a toolbox for property checking from simulation using
play

A Toolbox for Property Checking from Simulation using Incremental - PowerPoint PPT Presentation

Nov 28, 2023 •565 likes •753 views

A Toolbox for Property Checking from Simulation using Incremental SAT Rob Sumners Centaur Technology rsumners@centtech.com ...terrible title... Rob Sumners Centaur Technology rsumners@centtech.com Motivation: extending simulation..

  1. A Toolbox for Property Checking from Simulation using Incremental SAT Rob Sumners Centaur Technology rsumners@centtech.com

  2. ...terrible title... Rob Sumners Centaur Technology rsumners@centtech.com

  3. Motivation: “extending” simulation.. ● Hardware designs go through extensive verification via design simulation. ● Verification engineers define simulation environments which: Generate random and/or directed legal input stimulus. ○ ○ Check that the behavior of the design matches specification. These environments are extensive and (unfortunately) often written in ● “higher-level” languages.. ○ These definitions are not finite-state and in general, not amenable to formal tools

  4. Motivation: “extending” simulation.. ● Goal: use existing simulations of hardware designs to efficiently search for property failures.. Simple approach: ● ○ Take dump file from existing simulation to specify initial state and input sequence.. ○ From each state in the simulation, generate a quick search for property failures.. ■ A limited, directed form of bounded model checking ● Different approach: Use input transformation to reduce the number of inputs and afford deeper search.. ○ ○ Use Incremental SAT and dynamically manage the size of the SAT clauses

  5. Two parts to present.. ● First part: a tool that extends simulation with limited efficient search for failure using.. Second part: a core (or “toolkit”) for efficiently checking properties of a ● finite next-state function evaluated over time ○ Uses incremental SAT (via books/centaur/ipasir interface) to amortize the cost of SAT queries across sequential clocks

  6. First part: tool steps.. ● Read in design (in Verilog) ○ Process from top module to build an AIGNET for next-state ○ Makes use of VL, SV, etc. to translate to SVEX, then AIGs, then AIGNET. ● Read in VCD file dumped from simulation Process to get initial state and input values at each clock cycle ○ Initialize and Execute main search loop ● ○ ...more on this in a moment.. Report results back to the user ● ○ ..including generation of VCD in case of failure

  7. First part: main search loop.. ● Iterates a “search window” which defines the current property check. ● Repeat until pass/fail: Choose step .. determine which step to take: ○ ■ Heuristically choose which step to take next based on current targets, search measurements, and recent step results ○ Take step .. pick one of the following: Grow-window -- add clauses for checking the next property in time ■ ■ Shrink-window -- add unit clauses for reducing based on input binding Check-fails -- SAT check the fails in the current search window ■ ■ Cleanup-state -- cleanup memory and (optionally) reset incremental SAT

  8. Example: SMQ simple memory queue ● Simple read-write queue with: ○ Read and write requests coming from source port and forwarded to dest port ○ Responses flow from dest port back to source port ● Excluding address matches, reads can pass writes except: If enough writes are blocked, then we enter write-burst mode.. writes get priority ○ ○ In addition, the oldest entry can also only be bypassed a maximum number of times Property: check that if some entry is always ready to go ●

  9. Example: SMQ simple memory queue SMQ queue requests requests source dest responses responses

  10. First part: SMQ adding input transformers.. SMQ 1. Address Selection 2. Burst Generation requests 3. Delay Injection requests source dest responses responses Delay Injection

  11. Example: SMQ Adding Input Transformers ● Transform #1 : address selection ○ Pick focal address, then (based on free input) pick that address Transform #2 : burst generation ● ○ Based on a free input, re-pick the previous command type (read/write in this case) Transform #3 : delay injection (on src req. and dest. resp) ● ○ Free inputs on both src. and resp. to delay delivery (single buffer in this case) ● With these transforms and just allowing fixed random data, the number of free inputs reduced to 4 bits per clock cycle..

