proofs in conflict driven theory combination
play

Proofs in Conflict-Driven Theory Combination Maria Paola Bonacina, - PowerPoint PPT Presentation

Jun 04, 2023 •337 likes •1.57k views

Proofs in Conflict-Driven Theory Combination Maria Paola Bonacina, Stphane Graham-Lengrand, and Natarajan Shankar CPP2018, 9th January 2018 1/30 Context: Satisfiability Modulo Theories (SMT) CDCL (Conflict-Driven Clause Learning)

  1. Conflict-driven reasoning 2-player game to determine whether a formula is satisfiable. It involves a trail where a putative model is being specified. It relies on a notion of conflict between the putative model and the formula it should satisfy. Archetype of conflict-driven reasoning: CDCL a conflict occurs when a clause is falsified n g , k i p r o a p m a g n a o t i i s o i n c b e l u d i s e l d o d i m n g . . . SAT UNSAT . . . player player p g r o n s o i d i f b l s b u i y a l c a k n j u a m t c p l i i n f g n , c o 6/30

  2. Conflict-driven reasoning 2-player game to determine whether a formula is satisfiable. It involves a trail where a putative model is being specified. It relies on a notion of conflict between the putative model and the formula it should satisfy. Archetype of conflict-driven reasoning: CDCL a conflict occurs when a clause is falsified b e l u d i l d o i m n g a ⇒ b b ⇒ a a ⇒ b SAT UNSAT b ⇒ a player player p g r o n o i d f l b u i 6/30

  3. Conflict-driven reasoning 2-player game to determine whether a formula is satisfiable. It involves a trail where a putative model is being specified. It relies on a notion of conflict between the putative model and the formula it should satisfy. Archetype of conflict-driven reasoning: CDCL a conflict occurs when a clause is falsified b e l u d i l d o i m n g a ⇒ b b ⇒ a a ⇒ b SAT UNSAT ? a b ⇒ a player player p g r o n o i d f l b u i 6/30

  4. Conflict-driven reasoning 2-player game to determine whether a formula is satisfiable. It involves a trail where a putative model is being specified. It relies on a notion of conflict between the putative model and the formula it should satisfy. Archetype of conflict-driven reasoning: CDCL a conflict occurs when a clause is falsified b e l u d i l d o i m n g a ⇒ b b ⇒ a a ⇒ b SAT UNSAT ? a b b ⇒ a player player p g r o n o i d f l b u i 6/30

  5. Conflict-driven reasoning 2-player game to determine whether a formula is satisfiable. It involves a trail where a putative model is being specified. It relies on a notion of conflict between the putative model and the formula it should satisfy. Archetype of conflict-driven reasoning: CDCL a conflict occurs when a clause is falsified b e l u d i l d o i m n g conflict a ⇒ b b ⇒ a a ⇒ b SAT UNSAT ? a b b ⇒ a player player p g r o n o i d f l b u i 6/30

  6. Conflict-driven reasoning 2-player game to determine whether a formula is satisfiable. It involves a trail where a putative model is being specified. It relies on a notion of conflict between the putative model and the formula it should satisfy. Archetype of conflict-driven reasoning: CDCL a conflict occurs when a clause is falsified b e l u d i l d o i m n g a ⇒ b b ⇒ a a ⇒ b SAT UNSAT a b ⇒ a player player a conflict p g fixed r o n o i d f l b u i 6/30

  7. Conflict-driven reasoning 2-player game to determine whether a formula is satisfiable. It involves a trail where a putative model is being specified. It relies on a notion of conflict between the putative model and the formula it should satisfy. Archetype of conflict-driven reasoning: CDCL a conflict occurs when a clause is falsified b e l u d i l d o i m n g a ⇒ b b ⇒ a a ⇒ b SAT UNSAT a b b ⇒ a player player a p g r o n o i d f l b u i 6/30

  8. Conflict-driven reasoning 2-player game to determine whether a formula is satisfiable. It involves a trail where a putative model is being specified. It relies on a notion of conflict between the putative model and the formula it should satisfy. Archetype of conflict-driven reasoning: CDCL a conflict occurs when a clause is falsified b e l u d i l d o i m n g conflict a ⇒ b b ⇒ a a ⇒ b SAT UNSAT a b b ⇒ a player player a p g r o n o i d f l b u i 6/30

  9. Conflict-driven reasoning 2-player game to determine whether a formula is satisfiable. It involves a trail where a putative model is being specified. It relies on a notion of conflict between the putative model and the formula it should satisfy. Archetype of conflict-driven reasoning: CDCL a conflict occurs when a clause is falsified b e l u d i l d o i m n g a ⇒ b b ⇒ a a ⇒ b SAT UNSAT b ⇒ a player player a ⊥ p g r o n o i d f l b u i 6/30

  10. Conflict-driven reasoning can be used for (other) theories l 0 l 1 l 2 � �� � � �� � � �� � ( − 2 · x − y < 0) , ( x + y < 0) , ( x < − 1) unsatisfiable in Linear Rational Arithmetic (LRA). 7/30

  11. Conflict-driven reasoning can be used for (other) theories l 0 l 1 l 2 � �� � � �� � � �� � ( − 2 · x − y < 0) , ( x + y < 0) , ( x < − 1) unsatisfiable in Linear Rational Arithmetic (LRA). ◮ Guess a value, e.g., y ← 0 7/30

  12. Conflict-driven reasoning can be used for (other) theories l 0 l 1 l 2 � �� � � �� � � �� � ( − 2 · x − y < 0) , ( x + y < 0) , ( x < − 1) unsatisfiable in Linear Rational Arithmetic (LRA). ◮ Guess a value, e.g., y ← 0 Then l 0 yields lower bound x > 0 7/30

  13. Conflict-driven reasoning can be used for (other) theories l 0 l 1 l 2 � �� � � �� � � �� � ( − 2 · x − y < 0) , ( x + y < 0) , ( x < − 1) unsatisfiable in Linear Rational Arithmetic (LRA). ◮ Guess a value, e.g., y ← 0 Then l 0 yields lower bound x > 0 Together with l 2 , range of possible values for x is empty What to do? just undo y ← 0 and remember that y � = 0? 7/30

  14. Conflict-driven reasoning can be used for (other) theories l 0 l 1 l 2 � �� � � �� � � �� � ( − 2 · x − y < 0) , ( x + y < 0) , ( x < − 1) unsatisfiable in Linear Rational Arithmetic (LRA). ◮ Guess a value, e.g., y ← 0 Then l 0 yields lower bound x > 0 Together with l 2 , range of possible values for x is empty What to do? just undo y ← 0 and remember that y � = 0? ◮ No! Clash of bounds suggests a better conflict explanation, l 3 � �� � by inferring l 0 + 2 l 2 , i.e., ( − y < − 2) It rules out y ← 0, but also many values that would fail for the same reasons. 7/30

