Hi,
-----------------------------------------------------------------------------------------------------------
-----------------------------------------------------------------------------------------------------------
Software Requirements:
1 .NuSMV
2. Alloy
Installing and using NuSMV (under
Windows)
1. Go to the
address below and chose an installation file according to your system version:
For instance,
for a system running windows vista on a 32 machine you can paste this in your
web browser:
2. Open the
download directory and run the executable (by double-clicking on the file, for
instance). Do the following during the installation wizard:
a. click
'Proceed',
b.
click 'Next'
c. choose
a location, for instance: Browse ! Desktop, (the default installation directory is 'C/Program Files/NuSMV') and
click 'Install'
3. Open a
command prompt (for instance by: Start ! All Programs !Accessories ! Command
Prompt)
4. Go to your
installation place (by writing at command prompt:)
cd
\Desktop\nusmv\2.5.2\bin
5. Open your
favorite text editor (by writing, for instance): notepad tictactoe.smv
6. Write and
save your program (below you have a basic program template):
MODULE
main
VAR
variable
: boolean;
ASSIGN
init(variable)
:= TRUE;
next(variable)
:= !variable;
LTLSPEC
G
(variable & X !variable)
CTLSPEC
EF
(!variable & AX variable)
7. Run your
program to check the assertions from the specifications section,
by writing the
following at the command prompt:
NuSMV.exe
tictactoe.smv
8. This will
produce the following output:
--
specification EF (!variable & AX variable) is true
--
specification G (variable & X !variable) is false
-- as
demonstrated by the following execution sequence
Trace
Description: LTL Counterexample
Trace
Type: Counterexample
--
Loop starts here
->
State: 1.1 <-
variable
= TRUE
->
State: 1.2 <-
variable
= FALSE
->
State: 1.3 <-
variable
= TRUE
9. Include the
program code in your (.tex) assignment file and you are done.
Installing and using ALLOY (under
Windows)
1. Download and
Install Java Developer Kit 6 (JDK 6).
2. Now download the
alloy4.jar file (available at alloy.mit.edu) then double-click on the jar file,
or type:
java -jar
alloy4.jar in the console.
------------------------------------------------------------------------------------------------------------1. Design,
develop and run a program in ALLOY (or in any equivalent system) to model a
Software Package Dependency System. Make suitable assumptions regarding the
system. The model should allow checking to see if prerequisites in the form of
libraries or other packages are present for all components in the system.
module
PDS
open
std/ord -- opens specification template for linear order
sig
Component
{
name: Name,
main: option
Service,
export: set
Service,
import: set
Service,
version: Number
}
{
no import &
export
}
sig
PDS
{
components: set
Component,
schedule:
components -> Service ->? components,
requires:
components -> components
}
{
components.import
in components.export
}
fact
SoundPDSs
{
all P : PDS | with
P
{
all c :
components, s : Service | let c’ = c.schedule[s]
{
(some c’ iff s
in c.import) && (some c’ => s in c’.export)
}
all c :
components | c.requires = c.schedule[Service]
}
}
sig
Name, Number, Service {}
fun AddComponent(P, P’: PDS, c:
Component)
{
not c in
P.components
P’.components =
P.components + c
}
run AddComponent for 3 but 2 PDS
fun RemoveComponent(P, P’: PDS, c :
Component)
{
c in
P.components
P’.components =
P.components - c
}
run RemoveComponent for 3 but 2 PDS
fun HighestVersionPolicy(P: PDS)
{
with P
{
all s : Service, c : components, c’ :
c.schedule[s],
c’’ : components - c’
{
s in c’’.export
&& c’’.name = c’.name =>
c’’.version in
c’.version.^(Ord[Number].prev)
}
}
}
run HighestVersionPolicy for 3 but 1 PDS
fun AGuidedSimulation(P,P’,P’’ : PDS,
c1, c2 : Component)
{
AddComponent(P,P’,c1)
RemoveComponent(P,P’’,c2)
HighestVersionPolicy(P)
HighestVersionPolicy(P’)
HighestVersionPolicy(P’’)
}
run AGuidedSimulation for 3
assert AddingIsFunctionalForPDSs
{
all P, P’, P’’:
PDS, c: Component
{
AddComponent(P,P’,c)
&&
AddComponent(P,P’’,c)
=> P’ = P’’
}
}
check
AddingIsFunctionalForPDSs for 3
------------------------------------------------------------------------------------------------------------
2. Design,
develop and run a program in NuSMV (or in any equivalent system) to model and
solve the Mutual Exclusion problem.
