craig interpolation for integer arithmetic uninterpreted
play

Craig Interpolation for Integer Arithmetic, Uninterpreted - PowerPoint PPT Presentation

Nov 05, 2022 •474 likes •989 views

Craig Interpolation for Integer Arithmetic, Uninterpreted Functions, and the Theory of Arrays Angelo Brillout 1 Daniel Kroening 2 ome Leroux 3 J er ummer 4 Thomas Wahl 2 Philipp R 1 ETH Zurich 2 University of Oxford 3 Laboratoire

  1. Craig Interpolation for Integer Arithmetic, Uninterpreted Functions, and the Theory of Arrays Angelo Brillout 1 Daniel Kroening 2 ome Leroux 3 J´ erˆ ummer 4 Thomas Wahl 2 Philipp R¨ 1 ETH Zurich 2 University of Oxford 3 Laboratoire Bordelais de Recherche en Informatique 4 Uppsala University SVARM, April 2nd, 2011 1 / 25

  2. Motivation: inference of invariants Generic verification problem (“safety”) { pre } while (*) Body { post } Standard approach: loop rule using invariant pre ⇒ φ φ ⇒ post { φ } Body { φ } { pre } while (*) Body { post } How to compute φ automatically? 2 / 25

  3. ✦ From intermediate assertions to invariants { pre } Body ; Body { post } ? Bounded model checking problem ✦ Compute intermediate assertion ψ 1 { pre } Body { ψ 1 } { ψ 1 } Body { post } [McMillan, 2003] 3 / 25

  4. From intermediate assertions to invariants { pre } Body ; Body { post } ? Bounded model checking problem ✦ Compute intermediate assertion ψ 1 { pre } Body { ψ 1 } { ψ 1 } Body { post } [ ψ 1 ⇒ pre ] pre is invariant ✦ [McMillan, 2003] 3 / 25

  5. From intermediate assertions to invariants { pre } Body ; Body { post } ? Bounded model checking problem ✦ Compute intermediate assertion ψ 1 { pre } Body { ψ 1 } { ψ 1 } Body { post } [ ψ 1 ⇒ pre ] [otherwise] pre is invariant ✦ [McMillan, 2003] 3 / 25

  6. From intermediate assertions to invariants { pre ∨ ψ 1 } Body ; Body { post } ? Bounded model checking problem ✦ Compute intermediate assertion ψ 2 { pre ∨ ψ 1 } Body { ψ 2 } { ψ 2 } Body { post } [ ψ 1 ⇒ pre ] [otherwise] pre is invariant ✦ [McMillan, 2003] 3 / 25

  7. From intermediate assertions to invariants { pre ∨ ψ 1 } Body ; Body { post } ? Bounded model checking problem ✦ Compute intermediate assertion ψ 2 { pre ∨ ψ 1 } Body { ψ 2 } { ψ 2 } Body { post } [ ψ 2 ⇒ pre ∨ ψ 1 ] [otherwise] pre ∨ ψ 1 is invariant ✦ [McMillan, 2003] 3 / 25

  8. From intermediate assertions to invariants { pre ∨ ψ 1 } Body ; Body { post } ? Bounded model checking problem ✦ Compute intermediate assertion ψ 2 { pre ∨ ψ 1 } Body { ψ 2 } { ψ 2 } Body { post } . . . [ ψ 2 ⇒ pre ∨ ψ 1 ] pre ∨ ψ 1 is invariant ✦ [McMillan, 2003] 3 / 25

  9. ❼ ❼ How to compute intermediate assertions? VC generation pre ( s 0 ) { pre } → Body ( s 0 , s 1 ) Body; → Body ( s 1 , s 2 ) Body → post ( s 2 ) { post } 4 / 25

  10. How to compute intermediate assertions? VC generation pre ( s 0 ) { pre } → Body ( s 0 , s 1 ) Body; → Body ( s 1 , s 2 ) Body → post ( s 2 ) { post } Theorem (Craig, 1957) Suppose A ⇒ C is a valid implication. Then there is a formula I (an interpolant) such that ❼ A ⇒ I and I ⇒ C are valid, ❼ every non-logical symbol of I occurs in both A and C. 4 / 25

