Data

Tools

Indexes

Applications

Experiments

Awesome

An open API service indexing awesome lists of open source software.

https://github.com/verse-lab/veil

A verifier for automated and interactive proofs about transition systems. This repository is a public mirror with stable development snapshots. Submit issues and PRs here.
https://github.com/verse-lab/veil

lean proof-assistant smt verification

Last synced: 12 days ago
JSON representation

A verifier for automated and interactive proofs about transition systems. This repository is a public mirror with stable development snapshots. Submit issues and PRs here.

Awesome Lists containing this project

README 

          
# Veil: A Framework for Automated and Interactive Verification of Transition Systems



[![Actions status](https://github.com/verse-lab/veil/actions/workflows/ci.yml/badge.svg)](https://github.com/verse-lab/veil/actions)

[![License](https://img.shields.io/badge/License-Apache%202.0-blue.svg)](https://opensource.org/licenses/Apache-2.0)



Veil is a _foundational_ framework for (1) specifying, (2)

implementing, (3) testing, and (4) proving safety (and, in the future,

liveness) properties of state transition systems, with a focus on

distributed protocols.



Veil is embedded in the [Lean 4 proof assistant](https://lean-lang.org/) and provides push-button

verification for transition systems and their properties expressed

decidable fragments of first-order logic, with the full power of a

modern higher-order proof assistant for when automation falls short.



## Using `veil`



To use `veil` in your project, add the following to your

`lakefile.lean`:



```lean

require "verse-lab" / "veil" @ git "main"

```



Or add the following to your `lakefile.toml`:



```toml

[[require]]

name = "veil"

git = "https://github.com/verse-lab/veil.git"

rev = "main"

```



See

[`verse-lab/veil-usage-example`](https://github.com/verse-lab/veil-usage-example)

for a fully set-up example project that you can

[use as a template](https://github.com/new?template_name=veil-usage-example&template_owner=verse-lab).



## Tutorial



The file

[`Examples/Tutorial/Ring.lean`](https://github.com/verse-lab/veil/blob/main/Examples/Tutorial/Ring.lean)

contains a guided tour of Veil's main features. Check it out if you want to see

what Veil can do!



## Build



Veil requires [Lean 4](https://github.com/leanprover/lean4). We have tested Veil

on macOS (arm64) and Ubuntu (x86_64). Windows with WSL2 is also supported.

Native Windows support is not yet available.



To build Veil, run:



```bash

lake build

```



To build the case studies run:



```bash

lake build Examples

```



How to install Lean?



If you don't have Lean installed, we recommend installing it via

[`elan`](https://github.com/leanprover/elan):



```bash

curl https://raw.githubusercontent.com/leanprover/elan/master/elan-init.sh -sSf | sh -s -- -y --default-toolchain leanprover/lean4:stable

```



Dependencies



Veil depends on [`z3`](https://github.com/Z3Prover/z3),

[`cvc5`](https://github.com/cvc5/cvc5), and

[`uv`](https://github.com/astral-sh/uv). You do not need to have these installed

on your system, as our build system will download them automatically when you

run `lake build`. Veil will use its own copies of these tools, and will not

touch your system-wide versions.



Note that if you want to invoke Lean-Auto's `auto` tactic, you need to have

`z3` and `cvc5` installed on your system and available in your PATH.



## Project Structure



The project consists of three major folders:



- `Veil/`: the implementation of Veil,

- `Test/`: Veil's artificial test cases for main Veil features,

- `Examples/`: Veil's benchmarks, consisting of realistic specifications of distributed protocols



### `Veil/` components



- `DSL/`: Veil DSL

  - `Action/Theory.lean`: meta-theory of action DSL with the soundness proof

  - `Action/Lang.lean`: implementation of action DSL expansion

  - `Specification/Lang.lean`: implementation of protocol declaration commands

- `SMT/`: tactics for interaction with SMT

- `Tactic/`: auxiliary tactics for proof automation



### Case Studies implemented in `Examples/`



- `FO/`: non-EPR protocols

- `IvyBench/`: benchmarks [translated from Ivy](https://github.com/aman-goel/ivybench)

- `Rabia/`: [Rabia protocol](https://github.com/haochenpan/rabia?tab=readme-ov-file)

- `StellarConsensus/`: [Stellar Consensus Protocol](https://github.com/stellar/scp-proofs/tree/3e0428acc78e598a227a866b99fe0b3ad4582914)

- `SuzukiKasami/`: [Suzuki Kasami protocol](https://github.com/markyuen/tlaplus-to-ivy/blob/main/ivy/suzuki_kasami.ivy)