Presentation is loading. Please wait.

Presentation is loading. Please wait.

Cut-Based Inductive Invariant Computation Michael Case 1,2 Alan Mishchenko 1 Robert Brayton 1 Robert Brayton 1 1 UC Berkeley 2 IBM Systems and Technology.

Published byHilary Patterson Modified over 9 years ago

Similar presentations

Presentation on theme: "Cut-Based Inductive Invariant Computation Michael Case 1,2 Alan Mishchenko 1 Robert Brayton 1 Robert Brayton 1 1 UC Berkeley 2 IBM Systems and Technology."— Presentation transcript:

1 Cut-Based Inductive Invariant Computation Michael Case 1,2 Alan Mishchenko 1 Robert Brayton 1 Robert Brayton 1 1 UC Berkeley 2 IBM Systems and Technology Group, Austin, TX

2 2 Overview Motivation Motivation Previous work Previous work Inductive invariants Inductive invariants Selecting invariant candidates Selecting invariant candidates Proving inductive invariants Proving inductive invariants Experimental results Experimental results Conclusions and future work Conclusions and future work

3 3 Motivation Inductive invariants in verification Inductive invariants in verification Prevent spurious counter-examples to induction Prevent spurious counter-examples to induction Speed up SAT and improve SAT-based algorithms Speed up SAT and improve SAT-based algorithms Interpolation, functional dependency, etc Interpolation, functional dependency, etc Inductive invariants in synthesis Inductive invariants in synthesis Represent over-approximation of reachable states Represent over-approximation of reachable states Can be used as care set during logic optimization Can be used as care set during logic optimization

4 4 Preventing Spurious C-Examples Spurious c-examples are Achilles' heel of induction Spurious c-examples are Achilles' heel of induction Remedy: Induction strengthening Remedy: Induction strengthening For example, property P  Q may be provable by induction, even if properties P and Q are not For example, property P  Q may be provable by induction, even if properties P and Q are not Q Q P  Q complete state space P P P P unreachable reachable

5 5 Previous Work on Induction Strengthening Van Eijk’s approach (TCAD’00) Van Eijk’s approach (TCAD’00) Use candidate equivalences Use candidate equivalences If not enough, add dangling nodes (nodes after retiming) If not enough, add dangling nodes (nodes after retiming) Mike Case’s approach (FMCAD’07) Mike Case’s approach (FMCAD’07) Use implications that cover counter-examples Use implications that cover counter-examples Aaron Bradley’s approach (FMCAD’07) Aaron Bradley’s approach (FMCAD’07) Use minimal clauses derive from counter-examples Use minimal clauses derive from counter-examples Proposed approach Proposed approach Create properties based on groups of signals in the network Create properties based on groups of signals in the network

6 6 Inductive Invariants If property P is hard to prove, the goal is to find a new property Q that strengthens P If property P is hard to prove, the goal is to find a new property Q that strengthens P Q is an inductive invariant Q is an inductive invariant n P Q Y X

7 7 Selecting Invariant Candidates Perform two rounds of simulation: Perform two rounds of simulation: Combinational (C) Combinational (C) Random primary inputs and register outputs Random primary inputs and register outputs Sequential (S) Sequential (S) Random primary inputs and reachable states at register outputs Random primary inputs and reachable states at register outputs Collect combinations in Y-space of n appearing in C but not in S Collect combinations in Y-space of n appearing in C but not in S These are likely due to unreachable states These are likely due to unreachable states Consider one combination, say, (0110) Consider one combination, say, (0110) Q(y) = y1  y2  y3  y4 Q(y) = y1  y2  y3  y4 Q(y) is likely true only in unreachable states Q(y) is likely true only in unreachable states Its complement is a candidate inductive invariant Its complement is a candidate inductive invariant Q(y) = y1  y2  y3  y4 Q(y) = y1  y2  y3  y4 n P Q Y X

