solvers principles and architecture spa
play

Solvers Principles and Architecture (SPA) Part 2 Abstract - PowerPoint PPT Presentation

Aug 17, 2023 •377 likes •771 views

Solvers Principles and Architecture (SPA) Part 2 Abstract Interpretation (Basics) Master Sciences Informatique (Sif) September, 2019 Rennes Khalil Ghorbal k halil.ghorbal@inria.fr K. Ghorbal (INRIA) 1 SIF M2 1 / 13 Abstract

  1. Solvers Principles and Architecture (SPA) Part 2 Abstract Interpretation (Basics) Master Sciences Informatique (Sif) September, 2019 Rennes Khalil Ghorbal k halil.ghorbal@inria.fr K. Ghorbal (INRIA) 1 SIF M2 1 / 13

  2. Abstract Interpretation : Intuitions S i K. Ghorbal (INRIA) 2 SIF M2 2 / 13

  3. Abstract Interpretation : Intuitions S i K. Ghorbal (INRIA) 2 SIF M2 2 / 13

  4. Abstract Interpretation : Intuitions S i K. Ghorbal (INRIA) 2 SIF M2 2 / 13

  5. Abstract Interpretation : Intuitions S i ➻ What about the missed bugs ? are they severe ? K. Ghorbal (INRIA) 2 SIF M2 2 / 13

  6. Abstract Interpretation : Intuitions S i K. Ghorbal (INRIA) 2 SIF M2 2 / 13

  7. Abstract Interpretation : Intuitions S i K. Ghorbal (INRIA) 2 SIF M2 2 / 13

  8. Abstract Interpretation : Intuitions S i K. Ghorbal (INRIA) 2 SIF M2 2 / 13

  9. Abstract Interpretation : Intuitions S i ➻ Over-approximation may lead to false alarms . K. Ghorbal (INRIA) 2 SIF M2 2 / 13

  10. Abstract Interpretation : Intuitions S i ➻ Accurate over-approximation gives a safety proof . K. Ghorbal (INRIA) 2 SIF M2 2 / 13

  11. Famous bugs Examples • 1982, The Vancouver stock exchange: after 22 months the index had fallen to 524 , 811 instead of 1098 , 811 • 1985, Therac 25 (radiation therapy machine) : 5 patients killed (overdoses of radiation) • 1991, The Patriot Missile: 28 soldiers killed • 1996, Ariane 5: more than 1 billion $ gone in 40 seconds E. Dijkstra (1972) Program testing can be used to show the presence of bugs, but never to show their absence! K. Ghorbal (INRIA) 3 SIF M2 3 / 13

  12. Detailed example ➊ y = x 2 − x begin x = [0,10]; ➊ ➋ y ≥ 0 y < 0 y = x*x - x ➋ if (y >= 0) ➌ then y = x / 10; ➍ ➌ ➎ else ➎ y = x 2 + 2 y = x 10 y = x*x + 2; ➏ done; ➐ ➍ ➏ end ∪ ➐ K. Ghorbal (INRIA) 4 SIF M2 4 / 13

  13. Forward Propagation x =[0 , 10] y = x 2 − x ➋ y ≥ 0 y < 0 ➌ ➎ y = x y = x 2 +2 10 ➍ ➏ ∪ ➐ K. Ghorbal (INRIA) 5 SIF M2 5 / 13

  14. Forward Propagation x =[0 , 10] y = x 2 − x x =[0 , 10] y =[ − 10 , 100] y ≥ 0 y < 0 ➌ ➎ y = x y = x 2 +2 10 ➍ ➏ ∪ ➐ K. Ghorbal (INRIA) 5 SIF M2 5 / 13

  15. Forward Propagation x =[0 , 10] y = x 2 − x x =[0 , 10] y =[ − 10 , 100] y ≥ 0 y < 0 ➎ x =[0 , 10] y =[0 , 100] y = x 2 +2 y = x ➏ 10 ➍ ∪ ➐ K. Ghorbal (INRIA) 5 SIF M2 5 / 13

