Presentation is loading. Please wait.

Presentation is loading. Please wait.

SMT Solvers (an extension of SAT) Kenneth Roe. Slide thanks to C. Barrett & S. A. Seshia, ICCAD 2009 Tutorial 2 Boolean Satisfiability (SAT) ⋁ ⋀ ¬ ⋁ ⋀

Published byJackeline Densley Modified over 10 years ago

Similar presentations

Presentation on theme: "SMT Solvers (an extension of SAT) Kenneth Roe. Slide thanks to C. Barrett & S. A. Seshia, ICCAD 2009 Tutorial 2 Boolean Satisfiability (SAT) ⋁ ⋀ ¬ ⋁ ⋀"— Presentation transcript:

1 SMT Solvers (an extension of SAT) Kenneth Roe

2 Slide thanks to C. Barrett & S. A. Seshia, ICCAD 2009 Tutorial 2 Boolean Satisfiability (SAT) ⋁ ⋀ ¬ ⋁ ⋀ ⋁......  p2p2 p1p1 pnpn Is there an assignment to the p 1, p 2, …, p n variables such that  evaluates to 1?

3 3 Satisfiability Modulo Theories ⋁ ⋀ ¬ ⋁ ⋀ ⋁......  p2p2 p1p1 pnpn Is there an assignment to the x,y,z,w variables s.t.  evaluates to 1? x + 2 z ≥ 1 x % 26 = v w & 0xFFFF = x x = y Slide thanks to C. Barrett & S. A. Seshia, ICCAD 2009 Tutorial

4 4 Satisfiability Modulo Theories Given a formula in first-order logic, with associated background theories, is the formula satisfiable? – Yes: return a satisfying solution – No [generate a proof of unsatisfiability] Slide thanks to C. Barrett & S. A. Seshia, ICCAD 2009 Tutorial

5 5 Applications of SMT Hardware verification at higher levels of abstraction (RTL and above) Verification of analog/mixed-signal circuits Verification of hybrid systems Software model checking Software testing Security: Finding vulnerabilities, verifying electronic voting machines, … Program synthesis Scheduling Slide thanks to C. Barrett & S. A. Seshia, ICCAD 2009 Tutorial (modified)

6 6 References Satisfiability Modulo Theories Clark Barrett, Roberto Sebastiani, Sanjit A. Seshia, and Cesare Tinelli. Chapter 8 in the Handbook of Satisfiability, Armin Biere, Hans van Maaren, and Toby Walsh, editors, IOS Press, 2009. (available from our webpages) SMTLIB: A repository for SMT formulas (common format) and tools (www.smtlib.org) SMTCOMP: An annual competition of SMT solvers Slide thanks to C. Barrett & S. A. Seshia, ICCAD 2009 Tutorial (modified)

7 7 Roadmap for this Tutorial Background and Notation Survey of Theories – Equality of uninterpreted function symbols – Bit vector arithmetic – Linear arithmetic – Difference logic – Array theory Combining theories Review DLL Extending DLL to DPLL(t) Slide thanks to C. Barrett & S. A. Seshia, ICCAD 2009 Tutorial

8 8 Roadmap for this Tutorial  Background and Notation Survey of Theories – Equality of uninterpreted function symbols – Bit vector arithmetic – Linear arithmetic – Difference logic – Array theory Combining theories Review DLL Extending DLL to DPLL(t) Slide thanks to C. Barrett & S. A. Seshia, ICCAD 2009 Tutorial

9 9 First-Order Logic A formal notation for mathematics, with expressions involving – Propositional symbols – Predicates – Functions and constant symbols – Quantifiers In contrast, propositional (Boolean) logic only involves propositional symbols and operators Slide thanks to C. Barrett & S. A. Seshia, ICCAD 2009 Tutorial

10 10 First-Order Logic: Syntax As with propositional logic, expressions in first-order logic are made up of sequences of symbols. Symbols are divided into logical symbols and non-logical symbols or parameters. Example: (x = y) ⋀ (y = z) ⋀ (f(z) ➝ f(x)+1) Slide thanks to C. Barrett & S. A. Seshia, ICCAD 2009 Tutorial

11 11 First-Order Logic: Syntax Logical Symbols – Propositional connectives: ⋀, ⋁, ¬, →,… – Variables: v1, v2,... – Quantifiers: 8, 9 Non-logical symbols/Parameters – Equality: = – Functions: +, -, %, bit-wise &, f(), concat, … – Predicates: ·, is_substring, … – Constant symbols: 0, 1.0, null, … Slide thanks to C. Barrett & S. A. Seshia, ICCAD 2009 Tutorial

12 12 Quantifier-free Subset We will largely restrict ourselves to formulas without quantifiers ( ∀, ∃ ) This is called the quantifier-free subset/fragment of first-order logic with the relevant theory Slide thanks to C. Barrett & S. A. Seshia, ICCAD 2009 Tutorial

