picoq parallel regression proving for large scale
play

piCoq: Parallel Regression Proving for Large-Scale Verification - PowerPoint PPT Presentation

Mar 15, 2023 •224 likes •891 views

piCoq: Parallel Regression Proving for Large-Scale Verification Projects piCoq: Parallel Regression Proving for Large-Scale Verification Projects Karl Palmskog , Ahmet Celik, and Milos Gligoric The University of Texas at Austin, USA 1 / 29

  1. piCoq: Parallel Regression Proving for Large-Scale Verification Projects piCoq: Parallel Regression Proving for Large-Scale Verification Projects Karl Palmskog , Ahmet Celik, and Milos Gligoric The University of Texas at Austin, USA 1 / 29

  2. piCoq: Parallel Regression Proving for Large-Scale Verification Projects Introduction Verification Using Proof Assistants 1 encode definitions in (higher-order) formalism 2 prove propositions interactively using powerful tactics 3 check soundness of every low-level step proof assistant tactics proof user logic engine proof checker subgoals examples: Coq, HOL4, HOL Light, Isabelle/HOL, Lean, Nuprl, ... 2 / 29

  3. piCoq: Parallel Regression Proving for Large-Scale Verification Projects Introduction Some Large-Scale Proof Assistant Projects Project Year Assistant Check Time LOC 4-Color Theorem 2005 Coq hours 60k Odd Order Theorem 2012 Coq hours 150k Kepler Conjecture 2015 HOL Light days 500k CompCert C compiler 2009 Coq tens of mins 40k Cogent (BilbyFS) 2016 Isabelle/HOL hours 14k Verdi (Raft consensus) 2016 Coq tens of mins 50k problem: long proof checking times 3 / 29

  4. piCoq: Parallel Regression Proving for Large-Scale Verification Projects Introduction Proof Engineering Techniques For Effective Proving Proof selection: check only proofs affected by changes file/module selection proof selection Examples: Make, Isabelle [ITP ’14] , iCoq [ASE ’17] 4 / 29

  5. piCoq: Parallel Regression Proving for Large-Scale Verification Projects Introduction Proof Engineering Techniques For Effective Proving Proof selection: check only proofs affected by changes file/module selection proof selection Examples: Make, Isabelle [ITP ’14] , iCoq [ASE ’17] Proof parallelization: leverage multi-core hardware parallel checking of proofs parallel checking of files Examples: Make, Isabelle [ITP ’13] , Coq [ITP ’15] 4 / 29

  6. piCoq: Parallel Regression Proving for Large-Scale Verification Projects Introduction Our Contributions taxonomy of regression proving techniques that leverage both selection and parallelism implementation of techniques in tool, piCoq, that supports Coq projects (useful for CI, e.g., Travis on GitHub) evaluation using piCoq on six open source projects (23 kLOC over 22 revisions per project, on average) 5 / 29

  7. piCoq: Parallel Regression Proving for Large-Scale Verification Projects Background The Coq Proof Assistant (1985-present) based on constructive dependent type theory Gallina – programming/specification language Ltac – proof tactic language small trusted core checker for programs & proofs 6 / 29

  8. piCoq: Parallel Regression Proving for Large-Scale Verification Projects Background Coq Source File Example Require Import List. Require Import ListUtil. Import ListNotations. Fixpoint dedup A A_eq_dec (xs : list A) : list A := match xs with | [] ⇒ [] | x :: xs ⇒ if in_dec A_eq_dec x xs then dedup A A_eq_dec xs else x :: dedup A A_eq_dec xs end. Lemma remove_dedup : forall A A_eq_dec (x : A) xs, remove A_eq_dec x (dedup A A_eq_dec xs) = dedup A A_eq_dec (remove A_eq_dec x xs). Proof. induction xs; intros; auto; simpl. repeat (try case in_dec; try case A_eq_dec; simpl; intuition); auto using f_equal. - exfalso. apply n0. apply remove_preserve; auto. - exfalso. apply n. apply in_remove in i; intuition. Qed. Dedup.v 7 / 29

  9. piCoq: Parallel Regression Proving for Large-Scale Verification Projects Background Coq Source File Example Require statements expressing Require Import List. Require Import ListUtil. file dependencies. Import ListNotations. Fixpoint dedup A A_eq_dec (xs : list A) : list A := match xs with | [] ⇒ [] | x :: xs ⇒ if in_dec A_eq_dec x xs then dedup A A_eq_dec xs else x :: dedup A A_eq_dec xs end. Lemma remove_dedup : forall A A_eq_dec (x : A) xs, remove A_eq_dec x (dedup A A_eq_dec xs) = dedup A A_eq_dec (remove A_eq_dec x xs). Proof. induction xs; intros; auto; simpl. repeat (try case in_dec; try case A_eq_dec; simpl; intuition); auto using f_equal. - exfalso. apply n0. apply remove_preserve; auto. - exfalso. apply n. apply in_remove in i; intuition. Qed. Dedup.v 7 / 29

