semantics and verification of software
play

Semantics and Verification of Software Summer Semester 2019 Lecture - PowerPoint PPT Presentation

Aug 18, 2023 •382 likes •980 views

Semantics and Verification of Software Summer Semester 2019 Lecture 11: Axiomatic Semantics of WHILE III (Completeness & Total Correctness) Thomas Noll Software Modeling and Verification Group RWTH Aachen University

  1. Semantics and Verification of Software Summer Semester 2019 Lecture 11: Axiomatic Semantics of WHILE III (Completeness & Total Correctness) Thomas Noll Software Modeling and Verification Group RWTH Aachen University https://moves.rwth-aachen.de/teaching/ss-19/sv-sw/

  2. Recap: Hoare Logic Outline of Lecture 11 Recap: Hoare Logic Incompleteness of Hoare Logic Relative Completeness of Hoare Logic Total Correctness 2 of 22 Semantics and Verification of Software Summer Semester 2019 Lecture 11: Axiomatic Semantics of WHILE III (Completeness & Total Correctness)

  3. Recap: Hoare Logic Hoare Logic Goal: syntactic derivation of valid partial correctness properties. Here A [ x �→ a ] denotes the syntactic replacement of every occurrence of x by a in A . Tony Hoare (* 1934) Definition (Hoare Logic) The Hoare rules are given by (skip) { A } skip { A } (asgn) { A [ x �→ a ] } x := a { A } (seq) { A } c 1 { C } { C } c 2 { B } (if) { A ∧ b } c 1 { B } { A ∧ ¬ b } c 2 { B } { A } c 1 ; c 2 { B } { A } if b then c 1 else c 2 end { B } = ( B ′ ⇒ B ) = ( A ⇒ A ′ ) { A ′ } c { B ′ } { A ∧ b } c { A } (cons) | | (while) { A } while b do c end { A ∧ ¬ b } { A } c { B } A partial correctness property is provable (notation: ⊢ { A } c { B } ) if it is derivable by the Hoare rules. In (while), A is called a (loop) invariant. 3 of 22 Semantics and Verification of Software Summer Semester 2019 Lecture 11: Axiomatic Semantics of WHILE III (Completeness & Total Correctness)

  4. Recap: Hoare Logic Soundness of Hoare Logic Theorem (Soundness of Hoare Logic) For every partial correctness property { A } c { B } , ⊢ { A } c { B } ⇒ | = { A } c { B } . Proof. Let ⊢ { A } c { B } . By induction over the structure of the corresponding proof tree we = I A , C � c � σ = ⊥ or C � c � σ | = I B show that, for every σ ∈ Σ and I ∈ Int such that σ | (on the board). 4 of 22 Semantics and Verification of Software Summer Semester 2019 Lecture 11: Axiomatic Semantics of WHILE III (Completeness & Total Correctness)

  5. Incompleteness of Hoare Logic Outline of Lecture 11 Recap: Hoare Logic Incompleteness of Hoare Logic Relative Completeness of Hoare Logic Total Correctness 5 of 22 Semantics and Verification of Software Summer Semester 2019 Lecture 11: Axiomatic Semantics of WHILE III (Completeness & Total Correctness)

  6. Incompleteness of Hoare Logic Incompleteness of Hoare Logic I Soundness: only valid partial correctness properties are provable � Completeness: all valid partial correctness properties are systematically derivable � 6 of 22 Semantics and Verification of Software Summer Semester 2019 Lecture 11: Axiomatic Semantics of WHILE III (Completeness & Total Correctness)

  7. Incompleteness of Hoare Logic Incompleteness of Hoare Logic I Soundness: only valid partial correctness properties are provable � Completeness: all valid partial correctness properties are systematically derivable � Theorem 11.1 (G¨ odel’s Incompleteness Theorem) The set of all valid assertions { A ∈ Assn | | = A } is not recursively enumerable, i.e., there exists no proof system for Assn in which all valid assertions are systematically derivable. Proof. Kurt G¨ odel see [Winskel 1996, p. 110 ff] (1906–1978) 6 of 22 Semantics and Verification of Software Summer Semester 2019 Lecture 11: Axiomatic Semantics of WHILE III (Completeness & Total Correctness)

