ddsmt a delta debugger for the smt lib v2 format
play

ddSMT: A Delta Debugger for the SMT-LIB v2 Format Aina Niemetz and - PowerPoint PPT Presentation

Apr 14, 2023 •166 likes •595 views

ddSMT: A Delta Debugger for the SMT-LIB v2 Format Aina Niemetz and Armin Biere Institute for Formal Models and Verification (FMV) Johannes Kepler University, Linz, Austria http://fmv.jku.at/ SMT Workshop 2013 July 8 - 9, 2013 Helsinki,

  1. ddSMT: A Delta Debugger for the SMT-LIB v2 Format Aina Niemetz and Armin Biere Institute for Formal Models and Verification (FMV) Johannes Kepler University, Linz, Austria http://fmv.jku.at/ SMT Workshop 2013 July 8 - 9, 2013 Helsinki, Finland

  2. Motivation Why delta debugging? 1 ( s❡t✲❧♦❣✐❝ UFNIA) 2 ( ❞❡❝❧❛r❡✲s♦rt sort1 0) 3 ( ❞❡❝❧❛r❡✲❢✉♥ x () sort1) 4 ( ❞❡❝❧❛r❡✲❢✉♥ y () sort1) 5 ( ❛ss❡rt ( ❂ x y )) 6 ( ♣✉s❤ 1) 7 ( ❞❡❢✐♥❡✲s♦rt sort2 () Bool) 8 ( ❞❡❝❧❛r❡✲❢✉♥ x () sort2) 9 ( ❞❡❝❧❛r❡✲❢✉♥ y () sort2) 10 ( ❛ss❡rt ( ❛♥❞ ( ❛s x Bool) ( ❛s y Bool ))) 11 ( ❛ss❡rt (! (not ( ❛s x Bool )) :named z)) 12 ( ❛ss❡rt z) 13 ( ♣♦♣ 1) 14 ( ❛ss❡rt ( ❢♦r❛❧❧ ((z Int)) ( ❡①✐sts ((zz Int)) ( ❂ z zz )))) 15 ( ❝❤❡❝❦✲s❛t ) 16 ( ❣❡t✲✈❛❧✉❡ ((let ((x 1) (y 1)) ( ❂ x y)))) 17 ( ❡①✐t ) 1 ( s e t − l o g i c UFNIA) 2 ( get − value ( f a l s e )) 3 ( e x i t )

  3. Motivation Why delta debugging? 1 ( s❡t✲❧♦❣✐❝ UFNIA) 2 ( ❞❡❝❧❛r❡✲s♦rt sort1 0) 3 ( ❞❡❝❧❛r❡✲❢✉♥ x () sort1) 4 ( ❞❡❝❧❛r❡✲❢✉♥ y () sort1) 5 ( ❛ss❡rt ( ❂ x y )) 6 ( ♣✉s❤ 1) 7 ( ❞❡❢✐♥❡✲s♦rt sort2 () Bool) 8 ( ❞❡❝❧❛r❡✲❢✉♥ x () sort2) 9 ( ❞❡❝❧❛r❡✲❢✉♥ y () sort2) 10 ( ❛ss❡rt ( ❛♥❞ ( ❛s x Bool) ( ❛s y Bool ))) 11 ( ❛ss❡rt (! (not ( ❛s x Bool )) :named z)) 12 ( ❛ss❡rt z) 13 ( ♣♦♣ 1) 14 ( ❛ss❡rt ( ❢♦r❛❧❧ ((z Int)) ( ❡①✐sts ((zz Int)) ( ❂ z zz )))) 15 ( ❝❤❡❝❦✲s❛t ) 16 ( ❣❡t✲✈❛❧✉❡ ((let ((x 1) (y 1)) ( ❂ x y)))) 17 ( ❡①✐t ) 1 ( s e t − l o g i c UFNIA) 2 ( get − value ( f a l s e )) 3 ( e x i t )

