proofs in conflict driven theory combination
play

Proofs in Conflict-Driven Theory Combination Maria Paola Bonacina, - PowerPoint PPT Presentation

Jun 04, 2023 •337 likes •1.57k views

Proofs in Conflict-Driven Theory Combination Maria Paola Bonacina, Stphane Graham-Lengrand, and Natarajan Shankar CPP2018, 9th January 2018 1/30 Context: Satisfiability Modulo Theories (SMT) CDCL (Conflict-Driven Clause Learning)

  1. Conflict-driven reasoning 2-player game to determine whether a formula is satisfiable. It involves a trail where a putative model is being specified. It relies on a notion of conflict between the putative model and the formula it should satisfy. Archetype of conflict-driven reasoning: CDCL a conflict occurs when a clause is falsified n g , k i p r o a p m a g n a o t i i s o i n c b e l u d i s e l d o d i m n g . . . SAT UNSAT . . . player player p g r o n s o i d i f b l s b u i y a l c a k n j u a m t c p l i i n f g n , c o 6/30

  2. Conflict-driven reasoning 2-player game to determine whether a formula is satisfiable. It involves a trail where a putative model is being specified. It relies on a notion of conflict between the putative model and the formula it should satisfy. Archetype of conflict-driven reasoning: CDCL a conflict occurs when a clause is falsified b e l u d i l d o i m n g a ⇒ b b ⇒ a a ⇒ b SAT UNSAT b ⇒ a player player p g r o n o i d f l b u i 6/30

  3. Conflict-driven reasoning 2-player game to determine whether a formula is satisfiable. It involves a trail where a putative model is being specified. It relies on a notion of conflict between the putative model and the formula it should satisfy. Archetype of conflict-driven reasoning: CDCL a conflict occurs when a clause is falsified b e l u d i l d o i m n g a ⇒ b b ⇒ a a ⇒ b SAT UNSAT ? a b ⇒ a player player p g r o n o i d f l b u i 6/30

  4. Conflict-driven reasoning 2-player game to determine whether a formula is satisfiable. It involves a trail where a putative model is being specified. It relies on a notion of conflict between the putative model and the formula it should satisfy. Archetype of conflict-driven reasoning: CDCL a conflict occurs when a clause is falsified b e l u d i l d o i m n g a ⇒ b b ⇒ a a ⇒ b SAT UNSAT ? a b b ⇒ a player player p g r o n o i d f l b u i 6/30

  5. Conflict-driven reasoning 2-player game to determine whether a formula is satisfiable. It involves a trail where a putative model is being specified. It relies on a notion of conflict between the putative model and the formula it should satisfy. Archetype of conflict-driven reasoning: CDCL a conflict occurs when a clause is falsified b e l u d i l d o i m n g conflict a ⇒ b b ⇒ a a ⇒ b SAT UNSAT ? a b b ⇒ a player player p g r o n o i d f l b u i 6/30

  6. Conflict-driven reasoning 2-player game to determine whether a formula is satisfiable. It involves a trail where a putative model is being specified. It relies on a notion of conflict between the putative model and the formula it should satisfy. Archetype of conflict-driven reasoning: CDCL a conflict occurs when a clause is falsified b e l u d i l d o i m n g a ⇒ b b ⇒ a a ⇒ b SAT UNSAT a b ⇒ a player player a conflict p g fixed r o n o i d f l b u i 6/30

  7. Conflict-driven reasoning 2-player game to determine whether a formula is satisfiable. It involves a trail where a putative model is being specified. It relies on a notion of conflict between the putative model and the formula it should satisfy. Archetype of conflict-driven reasoning: CDCL a conflict occurs when a clause is falsified b e l u d i l d o i m n g a ⇒ b b ⇒ a a ⇒ b SAT UNSAT a b b ⇒ a player player a p g r o n o i d f l b u i 6/30

  8. Conflict-driven reasoning 2-player game to determine whether a formula is satisfiable. It involves a trail where a putative model is being specified. It relies on a notion of conflict between the putative model and the formula it should satisfy. Archetype of conflict-driven reasoning: CDCL a conflict occurs when a clause is falsified b e l u d i l d o i m n g conflict a ⇒ b b ⇒ a a ⇒ b SAT UNSAT a b b ⇒ a player player a p g r o n o i d f l b u i 6/30

  9. Conflict-driven reasoning 2-player game to determine whether a formula is satisfiable. It involves a trail where a putative model is being specified. It relies on a notion of conflict between the putative model and the formula it should satisfy. Archetype of conflict-driven reasoning: CDCL a conflict occurs when a clause is falsified b e l u d i l d o i m n g a ⇒ b b ⇒ a a ⇒ b SAT UNSAT b ⇒ a player player a ⊥ p g r o n o i d f l b u i 6/30

  10. Conflict-driven reasoning can be used for (other) theories l 0 l 1 l 2 � �� � � �� � � �� � ( − 2 · x − y < 0) , ( x + y < 0) , ( x < − 1) unsatisfiable in Linear Rational Arithmetic (LRA). 7/30

  11. Conflict-driven reasoning can be used for (other) theories l 0 l 1 l 2 � �� � � �� � � �� � ( − 2 · x − y < 0) , ( x + y < 0) , ( x < − 1) unsatisfiable in Linear Rational Arithmetic (LRA). ◮ Guess a value, e.g., y ← 0 7/30

  12. Conflict-driven reasoning can be used for (other) theories l 0 l 1 l 2 � �� � � �� � � �� � ( − 2 · x − y < 0) , ( x + y < 0) , ( x < − 1) unsatisfiable in Linear Rational Arithmetic (LRA). ◮ Guess a value, e.g., y ← 0 Then l 0 yields lower bound x > 0 7/30

  13. Conflict-driven reasoning can be used for (other) theories l 0 l 1 l 2 � �� � � �� � � �� � ( − 2 · x − y < 0) , ( x + y < 0) , ( x < − 1) unsatisfiable in Linear Rational Arithmetic (LRA). ◮ Guess a value, e.g., y ← 0 Then l 0 yields lower bound x > 0 Together with l 2 , range of possible values for x is empty What to do? just undo y ← 0 and remember that y � = 0? 7/30

  14. Conflict-driven reasoning can be used for (other) theories l 0 l 1 l 2 � �� � � �� � � �� � ( − 2 · x − y < 0) , ( x + y < 0) , ( x < − 1) unsatisfiable in Linear Rational Arithmetic (LRA). ◮ Guess a value, e.g., y ← 0 Then l 0 yields lower bound x > 0 Together with l 2 , range of possible values for x is empty What to do? just undo y ← 0 and remember that y � = 0? ◮ No! Clash of bounds suggests a better conflict explanation, l 3 � �� � by inferring l 0 + 2 l 2 , i.e., ( − y < − 2) It rules out y ← 0, but also many values that would fail for the same reasons. 7/30