  8. Incompleteness of Hoare Logic Incompleteness of Hoare Logic II Corollary 11.2 There is no proof system in which all valid partial correctness properties can be enumerated. 7 of 22 Semantics and Verification of Software Summer Semester 2019 Lecture 11: Axiomatic Semantics of WHILE III (Completeness & Total Correctness)

  9. Incompleteness of Hoare Logic Incompleteness of Hoare Logic II Corollary 11.2 There is no proof system in which all valid partial correctness properties can be enumerated. Proof. Given A ∈ Assn , | = A is obviously equivalent to { true } skip { A } . Thus the enumerability of all valid partial correctness properties would imply the enumerability of all valid assertions. 7 of 22 Semantics and Verification of Software Summer Semester 2019 Lecture 11: Axiomatic Semantics of WHILE III (Completeness & Total Correctness)

  10. Incompleteness of Hoare Logic Incompleteness of Hoare Logic II Corollary 11.2 There is no proof system in which all valid partial correctness properties can be enumerated. Proof. Given A ∈ Assn , | = A is obviously equivalent to { true } skip { A } . Thus the enumerability of all valid partial correctness properties would imply the enumerability of all valid assertions. Remark: alternative proof (using computability theory): { true } c { false } is valid iff c does not terminate on any input state. But the set of all non-terminating WHILE statements is not enumerable. 7 of 22 Semantics and Verification of Software Summer Semester 2019 Lecture 11: Axiomatic Semantics of WHILE III (Completeness & Total Correctness)

  11. Relative Completeness of Hoare Logic Outline of Lecture 11 Recap: Hoare Logic Incompleteness of Hoare Logic Relative Completeness of Hoare Logic Total Correctness 8 of 22 Semantics and Verification of Software Summer Semester 2019 Lecture 11: Axiomatic Semantics of WHILE III (Completeness & Total Correctness)

  12. Relative Completeness of Hoare Logic Relative Completeness of Hoare Logic I • We will see: actual reason of incompleteness is rule = ( B ′ ⇒ B ) = ( A ⇒ A ′ ) { A ′ } c { B ′ } (cons) | | { A } c { B } since it is based on the validity of implications within Assn 9 of 22 Semantics and Verification of Software Summer Semester 2019 Lecture 11: Axiomatic Semantics of WHILE III (Completeness & Total Correctness)

  13. Relative Completeness of Hoare Logic Relative Completeness of Hoare Logic I • We will see: actual reason of incompleteness is rule = ( B ′ ⇒ B ) = ( A ⇒ A ′ ) { A ′ } c { B ′ } (cons) | | { A } c { B } since it is based on the validity of implications within Assn • The other language constructs are “enumerable” 9 of 22 Semantics and Verification of Software Summer Semester 2019 Lecture 11: Axiomatic Semantics of WHILE III (Completeness & Total Correctness)

  14. Relative Completeness of Hoare Logic Relative Completeness of Hoare Logic I • We will see: actual reason of incompleteness is rule = ( B ′ ⇒ B ) = ( A ⇒ A ′ ) { A ′ } c { B ′ } (cons) | | { A } c { B } since it is based on the validity of implications within Assn • The other language constructs are “enumerable” • Therefore: separation of proof system (Hoare Logic) and assertion language ( Assn ) 9 of 22 Semantics and Verification of Software Summer Semester 2019 Lecture 11: Axiomatic Semantics of WHILE III (Completeness & Total Correctness)