13 13 Logical Theory Defines a set of parameters (non-logical symbols) and their meanings This definition is called a signature. Example of a signature: Theory of linear arithmetic over integers Signature is (0,1,+,-, · ) interpreted over Z Slide thanks to C. Barrett & S. A. Seshia, ICCAD 2009 Tutorial

14 14 Roadmap for this Tutorial  Background and Notation Survey of Theories – Equality of uninterpreted function symbols – Bit vector arithmetic – Linear arithmetic – Difference logic – Array theory Review DLL Extending DLL to DPLL(t) Combining theories Slide thanks to C. Barrett & S. A. Seshia, ICCAD 2009 Tutorial

15 15 Some Useful Theories Equality (with uninterpreted functions) Linear arithmetic (over Q or Z ) Difference logic (over Q or Z ) Finite-precision bit-vectors – integer or floating-point Arrays / memories Misc.: Non-linear arithmetic, strings, inductive datatypes (e.g. lists), sets, … Slide thanks to C. Barrett & S. A. Seshia, ICCAD 2009 Tutorial

16 Decision procedure For each theory there is a decision procedure Given a set of predicates in the theory, the procedure will always tell you whether or not they can be satisfied

17 17 Theory of Equality and Uninterpreted Functions (EUF) Also called the “ free theory ” – Because function symbols can take any meaning – Only property required is congruence: that these symbols map identical arguments to identical values i.e., x = y ⇒ f(x) = f(y) SMTLIB name: QF_UF Slide thanks to C. Barrett & S. A. Seshia, ICCAD 2009 Tutorial

18 18 x0x0 x1x1 x2x2 x n-1 Data and Function Abstraction with EUF ALUALU x  f  Bit-vectors to Abstract Domain (e.g. Z ) Functional units to Uninterpreted Functions a = x ⋀ b = y ⇒ f(a,b) = f(x,y) Common Operations 1010 x y p ITE(p, x, y) If-then-else x y x = y = Test for equality … Slide thanks to C. Barrett & S. A. Seshia, ICCAD 2009 Tutorial

19 19 Hardware Abstraction with EUF For any Block that Transforms or Evaluates Data: – Replace with generic, unspecified function – Also view instruction memory as function Reg. File IF/ID Instr Mem +4 PC ID/EX ALUALU EX/WB = = Rd Ra Rb Imm Op Adat Control F2F2 F1F1 F3F3 Slide thanks to C. Barrett & S. A. Seshia, ICCAD 2009 Tutorial

20 20 Example QF_UF (EUF) Formula (x = y) ⋀ (y = z) ⋀ (f(x)  f(z)) Transitivity: (x = y) ⋀ (y = z) → (x = z) Congruence: (x = z) → (f(x) = f(z)) Slide thanks to C. Barrett & S. A. Seshia, ICCAD 2009 Tutorial

21 21 Equivalence Checking of Program Fragments int fun1(int y) { int x, z; z = y; y = x; x = z; return x*x; } int fun2(int y) { return y*y; } What if we use SAT to check equivalence? SMT formula  Satisfiable iff programs non-equivalent ( z = y ⋀ y1 = x ⋀ x1 = z ⋀ ret1 = x1*x1) ⋀ ( ret2 = y*y ) ⋀ ( ret1  ret2 ) Slide thanks to C. Barrett & S. A. Seshia, ICCAD 2009 Tutorial

22 22 Equivalence Checking of Program Fragments int fun1(int y) { int x, z; z = y; y = x; x = z; return x*x; } int fun2(int y) { return y*y; } SMT formula  Satisfiable iff programs non-equivalent ( z = y Æ y1 = x Æ x1 = z Æ ret1 = x1*x1) Æ ( ret2 = y*y ) Æ ( ret1  ret2 ) Using SAT to check equivalence (w/ Minisat) 32 bits for y: Did not finish in over 5 hours 16 bits for y: 37 sec. 8 bits for y: 0.5 sec. Slide thanks to C. Barrett & S. A. Seshia, ICCAD 2009 Tutorial

23 23 Equivalence Checking of Program Fragments int fun1(int y) { int x, z; z = y; y = x; x = z; return x*x; } int fun2(int y) { return y*y; } SMT formula  ’ ( z = y ⋀ y1 = x ⋀ x1 = z ⋀ ret1 = sq(x1) ) ⋀ ( ret2 = sq(y) ) ⋀ ( ret1  ret2 ) Using EUF solver: 0.01 sec Slide thanks to C. Barrett & S. A. Seshia, ICCAD 2009 Tutorial

24 24 Equivalence Checking of Program Fragments int fun1(int y) { int x; x = x ^ y; y = x ^ y; x = x ^ y; return x*x; } int fun2(int y) { return y*y; } Does EUF still work? No! Must reason about bit-wise XOR. Need a solver for bit-vector arithmetic. Solvable in less than a sec. with a current bit-vector solver. Slide thanks to C. Barrett & S. A. Seshia, ICCAD 2009 Tutorial