MODULE main
VAR
pr1: process prc(pr2.st, turn, 0);
pr2: process prc(pr1.st, turn, 1);
turn:
boolean;
ASSIGN
init(turn)
:= 0;
-- safety
LTLSPEC G!((pr1.st = c) &
(pr2.st = c))
-- liveness
LTLSPEC G((pr1.st = t) -> F
(pr1.st = c))
LTLSPEC G((pr2.st = t) -> F
(pr2.st = c))
-- ‘negation’ of strict sequencing
(desired to be false)
LTLSPEC G(pr1.st=c -> ( G
pr1.st=c | (pr1.st=c U
(!pr1.st=c
& G !pr1.st=c | ((!pr1.st=c) U pr2.st=c)))))
MODULE prc(other-st, turn, myturn)
VAR
st: {n, t, c};
ASSIGN
init(st) := n;
next(st) :=
case
(st = n) : {t,n};
(st = t) & (other-st = n) : c;
(st = t) & (other-st = t) &
(turn = myturn) : c;
(st = c) : {c,n};
1 : st;
esac;
next(turn) :=
case
turn = myturn & st = c : !turn;
1 : turn;
esac;
FAIRNESS running
FAIRNESS !(st = c)
3.
Design, develop and run a program in NuSMV (or in any equivalent system) to
model and simulate the Alterate Bit Protocol.
The ABP sender in SMV:
MODULE
sender (ack)
VAR
st : {sending,sent};
message1 : boolean;
message2 : boolean;
ASSIGN
init(st) :=
sending;
next(st) := case
ack = message2 &
!(st=sent) : sent;
1 :
sending;
esac;
next(message1)
:=
case
st = sent : {0,1};
1 : message1;
esac;
next(message2)
:=
case
st = sent : !message2;
1 : message2;
esac;
FAIRNESS
running
LTLSPEC
G F st=sent
The ABP receiver in SMV:
MODULE
receiver (message1,message2)
VAR
st : {receiving,received};
ack : boolean;
expected :
boolean;
ASSIGN
init(st) := receiving;
next(st) := case
message2=expected &
!(st=received) : received;
1 : receiving;
esac;
next(ack)
:=
case
st = received : message2;
1 : ack;
esac;
next(expected)
:=
case
st = received : !expected;
1 : expected;
esac;
FAIRNESS
running
LTLSPEC
G F st=received
------------------------------------------------------------------------------------------------------------
4. Design, develop and run a program in NuSMV (or in any equivalent
system) to model and solve the planning problem of Ferry Man.
MODULE main
VAR
Ferryman : boolean;
Goat : boolean;
Cabbage : boolean;
Wolf : boolean;
Carry : {g,c,w,0};
ASSIGN
init(ferryman)
:= 0; init(goat) := 0;
init(cabbage)
:= 0; init(wolf) := 0;
init(carry)
:= 0;
next(ferryman)
:= 0,1;
next(carry)
:= case
ferryman=goat
: g;
1 :0;
esac
union
case
ferryman=cabbage : c;
1 :0;
esac
union
case
ferryman=wolf
: w;
1 :0;
esac
union 0;
next(goat) := case
ferryman=goat
& next(carry)=g :
next(ferryman);
1
:goat;
esac;
next(cabbage) := case
ferryman=cabbage
& next(carry)=c : next(ferryman);
1
:cabbage;
esac;
next(wolf) := case
ferryman=wolf
& next(carry)=w : next(ferryman);
1
:wolf;
esac;
Output:
LTLSPEC !(( (goat=cabbage | goat=wolf) ->
goat=ferryman)
U
(cabbage & goat & wolf & ferryman))
acws-0116% nusmv ferryman.smv
*** This is NuSMV 2.1.2 (compiled
2002-11-22 12:00:00)
*** For more information of NuSMV see
<http://nusmv.irst.itc.it>
*** or email to
<nusmv-users@irst.itc.it>.