  15. Conflict-driven reasoning can be used for (other) theories l 0 l 1 l 2 � �� � � �� � � �� � ( − 2 · x − y < 0) , ( x + y < 0) , ( x < − 1) unsatisfiable in Linear Rational Arithmetic (LRA). ◮ Guess a value, e.g., y ← 0 Then l 0 yields lower bound x > 0 Together with l 2 , range of possible values for x is empty What to do? just undo y ← 0 and remember that y � = 0? ◮ No! Clash of bounds suggests a better conflict explanation, l 3 � �� � by inferring l 0 + 2 l 2 , i.e., ( − y < − 2) It rules out y ← 0, but also many values that would fail for the same reasons. ◮ Now undo the guess but keep l 3 . 7/30

  16. Conflict-driven reasoning can be used for (other) theories l 0 l 1 l 2 � �� � � �� � � �� � ( − 2 · x − y < 0) , ( x + y < 0) , ( x < − 1) unsatisfiable in Linear Rational Arithmetic (LRA). ◮ Guess a value, e.g., y ← 0 Then l 0 yields lower bound x > 0 Together with l 2 , range of possible values for x is empty What to do? just undo y ← 0 and remember that y � = 0? ◮ No! Clash of bounds suggests a better conflict explanation, l 3 � �� � by inferring l 0 + 2 l 2 , i.e., ( − y < − 2) It rules out y ← 0, but also many values that would fail for the same reasons. ◮ Now undo the guess but keep l 3 . ◮ and so on. . . (when there is no guess to undo, problem is UNSAT) 7/30

  17. Traditional architecture of SMT-solving T 1 T 2 SAT-solver (CDCL) Comb. ∗ T 3 T 5 T 4 * e.g. equality sharing / Nelson-Oppen [NO79] 8/30

  18. In CDSAT . . . the theory combination is organised directly in the main conflict-driven loop: As in MCSAT, trail contains Bool ◮ Boolean assignments T 2 a ← true l b e u d i l d o i m n ◮ First-order assignments g T 1 T 1 y ← 3 / 4 . . . T 2 . . . p g r n o i o d f i l b u Bool 9/30

  19. In CDSAT . . . the theory combination is organised directly in the main conflict-driven loop: As in MCSAT, trail contains Bool ◮ Boolean assignments T 2 a ← true l b e u d i l d o i m n ◮ First-order assignments g T 1 T 1 y ← 3 / 4 . . . T 2 . . . Features of conflict-driven satisfiability: p g r n o i ◮ Boolean theory can have the o d f i l b u Bool same status as other theories. ◮ Theory-specific reasoning often consists of fine-grained reasoning inferences, e.g., Fourier-Motzkin resolution for LRA: ( t 1 < x ) , ( x < t 2 ) ⊢ ⊢ ⊢ t 1 < t 2 9/30

  20. 2. The CDSAT system - with learning 10/30

  21. What is a theory module? A set of inferences of the form ( t 1 ← c 1 ) , . . . , ( t k ← c k ) ⊢ ⊢ ⊢ T ( l ← b ) where ◮ each t i ← c i is a single T -assignment (a term t i and a T -value c i of matching sorts) ◮ l ← b is a single Boolean assignment (a term l of sort Bool and a truth value b ) 11/30

  22. What is a theory module? A set of inferences of the form ( t 1 ← c 1 ) , . . . , ( t k ← c k ) ⊢ ⊢ ⊢ T ( l ← b ) where ◮ each t i ← c i is a single T -assignment (a term t i and a T -value c i of matching sorts) ◮ l ← b is a single Boolean assignment (a term l of sort Bool and a truth value b ) Abbreviations: ( l ← true) as l and ( l ← false) as l 11/30

  23. What is a theory module? A set of inferences of the form ( t 1 ← c 1 ) , . . . , ( t k ← c k ) ⊢ ⊢ ⊢ T ( l ← b ) where ◮ each t i ← c i is a single T -assignment (a term t i and a T -value c i of matching sorts) ◮ l ← b is a single Boolean assignment (a term l of sort Bool and a truth value b ) Abbreviations: ( l ← true) as l and ( l ← false) as l ◮ Soundness requirement: Every model of the premisses is a model of the conclusion: ( t 1 ← c 1 ) , . . . , ( t k ← c k ) | = ( l ← b ) 11/30

  24. What is a theory module? A set of inferences of the form ( t 1 ← c 1 ) , . . . , ( t k ← c k ) ⊢ ⊢ ⊢ T ( l ← b ) where ◮ each t i ← c i is a single T -assignment (a term t i and a T -value c i of matching sorts) ◮ l ← b is a single Boolean assignment (a term l of sort Bool and a truth value b ) Abbreviations: ( l ← true) as l and ( l ← false) as l ◮ Soundness requirement: Every model of the premisses is a model of the conclusion: ( t 1 ← c 1 ) , . . . , ( t k ← c k ) | = ( l ← b ) Examples: √ √ ⊢ ( x ← 2) , ( y ← 2) ⊢ ⊢ NLRA ( x · y ≃ 2) (evaluation inference) ( l 1 ∨ · · · ∨ l n ) , l 1 . . . , l n − 1 ⊢ ⊢ ⊢ Bool l n (unit propagation) 11/30

  25. What is a theory module? (Equality inferences) All theory modules have the equality inferences: ⊢ t 1 ← c 1 , t 2 ← c 2 ⊢ ⊢ T t 1 ≃ t 2 if c 1 and c 2 are the same value t 1 ← c 1 , t 2 ← c 2 ⊢ ⊢ ⊢ T t 1 �≃ t 2 if c 1 and c 2 are distinct values ⊢ T ⊢ ⊢ t 1 ≃ t 1 reflexivity t 1 ≃ t 2 ⊢ ⊢ ⊢ T t 2 ≃ t 1 symmetry ⊢ t 1 ≃ t 2 , t 2 ≃ t 3 ⊢ ⊢ T t 1 ≃ t 3 transitivity 12/30

  26. CDSAT states Search states: simply trails. A trail is a stack of justified assignments H ⊢ ( t ← c ) and decisions ? ( t ← c ) coming from different theories Justification H : a set of assignments that appear earlier on the trail 13/30

  27. CDSAT states Search states: simply trails. A trail is a stack of justified assignments H ⊢ ( t ← c ) and decisions ? ( t ← c ) coming from different theories Justification H : a set of assignments that appear earlier on the trail Example (trail grows from left to right): √ ∅⊢ ( x ≃ z ) , ∅⊢ ( y ≃ z ) , ? ( x ← 2) , ? ( y ← blue) , ? ( x ← red) , H ⊢ ( x � = y ) where H is { ( y ← blue) , ( x ← red) } Everything is on the trail, including assertions from the input problem, with empty justifications (e.g., ∅⊢ ( C ← true) for an input clause C ), 13/30

  28. CDSAT states Search states: simply trails. A trail is a stack of justified assignments H ⊢ ( t ← c ) and decisions ? ( t ← c ) coming from different theories Justification H : a set of assignments that appear earlier on the trail Example (trail grows from left to right): √ ∅⊢ ( x ≃ z ) , ∅⊢ ( y ≃ z ) , ? ( x ← 2) , ? ( y ← blue) , ? ( x ← red) , H ⊢ ( x � = y ) where H is { ( y ← blue) , ( x ← red) } Everything is on the trail, including assertions from the input problem, with empty justifications (e.g., ∅⊢ ( C ← true) for an input clause C ), Conflict states: � Γ; H � , trail Γ + set H of trail assignments that are in conflict 13/30

