more on psl
play

More on PSL some examples, some pitfalls FSM start continue - PDF document

Jun 20, 2023 •338 likes •561 views

4/9/2008 More on PSL some examples, some pitfalls FSM start continue continue idle p1 p2 p3 cancel cancel done 1 4/9/2008 Low level assertions assert always ((state = idle and start) -> next (state = p1)); assert always

  1. 4/9/2008 More on PSL some examples, some pitfalls FSM start continue continue idle p1 p2 p3 cancel cancel done 1

  2. 4/9/2008 Low level assertions assert always ((state = idle and start) -> next (state = p1)); assert always ((state = idle and not start) -> next (state = idle)); assert always ((state = p1 and continue) -> next (state = p2)); a nd so on… one for each transition good, but very localised Low level assertions assert always ((state = idle and start) -> next (state = p1)); Bit-vector assert always ((state = idle and not start) -> next (state = idle)); assert always ((state = p1 and continue) -> next (state = p2)); a nd so on… one for each transition good, but very localised 2

  3. 4/9/2008 Low level assertions assert always ((state = idle and start) -> next (state = p1)); constant assert always ((state = idle and not start) -> next (state = idle)); assert always ((state = p1 and continue) -> next (state = p2)); a nd so on… one for each transition good, but very localised Low level assertions assert always ((state = idle and start) -> next (state = p1)); constant assert always ((state = idle and not start) -> next (state = idle)); Implicit self-loop assert always ((state = p1 and continue) -> next (state = p2)); a nd so on… one for each transition good, but very localised 3

  4. 4/9/2008 Higher level assertion assert always (not (state = idle) -> eventually! (state = idle) Note: not a safety property! Will also likely need to link the state machine to the system that it is controlling and check that the desired functionality is achieved Message: try to raise level of abstraction of properties (while keeping them short and simple) Example: simple bus interface spec (1) 1. 2 commands, read and write (with corresponding signals) 2. Command can be issued only after requesting the bus, indicated by a pulsed assertion of signal bus_req, and receiving a grant, indicated by the assertion of signal gnt one cycle after the assertion of bus_req 3. If the bus was not requested, it shouldn’t be granted 4. Command is issued the cycle following receipt of grant 5. Either a read or a write can be issued, not both simultaneously 4

  5. 4/9/2008 Example: simple bus interface spec (2) 6. Reads and writes come with an address, on addr[7 downto 0], that should be valid in the following cycle 7. Address validity is indicated by signal addr_valid 8. If a read is issued, then one pulse of data on data_in[63 downto 0] is expected the following cycle 9. If a write is issued, then one pulse of data on data_out[63 downto 0] is expected the following cycle 10. Valid read data is indicated by data_in_valid and valid write data by data_out_valid Example: simple bus interface low level checks 2, 4. assert always ((read or write) -> ended(bus_req; gnt; true)) Built in function Returns true when the SERE has just ended 5

  6. 4/9/2008 Example: simple bus interface low level checks 3. assert always (not bus_req -> next (not gnt)) Example: simple bus interface low level checks 5. assert never (read and write) 6

  7. 4/9/2008 Example: simple bus interface low level checks part of 6,7. assert always ((read or write) -> next addr_valid) assert always (not (read or write) -> next (not addr_valid)) Example: simple bus interface low level checks 10. assert always (read -> next data_in_valid) assert always (not read -> next (not data_in_valid)) assert always (write -> next data_out_valid) assert always (not write -> next (not data_out_valid)) 7

  8. 4/9/2008 Example: simple bus interface low level checks Have checked the protocol but not mentioned the addr, data_in or data_out buses Need to think about overall functionality as well as low level details Example: simple bus interface low level checks Have checked the protocol but not mentioned the addr, data_in or data_out buses Need to think about overall functionality as well as low level details 8

