towards smart proof search for isabelle
play

Towards Smart Proof Search for Isabelle PSL and all that k e e - PowerPoint PPT Presentation

Feb 25, 2023 •36 likes •266 views

s a n w o n k y l A r e T m C I r N o f Towards Smart Proof Search for Isabelle PSL and all that k e e w t s a Yutaka Nagashima | Trustworthy System Research Group l l i t n March 2017 u www.csiro.au Example

  1. s a n w o n k y l A r e T m C I r N o f Towards Smart Proof Search for Isabelle PSL and all that k e e w t s a Yutaka Nagashima | Trustworthy System Research Group l l i t n March 2017 u www.csiro.au

  2. Example proof at Data61 • Click to edit Master text styles • Second level – Third level – Fourth level • Fifth level taken from: https://github.com/seL4/seL4 Presentation title | Presenter name 2

  3. PSL and try-hard for Isabelle/HOL The percentage of automatically proved obligations out of 1526 proof obligations (timeout = 300s) 100% Part 2 28% 73% 75% Not specific to Isabelle! Other ITPs / Logic Programming 16% 57% 20% Part 1 50% 25% 0% try_hard sledgehammer Towards Smart Proof Search. | Yutaka Nagashima 3

  4. Isabelle/HOL before PSL proof goal context tactic / sub-tool error-message It's blatantly clear subgoals no sub-goal! You stupid machine, that what I tell you is true (Michael Norrish) Towards Smart Proof Search. | Yutaka Nagashima 4

  5. PSL (Proof Strategy Language) meta-tool tactics approach quickcheck sledgehammer programming language runtime tactic extensible generation (Eisbach) PSL efficient proof extensive generation parallel native Isabelle proof search almost no code clutter!! search proof script low memory usage Towards Smart Proof Search. | Yutaka Nagashima 5

  6. Isabelle/HOL with PSL proof goal proof goal context context strategy tactic / sub-tool PSL proved theorem / Much less interaction with efficient tactic subgoals / message Isabelle. Towards Smart Proof Search. | Yutaka Nagashima 6

  7. Tactics 1 goal preproces goal goal imp principle of explosion False P imp tactic Case 1 Case 2 new goal goal imp goal Case 3 subgoal 1 imp subgoal 2 imp imp goal PSL and all that. | Yutaka Nagashima 7

  8. Tactics 2 , , : thm goal preproces goal goal imp tactic [ ] Case 1 Case 2 new goal goal imp goal Case 3 subgoal 1 imp subgoal 2 imp imp goal PSL and all that. | Yutaka Nagashima 8

  9. Tactics 2 goal preproces goal goal imp tactic Case 4 (failure = empty list) [ ] PSL and all that. | Yutaka Nagashima 9

  10. Tactics 3 [ , ,…] goal :: thm tactic goal 1:: thm goal 2 :: thm Lazy fun tactic :: thm -> [ thm ] OR simp auto simp induct auto simp REPEAT THEN induct auto PSL and all that. | Yutaka Nagashima 10

  11. Tactical (THEN) goal :: thm tactic1 THEN tactic1 tactic2 [ , ,…] goal 1 goal 2 giant tactic? tactic2 tactic2 tactic2 goal 1-1 [ ] [ ,…] @[ ,…]@[… goal 2-1 Towards Smart Proof Search. | Yutaka Nagashima 11

  12. Giant tactic giant tactic? force auto OR OR simp fast OR problem 1: Default problem 2: Giant tactics are too weak! tactics are too slow! problem 3: Sledgehammer and quick-check are not tactics! Towards Smart Proof Search. | Yutaka Nagashima 12

  13. Thens [Dynamic(Induct), Auto, IsSolved] runtime interpretation (InductA ++ InductB ++ …) THEN auto THEN is_solved goal Dynamic ( Induct ) Auto sequential combination (THEN) IsSolved non-determinism Towards Smart Proof Search. | Yutaka Nagashima 13

  14. Monadic interpretation type ‘a tactic = ‘a -> ‘a monad type tactic = thm -> thm Seq.seq explicit tree construction? writer monad + non-deterministic monad goal pointer? Dynamic ( Induct ) Auto efficient proof scripts as “state” IsSolved Towards Smart Proof Search. | Yutaka Nagashima 14

  15. Sledgehammer as tactic problem 3: Sledgehammer and quick-check are not tactics! They work on Proof.state not on thm. type ‘a tactic = 'a -> ‘a nondet_state_monad type tactic = P.state -> P.state nondet_state_monad parallel persistant hammering PThenOne Thens [Dyn (Induct), Thens[Hammer+ , IsSolved]] Towards Smart Proof Search. | Yutaka Nagashima 15