  29. CDSAT states Search states: simply trails. A trail is a stack of justified assignments H ⊢ ( t ← c ) and decisions ? ( t ← c ) coming from different theories Justification H : a set of assignments that appear earlier on the trail Example (trail grows from left to right): √ ∅⊢ ( x ≃ z ) , ∅⊢ ( y ≃ z ) , ? ( x ← 2) , ? ( y ← blue) , ? ( x ← red) , H ⊢ ( x � = y ) where H is { ( y ← blue) , ( x ← red) } Everything is on the trail, including assertions from the input problem, with empty justifications (e.g., ∅⊢ ( C ← true) for an input clause C ), Conflict states: � Γ; H � , trail Γ + set H of trail assignments that are in conflict In this paper , new rule for solving/exiting conflicts: Learn 13/30

  30. Example: exiting a conflict without learning a clause Input problem H 0 including: ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) with l 4 = ( x ≤ y ) and l 5 = ( f ( x ) ≤ f ( y )) in a theory where f is monotonic 14/30

  31. Example: exiting a conflict without learning a clause Input problem H 0 including: ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) with l 4 = ( x ≤ y ) and l 5 = ( f ( x ) ≤ f ( y )) in a theory where f is monotonic Initial trail Γ 0 including: ∅⊢ ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) 14/30

  32. Example: exiting a conflict without learning a clause Input problem H 0 including: ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) with l 4 = ( x ≤ y ) and l 5 = ( f ( x ) ≤ f ( y )) in a theory where f is monotonic Initial trail Γ 0 including: ∅⊢ ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) Search rules extend Γ 0 into Γ = Γ 0 14/30

  33. Example: exiting a conflict without learning a clause Input problem H 0 including: ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) with l 4 = ( x ≤ y ) and l 5 = ( f ( x ) ≤ f ( y )) in a theory where f is monotonic Initial trail Γ 0 including: ∅⊢ ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) Search rules extend Γ 0 into Γ = Γ 0 , ? A 1 14/30

  34. Example: exiting a conflict without learning a clause Input problem H 0 including: ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) with l 4 = ( x ≤ y ) and l 5 = ( f ( x ) ≤ f ( y )) in a theory where f is monotonic Initial trail Γ 0 including: ∅⊢ ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) Search rules extend Γ 0 into Γ = Γ 0 , ? A 1 , ? l 2 14/30

  35. Example: exiting a conflict without learning a clause Input problem H 0 including: ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) with l 4 = ( x ≤ y ) and l 5 = ( f ( x ) ≤ f ( y )) in a theory where f is monotonic Initial trail Γ 0 including: ∅⊢ ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) Search rules extend Γ 0 into Γ = Γ 0 , ? A 1 , ? l 2 , ? A 3 14/30

  36. Example: exiting a conflict without learning a clause Input problem H 0 including: ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) with l 4 = ( x ≤ y ) and l 5 = ( f ( x ) ≤ f ( y )) in a theory where f is monotonic Initial trail Γ 0 including: ∅⊢ ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) Search rules extend Γ 0 into Γ = Γ 0 , ? A 1 , ? l 2 , ? A 3 , ? l 4 14/30

  37. Example: exiting a conflict without learning a clause Input problem H 0 including: ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) with l 4 = ( x ≤ y ) and l 5 = ( f ( x ) ≤ f ( y )) in a theory where f is monotonic Initial trail Γ 0 including: ∅⊢ ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) Search rules extend Γ 0 into Γ = Γ 0 , ? A 1 , ? l 2 , ? A 3 , ? l 4 , l 4 ⊢ l 5 14/30

  38. Example: exiting a conflict without learning a clause Input problem H 0 including: ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) with l 4 = ( x ≤ y ) and l 5 = ( f ( x ) ≤ f ( y )) in a theory where f is monotonic Initial trail Γ 0 including: ∅⊢ ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) Search rules extend Γ 0 into Γ = Γ 0 , ? A 1 , ? l 2 , ? A 3 , ? l 4 , l 4 ⊢ l 5 (involving unrelated decisions A 1 and A 3 ) 14/30

  39. Example: exiting a conflict without learning a clause Input problem H 0 including: ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) with l 4 = ( x ≤ y ) and l 5 = ( f ( x ) ≤ f ( y )) in a theory where f is monotonic Initial trail Γ 0 including: ∅⊢ ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) Search rules extend Γ 0 into Γ = Γ 0 , ? A 1 , ? l 2 , ? A 3 , ? l 4 , l 4 ⊢ l 5 (involving unrelated decisions A 1 and A 3 ) First conflict: � Γ; ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) , l 2 , l 4 , l 5 � 14/30

  40. Example: exiting a conflict without learning a clause Input problem H 0 including: ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) with l 4 = ( x ≤ y ) and l 5 = ( f ( x ) ≤ f ( y )) in a theory where f is monotonic Initial trail Γ 0 including: ∅⊢ ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) Search rules extend Γ 0 into Γ = Γ 0 , ? A 1 , ? l 2 , ? A 3 , ? l 4 , l 4 ⊢ l 5 (involving unrelated decisions A 1 and A 3 ) First conflict: � Γ; ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) , l 2 , l 4 , l 5 � � Γ; ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) , l 2 , l 4 � Resolving l 5 : 14/30

  41. Example: exiting a conflict without learning a clause Input problem H 0 including: ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) with l 4 = ( x ≤ y ) and l 5 = ( f ( x ) ≤ f ( y )) in a theory where f is monotonic Initial trail Γ 0 including: ∅⊢ ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) Search rules extend Γ 0 into Γ = Γ 0 , ? A 1 , ? l 2 , ? A 3 , ? l 4 , l 4 ⊢ l 5 (involving unrelated decisions A 1 and A 3 ) First conflict: � Γ; ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) , l 2 , l 4 , l 5 � � Γ; ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) , l 2 , l 4 � Resolving l 5 : In first conflict, both l 4 and l 5 depend on the latest decision ? l 4 . After applying Resolve, only l 4 does. Time to stop conflict analysis. 14/30

  42. Example: exiting a conflict without learning a clause Input problem H 0 including: ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) with l 4 = ( x ≤ y ) and l 5 = ( f ( x ) ≤ f ( y )) in a theory where f is monotonic Initial trail Γ 0 including: ∅⊢ ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) Search rules extend Γ 0 into Γ = Γ 0 , ? A 1 , ? l 2 , ? A 3 , ? l 4 , l 4 ⊢ l 5 (involving unrelated decisions A 1 and A 3 ) First conflict: � Γ; ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) , l 2 , l 4 , l 5 � � Γ; ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) , l 2 , l 4 � Resolving l 5 : In first conflict, both l 4 and l 5 depend on the latest decision ? l 4 . After applying Resolve, only l 4 does. Time to stop conflict analysis. Rule Learn can exit the conflict with trail Γ 0 , ? A 1 , ? l 2 , H ⊢ l 4 where H is { ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) , l 2 } 14/30

