automatic cyclic termination proofs for recursive
play

Automatic Cyclic Termination Proofs for Recursive Procedures in - PowerPoint PPT Presentation

Jul 07, 2023 •237 likes •815 views

Automatic Cyclic Termination Proofs for Recursive Procedures in Separation Logic Reuben Rowe and James Brotherston University College London TAPAS, Edinburgh, Wednesday 7 th September 2016 Automatically Proving Termination: Challenges proc

  1. Automatic Cyclic Termination Proofs for Recursive Procedures in Separation Logic Reuben Rowe and James Brotherston University College London TAPAS, Edinburgh, Wednesday 7 th September 2016

  2. Automatically Proving Termination: Challenges proc shuffle(x) { if x != nil { y := *x; reverse(y); shuffle(y); } } heap manipulation intermediate procedures recursion 1/11

  3. Automatically Proving Termination: Challenges proc shuffle(x) { if x != nil { y := *x; reverse(y); shuffle(y); } } heap manipulation intermediate procedures recursion 1/11

  4. Automatically Proving Termination: Challenges proc shuffle(x) { if x != nil { y := *x; reverse(y); shuffle(y); } } heap manipulation intermediate procedures recursion 1/11

  5. Automatically Proving Termination: Challenges proc shuffle(x) { if x != nil { y := *x; reverse(y); shuffle(y); } } heap manipulation intermediate procedures recursion 1/11

  6. Automatically Proving Termination: Some Solutions • Mutant, Thor • Julia, Costa, AProVE • Dafny • HipTNT 2/11

  7. Automatically Proving Termination: Some Solutions • Mutant, Thor • Julia, Costa, AProVE • Dafny • HipTNT 2/11

  8. Automatically Proving Termination: Some Solutions • Mutant, Thor • Julia, Costa, AProVE • Dafny • HipTNT 2/11

  9. Automatically Proving Termination: Some Solutions • Mutant, Thor • Julia, Costa, AProVE • Dafny 2/11 • HipTNT +

  10. Automatically Proving Termination using Cyclic Proof . • We use the Cyclist framework for automation (Axiom) • Following the approach of Brotherston Et Al. (POPL ’08) (Inference) . 3/11 . . . . . . • • · • · · • . . . . . · • • • · · · φ ⊢ C

  11. Automatically Proving Termination using Cyclic Proof . • We use the Cyclist framework for automation Separation Logic (Axiom) • Following the approach of Brotherston Et Al. (POPL ’08) (Inference) 3/11 . . . . . . . • • · • · · • . . . . . · • • • · · · φ ⊢ C

  12. Automatically Proving Termination using Cyclic Proof (Inference) • We use the Cyclist framework for automation for data Inductive Predicates Separation Logic (Axiom) • Following the approach of Brotherston Et Al. (POPL ’08) 3/11 . . . . . . . . • • · • · · • . . . . . · • • • · · · φ ⊢ C

  13. Automatically Proving Termination using Cyclic Proof (Inference) • We use the Cyclist framework for automation semantics total correctness for data Inductive Predicates Separation Logic (Axiom) • Following the approach of Brotherston Et Al. (POPL ’08) 3/11 . . . . . . . . • • · • · · • . . . . . · • • • · · · φ ⊢ C

  14. Automatically Proving Termination using Cyclic Proof (Inference) • We use the Cyclist framework for automation semantics total correctness for data Inductive Predicates Separation Logic (Axiom) • Following the approach of Brotherston Et Al. (POPL ’08) 3/11 . . . . . . . . • • · • · · • . . . . . · • • • · · · { φ } C { ψ }

  15. Automatically Proving Termination using Cyclic Proof . • We use the Cyclist framework for automation (Axiom) • Following the approach of Brotherston Et Al. (POPL ’08) (Inference) . 3/11 . . . . . . • • · • · · • . . . . . · • • • · · · { φ } C { ψ }

  16. Advantages of Using Cyclic Proof • Termination measures extracted automatically • Supports compositional reasoning • Naturally encapsulates inductive principles 4/11

  17. Advantages of Using Cyclic Proof • Termination measures extracted automatically • Supports compositional reasoning • Naturally encapsulates inductive principles 4/11

  18. Advantages of Using Cyclic Proof • Termination measures extracted automatically • Supports compositional reasoning • Naturally encapsulates inductive principles 4/11

  19. Ingredients of our Approach: Symbolic Execution C proc ( x ) C) (body proc C (proc): v x := * y ; C y (x fresh) x (free): v x y x v x x (load): 5/11 { φ } C { ψ } { φ ∗ x �→ y } free( x ); C { ψ }

