lecture 8 9 separation logic
play

Lecture 8/9 : Separation Logic Overview Assertion Logic - PowerPoint PPT Presentation

Aug 12, 2023 •241 likes •1.02k views

CS6202: Advanced Topics in Programming Languages and Systems Lecture 8/9 : Separation Logic Overview Assertion Logic Semantic Model Hoare-style Inference Rules Specification and Annotations Linked List and Segments

  1. CS6202: Advanced Topics in Programming Languages and Systems Lecture 8/9 : Separation Logic • Overview • Assertion Logic • Semantic Model • Hoare-style Inference Rules • Specification and Annotations • Linked List and Segments • Trees and Instuitionistic Logic • (above from John Reynold’s mini-course) • Automated Verification CS6202 Separation Logic 1

  2. Motivation Motivation Program reasoning is important for: correctness of software safety (fewer or no bugs) performance guarantee optimization CS6202 Separation Logic 2

  3. Hoare Logic Hoare Logic Can handle reasoning of imperative programs well. Notation : {P} code {Q} {P} precondition before executing code {Q} postcondition after executing code Some examples : {x=1} x:=x+1 {x=2} {x=x 0 } x:=x+1 {x=x 0 +1} {Q[x+1/x]} x:=x+1 {Q} {P} x:=x+1 { � x 1 . P[x 1 /x] � x=x 1 +1} CS6202 Separation Logic 3

  4. Problem Problem Hoare logic can handle program variables but not heap objects well due to aliasing problems. Consider an in-place list reversal algorithm [i] denotes a heap location at address i CS6202 Separation Logic 4

  5. Loop Invariant Loop Invariant Loop invariant is a statement that holds at the beginning of each iteration of the loop. heap predicate relates a list of elements and a pointer CS6202 Separation Logic 5

  6. Loop Invariant Loop Invariant in separation logic : CS6202 Separation Logic 6

  7. Basics of Separation Logic Basics of Separation Logic CS6202 Separation Logic 7

  8. Simple Language with Heap Store Simple Language with Heap Store CS6202 Separation Logic 8

  9. Memory Faults Memory Faults Can be caused by out of range look up of memory. CS6202 Separation Logic 9

  10. Assertion Language Assertion Language CS6202 Separation Logic 10

  11. Semantic Model Semantic Model CS6202 Separation Logic 11

  12. Semantic Model Semantic Model CS6202 Separation Logic 12

  13. Separation Conjunction - - Examples Examples Separation Conjunction CS6202 Separation Logic 13

  14. Conjunction - - Examples Examples Conjunction Conjunction describes the same heap space. CS6202 Separation Logic 14

  15. Separation Implication - - Examples Examples Separation Implication CS6202 Separation Logic 15

  16. Inference Rules Inference Rules Reasoning with normalization, weakening and strengthening. CS6202 Separation Logic 16

  17. Pure Assertion Pure Assertion Axiom schematic guided by pure formulae CS6202 Separation Logic 17

  18. Two Unsound Axiom Schemata Two Unsound Axiom Schemata Structural logic without contraction and weakening. CS6202 Separation Logic 18

  19. Partial Correctness Specification Partial Correctness Specification CS6202 Separation Logic 19

  20. Total Correctness Specification Total Correctness Specification CS6202 Separation Logic 20

  21. Examples of Valid Specifications Examples of Valid Specifications CS6202 Separation Logic 21

  22. Hoare Inference Rules Hoare Inference Rules CS6202 Separation Logic 22

  23. Hoare Inference Rules Hoare Inference Rules Structural rules are applicable to any commands. CS6202 Separation Logic 23

  24. Partial Correctness of While Loop Partial Correctness of While Loop CS6202 Separation Logic 24

  25. Total Correctness of While Loop Total Correctness of While Loop CS6202 Separation Logic 25

  26. Hoare Inference Rules Hoare Inference Rules CS6202 Separation Logic 26

  27. Hoare Inference Rules Hoare Inference Rules CS6202 Separation Logic 27

  28. Annotated Specifications Annotated Specifications In annotated specifications, additional assertions called annotations are placed in command in such a way that it assist proof construction process. Examples : CS6202 Separation Logic 28