25 25 Finite-Precision Bit-Vector Arithmetic (QF_BV) – Fixed width data words Can model int, short, long, etc. – Arithmetic operations E.g., add/subtract/multiply/divide & comparisons Two ’ s complement and unsigned operations – Bit-wise logical operations E.g., and/or/xor, shift/extract and equality – Boolean connectives Slide thanks to C. Barrett & S. A. Seshia, ICCAD 2009 Tutorial

26 26 Linear Arithmetic (QF_LRA, QF_LIA) Boolean combination of linear constraints of the form (a 1 x 1 + a 2 x 2 + … + a n x n » b) x i ’ s could be in Q or Z, » 2 { ¸,>, ·,<,=} Many applications, including: – Verification of analog circuits – Software verification, e.g., of array bounds Slide thanks to C. Barrett & S. A. Seshia, ICCAD 2009 Tutorial

27 27 Difference Logic (QF_IDL, QF_RDL) Boolean combination of linear constraints of the form x i - x j » c ij or x i » c i » 2 { ¸,>, ·,<,=}, x i ’ s in Q or Z Applications: – Software verification (most linear constraints are of this form) – Processor datapath verification – Job shop scheduling / real-time systems – Timing verification for circuits Slide thanks to C. Barrett & S. A. Seshia, ICCAD 2009 Tutorial

28 28 Arrays/Memories SMT solvers can also be very effective in modeling data structures in software and hardware – Arrays in programs – Memories in hardware designs: e.g. instruction and data memories, CAMs, etc. Slide thanks to C. Barrett & S. A. Seshia, ICCAD 2009 Tutorial

29 29 Theory of Arrays (QF_AX) Select and Store Two interpreted functions: select and store – select(A,i) Read from A at index i – store(A,i,d) Write d to A at index i Two main axioms: – select(store(A,i,d), i) = d – select(store(A,i,d), j) = select(A,j) for i  j One other axiom: – ( ∀ i. select(A,i) = select(B,i)) ) A = B Slide thanks to C. Barrett & S. A. Seshia, ICCAD 2009 Tutorial

30 30 Equivalence Checking of Program Fragments int fun1(int y) { int x[2]; x[0] = y; y = x[1]; x[1] = x[0]; return x[1]*x[1]; } int fun2(int y) { return y*y; } SMT formula  ’’ [ x1 = store(x,0,y) Æ y1 = select(x1,1) Æ x2 = store(x1,1,select(x1,0)) Æ ret1 = sq(select(x2,1)) ] Æ ( ret2 = sq(y) ) Æ ( ret1  ret2 ) Slide thanks to C. Barrett & S. A. Seshia, ICCAD 2009 Tutorial

31 31 Roadmap for this Tutorial  Background and Notation Survey of Theories – Equality of uninterpreted function symbols – Bit vector arithmetic – Linear arithmetic – Difference logic – Array theory Combining theories Review DLL Extending DLL to DPLL(t) Slide thanks to C. Barrett & S. A. Seshia, ICCAD 2009 Tutorial

32 32 Combining Theory Solvers Theory solvers become much more useful if they can be used together. mux_sel = 0 → mux_out = select(regfile, addr) mux_sel = 1 → mux_out = ALU(alu0, alu1) For such formulas, we are interested in satisfiability with respect to a combination of theories. Fortunately, there exist methods for combining theory solvers. The standard technique for this is the Nelson-Oppen method [NO79, TH96]. Slide taken from [Barret09 and Haney]

33 33 The Nelson-Oppen Method Suppose that T1 and T2 are theories and that Sat 1 is a theory solver for T1-satisfiability and Sat 2 for T2- satisfiability. We wish to determine if φ is T1 ∪ T2-satisfiable. 1.Convert φ to its separate form φ1 ∧ φ2. 2.Let S be the set of variables shared between φ1 and φ2. 3.For each arrangement D of S: 1.Run Sat 1 on φ1 ∪ D. 2.Run Sat 2 on φ2 ∪ D. Slide taken from [Barret09 and Haney]

34 34 Combining Theories QF_UFLIA φ =1 ≤ x ∧ x ≤ 2 ∧ f(x) ≠ f(1) ∧ f(x) ≠ f(2) We first convert φ to a separate form: φ UF = f(x) ≠ f(y) ∧ f(x) ≠ f(z) φ LIA = 1 ≤ x ∧ x ≤ 2 ∧ y = 1 ∧ z = 2 Slide taken from [Barret09 and Haney]

35 35 Combining Theories φ UF = f(x) ≠ f(y) ∧ f(x) ≠ f(z) φ LIA = 1 ≤ x ∧ x ≤ 2 ∧ y = 1 ∧ z = 2 {x, y, z} can have 5 possible arrangements based on equivalence classes of x, y, and z 1. Assume All Variables Equal: 1.{x = y, x = z, y = z} inconsistent with φ UF 2.Assume Two Variables Equal, One Different 1.{x = y, x ≠ z, y ≠ z} inconsistent with φ UF 2.{x ≠ y, x = z, y ≠ z} inconsistent with φ UF 3.{x ≠ y, x ≠ z, y = z} inconsistent with φ LIA 3.Assume All Variables Different: 1.{x ≠ y, x ≠ z, y ≠ z} inconsistent with φ LIA Slide adopted from [Barret09 and Haney] Φ IS UNSAT

