Z3 doesn't handle some #Not (#Exists ...) predicates #3447

ana-pantilie · 2023-01-18T10:48:21Z

High priority

Z3 is unable to refute predicates like:

#Not ( 
	#Exists ITER_COUNT_F:Int . 
		     { VV6__data_3c5818c8:Bytes [ 32 *Int ?ITER_COUNT_F:Int .. #sizeByteArray ( VV6__data_3c5818c8:Bytes ) -Int 32 *Int ?ITER_COUNT_F:Int ] #Equals VV6__data_3c5818c8:Bytes [ 32 *Int ITER_COUNT_F:Int .. #sizeByteArray ( VV6__data_3c5818c8:Bytes ) -Int 32 *Int ITER_COUNT_F:Int ] } 
		#And { true #Equals 0 <=Int ITER_COUNT_F:Int }
		#And { true #Equals 32 *Int ITER_COUNT_F:Int <Int #sizeByteArray ( VV6__data_3c5818c8:Bytes ) }
		#And { true #Equals #sizeByteArray ( VV6__data_3c5818c8:Bytes ) <=Int 32 *Int ITER_COUNT_F:Int +Int 32 }
		#And { true #Equals -9 <Int #sizeByteArray ( VV6__data_3c5818c8:Bytes ) } 
	)
...
#And { true #Equals 0 <=Int ?ITER_COUNT_F:Int }
#And { true #Equals 32 *Int ?ITER_COUNT_F:Int <Int #sizeByteArray ( VV6__data_3c5818c8:Bytes ) }
#And { true #Equals #sizeByteArray ( VV6__data_3c5818c8:Bytes ) <=Int 32 *Int ?ITER_COUNT_F:Int +Int 32 }
...

@PetarMax suggests a heuristic which looks for witnesses in the free variables of the predicate.

The text was updated successfully, but these errors were encountered:

ana-pantilie self-assigned this Jan 18, 2023

ana-pantilie linked a pull request Jan 23, 2023 that will close this issue

Implement heuristic to refute #Not (#Exists ...) #3455

Draft

4 tasks

ana-pantilie added the feature label Jan 25, 2023

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Z3 doesn't handle some #Not (#Exists ...) predicates #3447

Z3 doesn't handle some #Not (#Exists ...) predicates #3447

ana-pantilie commented Jan 18, 2023

Z3 doesn't handle some #Not (#Exists ...) predicates #3447

Z3 doesn't handle some #Not (#Exists ...) predicates #3447

Comments

ana-pantilie commented Jan 18, 2023