## Simulink<sup>®</sup> Design Verifier™ Reference

R2012b

# MATLAB® SIMULINK®



#### **How to Contact MathWorks**



**(**a)

www.mathworks.comWebcomp.soft-sys.matlabNewsgroupwww.mathworks.com/contact\_TS.htmlTechnical Support

suggest@mathworks.com bugs@mathworks.com doc@mathworks.com service@mathworks.com info@mathworks.com Product enhancement suggestions Bug reports Documentation error reports Order status, license renewals, passcodes Sales, pricing, and general information



508-647-7000 (Phone) 508-647-7001 (Fax)

The

The MathWorks, Inc. 3 Apple Hill Drive Natick, MA 01760-2098

For contact information about worldwide offices, see the MathWorks Web site.

Simulink<sup>®</sup> Design Verifier<sup>™</sup> Reference

© COPYRIGHT 2007–2012 by The MathWorks, Inc.

The software described in this document is furnished under a license agreement. The software may be used or copied only under the terms of the license agreement. No part of this manual may be photocopied or reproduced in any form without prior written consent from The MathWorks, Inc.

FEDERAL ACQUISITION: This provision applies to all acquisitions of the Program and Documentation by, for, or through the federal government of the United States. By accepting delivery of the Program or Documentation, the government hereby agrees that this software or documentation qualifies as commercial computer software or commercial computer software documentation as such terms are used or defined in FAR 12.212, DFARS Part 227.72, and DFARS 252.227.7014. Accordingly, the terms and conditions of this Agreement and only those rights specified in this Agreement, shall pertain to and govern the use, modification, reproduction, release, performance, display, and disclosure of the Program and Documentation by the federal government (or other entity acquiring for or through the federal government) and shall supersede any conflicting contractual terms or conditions. If this License fails to meet the government's needs or is inconsistent in any respect with federal procurement law, the government agrees to return the Program and Documentation, unused, to The MathWorks, Inc.

#### Trademarks

MATLAB and Simulink are registered trademarks of The MathWorks, Inc. See www.mathworks.com/trademarks for a list of additional trademarks. Other product or brand names may be trademarks or registered trademarks of their respective holders.

#### Patents

MathWorks products are protected by one or more U.S. patents. Please see www.mathworks.com/patents for more information.

#### **Revision History**

| September 2010 | Online only |
|----------------|-------------|
| April 2011     | Online only |
| September 2011 | Online only |
| March 2012     | Online only |
| September 2012 | Online only |

New for Version 1.7 (Release 2010b) Revised for Version 2.0 (Release 2011a) Revised for Version 2.1 (Release 2011b) Revised for Version 2.2 (Release 2012a) Revised for Version 2.3 (Release 2012b)

## Contents

#### **Function Reference**

| Model Preparation                                     | 1-2 |
|-------------------------------------------------------|-----|
| Model Analysis                                        | 1-3 |
| Test Execution                                        | 1-4 |
| Analysis Results                                      | 1-5 |
| MATLAB for Code Generation and Stateflow<br>Functions | 1-6 |

#### ${\bf Functions-Alphabetical\ List}$

## 2

1

#### **Block Reference**

## 3

| Objectives and Constraints | 3-2 |
|----------------------------|-----|
| Temporal Operators         | 3-3 |
| Verification Utilities     | 3-4 |

Index

4

I

# **Function Reference**

| Model Preparation (p. 1-2)                                     | Prepare Simulink <sup>®</sup> models for<br>Simulink Design Verifier™ analysis      |
|----------------------------------------------------------------|-------------------------------------------------------------------------------------|
| Model Analysis (p. 1-3)                                        | Analyze Simulink models and execute test cases                                      |
| Test Execution (p. 1-4)                                        | Analyze Simulink models and execute test cases                                      |
| Analysis Results (p. 1-5)                                      | Define workflows for testing models, subsystems, and atomic subcharts               |
| MATLAB for Code Generation and<br>Stateflow Functions (p. 1-6) | Functions for use in MATLAB<br>Function blocks and Stateflow <sup>®</sup><br>charts |

## **Model Preparation**

| sldvblockreplacement | Replace blocks for analysis                                             |
|----------------------|-------------------------------------------------------------------------|
| sldvextract          | Extract subsystem or subchart contents into new model for analysis      |
| sldvisactive         | Check if Simulink Design Verifier<br>software is updating block diagram |
| sldvlogsignals       | Log simulation input port values                                        |

### **Model Analysis**

| sldvcompat  | Check model for compatibility with analysis     |
|-------------|-------------------------------------------------|
| sldvgencov  | Analyze models to obtain missing model coverage |
| sldvoptions | Create design verification options object       |
| sldvrun     | Analyze model                                   |

#### **Test Execution**

| sldvruncgvtest  | Invoke Code Generation Verification<br>(CGV) API and execute model               |
|-----------------|----------------------------------------------------------------------------------|
| sldvruntest     | Simulate model using input data                                                  |
| sldvruntestopts | Generate simulation or execution<br>options for sldvruntest or<br>sldvruncgvtest |
| sldvtimer       | Identify, change, and display timer optimizations                                |

## **Analysis Results**

| sldvharnessopts  | $Defaultoptionsfor{\tt sldvmakeharness}$                    |
|------------------|-------------------------------------------------------------|
| sldvmakeharness  | Generate harness model                                      |
| sldvmergeharness | Merge test cases and initializations into one harness model |
| sldvreport       | Generate report                                             |

#### **MATLAB** for Code Generation and Stateflow Functions

| sldv.assume    | Proof assumption function for<br>Stateflow charts and MATLAB®<br>Function blocks |
|----------------|----------------------------------------------------------------------------------|
| sldv.condition | Test condition function for Stateflow charts and MATLAB Function blocks          |
| sldv.prove     | Proof objective function for Stateflow charts and MATLAB Function blocks         |
| sldv.test      | Test objective function for Stateflow charts and MATLAB Function blocks          |

# Functions — Alphabetical List

## sldv.assume

| Purpose     | Proof assumption function for Stateflow charts and MATLAB Function blocks                                                                                                                                          |
|-------------|--------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|
| Syntax      | <pre>sldv.assume(expr)</pre>                                                                                                                                                                                       |
| Description | <pre>sldv.assume(expr) specifies that expr be true for every evaluation while proving properties. Use any valid Boolean expression for expr.</pre>                                                                 |
|             | This function has no output and no impact on its parenting function, other than any indirect side effects of evaluating expr. If you issue this function from the MATLAB command line, the function has no effect. |
|             | Intersperse sldv.assume proof assumptions within MATLAB code or separate the assumptions into a verification script.                                                                                               |
|             | The <b>Proof assumptions</b> option in the <b>Property proving</b> pane applies<br>to proof assumptions represented with the sldv.assume function, as<br>well as with the Proof Assumption block.                  |
| Input       | expr                                                                                                                                                                                                               |
| Arguments   | MATLAB expression, for example, $x > 0$                                                                                                                                                                            |
| Examples    | Specify a property proof objective and proof assumption in a MATLAB Function block:                                                                                                                                |
|             | Open the sldvdemo_sbr_verification model and save it as<br>ex_sldvdemo_sbr_verification.                                                                                                                           |
|             | 2 Open the Selecty Properties subsystem                                                                                                                                                                            |

**2** Open the Safety Properties subsystem.



**3** Open the **MATLAB Property** block, which is a MATLAB Function block.



|              | 4 At the end of thecheck_reminder function definition, add the line sldv.assume(Inputs.KEY==0   1); so that the last two lines of the function definition now read:                                                                          |
|--------------|----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|
|              | <pre>sldv.prove(implies(activeCond, SeatBeltIcon)); sldv.assume(Inputs.KEY==0   1);</pre>                                                                                                                                                    |
|              | <b>5</b> In the editor, save the updated code.                                                                                                                                                                                               |
|              | <ul> <li>6 Prove the safety properties. With the model open in the Model Editor, select the Safety Properties subsystem and choose Analysis &gt; Design Verifier &gt; Prove Properties &gt; Selected Subsystem.</li> </ul>                   |
|              | In the Model Editor, you can also right-click the Safety Properties<br>subsystem and select <b>Design Verifier &gt; Prove Subsystem</b><br><b>Properties</b> .                                                                               |
| Alternatives | Instead of using the sldv.assume function, you can insert a Proof<br>Assumption block in your model. However, using sldv.assume instead<br>of a Proof Assumption block offers several benefits, described in "What<br>Is Property Proving?". |
|              | You can also constrain signal values when proving models by using MATLAB for code generation without using the sldv.assume function. However, using sldv.assume instead of directly using MATLAB for code generation eliminates the need to: |
|              | • Express the assumption with a Simulink block                                                                                                                                                                                               |
|              | • Explicitly connect the assumption output to a Simulink block                                                                                                                                                                               |
| See Also     | <pre>sldv.condition   sldv.prove   sldv.test   Proof Assumption   Proof Objective   Test Condition   Test Objective</pre>                                                                                                                    |
| Tutorials    | "Prove Properties in a Model"                                                                                                                                                                                                                |
| How To       | "Workflow for Proving Model Properties"                                                                                                                                                                                                      |

| Purpose     | Replace blocks for analysis                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                 |
|-------------|-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|
| Syntax      | <pre>[status, newmodel] = sldvblockreplacement(model) [status, newmodel] = sldvblockreplacement(model, options) [status, newmodel] = sldvblockreplacement(model, options,</pre>                                                                                                                                                                                                                                                                                                                                             |
| Description | <pre>[status, newmodel] = sldvblockreplacement(model) copies model<br/>and replaces specified model blocks and other model components for a<br/>Simulink Design Verifier analysis. sldvblockreplacement replaces the<br/>blocks of the model according to the block-replacement rules in the<br/>model configuration settings. sldvblockreplacement returns a handle<br/>to the new model in newmodel. If the operation replaces the blocks,<br/>sldvblockreplacement returns a status of 1. Otherwise, it returns 0.</pre> |
|             | <pre>[status, newmodel] = sldvblockreplacement(model, options)<br/>replaces the blocks of model according to the block replacement rules<br/>specified in the sldvoptions object options, and returns a handle<br/>to the new model in newmodel.</pre>                                                                                                                                                                                                                                                                      |
|             | <pre>[status, newmodel] = sldvblockreplacement(model, options,<br/>showUI) performs the same tasks as sldvblockreplacement(model,<br/>options). If showUI is true, errors appear in the Simulation<br/>Diagnostics Viewer. Otherwise, errors appear at the MATLAB<br/>command line.</pre>                                                                                                                                                                                                                                   |
| Input       | model                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                       |
| Arguments   | Handle to a Simulink model                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                  |
|             | options                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                     |
|             | sldvoptions object that specifies analysis parameters                                                                                                                                                                                                                                                                                                                                                                                                                                                                       |
|             | Default: []                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                 |
|             | showUI                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                      |
|             | Logical value indicating where to display messages during analysis                                                                                                                                                                                                                                                                                                                                                                                                                                                          |

|           | true to display messages in the log window<br>false (default) to display messages in the MATLAB command<br>window      |
|-----------|------------------------------------------------------------------------------------------------------------------------|
| Examples  | Replace the blocks in sldvdemo_blockreplacement_unsupportedblocks using the block-replacement rules specified in opts: |
|           | opts = sldvoptions;                                                                                                    |
|           | opts.BlockReplacement = 'on'                                                                                           |
|           | opts.BlockReplacementRulesList =                                                                                       |
|           | <pre>'<factorydefaultrules>, custom_rule_switch';</factorydefaultrules></pre>                                          |
|           | <pre>[status, newmodel] = sldvblockreplacement(</pre>                                                                  |
|           | 'sldvdemo_blockreplacement_unsupportedblocks', opts);                                                                  |
| See Also  | sldvoptions                                                                                                            |
| Tutorials | "Replace Multiport Switch Blocks"                                                                                      |
| How To    | "Define Custom Block Replacements"                                                                                     |

| Purpose     | Check model for compatibility with analysis                                                                                                                                                                                                                                                                                                                                               |
|-------------|-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|
| Syntax      | <pre>status = sldvcompat(model) status = sldvcompat(block) status = sldvcompat(subsystem, options) status = sldvcompat(model, options, showUI, startCov)</pre>                                                                                                                                                                                                                            |
| Description | <pre>status = sldvcompat(model) returns a status of 1 if model is<br/>compatible with Simulink Design Verifier software. Otherwise,<br/>sldvcompat returns 0.</pre>                                                                                                                                                                                                                       |
|             | <pre>status = sldvcompat(block) converts the Simulink block into a<br/>temporary model and checks the compatibility of that model with<br/>Simulink Design Verifier software. After the compatibility check,<br/>sldvcompat closes the temporary model.</pre>                                                                                                                             |
|             | <pre>status = sldvcompat(subsystem, options) checks the subsystem specified by subsystem for compatibility with the Simulink Design Verifier software using the sldvoptions object options.</pre>                                                                                                                                                                                         |
|             | <pre>status = sldvcompat(model, options, showUI, startCov) checks<br/>the compatibility of the model with Simulink Design Verifier software.<br/>If showUI is true, errors appear in the Simulation Diagnostics Viewer.<br/>Otherwise, errors appear at the MATLAB command line. The analysis<br/>ignores all model coverage objectives satisfied in startCov, a cvdata<br/>object.</pre> |
| Input       | model                                                                                                                                                                                                                                                                                                                                                                                     |
| Arguments   | Handle to a Simulink model                                                                                                                                                                                                                                                                                                                                                                |
|             | Default: []                                                                                                                                                                                                                                                                                                                                                                               |
|             | block                                                                                                                                                                                                                                                                                                                                                                                     |
|             | Handle to a block in a Simulink model                                                                                                                                                                                                                                                                                                                                                     |
|             | subsystem                                                                                                                                                                                                                                                                                                                                                                                 |
|             |                                                                                                                                                                                                                                                                                                                                                                                           |

Handle to a subsystem in a Simulink model

#### options

sldvoptions object that specifies analysis parameters

Default: []

#### showUI

Logical value indicating where to display messages during analysis

true to display messages in the log window false (default) to display messages in the MATLAB command window

#### startCov

A cvdata object that contains coverage data for the model

**Examples** Check the sldvdemo\_flipflop model to see if it is compatible with Simulink Design Verifier software:

sldvdemo\_flipflop
status = sldvcompat('sldvdemo flipflop')

**Alternatives** To check if a model is compatible with the Simulink Design Verifier software, in the Model Editor window, select **Analysis > Design Verifier > Check Compatibility > Model**.