  43. Example: exiting a conflict without learning a clause Input problem H 0 including: ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) with l 4 = ( x ≤ y ) and l 5 = ( f ( x ) ≤ f ( y )) in a theory where f is monotonic Initial trail Γ 0 including: ∅⊢ ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) Search rules extend Γ 0 into Γ = Γ 0 , ? A 1 , ? l 2 , ? A 3 , ? l 4 , l 4 ⊢ l 5 (involving unrelated decisions A 1 and A 3 ) First conflict: � Γ; ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) , l 2 , l 4 , l 5 � � Γ; ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) , l 2 , l 4 � Resolving l 5 : In first conflict, both l 4 and l 5 depend on the latest decision ? l 4 . After applying Resolve, only l 4 does. Time to stop conflict analysis. Rule Learn can exit the conflict with trail Γ 0 , ? A 1 , ? l 2 , H ⊢ l 4 where H is { ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) , l 2 } 14/30

  44. Example: exiting a conflict learning a clause Input problem H 0 including: ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) with l 4 = ( x ≤ y ) and l 5 = ( f ( x ) ≤ f ( y )) in a theory where f is monotonic Initial trail Γ 0 including: ∅⊢ ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) Search rules extend Γ 0 into Γ = Γ 0 , ? A 1 , ? l 2 , ? A 3 , ? l 4 , l 4 ⊢ l 5 (involving unrelated decisions A 1 and A 3 ) First conflict: � Γ; ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) , l 2 , l 4 , l 5 � � Γ; ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) , l 2 , l 4 � Resolving l 5 : In first conflict, both l 4 and l 5 depend on the latest decision ? l 4 . After applying Resolve, only l 4 does. Time to stop conflict analysis. Rule Learn can exit the conflict and learn a clause: Γ 0 , ? A 1 , ? l 2 , H ′ ⊢ ( ¬ l 2 ∨ ¬ l 4 ) where H ′ is { ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) } 14/30

  45. Example: exiting a conflict learning a clause Input problem H 0 including: ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) with l 4 = ( x ≤ y ) and l 5 = ( f ( x ) ≤ f ( y )) in a theory where f is monotonic Initial trail Γ 0 including: ∅⊢ ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) Search rules extend Γ 0 into Γ = Γ 0 , ? A 1 , ? l 2 , ? A 3 , ? l 4 , l 4 ⊢ l 5 (involving unrelated decisions A 1 and A 3 ) First conflict: � Γ; ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) , l 2 , l 4 , l 5 � � Γ; ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) , l 2 , l 4 � Resolving l 5 : In first conflict, both l 4 and l 5 depend on the latest decision ? l 4 . After applying Resolve, only l 4 does. Time to stop conflict analysis. Rule Learn can exit the conflict and learn a clause: Γ 0 , ? A 1 , ? l 2 , H ′ ⊢ ( ¬ l 2 ∨ ¬ l 4 ) where H ′ is { ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) } Then Deduce can derive l 4 as before: H ′ ⊢ ( ¬ l 2 ∨ ¬ l 4 ) , Γ 0 , ? A 1 , ? l 2 , { ( ¬ l 2 ∨ ¬ l 4 ) , l 2 }⊢ l 4 14/30

  46. Example: exiting a conflict learning a clause & restarting Input problem H 0 including: ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) with l 4 = ( x ≤ y ) and l 5 = ( f ( x ) ≤ f ( y )) in a theory where f is monotonic Initial trail Γ 0 including: ∅⊢ ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) Search rules extend Γ 0 into Γ = Γ 0 , ? A 1 , ? l 2 , ? A 3 , ? l 4 , l 4 ⊢ l 5 (involving unrelated decisions A 1 and A 3 ) First conflict: � Γ; ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) , l 2 , l 4 , l 5 � � Γ; ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) , l 2 , l 4 � Resolving l 5 : In first conflict, both l 4 and l 5 depend on the latest decision ? l 4 . After applying Resolve, only l 4 does. Time to stop conflict analysis. Rule Learn can exit the conflict and learn a clause, and restart: Γ 0 , H ′ ⊢ ( ¬ l 2 ∨ ¬ l 4 ) where H ′ is { ( ¬ l 2 ∨¬ l 4 ∨¬ l 5 ) } 14/30

  47. The Learn rule introduced in this paper → Γ ′ , E ⊢ L � Γ; E ⊎ H � − if L is a “clausal form of H ”, L / ∈ Γ, L / ∈ Γ Γ ′ : a pruning of Γ undoing at least the latest decision involved, E ⊆ Γ ′ 15/30

  48. The Learn rule introduced in this paper → Γ ′ , E ⊢ L � Γ; E ⊎ H � − if L is a “clausal form of H ”, L / ∈ Γ, L / ∈ Γ Γ ′ : a pruning of Γ undoing at least the latest decision involved, E ⊆ Γ ′ 15/30

  49. The Learn rule introduced in this paper → Γ ′ , E ⊢ L � Γ; E ⊎ H � − if L is a “clausal form of H ”, L / ∈ Γ, L / ∈ Γ Γ ′ : a pruning of Γ undoing at least the latest decision involved, E ⊆ Γ ′ “Clausal forms of H ” reify H in Boolean logic: (( � ( l ← true) ∈ H l ) ∧ ( � ( l ← false) ∈ H ¬ l )) ← false 15/30

  50. The Learn rule introduced in this paper → Γ ′ , E ⊢ L � Γ; E ⊎ H � − if L is a “clausal form of H ”, L / ∈ Γ, L / ∈ Γ Γ ′ : a pruning of Γ undoing at least the latest decision involved, E ⊆ Γ ′ “Clausal forms of H ” reify H in Boolean logic: (( � ( l ← true) ∈ H l ) ∧ ( � ( l ← false) ∈ H ¬ l )) ← false (( � ( l ← true) ∈ H ¬ l ) ∨ ( � ( l ← false) ∈ H l )) ← true 15/30

  51. The Learn rule introduced in this paper → Γ ′ , E ⊢ L � Γ; E ⊎ H � − if L is a “clausal form of H ”, L / ∈ Γ, L / ∈ Γ Γ ′ : a pruning of Γ undoing at least the latest decision involved, E ⊆ Γ ′ “Clausal forms of H ” reify H in Boolean logic: (( � ( l ← true) ∈ H l ) ∧ ( � ( l ← false) ∈ H ¬ l )) ← false (( � ( l ← true) ∈ H ¬ l ) ∨ ( � ( l ← false) ∈ H l )) ← true This rule ◮ generalises the CADE’2017 one (sufficient for completeness) ◮ models clause learning by reifying (Boolean parts of) conflicts ◮ models clause learning + restarts, a common practice in SAT/SMT-solving 15/30

