Incremental exploration based kprove using rpc endpoints #1443
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
|
As an example of using this functionality, I do: Then I can run the proof I want, with And I get something like this:
I want to inspect the node And I get this (highly truncated) output:
Now I want to continue exploration, without any depth bound, so I simple call This leads to the following CFG eventually (has explored 2 times, then gotten stuck, cannot make progress, proof not passing):
After playing with the CFG a bit, and exploring more of the behaviors, I decide it's time to start the exploration over, so I add eth |
ehildenb
force-pushed
the
incremental-exploration
branch
from
6923cbf to
d3234e9
Compare
ehildenb
force-pushed
the
incremental-exploration
branch
from
d3234e9 to
9a0a41f
Compare
ehildenb
changed the title
ehildenb
force-pushed
the
incremental-exploration
branch
2 times, most recently
from
4903fae to
b082ed7
Compare
ehildenb
force-pushed
the
incremental-exploration
branch
2 times, most recently
from
a966100 to
ae8a872
Compare
rv-jenkins
pushed a commit
to runtimeverification/pyk
that referenced
this pull request
Nov 23, 2022
These changes are what I needed to have a first working version of KProve implemented fully here: runtimeverification/evm-semantics#1443. In particular: - Some KAst <-> Kore problems are addressed: - If the same variable shows up multiple times in `KDefinition.sort_vars`, but with different sorts, instead of just giving up we'll check if one sort is a subsort of the other. If so, we'll return the smaller sort. Test added to `test_kast_to_kore`. - The conversions for `Exists` are added. Test added to `test_bidirectional`. - `KProve.execute` method now returns `CTerm` instead of `KInner`, as it shouldn't be able to return `mlTop()` or `mlBottom()` anyway. - `KCFG.create_cover` now allows you to specify a witness manually instead of trying to compute it for you. (De)Serialization requires that we can do `Subst.{from_dict,to_dict}`, so that functionality is added too. - `KProve.implies` method is added as a wrapper around the `implies` RPC endpoint. Tests are added that make sure it's giving back sane results. By default, we much existentially bind variables in the consequent that are not present in the antecedent to get anything useful out of the endpoint. Tests added to `test_implies` in `test_kprove`. Co-authored-by: devops <[email protected]>
ehildenb
force-pushed
the
incremental-exploration
branch
3 times, most recently
from
6567463 to
6216a45
Compare
…build contract ids
ehildenb
force-pushed
the
incremental-exploration
branch
from
ef89e47 to
5600b53
Compare
… node output" This reverts commit 0915734.
|
Subsumed by: #1538 |
Baltoli
pushed a commit
to runtimeverification/k
that referenced
this pull request
Apr 9, 2024
These changes are what I needed to have a first working version of KProve implemented fully here: runtimeverification/evm-semantics#1443. In particular: - Some KAst <-> Kore problems are addressed: - If the same variable shows up multiple times in `KDefinition.sort_vars`, but with different sorts, instead of just giving up we'll check if one sort is a subsort of the other. If so, we'll return the smaller sort. Test added to `test_kast_to_kore`. - The conversions for `Exists` are added. Test added to `test_bidirectional`. - `KProve.execute` method now returns `CTerm` instead of `KInner`, as it shouldn't be able to return `mlTop()` or `mlBottom()` anyway. - `KCFG.create_cover` now allows you to specify a witness manually instead of trying to compute it for you. (De)Serialization requires that we can do `Subst.{from_dict,to_dict}`, so that functionality is added too. - `KProve.implies` method is added as a wrapper around the `implies` RPC endpoint. Tests are added that make sure it's giving back sane results. By default, we much existentially bind variables in the consequent that are not present in the antecedent to get anything useful out of the endpoint. Tests added to `test_implies` in `test_kprove`. Co-authored-by: devops <[email protected]>
Baltoli
pushed a commit
to runtimeverification/k
that referenced
this pull request
Apr 9, 2024
These changes are what I needed to have a first working version of KProve implemented fully here: runtimeverification/evm-semantics#1443. In particular: - Some KAst <-> Kore problems are addressed: - If the same variable shows up multiple times in `KDefinition.sort_vars`, but with different sorts, instead of just giving up we'll check if one sort is a subsort of the other. If so, we'll return the smaller sort. Test added to `test_kast_to_kore`. - The conversions for `Exists` are added. Test added to `test_bidirectional`. - `KProve.execute` method now returns `CTerm` instead of `KInner`, as it shouldn't be able to return `mlTop()` or `mlBottom()` anyway. - `KCFG.create_cover` now allows you to specify a witness manually instead of trying to compute it for you. (De)Serialization requires that we can do `Subst.{from_dict,to_dict}`, so that functionality is added too. - `KProve.implies` method is added as a wrapper around the `implies` RPC endpoint. Tests are added that make sure it's giving back sane results. By default, we much existentially bind variables in the consequent that are not present in the antecedent to get anything useful out of the endpoint. Tests added to `test_implies` in `test_kprove`. Co-authored-by: devops <[email protected]>
