detailed design and verification with jml
play

Detailed Design and Verification with JML Curt Clifton Rose-Hulman - PowerPoint PPT Presentation

Jul 23, 2023 •255 likes •487 views

Detailed Design and Verification with JML Curt Clifton Rose-Hulman Institute of Technology And now for something completely different And now for something completely different Course Topics DETAILED DESIGN AND VERIFICATION (JML)

  1. Detailed Design and Verification with JML Curt Clifton Rose-Hulman Institute of Technology

  2. And now for something completely different

  3. And now for something completely different

  4. Course Topics DETAILED DESIGN AND VERIFICATION (JML) ABSTRACTIONS (ALLOY) 0 2 4 6 8 10 REACTIVE SYSTEMS Week HW 7 due Thursday, 6am (STATE CHARTS)

  5. Formal Verification Formal reasoning about actual code Application: Design-by-contract Weakest pre-condition calculation Proving program correctness

  6. The Plan First, learn basic reasoning techniques Working by hand Using same notation that we’ll automate later Then, experiment with prototype tools for automated reasoning

  7. JML: Notation and Tools

  8. What’s JML? JML stands for “ Java Modeling Language ” A Behavioral Interface Specification Language A “BISL” specifies the signatures of functions, methods, and classes— the interface Conditions that must hold— the behavior JML extends Java with special annotations for behavioral specifications Q1,2

  9. JML Annotations Annotations in JML are just Java comments JML tools recognize comments using ‘@’ symbol //@ starts a single line annotation //@ requires x > 0; /*@ … */ defines a multi-line comment Common mistake—adding a space: // @ NOT VALID! BEGIN Q3

  10. Example PRECONDITION: WHAT CALLER MUST GUARANTEE /*@ requires x > 0; @ ensures \result * \result <= x && @ x < (\result + 1) * (\result + 1); @*/ public static int iroot(int x) { … } POSTCONDITION: WHAT METHOD MUST ENSURE FINISH Q3

  11. One use for JML: Design by Contract A software development methodology Engineer specifies a contract for each method: A precondition and A postcondition Programmer implements the methods Q4

  12. Executable Java with Runtime Static Checks Warnings Unit Tests OpenJML 7 jmlc4 Runtime Data JMLUnitNG Traces Daikon Java Annotated With JML bogor Model Checking JACK, Jive, Krakatoa, jmldoc KeY, LOOP HTML Documentation Proofs of Correctness WHAT’S THE USE? THE FAMILY OF JML TOOLS

  13. Techniques for Formal Verification, or …

  14. How Do You Eat an Elephant? ONE BITE AT A TIME

  15. First Bites Assignment Sequencing

  16. Detailed Notation Low-level verification: use JML’s assert … //@ assert n == 0; Pre-condition: before a i = 0; statement or block //@ assert n == i; … Post-condition: after a statement or block WHY NOT JUST USE JAVA’S ASSERT STATEMENT? Q5

  17. Proving Program Properties PARTIAL CORRECTNESS Specify the program with pre- and post-conditions Use “inference rules” to annotate the program proving that from the pre-condition we can reach the post-condition Show that loops and recursive functions terminate TOTAL CORRECTNESS

  18. Assignment Rule WHAT MUST BE TRUE ABOUT e WHATEVER IS //@ assert P(e) ; BEFORE IF WE WANT TRUE ABOUT e v = e ; SOME PROPERTY TO BEFORE IS TRUE //@ assert P(v) ; BE TRUE ABOUT v ABOUT v AFTER AFTER?

  19. The Weakest Precondition is… THE LEAST RESTRICTIVE PRE-CONDITION SUCH THAT THE POST-CONDITION MUST HOLD. Q6

  20. Examples… //@ assert P(e) ; v = e ; //@ assert P(v) ; Q7,8

  21. Examples 2: //@ assert 11 == y; 1: //@ assert 14 - 3 == y; x = 3; //@ assert 14 - x == y; 2: //@ assert 100 <= n * 3 && n * 3 < p; 1: n’ = n * 3; // tick trick //@ assert 100 <= n’ && n’ < p;

  22. Composition Rule IF: //@ assert P 1 ; THEN: S 1 ; //@ assert P 1 ; //@ assert Q 1 ; S 1 ; AND //@ assert Q 1 ; //@ assert P 2 ; //@ assert P 2 ; S 2 ; S 2 ; //@ assert Q 2 ; //@ assert Q 2 ; AND Q 1 ==> P 2 IMPORTANT: IMPLICATIONS GO DOWN Q9

  23. Composition Example 3: //@ assert 3 * (x + y) > 10; 2: x’ = x + y; // tick trick 1: //@ assert 3 * x’ > 10; y = 3 * x; //@ assert y > 10;

Recommend

UMBC A B M A L T F O U M B C I M Y O R T 1 (11/26/07) I E S R C E O V

UMBC A B M A L T F O U M B C I M Y O R T 1 (11/26/07) I E S R C E O V

VLSI Design Verification and Test Simulation CMPE 646 Design Verification Simulation used for 1) design verification : verify the correctness of the design and 2) test verification. Design verification: Specification Critical or

