symbolic bounded synthesis
play

Symbolic Bounded Synthesis R udiger Ehlers Saarland University, - PowerPoint PPT Presentation

Jan 12, 2023 •476 likes •848 views

Symbolic Bounded Synthesis R udiger Ehlers Saarland University, Reactive Systems Group CAV 2010 July 18, 2010 R udiger Ehlers (SB) Symbolic Bounded Synthesis CAV 2010 July 18, 2010 1 / 20 Synthesis of reactive systems -

  1. Symbolic Bounded Synthesis R¨ udiger Ehlers Saarland University, Reactive Systems Group CAV 2010 – July 18, 2010 R¨ udiger Ehlers (SB) Symbolic Bounded Synthesis CAV 2010 – July 18, 2010 1 / 20

  2. Synthesis of reactive systems - overview Problem description Given ... a set of input atomic propositions AP I , a set of output atomic propositions AP O , a temporal logic formula ψ over AP I ⊎ AP O ... does there exist a Mealy/Moore automaton reading AP I and outputting AP O that satisfies ψ ? Properties of this problem Church’s problem is known to be 2EXPTIME-complete for LTL specifications. R¨ udiger Ehlers (SB) Symbolic Bounded Synthesis CAV 2010 – July 18, 2010 2 / 20

  3. LTL synthesis in practice Approaches Several approaches exist (e.g., generalized reactivity(1) synthesis [PPS06], “classical” parity game solving, etc.) Here, we are concerned with bounded synthesis [SF07], a Safraless approach for LTL synthesis [KV05]. Criteria for the evaluation of these approaches Expressivity Scalability suitability for typical specifications amenable to symbolic implementations R¨ udiger Ehlers (SB) Symbolic Bounded Synthesis CAV 2010 – July 18, 2010 3 / 20

  4. A Safraless approach for LTL synthesis [KV05] Basic Approach 1 Convert ¬ ψ to a non-deterministic B¨ uchi word automaton A uchi word automaton (UCW) A ′ 2 Dualize A to a universal co-B¨ 3 Check the universal co-B¨ uchi tree automaton (UCT) obtained from A ′ for emptiness Basic idea: Universality makes the world simpler R¨ udiger Ehlers (SB) Symbolic Bounded Synthesis CAV 2010 – July 18, 2010 4 / 20

  5. Bounded synthesis [SF07] start NBW for the negated specification / UCW for the specification q 0 true r ∧ ¬ g r ∧ ¬ g q 1 R¨ udiger Ehlers (SB) Symbolic Bounded Synthesis CAV 2010 – July 18, 2010 5 / 20

  6. Bounded synthesis [SF07] start Corresponding UCT * q 0 g ¬ g ∗ r r q 1 ¬ g R¨ udiger Ehlers (SB) Symbolic Bounded Synthesis CAV 2010 – July 18, 2010 5 / 20

  7. Bounded synthesis [SF07] Central idea For every finite-state system satisfying ψ , there exists an upper bound on the number of visits to rejecting UCT states Bound that number! Then, synthesis can be done by solving a safety game. start ¬ r g * * * ¬ g q 0 (2 , ∞ ) start g ¬ r g ¬ r ¬ g ∗ ¬ g * r r r q 1 (2 , 1) (2 , 0) g ¬ g r ¬ g R¨ udiger Ehlers (SB) Symbolic Bounded Synthesis CAV 2010 – July 18, 2010 5 / 20

  8. On the efficiency of the technique Properties of the game structure Number of states: roughly ( b + 1) | Q | – huge! Structure is amenable to symbolic implementations A symbolic approach from last year’s CAV [FJR09] Antichains can efficiently represent frontier sets during the game solving process. Basic idea: sets of winning states are closed under counter increasals, e.g., if state (2 , 0) is winning for the system player, then so is state (2 , 1). Binary decision diagrams Interestingly, they seem to be unconsidered so far. In this work, we show how to solve the challenges of applying them in practice . R¨ udiger Ehlers (SB) Symbolic Bounded Synthesis CAV 2010 – July 18, 2010 6 / 20

