proving termination of imperative programs using max smt
play

Proving Termination of Imperative Programs using Max-SMT Daniel - PowerPoint PPT Presentation

Mar 30, 2023 •436 likes •1.18k views

Introduction SMT/Max-SMT solving Invariant generation Termination analysis Further work Proving Termination of Imperative Programs using Max-SMT Daniel Larraz, Albert Oliveras, Enric Rodr guez-Carbonell and Albert Rubio Universitat

  1. Introduction SMT/Max-SMT solving Invariant generation Termination analysis Further work Proving Termination of Imperative Programs using Max-SMT Daniel Larraz, Albert Oliveras, Enric Rodr´ ıguez-Carbonell and Albert Rubio Universitat Polit` ecnica de Catalunya FMCAD, October 2013 1 Larraz,Oliveras,Rodr´ ıguez-Carbonell,Rubio, UPC FMCAD’13 Proving Termination of Imperative Programs Using Max-SMT

  2. Introduction SMT/Max-SMT solving Invariant generation Termination analysis Further work Outline 1 Introduction 2 SMT/Max-SMT solving 3 Invariant generation 4 Termination analysis 5 Further work 2 Larraz,Oliveras,Rodr´ ıguez-Carbonell,Rubio, UPC FMCAD’13 Proving Termination of Imperative Programs Using Max-SMT

  3. Introduction SMT/Max-SMT solving Invariant generation Termination analysis Further work Outline 1 Introduction 2 SMT/Max-SMT solving 3 Invariant generation 4 Termination analysis 5 Further work 3 Larraz,Oliveras,Rodr´ ıguez-Carbonell,Rubio, UPC FMCAD’13 Proving Termination of Imperative Programs Using Max-SMT

  4. Introduction SMT/Max-SMT solving Invariant generation Termination analysis Further work Motivation • Prove termination of imperative programs automatically. • Find ranking functions. • Find supporting invariants. • How to guide the search!. 4 Larraz,Oliveras,Rodr´ ıguez-Carbonell,Rubio, UPC FMCAD’13 Proving Termination of Imperative Programs Using Max-SMT

  5. Introduction SMT/Max-SMT solving Invariant generation Termination analysis Further work Simple example void simpleT(int x, int y) { while (y>0) { while (x>0) { x=x-y; y=y+1; } y=y-1; } } 5 Larraz,Oliveras,Rodr´ ıguez-Carbonell,Rubio, UPC FMCAD’13 Proving Termination of Imperative Programs Using Max-SMT

  6. Introduction SMT/Max-SMT solving Invariant generation Termination analysis Further work Simple example void simpleT(int x, int y) { while (y>0) { while (x>0) { x=x-y; y=y+1; } y=y-1; } } Terminates. 5 Larraz,Oliveras,Rodr´ ıguez-Carbonell,Rubio, UPC FMCAD’13 Proving Termination of Imperative Programs Using Max-SMT

  7. Introduction SMT/Max-SMT solving Invariant generation Termination analysis Further work Simple example void simpleT(int x, int y) { while (y>0) { Ranking function: y // Inv: y>0 while (x>0) { Ranking function: x x=x-y; y=y+1; } y=y-1; } } Terminates. 5 Larraz,Oliveras,Rodr´ ıguez-Carbonell,Rubio, UPC FMCAD’13 Proving Termination of Imperative Programs Using Max-SMT

  8. Introduction SMT/Max-SMT solving Invariant generation Termination analysis Further work Goals Main goal: fully-automatic program termination analysis. 6 Larraz,Oliveras,Rodr´ ıguez-Carbonell,Rubio, UPC FMCAD’13 Proving Termination of Imperative Programs Using Max-SMT

  9. Introduction SMT/Max-SMT solving Invariant generation Termination analysis Further work Goals Main goal: fully-automatic program termination analysis. • Consider integer linear programs. • Use the constraint-based method [CSS2003, BMS2005]. 6 Larraz,Oliveras,Rodr´ ıguez-Carbonell,Rubio, UPC FMCAD’13 Proving Termination of Imperative Programs Using Max-SMT

  10. Introduction SMT/Max-SMT solving Invariant generation Termination analysis Further work Goals Main goal: fully-automatic program termination analysis. • Consider integer linear programs. • Use the constraint-based method [CSS2003, BMS2005]. • Use an SMT solver to solve the constraints. 6 Larraz,Oliveras,Rodr´ ıguez-Carbonell,Rubio, UPC FMCAD’13 Proving Termination of Imperative Programs Using Max-SMT