  15. Conflict-driven reasoning can be used for (other) theories l 0 l 1 l 2 � �� � � �� � � �� � ( − 2 · x − y < 0) , ( x + y < 0) , ( x < − 1) unsatisfiable in Linear Rational Arithmetic (LRA). ◮ Guess a value, e.g., y ← 0 Then l 0 yields lower bound x > 0 Together with l 2 , range of possible values for x is empty What to do? just undo y ← 0 and remember that y � = 0? ◮ No! Clash of bounds suggests a better conflict explanation, l 3 � �� � by inferring l 0 + 2 l 2 , i.e., ( − y < − 2) It rules out y ← 0, but also many values that would fail for the same reasons. ◮ Now undo the guess but keep l 3 . 7/30

  16. Conflict-driven reasoning can be used for (other) theories l 0 l 1 l 2 � �� � � �� � � �� � ( − 2 · x − y < 0) , ( x + y < 0) , ( x < − 1) unsatisfiable in Linear Rational Arithmetic (LRA). ◮ Guess a value, e.g., y ← 0 Then l 0 yields lower bound x > 0 Together with l 2 , range of possible values for x is empty What to do? just undo y ← 0 and remember that y � = 0? ◮ No! Clash of bounds suggests a better conflict explanation, l 3 � �� � by inferring l 0 + 2 l 2 , i.e., ( − y < − 2) It rules out y ← 0, but also many values that would fail for the same reasons. ◮ Now undo the guess but keep l 3 . ◮ and so on. . . (when there is no guess to undo, problem is UNSAT) 7/30

  17. Traditional architecture of SMT-solving T 1 T 2 SAT-solver (CDCL) Comb. ∗ T 3 T 5 T 4 * e.g. equality sharing / Nelson-Oppen [NO79] 8/30

  18. In CDSAT . . . the theory combination is organised directly in the main conflict-driven loop: As in MCSAT, trail contains Bool ◮ Boolean assignments T 2 a ← true l b e u d i l d o i m n ◮ First-order assignments g T 1 T 1 y ← 3 / 4 . . . T 2 . . . p g r n o i o d f i l b u Bool 9/30

  19. In CDSAT . . . the theory combination is organised directly in the main conflict-driven loop: As in MCSAT, trail contains Bool ◮ Boolean assignments T 2 a ← true l b e u d i l d o i m n ◮ First-order assignments g T 1 T 1 y ← 3 / 4 . . . T 2 . . . Features of conflict-driven satisfiability: p g r n o i ◮ Boolean theory can have the o d f i l b u Bool same status as other theories. ◮ Theory-specific reasoning often consists of fine-grained reasoning inferences, e.g., Fourier-Motzkin resolution for LRA: ( t 1 < x ) , ( x < t 2 ) ⊢ ⊢ ⊢ t 1 < t 2 9/30

  20. 2. The CDSAT system - with learning 10/30

  21. What is a theory module? A set of inferences of the form ( t 1 ← c 1 ) , . . . , ( t k ← c k ) ⊢ ⊢ ⊢ T ( l ← b ) where ◮ each t i ← c i is a single T -assignment (a term t i and a T -value c i of matching sorts) ◮ l ← b is a single Boolean assignment (a term l of sort Bool and a truth value b ) 11/30

  22. What is a theory module? A set of inferences of the form ( t 1 ← c 1 ) , . . . , ( t k ← c k ) ⊢ ⊢ ⊢ T ( l ← b ) where ◮ each t i ← c i is a single T -assignment (a term t i and a T -value c i of matching sorts) ◮ l ← b is a single Boolean assignment (a term l of sort Bool and a truth value b ) Abbreviations: ( l ← true) as l and ( l ← false) as l 11/30

  23. What is a theory module? A set of inferences of the form ( t 1 ← c 1 ) , . . . , ( t k ← c k ) ⊢ ⊢ ⊢ T ( l ← b ) where ◮ each t i ← c i is a single T -assignment (a term t i and a T -value c i of matching sorts) ◮ l ← b is a single Boolean assignment (a term l of sort Bool and a truth value b ) Abbreviations: ( l ← true) as l and ( l ← false) as l ◮ Soundness requirement: Every model of the premisses is a model of the conclusion: ( t 1 ← c 1 ) , . . . , ( t k ← c k ) | = ( l ← b ) 11/30

  24. What is a theory module? A set of inferences of the form ( t 1 ← c 1 ) , . . . , ( t k ← c k ) ⊢ ⊢ ⊢ T ( l ← b ) where ◮ each t i ← c i is a single T -assignment (a term t i and a T -value c i of matching sorts) ◮ l ← b is a single Boolean assignment (a term l of sort Bool and a truth value b ) Abbreviations: ( l ← true) as l and ( l ← false) as l ◮ Soundness requirement: Every model of the premisses is a model of the conclusion: ( t 1 ← c 1 ) , . . . , ( t k ← c k ) | = ( l ← b ) Examples: √ √ ⊢ ( x ← 2) , ( y ← 2) ⊢ ⊢ NLRA ( x · y ≃ 2) (evaluation inference) ( l 1 ∨ · · · ∨ l n ) , l 1 . . . , l n − 1 ⊢ ⊢ ⊢ Bool l n (unit propagation) 11/30

  25. What is a theory module? (Equality inferences) All theory modules have the equality inferences: ⊢ t 1 ← c 1 , t 2 ← c 2 ⊢ ⊢ T t 1 ≃ t 2 if c 1 and c 2 are the same value t 1 ← c 1 , t 2 ← c 2 ⊢ ⊢ ⊢ T t 1 �≃ t 2 if c 1 and c 2 are distinct values ⊢ T ⊢ ⊢ t 1 ≃ t 1 reflexivity t 1 ≃ t 2 ⊢ ⊢ ⊢ T t 2 ≃ t 1 symmetry ⊢ t 1 ≃ t 2 , t 2 ≃ t 3 ⊢ ⊢ T t 1 ≃ t 3 transitivity 12/30

  26. CDSAT states Search states: simply trails. A trail is a stack of justified assignments H ⊢ ( t ← c ) and decisions ? ( t ← c ) coming from different theories Justification H : a set of assignments that appear earlier on the trail 13/30

  27. CDSAT states Search states: simply trails. A trail is a stack of justified assignments H ⊢ ( t ← c ) and decisions ? ( t ← c ) coming from different theories Justification H : a set of assignments that appear earlier on the trail Example (trail grows from left to right): √ ∅⊢ ( x ≃ z ) , ∅⊢ ( y ≃ z ) , ? ( x ← 2) , ? ( y ← blue) , ? ( x ← red) , H ⊢ ( x � = y ) where H is { ( y ← blue) , ( x ← red) } Everything is on the trail, including assertions from the input problem, with empty justifications (e.g., ∅⊢ ( C ← true) for an input clause C ), 13/30

  28. CDSAT states Search states: simply trails. A trail is a stack of justified assignments H ⊢ ( t ← c ) and decisions ? ( t ← c ) coming from different theories Justification H : a set of assignments that appear earlier on the trail Example (trail grows from left to right): √ ∅⊢ ( x ≃ z ) , ∅⊢ ( y ≃ z ) , ? ( x ← 2) , ? ( y ← blue) , ? ( x ← red) , H ⊢ ( x � = y ) where H is { ( y ← blue) , ( x ← red) } Everything is on the trail, including assertions from the input problem, with empty justifications (e.g., ∅⊢ ( C ← true) for an input clause C ), Conflict states: � Γ; H � , trail Γ + set H of trail assignments that are in conflict 13/30