  29. Minimal Annotated Specifications Minimal Annotated Specifications Should attempt to minimise annotations where possible. Restrict to pre/post of methods and invariant of loops. Further advances : (i) intraprocedural inference (ii) interprocedural inference. CS6202 Separation Logic 29

  30. Structural Inference Rules Structural Inference Rules CS6202 Separation Logic 30

  31. Structural Inference Rules Structural Inference Rules CS6202 Separation Logic 31

  32. Structural Inference Rules Structural Inference Rules CS6202 Separation Logic 32

  33. Rule of Constancy from Hoare Logic Rule of Constancy from Hoare Logic CS6202 Separation Logic 33

  34. Frame Rule of Separation Logic Frame Rule of Separation Logic This facilitates local reasoning and specification CS6202 Separation Logic 34

  35. Local Specifications Local Specifications CS6202 Separation Logic 35

  36. Inference Rules for Mutation Inference Rules for Mutation CS6202 Separation Logic 36

  37. Inference Rules for Deallocation Deallocation Inference Rules for CS6202 Separation Logic 37

  38. Inference Rules for Noninterfering Noninterfering Allocation Allocation Inference Rules for CS6202 Separation Logic 38

  39. Inference Rules for Lookup Inference Rules for Lookup CS6202 Separation Logic 39

  40. Notation for Sequences Notation for Sequences CS6202 Separation Logic 40

  41. Singly Linked List Singly Linked List What is the default property (invariant) of this predicate? CS6202 Separation Logic 41

  42. Singly Linked List Segment Singly Linked List Segment CS6202 Separation Logic 42

  43. Singly Linked List Segment Singly Linked List Segment Properties CS6202 Separation Logic 43

  44. Non- -Touching Linked List Segment Touching Linked List Segment Non Easier test for emptiness CS6202 Separation Logic 44

  45. Braced List Segment Braced List Segment CS6202 Separation Logic 45

  46. Bornat List List Bornat CS6202 Separation Logic 46

  47. Doubly Linked List Doubly Linked List CS6202 Separation Logic 47

  48. XOR- -Linked List Segment Linked List Segment XOR CS6202 Separation Logic 48

  49. Array Allocation Array Allocation Inference rule : CS6202 Separation Logic 49

  50. Trees Trees CS6202 Separation Logic 50

  51. DAGs DAGs CS6202 Separation Logic 51

  52. Intuitionistic Separation Logic Separation Logic Intuitionistic Supports justification rather than truth. Things that no longer hold include: law of excluded middle (P � � P) double negation ( � � P = P) Pierce’s law (((P � Q) � P) � P) Formulae valid in intuitionistic separation logic but not the classical one. x � 1,y � emp x � 1,y * y � , nil � x � 1,_ CS6202 Separation Logic 52

  53. Intuitionistic Assertion Assertion Intuitionistic CS6202 Separation Logic 53

  54. Inference for Procedures Inference for Procedures CS6202 Separation Logic 54

  55. Copying Tree Copying Tree CS6202 Separation Logic 55

  56. Copying Tree (Proof) Copying Tree (Proof) CS6202 Separation Logic 56

  57. Copying Tree (Proof) Copying Tree (Proof) CS6202 Separation Logic 57

  58. Automated Verification Automated Verification Modular Verification (i) Given pre/post conditions for each method and loop (ii) Determine each postcondition is sound for method body. (iii) Each precondition is satisfied for each call site. Why Verification? (i) can handle more complex examples (ii) can be used to check inference algorithm (iii) grand challenge of verifiable software CS6202 Separation Logic 58

  59. Core Imperative Language Core Imperative Language CS6202 Separation Logic 59

  60. Data Nodes and Notation Data Nodes and Notation CS6202 Separation Logic 60

  61. Shape Predicates Shape Predicates Linked-list with size Double linked-list (right traversal) with size Sorted linked-list with size, min, max CS6202 Separation Logic 61

