Decision procedures for path feasibility of string-manipulating programs with complex operations

Chen, Taolue; Hague, Matthew; Lin, Anthony W.; Rümmer, Philipp; Zhang, Wu

doi:10.1145/3290362

Cited by 53 publications

(83 citation statements)

References 53 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In [34] Chen et al define a first-order language based on the .NET string library functions and prove some decidability properties for (fragments of) that language. In particular, based on the work of [31], the authors prove that undecidablity of the path feasibility problem for a fragment called library language.…”

Section: Theoretical Aspectsmentioning

confidence: 99%

A Novel Approach to String Constraint Solving

Amadini

Gange

Stuckey

et al. 2017

Lecture Notes in Computer Science

View full text Add to dashboard Cite

String constraint solving refers to solving combinatorial problems involving constraints over string variables. String solving approaches have become popular over the last years given the massive use of strings in different application domains like formal analysis, automated testing, database query processing, and cybersecurity. This paper reports a comprehensive survey on string constraint solving by exploring the large number of approaches that have been proposed over the last decades to solve string constraints.

show abstract

Section: Theoretical Aspectsmentioning

confidence: 99%

A Novel Approach to String Constraint Solving

Amadini

Gange

Stuckey

et al. 2017

Lecture Notes in Computer Science

View full text Add to dashboard Cite

show abstract

“…Trau [1] reduces certain extended functions, such as replace, to context-free membership constraints. Ostrich [7] implements a decision procedure for a subset of constraints that include extended string functions. The simplification techniques presented in this paper are agnostic to the underlying solving procedure, so they can be combined with all of these approaches.…”

Section: -Extensions Of This Technique For Showing Containment Relatimentioning

confidence: 99%

High-Level Abstractions for Simplifying Extended String Constraints in SMT

Reynolds

Nötzli

Barrett

et al. 2019

Computer Aided Verification

View full text Add to dashboard Cite

Satisfiability Modulo Theories (SMT) solvers with support for the theory of strings have recently emerged as powerful tools for reasoning about string-manipulating programs. However, due to the complex semantics of extended string functions, it is challenging to develop scalable solvers for the string constraints produced by program analysis tools. We identify several classes of simplification techniques that are critical for the efficient processing of string constraints in SMT solvers. These techniques can reduce the size and complexity of input constraints by reasoning about arithmetic entailment, multisets, and string containment relationships over input terms. We provide experimental evidence that implementing them results in significant improvements over the performance of state-of-the-art SMT solvers for extended string constraints.

show abstract

“…We also conducted experiments to compare our procedure with SLOTH [16] and OSTRICH [12]. All the test cases use the 8bit extended ASCII alphabet.…”

Section: Q| |X| |δ|mentioning

confidence: 99%

“…Chen et al developed a framework that solves straight-line string constraints by computing pre-image of regular languages under transductions [12]. It supports constraints that satisfy two specific restrictions RegMonDec and RegInvRel.…”

Section: Related Workmentioning

confidence: 99%

“…Holík et al implemented the solver SLOTH based on their work and succinct representation of string constraints using alternating finite automata, and demonstrated that their solver handles constraints derived from PHP and JavaScript programs [16]. Later Chen et al implemented the solver OSTRICH that handles string constraints with specific conditions by computing pre-image of regular languages under transductions [12]. OSTRICH is faster and can support a wider class of transductions than SLOTH.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Solving String Constraints with Streaming String Transducers

Zhu

Akama

Minamide

2019

Journal of Information Processing

View full text Add to dashboard Cite

We present a procedure to solve the satisfiability problem of string constraints consisting of (i) string concatenation and rational transductions of string variables restricted to be in the "straight-line" fragment, (ii) regular constraints to string variables, and (iii) integer constraints involving the length of string variables. We represent each atomic string constraint by a streaming string transducer. By the sequential composition of streaming string transducers, we obtain a single streaming string transducer. The input straight-line constraint is satisfiable if and only if the domain of the composed streaming string transducer is not empty. In addition, by calculating the Parikh image of the composed streaming string transducers, we can represent the constraints among the length of string variables as a semi-linear set. Then the integer constraints together with the Parikh image can be solved by existing SMT solvers. We have implemented this procedure and performed experiments on several string constraints. Our implementation is slower than other solvers for general cases but performs better for some special cases.

show abstract

Decision procedures for path feasibility of string-manipulating programs with complex operations

Cited by 53 publications

References 53 publications

A Novel Approach to String Constraint Solving

A Novel Approach to String Constraint Solving

High-Level Abstractions for Simplifying Extended String Constraints in SMT

Solving String Constraints with Streaming String Transducers

Contact Info

Product

Resources

About