  9. BDDs for bounded synthesis Points for BDDs Good for tracking components that run in parallel : games/automata for the specification conjuncts evolution of the counters Points against BDDs Counters in BDDs are evil! [Weg00, SL99, BMPY97, TV07] The question raised and answered in this paper: How can we reduce the number of counters such that the BDD- approach to Safraless/bounded synthesis is feasible in practice? R¨ udiger Ehlers (SB) Symbolic Bounded Synthesis CAV 2010 – July 18, 2010 7 / 20

  10. Structure of the remainder of the talk The steps for reducing the number of counters Splitting the specification into safety/non-safety properties and composing them to a synthesis game Getting rid of some counters in the resulting synthesis game Experiments & Outlook Comparison of our prototype against Lily/Acacia R¨ udiger Ehlers (SB) Symbolic Bounded Synthesis CAV 2010 – July 18, 2010 8 / 20

  11. Splitting a specification into safety and non-safety prop’s The shape of a “typical specification” ( a 1 ∧ a 2 ∧ . . . ∧ a n ) → ( g 1 ∧ g 2 ∧ . . . ∧ g m ) Decomposing the specification Assumptions a 1 , . . . , a n Guarantees g 1 , . . . , g m Both assumptions and guarantees typically contain safety formulas. Intuition for splitting the specification Safety properties do not need counters. R¨ udiger Ehlers (SB) Symbolic Bounded Synthesis CAV 2010 – July 18, 2010 9 / 20

  12. Splitting a simple conjunction G a ∧ G( b → X c ) ∧ GF d R¨ udiger Ehlers (SB) Symbolic Bounded Synthesis CAV 2010 – July 18, 2010 10 / 20

  13. Splitting a simple conjunction G a ∧ G( b → X c ) ∧ GF d safety non-safety R¨ udiger Ehlers (SB) Symbolic Bounded Synthesis CAV 2010 – July 18, 2010 10 / 20

  14. Splitting a simple conjunction G a ∧ G( b → X c ) ∧ GF d DST UCT R¨ udiger Ehlers (SB) Symbolic Bounded Synthesis CAV 2010 – July 18, 2010 10 / 20

  15. Splitting a simple conjunction G a ∧ G( b → X c ) ∧ GF d DST UCT Safety game G 1 R¨ udiger Ehlers (SB) Symbolic Bounded Synthesis CAV 2010 – July 18, 2010 10 / 20

  16. Splitting a simple conjunction G a ∧ G( b → X c ) ∧ GF d DST UCT Bound Safety game Safety game G 1 G 2 R¨ udiger Ehlers (SB) Symbolic Bounded Synthesis CAV 2010 – July 18, 2010 10 / 20

  17. Splitting a simple conjunction G a ∧ G( b → X c ) ∧ GF d DST UCT Bound Safety game Safety game G 1 G 2 G 1 || G 2 Winning condition The system player wins G 1 || G 2 iff she wins G 1 and G 2 at the same time. R¨ udiger Ehlers (SB) Symbolic Bounded Synthesis CAV 2010 – July 18, 2010 10 / 20

  18. Splitting an assumptions → guarantees specification (1/2) AP I = { a , b } , AP O = { c , d } (G a ∧ GF b ) → (G c ∧ GF d ) R¨ udiger Ehlers (SB) Symbolic Bounded Synthesis CAV 2010 – July 18, 2010 11 / 20

  19. Splitting an assumptions → guarantees specification (1/2) AP I = { a , b } , AP O = { c , d } (G a ∧ GF b ) → (G c ∧ GF d ) DST R¨ udiger Ehlers (SB) Symbolic Bounded Synthesis CAV 2010 – July 18, 2010 11 / 20