  16. Forward Propagation x =[0 , 10] y = x 2 − x x =[0 , 10] y =[ − 10 , 100] y ≥ 0 y < 0 x =[0 , 10] x =[0 , 10] y =[0 , 100] y =[ − 10 , 0] y = x y = x 2 +2 10 ➍ ➏ ∪ ➐ K. Ghorbal (INRIA) 5 SIF M2 5 / 13

  17. Forward Propagation x =[0 , 10] y = x 2 − x x =[0 , 10] y =[ − 10 , 100] y ≥ 0 y < 0 x =[0 , 10] x =[0 , 10] y =[0 , 100] y =[ − 10 , 0] y = x y = x 2 +2 10 ➏ x =[0 , 10] y =[0 , 1] ∪ ➐ K. Ghorbal (INRIA) 5 SIF M2 5 / 13

  18. Forward Propagation x =[0 , 10] y = x 2 − x x =[0 , 10] y =[ − 10 , 100] y ≥ 0 y < 0 x =[0 , 10] x =[0 , 10] y =[0 , 100] y =[ − 10 , 0] y = x y = x 2 +2 10 x =[0 , 10] x =[0 , 10] y =[0 , 1] y =[2 , 102] ∪ ➐ K. Ghorbal (INRIA) 5 SIF M2 5 / 13

  19. Forward Propagation x =[0 , 10] y = x 2 − x x =[0 , 10] y =[ − 10 , 100] y invariant in ➐ y ≥ 0 y < 0 102 x =[0 , 10] x =[0 , 10] y =[0 , 100] y =[ − 10 , 0] y = x y = x 2 +2 10 x 1 10 x =[0 , 10] x =[0 , 10] y =[0 , 1] y =[2 , 102] ∪ ➐ K. Ghorbal (INRIA) 5 SIF M2 5 / 13

  20. Forward Propagation x =[0 , 10] y = x 2 − x x =[0 , 10] y =[ − 10 , 100] y invariant in ➐ y ≥ 0 y < 0 102 102 x =[0 , 10] x =[0 , 10] y =[0 , 100] y =[ − 10 , 0] y = x y = x 2 +2 10 x 3 1 10 x =[0 , 10] x =[0 , 10] y =[0 , 1] y =[2 , 102] ∪ ➐ K. Ghorbal (INRIA) 5 SIF M2 5 / 13

  21. Forward Propagation x =[0 , 10] y = x 2 − x x =[0 , 10] y =[ − 0 . 25 , 90] y invariant in ➐ y ≥ 0 y < 0 102 102 x =[0 , 10] x =[0 , 1] y =[0 , 90] y =[ − 0 . 25 , 0] y = x y = x 2 +2 10 x 3 1 10 x =[0 , 10] x =[0 , 1] y =[0 , 1] y =[2 , 3] ∪ ➐ K. Ghorbal (INRIA) 5 SIF M2 5 / 13

  22. Precision Cost Trade-off Cost box Precision K. Ghorbal (INRIA) 6 SIF M2 6 / 13

  23. Precision Cost Trade-off Cost octagon box Precision K. Ghorbal (INRIA) 6 SIF M2 6 / 13

  24. Precision Cost Trade-off Cost template octagon box Precision K. Ghorbal (INRIA) 6 SIF M2 6 / 13

  25. Precision Cost Trade-off Cost polyhedron template octagon box Precision K. Ghorbal (INRIA) 6 SIF M2 6 / 13

  26. Precision Cost Trade-off Cost polyhedron template octagon box Precision K. Ghorbal (INRIA) 6 SIF M2 6 / 13

  27. Precision Cost Trade-off Cost polyhedron template octagon box zonotope Precision K. Ghorbal (INRIA) 6 SIF M2 6 / 13

  28. Precision Cost Trade-off Cost polyhedron template octagon box constrained zonotope zonotope Precision K. Ghorbal (INRIA) 6 SIF M2 6 / 13