36 Convex theories Definition: Γ ⊨ T ⋁ i ∈ I x i =y i iff Γ ⊨ T x i =y i for some i ∈ I Gives much faster combination – O(2 n*n ×(T1(n)+T2(n)) if one or both theories not convex – O(n 3 × (T1(n) + T2(n))) if both are convex Non-convex theories: – bit vector theories – linear integer arithmetic – theory of arrays

37 Stably infinite theories A theory is stably infinite if every satisfiable QFF is satisfiable in an infinite model (Leonardo de Moura) T2 =DC( ∀ x,y,z.(x=y) ∨ (x=z) ∨ (y=z))

38 38 Roadmap for this Tutorial  Background and Notation Survey of Theories – Equality of uninterpreted function symbols – Bit vector arithmetic – Linear arithmetic – Difference logic – Array theory Combining theories Review DLL Extending DLL to DPLL(t) Slide thanks to C. Barrett & S. A. Seshia, ICCAD 2009 Tutorial

39 600.325/425 Declarative Methods - J. Eisner 39 Basic DLL Procedure (a + c + d) (a + c + d’) (a + c’ + d) (a + c’ + d’) (a’ + b + c) (b’ + c’ + d) (a’ + b + c’) (a’ + b’ + c) slide thanks to Sharad Malik (modified)

40 600.325/425 Declarative Methods - J. Eisner 40 Basic DLL Procedure (a + c + d) (a + c + d’) (a + c’ + d) (a + c’ + d’) (a’ + b + c) (b’ + c’ + d) (a’ + b + c’) (a’ + b’ + c) a slide thanks to Sharad Malik (modified)

41 600.325/425 Declarative Methods - J. Eisner 41 Basic DLL Procedure a 0 (a + c + d) (a + c + d’) (a + c’ + d) (a + c’ + d’) (a’ + b + c) (b’ + c’ + d) (a’ + b + c’) (a’ + b’ + c)  Decision slide thanks to Sharad Malik (modified) a + Green means “crossed out”

42 600.325/425 Declarative Methods - J. Eisner 42 Basic DLL Procedure a 0 (a + c + d) (a + c + d’) (a + c’ + d) (a + c’ + d’) (a’ + b + c) (b’ + c’ + d) (a’ + b + c’) (a’ + b’ + c) b 0  Decision slide thanks to Sharad Malik (modified) a +

43 600.325/425 Declarative Methods - J. Eisner 43 Basic DLL Procedure a 0 (a + c + d) (a + c + d’) (a + c’ + d) (a + c’ + d’) (a’ + b + c) (b’ + c’ + d) (a’ + b + c’) (a’ + b’ + c) b 0 c 0  Decision slide thanks to Sharad Malik (modified) a + c +

44 600.325/425 Declarative Methods - J. Eisner 44 Basic DLL Procedure a 0 (a + c + d) (a + c + d’) (a + c’ + d) (a + c’ + d’) (a’ + b + c) (b’ + c’ + d) (a’ + b + c’) (a’ + b’ + c) b 0 c 0 d=1 c=0 (a + c + d) a=0 d=0 (a + c + d’) Conflict! Implication Graph (shows that the problem was caused by a=0 ^ c=0; nothing to do with b) slide thanks to Sharad Malik (modified) a + c + Unit clauses force both d=1 and d=0: contradiction

45 600.325/425 Declarative Methods - J. Eisner 45 Basic DLL Procedure a 0 (a + c + d) (a + c + d’) (a + c’ + d) (a + c’ + d’) (a’ + b + c) (b’ + c’ + d) (a’ + b + c’) (a’ + b’ + c) b 0 c 0  Backtrack slide thanks to Sharad Malik (modified) a +

46 600.325/425 Declarative Methods - J. Eisner 46 Basic DLL Procedure a 0 (a + c + d) (a + c + d’) (a + c’ + d) (a + c’ + d’) (a’ + b + c) (b’ + c’ + d) (a’ + b + c’) (a’ + b’ + c) b 0 c 0 d=1 c=1 (a + c’ + d) a=0 d=0 (a + c’ + d’) Conflict! 1  Other Decision slide thanks to Sharad Malik (modified) a + c’ +

47 600.325/425 Declarative Methods - J. Eisner 47 Basic DLL Procedure a 0 (a + c + d) (a + c + d’) (a + c’ + d) (a + c’ + d’) (a’ + b + c) (b’ + c’ + d) (a’ + b + c’) (a’ + b’ + c) b 0 c 0 1  Backtrack (2 levels) slide thanks to Sharad Malik (modified) a +

48 600.325/425 Declarative Methods - J. Eisner 48 Basic DLL Procedure a 0 (a + c + d) (a + c + d’) (a + c’ + d) (a + c’ + d’) (a’ + b + c) (b’ + c’ + d) (a’ + b + c’) (a’ + b’ + c) b 0 c 0 1 1  Other Decision slide thanks to Sharad Malik (modified) a + b’ +