  4. Motivation What delta debugging? 1 ( s❡t✲❧♦❣✐❝ UFNIA) 2 ( ❞❡❝❧❛r❡✲s♦rt sort1 0) 3 ( ❞❡❝❧❛r❡✲❢✉♥ x () sort1) 4 ( ❞❡❝❧❛r❡✲❢✉♥ y () sort1) 5 ( ❛ss❡rt ( ❂ x y )) 6 ( ♣✉s❤ 1) 7 ( ❞❡❢✐♥❡✲s♦rt sort2 () Bool) 8 ( ❞❡❝❧❛r❡✲❢✉♥ x () sort2) 9 ( ❞❡❝❧❛r❡✲❢✉♥ y () sort2) 10 ( ❛ss❡rt ( ❛♥❞ ( ❛s x Bool) ( ❛s y Bool ))) 11 ( ❛ss❡rt (! (not ( ❛s x Bool )) :named z)) 12 ( ❛ss❡rt z) 13 ( ♣♦♣ 1) 14 ( ❛ss❡rt ( ❢♦r❛❧❧ ((z Int)) ( ❡①✐sts ((zz Int)) ( ❂ z zz )))) 15 ( ❝❤❡❝❦✲s❛t ) 16 ( ❣❡t✲✈❛❧✉❡ ((let ((x 1) (y 1)) ( ❂ x y)))) 17 ( ❡①✐t ) 1 ( s❡t✲❧♦❣✐❝ UFNIA) 2 ( ❣❡t✲✈❛❧✉❡ (false )) 3 ( ❡①✐t )

  5. Motivation What delta debugging? 1 ( s❡t✲❧♦❣✐❝ UFNIA) 2 ( ❞❡❝❧❛r❡✲s♦rt sort1 0) 3 ( ❞❡❝❧❛r❡✲❢✉♥ x () sort1) 4 ( ❞❡❝❧❛r❡✲❢✉♥ y () sort1) 5 ( ❛ss❡rt ( ❂ x y )) 6 ( ♣✉s❤ 1) 7 ( ❞❡❢✐♥❡✲s♦rt sort2 () Bool) 8 ( ❞❡❝❧❛r❡✲❢✉♥ x () sort2) 9 ( ❞❡❝❧❛r❡✲❢✉♥ y () sort2) 10 ( ❛ss❡rt ( ❛♥❞ ( ❛s x Bool) ( ❛s y Bool ))) 11 ( ❛ss❡rt (! (not ( ❛s x Bool )) :named z)) 12 ( ❛ss❡rt z) 13 ( ♣♦♣ 1) 14 ( ❛ss❡rt ( ❢♦r❛❧❧ ((z Int)) ( ❡①✐sts ((zz Int)) ( ❂ z zz )))) 15 ( ❝❤❡❝❦✲s❛t ) 16 ( ❣❡t✲✈❛❧✉❡ ((let ((x 1) (y 1)) ( ❂ x y)))) 17 ( ❡①✐t ) → easier to debug − 1 ( s❡t✲❧♦❣✐❝ UFNIA) 2 ( ❣❡t✲✈❛❧✉❡ (false )) → in a time efficient manner − 3 ( ❡①✐t )

  6. Preliminaries What is Delta Debugging? Delta Debugging = input minimization → originally introduced by R. Hildebrandt and A. Zeller in [HZ00] − → related work: shrinking in QuickCheck [CH00] − Basic Idea : Given executable Ex , failure-inducing input I : • Minimize (simplify) I − → I simp • I simp still triggers the original faulty behavior Original minimization strategy: • divide-and-conquer (binary) • remove parts irrelevant to the original faulty behavior → highly customizable, wide range of applications −

  7. Preliminaries Related Work deltaSMT • introduced by our group in [BB09] • tailored to the SMT-LIB v1 format • does not support quantifiers • implements hierarchical delta debugging strategy • nodes are substituted one-by-one in a breadth-first-search (BFS) manner by simpler nodes or their children − → bottleneck in the worst case − → cases, where deltaSMT struggled or unable to minimize input deltaSMT2 • recent and independent update of deltaSMT for SMT-LIB v2 • by P. F. Dobal and P. Fontaine at INRIA • syntactically extends deltaSMT for SMT-LIB v2 compliance • no full support for SMT-LIB v2 • still work-in-progress

