Presentation is loading. Please wait.

Presentation is loading. Please wait.

Facilitating Programming Verification with Dependent Types Hongwei Xi University of Cincinnati.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "Facilitating Programming Verification with Dependent Types Hongwei Xi University of Cincinnati."— Presentation transcript:

1

2 Facilitating Programming Verification with Dependent Types Hongwei Xi University of Cincinnati

3 A Wish List We would like to have a programming language that should be simple and general support extensive error checking facilitate proofs of program properties possess correct and efficient implementation......

4 Reality Invariably, there are many conflicts among this wish list These conflicts must be resolved with careful attention to the needs of the user

5 Advantages of Types Capturing errors at compile-time Enabling compiler optimizations Facilitating program verification Serving as program documentation

6 Limitations of Types Not general enough Many correct programs cannot be typed Not specific enough Many interesting properties cannot be captured

7 Dependent Types Dependent types are types that are more refined dependent on the values of expressions Examples int(i): singleton type containing only integer i array(n): type for integer arrays of size n

8 Type System Design A practically useful type system should be Scalable Applicable Comprehensible Unobtrusive Flexible

9 Xanadu Xanadu is a dependently typed imperative programming language with C-like syntax The type of a variable in Xanadu can change during execution The programmer may need to provide dependent type annotations for type- checking purpose

10 Early Design Decisions Practical type-checking Realistic programming features Conservative extension Pay-only-if-you-use policy

11 Examples of Dependent Types in Xanadu int(a): singleton types containing the only integer equal to a, where a ranges over all integers array(a): types for arrays of size a in which all elements are of type ‘a, where a ranges over all natural numbers

12 Examples of Dependent Types in Xanadu int(i,j) is defined as [a:int | i < a < j] int(a) int[i,j) is defined as [a:int | i <= a < j] int(a) int(i,j] is defined as [a:int | i < a <= j] int(a) int[i,j] is defined as [a:int | i <= a <= j] int(a)

13 A Xanadu Program {n:nat} unit init (int vec[n]) { var int ind, size;; size = arraysize(vec); invariant: [i:nat] (ind: int(i)) for (ind=0; ind<size; ind=ind+1){ vec[ind] = ind; }

14 Binary Search in Xanadu {n:nat} int bs(int key, int vec[n]) { var: int l, m, h; float x;; l = 0; h = arraysize(vec) - 1; invariant: [i:nat, j:nat | 0 <= i <= n, 0 <= j+1 <= n] (l:int(i), h:int(j)) while (l <= h) { m = (l + h) / 2; x = vec[m]; if (x < key) { l = m - 1; } else if (x > key) { h = m + 1; } else { return m; } } return –1; }

15 Dependent Record Types A polymorphic type for arrays {n:nat} array(n) { size: int(n); data[n]: ‘a }

16 Dependent Record Types A polymorphic type for 2-dimensional arrays: {n:nat} array2(m,n) { row: int(m); col: int(n); data[m][n]: ‘a }

17 Dependent Record Types A polymorphic type for heaps: {m:nat} heap(m) { max: int(m); size: int[0, m]; data[m]: ‘a }

18 Dependent Record Types A polymorphic type for sparse arrays: sparseArray(m,n) { row: int(m); col: int(n); data[m]: list }

19 Dependent Union Types A polymorphic type for lists: union list with nat = { Nil(0); {n:nat} Cons(n+1) of ‘a * list(n) } Nil: list(0) Cons: {n:nat} ‘a * list(n) -> ‘a list(n+1)

20 Dependent Union Types A polymorphic type for binary trees: union tree with (nat,nat) = { E(0,0); {n:nat} B(sl+sr+1,1+max(hl,hr)) of tree(sl,hl) * ‘a * tree(sr,hr) }

21 Reverse Append in Xanadu (‘a) {m:nat,n:nat} list(m+n) revApp (xs: list(m),ys: list(n)) { var: ‘a x;; invariant: [m1:nat,n1:nat | m1+n1=m+n] (xs: list(m1), ys: list(n1)) while (true) { switch (xs) { case Nil: return ys; case Cons (x, xs): ys = Cons(x, ys); } } exit; /* can never be reached */ }

22 Constraint Generation in Type-checking The following integer constraint is generated when the revApp example is type-checked: m:nat,n:nat, m1:nat,n1:nat, m1+n1=m+n, a:nat, m1=a+1 |- a+(n1+1)=m+n

23 Conclusion It is still largely an elusive goal in practice to verify the correctness of a program It is therefore important to identify those program properties that can be effectively verified for realistic programs

24 Conclusion We have designed a type-theoretic approach to capturing simple arithmetic reasoning The preliminary studies indicate that this approach allows the programmer to capture many more properties in realistic programs

25 Future Work Adding more program features into Xanadu Constructing a compiler for Xanadu that can compile dependent types from source level into bytecode level Incorporating dependent types into Java and …

Download ppt "Facilitating Programming Verification with Dependent Types Hongwei Xi University of Cincinnati."

