Presentation is loading. Please wait.

Presentation is loading. Please wait.

Predicate Transforms I

Published byGavin Stone Modified over 5 years ago

Similar presentations

Presentation on theme: "Predicate Transforms I"— Presentation transcript:

1 Predicate Transforms I
Software Testing and Verification Lecture 19 Prepared by Stephen M. Thebaut, Ph.D. University of Florida

2 Predicate Transforms I and II
Introduction Proving strong correctness Assignment statements Sequencing Selection statements Iteration

3 Introduction What are Predicate Transforms?
An extension of axiomatic verification. Rules are provided for transforming post-conditions into weakest pre-conditions with respect to various program constructs.

4 Introduction (cont’d)
What is a weakest pre-condition? It is the necessary pre-condition for program S to terminate in state Q. It is denoted wp(S,Q) and read, “the weakest pre-condition of S with respect to Q.”

5 Proving Strong Correctness
To prove {P} S {Q} and to prove that P implies that S will terminate, show that P  wp(S,Q) We now consider rules for computing weakest pre-conditions for structured programs comprised of assignment statements, if-then (-else) statements, and while loops.

6 Rule for Assignment Statements
wp(x:=E, Q(x,y,z))  Q(E,y,z)

7 Rule for Assignment Statements
wp(x:=E, Q(x,y,z))  Q(E,y,z) Examples: wp(x:=y+3, x>0) =

8 Rule for Assignment Statements
wp(x:=E, Q(x,y,z))  Q(E,y,z) Examples: wp(x:=y+3, x>0) = wp(x:=x+1, xn+1) =

9 Rule for Assignment Statements
wp(x:=E, Q(x,y,z))  Q(E,y,z) Examples: wp(x:=y+3, x>0) wp(x:=x+1, xn+1) wp(x:=7, x=7) =

10 Rule for Assignment Statements
wp(x:=E, Q(x,y,z))  Q(E,y,z) Examples: (cont’d) wp(x:=7, x=6) =

11 Rule for Assignment Statements
wp(x:=E, Q(x,y,z))  Q(E,y,z) Examples: (cont’d) wp(x:=7, x=6) = wp(x:=7, y=7) =

12 Rule for Assignment Statements
wp(x:=E, Q(x,y,z))  Q(E,y,z) Examples: (cont’d) wp(x:=7, x=6) = wp(x:=7, y=7) = wp(y:=-x, y=|x|) =

13 wp(S1, wp(S2,...wp(Sn-1, wp(Sn, Q))…))
Rule for Sequencing Rule: wp(S1;S2;...;Sn-1;Sn, Q)  wp(S1, wp(S2,...wp(Sn-1, wp(Sn, Q))…))

14 Rule for Sequencing (cont’d)
Example: wp(C:=D+1; B:=C2; A:=B2, A=36)

15 Rule for Sequencing (cont’d)
Example: wp(C:=D+1; B:=C2; A:=B2, A=36) C:=D+1 B:=C2 A:=B2 { A=36 }

16 Rule for Sequencing (cont’d)
Example: wp(C:=D+1; B:=C2; A:=B2, A=36) C:=D+1 B:=C2 A:=B2 { A=36 } C:=D+1 B:=C2 A:=B2 { A=36 }

17 Rule for if-then-else Statement
wp(if b then S1 else S2, Q)  (b Л wp(S1, Q)) V (¬b Л wp(S2, Q))

18 Rule for if-then-else Statement
wp(if b then S1 else S2, Q)  (b Л wp(S1, Q)) V (¬b Л wp(S2, Q)) T F b S1 S2 {Q}

19 Rule for if-then-else Statement
wp(if b then S1 else S2, Q)  (b Л wp(S1, Q)) V (¬b Л wp(S2, Q)) T F b b Л wp(S1, Q)) S1 S2 {Q}

20 Rule for if-then-else Statement
wp(if b then S1 else S2, Q)  (b Л wp(S1, Q)) V (¬b Л wp(S2, Q)) T F b b Л wp(S1, Q)) ¬b Л wp(S2, Q)) S1 S2 {Q}

21 Rule for if-then-else Statement (cont’d)
Example: wp(if x<0 then y:=-x else y:=x, y=|x|)

22 Rule for if-then Statement
wp(if b then S, Q)  (b Л wp(S, Q)) V (¬b Л Q)

23 Rule for if-then Statement
wp(if b then S, Q)  (b Л wp(S, Q)) V (¬b Л Q) T b F S {Q}

24 Rule for if-then Statement
wp(if b then S, Q)  (b Л wp(S, Q)) V (¬b Л Q) T b b Л wp(S, Q)) F S {Q}

25 Rule for if-then Statement
wp(if b then S, Q)  (b Л wp(S, Q)) V (¬b Л Q) T b b Л wp(S, Q)) F S ¬b Л Q {Q}

26 Rule for if-then Statement (cont’d)
Example: wp(if x<0 then y:=-x, y=|x|)

27 {Z=B} if A>B then Z := A {Z=Max(A,B)}
Exercise Prove the assertion below using the predicate transform based approach. {Z=B} if A>B then Z := A {Z=Max(A,B)}

