Presentation is loading. Please wait.

Presentation is loading. Please wait.

SMV Example: Bus Protocol Ed Clarke Daniel Kroening Carnegie Mellon University.

Published byKiya Starkey Modified over 10 years ago

Similar presentations

Presentation on theme: "SMV Example: Bus Protocol Ed Clarke Daniel Kroening Carnegie Mellon University."— Presentation transcript:

1 SMV Example: Bus Protocol Ed Clarke Daniel Kroening Carnegie Mellon University

2 Overview Node 1 Design goals: Collision free operation Priorities for the nodes Design goals: Collision free operation Priorities for the nodes Preliminaries: Single, shared bus Every node can broadcast on this bus Preliminaries: Single, shared bus Every node can broadcast on this bus Node 2 Node 3 Node 4 Similar busses are used in the automotive industry CAN Byteflight Similar busses are used in the automotive industry CAN Byteflight

3 Basic Idea Achieve design goals by: Assign unique time to each node Guarantees Collision free operation The node with the lower time gets priority Achieve design goals by: Assign unique time to each node Guarantees Collision free operation The node with the lower time gets priority Operation Principle Round based algorithm First person to start sending gets the bus Operation Principle Round based algorithm First person to start sending gets the bus

4 Example Node 1 Node 2 Node 3 Node 4 Bus time

5 Example Node 1 Node 2 Node 3 Node 4 Bus time Hm, I wont send

6 Example Node 1 Node 2 Node 3 Node 4 Bus time I will send!

7 Example Node 1 Node 2 Node 3 Node 4 Bus time

8 Example Node 1 Node 2 Node 3 Node 4 Bus time

9 Example Node 1 Node 2 Node 3 Node 4 Bus time

10 Example Node 1 Node 2 Node 3 Node 4 Bus time RESET CLOCK! Start of new Cycle

11 Example Node 1 Node 2 Node 3 Node 4 Bus time Hm, I wont send

12 SMV Model Design: A state machine controls each node Counter keeps track of clock Design: A state machine controls each node Counter keeps track of clock Counter: Reset if someone sends Increment otherwise Counter: Reset if someone sends Increment otherwise MODULE node(bus_active) VAR counter: 0.. 99; ASSIGN next(counter):= case bus_active : 0; counter < 99: counter + 1; 1: 99; esac;

13 SMV Model Design: A state machine controls each node Counter keeps track of the clock Design: A state machine controls each node Counter keeps track of the clock Bus busy Skip Wait Sending bus_active beginning counter=priority

14 SMV Model MODULE node(priority, bus_active) VAR counter: 0.. 99; state: { busy, skip, waiting, sending }; ASSIGN init(state):=busy; next(state):= case state=busy & beginning : { skip, waiting }; state=busy : busy; state=skip & bus_active : busy; state=skip : skip; state=waiting & bus_active : waiting; state=waiting & counter=priority: sending; state=waiting: waiting; state=sending: { busy, sending }; esac;

15 SMV Model MODULE main VAR node1: node(1, bus_active); node2: node(2, bus_active); node3: node(3, bus_active); node4: node(4, bus_active); DEFINE bus_active:=node1.is_sending | node2.is_sending | node3.is_sending | node4.is_sending;

16 Properties Desired Properties Safety: Only one node uses the bus at a given time Desired Properties Safety: Only one node uses the bus at a given time SPEC AG (node1.is_sending -> (!node2.is_sending & !node3.is_sending & !node4.is_sending)) SPEC AG (node2.is_sending -> (!node1.is_sending & !node3.is_sending & !node4.is_sending)) SPEC AG (node3.is_sending -> (!node1.is_sending & !node2.is_sending & !node4.is_sending)) SPEC AG (node4.is_sending -> (!node1.is_sending & !node2.is_sending & !node3.is_sending)) SPEC AG (node1.is_sending -> (!node2.is_sending & !node3.is_sending & !node4.is_sending)) SPEC AG (node2.is_sending -> (!node1.is_sending & !node3.is_sending & !node4.is_sending)) SPEC AG (node3.is_sending -> (!node1.is_sending & !node2.is_sending & !node4.is_sending)) SPEC AG (node4.is_sending -> (!node1.is_sending & !node2.is_sending & !node3.is_sending))

17 Properties Desired Properties Liveness: a node that is waiting for the bus will eventually get it, given that the nodes with higher priority are fair Desired Properties Liveness: a node that is waiting for the bus will eventually get it, given that the nodes with higher priority are fair FAIRNESS node1.is_skipping FAIRNESS node1.is_skipping & node2.is_skipping FAIRNESS node1.is_skipping & node2.is_skipping & node3.is_skipping SPEC AG AF bus_active SPEC AG(node1.is_waiting -> AF node1.is_sending) SPEC AG(node2.is_waiting -> AF node2.is_sending) SPEC AG(node3.is_waiting -> AF node3.is_sending) SPEC AG(node4.is_waiting -> AF node4.is_sending) FAIRNESS node1.is_skipping FAIRNESS node1.is_skipping & node2.is_skipping FAIRNESS node1.is_skipping & node2.is_skipping & node3.is_skipping SPEC AG AF bus_active SPEC AG(node1.is_waiting -> AF node1.is_sending) SPEC AG(node2.is_waiting -> AF node2.is_sending) SPEC AG(node3.is_waiting -> AF node3.is_sending) SPEC AG(node4.is_waiting -> AF node4.is_sending)

Download ppt "SMV Example: Bus Protocol Ed Clarke Daniel Kroening Carnegie Mellon University."

