Verification of Parameterised FPGA Circuit Descriptions with Layout ...

More documents

Recommendations

Info

CHAPTER 4. VERIFYING CIRCUIT LAYOUTS 90 Overall our tacticals prove good at proving intersection theorems and are mostly effective at proving validity and containment theorems. 4.6.2 Improved Proof Scripts Following our experiments with tactical-based proofs of the Prelude library, we attempt the same proofs using Isabelle’s standard auto proof method. This method interleaves invocations of the simplifier and classical reasoner and can be supplied with sets of simplification rules and theorems to use. All our decompositional theorems are proved in the style of introduction rules and are supplied to auto as such. This method proves effective for validity and containment theorems however its results on intersection theorems are far from impressive. Isabelle’s automatic tools consistently select the wrong parts of the disjunctions to attempt to prove and leave proof states that are not just unproven but actually unprovable. We therefore design a new set of rules for generating proof scripts that combines the best of these methods. auto-based proofs are generated for validity and containment theorems while custom tacticals are generated for intersection theorems. The intersection tacticals include an invocation to auto as a last resort when the other options in the tactical fail to prove the goal, thus handling the rare circumstances when the classical reasoner can prove a goal but our custom tactical can not. Returning to our map example, the complete height function validity theorem and proof is generated as: theorem height ge0 int: "Î(n::int) (R::((’t395⇒ ’t396⇒ bool,’t395⇒ ’t396⇒ int)block)) (i::(’ t395)vector) (o ::(’t396)vector). ∀ (qs691 ::’ t395) (qs692 ::’ t396). 0 ≤ (Height (qs691 ;;; R ;;; qs692)) =⇒ 0 ≤ (height (n, R) i o )" apply (auto intro: sum ge0 maxf ge0 sum ge0 frange maxf ge0 frange z aleq bc simp add: done Let def max def) The containment theorem is similarly proved using an appropriately parameterised auto. The
CHAPTER 4. VERIFYING CIRCUIT LAYOUTS 91 compiler procedure that generates these scripts also supplies the height ge0 and width ge0 theorems for all blocks used in the description as introduction rules (none in this case, since map only instantiates the supplied R block). This allows validity proofs to build upon one another. The intersection theorem for map (page 87) is proved by the generated tactical: apply (simp, rule impI, simp)? apply (( done (rule allI )+, (case tac "0 ≤ n"), rule impdisj 12of4, (rule loop sum overlap|rule loop sum overlap’), (simp add: overlap0’’)+) | ((rule allI )+, (case tac "0 ≤ n"), rule impdisj 34of4, rule loop sum overlap2, (simp add: overlap0’’)+) | auto intro: sum ge0 maxf ge0 sum nsub1 plusf maxf encloses) The loop sum overlap theorems are proved in the Structures theory. This theory contains theorems that match common layout structures, such as the layout of components in a loop. loop sum overlap is given as: Î(n::int) (j :: int) (j ’:: int). m ≤ n ;Îy. 0 ≤ f y =⇒ ((m ≤ j) ∧ (j ≤ (n − 1)) ∧ (m ≤ j’) ∧ (j’ ≤ (n − 1)) ∧ (j’ = j)) −→ ((sum (m, j − 1, f) + f j) ≤ sum (m, j’ − 1, f) | (sum (m, j’ − 1, f) + f j ’) ≤ sum (m, j − 1, f)) Its proof involves a number of steps and is given in Appendix B.8. The other loop sum overlap theorems are similar. Table 4.1 gives statistics on the proofs for some of the blocks in the Prelude library and details for all of those where proofs required manual intervention. Overall of nearly 40 blocks in the Prelude library, only 5 required manual intervention in their proofs. Using the auto method
Page 1 and 2:
Imperial College of Science, Techno
Page 3 and 4:
Acknowledgements Firstly, I’d lik