  16. try_hard: the default strategy strategy Try_Hard = Ors [Thens [Subgoal, Basic], Thens [DInductTac, Auto_Solve], strategy Basic = Thens [DCaseTac, Auto_Solve], Ors [ Thens [Subgoal, Advanced], Auto_Solve, Thens [DCaseTac, Solve_Many], Blast_Solve, Thens [DInductTac, Solve_Many] ] FF_Solve, Thens [IntroClasses, Auto_Solve], Thens [Transfer, Auto_Solve], Thens [Normalization, IsSolved], Thens [DInduct, Auto_Solve], Thens [Hammer, IsSolved], Thens [DCases, Auto_Solve], Thens [DCoinduction, Auto_Solve], Thens [Auto, RepeatN(Hammer), IsSolved], Thens [DAuto, IsSolved]] PSL and all that. | Yutaka Nagashima 16

  17. PSL: Demo

  18. PSL and try-hard for Isabelle/HOL The percentage of automatically proved obligations out of 1526 proof obligations (timeout = 300s) 100% try_smart Part 2 28% 73% 75% 16% 57% 20% Part 1 50% 25% 0% try_hard sledgehammer Towards Smart Proof Search. | Yutaka Nagashima 18

  19. PaMpeR: Proof Method proof goal and context as a vector of boolean values Recommendation System huge and complex proof goal proof goal ? context strategy context assertions Regression PaMpeR Algorithm Proof Data Type class mechanism? Base Recursively defined constant? proof method e.g. AFP & seL4 recommendation:: (proof method * double) list Towards Smart Proof Search. | Yutaka Nagashima 19

  20. PaMpeR: Demo Affine_Arithmetic/Affine_Approximation

  21. Future work: try-hard to try-smart PaMpeR proof goal context proof goal context proof goal context small strategy tactic / sub-tool try_smart PSL efficient tactic state monad transformer runtime tactic generation Even better than PSL. Towards Smart Proof Search. | Yutaka Nagashima 21

  22. Isabelle/PSL on Github ( https://github.com/data61/PSL ) Leave a star if you like. I want you to use PSL / adopt the idea Lean/PSL coming soon(?) Isabelle/PaMpeR on Github (still work in progress) Towards Smart Proof Search. | Yutaka Nagashima 22

  23. Thank You TS/ProofEngineering Yutaka Nagashima 
 Engineer www.csiro.au

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Designing Games of Theorems Who am I? What do I like? automating proof search in expressive

Designing Games of Theorems Who am I? What do I like? automating proof search in expressive

Designing Games of Theorems Who am I? What do I like? automating proof search in expressive logic (HOL) using heuristics / ML What did I develop? PSL/PaMpeR for Isabelle/HOL Proof Strategy Language (PSL) for Isabelle/HOL meta-tool tactics

380 views • 19 slides
Isabelle Import for Mizar Cezary Kaliszyk Karol P ak CICM18, Hagenberg Proof

Isabelle Import for Mizar Cezary Kaliszyk Karol P ak CICM18, Hagenberg Proof

Isabelle Import for Mizar Cezary Kaliszyk Karol P ak CICM18, Hagenberg Proof Interoperability Proof Analysis Comparing, Presentation, Search... Proof Auditing HOL Zero Re-use and Combining Particularly useful if shallow 2 / 20

549 views • 28 slides
Proof Strategy Language and Goal-Oriented Conjecturing for Isabelle/HOL Yutaka Nagashima and

Proof Strategy Language and Goal-Oriented Conjecturing for Isabelle/HOL Yutaka Nagashima and

Proof Strategy Language and Goal-Oriented Conjecturing for Isabelle/HOL Yutaka Nagashima and Julian Parsert Czech Technical University in Prague University of Innsbruck Isabelle/HOL before PSL Isabelle/HOL before PSL context proof goal

558 views • 33 slides
Getting started with Isabelle/Isar Makarius Wenzel TU M unchen August 2007 1. Foundations:

Getting started with Isabelle/Isar Makarius Wenzel TU M unchen August 2007 1. Foundations:

Getting started with Isabelle/Isar Makarius Wenzel TU M unchen August 2007 1. Foundations: logical framework 2. Forward reasoning: proof context 3. Backward reasoning: proof state PRELUDE: Notions of proof Isabelle tactic scripts lemma A

1.02k views • 63 slides
CS 671 Automated Reasoning Proof Automation in First Order Logic 1. Tactic-based proof search 2.

CS 671 Automated Reasoning Proof Automation in First Order Logic 1. Tactic-based proof search 2.