  10. piCoq: Parallel Regression Proving for Large-Scale Verification Projects Background Coq Source File Example Require Import List. Require Import ListUtil. Import ListNotations. Definition of a recursive function Fixpoint dedup A A_eq_dec (xs : list A) : list A := match xs with to remove duplicate list elements | [] ⇒ [] in Gallina. | x :: xs ⇒ if in_dec A_eq_dec x xs then dedup A A_eq_dec xs else x :: dedup A A_eq_dec xs end. Lemma remove_dedup : forall A A_eq_dec (x : A) xs, remove A_eq_dec x (dedup A A_eq_dec xs) = dedup A A_eq_dec (remove A_eq_dec x xs). Proof. induction xs; intros; auto; simpl. repeat (try case in_dec; try case A_eq_dec; simpl; intuition); auto using f_equal. - exfalso. apply n0. apply remove_preserve; auto. - exfalso. apply n. apply in_remove in i; intuition. Qed. Dedup.v 7 / 29

  11. piCoq: Parallel Regression Proving for Large-Scale Verification Projects Background Coq Source File Example Require Import List. Require Import ListUtil. Import ListNotations. Fixpoint dedup A A_eq_dec (xs : list A) : list A := match xs with | [] ⇒ [] | x :: xs ⇒ if in_dec A_eq_dec x xs then dedup A A_eq_dec xs else x :: dedup A A_eq_dec xs end. Statement (type) of a lemma in Lemma remove_dedup : forall A A_eq_dec (x : A) xs, Gallina. remove A_eq_dec x (dedup A A_eq_dec xs) = dedup A A_eq_dec (remove A_eq_dec x xs). Proof. induction xs; intros; auto; simpl. repeat (try case in_dec; try case A_eq_dec; simpl; intuition); auto using f_equal. - exfalso. apply n0. apply remove_preserve; auto. - exfalso. apply n. apply in_remove in i; intuition. Qed. Dedup.v 7 / 29

  12. piCoq: Parallel Regression Proving for Large-Scale Verification Projects Background Coq Source File Example Require Import List. Require Import ListUtil. Import ListNotations. Fixpoint dedup A A_eq_dec (xs : list A) : list A := match xs with | [] ⇒ [] | x :: xs ⇒ if in_dec A_eq_dec x xs then dedup A A_eq_dec xs else x :: dedup A A_eq_dec xs end. Lemma remove_dedup : forall A A_eq_dec (x : A) xs, remove A_eq_dec x (dedup A A_eq_dec xs) = dedup A A_eq_dec (remove A_eq_dec x xs). Proof. induction xs; intros; auto; simpl. Proof script in Ltac – potentially repeat (try case in_dec; try case A_eq_dec; time-consuming to process. simpl; intuition); auto using f_equal. - exfalso. apply n0. apply remove_preserve; auto. - exfalso. apply n. apply in_remove in i; intuition. Qed. Dedup.v 7 / 29

  13. piCoq: Parallel Regression Proving for Large-Scale Verification Projects Background Coq Proof-Checking Toolchain Legacy Top-Down Proof Checking (1990s) coqc : compilation of source .v files to binary .vo files .vo files contain functions and all proofs file-level parallelism via Make 8 / 29

  14. piCoq: Parallel Regression Proving for Large-Scale Verification Projects Background Coq Proof-Checking Toolchain Legacy Top-Down Proof Checking (1990s) coqc : compilation of source .v files to binary .vo files .vo files contain functions and all proofs file-level parallelism via Make Quick Compilation and Asynchronous Checking (2015) coqc -quick : compilation of .v files to binary .vio files .vio files contain functions and proof tasks proof tasks checkable asynchronously in parallel 8 / 29

  15. piCoq: Parallel Regression Proving for Large-Scale Verification Projects Proof Checking Modes Regression Proving Modes for Coq (Taxonomy) Parallelization Selection Granularity None Files Proofs File level f · none f · file N/A Proof level p · none p · file p · icoq 9 / 29