  8. Preliminaries Related Work deltaSMT • introduced by our group in [BB09] • tailored to the SMT-LIB v1 format • does not support quantifiers • implements hierarchical delta debugging strategy • nodes are substituted one-by-one in a breadth-first-search (BFS) manner by simpler nodes or their children − → bottleneck in the worst case − → cases, where deltaSMT struggled or unable to minimize input deltaSMT2 • recent and independent update of deltaSMT for SMT-LIB v2 • by P. F. Dobal and P. Fontaine at INRIA • syntactically extends deltaSMT for SMT-LIB v2 compliance • no full support for SMT-LIB v2 • still work-in-progress

  9. ddSMT Overview ddSMT • input minimizer for the SMT-LIB v2 format • based on the exit code of a given executable • supports all SMT-LIB v2 logics • not based on deltaSMT • implements divide-and-conquer delta debugging strategy • employs simplification strategies for ◦ macros (command define-fun ) ◦ command-level scopes (commands push and pop ) ◦ named annotations (attribute :named ) • especially effective in combination with fuzz testing Technical Side Notes • implemented in Python 3 • provides a dedicated, modular, standalone SMT-LIB v2 parser

  10. ddSMT General Workflow Command-Level Command Scope Substitution Substitution Term Substitution Bit Vector Boolean Constant 0 Fresh Variables Constant false (or false term ) (bvor ( bv0 1) term ) (bvand ( bv1 1) term ) Constant true (and true term ) Fresh Variables Integer Constant 0 Fresh Variables store Real ite (left child) ite (right child) Constant 0 Fresh Variables let

  11. ddSMT General Workflow Command-Level Command Scope Substitution Substitution Term Substitution Bit Vector Boolean Constant 0 Fresh Variables Constant false (or false term ) (bvor ( bv0 1) term ) (bvand ( bv1 1) term ) Constant true (and true term ) Fresh Variables Integer Constant 0 Fresh Variables store Real ite (left child) ite (right child) Constant 0 Fresh Variables let

  12. ddSMT General Workflow Command-Level Command Scope Substitution Substitution Term Substitution Bit Vector Boolean Constant 0 Fresh Variables Constant false (or false term ) (bvor ( bv0 1) term ) (bvand ( bv1 1) term ) Constant true (and true term ) Fresh Variables Integer Constant 0 Fresh Variables store Real ite (left child) ite (right child) Constant 0 Constant 0 Fresh Variables let

  13. ddSMT General Workflow Command-Level Command Scope Substitution Substitution Term Substitution Bit Vector Boolean Constant 0 Fresh Variables Constant false (or false term ) (bvor ( bv0 1) term ) (bvand ( bv1 1) term ) Constant true (and true term ) for each set of define-fun, Fresh Variables Integer assert and get-value commands Constant 0 Fresh Variables store Real ite (left child) ite (right child) Constant 0 Fresh Variables let

  14. ddSMT General Workflow Command-Level Command Scope Substitution Substitution Term Substitution Bit Vector Boolean Constant 0 Fresh Variables Constant false (or false term ) (bvor ( bv0 1) term ) (bvand ( bv1 1) term ) Constant true (and true term ) Fresh Variables Integer Constant 0 Fresh Variables store Real ite (left child) ite (right child) Constant 0 Fresh Variables let

  15. ddSMT General Workflow Command-Level Command Scope Substitution Substitution Term Substitution Bit Vector Boolean Constant 0 Fresh Variables Constant false (or false term ) (bvor ( bv0 1) term ) (bvand ( bv1 1) term ) Constant true (and true term ) Fresh Variables Integer Constant 0 Fresh Variables store Real ite (left child) ite (right child) Constant 0 Fresh Variables let

  16. ddSMT General Workflow Command-Level Command Scope Substitution Substitution Term Substitution Bit Vector Boolean Constant 0 Fresh Variables Constant false (or false term ) (bvor ( bv0 1) term ) (bvand ( bv1 1) term ) Constant true (and true term ) Fresh Variables Integer Constant 0 Fresh Variables store Real ite (left child) ite (right child) Constant 0 Fresh Variables let