  29. Outlines 1 Static Analysis-based Abstract Interpretation K. Ghorbal (INRIA) 7 SIF M2 7 / 13

  30. Formal Verification Approaches Formal Verification Approaches • Hoare 1969: wrap the code of interest with preconditions and postconditions, then prove that postconditions are met • Clarke, Emerson et Sifakis 1974: model checking • Cousot(s) 1977: Abstract Interpretation Properties of Interest • run time errors: overflow, division by zero, square root of negatives, etc. • robustness and stability of algorithms: linear and non linear recursive schemes, filters, etc. K. Ghorbal (INRIA) 8 SIF M2 8 / 13

  31. Formal Verification Approaches Formal Verification Approaches • Hoare 1969: wrap the code of interest with preconditions and postconditions, then prove that postconditions are met • Clarke, Emerson et Sifakis 1974: model checking • Cousot(s) 1977: Abstract Interpretation Properties of Interest • run time errors: overflow, division by zero, square root of negatives, etc. • robustness and stability of algorithms: linear and non linear recursive schemes, filters, etc. K. Ghorbal (INRIA) 8 SIF M2 8 / 13

  32. Formal Verification Approaches Formal Verification Approaches • Hoare 1969: wrap the code of interest with preconditions and postconditions, then prove that postconditions are met • Clarke, Emerson et Sifakis 1974: model checking • Cousot(s) 1977: Abstract Interpretation Properties of Interest • run time errors: overflow, division by zero, square root of negatives, etc. • robustness and stability of algorithms: linear and non linear recursive schemes, filters, etc. K. Ghorbal (INRIA) 8 SIF M2 8 / 13

  33. Formal Verification Approaches Formal Verification Approaches • Hoare 1969: wrap the code of interest with preconditions and postconditions, then prove that postconditions are met • Clarke, Emerson et Sifakis 1974: model checking • Cousot(s) 1977: Abstract Interpretation Properties of Interest • run time errors: overflow, division by zero, square root of negatives, etc. • robustness and stability of algorithms: linear and non linear recursive schemes, filters, etc. K. Ghorbal (INRIA) 8 SIF M2 8 / 13

  34. Abstract Interpretation, an overview • Program semantics formalized as a fixpoint of a monotonic operator in a complete partially ordered set (exemplified later), • Fully automated, • Industrial tools exists : Polyspace Verifier (MathWorks), Astr˜ Al’e (ENS/ABSINT), Fluctuat (CEA), aIT (ABSINT), F-Soft (Nec Labs) . . . Challenge find the suitable abstract domain for the properties of interest. K. Ghorbal (INRIA) 9 SIF M2 9 / 13

  35. Equations System (collecting semantic) ➊ y = x 2 − x  X 1 = � V → I � ♭ ➋  X 2 = � y ← x 2 − x � ♭ ( X 1 )  y ≥ 0 y < 0     X 3 = � y ≥ 0 � ♭ ( X 2 )     10 � ♭ ( X 3 ) X 4 = � y ← x ➌ ➎ X 5 = � y < 0 � ♭ ( X 2 )  y = x 2 + 2  y = x  X 6 = � y ← x 2 + 2 � ♭ ( X 5 ) 10      ➍ ➏  X 7 = X 6 ∪ X 4  ∪ ➐ K. Ghorbal (INRIA) 10 SIF M2 10 / 13

  36. Solving the equations system • D = ( ℘ ( V → I ) , ⊆ , ∪ , ∩ , ∅ , ( V → I )) is a complete lattice • each operator X �→ F ( X ) is monotonic ➺ Tarski Theorem ensures the existence of a least fixpoint for F ➺ Kleene Iteration Technique reaches the least fixpoint Issues � ℘ ( V → I ) is non representable in finite memory, � � . � ♭ are non computable, � Iterations over the lattice may be transfinite. K. Ghorbal (INRIA) 11 SIF M2 11 / 13

  37. Concretisation-Based Abstract Interpretation α γ ( X ♯ X ♯ X 1 ⊆ 1 ) 1 γ � y ← x 2 − x � ♯ � y ← x 2 − x � ♭ γ ( X ♯ X ♯ X 2 ⊆ 2 ) 2 γ concrete domain abstract domain over approximation K. Ghorbal (INRIA) 12 SIF M2 12 / 13