  11. How to compute intermediate assertions? VC generation A ( s 0 , s 1 ) { pre } pre ( s 0 ) → Body ( s 0 , s 1 ) Body; I ( s 1 ) → Body ( s 1 , s 2 ) Body { post } → post ( s 2 ) C ( s 1 , s 2 ) Theorem (Craig, 1957) Suppose A ⇒ C is a valid implication. Then there is a formula I (an interpolant) such that ❼ A ⇒ I and I ⇒ C are valid, ❼ every non-logical symbol of I occurs in both A and C. 4 / 25

  12. How to compute intermediate assertions? VC generation A ( s 0 , s 1 ) { pre } pre ( s 0 ) → Body ( s 0 , s 1 ) Body; I ( s 1 ) → Body ( s 1 , s 2 ) Body { post } → post ( s 2 ) C ( s 1 , s 2 ) Theorem (Craig, 1957) Suppose A ⇒ C is a valid implication. Then there is a formula I (an interpolant) such that ❼ A ⇒ I and I ⇒ C are valid, ❼ every non-logical symbol of I occurs in both A and C. Interpolant I can be computed from proofs of A ⇒ C 4 / 25

  13. Interpolation + theories Interpolation procedures need to support the program logic: i n t a [ ] , i ; max = a [ 0 ] ; f o r ( i = 1; i < n ; ++i ) i f ( a [ i ] > max) max = a [ i ] ; a s s e r t (max > = a [ i / 2 ] ) ; E.g., combined use of linear integer arithmetic and arrays 5 / 25

  14. Theories investigated by us ❼ Quantifier-free Presburger Arithmetic (PA) [IJCAR, 2010] (linear integer arithmetic) [LPAR, 2010] + ❼ Quantifiers (Q) [VERIFY, 2010] [VMCAI, 2011] ❼ Uninterpreted predicates (UP) ❼ Uninterpreted functions (UF) ❼ Arrays (AR) 6 / 25

  15. Theories investigated by us ❼ Quantifier-free Presburger Arithmetic (PA) [IJCAR, 2010] (linear integer arithmetic) [LPAR, 2010] + ❼ Quantifiers (Q) [VERIFY, 2010] [VMCAI, 2011] ❼ Uninterpreted predicates (UP) ❼ Uninterpreted functions (UF) ❼ Arrays (AR) 6 / 25

  16. Interpolation outline Implication A ⇒ C Theorem prover Model Proof of A ⇒ C Proof lifting Interpolating proof of A ⇒ C Craig interpolant A ⇒ I ⇒ C 7 / 25

  17. Interpolation outline Implication A ⇒ C Theorem prover Model Proof of A ⇒ C Proof lifting Interpolating proof of A ⇒ C Craig interpolant A ⇒ I ⇒ C 7 / 25

  18. Underlying calculus for Presburger Arithmetic ❼ Gentzen-style sequent calculus for PA [LPAR, 2008] Calculus rules Possible procedures Linear combination, Omega eq. elimination, Equalities fresh constants Smith decomposition Omega test, Linear combination, Simplex + Gomory cuts Inequalities rounding, ineq. splitting + branch-and-bound Standard Gentzen propositional rules Prop. logic 8 / 25

  19. Interpolation outline QFPA implication A ⇒ C Theorem prover Model Proof of A ⇒ C Proof lifting Interpolating proof of A ⇒ C Craig interpolant A ⇒ I ⇒ C 9 / 25

  20. Basic idea of proof lifting Interpolation problem: A ⇒ I ⇒ C ∗ . . . . Γ 3 ⊢ ∆ 3 Γ 2 ⊢ ∆ 2 Γ 1 ⊢ ∆ 1 . . . . A ⊢ C 10 / 25

  21. Basic idea of proof lifting Interpolation problem: A ⇒ I ⇒ C ∗ . . . . Γ 3 ⊢ ∆ 3 � Γ 2 ⊢ ∆ 2 annotation of � � Γ 1 ⊢ ∆ 1 � formulae with labels . � . . . A ⊢ C 10 / 25