Similar presentations

Kathleen Fisher cs242 Reading: “Concepts in Programming Languages”, Chapter 6.

Kathleen Fisher cs242 Reading: “Concepts in Programming Languages”, Chapter 6.
Introduction to Compilation of Functional Languages Wanhe Zhang Computing and Software Department McMaster University 16 th, March, 2004.

Introduction to Compilation of Functional Languages Wanhe Zhang Computing and Software Department McMaster University 16 th, March, 2004.
Intermediate Code Generation

Intermediate Code Generation
Satisfiability Modulo Theories (An introduction)

Satisfiability Modulo Theories (An introduction)
Exercise 1 Generics and Assignments. Language with Generics and Lots of Type Annotations Simple language with this syntax types:T ::= Int | Bool | T =>

Exercise 1 Generics and Assignments. Language with Generics and Lots of Type Annotations Simple language with this syntax types:T ::= Int | Bool | T =>
Semantic Analysis Chapter 6. Two Flavors  Static (done during compile time) –C –Ada  Dynamic (done during run time) –LISP –Smalltalk  Optimization.

Semantic Analysis Chapter 6. Two Flavors  Static (done during compile time) –C –Ada  Dynamic (done during run time) –LISP –Smalltalk  Optimization.
Dependent Types in Practical Programming Hongwei Xi Oregon Graduate Institute.

Dependent Types in Practical Programming Hongwei Xi Oregon Graduate Institute.
Imperative Programming with Dependent Types Hongwei Xi University of Cincinnati.

Imperative Programming with Dependent Types Hongwei Xi University of Cincinnati.
U NIVERSITY OF D ELAWARE C OMPUTER & I NFORMATION S CIENCES D EPARTMENT Optimizing Compilers CISC 673 Spring 2009 Potential Languages of the Future Chapel,

U NIVERSITY OF D ELAWARE C OMPUTER & I NFORMATION S CIENCES D EPARTMENT Optimizing Compilers CISC 673 Spring 2009 Potential Languages of the Future Chapel,
Pedigree Types Yu David Liu, Johns Hopkins University / SUNY Binghamton Scott F. Smith, Johns Hopkins University July 7, IWACO’08.

Pedigree Types Yu David Liu, Johns Hopkins University / SUNY Binghamton Scott F. Smith, Johns Hopkins University July 7, IWACO’08.
1 Dependent Types for Termination Verification Hongwei Xi University of Cincinnati.

1 Dependent Types for Termination Verification Hongwei Xi University of Cincinnati.
Getting started with ML ML is a functional programming language. ML is statically typed: The types of literals, values, expressions and functions in a.

Getting started with ML ML is a functional programming language. ML is statically typed: The types of literals, values, expressions and functions in a.
Data Abstraction II SWE 619 Software Construction Last Modified, Spring 2009 Paul Ammann.

Data Abstraction II SWE 619 Software Construction Last Modified, Spring 2009 Paul Ammann.
INF 212 ANALYSIS OF PROG. LANGS Type Systems Instructors: Crista Lopes Copyright © Instructors.

INF 212 ANALYSIS OF PROG. LANGS Type Systems Instructors: Crista Lopes Copyright © Instructors.
Copyright © 2006 Addison-Wesley. All rights reserved.1-1 ICS 410: Programming Languages Chapter 3 : Describing Syntax and Semantics Axiomatic Semantics.

Copyright © 2006 Addison-Wesley. All rights reserved.1-1 ICS 410: Programming Languages Chapter 3 : Describing Syntax and Semantics Axiomatic Semantics.
Type Checking.

Type Checking.
Compiler Construction

Compiler Construction
1 CPS Transform for Dependent ML Hongwei Xi University of Cincinnati and Carsten Schürmann Yale University.

1 CPS Transform for Dependent ML Hongwei Xi University of Cincinnati and Carsten Schürmann Yale University.
Copyright © 2006 The McGraw-Hill Companies, Inc. Programming Languages 2nd edition Tucker and Noonan Chapter 5 Types Types are the leaven of computer programming;

Copyright © 2006 The McGraw-Hill Companies, Inc. Programming Languages 2nd edition Tucker and Noonan Chapter 5 Types Types are the leaven of computer programming;
Dependently Typed Pattern Matching Hongwei Xi Boston University.

Dependently Typed Pattern Matching Hongwei Xi Boston University.

Similar presentations

Ads by Google