  9. 4/9/2008 Example: simple bus interface high level checks Let’s assume two input signals get_data and put_data indicating that a read or write is needed Assume also we have a way to recognise, at the assertion of get_data or put_data, the data that needs to be read or written (from address get_addr[7 downto 0] to read_buffer[63 downto 0] or from write_buffer[63 downto 0] to address put_addr[7 downto 0]) Assume also a suitable memory Example: simple bus interface high level checks assert forall ADR[7 downto 0] in boolean: always ((get_data and get_adr[7 downto 0] = ADR[7 downto 0]) -> eventually! (read_buffer[63 downto 0] = mem[ADR[7 downto 0]])) Notes: have made some assumptions e.g. about memory not changing after read included to show some of the fancier PSL constructs and use of bus structures 9

  10. 4/9/2008 Main message Write both low level and high level checks Low level checks will be easier to write – often transcribed from spec. High level specs consider desired functionality, which may be implicit in the spec. Hard to write but high pay-off For one approach to a methodology for use of PSL, see the Prosyd Eu project web page (www.prosyd.org) Contains many interesting examples both small and large (including the following example) Another (more real) example The TriCore ™ is the first unified, single -core, 32-bit microcontroller-DSP architecture optimized for real-time embedded systems. . . . The case study addresses the load/store unit (LSU) of TriCore2. The LSU is the interface to the Memory Management Unit. Its function is to set control signals, control data width, and handle alignment issues. The LSU processes 2 instructions, each in 13 addressing modes. Its size is 6KLOC, 1969 FFs. We want to write a property which checks the correctness of the LD.W (load word) instruction. The property for LD.W refers to the pipeline stages. Two PSL sequences, decode and execute, are defined to represent the pipeline stages which the LD.W property refers to. Then, the property ld_w_data is written in terms of decode and execute. The property ld_w_data checks that the cpu sends the correct address to memory and that the data from memory is correctly aligned before it is recorded in the cpu register. Source: Joint report 1 Case studies in property based requirements specification (Deliverable on Prosyd EU project, www.prosyd.org) 10

  11. 4/9/2008 Demonstrates careful use of abstraction, leading to reusable properties (Verilog flavour) Same case study considered different styles of specification Uses assumptions to express situation in which a property should apply 11

  12. 4/9/2008 Uses implication, and an explicit variable to capture timepoint at which resource is freed Does not have always after assert. I believe WK’s talk may shed light on this. Common PSL errors Mixing up logical implication and suffix implication assert always {req; ack} -> {start;busy[*]; end} Probably didn’t mean start to coincide with req Source: the PSL book (Eisner and Fisman) 12

  13. 4/9/2008 Probably meant assert always {req; ack} |=> {start; busy[*]; end} then if Confusing and with implication Every high priority request (req and high_pri) should be followed immediately by an ack and then by a gnt assert always (req and high_pri) -> next (ack -> next gnt) or assert always (req and high_pri) -> next (ack and next gnt) or assert always (req and high_pri) |=> {ack; gnt} Which? Why? 13

  14. 4/9/2008 Confusing concatentation with implication Are these equivalent? assert always {a; b; c} assert always ( a -> next b -> next[2] c) Confusing concatentation with suffix implication Are these equivalent? assert always {a; b[+]; c} |=> {d} assert always {a; b[+]; c; d} 14

  15. 4/9/2008 Exercise Figure out from the standard what {SERE} (FL_property) means Using never with implication assert always (req -> next ack) req is always followed by ack Two consecutive reqs are not allowed assert never (req -> next req) ? 15

  16. 4/9/2008 Using never with implication assert always (req -> next ack) req is always followed by ack Two consecutive reqs are not allowed assert never (req -> next req) ?? or assert always (req -> next (not req)) or assert never {req; req} Which? Why? (And similarly for suffix implication) Negating implications assert always ((high_pri and req) -> ack) High priority req gives an immediate ack Low priority request does not give an immediate ack assert always not ((low_pri and req) -> ack) ?? Ex: What should it be? Check all three assertions on the following traces (And similarly for suffix implication) 16