Page 5 and 6:
TABLE OF CONTENTS iv 2.5 Isabelle:
Page 7 and 8:
TABLE OF CONTENTS vi 5.3.1 Speciali
Page 9 and 10:
TABLE OF CONTENTS viii C.1.1 fst .
Page 11 and 12:
Chapter 1 Introduction This thesis
Page 13 and 14:
CHAPTER 1. INTRODUCTION 3 B A C Fig
Page 15 and 16:
CHAPTER 1. INTRODUCTION 5 pler, all
Page 17 and 18:
CHAPTER 2. BACKGROUND AND RELATED W
Page 19 and 20:
Page 21 and 22:
Page 23 and 24:
Page 25 and 26:
Page 27 and 28:
Page 29 and 30:
Page 31 and 32:
Page 33 and 34:
Page 35 and 36:
Page 37 and 38:
Page 39 and 40:
Page 41 and 42:
Page 43 and 44:
Page 45 and 46:
CHAPTER 3. GENERATING PARAMETERISED
Page 47 and 48:
CHAPTER 3. GENERATING PARAMETERISED
Page 49 and 50: CHAPTER 3. GENERATING PARAMETERISED
Page 75 and 76: Chapter 4 Verifying Circuit Layouts
Page 77 and 78: CHAPTER 4. VERIFYING CIRCUIT LAYOUT
Page 99: CHAPTER 4. VERIFYING CIRCUIT LAYOUT
Page 117 and 118: Chapter 5 Specialisation In this ch
Page 119 and 120: CHAPTER 5. SPECIALISATION 109 opera
Page 121 and 122: CHAPTER 5. SPECIALISATION 111 // Ha
Page 123 and 124: CHAPTER 5. SPECIALISATION 113 circu
Page 125 and 126: CHAPTER 5. SPECIALISATION 115 const
Page 127 and 128: CHAPTER 5. SPECIALISATION 117 block
Page 129 and 130: CHAPTER 5. SPECIALISATION 119 Modif
Page 131 and 132: CHAPTER 5. SPECIALISATION 121 Buffe
Page 133 and 134: CHAPTER 5. SPECIALISATION 123 a fas
Page 135 and 136: CHAPTER 5. SPECIALISATION 125 block
Page 137 and 138: CHAPTER 5. SPECIALISATION 127 y y y
Page 139 and 140: CHAPTER 5. SPECIALISATION 129 with
Page 141 and 142: CHAPTER 6. LAYOUT CASE STUDIES 131
Page 151 and 152:
CHAPTER 6. LAYOUT CASE STUDIES 141
Page 153 and 154:
Page 155 and 156:
Page 157 and 158:
Page 159 and 160:
Page 161 and 162:
Page 163 and 164:
Page 165 and 166:
Page 167 and 168:
Page 169 and 170:
Page 171 and 172:
Page 173 and 174:
Page 175 and 176:
CHAPTER 7. CONCLUSION AND FUTURE WO
Page 177 and 178:
Page 179 and 180:
Page 181 and 182:
Page 183 and 184:
Page 185 and 186:
Bibliography [1] A. Aggoun and N. B
Page 187 and 188:
BIBLIOGRAPHY 177 [19] H. Gelernter.
Page 189 and 190:
BIBLIOGRAPHY 179 [41] Y. Li and M.
Page 191 and 192:
BIBLIOGRAPHY 181 [60] L. C. Paulson
Page 193 and 194:
BIBLIOGRAPHY 183 [83] J. Voeten. On
Page 195 and 196:
APPENDIX A. QUARTZ LANGUAGE GRAMMAR
Page 197 and 198:
Appendix B Theoretical Basis for La
Page 199 and 200:
APPENDIX B. THEORETICAL BASIS FOR L
Page 201 and 202:
Page 203 and 204:
Page 205 and 206:
Page 207 and 208:
Page 209 and 210:
Page 211 and 212:
Page 213 and 214:
Page 215 and 216:
Page 217 and 218:
Appendix C Placed Combinator Librar
Page 219 and 220:
APPENDIX C. PLACED COMBINATOR LIBRA
Page 221 and 222:
Page 223 and 224:
Page 225 and 226:
Page 227 and 228:
Page 229 and 230:
Page 231 and 232:
Page 233 and 234:
Page 235 and 236:
Page 237 and 238:
Page 239 and 240:
Page 241 and 242:
Page 243 and 244:
Page 245 and 246:
Page 247 and 248:
Page 249 and 250:
Page 251 and 252:
Page 253 and 254:
Page 255 and 256:
Page 257 and 258:
Page 259 and 260:
Page 261 and 262:
Page 263 and 264:
Page 265 and 266:
Page 267 and 268:
Page 269 and 270:
Page 271 and 272:
Page 273 and 274:
Page 275 and 276:
Page 277 and 278:
Page 279 and 280:
APPENDIX D. CIRCUIT LAYOUT CASE STU
Page 281 and 282:
Page 283 and 284:
Page 285 and 286:
Page 287 and 288:
Page 289 and 290:
Page 291 and 292:
Page 293 and 294:
Page 295 and 296:
Page 297 and 298:
Page 299 and 300:
Page 301 and 302:
Page 303 and 304:
Page 305 and 306:
Page 307 and 308:
Page 309 and 310:
Page 311 and 312:
Page 313 and 314:
Page 315 and 316:
Page 317 and 318:
Page 319 and 320:
Page 321 and 322:
Page 323 and 324:
Page 325 and 326:
Page 327:
show all

Verification of Parameterised FPGA Circuit Descriptions with Layout ...

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?