28 {Z=B} if A>B then Z := A {Z=Max(A,B)}
Exercise Prove the assertion below using the predicate transform based approach. {Z=B} if A>B then Z := A {Z=Max(A,B)} P S Q

29 {Z=B} if A>B then Z := A {Z=Max(A,B)}
Exercise Prove the assertion below using the predicate transform based approach. {Z=B} if A>B then Z := A {Z=Max(A,B)} Hint: Compute the wp(S,Q) Show that P  wp(S,Q) P S Q

30 Predicate Transforms I
Software Testing and Verification Lecture 19 Prepared by Stephen M. Thebaut, Ph.D. University of Florida

Download ppt "Predicate Transforms I"

Similar presentations

Automated Theorem Proving Lecture 1. Program verification is undecidable! Given program P and specification S, does P satisfy S?

Automated Theorem Proving Lecture 1. Program verification is undecidable! Given program P and specification S, does P satisfy S?
Functional Verification III Prepared by Stephen M. Thebaut, Ph.D. University of Florida Software Testing and Verification Lecture Notes 23.

Functional Verification III Prepared by Stephen M. Thebaut, Ph.D. University of Florida Software Testing and Verification Lecture Notes 23.
Axiomatic Verification I Prepared by Stephen M. Thebaut, Ph.D. University of Florida Software Testing and Verification Lecture 17.

Axiomatic Verification I Prepared by Stephen M. Thebaut, Ph.D. University of Florida Software Testing and Verification Lecture 17.
Partial correctness © Marcelo d’Amorim 2010.

Partial correctness © Marcelo d’Amorim 2010.
ISBN 0-321-33025-0 Chapter 3 Describing Syntax and Semantics.

ISBN Chapter 3 Describing Syntax and Semantics.
Copyright © 2006 Addison-Wesley. All rights reserved. 3.5 Dynamic Semantics Meanings of expressions, statements, and program units Static semantics – type.

Copyright © 2006 Addison-Wesley. All rights reserved. 3.5 Dynamic Semantics Meanings of expressions, statements, and program units Static semantics – type.
1 Discrete Structures Lecture 29 Predicates and Programming Read Ch. 10.1 - 10.2.

1 Discrete Structures Lecture 29 Predicates and Programming Read Ch
Predicate Transformers

Predicate Transformers
Program Proving Notes Ellen L. Walker.

Program Proving Notes Ellen L. Walker.
Duminda WijesekeraSWSE 623 - Program Correctness1 SWSE 623 Program Correctness -Pre-condition, Post-conditions and Loop invariants.

Duminda WijesekeraSWSE Program Correctness1 SWSE 623 Program Correctness -Pre-condition, Post-conditions and Loop invariants.
1/22 Programs : Semantics and Verification Charngki PSWLAB Programs: Semantics and Verification Mordechai Ben-Ari Mathematical Logic for Computer.

1/22 Programs : Semantics and Verification Charngki PSWLAB Programs: Semantics and Verification Mordechai Ben-Ari Mathematical Logic for Computer.
CS 355 – Programming Languages

CS 355 – Programming Languages
Hoare-style program verification K. Rustan M. Leino Guest lecturer Rob DeLine’s CSE 503, Software Engineering University of Washington 26 Apr 2004.

Hoare-style program verification K. Rustan M. Leino Guest lecturer Rob DeLine’s CSE 503, Software Engineering University of Washington 26 Apr 2004.
Describing Syntax and Semantics

Describing Syntax and Semantics
Floyd Hoare Logic. Semantics A programming language specification consists of a syntactic description and a semantic description. Syntactic description:symbols.

Floyd Hoare Logic. Semantics A programming language specification consists of a syntactic description and a semantic description. Syntactic description:symbols.
Exam 2 Help Session Prepared by Stephen M. Thebaut, Ph.D. University of Florida Software Testing and Verification.

Exam 2 Help Session Prepared by Stephen M. Thebaut, Ph.D. University of Florida Software Testing and Verification.
Proofs of Correctness: An Introduction to Axiomatic Verification Prepared by Stephen M. Thebaut, Ph.D. University of Florida CEN 5035 Software Engineering.

Proofs of Correctness: An Introduction to Axiomatic Verification Prepared by Stephen M. Thebaut, Ph.D. University of Florida CEN 5035 Software Engineering.
1.Determine the following weakest pre-conditions. a. wp(paint the living room ceiling, the house is all painted)

1.Determine the following weakest pre-conditions. a. wp(paint the living room ceiling, the house is all painted)
CS 363 Comparative Programming Languages Semantics.

CS 363 Comparative Programming Languages Semantics.
Chapter 3 Part II Describing Syntax and Semantics.

Chapter 3 Part II Describing Syntax and Semantics.

Similar presentations

Ads by Google