CS 245 - Logic & Computation
TTH 10:00AM - 11:20AM
MC 4045
Stephen Watt

10% quiz | 20% assignments | 30% midterm | 40% final

Office Hours:
Lila Kari: TTh 2:30-3:30 pm
Stephen Watt: M 11-12am F 1-2pm

1 | Propositional Logic

1.1 | Introduction

What is Logic?

“this course is like a broken toaster”

Logic = the Science of Reasoning Syllogism = a kind of logical argument in which a proposition (conclusion) is inferred from 2 or more others (premises)

Logic and CS

Computers are built from electronic digital circuits, which are formed out of logic gates

Logic is used to reduce the number of necessary logic gates

Applications

Automated theorem proving (proof verifiers)
Fully / semi automated techniques to analyze the behavior of reactive programs
Databases (SQL) use first-order logic
Programming
- Program specification
- Formal verification

Propositional logic

Studies logical relationships between propositions (true/false statements)

Some important logical arguments: Hypothetical Syllogism

If p then q
If q then r
If p then r

Disjunctive Syllogism

p or q
Not q
p

Modus Ponens (crossing the pond)

If p then q
p
q

Modus Tollens

If p then q
Not q
Not p

Atomic Propositions = Proposition symbols which can’t be further subdivided Compound Propositions = Obtained by combining several atomic propositions

Logical Connectives = or / and / not / if-then

Convention: Stating a proposition in English implies it’s true
Negation (not) - is the only unary connective
Conjunction (and)
Disjunction (inclusive or) - p $\lor$ q should be translated as “p or q, or both”
Implication (if-then) - is the only non-symmetric connective. reversing it is the converse
Equivalence (if and only if)

Dealing with imprecision and ambiguity

”Don’t leave animals in cars because they rapidly turn into ovens”

Translations from English to Logic

1.2 | Propositional Logic Syntax

Syntax of propositional language $L^{p}$ : atoms, formulas

Expressions

Expressions = finite strings of allowed symbols
Length = number of occurrences of symbols in an expression
Empty expression = expression of length 0, denoted by $ϵ$
Equal = two expressions that are the same
Concatenating two expressions $U, V$ is denoted as $U V$
- $ϵ U = U ϵ = U$
If $U = W_{1} V W_{2}$ , then
- $V$ is a segment of $U$
- If $V \neq = U$ , then $V$ is a proper segment of $U$
If $U = VW$ , then $V$ is an initial segment (prefix) and $W$ is a terminal segment (suffix) of $U$

The set of formulas of $L^{p}$

$A t o m (L^{p})$ is the set of expressions of $L^{p}$ that consist of a proposition symbol only
$F or m (L^{p})$ is the set of formulas in $L^{p}$ , defined recursively as any previous formulas joined by $\neg, \land, \lor, ⟹, ⟺$

Generating and parsing formulas of $L^{p}$

Parse Tree = used to analyze formulas

Theorem: Unique Readability Theorem Every formula in $F or m (L^{p})$ is of exactly one of the six forms: an atom, $(\neg A), (A \land B), (A \lor B), (A ⟹ B), (A ⟺ B)$

Mathematical induction (review), structural induction

Principle of Mathematical Induction:

Establish that property $P$ is true for 0
Establish that $P (n) ⟹ P (n + 1)$

Structural Induction for Recursively Defined Sets

Base case(s)
(Composite) Inductive step: Show that the property holds after applying each recursive rule

Lemma 1: Every formula in $F or m (L^{p})$ has an equal number of left and right parentheses

Proof: We use structural induction Base Case: $A$ is an atom, and has 0 left and right parentheses

For the subcase of $\neg$ Inductive Step: Assume $A$ is $(\neg B)$ Inductive Hypothesis: formula $B$ has property $R : l (B) = r (B)$

l ((\neg B)) = 1 + l (B) = 1 + r (B) = r ((\neg B))

For the other subcases IH: Formulas $B, C$ both have property $R$ To prove $R$ for $(B \land C), (B \lor C), (B ⟹ C), (B ⟺ C)$ has property $R$ . WLOG, consider $(B \land C)$ :

l ((B \land C)) = 1 + l (B) + l (C) = 1 + r (B) + r (C) = r ((B \land C))

Unique Readability Theorem

Proof: Use the following Claims

The first symbol of a formula $A$ is either $^{'} (^{'}$ or a proposition symbol
Every formula $A$ has an equal number of $^{'} (^{'}$ and $^{'})^{'}$ (Lemma 1)
If $A^{'}$ is a non-empty proper initial segment of a formula $A$ , then $A^{'}$ has more $^{'} (^{'}$ than $^{'})^{'}$

