speeding up quantifjed bit vector smt solvers by bit
play

Speeding Up Quantifjed Bit-Vector SMT Solvers by Bit-Width - PowerPoint PPT Presentation

Sep 13, 2023 •260 likes •626 views

Speeding Up Quantifjed Bit-Vector SMT Solvers by Bit-Width Reductions and Extensions Martin Jon , Jan Strejek Fondazione Bruno Kessler, Italy Faculty of Informatics, Masaryk University, Czech Republic In many software verifjcation

  1. Speeding Up Quantifjed Bit-Vector SMT Solvers by Bit-Width Reductions and Extensions Martin Jonáš , Jan Strejček Fondazione Bruno Kessler, Italy Faculty of Informatics, Masaryk University, Czech Republic

  2. In many software verifjcation applications, quantifjers are necessary. For example in Theory of Bit-Vectors The theory of bit-vectors describes bounded integers (or vectors of bits of fjxed size) with: bitwise operations, arithmetic operations, signed and unsigned comparison. invariant generation, ranking function synthesis, cycle summarization, symbolic state equality test. 1 / 16

  3. Theory of Bit-Vectors The theory of bit-vectors describes bounded integers (or vectors of bits of fjxed size) with: bitwise operations, arithmetic operations, signed and unsigned comparison. invariant generation, ranking function synthesis, cycle summarization, symbolic state equality test. 1 / 16 In many software verifjcation applications, quantifjers are necessary. For example in

  4. ∀x [4] ∃y [4] (x [4] + y [4] = 0 [4] ) Bit-with Reductions In the formula Reduction to 4 bits Observation Performance of the solvers for quantifjed bit-vector formulas usually depends on the bit-widths used in the formula. 2 / 16 ∀x [32] ∃y [32] (x [32] + y [32] = 0 [32] ) x [32] and y [32] are variables of bit-width 32, 0 [32] is a constant of bit-width 32.

  5. Bit-with Reductions In the formula Reduction to 4 bits Observation Performance of the solvers for quantifjed bit-vector formulas usually depends on the bit-widths used in the formula. 2 / 16 ∀x [32] ∃y [32] (x [32] + y [32] = 0 [32] ) x [32] and y [32] are variables of bit-width 32, 0 [32] is a constant of bit-width 32. ∀x [4] ∃y [4] (x [4] + y [4] = 0 [4] )

  6. Bit-with Reductions In the formula Reduction to 4 bits Observation Performance of the solvers for quantifjed bit-vector formulas usually depends on the bit-widths used in the formula. 2 / 16 ∀x [32] ∃y [32] (x [32] + y [32] = 0 [32] ) x [32] and y [32] are variables of bit-width 32, 0 [32] is a constant of bit-width 32. ∀x [4] ∃y [4] (x [4] + y [4] = 0 [4] )

  7. Bit-width Reductions and Satisfjability 32 Can the observation be leveraged to speed-up SMT solvers? Can the safe bit-width be computed from the formula? Challenges 0.29 0.65 1.9 4.4 100 % 14 95 Observation from our LPAR 2018 paper 216 4905 Count ≥ 8 b ≥ 4 b ≥ 2 b ≥ 1 b Total Difgerent answer for some bit-width bit-widths. Vast majority of quantifjed bit-vectors does not change their satisfjability from very low 3 / 16

  8. Bit-width Reductions and Satisfjability 32 Can the observation be leveraged to speed-up SMT solvers? Can the safe bit-width be computed from the formula? Challenges 0.29 0.65 1.9 4.4 100 % 14 95 Observation from our LPAR 2018 paper 216 4905 Count ≥ 8 b ≥ 4 b ≥ 2 b ≥ 1 b Total Difgerent answer for some bit-width bit-widths. Vast majority of quantifjed bit-vectors does not change their satisfjability from very low 3 / 16

  9. Outline of the Presentation 1 How to decide satisfjability using bit-width reductions 2 How to decide unsatisfjability using bit-width reductions 3 Our implementation in a single algorithm 4 Experimental evaluation 4 / 16