Baltoli
pushed a commit
to runtimeverification/k
that referenced
this pull request
Apr 9, 2024
These changes are what I needed to have a first working version of KProve implemented fully here: runtimeverification/evm-semantics#1443. In particular: - Some KAst <-> Kore problems are addressed: - If the same variable shows up multiple times in `KDefinition.sort_vars`, but with different sorts, instead of just giving up we'll check if one sort is a subsort of the other. If so, we'll return the smaller sort. Test added to `test_kast_to_kore`. - The conversions for `Exists` are added. Test added to `test_bidirectional`. - `KProve.execute` method now returns `CTerm` instead of `KInner`, as it shouldn't be able to return `mlTop()` or `mlBottom()` anyway. - `KCFG.create_cover` now allows you to specify a witness manually instead of trying to compute it for you. (De)Serialization requires that we can do `Subst.{from_dict,to_dict}`, so that functionality is added too. - `KProve.implies` method is added as a wrapper around the `implies` RPC endpoint. Tests are added that make sure it's giving back sane results. By default, we much existentially bind variables in the consequent that are not present in the antecedent to get anything useful out of the endpoint. Tests added to `test_implies` in `test_kprove`. Co-authored-by: devops <[email protected]>
Baltoli
pushed a commit
to runtimeverification/k
that referenced
this pull request
Apr 10, 2024
These changes are what I needed to have a first working version of KProve implemented fully here: runtimeverification/evm-semantics#1443. In particular: - Some KAst <-> Kore problems are addressed: - If the same variable shows up multiple times in `KDefinition.sort_vars`, but with different sorts, instead of just giving up we'll check if one sort is a subsort of the other. If so, we'll return the smaller sort. Test added to `test_kast_to_kore`. - The conversions for `Exists` are added. Test added to `test_bidirectional`. - `KProve.execute` method now returns `CTerm` instead of `KInner`, as it shouldn't be able to return `mlTop()` or `mlBottom()` anyway. - `KCFG.create_cover` now allows you to specify a witness manually instead of trying to compute it for you. (De)Serialization requires that we can do `Subst.{from_dict,to_dict}`, so that functionality is added too. - `KProve.implies` method is added as a wrapper around the `implies` RPC endpoint. Tests are added that make sure it's giving back sane results. By default, we much existentially bind variables in the consequent that are not present in the antecedent to get anything useful out of the endpoint. Tests added to `test_implies` in `test_kprove`. Co-authored-by: devops <[email protected]>
Baltoli
pushed a commit
to runtimeverification/k
that referenced
this pull request
Apr 10, 2024
These changes are what I needed to have a first working version of KProve implemented fully here: runtimeverification/evm-semantics#1443. In particular: - Some KAst <-> Kore problems are addressed: - If the same variable shows up multiple times in `KDefinition.sort_vars`, but with different sorts, instead of just giving up we'll check if one sort is a subsort of the other. If so, we'll return the smaller sort. Test added to `test_kast_to_kore`. - The conversions for `Exists` are added. Test added to `test_bidirectional`. - `KProve.execute` method now returns `CTerm` instead of `KInner`, as it shouldn't be able to return `mlTop()` or `mlBottom()` anyway. - `KCFG.create_cover` now allows you to specify a witness manually instead of trying to compute it for you. (De)Serialization requires that we can do `Subst.{from_dict,to_dict}`, so that functionality is added too. - `KProve.implies` method is added as a wrapper around the `implies` RPC endpoint. Tests are added that make sure it's giving back sane results. By default, we much existentially bind variables in the consequent that are not present in the antecedent to get anything useful out of the endpoint. Tests added to `test_implies` in `test_kprove`. Co-authored-by: devops <[email protected]>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Blocked on: #1447Blocked on: #1440Blocked on: runtimeverification/pyk#100Blocked on: #1458Blocked on: runtimeverification/pyk#112Blocked on: #1462Blocked on: runtimeverification/pyk#118Blocked on: #1476Blocked on: runtimeverification/haskell-backend#3386Blocked on: runtimeverification/k#3059Blocked on: #1484Blocked on: #1478
Blocked on: #1480
This brings in a decent amount of functionality needed for making progress incremental on Foundry proofs:
KEVM.{is_terminal,extract_branches}, which help with auto-exploration.kprove).--max-iterationsto limit how many calls to prover to make while exploring.--max-depthto limit how long each exploration step will let the prover run.--no-simplify-initto turn of simplification of the initial state (up to 2 minutes at proof startup, does not need to be repeated on subsequent runs).Doing something like
kevm foundry-prove --test MyContract.MyTest --max-depth 100will make sure that every 100'th step is saved in the KCFG. That way you can save progress in case the prover crashes, and you can resume exploration from a later state with more lemmas in context.