Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

What are the limits of reasoning in quantified arithmetic in SMT?

Tags:

z3

smt

cvc4

I have tried several SMT solvers (CVC3, CVC4 and Z3) on the following seemingly trivial benchmark:

(set-logic LIA)
(set-info :smt-lib-version 2.0)
(assert (forall (( x Int)) (forall ((y Int)) (= y x))))
(check-sat)
(exit)

The solvers all return unknown. I understand that this is an undecidable fragment (well non-linear) but I was expecting there would be some simple instantiation heuristics that could solve it. I also tried adding some extra assertions with constants but it didn't help.

Is there a way to attack these problems and what are the limits of reasoning in quantified arithmetic in SMT?

like image 349
Liana Hadarean Avatar asked Feb 20 '13 19:02

Liana Hadarean

1 Answers

Pad is correct, the qe preprocessor can be quite expensive. Moreover, it is not effective in formulas coming from software verification tools such as VCC, Poirot, Dafny, VeriFast, Why3, and ESCJava2. It is not effective because the formulas produced by these applications also contain uninterpreted functions, arrays, etc.

As Pad's answer suggests, Z3 is a collection of engines. It provides APIs and commands that allow users to select which engine (or combination of engines) will be used to solve a problem. When the user just says (check-sat) is tries to guess what is the best engine for solving the input formula. The guess is based on the structure of input formula and annotations provided by the user (example: the set-logic command). We are continuously expanding the set of fragments that are automatically detected, and the set of engines we provide.

That being said, it is embarrassing that Z3 missed a fragment such as LIA and did not automatically applied the qe procedure to it. For LIA formulas, qe is usually the best option. Alternatives based on E-matching or MBQI are not effective since they are meant for completely different fragments.

I just committed code that detects LIA (even when set-logic is not used). The change is already available in the unstable (working-in-progress) branch. It will be available tomorrow in the nightly builds, and in the next official release.

like image 98
Leonardo de Moura Avatar answered Oct 25 '22 12:10

Leonardo de Moura
Sign in to Comment

Related questions

Building z3 on mac os x
Interpretation of Z3 Statistics
What is the reason behind the warning message in Z3: "failed to find a pattern for quantifier (quantifier id: k!18) "
Calling SMT solver from JavaScript
Understanding effects of produce-proofs, field names, and intermediate check-sat's on performance
Z3 Polarity using Z3 as SAT Solver
How to get a list of all available configuration settings for a Z3 context?
What is the relation between options `rlimit` and `timeout`?
z3: solve the Eight Queens puzzle
Z3 quantifier support
Read func interp of a z3 array from the z3 model
Z3: express linear algebra properties
Quantifiers and patterns (QBF formula)
Z3 and DIMACS output
printing internal solver formulas in z3
Z3: convert Z3py expression to SMT-LIB2?
Z3: Offering random solutions in solving
Python -- Optimize system of inequalities
Multi-threaded Z3?
a datatype contains a set in Z3

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!