  11. Introduction SMT/Max-SMT solving Invariant generation Termination analysis Further work Goals Main goal: fully-automatic program termination analysis. • Consider integer linear programs. • Use the constraint-based method [CSS2003, BMS2005]. • Use an SMT solver to solve the constraints. • Use Max-SMT to guide the search • Invariant conditions are hard • Termination conditions are soft 6 Larraz,Oliveras,Rodr´ ıguez-Carbonell,Rubio, UPC FMCAD’13 Proving Termination of Imperative Programs Using Max-SMT

  12. Introduction SMT/Max-SMT solving Invariant generation Termination analysis Further work Outline 1 Introduction 2 SMT/Max-SMT solving 3 Invariant generation 4 Termination analysis 5 Further work 7 Larraz,Oliveras,Rodr´ ıguez-Carbonell,Rubio, UPC FMCAD’13 Proving Termination of Imperative Programs Using Max-SMT

  13. Introduction SMT/Max-SMT solving Invariant generation Termination analysis Further work SMT solving Input: Given a boolean formula ϕ over some theory T . Question: Is there any interpretation that satisfies the formula? Example: T = linear integer/real arithmetic. ( x < 0 ∨ x ≤ y ∨ y < z ) ∧ ( x ≥ 0) ∧ ( x > y ∨ y < z ) { x = 1 , y = 0 , z = 2 } 8 Larraz,Oliveras,Rodr´ ıguez-Carbonell,Rubio, UPC FMCAD’13 Proving Termination of Imperative Programs Using Max-SMT

  14. Introduction SMT/Max-SMT solving Invariant generation Termination analysis Further work SMT solving Input: Given a boolean formula ϕ over some theory T . Question: Is there any interpretation that satisfies the formula? Example: T = linear integer/real arithmetic. ( x < 0 ∨ x ≤ y ∨ y < z ) ∧ ( x ≥ 0) ∧ ( x > y ∨ y < z ) { x = 1 , y = 0 , z = 2 } 8 Larraz,Oliveras,Rodr´ ıguez-Carbonell,Rubio, UPC FMCAD’13 Proving Termination of Imperative Programs Using Max-SMT

  15. Introduction SMT/Max-SMT solving Invariant generation Termination analysis Further work SMT solving Input: Given a boolean formula ϕ over some theory T . Question: Is there any interpretation that satisfies the formula? Example: T = linear integer/real arithmetic. ( x < 0 ∨ x ≤ y ∨ y < z ) ∧ ( x ≥ 0) ∧ ( x > y ∨ y < z ) { x = 1 , y = 0 , z = 2 } There exist very efficient solvers: yices, z3, Barcelogic, ... Can handle large formulas with a complex boolean structure. 8 Larraz,Oliveras,Rodr´ ıguez-Carbonell,Rubio, UPC FMCAD’13 Proving Termination of Imperative Programs Using Max-SMT

  16. Introduction SMT/Max-SMT solving Invariant generation Termination analysis Further work SMT solving Input: Given a boolean formula ϕ over some theory T . Question: Is there any interpretation that satisfies the formula? Example: T = non-linear (polynomial) integer/real arithmetic. ( x 2 + y 2 > 2 ∨ x · z ≤ y ∨ y · z < z 2 ) ∧ ( x > y ∨ 0 < z ) { x = 0 , y = 1 , z = 1 } 8 Larraz,Oliveras,Rodr´ ıguez-Carbonell,Rubio, UPC FMCAD’13 Proving Termination of Imperative Programs Using Max-SMT

  17. Introduction SMT/Max-SMT solving Invariant generation Termination analysis Further work SMT solving Input: Given a boolean formula ϕ over some theory T . Question: Is there any interpretation that satisfies the formula? Example: T = non-linear (polynomial) integer/real arithmetic. ( x 2 + y 2 > 2 ∨ x · z ≤ y ∨ y · z < z 2 ) ∧ ( x > y ∨ 0 < z ) { x = 0 , y = 1 , z = 1 } 8 Larraz,Oliveras,Rodr´ ıguez-Carbonell,Rubio, UPC FMCAD’13 Proving Termination of Imperative Programs Using Max-SMT