426 views • 15 slides
Design Verification with e The language e Contains all the constructs necessary

Design Verification with e The language e Contains all the constructs necessary

Design Verification with e The language e Contains all the constructs necessary for a complete verification tool Allows objects in the verification environment to be extended Needs to express constraints Coverage

946 views • 80 slides
CMPE 646: VLSI Design Verification and Test Course: CMPE 646: VLSI Design Verification and Test,

CMPE 646: VLSI Design Verification and Test Course: CMPE 646: VLSI Design Verification and Test,

CMPE 646: VLSI Design Verification and Test Course: CMPE 646: VLSI Design Verification and Test, Fall 2006. 3 credits. Course Instructor: Dr. Jim Plusquellic, Professor of Computer Science &amp; Electrical Engineering Office: ECS 212,

760 views • 3 slides
Outline Outline Review of PSP Levels Overview Selecting Verification Methods Design

Outline Outline Review of PSP Levels Overview Selecting Verification Methods Design

Outline Outline Review of PSP Levels Overview Selecting Verification Methods Design Verification Design Standards Design Verification Verification Methods Approaches State Machines Program Tracing Program Correctness

499 views • 3 slides
The Technical Design Report (TDR) and the Detailed (functional) Specification of the CBM

The Technical Design Report (TDR) and the Detailed (functional) Specification of the CBM

The Technical Design Report (TDR) and the Detailed (functional) Specification of the CBM Superconducting Dipole G. Moritz CBM Dipole Conceptional Design Review May 22-24 2017 GSI Darmstadt CBM Dipole Design history work by JINR, Dubna

777 views • 25 slides
Object-Oriented subsystems, modules and their relationships a detailed design Analysis

Object-Oriented subsystems, modules and their relationships a detailed design Analysis

ICS 121: Software Methods and Tools Topic 10:OOAD Design - Review Design transforms requirements into ICS 121 Topic 10: an architecture diagram Object-Oriented subsystems, modules and their relationships a detailed design

201 views • 6 slides
Multidisciplinary Senior Design (MSD I) P18718: Detailed Design Review Nick Campagnola Matt

Multidisciplinary Senior Design (MSD I) P18718: Detailed Design Review Nick Campagnola Matt

Multidisciplinary Senior Design (MSD I) P18718: Detailed Design Review Nick Campagnola Matt Eisner Ryan Leeson Kyle Leung Alec Meta Agenda Background Problem Statement Engineering/Customer Requirements Review Design Review

390 views • 21 slides
Design Verification: Deductive Verification Virendra Singh Associate Professor C omputer A

Design Verification: Deductive Verification Virendra Singh Associate Professor C omputer A

Design Verification: Deductive Verification Virendra Singh Associate Professor C omputer A rchitecture and D ependable S ystems L ab Department of Electrical Engineering Indian Institute of Technology Bombay http://www.ee.iitb.ac.in/~viren/

627 views • 27 slides
Detailed Design Review Key Objectives? Catch mistakes and improve design Verify

Detailed Design Review Key Objectives? Catch mistakes and improve design Verify

Detailed Design Review Key Objectives? Catch mistakes and improve design Verify readiness to spend money and build prototype: Specs (needs) are addressed Risks are addressed Participants? Guide, TA, and all team members

380 views • 11 slides
Final Presentation P14452 Overview MSDI Review MSDII Customer Needs Detailed

Final Presentation P14452 Overview MSDI Review MSDII Customer Needs Detailed

Final Presentation P14452 Overview MSDI Review MSDII Customer Needs Detailed Design Revisited Requirements Build Functional Test Decomposition Reflect Concept Selection Detailed Design What Remains

598 views • 33 slides
UMBC A B M A L T F O U M B C I M Y O R T 1 (April 13, 2000 6:35 pm) I E S R

UMBC A B M A L T F O U M B C I M Y O R T 1 (April 13, 2000 6:35 pm) I E S R

Advanced VLSI Design VLSI Simulation CMPE 414/CMSC 691x Overview Design Automation is essential in dealing with the complexity of IC design and verification. There are a wide range of tools available: Analysis and verification tools to

388 views • 16 slides
Function Oriented Design and Detailed Design Some Concepts Software Design Noun :

Function Oriented Design and Detailed Design Some Concepts Software Design Noun :

Function Oriented Design and Detailed Design Some Concepts Software Design Noun : Represents the abstract entity -design- of a system Design of an existing system Every existing system has a design Design of a system to be

959 views • 81 slides
Classes: Detailed View vs. Compact View (1) Drawing a Design Diagram using the Business Object

Classes: Detailed View vs. Compact View (1) Drawing a Design Diagram using the Business Object

Classes: Detailed View vs. Compact View (1) Drawing a Design Diagram using the Business Object Notation (BON) Detailed view shows a selection of: features (queries and/or commands) contracts (class invariant and feature

669 views • 7 slides
ETA Workshop 1.1 Agenda 10:30 Welcome and Introduction 11:00 Overview of ETA Detailed Design

ETA Workshop 1.1 Agenda 10:30 Welcome and Introduction 11:00 Overview of ETA Detailed Design

