formal verification of labview diagrams
play

Formal Verification of LabVIEW Diagrams Mark Reitblatt Dept. of - PowerPoint PPT Presentation

Dec 21, 2022 •317 likes •1.17k views

Formal Verification of LabVIEW Diagrams Mark Reitblatt Dept. of Computer Sciences, University of Texas National Instruments, Inc. Monday, April 27, 2009 1 Outline LabVIEW Overview ACL2 Overview Overview of approach Walk

  1. Formal Verification of LabVIEW Diagrams Mark Reitblatt Dept. of Computer Sciences, University of Texas National Instruments, Inc. Monday, April 27, 2009 1

  2. Outline • LabVIEW Overview • ACL2 Overview • Overview of approach • Walk through example verification • Conclusion Monday, April 27, 2009 2

  3. Project History • Jeff Kodosky started playing around in 2004 with the idea of verifying a LabVIEW program • Warren Hunt and J Moore met on occasion with Jeff and Jacob Kornerup over a couple of years, culminating with NI engaging Grant as an intern in 2005 • Summer 2007: Alternate approach developed with Matt Kaufmann models LabVIEW programs, including loop structures, directly as ACL2 functions. At the end of the summer Grant Passmore left for Edinburgh and transferred his work to the author • Current: Matt continued contracting, approach has been fully automated, expanded and used to verify a dozen examples Monday, April 27, 2009 3

  4. Credit • To reiterate Monday, April 27, 2009 4

  5. Credit • To reiterate • Joint work with Matt Kaufmann Monday, April 27, 2009 4

  6. Credit • To reiterate • Joint work with Matt Kaufmann • Building off work with Matt and Grant Monday, April 27, 2009 4

  7. Credit • To reiterate • Joint work with Matt Kaufmann • Building off work with Matt and Grant • Project fully funded by National Instruments, Inc. Monday, April 27, 2009 4

  8. LabVIEW (in brief) • Graphical dataflow language (G) with control structures • Shift register memory elements • Separate Front (user interface) and Back (implementation) panels Monday, April 27, 2009 5

  9. LabVIEW For-Loops Monday, April 27, 2009 6

  10. LabVIEW For-Loops loop bound Monday, April 27, 2009 6

  11. LabVIEW For-Loops loop bound Monday, April 27, 2009 6

  12. LabVIEW For-Loops loop bound constant Monday, April 27, 2009 6

  13. LabVIEW For-Loops loop bound constant Monday, April 27, 2009 6

  14. LabVIEW For-Loops loop bound shift registers constant Monday, April 27, 2009 6

  15. LabVIEW For-Loops loop bound shift registers constant Monday, April 27, 2009 6

  16. LabVIEW For-Loops loop bound shift registers constant Monday, April 27, 2009 6

  17. LabVIEW For-Loops loop bound shift registers constant loop counter Monday, April 27, 2009 6

  18. LabVIEW For-Loops loop bound shift registers constant loop counter Monday, April 27, 2009 6

  19. ACL2 • Programming Language • Formal Logic • Automated Theorem Prover Monday, April 27, 2009 7

  20. ACL2 The Language • Subset of Lisp • Total • S-Expressions • All functions • Untyped defined on all • First Order inputs • I.E. everything • Applicative terminates • Purely functional Monday, April 27, 2009 8

  21. ACL2 Syntax • S-Expressions • Primary syntax is () • Prefix notation • (f x) instead of f(x) • Predicates end in a -p by convention • Use defun to define a function Monday, April 27, 2009 9

  22. ACL2 (cont.) (defun fib (i) (if (or (zp i) (= i 1)) 1 (+ (fib (- i 1)) (fib (- i 2))))) • (zp x) returns false if x is a natural number and x > 0 • Note that zp recognizes all non-integers Monday, April 27, 2009 10

  23. ACL2 The Logic • Definitional Principle Monday, April 27, 2009 11

  24. ACL2 The Logic • Definitional Principle • Use defthm to name, define and prove a new theorem Monday, April 27, 2009 11

  25. ACL2 The Logic • Definitional Principle • Use defthm to name, define and prove a new theorem • Theorems are stored as rules (usually rewrite) Monday, April 27, 2009 11

  26. ACL2 The Logic (cont.) (defthm fib-is-bigger-than-n (implies (integerp n) (>= (fib n) n))) • integerp recognizes integers • fib is defined on every ACL2 object • But fib(n) >= n is not true for all objs. Monday, April 27, 2009 12

