Philosophy:Matching logic

Matching logic is a family of formal systems that were created mainly to specify and reason about computer programs and their correctness. Compared to classical logics such as first-order logic, matching logic's formulas, called patterns, are interpreted as, not elements, but power sets of the underlying carrier set(s), with the intuition that a pattern is matched by the set of elements that "match" it. This way, matching logic is said to admit a semantics based on pattern matching.

Matching logic was initially coined by Grigore Rosu and finalized with Xiaohong Chen in 2019.^[1] Matching logic is the logical foundation of the K framework.^[2]

The term "matching logic" was coined in 2009.^[3] and has been used to refer to a couple of formal systems since then. In the early days, matching logic was represented in the literature as a formal system to specify and reason about computer programs' configurations. Together with a set of rules, it was used to specify and reason about the dynamic behaviors of computer programs.

The latter was later developed into reachability logic, which is a language-agnostic formal system with a fixed number of rules that provides sound and relatively complete formal verification capability for all programming languages. In these works of literature, matching logic is presented as an independent component of reachability logic.

The first paper that establishes matching logic as a standalone formal logic was published in 2017.^[4] There, matching logic was given an independent definition of its syntax, semantics, and proof system for the first time. In 2019, fixpoint constructors and proof rules were added to matching logic.^[5]

More recently, researchers have shown increasing interest in simplifying matching logic to a bare minimum.^[6] They aim to keep its expressive power intact during this process. All these formalizations exist in today's literature and sometimes appear under the same name "matching logic''.

We list them below in the chronological order:

1. "Matching logic", which is a many-sorted logic but has no fixpoint operators.^[4]
2. "Matching ${\displaystyle \mu }$-logic", which extends the LMCS'17 formalization with fixpoint operators and proof rules.^[5]
3. "Applicative matching logic", which is a restricted fragment that requires the signatures to include only one sort and only one non-constant symbol that is a binary symbol.^[6]

Since then, the term "matching logic" has been used to refer to any of the above formalizations in the literature. To avoid confusion, we shall present the formalization of the most complete version, matching ${\displaystyle \mu }$-logic. Then, we will present the other formalizations as variants.

Matching ${\displaystyle \mu }$-logic is defined through its syntax and semantics, which are detailed below.

The syntax of matching logic specifies how patterns are constructed using variables, symbols, and logical connectives.

Matching logic is parametric on a many-sorted signature ${\displaystyle (S,\mathrm{\Sigma })}$ that has a set ${\displaystyle S}$ of sorts and an ${\displaystyle (S^{*}\times S)}$-indexed set ${\displaystyle \mathrm{\Sigma }}$ of many-sorted symbols, or simply symbols. A symbol ${\displaystyle \sigma \in {\mathrm{\Sigma }}_{s_1\dots s_n,s}}$ means that it takes ${\displaystyle n}$ arguments of sorts ${\displaystyle s_1}$, ..., ${\displaystyle s_n}$, respectively, and returns a value of sort ${\displaystyle s}$.

Let ${\displaystyle (S,\mathrm{\Sigma })}$ be a many-sorted signature. Let ${\displaystyle \mathrm{E}\mathrm{V}={{\mathrm{\{}\mathrm{E}\mathrm{V}}_s\}}_{s\in S}}$ and ${\displaystyle \mathrm{S}\mathrm{V}={{\mathrm{\{}\mathrm{S}\mathrm{V}}_s\}}_{s\in S}}$ be two disjoint families of ${\displaystyle S}$-indexed sets of variables. We call elements in ${\displaystyle \mathrm{E}\mathrm{V}}$ element variables, denoted ${\displaystyle x:s}$, ${\displaystyle y:s}$, ... and elements in ${\displaystyle \mathrm{S}\mathrm{V}}$ set variables, denoted ${\displaystyle X:s}$, ${\displaystyle Y:s}$, ...