49 600.325/425 Declarative Methods - J. Eisner 49 Basic DLL Procedure a 0 (a + c + d) (a + c + d’) (a + c’ + d) (a + c’ + d’) (a’ + b + c) (b’ + c’ + d) (a’ + b + c’) (a’ + b’ + c) b 0 c 0 d=1 c=0 (a + c’ + d) a=0 d=0 (a + c’ + d’) Conflict! 1 c 0 1  Decision slide thanks to Sharad Malik (modified) a + c +

50 600.325/425 Declarative Methods - J. Eisner 50 Basic DLL Procedure a 0 b 0 c 0 1 c 0 1  Backtrack slide thanks to Sharad Malik (modified) (a + c + d) (a + c + d’) (a + c’ + d) (a + c’ + d’) (a’ + b + c) (b’ + c’ + d) (a’ + b + c’) (a’ + b’ + c) a + b’ +

51 600.325/425 Declarative Methods - J. Eisner 51 (b’ + c’ + d) Basic DLL Procedure a 0 (a + c + d) (a + c + d’) (a + c’ + d) (a + c’ + d’) (a’ + b + c) (a’ + b + c’) (a’ + b’ + c) b 0 c 0 d=1 c=1 (a + c’ + d) a=0 d=0 (a + c’ + d’) Conflict! 1 c 0 1 1  Other Decision slide thanks to Sharad Malik (modified) b’ + c’ + a + c’ +

52 600.325/425 Declarative Methods - J. Eisner 52 Basic DLL Procedure a 0 (a + c + d) (a + c + d’) (a + c’ + d) (a + c’ + d’) (a’ + b + c) (b’ + c’ + d) (a’ + b + c’) (a’ + b’ + c) b 0 c 0 1 c 0 1 1  Backtrack slide thanks to Sharad Malik (modified)

53 600.325/425 Declarative Methods - J. Eisner 53 Basic DLL Procedure a 0 (a + c + d) (a + c + d’) (a + c’ + d) (a + c’ + d’) (a’ + b + c) (b’ + c’ + d) (a’ + b + c’) (a’ + b’ + c) b 0 c 0 1 c 0 1 1 1  Other Decision slide thanks to Sharad Malik (modified) a’ +

54 600.325/425 Declarative Methods - J. Eisner 54 Basic DLL Procedure a 0 (a + c + d) (a + c + d’) (a + c’ + d) (a + c’ + d’) (a’ + b + c) (b’ + c’ + d) (a’ + b + c’) (a’ + b’ + c) b 0 c 0 1 c 0 1 1 1 b 0  Decision slide thanks to Sharad Malik (modified) a’ + b +  Again choose b next (not required)

55 600.325/425 Declarative Methods - J. Eisner 55 Basic DLL Procedure a 0 (a + c + d) (a + c + d’) (a + c’ + d) (a + c’ + d’) (a’ + b + c) (b’ + c’ + d) (a’ + b + c’) (a’ + b’ + c) b 0 c 0 1 c 0 1 1 1 b 0 c=1 b=0 (a’ + b + c) a=1 c=0 (a’ + b + c’) Conflict! slide thanks to Sharad Malik (modified) a’ + b +

56 600.325/425 Declarative Methods - J. Eisner 56 Basic DLL Procedure a 0 b 0 c 0 1 c 0 1 1 1 b 0  Backtrack slide thanks to Sharad Malik (modified) (a + c + d) (a + c + d’) (a + c’ + d) (a + c’ + d’) (a’ + b + c) (b’ + c’ + d) (a’ + b + c’) (a’ + b’ + c) a’ +

57 600.325/425 Declarative Methods - J. Eisner 57 (a’ + b’ + c) Basic DLL Procedure a 0 (a + c + d) (a + c + d’) (a + c’ + d) (a + c’ + d’) (a’ + b + c) (b’ + c’ + d) (a’ + b + c’) b 0 c 0 1 c 0 1 1 1 b 0 1 a=1 b=1 c=1 (a’ + b’ + c)  Other Decision slide thanks to Sharad Malik (modified) b’ + a’ + b’ + unit clause that propagates without contradiction (finally!) Often you get these much sooner

58 600.325/425 Declarative Methods - J. Eisner 58 (b’ + c’ + d) Basic DLL Procedure a b 0 c 0 1 c 0 1 1 1 b 0 1 a=1 b=1 c=1 (a’ + b’ + c)(b’ + c’ + d) d=1 0 slide thanks to Sharad Malik (modified) (a + c + d) (a + c + d’) (a + c’ + d) (a + c’ + d’) (a’ + b + c) (a’ + b + c’) b’ + c’ + c 1  Forced by unit clause (a’ + b’ + c)