  12. Second part: Designing a “core” ● In considering a “proof” of correctness for extended simulation.. ● .. a desire arose to design and simplify the “core” Potentially useful for other applications.. ○ ● The state of the “core” is comprised of: ○ The AIGNET defining the next-state function of the design ○ The IPASIR stobj storing the state of incremental SAT ○ A 2D-array defining a mapping from design variables (at each clock cycle) to literals ■ Progresses from bottom to SAT literal to boolean value ○ A list of assignments/bindings, a list of constraints, and a list of checked assertions

  13. Second part: Designing the “core” ● The “core” supports the following steps: ○ Initialization ■ take an AIGNET defining next-state function and a fixed number of cycles ■ initialize the state of the “core” ○ Add logic supporting a variable@cycle ■ Variable@cycle goes from bottom to SAT literal ○ Add constraint or assignments ■ Variable@cycle goes to boolean value ○ Check any variable@cycle (must currently map to SAT literal ) ■ Can add assumptions..

  14. Second part: Proving core invariant ● Define and prove invariant: (core-inv cs$) ○ At every step, ensures that satisfying assignments to clauses in IPASIR state are consistent with current constraints, assignments, and definition of next-state via AIGNET given the current binding of variable@cycle to SAT literals. ○ The invariant provides a context for every SAT check performed ■ (assignments and constraints and definitions) => assertion ○ The invariant holds after initialization and is preserved by every other “core” step.

  15. Second part: A few implementation notes.. ● Adding assignments causes a fast forward (lifted) evaluation to propagate constants forward.. Adding the logic supporting a new variable@cycle will only include “cone of ● influence” based on current variable@cycle map ● In support of this work, we added some additional optional interface functions to the ipasir library to: Get statistics on current SAT clause database state ○ ○ Adjust the priority of certain literals to be chosen These are only defined and will only work for MINISAT-based incremental SAT libraries ○

  16. Work done and work to be done.. ● Have built extended simulation tool as specified ○ Some small-ish examples included in supporting materials Have defined and proven a “core” as specified ● Still need to replace “core” in extended simulation tool with proven “core” ● ● Ongoing work to improve direction and coverage of extended simulation

  17. Questions? .. and answers.. Thank you!!

Recommend

The RAVEN Toolbox 2.0: a versatile platform for metabolic network reconstruction and simulation

The RAVEN Toolbox 2.0: a versatile platform for metabolic network reconstruction and simulation

The RAVEN Toolbox 2.0: a versatile platform for metabolic network reconstruction and simulation Hao Wang Ph.D. hao.wang@chalmers.se Division of Systems and Synthetic Biology Department of Biology and Biological Engineering Chalmers University

610 views • 28 slides
ECBS 2013 SMT-Bounded Model Checking of C++ Programs Mikhail Ramalho, Mauro Freitas , Felipe

ECBS 2013 SMT-Bounded Model Checking of C++ Programs Mikhail Ramalho, Mauro Freitas , Felipe

ECBS 2013 SMT-Bounded Model Checking of C++ Programs Mikhail Ramalho, Mauro Freitas , Felipe Sousa, Hendrio Marques, Lucas Cordeiro, Bernd Fischer Bounded Model Checking (BMC) Idea: check negation of given property up to given depth property

702 views • 34 slides
Tsunami simulation on FPGA/GPU Tsunami simulation on FPGA/GPU and its analysis based on Statistical

Tsunami simulation on FPGA/GPU Tsunami simulation on FPGA/GPU and its analysis based on Statistical

Tsunami simulation on FPGA/GPU Tsunami simulation on FPGA/GPU and its analysis based on Statistical Model Checking Masahiro Fujita VLSI Design and Education Center (VDEC) University of Tokyo 1 2 Outline What Tsunami simulation means in

1.25k views • 44 slides
presentation The Case Competition Toolbox About the Toolbox Disclaimer The Case Competition

presentation The Case Competition Toolbox About the Toolbox Disclaimer The Case Competition

presentation The Case Competition Toolbox About the Toolbox Disclaimer The Case Competition Toolbox is a collection of useful This Toolbox is a collection of useful tips, tools, advices guidelines and frameworks that will assist your case

552 views • 37 slides
Modeling and Analyzing Concurrent Systems using Model Checking Robert B. France 1 What is

Modeling and Analyzing Concurrent Systems using Model Checking Robert B. France 1 What is

Modeling and Analyzing Concurrent Systems using Model Checking Robert B. France 1 What is Model Checking? Model checking is an automated technique that, given a finite-state model of a system and a logical property , systematically

484 views • 36 slides
Property Tax Appraisals Ways to Save 1. Start by checking & applying for Exemptions

Property Tax Appraisals Ways to Save 1. Start by checking & applying for Exemptions