Assume that a formula $F$ can be of the following forms

$F = p = A$
$F = (\neg A) = (B * C)$ , where $* \in {\land, \lor, ⟹, ⟺}$
$F = (B * C) = (B^{'} *^{'} C^{'})$ , where $*, *^{'} \in {\land, \lor, ⟹, ⟺}$

Recall that $(B * C) = (B^{'} *^{'} C^{'})$ means they are equal

Assume $p = A$ which leads to a contradiction
Assume $(\neg A) = (B * C)$ which leads to a contradiction
Assume $(B * C) = (B^{'} *^{'} C^{'})$ . Deleting the first symbol yields $B * C) = B^{'} *^{'} C^{'})$ . Thus, B is:
1. strictly shorter than $B^{'}$ - a contradiction
2. strictly longer than $B^{'}$ - a contradiction
3. the same length as $B^{'}$ - which proves the statement

Algorithm for parsing formulas: Count the excess of $^{'} (^{'}$ over $^{'})^{'}$ to determine the number of sub-formulas

Precedence rules and scope for connectives

Precedence order:

$\neg$ not
$\land$ and
$\lor$ or
$⟹$ if
$⟺$ iff

1.3 | Propositional Logic Semantics

Syntax vs semantics, truth valuations, truth tables

Syntax = the rules used for constructing formulas in $F or m (L^{p})$ Semantics = are concerned with meaning (atoms and connectives)

Truth valuation:

t : A t o m (L^{p}) \to {0, 1}

Satisfiability, tautologies, contradictions

Satisfied = Something is valued at 1 under the truth valuation Tautology = Something that’s always true Contradiction = Something that’s always false

Plato’s 3 essential laws of thought:

Law of identity: $p = p$
Law of contradiction: $\neg (p \land \neg p)$
Law of excluded middle: $(p \lor \neg p)$

Proving argument validity semantically

Tautological consequence $(⊨)$ \models

Special case: $\emptyset ⊨ A$ Tautological equivalence (|=|)

Proving tautological consequence by truth tables

Bash it (takes a long time and grows exponentially) Disproving by counterexamples

Edge cases: An unsatisfiable set (contradiction) tautologically implies any formula! The empty set is satisfied under any truth valuation!

General method for proving argument validity (semantically)

Test A will give a positive result if and only if either virus X or virus Y is present. Test B will give a positive result if and only if virus Y or Z is present. If test C is positive, virus Y can be excluded. The patient reacts positively to all three tests. Prove that the patient has virus X and virus Z but not virus Y

Solution:

$A ⟺ X \lor Y$
$B ⟺ Y \lor Z$
$C ⟹ \neg Y$
$A \land B \land C$

(X \lor Y) \land (Y \lor Z) \land (\neg Y) ⟹ X \land Z

1.4 | Propositional Calculus: Essential Laws, Normal Forms

Propositional calculus

Simplification: Removing implication:

A ⟹ B ⊨ \neg A \lor B

Removing if and only if: (both true or both false)

A ⟺ B ⊨ (A \land B) \lor (\neg A \land \neg B)

(first implies second or second implies first)

A ⟺ B ⊨ (A ⟹ B) \land (B ⟹ A) ⊨ (\neg A \lor B) \land (\neg B \lor A)

Essential laws for propositional calculus

All laws come in dual pairs, which are obtained by swapping 0 and 1, as well as $\land, \lor$
(somewhat shaky) Analogy: $\lor$ is treated like addition, while $\land$ is treaded like multiplication

Absorption Laws I

A \lor (A \land B) ⊨ A

A \land (A \lor B) ⊨ A

Absorption Laws II

(A \land B) \lor (\neg A \land B) ⊨ B

(A \lor B) \land (\neg A \lor B) ⊨ B

A literal is a formula of the form $p, \neg p$ (complimentary literals)

Simplifying conjunctions (and)

If an and contains 0, it always yields 0
If an and contains 1 or any duplicate literals, they can be dropped

Simplifying disjunctions (or)

If an or contains 1, it always yields 1
If an or contains 0 or any duplicate literals, they can be dropped

Disjunctive / Conjunctive Normal Forms (DNF / CNF)

Def: Disjunctive Normal Form: A formula in DNF is of the form

(A_{11} \land \dots \land A_{1 n 1}) \lor \dots \lor (A_{k 1} \land \dots \land A_{knk})

where $k \geq 1, n_{1}, \dots, n_{k} \geq 1$ , and $A_{ij}$ are literals for $1 \leq i \leq k$ and $1 \leq j \leq n_{i}$ . The formulas $A_{i 1} \land \dots A_{ini}$ are the conjunctive clauses of the formula in DNF.

