tmeissner
/
formal_hw_verification
1
0
Fork 0
Code Issues 0 Pull Requests 0 Releases 6 Wiki Activity
Trying to verify Verilog/VHDL designs with formal methods and tools
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
57 Commits
3 Branches
324 KiB
Tree: c355c14409
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'c355c14409'
${ noResults }
formal_hw_verification/fifo/fifo.vhd

230 lines
6.3 KiB
Raw Normal View History

Add simple FIFO model incl. formal tests
4 years ago
Correct full & empty flag deassertion, fixes #2
3 years ago
Add simple FIFO model incl. formal tests
4 years ago
Correct full & empty flag deassertion, fixes #2
3 years ago
Add simple FIFO model incl. formal tests
4 years ago
Correct full & empty flag deassertion, fixes #2
3 years ago
Add simple FIFO model incl. formal tests
4 years ago
Correct full & empty flag deassertion, fixes #2
3 years ago
Add simple FIFO model incl. formal tests
4 years ago
Name assume & restrict directives
3 years ago
Add simple FIFO model incl. formal tests
4 years ago
Name assume & restrict directives
3 years ago
Add simple FIFO model incl. formal tests
4 years ago
 
  1. library ieee;
  2. use ieee.std_logic_1164.all;
  3. use ieee.numeric_std.all;
  4. 

  5. 

  6. 

  7. entity fifo is
  8.   generic (
  9.     Formal : boolean := true;
  10.     Depth  : positive := 16;
  11.     Width  : positive := 16
  12.   );
  13.   port (
  14.     Reset_n_i    : in  std_logic;
  15.     Clk_i        : in  std_logic;
  16.     -- write
  17.     Wen_i        : in  std_logic;
  18.     Din_i        : in  std_logic_vector(Width-1 downto 0);
  19.     Full_o       : out std_logic;
  20.     Werror_o     : out std_logic;
  21.     -- read
  22.     Ren_i        : in  std_logic;
  23.     Dout_o       : out std_logic_vector(Width-1 downto 0);
  24.     Empty_o      : out std_logic;
  25.     Rerror_o     : out std_logic
  26.   );
  27. end entity fifo;
  28. 

  29. 

  30. architecture rtl of fifo is
  31. 

  32. 

  33.   subtype t_fifo_pnt is natural range 0 to Depth-1;
  34.   signal s_write_pnt : t_fifo_pnt;
  35.   signal s_read_pnt  : t_fifo_pnt;
  36. 

  37.   type t_fifo_mem is array (t_fifo_pnt'low to t_fifo_pnt'high) of std_logic_vector(Din_i'range);
  38.   signal s_fifo_mem : t_fifo_mem;
  39. 

  40.   signal s_almost_full  : boolean;
  41.   signal s_almost_empty : boolean;
  42. 

  43.   function incr_pnt (data : t_fifo_pnt) return t_fifo_pnt is
  44.   begin
  45.     if (data = t_fifo_mem'high) then
  46.       return 0;
  47.     end if;
  48.     return data + 1;
  49.   end function incr_pnt;
  50. 

  51. 

  52. begin
  53. 

  54. 

  55.   s_almost_full <= (s_write_pnt = s_read_pnt - 1) or
  56.                    (s_write_pnt = t_fifo_mem'high and s_read_pnt = t_fifo_mem'low);
  57. 

  58.   s_almost_empty <= (s_read_pnt = s_write_pnt - 1) or
  59.                     (s_read_pnt = t_fifo_mem'high and s_write_pnt = t_fifo_mem'low);
  60. 

  61.   WriteP : process (Reset_n_i, Clk_i) is
  62.   begin
  63.     if (Reset_n_i = '0') then
  64.       s_write_pnt <= 0;
  65.       Werror_o    <= '0';
  66.     elsif (rising_edge(Clk_i)) then
  67.       Werror_o <= Wen_i and Full_o;
  68.       if (Wen_i = '1' and Full_o = '0') then
  69.         s_fifo_mem(s_write_pnt) <= Din_i;
  70.         s_write_pnt <= incr_pnt(s_write_pnt);
  71.       end if;
  72.     end if;
  73.   end process WriteP;
  74. 

  75. 

  76.   ReadP : process (Reset_n_i, Clk_i) is
  77.   begin
  78.     if (Reset_n_i = '0') then
  79.       s_read_pnt <= 0;
  80.       Rerror_o   <= '0';
  81.     elsif (rising_edge(Clk_i)) then
  82.       Rerror_o <= Ren_i and Empty_o;
  83.       if (Ren_i = '1' and Empty_o = '0') then
  84.         Dout_o <= s_fifo_mem(s_read_pnt);
  85.         s_read_pnt <= incr_pnt(s_read_pnt);
  86.       end if;
  87.     end if;
  88.   end process ReadP;
  89. 

  90. 

  91.   FlagsP : process (Reset_n_i, Clk_i) is
  92.   begin
  93.     if (Reset_n_i = '0') then
  94.       Full_o  <= '0';
  95.       Empty_o <= '1';
  96.     elsif (rising_edge(Clk_i)) then
  97.       if (Wen_i = '1') then
  98.         if (Ren_i = '0' and s_almost_full) then
  99.           Full_o <= '1';
  100.         end if;
  101.         Empty_o <= '0';
  102.       end if;
  103.       if (Ren_i = '1') then
  104.         if (Wen_i = '0' and s_almost_empty) then
  105.           Empty_o <= '1';
  106.         end if;
  107.         Full_o <= '0';
  108.       end if;
  109.     end if;
  110.   end process FlagsP;
  111. 