To check the compatibility of a subsystem, right-click the subsystem and select **Design Verifier > Check Subsystem Compatibility**.

#### See Also sldvoptions | sldvrun

**How To** • "Check Compatibility of the Example Model"

| Purpose     | Test condition function for Stateflow charts and MATLAB Function blocks                                                                                                                                                  |
|-------------|--------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|
| Syntax      | <pre>sldv.condition(expr)</pre>                                                                                                                                                                                          |
| Description | <pre>sldv.condition(expr) Specifies that expr is true for every time step in a generated text case. Use any valid Boolean expression for expr.</pre>                                                                     |
|             | This function has no output and no impact on its parenting function,<br>other than any indirect side effects of evaluating expr. If you issue this<br>function from the MATLAB command line, the function has no effect. |
|             | Intersperse sldv.condition test conditions within MATLAB code or separate the conditions into a verification script.                                                                                                     |
|             | The <b>Test conditions</b> option in the <b>Test generation</b> pane applies to test conditions represented with the sldv.condition function, as well as with the Test Condition block.                                  |
| Input       | expr                                                                                                                                                                                                                     |
| Arguments   | MATLAB expression, for example, $x > 0$                                                                                                                                                                                  |
| Examples    | Add a test objective and test conditions:                                                                                                                                                                                |
|             | Open the sldvdemo_cruise_control model and save it as<br>ex_sldvdemo_cruise_control.                                                                                                                                     |
|             | 2 Remove the Test Condition block for the speed block signal. Instead of the Test Condition block, this example uses sldv.test and sldv.condition.                                                                       |
|             | <b>3</b> From the User-Defined Functions library, add a MATLAB Function block and:                                                                                                                                       |
|             | a Name the block tests.                                                                                                                                                                                                  |
|             | <b>b</b> Open the block and add the following code:                                                                                                                                                                      |

```
function define_tests(speed, target)
%#codegen
sldv.condition(speed >= 0 && speed <= 100);
sldv.test(speed > 60 && target > 40 && target < 50);
sldv.test(speed < 20 && target > 50);
```

- **c** Save the code and close the editor.
- **d** Connect the block to the signal for the **speed** block and to the signal for the **target** block.



Simulink Design Verifier

|              | 4 Generate the test: select Analysis > Design Verifier > Generate<br>Tests > Model.                                                                                                                                                                |
|--------------|----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|
| Alternatives | Instead of using the sldv.condition function, you can insert a Test<br>Condition block in your model. However, using sldv.condition instead<br>of a Test Condition block offers several benefits, described in "What<br>Is Test Case Generation?". |
|              | You can also specify test conditions by using MATLAB for code<br>generation without using the sldv.condition function. However,<br>using sldv.condition instead of directly using MATLAB for code<br>generation eliminates the need to:            |
|              | • Express the constraints with Simulink blocks                                                                                                                                                                                                     |
|              | • Explicitly connect the condition output to a Simulink block                                                                                                                                                                                      |
| See Also     | <pre>sldv.assume   sldv.prove   sldv.test   Proof Assumption   Proof Objective   Test Condition   Test Objective</pre>                                                                                                                             |
| Tutorials    | "Generate Test Cases for Model Decision Coverage"                                                                                                                                                                                                  |
| How To       | "Workflow for Test Case Generation"                                                                                                                                                                                                                |

| Purpose                                                                                                                                                                                                                                                                                                                                                       | Extract subsystem or subchart contents into new model for analysis                                                                                                                                                                                                                                                                                                                            |
|---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|
| Syntax                                                                                                                                                                                                                                                                                                                                                        | <pre>newModel = sldvextract(subsystem) newModel = sldvextract(subchart) newModel = sldvextract(subsystem, showModel) newModel = sldvextract(subchart, showModel)</pre>                                                                                                                                                                                                                        |
| <b>Description</b><br>newModel = sldvextract(subsystem) extracts the content<br>atomic subsystem subsystem and creates a model for the S<br>Design Verifier software to analyze. sldvextract returns th<br>the new model in newModel. sldvextract uses the subsyst<br>for the model name, appending a numeral to the model name<br>model name already exists. |                                                                                                                                                                                                                                                                                                                                                                                               |
|                                                                                                                                                                                                                                                                                                                                                               | <pre>newModel = sldvextract(subchart) extracts the contents of the<br/>atomic subchart subchart and creates a model for the Simulink Design<br/>Verifier software to analyze. subchart should specify the full path of<br/>the Atomic Subchart. sldvextract uses the subchart name for the<br/>model name, appending a numeral to the model name if that model<br/>name already exists.</pre> |
| <b>Note</b> If the atomic subchart calls an exported graphical function is outside the subchart, sldvextract creates the model, but the model will not compile.                                                                                                                                                                                               |                                                                                                                                                                                                                                                                                                                                                                                               |
|                                                                                                                                                                                                                                                                                                                                                               | <pre>newModel = sldvextract(subsystem, showModel) and newModel<br/>= sldvextract(subchart, showModel) opens the extracted model<br/>if you set showModel to true. The extracted model is only loaded if<br/>showModel is set to false.</pre>                                                                                                                                                  |
| Input                                                                                                                                                                                                                                                                                                                                                         | subsystem                                                                                                                                                                                                                                                                                                                                                                                     |
| Arguments                                                                                                                                                                                                                                                                                                                                                     | Full path to the atomic subsystem                                                                                                                                                                                                                                                                                                                                                             |
|                                                                                                                                                                                                                                                                                                                                                               | subchart                                                                                                                                                                                                                                                                                                                                                                                      |

#### sldvextract

|           | Full path to the Stateflow atomic subchart                                                                                  |
|-----------|-----------------------------------------------------------------------------------------------------------------------------|
|           | showModel                                                                                                                   |
|           | Boolean that indicates whether to display the extracted model                                                               |
|           | Default: True                                                                                                               |
| Output    | newModel                                                                                                                    |
| Arguments | Name of the new model                                                                                                       |
| Examples  | Extract the atomic subsystem, Bus Counter, from the <pre>sldemo_mdlref_conversion</pre> model and copy it into a new model: |
|           | open_system('sldemo_mdlref_conversion');                                                                                    |
|           | <pre>newmodel = sldvextract('sldemo_mdlref_conversion/Bus Counter', true);</pre>                                            |
|           | Extract the atomic subchart, Sensor1, from the sf_atomic_sensor_pair model and copy it into a new model:                    |
|           | open_system('sf_atomic_sensor_pair');<br>newmodel = sldvextract('sf_atomic_sensor_pair/RedundantSensors/Sensor1',<br>true); |

| Purpose     | Analyze models to obtain missing model coverage                                                                                                                                                                                                                                                                                |
|-------------|--------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|
| Syntax      | <pre>[status, cvdo] = sldvgencov(model, options,<br/>showUI, startCov)<br/>[status, cvdo] = sldvgencov(block, options,<br/>showUI, startCov)<br/>[status, cvdo, filenames] = sldvgencov(model, options,<br/>showUI, startCov)<br/>[status, cvdo, filenames, newmodel] = sldvgencov(block,<br/>options, showUI, startCov)</pre> |
| Description | <pre>[status, cvdo] = sldvgencov(model, options, showUI,<br/>startCov) analyzes model using the sldvoptions object options.</pre>                                                                                                                                                                                              |
|             | <pre>[status, cvdo] = sldvgencov(block, options, showUI,<br/>startCov) analyzes the atomic subsystem block using the<br/>sldvoptions object options.</pre>                                                                                                                                                                     |
|             | <pre>[status, cvdo, filenames] = sldvgencov(model, options,<br/>showUI, startCov) analyzes model and returns the file names that<br/>the software created in filenames.</pre>                                                                                                                                                  |
|             | [status, cvdo, filenames, newmodel] = sldvgencov(block,<br>options, showUI, startCov) analyzes block using the sldvoptions<br>object options. The software returns a handle to newmodel, which<br>contains a copy of the block subsystem.                                                                                      |
| Input       | block                                                                                                                                                                                                                                                                                                                          |
| Arguments   | Handle to an atomic subsystem in a Simulink model                                                                                                                                                                                                                                                                              |
|             | model                                                                                                                                                                                                                                                                                                                          |
|             | Handle to a Simulink model                                                                                                                                                                                                                                                                                                     |
|             | Default: []                                                                                                                                                                                                                                                                                                                    |
|             | options                                                                                                                                                                                                                                                                                                                        |

|                                                                                                  | sldvoptions object that specifies a                                          | analysis parameters                              |
|--------------------------------------------------------------------------------------------------|------------------------------------------------------------------------------|--------------------------------------------------|
|                                                                                                  | Default: []                                                                  |                                                  |
|                                                                                                  | showUI                                                                       |                                                  |
|                                                                                                  | Logical value indicating where to o                                          | lisplay messages during analysis                 |
|                                                                                                  | true to display messages in the<br>false (default) to display mess<br>window | -                                                |
| startCov                                                                                         |                                                                              |                                                  |
| cvdata object. The analysis ignores any model coverage objectives already satisfied in startCov. |                                                                              | es any model coverage objectives                 |
|                                                                                                  | Default: []                                                                  |                                                  |
| Output                                                                                           | cvdo                                                                         |                                                  |
| Arguments                                                                                        | Arguments cvdata object containing coverage data for new tests filenames     |                                                  |
|                                                                                                  |                                                                              |                                                  |
|                                                                                                  | A structure whose fields list the file names resulting from the analysis:    |                                                  |
|                                                                                                  | DataFile                                                                     | MAT-file with raw input data                     |
|                                                                                                  | HarnessModel                                                                 | Simulink harness model                           |
|                                                                                                  | SystemTestFile                                                               | SystemTest <sup>™</sup> TEST-file                |
|                                                                                                  | Report                                                                       | HTML report of the results                       |
|                                                                                                  | ExtractedModel                                                               | Simulink model extracted from subsystem          |
|                                                                                                  | BlockReplacementModel                                                        | Simulink model obtained after block replacements |

#### status

Logical value that indicates if the analysis collected model coverage

true false

# **Examples** Analyze the Cruise Control model and simulate a version of that model using data from test cases from the previous analysis. Compare the model coverage data, and collect the coverage missing from the sldvdemo cruise control mod model analysis:

```
opts = sldvoptions;
                      % Generate test cases
                      opts.Mode = 'TestGeneration';
                      % Specify MCDC coverage
                      opts.ModelCoverageObjectives = 'MCDC';
                      % Don't create harness model
                      opts.SaveHarnessModel = 'off';
                      % or report
                      opts.SaveReport = 'off';
                      open system 'sldvdemo cruise control';
                      [ status, files ] = sldvrun('sldvdemo cruise control', opts);
                      open system 'sldvdemo cruise control mod';
                      [ outData, startCov ] = sldvruntest('sldvdemo_cruise_control_mod',...
                          files.DataFile, [], true);
                      cvhtml('Coverage with the original test suite', startCov);
                      [ status, covData, files ] = sldvgencov('sldvdemo cruise control mod',...
                          opts, false, startCov);
See Also
                      sldvruntest | sldvmergeharness | sldvoptions | sldvrun
```