Def: Conjunctive Normal Form: A formula in CNF is of the form

(A_{11} \lor \dots \lor A_{1 n 1}) \land \dots \land (A_{k} 1 \lor \dots \lor A_{knk})

Obtaining DNF and CNF from truth tables

Eliminate everything

1.5 | Connectives, Logic Gates, Circuit Design

n-ary connectives

Since $A ⟹ B ⊨ \neg A \lor B$ , the connective $⟹$ is said to be definable in terms of $\neg A \lor B$

There are 16 binary connectives (there are $2^{2^{2}}$ $n$ -ary connectives)

Any set of connectives with the capability to express any truth table is said to be adequate

Proving adequacy and inadequacy of a set of connectives

Def: Adequacy A set S of connectives is called adequate iff any n-ary connective can be defined in terms of the connectives in S. For instance, the set $S_{0} = {\neg, \land, \lor}$ is adequate

Proving adequacy: Show that all connectives in an adequate set $S_{0} = {\neg, \land, \lor}$ can be defined in terms of the connectives in $S$
Proving inadequacy: Show that one of the connectives in the adequate set cannot be defined using the connectives in $S$

Pierce Arrow for NOR ( $↓$ ) is adequate

\neg p p \land q p \lor q ⊨ p ↓ p ⊨ (p ↓ p) ↓ (q ↓ q) ⊨ (p ↓ q) ↓ (p ↓ q)

Sheffer stroke for NAND $(∣)$ is also adequate

\neg p p \lor q p \land q ⊨ p ∣ p ⊨ (p ∣ q) ∣ (p ∣ q) ⊨ (p ∣ p) ∣ (q ∣ q)

Ternary Connectives

Define $τ (p, q, r)$ too mean if p, then q, else r
There are $2^{(2^{3})}$ distinct ternary connectives

Boolean algebra and propositional logic

Using set theory to describe propositional logic

\cap = \land, \cup = \lor

Definition: Joolean algebra An $n$ -variable Boolean function is a function of the form

f : {0, 1}^{n} \to {0, 1}

Logic Gates

Binary computers = transistors != electric computers

Circuit Design

Half-adder ( $s$ = sum, $c$ = carry)

$x$	$y$	$s$	$c$
0	0	0	0
0	1	1	0
1	0	1	0
1	1	0	1

Full-adder (with the additional carry bit $c_{i}$ )

$x$	$y$	$c_{i}$	$s$	$c_{i + 1}$
0	0	0	0	0
0	0	1	1	0
0	1	0	1	0
0	1	1	0	1
1	0	0	1	0
1	0	1	0	1
1	1	0	0	1
1	1	1	1	1

Formula simplification and circuit minimization

Circuits can be simplified in the same way that code and logical formulas can

1.6 | Formal deduction in propositional logic

Formal deducibility in propositional logic

Formal Deducibility $⊢$ has a similar meaning to $⊨$ , signifying argument validity To write that $A$ is formally deducible (or provable) from $Σ$ , we write

Σ ⊢ A

11 rules of formal deduction (but I’m only writing the 3 coolest ones)

(\neg, -)

If $Σ, \neg A ⊢ B$ , and $Σ, \neg A ⊢ \neg B$ , then $Σ ⊢ A$ (proof by contradiction)

(\lor, -)

If $Σ, A ⊢ C$ , and $Σ, B ⊢ C$ , then $Σ, A \lor B ⊢ C$ (proof by cases)

(⟹, +)

If $Σ, A ⊢ B$ , then $Σ ⊨ A ⟹ B$ (assumption of a premise is the antecedent of a conditional)

Definition of “formal deducibility” $(⊢)$

Definition: Formal deducibility A formula $A$ is formally deducible from $Σ$ ( $Σ ⊢ A$ ) if A is generated by a finite number of applications of the 11 rules of formal deduction

Subsequent steps are generated by a rule of formal deduction
The sequence of steps is called a formal proof of the last term $Σ_{n} ⊢ A_{n}$

Checking a proof: Check each step Finding a proof: Work in reverse

Semantics vs Syntax:

Tautological consequence $(Σ ⊨ A)$ is semantics
Deducibility $(Σ ⊢ A)$ is syntax

Proving statements about formal induction: Use structural induction on the set of theorems

Theorems: Finiteness of premise set, reduction ad absurdum, transitivity

Theorem: Finiteness of premise set If $Σ ⊢ A$ , then there exists a finite

Σ^{0} \subseteq Σ ∣ Σ^{0} ⊢ A

Theorem: Transitivity of deducibility Let $Σ \subseteq F or m (L^{p}), A_{1}, \dots A_{n} \in F or m (L^{p}), n \leq 1$ .

