Lean on Dafny: Exploring Interactive Verification of Dafny Programs in Lean (Dafny 2025)

Sun 19 - Sat 25 January 2025 Denver, Colorado, United States

Who

Wojciech Różowski, Georges-Axel Jaloyan, Sean McLaughlin

Track

Dafny 2025

This program is tentative and subject to change.

Time Zone

The program is currently displayed in (GMT-07:00) Mountain Time (US & Canada).

Use conference time zone: (GMT-07:00) Mountain Time (US & Canada)Select other time zone

The GMT offsets shown reflect the offsets at the moment of the conference.

Time Band

By setting a time band, the program will dim events that are outside this time window. This is useful for (virtual) conferences with a continuous program (with repeated sessions).
The time band will also limit the events that are included in the personal iCalendar subscription service.

Display full programSpecify a time band

Save

When

Sun 19 Jan 2025 14:18 - 14:36 at Room 2 - Backends and Teaching

Abstract

Dafny enables automated verification of heap-manipulating programs using an SMT solver, allowing verification of large, realistic codebases. However, when proofs require manual effort, the automation comes at the price of visibility into proof states, which can be challenging in the case of programs with non-local control flow. This paper presents a methodology for dealing with such programs using Lean, an interactive theorem prover. We extract straight-line programs for execution paths, embed a fragment of Dafny’s semantics into Lean, and provide a verified weakest-precondition generator. We argue for the use of Lean’s semi-manual interactive proving when dealing with difficult Dafny proofs.

Wojciech Różowski

University College London

United Kingdom

Georges-Axel Jaloyan

Amazon Web Services

Sean McLaughlin