  20. Splitting an assumptions → guarantees specification (1/2) AP I = { a , b } , AP O = { c , d } (G a ∧ GF b ) → (G c ∧ GF d ) DST Safety game G 1 R¨ udiger Ehlers (SB) Symbolic Bounded Synthesis CAV 2010 – July 18, 2010 11 / 20

  21. Splitting an assumptions → guarantees specification (1/2) AP I = { a , b } , AP O = { c , d } (G a ∧ GF b ) → (G c ∧ GF d ) DST DST Safety game G 1 R¨ udiger Ehlers (SB) Symbolic Bounded Synthesis CAV 2010 – July 18, 2010 11 / 20

  22. Splitting an assumptions → guarantees specification (1/2) AP I = { a , b } , AP O = { c , d , safe } (G a ∧ GF b ) → (G c ∧ GF d ) DST DST Safety game G 2 , Safety game won if safe always G 1 represents whether the I/O so far is still accepted by the DST R¨ udiger Ehlers (SB) Symbolic Bounded Synthesis CAV 2010 – July 18, 2010 11 / 20

  23. Splitting an assumptions → guarantees specification (1/2) AP I = { a , b } , AP O = { c , d , safe } (G a ∧ GF b ) → (G c ∧ GF d ) (GF b ) → (G safe ∧ GF d ) DST DST Safety game G 2 , Safety game won if safe always G 1 represents whether the I/O so far is still accepted by the DST R¨ udiger Ehlers (SB) Symbolic Bounded Synthesis CAV 2010 – July 18, 2010 11 / 20

  24. Splitting an assumptions → guarantees specification (1/2) AP I = { a , b } , AP O = { c , d , safe } (G a ∧ GF b ) → (G c ∧ GF d ) (GF b ) → (G safe ∧ GF d ) DST DST UCT Bound Safety game G 2 , Safety game won if safe always Safety game G 1 represents whether the G 3 I/O so far is still accepted by the DST R¨ udiger Ehlers (SB) Symbolic Bounded Synthesis CAV 2010 – July 18, 2010 11 / 20

  25. Splitting an assumptions → guarantees specification (1/2) AP I = { a , b } , AP O = { c , d , safe } (G a ∧ GF b ) → (G c ∧ GF d ) (GF b ) → (G safe ∧ GF d ) DST DST UCT Bound Safety game G 2 , Safety game won if safe always Safety game G 1 represents whether the G 3 I/O so far is still accepted by the DST G 1 || G 2 || G 3 R¨ udiger Ehlers (SB) Symbolic Bounded Synthesis CAV 2010 – July 18, 2010 11 / 20

  26. Splitting an assumptions → guarantees specification (2/2) Winning condition The system player wins G 1 || G 2 || G 3 iff she loses G 1 or she wins G 2 and G 3 at the same time. The role of safe The AP safe connects the non-safety and safety guarantee parts. This is important for soundness. Example: (G a ∧ GF ¬ a ) → (G c ∧ G ¬ c ) R¨ udiger Ehlers (SB) Symbolic Bounded Synthesis CAV 2010 – July 18, 2010 12 / 20

  27. Getting rid of additional counters in G 3 Example specification/Example UCT FG a ∧ G(( ¬ a ∧ X a ) → XXGF ¬ b ) ¬ a a b start q 0 q 1 q 2 q 3 a a ¬ a true b States of type ( ∗ , ∞ , ∗ , ∞ ) in the safety game for b = 3 (3 , ∞ , ∞ , ∞ ) (2 , ∞ , ∞ , ∞ ) (1 , ∞ , ∞ , ∞ ) (0 , ∞ , ∞ , ∞ ) (2 , ∞ , 2 , ∞ ) (1 , ∞ , 2 , ∞ ) (0 , ∞ , 2 , ∞ ) (2 , ∞ , 1 , ∞ ) (1 , ∞ , 1 , ∞ ) (0 , ∞ , 1 , ∞ ) (2 , ∞ , 0 , ∞ ) (1 , ∞ , 0 , ∞ ) (0 , ∞ , 0 , ∞ ) R¨ udiger Ehlers (SB) Symbolic Bounded Synthesis CAV 2010 – July 18, 2010 13 / 20