  29. CDSAT states Search states: simply trails. A trail is a stack of justified assignments H ⊢ ( t ← c ) and decisions ? ( t ← c ) coming from different theories Justification H : a set of assignments that appear earlier on the trail Example (trail grows from left to right): √ ∅⊢ ( x ≃ z ) , ∅⊢ ( y ≃ z ) , ? ( x ← 2) , ? ( y ← blue) , ? ( x ← red) , H ⊢ ( x � = y ) where H is { ( y ← blue) , ( x ← red) } Everything is on the trail, including assertions from the input problem, with empty justifications (e.g., ∅⊢ ( C ← true) for an input clause C ), Conflict states: � Γ; H � , trail Γ + set H of trail assignments that are in conflict In this paper , new rule for solving/exiting conflicts: Learn 13/30

  30. Example: exiting a conflict without learning a clause Input problem H 0 including: ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) with l 4 = ( x ≤ y ) and l 5 = ( f ( x ) ≤ f ( y )) in a theory where f is monotonic 14/30

  31. Example: exiting a conflict without learning a clause Input problem H 0 including: ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) with l 4 = ( x ≤ y ) and l 5 = ( f ( x ) ≤ f ( y )) in a theory where f is monotonic Initial trail Γ 0 including: ∅⊢ ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) 14/30

  32. Example: exiting a conflict without learning a clause Input problem H 0 including: ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) with l 4 = ( x ≤ y ) and l 5 = ( f ( x ) ≤ f ( y )) in a theory where f is monotonic Initial trail Γ 0 including: ∅⊢ ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) Search rules extend Γ 0 into Γ = Γ 0 14/30

  33. Example: exiting a conflict without learning a clause Input problem H 0 including: ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) with l 4 = ( x ≤ y ) and l 5 = ( f ( x ) ≤ f ( y )) in a theory where f is monotonic Initial trail Γ 0 including: ∅⊢ ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) Search rules extend Γ 0 into Γ = Γ 0 , ? A 1 14/30

  34. Example: exiting a conflict without learning a clause Input problem H 0 including: ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) with l 4 = ( x ≤ y ) and l 5 = ( f ( x ) ≤ f ( y )) in a theory where f is monotonic Initial trail Γ 0 including: ∅⊢ ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) Search rules extend Γ 0 into Γ = Γ 0 , ? A 1 , ? l 2 14/30

  35. Example: exiting a conflict without learning a clause Input problem H 0 including: ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) with l 4 = ( x ≤ y ) and l 5 = ( f ( x ) ≤ f ( y )) in a theory where f is monotonic Initial trail Γ 0 including: ∅⊢ ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) Search rules extend Γ 0 into Γ = Γ 0 , ? A 1 , ? l 2 , ? A 3 14/30

  36. Example: exiting a conflict without learning a clause Input problem H 0 including: ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) with l 4 = ( x ≤ y ) and l 5 = ( f ( x ) ≤ f ( y )) in a theory where f is monotonic Initial trail Γ 0 including: ∅⊢ ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) Search rules extend Γ 0 into Γ = Γ 0 , ? A 1 , ? l 2 , ? A 3 , ? l 4 14/30

  37. Example: exiting a conflict without learning a clause Input problem H 0 including: ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) with l 4 = ( x ≤ y ) and l 5 = ( f ( x ) ≤ f ( y )) in a theory where f is monotonic Initial trail Γ 0 including: ∅⊢ ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) Search rules extend Γ 0 into Γ = Γ 0 , ? A 1 , ? l 2 , ? A 3 , ? l 4 , l 4 ⊢ l 5 14/30

  38. Example: exiting a conflict without learning a clause Input problem H 0 including: ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) with l 4 = ( x ≤ y ) and l 5 = ( f ( x ) ≤ f ( y )) in a theory where f is monotonic Initial trail Γ 0 including: ∅⊢ ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) Search rules extend Γ 0 into Γ = Γ 0 , ? A 1 , ? l 2 , ? A 3 , ? l 4 , l 4 ⊢ l 5 (involving unrelated decisions A 1 and A 3 ) 14/30

  39. Example: exiting a conflict without learning a clause Input problem H 0 including: ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) with l 4 = ( x ≤ y ) and l 5 = ( f ( x ) ≤ f ( y )) in a theory where f is monotonic Initial trail Γ 0 including: ∅⊢ ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) Search rules extend Γ 0 into Γ = Γ 0 , ? A 1 , ? l 2 , ? A 3 , ? l 4 , l 4 ⊢ l 5 (involving unrelated decisions A 1 and A 3 ) First conflict: � Γ; ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) , l 2 , l 4 , l 5 � 14/30

  40. Example: exiting a conflict without learning a clause Input problem H 0 including: ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) with l 4 = ( x ≤ y ) and l 5 = ( f ( x ) ≤ f ( y )) in a theory where f is monotonic Initial trail Γ 0 including: ∅⊢ ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) Search rules extend Γ 0 into Γ = Γ 0 , ? A 1 , ? l 2 , ? A 3 , ? l 4 , l 4 ⊢ l 5 (involving unrelated decisions A 1 and A 3 ) First conflict: � Γ; ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) , l 2 , l 4 , l 5 � � Γ; ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) , l 2 , l 4 � Resolving l 5 : 14/30

  41. Example: exiting a conflict without learning a clause Input problem H 0 including: ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) with l 4 = ( x ≤ y ) and l 5 = ( f ( x ) ≤ f ( y )) in a theory where f is monotonic Initial trail Γ 0 including: ∅⊢ ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) Search rules extend Γ 0 into Γ = Γ 0 , ? A 1 , ? l 2 , ? A 3 , ? l 4 , l 4 ⊢ l 5 (involving unrelated decisions A 1 and A 3 ) First conflict: � Γ; ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) , l 2 , l 4 , l 5 � � Γ; ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) , l 2 , l 4 � Resolving l 5 : In first conflict, both l 4 and l 5 depend on the latest decision ? l 4 . After applying Resolve, only l 4 does. Time to stop conflict analysis. 14/30

  42. Example: exiting a conflict without learning a clause Input problem H 0 including: ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) with l 4 = ( x ≤ y ) and l 5 = ( f ( x ) ≤ f ( y )) in a theory where f is monotonic Initial trail Γ 0 including: ∅⊢ ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) Search rules extend Γ 0 into Γ = Γ 0 , ? A 1 , ? l 2 , ? A 3 , ? l 4 , l 4 ⊢ l 5 (involving unrelated decisions A 1 and A 3 ) First conflict: � Γ; ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) , l 2 , l 4 , l 5 � � Γ; ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) , l 2 , l 4 � Resolving l 5 : In first conflict, both l 4 and l 5 depend on the latest decision ? l 4 . After applying Resolve, only l 4 does. Time to stop conflict analysis. Rule Learn can exit the conflict with trail Γ 0 , ? A 1 , ? l 2 , H ⊢ l 4 where H is { ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) , l 2 } 14/30

