SVA with combinatorial gates with delay

Question

Hi,
I am trying to write my first set of assertions and I can't figure out a good way to describe the intended behaviour. The design is an error detection and correction flip-flop, that should detect timing violations. The timing behaviour can be seen here: https://www.researchgate.net/figure/Timing-behavior-of-the-proposed-EDACFF_fig3_340603856
So one sets up a detection window(dw) where no change of the input of the flipflop(Data) is allowed. Changing the value of the ff triggers a rise in "edge". If edge is high while dw rises error should go up. ERR and SW should go up afterwards triggered by negedge clk_gated and posedge clk_sw respectively and stay high for one cycle of the metioned clks. SW being high supresses the next high phase on both clk and dw. Since assertions should be written as abstract as possible I would like to write 2 Assertions. The first one should assert that if sw is high neither dw nor clk should be. This is easy (I think) and should be dealt with by assert((!(SW&&DW))&&(!(SW&&CLK))). Or that is what i hope.
But the second one really drives me crazy: if data changes time x before clk_gated Final Error should rise after clk_gated rose. I have 0 idea how to incorporate the timespan. The only idea I had so far is to write: assert property @(posedge DW) Edge |-> ERR,SW; endproperty. But this would require Edge and dw to work correctly in the first place, so I think it is not ideal. Or should I just write two more assertions to ensure Edge and DW are working? I would appreciate any help pointing me in the right direction.
Thanks, Fabian

Answer 1

ben@SystemVerilog.us

Full Access

2416 posts

August 14, 2020 at 8:43 pm

In reply to Balerion:
Looking at your definition of the assertion // if data changes time x before clk_gated Final Error should rise after clk_gated rose I see the following method of construction for the assertion. SVA is not going to work here because of the samplings and clocks.

    realtime t1, diff=2ns; 
    always @(data) begin 
      t1=$realtime; 
      @(posedge clk_gated) if (($realtime-t1) > diff) 
        #1 am_ferror: assert(final_err); // The #1 is to account for a delay till final_err rises
    end

Basically, you'need to build your own model.
Instead of the always I started with a task that is fork-join_none with a trigger, as I explain in my paper Understanding the SVA Engine (see link below).
However, I could not think of an appropriate trigger since the @(data) would work.
Anyway, this may provide you with some possible approaches, particularly since you understand the problem better than me.

Ben Cohen
http://www.systemverilog.us/
For training, consulting, services: contact http://cvcblr.com/home

** SVA Handbook 4th Edition, 2016 ISBN 978-1518681448
...
1) SVA Package: Dynamic and range delays and repeats https://rb.gy/a89jlh
2) Free books: Component Design by Example https://rb.gy/9tcbhl
Real Chip Design and Verification Using Verilog and VHDL($3) https://rb.gy/cwy7nb
3) Papers:
- SVA Alternative for Complex Assertions
https://verificationacademy.com/news/verification-horizons-march-2018-issue
- SVA in a UVM Class-based Environment
https://verificationacademy.com/verification-horizons/february-2013-volume-9-issue-1/SVA-in-a-UVM-Class-based-Environment
- Understanding the SVA Engine,
https://verificationacademy.com/verification-horizons/july-2020-volume-16-issue-2

Answer 2

Balerion

Forum Access

2 posts

August 17, 2020 at 12:21 am

In reply to ben@SystemVerilog.us:

Hi Ben,
thanks for the informations. I tried something different and even more abstract. This is esentially a D-FlipFlop. All it should do is write the input into the output at the rising clokc edge. So I am thinking about a construct like this: @posedge of clk store the value of Data and next posedge Q should match my stored Data. Or Q should match the Data from previous cycle. Since only the rising edge of the clock can change my data of the output it has to stay the same until my next posedge. And if I write an assertion it will take the stored value of Q to test my assertion, meaning if Q changes at that rising edge it will take the "old" value right? I will try to write this and simulate it. As soon as I have results I will post them

Answer 3

ben@SystemVerilog.us

Full Access

2416 posts

August 17, 2020 at 9:19 am

In reply to Balerion:
You are correct in expressing the assertions from a requirements point of view rather than an implementation viewpoint. In my response, I was addressing your requirements of if data changes time x before clk_gated Final Error should rise after clk_gated rose.
I do prefer your new approach.
Ben SystemVerilog.us

Languages & Standards

Methodologies

Techniques & Tools

Universal Verification Methodology (UVM)

Featured Courses

Additional Courses

Formal-Based Techniques

Analog/Mixed Signal

UVM Forum

SystemVerilog Forum

Coverage Forum

Additional Forums

Implementation Patterns

Specification Patterns

Pattern Resources

UVM Cookbook

Coding Guidelines & Deployment

Coverage Cookbook

Featured & On-Demand

On-Demand Library

Recording Archive

Conferences & WRG

Siemens EDA Learning Center

Blog & News

Verification Horizons Publication

About Us

Training

Portfolio

Explore

Siemens

Contact