  20. Ingredients of our Approach: Symbolic Execution (free): (load): (proc): C (body proc C) proc ( x ) 5/11 { φ } C { ψ } { φ ∗ x �→ y } free( x ); C { ψ } { x = v [ x ′ / x ] ∧ ( φ ∗ y �→ v )[ x ′ / x ] } C { ψ } (x ′ fresh) { φ ∗ y �→ v } x := * y ; C { ψ }

  21. Ingredients of our Approach: Symbolic Execution (free): (load): (proc): 5/11 { φ } C { ψ } { φ ∗ x �→ y } free( x ); C { ψ } { x = v [ x ′ / x ] ∧ ( φ ∗ y �→ v )[ x ′ / x ] } C { ψ } (x ′ fresh) { φ ∗ y �→ v } x := * y ; C { ψ } { φ } C { ψ } (body ( proc ) = C) { φ } proc ( � x ) { ψ }

  22. Ingredients of our Approach: Inductive Predicates emp C x list C x list y x C nil • We support user-defjned inductive predicates, e.g. x • A logical rule schema allows case split C x list • Explicit approximations used as termination measures, e.g. 6/11 x = nil ∧ emp x �→ y ∗ list ( y ) list ( x ) list ( x )

  23. Ingredients of our Approach: Inductive Predicates C C x list C x list y x emp • We support user-defjned inductive predicates, e.g. nil x • A logical rule schema allows case split • Explicit approximations used as termination measures, e.g. 6/11 x = nil ∧ emp x �→ y ∗ list ( y ) list ( x ) list ( x ) { list α ( x ) ∗ φ } C { ψ }

  24. Ingredients of our Approach: Inductive Predicates • We support user-defjned inductive predicates, e.g. • Explicit approximations used as termination measures, e.g. • A logical rule schema allows case split 6/11 x = nil ∧ emp x �→ y ∗ list ( y ) list ( x ) list ( x ) { list α ( x ) ∗ φ } C { ψ } { ( x = nil ∧ emp ) ∗ φ } C { ψ } { ( β < α ∧ x �→ y ∗ list β ( x )) ∗ φ } C { ψ } { list α ( x ) ∗ φ } C { ψ }

  25. Ingredients of our Approach: Inductive Predicates • We support user-defjned inductive predicates, e.g. • Explicit approximations used as termination measures, e.g. • A logical rule schema allows case split 6/11 x = nil ∧ emp x �→ y ∗ list ( y ) list ( x ) list ( x ) { list α ( x ) ∗ φ } C { ψ } { ( x = nil ∧ emp ) ∗ φ } C { ψ } { ( β < α ∧ x �→ y ∗ list β ( x )) ∗ φ } C { ψ } { list α ( x ) ∗ φ } C { ψ }

  26. A Cyclic Termination Proof for shuffle proc shuffle(x) { if x!=nil { y:=*x; reverse(y); shuffle(y); } } 7/11

  27. A Cyclic Termination Proof for shuffle proc shuffle(x) { if x!=nil { y:=*x; reverse(y); shuffle(y); } } 7/11 · · · { list β ( y ) } reverse(y) { list β ( y ) }

  28. A Cyclic Termination Proof for shuffle proc shuffle(x) { if x!=nil { y:=*x; reverse(y); shuffle(y); } } 7/11 { list α ( x ) } shuffle(x) { list α ( x ) }

  29. A Cyclic Termination Proof for shuffle rev(y); v list v x (load) x list y list list y x (seq) x list shuf(y); y:=*x; x proc shuffle(x) { if x!=nil { y:=*x; reverse(y); shuffle(y); } } x (proc) (if) x list x list nil ) (case list ) ( x list y:=*x; x list nil x y list y list list y list y x rev(y); y y x x frame y list rev(y); y list x shuf(x); list x (conseq) y list y x shuf(y); y list y x (frame) y list shuf(y); y list (subst) 7/11 { list α ( x ) } if x!=nil { y:=*x; reverse(y); shuffle(y); *x:=y; } { list α ( x ) } { list α ( x ) } shuffle(x) { list α ( x ) }

  30. A Cyclic Termination Proof for shuffle rev(y); v list v x (load) x list y list list y x (seq) x list shuf(y); y:=*x; x proc shuffle(x) { if x!=nil { y:=*x; reverse(y); shuffle(y); } } x (proc) (if) x list x list nil ) (case list ) ( x list y:=*x; x list nil x y list y list list y list y x rev(y); y y x x frame y list rev(y); y list x shuf(x); list x (conseq) y list y x shuf(y); y list y x (frame) y list shuf(y); y list (subst) 7/11 { list α ( x ) } if x!=nil . . . { list α ( x ) } { list α ( x ) } shuffle(x) { list α ( x ) }