  10. y [32] ↦ −x [32] ∀x [32] (x [32] + (−x [32] ) = 0 [32] ) Symbolic Models of Quantifjed Formulas Consider the formula It is satisfjable. What is its symbolic model? The Skolem function because is satisfjable. 5 / 16 ∀x [32] ∃y [32] (x [32] + y [32] = 0 [32] )

  11. ∀x [32] (x [32] + (−x [32] ) = 0 [32] ) Symbolic Models of Quantifjed Formulas Consider the formula It is satisfjable. What is its symbolic model? The Skolem function because is satisfjable. 5 / 16 ∀x [32] ∃y [32] (x [32] + y [32] = 0 [32] ) y [32] ↦ −x [32]

  12. Symbolic Models of Quantifjed Formulas Consider the formula It is satisfjable. What is its symbolic model? The Skolem function because is satisfjable. 5 / 16 ∀x [32] ∃y [32] (x [32] + y [32] = 0 [32] ) y [32] ↦ −x [32] ∀x [32] (x [32] + (−x [32] ) = 0 [32] )

  13. ∀x [4] ∃y [4] (x [4] + y [4] = 0 [4] ) SAT: y [4] ↦ −x [4] ∀x [32] (x [32] + (−x [32] ) = 0 [32] ) y [32] ↦ −x [32] Deciding Satisfjability With Reductions SAT reduce solve extend substitute substitute solve 6 / 16 ∀x [32] ∃y [32] (x [32] + y [32] = 0 [32] )

  14. SAT: y [4] ↦ −x [4] ∀x [32] (x [32] + (−x [32] ) = 0 [32] ) y [32] ↦ −x [32] Deciding Satisfjability With Reductions SAT reduce solve extend substitute substitute solve 6 / 16 ∀x [32] ∃y [32] (x [32] + y [32] = 0 [32] ) ∀x [4] ∃y [4] (x [4] + y [4] = 0 [4] )

  15. ∀x [32] (x [32] + (−x [32] ) = 0 [32] ) y [32] ↦ −x [32] Deciding Satisfjability With Reductions SAT reduce solve extend substitute substitute solve 6 / 16 ∀x [32] ∃y [32] (x [32] + y [32] = 0 [32] ) ∀x [4] ∃y [4] (x [4] + y [4] = 0 [4] ) SAT: y [4] ↦ −x [4]

  16. ∀x [32] (x [32] + (−x [32] ) = 0 [32] ) Deciding Satisfjability With Reductions SAT reduce solve extend substitute substitute solve 6 / 16 ∀x [32] ∃y [32] (x [32] + y [32] = 0 [32] ) ∀x [4] ∃y [4] (x [4] + y [4] = 0 [4] ) SAT: y [4] ↦ −x [4] y [32] ↦ −x [32]

  17. SAT Deciding Satisfjability With Reductions reduce solve extend substitute substitute solve 6 / 16 ∀x [32] ∃y [32] (x [32] + y [32] = 0 [32] ) ∀x [4] ∃y [4] (x [4] + y [4] = 0 [4] ) SAT: y [4] ↦ −x [4] ∀x [32] (x [32] + (−x [32] ) = 0 [32] ) y [32] ↦ −x [32]

  18. SAT Deciding Satisfjability With Reductions reduce solve extend substitute substitute solve 6 / 16 ∀x [32] ∃y [32] (x [32] + y [32] = 0 [32] ) ∀x [4] ∃y [4] (x [4] + y [4] = 0 [4] ) SAT: y [4] ↦ −x [4] ∀x [32] (x [32] + (−x [32] ) = 0 [32] ) y [32] ↦ −x [32]