  38. Building an abstract domain • lattice-like structure: • abstract objects • order relation (preorder over abstract objects) • monotonic concretisation function ( γ ) • Transfer Functions • evaluation of arithmetic expressions ( � x 2 − x � ♯ ) • assignment ( X 2 = � y ← x 2 − x � ♯ ( X 1 )) • upper bound (join) ( X 7 = X 6 ∪ X 4 ) • over-approximation of lower bounds (meet) ( X 3 = � y ≥ 0 � ♯ X 2 = “ X 3 = X 2 ∩ � y ≥ 0 � ♯ ⊤ ♯ ” ) • Convergence acceleration (widening) K. Ghorbal (INRIA) 13 SIF M2 13 / 13

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Solvers Principles and Architecture (SPA) Part 2 SMT Solvers Master Sciences Informatique (Sif)

Solvers Principles and Architecture (SPA) Part 2 SMT Solvers Master Sciences Informatique (Sif)

Solvers Principles and Architecture (SPA) Part 2 SMT Solvers Master Sciences Informatique (Sif) September, 2019 Rennes Khalil Ghorbal k halil.ghorbal@inria.fr K. Ghorbal (INRIA) 1 SIF M2 1 / 17 Syntax Recall that logic is a pair of

336 views • 22 slides
Solvers Principles and Architecture (SPA) Part 1 Anatomy of SAT Solvers Master Sciences

Solvers Principles and Architecture (SPA) Part 1 Anatomy of SAT Solvers Master Sciences

Solvers Principles and Architecture (SPA) Part 1 Anatomy of SAT Solvers Master Sciences Informatique (Sif) September, 2019 Rennes Khalil Ghorbal k halil.ghorbal@inria.fr K. Ghorbal (INRIA) 1 SIF M2 1 / 58 Outline 1 Propositional Logic 2

1.6k views • 108 slides
Solvers Principles and Architecture (SPA) Lecture 1 SAT Solvers Master Sciences Informatique

Solvers Principles and Architecture (SPA) Lecture 1 SAT Solvers Master Sciences Informatique

Solvers Principles and Architecture (SPA) Lecture 1 SAT Solvers Master Sciences Informatique (Sif) September 25th, 2017 Rennes Khalil Ghorbal k halil.ghorbal@inria.fr K. Ghorbal (INRIA) 1 SIF M2 1 / 42 Automated Theorem Proving

1.42k views • 102 slides
Solvers Principles and Architecture (SPA) General Introduction Master Sciences Informatique

Solvers Principles and Architecture (SPA) General Introduction Master Sciences Informatique

Solvers Principles and Architecture (SPA) General Introduction Master Sciences Informatique (Sif) September 18th, 2019 Rennes Khalil Ghorbal k halil.ghorbal@inria.fr K. Ghorbal (INRIA) 1 SIF M2 1 / 15 What makes a problem important ?

688 views • 49 slides
Pluggable SAT-Solvers for SMT-Solvers Bas Schaafsma DISI, University of Trento &amp; Fondazione

Pluggable SAT-Solvers for SMT-Solvers Bas Schaafsma DISI, University of Trento &amp; Fondazione

Introduction The DPLL and DPLL( T ) algorithms Architecture &amp; Implementation Experimental Evaluation Demo Conclusion &amp; Future Work Pluggable SAT-Solvers for SMT-Solvers Bas Schaafsma DISI, University of Trento &amp; Fondazione Bruno

516 views • 28 slides
First steps in the formalization of convex polyhedra in Coq Solvers Principles and

First steps in the formalization of convex polyhedra in Coq Solvers Principles and

Introduction The simplex method: base block of convex polyhedra Formalization of the simplex method Conclusion Bibliography First steps in the formalization of convex polyhedra in Coq Solvers Principles and Architectures Seminar, Rennes

2.1k views • 187 slides
Introduction to SAT and SMT Solvers Interfacing Yosys and SMT Solvers for BMC and more using

Introduction to SAT and SMT Solvers Interfacing Yosys and SMT Solvers for BMC and more using