Σ ⊢ A_{i} for all i \in [1, n] and A_{1}, \dots A_{n} ⊢ A ⟹ Σ ⊢ A

Theorem: Reductio ad absurdum

Σ, A ⊢ B and Σ, A ⊢ \neg B ⟹ Σ ⊢ \neg A

Theorem of replaceability of Syntactically Equivalent Formulas $(⊢)$

Definition: Two formulas $A, B$ are syntactically equivalent if

A ⊢ B and B ⊢ A

Theorem: Replaceability of syntactically equivalent formulas Let $B, C$ be syntactically equivalent. For any $A$ , let $A^{'}$ be constructed from $A$ by replacing some (not necessarily all) occurrences of $B$ by $C$ . Then $A, \neg A$ are syntactically equivalent.

Theorems of Soundness and Completeness of Formal Deduction

Theorem: Soundness Theorem (should not be able to prove incorrect statements)

Σ ⊢ A ⟹ Σ ⊨ A

Theorem: Completeness Theorem (should be able to prove every correct statement)

Σ ⊨ A ⟹ Σ ⊢ A

Connection between syntax and semantics The Soundness and Completeness Theorems say that with formal deduction (as defined by the 11 rules) we can prove The truth, the whole truth, (completeness), and nothing but the truth. (soundness)

Logical Fallacies: Formal deduction can’t prove invalidity Recall that Descartes famously said “I think, therefore I am”. The joke was that Descartes goes into a bar and the bartender asks him if he wants another drink. “I think not,” says Descartes, and vanishes in a puff of smoke.

$T ⟹ A$
$\neg T$ Conclusion: $\neg A$ (fallacy of affirming the consequent)

“Why are you standing on this street corner, waiving your hands?”
“I am keeping away the elephants.”
“But there aren’t any elephants here.”
“You bet: that’s because I’m here.”

$p ⟹ \neg q$
$\neg q$ Conclusion: $p$ (fallacy of affirming the consequent)

Formal deduction proof strategies

If the consequence is an implication is an implication ( $Σ ⊢ A ⟹ B$ ), use $(⟹, +)$
If one of the premises is a disjunction ( $Σ, A \lor B ⊢ C$ ), use proof by cases $(\lor, -)$
If we have to prove $C ⊢ D$ and the direct proof doesn’t work, proof the contrapositive $(\neg D ⊢ \neg C)$
If all else fails, use proof by contradiction $(\neg, -)$ or $(\neg, +)$ in the case of $Σ ⊢ \neg B$

Consistency and Satisfiability

Definition: Consistency A set of formulas $Σ$ is consistent (w.r.t. a system of formal deduction, herein $⊢$ ) if there is no formula $F$ such that $Σ ⊢ F$ and $Σ ⊢ \neg F$ . Otherwise, $Σ$ is inconsistent.

Lemma: Satisfiability A set $Σ$ of logic formulas is satisfiable iff $Σ$ is consistent

Harry Potter and the 11 Rules of Formal Deduction

symbols	rule	words
$(R e f)$	$A ⊢ A$	(Reflexivity)
$(+)$	If $Σ ⊢ A$ , then $Σ, Σ^{'} ⊢ A$	(Addition of premises)
$(\neg, -)$	If $Σ, \neg A ⊢ B$ and $Σ, \neg A ⊢ \neg B$ then $Σ ⊢ A$	( $\neg$ elimination) or proof by contradiction
$(⟹, -)$	If $Σ ⊢ A ⟹ B$ and $Σ ⊢ A$ then $Σ ⊢ B$	( $⟹$ elimination) modus ponens
$(⟹, +)$	If $Σ, A ⊢ B$ , then $Σ ⊢ A ⟹ B$	( $⟹$ introduction)
$(\land, -)$	If $Σ ⊢ A \land B$ then $Σ ⊢ A$ and $Σ ⊢ B$	( $\land$ elimination)
$(\land, +)$	If $Σ ⊢ A$ and $Σ ⊢ B$ then $Σ ⊢ A \land B$	( $\land$ introduction)
$(\lor, -)$	If $Σ, A ⊢ C$ and $Σ, B ⊢ C$ then $Σ, A \lor B ⊢ C$	( $\lor$ elimination) proof by cases
$(\lor, +)$	If $Σ ⊢ A$ then $Σ ⊢ A \lor B$ and $Σ ⊢ B \lor A$	( $\lor$ introduction)
$(⟺, -)$	If $Σ ⊢ A ⟺ B$ and $Σ ⊢ A$ then $Σ ⊢ B$	( $⟺$ elimination)
	If $Σ ⊢ A ⟺ B$ and $Σ ⊢ B$ then $Σ ⊢ A$
$(⟺, +)$	If $(Σ, A ⊢ B)$ and $(Σ, B ⊢ A)$ then $Σ ⊨ A ⟺ B$	( $⟺$ introduction)