  52. The Learn rule introduced in this paper → Γ ′ , E ⊢ L � Γ; E ⊎ H � − if L is a “clausal form of H ”, L / ∈ Γ, L / ∈ Γ Γ ′ : a pruning of Γ undoing at least the latest decision involved, E ⊆ Γ ′ “Clausal forms of H ” reify H in Boolean logic: (( � ( l ← true) ∈ H l ) ∧ ( � ( l ← false) ∈ H ¬ l )) ← false (( � ( l ← true) ∈ H ¬ l ) ∨ ( � ( l ← false) ∈ H l )) ← true This rule ◮ generalises the CADE’2017 one (sufficient for completeness) ◮ models clause learning by reifying (Boolean parts of) conflicts ◮ models clause learning + restarts, a common practice in SAT/SMT-solving Which version to apply depends on your search strategy (particularly for restarts) 15/30

  53. The Learn rule introduced in this paper → Γ ′ , E ⊢ L � Γ; E ⊎ H � − if L is a “clausal form of H ”, L / ∈ Γ, L / ∈ Γ Γ ′ : a pruning of Γ undoing at least the latest decision involved, E ⊆ Γ ′ “Clausal forms of H ” reify H in Boolean logic: (( � ( l ← true) ∈ H l ) ∧ ( � ( l ← false) ∈ H ¬ l )) ← false (( � ( l ← true) ∈ H ¬ l ) ∨ ( � ( l ← false) ∈ H l )) ← true This rule ◮ generalises the CADE’2017 one (sufficient for completeness) ◮ models clause learning by reifying (Boolean parts of) conflicts ◮ models clause learning + restarts, a common practice in SAT/SMT-solving Which version to apply depends on your search strategy (particularly for restarts) All version are OK with respect to termination of CDSAT 15/30

  54. 3. Proof production 16/30

  55. Soundness invariants, and rules that may affect them ◮ For every assignment H ⊢ A on the trail, H | = A ; ◮ For every conflict state � Γ; E � , E | = ⊥ . 17/30

  56. Soundness invariants, and rules that may affect them ◮ For every assignment H ⊢ A on the trail, H | = A ; ◮ For every conflict state � Γ; E � , E | = ⊥ . Next step: keep track of invariant via proof-theoretical information 17/30

  57. Soundness invariants, and rules that may affect them ◮ For every assignment H ⊢ A on the trail, H | = A ; ◮ For every conflict state � Γ; E � , E | = ⊥ . Next step: keep track of invariant via proof-theoretical information Let T be a theory with a specific T -module. Deduce − → Γ , J ⊢ ( t ← b ) if J ⊢ ⊢ T ( t ← b ) and J ⊆ Γ, ⊢ Γ and t ← b is not in Γ 17/30

  58. Soundness invariants, and rules that may affect them ◮ For every assignment H ⊢ A on the trail, H | = A ; ◮ For every conflict state � Γ; E � , E | = ⊥ . Next step: keep track of invariant via proof-theoretical information Let T be a theory with a specific T -module. Deduce − → Γ , J ⊢ ( t ← b ) if J ⊢ ⊢ T ( t ← b ) and J ⊆ Γ, ⊢ Γ and t ← b is not in Γ Conflict Γ − → � Γ; J , ( t ← b ) � if J ⊢ ⊢ ⊢ T ( t ← b ) and J ⊆ Γ, and t ← b is in Γ 17/30

  59. Soundness invariants, and rules that may affect them ◮ For every assignment H ⊢ A on the trail, H | = A ; ◮ For every conflict state � Γ; E � , E | = ⊥ . Next step: keep track of invariant via proof-theoretical information Let T be a theory with a specific T -module. Deduce − → Γ , J ⊢ ( t ← b ) if J ⊢ ⊢ ⊢ T ( t ← b ) and J ⊆ Γ, Γ and t ← b is not in Γ Conflict Γ − → � Γ; J , ( t ← b ) � if J ⊢ ⊢ ⊢ T ( t ← b ) and J ⊆ Γ, and t ← b is in Γ Resolve � Γ; E ⊎ { A }� − → � Γ; E ∪ H � if H ⊢ A is in Γ 17/30

  60. Soundness invariants, and rules that may affect them ◮ For every assignment H ⊢ A on the trail, H | = A ; ◮ For every conflict state � Γ; E � , E | = ⊥ . Next step: keep track of invariant via proof-theoretical information Let T be a theory with a specific T -module. Deduce − → Γ , J ⊢ ( t ← b ) if J ⊢ ⊢ ⊢ T ( t ← b ) and J ⊆ Γ, Γ and t ← b is not in Γ Conflict Γ − → � Γ; J , ( t ← b ) � if J ⊢ ⊢ ⊢ T ( t ← b ) and J ⊆ Γ, and t ← b is in Γ Resolve � Γ; E ⊎ { A }� − → � Γ; E ∪ H � if H ⊢ A is in Γ Learn Γ ′ , E ⊢ L � Γ; E ⊎ H � − → if L is a “clausal form” of H ∈ Γ, and E ⊆ Γ ′ L / ∈ Γ, L / 17/30

  61. Theory proofs To keep track of the soundness invariants, we need to refer to theory inferences 18/30

  62. Theory proofs To keep track of the soundness invariants, we need to refer to theory inferences Each theory module comes with a “proof annotation system” ⊢ ( t 1 ← c 1 ) , . . . , ( t k ← c k ) ⊢ ⊢ T ( l ← b ) is annotated as a 1 ( t 1 ← c 1 ) , . . . , a k ( t k ← c k ) ⊢ ⊢ ⊢ T j T : ( l ← b ) 18/30

  63. Theory proofs To keep track of the soundness invariants, we need to refer to theory inferences Each theory module comes with a “proof annotation system” ⊢ ( t 1 ← c 1 ) , . . . , ( t k ← c k ) ⊢ ⊢ T ( l ← b ) is annotated as a 1 ( t 1 ← c 1 ) , . . . , a k ( t k ← c k ) ⊢ ⊢ ⊢ T j T : ( l ← b ) Examples: √ √ a 1 ( x ← 2) , a 2 ( y ← ⊢ 2) ⊢ ⊢ NLRA eval( { a 1 , a 2 } ): ( x · y ≃ 2) (evaluation inference) a 0 ( l 1 ∨ · · · ∨ l n ) , a 1 ( l 1 ) , . . . , a k − 1 ( l n − 1 ) ⊢ ⊢ ⊢ Bool UP( a 0 , { a 1 , . . . , a n } ): l n (unit propagation) 18/30

  64. Proof-terms and proof-carrying CDSAT ◮ A proof-carrying trail is a stack ◮ of justified assignments H ⊢ j : ( t ← c ) ◮ and decisions ? ( t ← c ) ◮ A proof-carrying conflict state is of the form � Γ; H ; c � . . . where j and c respectively range over Deduction proof terms j ::= in j T lem( H . c ) res( j , a A . c ) Conflict proof term c ::= cfl( j T , a ) in annotates an input assignment, j T ranges over theory proofs for T , used for Deduce lem( H . c ) annotates justified assignments that Learn places on trail (clausal forms of H ), binding the identifiers of H in c cfl( j T , a ) annotates a conflict when it is created by Conflict res( j , a A . c ) annotates a conflict resulting from the Resolve rule, binding a in c 19/30