  31. A Cyclic Termination Proof for shuffle rev(y); y (conseq) x y list y shuf(y); list x (seq) x y list y list y x (load) x v list v y:=*x; list x (case list ) ( ) (if) (proc) proc shuffle(x) { if x!=nil { y:=*x; reverse(y); shuffle(y); } } list x y list y rev(y); list y frame x y list y rev(y); x y shuf(y); list list list y list y x (frame) x y shuf(y); y list (subst) x list shuf(x); 7/11 { x � = nil ∧ list α ( x ) } y:=*x; . . . { list α ( x ) } { x = nil ∧ list α ( x ) } ǫ { list α ( x ) } { list α ( x ) } if x!=nil . . . { list α ( x ) } { list α ( x ) } shuffle(x) { list α ( x ) }

  32. A Cyclic Termination Proof for shuffle list proc shuffle(x) { if x!=nil { y:=*x; reverse(y); shuffle(y); } } y (conseq) x y list y shuf(y); list x (seq) x y y x rev(y); list x (load) x v list v y:=*x; list x (case list ) (if) (proc) y list shuf(y); y list y rev(y); list y frame x y list y rev(y); x y list y list list list y x x y (frame) shuf(y); y list (subst) x list shuf(x); 7/11 ( | = ) { x � = nil ∧ list α ( x ) } y:=*x; . . . { list α ( x ) } { x = nil ∧ list α ( x ) } ǫ { list α ( x ) } { list α ( x ) } if x!=nil . . . { list α ( x ) } { list α ( x ) } shuffle(x) { list α ( x ) }

Recommend

Automatic Cyclic Termination Proofs for Recursive Procedures in Separation Logic Reuben Rowe,

Automatic Cyclic Termination Proofs for Recursive Procedures in Separation Logic Reuben Rowe,

Automatic Cyclic Termination Proofs for Recursive Procedures in Separation Logic Reuben Rowe, University of Kent, Canterbury James Brotherston, University College London CPP, Paris, France Monday 16 th January 2017 Automatically Proving

741 views • 70 slides
Cyclic Proofs of Program Termination in Separation Logic James Brotherston 1 , Richard Bornat

Cyclic Proofs of Program Termination in Separation Logic James Brotherston 1 , Richard Bornat

Cyclic Proofs of Program Termination in Separation Logic James Brotherston 1 , Richard Bornat 2 , and Cristiano Calcagno 1 1 Imperial College, London 2 Middlesex University, London Me 10 January, 2008 Overview We give a new method for

373 views • 11 slides
An Introduction to Cyclic Proofs (part II) James Brotherston University College London PARIS

An Introduction to Cyclic Proofs (part II) James Brotherston University College London PARIS

An Introduction to Cyclic Proofs (part II) James Brotherston University College London PARIS workshop, FLoC, Oxford, 8th July 2018 1/ 13 Cyclic proofs Cyclic pre-proofs are derivation trees with backlinks: (Axiom)

142 views • 13 slides
Types of Termination Mutual With Consent Termination Automatic Termination

Types of Termination Mutual With Consent Termination Automatic Termination

Types of Termination Mutual With Consent Termination Automatic Termination Termination Termination for Convenience Without Consent Frustration /Force Majeure Contractual Breach Breach Common Law Breach

444 views • 29 slides
An Introduction to Cyclic Proofs James Brotherston University College London PARIS workshop,

An Introduction to Cyclic Proofs James Brotherston University College London PARIS workshop,

An Introduction to Cyclic Proofs James Brotherston University College London PARIS workshop, FLoC, Oxford, 7th July 2018 1/ 21 Cyclic pre-proofs A cyclic pre-proof is a derivation tree with a backlink from each open leaf (bud) to an

818 views • 62 slides
Cyclic abduction of inductive safety &amp; termination preconditions James Brotherston

Cyclic abduction of inductive safety &amp; termination preconditions James Brotherston

Cyclic abduction of inductive safety &amp; termination preconditions James Brotherston University College London LIX Colloquium, Tues 5 Nov 2013 Joint work with Nikos Gorogiannis (Middlesex) 1/ 27 Part I Introduction and motivations 2/ 27

1.54k views • 122 slides
Direct construction of quasi-involutory recursive-like MDS matrices from 2 -cyclic codes Cauchois

Direct construction of quasi-involutory recursive-like MDS matrices from 2 -cyclic codes Cauchois