  16. piCoq: Parallel Regression Proving for Large-Scale Verification Projects Proof Checking Modes f · none Mode: File-Level Parallelization, No Selection Parallelization Selection Granularity None Files Proofs File level f · none f · file N/A Proof level p · none p · file p · icoq legacy mode used in most GitHub Coq projects no overhead from proof task management or dep. tracking parallelism restricted by file dependency graph overhead from writing proofs to disk 10 / 29

  17. piCoq: Parallel Regression Proving for Large-Scale Verification Projects Proof Checking Modes f · none Mode in Practice ListUtil.v Dedup.v RemoveAll.v 11 / 29

  18. piCoq: Parallel Regression Proving for Large-Scale Verification Projects Proof Checking Modes f · none Mode in Practice ListUtil.v remove preserve in remove remove all preserve dedup remove dedup remove all remove all in Dedup.v RemoveAll.v 11 / 29

  19. piCoq: Parallel Regression Proving for Large-Scale Verification Projects Proof Checking Modes f · none Mode in Practice ListUtil.v remove preserve in remove remove all preserve dedup remove dedup remove all remove all in Dedup.v RemoveAll.v Phase Task Definitions and Lemmas 1 ListUtil.vo remove preserve , in remove 11 / 29

  20. piCoq: Parallel Regression Proving for Large-Scale Verification Projects Proof Checking Modes f · none Mode in Practice ListUtil.v remove preserve in remove remove all preserve dedup remove dedup remove all remove all in Dedup.v RemoveAll.v Phase Task Definitions and Lemmas 1 ListUtil.vo remove preserve , in remove 2 Dedup.vo dedup , remove dedup 2 remove all , remove all in , remove all preserve RemoveAll.vo 11 / 29

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Debugging Large Scale Parallel Applications Filippo Gioachin Parallel Programming Laboratory

Debugging Large Scale Parallel Applications Filippo Gioachin Parallel Programming Laboratory

Debugging Large Scale Parallel Applications Filippo Gioachin Parallel Programming Laboratory Departement of Computer Science University of Illinois at Urbana-Champaign Outline Introduction Motivations Debugging on Large Machines

579 views • 35 slides
Large Scale Deep Learning for Theorem Proving in HOList: First Results and Future Directions

Large Scale Deep Learning for Theorem Proving in HOList: First Results and Future Directions

Large Scale Deep Learning for Theorem Proving in HOList: First Results and Future Directions Sarah Loos HOList An Environment for Machine Learning of Higher-Order Theorem Proving HOList provides a simple API for ML researchers and theorem

307 views • 28 slides
Fairness issues in new large scale parallel platforms. Denis TRYSTRAM LIG Universit de

Fairness issues in new large scale parallel platforms. Denis TRYSTRAM LIG Universit de

Fairness issues in new large scale parallel platforms. Fairness issues in new large scale parallel platforms. Denis TRYSTRAM LIG Universit de Grenoble Alpes Inria Institut Universitaire de France july 15, 2015 Fairness issues in new

700 views • 56 slides
iCoq : Regression Proof Selection for Large-Scale Verification Projects Karl Palmskog University

iCoq : Regression Proof Selection for Large-Scale Verification Projects Karl Palmskog University

iCoq : Regression Proof Selection for Large-Scale Verification Projects iCoq : Regression Proof Selection for Large-Scale Verification Projects Karl Palmskog University of Illinois at Urbana-Champaign Joint work with Ahmet Celik and Milos

837 views • 45 slides
Exploring Scientific Discovery with Large-Scale Parallel Scripting Tim Armstrong 1 Justin M.

Exploring Scientific Discovery with Large-Scale Parallel Scripting Tim Armstrong 1 Justin M.

Exploring Scientific Discovery with Large-Scale Parallel Scripting Tim Armstrong 1 Justin M. Wozniak 2 Michael Wilde 12 1 University of Chicago 2 Argonne National Laboratory May 15, 2013 Parallel Scripting with Swift/T SciColSim Application

691 views • 21 slides
Least Squares Support Vector Regression with Applications to Large-Scale Data: a Statistical

Least Squares Support Vector Regression with Applications to Large-Scale Data: a Statistical

Goal & Overview Introduction FS-LSSVM Robust Nonparametric Methods Correlated Errors Confidence Intervals Conclusions Least Squares Support Vector Regression with Applications to Large-Scale Data: a Statistical Approach Kris De

2.28k views • 94 slides
Parallel Thompson Sampling for Large-scale Accelerated Exploration of Chemical Space, Jos e

Parallel Thompson Sampling for Large-scale Accelerated Exploration of Chemical Space, Jos e