  65. Provability invariants that proof-terms keep track of ⊢ A is an input J ⊢ ⊢ ⊢ T j T : L E ⊎ H ⊢ ⊢ c : ⊥ L clausal form of H ⊢ J ⊢ ⊢ ⊢ j T : L E ⊢ ⊢ ⊢ lem( H . c ): L ∅ ⊢ ⊢ in: A E , a A ⊢ J ⊢ ⊢ ⊢ T j T : L H ⊢ ⊢ ⊢ j : A ⊢ ⊢ c : ⊥ J ∪ { a L } ⊢ ⊢ res( j , a A . c ): ⊥ ⊢ ⊢ cfl( j T , a ): ⊥ E ∪ H ⊢ ⊢ 20/30

  66. Provability invariants that proof-terms keep track of ⊢ A is an input J ⊢ ⊢ ⊢ T j T : L E ⊎ H ⊢ ⊢ c : ⊥ L clausal form of H ⊢ J ⊢ ⊢ ⊢ j T : L E ⊢ ⊢ ⊢ lem( H . c ): L ∅ ⊢ ⊢ in: A E , a A ⊢ J ⊢ ⊢ ⊢ T j T : L H ⊢ ⊢ ⊢ j : A ⊢ ⊢ c : ⊥ J ∪ { a L } ⊢ ⊢ res( j , a A . c ): ⊥ ⊢ ⊢ cfl( j T , a ): ⊥ E ∪ H ⊢ ⊢ Rules of CDSAT are adapted so as to use those proof-terms, and the soundness invariants are materialised as: Theorem ◮ For every assignment H ⊢ j : A on the trail, H ⊢ ⊢ ⊢ j : A ◮ For every conflict state � Γ; E ; c � , E ⊢ ⊢ ⊢ c : ⊥ . 20/30

  67. Provability invariants that proof-terms keep track of ⊢ A is an input J ⊢ ⊢ ⊢ T j T : L E ⊎ H ⊢ ⊢ c : ⊥ L clausal form of H ⊢ J ⊢ ⊢ ⊢ j T : L E ⊢ ⊢ ⊢ lem( H . c ): L ∅ ⊢ ⊢ in: A E , a A ⊢ J ⊢ ⊢ ⊢ T j T : L H ⊢ ⊢ ⊢ j : A ⊢ ⊢ c : ⊥ J ∪ { a L } ⊢ ⊢ res( j , a A . c ): ⊥ ⊢ ⊢ cfl( j T , a ): ⊥ E ∪ H ⊢ ⊢ Rules of CDSAT are adapted so as to use those proof-terms, and the soundness invariants are materialised as: Theorem ◮ For every assignment H ⊢ j : A on the trail, H ⊢ ⊢ ⊢ j : A ◮ For every conflict state � Γ; E ; c � , E ⊢ ⊢ ⊢ c : ⊥ . The proof system above can be seen as glueing a collection of ⊢ inference systems ( ⊢ ⊢ T ) T 20/30

  68. Provability invariants that proof-terms keep track of ⊢ A is an input J ⊢ ⊢ T j T : L ⊢ E ⊎ H ⊢ ⊢ c : ⊥ L clausal form of H ⊢ J ⊢ ⊢ ⊢ j T : L E ⊢ ⊢ ⊢ lem( H . c ): L ∅ ⊢ ⊢ in: A E , a A ⊢ J ⊢ ⊢ ⊢ T j T : L H ⊢ ⊢ ⊢ j : A ⊢ ⊢ c : ⊥ J ∪ { a L } ⊢ ⊢ res( j , a A . c ): ⊥ ⊢ ⊢ cfl( j T , a ): ⊥ E ∪ H ⊢ ⊢ Rules of CDSAT are adapted so as to use those proof-terms, and the soundness invariants are materialised as: Theorem ◮ For every assignment H ⊢ j : A on the trail, H ⊢ ⊢ ⊢ j : A ◮ For every conflict state � Γ; E ; c � , E ⊢ ⊢ ⊢ c : ⊥ . The proof system above can be seen as glueing a collection of ⊢ inference systems ( ⊢ ⊢ T ) T CDSAT is a search procedure for the resulting system 20/30

  69. Satisfiability Modulo Assignments (SMA) An SMT-problem with input clauses C 1 , . . . , C n is treated by running CDSAT on the initial trail ∅⊢ in: C 1 , . . . , ∅⊢ in: C n 21/30

  70. Satisfiability Modulo Assignments (SMA) An SMT-problem with input clauses C 1 , . . . , C n is treated by running CDSAT on the initial trail ∅⊢ in: C 1 , . . . , ∅⊢ in: C n But the CDSAT system can accept inputs with first-order assignments, e.g: ∅⊢ in: ( x ← 3 / 4 ) , ∅⊢ in: ( x ≤ y ) , ∅⊢ in: ( y ≤ 0) Such problems are called SMA problems. 21/30

  71. Satisfiability Modulo Assignments (SMA) An SMT-problem with input clauses C 1 , . . . , C n is treated by running CDSAT on the initial trail ∅⊢ in: C 1 , . . . , ∅⊢ in: C n But the CDSAT system can accept inputs with first-order assignments, e.g: ∅⊢ in: ( x ← 3 / 4 ) , ∅⊢ in: ( x ≤ y ) , ∅⊢ in: ( y ≤ 0) Such problems are called SMA problems. If there are no first-order inputs and the problem is unsat, then the final proof-term will not mention any deduction proof-term H ⊢ ⊢ ⊢ j : L nor any conflict proof H ⊢ ⊢ ⊢ c : ⊥ such that H contains a first-order assignment 21/30

  72. Satisfiability Modulo Assignments (SMA) An SMT-problem with input clauses C 1 , . . . , C n is treated by running CDSAT on the initial trail ∅⊢ in: C 1 , . . . , ∅⊢ in: C n But the CDSAT system can accept inputs with first-order assignments, e.g: ∅⊢ in: ( x ← 3 / 4 ) , ∅⊢ in: ( x ≤ y ) , ∅⊢ in: ( y ≤ 0) Such problems are called SMA problems. If there are no first-order inputs and the problem is unsat, then the final proof-term will not mention any deduction proof-term H ⊢ ⊢ ⊢ j : L nor any conflict proof H ⊢ ⊢ ⊢ c : ⊥ such that H contains a first-order assignment Easy optimisation in that case: the construction of any such proof-term during the run can be omitted 21/30

  73. Satisfiability Modulo Assignments (SMA) An SMT-problem with input clauses C 1 , . . . , C n is treated by running CDSAT on the initial trail ∅⊢ in: C 1 , . . . , ∅⊢ in: C n But the CDSAT system can accept inputs with first-order assignments, e.g: ∅⊢ in: ( x ← 3 / 4 ) , ∅⊢ in: ( x ≤ y ) , ∅⊢ in: ( y ≤ 0) Such problems are called SMA problems. If there are no first-order inputs and the problem is unsat, then the final proof-term will not mention any deduction proof-term H ⊢ ⊢ ⊢ j : L nor any conflict proof H ⊢ ⊢ ⊢ c : ⊥ such that H contains a first-order assignment Easy optimisation in that case: the construction of any such proof-term during the run can be omitted Theory modules do not have to provide theory proofs H ⊢ ⊢ ⊢ T j T : L if H contains a first-order assign. (typically: evaluation inferences) 21/30