  43. Example: exiting a conflict without learning a clause Input problem H 0 including: ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) with l 4 = ( x ≤ y ) and l 5 = ( f ( x ) ≤ f ( y )) in a theory where f is monotonic Initial trail Γ 0 including: ∅⊢ ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) Search rules extend Γ 0 into Γ = Γ 0 , ? A 1 , ? l 2 , ? A 3 , ? l 4 , l 4 ⊢ l 5 (involving unrelated decisions A 1 and A 3 ) First conflict: � Γ; ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) , l 2 , l 4 , l 5 � � Γ; ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) , l 2 , l 4 � Resolving l 5 : In first conflict, both l 4 and l 5 depend on the latest decision ? l 4 . After applying Resolve, only l 4 does. Time to stop conflict analysis. Rule Learn can exit the conflict with trail Γ 0 , ? A 1 , ? l 2 , H ⊢ l 4 where H is { ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) , l 2 } 14/30

  44. Example: exiting a conflict learning a clause Input problem H 0 including: ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) with l 4 = ( x ≤ y ) and l 5 = ( f ( x ) ≤ f ( y )) in a theory where f is monotonic Initial trail Γ 0 including: ∅⊢ ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) Search rules extend Γ 0 into Γ = Γ 0 , ? A 1 , ? l 2 , ? A 3 , ? l 4 , l 4 ⊢ l 5 (involving unrelated decisions A 1 and A 3 ) First conflict: � Γ; ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) , l 2 , l 4 , l 5 � � Γ; ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) , l 2 , l 4 � Resolving l 5 : In first conflict, both l 4 and l 5 depend on the latest decision ? l 4 . After applying Resolve, only l 4 does. Time to stop conflict analysis. Rule Learn can exit the conflict and learn a clause: Γ 0 , ? A 1 , ? l 2 , H ′ ⊢ ( ¬ l 2 ∨ ¬ l 4 ) where H ′ is { ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) } 14/30

  45. Example: exiting a conflict learning a clause Input problem H 0 including: ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) with l 4 = ( x ≤ y ) and l 5 = ( f ( x ) ≤ f ( y )) in a theory where f is monotonic Initial trail Γ 0 including: ∅⊢ ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) Search rules extend Γ 0 into Γ = Γ 0 , ? A 1 , ? l 2 , ? A 3 , ? l 4 , l 4 ⊢ l 5 (involving unrelated decisions A 1 and A 3 ) First conflict: � Γ; ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) , l 2 , l 4 , l 5 � � Γ; ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) , l 2 , l 4 � Resolving l 5 : In first conflict, both l 4 and l 5 depend on the latest decision ? l 4 . After applying Resolve, only l 4 does. Time to stop conflict analysis. Rule Learn can exit the conflict and learn a clause: Γ 0 , ? A 1 , ? l 2 , H ′ ⊢ ( ¬ l 2 ∨ ¬ l 4 ) where H ′ is { ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) } Then Deduce can derive l 4 as before: H ′ ⊢ ( ¬ l 2 ∨ ¬ l 4 ) , Γ 0 , ? A 1 , ? l 2 , { ( ¬ l 2 ∨ ¬ l 4 ) , l 2 }⊢ l 4 14/30

  46. Example: exiting a conflict learning a clause & restarting Input problem H 0 including: ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) with l 4 = ( x ≤ y ) and l 5 = ( f ( x ) ≤ f ( y )) in a theory where f is monotonic Initial trail Γ 0 including: ∅⊢ ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) Search rules extend Γ 0 into Γ = Γ 0 , ? A 1 , ? l 2 , ? A 3 , ? l 4 , l 4 ⊢ l 5 (involving unrelated decisions A 1 and A 3 ) First conflict: � Γ; ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) , l 2 , l 4 , l 5 � � Γ; ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) , l 2 , l 4 � Resolving l 5 : In first conflict, both l 4 and l 5 depend on the latest decision ? l 4 . After applying Resolve, only l 4 does. Time to stop conflict analysis. Rule Learn can exit the conflict and learn a clause, and restart: Γ 0 , H ′ ⊢ ( ¬ l 2 ∨ ¬ l 4 ) where H ′ is { ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) } 14/30

  47. The Learn rule introduced in this paper → Γ ′ , E ⊢ L � Γ; E ⊎ H � − if L is a “clausal form of H ”, L / ∈ Γ, L / ∈ Γ Γ ′ : a pruning of Γ undoing at least the latest decision involved, E ⊆ Γ ′ 15/30

  48. The Learn rule introduced in this paper → Γ ′ , E ⊢ L � Γ; E ⊎ H � − if L is a “clausal form of H ”, L / ∈ Γ, L / ∈ Γ Γ ′ : a pruning of Γ undoing at least the latest decision involved, E ⊆ Γ ′ 15/30

  49. The Learn rule introduced in this paper → Γ ′ , E ⊢ L � Γ; E ⊎ H � − if L is a “clausal form of H ”, L / ∈ Γ, L / ∈ Γ Γ ′ : a pruning of Γ undoing at least the latest decision involved, E ⊆ Γ ′ “Clausal forms of H ” reify H in Boolean logic: (( � ( l ← true) ∈ H l ) ∧ ( � ( l ← false) ∈ H ¬ l )) ← false 15/30

  50. The Learn rule introduced in this paper → Γ ′ , E ⊢ L � Γ; E ⊎ H � − if L is a “clausal form of H ”, L / ∈ Γ, L / ∈ Γ Γ ′ : a pruning of Γ undoing at least the latest decision involved, E ⊆ Γ ′ “Clausal forms of H ” reify H in Boolean logic: (( � ( l ← true) ∈ H l ) ∧ ( � ( l ← false) ∈ H ¬ l )) ← false (( � ( l ← true) ∈ H ¬ l ) ∨ ( � ( l ← false) ∈ H l )) ← true 15/30

  51. The Learn rule introduced in this paper → Γ ′ , E ⊢ L � Γ; E ⊎ H � − if L is a “clausal form of H ”, L / ∈ Γ, L / ∈ Γ Γ ′ : a pruning of Γ undoing at least the latest decision involved, E ⊆ Γ ′ “Clausal forms of H ” reify H in Boolean logic: (( � ( l ← true) ∈ H l ) ∧ ( � ( l ← false) ∈ H ¬ l )) ← false (( � ( l ← true) ∈ H ¬ l ) ∨ ( � ( l ← false) ∈ H l )) ← true This rule ◮ generalises the CADE’2017 one (sufficient for completeness) ◮ models clause learning by reifying (Boolean parts of) conflicts ◮ models clause learning + restarts, a common practice in SAT/SMT-solving 15/30

