# Title of Presentation

Program Verification as SMT SMT workshop 2012 Nikolaj Bjrner, Ken McMillan, Andrey Rybalchenko Microsoft Research Takeaways Program Verification as Solving Recursive Horn Clauses as Satisfiability Modulo Theories

SMT-LIB (+ goodies) a superb basis for Program Verification benchmark exchange Program Verification as SMT mc(x) = x-10 if x > 100

mc(x) = mc(mc(x+11)) if x 100 assert (mc(x) 91) Program Verification as SMT Formulate as Horn clauses: mc() mc() mc() mc() mc()

Solve for mc Program Verification as SMT Program Verification (Safety) as Satisfiability of Horn clauses Verification Tool Workflow HAVOC

Program Annotated with Inductive invariants Verification condition Dafny Verification Tool Workflow

Houdini HAVOC Program partially annotated with Inductive invariants Verification condition

Slicing Corral Inductive variable selection Dafny

Verification Tool Workflow Verification Condition Generators can already produce Horn Clauses Corral HAVOC Program partially annotated with Inductive invariants

Why, LLVM Horn Clauses Dualit Kind Leon HSF y Aligato r Synerg

UFO MCMT IC3 y SAFARI Dafny Procedures Horn Formulas

Summary as commands Verifying procedure calls Modular Concurrency Horn Clauses

[Predicate Abstraction and Refinement for Verifying Multi-Threaded Programs Ashutosh Gupta, Corneliu Popeea, Andrey Rybalchenko, POPL 2011] Clauses Horn

{ : | ( )} { :| ( , )} { :| ()} { : | ( , )} Extract sufficient Horn Conditions Verification Tool Workflow summary Many front-ends exist. Verification Condition Generators: - used for Checking Inductive Invariants - re-used for Synthesizing Inductive Invariants

Generalized Horn Formulas In a nutshell, solving partial correctness amounts to checking truth value of formulas of the form: E.g., satisfiability of: Generalized Horn Formulas Handling background axioms:

Z3s SMT format Takeaways Program Verification as Solving Recursive Horn Clauses as Satisfiability Modulo Theories SMT-LIB (+ goodies) a superb basis for Program

Verification benchmark exchange