59 600.325/425 Declarative Methods - J. Eisner 59 Basic DLL Procedure a b 0 c 0 1 c 0 1 1 1 b 0 1 a=1 b=1 c=1 (a’ + b’ + c)(b’ + c’ + d) d=1 0 slide thanks to Sharad Malik (modified) (a + c + d) (a + c + d’) (a + c’ + d) (a + c’ + d’) (a’ + b + c) (a’ + b + c’) b’ + c’ + c 1 (a’ + b’ + c) d 1  Forced by unit clause  SAT (b’ + c’ + d)

60 600.325/425 Declarative Methods - J. Eisner 60 Tricks used by zChaff and similar DLL solvers (Overview only; details on later slides) Make unit propagation / backtracking speedy (80% of the cycles!) Variable ordering heuristics: Which variable/value to assign next? Conflict analysis: When a contradiction is found, analyze what subset of the assigned variables was responsible. Why? –Better heuristics: Like to branch on vars that caused recent conflicts –Backjumping: When backtracking, avoid trying options that would just lead to the same contradictions again. –Clause learning: Add new clauses to block bad sub-assignments. –Random restarts (maybe): Occasionally restart from scratch, but keep using the learned clauses. (Example: crosswords...) Even without clause learning, random restarts can help by abandoning an unlucky, slow variable ordering. Just break ties differently next time. Preprocess the input formula (maybe) Tuned implementation: Carefully tune data structures –improve memory locality and avoid cache misses

61 600.325/425 Declarative Methods - J. Eisner 61 Motivating Metrics: Decisions, Instructions, Cache Performance and Run Time 1dlx_c_mc_ex_bp_f Num Variables776 Num Clauses3725 Num Literals10045 Z-ChaffSATOGRASP # Decisions316637711795 # Instructions86.6M630.4M1415.9M # L1/L2 accesses24M / 1.7M188M / 79M416M / 153M % L1/L2 misses4.8% / 4.6%36.8% / 9.7%32.9% / 50.3% # Seconds0.224.4111.78 slide thanks to Moskewicz, Madigan, Zhang, Zhao, & Malik

62 600.325/425 Declarative Methods - J. Eisner 62 DLL: Obvious data structures C=1F=0A=1G=0 Stack of assignments used for backtracking Current variable assignments ABCDEFGHIJKLM 1100 = forced by propagation = first guess = second guess

63 600.325/425 Declarative Methods - J. Eisner 63 DLL: Obvious data structures C=1F=0A=1G=0 J=0 Stack of assignments used for backtracking Current variable assignments ABCDEFGHIJKLM 11000 = forced by propagation = first guess = second guess Guess a new assignment J=0

64 600.325/425 Declarative Methods - J. Eisner 64 DLL: Obvious data structures C=1F=0A=1G=0 J=0 K=1L=1 Stack of assignments used for backtracking Current variable assignments ABCDEFGHIJKLM 11000 = forced by propagation = first guess = second guess = currently being propagated = assignment still pending Unit propagation implies assignments K=1, L=1

65 600.325/425 Declarative Methods - J. Eisner 65 DLL: Obvious data structures C=1F=0A=1G=0 J=0 K=1 L=1 Stack of assignments used for backtracking Current variable assignments ABCDEFGHIJKLM 110001 = forced by propagation = first guess = second guess = currently being propagated = assignment still pending Now make those assignments, one at a time

66 600.325/425 Declarative Methods - J. Eisner 66 DLL: Obvious data structures C=1F=0A=1G=0 J=0 K=1 L=1B=0 Stack of assignments used for backtracking Current variable assignments ABCDEFGHIJKLM 110001 = forced by propagation = first guess = second guess = currently being propagated = assignment still pending Chain reaction: K=1 propagates to imply B=0

67 600.325/425 Declarative Methods - J. Eisner 67 DLL: Obvious data structures C=1F=0A=1G=0 J=0 K=1 L=1B=0 Stack of assignments used for backtracking Current variable assignments ABCDEFGHIJKLM 110001 = forced by propagation = first guess = second guess = currently being propagated = assignment still pending Also implies A=1, but we already knew that

68 600.325/425 Declarative Methods - J. Eisner 68 DLL: Obvious data structures C=1F=0A=1G=0 J=0K=1 B=0 Stack of assignments used for backtracking Current variable assignments ABCDEFGHIJKLM 1100011 = forced by propagation = first guess = second guess = currently being propagated L=1 = assignment still pending

69 600.325/425 Declarative Methods - J. Eisner 69 DLL: Obvious data structures C=1F=0A=1G=0 J=0K=1 B=0F=1 Stack of assignments used for backtracking Current variable assignments ABCDEFGHIJKLM 1100011 = forced by propagation = first guess = second guess = currently being propagated L=1 = assignment still pending Oops! L=1 propagates to imply F=1, but we already had F=0

70 600.325/425 Declarative Methods - J. Eisner 70 DLL: Obvious data structures C=1F=0A=1G=0 J=0K=1 B=0F=1 Stack of assignments used for backtracking Current variable assignments ABCDEFGHIJKLM 1100011 = forced by propagation = first guess = second guess = currently being propagated L=1 = assignment still pending Oops! Backtrack to last yellow, undoing all assignments