Matching logic formulas are called patterns. The set of ${\displaystyle (S,\mathrm{\Sigma })}$-patterns, or simply patterns, is an ${\displaystyle S}$-indexed set ${\displaystyle \mathrm{P}\mathrm{a}\mathrm{t}\mathrm{t}\mathrm{e}\mathrm{r}\mathrm{n}={{\mathrm{\{}\mathrm{P}\mathrm{a}\mathrm{t}\mathrm{t}\mathrm{e}\mathrm{r}\mathrm{n}}_s\}}_{s\in S}}$. We write ${\displaystyle {\phi }_s\in \mathrm{P}\mathrm{a}\mathrm{t}\mathrm{t}\mathrm{e}\mathrm{r}\mathrm{n}}$ or ${\displaystyle \phi \in {\mathrm{P}\mathrm{a}\mathrm{t}\mathrm{t}\mathrm{e}\mathrm{r}\mathrm{n}}_s}$ to denote a pattern of a sort ${\displaystyle s}$. The set of all patterns is inductively defined by the following grammar rules:

• ${\displaystyle x:s\in {\mathrm{P}\mathrm{a}\mathrm{t}\mathrm{t}\mathrm{e}\mathrm{r}\mathrm{n}}_s}$.
• ${\displaystyle X:s\in {\mathrm{P}\mathrm{a}\mathrm{t}\mathrm{t}\mathrm{e}\mathrm{r}\mathrm{n}}_s}$.
• ${\displaystyle \sigma ({\phi }_{s_1},\dots ,{\phi }_{s_n})\in {\mathrm{P}\mathrm{a}\mathrm{t}\mathrm{t}\mathrm{e}\mathrm{r}\mathrm{n}}_s}$ for any ${\displaystyle \sigma \in \mathrm{\Sigma }{s}_1\dots s_n,s}$.
• ${\displaystyle {\mathrm{\perp }}_s\in {\mathrm{P}\mathrm{a}\mathrm{t}\mathrm{t}\mathrm{e}\mathrm{r}\mathrm{n}}_s}$.
• ${\displaystyle {\phi }_s\to \phi {\text{'}}_s\in {\mathrm{P}\mathrm{a}\mathrm{t}\mathrm{t}\mathrm{e}\mathrm{r}\mathrm{n}}_s}$.
• ${\displaystyle \mathrm{\exists }x:s^{\prime }\cdot {\phi }_s\in {\mathrm{P}\mathrm{a}\mathrm{t}\mathrm{t}\mathrm{e}\mathrm{r}\mathrm{n}}_s}$. Note that ${\displaystyle s^{\prime }}$ and ${\displaystyle s}$ need not be the same.
• ${\displaystyle \mu X:s\cdot {\phi }_s\in {\mathrm{P}\mathrm{a}\mathrm{t}\mathrm{t}\mathrm{e}\mathrm{r}\mathrm{n}}_s}$ if ${\displaystyle {\phi }_s}$ is positive in ${\displaystyle X:s}$.

Here, ${\displaystyle {\phi }_s}$ is positive in ${\displaystyle X:s}$ if every occurrence of ${\displaystyle X:s}$ lies within an even number of implication left-hand sides. For example, ${\displaystyle X:s\to Y:s}$ is positive in ${\displaystyle Y:s}$ but not in ${\displaystyle X:s}$. In contrast, ${\displaystyle (X:s\to Y:s)\to X:s}$ is positive in ${\displaystyle X:s}$ but not in ${\displaystyle Y:s}$.