**Tutorials** • "Generate Test Cases for Model Decision Coverage"

## sldvharnessopts

| Purpose             | Default options for sldvmakeharness                                                                                                                       |
|---------------------|-----------------------------------------------------------------------------------------------------------------------------------------------------------|
| Syntax              | harnessopts = sldvharnessopts                                                                                                                             |
| Description         | harnessopts = sldvharnessopts generates the default configuration for running sldvmakeharness.                                                            |
| Output<br>Arguments | <b>harnessopts</b><br>A structure whose fields specify the default options for sldvmakeharness<br>when creating a Simulink Design Verifier harness model. |

The harnessopts structure can have the following fields. If you do not specify values, the configuration uses default values.

| Field           | Description                                                                                                                                                                                                                                                                                                                                               |
|-----------------|-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|
| harnessFilePath | Specifies the file path for<br>creating the harness model. If<br>an invalid path is specified,<br>sldvmakeharness does not save<br>the harness model, but it creates<br>and opens the harness model.<br>If this option is not specified,<br>sldvmakeharness generates a<br>new harness model and saves it<br>in the MATLAB current folder.<br>Default: '' |
| modelRefHarness | Generates the test harness model<br>that includes model in a Model<br>block. When false, the test<br>harness model includes a copy of<br>model.<br>Default: true                                                                                                                                                                                          |

| Field             | Description                                                                                                                                                                                                                            |
|-------------------|----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|
| usedSignalsOnly   | When true, the Signal Builder<br>block in the harness model has<br>signals only for input signals<br>used in the model. model must<br>be compatible with the Simulink<br>Design Verifier software to detect<br>the used input signals. |
|                   | Default: false                                                                                                                                                                                                                         |
| systemTestHarness | When true, generates a<br>SystemTest harness. This<br>option requires dataFile path<br>in addition to model.                                                                                                                           |
|                   | Default: false                                                                                                                                                                                                                         |

**Examples** Create a test harness for the sldvdemo\_cruise\_control model using the default options:

```
open_system('sldvdemo_cruise_control');
harnessOpts = sldvharnessopts;
[harnessfile] = sldvmakeharness('sldvdemo_cruise_control',...
'', harnessOpts);
```

See Also sldvmakeharness

## sldvisactive

| Purpose     | Check if Simulink Design Verifier software is updating block diagram                                                                                                                                                                                     |  |
|-------------|----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|--|
| Syntax      | status = sldvisactive<br>status = sldvisactive(model)<br>status = sldvisactive(block)                                                                                                                                                                    |  |
| Description | <pre>status = sldvisactive checks if the Simulink Design Verifier<br/>software is actively analyzing the current Simulink model. If the<br/>software is actively analyzing the current model, sldvisactive returns<br/>1. Otherwise, it returns 0.</pre> |  |
|             | <pre>status = sldvisactive(model) checks if the Simulink Design Verifier software is actively analyzing model.</pre>                                                                                                                                     |  |
|             | <pre>status = sldvisactive(block) checks if the Simulink Design Verifier software is actively analyzing the model that contains block.</pre>                                                                                                             |  |
|             | sldvisactive customizes the model analysis in block and model callback functions, or mask initialization.                                                                                                                                                |  |
| Input       | model                                                                                                                                                                                                                                                    |  |
| Arguments   | Full path name or handle to a Simulink model                                                                                                                                                                                                             |  |
|             | block                                                                                                                                                                                                                                                    |  |
|             | Full path name or handle to a Simulink block                                                                                                                                                                                                             |  |
| Examples    | Eliminate blocks that are incompatible with the Simulink Design Verifier software:                                                                                                                                                                       |  |
|             | 1 Create a Simulink model and save it as ex_environment_controller.                                                                                                                                                                                      |  |



- 2 Right-click the Environment Controller block and select View Mask.
- **3** Click the **Initialization** tab and add the following command, if it does not exist:

```
switch_mode = rtwenvironmentmode(bdroot(gcbh)) || ...
(exist('sldvisactive','file')~=0 && ...
sldvisactive(bdroot(gcbh)));
```

The Simulink Design Verifier software does not support Band-Limited White Noise blocks. If the software is analyzing the mEnvControl model the mask initialization of the Environment Controller block:

- Sets the pass-through mode to pass the Sim signal to the output port.
- Eliminates the Coder port, which is incompatible with the Simulink Design Verifier software.
- 4 Save the changes to the ex\_environment\_controller model.

## sldvlogsignals

| Purpose     | Log simulation input port values                                                                                                                                                                                                                                                                                                                                  |
|-------------|-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|
| Syntax      | data = sldvlogsignals(model_block)<br>data = sldvlogsignals(harness_model)<br>data = sldvlogsignals(harness_model, test_case_index)                                                                                                                                                                                                                               |
|             | <b>Note</b> sldvlogsignals replaces sldvlogdata. Use sldvlogsignals instead.                                                                                                                                                                                                                                                                                      |
| Description | <pre>data = sldvlogsignals(model_block) simulates the model that<br/>contains model_block and logs the input signals to the model_block<br/>block. model_block must be a Simulink Model block. sldvlogsignals<br/>records the logged data in the structure data.</pre>                                                                                            |
|             | data = sldvlogsignals(harness_model) simulates every test case in<br>harness_model and logs the input signals to the Test Unit block in the<br>harness model. You must generate harness_model using Simulink<br>Design Verifier analysis, sldvmakeharness, or slvnvmakeharness.                                                                                   |
|             | <pre>data = sldvlogsignals(harness_model, test_case_index) simulates every test case in the Signal Builder block of the harness_model that is specified by test_case_index. sldvlogsignals logs the input signals to the Test Unit block in the harness model. If you omit test_case_index, sldvlogsignals simulates every test case in the Signal Builder.</pre> |
| Input       | model_block                                                                                                                                                                                                                                                                                                                                                       |
| Arguments   | Full block path name or handle to a Simulink Model block                                                                                                                                                                                                                                                                                                          |
|             | harness_model                                                                                                                                                                                                                                                                                                                                                     |
|             | Name or handle to a harness model that the Simulink Design Verifier software, sldvmakeharness, or slvnvmakeharness creates                                                                                                                                                                                                                                        |
|             | test_case_index                                                                                                                                                                                                                                                                                                                                                   |
|             |                                                                                                                                                                                                                                                                                                                                                                   |

| Array of integers that specifies which test cases in the Signal Builder |
|-------------------------------------------------------------------------|
| block of the harness model to simulate                                  |

| Output<br>Arguments | <b>data</b><br>Structure that contains the logged data                                                                                                                                                                                                  |
|---------------------|---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|
| Examples            | <pre>Simulate the sldemo_mdlref_bus model, log the input signals to the<br/>Model block CounterA, and save the logged signals in logged_data:<br/>open_system('sldemo_mdlref_bus')<br/>logged_data = sldvlogsignals('sldemo_mdlref_bus/CounterA')</pre> |
|                     | Use the logged signals to create a harness model in order to visualize the data:                                                                                                                                                                        |
|                     | Simulate the CounterB Model block, which references<br>the sldemo_mdlref_counter model, in the context of the<br>sldemo_mdlref_basic model. Then log the data:                                                                                          |
|                     | open_system('sldemo_mdlref_basic');<br>data = sldvlogsignals('sldemo_mdlref_basic/CounterB');                                                                                                                                                           |
|                     | 2 Create a harness model for sldemo_mdlref_counter using the logged data and the default harness options:                                                                                                                                               |
|                     | load_system('sldemo_mdlref_counter');<br>harnessOpts = sldvharnessopts<br>[~, harnessFilePath] =<br>sldvmakeharness('sldemo_mdlref_counter', data, harnessOpts);                                                                                        |
| How To              | "Extend Test Cases for Model with Temporal Logic"                                                                                                                                                                                                       |
|                     | "Extend Test Cases for Closed-Loop System"                                                                                                                                                                                                              |

## sldvmakeharness

| Purpose     | Generate harness model                                                                                                                                                                                                                                                                                                                                                                                                                                         |
|-------------|----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|
| Syntax      | <pre>[savedHarnessFilePath] = sldvmakeharness(model) [savedHarnessFilePath] = sldvmakeharness(model, dataFile) [savedHarnessFilePath] = sldvmakeharness(model, dataFile, harnessOpts)</pre>                                                                                                                                                                                                                                                                    |
| Description | <pre>[savedHarnessFilePath] = sldvmakeharness(model) generates a<br/>test harness from model, which is a handle to a Simulink model or a<br/>string with the model name. sldvmakeharness returns the path and<br/>file name of the generated harness model in savedHarnessFilePath.<br/>sldvmakeharness creates an empty harness model; the test harness<br/>includes one default test case that specifies the default values for all<br/>input signals.</pre> |
|             | [savedHarnessFilePath] = sldvmakeharness(model, dataFile)<br>generates a test harness from the data file dataFile.                                                                                                                                                                                                                                                                                                                                             |
|             | <pre>[savedHarnessFilePath] = sldvmakeharness(model, dataFile,<br/>harnessOpts) generates a test harness from model using the<br/>dataFile and harnessOpts, which specifies the harness creation<br/>options. Requires '' for dataFile if dataFile is not available.</pre>                                                                                                                                                                                     |
|             | If the software generates a harness, it does not imply that your model is compatible with the Simulink Design Verifier software.                                                                                                                                                                                                                                                                                                                               |
| Input       | model                                                                                                                                                                                                                                                                                                                                                                                                                                                          |
| Arguments   | Handle to a Simulink model or a string with the model name                                                                                                                                                                                                                                                                                                                                                                                                     |
|             | dataFile                                                                                                                                                                                                                                                                                                                                                                                                                                                       |
|             | Name of the sldvData file.                                                                                                                                                                                                                                                                                                                                                                                                                                     |
|             | Default: ''                                                                                                                                                                                                                                                                                                                                                                                                                                                    |
|             | harnessOpts                                                                                                                                                                                                                                                                                                                                                                                                                                                    |
|             | A structure whose fields specify the configuration for sldvmakeharness:                                                                                                                                                                                                                                                                                                                                                                                        |

| Field           | Description                                                                                                                                                                                                                                                                                                                                |
|-----------------|--------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|
| harnessFilePath | Specifies the file path for<br>creating the harness model. If<br>an invalid path is specified,<br>sldvmakeharness does not save<br>the harness model, but it creates<br>and opens the harness model.<br>If this option is not specified,<br>sldvmakeharness generates a<br>new harness model and saves it<br>in the MATLAB current folder. |
|                 | Default: ''                                                                                                                                                                                                                                                                                                                                |
| modelRefHarness | Generates the test harness model<br>that includes model in a Model<br>block. When false, the test<br>harness model includes a copy of<br>model.<br>Default: true                                                                                                                                                                           |
|                 | Note If your model contains<br>bus objects and you set<br>modelRefHarness to true,<br>in the Configuration<br>Parameters > Diagnostics > Co<br>pane, you must set the Mux<br>blocks used to create bus<br>signals parameter to error.                                                                                                      |

| Field             | Description                                                                                                                                                                                                                                              |
|-------------------|----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|
| usedSignalsOnly   | When true, the Signal Builder<br>block in the harness model has<br>signals only for input signals<br>used in the model. model must<br>be compatible with the Simulink<br>Design Verifier software to detect<br>the used input signals.<br>Default: false |
| systemTestHarness | When true, generates a<br>SystemTest harness. This<br>option requires dataFile path<br>in addition to model.<br>Default: false                                                                                                                           |

**Note** To create a default harnessOpts object, use sldvharnessopts.

| Output<br>Arguments | savedHarnessFilePath                                                                                                      |  |
|---------------------|---------------------------------------------------------------------------------------------------------------------------|--|
|                     | String containing the path and file name of the generated harness model                                                   |  |
| Examples            | Create a test harness for the sldvdemo_cruise_control model using the default options:                                    |  |
|                     | open_system('sldvdemo_cruise_control');<br>[harnessfile] = sldvmakeharness('sldvdemo_cruise_control', '', harnessOpts);   |  |
| Alternatives        | sldvmakeharness creates a test harness model without analyzing the model. To analyze the model and create a test harness: |  |
|                     | 1 In the Model Editor, select Analysis > Design Verifier > Options.                                                       |  |

- 2 In the **Design Verifier > Results** pane, under **Harness model options**, set the desired options.
- 3 Click OK.
- **4** Select **Tools > Design Verifier > Generate Tests** to run an analysis.
- See Also sldvharnessopts | sldvmergeharness | sldvrun | slvnvharnessopts | slvnvmakeharness | slvnvmergeharness