  17. ddSMT General Workflow Command-Level Command Scope Substitution Substitution Term Substitution Bit Vector Boolean Constant 0 Fresh Variables Constant false (or false term ) (bvor ( bv0 1) term ) (bvand ( bv1 1) term ) Constant true (and true term ) Fresh Variables Integer Constant 0 Fresh Variables store Real ite (left child) ite (right child) Constant 0 Fresh Variables let

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Gdb debugger Somewhat limited as a debugger, but works in a command line environment (so

Gdb debugger Somewhat limited as a debugger, but works in a command line environment (so

Gdb debugger Somewhat limited as a debugger, but works in a command line environment (so compatible with other stuff this term) Works for C/C++ programs Supports most core debugger features, well examine a few of the most common

261 views • 9 slides
www.frida.re @fridadotre Debugger Debuggee Debugger Debuggee bootstrapper Debugger Debuggee

www.frida.re @fridadotre Debugger Debuggee Debugger Debuggee bootstrapper Debugger Debuggee

Unlocking secrets of proprietary software using www.frida.re @fridadotre Debugger Debuggee Debugger Debuggee bootstrapper Debugger Debuggee bootstrapper-thread bootstrapper Debugger Debuggee bootstrapper-thread bootstrapper

769 views • 35 slides
How to design a Baseband debugger SSTIC 2020 June the 3rd Synacktiv David Berard, Vincent

How to design a Baseband debugger SSTIC 2020 June the 3rd Synacktiv David Berard, Vincent

How to design a Baseband debugger SSTIC 2020 June the 3rd Synacktiv David Berard, Vincent Fargues Table of Contents 1 Introduction Shannon architecture 2 Debugger injection Conclusion 3 6 Debugger development 4 Examples of use 5

807 views • 79 slides
Sacramento Countys Policies and Response To The Delta Vision and Bay-Delta Conservation Plan

Sacramento Countys Policies and Response To The Delta Vision and Bay-Delta Conservation Plan

Sacramento Countys Policies and Response To The Delta Vision and Bay-Delta Conservation Plan Agenda What is Delta Vision and BDCP? Background, Setting, and Problem Summary Delta History for Context Delta Vision Delta

1.02k views • 72 slides
WEL ELCOME E to De Delta Desc scaling SOLUTIONS Before Delta T Descaling After Delta T

WEL ELCOME E to De Delta Desc scaling SOLUTIONS Before Delta T Descaling After Delta T

WEL ELCOME E to De Delta Desc scaling SOLUTIONS Before Delta T Descaling After Delta T Descaling SAFE Enough to Hold in Your Hand With over sixty years of experience in restoring critical heat transfer efficiencies worldwide

392 views • 12 slides
Visual Debugger for Jupyter Notebooks: Myth or Reality? Elizaveta Shashkova EuroPython 2019

Visual Debugger for Jupyter Notebooks: Myth or Reality? Elizaveta Shashkova EuroPython 2019

Visual Debugger for Jupyter Notebooks: Myth or Reality? Elizaveta Shashkova EuroPython 2019 About Me Software Developer at JetBrains, PyCharm IDE Debugger and Data Science tools @lisa_shashkova 2 Visual Debugger 3

892 views • 68 slides
DELTA Microelectronics Microchip for every industry Make more with less DELTA / ASIC

DELTA Microelectronics Microchip for every industry Make more with less DELTA / ASIC

DELTA Microelectronics Microchip for every industry Make more with less DELTA / ASIC DELTA Microelectronics Agenda DELTA Microelectronics and IoT IoT elements: Focus on Sensors Choice for Wireless Bridge for Sensor Capture IoT is

298 views • 25 slides
The Time Has Come: Linux Graphics Debugger Matt Campbell, Senior Engineer, Graphics Developer

The Time Has Come: Linux Graphics Debugger Matt Campbell, Senior Engineer, Graphics Developer

The Time Has Come: Linux Graphics Debugger Matt Campbell, Senior Engineer, Graphics Developer Tools GAMEWORKS Overview Linux Graphics Debugger Features Agenda Debugging UE4 on Linux Graphics Debugger Thanks to our friends at 2 NVIDIA