  19. SAT Deciding Satisfjability With Reductions reduce solve model-generating solver extend substitute substitute solve model-validating solver 6 / 16 ∀x [32] ∃y [32] (x [32] + y [32] = 0 [32] ) ∀x [4] ∃y [4] (x [4] + y [4] = 0 [4] ) SAT: y [4] ↦ −x [4] ∀x [32] (x [32] + (−x [32] ) = 0 [32] ) y [32] ↦ −x [32]

  20. x [32] ↦ −y [32] + 1 [32] (−y [32] + 1 [32] ) + y [32] = 0 [32] Symbolic Countermodels of Quantifjed Formulas Consider the formula It is unsatisfjable. What is its symbolic countermodel? The Herbrand function because is unsatisfjable. 7 / 16 ∀x [32] (x [32] + y [32] = 0 [32] )

  21. (−y [32] + 1 [32] ) + y [32] = 0 [32] Symbolic Countermodels of Quantifjed Formulas Consider the formula It is unsatisfjable. What is its symbolic countermodel? The Herbrand function because is unsatisfjable. 7 / 16 ∀x [32] (x [32] + y [32] = 0 [32] ) x [32] ↦ −y [32] + 1 [32]

  22. Symbolic Countermodels of Quantifjed Formulas Consider the formula It is unsatisfjable. What is its symbolic countermodel? The Herbrand function because is unsatisfjable. 7 / 16 ∀x [32] (x [32] + y [32] = 0 [32] ) x [32] ↦ −y [32] + 1 [32] (−y [32] + 1 [32] ) + y [32] = 0 [32]

  23. Overall Algorithm 1 Reduce the formula. 2 Try to solve its satisfjability. 3 Get a symbolic model/countermodel. 4 Extend the symbolic model/countermodel to the original bit-width. 5 Check whether it is a symbolic model/countermodel of the original formula. 6 If unsuccessful, increase the reduction bit-width and repeat. 8 / 16

  24. Overall Algorithm – Practical Implementation φ sat unsat unsat sat sat unsat unsat sat UNSAT SAT solver Model-validating and substitute Extend model Reduce to Quantify and negate φ Extend model Model-generating solver Reduce Reduce to and substitute Model-validating solver Model-generating solver Reduce 9 / 16 larger bw larger bw to bw:=1 to bw:=1

  25. Overall Algorithm – Practical Implementation unsat and substitute Model-validating solver SAT UNSAT sat unsat φ sat sat unsat sat unsat unsat sat Extend model Reduce to Quantify and negate φ and substitute Model-generating solver Reduce Reduce to Extend model Model-validating solver Model-validating solver Model-generating solver Reduce 9 / 16 larger bw larger bw to bw:=1 to bw:=1

  26. Experimental Evaluation Implementation reductions, extensions, and the solving algorithm in C++, using Z3 API Benchmarks 5741 quantifjed BV formulas from SMT-LIB 8 benchmark families Model-generating solver Boolector Model-validating solver Boolector CVC4 Q3B 10 / 16

  27. Experimental Evaluation Implementation reductions, extensions, and the solving algorithm in C++, using Z3 API Benchmarks 5741 quantifjed BV formulas from SMT-LIB 8 benchmark families Model-generating solver Boolector Model-validating solver Boolector CVC4 Q3B 10 / 16

  28. Experimental Evaluation Implementation reductions, extensions, and the solving algorithm in C++, using Z3 API Benchmarks 5741 quantifjed BV formulas from SMT-LIB 8 benchmark families Model-generating solver Boolector Model-validating solver Boolector CVC4 Q3B 10 / 16

  29. Experimental Evaluation Implementation reductions, extensions, and the solving algorithm in C++, using Z3 API Benchmarks 5741 quantifjed BV formulas from SMT-LIB 8 benchmark families Model-generating solver Boolector Model-validating solver Boolector CVC4 Q3B 10 / 16

Recommend

SPEEDING UP CONJUGATE GRADIENT SOLVERS BY 10X Mathias Wagner, Developer Technology Engineer GTC

SPEEDING UP CONJUGATE GRADIENT SOLVERS BY 10X Mathias Wagner, Developer Technology Engineer GTC