Introduction to SAT and SMT Solvers Interfacing Yosys and SMT Solvers for BMC and more using SMT-LIB 2.5 Clifford Wolf 1 Abstract Bounded model checking and other SAT-based formal methods are an important part of todays digital design

773 views • 52 slides
Single-Source Architecture Principles Single-Source Architecture is strategy for building websites

Single-Source Architecture Principles Single-Source Architecture is strategy for building websites

Single-Source Architecture David Kirkwood, DrupalCon 2018, Nashville Single-Source Architecture Principles Single-Source Architecture is strategy for building websites in an iterative manner Each sub-site is distinct to the others o Content o

269 views • 3 slides
Satisfiability Modulo Theories SMT solvers are finding their way in many different application

Satisfiability Modulo Theories SMT solvers are finding their way in many different application

Applications of SMT solvers Alessandro Cimatti Embedded System Unit Fondazione Bruno Kessler Trento, Italy cimatti@fbk.eu Applications of SMT solvers @ SAT/SMT School, Helsinki, July 2013 Satisfiability Modulo Theories SMT solvers are

1.09k views • 27 slides
Overview General Principles of Pipelining Goal Computer Architecture: Pipelining

Overview General Principles of Pipelining Goal Computer Architecture: Pipelining

Overview General Principles of Pipelining Goal Computer Architecture: Pipelining Difficulties Creating a Pipelined Y86-64 Processor CSci 2021: Machine Architecture and Organization Rearranging SEQ March 25th-27th, 2020 Inserting

558 views • 6 slides
Learning outcomes First session Overview of IT architecture principles; modularization, loose

Learning outcomes First session Overview of IT architecture principles; modularization, loose

Platforms and Architecture Bendik Bygstad IN5210 INFORMATION SYSTEMS SEPT 18, 2017 Learning outcomes First session Overview of IT architecture principles; modularization, loose coupling etc. Understand the technical and economic

731 views • 20 slides
Pipelined Scheduling of Acyclic SDF Graphs using SMT Solvers P. Tendulkar, P. Poplavko, J.

Pipelined Scheduling of Acyclic SDF Graphs using SMT Solvers P. Tendulkar, P. Poplavko, J.

IDEA 2015 Investigating Dataflow in Embedded computing Architecture Pipelined Scheduling of Acyclic SDF Graphs using SMT Solvers P. Tendulkar, P. Poplavko, J. Maselbas, and O. Maler Verimag Lab (CNRS, University of Grenoble), France

266 views • 15 slides
Principles and Techniques of Evolutionary Architecture Rebecca Parsons Chief Technology O ffi cer

Principles and Techniques of Evolutionary Architecture Rebecca Parsons Chief Technology O ffi cer

Principles and Techniques of Evolutionary Architecture Rebecca Parsons Chief Technology O ffi cer ThoughtWorks Agenda Why should I care? De fi nition of Evolutionary Architecture Principles of evolutionary architecture Techniques of evolutionary

256 views • 23 slides
Service Oriented Architecture: Principles and Practice Dr Mark Little Technical Development

Service Oriented Architecture: Principles and Practice Dr Mark Little Technical Development

Service Oriented Architecture: Principles and Practice Dr Mark Little Technical Development Manager, Red Hat Overview Evolution of distributed systems SOA principles Relationship to Web Services The Enterprise Service Bus

1.71k views • 152 slides
SMT Solvers: A Disruptive Technology John Rushby Computer Science Laboratory SRI International

SMT Solvers: A Disruptive Technology John Rushby Computer Science Laboratory SRI International

SMT Solvers: A Disruptive Technology John Rushby Computer Science Laboratory SRI International Menlo Park, California, USA John Rushby, SR I SMT Solvers: 1 SMT Solvers SMT stands for Satisfiability Modulo Theories SMT solvers

770 views • 39 slides
End-to-end principle All control in end stations by Dave Clark e.g. error and flow

End-to-end principle All control in end stations by Dave Clark e.g. error and flow