Notations can be defined in the usual way. The following are some standard notations:

• ${\displaystyle \mathrm{\neg }{\phi }_s\equiv {\phi }_s\to {\mathrm{\perp }}_s}$
• ${\displaystyle {\mathrm{\top }}_s\equiv \mathrm{\neg }{\mathrm{\perp }}_s}$
• ${\displaystyle {\phi }_s\vee \phi {\text{'}}_s\equiv \mathrm{\neg }{\phi }_s\to \phi {\text{'}}_s}$
• ${\displaystyle {\phi }_s\wedge \phi {\text{'}}_s\equiv \mathrm{\neg }(\mathrm{\neg }{\phi }_s\wedge \mathrm{\neg }\phi {\text{'}}_s)}$
• ${\displaystyle {\phi }_s\leftrightarrow {{\phi }_s}^{\prime }\equiv ({\phi }_s\to \phi {\text{'}}_s)\wedge ({\phi }_s\to \phi {\text{'}}_s)}$
• ${\displaystyle \mathrm{\forall }x:s^{\prime }\cdot {\phi }_s\equiv \mathrm{\neg }\mathrm{\exists }x:s^{\prime }\cdot \mathrm{\neg }{\phi }_s}$
• ${\displaystyle \nu X:s\cdot {\phi }_s\equiv \mathrm{\neg }\mu X:s\cdot \mathrm{\neg }{\phi }_s[\mathrm{\neg }X:s/X:s]}$

Here, ${\displaystyle {\phi }_s[\mathrm{\neg }X:s/X:s]}$ is the result of substituting every occurrence of ${\displaystyle X:s}$ for its negation ${\displaystyle \mathrm{\neg }X:s}$. One can verify that ${\displaystyle \nu X:s\cdot {\phi }_s}$ is well-formed if ${\displaystyle {\phi }_s}$ is positive in ${\displaystyle X:s}$.

The semantics of matching logic defines how patterns are interpreted over models and valuations.

Matching logic formulas, called patterns, are interpreted not as true/false values, but as sets. Intuitively, a matching logic pattern ${\displaystyle \phi }$ is interpreted as the set of elements that "match" it.

Let ${\displaystyle (S,\mathrm{\Sigma })}$ be a signature. An ${\displaystyle (S,\mathrm{\Sigma })}$-model, or simply a model, is denoted ${\displaystyle M=(\{M_s{\}}_{s\in S},{\{{\sigma }_M\}}_{\sigma \in \mathrm{\Sigma }})}$. It consists of:

• A nonempty carrier set ${\displaystyle M_s}$ for every ${\displaystyle s\in S}$.
• A function ${\displaystyle {\sigma }_M:M_{s_1}\times \dots \times M_{s_n}\to {𝒫}(M_s)}$ for every ${\displaystyle \sigma \in {\mathrm{\Sigma }}_{s_1\dots s_n,s}}$.

Here, ${\displaystyle {𝒫}(M_s)}$ denotes the power set of ${\displaystyle M_s}$.

A valuation ${\displaystyle \rho }$ maps every element variable of sort ${\displaystyle s}$ to an element in ${\displaystyle M_s}$. It also maps every set element of sort ${\displaystyle s}$ to a subset of ${\displaystyle M_s}$. That is, ${\displaystyle \rho (x:s)\in M_s}$ and ${\displaystyle \rho (X:s)\subseteq M_s}$. Given a model ${\displaystyle M}$ and a valuation ${\displaystyle \rho }$, the interpretation of a pattern is ${\displaystyle {\left|{\phi }_s\right|}_{M,\rho }\subseteq M_s}$. This interpretation is inductively defined in the following way:

