SlideShare ist ein Scribd-Unternehmen logo

2010 bristol q1_hybrid-formal-coverage

O
Obsidian Software
1 von 17
Downloaden Sie, um offline zu lesen
Hybrid-Formal Coverage Convergence Dan Benua Synopsys Verification Group January 18, 2010 1
Abstract •  Formal and Hybrid methods typically employed in property checking can also be leveraged to attack coverage convergence problems. •  The Synopsys Magellan hybrid-formal tool has supported coverage convergence on production designs for several years. •  This talk will briefly review the technology and methodology considerations for this application. •  Hybrid formal technology is distinct from the automation of stimulus coverage closure used in simulation. (e.g. “Echo” feature in VCS) 2
Agenda •  Coverage Convergence & FPV •  The Problem of Constraints •  Handling Capacity Issues •  Hybrid-Formal Coverage Methodology •  Benefits & Limitations •  Future Directions 3
Traditional Coverage Convergence Methodology 100% Directed tests coverage (manual effort) Constraint Random tests Time 4
Improving Convergence with Hybrid-Formal Techniques 100% Unreachable Targets 100% Formal Coverage Convergence Directed tests coverage (manual effort) Constraint Random tests Time 5
Finding Paths Through the State Space of the DUV & Environment •  Formal Analysis of Safety Properties – For each assertion: •  “Does a legal path exist from a reset state to a property failure state?” •  Coverage Closure – For each coverage target: •  “Does a legal path exist from a reset state to a state satisfying the coverage target?” 6
State Space View DUV + Env State Space Target State If no path exists, target state is “Unreachable” Initial State 7
Formal method coverage closure: Challenges •  Formal vs. Simulation environment –  Behavioural models not synthesizable –  Declarative vs Procedural representation –  cycle vs event semantics •  Capacity Issues –  Number of Coverage Targets •  Functional (Covergroups, Cover Properties) •  Structural (line, condition, FSM, toggle…) –  Trace Depth •  Number of cycles from an initial state to a goal state reaching each coverage target System level test environments … 1.  ontain abstractions which can’t be synthesized into Finite state C automata needed by pure formal solutions. 2.  ften exceed model-checking algorithm capacity. O 8
What is Hybrid Search? •  Finds paths to goal states that consist of some random simulation cycles and some cycles calculated by formal engines. •  Sacrifices exhaustive search in exchange for better capacity and performance. 9
Hybrid Search Illustrated DUV + Env State Space Target State Hybrid Trace: Dynamic + Formal Initial State 10
Methodology Fit •  Block Level – < 10M gates, < 100K Coverage targets – Unreachable analysis can handle larger circuits (w/ approximation) •  Synthesizable DUT – With extensions, E.g. SVA, XMR, Monitors •  Formal-compatible constraints – SVA /PSL+ RTL modeling code – Constraint solver for stimulus generation – Good leverage with FPV flow 11
Practical Implementation of Hybrid- Formal Coverage Convergence 1.  Tool instruments design to select desired functional and structural coverage targets. 2.  Run unreachability analysis without constraints to detect “uncoverable” targets. 3.  Create and validate formal-compatible constraint environment. 4.  Run constrained random simulation to hit “easy” coverage targets 5.  Run hybrid search algorithm to find remaining “hard” reachable coverage targets 6.  Merge coverage results from “hard”, “easy”, and “uncoverable” runs. 12
Benefits of Hybrid Convergence •  Automated convergence, within the limits of tool capacity •  No conventional testbench required, but testbench monitors may be reused •  Coverage metrics measured in familiar simulation context •  Easy to parallelize on server farms 13
Limitations •  Non-exhaustive, some targets may remain “uncovered” •  Uses cycle-based semantics •  Large compute resource requirements and potentially long runtimes •  Requires caution when merging coverage from distinct environments 14
The Future •  More flow automation for hybrid solutions •  Multi-core, multi-processor servers for performance/capacity increases •  Standardization of coverage databases, including formal (Accellera UCIS Technical Committee) •  Continued research on testbench-based coverage closure automation 15
Conclusion •  Hybrid-Formal techniques address a sub- set of the general problem of coverage closure •  Multiple users are seeing benefits from this technology when combined with FPV and conventional CR testbench methods 16
Q&A 17