CS 671 Automated Reasoning Proof Automation in First Order Logic 1. Tactic-based proof search 2. Complete proof search with JProver Tactic-based proof search Sort rule applications by cost of induced proof search let simple prover = Repeat (

562 views • 9 slides
Ackermann's Function in Iterative Form A Subtle Termination Proof with Isabelle/HOL Lawrence C

Ackermann's Function in Iterative Form A Subtle Termination Proof with Isabelle/HOL Lawrence C

Ackermann's Function in Iterative Form A Subtle Termination Proof with Isabelle/HOL Lawrence C Paulson FRS, Computer Laboratory, University of Cambridge Isabelle Workshop 2020 I. A Brief History of Ackermanns Function Wilhelm Ackermanns

3.42k views • 20 slides
SErAPIS: A Concept-Oriented Search Engine for the Isabelle Libraries Based on Natural Language

SErAPIS: A Concept-Oriented Search Engine for the Isabelle Libraries Based on Natural Language

SErAPIS: A Concept-Oriented Search Engine for the Isabelle Libraries Based on Natural Language Yiannos Stathopoulos, Angeliki Koutsoukou-Argyraki and Lawrence Paulson Isabelle Workshop 2020, 30 June 2020 Department of Computer Science and

450 views • 42 slides
Cleaner Energy -- Cleaner Air: A Smart Investment Isabelle Silverman, Attorney Environmental

Cleaner Energy -- Cleaner Air: A Smart Investment Isabelle Silverman, Attorney Environmental

Cleaner Energy -- Cleaner Air: A Smart Investment Isabelle Silverman, Attorney Environmental Defense Fund Dirty Heating Oil Power Generation with Fossil Fuels Trucks, buses and cars In New York City, 79% of greenhouse gas emissions come

436 views • 25 slides
Proof Assistant Isabelle Boy Boshoven Radboud University Nijmegen June 16, 2010 Boy Boshoven

Proof Assistant Isabelle Boy Boshoven Radboud University Nijmegen June 16, 2010 Boy Boshoven

Proof Assistant Isabelle Boy Boshoven Radboud University Nijmegen June 16, 2010 Boy Boshoven Founders Larry Paulson, University of Cambridge (UK) Tobias Nipkow, Technische Universit at M unchen (Germany) Boy Boshoven Variants

597 views • 6 slides
Computer Supported Modeling and Reasoning David Basin, Achim D. Brucker, Jan-Georg Smaus, and

Computer Supported Modeling and Reasoning David Basin, Achim D. Brucker, Jan-Georg Smaus, and

Computer Supported Modeling and Reasoning David Basin, Achim D. Brucker, Jan-Georg Smaus, and Burkhart Wolff April 2005 http://www.infsec.ethz.ch/education/permanent/csmr/ Isabelle: Automation by Proof Search Burkhart Wolff Isabelle:

571 views • 46 slides
Isabelle/UTP: A mechanised theory engineering framework Simon Foster Frank Zeyda Jim Woodcock

Isabelle/UTP: A mechanised theory engineering framework Simon Foster Frank Zeyda Jim Woodcock

Isabelle/UTP: A mechanised theory engineering framework Simon Foster Frank Zeyda Jim Woodcock University of York June 3, 2014 1 Outline Introduction Parametric Predicate Model Harnessing Isabelle typing Proof by Transfer Verification in

543 views • 36 slides
Document-oriented Prover Interaction with Isabelle/PIDE Makarius Wenzel Univ. Paris-Sud,

Document-oriented Prover Interaction with Isabelle/PIDE Makarius Wenzel Univ. Paris-Sud,

Document-oriented Prover Interaction with Isabelle/PIDE Makarius Wenzel Univ. Paris-Sud, Laboratoire LRI December 2013 Project Paral-ITP ANR-11-INSE-001 Abstract LCF-style proof assistants like Coq, HOL, and Isabelle have been traditionally

500 views • 35 slides
Proof Pearl: A New Foundation for Nominal Isabelle r

Proof Pearl: A New Foundation for Nominal Isabelle r

Proof Pearl: A New Foundation for Nominal Isabelle r rst r r

615 views • 43 slides
A Formalised Proof of Craigs Interpolation Theorem in Nominal Isabelle Peter Chapman Peter

A Formalised Proof of Craigs Interpolation Theorem in Nominal Isabelle Peter Chapman Peter

Introduction Craigs Theorem Formal Proof Further Work A Formalised Proof of Craigs Interpolation Theorem in Nominal Isabelle Peter Chapman Peter Chapman M unchen Talk Introduction Craigs Theorem Formal Proof Further Work

621 views • 59 slides
Smart search: a practical facet of theoretical mathematics Mikhail Volkov Ural Federal