  52. The Learn rule introduced in this paper → Γ ′ , E ⊢ L � Γ; E ⊎ H � − if L is a “clausal form of H ”, L / ∈ Γ, L / ∈ Γ Γ ′ : a pruning of Γ undoing at least the latest decision involved, E ⊆ Γ ′ “Clausal forms of H ” reify H in Boolean logic: (( � ( l ← true) ∈ H l ) ∧ ( � ( l ← false) ∈ H ¬ l )) ← false (( � ( l ← true) ∈ H ¬ l ) ∨ ( � ( l ← false) ∈ H l )) ← true This rule ◮ generalises the CADE’2017 one (sufficient for completeness) ◮ models clause learning by reifying (Boolean parts of) conflicts ◮ models clause learning + restarts, a common practice in SAT/SMT-solving Which version to apply depends on your search strategy (particularly for restarts) 15/30

  53. The Learn rule introduced in this paper → Γ ′ , E ⊢ L � Γ; E ⊎ H � − if L is a “clausal form of H ”, L / ∈ Γ, L / ∈ Γ Γ ′ : a pruning of Γ undoing at least the latest decision involved, E ⊆ Γ ′ “Clausal forms of H ” reify H in Boolean logic: (( � ( l ← true) ∈ H l ) ∧ ( � ( l ← false) ∈ H ¬ l )) ← false (( � ( l ← true) ∈ H ¬ l ) ∨ ( � ( l ← false) ∈ H l )) ← true This rule ◮ generalises the CADE’2017 one (sufficient for completeness) ◮ models clause learning by reifying (Boolean parts of) conflicts ◮ models clause learning + restarts, a common practice in SAT/SMT-solving Which version to apply depends on your search strategy (particularly for restarts) All version are OK with respect to termination of CDSAT 15/30

  54. 3. Proof production 16/30

  55. Soundness invariants, and rules that may affect them ◮ For every assignment H ⊢ A on the trail, H | = A ; ◮ For every conflict state � Γ; E � , E | = ⊥ . 17/30

  56. Soundness invariants, and rules that may affect them ◮ For every assignment H ⊢ A on the trail, H | = A ; ◮ For every conflict state � Γ; E � , E | = ⊥ . Next step: keep track of invariant via proof-theoretical information 17/30

  57. Soundness invariants, and rules that may affect them ◮ For every assignment H ⊢ A on the trail, H | = A ; ◮ For every conflict state � Γ; E � , E | = ⊥ . Next step: keep track of invariant via proof-theoretical information Let T be a theory with a specific T -module. Deduce − → Γ , J ⊢ ( t ← b ) if J ⊢ ⊢ T ( t ← b ) and J ⊆ Γ, ⊢ Γ and t ← b is not in Γ 17/30

  58. Soundness invariants, and rules that may affect them ◮ For every assignment H ⊢ A on the trail, H | = A ; ◮ For every conflict state � Γ; E � , E | = ⊥ . Next step: keep track of invariant via proof-theoretical information Let T be a theory with a specific T -module. Deduce − → Γ , J ⊢ ( t ← b ) if J ⊢ ⊢ T ( t ← b ) and J ⊆ Γ, ⊢ Γ and t ← b is not in Γ Conflict Γ − → � Γ; J , ( t ← b ) � if J ⊢ ⊢ ⊢ T ( t ← b ) and J ⊆ Γ, and t ← b is in Γ 17/30

  59. Soundness invariants, and rules that may affect them ◮ For every assignment H ⊢ A on the trail, H | = A ; ◮ For every conflict state � Γ; E � , E | = ⊥ . Next step: keep track of invariant via proof-theoretical information Let T be a theory with a specific T -module. Deduce − → Γ , J ⊢ ( t ← b ) if J ⊢ ⊢ ⊢ T ( t ← b ) and J ⊆ Γ, Γ and t ← b is not in Γ Conflict Γ − → � Γ; J , ( t ← b ) � if J ⊢ ⊢ ⊢ T ( t ← b ) and J ⊆ Γ, and t ← b is in Γ Resolve � Γ; E ⊎ { A }� − → � Γ; E ∪ H � if H ⊢ A is in Γ 17/30

  60. Soundness invariants, and rules that may affect them ◮ For every assignment H ⊢ A on the trail, H | = A ; ◮ For every conflict state � Γ; E � , E | = ⊥ . Next step: keep track of invariant via proof-theoretical information Let T be a theory with a specific T -module. Deduce − → Γ , J ⊢ ( t ← b ) if J ⊢ ⊢ ⊢ T ( t ← b ) and J ⊆ Γ, Γ and t ← b is not in Γ Conflict Γ − → � Γ; J , ( t ← b ) � if J ⊢ ⊢ ⊢ T ( t ← b ) and J ⊆ Γ, and t ← b is in Γ Resolve � Γ; E ⊎ { A }� − → � Γ; E ∪ H � if H ⊢ A is in Γ Learn Γ ′ , E ⊢ L � Γ; E ⊎ H � − → if L is a “clausal form” of H ∈ Γ, and E ⊆ Γ ′ L / ∈ Γ, L / 17/30

  61. Theory proofs To keep track of the soundness invariants, we need to refer to theory inferences 18/30

  62. Theory proofs To keep track of the soundness invariants, we need to refer to theory inferences Each theory module comes with a “proof annotation system” ⊢ ( t 1 ← c 1 ) , . . . , ( t k ← c k ) ⊢ ⊢ T ( l ← b ) is annotated as a 1 ( t 1 ← c 1 ) , . . . , a k ( t k ← c k ) ⊢ ⊢ ⊢ T j T : ( l ← b ) 18/30

  63. Theory proofs To keep track of the soundness invariants, we need to refer to theory inferences Each theory module comes with a “proof annotation system” ⊢ ( t 1 ← c 1 ) , . . . , ( t k ← c k ) ⊢ ⊢ T ( l ← b ) is annotated as a 1 ( t 1 ← c 1 ) , . . . , a k ( t k ← c k ) ⊢ ⊢ ⊢ T j T : ( l ← b ) Examples: √ √ a 1 ( x ← 2) , a 2 ( y ← ⊢ 2) ⊢ ⊢ NLRA eval( { a 1 , a 2 } ): ( x · y ≃ 2) (evaluation inference) a 0 ( l 1 ∨ · · · ∨ l n ) , a 1 ( l 1 ) , . . . , a k − 1 ( l n − 1 ) ⊢ ⊢ ⊢ Bool UP( a 0 , { a 1 , . . . , a n } ): l n (unit propagation) 18/30

  64. Proof-terms and proof-carrying CDSAT ◮ A proof-carrying trail is a stack ◮ of justified assignments H ⊢ j : ( t ← c ) ◮ and decisions ? ( t ← c ) ◮ A proof-carrying conflict state is of the form � Γ; H ; c � . . . where j and c respectively range over Deduction proof terms j ::= in j T lem( H . c ) res( j , a A . c ) Conflict proof term c ::= cfl( j T , a ) in annotates an input assignment, j T ranges over theory proofs for T , used for Deduce lem( H . c ) annotates justified assignments that Learn places on trail (clausal forms of H ), binding the identifiers of H in c cfl( j T , a ) annotates a conflict when it is created by Conflict res( j , a A . c ) annotates a conflict resulting from the Resolve rule, binding a in c 19/30