Parallel Thompson Sampling for Large-scale Accelerated Exploration of Chemical Space, Jos e Miguel Hern andezLobato Department of Engineering University of Cambridge http://jmhl.org , jmh233@cam.ac.uk Joint work with James Requeima,

943 views • 91 slides
A Distributed and Parallel Asynchronous Unite and Conquer Method to Solve Large Scale

A Distributed and Parallel Asynchronous Unite and Conquer Method to Solve Large Scale

A Distributed and Parallel Asynchronous Unite and Conquer Method to Solve Large Scale Non-Hermitian Linear Systems Xinzhe WU 1 , 2 Serge G. Petiton 1 , 2 1 Maison de la Simulation/CNRS, Gif-sur-Yvette, 91191, France 2 CRIStAL, University of Lille

272 views • 25 slides
Assessing and Improving Large Scale Parallel Volume Rendering on the IBM Blue Gene/P

Assessing and Improving Large Scale Parallel Volume Rendering on the IBM Blue Gene/P

Assessing and Improving Large Scale Parallel Volume Rendering on the IBM Blue Gene/P www.ultravis.org Entropy in core-collapse supernova, time step 1354 Rob Ross - ANL Hongfeng Yu - SNL California Tom Peterka Kwan-Liu Ma

263 views • 13 slides
Hierarchical Parallel Matrix Multiplication on Large-Scale Distributed Memory Platforms

Hierarchical Parallel Matrix Multiplication on Large-Scale Distributed Memory Platforms

Problem Outline Experiments Summary Hierarchical Parallel Matrix Multiplication on Large-Scale Distributed Memory Platforms Jean-Nol Quintin, Khalid Hasanov, Alexey Lastovetsky Heterogeneous Computing Laboratory School of Computer Science

564 views • 41 slides
LDBC Graphalytics: A Benchmark for Large-Scale Co-sponsored by: Graph Analysis on Parallel and

LDBC Graphalytics: A Benchmark for Large-Scale Co-sponsored by: Graph Analysis on Parallel and

Generous donation from: LDBC Graphalytics: A Benchmark for Large-Scale Co-sponsored by: Graph Analysis on Parallel and Distributed Platforms @AIosup Tim Hegeman, Wing-Lung Ngai, and Stijn Heldens. Graphalytics Prof. dr. ir. Alexandru

543 views • 28 slides
PARALLEL LARGE-SCALE SIMULATION OF VISCOELASTIC FLUID FLOW INSTABILITIES Mehmet SAHIN 17 th

PARALLEL LARGE-SCALE SIMULATION OF VISCOELASTIC FLUID FLOW INSTABILITIES Mehmet SAHIN 17 th

PARALLEL LARGE-SCALE SIMULATION OF VISCOELASTIC FLUID FLOW INSTABILITIES Mehmet SAHIN 17 th International Workshop on Numerical Astronautical Engineering Department, Faculty of Aeronautics and Astronautics, Methods for non-Newtonian Flows

564 views • 39 slides
From parallel theorem proving to parallel SAT-solving and back Maria Paola Bonacina Dipartimento

From parallel theorem proving to parallel SAT-solving and back Maria Paola Bonacina Dipartimento

From parallel theorem proving to parallel SAT-solving and back Maria Paola Bonacina Dipartimento di Informatica Universit` a degli Studi di Verona Verona, Italy, EU 6 August 2017 Maria Paola Bonacina From parallel theorem proving to

517 views • 32 slides
Coordinate Update for Large Scale Optimization (via Asynchronous Parallel Computing) Wotao Yin

Coordinate Update for Large Scale Optimization (via Asynchronous Parallel Computing) Wotao Yin

Coordinate Update for Large Scale Optimization (via Asynchronous Parallel Computing) Wotao Yin (UCLA) Joint with: Y.T.Chow, B.Edmunds, R.Hannah, Z.Peng, T.Wu (UCLA), Y.Xu (Alabama), M.Yan (Michigan State) VALSE September 2016 1 / 58 How

718 views • 67 slides
Parallel Solution of Large-Scale Algebraic Bernoulli Equations with the matrix Sign Function

Parallel Solution of Large-Scale Algebraic Bernoulli Equations with the matrix Sign Function

Parallel Solution of Large-Scale Algebraic Bernoulli Equations with the matrix Sign Function Method Enrique S. Quintana-Ort Depto. de Ingenier a y Ciencia de Computadores Universidad Jaume I de Castell on (Spain)

477 views • 24 slides
Lecture 18 CSE 260 Parallel Computation (Fall 2015) Scott B. Baden Large scale computing