Smart search: a practical facet of theoretical mathematics Mikhail Volkov Ural Federal

Smart search: a practical facet of theoretical mathematics Mikhail Volkov Ural Federal University, Ekaterinburg, Russia Where am I from? Part I: Smart Search A typical search problem (Data Mining): A huge data base Strict time limit

1.04k views • 82 slides
HOL C ONTENT Intro & motivation, getting started with Isabelle Foundations &

HOL C ONTENT Intro & motivation, getting started with Isabelle Foundations &

L AST T IME ON HOL Proof rules for propositional and predicate logic Safe and unsafe rules NICTA Advanced Course Forward Proof Theorem Proving The Epsilon Operator Slide 1 Slide 3 Principles, Techniques, Applications Some

292 views • 7 slides
CSC 7101: Programming Language Structures 1 Specification Language Should be high-level

CSC 7101: Programming Language Structures 1 Specification Language Should be high-level

Operational Semantics Winskel, Ch. 2 Slonneger and Kurtz Ch 8.4, 8.5, 8.6 1 Operational vs. Axiomatic Axiomatic semantics Describes properties of program state, using first-order logic Concerned with constructing proofs for

263 views • 10 slides
The K Framework and a Formal Semantics of C Chucky Ellison Traian Florin S , erb anut , a

The K Framework and a Formal Semantics of C Chucky Ellison Traian Florin S , erb anut , a

The K Framework Semantics of C The K Framework and a Formal Semantics of C Chucky Ellison Traian Florin S , erb anut , a Grigore Ros , u University of Illinois MVD10 September 17, 2010 MVD10 Chucky Ellison The K Framework and

576 views • 35 slides
Functional TDD with F# Mark Seemann http://blog.ploeh.dk @ploeh TDD is dead!

Functional TDD with F# Mark Seemann http://blog.ploeh.dk @ploeh TDD is dead!

Look, no Mocks! Functional TDD with F# Mark Seemann http://blog.ploeh.dk @ploeh TDD is dead! http://david.heinemeierhansson.com/2014/tdd-is-dead-long-live-testing.html Is TDD dead? A system you cant test Detestable

656 views • 63 slides
Improved Key Recovery Attacks on Reduced-Round AES on Reduced-Round AES with Practical Data and

Improved Key Recovery Attacks on Reduced-Round AES on Reduced-Round AES with Practical Data and

Improved Key Recovery Attacks on Reduced-Round AES on Reduced-Round AES with Practical Data and Memory Complexities Orr Dunkelman Achiya Bar-On Eyal Ronen Nathan Keller Adi Shamir AES AES is the best known and most widely used secret

863 views • 58 slides
Overview IMP Schedule Update Chapter 5: Development Program Chapter 4: Urban Design

Overview IMP Schedule Update Chapter 5: Development Program Chapter 4: Urban Design

I NSTITUTIONAL M ASTER P LAN C OMMUNITY T ASK F ORCE M EETING A UGUST 27, 2012 Boston University 0 Overview IMP Schedule Update Chapter 5: Development Program Chapter 4: Urban Design Chapter 10: Economic Impact Institutional

707 views • 36 slides
Fe-based superconductors: role of the magnetic impurities Maxim M. Korshunov L.V. Kirensky

Fe-based superconductors: role of the magnetic impurities Maxim M. Korshunov L.V. Kirensky

Fe-based superconductors: role of the magnetic impurities Maxim M. Korshunov L.V. Kirensky Institute of Physics, Krasnoyarsk, Russia In collaboration with Oleg Dolgov (MPI FKF Stuttgart) Alexander Golubov (University of Twente) Dima

362 views • 13 slides
Core War Virtual Machines, Viruses, and Defense Against the Dark Arts Philip W. L. Fong

Core War Virtual Machines, Viruses, and Defense Against the Dark Arts Philip W. L. Fong

Core War Virtual Machines, Viruses, and Defense Against the Dark Arts Philip W. L. Fong pwlfong@cs.uregina.ca Department of Computer Science University of Regina Regina, Saskatchewan, Canada S4S 0A2 Overview 1. Core War The Game 2.

867 views • 35 slides
Exercise 10: Importance biasing FLUKA Beginners Course Exercise 10: Importance biasing Aim of

Exercise 10: Importance biasing FLUKA Beginners Course Exercise 10: Importance biasing Aim of

Exercise 10: Importance biasing FLUKA Beginners Course Exercise 10: Importance biasing Aim of the exercise: 1- Discover biasing power 2- Experience region importance 3- Use of cylindrical mesh USRBIN 4- Plot USRBIN in the Geometry Editor

746 views • 8 slides

More recommend