  22. Basic idea of proof lifting A ⇒ I ⇒ C Interpolation problem: ∗ . . . . Γ 3 ⊢ ∆ 3 � Γ 2 ⊢ ∆ 2 annotation of � � Γ 1 ⊢ ∆ 1 � formulae with labels . . � . . ⌊ A ⌋ L ⊢ ⌊ C ⌋ R 10 / 25

  23. Basic idea of proof lifting Interpolation problem: A ⇒ I ⇒ C ∗ . . . . Γ 3 ⊢ ∆ 3 Γ 2 ⊢ ∆ 2 � annotation of � � 1 ⊢ ∆ ∗ Γ ∗ � formulae with labels . 1 . � . . ⌊ A ⌋ L ⊢ ⌊ C ⌋ R 10 / 25

  24. Basic idea of proof lifting Interpolation problem: A ⇒ I ⇒ C ∗ . . . . Γ 3 ⊢ ∆ 3 Γ ∗ 2 ⊢ ∆ ∗ � 2 annotation of � � 1 ⊢ ∆ ∗ Γ ∗ � formulae with labels 1 . � . . . ⌊ A ⌋ L ⊢ ⌊ C ⌋ R 10 / 25

  25. Basic idea of proof lifting Interpolation problem: A ⇒ I ⇒ C ∗ . . . . Γ ∗ 3 ⊢ ∆ ∗ 3 Γ ∗ 2 ⊢ ∆ ∗ � 2 annotation of � � Γ ∗ 1 ⊢ ∆ ∗ � 1 formulae with labels . � . . . ⌊ A ⌋ L ⊢ ⌊ C ⌋ R 10 / 25

  26. Basic idea of proof lifting Interpolation problem: A ⇒ I ⇒ C ∗ . . . . Γ ∗ 3 ⊢ ∆ ∗ 3 Γ ∗ 2 ⊢ ∆ ∗ � � 2 annotation of propagation of � � � � Γ ∗ 1 ⊢ ∆ ∗ � � 1 formulae with labels . interpolants � . � . . ⌊ A ⌋ L ⊢ ⌊ C ⌋ R 10 / 25

  27. Basic idea of proof lifting Interpolation problem: A ⇒ I ⇒ C ∗ . . . . Γ ∗ 3 ⊢ ∆ ∗ 3 ▸ I 3 Γ ∗ 2 ⊢ ∆ ∗ � � 2 annotation of propagation of � � � � Γ ∗ 1 ⊢ ∆ ∗ � � 1 formulae with labels . interpolants � . � . . ⌊ A ⌋ L ⊢ ⌊ C ⌋ R 10 / 25

  28. Basic idea of proof lifting Interpolation problem: A ⇒ I ⇒ C ∗ . . . . Γ ∗ 3 ⊢ ∆ ∗ 3 ▸ I 3 Γ ∗ 2 ⊢ ∆ ∗ 2 ▸ I 2 � � annotation of propagation of � � � � Γ ∗ 1 ⊢ ∆ ∗ � � 1 formulae with labels . interpolants � . � . . ⌊ A ⌋ L ⊢ ⌊ C ⌋ R 10 / 25

  29. Basic idea of proof lifting Interpolation problem: A ⇒ I ⇒ C ∗ . . . . Γ ∗ 3 ⊢ ∆ ∗ 3 ▸ I 3 Γ ∗ 2 ⊢ ∆ ∗ 2 ▸ I 2 � � annotation of propagation of � � � � Γ ∗ 1 ⊢ ∆ ∗ 1 ▸ I 1 � � formulae with labels . interpolants � . � . . ⌊ A ⌋ L ⊢ ⌊ C ⌋ R 10 / 25