598 views • 28 slides
CS 240 Programming in C GNU Debugger (gdb) October 16, 2019 Haoyu Wang UMass Boston CS 240

CS 240 Programming in C GNU Debugger (gdb) October 16, 2019 Haoyu Wang UMass Boston CS 240

CS 240 Programming in C GNU Debugger (gdb) October 16, 2019 Haoyu Wang UMass Boston CS 240 October 16, 2019 1 / 11 GNU Debugger (gdb) A debugger is a program that simulates/runs another program which can help you find where goes wrong of

127 views • 11 slides
Phi Gamma Delta University of Tampa Phi Gamma Delta Delta Colony at UT 164 universities

Phi Gamma Delta University of Tampa Phi Gamma Delta Delta Colony at UT 164 universities

Phi Gamma Delta University of Tampa Phi Gamma Delta Delta Colony at UT 164 universities across North Established Fall 2017 America 46 Brothers Founded in 1848 Brothers from 8 states Over 120,000 living Brothers

320 views • 15 slides
COMPANY BRIEF INTRODUCTION DELTA GROUP CURRENT REFERENCES SAUDI ARABIA / Delta Turkish

COMPANY BRIEF INTRODUCTION DELTA GROUP CURRENT REFERENCES SAUDI ARABIA / Delta Turkish

COMPANY BRIEF INTRODUCTION DELTA GROUP CURRENT REFERENCES SAUDI ARABIA / Delta Turkish Contracting Co. KAZAKHISTAN / Delta Telecom KZ IRAN / Delta Ertebatat IRANIAN AZERBAIJAN / Berke LLC / BES Telekom GEORGIA / Bronz Telecom

293 views • 15 slides
Analyzing with P Analyzing with P Delta y y g g Delta Presenter: Presenter: Deborah

Analyzing with P Analyzing with P Delta y y g g Delta Presenter: Presenter: Deborah

Analyzing with P Analyzing with P Delta y y g g Delta Presenter: Presenter: Deborah Penko, P.E. Deborah Penko, P.E. What? What? Wh ? Why? When? How? P Delta? Delta? Definition : Destabilizing moment equal to the force of gravity

917 views • 14 slides
Lectur Lecture 18: e 18: Electr Electrical Distr ical Distribution ibution Exam Example:

Lectur Lecture 18: e 18: Electr Electrical Distr ical Distribution ibution Exam Example:

Lectur Lecture 18: e 18: Electr Electrical Distr ical Distribution ibution Exam Example: Delta- ple: Delta-Delta Cir Delta Circuit cuit A delta-connected three-phase transformer supplies power to a delta-connected resistive load. The

326 views • 29 slides
1 Host/Target A Big Problem with Debuggers gdb can be used to debug a program on a

1 Host/Target A Big Problem with Debuggers gdb can be used to debug a program on a

Debuggers A very real interactive debugger: gdb Widely used Debugging Runs on everything A classic implementation (with and without Debuggers) Mostly standard debugger technology Design decisions Runs and

274 views • 8 slides
Status of Delta-DOR interoperability Bordeaux Apr 15 th , 2012 Mattia Mercolino E SA/ E SOC

Status of Delta-DOR interoperability Bordeaux Apr 15 th , 2012 Mattia Mercolino E SA/ E SOC

Status of Delta-DOR interoperability Bordeaux Apr 15 th , 2012 Mattia Mercolino E SA/ E SOC Summary Validation of ESA enhanced Wideband DOR Validation of RDEF format Validation of low SNR development Ka-band Quasar

459 views • 13 slides
Debugger Usage at HRSK 2009-03-19 Zellescher Weg 12 Willers-Bau A106 Tel. +49 351 - 463 - 31945

Debugger Usage at HRSK 2009-03-19 Zellescher Weg 12 Willers-Bau A106 Tel. +49 351 - 463 - 31945

Center for Information Services and High Performance Computing (ZIH) Debugger Usage at HRSK 2009-03-19 Zellescher Weg 12 Willers-Bau A106 Tel. +49 351 - 463 - 31945 Matthias Lieber (Matthias.Lieber@tu-dresden.de) Why using a Debugger? Your