  15. Relative Completeness of Hoare Logic Relative Completeness of Hoare Logic I • We will see: actual reason of incompleteness is rule = ( B ′ ⇒ B ) = ( A ⇒ A ′ ) { A ′ } c { B ′ } (cons) | | { A } c { B } since it is based on the validity of implications within Assn • The other language constructs are “enumerable” • Therefore: separation of proof system (Hoare Logic) and assertion language ( Assn ) • One can show: if an “oracle” is available which decides whether a given assertion is valid, then all valid partial correctness properties can be systematically derived 9 of 22 Semantics and Verification of Software Summer Semester 2019 Lecture 11: Axiomatic Semantics of WHILE III (Completeness & Total Correctness)

  16. Relative Completeness of Hoare Logic Relative Completeness of Hoare Logic I • We will see: actual reason of incompleteness is rule = ( B ′ ⇒ B ) = ( A ⇒ A ′ ) { A ′ } c { B ′ } (cons) | | { A } c { B } since it is based on the validity of implications within Assn • The other language constructs are “enumerable” • Therefore: separation of proof system (Hoare Logic) and assertion language ( Assn ) • One can show: if an “oracle” is available which decides whether a given assertion is valid, then all valid partial correctness properties can be systematically derived ⇒ “Relative completeness” 9 of 22 Semantics and Verification of Software Summer Semester 2019 Lecture 11: Axiomatic Semantics of WHILE III (Completeness & Total Correctness)

  17. Relative Completeness of Hoare Logic Relative Completeness of Hoare Logic II Theorem 11.3 (Cook’s Completeness Theorem) Hoare Logic is relatively complete, i.e., for every partial correctness property { A } c { B } : | = { A } c { B } ⇒ ⊢ { A } c { B } . Stephen A. Cook (* 1939) Thus: if we know that a partial correctness property is valid, then we know that there is a corresponding proof. 10 of 22 Semantics and Verification of Software Summer Semester 2019 Lecture 11: Axiomatic Semantics of WHILE III (Completeness & Total Correctness)

Recommend

Semantics and Verification of Software Summer Semester 2019 Lecture 11: Axiomatic Semantics of

Semantics and Verification of Software Summer Semester 2019 Lecture 11: Axiomatic Semantics of

Semantics and Verification of Software Summer Semester 2019 Lecture 11: Axiomatic Semantics of WHILE III (Completeness & Total Correctness) Thomas Noll Software Modeling and Verification Group RWTH Aachen University

186 views • 18 slides
Semantics and Verification of Software Summer Semester 2019 Lecture 2: Operational Semantics of

Semantics and Verification of Software Summer Semester 2019 Lecture 2: Operational Semantics of

Semantics and Verification of Software Summer Semester 2019 Lecture 2: Operational Semantics of WHILE I (Evaluation of Expressions) Thomas Noll Software Modeling and Verification Group RWTH Aachen University

922 views • 55 slides
Semantics and Verification of Software Summer Semester 2019 Lecture 15: Extension by Blocks and

Semantics and Verification of Software Summer Semester 2019 Lecture 15: Extension by Blocks and

Semantics and Verification of Software Summer Semester 2019 Lecture 15: Extension by Blocks and Procedures II (Denotational Semantics) Thomas Noll Software Modeling and Verification Group RWTH Aachen University

743 views • 35 slides
Semantics and Verification of Software Summer Semester 2019 Lecture 1: Introduction Thomas Noll

Semantics and Verification of Software Summer Semester 2019 Lecture 1: Introduction Thomas Noll

Semantics and Verification of Software Summer Semester 2019 Lecture 1: Introduction Thomas Noll Software Modeling and Verification Group RWTH Aachen University https://moves.rwth-aachen.de/teaching/ss-19/sv-sw/ Preliminaries Outline of

588 views • 36 slides
Semantics and Verification of Software Summer Semester 2019 Lecture 1: Introduction Thomas Noll

Semantics and Verification of Software Summer Semester 2019 Lecture 1: Introduction Thomas Noll

