Deciding Bit-Vector Arithmetic with Abstraction

Bryant, Randal E.; Kroening, Daniel; Ouaknine, Joël; Seshia, Sanjit A.; Strichman, Ofer; Brady, Brenna L.

doi:10.1007/978-3-540-71209-1_28

Cited by 77 publications

(77 citation statements)

References 14 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Modern languages typically provide fixed-width numeric types, such as 32bit twos-compliment integers, or 64-bit IEEE 754 floating point numbers. Such data types are notoriously difficult for an automated theorem prover to reason about [22]. Systems like JML and Spec# assume (unsoundly) that numeric types do not overflow or suffer from rounding.…”

Section: Flowmentioning

confidence: 99%

Whiley: A Platform for Research in Software Verification

Pearce

Groves

2013

Software Language Engineering

View full text Add to dashboard Cite

Abstract. An ongoing challenge for computer science is the development of a tool which automatically verifies programs meet their specifications, and are free from runtime errors such as divide-by-zero, array out-of-bounds and null dereferences. Several impressive systems have been developed to this end, such as ESC/Java and Spec#, which build on existing programming languages (e.g. Java, C#). However, there remains a need for an open research platform in this area. We have developed the Whiley programming language, and its accompanying verifying compiler, as an open platform for research.

show abstract

Section: Flowmentioning

confidence: 99%

Whiley: A Platform for Research in Software Verification

Pearce

Groves

2013

Software Language Engineering

View full text Add to dashboard Cite

show abstract

“…4.3 An Illustrative Example Assume the first executed trace is π 1 = (1, 0.1), (1, 1.1), (1, 2.1), (1, 3), (1, 0.2), (1, 1.2), (1, 2.2), (1,5), (1,6), (2,13), (2,14), (2,15), (2,16), (3,13), (3,14), (3,15), (3,16),…”

Section: Avoid Redundant Checksmentioning

confidence: 99%

Trace-Driven Verification of Multithreaded Programs

Yang

Sakallah

2010

Formal Methods and Software Engineering

View full text Add to dashboard Cite

Abstract. We present a new method that combines the efficiency of testing with the reasoning power of satisfiability modulo theory (SMT) solvers for the verification of multithreaded programs under a user specified test vector. Our method performs dynamic executions to obtain both under-and over-approximations of the program, represented as quantifier-free first order logic formulas. The formulas are then analyzed by an SMT solver which implicitly considers all possible thread interleavings. The symbolic analysis may return the following results: (1) it reports a real bug, (2) it proves that the program has no bug under the given input, or (3) it remains inconclusive because the analysis is based on abstractions. In the last case, we present a refinement procedure that uses symbolic analysis to guide further executions.

show abstract

“…A more complete survey of current and past bit-vector decision procedures can be found in recent articles (e.g. [5]) and the SMT-COMP'08 results [14].…”

Section: Related Workmentioning

confidence: 99%

“…MathSAT [4] and Z3 [6] are based on bit-blasting using several wordlevel simplifications; we were unable to find a detailed exposition of which of these simplifications were the most useful. Finally, UCLID [5] uses an abstraction-refinement approach to solving bit-vector formulas, into which any model-generating SMT solver for QF BV, including BEAVER, can be easily integrated.…”

Section: Related Workmentioning

confidence: 99%

“…This theory is useful for reasoning about low-level system descriptions in languages such as C and Verilog which use finite-precision integer arithmetic and bit-wise operations on bit-vectors. Recently, there has been a resurgence of work on new QF BV SMT solvers such as BAT [10], Boolector [3], MathSAT [4], Spear [9], STP [8], UCLID [5] and Z3 [6].…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Beaver: Engineering an Efficient SMT Solver for Bit-Vector Arithmetic

Jha

Limaye

Seshia

2009

Computer Aided Verification

Self Cite

View full text Add to dashboard Cite

We present the key ideas in the design and implementation of Beaver, an SMT solver for quantifierfree finite-precision bit-vector logic (QF BV). Beaver uses an eager approach, encoding the original SMT problem into a Boolean satisfiability (SAT) problem using a series of word-level and bit-level transformations. In this paper, we describe the most effective transformations, such as propagating constants and equalities at the word-level, and using and-inverter graph rewriting techniques at the bit-level. We highlight the implementation details of these transformations that distinguishes Beaver from other solvers. We present an experimental evaluation and analysis of the effectiveness of Beaver's techniques on both hardware and software benchmarks with a selection of back-end SAT solvers.Beaver is an open-source tool implemented in Ocaml, usable with any back-end SAT engine, and has a well-documented extensible code base that can be used to experiment with new algorithms and techniques.

show abstract

Deciding Bit-Vector Arithmetic with Abstraction

Cited by 77 publications

References 14 publications

Whiley: A Platform for Research in Software Verification

Whiley: A Platform for Research in Software Verification

Trace-Driven Verification of Multithreaded Programs

Beaver: Engineering an Efficient SMT Solver for Bit-Vector Arithmetic

Contact Info

Product

Resources

About