Property Tax Appraisals Ways to Save 1. Start by checking & applying for Exemptions Deadline: April 30 Though will go back several years on exemptions. If you ask. Homestead Age 65 and Over & Surviving Spouse of Over 65

466 views • 43 slides
Design Verification Model/Property Checking: Computation Tree Logic Virendra Singh Associate

Design Verification Model/Property Checking: Computation Tree Logic Virendra Singh Associate

Design Verification Model/Property Checking: Computation Tree Logic Virendra Singh Associate Professor C omputer A rchitecture and D ependable S ystems L ab Department of Electrical Engineering Indian Institute of Technology Bombay

317 views • 28 slides
Welcome to the Machine Learning Toolbox! Machine Learning Toolbox Supervised learning caret

Welcome to the Machine Learning Toolbox! Machine Learning Toolbox Supervised learning caret

MACHINE LEARNING TOOLBOX Welcome to the Machine Learning Toolbox! Machine Learning Toolbox Supervised learning caret R package Automates supervised learning (a.k.a. predictive modeling ) Target variable Machine Learning Toolbox

634 views • 16 slides
Introduction to Model Checking Radu Mateescu Inria Univ. Grenoble Alpes LIG What is model

Introduction to Model Checking Radu Mateescu Inria Univ. Grenoble Alpes LIG What is model

Introduction to Model Checking Radu Mateescu Inria Univ. Grenoble Alpes LIG What is model checking? Model checking is the method by which a desired behavioral property of a reactive system is verified over a given system (the model )

606 views • 32 slides
An Event-Driven Simulation of Analog/Mixed-Signal Systems and Its Implications to Property

An Event-Driven Simulation of Analog/Mixed-Signal Systems and Its Implications to Property

An Event-Driven Simulation of Analog/Mixed-Signal Systems and Its Implications to Property Assertions Prof. Jaeha Kim Mixed-Signal IC and System Group Seoul National University XMODEL and Property Assertions XMODEL is a SystemVerilog-based

426 views • 30 slides
Approximate property checking of mixed-signal circuits Parijat Mukherjee, Texas A&M

Approximate property checking of mixed-signal circuits Parijat Mukherjee, Texas A&M

Approximate property checking of mixed-signal circuits Parijat Mukherjee, Texas A&M University Chirayu Amin, Intel Corporation Peng Li, Texas A&M University TAU 2014 Thursday, March 6 th 2014 Outline Mixed-signal design

669 views • 54 slides
Real-time Model Checking Timed Temporal Logics Nicolas M ARKEY Lav. Sp ecification

Real-time Model Checking Timed Temporal Logics Nicolas M ARKEY Lav. Sp ecification

Real-time Model Checking Timed Temporal Logics Nicolas M ARKEY Lav. Sp ecification & V erification CNRS & ENS Cachan France March 3, 2010 (Quantitative) Model checking system: property: Always ( safe )

1.28k views • 102 slides
The Audio Degradation Toolbox http://code.soundsoftware.ac.uk/projects/audio-degradation-toolbox/

The Audio Degradation Toolbox http://code.soundsoftware.ac.uk/projects/audio-degradation-toolbox/

The Audio Degradation Toolbox http://code.soundsoftware.ac.uk/projects/audio-degradation-toolbox/ and its Application to Robustness Evaluation Sebastian Ewert and Matthias Mauch Friday, 1 November 13 reverb photo by steveleenow Friday, 1

564 views • 32 slides
Hibernate Search Hardy Ferentschik, Red Hat The toolbox The toolbox Build tool Ant/Maven The

Hibernate Search Hardy Ferentschik, Red Hat The toolbox The toolbox Build tool Ant/Maven The

Hibernate Search Hardy Ferentschik, Red Hat The toolbox The toolbox Build tool Ant/Maven The toolbox Build tool Ant/Maven Container Tomcat/JBoss The toolbox Build tool Ant/Maven Container Tomcat/JBoss MVC Struts/Seam The toolbox

1.18k views • 55 slides
Drug Discovery Process Drug Discovery Toolbox Insights on the Origins of Biological Activities

Drug Discovery Process Drug Discovery Toolbox Insights on the Origins of Biological Activities

Drug Discovery Process Drug Discovery Toolbox Insights on the Origins of Biological Activities via Computational Modeling Combina( High( Compu( Chemical, Chemical, Property, torial, Throughput, ta;onal, Libraries, Space, Filters,

