Skip to content

lengyijun/polonius-proof

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

128 Commits
presentation
presentation
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
datafrog_opt.thm
datafrog_opt.thm
 
 
two.agda
two.agda
 
 

Repository files navigation

polonius-proof

What is this?

In polonius, there are two datalog rules: naive and datafrog-opt.

This repo use abella and Agda to prove that they are equivalent. (dependently, and slightly different lemmas)

How to run Abella version

abella datafrog_opt.thm

See Proof completed. in output.

How to run Agda version

In emacs two.agda, C-c C-l

See Agda checked.

How to prove

Just to prove

naive_error => datafrog_opt_error (Theorem Naive2DatafrogOpt)  AND
datafrog_opt_error => naive_error (Theorem DatafrogOpt2Naive)

datafrog_opt_error => naive_error is not so difficulty,

but naive_error => datafrog_opt_error is not trival.

I define another set of rules: my_subset and my_origin_contains_loan_on_entry to fix the gap.

Axiom needed

I only rely on one axiom(lemma without proof): origin_live_on_entry Origin Point is conflicted with !origin_live_on_entry Origin Point.

At any point, an origin must either be live or dead.

Benefit of this proof

We don't need to worry about the correctness of datafrog-opt. The tests only serve for the correctness of implementation.

TODO

I didn't care placeholder in naive. I guess placeholder loan will never be invalidated ?

About

No description, website, or topics provided.

Resources

Readme
Activity

Stars

12 stars

Watchers

4 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Languages