  17. 4/9/2008 req high_pri low_pri ack req high_pri low_pri ack 17

  18. 4/9/2008 Incorrect nesting of implications (1) If a request (assertion of req) is acknowledged (assertion of ack the following cycle), then it must receive a grant (assertion of gnt) the cycle following ack assert always ((req -> next ack) -> next gnt) Faults? What should it be? (Write in both LTL and SERE style) Check on following trace req ack gnt 18

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Distributional averaging of switched DAEs with two modes Stephan Trenn Technomathematics group,

Distributional averaging of switched DAEs with two modes Stephan Trenn Technomathematics group,

Distributional averaging of switched DAEs with two modes Stephan Trenn Technomathematics group, University of Kaiserslautern, Germany 54th IEEE Conference on Decision and Control, Osaka, Japan Wednesday, 16th December 2015, WeC10.6, 17:40-18:00

370 views • 16 slides
Building Streaming Applications with Apache Apex Chinmay Kolhatkar , Committer @ApacheApex ,

Building Streaming Applications with Apache Apex Chinmay Kolhatkar , Committer @ApacheApex ,

Building Streaming Applications with Apache Apex Chinmay Kolhatkar , Committer @ApacheApex , Engineer @DataTorrent Thomas Weise , PMC Chair @ApacheApex , Architect @DataTorrent Nov 15 th 2016 Agenda Application Development Model

666 views • 30 slides
Parallel Jacobian Accumulation Ebadollah Varnik Uwe Naumann RWTH Aachen University Content

Parallel Jacobian Accumulation Ebadollah Varnik Uwe Naumann RWTH Aachen University Content

Parallel Jacobian Accumulation Ebadollah Varnik Uwe Naumann RWTH Aachen University Content Introduction Definitions Jacobian Accumulation Parallel Approach General Idea Data Race Problem Atomic Sub-Graphs Implementation Extended

644 views • 14 slides
UMBC A B M A L T F O U M B C I M Y O R T 1 (December 4, 2000 6:10 pm) I E S

UMBC A B M A L T F O U M B C I M Y O R T 1 (December 4, 2000 6:10 pm) I E S

Principles of VLSI Design Details of the MOS Transistor CMSC 491B/711 MOS Transistor Definitions n-type MOS: Majority carriers are electrons. p-type MOS: Majority carriers are holes. Positive/negative voltage applied to the gate (with respect

503 views • 22 slides
Improving Controller Synthesis from Esterel Cristian Soviani Jia Zeng Stephen A. Edwards

Improving Controller Synthesis from Esterel Cristian Soviani Jia Zeng Stephen A. Edwards

Improving Controller Synthesis from Esterel Cristian Soviani Jia Zeng Stephen A. Edwards Department of Computer Science, Columbia University www.cs.columbia.edu/{soviani,jia,sedwards} {soviani,jia,sedwards}@cs.columbia.edu Why controllers ?

309 views • 27 slides
Impact Analysis of Different Scheduling and Retransmission Techniques on an Underwater Routing

Impact Analysis of Different Scheduling and Retransmission Techniques on an Underwater Routing

Impact Analysis of Different Scheduling and Retransmission Techniques on an Underwater Routing Protocol Salvador Climent 1 Nirvana Meratnia 2 Juan Vicente Capella 1 1 Universitat Politcnica de Valncia 2 University of Twente Workshop on

505 views • 34 slides
Where do the improvements come from in sequence-to-sequence neural TTS? Oliver Watts Gustav

Where do the improvements come from in sequence-to-sequence neural TTS? Oliver Watts Gustav

Where do the improvements come from in sequence-to-sequence neural TTS? Oliver Watts Gustav Eje Henter Jason Fong Cassia Valentini-Botinhao Input feature Text TEXT extraction analysis com- Input layer Hidden layers Output layer

795 views • 48 slides
Resonance Control of Cavities Jeremiah Holzbauer PIP-II Machine Advisory Committee 10 April 2017

