'a list" primrec ys = ys" "(x # ys = x # ys)" primrec "rev [] = []" "rev (x # xs) = (rev (x # [])""> 'a list" primrec ys = ys" "(x # ys = x # ys)" primrec "rev [] = []" "rev (x # xs) = (rev (x # [])"">

Presentation is loading. Please wait.

Presentation is loading. Please wait.

Proving Facts About Programs With a Proof Assistant John Wallerius An Example From: Isabelle/HOL, A Proof Assistant for Higher Order Logic, By T. Nipkow,

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "Proving Facts About Programs With a Proof Assistant John Wallerius An Example From: Isabelle/HOL, A Proof Assistant for Higher Order Logic, By T. Nipkow,"— Presentation transcript:

1 Proving Facts About Programs With a Proof Assistant John Wallerius An Example From: Isabelle/HOL, A Proof Assistant for Higher Order Logic, By T. Nipkow, L Paulson and M. Wenzel

2 A Simple Example Using Lists Specify data types (e.g. polymorphic lists, trees) using ML-like syntax: datatype 'a list = Nil ("[]") | Cons 'a “ 'a list " (infixr "#" 65)

3 Specify functions: Append and Reverse consts app :: “ 'a list => 'a list => 'a list" (infixr "@" 65) rev :: “ 'a list => 'a list" primrec "[] @ ys = ys" "(x # xs) @ ys = x # (xs @ ys)" primrec "rev [] = []" "rev (x # xs) = (rev xs) @ (x # [])"

4 State a Theorem to Prove Simple Example: Reversing the reverse of a list gives back the original list: theorem rev_rev [simp]: "rev(rev xs) = xs“ This command names and states a theorem. When proved, future proofs will use it for simplifications

5 Try a Proof Procedure: Induction theorem rev_rev [simp]: "rev(rev xs) = xs“ Try induction on variable xs: apply(induct_tac xs) System responds with new proof state subgoals: –1. rev (rev []) = [] –2.  a list. rev (rev list) = list  rev (rev(a # list)) = a # list

6 Simplify Current state –1. rev (rev []) = [] –2.  a list. rev (rev list) = list  rev (rev(a # list)) = a # list Invoke Simplifier: apply(auto) New state after first subgoal is completely solved –1.  a list. rev (rev list) = list  rev (rev(a # list)) = a # list

7 A Simpler Lemma is Needed lemma rev_app [simp]: "rev(xs @ ys) = (rev ys) @ (rev xs)“ Actually, this can’t be proved immediately either. We first need to prove a yet simpler lemma: lemma app_Nil2 [simp]: "xs @ [] = xs“ This one is proved by: apply(induct_tac xs); apply(auto)

8 The Final Proof lemma app_Nil2 [simp]: "xs @ [] = xs" lemma app_assoc [simp]: "(xs @ ys) @ zs = xs @ (ys @ zs)" lemma rev_app [simp]: "rev(xs @ ys) = (rev ys) @ (rev xs)" theorem rev_rev [simp]: "rev(rev xs) = xs"

9 Review Standard proof procedure: –State a goal –Proceed until lemma is needed –Prove lemma –Return to original Good strategy for functional programs: 1.Induction, then 2.All out simplification

Download ppt "Proving Facts About Programs With a Proof Assistant John Wallerius An Example From: Isabelle/HOL, A Proof Assistant for Higher Order Logic, By T. Nipkow,"

Similar presentations

Chapter 13. Red-Black Trees

Chapter 13. Red-Black Trees
8-2: Solving Systems of Equations using Substitution

8-2: Solving Systems of Equations using Substitution
Functional Programming Lecture 13 - induction on lists.

Functional Programming Lecture 13 - induction on lists.
Isabelle / HOL Theorem Proving System

Isabelle / HOL Theorem Proving System
First Order Logic Resolution

First Order Logic Resolution
Chapter 11 Proof by Induction. Induction and Recursion Two sides of the same coin.  Induction usually starts with small things, and then generalizes.

Chapter 11 Proof by Induction. Induction and Recursion Two sides of the same coin.  Induction usually starts with small things, and then generalizes.
Systems of Equations Back-Substitution: 3x3 Eliminating one variable Eliminating two variables Copyright © 2011 Lynda Aguirre1.

Systems of Equations Back-Substitution: 3x3 Eliminating one variable Eliminating two variables Copyright © 2011 Lynda Aguirre1.
Proof Points Key ideas when proving mathematical ideas.

Proof Points Key ideas when proving mathematical ideas.
Copyright © 2006 The McGraw-Hill Companies, Inc. Programming Languages 2nd edition Tucker and Noonan Chapter 18 Program Correctness To treat programming.

Copyright © 2006 The McGraw-Hill Companies, Inc. Programming Languages 2nd edition Tucker and Noonan Chapter 18 Program Correctness To treat programming.
0 PROGRAMMING IN HASKELL Chapter 7 - Higher-Order Functions.

0 PROGRAMMING IN HASKELL Chapter 7 - Higher-Order Functions.
0 PROGRAMMING IN HASKELL Chapter 6 - Recursive Functions Most of this should be review for you.

0 PROGRAMMING IN HASKELL Chapter 6 - Recursive Functions Most of this should be review for you.
Type Inference David Walker COS 441. Criticisms of Typed Languages Types overly constrain functions & data polymorphism makes typed constructs useful.

Type Inference David Walker COS 441. Criticisms of Typed Languages Types overly constrain functions & data polymorphism makes typed constructs useful.
Sparkle A theorem prover for the functional language Clean Maarten de Mol University of Nijmegen February 2002.

Sparkle A theorem prover for the functional language Clean Maarten de Mol University of Nijmegen February 2002.
Type Inference David Walker CS 510, Fall 2002. Criticisms of Typed Languages Types overly constrain functions & data polymorphism makes typed constructs.

Type Inference David Walker CS 510, Fall Criticisms of Typed Languages Types overly constrain functions & data polymorphism makes typed constructs.
FUNCTIONAL PROGRAMMING IN ERLANG ID1218 Lecture 022009-10-28 Christian Schulte Software and Computer Systems School of Information and.

FUNCTIONAL PROGRAMMING IN ERLANG ID1218 Lecture Christian Schulte Software and Computer Systems School of Information and.
After today Week 9 –Tu: Pat Rondon –Th: Ravi/Nathan Week 10 –Tu: Nathan/Ravi –Th: Class canceled Finals week –Th: Zach, John.

After today Week 9 –Tu: Pat Rondon –Th: Ravi/Nathan Week 10 –Tu: Nathan/Ravi –Th: Class canceled Finals week –Th: Zach, John.
Chapter 4 Context-Free Languages Copyright © 2011 The McGraw-Hill Companies, Inc. Permission required for reproduction or display. 1.

Chapter 4 Context-Free Languages Copyright © 2011 The McGraw-Hill Companies, Inc. Permission required for reproduction or display. 1.
The ACL2 Proof Assistant Formal Methods Jeremy Johnson.

The ACL2 Proof Assistant Formal Methods Jeremy Johnson.
CAS- 734 (Presentation -1) By : Vasudha Kapil

CAS- 734 (Presentation -1) By : Vasudha Kapil
Induction Schemes Math Foundations of Computer Science.

Induction Schemes Math Foundations of Computer Science.

Similar presentations

Ads by Google