# sldvmergeharness

| Purpose            | Merge test cases and initializations into one harness model                                                                                                                                                                                                                                                                                                                                                                                                                        |
|--------------------|------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|
|                    | <b>Note</b> sldvmergeharness replaces sldvharnessmerge. Use sldvmergeharness instead.                                                                                                                                                                                                                                                                                                                                                                                              |
| Syntax             | <pre>status = sldvmergeharness(name, models,<br/>initialization_commands)</pre>                                                                                                                                                                                                                                                                                                                                                                                                    |
| Description        | <pre>status = sldvmergeharness(name, models,<br/>initialization_commands) collects the test data and initialization<br/>commands from each test harness model in models. sldvharnessmerge<br/>saves the data and initialization commands in name, which is a handle<br/>to the new model.</pre>                                                                                                                                                                                    |
|                    | If name does not exist, sldvmergeharness creates it as a copy of<br>the first model in models. sldvmergeharness then merges data<br>from other models listed in models into this model. If you create<br>name from a previous sldvmergeharness run, subsequent runs of<br>sldvmergeharness for name maintain the structure and initialization<br>from the earlier run. If name matches an existing Simulink model,<br>sldvmergeharness merges the test data from models into name. |
|                    | sldvmergeharness assumes that name and the rest of the models in<br>models have only one Signal Builder block on the top level. If a model<br>in models does not meet this restriction or its top-level Signal Builder<br>block does not have the same number of signals as the top-level Signal<br>Builder block in name, sldvmergeharness does not merge that model's<br>test data into name.                                                                                    |
|                    | Use sldvmergeharness with sldvgencov to combine test cases that use different sets of parameter values.                                                                                                                                                                                                                                                                                                                                                                            |
| Input<br>Arguments | <b>name</b><br>Name of the new harness model, to be stored in the default MATLAB<br>folder                                                                                                                                                                                                                                                                                                                                                                                         |

### models

A cell array of strings that represent harness model names

### initialization\_commands

A cell array of strings the same length as models. initialization\_commands defines parameter settings for the test cases of each test harness model.

| Output<br>Arguments | <b>status</b><br>If the operation works, sldvmergeharness returns a status of 1.<br>Otherwise, it returns 0.   |
|---------------------|----------------------------------------------------------------------------------------------------------------|
| Examples            | Analyze the sldvdemo_cruise_control model for decision and for full coverage and merge the two test harnesses: |
|                     | <pre>model = 'sldvdemo_cruise_control';</pre>                                                                  |
|                     | open_system(model)                                                                                             |
|                     | % Collect decision coverage                                                                                    |
|                     | opts1 = sldvoptions;                                                                                           |
|                     | opts1.Mode = 'TestGeneration';                                                                                 |
|                     | opts1.ModelCoverageObjectives = 'Decision';                                                                    |
|                     | opts1.HarnessModelFileName = 'first_harness';                                                                  |
|                     | opts1.SaveHarnessModel = 'on';                                                                                 |
|                     | <pre>sldvrun(model, opts1);</pre>                                                                              |
|                     | % Collect full coverage                                                                                        |
|                     | opts2 = sldvoptions;                                                                                           |
|                     | opts2.Mode = 'TestGeneration';                                                                                 |
|                     | <pre>opts2.ModelCoverageObjectives = 'ConditionDecision';</pre>                                                |
|                     | opts2.HarnessModelFileName = 'second_harness';                                                                 |
|                     | opts2.SaveHarnessModel = 'on';                                                                                 |
|                     | <pre>sldvrun(model, opts2);</pre>                                                                              |
|                     | % Merge the two harness files:                                                                                 |
|                     | <pre>status = sldvmergeharness('new_harness_model', {'first_harness', 'second_harness'});</pre>                |

## sldvmergeharness

See Also sldvgencov | sldvmakeharness | sldvrun

| Purpose             | Create design verification options object                                                                                  |
|---------------------|----------------------------------------------------------------------------------------------------------------------------|
| Syntax              | options = sldvoptions<br>options = sldvoptions(model)                                                                      |
| Description         | options = sldvoptions returns an object options that contains the default values for the design verification parameters.   |
|                     | <pre>options = sldvoptions(model) returns the object options attached to model.</pre>                                      |
| Input<br>Arguments  | <b>model</b><br>Name or handle to a Simulink model                                                                         |
| Output<br>Arguments | <b>options</b><br>The following table describes the parameters that comprise a Simulink<br>Design Verifier options object. |

| Parameter         | Description                                                                                                                                           | Values                                                         |
|-------------------|-------------------------------------------------------------------------------------------------------------------------------------------------------|----------------------------------------------------------------|
| Assertions        | Specify whether Assertion<br>blocks in your model are<br>enabled or disabled.                                                                         | 'EnableAll'<br>'DisableAll'<br>'UseLocalSettings'<br>(default) |
| AutomaticStubbing | Specify whether or not<br>Simulink Design Verifier<br>software should ignore<br>unsupported blocks and<br>functions and proceed with<br>the analysis. | 'on' (default)<br>'off'                                        |

| Parameter                          | Description                                                                                                              | Values                                                       |
|------------------------------------|--------------------------------------------------------------------------------------------------------------------------|--------------------------------------------------------------|
| BlockReplacement                   | Specify whether the<br>Simulink Design Verifier<br>software replaces blocks in a<br>model before its analysis.           | 'on'<br>'off' (default)                                      |
|                                    | When set to 'on',<br>this parameter enables<br>BlockReplacementModel-<br>FileName and<br>BlockReplacementRules-<br>List. |                                                              |
| BlockReplacementModel-<br>FileName | Specify a folder and file<br>name for the model that<br>results after applying block<br>replacement rules.               | string<br>'\$ <i>ModelName</i> \$_replacement'<br>(default)  |
|                                    | This parameter is enabled<br>when BlockReplacement is<br>set to 'on'.                                                    |                                                              |
| BlockReplacementRules-             | Specify a list of block                                                                                                  | string                                                       |
| List                               | replacement rules that the<br>Simulink Design Verifier<br>software executes before its<br>analysis.                      | ' <factorydefaultrules>'<br/>(default)</factorydefaultrules> |
|                                    | This parameter is enabled<br>when BlockReplacement is<br>set to 'on'.                                                    |                                                              |

| Parameter         | Description                                                                                                                                                            | Values                                                   |
|-------------------|------------------------------------------------------------------------------------------------------------------------------------------------------------------------|----------------------------------------------------------|
| CoverageDataFile  | Specify a folder and file<br>name for the file that<br>contains data about any<br>satisfied coverage objectives.                                                       | string<br>'' (default)                                   |
|                   | This parameter is enabled<br>when IgnoreCovSatisfied<br>is set to 'on'.                                                                                                |                                                          |
| DataFileName      | Specify a folder and file<br>name for the MAT-file that<br>contains the data generated<br>during the analysis, stored<br>in an sldvData structure.                     | string<br>'\$ <i>ModelNam</i> e\$_sldvdata'<br>(default) |
|                   | This parameter is enabled<br>when SaveDataFile is set to<br>'on'.                                                                                                      |                                                          |
| DesignMinMaxCheck | Specify whether to check<br>that the intermediate and<br>output signals in your model<br>are within the range of<br>user-specified minimum and<br>maximum constraints. | 'on'<br>'off' (default)                                  |
|                   | Note This parameter<br>is disabled when<br>DetectDeadLogic is set<br>to 'on'.                                                                                          |                                                          |

| Parameter               | Description                                                                                                                                                                                                     | Values                  |
|-------------------------|-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|-------------------------|
| DesignMinMaxConstraints | Specify whether or not<br>Simulink Design Verifier<br>software should generate<br>test cases that consider<br>specified minimum and<br>maximum values as<br>constraints for all input<br>signals in your model. | 'on' (default)<br>'off' |
| DetectDeadLogic         | Specify whether to analyze your model for dead logic.                                                                                                                                                           | 'on'<br>'off' (default) |
|                         | Note When set to 'on',<br>this parameter disables<br>DetectDivisionByZero,<br>DetectIntegerOverflow,<br>and DesignMinMaxCheck.                                                                                  |                         |
| DetectDivisionByZero    | Specify whether to<br>analyze your model for<br>division-by-zero errors.                                                                                                                                        | 'on' (default)<br>'off' |
|                         | <b>Note</b> This parameter<br>is disabled when<br>DetectDeadLogic is set<br>to 'on'.                                                                                                                            |                         |

| Parameter                           | Description                                                                                                                                  | Values                  |
|-------------------------------------|----------------------------------------------------------------------------------------------------------------------------------------------|-------------------------|
| DetectIntegerOverflow               | Specify whether to analyze<br>your model for integer and<br>fixed-point data overflow<br>errors.                                             | 'on' (default)<br>'off' |
|                                     | Note This parameter<br>is disabled when<br>DetectDeadLogic is set<br>to 'on'.                                                                |                         |
| DisplayReport                       | Display the report that the<br>Simulink Design Verifier<br>analysis generates after<br>completing its analysis.                              | 'on' (default)<br>'off' |
|                                     | This parameter is enabled<br>when SaveReport is set to<br>'on'.                                                                              |                         |
| DisplayResultsOnModel               | Specify whether to display<br>analysis results by<br>highlighting the model and<br>providing context-sensitive<br>details about the results. | 'on'<br>'off' (default) |
| DisplayUnsatisfiable-<br>Objectives | Specify whether to display<br>warnings if the analysis<br>detects unsatisfiable test<br>objectives.                                          | 'on'<br>'off' (default) |
|                                     | This parameter is enabled<br>when Mode is set to<br>'TestGeneration'.                                                                        |                         |

| Parameter            | Description                                                                                                                                        | Values                            |
|----------------------|----------------------------------------------------------------------------------------------------------------------------------------------------|-----------------------------------|
| ExistingTestFile     | Specify a folder and file<br>name for the MAT-file that<br>contains the logged test case<br>data.                                                  | string<br>'' (default)            |
|                      | This parameter is enabled<br>when Mode is set to<br>'TestGeneration' and<br>ExtendExistingTests is set<br>to 'on'.                                 |                                   |
| ExtendExistingTests  | Extend the Simulink<br>Design Verifier analysis<br>by importing test cases<br>logged from a harness model<br>or a closed-loop simulation<br>model. | 'on'<br>'off' (default)           |
|                      | When set to 'on', this<br>parameter enables<br>ExistingTestFile and<br>IgnoreExistTestSatisfied.                                                   |                                   |
|                      | This parameter is enabled<br>when Mode is set to<br>'TestGeneration'.                                                                              |                                   |
| HarnessModelFileName | Specify a folder and file<br>name for the harness model.                                                                                           | string<br>'\$ModelName\$ harness' |
|                      | This parameter is enabled<br>when SaveHarnessModel is<br>set to 'on'.                                                                              | (default)                         |
| IgnoreCovSatisfied   | Specify to analyze the model,<br>ignoring satisfied coverage<br>objectives, as specified in<br>CoverageDataFile.                                   | 'on'<br>'off' (default)           |

| Parameter                | Description                                                                                                                                                                                                            | Values                    |
|--------------------------|------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|---------------------------|
| IgnoreExistTestSatisfied | Ignore the coverage<br>objectives satisfied by<br>the logged test cases in<br>ExistingTestFile.                                                                                                                        | 'on' (default)<br>'off'   |
|                          | This parameter is enabled<br>when Mode is set to<br>'TestGeneration' and<br>ExtendExistingTests is set<br>to 'on'.                                                                                                     |                           |
| MakeOutputFilesUnique    | Specify whether the<br>Simulink Design Verifier<br>software makes its output<br>file names unique by<br>appending a numeric suffix.                                                                                    | 'on' (default)<br>'off'   |
| MaxProcessTime           | Specify the maximum<br>time (in seconds) that the<br>Simulink Design Verifier<br>software spends analyzing a<br>model.                                                                                                 | double<br>'300' (default) |
| MaxTestCaseSteps         | Specify the maximum<br>number of simulation<br>steps the Simulink Design<br>Verifier software takes when<br>attempting to satisfy a test<br>objective.                                                                 | int32<br>'500' (default)  |
|                          | The analysis uses the<br>MaxTestCaseSteps<br>parameter during certain<br>parts of the test-generation<br>analysis to bound the<br>number of steps that test<br>generation uses. When you<br>set a small value for this |                           |