  30. Basic idea of proof lifting Interpolation problem: A ⇒ I ⇒ C ∗ . . . . Γ ∗ 3 ⊢ ∆ ∗ 3 ▸ I 3 Γ ∗ 2 ⊢ ∆ ∗ 2 ▸ I 2 � � annotation of propagation of � � � � Γ ∗ 1 ⊢ ∆ ∗ 1 ▸ I 1 � � formulae with labels . interpolants � . � . . ⌊ A ⌋ L ⊢ ⌊ C ⌋ R ▸ I 10 / 25

  31. Properties of the interpolating calculus Lemma (Soundness) The annotation at the root of a closed proof is a valid interpolant. Lemma (Completeness) Every proof can be lifted to an interpolating proof. This implies: completeness for PA. Generality Applicable to various procedures: ❼ Simplex + cuts (cf. [Griggio, Le, Sebastiani, 2011]) ❼ Omega test 11 / 25

  32. Properties of the interpolating calculus Lemma (Soundness) The annotation at the root of a closed proof is a valid interpolant. Lemma (Completeness) Every proof can be lifted to an interpolating proof. This implies: completeness for PA. Generality Applicable to various procedures: ❼ Simplex + cuts (cf. [Griggio, Le, Sebastiani, 2011]) ❼ Omega test Can be generalised to further theories . . . 11 / 25

Recommend

First-Order Interpolation Laura Kov acs Interpolation: Craig Interpolation Use of

First-Order Interpolation Laura Kov acs Interpolation: Craig Interpolation Use of

First-Order Interpolation Laura Kov acs Interpolation: Craig Interpolation Use of interpolation in software verification thanks to K. McMillan Interpolation: Craig Interpolation Use of interpolation in software verification

1.18k views • 114 slides
Craig interpolation in displayable logics James Brotherston 1 and Rajeev Gor e 2 1 Imperial

Craig interpolation in displayable logics James Brotherston 1 and Rajeev Gor e 2 1 Imperial

Craig interpolation in displayable logics James Brotherston 1 and Rajeev Gor e 2 1 Imperial College London 2 ANU Canberra TABLEAUX, Universit at Bern, 7 Jul 2011 1/ 14 Craig interpolation Definition A (propositional) logic satisfies Craig

804 views • 52 slides
Quantifier elimination, amalgamation, deductive interpolation and Craig interpolation in

Quantifier elimination, amalgamation, deductive interpolation and Craig interpolation in

Quantifier elimination, amalgamation, deductive interpolation and Craig interpolation in many-valued logic Franco Montagna, first part in collaboration with Tommaso Cortonesi and Enrico Marchioni Definition . A logic L has the deductive

380 views • 19 slides
D3: Arithmetic Issues #3: Arithm ithmetic tic Iss ssue ues Integer overflow and integer

D3: Arithmetic Issues #3: Arithm ithmetic tic Iss ssue ues Integer overflow and integer

D3: Arithmetic Issues #3: Arithm ithmetic tic Iss ssue ues Integer overflow and integer underflow Unsigned vs signed integer confusion Turns many benign-seeming codepaths into vectors for theft or denial of service. Loss :

435 views • 11 slides
Integer Representation Representation of integers: unsigned and signed Modular arithmetic and

Integer Representation Representation of integers: unsigned and signed Modular arithmetic and

Wellesley CS 240 Integer Representation Representation of integers: unsigned and signed Modular arithmetic and overflow Sign extension Shifting and arithmetic Multiplication Casting 1 Fixed-width integer encodings Unsigned non-negative

475 views • 24 slides
Tree Interpolation in Vampire R egis Blanc (EPFL) Ashutosh Gupta (IST Austria) Laura Kov

Tree Interpolation in Vampire R egis Blanc (EPFL) Ashutosh Gupta (IST Austria) Laura Kov

Tree Interpolation in Vampire R egis Blanc (EPFL) Ashutosh Gupta (IST Austria) Laura Kov acs (Chalmers) Bernhard Kragl (TU Vienna) Interpolation Craig/Binary Interpolant A B I 2 / 11 Interpolation Craig/Binary

825 views • 47 slides
Some Basics Use integer arithmetic as much as possible. When using floating-point

Some Basics Use integer arithmetic as much as possible. When using floating-point

CPSC 3200 Practical Problem Solving University of Lethbridge Some Basics Use integer arithmetic as much as possible. When using floating-point variables, compare by fabs(a-b) &lt; EPS . Use some small EPS (e.g. 1e-8 ).

