SMTChecker: Parse invariants from SMT-LIB response #15032
Conversation
blishko
force-pushed
the
smt-eld-invariants
branch
from
921240a
to
e2fb54d
Compare
libsmtutil/CHCSmtLib2Interface.cpp
Outdated
| }; | ||
|
|
||
|
|
||
| #define precondition(CONDITION) if(!(CONDITION)) return {} |
There was a problem hiding this comment.
Is there a better for to achieve this?
If I don't what to explicitly write 10 if checks like this
if (!<condition>)
return {};
Yet, I want to check these conditions, but only bail out on further processing, not throwing an exception.
It feels like there currently isn't a better way than a macro.
blishko
force-pushed
the
smt-eld-invariants
branch
2 times, most recently
from
b7b26b5
to
e98f8ed
Compare
libsmtutil/CHCSmtLib2Interface.cpp
Outdated
| CHCSmtLib2Interface const& m_chcInterface; | ||
| std::map<std::string, SortPointer> knownVariables; | ||
|
|
||
| bool isNumber(std::string const& _expr) |
There was a problem hiding this comment.
Is this supposed to handle only positive numbers?
There was a problem hiding this comment.
Good question. It turns out yes, because in SMT-LIB, unary minus is an operator, so negative number should be represented as (- <number>).
I'll try invariant with a negative number, to check this case.
libsmtutil/CHCSmtLib2Interface.cpp
Outdated
| else if (isNumber(_atom)) | ||
| return smtutil::Expression(_atom, {}, SortProvider::sintSort); | ||
| else if (knownVariables.find(_atom) != knownVariables.end()) | ||
| return smtutil::Expression(_atom, {}, knownVariables.at(_atom)); |
There was a problem hiding this comment.
| return smtutil::Expression(_atom, {}, knownVariables.at(_atom)); | |
| return smtutil::Expression(_atom, {}, knownVariables[_atom]); |
libsmtutil/CHCSmtLib2Interface.cpp
Outdated
| std::vector<std::pair<std::string, SortPointer>> boundVariables; | ||
| for (auto const& sortedVar: varList) | ||
| { | ||
| solAssert(!isAtom(sortedVar)); |
There was a problem hiding this comment.
Just curious - why do you sometimes use smtAssert(), and other times solAssert()?
There was a problem hiding this comment.
I don't know :)
I've changed everything to smtAssert.
| switch (_sort.kind) | ||
| if (!m_sortNames.count(_sort)) | ||
| m_sortNames[_sort] = toSmtLibSortInternal(_sort); | ||
| return m_sortNames.at(_sort); |
There was a problem hiding this comment.
| return m_sortNames.at(_sort); | |
| return m_sortNames.at[_sort]; |
There was a problem hiding this comment.
What is it about at that you don't like?
There was a problem hiding this comment.
at() throws an exception if the element is not present in the container, but you already check for that in the if above, so it's just unnecessary overhead.
There was a problem hiding this comment.
Well, for map operator [] default-initializes a new value and insert the new pair into the map, if the key was not present. So I think it has even more overhead than at.
There was a problem hiding this comment.
Sure, but not in this case, because you've already checked for the existence of the element. It's not a big deal regardless, so no need to make this change.
|
The failing tests have been fixed by the way, you just need to rebase. |
blishko
force-pushed
the
smt-eld-invariants
branch
2 times, most recently
from
4866974
to
5df3915
Compare
blishko
force-pushed
the
smt-eld-invariants
branch
from
5df3915
to
271bb4f
Compare
|
@nikola-matic , @pgebal , I fixed the code according to your suggestions, or at least commented on your comments :) |
@blishko the code looks good to me |
libsmtutil/CHCSmtLib2Interface.cpp
Outdated
| if (typeArgs.size() == 4 && typeArgs[0].toString() == "_") | ||
| { | ||
| if (typeArgs[1].toString() == "extract") | ||
| { | ||
| return smtutil::Expression( | ||
| "extract", | ||
| {toSMTUtilExpression(typeArgs[2]), toSMTUtilExpression(typeArgs[3])}, | ||
| SortProvider::bitVectorSort // TODO: Compute bit size properly? | ||
| ); | ||
| } | ||
| } |
There was a problem hiding this comment.
| if (typeArgs.size() == 4 && typeArgs[0].toString() == "_") | |
| { | |
| if (typeArgs[1].toString() == "extract") | |
| { | |
| return smtutil::Expression( | |
| "extract", | |
| {toSMTUtilExpression(typeArgs[2]), toSMTUtilExpression(typeArgs[3])}, | |
| SortProvider::bitVectorSort // TODO: Compute bit size properly? | |
| ); | |
| } | |
| } | |
| if (typeArgs.size() == 4 && typeArgs[0].toString() == "_" && typeArgs[1].toString() == "extract") | |
| return smtutil::Expression( | |
| "extract", | |
| {toSMTUtilExpression(typeArgs[2]), toSMTUtilExpression(typeArgs[3])}, | |
| SortProvider::bitVectorSort // TODO: Compute bit size properly? | |
| ); |
| @@ -223,3 +226,282 @@ std::string CHCSmtLib2Interface::createHeaderAndDeclarations() { | |||
| std::string CHCSmtLib2Interface::createQueryAssertion(std::string name) { | |||
| return "(assert\n(forall " + forall() + "\n" + "(=> " + name + " false)))"; | |||
| } | |||
|
|
|||
| class SMTLibTranslationContext | |||
There was a problem hiding this comment.
Uh, everything in the class has an extra indent by the way.
Parser code was originally written by @chriseth for solsmt, an SMT solver developed internally for Solidity
We add support for parsing CHC solver response containing a model, i.e., invariants. We utilise our SMT parser to build S-expression representation which we then interpret using the context we remembered while building the query. We have to rememeber all predicates declared to the solver, and, consequently, all sorts we have declared to the solver.
blishko
force-pushed
the
smt-eld-invariants
branch
from
271bb4f
to
048ce0b
Compare
This PR adds initial support for parsing invariants, computed by CHC solver, in SMT-LIB format.
This is done in a few separate steps (found in individual commits):
Expressionrepresentation of the invariants.Note: This is only initial support and will require more iterations as we add more tests.