  62. Insertion Sort Algorithm Insertion Sort Algorithm CS6202 Separation Logic 62

  63. Prime Notation Prime Notation Prime notation is used to capture the latest values of each program variable. This allows a state transition to be expressed since the unprimed form denotes original values. CS6202 Separation Logic 63

  64. Prime Notation Prime Notation Example : {x’=x � y’=y} x:=x+1 {x’=x+1 � y’=y} x:=x+y {x’=x+1+y � y’=y} y:=2 {x’=x+1+y � y’=2} CS6202 Separation Logic 64

  65. Forward Verification Forward Verification Given � 1 , infer � 2 : � { � 1 } e { � 2 } CS6202 Separation Logic 65

  66. Forward Verification Forward Verification CS6202 Separation Logic 66

  67. Separation Constraint Normalization Rules Separation Constraint Normalization Rules Target : CS6202 Separation Logic 67

  68. Separation Constraint Approximation Separation Constraint Approximation XPure n ( � ) returns a sound approximation of the form : non-null symbolic addresses Normalization : CS6202 Separation Logic 68

  69. Translating to Pure Form Translating to Pure Form CS6202 Separation Logic 69

  70. Deriving Shape Invariant Deriving Shape Invariant From each pure invariant, such as (n � 0) for ll<n> We use Inv 1 (..) to obtain a more precise invariant : CS6202 Separation Logic 70

  71. Separation Constraint Entailment Separation Constraint Entailment denotes CS6202 Separation Logic 71

Recommend

Hoare logic separation logic. We looked at the concepts separation logic is based on, the new

Hoare logic separation logic. We looked at the concepts separation logic is based on, the new

Introduction In the previous lecture, we saw how reasoning about pointers in Hoare logic was problematic, which motivated introducing Hoare logic separation logic. We looked at the concepts separation logic is based on, the new assertions that

396 views • 14 slides
Lecture 8/9 : Separation Logic Can handle reasoning of imperative programs well. Overview

Lecture 8/9 : Separation Logic Can handle reasoning of imperative programs well. Overview

CS6202: Advanced Topics in Programming Hoare Logic Hoare Logic Languages and Systems Lecture 8/9 : Separation Logic Can handle reasoning of imperative programs well. Overview Notation : {P} code {Q} Assertion Logic {P}

557 views • 19 slides
Hoare Logic and Model Checking In the previous lecture we saw the informal concepts that

Hoare Logic and Model Checking In the previous lecture we saw the informal concepts that

Introduction Hoare Logic and Model Checking In the previous lecture we saw the informal concepts that Separation Logic is based on. This lecture will Kasper Svendsen University of Cambridge introduce a formal proof system for Separation

740 views • 10 slides
Hoare logic Lecture 5: Introduction to separation logic Jean Pichon-Pharabod University of

Hoare logic Lecture 5: Introduction to separation logic Jean Pichon-Pharabod University of

Hoare logic Lecture 5: Introduction to separation logic Jean Pichon-Pharabod University of Cambridge CST Part II 2017/18 Introduction In the previous lectures, we have considered a language, WHILE , where mutability only concerned program

734 views • 57 slides
Extending propositional separation logic for robustness properties of separation logic Alessio

Extending propositional separation logic for robustness properties of separation logic Alessio

Extending propositional separation logic for robustness properties of separation logic Alessio Mansutti LSV, CNRS, ENS Paris-Saclay Paris - April 2019 What we will see An extension of propositional separation logic that can express some

569 views • 42 slides
Tutorial on separation logic Viktor Vafeiadis Max Planck Institute for Software Systems (MPI-SWS)

Tutorial on separation logic Viktor Vafeiadis Max Planck Institute for Software Systems (MPI-SWS)

Tutorial on separation logic Viktor Vafeiadis Max Planck Institute for Software Systems (MPI-SWS) Dagstuhl, 2015-11-02 Plan for the talk Talk outline Motivation Basic separation logic Concurrent separation logic Frame inference

597 views • 21 slides
Temporary Read-Only Permissions for Separation Logic Making Separation Logics Small Axioms

Temporary Read-Only Permissions for Separation Logic Making Separation Logics Small Axioms