  27. ACL2 The Theorem Prover • ACL2 proves theorems with existing theorems and function definitions • User guides the process with hints and theory control • A theory is a list of enabled rules and definitions Monday, April 27, 2009 13

  28. ACL2 The Thm. Prover ACL2 !>(defthm fib-is-bigger-than-n (implies (integerp n) When applied to the goal at hand the above induction (>= (fib n) n))) scheme produces five nontautological subgoals. ([ A key checkpoint: *1 is COMPLETED! Goal' Thus key checkpoint Goal' is COMPLETED! (IMPLIES (INTEGERP N) (<= N (FIB N))) Q.E.D. *1 (Goal') is pushed for proof by induction. Summary ]) Form: ( DEFTHM FIB-IS-BIGGER-THAN-N ...) Rules: ((:COMPOUND-RECOGNIZER ZP-COMPOUND-RECOGNIZER) Perhaps we can prove *1 by induction. One induction (:DEFINITION =) scheme is suggested (:DEFINITION FIB) by this conjecture. (:DEFINITION NOT) (:EXECUTABLE-COUNTERPART <) We will induct according to a scheme suggested by (FIB (:EXECUTABLE-COUNTERPART FIB) N). This suggestion (:EXECUTABLE-COUNTERPART INTEGERP) was produced using the :induction rule FIB. If we let (:EXECUTABLE-COUNTERPART NOT) (:P N) denote (:FAKE-RUNE-FOR-LINEAR NIL) *1 above then the induction scheme we'll use is (:FAKE-RUNE-FOR-TYPE-SET NIL) (AND (IMPLIES (AND (NOT (OR (ZP N) (= N 1))) (:INDUCTION FIB) (:P (+ -1 N)) (:TYPE-PRESCRIPTION FIB)) (:P (+ -2 N))) Warnings: None (:P N)) Time: 0.01 seconds (prove: 0.00, print: 0.00, other: (IMPLIES (OR (ZP N) (= N 1)) (:P N))). 0.00) This induction is justified by the same argument used FIB-IS-BIGGER-THAN-N to admit FIB. Monday, April 27, 2009 14

  29. Formal Verification • Application of formal methods for correctness proofs of SW/HW • Uses formal specifications of behavior • Utilizes theorem provers and decision procedures to complete proofs Monday, April 27, 2009 15

  30. Problem at Hand • We desire to verify LabVIEW/G diagrams • LabVIEW/G lacks an assertion primitive • LabVIEW/G lacks a formal semantics Monday, April 27, 2009 16

  31. Solution • Add assertion block to LabVIEW/G Monday, April 27, 2009 17

  32. Solution • Add assertion block to LabVIEW/G • Construct semantics for LabVIEW/G in ACL2 Monday, April 27, 2009 17

  33. Solution • Add assertion block to LabVIEW/G • Construct semantics for LabVIEW/G in ACL2 • Convert assertions into ACL2 proof obligations Monday, April 27, 2009 17

  34. Solution • Add assertion block to LabVIEW/G • Construct semantics for LabVIEW/G in ACL2 • Convert assertions into ACL2 proof obligations • Use LabVIEW semantics for semantics of assertions Monday, April 27, 2009 17

  35. Our Approach • “assertion” blocks are written in LabVIEW/G • This allows simulation, validation Monday, April 27, 2009 18

  36. Translation Diagram GCompiler Translator ACL2 Written in LabVIEW/G Written in ACL2 Monday, April 27, 2009 19

  37. Our Approach (cont.) Monday, April 27, 2009 20

  38. Our Approach (cont.) • Translate LabVIEW/G diagrams into ACL2 functions (shallow embedding) Monday, April 27, 2009 20

  39. Our Approach (cont.) • Translate LabVIEW/G diagrams into ACL2 functions (shallow embedding) • 1-1 correspondence between function nodes,wires and ACL2 functions Monday, April 27, 2009 20

  40. Naming Monday, April 27, 2009 21

  41. Naming • LabVIEW/G doesn’t allow naming of (most) nodes Monday, April 27, 2009 21

  42. Naming • LabVIEW/G doesn’t allow naming of (most) nodes • Human readability is essential to understanding proofs Monday, April 27, 2009 21