  65. Provability invariants that proof-terms keep track of ⊢ A is an input J ⊢ ⊢ ⊢ T j T : L E ⊎ H ⊢ ⊢ c : ⊥ L clausal form of H ⊢ J ⊢ ⊢ ⊢ j T : L E ⊢ ⊢ ⊢ lem( H . c ): L ∅ ⊢ ⊢ in: A E , a A ⊢ J ⊢ ⊢ ⊢ T j T : L H ⊢ ⊢ ⊢ j : A ⊢ ⊢ c : ⊥ J ∪ { a L } ⊢ ⊢ res( j , a A . c ): ⊥ ⊢ ⊢ cfl( j T , a ): ⊥ E ∪ H ⊢ ⊢ 20/30

  66. Provability invariants that proof-terms keep track of ⊢ A is an input J ⊢ ⊢ ⊢ T j T : L E ⊎ H ⊢ ⊢ c : ⊥ L clausal form of H ⊢ J ⊢ ⊢ ⊢ j T : L E ⊢ ⊢ ⊢ lem( H . c ): L ∅ ⊢ ⊢ in: A E , a A ⊢ J ⊢ ⊢ ⊢ T j T : L H ⊢ ⊢ ⊢ j : A ⊢ ⊢ c : ⊥ J ∪ { a L } ⊢ ⊢ res( j , a A . c ): ⊥ ⊢ ⊢ cfl( j T , a ): ⊥ E ∪ H ⊢ ⊢ Rules of CDSAT are adapted so as to use those proof-terms, and the soundness invariants are materialised as: Theorem ◮ For every assignment H ⊢ j : A on the trail, H ⊢ ⊢ ⊢ j : A ◮ For every conflict state � Γ; E ; c � , E ⊢ ⊢ ⊢ c : ⊥ . 20/30

  67. Provability invariants that proof-terms keep track of ⊢ A is an input J ⊢ ⊢ ⊢ T j T : L E ⊎ H ⊢ ⊢ c : ⊥ L clausal form of H ⊢ J ⊢ ⊢ ⊢ j T : L E ⊢ ⊢ ⊢ lem( H . c ): L ∅ ⊢ ⊢ in: A E , a A ⊢ J ⊢ ⊢ ⊢ T j T : L H ⊢ ⊢ ⊢ j : A ⊢ ⊢ c : ⊥ J ∪ { a L } ⊢ ⊢ res( j , a A . c ): ⊥ ⊢ ⊢ cfl( j T , a ): ⊥ E ∪ H ⊢ ⊢ Rules of CDSAT are adapted so as to use those proof-terms, and the soundness invariants are materialised as: Theorem ◮ For every assignment H ⊢ j : A on the trail, H ⊢ ⊢ ⊢ j : A ◮ For every conflict state � Γ; E ; c � , E ⊢ ⊢ ⊢ c : ⊥ . The proof system above can be seen as glueing a collection of ⊢ inference systems ( ⊢ ⊢ T ) T 20/30

  68. Provability invariants that proof-terms keep track of ⊢ A is an input J ⊢ ⊢ T j T : L ⊢ E ⊎ H ⊢ ⊢ c : ⊥ L clausal form of H ⊢ J ⊢ ⊢ ⊢ j T : L E ⊢ ⊢ ⊢ lem( H . c ): L ∅ ⊢ ⊢ in: A E , a A ⊢ J ⊢ ⊢ ⊢ T j T : L H ⊢ ⊢ ⊢ j : A ⊢ ⊢ c : ⊥ J ∪ { a L } ⊢ ⊢ res( j , a A . c ): ⊥ ⊢ ⊢ cfl( j T , a ): ⊥ E ∪ H ⊢ ⊢ Rules of CDSAT are adapted so as to use those proof-terms, and the soundness invariants are materialised as: Theorem ◮ For every assignment H ⊢ j : A on the trail, H ⊢ ⊢ ⊢ j : A ◮ For every conflict state � Γ; E ; c � , E ⊢ ⊢ ⊢ c : ⊥ . The proof system above can be seen as glueing a collection of ⊢ inference systems ( ⊢ ⊢ T ) T CDSAT is a search procedure for the resulting system 20/30

  69. Satisfiability Modulo Assignments (SMA) An SMT-problem with input clauses C 1 , . . . , C n is treated by running CDSAT on the initial trail ∅⊢ in: C 1 , . . . , ∅⊢ in: C n 21/30

  70. Satisfiability Modulo Assignments (SMA) An SMT-problem with input clauses C 1 , . . . , C n is treated by running CDSAT on the initial trail ∅⊢ in: C 1 , . . . , ∅⊢ in: C n But the CDSAT system can accept inputs with first-order assignments, e.g: ∅⊢ in: ( x ← 3 / 4 ) , ∅⊢ in: ( x ≤ y ) , ∅⊢ in: ( y ≤ 0) Such problems are called SMA problems. 21/30

  71. Satisfiability Modulo Assignments (SMA) An SMT-problem with input clauses C 1 , . . . , C n is treated by running CDSAT on the initial trail ∅⊢ in: C 1 , . . . , ∅⊢ in: C n But the CDSAT system can accept inputs with first-order assignments, e.g: ∅⊢ in: ( x ← 3 / 4 ) , ∅⊢ in: ( x ≤ y ) , ∅⊢ in: ( y ≤ 0) Such problems are called SMA problems. If there are no first-order inputs and the problem is unsat, then the final proof-term will not mention any deduction proof-term H ⊢ ⊢ ⊢ j : L nor any conflict proof H ⊢ ⊢ ⊢ c : ⊥ such that H contains a first-order assignment 21/30

  72. Satisfiability Modulo Assignments (SMA) An SMT-problem with input clauses C 1 , . . . , C n is treated by running CDSAT on the initial trail ∅⊢ in: C 1 , . . . , ∅⊢ in: C n But the CDSAT system can accept inputs with first-order assignments, e.g: ∅⊢ in: ( x ← 3 / 4 ) , ∅⊢ in: ( x ≤ y ) , ∅⊢ in: ( y ≤ 0) Such problems are called SMA problems. If there are no first-order inputs and the problem is unsat, then the final proof-term will not mention any deduction proof-term H ⊢ ⊢ ⊢ j : L nor any conflict proof H ⊢ ⊢ ⊢ c : ⊥ such that H contains a first-order assignment Easy optimisation in that case: the construction of any such proof-term during the run can be omitted 21/30

  73. Satisfiability Modulo Assignments (SMA) An SMT-problem with input clauses C 1 , . . . , C n is treated by running CDSAT on the initial trail ∅⊢ in: C 1 , . . . , ∅⊢ in: C n But the CDSAT system can accept inputs with first-order assignments, e.g: ∅⊢ in: ( x ← 3 / 4 ) , ∅⊢ in: ( x ≤ y ) , ∅⊢ in: ( y ≤ 0) Such problems are called SMA problems. If there are no first-order inputs and the problem is unsat, then the final proof-term will not mention any deduction proof-term H ⊢ ⊢ ⊢ j : L nor any conflict proof H ⊢ ⊢ ⊢ c : ⊥ such that H contains a first-order assignment Easy optimisation in that case: the construction of any such proof-term during the run can be omitted Theory modules do not have to provide theory proofs H ⊢ ⊢ ⊢ T j T : L if H contains a first-order assign. (typically: evaluation inferences) 21/30