  18. Introduction SMT/Max-SMT solving Invariant generation Termination analysis Further work SMT solving Input: Given a boolean formula ϕ over some theory T . Question: Is there any interpretation that satisfies the formula? Example: T = non-linear (polynomial) integer/real arithmetic. ( x 2 + y 2 > 2 ∨ x · z ≤ y ∨ y · z < z 2 ) ∧ ( x > y ∨ 0 < z ) { x = 0 , y = 1 , z = 1 } Non-linear arithmetic decidability: • Integers: undecidable • Reals: decidable but unpractical due to its complexity. 8 Larraz,Oliveras,Rodr´ ıguez-Carbonell,Rubio, UPC FMCAD’13 Proving Termination of Imperative Programs Using Max-SMT

  19. Introduction SMT/Max-SMT solving Invariant generation Termination analysis Further work SMT solving Input: Given a boolean formula ϕ over some theory T . Question: Is there any interpretation that satisfies the formula? Example: T = non-linear (polynomial) integer/real arithmetic. ( x 2 + y 2 > 2 ∨ x · z ≤ y ∨ y · z < z 2 ) ∧ ( x > y ∨ 0 < z ) { x = 0 , y = 1 , z = 1 } Non-linear arithmetic decidability: • Integers: undecidable • Reals: decidable but unpractical due to its complexity. Incomplete solvers focused on either satisfiability or unsatisfiability. 8 Larraz,Oliveras,Rodr´ ıguez-Carbonell,Rubio, UPC FMCAD’13 Proving Termination of Imperative Programs Using Max-SMT

  20. Introduction SMT/Max-SMT solving Invariant generation Termination analysis Further work SMT solving Input: Given a boolean formula ϕ over some theory T . Question: Is there any interpretation that satisfies the formula? Example: T = non-linear (polynomial) integer/real arithmetic. ( x 2 + y 2 > 2 ∨ x · z ≤ y ∨ y · z < z 2 ) ∧ ( x > y ∨ 0 < z ) { x = 0 , y = 1 , z = 1 } Non-linear arithmetic decidability: • Integers: undecidable • Reals: decidable but unpractical due to its complexity. Incomplete solvers focused on either satisfiability or unsatisfiability. Need to handle again large formulas with complex boolean structure. Barcelogic SMT-solver works very well finding solutions 8 Larraz,Oliveras,Rodr´ ıguez-Carbonell,Rubio, UPC FMCAD’13 Proving Termination of Imperative Programs Using Max-SMT

Recommend

. Needs effective (finitary) representation .. Failed Termination Proof vs. Non- TNT:

. Needs effective (finitary) representation .. Failed Termination Proof vs. Non- TNT:

Runtime Errors Proving Non-Termination Ashutosh K. Gupta Thomas A. Henzinger Rupak Majumdar MPI-SWS EPFL UCLA Andrey Rybalchenko Ru-Gang Xu MPI-SWS UCLA 2 Non-Termination Errors Proving Non-Termination Search for infinite

402 views • 6 slides
Customised Induction Rules for Proving Correctness of Imperative Programs Angela Wallenburg

Customised Induction Rules for Proving Correctness of Imperative Programs Angela Wallenburg

Customised Induction Rules for Proving Correctness of Imperative Programs Angela Wallenburg angelaw@cs.chalmers.se 4th International Symposium June 9, 2005, L okeberg Outline 1. Problem: Induction and Loops 2. First approach: Use idea

821 views • 34 slides
Proving Equivalence of Imperative Programs via Constrained Rewriting Induction Carsten Fuhs

Proving Equivalence of Imperative Programs via Constrained Rewriting Induction Carsten Fuhs

Proving Equivalence of Imperative Programs via Constrained Rewriting Induction Carsten Fuhs Birkbeck, University of London joint work with Cynthia Kop (U Copenhagen) and Naoki Nishida (U Nagoya) Workshop on Program Equivalence, London, UK 11

2.1k views • 197 slides
On Proving Almost-Sure Termination Joost-Pieter Katoen Talk 2019 Meeting IFIP WG 2.2, Vienna

On Proving Almost-Sure Termination Joost-Pieter Katoen Talk 2019 Meeting IFIP WG 2.2, Vienna

IFIP WG 2.2, 2019 On Proving Almost-Sure Termination Joost-Pieter Katoen Talk 2019 Meeting IFIP WG 2.2, Vienna Joost-Pieter Katoen On Proving Almost-Sure Termination 1/30 IFIP WG 2.2, 2019 Termination of programs that roll dice?