| Parameter | Description                                                                                                                                                                                                                                                                                                                                                                  | Values |
|-----------|------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|--------|
|           | parameter, the parts of the<br>analysis that are bounded<br>complete in less time. When<br>you set a larger value,<br>the bounded parts of the<br>analysis take longer, but it<br>is possible for these parts<br>of the analysis to generate<br>longer test cases.                                                                                                           |        |
|           | To achieve the best<br>performance, set the<br>MaxTestCaseSteps<br>parameter to a value just<br>large enough to bound the<br>longest required test case,<br>even if the test cases that<br>are ultimately generated are<br>longer than this value.                                                                                                                           |        |
|           | <b>Note</b> When you set the<br>TestSuiteOptimization<br>parameter to<br>'LongTestCases', the<br>analysis uses successive<br>passes of test generation<br>to extend a potential<br>test case so that it<br>satisfies more objectives.<br>When this happens,<br>the analysis applies<br>the MaxTestCaseSteps<br>parameter to each individual<br>iteration of test generation. |        |

| Parameter               | Description                                                                                                                                                   | Values                                                                    |
|-------------------------|---------------------------------------------------------------------------------------------------------------------------------------------------------------|---------------------------------------------------------------------------|
|                         | This parameter is enabled<br>when Mode is set to<br>'TestGeneration'.                                                                                         |                                                                           |
| MaxViolationSteps       | Specify the maximum<br>number of simulation steps<br>over which the Simulink<br>Design Verifier software<br>searches for property<br>violations.              | int32<br>'20' (default)                                                   |
|                         | This parameter is enabled<br>whenMode is set to<br>'PropertyProving' and<br>when ProvingStrategy is<br>set to 'FindViolation' or<br>'ProveWithViolationDetect | ion'.                                                                     |
| Mode                    | Specify the analysis mode<br>for the Simulink Design<br>Verifier software.                                                                                    | 'TestGeneration' (default)<br>'PropertyProving'<br>'DesignErrorDetection' |
| ModelCoverageObjectives | Specify the type of model<br>coverage that the Simulink<br>Design Verifier software<br>attempts to achieve.                                                   | 'None'<br>'Decision'<br>'ConditionDecision'<br>(default)                  |

| Parameter             | Description                                                                                                                                                                                                                                                                                                                                                   | Values                                                  |
|-----------------------|---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|---------------------------------------------------------|
|                       | Note When<br>ModelCoverageObjectives<br>is set to 'MCDC', the<br>Simulink Design Verifier<br>software automatically<br>enables every coverage<br>objective for decision<br>coverage and condition<br>coverage as well. Similarly,<br>enabling coverage for<br>condition coverage causes<br>every decision and condition<br>coverage outcome to be<br>enabled. | 'MCDC'                                                  |
|                       | This parameter is enabled<br>when Mode is set to<br>'TestGeneration'.                                                                                                                                                                                                                                                                                         |                                                         |
| ModelReferenceHarness | Use a Model block to<br>reference the model to run<br>in the harness model.                                                                                                                                                                                                                                                                                   | 'on'<br>'off' (default)                                 |
| OutputDir             | Specify a path name to<br>which the Simulink Design<br>Verifier software writes its<br>output.                                                                                                                                                                                                                                                                | <pre>string 'sldv_output/\$ModelName\$' (default)</pre> |

| Parameter             | Description                                                                                                                          | Values                                                              |
|-----------------------|--------------------------------------------------------------------------------------------------------------------------------------|---------------------------------------------------------------------|
| Parameters            | Specify whether the<br>Simulink Design Verifier<br>software uses parameter<br>configurations when<br>analyzing a model.              | 'on'<br>'off' (default)                                             |
|                       | When set to 'on',<br>this parameter enables<br>ParametersConfigFile-<br>Name.                                                        |                                                                     |
| ParametersConfigFile- | Specify a MATLAB function                                                                                                            | string                                                              |
| Name                  | that defines parameter configurations for a model.                                                                                   | 'sldv_params_template.m'<br>(default)                               |
|                       | This parameter is enabled<br>when Parameters is set to<br>'on'.                                                                      |                                                                     |
| ProofAssumptions      | Specify whether Proof<br>Assumption blocks in<br>your model are enabled or<br>disabled.                                              | 'EnableAll'<br>'DisableAll'<br>'UseLocalSettings'<br>(default)      |
| ProvingStrategy       | Specify the strategy that the<br>Simulink Design Verifier<br>software uses when proving<br>properties.                               | 'FindViolation'<br>'Prove' (default)<br>'ProveWithViolationDetectio |
| RandomizeNoEffectData | Specify whether to use<br>random values instead of<br>zeros for input signals that<br>have no impact on test or<br>proof objectives. | 'on'<br>'off' (default)                                             |
|                       | This parameter is enabled<br>when SaveDataFile is set to<br>'on'.                                                                    |                                                                     |

| Parameter             | Description                                                                                                                  | Values                                                 |
|-----------------------|------------------------------------------------------------------------------------------------------------------------------|--------------------------------------------------------|
| ReportFileName        | Specify a folder and file<br>name for the report that<br>Simulink Design Verifier<br>analysis generates.                     | string<br>'\$ <i>Mode1Name</i> \$_report'<br>(default) |
|                       | This parameter is enabled when SaveReport is set to 'on'.                                                                    |                                                        |
| ReportIncludeGraphics | Includes screen shots of<br>properties in the Simulink<br>Design Verifier report. Only<br>valid in property-proving<br>mode. | 'on'<br>'off' (default)                                |
|                       | This parameter is enabled<br>when SaveReport is set<br>to 'on' and Mode is set to<br>'PropertyProving'.                      |                                                        |
| SaveDataFile          | Save the test data that the<br>Simulink Design Verifier<br>analysis generates to a<br>MAT-file.                              | 'on' (default)<br>'off'                                |
|                       | When set to 'on',<br>this parameter<br>enables DataFileName,<br>SaveExpectedOutput, and<br>RandomizeNoEffectData.            |                                                        |

| Parameter          | Description                                                                                                                     | Values                  |
|--------------------|---------------------------------------------------------------------------------------------------------------------------------|-------------------------|
| SaveExpectedOutput | Simulate the model using<br>test case signals and include<br>the output values in the<br>Simulink Design Verifier<br>data file. | 'on'<br>'off' (default) |
|                    | This parameter is enabled when SaveDataFile is set to 'on'.                                                                     |                         |
| SaveHarnessModel   | Create a harness model<br>generated by the Simulink<br>Design Verifier analysis.                                                | 'on'<br>'off' (default) |
|                    | <b>Note</b> When SaveReport is set to 'on', this parameter must also be set to 'on'.                                            |                         |
|                    | When set to 'on',<br>this parameter enables<br>HarnessModelFileName.                                                            |                         |
| SaveReport         | Generate and save a<br>Simulink Design Verifier<br>report.                                                                      | 'on'<br>'off' (default) |
|                    | Note When this<br>parameter is set to 'on',<br>SaveHarnessModel must<br>also be set to 'on'.                                    |                         |
|                    | When set to 'on', this parameter enables                                                                                        |                         |

| Parameter             | Description                                                                                                               | Values                                            |
|-----------------------|---------------------------------------------------------------------------------------------------------------------------|---------------------------------------------------|
|                       | ReportFileName,<br>ReportIncludeGraphics,<br>and DisplayReport.                                                           |                                                   |
| SaveSystemTestHarness | Save the analysis results as<br>a SystemTest TEST-file so<br>you can run test cases using<br>the SystemTest capabilities. | 'on'<br>'off' (default)                           |
|                       | When set to 'on',<br>this parameter enables<br>SystemTestFileName.                                                        |                                                   |
|                       | This parameter is enabled<br>when Mode is set to<br>'TestGeneration'.                                                     |                                                   |
| SystemTestFileName    | Specify a folder and file<br>name for the SystemTest<br>TEST-file.                                                        | string<br>'\$ <i>ModelName</i> \$_harness'        |
|                       | This parameter<br>is enabled when<br>SaveSystemTestHarness is<br>set to 'on'.                                             |                                                   |
| TestConditions        | Specify whether Test<br>Condition blocks in your<br>model are enabled or<br>disabled.                                     | 'EnableAll'<br>'DisableAll'<br>'UseLocalSettings' |
|                       | This parameter is enabled<br>when Mode is set to<br>'TestGeneration'.                                                     | (default)                                         |

| Parameter             | Description                                                                                                                                                    | Values                                                                                                                                                                                 |
|-----------------------|----------------------------------------------------------------------------------------------------------------------------------------------------------------|----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|
| TestObjectives        | Specify whether Test<br>Objective blocks in your<br>model are enabled or<br>disabled.<br>This parameter is enabled<br>when Mode is set to<br>'TestGeneration'. | 'EnableAll'<br>'DisableAll'<br>'UseLocalSettings'<br>(default)                                                                                                                         |
| TestSuiteOptimization | Specify the optimization<br>strategy to use when<br>generating test cases.<br>This parameter is enabled<br>when Mode is set to<br>'TestGeneration'.            | 'CombinedObjectives'<br>(default)<br>'IndividualObjectives'<br>'LargeModel'<br>'LongTestCases'<br>'CombinedObjectives<br>(Nonlinear Extended)'<br>'LargeModel (Nonlinear<br>Extended)' |

**Examples** Create an options object and set several parameters:

```
opts = sldvoptions;
opts.AutomaticStubbing = 'on';
opts.Mode = 'TestGeneration';
opts.ModelCoverageObjectives = 'MCDC';
opts.ReportIncludeGraphics = 'on';
opts.SaveHarnessModel = 'off';
opts.SaveReport = 'off';
opts.TestSuiteOptimization = 'LongTestCases';
```

Get the options object for the sldvdemo cruise control model:

sldvdemo\_cruise\_control
optsModel = sldvoptions(bdroot);

| ptsCopy = optsModel.deepCopy;<br>ptsCopy.MaxProcessTime = 120; |  |
|----------------------------------------------------------------|--|
|                                                                |  |

- AlternativesIn the Model Editor window, select Analysis > Design<br/>Verifier > Options to set the Simulink Design Verifier analysis<br/>options.
- See Also sldvblockreplacement | sldvcompat | sldvgencov | sldvrun

# Purpose Proof objective function for Stateflow charts and MATLAB Function blocks

Syntax sldv.prove(expr)

**Description** sldv.prove(expr) specifies that expr be true for every evaluation while proving properties. Use any valid Boolean expression for expr.

This function has no output and no impact on its parenting function, other than any indirect side effects of evaluating expr. If you issue this function from the MATLAB command line, the function has no effect.

Intersperse sldv.prove proof assumptions within code or separate the assumptions into a verification script.

# **Examples** Specify a property proof objective and proof assumption in a MATLAB Function block:

1 Open the sldvdemo\_sbr\_verification model and save it as ex\_sldvdemo\_sbr\_verification.

2 Open the Safety Properties subsystem.



**3** Open the **MATLAB Property** block, which is a MATLAB Function block.

```
Editor - Block: sldvdemo_sbr_verification/Safety Properties/MATLAB Property
 Safety Properties/MATLAB Property
                              ×
1
      function check reminder(SeatBeltIcon, Inputs) %#codegen
 2
             % The seat belt light should be active whenever the 1
 3
             % and speed is less than 15 and the seatbelt is not i
             activeCond = ((Inputs.KEY ~= 0) && (Inputs.SeatBeltFa
 4
 5
                             (Inputs.Speed < 15));
 6
 7 -
             sldv.prove(implies(activeCond,SeatBeltIcon));
 8
 9
      function out = implies(cond, result)
10 -
             if (cond)
11 -
                 out = result;
12
             else
13 -
                 out = true;
14
             end
15
```

4 At the end of thecheck\_reminder function definition, add the line sldv.assume(Inputs.KEY==0 | 1); so that the last two lines of the function definition now read:

sldv.prove(implies(activeCond, SeatBeltIcon)); sldv.assume(Inputs.KEY==0 | 1);

- 5 In the editor, save the updated code.
- 6 Prove the safety properties. With the model open in the Model Editor, select the Safety Properties subsystem and choose Analysis > Design Verifier > Prove Properties > Selected Subsystem.

|              | In the Model Editor, you can also right-click the Safety Properties<br>subsystem and select <b>Design Verifier &gt; Prove Subsystem</b><br><b>Properties</b> .                                                           |
|--------------|--------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|
| Alternatives | Instead of using the sldv.prove function, you can insert a Proof<br>Objective block in your model.                                                                                                                       |
|              | However, using sldv.prove instead of a Proof Objective block offers several benefits, described in "What Is Property Proving?".                                                                                          |
|              | You can also specify a proof objective by using MATLAB for code<br>generation without using the sldv.prove function. Using sldv.prove<br>instead of directly using MATLAB for code generation eliminates the<br>need to: |
|              | • Express the objective with a Simulink block                                                                                                                                                                            |
|              | • Explicitly connect the proof output to a Simulink block                                                                                                                                                                |
| See Also     | <pre>sldv.condition   sldv.prove   sldv.test   Proof Assumption   Proof Objective   Test Condition   Test Objective</pre>                                                                                                |
| Tutorials    | "Prove Properties in a Model"                                                                                                                                                                                            |
| How To       | "Workflow for Proving Model Properties"                                                                                                                                                                                  |