  74. Different views about proof objects Proof-carrying CDSAT can be considered exactly as defined above, where in , j T , lem( H . c ) , cfl( j T , a ) , res( j , a A . c ) are terms. 22/30

  75. Different views about proof objects Proof-carrying CDSAT can be considered exactly as defined above, where in , j T , lem( H . c ) , cfl( j T , a ) , res( j , a A . c ) are terms. Another proof format is desired for output? Just interpret the terms in that format after the run (proof reconstruction) 22/30

  76. Different views about proof objects Proof-carrying CDSAT can be considered exactly as defined above, where in , j T , lem( H . c ) , cfl( j T , a ) , res( j , a A . c ) are terms. Another proof format is desired for output? Just interpret the terms in that format after the run (proof reconstruction) Alternatively, proof-carrying CDSAT can directly manipulate proofs in the format, if equipped with the operations corresponding to the term constructs. The proof-terms denote the manipulated proofs, but are never constructed. 22/30

  77. Example: resolution proofs If input contains no first-order assignments, resolution trees (or DAGs) form a proof format equipped with the right operations 23/30

  78. Example: resolution proofs If input contains no first-order assignments, resolution trees (or DAGs) form a proof format equipped with the right operations Leaves of resolution proofs are labeled by ◮ either literals corresponding to input assignments ∅ ⊢ ⊢ ⊢ in: A ◮ or theory lemmas corresponding to theory proofs J ⊢ ⊢ ⊢ T j T : L Internal nodes are obtained by applying resolution rule, ⊢ res( j , a A . c ): ⊥ constructs. corresponding to H ⊢ ⊢ 23/30

  79. Example: resolution proofs If input contains no first-order assignments, resolution trees (or DAGs) form a proof format equipped with the right operations Leaves of resolution proofs are labeled by ◮ either literals corresponding to input assignments ∅ ⊢ ⊢ ⊢ in: A ◮ or theory lemmas corresponding to theory proofs J ⊢ ⊢ ⊢ T j T : L Internal nodes are obtained by applying resolution rule, ⊢ res( j , a A . c ): ⊥ constructs. corresponding to H ⊢ ⊢ If input does contains first-order assignments (SMA problems) the resolution format has to be slightly extended, so that it manipulates guarded clauses of the form { ( t 1 ← c 1 ) , . . . , ( t n ← c n ) } ⇒ C where ( t 1 ← c 1 ) , . . . , ( t n ← c n ) are first-order assign. guarding clause C Details in the paper. 23/30

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

CDSAT: Conflict-Driven SATisfiability modulo theories and assignments 1 Maria Paola Bonacina

CDSAT: Conflict-Driven SATisfiability modulo theories and assignments 1 Maria Paola Bonacina

The conflict-driven reasoning paradigm Conflict-driven reasoning in theory combination The CDSAT transition system Discussion CDSAT: Conflict-Driven SATisfiability modulo theories and assignments 1 Maria Paola Bonacina Dipartimento di

610 views • 45 slides
Motivation: conflict-driven reasoning from PL to FOL SGGS: model representation and FO clausal

Motivation: conflict-driven reasoning from PL to FOL SGGS: model representation and FO clausal

Outline Motivation: conflict-driven reasoning from PL to FOL SGGS: model representation and FO clausal propagation SGGS inferences: instance generation and conflict solving Discussion SGGS: conflict-driven first-order reasoning 1 Maria Paola

582 views • 42 slides
Constructive Proofs and Program Extraction Christoph Kreitz 1. Type Theory vs. Set Theory 2.

Constructive Proofs and Program Extraction Christoph Kreitz 1. Type Theory vs. Set Theory 2.

Constructive Proofs and Program Extraction Christoph Kreitz 1. Type Theory vs. Set Theory 2. Overview of the Nuprl System 3. Proofs of the Integer Square Root Problem What distinguishes Type Theory from Set Theory? n r r 2 n

800 views • 42 slides
Conflict-driven Reasoning Conflict-Driven SATisfiability 2 CDCL : propositional conflict-driven

Conflict-driven Reasoning Conflict-Driven SATisfiability 2 CDCL : propositional conflict-driven

The Eos SMT/SMA-Solver: A Preliminary Report 1 Giulio Mazzi Universit` a Degli Studi di Verona Lisbon, 7th July 2019 1 Joint work with Maria Paola Bonacina G. Mazzi (Universit` a di Verona) Eos SMT/SMA-solver Lisbon, 7th July 2019 1 / 31

430 views • 31 slides
Design for a combination of compounds: the balance between theory and practice Peter Lane &amp;

Design for a combination of compounds: the balance between theory and practice Peter Lane &amp;

Design for a combination of compounds: the balance between theory and practice Peter Lane &amp; Yuehui Wu Research Statistics Unit Drug combination Increasing interest in combinations of drugs Ever-pressing need to speed up development

281 views • 25 slides
Proofs that, proofs why, and the analysis of paradoxes To Gerhard, on your 60th birthday Peter

Proofs that, proofs why, and the analysis of paradoxes To Gerhard, on your 60th birthday Peter

Proofs that, proofs why, and the analysis of paradoxes To Gerhard, on your 60th birthday Peter Schroeder-Heister Universit at T ubingen J agerfest Bern, 13.12.2013 p. 1 Russells antinomy in naive set theory Extend natural

688 views • 41 slides
Bargaining Theory J2P216 SE: International Cooperation and Conflict April 21/April 29, 2016 Reto

Bargaining Theory J2P216 SE: International Cooperation and Conflict April 21/April 29, 2016 Reto

Bargaining Theory J2P216 SE: International Cooperation and Conflict April 21/April 29, 2016 Reto West Global Studies Institute University of Geneva Outline 1 Introduction What Causes Conflict Between States? Bargaining Theory 2 Powell

1.08k views • 44 slides
MA/CSSE 474 Theory of Computation Proofs of several things (as much as we have time for) Your

MA/CSSE 474 Theory of Computation Proofs of several things (as much as we have time for) Your

3/19/2018 MA/CSSE 474 Theory of Computation Proofs of several things (as much as we have time for) Your Questions? Previous class days' HW5 problems material Tuesday's Exam Reading Assignments Anything else 1

124 views • 11 slides
General motivations Model theory Recursion theory Lambda calculus Set theory

General motivations Model theory Recursion theory Lambda calculus Set theory

A N INTERACTIVE SEMANTICS FOR CLASSICAL PROOFS Michele Basaldella JAIST February 19, 2013 I NTRODUCTION General motivations Model theory Recursion theory Lambda calculus Set theory Lattice theory Domain theory . . .

