Automatic Verification of TLA +  Proof Obligations with SMT Solvers

Merz, Stephan; Vanzetto, Hernán

doi:10.1007/978-3-642-28717-6_23

Cited by 24 publications

(20 citation statements)

References 10 publications

(11 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…An entire category of provers based on Satisfiability Modulo Theory (SMT) is especially good at some hard problems that involve arithmetic, uninterpreted functions, and quantifiers. The back-end prover smt3 uses one such SMT prover [8].…”

Section: Discussionmentioning

confidence: 99%

Formal Analysis of a Distributed Algorithm for Tracking Progress

Abadi

McSherry

Murray

et al. 2013

Formal Techniques for Distributed Systems

View full text Add to dashboard Cite

Abstract. Tracking the progress of computations can be both important and delicate in distributed systems. In a recent distributed algorithm for this purpose, each processor maintains a delayed view of the pending work, which is represented in terms of points in virtual time. This paper presents a formal specification of that algorithm in the temporal logic TLA, and describes a mechanically verified correctness proof of its main properties.

show abstract

Section: Discussionmentioning

confidence: 99%

Formal Analysis of a Distributed Algorithm for Tracking Progress

Abadi

McSherry

Murray

et al. 2013

Formal Techniques for Distributed Systems

View full text Add to dashboard Cite

show abstract

“…Their work focused on generating efficient refutation proofs that can be checked by a theorem prover in a short amount of time. Integrating SMT solvers into theorem provers has been a consistently developing area in the past decade [18,11,4,19,6,5,1,10]. Erkök [10] integrated the SMT solver Yices into Isabelle/HOL.…”

Section: Related Workmentioning

confidence: 99%

“…Several papers showed how their methods could be used for the verification of concurrent algorithms such as clock synchronization [11], and the Bakery and Memoir algorithms [19]. Erkök [10] uses the integration to prove memory safety of small C programs.…”

Section: Related Workmentioning

confidence: 99%

Smtlink 2.0

Peng

Greenstreet

2018

Electron. Proc. Theor. Comput. Sci.

View full text Add to dashboard Cite

Smtlink is an extension of ACL2 with Satisfiability Modulo Theories (SMT) solvers. We presented an earlier version at ACL2'2015. Smtlink 2.0 makes major improvements over the initial version with respect to soundness, extensibility, ease-of-use, and the range of types and associated theorysolvers supported. Most theorems that one would want to prove using an SMT solver must first be translated to use only the primitive operations supported by the SMT solver -this translation includes function expansion and type inference. Smtlink 2.0 performs this translation using a sequence of steps performed by verified clause processors and computed hints. These steps are ensured to be sound. The final transliteration from ACL2 to Z3's Python interface requires a trusted clause processor. This is a great improvement in soundness and extensibility over the original Smtlink which was implemented as a single, monolithic, trusted clause processor. Smtlink 2.0 provides support for FTY defprod, deflist, defalist, and defoption types by using Z3's arrays and user-defined data types. We have identified common usage patterns and simplified the configuration and hint information needed to use Smtlink.

show abstract

“…Compared to the model-checking in general, theorem proving requires the help of the programmer to prove properties that are valid on an arbitrary number of processes. We focused in this paper on the pure use of Isabelle/HOL because most of our reasoning were about topology and induction, but we do not exclude the use of a proof assistant in conjunction with SMT solvers [12] in the future to ease reasoning, or reason more deeply about liveness properties for example.…”

Section: Related Workmentioning

confidence: 99%

A Mechanized Model for CAN Protocols

Bongiovanni

Henrio

2013

Fundamental Approaches to Software Engineering

View full text Add to dashboard Cite

Abstract. Formal reasoning on Peer-to-Peer (P2P) systems is an intimidating task. This paper focuses on broadcast algorithms for Content Addressable Network (CAN). Since these algorithms run on top of complex P2P systems, finding the right level of abstraction in order to prove their functional correctness is difficult. This paper presents a mechanized model for both CAN and broadcast protocols over those networks. We demonstrate that our approach is practical by identifying sufficient conditions for a protocol to be correct and efficient. We also prove the existence of a protocol verifying those properties.

show abstract

Automatic Verification of TLA + Proof Obligations with SMT Solvers

Cited by 24 publications

References 10 publications

Formal Analysis of a Distributed Algorithm for Tracking Progress

Formal Analysis of a Distributed Algorithm for Tracking Progress

Smtlink 2.0

A Mechanized Model for CAN Protocols

Contact Info

Product

Resources

About