Involutory recursive MDS matrices Quasi-involutory recursive-like MDS matrices Implementations Direct construction of quasi-involutory recursive-like MDS matrices from 2 -cyclic codes Cauchois Victor 1 Loidreau Pierre 1 Merkiche Nabil 23 1 DGA-MI

540 views • 25 slides
Decision Procedures for Automating Termination Proofs Ruzica Piskac, EPFL Thomas Wies, IST

Decision Procedures for Automating Termination Proofs Ruzica Piskac, EPFL Thomas Wies, IST

Decision Procedures for Automating Termination Proofs Ruzica Piskac, EPFL Thomas Wies, IST Austria Proving Program Termination assum sume x &gt; 0 le x 0 do while do y := 1 while y &lt; x do do y := 2 y end x := x 1 end Ranking

489 views • 28 slides
Encoding Induction in Correctness Proofs of Program Transformations as a Termination Problem

Encoding Induction in Correctness Proofs of Program Transformations as a Termination Problem

Encoding Induction in Correctness Proofs of Program Transformations as a Termination Problem Conrad Rau, David Sabel and Manfred Schmidt-Schau Goethe-University, Frankfurt am Main, Germany WST 2012, Obergurgl, Austria 1 Introduction

307 views • 26 slides
Week 9 Difference Equations Discrete Math April 23, 2020 Marie Demlova: Discrete Math Cyclic

Week 9 Difference Equations Discrete Math April 23, 2020 Marie Demlova: Discrete Math Cyclic

Cyclic groups Difference Equations, Recursive Equations Week 9 Difference Equations Discrete Math April 23, 2020 Marie Demlova: Discrete Math Cyclic groups Subgroups of a Finite Cyclic Group Difference Equations, Recursive Equations Cyclic

405 views • 13 slides
Foundations of Computer Science Lecture 8 Proofs with Recursive Objects Structural Induction:

Foundations of Computer Science Lecture 8 Proofs with Recursive Objects Structural Induction:

Foundations of Computer Science Lecture 8 Proofs with Recursive Objects Structural Induction: Induction on Recursively Defined Objects Proving an object is not in a recursive set Examples: sets, sequences, trees Last Time 1 Recursion. 2

169 views • 15 slides
Equivalence of Inductive Definitions and Cyclic Proofs under Arithmetic Makoto Tatsuta (National

Equivalence of Inductive Definitions and Cyclic Proofs under Arithmetic Makoto Tatsuta (National

Equivalence of Inductive Definitions and Cyclic Proofs under Arithmetic Makoto Tatsuta (National Institute of Informatics) joint work with: Stefano Berardi (Torino University) MLA 2018 Kanazawa, Japan March 59, 2018 1 Introduction

590 views • 15 slides
Foundations of Computer Science Last Time Lecture 8 Proofs with Recursive Objects Structural

Foundations of Computer Science Last Time Lecture 8 Proofs with Recursive Objects Structural

Foundations of Computer Science Last Time Lecture 8 Proofs with Recursive Objects Structural Induction: Induction on Recursively Defined Objects Proving an object is not in a recursive set Examples: sets, sequences, trees 1 Recursion. 2

627 views • 4 slides
Automatic Proofs for Symmetric Encryption Modes e 2 Pascal Lafourcade 1 Yassine Lakhnech 1 Martin

Automatic Proofs for Symmetric Encryption Modes e 2 Pascal Lafourcade 1 Yassine Lakhnech 1 Martin

Automatic Proofs for Symmetric Encryption Modes Automatic Proofs for Symmetric Encryption Modes e 2 Pascal Lafourcade 1 Yassine Lakhnech 1 Martin Gagn Reihaneh Safavi-Naini 2 1 Universit e Grenoble 1, CNRS, Verimag , FRANCE 2 Department of

538 views • 29 slides
Automatic Early Termination under the ISDA, the GMRA, the GMSLA and the EMA: issues and

Automatic Early Termination under the ISDA, the GMRA, the GMSLA and the EMA: issues and

EFMLG Symposium on Standard Market Documentation Automatic Early Termination under the ISDA, the GMRA, the GMSLA and the EMA: issues and perspectives Mario Fiorenzo Bona London, September 15, 2009 Current status: ISDA ISDA Master

132 views • 12 slides
Combinatorial and colorful proofs of cyclic sieving phenomena Bruce Sagan Michigan State

Combinatorial and colorful proofs of cyclic sieving phenomena Bruce Sagan Michigan State