  43. Naming • LabVIEW/G doesn’t allow naming of (most) nodes • Human readability is essential to understanding proofs • Auto-naming of nodes based on type Monday, April 27, 2009 21

  44. Naming (cont.) • Fn nodes are named as fntype-number Monday, April 27, 2009 22

  45. Naming (cont.) • Fn nodes are named as fntype-number • ADD-1 Monday, April 27, 2009 22

  46. Naming (cont.) • Fn nodes are named as fntype-number • ADD-1 • Constant nodes are named by value Monday, April 27, 2009 22

  47. Naming (cont.) • Fn nodes are named as fntype-number • ADD-1 • Constant nodes are named by value • CONSTANT[0]-2 Monday, April 27, 2009 22

  48. Naming (cont.) • Fn nodes are named as fntype-number • ADD-1 • Constant nodes are named by value • CONSTANT[0]-2 • Third instance of the constant ‘0’ Monday, April 27, 2009 22

  49. Naming (cont.) • Wires are named a little differently • Because it’s dataflow, each wire retrieves one terminal from one node • Wire named after its source CONSTANT[0]-2<_T_0> Monday, April 27, 2009 23

  50. Naming (cont.) • Diagram inputs are named by label • Diagram structures are also named by label • Function terminals are named by LabVIEW term-name field • Output terminal of assertion diagrams is named :ASN Monday, April 27, 2009 24

  51. ACL2 Model • Nodes have input and output terminals (wire ports) • Each node takes a record (IN) as input • Returns output record • Wires extract values from records Monday, April 27, 2009 25

  52. Translation (DEFUN-N CONSTANT[0]-0 (IN) (S* :|_T_0| 0)) (DEFUN-W CONSTANT[0]-0<_T_0> (IN) (G :|_T_0| (CONSTANT[0]-0 IN))) (DEFUN-N INCREMENT-0 (IN) (S* :X+1 (1+ (CONSTANT[0]-0<_T_0> IN)))) Monday, April 27, 2009 26

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

LabVIEW Hands-On Seminar An Introductory Look at Graphical Development ni.com Agenda

LabVIEW Hands-On Seminar An Introductory Look at Graphical Development ni.com Agenda

LabVIEW Hands-On Seminar An Introductory Look at Graphical Development ni.com Agenda Overview Data acquisition with LabVIEW Instrumentation with LabVIEW The LabVIEW platform LabVIEW beyond the seminar Appendix topics

795 views • 50 slides
Model-Checking Acknowledgment Formal Verification Formal verification means to apply

Model-Checking Acknowledgment Formal Verification Formal verification means to apply

Model-Checking Acknowledgment Formal Verification Formal verification means to apply mathematical arguments to prove the correctness of systems Systems have bugs Formal verification aims to find and correct such bugs Why? Computer systems

1.42k views • 122 slides
Formal Verification and Computer Architecture A Validated Formal Model of the x86 ISA for

Formal Verification and Computer Architecture A Validated Formal Model of the x86 ISA for

Formal Verification and Computer Architecture A Validated Formal Model of the x86 ISA for Analyzing Computing Systems Shilpi Goel shilpi@centtech.com Formal Verification Engineer Centaur Technology, Inc. Software and Reliability Can we rely

1.14k views • 78 slides
Formal Hardware Verification: getting started Mary Sheeran Making Formal Verification work Aim

Formal Hardware Verification: getting started Mary Sheeran Making Formal Verification work Aim

Formal Hardware Verification: getting started Mary Sheeran Making Formal Verification work Aim for automation (bit level) Find niches where formal methods work well Use assertions/ properties first in sim. and then in FV (the acronym is ABV,

1.14k views • 65 slides
Formal Verification in Industry John Harrison Intel Corporation The cost of bugs Formal

Formal Verification in Industry John Harrison Intel Corporation The cost of bugs Formal

Formal Verification in Industry 1 Formal Verification in Industry John Harrison Intel Corporation The cost of bugs Formal verification Machine-checked proof Automatic and interactive approaches HOL Light Floating point

366 views • 25 slides
Formal Verification of Floating-Point Arithmetic John Harrison Intel Corporation Formal

Formal Verification of Floating-Point Arithmetic John Harrison Intel Corporation Formal

Formal Verification of Floating-Point Arithmetic 1 Formal Verification of Floating-Point Arithmetic John Harrison Intel Corporation Formal verification Machine-checked proof Automatic and interactive approaches HOL Light