8 8 a b c d g f Cuts of a Cut Assignments Appears in Comb. Sim. Appears in Seq. Sim. Candidate Seq. Invariant Candidate Seq. Invariant {b, c} bc bcb+c … {e, f, g} efge+f+g efg efg … abcdefg1111010 0111111 1100010 0101100 1000100 Combinational Simulation Dataabcdefg0111100 0110011 1110100 1010101 1000010 Sequential Simulation Data e Example of Candidate Invariants

9 9 Proving Inductive Invariants Collecting candidate inductive invariants Collecting candidate inductive invariants Constants (1-clauses) Constants (1-clauses) Implications (2-clauses) Implications (2-clauses) Values of signals at n-cuts (n-clauses) Values of signals at n-cuts (n-clauses) Values of signals at n randomly selected nodes (n-clauses) Values of signals at n randomly selected nodes (n-clauses) Proving inductive invariants Proving inductive invariants Use k-step induction Use k-step induction Check invariants in the initialized k-frames Check invariants in the initialized k-frames Assume invariants true in the uninitialized k-frames, and prove them in the k+1 st frame Assume invariants true in the uninitialized k-frames, and prove them in the k+1 st frame

10 10 Experiment Overview Implemented invariant computation in ABC and in IBM’s SixthSense tool Implemented invariant computation in ABC and in IBM’s SixthSense tool Used in synthesis Used in synthesis Lead to 1-3% improvement in AIG nodes Lead to 1-3% improvement in AIG nodes Overall results are marginal Overall results are marginal Used in verification Used in verification Observe strengthening on some properties Observe strengthening on some properties Overall results are not impressive Overall results are not impressive Used to improve several algorithms Used to improve several algorithms Interpolation, functional dependency, etc Interpolation, functional dependency, etc Overall results are promising Overall results are promising

11 11 Experimental Results

12 12 Conclusions Developed a new method for expressing candidate invariants using n-clauses Developed a new method for expressing candidate invariants using n-clauses Created a scalable hierarchical approach to proving the candidate invariants, which trades off computational effort for the number and expressiveness of invariants generated Created a scalable hierarchical approach to proving the candidate invariants, which trades off computational effort for the number and expressiveness of invariants generated Performed initial experiments to evaluate the usefulness of inductive invariants Performed initial experiments to evaluate the usefulness of inductive invariants

13 13 Future Work Run further experiments and finetune using industrial benchmarks Run further experiments and finetune using industrial benchmarks Integrate the induction strengthening engine into equivalence checkers and model checkers Integrate the induction strengthening engine into equivalence checkers and model checkers Use the computed invariant clause sets as don’t-cares for circuit restructuring in technology-dependent synthesis Use the computed invariant clause sets as don’t-cares for circuit restructuring in technology-dependent synthesis

Download ppt "Cut-Based Inductive Invariant Computation Michael Case 1,2 Alan Mishchenko 1 Robert Brayton 1 Robert Brayton 1 1 UC Berkeley 2 IBM Systems and Technology."

Similar presentations

The Synthesis of Cyclic Circuits with SAT and Interpolation By John Backes and Marc Riedel ECE University of Minnesota.

The Synthesis of Cyclic Circuits with SAT and Interpolation By John Backes and Marc Riedel ECE University of Minnesota.
Efficient Implementation of Property Directed Reachability Niklas Een, Alan Mishchenko, Robert Brayton.

Efficient Implementation of Property Directed Reachability Niklas Een, Alan Mishchenko, Robert Brayton.
Recording Synthesis History for Sequential Verification Robert Brayton Alan Mishchenko UC Berkeley.

Recording Synthesis History for Sequential Verification Robert Brayton Alan Mishchenko UC Berkeley.
Aaron Bradley University of Colorado, Boulder

Aaron Bradley University of Colorado, Boulder
© Anvesh Komuravelli IC3/PDR Overview of IC3/PDR Anvesh Komuravelli Carnegie Mellon University.

© Anvesh Komuravelli IC3/PDR Overview of IC3/PDR Anvesh Komuravelli Carnegie Mellon University.
ECE 667 - Synthesis & Verification1 ECE 667 Spring 2011 Synthesis and Verification of Digital Systems Verification Introduction.