442 views • 16 slides
Meshes of Trees (MoT) and Applications in Integer Arithmetic Panagiotis Voulgaris Petros Mol

Meshes of Trees (MoT) and Applications in Integer Arithmetic Panagiotis Voulgaris Petros Mol

Meshes of Trees (MoT) and Applications in Integer Arithmetic Panagiotis Voulgaris Petros Mol Course: Parallel Algorithms 1 Outline of the talk The two-Dimensional Mesh of Trees Definitions Properties Variations Integer

445 views • 19 slides
Lossless or Quantized Boosting with Integer Arithmetic Richard Nock Robert C. Williamson

Lossless or Quantized Boosting with Integer Arithmetic Richard Nock Robert C. Williamson

Lossless or Quantized Boosting with Integer Arithmetic Richard Nock Robert C. Williamson The big picture Many constraints in today-ML (e.g. for privacy, at-the-edge, distributed or deep) generic : integer encoding,

467 views • 8 slides
Beyond Quantifier-Free Interpolation in Extensions of Presburger Arithmetic Angelo Brillout, 1

Beyond Quantifier-Free Interpolation in Extensions of Presburger Arithmetic Angelo Brillout, 1

Beyond Quantifier-Free Interpolation in Extensions of Presburger Arithmetic Angelo Brillout, 1 Daniel Kroening, 2 ummer, 3 Thomas Wahl 2 Philipp R 1 ETH Zurich 2 Oxford University 3 Uppsala University Deduction at Scale, March 10th, 2011 1 /

499 views • 33 slides
lecture 7 Integer multiplication (grade school) How to do (unsigned) integer multiplication in

lecture 7 Integer multiplication (grade school) How to do (unsigned) integer multiplication in

lecture 7 Integer multiplication (grade school) How to do (unsigned) integer multiplication in binary ? Sequential circuits 3 multiplicand - integer multiplication and division multiplier - floating point arithmetic product - finite

183 views • 3 slides
Integer Factorization Methods Modular Trial division, Pollards p 1 , Arithmetic Division

Integer Factorization Methods Modular Trial division, Pollards p 1 , Arithmetic Division

Integer Factorization Methods C. Koch Overview Integer Factorization Methods Modular Trial division, Pollards p 1 , Arithmetic Division Algorithm and Congruence Pollards , and Fermats method Residue classes mod n Integers

505 views • 33 slides
Avoiding Full Extension Field Arithmetic in Pairing Computations Craig Costello

Avoiding Full Extension Field Arithmetic in Pairing Computations Craig Costello

Introduction Motivation Miller 2 n -tupling Results Related Work Avoiding Full Extension Field Arithmetic in Pairing Computations Craig Costello craig.costello@qut.edu.au Queensland University of Technology AfricaCrypt 2010 Joint work with

556 views • 26 slides
ME(LIA) - Model Evolution With Linear Integer Arithmetic Constraints Peter Baumgartner NICTA,

ME(LIA) - Model Evolution With Linear Integer Arithmetic Constraints Peter Baumgartner NICTA,

ME(LIA) - Model Evolution With Linear Integer Arithmetic Constraints Peter Baumgartner NICTA, Canberra, Australia Alexander Fuchs, Cesare Tinelli University of Iowa, USA Motivation Proof problems in SW verification often require rich

368 views • 21 slides
Summary of Lecture 4 Integer arithmetic in C. Converting pre-decimal money to decimal.

Summary of Lecture 4 Integer arithmetic in C. Converting pre-decimal money to decimal.