1.7 | Automated Theorem Proving by Resolution

A formal deduction system with a single rule: resolution

Resolution theorem proving is a method of formal deduction

”a giga proof by induction”
The only formulas allowed are disjunctions (OR)
There is only one rule: resolution

(C \lor p), (D \lor \neg p) ⊢ (C \lor D)

To prove that $A_{1}, \dots A_{n} ⊨ C$ is valid, show that the following is not satisfiable

{A_{1}, \dots, A_{n}, \neg C}

Prove that from this set, we can derive both $B$ and $\neg B$
Do this by converting everything to CNF
The resolvent of $p, \neg p$ is called the empty clause, signifying a contradiction

p, \neg p ⊢ {}

Example: Proving

p, p ⟹ q ⊢ q

Proof:

$p$ (premise)
$\neg p \lor q$ (premise)
$\neg q$ (negation of conclusion)
$q$ (resolving 1, 2 over $p$ )
${}$ (resolving 3,4 over $q$ )

Proving argument validity with resolution

Resolution strategies

David Putnam Procedure (DPP)

Any clause corresponds to a set of literals (the literals contained in the clause). Thus, we can use set notation to express resolution: $C \cup {p}, D \cup {\neg p}$ produces:

[(C \cup {p}) \cup (D \cup {\neg p})] \ {p, \neg p}

DPP:

Remote all clauses with $q, \neg q$
Choose a variable $p$ in one of the clauses
Add all possible resolvents using resolution on $p$
Discard all clauses with $p, \neg p$

If in some step one resolves $p, \neg p$ , the output is the empty clause (valid, empty backpack) If one never has such a pair, the output is no clause (invalid, no backpack)

Apply DPP to

{\neg p, q}, {\neg q, \neg r, s}, {p}, {r}, {\neg s}

Eliminating $p$ gives ${q}, {\neg q, \neg r, s}, {r}, {\neg s}$
Eliminating $q$ gives ${\neg r, s}, {r}, {\neg s}$
Eliminating $r$ gives ${s}, {\neg s}$
Eliminating $s$ gives ${}$ - the output is the empty clause, and this statement is una

Soundness and Completeness of DPP (proofs optional)

2 | First-Order Logic

2.10 | First-Order Logic

First-order logic

FoL elements: Domain, individuals, variables, functions, relations, quantifiers

Negating quantifiers

Nested quantifiers

2.11 | Syntax of First-Order Logic

FoL syntax

Propositional logic: formulas are recursively built starting from atoms (proposition symbols) by the 5 formation rules that describe the use of connectives First-order logic: Modelled as individuals with relationships

Domain
Terms
Atomic formulas
Formulas

Formal language of FoL ( $L$ ) Equality symbol $(\approx)$

Terms

$T er m (L)$ is an individual or variable

FoL formulas

$A t o m (L)$ is the simplest formula that has a T/F value $F or m (L)$ are formulas

Unique Readability Theorem for FoL

$S e n t (L)$ is the set of sentences

First-order languages

Ex: First order language of elementary number theory

Equality relation: Yes
Relation symbols: <
Individual (constant) symbols: 0
Function symbols: $s, +, \times$

2.12 | Semantics of First-Order Logic

First-order logic semantics

Valuations

Value of a term

Value of formulas

2.13 | Logical Consequence: Argument Validity

Logical consequence ( $⊨$ )