631 views • 34 slides
FITR304 - Software Validation Deductive methods for proving imperative programs Christophe Garion

FITR304 - Software Validation Deductive methods for proving imperative programs Christophe Garion

Institut Suprieur de lAronautique et de lEspace FITR304 - Software Validation Deductive methods for proving imperative programs Christophe Garion DMIA ISAE Christophe Garion IN324 Software Validation deductive methods 1/

2.2k views • 174 slides
Semantic Labelling for Proving Termination of Combinatory Reduction Systems Makoto Hamana

Semantic Labelling for Proving Termination of Combinatory Reduction Systems Makoto Hamana

Semantic Labelling for Proving Termination of Combinatory Reduction Systems Makoto Hamana Department of Computer Science, Gunma University, Japan WFLP09 June, 2009. 1 Intro: Termination Proof by RPO Term Rewriting System (TRS) R : fact

540 views • 17 slides
Better termination proving through cooperation Marc Brockschmidt 1 Byron Cook 2 , 3 Carsten Fuhs 3

Better termination proving through cooperation Marc Brockschmidt 1 Byron Cook 2 , 3 Carsten Fuhs 3

Better termination proving through cooperation Marc Brockschmidt 1 Byron Cook 2 , 3 Carsten Fuhs 3 1 RWTH Aachen University 2 Microsoft Research Cambridge 3 University College London Deduktionstreffen 2013 Termination Analysis: Invariants and Rank

538 views • 37 slides
Logic Programming 1 Logic Programming Instead of using functions as in imperative and

Logic Programming 1 Logic Programming Instead of using functions as in imperative and

Logic Programming 1 Logic Programming Instead of using functions as in imperative and functional programs We use predicates, as in predicate calculus Interpretation = proving theorems 2 Prolog Developed at Univ. of

663 views • 7 slides
Proving Equivalence Between Imperative and MapReduce Implementations Using Program

Proving Equivalence Between Imperative and MapReduce Implementations Using Program

Proving Equivalence Between Imperative and MapReduce Implementations Using Program Transformations VPT 2018 Thessaloniki 20 April 2018 Bernhard Beckert, Timo Bingman, Moritz Kiefer, Peter Sanders, Mattias Ulbrich , Alexander Weigl www.kit.edu

968 views • 60 slides
Certification of proving termination of term rewriting by matrix interpretations Adam Koprowski

Certification of proving termination of term rewriting by matrix interpretations Adam Koprowski

Certification of proving termination of term rewriting by matrix interpretations Adam Koprowski and Hans Zantema Eindhoven University of Technology Department of Mathematics and Computer Science 21 January 2008 SOFSEM08 Nov Smokovec,

1.06k views • 78 slides
Verification of Imperative Programs through Transformation of Constraint Logic Programs Emanuele

Verification of Imperative Programs through Transformation of Constraint Logic Programs Emanuele

Verification of Imperative Programs through Transformation of Constraint Logic Programs Emanuele De Angelis 1 , Fabio Fioravanti 1 , Alberto Pettorossi 2 , and Maurizio Proietti 3 1 University of Chieti-Pescara G. dAnnunzio, Italy 2

671 views • 52 slides
Structural counter abstraction Proving fair-termination of depth bounded systems Kshitij Bansal 1

Structural counter abstraction Proving fair-termination of depth bounded systems Kshitij Bansal 1

Structural counter abstraction Proving fair-termination of depth bounded systems Kshitij Bansal 1 with Eric Koskinen 1 , Thomas Wies 1 , Damien Zufferey 2 1 New York University 2 IST Austria March 18, 2013 TACAS, Rome, Italy Introduction

714 views • 32 slides
Proving termination using dependent types: the case of xor-terms J.-F. Monin J. Courant VERIMAG

Proving termination using dependent types: the case of xor-terms J.-F. Monin J. Courant VERIMAG

Proving termination using dependent types: the case of xor-terms J.-F. Monin J. Courant VERIMAG Grenoble, France GDR LAC, Chambery, 2007 Outline Motivation The case of cryptographic systems State of the art Back to cryptographic systems

1.46k views • 117 slides
Automatic Cyclic Termination Proofs for Recursive Procedures in Separation Logic Reuben Rowe and

Automatic Cyclic Termination Proofs for Recursive Procedures in Separation Logic Reuben Rowe and

Automatic Cyclic Termination Proofs for Recursive Procedures in Separation Logic Reuben Rowe and James Brotherston University College London TAPAS, Edinburgh, Wednesday 7 th September 2016 Automatically Proving Termination: Challenges proc

815 views • 57 slides
Analysis using Configurable Software Verification Sebastian Ott Termination No infinite

Analysis using Configurable Software Verification Sebastian Ott Termination No infinite