SPEEDING UP CONJUGATE GRADIENT SOLVERS BY 10X Mathias Wagner, Developer Technology Engineer GTC 2017 - S7387 HPC BEYOND MOORES LAW going wide 4000 CPUs and GPUs becoming wider 3000 increase in flops is driven by more cores CUDA cores

914 views • 78 slides
Speeding Up Your Mac A Joe ON Tech Guide Speeding Up Your Mac Basics Three factors affect

Speeding Up Your Mac A Joe ON Tech Guide Speeding Up Your Mac Basics Three factors affect

Speeding Up Your Mac A Joe ON Tech Guide Speeding Up Your Mac Basics Three factors affect your Macs performance more than anything else: CPU power. Most Macs dont have upgradable CPUs, but you can compensate by reducing the amount

292 views • 12 slides
Introduction to SAT and SMT Solvers Interfacing Yosys and SMT Solvers for BMC and more using

Introduction to SAT and SMT Solvers Interfacing Yosys and SMT Solvers for BMC and more using

Introduction to SAT and SMT Solvers Interfacing Yosys and SMT Solvers for BMC and more using SMT-LIB 2.5 Clifford Wolf 1 Abstract Bounded model checking and other SAT-based formal methods are an important part of todays digital design

773 views • 52 slides
Synthesis of Domain Specific Encoders for Bit- Vector Solvers Jeevana Priya Inala with Rohit

Synthesis of Domain Specific Encoders for Bit- Vector Solvers Jeevana Priya Inala with Rohit

Synthesis of Domain Specific Encoders for Bit- Vector Solvers Jeevana Priya Inala with Rohit Singh, Armando Solar-Lezama Appears in SAT16 High-level constraint to CNF clauses SMT solver SAT solver High-level constraint CNF clauses msb

571 views • 41 slides
From the Spectral Stokes solvers to the Stokes eigenmodes in square/cube, until

From the Spectral Stokes solvers to the Stokes eigenmodes in square/cube, until

Introduction Continuous and time-discretized Stokes Problem Stokes Solvers Families and Properties Stokes Eigenmodes in the Square and Cube, from PrDi Solver Vorticity/Vector Potential correlations for the Stokes Flows Navier-Stokes Potential

590 views • 46 slides
Satisfiability Modulo Theories SMT solvers are finding their way in many different application

Satisfiability Modulo Theories SMT solvers are finding their way in many different application

Applications of SMT solvers Alessandro Cimatti Embedded System Unit Fondazione Bruno Kessler Trento, Italy cimatti@fbk.eu Applications of SMT solvers @ SAT/SMT School, Helsinki, July 2013 Satisfiability Modulo Theories SMT solvers are

1.09k views • 27 slides
Speeding up the Inter-Planetary File System (IPFS) Speeding up the Inter-Planetary File System

Speeding up the Inter-Planetary File System (IPFS) Speeding up the Inter-Planetary File System

1 Guillaume Michel Speeding up the Inter-Planetary File System (IPFS) Speeding up the Inter-Planetary File System (IPFS) Semester project presentation Project Advisor: Project Supervisor: Student: Laboratory: Prof. Bryan Ford Cristina

1.52k views • 29 slides
NOW Handout Page 1 1 Styles of Vector Architectures Components of Vector Processor Vector

NOW Handout Page 1 1 Styles of Vector Architectures Components of Vector Processor Vector

Alternative Model:Vector Processing EECS 252 Graduate Computer Vector processors have high-level operations that work on linear arrays of numbers: "vectors" Architecture SCALAR VECTOR (1 operation) (N operations) Lec 10

327 views • 10 slides
Pluggable SAT-Solvers for SMT-Solvers Bas Schaafsma DISI, University of Trento & Fondazione

Pluggable SAT-Solvers for SMT-Solvers Bas Schaafsma DISI, University of Trento & Fondazione