207 views • 6 slides
3. Satisfiability Checking 3.1 SAT-Checking Procedures Verification Technology

3. Satisfiability Checking 3.1 SAT-Checking Procedures Verification Technology

Fachgebiet RechnerSysteme Technische Universitt Verification Technology Darmstadt 3. Satisfiability Checking Computer Systems Lab 1 3. Satisfiability Checking 3 3. Satisfiability Checking 3.1 SAT-Checking Procedures Verification

278 views • 11 slides
Hoare Logic and Model Checking Model Checking Lecture 11: Model checking for Computation Tree

Hoare Logic and Model Checking Model Checking Lecture 11: Model checking for Computation Tree

Hoare Logic and Model Checking Model Checking Lecture 11: Model checking for Computation Tree Logic Dominic Mulligan Based on previous slides by Alan Mycroft and Mike Gordon Programming, Logic, and Semantics Group University of Cambridge

402 views • 25 slides
Temporal Logic and Model Checking Model mathematical structure extracted from hardware or

Temporal Logic and Model Checking Model mathematical structure extracted from hardware or

Temporal Logic and Model Checking Model mathematical structure extracted from hardware or software Temporal logic provides a language for specifying functional properties Model checking checks whether a given property holds

1.56k views • 131 slides
SMT-Based Bounded Model Checking for Embedded ANSI-C Software for Embedded ANSI-C Software

SMT-Based Bounded Model Checking for Embedded ANSI-C Software for Embedded ANSI-C Software

SMT-Based Bounded Model Checking for Embedded ANSI-C Software for Embedded ANSI-C Software Lucas Cordeiro, Bernd Fischer, Joao Marques-Silva b.fischer@ecs.soton.ac.uk Bounded Model Checking (BMC) Basic Idea: check negation of given property

957 views • 33 slides
Checking & Spot-Checking the Correctness of Priority Queues Matthew Chu & Sampath Kannan

Checking & Spot-Checking the Correctness of Priority Queues Matthew Chu & Sampath Kannan

Checking & Spot-Checking the Correctness of Priority Queues Matthew Chu & Sampath Kannan (UPenn) Andrew McGregor (UCSD) Memory Checking Memory Checking Your resources: A lot of cheap unreliable memory and a little expensive reliable

1.11k views • 70 slides
Program Verification as a Toolbox 2005Now Todays Verification A Brief, Subjective History

Program Verification as a Toolbox 2005Now Todays Verification A Brief, Subjective History

Program Verification as a Toolbox David Cock Is Your System Correct? Verified Systems Program Verification as a Toolbox 2005Now Todays Verification A Brief, Subjective History Toolbox Whats Next? David Cock January 23, 2015 1

432 views • 32 slides
Statistical Statistical Statistical Model Statistical Model Model Checking Model Checking

Statistical Statistical Statistical Model Statistical Model Model Checking Model Checking

Statistical Statistical Statistical Model Statistical Model Model Checking Model Checking Checking Checking for Timed Automata Timed Automata Coll C l C ll b llabora orators: t ors: Peter Bulychev, Alexandre David Axel Legay, Marius

725 views • 59 slides
A TOOLBOX WITH HINGES S H A R I A L D E R P A U L A N D E R S O N A N D R E W R H O D E

A TOOLBOX WITH HINGES S H A R I A L D E R P A U L A N D E R S O N A N D R E W R H O D E

A TOOLBOX WITH HINGES S H A R I A L D E R P A U L A N D E R S O N A N D R E W R H O D E S J A R E D O L A F S S O N OBJECTIVES I ntro duc tio n o f Ca se Ma na g e me nt Mo de l Building re la tio nships with a ppro pria te

546 views • 13 slides
Outline Narcisse Ngada DESY, MKK 1) What is simulation ? 14.05.2014 2) Why simulation ? 3)

Outline Narcisse Ngada DESY, MKK 1) What is simulation ? 14.05.2014 2) Why simulation ? 3)

Simulation Outline Narcisse Ngada DESY, MKK 1) What is simulation ? 14.05.2014 2) Why simulation ? 3) Principles of simulation 4) Types of simulation Analog simulation Numerical simulation 5) Conclusion 1. What is simulation ? 2.

1.08k views • 54 slides

More recommend