## sldvreport

| Purpose     | Generate report                                                                                                                                                                               |                                                            |
|-------------|-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|------------------------------------------------------------|
| Syntax      | <pre>[status, reportFilePath] = slo<br/>[status, reportFilePath] = slo<br/>{reportOption1, reportOption<br/>[status, reportFilePath] = slo<br/>{reportOption1, reportOption<br/>showUI)</pre> | dvreport(sldvDataFile,<br>on2,})<br>dvreport(sldvDataFile, |
| Description | [status, reportFilePath] = slo<br>a complete HTML report from the<br>returns true if sldvreport created<br>contains the actual name of the HT                                                 | l the report. reportFilePath                               |
|             | <pre>[status, reportFilePath] = slo<br/>{reportOption1, reportOption2<br/>sldvDataFile based on the specif<br/>of strings.</pre>                                                              |                                                            |
|             | [status, reportFilePath] = slo<br>{reportOption1, reportOption2<br>showUI) generates a report and sa<br>reportFilePath.                                                                       | ,}, reportFilePath,                                        |
| Input       | sldvDataFile                                                                                                                                                                                  |                                                            |
| Arguments   | Name of the data file that contains                                                                                                                                                           | the analysis results                                       |
|             | Default: ''                                                                                                                                                                                   |                                                            |
|             | options                                                                                                                                                                                       |                                                            |
|             | Cell array of strings that specify op                                                                                                                                                         | tions for the report:                                      |
|             | 'summary'                                                                                                                                                                                     | Include summary analysis data<br>only                      |
|             | 'objectives'                                                                                                                                                                                  | Include test objective data                                |

|           | 'object'                                                                    | Include data about all model objects                  |
|-----------|-----------------------------------------------------------------------------|-------------------------------------------------------|
|           | 'testcases'                                                                 | Include data about all generated test cases           |
|           | 'properties'                                                                | Include data about all properties proven or falsified |
|           | Default: {}                                                                 |                                                       |
|           | reportFilePath                                                              |                                                       |
|           | The path and file name for the ge                                           | nerated HTML report                                   |
|           | Default: ''                                                                 |                                                       |
|           | showUI                                                                      |                                                       |
|           | Logical value indicating where to                                           | display messages during analysis                      |
|           | true to display messages in th<br>false (default) to display mess<br>window | e log window<br>sages in the MATLAB command           |
| Output    | status                                                                      |                                                       |
| Arguments | true if sldvreport creates the re                                           | port, otherwise false.                                |
|           | reportFilePath                                                              |                                                       |
|           | The path and file name for the ge                                           | nerated HTML report                                   |
| Examples  | Analyze the model and create the                                            | report using sldvreport:                              |
|           | opts = sldvoptions;                                                         | % Create options structure                            |
|           | opts.Mode = 'TestGeneration';                                               | % Do test-gen analysis                                |
|           | opts.SaveReport = 'off';                                                    | % Don't save HTML report                              |
|           | open_system 'sldvdemo_cruise_control                                        |                                                       |
|           | [ status, files ] = sldvrun('sldvdem                                        | o_cruise_control', opts); %Analyze model              |

## sldvreport

|              | <pre>[ status, reportFilePath] = sldvreport(files.DataFile,</pre>                                                                                                                                                                                   |
|--------------|-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|
|              | {'objectives', 'objects', 'testcases'} ); % Create report                                                                                                                                                                                           |
| Alternatives | The Simulink Design Verifier software can create an HTML report<br>after analyzing a model. In the Configuration Parameters dialog box,<br>in the <b>Design Verifier &gt; Report</b> pane, select <b>Generate report of</b><br><b>the results</b> . |
| See Also     | sldvrun                                                                                                                                                                                                                                             |

| Purpose     | Analyze model                                                                                                                                                                                                                                      |
|-------------|----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|
| Syntax      | <pre>status = sldvrun status = sldvrun(model) status = sldvrun(block) status = sldvrun(model, options) [status, filenames] = sldvrun(model, options) [status, filenames] = sldvrun(model, options, showUI,             startCov)</pre>             |
| Description | <pre>status = sldvrun analyzes the current model to generate test cases that provide model coverage or prove the model properties.</pre>                                                                                                           |
|             | <pre>status = sldvrun(model) analyzes model to generate test cases that provide model coverage or prove the model properties</pre>                                                                                                                 |
|             | <pre>status = sldvrun(block) converts block into a new model and runs a design verification analysis on the new model.</pre>                                                                                                                       |
|             | <pre>status = sldvrun(model, options) analyzes model using the sldvoptions object options.</pre>                                                                                                                                                   |
|             | [status, filenames] = sldvrun(model, options) analyzes model and returns the file names the software created during the analysis.                                                                                                                  |
|             | <pre>[status, filenames] = sldvrun(model, options, showUI,<br/>startCov) opens the log window during the analysis if you set ShowUI<br/>to true. If you set ShowUI to false (the default), it directs output to the<br/>MATLAB command line.</pre> |
| Input       | model                                                                                                                                                                                                                                              |
| Arguments   | Handle to a Simulink model                                                                                                                                                                                                                         |
|             | Default: []                                                                                                                                                                                                                                        |
|             | block                                                                                                                                                                                                                                              |
|             | Handle to a block in a Simulink model                                                                                                                                                                                                              |

Default: []

### options

sldvoptions object specifying the analysis options

Default: []

#### showUI

Logical value indicating where to display messages during the analysis

true to display messages in the log window false (default) to display messages in the MATLAB command window

### startCov

 ${\tt cvdata}$  object specifying model coverage objects for the software to ignore

### Default: []

## Output filenames Arguments A structure whose fields list the file names that the Simulink Design Verifier software generates:

| DataFile              | MAT-file with raw input data                     |
|-----------------------|--------------------------------------------------|
| HarnessModel          | Simulink harness model                           |
| SystemTestFile        | SystemTest TEST-file                             |
| Report                | HTML report with the results                     |
| ExtractedModel        | Simulink model extracted from subsystem          |
| BlockReplacementModel | Simulink model obtained after block replacements |

|              | status                                                                                                                                                                                                                                                                                                 |                                                              |
|--------------|--------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|--------------------------------------------------------------|
|              | -1                                                                                                                                                                                                                                                                                                     | Analysis exceeded the maximum processing time                |
|              | 0                                                                                                                                                                                                                                                                                                      | Error                                                        |
|              | 1                                                                                                                                                                                                                                                                                                      | Preprocessing completed normally                             |
| Examples     | Set sldvoptions parameters, open the sldvdemo_cruise_control model, and analyze the model using the specified options:                                                                                                                                                                                 |                                                              |
|              | <pre>opts = sldvoptions;<br/>opts.Mode = 'TestGeneration';<br/>opts.ModelCoverageObjectives = 'MCDC';<br/>opts.SaveHarnessModel = 'off';<br/>opts.SaveReport = 'on';<br/>open_system 'sldvdemo_cruise_control';<br/>[ status, files ] = sldvrun('sldvdemo_</pre>                                       | % Don't save harness as model file<br>% Save the HTML report |
| Alternatives | In the Model Editor window, select <b>Analysis &gt; Design</b><br><b>Verifier &gt; Detect Design Errors</b> , <b>Analysis &gt; Design</b><br><b>Verifier &gt; Generate Tests</b> , or <b>Analysis &gt; Design Verifier &gt; Prove</b><br><b>Properties</b> to run a Simulink Design Verifier analysis. |                                                              |
| See Also     | <pre>sldvcompat   sldvoptions   sldvgencov</pre>                                                                                                                                                                                                                                                       |                                                              |
| Tutorials    | "Generate Test Cases for Model Decision Coverage"                                                                                                                                                                                                                                                      |                                                              |
|              | • "Prove Properties in a Model"                                                                                                                                                                                                                                                                        |                                                              |

## sldvruncgvtest

| Purpose     | Invoke Code Generation Verification (CGV) API and execute model                                                                                                                                                                                                                                                                                                      |  |
|-------------|----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|--|
| Syntax      | cgvObject = sldvruncgvtest(model, dataFile)<br>cgvObject = sldvruncgvtest(model, dataFile, runOpts)                                                                                                                                                                                                                                                                  |  |
| Description | <pre>cgvObject = sldvruncgvtest(model, dataFile) invokes the Code<br/>Generation Verification (CGV) API methods and executes the model<br/>using all test cases in dataFile. cgvObject is a cgv.CGV object<br/>that sldvruncgvtest creates during the execution of the model.<br/>sldvruncgvtest sets the execution mode for cgvObject to'sim' by<br/>default.</pre> |  |
|             | <pre>cgvObject = sldvruncgvtest(model, dataFile, runOpts) invokes<br/>CGV API methods and executes the model using test cases in<br/>dataFile. runOpts defines the options for executing the test cases.<br/>The settings in runOpts determine the configuration of cgvObject.</pre>                                                                                 |  |
| Tips        | To run sldvruncgvtest, you must have a Embedded Coder™ license.                                                                                                                                                                                                                                                                                                      |  |
|             | If your model has parameters that are not configured for executing test cases with the CGV API, sldvruncgvtest reports warnings about the invalid parameters. If you see these warnings, do one of the following:                                                                                                                                                    |  |
|             | <ul> <li>Modify the invalid parameters and rerun sldvruncgvtest.</li> </ul>                                                                                                                                                                                                                                                                                          |  |
|             | • Set allowCopyModel in runOpts to be true and rerun sldvruncgvtest. sldvruncgvtest makes a copy of your model with the same configuration, and invokes the CGV API.                                                                                                                                                                                                 |  |
| Input       | model                                                                                                                                                                                                                                                                                                                                                                |  |
| Arguments   | Name or handle of the Simulink model to execute                                                                                                                                                                                                                                                                                                                      |  |
|             | dataFile                                                                                                                                                                                                                                                                                                                                                             |  |
|             | Name of the data file or a structure that contains the input data. Data can be generated either by:                                                                                                                                                                                                                                                                  |  |
|             | • Analyzing the model using the Simulink Design Verifier software.                                                                                                                                                                                                                                                                                                   |  |

• Using the sldvlogsignals function.

### runOpts

A structure whose fields specify the configuration of sldvruncgvtest.

| Field Name     | Description                                                                                                                                                                                              |
|----------------|----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|
| testIdx        | Test case index array to execute from dataFile.<br>If testIdx is [], sldvruncgvtest executes all<br>test cases.                                                                                          |
|                | Default: []                                                                                                                                                                                              |
| allowCopyModel | Specifies to create and configure the model if you have not configured it to execute test cases with the CGV API.                                                                                        |
|                | If true and you have not configured model<br>to execute test cases with the CGV API,<br>sldvruncgvtest copies the model, fixes the<br>configuration, and executes the test cases on the<br>copied model. |
|                | If false (the default), an error occurs if the tests cannot execute with the CGV API.                                                                                                                    |
|                | <b>Note</b> If you have not configured the top-level model or any referenced models to execute test cases, sldvruncgvtest does not copy the model, even if allowCopyModel is true. An error occurs.      |

| Field Name  | Description                                                                                |  |
|-------------|--------------------------------------------------------------------------------------------|--|
| cgvCompType | Defines the software-in-the-loop (SIL) or<br>processor-in-the-loop (PIL) approach for CGV: |  |
|             | • 'topmodel' (default)                                                                     |  |
|             | • 'modelblock'                                                                             |  |
| cgvConn     | Specifies mode of execution for CGV:                                                       |  |
|             | • 'sim' (default)                                                                          |  |
|             | • 'sil'                                                                                    |  |
|             | • 'pil'                                                                                    |  |

**Note** runOpts = sldvruntestopts('cgv') returns a runOpts structure with the default values for each field.

## Output cgvObject Arguments cgv.CGV object that sldvruncgvtest creates during the execution of model.

sldvruncgvtest saves the following data for each test case executed in an array of Simulink.SimulationOutput objects inside cgvObject.

| Field               | Description     |
|---------------------|-----------------|
| tout_sldvruncgvtest | Simulation time |
| xout_sldvruncgvtest | State data      |

| Field                  | Description                                            |
|------------------------|--------------------------------------------------------|
| yout_sldvruncgvtest    | Output signal data                                     |
| logsout_sldvruncgvtest | Signal logging data for:                               |
|                        | • Signals connected to outports                        |
|                        | • Signals that are configured for logging on the model |