ECE Synthesis & Verification1 ECE 667 Spring 2011 Synthesis and Verification of Digital Systems Verification Introduction.
Efficient Reachability Checking using Sequential SAT G. Parthasarathy, M. K. Iyer, K.-T.Cheng, Li. C. Wang Department of ECE University of California –

Efficient Reachability Checking using Sequential SAT G. Parthasarathy, M. K. Iyer, K.-T.Cheng, Li. C. Wang Department of ECE University of California –
Inductively Finding a Reachable State Space Over-Approximation EE 290a Project Presentation Mike Case.

Inductively Finding a Reachable State Space Over-Approximation EE 290a Project Presentation Mike Case.
DAG-Aware AIG Rewriting Alan Mishchenko, Satrajit Chatterjee, Robert Brayton Department of EECS, University of California Berkeley Presented by Rozana.

DAG-Aware AIG Rewriting Alan Mishchenko, Satrajit Chatterjee, Robert Brayton Department of EECS, University of California Berkeley Presented by Rozana.
4/21/2005JHJ1 Structure-dependent Sequential Equivalence Checking EE290A UC Berkeley Spring 2005.

4/21/2005JHJ1 Structure-dependent Sequential Equivalence Checking EE290A UC Berkeley Spring 2005.
Automated Extraction of Inductive Invariants to Aid Model Checking Mike Case DES/CHESS Seminar EECS Department, UC Berkeley April 10, 2007.

Automated Extraction of Inductive Invariants to Aid Model Checking Mike Case DES/CHESS Seminar EECS Department, UC Berkeley April 10, 2007.
Enhancing and Integrating Model Checking Engines Robert Brayton Alan Mishchenko UC Berkeley June 15, 2009.

Enhancing and Integrating Model Checking Engines Robert Brayton Alan Mishchenko UC Berkeley June 15, 2009.
Scalable and Scalably-Verifiable Sequential Synthesis Alan Mishchenko Mike Case Robert Brayton UC Berkeley.

Scalable and Scalably-Verifiable Sequential Synthesis Alan Mishchenko Mike Case Robert Brayton UC Berkeley.
Combinational and Sequential Mapping with Priority Cuts Alan Mishchenko Sungmin Cho Satrajit Chatterjee Robert Brayton UC Berkeley.

Combinational and Sequential Mapping with Priority Cuts Alan Mishchenko Sungmin Cho Satrajit Chatterjee Robert Brayton UC Berkeley.
ABC: A System for Sequential Synthesis and Verification BVSRC Berkeley Verification and Synthesis Research Center Robert Brayton, Niklas Een, Alan Mishchenko,

ABC: A System for Sequential Synthesis and Verification BVSRC Berkeley Verification and Synthesis Research Center Robert Brayton, Niklas Een, Alan Mishchenko,
The Synergy between Logic Synthesis and Equivalence Checking R. Brayton UC Berkeley Thanks to SRC, NSF, California Micro Program and industrial sponsors,

The Synergy between Logic Synthesis and Equivalence Checking R. Brayton UC Berkeley Thanks to SRC, NSF, California Micro Program and industrial sponsors,
SAT-Based Model Checking Without Unrolling Aaron R. Bradley.

SAT-Based Model Checking Without Unrolling Aaron R. Bradley.
PDR: Property Directed Reachability AKA ic3: SAT-Based Model Checking Without Unrolling Aaron Bradley University of Colorado, Boulder University of Colorado,

PDR: Property Directed Reachability AKA ic3: SAT-Based Model Checking Without Unrolling Aaron Bradley University of Colorado, Boulder University of Colorado,
Research Roadmap Past – Present – Future Robert Brayton Alan Mishchenko Logic Synthesis and Verification Group UC Berkeley.

Research Roadmap Past – Present – Future Robert Brayton Alan Mishchenko Logic Synthesis and Verification Group UC Berkeley.
1 Alan Mishchenko Research Update June-September 2008.

1 Alan Mishchenko Research Update June-September 2008.

Similar presentations

Ads by Google