71 600.325/425 Declarative Methods - J. Eisner 71 DLL: Obvious data structures C=1F=0A=1G=0 J=0 Stack of assignments used for backtracking Current variable assignments ABCDEFGHIJKLM 11000 = forced by propagation = first guess = second guess = currently being propagated = assignment still pending

72 600.325/425 Declarative Methods - J. Eisner 72 DLL: Obvious data structures C=1F=0A=1G=0 J=1 Stack of assignments used for backtracking Current variable assignments ABCDEFGHIJKLM 11001 = forced by propagation = first guess = second guess = currently being propagated = assignment still pending J=0 didn’t work out, so try J=1

73 600.325/425 Declarative Methods - J. Eisner 73 DLL: Obvious data structures C=1F=0A=1G=0 J=1 B=0 Stack of assignments used for backtracking Current variable assignments ABCDEFGHIJKLM 11001 = forced by propagation = first guess = second guess = currently being propagated = assignment still pending

74 600.325/425 Declarative Methods - J. Eisner 74 DLL: Obvious data structures C=1F=0A=1G=0 J=1 B=0 Stack of assignments used for backtracking Current variable assignments ABCDEFGHIJKLM 101001 = forced by propagation = first guess = second guess = currently being propagated = assignment still pending Nothing left to propagate. Now what?

75 600.325/425 Declarative Methods - J. Eisner 75 DLL: Obvious data structures C=1F=0A=1G=0 J=1 B=0L=1… Stack of assignments used for backtracking Current variable assignments ABCDEFGHIJKLM 1010011 = forced by propagation = first guess = second guess = currently being propagated = assignment still pending Again, guess an unassigned variable and proceed …

76 600.325/425 Declarative Methods - J. Eisner 76 DLL: Obvious data structures C=1F=0A=1G=0 J=1 B=0L=0… Stack of assignments used for backtracking Current variable assignments ABCDEFGHIJKLM 1010010 = forced by propagation = first guess = second guess = currently being propagated = assignment still pending If L=1 doesn’t work out, we know L=0 in this context

77 600.325/425 Declarative Methods - J. Eisner 77 DLL: Obvious data structures C=1F=0A=1G=0 J=1 B=0L=0… Stack of assignments used for backtracking Current variable assignments ABCDEFGHIJKLM 1010010 = forced by propagation = first guess = second guess = currently being propagated = assignment still pending If L=0 doesn’t work out either, backtrack to … ?

78 600.325/425 Declarative Methods - J. Eisner 78 DLL: Obvious data structures C=1F=1 Stack of assignments used for backtracking Current variable assignments ABCDEFGHIJKLM 11 = forced by propagation = first guess = second guess = currently being propagated = assignment still pending Question: When should we return SAT or UNSAT?

79 79 Roadmap for this Tutorial  Background and Notation Survey of Theories – Equality of uninterpreted function symbols – Bit vector arithmetic – Linear arithmetic – Difference logic – Array theory Combining theories Review DLL Extending DLL to DPLL(t) Slide thanks to C. Barrett & S. A. Seshia, ICCAD 2009 Tutorial

80 600.325/425 Declarative Methods - J. Eisner 80 Basic DPLL(t) Procedure q = x < 0 r = x < y s = y < 0 p = 3 < x p q v r s v ~r slide thanks to Sharad Malik (modified) Example, courtesy Leonardo de Moura

81 600.325/425 Declarative Methods - J. Eisner 81 Basic DPLL(t) Procedure q = x < 0 r = x < y s = y < 0 p = 3 < x p q v r s v ~r slide thanks to Sharad Malik (modified) p Green means “crossed out” p 0 1  Forced by unit clause Example, courtesy Leonardo de Moura

82 600.325/425 Declarative Methods - J. Eisner 82 Basic DPLL(t) Procedure q = x < 0 r = x < y s = y < 0 p = 3 < x p q v r s v ~r slide thanks to Sharad Malik (modified) p Green means “crossed out” p 0 1 1 q 0 Forced by domain ⇒ theory q v r Example, courtesy Leonardo de Moura

83 600.325/425 Declarative Methods - J. Eisner 83 Basic DPLL(t) Procedure q = x < 0 r = x < y s = y < 0 p = 3 < x p q v r s v ~r slide thanks to Sharad Malik (modified) p Green means “crossed out” p 0 0 1 1 q 0 r 1  Forced by unit clause q v r v ~r s Example, courtesy Leonardo de Moura

84 600.325/425 Declarative Methods - J. Eisner 84 Basic DPLL(t) Procedure q = x < 0 r = x < y s = y < 0 p = 3 < x p q v r s v ~r slide thanks to Sharad Malik (modified) p Green means “crossed out” p 0 0 1 1 q 0 r 1 s 1  Forced by unit clause 0 s v ~r q v r Example, courtesy Leonardo de Moura

Download ppt "SMT Solvers (an extension of SAT) Kenneth Roe. Slide thanks to C. Barrett & S. A. Seshia, ICCAD 2009 Tutorial 2 Boolean Satisfiability (SAT) ⋁ ⋀ ¬ ⋁ ⋀"

Similar presentations

A Randomized Satisfiability Procedure for Arithmetic and Uninterpreted Function Symbols Sumit Gulwani George Necula EECS Department University of California,

A Randomized Satisfiability Procedure for Arithmetic and Uninterpreted Function Symbols Sumit Gulwani George Necula EECS Department University of California,
Automated Theorem Proving Lecture 1. Program verification is undecidable! Given program P and specification S, does P satisfy S?