Empfohlen

Introducing LCS to Digital Design Verification
Introducing LCS to Digital Design VerificationIntroducing LCS to Digital Design Verification
Introducing LCS to Digital Design VerificationDaniele Loiacono
 
Coverage and Introduction to UVM
Coverage and Introduction to UVMCoverage and Introduction to UVM
Coverage and Introduction to UVMDr. Shivananda Koteshwar
 
Session 7 code_functional_coverage
Session 7 code_functional_coverageSession 7 code_functional_coverage
Session 7 code_functional_coverageNirav Desai
 
Code coverage
Code coverageCode coverage
Code coverageVijayan Reddy
 
Code coverage
Code coverageCode coverage
Code coverageReturn on Intelligence
 
Enabling Automated Software Testing with Artificial Intelligence
Enabling Automated Software Testing with Artificial IntelligenceEnabling Automated Software Testing with Artificial Intelligence
Enabling Automated Software Testing with Artificial IntelligenceLionel Briand
 
Automated Testing of Autonomous Driving Assistance Systems
Automated Testing of Autonomous Driving Assistance SystemsAutomated Testing of Autonomous Driving Assistance Systems
Automated Testing of Autonomous Driving Assistance SystemsLionel Briand
 
Making Model-Driven Verification Practical and Scalable: Experiences and Less...
Making Model-Driven Verification Practical and Scalable: Experiences and Less...Making Model-Driven Verification Practical and Scalable: Experiences and Less...
Making Model-Driven Verification Practical and Scalable: Experiences and Less...Lionel Briand
 

Empfohlen

Introducing LCS to Digital Design Verification
Introducing LCS to Digital Design VerificationIntroducing LCS to Digital Design Verification
Introducing LCS to Digital Design VerificationDaniele Loiacono
 
Coverage and Introduction to UVM
Coverage and Introduction to UVMCoverage and Introduction to UVM
Coverage and Introduction to UVMDr. Shivananda Koteshwar
 
Session 7 code_functional_coverage
Session 7 code_functional_coverageSession 7 code_functional_coverage
Session 7 code_functional_coverageNirav Desai
 
Code coverage
Code coverageCode coverage
Code coverageVijayan Reddy
 
Code coverage
Code coverageCode coverage
Code coverageReturn on Intelligence
 
Enabling Automated Software Testing with Artificial Intelligence
Enabling Automated Software Testing with Artificial IntelligenceEnabling Automated Software Testing with Artificial Intelligence
Enabling Automated Software Testing with Artificial IntelligenceLionel Briand
 
Automated Testing of Autonomous Driving Assistance Systems
Automated Testing of Autonomous Driving Assistance SystemsAutomated Testing of Autonomous Driving Assistance Systems
Automated Testing of Autonomous Driving Assistance SystemsLionel Briand
 
Making Model-Driven Verification Practical and Scalable: Experiences and Less...
Making Model-Driven Verification Practical and Scalable: Experiences and Less...Making Model-Driven Verification Practical and Scalable: Experiences and Less...
Making Model-Driven Verification Practical and Scalable: Experiences and Less...Lionel Briand
 
Scalable Software Testing and Verification of Non-Functional Properties throu...
Scalable Software Testing and Verification of Non-Functional Properties throu...Scalable Software Testing and Verification of Non-Functional Properties throu...
Scalable Software Testing and Verification of Non-Functional Properties throu...Lionel Briand
 
Testing the Untestable: Model Testing of Complex Software-Intensive Systems
Testing the Untestable: Model Testing of Complex Software-Intensive SystemsTesting the Untestable: Model Testing of Complex Software-Intensive Systems
Testing the Untestable: Model Testing of Complex Software-Intensive SystemsLionel Briand
 
Real-Time Design Patterns
Real-Time Design PatternsReal-Time Design Patterns
Real-Time Design PatternsGlobalLogic Ukraine
 
OCLR: A More Expressive, Pattern-Based Temporal Extension of OCL
OCLR: A More Expressive, Pattern-Based Temporal Extension of OCLOCLR: A More Expressive, Pattern-Based Temporal Extension of OCL
OCLR: A More Expressive, Pattern-Based Temporal Extension of OCLLionel Briand
 