Recommend

Symbolic Encodings of Bounded Synthesis Saarland University Peter Faymonville 1 , Bernd Finkbeiner

Symbolic Encodings of Bounded Synthesis Saarland University Peter Faymonville 1 , Bernd Finkbeiner

Symbolic Encodings of Bounded Synthesis Saarland University Peter Faymonville 1 , Bernd Finkbeiner 1 , Markus N. Rabe 2 , Leander Tentrup 1 1 Reactive Systems Group 2 UC Berkeley Reactive synthesis Synthesis realizable unrealizable bound

468 views • 33 slides
Register-Bounded Synthesis Ayrat Khalimov Orna Kupferman Universite libre de

Register-Bounded Synthesis Ayrat Khalimov Orna Kupferman Universite libre de

Register-Bounded Synthesis Ayrat Khalimov Orna Kupferman Universite libre de Bruxelles Hebrew University Belgium Israel Why study bounded synthesis from universal automata? why

422 views • 29 slides
Symbolic synthesis of state based reactive programs Diploma Thesis Nico Wallmeier 18.03.03

Symbolic synthesis of state based reactive programs Diploma Thesis Nico Wallmeier 18.03.03

Symbolic synthesis of state based reactive programs Diploma Thesis Nico Wallmeier 18.03.03 Structure 1. Background 2. Infinite games over a finite game graph 3. Transformation to the symbolic state space 4. Applications 18.03.03 Nico

962 views • 36 slides
Combining data-driven and symbolic reasoning for Invariant Synthesis in SMT (Work in Progress)

Combining data-driven and symbolic reasoning for Invariant Synthesis in SMT (Work in Progress)

Combining data-driven and symbolic reasoning for Invariant Synthesis in SMT (Work in Progress) Haniel Barbosa Clark Barrett Andrew Reynolds Cesare Tinelli MVD 2018 20180929, Iowa City, IA, USA SyGuS Solving CEGIS [Solar-Lezama et

588 views • 26 slides
Safety Controller Synthesis for Switched Systems using Multiscale Symbolic Models Antoine Girard

Safety Controller Synthesis for Switched Systems using Multiscale Symbolic Models Antoine Girard

Safety Controller Synthesis for Switched Systems using Multiscale Symbolic Models Antoine Girard Laboratoire des Signaux et Syst` emes Gif sur Yvette, France Workshop on switching dynamics & verification Paris, January 28-29, 2016 A.

848 views • 43 slides
1 Example: Full Adder Diagnosis Inferring Solutions Example: Full Adder Diagnosis Inferring

1 Example: Full Adder Diagnosis Inferring Solutions Example: Full Adder Diagnosis Inferring

Overview Overview Soft Constraints Framework Characterizing Structure in Soft Constraints Diagnosis using Bounded Search Diagnosis using Bounded Search Exploiting Structure in Soft Constraints and Symbolic Inference and Symbolic

462 views • 14 slides
Scalable Synthesis with Symbolic Syntax Graphs Rohin Shah, Sumith Kulal , Ras Bodik UC Berkeley,

Scalable Synthesis with Symbolic Syntax Graphs Rohin Shah, Sumith Kulal , Ras Bodik UC Berkeley,

Scalable Synthesis with Symbolic Syntax Graphs Rohin Shah, Sumith Kulal , Ras Bodik UC Berkeley, IIT Bombay and UW 18 July 2018, Oxford UK [Solar-Lezama et al. ASPLOS06] Combinatorial Sketching for Finite Programs Sketching also promises to

652 views • 30 slides
Bounded Model Checking bmc Revision: 1.11 1 [BiereCimattiClarkeZhu99] uses SAT for model