Temporary Read-Only Permissions for Separation Logic Making Separation Logics Small Axioms Smaller Arthur Charguraud Franois Pottier LTP meeting Saclay, November 28, 2016 Motivation More Motivation Separation Logic with Read-Only

441 views • 27 slides
Separation Logic, Abstraction and Inheritance M. Parkinson, G. Bierman, in Proc. POPL , 2008

Separation Logic, Abstraction and Inheritance M. Parkinson, G. Bierman, in Proc. POPL , 2008

Separation Logic, Abstraction and Inheritance M. Parkinson, G. Bierman, in Proc. POPL , 2008 Timothe Martiel Research Topics in Software Engineering 1 / 19 Outline 1 From Separation Logic to Inheritance 2 Beyond Separation Logic 3 What About

553 views • 24 slides
An introduction to separation logic James Brotherston Programming Principles, Logic and

An introduction to separation logic James Brotherston Programming Principles, Logic and

An introduction to separation logic James Brotherston Programming Principles, Logic and Verification Group Dept. of Computer Science University College London, UK J.Brotherston@ucl.ac.uk Logic Summer School, ANU, 7 December 2015 1/ 19

789 views • 63 slides
Internal calculi for Separation Logic ephane Demri 1 Etienne Lozes 2 Alessio Mansutti 1 St

Internal calculi for Separation Logic ephane Demri 1 Etienne Lozes 2 Alessio Mansutti 1 St

Internal calculi for Separation Logic ephane Demri 1 Etienne Lozes 2 Alessio Mansutti 1 St January 14, 2020 1 LSV, CNRS, ENS Paris-Saclay 2 I3S, Universit e C ote dAzur Separation Logic 99 Logic of Bunched Implication ( BI ) [P.

310 views • 27 slides
Undecidability of propositional separation logic and its neighbours James Brotherston 1 and Max

Undecidability of propositional separation logic and its neighbours James Brotherston 1 and Max

Undecidability of propositional separation logic and its neighbours James Brotherston 1 and Max Kanovich 2 1 Imperial College London 2 Queen Mary University of London LICS-25, University of Edinburgh, 12 July 2010 Separation logic (Reynolds,

1.11k views • 31 slides
Biabduction (and Related Problems) in Array Separation Logic James Brotherston 1 Nikos Gorogiannis

Biabduction (and Related Problems) in Array Separation Logic James Brotherston 1 Nikos Gorogiannis

Biabduction (and Related Problems) in Array Separation Logic James Brotherston 1 Nikos Gorogiannis 2 Max Kanovich 1 1 UCL 2 Middlesex University University of Vienna, 14 Mar 2017 1/ 19 Compositional proofs in separation logic (1) Separation

1.14k views • 91 slides
Separation logic and fragments: from expressive power to decision procedures St ephane Demri

Separation logic and fragments: from expressive power to decision procedures St ephane Demri

Separation logic and fragments: from expressive power to decision procedures St ephane Demri CNRS Marie Curie Fellow Yorktown Heights, March 2015 In Memoriam: Morgan Deters 2 Overview Separation Logic in a Nutshell 1 2 Expressive

915 views • 55 slides
An introduction to separation logic James Brotherston Programming Principles, Logic and

An introduction to separation logic James Brotherston Programming Principles, Logic and

An introduction to separation logic James Brotherston Programming Principles, Logic and Verification Group Dept. of Computer Science University College London, UK J.Brotherston@ucl.ac.uk Oracle Labs, Brisbane, 4 December 2015 1/ 19

291 views • 27 slides
Reasoning over Permissions Regions in Concurrent Separation Logic James Brotherston, Diana Costa,

Reasoning over Permissions Regions in Concurrent Separation Logic James Brotherston, Diana Costa,

Reasoning over Permissions Regions in Concurrent Separation Logic James Brotherston, Diana Costa, Aquinas Hobor and John Wickerson IRIS Day OScience, Coronavirus Lockdown Edition Tuesday 7th April, 2020 1/ 13 Concurrent separation logic (

164 views • 13 slides
On Temporal and Separation Logics St ephane Demri CNRS, LSV, ENS Paris-Saclay TIME18