Approaches to Preservation Storage Technologies
Approaches to Preservation Storage Technologies Approaches to Preservation Storage Technologies
Approaches to Preservation Storage Technologies Micah Altman
 
June brownbagpressurvey
June brownbagpressurveyJune brownbagpressurvey
June brownbagpressurveyMicah Altman
 
Paderborn
PaderbornPaderborn
PaderbornCarlo Ghezzi
 
Leveraging Existing Tests in Automated Test Generation for Web Applications
Leveraging Existing Tests in Automated Test Generation for Web ApplicationsLeveraging Existing Tests in Automated Test Generation for Web Applications
Leveraging Existing Tests in Automated Test Generation for Web ApplicationsSALT Lab @ UBC
 
Deep reinforcement learning framework for autonomous driving
Deep reinforcement learning framework for autonomous drivingDeep reinforcement learning framework for autonomous driving
Deep reinforcement learning framework for autonomous drivingGopikaGopinath5
 
Validation Framework for Autonomous Aerial Vehicles
Validation Framework for Autonomous Aerial VehiclesValidation Framework for Autonomous Aerial Vehicles
Validation Framework for Autonomous Aerial VehiclesM. Ilhan Akbas
 
071310 sun d_0930_feldman_stephen
071310 sun d_0930_feldman_stephen071310 sun d_0930_feldman_stephen
071310 sun d_0930_feldman_stephenSteve Feldman
 
Detection of Seed Methods for Quantification of Feature Confinement
Detection of Seed Methods for Quantification of Feature ConfinementDetection of Seed Methods for Quantification of Feature Confinement
Detection of Seed Methods for Quantification of Feature ConfinementAndrzej Olszak
 
Chill, Distill, No Overkill: Best Practices to Stress Test Kafka with Siva Ku...
Chill, Distill, No Overkill: Best Practices to Stress Test Kafka with Siva Ku...Chill, Distill, No Overkill: Best Practices to Stress Test Kafka with Siva Ku...
Chill, Distill, No Overkill: Best Practices to Stress Test Kafka with Siva Ku...HostedbyConfluent
 
Autonomous Systems: How to Address the Dilemma between Autonomy and Safety
Autonomous Systems: How to Address the Dilemma between Autonomy and SafetyAutonomous Systems: How to Address the Dilemma between Autonomy and Safety
Autonomous Systems: How to Address the Dilemma between Autonomy and SafetyLionel Briand
 
071510 sun b_1515_feldman_stephen_forpublic
071510 sun b_1515_feldman_stephen_forpublic071510 sun b_1515_feldman_stephen_forpublic
071510 sun b_1515_feldman_stephen_forpublicSteve Feldman
 
Презентация
ПрезентацияПрезентация
Презентацияguest22d71d
 
Ncerc rlmca202 adm m4 ssm
Ncerc rlmca202 adm m4 ssmNcerc rlmca202 adm m4 ssm
Ncerc rlmca202 adm m4 ssmssmarar
 
A Methodology and Tool Suite for Evaluating the Accuracy of Interoperating NL...
A Methodology and Tool Suite for Evaluating the Accuracy of Interoperating NL...A Methodology and Tool Suite for Evaluating the Accuracy of Interoperating NL...
A Methodology and Tool Suite for Evaluating the Accuracy of Interoperating NL...Uma Murthy
 
Summit 16: Multi-site OPNFV Testing Challenges
Summit 16: Multi-site OPNFV Testing ChallengesSummit 16: Multi-site OPNFV Testing Challenges
Summit 16: Multi-site OPNFV Testing ChallengesOPNFV
 
Star west 2011 manoj narayanan presentation 1.0
Star west 2011 manoj narayanan presentation 1.0Star west 2011 manoj narayanan presentation 1.0
Star west 2011 manoj narayanan presentation 1.0manoj7698
 
Zhang rtp q307
Zhang rtp q307Zhang rtp q307
Zhang rtp q307Obsidian Software
 
Zehr dv club_12052006
Zehr dv club_12052006Zehr dv club_12052006
Zehr dv club_12052006Obsidian Software
 

