Hiroki Mizuno, profile picture
Uploaded byHiroki Mizuno
KEY, PDF1,356 views

証明駆動開発のたのしみ@名古屋reject会議

The document discusses the benefits and challenges of proof-driven development using the Coq proof assistant. It describes how Coq can be used to formally prove properties about code during development. However, it also notes that Coq has limitations when dealing with large numbers, which can cause stack overflows. It also discusses using Coq to formally specify the MessagePack serialization format and prove properties about it.

Embed presentation

Download to read offline
The fun of proof driven development @mzp / Reject 1
( ) • @mzp / • • • 2
Reject ↓ Ruby Ruby @Dominion525 3
Ruby 4
Ruby • Coq to Ruby 4
Ruby • Coq to Ruby • Git 4
Ruby • Coq to Ruby • Git • Perl 4
• Reject Coq to Ruby • Reject 5
@mzp / Reject 6
( ) ‘‘ Coq Merge Sort - http://d.hatena.ne.jp/yoshihiro503/20090923/p1 7
MessagePack • @frsyuki • • (Java,C++,Ruby, Python,Perl,Haskell) • RPC OCaml 8
• • • • Base64 • • Coq 9
MessagePack for OCaml • • https://github.com/mzp/msgpack-ocaml • 10
11
12
Coq (* *) Infix "@@" := atat (right associativity, at level 75). (* *) Notation "[ ]" := nil : list_scope. (* ( : [1; 2; 3]) (!) *) Notation "[ a ; .. ; b ]" := (a :: .. (b :: []) ..) : list_scope. 13
TDD • TDD = • Coq = = ! • 14
• : • : Twitter • Twitter Coq 15
• 2 3 • 255 int -> uchar uchar->int • Coq Anarchy Proof( ) 16
: Scala 17
18
• • • ! • 19
• ! • • 20
• • : • : OCaml 21
The darkside of the Proof Driven Development 22
Coq < Check 5001. Warning: Stack overflow or segmentation fault happens when working with large numbers in nat (observed threshold may vary from 5000 to 70000 depending on your system limits and on the command executed). 5001 : nat 23
? • nat • Inductive nat : Set := O (* 0 *) | S (_ : nat) (* 1 *) 24
• MessagePack 2^n (* : 2^n * 2^m = 2^(n+m) *) Lemma pow_add: forall n m, pow n * pow m = pow (n + m). 25
Definition Soundness obj1 x := forall obj2, Serialized obj1 x -> Serialized obj2 x -> Valid obj1 -> Valid obj2 -> obj1 = obj2. • 26
CI • (CI) • (1GB ) • VPS orz • Coq on EC2 27
• MessagePack for OCaml 2 • 4000 ↓ 2 28
• MessagePack for OCaml •“ ” • 29

More Related Content

KEY
Coq to Rubyによる証明駆動開発@名古屋ruby会議02
byHiroki Mizuno
 
PDF
Cloud Firestore – From JSON Deserialization to Object Document Mapping (ODM)
byMinh Dao
 
PPTX
Quartz
byJini Lee
 
PPTX
A survey on Heap Exploitation
byAlireza Karimi
 
PDF
tokyotalk
byHiroshi Ono
 
PDF
Statim, time series interface for Perl.
byThiago Rondon
 
PDF
Sugaring Lisp for the 21st Century
byVsevolod Dyomkin
 
PDF
FOSDEM2015: Live migration for containers is around the corner
byAndrey Vagin
 
Coq to Rubyによる証明駆動開発@名古屋ruby会議02
byHiroki Mizuno
 
Cloud Firestore – From JSON Deserialization to Object Document Mapping (ODM)
byMinh Dao
 
