Verification of Parameterised FPGA Circuit Descriptions with Layout ...

24.04.2013 Views
CHAPTER 2. BACKGROUND AND RELATED WORK 32 defined in Figure 2.5. This proof can be represented in Isabelle as: theorem "A −→ A" apply (rule impI) apply (assumption) done The first instruction is for Isabelle to apply the rule impI which lifts the object level implication to a meta-logic implication of the form P =⇒ P (The unknowns P and Q in the axiom are both unified with the constant A). From this state the proof can be completed using the assumption method which attempts to solve the right hand side of a meta-implication using the assumptions on the left. A =⇒ A can be proved this way leaving an empty (complete) proof state and the proof is completed with the done command. Isabelle can also solve simple theorems automatically. For example, the proof (in higher-order logic) that reversing a list twice is the same as the original list can be proved as: theorem rev rev [simp]: "rev (rev xs) = xs" apply (induct xs) apply (auto) done This theorem has been named (rev rev) and declared as a simplification rule. It is proved by the application of induction on the variable xs and then automatically by Isabelle. The auto method uses both of Isabelle’s two most useful automation tools, the simplifier and the classical reasoner. The simplifier is a term rewriting tool. It repeatedly applies equations from left to right, using declared sets of simplification rules. Virtually any theorem in the form A = B can be used as a simplification rule however it is generally the case that only rules which genuinely simplify the proposition should be declared as automatic simplification rules. In the example above,xs is clearly simpler thanrev (rev xs) so this could be safely used as a simplification rule however if the theorem were proved in reverse – xs = rev (rev xs) – then this would not be a suitable simplification rule. Not only does it not simplify the proposition but it will actually cause the simplifier to loop infinitely by continually expanding the xs on the right hand side. It is often useful to invoke the simplifier by itself, which can be done using Isabelle’s simp method.

CHAPTER 2. BACKGROUND AND RELATED WORK 33 The classical reasoner is a family of tools which performs backward proofs automatically. The classical reasoner performs backward proof search and, combined with the simplifier, can prove many theorems without much user intervention. The classical reasoner can decompose goals into less complex subgoals using pre-proved lemmas and thus can be guided by supplying sets of useful lemmas that will substantially shorten the proof. 2.6 Summary In this chapter we have introduced some of the background to the work described in this thesis and highlighted some related work. We have described FPGA architectures in general and examining the structure of the Xilinx Virtex-II FGPA family in more detail. We have described Quartz, the hardware description language we use as the basis of this work and shown how it supports formal reasoning. We have described the field of automated verification based on theorem proving and com- pared this approach with model checking. Finally, we have discussed in detail some of the capabilities of the Isabelle generic theorem prover we use in this work.

Page 1 and 2: Imperial College of Science, Techno

Page 3 and 4: Acknowledgements Firstly, I’d lik

Page 5 and 6: TABLE OF CONTENTS iv 2.5 Isabelle:

Page 7 and 8: TABLE OF CONTENTS vi 5.3.1 Speciali

Page 9 and 10: TABLE OF CONTENTS viii C.1.1 fst .

Page 11 and 12: Chapter 1 Introduction This thesis

Page 13 and 14: CHAPTER 1. INTRODUCTION 3 B A C Fig

Page 15 and 16: CHAPTER 1. INTRODUCTION 5 pler, all

Page 17 and 18: CHAPTER 2. BACKGROUND AND RELATED W












Page 41: CHAPTER 2. BACKGROUND AND RELATED W

Page 45 and 46: CHAPTER 3. GENERATING PARAMETERISED















Page 75 and 76: Chapter 4 Verifying Circuit Layouts

Page 77 and 78: CHAPTER 4. VERIFYING CIRCUIT LAYOUT




















Page 117 and 118: Chapter 5 Specialisation In this ch

Page 119 and 120: CHAPTER 5. SPECIALISATION 109 opera

Page 121 and 122: CHAPTER 5. SPECIALISATION 111 // Ha

Page 123 and 124: CHAPTER 5. SPECIALISATION 113 circu

Page 125 and 126: CHAPTER 5. SPECIALISATION 115 const

Page 127 and 128: CHAPTER 5. SPECIALISATION 117 block

Page 129 and 130: CHAPTER 5. SPECIALISATION 119 Modif

Page 131 and 132: CHAPTER 5. SPECIALISATION 121 Buffe

Page 133 and 134: CHAPTER 5. SPECIALISATION 123 a fas

Page 135 and 136: CHAPTER 5. SPECIALISATION 125 block

Page 137 and 138: CHAPTER 5. SPECIALISATION 127 y y y

Page 139 and 140: CHAPTER 5. SPECIALISATION 129 with

Page 141 and 142: CHAPTER 6. LAYOUT CASE STUDIES 131

















Page 175 and 176: CHAPTER 7. CONCLUSION AND FUTURE WO





Page 185 and 186: Bibliography [1] A. Aggoun and N. B

Page 187 and 188: BIBLIOGRAPHY 177 [19] H. Gelernter.

Page 189 and 190: BIBLIOGRAPHY 179 [41] Y. Li and M.

Page 191 and 192: BIBLIOGRAPHY 181 [60] L. C. Paulson

Page 193 and 194: BIBLIOGRAPHY 183 [83] J. Voeten. On

Page 195 and 196: APPENDIX A. QUARTZ LANGUAGE GRAMMAR

Page 197 and 198: Appendix B Theoretical Basis for La

Page 199 and 200: APPENDIX B. THEORETICAL BASIS FOR L









Page 217 and 218: Appendix C Placed Combinator Librar

Page 219 and 220: APPENDIX C. PLACED COMBINATOR LIBRA






























Page 279 and 280: APPENDIX D. CIRCUIT LAYOUT CASE STU
























Page 327: APPENDIX D. CIRCUIT LAYOUT CASE STU

theorem

layout

bits

height

quartz

width

circuit

combinator

theorems

appendix

verification

parameterised

fpga

descriptions

www.doc.ic.ac.uk

Verification of Parameterised FPGA Circuit Descriptions with Layout ...

Verification of Parameterised FPGA Circuit Descriptions with Layout ... ... View more Verification of Parameterised FPGA Circuit Descriptions with Layout ...

Delete template?

Save as template ?

Verification of Parameterised FPGA Circuit Descriptions with Layout ... Verification of Parameterised FPGA Circuit Descriptions with Layout ...