Weitere ähnliche Inhalte

Ähnlich wie 2010 bristol q1_hybrid-formal-coverage

Scalable Software Testing and Verification of Non-Functional Properties throu...
Scalable Software Testing and Verification of Non-Functional Properties throu...Scalable Software Testing and Verification of Non-Functional Properties throu...
Scalable Software Testing and Verification of Non-Functional Properties throu...Lionel Briand
 
Testing the Untestable: Model Testing of Complex Software-Intensive Systems
Testing the Untestable: Model Testing of Complex Software-Intensive SystemsTesting the Untestable: Model Testing of Complex Software-Intensive Systems
Testing the Untestable: Model Testing of Complex Software-Intensive SystemsLionel Briand
 
OCLR: A More Expressive, Pattern-Based Temporal Extension of OCL
OCLR: A More Expressive, Pattern-Based Temporal Extension of OCLOCLR: A More Expressive, Pattern-Based Temporal Extension of OCL
OCLR: A More Expressive, Pattern-Based Temporal Extension of OCLLionel Briand
 
Approaches to Preservation Storage Technologies
Approaches to Preservation Storage Technologies Approaches to Preservation Storage Technologies
Approaches to Preservation Storage Technologies Micah Altman
 
June brownbagpressurvey
June brownbagpressurveyJune brownbagpressurvey
June brownbagpressurveyMicah Altman
 
Leveraging Existing Tests in Automated Test Generation for Web Applications
Leveraging Existing Tests in Automated Test Generation for Web ApplicationsLeveraging Existing Tests in Automated Test Generation for Web Applications
Leveraging Existing Tests in Automated Test Generation for Web ApplicationsSALT Lab @ UBC
 
Deep reinforcement learning framework for autonomous driving
Deep reinforcement learning framework for autonomous drivingDeep reinforcement learning framework for autonomous driving
Deep reinforcement learning framework for autonomous drivingGopikaGopinath5
 
Validation Framework for Autonomous Aerial Vehicles
Validation Framework for Autonomous Aerial VehiclesValidation Framework for Autonomous Aerial Vehicles
Validation Framework for Autonomous Aerial VehiclesM. Ilhan Akbas
 
071310 sun d_0930_feldman_stephen
071310 sun d_0930_feldman_stephen071310 sun d_0930_feldman_stephen
071310 sun d_0930_feldman_stephenSteve Feldman
 
Detection of Seed Methods for Quantification of Feature Confinement
Detection of Seed Methods for Quantification of Feature ConfinementDetection of Seed Methods for Quantification of Feature Confinement
Detection of Seed Methods for Quantification of Feature ConfinementAndrzej Olszak
 
Chill, Distill, No Overkill: Best Practices to Stress Test Kafka with Siva Ku...
Chill, Distill, No Overkill: Best Practices to Stress Test Kafka with Siva Ku...Chill, Distill, No Overkill: Best Practices to Stress Test Kafka with Siva Ku...
Chill, Distill, No Overkill: Best Practices to Stress Test Kafka with Siva Ku...HostedbyConfluent
 
Autonomous Systems: How to Address the Dilemma between Autonomy and Safety
Autonomous Systems: How to Address the Dilemma between Autonomy and SafetyAutonomous Systems: How to Address the Dilemma between Autonomy and Safety
Autonomous Systems: How to Address the Dilemma between Autonomy and SafetyLionel Briand
 
071510 sun b_1515_feldman_stephen_forpublic
071510 sun b_1515_feldman_stephen_forpublic071510 sun b_1515_feldman_stephen_forpublic
071510 sun b_1515_feldman_stephen_forpublicSteve Feldman
 
Презентация
ПрезентацияПрезентация
Презентацияguest22d71d
 
Ncerc rlmca202 adm m4 ssm
Ncerc rlmca202 adm m4 ssmNcerc rlmca202 adm m4 ssm
Ncerc rlmca202 adm m4 ssmssmarar
 
