Foundations for Deductive Verification of Continuous Probabilistic Programs: From Lebesgue to Riemann and Back
Kevin Batz, Joost-Pieter Katoen, Francesca Randone, Tobias Winkler
TL;DR
This work develops a principled, semi-automatic approach to verify bounds on expected outcomes of probabilistic programs that feature continuous distributions, conditioning, and unbounded loops. It replaces exact Lebesgue-integral computations in weakest pre-expectation semantics with sound lower and upper Riemann sum approximations, yielding transform families $\underline{\mathsf{wp}}^{N}$ and $\overline{\mathsf{wp}}^{N}$ that support SMT-based invariant verification. The authors prove soundness and convergence results (including coRE-completeness of central verification problems) and show how these approximations enable reusing existing discrete probabilistic verifiers, by encoding Riemann sums in Caesar’s intermediate language. The approach is demonstrated through case studies such as Monte Carlo style estimators, the Irwin-Hall distribution, and divergence/race scenarios, illustrating practical verification times and scalability. Overall, the paper provides a tractable pathway to soundly bound continuous probabilistic programs with loops and conditioning, bridging Lebesgue and Riemann perspectives and enabling integration with established verification tooling.
Abstract
We lay out novel foundations for the computer-aided verification of guaranteed bounds on expected outcomes of imperative probabilistic programs featuring (i) general loops, (ii) continuous distributions, and (iii) conditioning. To handle loops we rely on user-provided quantitative invariants, as is well established. However, in the realm of continuous distributions, invariant verification becomes extremely challenging due to the presence of integrals in expectation-based program semantics. Our key idea is to soundly under- or over-approximate these integrals via Riemann sums. We show that this approach enables the SMT-based invariant verification for programs with a fairly general control flow structure. On the theoretical side, we prove convergence of our Riemann approximations, and establish coRE-completeness of the central verification problems. On the practical side, we show that our approach enables to use existing automated verifiers targeting discrete probabilistic programs for the verification of programs involving continuous sampling. Towards this end, we implement our approach in the recent quantitative verification infrastructure Caesar by encoding Riemann sums in its intermediate verification language. We present several promising case studies.