539 views • 19 slides
Formal Specification and Verification 10.05.2012 Viorica Sofronie-Stokkermans e-mail:

Formal Specification and Verification 10.05.2012 Viorica Sofronie-Stokkermans e-mail:

Formal Specification and Verification 10.05.2012 Viorica Sofronie-Stokkermans e-mail: sofronie@uni-koblenz.de 1 Binary Decision Diagrams Formulae Boolean functions f F : { 0, 1 } n { 0, 1 } F ( n Prop.Var) Binary decision

405 views • 39 slides
2 Binary Decision Diagrams 2. Binary Decision Diagrams Verification Technology Content 2.1 BDD

2 Binary Decision Diagrams 2. Binary Decision Diagrams Verification Technology Content 2.1 BDD

Fachgebiet Rechnersysteme 2. Binary Decision Diagrams 1 2 Binary Decision Diagrams 2. Binary Decision Diagrams Verification Technology Content 2.1 BDD concepts 2 2 Variable orderings 2.2 Variable orderings 2.3 OBDD algorithms 2 4 FDDs

1.76k views • 165 slides
Formal Verification of Mathematical Algorithms John Harrison Intel Corporation The cost of

Formal Verification of Mathematical Algorithms John Harrison Intel Corporation The cost of

Formal Verification of Mathematical Algorithms 1 Formal Verification of Mathematical Algorithms John Harrison Intel Corporation The cost of bugs Formal verification Levels of verification HOL Light Formalizing mathematics

353 views • 19 slides
Formal Verification of RISC-V cores with riscv-formal Clifford Wolf CTO, Symbiotic EDA

Formal Verification of RISC-V cores with riscv-formal Clifford Wolf CTO, Symbiotic EDA

Formal Verification of RISC-V cores with riscv-formal Clifford Wolf CTO, Symbiotic EDA http://www.clifford.at/papers/2018/riscv-formal/ About assertion based formal verification (formal ABV) Assertion based verification (ABV) Uses

781 views • 39 slides
Formal Verification with Yosys-SMTBMC Clifford Wolf Yosys Flows Synthesis Formal

Formal Verification with Yosys-SMTBMC Clifford Wolf Yosys Flows Synthesis Formal

Formal Verification with Yosys-SMTBMC Clifford Wolf Yosys Flows Synthesis Formal Verification Yosys-STMBMC iCE40 FPGAs Bounded Model Checking (Project IceStorm) Using any SMT-LIB2 solver (using QF_AUFBV logic) Xilinx

706 views • 56 slides
Towards Formal Verification in Cryptographic Web Applications A Three Year Evolution Nadim

Towards Formal Verification in Cryptographic Web Applications A Three Year Evolution Nadim

Towards Formal Verification in Cryptographic Web Applications A Three Year Evolution Nadim Kobeissi PROSECCO: Pro gramming Sec urely with C rypt o graphy. Team at INRIA Paris specializing in applied cryptography and formal verification.

357 views • 14 slides
Formal Specification and Verification Formal specification (2) 29.11.2016 Viorica

Formal Specification and Verification Formal specification (2) 29.11.2016 Viorica

Formal Specification and Verification Formal specification (2) 29.11.2016 Viorica Sofronie-Stokkermans e-mail: sofronie@uni-koblenz.de 1 Until now Logic Formal specification (generalities) Algebraic specification 2 Formal

627 views • 19 slides
Formal Specification and Verification Formal specification (2) 6.12.2016 Viorica

Formal Specification and Verification Formal specification (2) 6.12.2016 Viorica

Formal Specification and Verification Formal specification (2) 6.12.2016 Viorica Sofronie-Stokkermans e-mail: sofronie@uni-koblenz.de 1 Until now Logic Formal specification (generalities) Algebraic specification Transition systems 2

798 views • 62 slides
Formal Verifjcation Lecture 8: Operations on Binary Decision Diagrams (BDDs) Jacques Fleuriot

Formal Verifjcation Lecture 8: Operations on Binary Decision Diagrams (BDDs) Jacques Fleuriot

Formal Verifjcation Lecture 8: Operations on Binary Decision Diagrams (BDDs) Jacques Fleuriot jdf@inf..ac.uk Diagrams from Huth &amp; Ryan, LiCS, 2nd Ed. Recap reduce , apply , restrict , exists Previously: (Reduced, Ordered) Binary