Introduction The DPLL and DPLL( T ) algorithms Architecture & Implementation Experimental Evaluation Demo Conclusion & Future Work Pluggable SAT-Solvers for SMT-Solvers Bas Schaafsma DISI, University of Trento & Fondazione Bruno

516 views • 28 slides
SMT Solvers: A Disruptive Technology John Rushby Computer Science Laboratory SRI International

SMT Solvers: A Disruptive Technology John Rushby Computer Science Laboratory SRI International

SMT Solvers: A Disruptive Technology John Rushby Computer Science Laboratory SRI International Menlo Park, California, USA John Rushby, SR I SMT Solvers: 1 SMT Solvers SMT stands for Satisfiability Modulo Theories SMT solvers

770 views • 39 slides
Vector addition: The zero vector The D -vector whose entries are all zero is the zero vector ,

Vector addition: The zero vector The D -vector whose entries are all zero is the zero vector ,

Vector addition: The zero vector The D -vector whose entries are all zero is the zero vector , written 0 D or just 0 v + 0 = v Vector addition: Vector addition is associative and commutative I Associativity ( x + y ) + z = x + ( y + z ) I

476 views • 36 slides
OpenFOAMs basic solvers for linear systems of equations Solvers, preconditioners, smoothers

OpenFOAMs basic solvers for linear systems of equations Solvers, preconditioners, smoothers

Tim Behrens OpenFOAMs basic solvers for linear systems of equations Solvers, preconditioners, smoothers Linear Solvers in OpenFOAM 1 Tim Behrens What are we going to do? Look at the structure of lduMatrix Compare DIC/FDIC

496 views • 14 slides
SAT and SMT Murphy Berzish Overview Boolean Satisfiability (SAT) problem SAT solvers:

SAT and SMT Murphy Berzish Overview Boolean Satisfiability (SAT) problem SAT solvers:

SAT and SMT Murphy Berzish Overview Boolean Satisfiability (SAT) problem SAT solvers: basic algorithms, enhancements Limitations of SAT SMT solvers: overview Examples of SMT solvers (implementations) Practical applications

929 views • 43 slides
Math 211 Math 211 Lecture #14 M ATLAB s ODE Solvers September 26, 2003 2 Matlab Solvers

Math 211 Math 211 Lecture #14 M ATLAB s ODE Solvers September 26, 2003 2 Matlab Solvers

1 Math 211 Math 211 Lecture #14 M ATLAB s ODE Solvers September 26, 2003 2 Matlab Solvers Matlab Solvers M ATLAB has several solvers. Return 2 Matlab Solvers Matlab Solvers M ATLAB has several solvers. ode45 Return 2 Matlab Solvers

852 views • 42 slides
Wheeler Road Virtual Community Meeting Summer 2020 Station 1 Speeding 2 Station 1

Wheeler Road Virtual Community Meeting Summer 2020 Station 1 Speeding 2 Station 1

Wheeler Road Virtual Community Meeting Summer 2020 Station 1 Speeding 2 Station 1 Speeding Reduction Tools Median Islands (Raised or Painted) 1.Slows traffic by narrowing the Photo: Branch Avenue/Bangor Street, SE nearmap

461 views • 23 slides
Speeding up query execution in PostgreSQL using LLVM JIT compiler Dmitry Melnik dm@ispras.ru

Speeding up query execution in PostgreSQL using LLVM JIT compiler Dmitry Melnik dm@ispras.ru

Speeding up query execution in PostgreSQL using LLVM JIT compiler Dmitry Melnik dm@ispras.ru Institute for System Programming of the Russian Academy of Sciences (ISP RAS) September 8, 2016 Speeding up PostgreSQL o What exactly do we want to

370 views • 23 slides
Tutorial on SAT Solvers Combinatorial Problem Solving (CPS) Enric Rodr guez-Carbonell May

Tutorial on SAT Solvers Combinatorial Problem Solving (CPS) Enric Rodr guez-Carbonell May