Resonance Control of Cavities Jeremiah Holzbauer PIP-II Machine Advisory Committee 10 April 2017

Resonance Control of Cavities Jeremiah Holzbauer PIP-II Machine Advisory Committee 10 April 2017 Resonance Control Group Relevant Group Publications (Inspirehep.net) Group Members: 1) Investigation of Thermal Acoustic Effects on SRF

486 views • 23 slides
6.003: Signals and Systems Signals and Systems September 8, 2011 1 6.003: Signals and Systems

6.003: Signals and Systems Signals and Systems September 8, 2011 1 6.003: Signals and Systems

6.003: Signals and Systems Signals and Systems September 8, 2011 1 6.003: Signals and Systems Todays handouts: Single package containing Slides for Lecture 1 Subject Information & Calendar Lecturer: Denny Freeman Instructors: Elfar

508 views • 37 slides
On-off Control: Audio Applications Graham C. Goodwin Day 4: Lecture 3 16th September 2004

On-off Control: Audio Applications Graham C. Goodwin Day 4: Lecture 3 16th September 2004

On-off Control: Audio Applications Graham C. Goodwin Day 4: Lecture 3 16th September 2004 International Summer School Grenoble, France Centre for Complex Dynamic Systems and Control 1 Background In this lecture we address the issue of

632 views • 51 slides
Covert and Side Channel Attacks and Defenses Mengjia Yan Fall 2020 Based on slides from

Covert and Side Channel Attacks and Defenses Mengjia Yan Fall 2020 Based on slides from

Covert and Side Channel Attacks and Defenses Mengjia Yan Fall 2020 Based on slides from Christopher W. Fletcher Reminder Lab assignment will be released 09/21 Monday Recommend to read Cache missing for fun and profit. (2005).

562 views • 38 slides
DPA-Protected Authenticated Encryption Mostafa Taha and Patrick Schaumont Virginia Tech

DPA-Protected Authenticated Encryption Mostafa Taha and Patrick Schaumont Virginia Tech

A Key Management Scheme for DPA-Protected Authenticated Encryption Mostafa Taha and Patrick Schaumont Virginia Tech DIAC-2013 This research was supported in part by the VT-MENA program of Egypt, and by NSF grant no. 1115839. Leakage-Resilient

636 views • 48 slides
Hybrid/Tandem models + TDNNs + Intro to RNNs Lecture 8 CS 753 Instructor: Preethi Jyothi

Hybrid/Tandem models + TDNNs + Intro to RNNs Lecture 8 CS 753 Instructor: Preethi Jyothi

Hybrid/Tandem models + TDNNs + Intro to RNNs Lecture 8 CS 753 Instructor: Preethi Jyothi Feedback from in-class quiz 2 (on FSTs) Common mistakes Forgetting to consider subset of input alphabet Not careful about only accepting

557 views • 23 slides
Lecture 11 Waves and Interference The Final Piece of Classical Physics: Announcements Waves L

Lecture 11 Waves and Interference The Final Piece of Classical Physics: Announcements Waves L

Lecture 11 Waves and Interference The Final Piece of Classical Physics: Announcements Waves L i Today: Waves and Light g h t Final part of Classical Mechanics Many Kinds of Waves - light, sound, strings, ... Ether?

186 views • 4 slides
MAS.S61: Emerging Wireless & Mobile Technologies aka The Extreme IoT Class Lecture 3:

MAS.S61: Emerging Wireless & Mobile Technologies aka The Extreme IoT Class Lecture 3:

MAS.S61: Emerging Wireless & Mobile Technologies aka The Extreme IoT Class Lecture 3: Fundamentals of Wireless Sensing & Localization (Cont) Fundamentals of Communications & Connectivity Lecturers Fadel Adib (fadel@mit.edu)

834 views • 80 slides
The Effect of Ionic Composition on Acoustic Phonon Speeds in Hybrid Perovskites Irina Kabakova

The Effect of Ionic Composition on Acoustic Phonon Speeds in Hybrid Perovskites Irina Kabakova