  112. 

  113.   FormalG : if Formal generate
  114. 

  115.     default clock is rising_edge(Clk_i);
  116. 

  117.     -- Initial reset
  118.     RESTRICT_RESET : restrict
  119.       {not Reset_n_i[*3]; Reset_n_i[+]}[*1];
  120. 

  121.     -- Inputs are low during reset for simplicity
  122.     ASSUME_INPUTS_DURING_RESET : assume always
  123.       not Reset_n_i ->
  124.       not Wen_i and not Ren_i;
  125. 

  126. 

  127.     -- Asynchronous (unclocked) Reset asserts
  128.     FULL_RESET : process (all) is
  129.     begin
  130.       if (not Reset_n_i) then
  131.         RESET_FULL      : assert not Full_o;
  132.         RESET_EMPTY     : assert Empty_o;
  133.         RESET_WERROR    : assert not Werror_o;
  134.         RESET_RERROR    : assert not Rerror_o;
  135.         RESET_WRITE_PNT : assert s_write_pnt = 0;
  136.         RESET_READ_PNT  : assert s_read_pnt = 0;
  137.       end if;
  138.     end process;
  139. 

  140. 

  141.     -- No write pointer change when writing into full fifo
  142.     WRITE_PNT_STABLE_WHEN_FULL : assert always
  143.       Wen_i and Full_o ->
  144.       next stable(s_write_pnt);
  145. 

  146.     -- No read pointer change when reading from empty fifo
  147.     READ_PNT_STABLE_WHEN_EMPTY : assert always
  148.       Ren_i and Empty_o ->
  149.       next stable(s_read_pnt);
  150. 

  151.     -- Full when write and no read and write pointer ran up to read pointer
  152.     FULL : assert always
  153.       Wen_i and not Ren_i and
  154.       (s_write_pnt = s_read_pnt - 1 or s_write_pnt = t_fifo_pnt'high and s_read_pnt = t_fifo_pnt'low) ->
  155.       next Full_o;
  156. 

  157.     -- Not full when read and no write
  158.     NOT_FULL : assert always
  159.       not Wen_i and Ren_i ->
  160.       next not Full_o;
  161. 

  162.     -- Empty when read and no write and read pointer ran up to write pointer
  163.     EMPTY : assert always
  164.       not Wen_i and Ren_i and
  165.       (s_read_pnt = s_write_pnt - 1 or s_read_pnt = t_fifo_pnt'high and s_write_pnt = t_fifo_pnt'low) ->
  166.       next Empty_o;
  167. 

  168.     -- Not empty when write and no read
  169.     NOT_EMPTY : assert always
  170.       Wen_i and not Ren_i ->
  171.       next not Empty_o;
  172. 

  173.     -- Write error when writing into full fifo
  174.     WERROR : assert always
  175.       Wen_i and Full_o ->
  176.         next Werror_o;
  177. 

  178.     -- No write error when writing into not full fifo
  179.     NO_WERROR : assert always
  180.       Wen_i and not Full_o ->
  181.         next not Werror_o;
  182. 

  183.     -- Read error when reading from empty fifo
  184.     RERROR : assert always
  185.       Ren_i and Empty_o ->
  186.       next Rerror_o;
  187. 

  188.     -- No read error when reading from not empty fifo
  189.     NO_RERROR : assert always
  190.       Ren_i and not Empty_o ->
  191.       next not Rerror_o;
  192. 

  193.     -- Write pointer increment when writing into not full fifo
  194.     -- and write pointer isn't at end value
  195.     WRITE_PNT_INCR : assert always
  196.       Wen_i and not Full_o and s_write_pnt /= t_fifo_pnt'high ->
  197.       next s_write_pnt = prev(s_write_pnt) + 1;
  198. 

  199.     -- Write pointer wraparound when writing into not full fifo
  200.     -- and write pointer is at end value
  201.     WRITE_PNT_WRAP : assert always
  202.       Wen_i and not Full_o and s_write_pnt = t_fifo_pnt'high ->
  203.       next s_write_pnt = 0;
  204. 

  205.     -- Read pointer increment when reading from not empty fifo
  206.     -- and read pointer isn't at end value
  207.     READ_PNT_INCR  : assert always
  208.       Ren_i and not Empty_o and s_read_pnt /= t_fifo_pnt'high ->
  209.       next s_read_pnt = prev(s_read_pnt) + 1;
  210. 

  211.     -- Read pointer wraparound when reading from not empty fifo
  212.     -- and read pointer is at end value
  213.     READ_PNT_WRAP  : assert always
  214.       Ren_i and not Empty_o and s_read_pnt = t_fifo_pnt'high ->
  215.       next s_read_pnt = 0;
  216. 

  217.     -- Correct input data stored after valid write access
  218.     DIN_VALID : assert always
  219.       Wen_i and not Full_o ->
  220.       next s_fifo_mem(s_write_pnt - 1) = prev(Din_i);
  221. 

  222.     -- Correct output data after valid read access
  223.     DOUT_VALID : assert always
  224.       Ren_i and not Empty_o ->
  225.       next Dout_o = s_fifo_mem(s_read_pnt - 1);
  226. 

  227.   end generate FormalG;
  228. 

  229. 

  230. end architecture rtl;