## **Examples**

Open the sldemo\_mdlref\_bus example model and log the input signals to the CounterA Model block. Create the default configuration object for sldvruncgvtest, and allow the model to be configured to execute test cases with the CGV API. Using the logged signals, execute sldvruncgvtest—first in simulation mode, and then in Software-in-the-Loop (SIL) mode—to invoke the CGV API and execute the specified test cases on the generated code for the model. Use the CGV API to compare the results of the first test case:

```
open_system('sldemo_mdlref_bus');
load_system('sldemo_mdlref_counter_bus');
loggedData = sldvlogsignals('sldemo_mdlref_bus/CounterA');
runOpts = sldvruntestopts('cgv');
runOpts.allowCopyModel = true;
cgvObjectSim = sldvruncgvtest('sldemo_mdlref_counter_bus', ...
loggedData, runOpts);
runOpts.cgvConn = 'sil';
cgvObjectSil = sldvruncgvtest('sldemo_mdlref_counter_bus', ...
loggedData, runOpts);
simout = cgvObjectSim.getOutputData(1);
silout = cgvObjectSil.getOutputData(1);
[matchNames, ~, mismatchNames, ~ ] = cgv.CGV.compare(simout, silout);
fprintf('\nTest Case: %d Signals match, %d Signals mismatch', ...
length(matchNames), length(mismatchNames));
```

# See Also cgv.CGV | sldvlogsignals | sldvrun | sldvruntest | sldvruntestopts

## sldvruntest

| Purpose     | Simulate model using input data                                                                                                                                                                                                                                                                                                                                                                                                                                                                    |
|-------------|----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|
| Syntax      | outData = sldvruntest(model, dataFile)<br>outData = sldvruntest(model, dataFile, runOpts)<br>[outData, covData] = sldvruntest(model, dataFile, runOpts)                                                                                                                                                                                                                                                                                                                                            |
| Description | <pre>outData = sldvruntest(model, dataFile) simulates model<br/>using all the test cases in dataFile. outData is an array of<br/>Simulink.SimulationOutput objects. Each array element contains the<br/>simulation output data of the corresponding test case.</pre>                                                                                                                                                                                                                               |
|             | outData = sldvruntest(model, dataFile, runOpts) simulates<br>model using all the test cases in dataFile. runOpts defines the<br>options for simulating the test cases.                                                                                                                                                                                                                                                                                                                             |
|             | [outData, covData] = sldvruntest(model, dataFile, runOpts)<br>simulates model using the test cases in dataFile. When the<br>runOpts field coverageEnabled is true, the Simulink Verification<br>and Validation <sup>™</sup> software collects model coverage information during<br>the simulation. sldvruntest returns the coverage data in the cvdata<br>object covData.                                                                                                                          |
| Tips        | The dataFile that you create with a Simulink Design Verifier analysis<br>or by running sldvlogsignals contains time values and data values.<br>When you simulate a model using these test cases, you might see<br>missing coverage. This issue occurs when the time values in the<br>dataFile are not aligned with the current simulation time step due to<br>numeric calculation differences. You see this issue more frequently with<br>multirate models—models that have multiple sample times. |
| Input       | model                                                                                                                                                                                                                                                                                                                                                                                                                                                                                              |
| Arguments   | Name or handle of the Simulink model to simulate                                                                                                                                                                                                                                                                                                                                                                                                                                                   |
|             | dataFile                                                                                                                                                                                                                                                                                                                                                                                                                                                                                           |

Name of the data file or structure that contains the input data. You can generate dataFile using the Simulink Design Verifier software, or by running the sldvlogsignals function.

### runOpts

A structure whose fields specify the configuration of sldvruntest.

| Field                   | Description                                                                                                                    |
|-------------------------|--------------------------------------------------------------------------------------------------------------------------------|
| testIdx                 | Test case index array to simulate<br>from dataFile. If testIdx is [],<br>sldvruntest simulates all test<br>cases.              |
|                         | Default: []                                                                                                                    |
| signalLoggingSaveFormat | Specifies signal logging data format for:                                                                                      |
|                         | • Signals connected to the outports of the model                                                                               |
|                         | • Intermediate signals that are already configured for logging                                                                 |
|                         | Valid values are:                                                                                                              |
|                         | <ul> <li>'Dataset' (default) —<br/>sldvruntest stores the data in<br/>Simulink.SimulationData.<br/>Dataset objects.</li> </ul> |
|                         | <ul> <li>'ModelDataLogs' —<br/>sldvruntest stores the data<br/>in Simulink.ModelDataLogs<br/>objects.</li> </ul>               |

| Field           | Description                                                                                                                           |
|-----------------|---------------------------------------------------------------------------------------------------------------------------------------|
| coverageEnabled | If true, specifies that the Simulink<br>Verification and Validation<br>software collect model coverage<br>data during simulation.     |
|                 | Default: false                                                                                                                        |
| coverageSetting | <pre>cvtest object for collecting model<br/>coverage. If [], sldvruntest uses<br/>the existing coverage settings for<br/>model.</pre> |
|                 | Default: []                                                                                                                           |

**Note** runOpts = sldvruntestopts returns a runOpts structure with the default values for each field.

## Output Arguments

#### outData

An array of Simulink.SimulationOutput objects that simulating the test cases generates. Each Simulink.SimulationOutput object has the following fields.

| Field Name          | Description                                                                                                     |
|---------------------|-----------------------------------------------------------------------------------------------------------------|
| tout_sldvruntest    | Simulation time                                                                                                 |
| xout_sldvruntest    | State data                                                                                                      |
| yout_sldvruntest    | Output signal data                                                                                              |
| logsout_sldvruntest | Signal logging data for:                                                                                        |
|                     | <ul> <li>Signals connected to outports</li> <li>Signals that are configured for logging on the model</li> </ul> |

#### covData

cvdata object that contains the model coverage data collected during simulation.

**Examples** Analyze the sldvdemo\_cruise\_control model. Using data from the three test cases in the test suite, simulate the model. Use the Simulation Data Inspector to examine the signal logging data from the three test cases:

opts = sldvoptions; opts.Mode = 'TestGeneration'; opts.SaveHarnessModel = 'on'; opts.SaveReport = 'off'; open system('sldvdemo cruise control'); [ status, files ] = sldvrun('sldvdemo\_cruise\_control', opts); runOpts = sldvruntestopts; [ outData ] = sldvruntest('sldvdemo cruise control',... files.DataFile, runOpts); Simulink.sdi.createRun('Test Case 1 Output', 'namevalue',... {'output'}, {outData(1).find('logsout sldvruntest')}); Simulink.sdi.createRun('Test Case 2 Output', 'namevalue',... {'output'}, {outData(2).find('logsout sldvruntest')}); Simulink.sdi.createRun('Test Case 3 Output', 'namevalue',... {'output'}, {outData(3).find('logsout sldvruntest')}); Simulink.sdi.view;

See Also cvsim | cvtest | sim | sldvrun | sldvruntestopts

## sldvruntestopts

| Purpose     | Generate simulation or execution options for sldvruntest or sldvruncgvtest                    |
|-------------|-----------------------------------------------------------------------------------------------|
| Syntax      | runOpts = sldvruntestopts<br>runOpts = sldvruntestopts('cgv')                                 |
| Description | <pre>run0pts = sldvruntestopts generates a run0pts structure for sldvruntest.</pre>           |
|             | <pre>runOpts = sldvruntestopts('cgv') generates a runOpts structure for sldvruncgvtest.</pre> |
| Output      | runOpts                                                                                       |
| Arguments   | A structure whose fields specify the configuration of sldyruntest or                          |

A structure whose fields specify the configuration of sldvruntest or sldvruncgvtest. runOpts can have the following fields. If you do not specify a field, sldvruncgvtest or sldvruntest uses the default value.

| Field Name   | Description                                                                                                                                                                 |  |
|--------------|-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------|--|
| testIdx      | Test case index array to simulate or execute from dataFile.                                                                                                                 |  |
|              | If testIdx = [], all test cases will be simulated or executed.                                                                                                              |  |
| outputFormat | <ul> <li>Specifies format of output values:</li> <li>'TimeSeries' (default) —<br/>sldvruntest/sldvruncgvtest stores<br/>the output values in time-series format.</li> </ul> |  |
|              | <ul> <li>'StructureWithTime' —<br/>sldvruntest/sldvruncgvtest stores<br/>the output values in the Structure with<br/>time format.</li> </ul>                                |  |

| Field Name      | Description                                                                                                                                                                                                  |
|-----------------|--------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|
| coverageEnabled | Available only for sldvruntest.                                                                                                                                                                              |
|                 | If true, the Simulink Verification and<br>Validation software collects model coverage<br>data during simulation.                                                                                             |
|                 | Default: false                                                                                                                                                                                               |
| coverageSetting | Available only for sldvruntest.                                                                                                                                                                              |
|                 | cvtest object to use for collecting model coverage.                                                                                                                                                          |
|                 | If coverageSetting is [], sldvruntestopts<br>returns the coverage settings for the model<br>specified in the call to sldvruntest.                                                                            |
|                 | Default: []                                                                                                                                                                                                  |
| allowCopyModel  | Available only for sldvruncgvtest.                                                                                                                                                                           |
|                 | Specifies to create and configure the model<br>if you have not configured it to execute test<br>cases with the CGV API.                                                                                      |
|                 | If true and you have not configured the<br>model to execute test cases with the CGV<br>API, sldvruncgvtest copies the model, fixes<br>the configuration, and executes the test cases<br>on the copied model. |
|                 | If false (the default), an error occurs if the tests cannot execute with the CGV API.                                                                                                                        |

| Field Name | Description                                                                                                                                                                           |
|------------|---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|
|            |                                                                                                                                                                                       |
|            | <b>Note</b> If you have not configured the top-level model or any referenced models to execute test cases, sldvruncgvtest does not copy the model over if allow converted align true. |
|            | model, even if allowCopyModel is true. An error occurs.                                                                                                                               |
| cgvComType | Available only for sldvruncgvtest.                                                                                                                                                    |
|            | Defines the software-in-the-loop (SIL) or<br>processor-in-the-loop (PIL) approach for CGV                                                                                             |
|            | • 'topmodel' (default)                                                                                                                                                                |
|            | • 'modelblock'                                                                                                                                                                        |
| cgvConn    | Available only for sldvruncgvtest.                                                                                                                                                    |
|            | Specifies mode of execution for CGV:                                                                                                                                                  |
|            | • 'sim' (default)                                                                                                                                                                     |
|            | • 'sil'                                                                                                                                                                               |
|            | • 'pil'                                                                                                                                                                               |

ExamplesCreate runOpts objects for sldvruntest and sldvruncgvtest:<br/>runtest\_options = sldvruntestopts;! sldvruntest<br/>sldvruncgvtestAlternativesCreate a runOpts object for sldvruntest at the MATLAB command<br/>line.See Alsosldvruncgvtest | sldvruntest

| Purpose     | Test objective function for Stateflow charts and MATLAB Function blocks                                                                                                                                                                |  |
|-------------|----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|--|
| Syntax      | <pre>sldv.test(expr)</pre>                                                                                                                                                                                                             |  |
| Description | <pre>sldv.test(expr) Specifies that expr should be made true when generating tests. Use any valid Boolean expression for expr.</pre>                                                                                                   |  |
|             | This function has no output and no impact on its parenting function,<br>other than any indirect side effects of evaluating <code>expr</code> . If you issue this<br>function from the MATLAB command line, the function has no effect. |  |
|             | Intersperse sldv.test test objectives within code or separate the objectives into a verification script.                                                                                                                               |  |
|             | The <b>Test objectives</b> option in the <b>Test generation</b> pane applies to test objectives represented with the sldv.test function, as well as with the Test Objective block.                                                     |  |
| Examples    | Add a test objective and test conditions:                                                                                                                                                                                              |  |
|             | Open the sldvdemo_cruise_control model and save it as<br>ex_sldvdemo_cruise_control.                                                                                                                                                   |  |
|             | 2 Remove the Test Condition block for the speed block signal. Instead of the Test Condition block, this example uses sldv.test and sldv.condition.                                                                                     |  |
|             | <b>3</b> From the User-Defined Functions library, add a MATLAB Function block and:                                                                                                                                                     |  |
|             | a Name the block tests.                                                                                                                                                                                                                |  |
|             | <b>b</b> Open the block and add the following code:                                                                                                                                                                                    |  |
|             | function define_tests(speed, target)<br>%#codegen                                                                                                                                                                                      |  |
|             | <pre>sldv.condition(speed &gt;= 0 &amp;&amp; speed &lt;= 100);</pre>                                                                                                                                                                   |  |