Semantics and Verification of Software Summer Semester 2019 Lecture 1: Introduction Thomas Noll Software Modeling and Verification Group RWTH Aachen University https://moves.rwth-aachen.de/teaching/ss-19/sv-sw/ Preliminaries Staff

520 views • 16 slides
About the Course Software Testing & Verification Course Software Testing & Verification

About the Course Software Testing & Verification Course Software Testing & Verification

About the Course Software Testing & Verification Course Software Testing & Verification 2019/20 Wishnu Prasetya & Gabriele Keller Why do we care? 1. Because we want to deliver quality products! 2. Because poor quality, including

493 views • 16 slides
Aperitif: Relational semantics of loops Automatic program verification x by

Aperitif: Relational semantics of loops Automatic program verification x by

1 Aperitif: Relational semantics of loops Automatic program verification x by Lagrangian relaxation and x semidefinite programming Patrick Cousot 3 cole normale suprieure Relational semantics of

176 views • 13 slides
Operational Semantics This course Why semantics? y := 1; precise specification of software

Operational Semantics This course Why semantics? y := 1; precise specification of software

Operational Semantics This course Why semantics? y := 1; precise specification of software and while ( x = 1) do ( y := x y ; x := x 1) hardware First we assign 1 to y , then we test whether facilitate reasoning about systems:

355 views • 10 slides
Semantics and Verification 2005 Lecture 2 informal introduction to CCS syntax of CCS semantics

Semantics and Verification 2005 Lecture 2 informal introduction to CCS syntax of CCS semantics

Introduction to CCS Syntax of CCS Semantics of CCS Semantics and Verification 2005 Lecture 2 informal introduction to CCS syntax of CCS semantics of CCS Lecture 2 Semantics and Verification 2005 Introduction to CCS Sequential Fragment

304 views • 12 slides
SEMANTICS? Truth Verification A man is playing the accordion. A man is playing the accordion.

SEMANTICS? Truth Verification A man is playing the accordion. A man is playing the accordion.

The Parallel Meaning Bank TODAY: Computational Semantics, Meaning Representations and Discourse Representation Theory FRIDAY: Producing Meaning Representations Johan Bos WHAT IS COMPUTATIONAL SEMANTICS? Truth Verification A man is playing

1.37k views • 103 slides
By Anton and Diana B IG P ICTURE How much does the semantics dictate in the verification

By Anton and Diana B IG P ICTURE How much does the semantics dictate in the verification

V ERIFICATION By Anton and Diana B IG P ICTURE How much does the semantics dictate in the verification process? Concerning the words Most and More than half, is there an innate feature of the word that forces an individual to

324 views • 28 slides
Viktor Vafeiadis Software Analysis & Verification Full functional verification

Viktor Vafeiadis Software Analysis & Verification Full functional verification

Viktor Vafeiadis Software Analysis & Verification Full functional verification Compilers , concurrent programs , theorem provers Program equivalence / Compositional reasoning Compositional compiler verification

266 views • 3 slides
Runtime Monitoring, Verification, Enforcement and Control of C Programs (From Tool to Semantics)

Runtime Monitoring, Verification, Enforcement and Control of C Programs (From Tool to Semantics)

Introduction Preliminaries Semantics of Runtime Control Semantics of Synthesis of Controlling Programs Expressiveness of Controlling Runtime Monitoring, Verification, Enforcement and Control of C Programs (From Tool to Semantics) Zhe Chen

558 views • 55 slides
Focus of the Course Overview of the Course Semantics and Verification 2005 Transition systems

Focus of the Course Overview of the Course Semantics and Verification 2005 Transition systems

Focus of the Course Overview of the Course Semantics and Verification 2005 Transition systems and CCS. Strong and weak bisimilarity, bisimulation games. Study of mathematical models for the formal description and analysis Lecture 1 of

385 views • 5 slides
S V V .lu software verification & validation Achieving Scalability in Software Testing

S V V .lu software verification & validation Achieving Scalability in Software Testing