  74. Different views about proof objects Proof-carrying CDSAT can be considered exactly as defined above, where in , j T , lem( H . c ) , cfl( j T , a ) , res( j , a A . c ) are terms. 22/30

  75. Different views about proof objects Proof-carrying CDSAT can be considered exactly as defined above, where in , j T , lem( H . c ) , cfl( j T , a ) , res( j , a A . c ) are terms. Another proof format is desired for output? Just interpret the terms in that format after the run (proof reconstruction) 22/30

  76. Different views about proof objects Proof-carrying CDSAT can be considered exactly as defined above, where in , j T , lem( H . c ) , cfl( j T , a ) , res( j , a A . c ) are terms. Another proof format is desired for output? Just interpret the terms in that format after the run (proof reconstruction) Alternatively, proof-carrying CDSAT can directly manipulate proofs in the format, if equipped with the operations corresponding to the term constructs. The proof-terms denote the manipulated proofs, but are never constructed. 22/30

  77. Example: resolution proofs If input contains no first-order assignments, resolution trees (or DAGs) form a proof format equipped with the right operations 23/30

  78. Example: resolution proofs If input contains no first-order assignments, resolution trees (or DAGs) form a proof format equipped with the right operations Leaves of resolution proofs are labeled by ◮ either literals corresponding to input assignments ∅ ⊢ ⊢ ⊢ in: A ◮ or theory lemmas corresponding to theory proofs J ⊢ ⊢ ⊢ T j T : L Internal nodes are obtained by applying resolution rule, ⊢ res( j , a A . c ): ⊥ constructs. corresponding to H ⊢ ⊢ 23/30

  79. Example: resolution proofs If input contains no first-order assignments, resolution trees (or DAGs) form a proof format equipped with the right operations Leaves of resolution proofs are labeled by ◮ either literals corresponding to input assignments ∅ ⊢ ⊢ ⊢ in: A ◮ or theory lemmas corresponding to theory proofs J ⊢ ⊢ ⊢ T j T : L Internal nodes are obtained by applying resolution rule, ⊢ res( j , a A . c ): ⊥ constructs. corresponding to H ⊢ ⊢ If input does contains first-order assignments (SMA problems) the resolution format has to be slightly extended, so that it manipulates guarded clauses of the form { ( t 1 ← c 1 ) , . . . , ( t n ← c n ) } ⇒ C where ( t 1 ← c 1 ) , . . . , ( t n ← c n ) are first-order assign. guarding clause C Details in the paper. 23/30

Recommend

CDSAT: Conflict-Driven SATisfiability modulo theories and assignments 1 Maria Paola Bonacina

CDSAT: Conflict-Driven SATisfiability modulo theories and assignments 1 Maria Paola Bonacina

The conflict-driven reasoning paradigm Conflict-driven reasoning in theory combination The CDSAT transition system Discussion CDSAT: Conflict-Driven SATisfiability modulo theories and assignments 1 Maria Paola Bonacina Dipartimento di

610 views • 45 slides
Motivation: conflict-driven reasoning from PL to FOL SGGS: model representation and FO clausal

Motivation: conflict-driven reasoning from PL to FOL SGGS: model representation and FO clausal

Outline Motivation: conflict-driven reasoning from PL to FOL SGGS: model representation and FO clausal propagation SGGS inferences: instance generation and conflict solving Discussion SGGS: conflict-driven first-order reasoning 1 Maria Paola

582 views • 42 slides
Constructive Proofs and Program Extraction Christoph Kreitz 1. Type Theory vs. Set Theory 2.

Constructive Proofs and Program Extraction Christoph Kreitz 1. Type Theory vs. Set Theory 2.

Constructive Proofs and Program Extraction Christoph Kreitz 1. Type Theory vs. Set Theory 2. Overview of the Nuprl System 3. Proofs of the Integer Square Root Problem What distinguishes Type Theory from Set Theory? n r r 2 n

800 views • 42 slides
Conflict-driven Reasoning Conflict-Driven SATisfiability 2 CDCL : propositional conflict-driven

Conflict-driven Reasoning Conflict-Driven SATisfiability 2 CDCL : propositional conflict-driven

The Eos SMT/SMA-Solver: A Preliminary Report 1 Giulio Mazzi Universit` a Degli Studi di Verona Lisbon, 7th July 2019 1 Joint work with Maria Paola Bonacina G. Mazzi (Universit` a di Verona) Eos SMT/SMA-solver Lisbon, 7th July 2019 1 / 31

430 views • 31 slides
Design for a combination of compounds: the balance between theory and practice Peter Lane &amp;

Design for a combination of compounds: the balance between theory and practice Peter Lane &amp;

Design for a combination of compounds: the balance between theory and practice Peter Lane &amp; Yuehui Wu Research Statistics Unit Drug combination Increasing interest in combinations of drugs Ever-pressing need to speed up development

281 views • 25 slides
Proofs that, proofs why, and the analysis of paradoxes To Gerhard, on your 60th birthday Peter

Proofs that, proofs why, and the analysis of paradoxes To Gerhard, on your 60th birthday Peter

Proofs that, proofs why, and the analysis of paradoxes To Gerhard, on your 60th birthday Peter Schroeder-Heister Universit at T ubingen J agerfest Bern, 13.12.2013 p. 1 Russells antinomy in naive set theory Extend natural

688 views • 41 slides
Bargaining Theory J2P216 SE: International Cooperation and Conflict April 21/April 29, 2016 Reto

Bargaining Theory J2P216 SE: International Cooperation and Conflict April 21/April 29, 2016 Reto

Bargaining Theory J2P216 SE: International Cooperation and Conflict April 21/April 29, 2016 Reto West Global Studies Institute University of Geneva Outline 1 Introduction What Causes Conflict Between States? Bargaining Theory 2 Powell

1.08k views • 44 slides
MA/CSSE 474 Theory of Computation Proofs of several things (as much as we have time for) Your

MA/CSSE 474 Theory of Computation Proofs of several things (as much as we have time for) Your

3/19/2018 MA/CSSE 474 Theory of Computation Proofs of several things (as much as we have time for) Your Questions? Previous class days' HW5 problems material Tuesday's Exam Reading Assignments Anything else 1

124 views • 11 slides
General motivations Model theory Recursion theory Lambda calculus Set theory

General motivations Model theory Recursion theory Lambda calculus Set theory

A N INTERACTIVE SEMANTICS FOR CLASSICAL PROOFS Michele Basaldella JAIST February 19, 2013 I NTRODUCTION General motivations Model theory Recursion theory Lambda calculus Set theory Lattice theory Domain theory . . .