ETA Workshop 1.1 Agenda 10:30 Welcome and Introduction 11:00 Overview of ETA Detailed Design Process Outline of key issues to be covered 11:30 Update on Euphemia Testing 12:30 Lunch 13:15 Treatment of Transmission Losses 14:15

443 views • 25 slides
Multidisciplinary Senior Design (MSDI) P18718: Preliminary Detailed Design Review Nick Campagnola

Multidisciplinary Senior Design (MSDI) P18718: Preliminary Detailed Design Review Nick Campagnola

Multidisciplinary Senior Design (MSDI) P18718: Preliminary Detailed Design Review Nick Campagnola Matt Eisner Ryan Leeson Kyle Leung Alec Meta Agenda Background Problem Statement Engineering/Customer Requirements Review

425 views • 27 slides
Detailed Design Review Tethered Glider P14462 12/10/2013 14462 Outline Engineering

Detailed Design Review Tethered Glider P14462 12/10/2013 14462 Outline Engineering

Detailed Design Review Tethered Glider P14462 12/10/2013 14462 Outline Engineering Requirements Glider Status Tether Design Base Station Design DAQ System Bill of Materials DOE ANOVA Analysis Test Plan MSD II

807 views • 62 slides
Use of Task Graph Model for Parallel Program Design Detailed steps for parallel program design

Use of Task Graph Model for Parallel Program Design Detailed steps for parallel program design

CS140, 2014 I-1 Use of Task Graph Model for Parallel Program Design Detailed steps for parallel program design and implementation 1. Preparing Parallelism Computational task partitioning. Aggregate tasks when needed.

374 views • 16 slides
PROGRAM VERIFICATION SCHEMATIC DESIGN DESIGN DEVELOPMENT CONSTRUCTION DOCUMENTS CONSTRUCTION

PROGRAM VERIFICATION SCHEMATIC DESIGN DESIGN DEVELOPMENT CONSTRUCTION DOCUMENTS CONSTRUCTION

9-22-16: 10-6-16 BUILDING PRELIMINARY REVIEW BOARD OF COMMISSION DOCUMENTS COMPLETE REGENTS MEETING. AUTHORITY TO 9-22-16: CONSTRUCT DESIGN REPORT COMPLETE PROGRAM VERIFICATION SCHEMATIC DESIGN DESIGN DEVELOPMENT CONSTRUCTION

334 views • 6 slides
Which is more useful? Reality Detailed map Detailed public

Which is more useful? Reality Detailed map Detailed public

Which is more useful? Reality Detailed map Detailed public transporta6on Simplified metro Saturday, July 22, 17 Models dont need to reflect reality A model is an

791 views • 61 slides
Flight Readiness Review Presentation Vanderbilt Aerospace Design Lab Vanderbilt Aerospace Design

Flight Readiness Review Presentation Vanderbilt Aerospace Design Lab Vanderbilt Aerospace Design

Flight Readiness Review Presentation Vanderbilt Aerospace Design Lab Vanderbilt Aerospace Design Lab: FRR 3/6/2017 Meeting Agenda Mission Overview Vehicle Design &amp; Verification Payload Design &amp; Verification Launch Results Ground

980 views • 66 slides
Verification and Validation for Safety in Robots Kerstin Eder Design Automation and Verification

Verification and Validation for Safety in Robots Kerstin Eder Design Automation and Verification

Verification and Validation for Safety in Robots Kerstin Eder Design Automation and Verification Trustworthy Systems Laboratory Verification and Validation for Safety in Robots, Bristol Robotics Laboratory Verification and Validation for Safety

1.29k views • 72 slides
Design of an ice-based cold neutron source for Dhruva Phase II: Detailed Mock up Test to Confirm

Design of an ice-based cold neutron source for Dhruva Phase II: Detailed Mock up Test to Confirm

Design of an ice-based cold neutron source for Dhruva Phase II: Detailed Mock up Test to Confirm Design Saibal Basu Solid State Physics Division Bhabha Atomic Research Centre Mumbai 400085 India 3 July 2009 RCM Malaysia 1 Plan of the talk

207 views • 18 slides
Whole Systems Energy Transparency Kerstin Eder Design Automation and Verification,

Whole Systems Energy Transparency Kerstin Eder Design Automation and Verification,

Whole Systems Energy Transparency Kerstin Eder Design Automation and Verification, Microelectronics Verification and Validation for Safety in Robots, Bristol Robotics Laboratory Department of COMPUTER SCIENCE Whole More power Systems to

1.25k views • 96 slides
UMBC A B M A L T F O U M B C I M Y O R T 1 (9/7/04) I E S R C E O V U

UMBC A B M A L T F O U M B C I M Y O R T 1 (9/7/04) I E S R C E O V U

VLSI Design Verification and Test Introduction CMPE 646 VLSI Design Verification and Test Instructor: Professor Jim Plusquellic Text: Michael L. Bushnell and Vishwani D. Agrawal, Essentials of Electronic Test- ing, for Digital, Memory and

176 views • 15 slides

More recommend