Bounded Model Checking bmc Revision: 1.11 1 [BiereCimattiClarkeZhu99] uses SAT for model

Bounded Model Checking bmc Revision: 1.11 1 [BiereCimattiClarkeZhu99] uses SAT for model checking historically not the first symbolic model checking approach scales better than original BDD based techniques mostly incomplete in

521 views • 28 slides
Bounded Radius Routing Perform bounded PRIM algorithm Under = 0, = 0.5, and =

Bounded Radius Routing Perform bounded PRIM algorithm Under = 0, = 0.5, and =

Bounded Radius Routing Perform bounded PRIM algorithm Under = 0, = 0.5, and = Compare radius and wirelength Radius = 12 for this net Practical Problems in VLSI Physical Design Bounded Radius Routing (1/16) BPRIM Under

542 views • 16 slides
Symbolic Execution of Linux binaries About Symbolic Execution Dynamically explore all

Symbolic Execution of Linux binaries About Symbolic Execution Dynamically explore all

A tool for the Symbolic Execution of Linux binaries About Symbolic Execution Dynamically explore all program branches. Inputs are considered symbolic variables. Symbols remain uninstantiated and become constrained at execution

451 views • 24 slides
Synthesis of Ranking Functions and Synthesis of Inductive Invariants and Synthesis of

Synthesis of Ranking Functions and Synthesis of Inductive Invariants and Synthesis of

Synthesis of Ranking Functions and Synthesis of Inductive Invariants and Synthesis of Recurrence Sets via Constraint Solving Andreas Podelski January 17, 2012 1 Program Verification and Constraints Reasoning about program

422 views • 28 slides
CSE507 Computer-Aided Reasoning for Software Symbolic Execution

CSE507 Computer-Aided Reasoning for Software Symbolic Execution

CSE507 Computer-Aided Reasoning for Software Symbolic Execution courses.cs.washington.edu/courses/cse507/14au/ Emina Torlak emina@cs.washington.edu Today 2 Today Last lecture Bounded verification: forward VCG for finitized programs 2

851 views • 45 slides
Lecture 5. Symbolic model checking. NuSMV and SPIN model checkers. User-friendly model checking

Lecture 5. Symbolic model checking. NuSMV and SPIN model checkers. User-friendly model checking

Lecture 5. Symbolic model checking. NuSMV and SPIN model checkers. User-friendly model checking ELEC-E8110 Automation Systems Synthesis and Analysis Igor Buzhinsky igor.buzhinskii@aalto.fi 2018 Igor Buzhinsky Lecture 5 2018 1 / 28 Symbolic

833 views • 61 slides
Bounded Type Parameters 49 What is a bounded Type Parameter? Restrict the types that may

Bounded Type Parameters 49 What is a bounded Type Parameter? Restrict the types that may

Bounded Type Parameters 49 What is a bounded Type Parameter? Restrict the types that may be used as type arguments for a parameterized type E.g. a generic methods will work only with Integer-like types 50 Using bounded types with

362 views • 10 slides
Step ep-bounded bounded Bisimu imulation lation Nishanthan Kamaleson University of Birmingham

Step ep-bounded bounded Bisimu imulation lation Nishanthan Kamaleson University of Birmingham

Step ep-bounded bounded Bisimu imulation lation Nishanthan Kamaleson University of Birmingham Joint work with: David Parker, Jonathan Rowe, Mate Puljiz and Chris Good HIERATIC meeting, Jena, September 2014 Overview Markov chains &

532 views • 25 slides
Symbolic Mathematics Dr. Mihail November 20, 2018 (Dr. Mihail) Symbolic November 20, 2018 1 /

Symbolic Mathematics Dr. Mihail November 20, 2018 (Dr. Mihail) Symbolic November 20, 2018 1 /

Symbolic Mathematics Dr. Mihail November 20, 2018 (Dr. Mihail) Symbolic November 20, 2018 1 / 16 Overview Symbolic So far in this course we dealt with MATLAB variables that were placeholders for numeric types (e.g., scalars, vectors,

