/* Promela validation variables. */
/*
- * Produced process data flow. Updated after each instruction to show which
- * variables are ready. Assigned using SSA (static single assignment) (defuse
- * analysis must be done on the program to map "real" variables to single define
- * followed by use). Using one-hot bit encoding per variable to save state
- * space. Used as triggers to execute the instructions having those variables
- * as input.
+ * Produced process control and data flow. Updated after each instruction to
+ * show which variables are ready. Using one-hot bit encoding per variable to
+ * save state space. Used as triggers to execute the instructions having those
+ * variables as input. Leaving bits active to inhibit instruction execution.
+ * Scheme used to make instruction disabling and automatic dependency fall-back
+ * automatic.
*/
-#define PRODUCE_TOKENS(state, bits) \
- state = (state) | (bits)
+#define CONSUME_TOKENS(state, bits, notbits) \
+ ((!(state & (notbits))) && (state & (bits)) == (bits))
-/* All bits must be active to consume. All notbits must be inactive. */
-/* Consuming a token does not clear it, it just waits for it. */
-#define CONSUME_TOKENS(state, bits, notbits) \
- ((!((state) & (notbits))) && ((state) & (bits)) == (bits))
+#define PRODUCE_TOKENS(state, bits) \
+ state = state | (bits);
-#define CLEAR_TOKENS(state, bits) \
- state = (state) & ~(bits)
-
-/*
- * Bit encoding, proc_one_produced :
- */
-
-#define P1_PROD_NONE (1 << 0)
-
-#define P1_WRITE (1 << 1)
-#define P1_WMB (1 << 2)
-#define P1_SYNC_CORE (1 << 3)
-#define P1_RMB (1 << 4)
-#define P1_READ (1 << 5)
-
-int proc_one_produced;
-
-#define P2_PROD_NONE (1 << 0)
-
-#define P2_WRITE (1 << 1)
-#define P2_WMB (1 << 2)
-#define P2_SYNC_CORE (1 << 3)
-#define P2_RMB (1 << 4)
-#define P2_READ (1 << 5)
-
-int proc_two_produced;
+#define CLEAR_TOKENS(state, bits) \
+ state = state & ~(bits)
#define NR_PROCS 2
byte read_one = 2;
byte read_two = 2;
+/*
+ * Bit encoding, proc_one_produced :
+ */
+
+#define P1_PROD_NONE (1 << 0)
+
+#define P1_WRITE (1 << 1)
+#define P1_WMB (1 << 2)
+#define P1_SYNC_CORE (1 << 3)
+#define P1_RMB (1 << 4)
+#define P1_READ (1 << 5)
+
+int proc_one_produced;
+
active proctype test_proc_one()
{
assert(get_pid() < NR_PROCS);
assert(!(read_one == 0 && read_two == 0));
}
+
+/*
+ * Bit encoding, proc_two_produced :
+ */
+
+#define P2_PROD_NONE (1 << 0)
+
+#define P2_WRITE (1 << 1)
+#define P2_WMB (1 << 2)
+#define P2_SYNC_CORE (1 << 3)
+#define P2_RMB (1 << 4)
+#define P2_READ (1 << 5)
+
+int proc_two_produced;
+
active proctype test_proc_two()
{
assert(get_pid() < NR_PROCS);