Hammer for Coq: Automation for Dependent Type Theory

Czajka, Łukasz; Kaliszyk, Cezary

doi:10.1007/s10817-018-9458-4

Cited by 81 publications

(62 citation statements)

References 57 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…This section provides an evaluation of our experimental implementation of WPO in E Prover. 1 We use a single good-performing E strategy with the different term orders. The strategy was randomly selected and is provided in "Appendix A".…”

Section: Experimental Evaluationsmentioning

confidence: 99%

See 1 more Smart Citation

Relaxed Weighted Path Order in Theorem Proving

Jakubův

Kaliszyk

2020

Math.Comput.Sci.

Self Cite

View full text Add to dashboard Cite

We propose an extension of the automated theorem prover E by the weighted path ordering (WPO). WPO is theoretically stronger than all the orderings used in E Prover, however its parametrization is more involved than those normally used in automated reasoning. In particular, it depends on a term algebra. We integrate the ordering in E Prover and perform an evaluation on the standard theorem proving benchmarks. The ordering is complementary to the ones used in E prover so far. Furthermore, first-time presented here, we propose a relaxed variant of the weighted path order as an approximation of the standard WPO definition. A theorem prover strategy with a relaxed order can be incomplete, which is, however, not an issue as completeness can be easily regained by switching to a complete strategy. We show that the relaxed weighted path order can have a huge impact on an improvement of a theorem prover strategy.

show abstract

Section: Experimental Evaluationsmentioning

confidence: 99%

“…• We evaluate WPO against existing orderings in E Prover on parts of the TPTP library, the proofs stemming from the AIM conjecture [10], and on the CoqHammer proofs [1] in Sect. 6.…”

Section: Introductionmentioning

confidence: 99%

Relaxed Weighted Path Order in Theorem Proving

Jakubův

Kaliszyk

2020

Math.Comput.Sci.

Self Cite

View full text Add to dashboard Cite

show abstract

“…Finally, ITPs are seeing increasing use of "hammers" such as Sledgehammer [15,16,55] in Isabelle/HOL, and similar tools for HOL Light and HOL4 [44], and Mizar [45], to interface with ATPs. This technique is similar to Meta-F , which, given its support for a dependently typed logic is especially related to a recent hammer for Coq [27]. Unlike these hammers, Meta-F does not aim to reconstruct SMT proofs, gaining efficiency at the cost of trusting the SMT solver.…”

Section: Related Workmentioning

confidence: 99%

Meta-F $$^\star $$ : Proof Automation with SMT, Tactics, and Metaprograms

Martínez

Ahman

Dumitrescu³

et al. 2019

Programming Languages and Systems

View full text Add to dashboard Cite

We introduce Meta-F , a tactics and metaprogramming framework for the F program verifier. The main novelty of Meta-F is allowing the use of tactics and metaprogramming to discharge assertions not solvable by SMT, or to just simplify them into well-behaved SMT fragments. Plus, Meta-F can be used to generate verified code automatically. Meta-F is implemented as an F effect, which, given the powerful effect system of F , heavily increases code reuse and even enables the lightweight verification of metaprograms. Metaprograms can be either interpreted, or compiled to efficient native code that can be dynamically loaded into the F type-checker and can interoperate with interpreted code. Evaluation on realistic case studies shows that Meta-F provides substantial gains in proof development, efficiency, and robustness.

show abstract

“…In this section we provide specific details about proving invertibility equivalences in Coq. In addition to the bit-vector library described in Section 4, in several proofs of invertibility equivalences we benefited from CoqHammer [4], a plug-in that aims at extending the automation in Coq by combining machine 1 Theorem bvashr_ult2_rtl : forall (n : N), forall (s t : bitvector n), 2 (exists (x : bitvector n), (bv_ult (bv_ashr_a s x) t = true)) -> 3 (((bv_ult s t = true) \/ (bv_slt s (zeros n)) = false) /\ 4 (bv_eq t (zeros n)) = false). 5 Proof.…”

Section: Proving Invertibility Equivalences In Coqmentioning

confidence: 99%

Verifying Bit-vector Invertibility Conditions in Coq (Extended Abstract)

Ekici

Viswanathan

Zohar

et al. 2019

Electron. Proc. Theor. Comput. Sci.

View full text Add to dashboard Cite

This work is a part of an ongoing effort to prove the correctness of invertibility conditions for the theory of fixed-width bit-vectors, which are used to solve quantified bit-vector formulas in the Satisfiability Modulo Theories (SMT) solver CVC4. While many of these were proved in a completely automatic fashion for any bit-width, some were only proved for bit-widths up to 65, even though they are being used to solve formulas over arbitrary bit-widths. In this paper we describe our initial efforts in proving a subset of these invertibility conditions in the Coq proof assistant. We describe the Coq library that we use, as well as the extensions that we introduced to it.

show abstract

Hammer for Coq: Automation for Dependent Type Theory

Cited by 81 publications

References 57 publications

Relaxed Weighted Path Order in Theorem Proving

Relaxed Weighted Path Order in Theorem Proving

Meta-F $$^\star $$ : Proof Automation with SMT, Tactics, and Metaprograms

Verifying Bit-vector Invertibility Conditions in Coq (Extended Abstract)

Contact Info

Product

Resources

About