• ${\displaystyle {\left|x:s\right|}_{M,\rho }=\{\rho (x:s)\}}$
• ${\displaystyle {|X:s|}_{M,\rho }=\rho (X:s)}$
• ${\displaystyle {|\sigma ({\phi }_{s_1},\dots ,{\phi }_{s_n})|}_{M,\rho }=\bigcup _{a_1\in {\left|{\phi }_{s_1}\right|}_{M,\rho }}\dots \bigcup _{a_n\in {\left|{\phi }_{s_n}\right|}_{M,\rho }}{\sigma }_M(a_1,\dots ,a_n)}$
• ${\displaystyle {\left|{\mathrm{\perp }}_x\right|}_{M,\rho }=\mathrm{\varnothing }}$, the empty set.
• ${\displaystyle {|{\phi }_s\to \phi {\text{'}}_s|}_{M,\rho }=M_s\setminus ({\left|{\phi }_s\right|}_{M,\rho }\setminus {\left|\phi {\text{'}}_s\right|}_{M,\rho })}$, where "${\displaystyle \setminus }$" denotes set difference.
• ${\displaystyle {|\mathrm{\exists }x:s^{\prime }\cdot {\phi }_s|}_{M,\rho }=\bigcup _{a\in M_{s^{\prime }}}{\left|{\phi }_s\right|}_{M,\rho [a/x:s^{\prime }]}}$, where ${\displaystyle \rho [a/x:s^{\prime }]}$ is the valuation that is identical to ${\displaystyle \rho }$ except that it maps to ${\displaystyle x:s^{\prime }}$ to ${\displaystyle a}$.
• ${\displaystyle {|\mu X:s\cdot {\phi }_s|}_{M,\rho }=\bigcap \{A\subseteq M_s\mid {\left|{\phi }_s\right|}_{M,\rho [A/X:s]}\subseteq A\}}$

By the Knaster-Tarski Fixpoint Theorem, ${\displaystyle \mu X:s\cdot {\phi }_s}$ is the least fixpoint of the function that maps ${\displaystyle A\subseteq M_s}$ to ${\displaystyle {\left|{\phi }_s\right|}_{M,\rho [A/X:s]}}$.

The following properties hold for common notations:

• ${\displaystyle {\left|\mathrm{\neg }{\phi }_s\right|}_{M,\rho }=M_s\setminus {\left|{\phi }_s\right|}_{M,\rho }}$
• ${\displaystyle {\left|{\mathrm{\top }}_s\right|}_{M,\rho }=M_s}$
• ${\displaystyle {|{\phi }_s\vee \phi {\text{'}}_s|}_{M,\rho }={\left|{\phi }_s\right|}_{M,\rho }\cup {\left|\phi {\text{'}}_s\right|}_{M,\rho }}$
• ${\displaystyle {|{\phi }_s\wedge \phi {\text{'}}_s|}_{M,\rho }={\left|{\phi }_s\right|}_{M,\rho }\cap {\left|\phi {\text{'}}_s\right|}_{M,\rho }}$
• ${\displaystyle {|{\phi }_s\leftrightarrow \phi {\text{'}}_s|}_{M,\rho }=M_s\setminus ({\left|{\phi }_s\right|}_{M,\rho }\mathrm{\Delta }{\left|\phi {\text{'}}_s\right|}_{M,\rho })}$, where "${\displaystyle \mathrm{\Delta }}$" denotes the symmetric difference operator.
• ${\displaystyle {|\mathrm{\forall }x:s^{\prime }\cdot {\phi }_s|}_{M,\rho }=\bigcap _{a\in M_{s^{\prime }}}{\left|{\phi }_s\right|}_{M,\rho [a/x:s^{\prime }]}}$
• ${\displaystyle {|\nu X:s\cdot {\phi }_s|}_{M,\rho }=\bigcup \{A\subseteq M_s\mid A\subseteq {\left|{\phi }_s\right|}_{M,\rho [A/X:s]}\subseteq A\}}$

Matching logic is used with reachability logic^[7] by the K Framework to specify operational semantics and use them directly for formal verification, which forms an alternative approach to Hoare logic.

The fixpoint-free fragment of matching logic can be converted to first-order logic with equality. This conversion allows the K Framework to use existing Satisfiability modulo theories (SMT) solvers. These solvers help to find proofs for theorems.

• Separation logic
• Hoare logic
• Regular expression, which matches sets of strings

0.00 (0 votes) Original source: https://en.wikipedia.org/wiki/Matching logic. Read more