Quartz
byJini Lee
 
A survey on Heap Exploitation
byAlireza Karimi
 
tokyotalk
byHiroshi Ono
 
Statim, time series interface for Perl.
byThiago Rondon
 
Sugaring Lisp for the 21st Century
byVsevolod Dyomkin
 
FOSDEM2015: Live migration for containers is around the corner
byAndrey Vagin
 

What's hot

PDF
Introduction to RevKit
byMathias Soeken
 
PDF
スマホでDeepLearning実践入門(α版)
bycocodrips
 
PDF
Gnocchi v3 brownbag
byGordon Chung
 
PDF
Understanding SLAB in Linux Kernel
byHaifeng Li
 
PDF
Chronix as Long-Term Storage for Prometheus
byQAware GmbH
 
PDF
Breaking the RpiDocker challenge
byNicolas De Loof
 
PPTX
Metrics: where and how
byVsevolod Polyakov
 
PDF
PyCon KR 2019 sprint - RustPython by example
byYunWon Jeong
 
PPTX
C100 k and go
bytracymacding
 
PDF
Мониторинг. Опять, rootconf 2016
byVsevolod Polyakov
 
PDF
GEO mapbox geo_api_develop2 Intro
byMax Kleiner
 
ODP
Lofar python meetup jan9 2013
byGijs Molenaar
 
PDF
An Introduction to Priam
byJason Brown
 
PDF
Druinsky_SIAMCSE15
byKaren Pao
 
PDF
Declarative Infrastructure Tools
byYulia Shcherbachova
 
PDF
Storm
bySzymon Sobczak
 
PDF
だじゃれのススメ
byNaoko Yamazaki
 
ODP
CRIU: Time and Space Travel for Linux Containers
byKirill Kolyshkin
 
PDF
Slide smallfiles
byrledisez
 
PDF
Mashup OpenStreetMap and Wikidata to Create Useful Vector Data
byNicholas Peihl
 
Introduction to RevKit
byMathias Soeken
 
スマホでDeepLearning実践入門(α版)
bycocodrips
 
Gnocchi v3 brownbag
byGordon Chung
 
Understanding SLAB in Linux Kernel
byHaifeng Li
 
Chronix as Long-Term Storage for Prometheus
byQAware GmbH
 
Breaking the RpiDocker challenge
byNicolas De Loof
 
Metrics: where and how
byVsevolod Polyakov
 
PyCon KR 2019 sprint - RustPython by example
byYunWon Jeong
 
C100 k and go
bytracymacding
 
Мониторинг. Опять, rootconf 2016
byVsevolod Polyakov
 
GEO mapbox geo_api_develop2 Intro
byMax Kleiner
 
Lofar python meetup jan9 2013
byGijs Molenaar
 
An Introduction to Priam
byJason Brown
 
Druinsky_SIAMCSE15
byKaren Pao
 
Declarative Infrastructure Tools
byYulia Shcherbachova
 
Storm
bySzymon Sobczak
 
だじゃれのススメ
byNaoko Yamazaki
 
CRIU: Time and Space Travel for Linux Containers
byKirill Kolyshkin
 
Slide smallfiles
byrledisez
 
Mashup OpenStreetMap and Wikidata to Create Useful Vector Data
byNicholas Peihl
 

Similar to 証明駆動開発のたのしみ@名古屋reject会議

KEY
Coqによる証明駆動開発
byHiroki Mizuno
 
PDF
Coq Tutorial at Proof Summit 2011
bytmiya
 
PDF
Coq Tutorial
bytmiya
 
PPT
What lies beneath the beautiful code?
byNiranjan Sarade
 
KEY
NGK忘年会 2010 / CoqからRubyへ
byHiroki Mizuno
 
PDF
関数型言語のすすめ
bybleis tift
 
ZIP
Lisp Primer Key
byYuumi Yoshida
 
KEY
Proove Mark&Sweep GC with Coq
byHiroki Mizuno
 
PDF
Emerging Languages: A Tour of the Horizon
byAlex Payne
 
PDF
Continuation Passing Style and Macros in Clojure - Jan 2012
byLeonardo Borges
 
PDF
Clojure for Rubyists
byJean-François Héon
 
KEY
Gallinaによる証明駆動開発の魅力
byHiroki Mizuno
 
PPTX
Introduction to Clojure and why it's hot for Sart-Ups
byedlich
 
PDF
Machine vision and device integration with the Ruby programming language (2008)
byJan Wedekind
 