Proving argument validity

(Universally) valid formulas

Proving that a formula is (universally) valid

Logical equivalence, Replaceability theorem

2.14 | Formal Deduction for First-Order Logic

Formal deducibility in FoL

Harry Potter and the 6 additional rules for formal deduction

symbols	rule
$(\forall -)$	If $Σ ⊢ \forall A (x)$ is a theorem then $Σ ⊢ A (t)$ is a theorem
$(\forall +)$	If $Σ ⊢ A (u)$ is a theorem and $u$ does not occur in $Σ$ then $Σ ⊢ \forall x A (x)$
$(\exists -)$	If $Σ, A (u) ⊢ B$ is a theorem and $u$ does not occur in $Σ$ or in $B$ , then $Σ, \exists x A (x) ⊢ B$ is a theorem
$(\exists +)$	If $Σ ⊨ A (t)$ is a theorem then $Σ ⊢ \exists x A (x)$ is a theorem where $A (x)$ results from $A (t)$ by replacing some (not necessarily all) occurrences of $t$ by $x$
$(\approx -)$	If $Σ ⊢ A (t_{1})$ is a theorem and $Σ ⊨ t_{1} \approx t_{2}$ is a theorem, then $Σ ⊢ A (t_{2})$ is a theorem where $A (t_{2})$ results from $A (t_{1})$ by replacing some (not necessarily all) occurrences of $t_{1}$ by $t_{2}$
$(\approx +)$	$\emptyset ⊢ u \approx v$ is a theorem

Understanding the rules of formal deduction

Definition of formal deduction

Replaceability & Duality in formal deduction

Replaceability: If $B = C$ , we can replace $B$ with $C$ Duality: A formula is the same if we exchange $\land, \lor$ , $\exists, \forall$ , and negate all atoms

Soundness and completeness

2.15 | Resolution for FoL and Automated Theorem Provers

Prenex Normal Form (PNF)

PNF = All quantifiers at the front

No quantifiers also counts as PNF

Converting into PNF

Eliminate all $⟹, ⟺$
Move all negations inward (only as part of literals)
Standardize the variables apart
Move all quantifiers to the front

Preprocessing: Existential-free PNF

Skolem functions allow us to remove all existential quantifiers by replacing them with variables

\forall x_{1} \dots \forall x_{n} \exists y A \to (*) \forall x_{1} \dots \forall x_{n} A^{'}

When working with formulas in existential-free PNF, all variables are implicitly considered to be universally quantified

Preprocessing: Clauses

Sane as formal logic: Put everything in CNF

Valid arguments & satisfiability of a clause set

Clause unification & resolution for FoL

Unifying

Q (a, y, z), Q (y, b, c) \to y_{1} = a, y = b, z = c

Proving FoL arguments valid by resolution for FoL

3 | Decidability and Peano Arithmetic

3.16a | Computation and Logic: Turing Machines

What is an algorithm?

A finite sequence of well-defined, computer-implementable instructions, typically to solve a class of problems or perform a computation.

The Halting Problem

Halting Problem: Does there exist an algorithm (program) that operates as follows:

Input: A program P , and an input I to the program.
Output: “Yes” if the program P halts on input I, and “No” otherwise.

Proved unsolvable by Alan Turing

Construct $K (P)$ which calls $H (P, P)$ and outputs the opposite of it’s result
Then you cannot tell if $K (K)$ halts

Turing Machines as a formal model of computation

A Turing Machine is a 7-tuple $M = (Q, Σ, Γ, δ, q_{0}, B, F)$ where

$Q$ = the finite set of states of the finite control
$Σ$ = the finite set of input symbols
$Γ$ = the set of tape symbols such that $Σ \subset T$
$δ$ = the (partial) transition function such that $δ : Q \times Γ \times {L, R}$ , where L, R are “left” and “right”
$q_{0}$ = the start state, a member of $Q$
$B$ = the blank symbol, which is in $Γ$ but not $Σ$
$F$ = the set of final, or accepting states, a subset of $Q$

Language accepted as a Turing Machine

Can be graphs

Turing machines as computers of functions

Types of Turing Machines

Total Turing machine = halts on every input Universal Turing Machine = can simulate the computations of every TM

The Church-Turing Thesis

”Any problem that can be solved with an algorithm can be solved by a Turing Machine.”

It was proved that a Turing Machine is equivalent in computing power to all other, most general, mathematical models of computation.

3.16b | Undecidability of Universal Validity for First-Order Logic

Decidability and computability

A decision problem for which there exists a terminating algorithm that solves it is called decidable (solvable), otherwise it is undecidable (unsolvable)

Solvable means there exists a total TM that accepts those and only those problem instances that lead to a “yes” answer

A total function that can be computed by a total Turing machine is called computable, otherwise it is called uncomputable.