995 views • 57 slides
A Theory of Satisfiability-Preserving Proofs in SAT Solving Adrin Rebola-Pardo, Martin Suda TU

A Theory of Satisfiability-Preserving Proofs in SAT Solving Adrin Rebola-Pardo, Martin Suda TU

A Theory of Satisfiability-Preserving Proofs in SAT Solving Adrin Rebola-Pardo, Martin Suda TU Wien FMCAD Student Forum Austin, USA October 31st, 2018 Supported by FWF W1255-N23 and Microsofu Research through its PhD Programme A theory of

269 views • 8 slides
The Big Picture The CDSAT paradigm for SMT/SMA Discussion Maria Paola Bonacina Conflict-Driven

The Big Picture The CDSAT paradigm for SMT/SMA Discussion Maria Paola Bonacina Conflict-Driven

The Big Picture The CDSAT paradigm for SMT/SMA Discussion Conflict-Driven Reasoning in Unions of Theories 1 Maria Paola Bonacina Dipartimento di Informatica Universit` a degli Studi di Verona Verona, Italy, EU Invited Keynote Speech 12th

775 views • 50 slides
Proofs, Continued Today Proofs : A style guide Proofs should be easy to

Proofs, Continued Today Proofs : A style guide Proofs should be easy to

Euclid (300 BC) Proofs, Continued Today Proofs : A style guide Proofs should be easy to verify. All the cleverness goes into finding/writing the proof, not reading/verifying it! P vs. NP (informally) : P =

682 views • 21 slides
Internal Conflict 14.123 Microeconomic Theory III Muhamet Yildiz Motivation DM is assumed to

Internal Conflict 14.123 Microeconomic Theory III Muhamet Yildiz Motivation DM is assumed to

3/19/2015 Internal Conflict 14.123 Microeconomic Theory III Muhamet Yildiz Motivation DM is assumed to be a unitary agent, trying to improve his well being so far But internal conflict may be the rule for homopsychologicus

402 views • 8 slides
Welcome to PROOFS! PROOFS: Security Proofs for Embedded Systems Introduction to the fifth

Welcome to PROOFS! PROOFS: Security Proofs for Embedded Systems Introduction to the fifth

Welcome to PROOFS! PROOFS: Security Proofs for Embedded Systems Introduction to the fifth workshop Introduction to the workshop PROOFS: Security Proofs for Embedded Systems UCSB August 20, 2016 5th edition of PROOFS PROOFS 2012:

311 views • 7 slides
Proof reconstruction in conflict-driven satisfiability 1 Maria Paola Bonacina Dipartimento di

Proof reconstruction in conflict-driven satisfiability 1 Maria Paola Bonacina Dipartimento di

The big picture Proof-carrying CDSAT Discussion Proof reconstruction in conflict-driven satisfiability 1 Maria Paola Bonacina Dipartimento di Informatica Universit` a degli Studi di Verona Verona, Italy, EU Schlo Dagstuhl Seminar # 19371:

392 views • 28 slides
ICS 275 Winter 2016 Winter 2016 Winter 2016 Conflict Analysis: Implication Grpahs The

ICS 275 Winter 2016 Winter 2016 Winter 2016 Conflict Analysis: Implication Grpahs The

Boolean Satisfiability ICS 275 Winter 2016 Winter 2016 Winter 2016 Conflict Analysis: Implication Grpahs The combination of these techniques makes sure that unit resolution is empowered every time a conflict arises and that the solver

695 views • 56 slides
MT System Combination Silja Hildebrand MT System Combination System Combination in MT

MT System Combination Silja Hildebrand MT System Combination System Combination in MT

MT System Combination Silja Hildebrand MT System Combination System Combination in MT Methods of machine translation Rule based Statistical Hierarchical Syntax based Output is different Make use of the individual strengths of the

722 views • 70 slides
Proofs by example Benjamin Matschke Boston University Number Theory Seminar Harvard, Oct. 2019

Proofs by example Benjamin Matschke Boston University Number Theory Seminar Harvard, Oct. 2019

Proofs by example Benjamin Matschke Boston University Number Theory Seminar Harvard, Oct. 2019 P ROOFS BY EXAMPLE Proofs by example P ROOFS BY EXAMPLE To prove a general statement by verifying it for a single example. P ROOFS BY EXAMPLE

971 views • 50 slides
Conflict-Driven Clause Learning Marijn J.H. Heule http://www.cs.cmu.edu/~mheule/15816-f19/

Conflict-Driven Clause Learning Marijn J.H. Heule http://www.cs.cmu.edu/~mheule/15816-f19/

Conflict-Driven Clause Learning Marijn J.H. Heule http://www.cs.cmu.edu/~mheule/15816-f19/ Automated Reasoning and Satisfiability, September 16, 2019 1/33 The Satisfiability (SAT) problem ( x 5 x 8 x 2 ) ( x 2 x 1 x

881 views • 74 slides
Conflict Driven Learning and Non-chronological Backtracking x1 + x4 x1 + x3 + x8 x1 + x8

Conflict Driven Learning and Non-chronological Backtracking x1 + x4 x1 + x3 + x8 x1 + x8

Conflict Driven Learning and Non-chronological Backtracking x1 + x4 x1 + x3 + x8 x1 + x8 + x12 x2 + x11 x7 + x3 + x9 x7 + x8 + x9 x7 + x8 + x10 x7 + x10 + x12 Conflict Driven Learning and Non-chronological

607 views • 29 slides
Dependent Types in Haskell What is Dependent Type Theory? are types, proofs are programs

Dependent Types in Haskell What is Dependent Type Theory? are types, proofs are programs

Stephanie Weirich University of Pennsylvania https://github.com/sweirich/dth @fancytypes Dependent Types in Haskell What is Dependent Type Theory? are types, proofs are programs Originally, logical foundation for mathematics

840 views • 39 slides
CSE 311: Foundations of Computing Lecture 9: English Proofs, Strategies, Set Theory Last class:

CSE 311: Foundations of Computing Lecture 9: English Proofs, Strategies, Set Theory Last class:

CSE 311: Foundations of Computing Lecture 9: English Proofs, Strategies, Set Theory Last class: Inference Rules for Quantifiers P(c) for some c x P(x) Elim Intro P(a) for any a x P(x) Let a be arbitrary * ...P(a)

872 views • 51 slides
Testing membership in varieties, algebraic natural proofs, and geometric complexity theory

Testing membership in varieties, algebraic natural proofs, and geometric complexity theory

Testing membership in varieties, algebraic natural proofs, and geometric complexity theory Markus Bl aser Saarland University with Christian Ikenmeyer, Gorav Jindal, Vladimir Lysikov, Anurag Pandey, and Frank-Olaf Schreyer Membership

537 views • 27 slides
Modeling Dynamics of and on Networks Simultaneously Theory-Driven and Data-Driven Approaches

Modeling Dynamics of and on Networks Simultaneously Theory-Driven and Data-Driven Approaches

Modeling Dynamics of and on Networks Simultaneously Theory-Driven and Data-Driven Approaches Hiroki Sayama Binghamton University, SUNY sayama@binghamton.edu 2 6/3/2014 Sayama -- HONS @ NetSci 2014 Complex Systems Modeled as Networks 3

347 views • 33 slides

More recommend