PDF
Functional Concepts for OOP Developers
bybrweber2
 
KEY
Erlang/OTP for Rubyists
bySean Cribbs
 
PDF
7li7w devcon5
byKerry Buckley
 
PDF
From Ruby to Haskell (Kansai Yami RubyKaigi)
byujihisa
 
PDF
Erlang Introduction Bcberlin3
byguesta3202
 
PPTX
Erlang FTW!
byMahesh Paolini-Subramanya
 
Coqによる証明駆動開発
byHiroki Mizuno
 
Coq Tutorial at Proof Summit 2011
bytmiya
 
Coq Tutorial
bytmiya
 
What lies beneath the beautiful code?
byNiranjan Sarade
 
NGK忘年会 2010 / CoqからRubyへ
byHiroki Mizuno
 
関数型言語のすすめ
bybleis tift
 
Lisp Primer Key
byYuumi Yoshida
 
Proove Mark&Sweep GC with Coq
byHiroki Mizuno
 
Emerging Languages: A Tour of the Horizon
byAlex Payne
 
Continuation Passing Style and Macros in Clojure - Jan 2012
byLeonardo Borges
 
Clojure for Rubyists
byJean-François Héon
 
Gallinaによる証明駆動開発の魅力
byHiroki Mizuno
 
Introduction to Clojure and why it's hot for Sart-Ups
byedlich
 
Machine vision and device integration with the Ruby programming language (2008)
byJan Wedekind
 