Lecture 18 CSE 260 Parallel Computation (Fall 2015) Scott B. Baden Large scale computing

Lecture 18 CSE 260 Parallel Computation (Fall 2015) Scott B. Baden Large scale computing Announcements Office hours on Wednesday u 3:30 PM until 5:30 u Ill stay after 5:30 until the last one leaves Test on the last day of class

689 views • 44 slides
Keys and Total Order Relations A Priority Queue ranks its elements by key with a total order

Keys and Total Order Relations A Priority Queue ranks its elements by key with a total order

P RIORITY Q UEUES The Priority Queue Abstract Data Type Implementing A Priority Queue With a Sequence Priority Queues 1 Keys and Total Order Relations A Priority Queue ranks its elements by key with a total order relation Keys:

807 views • 43 slides
Earnings Conference Call Forward-Looking Statement The information herein contained

Earnings Conference Call Forward-Looking Statement The information herein contained

Second Quarter 2018 Earnings Conference Call Forward-Looking Statement The information herein contained (Information) has been prepared by Grupo Herdez, S.A.B. de C.V., its associates, subsidiaries and/or affiliated companies (Grupo

383 views • 9 slides
WEBINAR 2 COMPETE W/THE BIG CHAINS GOALS July 1, 2020 3 REMOVE EXCUSES & UNCERTAINTY TJ

WEBINAR 2 COMPETE W/THE BIG CHAINS GOALS July 1, 2020 3 REMOVE EXCUSES & UNCERTAINTY TJ

7/1/20 1 DRIVE TAKEOUT SALES WEBINAR 2 COMPETE W/THE BIG CHAINS GOALS July 1, 2020 3 REMOVE EXCUSES & UNCERTAINTY TJ Schier 4 TAKE ACTION = MORE $ tj@tjschier.com 1 2 PR PROGRAM CREATORS Winners and losers have the same goals.

534 views • 8 slides
LORETO COLLEGE FOXROCK SUBJECT CHOICES FOR JUNIOR CYCLE INTRODUCTION TO NEW JUNIOR CYCLE The

LORETO COLLEGE FOXROCK SUBJECT CHOICES FOR JUNIOR CYCLE INTRODUCTION TO NEW JUNIOR CYCLE The

LORETO COLLEGE FOXROCK SUBJECT CHOICES FOR JUNIOR CYCLE INTRODUCTION TO NEW JUNIOR CYCLE The Framework for Junior Cycle (2015) outlines the key educational changes that the Department of Education and Skills (DES) has put in place for the first

1.07k views • 18 slides
Removing Apparent Singularities of Linear Differential Systems with Rational Function Coefficients

Removing Apparent Singularities of Linear Differential Systems with Rational Function Coefficients

Introduction Detecting and removing apparent singularities Application to ODEs The rational algorithm Conclusion Removing Apparent Singularities of Linear Differential Systems with Rational Function Coefficients Moulay A. Barkatou, Suzy S.

547 views • 28 slides
CISC 322 Software Architecture Lecture 15: Design Patterns 2 Emad Shihab Material drawn from

CISC 322 Software Architecture Lecture 15: Design Patterns 2 Emad Shihab Material drawn from

CISC 322 Software Architecture Lecture 15: Design Patterns 2 Emad Shihab Material drawn from [Gamma95, Coplien95] Slides adapted from Spiros Mancoridis and Ahmed E. Hassan Faade Pattern Motivation Structuring a system into subsystems

809 views • 19 slides
Computer Graphics (CS 563) Lecture 4: Advanced Computer Graphics Image Based Effects: Part 1

Computer Graphics (CS 563) Lecture 4: Advanced Computer Graphics Image Based Effects: Part 1

Computer Graphics (CS 563) Lecture 4: Advanced Computer Graphics Image Based Effects: Part 1 Prof Emmanuel Agu Computer Science Dept. Worcester Polytechnic Institute (WPI) Image Based Effects Three main types of image based effects

464 views • 21 slides
A Framework for Transient Rendering Adrian Jarabo 1 Julio Marco 1 Adolfo Muoz 1 Raul Buisan 1

A Framework for Transient Rendering Adrian Jarabo 1 Julio Marco 1 Adolfo Muoz 1 Raul Buisan 1

A Framework for Transient Rendering Adrian Jarabo 1 Julio Marco 1 Adolfo Muoz 1 Raul Buisan 1 Wojciech Jarosz 2 Diego Gutierrez 1 1 Universidad de Zaragoza 2 Disney Research Zrich Steady-State Light Transport Infinite Speed of Light

1.35k views • 66 slides

More recommend