Introduction to routing in the Internet Internet architecture IPv4, ICMP, ARP Addressing, routing principles (Chapters 23 in Huitema) Internet-1 S-38.121 / Fall-04 / RKa, NB Internet Architecture Principles End-to-end principle All

893 views • 21 slides
The octagon method for finding exceptional points, and application to hydrogen-like systems in

The octagon method for finding exceptional points, and application to hydrogen-like systems in

Institute of Theoretical Physics, University of Stuttgart, in collaboration with M. Feldmaier, F. Schweiner, J. Main, and H. Cartarius The octagon method for finding exceptional points, and application to hydrogen-like systems in parallel

445 views • 30 slides
Gaps of saddle connection directions for some branched covers of tori Anthony Sanchez

Gaps of saddle connection directions for some branched covers of tori Anthony Sanchez

Gaps of saddle connection directions for some branched covers of tori Anthony Sanchez asanch33@uw.edu West Coast Dynamics Seminar May 14 th , 2020 Translation surfaces A translation surface is a collection of polygons with edge identifications

1.9k views • 142 slides
Reachability Analysis Using Octagons Andrew N. Fisher and Chris J. Myers Department of Electrical

Reachability Analysis Using Octagons Andrew N. Fisher and Chris J. Myers Department of Electrical

Reachability Analysis Using Octagons Andrew N. Fisher and Chris J. Myers Department of Electrical and Computer Engineering University of Utah FAC 2014 July 9, 2014 Fisher / Myers (U. of Utah) Octagons FAC 2014 / July 9, 2014 Digitally

1.32k views • 79 slides
Octagonal Domains for Continuous Constraints Marie Pelleau Charlotte Truchet Frdric Benhamou

Octagonal Domains for Continuous Constraints Marie Pelleau Charlotte Truchet Frdric Benhamou

Octagonal Domains for Continuous Constraints Marie Pelleau Charlotte Truchet Frdric Benhamou TASC, University of Nantes CP 2011 September 13, 2011 M. Pelleau, C. Truchet, F. Benhamou (TASC, University of Nantes) TASC, Nantes September

815 views • 42 slides
LumiCal Design Options 2020.04.15 15:00 indico.ihep.ac.cn/event/11684/ Suen Hou Academia

LumiCal Design Options 2020.04.15 15:00 indico.ihep.ac.cn/event/11684/ Suen Hou Academia

LumiCal Design Options 2020.04.15 15:00 indico.ihep.ac.cn/event/11684/ Suen Hou Academia Sinica Outline BHLUMI : Bhabha cross section boost by beam crossing, small beam pipe &lt; 30 mRad ( Bhabha) &gt; ~ 50 nb OVAL beampipe to

472 views • 35 slides
EE Analyzer Xavier R IVAL rival@di.ens.fr Certification of embedded softwares Safety critical

EE Analyzer Xavier R IVAL rival@di.ens.fr Certification of embedded softwares Safety critical

The A STR EE Analyzer Xavier R IVAL rival@di.ens.fr Certification of embedded softwares Safety critical applications avionic softwares but also automotive, space... synchronous Properties to prove to guarantee safety:

491 views • 36 slides
Nonlinear Polynomials, Interpolants and Invariant Generation for System Analysis Deepak Kapur

Nonlinear Polynomials, Interpolants and Invariant Generation for System Analysis Deepak Kapur

Nonlinear Polynomials, Interpolants and Invariant Generation for System Analysis Deepak Kapur Department of Computer Science University of New Mexico Albuquerque, NM, USA with Rodriguez-Carbonell, Zhihai Zhang, Hengjun Zhao, Stephan Falke,

2.07k views • 183 slides
Squaring the Circle: How Framedness influences User Behavior around a Seamless Cylindrical

Squaring the Circle: How Framedness influences User Behavior around a Seamless Cylindrical

Squaring the Circle: How Framedness influences User Behavior around a Seamless Cylindrical Display Gilbert Beyer, Florian Kttner, Manuel Schiewe, Ivo Haulsen, Andreas Butz University of Munich and Fraunhofer FOKUS Shaped Displays Digital

640 views • 52 slides

More recommend