Functional Concepts for OOP Developers
bybrweber2
 
Erlang/OTP for Rubyists
bySean Cribbs
 
7li7w devcon5
byKerry Buckley
 
From Ruby to Haskell (Kansai Yami RubyKaigi)
byujihisa
 
Erlang Introduction Bcberlin3
byguesta3202
 
Erlang FTW!
byMahesh Paolini-Subramanya
 

More from Hiroki Mizuno

KEY
Coq for Moblie Phone @ ML名古屋
byHiroki Mizuno
 
PDF
OCamlでWebアプリケーションを作るn個の方法
byHiroki Mizuno
 
PDF
From Coq to Ruby / CoqからRubyへ
byHiroki Mizuno
 
KEY
「Frama-Cによるソースコード検証」 (mzp)
byHiroki Mizuno
 
KEY
Sml#探検隊
byHiroki Mizuno
 
KEY
Java基礎
byHiroki Mizuno
 
KEY
CoqでGCの証明をしてみたよ(LT)
byHiroki Mizuno
 
KEY
OCamlAPISearchの紹介
byHiroki Mizuno
 
KEY
20110424 action scriptを使わないflash勉強会
byHiroki Mizuno
 
PDF
CoqによるMsgPackの証明
byHiroki Mizuno
 
KEY
SacalaZa #1
byHiroki Mizuno
 
KEY
どこでもCoq
byHiroki Mizuno
 
KEY
CoqUn2010
byHiroki Mizuno
 
PDF
TypeSafe OSの試み
byHiroki Mizuno
 
PDF
#NGK2012B Excelによる設計書について
byHiroki Mizuno
 
KEY
Scala基礎勉強会: Featherweight Scalaの紹介および型付け規則の決定可能性について
byHiroki Mizuno
 
PDF
Darcs紹介@20120423-scmbc
byHiroki Mizuno
 
Coq for Moblie Phone @ ML名古屋
byHiroki Mizuno
 
OCamlでWebアプリケーションを作るn個の方法
byHiroki Mizuno
 
From Coq to Ruby / CoqからRubyへ
byHiroki Mizuno
 
「Frama-Cによるソースコード検証」 (mzp)
byHiroki Mizuno
 
Sml#探検隊
byHiroki Mizuno
 
Java基礎
byHiroki Mizuno
 
CoqでGCの証明をしてみたよ(LT)
byHiroki Mizuno
 
OCamlAPISearchの紹介
byHiroki Mizuno
 
20110424 action scriptを使わないflash勉強会
byHiroki Mizuno
 
CoqによるMsgPackの証明
byHiroki Mizuno
 
SacalaZa #1
byHiroki Mizuno
 
どこでもCoq
byHiroki Mizuno
 
CoqUn2010
byHiroki Mizuno
 
TypeSafe OSの試み
byHiroki Mizuno
 
#NGK2012B Excelによる設計書について
byHiroki Mizuno
 
Scala基礎勉強会: Featherweight Scalaの紹介および型付け規則の決定可能性について
byHiroki Mizuno
 
Darcs紹介@20120423-scmbc
byHiroki Mizuno
 

Recently uploaded

PDF
Security Forum Sessions from Houston 2025 Event
byMark Simos
 
PDF
DevFest El Jadida 2025 - Product Thinking
byElmehdi AMLOU
 
PPTX
Coded Agents – with UiPath SDK + LangGraph [Virtual Hands-on Workshop]
byUiPathCommunity
 
PDF
Access Control 2025: From Security Silo to Software-Defined Ecosystem
byMemoori
 
PDF
The year in review - MarvelClient in 2025
bypanagenda
 
PDF
Cybersecurity: Safeguarding Digital Assets
byYasir Naveed Riaz
 
PPTX
Protecting Data in an AI Driven World - Cybersecurity in 2026
byYasir Naveed Riaz
 
PPTX
Cybersecurity Best Practices - Step by Step guidelines
byYasir Naveed Riaz
 
PDF
Day 5 - Red Team + Blue Team in the Cloud - 2nd Sight Lab Cloud Security Class
by2nd Sight Lab
 
PPTX
wob-report.pptxwob-report.pptxwob-report.pptx
byssuser0d171c
 
PPTX
Cybercrime in the Digital Age: Risks, Impact & Protection
byYasir Naveed Riaz
 
PPTX
Software Analysis &Design ethiopia chap-2.pptx
byAbbas484771
 
PDF
Day 3 - Data and Application Security - 2nd Sight Lab Cloud Security Class
by2nd Sight Lab
 
PPTX
Cloud-and-AI-Platform-FY26-Partner-Playbook.pptx
byiuiuiuiu1
 
PPTX
Unit-4-ARTIFICIAL NEURAL NETWORKS.pptx ANN ppt Artificial neural network
byssuserd4481a
 
PDF
Eredità digitale sugli smartphone: cosa resta di noi nei dispositivi mobili
bySpeck&Tech
 
PDF
Usage Control for Process Discovery through a Trusted Execution Environment
byValerioGoretti
 
PDF
Unlocking the Power of Salesforce Architecture: Frameworks for Effective Solu...
byvarsha30tiwari
 
PDF
Dev Dives: AI that builds with you - UiPath Autopilot for effortless RPA & AP...
byUiPathCommunity
 
PDF
Decoding the DNA: The Digital Networks Act, the Open Internet, and IP interco...
byCSUC - Consorci de Serveis Universitaris de Catalunya
 
Security Forum Sessions from Houston 2025 Event
byMark Simos
 
DevFest El Jadida 2025 - Product Thinking
byElmehdi AMLOU
 
Coded Agents – with UiPath SDK + LangGraph [Virtual Hands-on Workshop]
byUiPathCommunity
 
Access Control 2025: From Security Silo to Software-Defined Ecosystem
byMemoori
 
The year in review - MarvelClient in 2025
bypanagenda
 
Cybersecurity: Safeguarding Digital Assets
byYasir Naveed Riaz
 
Protecting Data in an AI Driven World - Cybersecurity in 2026
byYasir Naveed Riaz
 