Automated Theorem Proving Lecture 1. Program verification is undecidable! Given program P and specification S, does P satisfy S?
Satisfiability modulo the Theory of Bit Vectors

Satisfiability modulo the Theory of Bit Vectors
1 First order theories (Chapter 1, Sections 1.4 – 1.5)

1 First order theories (Chapter 1, Sections 1.4 – 1.5)
Syntax-Guided Synthesis Rajeev Alur Joint work with R.Bodik, G.Juniwal, M.Martin, M.Raghothaman, S.Seshia, R.Singh, A.Solar-Lezama, E.Torlak, A.Udupa 1.

Syntax-Guided Synthesis Rajeev Alur Joint work with R.Bodik, G.Juniwal, M.Martin, M.Raghothaman, S.Seshia, R.Singh, A.Solar-Lezama, E.Torlak, A.Udupa 1.
50.530: Software Engineering

50.530: Software Engineering
Finding bugs: Analysis Techniques & Tools Symbolic Execution & Constraint Solving CS161 Computer Security Cho, Chia Yuan.

Finding bugs: Analysis Techniques & Tools Symbolic Execution & Constraint Solving CS161 Computer Security Cho, Chia Yuan.
Satisfiability Modulo Theories (An introduction)

Satisfiability Modulo Theories (An introduction)
1/1/ / faculty of Electrical Engineering eindhoven university of technology Introduction Part 2: Data types and addressing modes dr.ir. A.C. Verschueren.

1/1/ / faculty of Electrical Engineering eindhoven university of technology Introduction Part 2: Data types and addressing modes dr.ir. A.C. Verschueren.
Linked List Implementation class List { private List next; private Object data; private static List root; private static int size; public static void addNew(Object.

Linked List Implementation class List { private List next; private Object data; private static List root; private static int size; public static void addNew(Object.
Propositional and First Order Reasoning. Terminology Propositional variable: boolean variable (p) Literal: propositional variable or its negation p 

Propositional and First Order Reasoning. Terminology Propositional variable: boolean variable (p) Literal: propositional variable or its negation p 
Software Engineering & Automated Deduction Willem Visser Stellenbosch University With Nikolaj Bjorner (Microsoft Research, Redmond) Natarajan Shankar (SRI.

Software Engineering & Automated Deduction Willem Visser Stellenbosch University With Nikolaj Bjorner (Microsoft Research, Redmond) Natarajan Shankar (SRI.
Hybrid Systems Presented by: Arnab De Anand S. An Intuitive Introduction to Hybrid Systems Discrete program with an analog environment. What does it mean?

Hybrid Systems Presented by: Arnab De Anand S. An Intuitive Introduction to Hybrid Systems Discrete program with an analog environment. What does it mean?
Panel on Decision Procedures Panel on Decision Procedures Randal E. Bryant Lintao Zhang Nils Klarlund Harald Ruess Sergey Berezin Rajeev Joshi.

Panel on Decision Procedures Panel on Decision Procedures Randal E. Bryant Lintao Zhang Nils Klarlund Harald Ruess Sergey Berezin Rajeev Joshi.
Proof translation from CVC3 to Hol light Yeting Ge Acsys Mar 5, 2008.

Proof translation from CVC3 to Hol light Yeting Ge Acsys Mar 5, 2008.
PROOF TRANSLATION AND SMT LIB CERTIFICATION Yeting Ge Clark Barrett SMT 2008 July 7 Princeton.

PROOF TRANSLATION AND SMT LIB CERTIFICATION Yeting Ge Clark Barrett SMT 2008 July 7 Princeton.
Interpolants [Craig 1957] G(y,z) F(x,y)

Interpolants [Craig 1957] G(y,z) F(x,y)
1 Satisfiability Modulo Theories Sinan Hanay. 2 Boolean Satisfiability (SAT) Is there an assignment to the p 1, p 2, …, p n variables such that  evaluates.

1 Satisfiability Modulo Theories Sinan Hanay. 2 Boolean Satisfiability (SAT) Is there an assignment to the p 1, p 2, …, p n variables such that  evaluates.
Bit Vector Decision Procedures A Basis for Reasoning about Hardware & Software Randal E. Bryant Carnegie Mellon University.

Bit Vector Decision Procedures A Basis for Reasoning about Hardware & Software Randal E. Bryant Carnegie Mellon University.
1 Constraint Programming Maurizio Gabbrielli Universita’ di Bologna Slides by: K. Marriott.

1 Constraint Programming Maurizio Gabbrielli Universita’ di Bologna Slides by: K. Marriott.

Similar presentations

Ads by Google