorem Prover Carl Eastlund Matthias Felleisen cce@ccs.neu.edu

Hygienic Macros for the ACL2 Theorem Prover Carl Eastlund Matthias Felleisen cce@ccs.neu.edu

Hygienic Macros for the ACL2 Theorem Prover Carl Eastlund Matthias Felleisen cce@ccs.neu.edu matthias@ccs.neu.edu Northeastern University Boston, MA, USA 1 The ACL2 Theorem Prover 2 (defun double (x) (+ x x)) (defun map-double (lst) (if

898 views • 52 slides
Clause Features for Theorem Prover Guidance uv 1 Josef Urban 1 Jan Jakub AITP19, Obergurgl,

Clause Features for Theorem Prover Guidance uv 1 Josef Urban 1 Jan Jakub AITP19, Obergurgl,

Clause Features for Theorem Prover Guidance uv 1 Josef Urban 1 Jan Jakub AITP19, Obergurgl, Austria, April 2019 1 Czech Technical University in Prague, Czech Republic Jan Jakub uv, Josef Urban Clause Features for Theorem Prover Guidance

589 views • 35 slides
Two-prover entangled games are NP hard Anand Natarajan (MIT) Thomas Vidick (Caltech)

Two-prover entangled games are NP hard Anand Natarajan (MIT) Thomas Vidick (Caltech)

Two-prover entangled games are NP hard Anand Natarajan (MIT) Thomas Vidick (Caltech) arXiv:1710.03062 Interactive proofs MIP IP Completeness: If YES, prover can convince verifier with Pr c (e.g. 2/3) Soundness : If NO, prover cannot

472 views • 19 slides
Haskell: Compiler as Theorem-Prover Greg Price ( price ) 2007 Nov 19 code samples:

Haskell: Compiler as Theorem-Prover Greg Price ( price ) 2007 Nov 19 code samples:

Haskell: Compiler as Theorem-Prover Greg Price ( price ) 2007 Nov 19 code samples: http://cluedumps.mit.edu/wiki/2007/11-19 Greg Price ( price ) () Haskell: Compiler as Theorem-Prover 2007 Nov 19 1 / 26 Software Transactional Memory 1

869 views • 48 slides
FLST: Speech Recognition Bernd Mbius moebius@coli.uni-saarland.de

FLST: Speech Recognition Bernd Mbius moebius@coli.uni-saarland.de

FLST: Speech Recognition Bernd Mbius moebius@coli.uni-saarland.de http://www.coli.uni-saarland.de/courses/FLST/2014/ FLST: Speech Recognition ASR and ASU Automatic speech recognition recognition of words or word sequences

468 views • 19 slides
Imperceptible, Robust and Targeted Adversarial Examples for Automatic Speech Recognition 1 2 2

Imperceptible, Robust and Targeted Adversarial Examples for Automatic Speech Recognition 1 2 2

Imperceptible, Robust and Targeted Adversarial Examples for Automatic Speech Recognition 1 2 2 1 2 Yao Qin , Nicholas Carlini , Ian Goodfellow , Garrison Cottrell and Colin Raffel 1 2 UC San Diego Google Research Long Beach, ICML June

370 views • 9 slides
From phonetics to speech technology Einar Meister Laboratory of Phonetics and Speech Technology

From phonetics to speech technology Einar Meister Laboratory of Phonetics and Speech Technology

From phonetics to speech technology Einar Meister Laboratory of Phonetics and Speech Technology Institute of Cybernetics Tallinn University of Technology Introduction Spoken language communication Progress in ASR

624 views • 18 slides
Speedups of ergodic Z d actions Aimee S.A. Johnson Swarthmore College David McClendon

Speedups of ergodic Z d actions Aimee S.A. Johnson Swarthmore College David McClendon

Speedups of ergodic Z d actions Aimee S.A. Johnson Swarthmore College David McClendon Ferris State University AMS Southeastern Sectional Meeting University of Mississippi March 3, 2013 Some history Theorem 1 (Arnoux, Ornstein, Weiss

395 views • 22 slides
Parallel Algorithms Algorithm Theory WS 2013/14 Fabian Kuhn Parallel Computations : time to

Parallel Algorithms Algorithm Theory WS 2013/14 Fabian Kuhn Parallel Computations : time to

Chapter 9 Parallel Algorithms Algorithm Theory WS 2013/14 Fabian Kuhn Parallel Computations : time to perform comp. with procs : work (total # operations) Time when doing the computation sequentially :

1.08k views • 24 slides
Better Time-Space Lower Bounds for SAT and Related Problems Ryan Williams Carnegie Mellon

Better Time-Space Lower Bounds for SAT and Related Problems Ryan Williams Carnegie Mellon

Better Time-Space Lower Bounds for SAT and Related Problems Ryan Williams Carnegie Mellon University June 12, 2005 0-0 Introduction Few super-linear time lower bounds known for natural problems in NP (Existing ones generally use a restricted

1.28k views • 106 slides
Acceleration of SVRG and Katyusha X by Inexact Preconditioning Yanli Liu, Fei Feng, and Wotao Yin

Acceleration of SVRG and Katyusha X by Inexact Preconditioning Yanli Liu, Fei Feng, and Wotao Yin

Introduction iPreSVRG & iPreKatX Experiments Theoretical Speedup Conclusions Acceleration of SVRG and Katyusha X by Inexact Preconditioning Yanli Liu, Fei Feng, and Wotao Yin University of California, Los Angeles ICML 2019 Introduction

490 views • 10 slides
Conspiracies between Learning Algorithms, Lower Bounds, and Pseudorandomness Igor Carboni

Conspiracies between Learning Algorithms, Lower Bounds, and Pseudorandomness Igor Carboni

Conspiracies between Learning Algorithms, Lower Bounds, and Pseudorandomness Igor Carboni Oliveira University of Oxford Joint work with Rahul Santhanam (Oxford) Context Minor algorithmic improvements imply lower bounds (Williams, 2010). NEXP

696 views • 30 slides

More recommend