*** Please report bugs to
<nusmv-users@irst.itc.it>.
-- specification !(((goat = cabbage |
goat = wolf) -> goat = ferryman)
U (((cabbage & goat) & wolf)
& ferryman)) is false
-- as demonstrated by the following
execution sequence
-- loop starts here --
-> State 1.1 <-
ferryman = 0 -> State 1.8
<-
goat = 0 ferryman = 1
cabbage = 0 goat = 1
wolf = 0 carry = g
carry = 0 -> State 1.9 <-
-> State 1.2 <- ->
State 1.10 <-
ferryman = 1 ferryman = 0
goat = 1 cabbage = 0
carry = g carry = c
-> State 1.3 <- ->
State 1.11 <-
ferryman = 0 ferryman = 1
carry = 0 carry = 0
-> State 1.4 <- ->
State 1.12 <-
ferryman = 1 ferryman = 0
cabbage = 1 wolf = 0
carry = c carry = w
-> State 1.5 <- -> State
1.13 <-
ferryman = 0 ferryman = 1
goat = 0 carry = 0
carry = g ->State 1.14 <-
-> State 1.6 <- ferryman = 0
ferryman = 1 goat = 0
wolf = 1 carry
= g
carry = w -> State 1.15 <-
-> State 1.7 <- carry = 0
ferryman = 0
carry = 0
------------------------------------------------------------------------------------------------------------
5.
Design, develop and run a program in NuSMV (or in any equivalent system) to
model and solve the Dining Philosophers Problem.
MODULE main
VAR
forks
: array 0..4 of {nobody,0,1,2,3,4};
p0
: process philosopher(0,forks[0],forks[1]);
p1
: process philosopher(1,forks[1],forks[2]);
p2
: process philosopher(2,forks[2],forks[3]);
p3
: process philosopher(3,forks[3],forks[4]);
p4
: process philosopher(4,forks[4],forks[0]);
ASSIGN
init(forks[0])
:= nobody;
init(forks[1])
:= nobody;
init(forks[2])
:= nobody;
init(forks[3])
:= nobody;
init(forks[4])
:= nobody;
MODULE philosopher(i,left,right)
VAR
state
: {thinking, hungry, eating, done};
--
done state is used to drop the forks properly
DEFINE
gotleft
:= (left=i);
gotright
:= (right=i);
leftfree
:= (left=nobody);
rightfree
:= (right=nobody);
ASSIGN
init(state)
:= thinking;
next(left)
:=
case
(state
= done) : nobody; -- drop fork
!leftfree
: left; -- can't grab if not free
leftfree
& (state=hungry) : i; -- grab fork
1
: left;
esac;
next(right)
:=
case
(state
= done) : nobody; -- drop fork
!gotleft
: right; -- grab left one first
!rightfree
: right; -- can't grab if not free
rightfree
& (state=hungry) : i; -- grab fork
1
: right;
esac;
next(state)
:=
case
(state=thinking)
: {thinking, hungry};
(state=hungry)
& gotleft & gotright : eating;
(state=hungry)
: hungry; -- don't have forks
(state=eating)
: {eating, done};
(state=done)
: thinking;
1
: state;
esac;
FAIRNESS
running
SPEC
--
must have both forks to eat
AG
((state = eating) -> (gotleft)&(gotright))
SPEC
--
if hungry, must eventually get to eat
AG
((state = hungry) -> AF (state = eating))
Dude i'm not getting output for fmcs 1st and 5th program output. Can you tel me the exact procedure to execute those programs?
ReplyDelete2,3,4 output i got correctly.
hey hw did u get de 2nd one,,
ReplyDeleteDude i'm not getting output for fmcs 1st program. Can you tel me the exact procedure to execute those programs?
ReplyDelete