Uncomputable function example: the Busy Beaver function
Let $B (n)$ be the max number of 1s that a TM with $n$ states and alphabet ${1, B}$ may print on a blank tape before halting

The satisfiability (is any set satisfiable) and universal validity (is any formula valid) problems for FoL are undecidable

Proving undecidability

Reduce it to a previously solved problem. Suppose you can reduce $P_{1}$ to $P_{2}$ :

If $P_{1}$ is decidable, we can’t conclude anything
If $P_{1}$ is undecidable, so is $P_{2}$
If $P_{2}$ is decidable, then so is $P_{1}$
If $P_{2}$ is undecidable, we can’t conclude anything

Examples of undecidable problems

decider = a total TM that solves a decision problem

Undecidability of universal validity of FOL formulas

3.17 | Application of FoL: Peano Arithmetic (successors)

Formal deduction proofs of properties of equality $(\approx)$

Introducing a new kind of equality: $\approx$

First-order languages (theories)

A set of domain axioms + a system of formal deduction = a theory

Number / set / group / graph theory
Euclidean geometry
Computable functions (lambda calculus)
Relational databases

Number theory (Peano Arithmetic)

Number theory

Domain: natural numbers $0, 1, 2, \dots$
Addition $+$
Multiplication $\cdot$
Ordering $<$

Peano Arithmetic (PA) Symbols

Individual (constant): 0
Functions s (successor, $s (x) = x + 1$ ), $+, \cdot$
Relation: equality Axioms
Axioms defining the unary function successor and binary functions addition and multiplication
Axioms for induction

Harry Potter and the 7 Axioms for Peano Arithmetic

$\forall x (\neg (s (x) = 0)$ - negating the successor is false
$\forall x \forall y (s (x) = s (y) ⟹ x = y)$ - successor is one to one
$\forall x (x + 0 = x)$ - addition by 0
$\forall x \forall y (x + s (y) = s (x + y))$ - successor addition
$\forall x (x \cdot 0 = 0)$ - multiplication by 0
$\forall x \forall y (x \cdot s (y) = x \cdot y + x)$ - successor multiplication
$(A (0) \land \forall x (A (x) ⟹ A (s (x))) ⟹ \forall x A (x)$ - idk bruh

Proofs in Peano Arithmetic

successor of a thing doesn’t equal the thing
a natural number is 0 or has a predecessor

Defining new arithmetic relations

$u \leq v$ iff $\exists z (u + z = v)$
$u < v$ iff $\exists z (u + s (z) = v)$
$E v e n (u)$ iff $\exists y (u = y + y)$
$P r im e (u)$ iff $(1 \leq u) \land \neg (\exists z \exists y ((u = y \cdot z) \land (1 < y) \land (1 < z))$

Godel’s Incompleteness Theorem

Godel’s Incompleteness Theorem: Any consistent formal theory T with a decidable set of axioms, and that is capable of expressing elementary arithmetic (e.g., Peano Arithmetic), is syntactically incomplete, that is, there exists a formula expressible in T that can neither be proved nor disproved in T .

Can be proved using a contradiction including the Halting Problem

4 | An important application of logic to CS

4.18 | Formal Verification

Introduction: What and Why?

Techniques for showing program correctness

Inspection
Testing:
- Black-box: tests independent of code
- White-box: tests based on code
Formal design verification

Formal program verification:

Formally state the specification of a program with FoL
Prove that the program satisfies the specification for all inputs
Although this is undecidable (no terminating algorithm), there are some techniques

Framework for formal verification

Convert the English description of $R$ to logic ( $Φ_{R}$ )
Write a program $P$ meant to realize $Φ_{R}$ in some given programming environment
Prove that the program P satisfies $Φ_{R}$

Imperative programming: Defines control flow as statements that change a program states / describes how a program operators (FORTRAN, PASCAL, OOP languages) Declarative programming: Focuses on what the program should accomplish without telling it how to do it (SQL, functional programming, HTML)

We are verifying imperative (uses variables), sequential (no concurrency), and transformational (turns inputs to outputs) languages.