A Methodology and Tool Suite for Evaluating the Accuracy of Interoperating NL...
A Methodology and Tool Suite for Evaluating the Accuracy of Interoperating NL...A Methodology and Tool Suite for Evaluating the Accuracy of Interoperating NL...
A Methodology and Tool Suite for Evaluating the Accuracy of Interoperating NL...Uma Murthy
 
Summit 16: Multi-site OPNFV Testing Challenges
Summit 16: Multi-site OPNFV Testing ChallengesSummit 16: Multi-site OPNFV Testing Challenges
Summit 16: Multi-site OPNFV Testing ChallengesOPNFV
 
Star west 2011 manoj narayanan presentation 1.0
Star west 2011 manoj narayanan presentation 1.0Star west 2011 manoj narayanan presentation 1.0
Star west 2011 manoj narayanan presentation 1.0manoj7698
 

Ähnlich wie 2010 bristol q1_hybrid-formal-coverage (20)

Scalable Software Testing and Verification of Non-Functional Properties throu...
Scalable Software Testing and Verification of Non-Functional Properties throu...Scalable Software Testing and Verification of Non-Functional Properties throu...
Scalable Software Testing and Verification of Non-Functional Properties throu...
 
Testing the Untestable: Model Testing of Complex Software-Intensive Systems
Testing the Untestable: Model Testing of Complex Software-Intensive SystemsTesting the Untestable: Model Testing of Complex Software-Intensive Systems
Testing the Untestable: Model Testing of Complex Software-Intensive Systems
 
Real-Time Design Patterns
Real-Time Design PatternsReal-Time Design Patterns
Real-Time Design Patterns
 
OCLR: A More Expressive, Pattern-Based Temporal Extension of OCL
OCLR: A More Expressive, Pattern-Based Temporal Extension of OCLOCLR: A More Expressive, Pattern-Based Temporal Extension of OCL
OCLR: A More Expressive, Pattern-Based Temporal Extension of OCL
 
Approaches to Preservation Storage Technologies
Approaches to Preservation Storage Technologies Approaches to Preservation Storage Technologies
Approaches to Preservation Storage Technologies
 
June brownbagpressurvey
June brownbagpressurveyJune brownbagpressurvey
June brownbagpressurvey
 
Paderborn
PaderbornPaderborn
Paderborn
 
Leveraging Existing Tests in Automated Test Generation for Web Applications
Leveraging Existing Tests in Automated Test Generation for Web ApplicationsLeveraging Existing Tests in Automated Test Generation for Web Applications
Leveraging Existing Tests in Automated Test Generation for Web Applications
 
Deep reinforcement learning framework for autonomous driving
Deep reinforcement learning framework for autonomous drivingDeep reinforcement learning framework for autonomous driving
Deep reinforcement learning framework for autonomous driving
 
Validation Framework for Autonomous Aerial Vehicles
Validation Framework for Autonomous Aerial VehiclesValidation Framework for Autonomous Aerial Vehicles
Validation Framework for Autonomous Aerial Vehicles
 
071310 sun d_0930_feldman_stephen
071310 sun d_0930_feldman_stephen071310 sun d_0930_feldman_stephen
071310 sun d_0930_feldman_stephen
 
Detection of Seed Methods for Quantification of Feature Confinement
Detection of Seed Methods for Quantification of Feature ConfinementDetection of Seed Methods for Quantification of Feature Confinement
Detection of Seed Methods for Quantification of Feature Confinement
 
Chill, Distill, No Overkill: Best Practices to Stress Test Kafka with Siva Ku...
Chill, Distill, No Overkill: Best Practices to Stress Test Kafka with Siva Ku...Chill, Distill, No Overkill: Best Practices to Stress Test Kafka with Siva Ku...
Chill, Distill, No Overkill: Best Practices to Stress Test Kafka with Siva Ku...
 