567 views • 33 slides
Formal Verification and Testing for Formal Verification and Testing for Reactive Systems

Formal Verification and Testing for Formal Verification and Testing for Reactive Systems

ARTIST2 - ARTIST2 - MOTIVES MOTIVES Trento - - Italy, February 19 Italy, February 19- -23, 2007 23, 2007 Trento Session: Testing and Runtime Verification Formal Verification and Testing for Formal Verification and Testing for Reactive

881 views • 31 slides
1 Trends in Microprocessor Architecture R05 Chip Multiprocessors (ACS MPhil) Robert Mullins

1 Trends in Microprocessor Architecture R05 Chip Multiprocessors (ACS MPhil) Robert Mullins

1 Trends in Microprocessor Architecture R05 Chip Multiprocessors (ACS MPhil) Robert Mullins Overview Computer architecture Scaling performance and CMOS Where have performance gains come from? Modern superscalar processors

535 views • 35 slides
Sentences 1 98-348: Lecture 4 Change of plans Throwing all of nouns, verbs and grammar at you

Sentences 1 98-348: Lecture 4 Change of plans Throwing all of nouns, verbs and grammar at you

Re: Nouns, Verbs and Sentences 1 98-348: Lecture 4 Change of plans Throwing all of nouns, verbs and grammar at you doesnt work Well look at some new nouns, some new verbs and some new sentence structures every lecture Usage of

345 views • 32 slides
Timetabling DM204 Scheduling, Timetabling and Routing DM204 (3.+4. Kv., 10 ECTS) Skedulering,

Timetabling DM204 Scheduling, Timetabling and Routing DM204 (3.+4. Kv., 10 ECTS) Skedulering,

Timetabling DM204 Scheduling, Timetabling and Routing DM204 (3.+4. Kv., 10 ECTS) Skedulering, Skemalgning og Ruteplanlgning Scheduling, Timetabling and Routing Marco Chiarandini, adjunkt marco@imada.sdu.dk

377 views • 4 slides
Planning as model checking, (OBDDs) Jos Luis Ambite* [* Based in part on Paolo Traversos

Planning as model checking, (OBDDs) Jos Luis Ambite* [* Based in part on Paolo Traversos

Planning as model checking, (OBDDs) Jos Luis Ambite* [* Based in part on Paolo Traversos (http://sra.itc.it/people/traverso/) tutorial: http://prometeo.ing.unibs.it/sschool/slides/traverso/traverso-slides.ps.gz Some slides from

783 views • 32 slides
Quantum graphs and almost periodic functions Pavel Kurasov Jan Boman &amp; Rune Suhr (Stockholm)

Quantum graphs and almost periodic functions Pavel Kurasov Jan Boman &amp; Rune Suhr (Stockholm)

Quantum graphs and almost periodic functions Pavel Kurasov Jan Boman &amp; Rune Suhr (Stockholm) February 26, 2019 Graz Kurasov (Stockholm) Almost Periodic Functions and Graphs February 26, 2019, Graz 1 / 24 Quantum graph Metric graph

795 views • 33 slides
On the structure of covers of sofic shifts Rune Johansen Department of Mathematical Sciences,

On the structure of covers of sofic shifts Rune Johansen Department of Mathematical Sciences,

On the structure of covers of sofic shifts Rune Johansen Department of Mathematical Sciences, University of Copenhagen November 26 2010 Overview Presentations of sofic shifts Irreducible sofic shifts Generalizing the Fischer cover Sofic

747 views • 51 slides
Multiagent Systems: Spring 2006 Ulle Endriss Institute for Logic, Language and Computation

Multiagent Systems: Spring 2006 Ulle Endriss Institute for Logic, Language and Computation

Papers at AAMAS-2006 Multiagent Systems 2006 Multiagent Systems: Spring 2006 Ulle Endriss Institute for Logic, Language and Computation University of Amsterdam Ulle Endriss (ulle@illc.uva.nl) 1 Papers at AAMAS-2006 Multiagent Systems 2006

218 views • 17 slides
A postcard from the future: Tools and services from a

A postcard from the future: Tools and services from a

A postcard from the future: Tools and services from a perfect DMP world IDCC, 20 Feb 2017 Photo by Rune Askeland on 500px Machine-actionable

536 views • 15 slides

More recommend