S V V .lu software verification & validation Achieving Scalability in Software Testing with Machine Learning and Metaheuristic Search Lionel Briand Definition of Software Testing ISTQB: Software testing is a process of executing

925 views • 77 slides
Semantics 1 / 21 Outline What is semantics? Denotational semantics Semantics of naming What

Semantics 1 / 21 Outline What is semantics? Denotational semantics Semantics of naming What

Semantics 1 / 21 Outline What is semantics? Denotational semantics Semantics of naming What is semantics? 2 / 21 What is the meaning of a program? Recall: aspects of a language syntax : the structure of its programs semantics : the

551 views • 21 slides
Programming language semantics Paul Jackson School of Informatics University of Edinburgh

Programming language semantics Paul Jackson School of Informatics University of Edinburgh

Programming language semantics Paul Jackson School of Informatics University of Edinburgh Formal Verification Spring 2018 Using maths to verify software First need ability to construct mathematical models of programs Highly

444 views • 22 slides
Team Semantics for the Specification and Verification of Jonni Virtema Hyperproperties

Team Semantics for the Specification and Verification of Jonni Virtema Hyperproperties

Team Semantics for the Specification and Verification of Hyperproperties Team Semantics for the Specification and Verification of Jonni Virtema Hyperproperties Movativation & History Hyperproperties & HyperLTL Jonni Virtema

550 views • 31 slides
F Formal Modeling and Verification of l M d li d V ifi ti f Safety-Critical Software

F Formal Modeling and Verification of l M d li d V ifi ti f Safety-Critical Software

Submitted to IEEE Software 2009 - Special issue on Software Development for Embedded Systems F Formal Modeling and Verification of l M d li d V ifi ti f Safety-Critical Software implemented in PLC JUNBEOM YOO JUNBEOM YOO KONKUK

882 views • 32 slides
Semantics & Verification Lecture 14 Gerd Behrmann Outline of remaining lectures Lecture

Semantics & Verification Lecture 14 Gerd Behrmann Outline of remaining lectures Lecture

Semantics & Verification Lecture 14 Gerd Behrmann Outline of remaining lectures Lecture 9: Modelling real time system Lecture 10: More on Uppaal + mini projects Lecture 11: Mini projects Lecture 12: Verification of timed

779 views • 42 slides
Semantics & Verification Lecture 13 Gerd Behrmann Outline of remaining lectures Lecture

Semantics & Verification Lecture 13 Gerd Behrmann Outline of remaining lectures Lecture

Semantics & Verification Lecture 13 Gerd Behrmann Outline of remaining lectures Lecture 9: Modelling real time system Lecture 10: More on Uppaal + mini projects Lecture 11: Mini projects Lecture 12: Verification of timed

589 views • 31 slides
Logic for Verification Jo ao Martins August 4, 2012 J. Martins () Logic for Verification

Logic for Verification Jo ao Martins August 4, 2012 J. Martins () Logic for Verification

Logic for Verification Jo ao Martins August 4, 2012 J. Martins () Logic for Verification August 4, 2012 1 / 96 1 Introduction 2 Syntax 3 Semantics 4 Verification Truth Tables Resolution Natural Deduction 5 Beyond Propositional Logic

1.39k views • 106 slides
Effective Word-Level Interpolation for Software Verification Alberto Griggio FBK-IRST

Effective Word-Level Interpolation for Software Verification Alberto Griggio FBK-IRST

FMCAD 2011 Effective Word-Level Interpolation for Software Verification Alberto Griggio FBK-IRST Motivations Craig interpolation applied succesfully for Formal Verification of both hardware and software Ongoing research (at least for

572 views • 41 slides
Static and dynamic verification Software inspections Concerned with analysis of the static

Static and dynamic verification Software inspections Concerned with analysis of the static

1 Static and dynamic verification Software inspections Concerned with analysis of the static system representation to discover problems (static verification) May be supplement by tool-based document and code analysis Software

430 views • 12 slides

More recommend