Project

General

Profile

Download (3.64 KB) Statistics
| Branch: | Tag: | Revision:
1

    
2
node Sofar( X : bool ) returns ( Sofar : bool );
3
let
4
    Sofar = X -> X and pre Sofar;
5
tel
6

    
7
node excludes8( X1, X2, X3, X4, X5, X6, X7, X8 : bool ) returns ( excludes : bool );
8
let
9
    excludes = not X1 and not X2 and not X3 and not X4 and not X5 and not X6 and not X7 and not X8 or
10
                  X1 and not X2 and not X3 and not X4 and not X5 and not X6 and not X7 and not X8 or
11
              not X1 and     X2 and not X3 and not X4 and not X5 and not X6 and not X7 and not X8 or
12
              not X1 and not X2 and     X3 and not X4 and not X5 and not X6 and not X7 and not X8 or
13
              not X1 and not X2 and not X3 and     X4 and not X5 and not X6 and not X7 and not X8 or
14
              not X1 and not X2 and not X3 and not X4 and     X5 and not X6 and not X7 and not X8 or
15
              not X1 and not X2 and not X3 and not X4 and not X5 and     X6 and not X7 and not X8 or
16
              not X1 and not X2 and not X3 and not X4 and not X5 and not X6 and     X7 and not X8 or
17
              not X1 and not X2 and not X3 and not X4 and not X5 and not X6 and not X7 and     X8;
18
tel
19

    
20
node firefly(e1, e2, e3, e4, e5, e6, e7, e8 : bool; i_invalid : int) 
21
	returns(invalid, dirty, exclusive, shared : int);
22
var
23

    
24
	garde1, garde2, garde3, garde4, garde5, garde6, garde7, garde8 : bool;
25
	mem_invalid : int;
26

    
27
let
28

    
29
	mem_invalid = i_invalid -> pre mem_invalid;
30

    
31
	garde1 = pre invalid>=1 and pre dirty=0 and pre shared=0 and pre exclusive=0 ;
32
	garde2 = pre invalid>=1 and pre dirty>=1;
33
	garde3 = pre invalid>=1 and pre shared+pre exclusive>=1;
34
	garde4 = pre exclusive>=1;
35
	garde5 = pre shared=1;
36
	garde6 = pre invalid>=1 and pre dirty=0 and pre shared=0 and pre exclusive=0;
37
	garde7 = pre invalid>=1 and pre dirty>=1;
38
	garde8 = pre invalid>=1 and pre shared+pre exclusive>=1;
39

    
40
	invalid = mem_invalid ->
41
	if(e1) then if(garde1) then pre invalid-1 else pre invalid else
42
	if(e2) then if(garde2) then pre invalid-1 else pre invalid else
43
	if(e3) then if(garde3) then pre invalid-1 else pre invalid else
44
	if(e6) then if(garde6) then pre invalid-1 else pre invalid else
45
	if(e7) then if(garde7) then pre invalid-1 else pre invalid else
46
	if(e8) then if(garde8) then pre invalid-1 else pre invalid else
47
	pre invalid;
48
	
49

    
50
	dirty = 0 -> 
51
	if(e2) then if(garde2) then pre dirty-1 else pre dirty else
52
	if(e4) then if(garde4) then pre dirty+1 else pre dirty else
53
	if(e6) then if(garde6) then 1 else pre dirty else
54
	if(e7) then if(garde7) then pre dirty-1 else pre dirty else
55
	pre dirty;
56

    
57
	exclusive = 0 -> 
58
	if(e1) then if(garde1) then pre exclusive+1 else pre exclusive else
59
	if(e3) then if(garde3) then 0 else pre exclusive else 
60
	if(e4) then if(garde4) then pre exclusive-1 else pre exclusive else
61
	if(e5) then if(garde5) then pre exclusive+1 else pre exclusive else
62
	if(e8) then if(garde8) then 0 else pre exclusive else
63
	pre exclusive;
64

    
65
	shared = 0 ->
66
	if(e2) then if(garde2) then pre shared+2 else pre shared else
67
	if(e3) then if(garde3) then pre shared + pre exclusive + 1 else pre shared else
68
	if(e5) then if(garde5) then pre 0 else pre shared else
69
	if(e7) then if(garde7) then pre shared+2 else pre shared else
70
	if(e8) then if(garde8) then pre shared + pre exclusive + 1 else pre shared else
71
	pre shared;
72

    
73
tel
74

    
75
-- Not provable in luke-bitvec
76
node top(e1, e2, e3, e4, e5, e6, e7, e8 : bool; i_invalid : int) 
77
	returns( OK : bool );
78
--@ contract guarantees OK;
79
    var invalid, dirty, exclusive, shared : int;
80
        env : bool;
81
let
82
    ( invalid, dirty, exclusive, shared ) =
83
        firefly( e1, e2, e3, e4, e5, e6, e7, e8, i_invalid );
84

    
85
    env = Sofar( excludes8( e1, e2, e3, e4, e5, e6, e7, e8 ) and
86
                 i_invalid >= 0 and i_invalid < 5 );
87
    OK = env => exclusive >= 0;
88
    --%PROPERTY OK=true;
89
    --%MAIN;
90
tel
(743-743/1414)