On Temporal and Separation Logics St ephane Demri CNRS, LSV, ENS Paris-Saclay TIME18

On Temporal and Separation Logics St ephane Demri CNRS, LSV, ENS Paris-Saclay TIME18 Warsaw, October 2018 The blossom of separation logics Separation logic: extension of Hoare-Floyd logic for (concurrent) programs with mutable data

642 views • 48 slides
Charge! a framework for higher-order separation logic in Coq Lars Birkedal Logic and Semantics

Charge! a framework for higher-order separation logic in Coq Lars Birkedal Logic and Semantics

Charge! a framework for higher-order separation logic in Coq Lars Birkedal Logic and Semantics Group Dept. of Comp. Science, Aarhus University (Joint work with J. Bengtson, J.B. Jensen, H. Mehnert, P . Sestoft, F . Sieczkowski) April 2013

499 views • 34 slides
Undecidability of propositional separation logic and its neighbours James Brotherston Computer

Undecidability of propositional separation logic and its neighbours James Brotherston Computer

Undecidability of propositional separation logic and its neighbours James Brotherston Computer Science Seminar Institute of Cybernetics, Tallinn University of Technology 17 Nov 2011 1/ 27 Outline 1. An overview of propositional separation

948 views • 76 slides
A Separation Logic for Non-determinism and Sequence Points in C Formalized in Coq Robbert

A Separation Logic for Non-determinism and Sequence Points in C Formalized in Coq Robbert

A Separation Logic for Non-determinism and Sequence Points in C Formalized in Coq Robbert Krebbers Radboud University Nijmegen May 14, 2014 @ TYPES, Paris, France 1 What is this program supposed to do? int main() { int x; int y = (x = 3) +

378 views • 16 slides
A case for relaxed program logics Separation logic as a tool for

A case for relaxed program logics Separation logic as a tool for

A case for relaxed program logics Separation logic as a tool for understanding and debugging the C/C++ concurrency model Viktor Vafeiadis Max Planck Institute for Software Systems (MPI-SWS)

304 views • 13 slides
Concurrent separation logic and operational semantics Viktor Vafeiadis MPI-SWS What is the

Concurrent separation logic and operational semantics Viktor Vafeiadis MPI-SWS What is the

Concurrent separation logic and operational semantics Viktor Vafeiadis MPI-SWS What is the paper about? Soundness proof for CSL Simple Extensible Permissions RGSep Storable locks [Buisse, Birkedal, Stvring, MFPS 2011] Concurrent

270 views • 14 slides
Decidability of Entailments in Separation Logic with Arrays Daisuke Kimura (Toho Univ.) joint

Decidability of Entailments in Separation Logic with Arrays Daisuke Kimura (Toho Univ.) joint

Decidability of Entailments in Separation Logic with Arrays Daisuke Kimura (Toho Univ.) joint work with Makoto Tatsuta (NII) Workshop on Mathematical Logic and its Application JSPS Core-to-Core Program 16-17 Sep. 2016 Kyoto University

251 views • 22 slides
A Probabilistic Separation Logic Justin Hsu UWMadison Computer Sciences 1 Brilliant

A Probabilistic Separation Logic Justin Hsu UWMadison Computer Sciences 1 Brilliant

A Probabilistic Separation Logic Justin Hsu UWMadison Computer Sciences 1 Brilliant Collaborators Gilles Barthe Kevin Liao Jialu Bao Simon Docherty Alexandra Silva 2 What Is Independence, Intuitively? Two random variables x and y are

1.28k views • 95 slides
A Decidable Fragment in Separation Logic with Inductive Predicates and Arithmetic Quang Loc Le

A Decidable Fragment in Separation Logic with Inductive Predicates and Arithmetic Quang Loc Le

A Decidable Fragment in Separation Logic with Inductive Predicates and Arithmetic Quang Loc Le (TU) Makoto Tatsuta (NII) Jun Sun (SUTD) Wei-Ngan Chin (NUS) Computer Aided Verification, 29th International Conference Heidelberg Germany July

490 views • 21 slides

More recommend