1 / 33

Formal verification: Property checking

Property checking. Formal verification: Property checking. Property checking. If designs to be verified are sequential and the correspondence of states is not known then equivalence checking not an option

dreeder
Download Presentation

Formal verification: Property checking

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Property checking Formal verification: Property checking Digitaalsüsteemide verifitseerimise kursus

  2. Property checking • If designs to be verified are sequential and the correspondence of states is not known then equivalence checking not an option • Property checking traverses the full search space (bounded or unbounded) to check if a property holds in the design. • Property checking needed if incomplete or abstract specifications verified Digitaalsüsteemide verifitseerimise kursus

  3. Types of properties • safety property states that an undesired property should not hold • liveness property states that a necessary property should hold • fairness property states that some states are traversed repeatedly Digitaalsüsteemide verifitseerimise kursus

  4. Properties as an automaton Communication between TLC and property automaton with properties: • North-South traffic has a different light than East-West traffic. • Traffic light follows the sequence R,G,Y,R,G,Y.... Digitaalsüsteemide verifitseerimise kursus

  5. Properties as an automaton Digitaalsüsteemide verifitseerimise kursus

  6. Temporalstructure & computation trees • In general, using property automata is inconvenient • Therefore other approaches applied: temporal logic, computation trees … Digitaalsüsteemide verifitseerimise kursus

  7. Temporalstructure & computation trees • State graph and state sequence Digitaalsüsteemide verifitseerimise kursus

  8. Temporalstructure & computation trees • State transitions tree Digitaalsüsteemide verifitseerimise kursus

  9. Kripke structures: computational tree Digitaalsüsteemide verifitseerimise kursus

  10. Temporal-logic • Consider 3 logics: • LTL (linear temporal logic), • CTL (computation tree logic) and • CTL* • LTL assumes linear time model, while CTL assumes branch time model • Two types of formulae in temporal logic: state and path formulae Digitaalsüsteemide verifitseerimise kursus

  11. Temporal-logic: LTL • LTL considers a single path • 2 temporaloperations: X(neXt) and U(Until) • LTL formulae: • EveryBoolean variable is an LTL formula • If f and g are LTL formulae, then ~f and f+g are LTL formulae • If f and g are LTL formulae, then fUg and Xg are LTL formulae Digitaalsüsteemide verifitseerimise kursus

  12. Temporal-logic: LTL • More complex functions can be derived: • Fg = TRUE U g, i.e. g will eventually become true • Gf = ~(F~f), i.e. f is always (globally) true • fRg = ~(~f U ~g), i.e. f must be false until g becomes true (Release operation) Digitaalsüsteemide verifitseerimise kursus

  13. Temporal-logic: LTL Digitaalsüsteemide verifitseerimise kursus

  14. Temporal-logic: CTL • CTL includes 8 operators: AX,EX,AG,EG,AF,EF,AU ja EU • In fact can be represented by three: EX,EG and EU AXf = ~EX(~f) AF(f) = ~EG(~f) AG(f) = ~EF(~f) EF(f) = E( TRUE U f) A(fUg) = (~E(~gU(~f)(~g)))(~EG(~g)) Digitaalsüsteemide verifitseerimise kursus

  15. Temporal-logic: CTL • Operation AX(f): Digitaalsüsteemide verifitseerimise kursus

  16. Temporal-logic: CTL • Operation EX(f): Digitaalsüsteemide verifitseerimise kursus

  17. Temporal-logic: CTL • Operation AG(f): Digitaalsüsteemide verifitseerimise kursus

  18. Temporal-logic: CTL • Operation EG(f): Digitaalsüsteemide verifitseerimise kursus

  19. Temporal-logic: CTL • Operation AF(f): Digitaalsüsteemide verifitseerimise kursus

  20. Temporal-logic: CTL • Operation EF(f): Digitaalsüsteemide verifitseerimise kursus

  21. Temporal-logic: CTL • Operation A(fUg): Digitaalsüsteemide verifitseerimise kursus

  22. Temporal-logic: CTL • Operation E(fUg): Digitaalsüsteemide verifitseerimise kursus

  23. Temporal-logic: System Verilog Assertions • System Verilog Assertions and PSL also temporal languages! Digitaalsüsteemide verifitseerimise kursus

  24. Property checking in automata • Describe property as automaton, such that some states represent success or failure of property • Compose design automaton with property automaton • Property succeeds only iff no failure composite state is reachable Digitaalsüsteemide verifitseerimise kursus

  25. Property checking in automata: throwing dice • A and B throw dice. When A gets more points, then • A’s score incremented by 1, if the score is not 2. If score is 2, then it becomes 0 again. • B’s score skoor is decremented by 1, if score not 0. • If B gets more points, then the same applies but A and B interchanged. • If A, B get equal points then score unchanged. Digitaalsüsteemide verifitseerimise kursus

  26. Property checking in automata: throwing dice • Check two properties: • Can we have a draw1:1? • Can we have a draw 2:2? Digitaalsüsteemide verifitseerimise kursus

  27. Property checking in automata: throwing dice Digitaalsüsteemide verifitseerimise kursus

  28. Property checking in automata: throwing dice Digitaalsüsteemide verifitseerimise kursus

  29. Symbolic computation and model-checking • Graph based algorithms described above operated with automata and Kripke structures • Not applicable to large designs. A circuit with 100 flipflops has 2100 states... • In Symbolic computation we don’t enumerate states but convert state traversal to Boolean functions • We can verify larger designs Digitaalsüsteemide verifitseerimise kursus

  30. Symbolic computation and model-checking • Forward traversal of states: Digitaalsüsteemide verifitseerimise kursus

  31. Generating counter-examples • Forward traversal until faulty state reached • Backward traversal from the faulty state using symbolic computation • During backward traversal we limit the state image with the ones obtained during forward traversal • This is needed to reach the initial state! Digitaalsüsteemide verifitseerimise kursus

  32. Generating counter-examples Digitaalsüsteemide verifitseerimise kursus

  33. Equivalence of Sequential Circuits • How to perform sequential equivalence checking without one to one mapping in states? • Have to check whether the output state 1 of the combined miter circuit is reachable Digitaalsüsteemide verifitseerimise kursus

More Related