Tutorial on SAT Solvers Combinatorial Problem Solving (CPS) Enric Rodr guez-Carbonell May 26, 2020 SAT Solvers SAT solvers take as input a CNF formula F and return: sat (+ model): if F is satisfiable unsat : if F is unsatisfiable

273 views • 5 slides
Using SMT solvers for binary analysis and exploitation A primer on SMT, SMT solvers, Z3 & angr

Using SMT solvers for binary analysis and exploitation A primer on SMT, SMT solvers, Z3 & angr

Using SMT solvers for binary analysis and exploitation A primer on SMT, SMT solvers, Z3 & angr Carl Svensson August 29, 2018 Nixucon 2018 About me Carl Svensson, 27 MSc in Computer Science, KTH Head of Security, KRY/LIVI

638 views • 49 slides
Tutorial on SMT Solvers Combinatorial Problem Solving (CPS) Enric Rodr guez-Carbonell April

Tutorial on SMT Solvers Combinatorial Problem Solving (CPS) Enric Rodr guez-Carbonell April

Tutorial on SMT Solvers Combinatorial Problem Solving (CPS) Enric Rodr guez-Carbonell April 23, 2019 SMT Solvers SMT solvers take as input a (quantifier-free) first-order logic formula F over a background theory T , and return: sat (+

207 views • 10 slides
Solvers Principles and Architecture (SPA) Part 2 SMT Solvers Master Sciences Informatique (Sif)

Solvers Principles and Architecture (SPA) Part 2 SMT Solvers Master Sciences Informatique (Sif)

Solvers Principles and Architecture (SPA) Part 2 SMT Solvers Master Sciences Informatique (Sif) September, 2019 Rennes Khalil Ghorbal k halil.ghorbal@inria.fr K. Ghorbal (INRIA) 1 SIF M2 1 / 17 Syntax Recall that logic is a pair of

336 views • 22 slides
Solvers Principles and Architecture (SPA) Lecture 1 SAT Solvers Master Sciences Informatique

Solvers Principles and Architecture (SPA) Lecture 1 SAT Solvers Master Sciences Informatique

Solvers Principles and Architecture (SPA) Lecture 1 SAT Solvers Master Sciences Informatique (Sif) September 25th, 2017 Rennes Khalil Ghorbal k halil.ghorbal@inria.fr K. Ghorbal (INRIA) 1 SIF M2 1 / 42 Automated Theorem Proving

1.42k views • 102 slides
Solvers Principles and Architecture (SPA) Part 1 Anatomy of SAT Solvers Master Sciences

Solvers Principles and Architecture (SPA) Part 1 Anatomy of SAT Solvers Master Sciences

Solvers Principles and Architecture (SPA) Part 1 Anatomy of SAT Solvers Master Sciences Informatique (Sif) September, 2019 Rennes Khalil Ghorbal k halil.ghorbal@inria.fr K. Ghorbal (INRIA) 1 SIF M2 1 / 58 Outline 1 Propositional Logic 2

1.6k views • 108 slides
Day 3 Advanced Vector Architectures Session A: Vector Instruction Execution Pipelines Break

Day 3 Advanced Vector Architectures Session A: Vector Instruction Execution Pipelines Break

Day 3 Advanced Vector Architectures Session A: Vector Instruction Execution Pipelines Break Session B: Vector Flag Processing & Vector Register Files Lunch Session C: Virtual Processor Caches Break Session D: Vector IRAM Vector

498 views • 22 slides
Speeding up Permutation Testing Vamsi Ithapu http://pages.cs.wisc.edu/~vamsi/pt_fast November

Speeding up Permutation Testing Vamsi Ithapu http://pages.cs.wisc.edu/~vamsi/pt_fast November

Speeding up Permutation Testing Vamsi Ithapu http://pages.cs.wisc.edu/~vamsi/pt_fast November 17, 2013 The paper Speeding up Permutation Testing in Neuroimaging Joint work with Chris Hinrichs 1 , Vikas Singh and Qinyuan Sun

277 views • 15 slides

More recommend