Implementing Termination Analysis using Configurable Software Verification Sebastian Ott Termination No infinite execution Liveness property Important property of programs: partial correctness termination total

375 views • 15 slides
The Dependency Pair Technique Proving Termination of Term Rewrite Systems Hannes Saffrich

The Dependency Pair Technique Proving Termination of Term Rewrite Systems Hannes Saffrich

Program Analysis Seminar The Dependency Pair Technique Proving Termination of Term Rewrite Systems Hannes Saffrich University of Freiburg Department of Computer Science June 30, 2015 Hannes Saffrich The Dependency Pair Technique Program

441 views • 23 slides
Types of Termination Mutual With Consent Termination Automatic Termination

Types of Termination Mutual With Consent Termination Automatic Termination

Types of Termination Mutual With Consent Termination Automatic Termination Termination Termination for Convenience Without Consent Frustration /Force Majeure Contractual Breach Breach Common Law Breach

444 views • 29 slides
Size-change termination in reverse mathematics Emanuele Frittaion (joint work with Silvia Steila,

Size-change termination in reverse mathematics Emanuele Frittaion (joint work with Silvia Steila,

SCT Programs SCT criterion Termination Size-change termination in reverse mathematics Emanuele Frittaion (joint work with Silvia Steila, Keita Yokoyama, and Florian Pelupessy) CiE 2016 SCT Programs SCT criterion Termination Size-Change

514 views • 38 slides
Disproving Termination with Overapproximation Carsten Byron Fuhs Cook Kaustubh Peter Nimkar

Disproving Termination with Overapproximation Carsten Byron Fuhs Cook Kaustubh Peter Nimkar

Disproving Termination with Overapproximation Carsten Byron Fuhs Cook Kaustubh Peter Nimkar OHearn University College London Microsoft Research FMCAD 2014, Lausanne, Switzerland, 24 October 2014 Proving Program Non-Termination Given :

492 views • 34 slides
Bound Analysis of Imperative Programs with the Size change Abstraction Florian Zuleger, TU

Bound Analysis of Imperative Programs with the Size change Abstraction Florian Zuleger, TU

Bound Analysis of Imperative Programs with the Size change Abstraction Florian Zuleger, TU Vienna SAS, Venice, 16.09.2011 Joint work with Sumit Gulwani, Microsoft Research Moritz Sinn, Helmut Veith, TU Vienna Resource Bounds Programs consume a

1.05k views • 48 slides
Decision Procedures for Automating Termination Proofs Ruzica Piskac, EPFL Thomas Wies, IST

Decision Procedures for Automating Termination Proofs Ruzica Piskac, EPFL Thomas Wies, IST

Decision Procedures for Automating Termination Proofs Ruzica Piskac, EPFL Thomas Wies, IST Austria Proving Program Termination assum sume x &gt; 0 le x 0 do while do y := 1 while y &lt; x do do y := 2 y end x := x 1 end Ranking

489 views • 28 slides
Difference Constraints: An adequate Abstraction for Complexity Analysis of Imperative Programs

Difference Constraints: An adequate Abstraction for Complexity Analysis of Imperative Programs

Difference Constraints: An adequate Abstraction for Complexity Analysis of Imperative Programs Florian Zuleger Technische Universitt Wien FMCAD, 28.09.2015 Joint work with Moritz Sinn, Helmut Veith Bounds and Complexity foo(uint n) Local

437 views • 26 slides
A Survey of Program Termination: Practical and Theoretical Challenges Jo el Ouaknine

A Survey of Program Termination: Practical and Theoretical Challenges Jo el Ouaknine

A Survey of Program Termination: Practical and Theoretical Challenges Jo el Ouaknine Department of Computer Science, Oxford University VTSA 2014 Luxembourg, October 2014 Termination of Linear Programs x := a ; while u x 0 do x := M

1.44k views • 115 slides
Direct Manipulation For Imperative Programs Hu 1 , Roopsha Samanta 2 , Rishabh Singh 3 , Loris

Direct Manipulation For Imperative Programs Hu 1 , Roopsha Samanta 2 , Rishabh Singh 3 , Loris

Direct Manipulation For Imperative Programs Hu 1 , Roopsha Samanta 2 , Rishabh Singh 3 , Loris DAntoni 1 Qin Qinhepin ing Hu 1 Universitve of Wisconsin-Madison 2 Purdue University 3 Google 5 Variable values Call stack code 6 Python

1.04k views • 90 slides

More recommend