953 views • 17 slides
Symbolic execution as search, and the rise of solvers Search and SMT Symbolic execution is

Symbolic execution as search, and the rise of solvers Search and SMT Symbolic execution is

Symbolic execution as search, and the rise of solvers Search and SMT Symbolic execution is appealingly simple and useful , but computationally expensive ! We will see how the effective use of symbolic execution boils down to a kind of

494 views • 24 slides
Formal Verification with Yosys-SMTBMC Clifford Wolf Yosys Flows Synthesis Formal

Formal Verification with Yosys-SMTBMC Clifford Wolf Yosys Flows Synthesis Formal

Formal Verification with Yosys-SMTBMC Clifford Wolf Yosys Flows Synthesis Formal Verification Yosys-STMBMC iCE40 FPGAs Bounded Model Checking (Project IceStorm) Using any SMT-LIB2 solver (using QF_AUFBV logic) Xilinx

707 views • 56 slides
Symbolic Execution: Applications Symbolic execution is widely used in practice. Tools based on

Symbolic Execution: Applications Symbolic execution is widely used in practice. Tools based on

Symbolic Execution: Applications Symbolic execution is widely used in practice. Tools based on symbolic execution have found serious errors and security vulnerabilities in various systems: Network servers File systems Device drivers

733 views • 40 slides
Locally constrained homomorphisms on graphs of bounded treewidth and bounded degree Steven

Locally constrained homomorphisms on graphs of bounded treewidth and bounded degree Steven

Locally constrained homomorphisms on graphs of bounded treewidth and bounded degree Steven Chaplick 1 , Ji Fiala 1 , Pim van t Hof 2 , r el Paulusma 3 , Marek Tesa r 1 Dani 1 Charles University, Czech Republic 2 University of

177 views • 17 slides
Characterisation of the State Spaces of Live and Bounded Marked Graph Petri Nets Eike Best and

Characterisation of the State Spaces of Live and Bounded Marked Graph Petri Nets Eike Best and

Characterisation of the State Spaces of Live and Bounded Marked Graph Petri Nets Eike Best and Raymond Devillers LATA 2014, Madrid March 11, 2014 Analysis and synthesis of Petri nets Analysis (Esparza et al.) Deduce behavioural

269 views • 22 slides
Symbolic verification of cryptographic protocols using Tamarin Part 2 : Symbolic Verification

Symbolic verification of cryptographic protocols using Tamarin Part 2 : Symbolic Verification

Symbolic verification of cryptographic protocols using Tamarin Part 2 : Symbolic Verification David Basin ETH Zurich Summer School on Verification Technology, Systems & Applications Nancy France August 2018 Outline 1 Formal Models 2

1.01k views • 81 slides
6.02 Fall 2012 Lecture #12 Bounded-input, bounded-output stability Frequency response 6.02

6.02 Fall 2012 Lecture #12 Bounded-input, bounded-output stability Frequency response 6.02

6.02 Fall 2012 Lecture #12 Bounded-input, bounded-output stability Frequency response 6.02 Fall 2012 Lecture 12, Slide #1 Bounded-Input Bounded-Output (BIBO) Stability What ensures that the infinite sum " y [ n ] = # h [ m ] x [ n !

198 views • 16 slides
Hierarchical Exact Symbolic Analysis y y of Large Analog Integrated Circuits By Symbolic Stamps

Hierarchical Exact Symbolic Analysis y y of Large Analog Integrated Circuits By Symbolic Stamps

Hierarchical Exact Symbolic Analysis y y of Large Analog Integrated Circuits By Symbolic Stamps Symbolic Stamps Hui Xu, Guoyong Shi and Xiaopeng Li School of Microelectronics, Shanghai Jiao Tong Univ. Shanghai, China Presentation at Asia

655 views • 36 slides

More recommend