Combinatorial and colorful proofs of cyclic sieving phenomena Bruce Sagan Michigan State University and the National Science Foundation www.math.msu.edu/ sagan and Yuval Roichman Bar Ilan University September 22, 2010 Definitions and an

1.27k views • 101 slides
Mechanized Proofs for a Recursive Authentication Protocol Lawrence C. Paulson Computer

Mechanized Proofs for a Recursive Authentication Protocol Lawrence C. Paulson Computer

Recursive Authentication Protocol 1 L. C. Paulson Mechanized Proofs for a Recursive Authentication Protocol Lawrence C. Paulson Computer Laboratory University of Cambridge Recursive Authentication Protocol 2 L. C. Paulson Overview of the

363 views • 20 slides
Efficient Validation of FOL ID Cyclic Induction Reasoning VeriDis + MATRYOSHKA Workshop, Amsterdam

Efficient Validation of FOL ID Cyclic Induction Reasoning VeriDis + MATRYOSHKA Workshop, Amsterdam

Efficient Validation of FOL ID Cyclic Induction Reasoning VeriDis + MATRYOSHKA Workshop, Amsterdam June 12, 2019 Sorin Stratulat INRIA, Universit de Lorraine Motivation soundness checking of cyclic pre-proofs in FOL with inductive

675 views • 43 slides
ON THE AUTOMATIC GENERATION OF RECURSIVE ATTITUDE DETERMINATION ALGORITHMS Presented at the AAS

ON THE AUTOMATIC GENERATION OF RECURSIVE ATTITUDE DETERMINATION ALGORITHMS Presented at the AAS

ON THE AUTOMATIC GENERATION OF RECURSIVE ATTITUDE DETERMINATION ALGORITHMS Presented at the AAS GN&amp;C Conference in Breckenridge, CO, on February the 7th, 2017 by Tucker McClure @ An Uncommon Lab WHAT ARE THE GOALS? EXAMINE

775 views • 29 slides
Column:, Intensive Care, Health Care Providers and the Automatic Stay: Is Medicare Termination

Column:, Intensive Care, Health Care Providers and the Automatic Stay: Is Medicare Termination

Column:, Intensive Care, Health Care Providers and the Automatic Stay: Is Medicare Termination Different than Exclusion? November 2006 Reporter 25-9 ABIJ 32 Length: 5612 words Author: Written by: Nathaniel M. Lacktman, Foley &amp; Lardner LLP;

339 views • 8 slides
Formalizing Termination Proofs under Polynomial Quasi-interpretations Naohi Eguchi 1 Chiba

Formalizing Termination Proofs under Polynomial Quasi-interpretations Naohi Eguchi 1 Chiba

Formalizing Termination Proofs under Polynomial Quasi-interpretations Naohi Eguchi 1 Chiba University July 5, 2015, LCC 2015, Kyoto, Japan 1 Supported by Grants-in-Aid for JSPS fellows (No. 25 726 ) Naohi Eguchi (Chiba) Formalizing

565 views • 21 slides
CS 220: Discrete Structures and their Applications Recursive algorithms and induction 6.8 in

CS 220: Discrete Structures and their Applications Recursive algorithms and induction 6.8 in

CS 220: Discrete Structures and their Applications Recursive algorithms and induction 6.8 in zybooks Induction and Recursion Several of the inductive proofs we looked at lead to recursive algorithms: The triomino tiling problem Making

367 views • 9 slides
Automatic Proofs for Symmetric Encryption Modes e 2 Pascal Lafourcade 1 Yassine Lakhnech 1 Martin

Automatic Proofs for Symmetric Encryption Modes e 2 Pascal Lafourcade 1 Yassine Lakhnech 1 Martin

Automatic Proofs for Symmetric Encryption Modes e 2 Pascal Lafourcade 1 Yassine Lakhnech 1 Martin Gagn Reihaneh Safavi-Naini 2 1 Universit e Grenoble 1, CNRS, Verimag , FRANCE 2 Department of Computer Science, University of Calgary, Canada

400 views • 23 slides
Towards Automatic Proofs for Symmetric Encryption Modes e 2 Pascal Lafourcade 1 Yassine Lakhnech 1

Towards Automatic Proofs for Symmetric Encryption Modes e 2 Pascal Lafourcade 1 Yassine Lakhnech 1

Block cipher modes Generic Encryption Mode Our Approach Our Hoare Logic Result Conclusion Towards Automatic Proofs for Symmetric Encryption Modes e 2 Pascal Lafourcade 1 Yassine Lakhnech 1 Martin Gagn Reihaneh Safavi-Naini 2 1 Universit

663 views • 35 slides

More recommend