Autonomous Systems: How to Address the Dilemma between Autonomy and Safety
Autonomous Systems: How to Address the Dilemma between Autonomy and SafetyAutonomous Systems: How to Address the Dilemma between Autonomy and Safety
Autonomous Systems: How to Address the Dilemma between Autonomy and Safety
 
071510 sun b_1515_feldman_stephen_forpublic
071510 sun b_1515_feldman_stephen_forpublic071510 sun b_1515_feldman_stephen_forpublic
071510 sun b_1515_feldman_stephen_forpublic
 
Презентация
ПрезентацияПрезентация
Презентация
 
Ncerc rlmca202 adm m4 ssm
Ncerc rlmca202 adm m4 ssmNcerc rlmca202 adm m4 ssm
Ncerc rlmca202 adm m4 ssm
 
A Methodology and Tool Suite for Evaluating the Accuracy of Interoperating NL...
A Methodology and Tool Suite for Evaluating the Accuracy of Interoperating NL...A Methodology and Tool Suite for Evaluating the Accuracy of Interoperating NL...
A Methodology and Tool Suite for Evaluating the Accuracy of Interoperating NL...
 
Summit 16: Multi-site OPNFV Testing Challenges
Summit 16: Multi-site OPNFV Testing ChallengesSummit 16: Multi-site OPNFV Testing Challenges
Summit 16: Multi-site OPNFV Testing Challenges
 
Star west 2011 manoj narayanan presentation 1.0
Star west 2011 manoj narayanan presentation 1.0Star west 2011 manoj narayanan presentation 1.0
Star west 2011 manoj narayanan presentation 1.0
 

Mehr von Obsidian Software

Williamson arm validation metrics
Williamson arm validation metricsWilliamson arm validation metrics
Williamson arm validation metricsObsidian Software
 
Validation and-design-in-a-small-team-environment
Validation and-design-in-a-small-team-environmentValidation and-design-in-a-small-team-environment
Validation and-design-in-a-small-team-environmentObsidian Software
 
Stinson post si and verification
Stinson post si and verificationStinson post si and verification
Stinson post si and verificationObsidian Software
 

Mehr von Obsidian Software (20)

Zhang rtp q307
Zhang rtp q307Zhang rtp q307
Zhang rtp q307
 
Zehr dv club_12052006
Zehr dv club_12052006Zehr dv club_12052006
Zehr dv club_12052006
 
Yang greenstein part_2
Yang greenstein part_2Yang greenstein part_2
Yang greenstein part_2
 
Yang greenstein part_1
Yang greenstein part_1Yang greenstein part_1
Yang greenstein part_1
 
Williamson arm validation metrics
Williamson arm validation metricsWilliamson arm validation metrics
Williamson arm validation metrics
 
Whipp q3 2008_sv
Whipp q3 2008_svWhipp q3 2008_sv
Whipp q3 2008_sv
 
Vishakantaiah validating
Vishakantaiah validatingVishakantaiah validating
Vishakantaiah validating
 
Validation and-design-in-a-small-team-environment
Validation and-design-in-a-small-team-environmentValidation and-design-in-a-small-team-environment
Validation and-design-in-a-small-team-environment
 
Tobin verification isglobal
Tobin verification isglobalTobin verification isglobal
Tobin verification isglobal
 
Tierney bq207
Tierney bq207Tierney bq207
Tierney bq207
 
The validation attitude
The validation attitudeThe validation attitude
The validation attitude
 
Thaker q3 2008
Thaker q3 2008Thaker q3 2008
Thaker q3 2008
 
Thaker q3 2008
Thaker q3 2008Thaker q3 2008
Thaker q3 2008
 
Strickland dvclub
Strickland dvclubStrickland dvclub
Strickland dvclub
 
Stinson post si and verification
Stinson post si and verificationStinson post si and verification
Stinson post si and verification
 
Shultz dallas q108
Shultz dallas q108Shultz dallas q108
Shultz dallas q108
 
Shreeve dv club_ams
Shreeve dv club_amsShreeve dv club_ams
Shreeve dv club_ams
 
Sharam salamian
Sharam salamianSharam salamian
Sharam salamian
 
Schulz sv q2_2009
Schulz sv q2_2009Schulz sv q2_2009
Schulz sv q2_2009
 
Schulz dallas q1_2008
Schulz dallas q1_2008Schulz dallas q1_2008
Schulz dallas q1_2008
 

