The extension of classical imperative programs with real-valued random variables and random branching gives rise to probabilistic programs. The termination problem is one of the most fundamental liveness properties for such programs. The qualitative (aka almost-sure) termination problem asks whether a given program terminates with probability 1. Ranking functions provide a sound and complete approach for termination of non-probabilistic programs, and their extension to probabilistic programs is achieved via ranking supermartingales (RSMs). RSMs have been extended to lexicographic RSMs to handle programs with involved control-flow structure, as well as for compositional approach. There are two key limitations of the existing RSM-based approaches: First, the lexicographic RSM-based approach requires a strong nonnegativity assumption, which need not always be satisfied. The second key limitation of the existing RSM-based algorithmic approaches is that they rely on pre-computed invariants. The main drawback of relying on pre-computed invariants is the insufficiency-inefficiency trade-off: weak invariants might be insufficient for RSMs to prove termination, while using strong invariants leads to inefficiency in computing them. Our contributions are twofold: First, we show how to relax the strong nonnegativity condition and still provide soundness guarantee for almost-sure termination. Second, we present an incremental approach where the process of computing lexicographic RSMs proceeds by iterative pruning of parts of the program that were already shown to be terminating, in cooperation with a safety prover. In particular, our technique does not rely on strong pre-computed invariants. We present experimental results to show the applicability of our approach to examples of probabilistic programs from the literature.
翻译:具有真正估价随机变量和随机分流的经典必要程序扩展为具有真实随机变量和随机分流的经典必要程序,从而产生概率性程序。终止问题是目前基于 RSM 方法的最基本活性特性之一。 质( 几乎确定) 终止问题在于某个特定程序是否终止概率。 排序功能为终止非概率性程序提供了健全和完整的方法,而其延伸至概率性程序则通过排序超常性来实现。 RSM 已经扩展至包含控制流结构以及组成方法的系统化RSM 程序。 终止问题是目前基于 RSM 方法的最基本活性特性之一。 首先, 基于 语法的 RSM 方法需要强有力的非增强性假设。 以 RSM 为基础的逻辑性方法的第二个关键限制是, 依赖预合成变异性程序。 依赖预变异性数据的主要缺陷是, 缺乏效率的交易: 对于基于 RSMMS 的第二次变异性数据分析方法可能不够充分, 无法证明它的存在性, 而基于 精确性程序, 几乎可以证明 我们的解变现性程序, 显示我们 的精确性 的精确性程序是如何显示我们目前 的 的 的 的 的 的稳定性 的 的 的 的 的 。