We use the core features of C/C++ and Java

ints and bools
assignment
sequence
if-then-else conditionals
while loops

Pre- and Post-conditions

Hoare Triples:

(∣ P ∣) C (∣ Q ∣)

$(∣ P ∣)$ = precondition
$C$ = program or code
$(∣ Q ∣)$ = postcondition

Specification is not behaviour

Instead of $(∣ y \cdot y < x ∣)$ , write $(y \cdot y < x) \land \forall z ((z \cdot z < x) ⟹ z \leq y)$

Partial and Total Correctness

Definition: Partial Correctness A Hoare triple is satisfied under partial correctness, denoted

⊨_{p a r} (∣ P ∣) C (∣ Q ∣)

if and only if an input satisfying $P$ given to $C$ terminates and satisfies $Q$

Partial correctness can be vacuously satisfied if the program never terminates

while true { x = 0; } // infinite loop

Definition: Total Correctness Partial correctness + every valid input terminates

If the input is altered (“consumed”), a program is satisfied under NEITHER partial nor total correctness

A Formal Proof System for Partial Correctness

Rewriting the pre and postconditions for correctness using FoL. Domain: Programs, program states, and conditions

State(s) - “s is a program state”
Condit(P) - “P is a condition”
Code(C) - “C is a program”
Satisfies (s,P) - “State s satisfies condition P”
Termiantes (C,s) - “Program C terminates when given state s”
result (C,s) - A FUNCTION that gives the state resulting from executing C with state s if C terminates (undefined otherwise)

Expressing correctness with FoL (Hoare triple $(∣ P ∣) C (∣ Q ∣)$ ) Partial correctness

\forall S \forall P \forall Q [St a t e (S) \land C o n d i t (P) ∣ \land C o n d i t (Q) ⟹

(S a t i s f i es (s, P) \land T er mina t es (C, s) ⟹ S a t i s f i es (res u lt (C, s), Q))]

Total correctness

(S a t i s f i es (s, P) ⟹ T er mina t es (C, s) \land S a t i s f i es (res u lt (C, s), Q))]

Assignments

To prove partial correctness, use sound inference rules To prove termination, use ad-hoc reasoning (even though program termination is undecidable)

A partial correctness proof is an annotated program with justifications

Inference rule for assignment (assignment)

\overline{(∣ Q [E / x] ∣) x = E; (∣ Q ∣)}

If the condition(s) / Hoare triples above the line are proved, then the Hoare triple under the line holds
This means ” $Q (x)$ will hold after substituting all values of $x$ for E”
$Q [E / x]$ is read as “Q with E in place of x” (x is a free variable)

Example ( $Q (x) = x \approx 7, E = y + 1$ )

(∣ y + 1 \approx 7∣) = y + 1; (∣ x \approx 7∣)

We usually work backwards from the postcondition

?? x = y; (∣ x > 0∣) (∣ Q [E / x]) x = E; (∣ Q ∣)

Inference rules about implications (NOT FRACTIONS, BUT UNDERLINES)

Precondition strengthening (implied)

\frac{P ⟹ P ^{'} ( ∣ P ^{'} ∣ ) C ( ∣ Q ∣ )}{( ∣ P ∣ ) C ( ∣ Q ∣ )}

Postcondition weakening (implied)

\frac{( ∣ P ∣ ) C ( ∣ Q ^{'} ∣ ) Q ^{'} ⟹ Q}{( ∣ P ∣ ) C ( ∣ Q ∣ )}

Inference rules for instruction (composition)

\frac{( ∣ P ∣ ) C _{1} ( ∣ Q ∣ ) , ( ∣ Q ∣ ) C _{2} ( ∣ R ∣ )}{( ∣ P ∣ C _{1} : C _{2} ( ∣ R ∣ ))}

We find a midcondition Q for which we can prove the top (like transitivity)

Most proofs are constructed from the bottom upwards

Conditionals

(if-then-else)

\frac{P ( ∣ P \land B ∣ C _{1} ( ∣ Q ∣ )) ( ∣ P \land \neg B ∣ ) C _{2} ( ∣ Q ∣ )}{( ∣ P ∣ ) if ( B ) C _{1} else C _{2} ( ∣ Q ∣ ))}

(if-then)

\frac{P ( ∣ P \land B ∣ C ( ∣ Q ∣ )) ( ∣ P \land \neg B ∣ ) ⟹ ( ∣ Q ∣ )}{( ∣ P ∣ ) if ( B ) C _{2} ( ∣ Q ∣ ))}

Proof strategy

Annotate the program using appropriate inference rules
”back up” the proof: add an assertion/condition before each assignment statement
Prove any “implieds” (annocations from 1, assertions from 2)

While-Loops and Total Correctness

(partial-while)

\frac{( ∣ I \land B ∣ ) C ( ∣ I ∣ )}{( ∣ I ∣ ) while ( B ) C ( ∣ I \land \neg B )}

$I$ = loop invariant (true both before and after each execution of the body of the loop)

Julian's Vault

Explorer

CS 245