The Effect of Ionic Composition on Acoustic Phonon Speeds in Hybrid Perovskites Irina Kabakova School of Mathematical and Physical Sciences University of Technology Sydney UNSW, Sydney 17 May 2018 Motivation Hybrid organic-inorganic

366 views • 21 slides
Foundations of Language Science and Technology Acoustic Phonetics 1: Resonances and formants Jan

Foundations of Language Science and Technology Acoustic Phonetics 1: Resonances and formants Jan

Foundations of Language Science and Technology Acoustic Phonetics 1: Resonances and formants Jan 19, 2015 Bernd Mbius FR 4.7, Phonetics Saarland University Speech waveforms and spectrograms A f t Formants Spectral peaks, energy

400 views • 26 slides
Magneto-acoustic waves in asymmetric solar waveguides Progress in spatial magneto-seismology

Magneto-acoustic waves in asymmetric solar waveguides Progress in spatial magneto-seismology

Magneto-acoustic waves in asymmetric solar waveguides Progress in spatial magneto-seismology Matthew Allcock and Robertus Erd elyi The layers of an onion Magnetohydrodynamic waves Ubiquitous in the solar atmosphere Credit: NASA, SDO

558 views • 33 slides
A mathematical model and inversion procedure for Magneto-Acousto-Electric Tomography (MAET)

A mathematical model and inversion procedure for Magneto-Acousto-Electric Tomography (MAET)

A mathematical model and inversion procedure for Magneto-Acousto-Electric Tomography (MAET) Leonid Kunyansky University of Arizona, Tucson, AZ Suppported in part by NSF grant DMS-0908243 NSF grant "well give you money, just

371 views • 16 slides
for relic neutrino detection Rasa Muller PhD student at Nikhef, Amsterdam Previous intern at TNO

for relic neutrino detection Rasa Muller PhD student at Nikhef, Amsterdam Previous intern at TNO

November, 2018, The Netherlands KM3NeT hydrophones for relic neutrino detection Rasa Muller PhD student at Nikhef, Amsterdam Previous intern at TNO Delft Contributions Ernst-Jan Buis Ivo van Vulpen November, 2018, The Netherlands Km 3

628 views • 27 slides
Speech and Language CS 188: Artificial Intelligence Spring 2011 Speech technologies

Speech and Language CS 188: Artificial Intelligence Spring 2011 Speech technologies

Speech and Language CS 188: Artificial Intelligence Spring 2011 Speech technologies Automatic speech recognition (ASR) Text-to-speech synthesis (TTS) Dialog systems Language processing technologies Speech and Language

206 views • 5 slides
Probe type method for acoustic wave equations with discontinuous coefficients Gen Nakamura

Probe type method for acoustic wave equations with discontinuous coefficients Gen Nakamura

Probe type method for acoustic wave equations with discontinuous coefficients Probe type method for acoustic wave equations with discontinuous coefficients Gen Nakamura nakamuragenn@gmail.com Hokkaido University, Japan Joint work with David

510 views • 40 slides
: : OzGrav HF HF Key Parameter Value Simplified 3G: Arm Length

: : OzGrav HF HF Key Parameter Value Simplified 3G: Arm Length

: : OzGrav HF HF Key Parameter Value Simplified 3G: Arm Length 4 km Vacuum length Laser power 500 W considerably Arm power 5 MW shorter Seismic Isolation Test mass Silicon requirements

549 views • 8 slides
Non-Accelerator Experiments Astro-particle Physics Cosmology Dark Matter The 40th Anniversary

Non-Accelerator Experiments Astro-particle Physics Cosmology Dark Matter The 40th Anniversary

Non-Accelerator Experiments Astro-particle Physics Cosmology Dark Matter The 40th Anniversary Symposium of the US-Japan Science and Technology Cooperation Program in High Energy Physics April 16, 2019 @ University of Hawaii Akito Kusaka

428 views • 32 slides

More recommend