2010 bristol q1_hybrid-formal-coverage

  • 1. Hybrid-Formal Coverage Convergence Dan Benua Synopsys Verification Group January 18, 2010 1
  • 2. Abstract •  Formal and Hybrid methods typically employed in property checking can also be leveraged to attack coverage convergence problems. •  The Synopsys Magellan hybrid-formal tool has supported coverage convergence on production designs for several years. •  This talk will briefly review the technology and methodology considerations for this application. •  Hybrid formal technology is distinct from the automation of stimulus coverage closure used in simulation. (e.g. “Echo” feature in VCS) 2
  • 3. Agenda •  Coverage Convergence & FPV •  The Problem of Constraints •  Handling Capacity Issues •  Hybrid-Formal Coverage Methodology •  Benefits & Limitations •  Future Directions 3
  • 4. Traditional Coverage Convergence Methodology 100% Directed tests coverage (manual effort) Constraint Random tests Time 4
  • 5. Improving Convergence with Hybrid-Formal Techniques 100% Unreachable Targets 100% Formal Coverage Convergence Directed tests coverage (manual effort) Constraint Random tests Time 5
  • 6. Finding Paths Through the State Space of the DUV & Environment •  Formal Analysis of Safety Properties – For each assertion: •  “Does a legal path exist from a reset state to a property failure state?” •  Coverage Closure – For each coverage target: •  “Does a legal path exist from a reset state to a state satisfying the coverage target?” 6
  • 7. State Space View DUV + Env State Space Target State If no path exists, target state is “Unreachable” Initial State 7
  • 8. Formal method coverage closure: Challenges •  Formal vs. Simulation environment –  Behavioural models not synthesizable –  Declarative vs Procedural representation –  cycle vs event semantics •  Capacity Issues –  Number of Coverage Targets •  Functional (Covergroups, Cover Properties) •  Structural (line, condition, FSM, toggle…) –  Trace Depth •  Number of cycles from an initial state to a goal state reaching each coverage target System level test environments … 1.  ontain abstractions which can’t be synthesized into Finite state C automata needed by pure formal solutions. 2.  ften exceed model-checking algorithm capacity. O 8
  • 9. What is Hybrid Search? •  Finds paths to goal states that consist of some random simulation cycles and some cycles calculated by formal engines. •  Sacrifices exhaustive search in exchange for better capacity and performance. 9
  • 10. Hybrid Search Illustrated DUV + Env State Space Target State Hybrid Trace: Dynamic + Formal Initial State 10
  • 11. Methodology Fit •  Block Level – < 10M gates, < 100K Coverage targets – Unreachable analysis can handle larger circuits (w/ approximation) •  Synthesizable DUT – With extensions, E.g. SVA, XMR, Monitors •  Formal-compatible constraints – SVA /PSL+ RTL modeling code – Constraint solver for stimulus generation – Good leverage with FPV flow 11
  • 12. Practical Implementation of Hybrid- Formal Coverage Convergence 1.  Tool instruments design to select desired functional and structural coverage targets. 2.  Run unreachability analysis without constraints to detect “uncoverable” targets. 3.  Create and validate formal-compatible constraint environment. 4.  Run constrained random simulation to hit “easy” coverage targets 5.  Run hybrid search algorithm to find remaining “hard” reachable coverage targets 6.  Merge coverage results from “hard”, “easy”, and “uncoverable” runs. 12
  • 13. Benefits of Hybrid Convergence •  Automated convergence, within the limits of tool capacity •  No conventional testbench required, but testbench monitors may be reused •  Coverage metrics measured in familiar simulation context •  Easy to parallelize on server farms 13
  • 14. Limitations •  Non-exhaustive, some targets may remain “uncovered” •  Uses cycle-based semantics •  Large compute resource requirements and potentially long runtimes •  Requires caution when merging coverage from distinct environments 14
  • 15. The Future •  More flow automation for hybrid solutions •  Multi-core, multi-processor servers for performance/capacity increases •  Standardization of coverage databases, including formal (Accellera UCIS Technical Committee) •  Continued research on testbench-based coverage closure automation 15
  • 16. Conclusion •  Hybrid-Formal techniques address a sub- set of the general problem of coverage closure •  Multiple users are seeing benefits from this technology when combined with FPV and conventional CR testbench methods 16
  • 17. Q&A 17