Cybersecurity Best Practices - Step by Step guidelines
byYasir Naveed Riaz
 
Day 5 - Red Team + Blue Team in the Cloud - 2nd Sight Lab Cloud Security Class
by2nd Sight Lab
 
wob-report.pptxwob-report.pptxwob-report.pptx
byssuser0d171c
 
Cybercrime in the Digital Age: Risks, Impact & Protection
byYasir Naveed Riaz
 
Software Analysis &Design ethiopia chap-2.pptx
byAbbas484771
 
Day 3 - Data and Application Security - 2nd Sight Lab Cloud Security Class
by2nd Sight Lab
 
Cloud-and-AI-Platform-FY26-Partner-Playbook.pptx
byiuiuiuiu1
 
Unit-4-ARTIFICIAL NEURAL NETWORKS.pptx ANN ppt Artificial neural network
byssuserd4481a
 
Eredità digitale sugli smartphone: cosa resta di noi nei dispositivi mobili
bySpeck&Tech
 
Usage Control for Process Discovery through a Trusted Execution Environment
byValerioGoretti
 
Unlocking the Power of Salesforce Architecture: Frameworks for Effective Solu...
byvarsha30tiwari
 
Dev Dives: AI that builds with you - UiPath Autopilot for effortless RPA & AP...
byUiPathCommunity
 
Decoding the DNA: The Digital Networks Act, the Open Internet, and IP interco...
byCSUC - Consorci de Serveis Universitaris de Catalunya
 

証明駆動開発のたのしみ@名古屋reject会議

  • 1.
    The fun ofproof driven development @mzp / Reject 1
  • 2.
    ( ) • @mzp / • • • 2
  • 3.
    Reject ↓ Ruby Ruby @Dominion525 3
  • 4.
  • 5.
  • 6.
    Ruby • Coq toRuby • Git 4
  • 7.
    Ruby • Coq toRuby • Git • Perl 4
  • 8.
    Reject Coq to Ruby • Reject 5
  • 9.
    @mzp / Reject 6
  • 10.
    ( ) ‘‘ Coq Merge Sort - http://d.hatena.ne.jp/yoshihiro503/20090923/p1 7
  • 11.
    MessagePack • @frsyuki • • (Java,C++,Ruby, Python,Perl,Haskell) • RPC OCaml 8
  • 12.
    • • • Base64 • • Coq 9
  • 13.
    MessagePack for OCaml • •https://github.com/mzp/msgpack-ocaml • 10
  • 14.
  • 15.
  • 16.
    Coq (* *) Infix "@@" := atat (right associativity, at level 75). (* *) Notation "[ ]" := nil : list_scope. (* ( : [1; 2; 3]) (!) *) Notation "[ a ; .. ; b ]" := (a :: .. (b :: []) ..) : list_scope. 13
  • 17.
    TDD • TDD = • Coq = = ! • 14
  • 18.
    : • : Twitter • Twitter Coq 15
  • 19.
    2 3 • 255 int -> uchar uchar->int • Coq Anarchy Proof( ) 16
  • 20.
    : Scala 17
  • 21.
  • 22.
    • • • ! • 19
  • 23.
    ! • • 20
  • 24.
    • • : • : OCaml 21
  • 25.
    The darkside ofthe Proof Driven Development 22
  • 26.
    Coq < Check5001. Warning: Stack overflow or segmentation fault happens when working with large numbers in nat (observed threshold may vary from 5000 to 70000 depending on your system limits and on the command executed). 5001 : nat 23
  • 27.
    ? • nat • Inductive nat : Set := O (* 0 *) | S (_ : nat) (* 1 *) 24
  • 28.
    • MessagePack 2^n (* : 2^n * 2^m = 2^(n+m) *) Lemma pow_add: forall n m, pow n * pow m = pow (n + m). 25
  • 29.
    Definition Soundness obj1x := forall obj2, Serialized obj1 x -> Serialized obj2 x -> Valid obj1 -> Valid obj2 -> obj1 = obj2. • 26
  • 30.
    CI • (CI) • (1GB ) • VPS orz • Coq on EC2 27
  • 31.
    MessagePack for OCaml 2 • 4000 ↓ 2 28
  • 32.
    • MessagePack forOCaml •“ ” • 29

Editor's Notes