759 views • 47 slides
RF Exposure Procedures TCB Workshop April 2018 Laboratory Division Office of Engineering and

RF Exposure Procedures TCB Workshop April 2018 Laboratory Division Office of Engineering and

RF Exposure Procedures TCB Workshop April 2018 Laboratory Division Office of Engineering and Technology Federal Communications Commission Overview LTE DL CA SAR Test Exclusion Update WiGig/60 GHz RF Exposure Evaluation Update Other Updates

417 views • 20 slides
Planar Delaunay Triangulations and Proximity Structures Proximity Structures Given: a set P of n

Planar Delaunay Triangulations and Proximity Structures Proximity Structures Given: a set P of n

Wolfgang Mulzer Institut f r Informatik Planar Delaunay Triangulations and Proximity Structures Proximity Structures Given: a set P of n points in the plane proximity structure : a structure that encodes useful information about the local

802 views • 57 slides
First-Order Logic (FOL) Sven Koenig, USC Russell and Norvig, 3 rd Edition, Chapter 8 and Section

First-Order Logic (FOL) Sven Koenig, USC Russell and Norvig, 3 rd Edition, Chapter 8 and Section

12/18/2019 First-Order Logic (FOL) Sven Koenig, USC Russell and Norvig, 3 rd Edition, Chapter 8 and Section 9.5 These slides are new and can contain mistakes and typos. Please report them to Sven (skoenig@usc.edu). 1 Propositional Logic

587 views • 14 slides
Set operations and facts about sets Slides to accompany Sections 1.(4 & 5) of Discrete

Set operations and facts about sets Slides to accompany Sections 1.(4 & 5) of Discrete

Set operations and facts about sets Slides to accompany Sections 1.(4 & 5) of Discrete Mathematics and Functional Programming Thomas VanDrunen Operations from arithmetic These operations on numbers produce new numbers. Grammatically, they

533 views • 17 slides
Detecting Task Phases from Power Traces Joseph Granados, Jake Probst , Nick Armour, Jeffrey

Detecting Task Phases from Power Traces Joseph Granados, Jake Probst , Nick Armour, Jeffrey

Detecting Task Phases from Power Traces Joseph Granados, Jake Probst , Nick Armour, Jeffrey Bahns, Suzanne Rivoire Sonoma State University Chung-Hsing Hsu Oak Ridge National Laboratory Workshop on Performance Modeling, Benchmarking, and

763 views • 22 slides
Mass.gov: A Guide to Data-Informed Content Optimization Nathan James and Julia Gutierrez

Mass.gov: A Guide to Data-Informed Content Optimization Nathan James and Julia Gutierrez

Mass.gov: A Guide to Data-Informed Content Optimization Nathan James and Julia Gutierrez @mediacurrent @MassGovDigital Todays Team Nathan James Julia Gutierrez Associate Director, Engagement Development Manager @tnathanjames

379 views • 36 slides
Complementarity-based Dynamic Simulation for Kinodynamic Motion Planning Nilanjan Chakraborty

Complementarity-based Dynamic Simulation for Kinodynamic Motion Planning Nilanjan Chakraborty

Complementarity-based Dynamic Simulation for Kinodynamic Motion Planning Nilanjan Chakraborty Robotics Institute, CMU Srinivas Akella Computer Science, UNC Charlotte Jeff Trinkle Computer Science, RPI Kinodynamic Motion Planning

387 views • 23 slides
FabScalar RISC-V Rangeen Basu Roy Chowdhury Anil Kumar Kannepalli Eric Rotenberg FabScalar

FabScalar RISC-V Rangeen Basu Roy Chowdhury Anil Kumar Kannepalli Eric Rotenberg FabScalar

FabScalar RISC-V Rangeen Basu Roy Chowdhury Anil Kumar Kannepalli Eric Rotenberg FabScalar Generates synthesizable RTL (Verilog) for arbitrary superscalar cores within a canonical superscalar template Vision o Accelerate development of

254 views • 24 slides

More recommend