995 views • 57 slides
A Theory of Satisfiability-Preserving Proofs in SAT Solving Adrin Rebola-Pardo, Martin Suda TU

A Theory of Satisfiability-Preserving Proofs in SAT Solving Adrin Rebola-Pardo, Martin Suda TU

A Theory of Satisfiability-Preserving Proofs in SAT Solving Adrin Rebola-Pardo, Martin Suda TU Wien FMCAD Student Forum Austin, USA October 31st, 2018 Supported by FWF W1255-N23 and Microsofu Research through its PhD Programme A theory of

269 views • 8 slides
The Big Picture The CDSAT paradigm for SMT/SMA Discussion Maria Paola Bonacina Conflict-Driven

The Big Picture The CDSAT paradigm for SMT/SMA Discussion Maria Paola Bonacina Conflict-Driven

The Big Picture The CDSAT paradigm for SMT/SMA Discussion Conflict-Driven Reasoning in Unions of Theories 1 Maria Paola Bonacina Dipartimento di Informatica Universit` a degli Studi di Verona Verona, Italy, EU Invited Keynote Speech 12th

775 views • 50 slides
Proofs, Continued Today Proofs : A style guide Proofs should be easy to

Proofs, Continued Today Proofs : A style guide Proofs should be easy to

Euclid (300 BC) Proofs, Continued Today Proofs : A style guide Proofs should be easy to verify. All the cleverness goes into finding/writing the proof, not reading/verifying it! P vs. NP (informally) : P =

682 views • 21 slides
Internal Conflict 14.123 Microeconomic Theory III Muhamet Yildiz Motivation DM is assumed to

Internal Conflict 14.123 Microeconomic Theory III Muhamet Yildiz Motivation DM is assumed to

3/19/2015 Internal Conflict 14.123 Microeconomic Theory III Muhamet Yildiz Motivation DM is assumed to be a unitary agent, trying to improve his well being so far But internal conflict may be the rule for homopsychologicus

402 views • 8 slides
Welcome to PROOFS! PROOFS: Security Proofs for Embedded Systems Introduction to the fifth

Welcome to PROOFS! PROOFS: Security Proofs for Embedded Systems Introduction to the fifth

Welcome to PROOFS! PROOFS: Security Proofs for Embedded Systems Introduction to the fifth workshop Introduction to the workshop PROOFS: Security Proofs for Embedded Systems UCSB August 20, 2016 5th edition of PROOFS PROOFS 2012:

311 views • 7 slides
Proof reconstruction in conflict-driven satisfiability 1 Maria Paola Bonacina Dipartimento di

Proof reconstruction in conflict-driven satisfiability 1 Maria Paola Bonacina Dipartimento di

The big picture Proof-carrying CDSAT Discussion Proof reconstruction in conflict-driven satisfiability 1 Maria Paola Bonacina Dipartimento di Informatica Universit` a degli Studi di Verona Verona, Italy, EU Schlo Dagstuhl Seminar # 19371:

392 views • 28 slides
ICS 275 Winter 2016 Winter 2016 Winter 2016 Conflict Analysis: Implication Grpahs The

ICS 275 Winter 2016 Winter 2016 Winter 2016 Conflict Analysis: Implication Grpahs The

Boolean Satisfiability ICS 275 Winter 2016 Winter 2016 Winter 2016 Conflict Analysis: Implication Grpahs The combination of these techniques makes sure that unit resolution is empowered every time a conflict arises and that the solver

695 views • 56 slides
Motivation The big picture: CDCL, arithmetic, MCSAT The CDSAT approach Discussion Maria Paola

Motivation The big picture: CDCL, arithmetic, MCSAT The CDSAT approach Discussion Maria Paola

Outline Motivation The big picture: CDCL, arithmetic, MCSAT The CDSAT approach Discussion Conflict-driven reasoning 1 Maria Paola Bonacina Dipartimento di Informatica, Universit` a degli Studi di Verona, Verona, Italy, EU Invited talk 24th

876 views • 51 slides
Standards and the Portals Project Carsten Ziegeler

Standards and the Portals Project Carsten Ziegeler

Standards and the Portals Project Carsten Ziegeler cziegeler@apache.org Competence Center Open Source S&amp;N AG, Germany Member of the Apache Software Foundation Committer in

613 views • 57 slides
Objectives Review: databases, SQL, JDBC Software Engineering Tools Maven Issue

Objectives Review: databases, SQL, JDBC Software Engineering Tools Maven Issue

Objectives Review: databases, SQL, JDBC Software Engineering Tools Maven Issue Tracking: Jira Project Organization May 6, 2019 Sprenkle - CSCI335 1 Review: Databases, SQL, JDBC What do databases do for us? What are

670 views • 28 slides
IDIS Online Training for CDBG Grantees CPD, Office of Block Grant Assistance Introductions

IDIS Online Training for CDBG Grantees CPD, Office of Block Grant Assistance Introductions

IDIS Online Training for CDBG Grantees CPD, Office of Block Grant Assistance Introductions Name Organization Experience CDBG IDIS Areas of CDBG program responsibilities IDIS responsibilities IDIS Online for CDBG

1.23k views • 90 slides
Transition Bootcamp Charting the Lifecourse Recap: using the tools to brainstorm transition

Transition Bootcamp Charting the Lifecourse Recap: using the tools to brainstorm transition

10/5/2020 Transition Bootcamp Charting the Lifecourse Recap: using the tools to brainstorm transition activities for your student during COVID Hosted by: Lynne Fogel, Central Ohio Family Support Specialist Ohio Family 2 Family September 24,

253 views • 10 slides
TRECVID 2017 George Awad#* Alan Smeaton (Dublin City University) Ian Soboroff *

TRECVID 2017 George Awad#* Alan Smeaton (Dublin City University) Ian Soboroff *

TREC Video Retrieval Evaluation TRECVID 2017 George Awad#* Alan Smeaton (Dublin City University) Ian Soboroff * Wessel Kraaij (TNO, Radboud University Nijmegen) (Laboratoire dInformatique de Grenoble) Asad Butt *

544 views • 17 slides
Using Artificial Intelligence and Transprecision Computing for Accelerating Finite-Element Urban

Using Artificial Intelligence and Transprecision Computing for Accelerating Finite-Element Urban

1 st R-CCS International Symposium @ Kobe, Japan Feb. 18, 2019 Using Artificial Intelligence and Transprecision Computing for Accelerating Finite-Element Urban Earthquake Simulation Tsuyoshi Ichimura, Kohei Fujita, Takuma Yamaguchi, Akira

711 views • 20 slides
15 Tree-based MT In this chapter, we will cover methods for sequence-to-sequence mapping that are

15 Tree-based MT In this chapter, we will cover methods for sequence-to-sequence mapping that are

15 Tree-based MT In this chapter, we will cover methods for sequence-to-sequence mapping that are based on tree structures. 15.1 Motivation for Tree-based Methods Translation Examples A Generalized Rule josei wa ringo wo tabeta NP 1 wa NP 2

648 views • 15 slides

More recommend