Summary of Lecture 4 Integer arithmetic in C. Converting pre-decimal money to decimal. Computer Programming: Skills &amp; Concepts The int type and its operators. (INF-1-CP1) Numeric variables . Variables; scanf ; Conditional

506 views • 5 slides
Efficient Interpolant Generation in Satisfiability Modulo Linear Integer Arithmetic Alberto

Efficient Interpolant Generation in Satisfiability Modulo Linear Integer Arithmetic Alberto

Deduction at Scale Seminar 2011 Efficient Interpolant Generation in Satisfiability Modulo Linear Integer Arithmetic Alberto Griggio FBK-IRST, Trento joint work with Thi Thieu Hoa Le and Roberto Sebastiani, DISI - Univ. Trento Introduction

767 views • 39 slides
Part II: Interpolation and Approximation theory Contents: Review of Lagrange interpolation

Part II: Interpolation and Approximation theory Contents: Review of Lagrange interpolation

Part II: Interpolation and Approximation theory Contents: Review of Lagrange interpolation polynomials 1 Newton interpolation 2 Optimal interpolation points; Chebyshev polynomials 3 Cubic spline interpolation 4 Error analysis 5 Numerical

1.14k views • 47 slides
Optimizing MPC for robust and scalable integer and floating-point arithmetic Liisi Kerik * Peeter

Optimizing MPC for robust and scalable integer and floating-point arithmetic Liisi Kerik * Peeter

Optimizing MPC for robust and scalable integer and floating-point arithmetic Liisi Kerik * Peeter Laud * Jaak Randmets * * Cybernetica AS University of Tartu, Institute of Computer Science January 30, 2016 Introduction Secure

588 views • 23 slides
3. Interpolation Closing the Gaps of Discretization . . . 3. Interpolation Numerical Programming

3. Interpolation Closing the Gaps of Discretization . . . 3. Interpolation Numerical Programming

Preliminary Remark Interpolation with Polynomials Polynomial Splines Trigonometric Interpolation Examples for Applications 3. Interpolation Closing the Gaps of Discretization . . . 3. Interpolation Numerical Programming I (for CSE),

616 views • 48 slides
Interpolation Using Sequents and Their Generalizations Roman Kuznets Embedded Computing Systems

Interpolation Using Sequents and Their Generalizations Roman Kuznets Embedded Computing Systems

Interpolation Using Sequents and Their Generalizations Roman Kuznets Embedded Computing Systems / Theory and Logic TU Wien PhDs in Logic X May 2, 2018 Roman Kuznets Interpolation using sequents and beyond 1 / 54 Craig Interpolation

652 views • 54 slides
lecture 7 Sequential circuits 3 - integer multiplication and division - floating point

lecture 7 Sequential circuits 3 - integer multiplication and division - floating point

lecture 7 Sequential circuits 3 - integer multiplication and division - floating point arithmetic - finite state machines February 1, 2016 Integer multiplication (grade school) How to do (unsigned) integer multiplication in binary ?

403 views • 24 slides
Decision Procedures An Algorithmic Point of View Equalities and Uninterpreted Functions D.

Decision Procedures An Algorithmic Point of View Equalities and Uninterpreted Functions D.

Decision Procedures An Algorithmic Point of View Equalities and Uninterpreted Functions D. Kroening O. Strichman ETH/Technion Version 1.0, 2007 Part III Equalities and Uninterpreted Functions Outline 1 Introduction to Equality Logic

1.03k views • 90 slides
Unit 2 Integer Operations (Arithmetic, Overflow, Bitwise Logic, Shifting) 2.2 Skills &amp;

Unit 2 Integer Operations (Arithmetic, Overflow, Bitwise Logic, Shifting) 2.2 Skills &amp;

2.1 Unit 2 Integer Operations (Arithmetic, Overflow, Bitwise Logic, Shifting) 2.2 Skills &amp; Outcomes You should know and be able to apply the following skills with confidence Perform addition &amp; subtraction in unsigned &amp; 2's

922 views • 54 slides
Effective Word-Level Interpolation for Software Verification Alberto Griggio FBK-IRST

Effective Word-Level Interpolation for Software Verification Alberto Griggio FBK-IRST

FMCAD 2011 Effective Word-Level Interpolation for Software Verification Alberto Griggio FBK-IRST Motivations Craig interpolation applied succesfully for Formal Verification of both hardware and software Ongoing research (at least for

572 views • 41 slides

More recommend