Similar presentations

Oracle Partner of the year 2010 & 2012 +44 (0) 844 811 3600 A RedStack Technology Company Oracle EMEA Database Partner.

Oracle Partner of the year 2010 & (0) A RedStack Technology Company Oracle EMEA Database Partner.
Does the IEEE 802.11 MAC Protocol Work Well in Multihop Wireless Ad Hoc Networks? Shugong Xu Tark Saadawi June, 2001 IEEE Communications Magazine.

Does the IEEE MAC Protocol Work Well in Multihop Wireless Ad Hoc Networks? Shugong Xu Tark Saadawi June, 2001 IEEE Communications Magazine.
DATE 2003, Munich, Germany Formal Verification of a System-on-Chip Bus Protocol Abhik Roychoudhury Tulika Mitra S.R. Karri National University of Singapore.

DATE 2003, Munich, Germany Formal Verification of a System-on-Chip Bus Protocol Abhik Roychoudhury Tulika Mitra S.R. Karri National University of Singapore.
Object / Notification Service (v0.1). Hypothetical tree that stores the information about workstations a user is logged in to. Each o is a node. Although.

Object / Notification Service (v0.1). Hypothetical tree that stores the information about workstations a user is logged in to. Each o is a node. Although.
Introduction to SMV Part 2

Introduction to SMV Part 2
Algorithmic Software Verification VII. Computation tree logic and bisimulations.

Algorithmic Software Verification VII. Computation tree logic and bisimulations.
Distributed Constraint Optimization Problems M OHSEN A FSHARCHI.

Distributed Constraint Optimization Problems M OHSEN A FSHARCHI.
CS425 /CSE424/ECE428 – Distributed Systems – Fall 2011 Material derived from slides by I. Gupta, M. Harandi, J. Hou, S. Mitra, K. Nahrstedt, N. Vaidya.

CS425 /CSE424/ECE428 – Distributed Systems – Fall 2011 Material derived from slides by I. Gupta, M. Harandi, J. Hou, S. Mitra, K. Nahrstedt, N. Vaidya.
Model Checking I What are LTL and CTL?. and or dreq q0 dack q0bar.

Model Checking I What are LTL and CTL?. and or dreq q0 dack q0bar.
Mutual Exclusion By Shiran Mizrahi. Critical Section class Counter { private int value = 1; //counter starts at one public Counter(int c) { //constructor.

Mutual Exclusion By Shiran Mizrahi. Critical Section class Counter { private int value = 1; //counter starts at one public Counter(int c) { //constructor.
Chapter 15 Basic Asynchronous Network Algorithms

Chapter 15 Basic Asynchronous Network Algorithms
Leader Election Let G = (V,E) define the network topology. Each process i has a variable L(i) that defines the leader.  i,j  V  i,j are non-faulty.

Leader Election Let G = (V,E) define the network topology. Each process i has a variable L(i) that defines the leader.  i,j  V  i,j are non-faulty.
CIS 540 Principles of Embedded Computation Spring 2015 Instructor: Rajeev Alur

CIS 540 Principles of Embedded Computation Spring Instructor: Rajeev Alur
Fundamentals of Computer Networks ECE 478/578 Lecture #9: Collision Resolution and Collision Free Protocols Instructor: Loukas Lazos Dept of Electrical.

Fundamentals of Computer Networks ECE 478/578 Lecture #9: Collision Resolution and Collision Free Protocols Instructor: Loukas Lazos Dept of Electrical.
Parallel Processing (CS526) Spring 2012(Week 6).  A parallel algorithm is a group of partitioned tasks that work with each other to solve a large problem.

Parallel Processing (CS526) Spring 2012(Week 6).  A parallel algorithm is a group of partitioned tasks that work with each other to solve a large problem.
Minimum Spanning Trees

Minimum Spanning Trees
CIS 540 Principles of Embedded Computation Spring 2015 Instructor: Rajeev Alur

CIS 540 Principles of Embedded Computation Spring Instructor: Rajeev Alur
Mobile and Wireless Computing Institute for Computer Science, University of Freiburg Western Australian Interactive Virtual Environments Centre (IVEC)

Mobile and Wireless Computing Institute for Computer Science, University of Freiburg Western Australian Interactive Virtual Environments Centre (IVEC)
© 2011 Carnegie Mellon University Introduction to SMV Part 2 Arie Gurfinkel (SEI/CMU) based on material by Prof. Clarke and others.

© 2011 Carnegie Mellon University Introduction to SMV Part 2 Arie Gurfinkel (SEI/CMU) based on material by Prof. Clarke and others.
What we will cover…  Distributed Coordination 1-1.

What we will cover…  Distributed Coordination 1-1.

Similar presentations

Ads by Google