|              | <pre>sldv.test(speed &gt; 60 &amp;&amp; target &gt; 40 &amp;&amp; target &lt; 50); sldv.test(speed &lt; 20 &amp;&amp; target &gt; 50);</pre> |  |
|--------------|----------------------------------------------------------------------------------------------------------------------------------------------|--|
|              | • Save the code and close the editor.                                                                                                        |  |
|              | <b>d</b> Connect the block to the signal for the <b>speed</b> block and to the signal for the <b>target</b> block.                           |  |
|              | 4 Generate the test: select Analysis > Design Verifier > Generate<br>Tests > Model.                                                          |  |
| Alternatives | Instead of using the sldv.test function, you can insert a Test Objective block in your model.                                                |  |
|              | However, using sldv.test instead of a Test Objective block offers<br>several benefits, described in "What Is Test Case Generation?".         |  |
| See Also     | <pre>sldv.assume   sldv.condition   sldv.prove   Proof Assumption   Proof Objective   Test Condition   Test Objective</pre>                  |  |
| Tutorials    | "Generate Test Cases for Model Decision Coverage"                                                                                            |  |
| How To       | "Workflow for Test Case Generation"                                                                                                          |  |

| Purpose                                                                                                                                                                 | Identify, change, and display timer optimizations                                                                                                                                                                                                                                                                                                                                                                                                                                                                                     |  |  |
|-------------------------------------------------------------------------------------------------------------------------------------------------------------------------|---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|--|--|
| Syntax                                                                                                                                                                  | <pre>status = sldvtimer status = sldvtimer(value) status = sldvtimer(sldvdata) status = sldvtimer(sldvdata,display) status = sldvtimer(model)</pre>                                                                                                                                                                                                                                                                                                                                                                                   |  |  |
| <b>Description</b> status = sldvtimer returns a status of 1 if timer optim are enabled for Simulink Design Verifier test generation. C sldvtimer returns a status of 0. |                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                       |  |  |
|                                                                                                                                                                         | <pre>status = sldvtimer(value) enables or disables timer optimizations for Simulink Design Verifier test generation.</pre>                                                                                                                                                                                                                                                                                                                                                                                                            |  |  |
|                                                                                                                                                                         | <pre>status = sldvtimer(sldvdata) indicates if timer optimizations are<br/>recorded in Simulink Design Verifier data file sldvdata. Returns<br/>a status of 1 if timer optimizations are recorded in Simulink<br/>Design Verifier data file sldvdata. Returns a status of 0 if timer<br/>optimizations are not recorded. Returns a status of -1 if sldvdata<br/>does not have information about timer optimizations.</pre>                                                                                                            |  |  |
|                                                                                                                                                                         | <pre>status = sldvtimer(sldvdata,display) indicates if timer<br/>optimizations are recorded in Simulink Design Verifier data file<br/>sldvdata and identifies model items that are part of recognized<br/>timer patterns when display is true. Returns a status of 1 if<br/>timer optimizations are recorded in Simulink Design Verifier data<br/>file sldvdata. Returns a status of 0 if timer optimizations are<br/>not recorded. Returns a status of -1 if sldvdata does not have<br/>information about timer optimizations.</pre> |  |  |
|                                                                                                                                                                         | <pre>status = sldvtimer(model) displays timer patterns in the model that can be optimized for Simulink Design Verifier test generation.</pre>                                                                                                                                                                                                                                                                                                                                                                                         |  |  |
| Input<br>Arguments                                                                                                                                                      | <pre>value Logical value to enable timer optimizations true to enable timer optimizations</pre>                                                                                                                                                                                                                                                                                                                                                                                                                                       |  |  |

false (default) to disable timer optimizations

#### sldvdata

Name of the data file that contains the timer optimization data.

#### display

Logical value to identify model objects that are part of recognized timer patterns

true to identify model objects that are part of recognized timer patterns

false (default) to not identify model objects that are part of recognized timer patterns

#### model

Handle to a Simulink model

Default: []

# **Examples** This example shows how to use the sldvtimer function to optimize model timers, increasing the number of test generation objectives met during Simulink Design Verifier Test Generation analysis.

1 The example model has timers timer\_1 and timer\_1 in a Stateflow chart.

## sldvtimer



- 2 Select Analysis > Design Verifier > Generate Tests > Model.
  - The Simulink Design Verifier log dialog box reports:
    - Test generation exceeded time limit
    - 28 of 32 objectives satisfied

• The Simulink Design Verifier Errors information dialog box indicates that Test generation did not optimize timer patterns.

|   | Message                        | Source               | Reported By | Summary                     |
|---|--------------------------------|----------------------|-------------|-----------------------------|
|   | Design Verifier analysis error | ex_sldvtimer_control | simulink    | Simulink Design Verifier ha |
| 0 | Design Verifier analysis error | ex_sldvtimer_control | simulink    | Test Generation did not op  |

ex\_sldvtimer\_control

Test Generation did not optimize timer patterns. This model contains timer patterns and you might get optimizations with executing command <u>sldvtimer(1)</u> in the MATLAB workspace and restarting Test Gene Refer to the <u>sldvtimer</u> command for more information.

3 In the MATLAB Command Window, enter:

sldvtimer(1)

4 Select Analysis > Design Verifier > Generate Tests > Model to generate test cases again.

See Also sldvruncgvtest | sldvruntest | sldvruntestopts

## **Block Reference**

| Objectives and Constraints (p. 3-2) | Define custom objectives and constraints         |
|-------------------------------------|--------------------------------------------------|
| Temporal Operators (p. 3-3)         | Define temporal properties on<br>Boolean signals |
| Verification Utilities (p. 3-4)     | Miscellaneous verification utilities             |

## **Objectives and Constraints**

| Proof Assumption | Constrain signal values when proving model properties                           |
|------------------|---------------------------------------------------------------------------------|
| Proof Objective  | Define objectives that signals<br>must satisfy when proving model<br>properties |
| Test Condition   | Constrain signal values in test cases                                           |
| Test Objective   | Define custom objectives that signals<br>must satisfy in test cases             |

## **Temporal Operators**

DetectorDetect true duration on input and<br/>construct output true duration based<br/>on output typeExtenderExtend true duration of inputWithin ImpliesVerify response occurs within<br/>desired duration

## **Verification Utilities**

Implies

Verification Subsystem

Specify condition that produces a certain response

Specify proof or test objectives without impacting simulation results or generated code

# Blocks — Alphabetical List

## Detector

| Purpose               | Detect true duration on input and construct output true duration based on output type                                                |
|-----------------------|--------------------------------------------------------------------------------------------------------------------------------------|
| Library               | Simulink Design Verifier                                                                                                             |
| Temporal<br>Operators | • <i>True duration</i> of a signal — Consecutive time steps during which a signal is true                                            |
| Terminology           | • <i>Length</i> of the true duration of the signal — The number of time steps that constitute the true duration                      |
|                       | • <i>Input detection</i> phase — The phase that is complete at the final time step of the expected length of the input true duration |

- *Output construction* phase— The phase when the block constructs a true duration at the output based on the output type of the block
- *Delay duration* The number of time steps of delay after input detection, after which the output signal is true

#### Description





The inputs and outputs of the Detector block are of Boolean type.

On input detection, the Detector block constructs an output signal based on one of the two output types that you specify:

- Delayed Fixed Duration—After the input detection is complete and after an optional delay, the output signal becomes true for a fixed number of time steps. The true duration of the output is independent of the input.
- Synchronized—In the final time step of the input detection, the output becomes true and stays true as long as the input signal

continues to be true. The true duration of the output varies and is synchronized with the true duration of the input.

### Detector

| Function Block Parameters: Detector                                                                                                                                                                                                        |
|--------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|
| Detector (mask)                                                                                                                                                                                                                            |
| This block detects a fixed number of consecutive time steps where<br>the input signal is true and constructs an output signal based on the<br>selected output type.                                                                        |
| 'Delayed Fixed Duration': After the input detection is complete and<br>after an optional delay, the output signal becomes true for a fixed<br>number of time steps. The output is independent of the input.                                |
| 'Synchronized': The output signal becomes true in the final step of<br>the input detection and stays true as long as the input signal<br>continues to be true; in other words, the output signal is synchronized<br>with the input signal. |
| Parameters                                                                                                                                                                                                                                 |
| External reset                                                                                                                                                                                                                             |
| Output type Delayed Fixed Duration                                                                                                                                                                                                         |
| Time steps for input detection                                                                                                                                                                                                             |
| 2                                                                                                                                                                                                                                          |
| Time steps for delay (optional)                                                                                                                                                                                                            |
| 1                                                                                                                                                                                                                                          |
| Time steps for output duration                                                                                                                                                                                                             |
| 3                                                                                                                                                                                                                                          |
|                                                                                                                                                                                                                                            |
| <br>OK Cancel Help Apply                                                                                                                                                                                                                   |

#### **Parameters**

### Detector

| and    |                                                                                                                                                                                                                                            |
|--------|--------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|
| Dialog | Pa Function Block Parameters: Detector                                                                                                                                                                                                     |
| Box    | Detector (mask)                                                                                                                                                                                                                            |
|        | This block detects a fixed number of consecutive time steps where<br>the input signal is true and constructs an output signal based on the<br>selected output type.                                                                        |
|        | 'Delayed Fixed Duration': After the input detection is complete and after an optional delay, the output signal becomes true for a fixed number of time steps. The output is independent of the input.                                      |
|        | 'Synchronized': The output signal becomes true in the final step of<br>the input detection and stays true as long as the input signal<br>continues to be true; in other words, the output signal is synchronized<br>with the input signal. |
|        | Parameters                                                                                                                                                                                                                                 |
|        | External reset                                                                                                                                                                                                                             |
|        | Output type Synchronized                                                                                                                                                                                                                   |
|        | Time steps for input detection                                                                                                                                                                                                             |
|        | 2                                                                                                                                                                                                                                          |
|        |                                                                                                                                                                                                                                            |
|        |                                                                                                                                                                                                                                            |
|        | OK Cancel Help Apply                                                                                                                                                                                                                       |

#### **External reset**

Specify whether the block can be reset to the start of the input detection by an external Boolean reset signal.

#### **Output type**

Select Delayed Fixed Duration (the default) to specify a fixed true duration length for the output after an optional delay. Select Synchronized to synchronize the output true duration with that of the input.

#### Time steps for input detection

Length of the true duration for input detection (minimum is 1).

#### Time steps for delay (optional)

For Delayed Fixed Duration, optionally specify the length of the delay duration, after which the output becomes true.

#### Time steps for output duration

For Delayed Fixed Duration, specify the length of the output true duration (minimum is 1).

**Examples** In the following examples, use a sample time of 1 second.

#### **Delayed Fixed Duration**

In this example, with **Output type** set to **Delayed** Fixed Duration, the input detection phase does not continue during the output signal construction. The following block parameters for the Detector block are set as follows:

- Time steps for input detection = 2
- Time steps for delay (optional) = 1
- Time steps for output duration = 2

Scope 1 shows a scenario where the second true duration is not detected, because some of the true time steps occur during output construction.

However, the second true duration in Scope 2 is detected because the remaining true duration after the output construction satisfies the number of steps required for input detection.





Scope 1

Scope 2

#### Synchronized

In this example, with the **Output type** set to Synchronized and **Time steps for input detection** set to 2, the output becomes true in the final step of input detection. The output continues to be true as long as the input signal is true.

Scope 1 shows that the output becomes true in the second time step, which is the final time step of the input detection phase. When the number of time steps for input detection is set to 1, the output is identical to the input, as you can see in Scope 2.

## Detector







Scope 2

#### **See Also** Extender, Within Implies

Library Simulink Design Verifier

Temporal Operators Terminology • *True duration* of a signal — Consecutive time steps during which a signal is true

#### Description





The Extender block extends the true duration of the input signal by a fixed number of steps (finite extension mode) or indefinitely.

The inputs and outputs of the Extender block are of Boolean type.

|                | Function Block Parameters: Extender                                                                                                                          | x |
|----------------|--------------------------------------------------------------------------------------------------------------------------------------------------------------|---|
|                | Extender (mask)                                                                                                                                              |   |
|                | This block extends the true duration of the input signal by a fixed<br>number of steps (finite extension mode) or indefinitely (infinite<br>extension mode). |   |
|                | Parameters                                                                                                                                                   |   |
|                | Extension period Finite                                                                                                                                      | - |
|                |                                                                                                                                                              |   |
|                | Time steps for extension 3                                                                                                                                   | _ |
|                | 5                                                                                                                                                            |   |
|                |                                                                                                                                                              |   |
| <b>D</b>       | OK Cancel Help Appl                                                                                                                                          | у |
| Parameters and |                                                                                                                                                              |   |
| Dialog         | Tunction Block Parameters: Extender                                                                                                                          | x |
| Box            | Extender (mask)                                                                                                                                              |   |
|                | This block extends the true duration of the input signal by a fixed<br>number of steps (finite extension mode) or indefinitely (infinite<br>extension mode). |   |
|                | Parameters                                                                                                                                                   |   |
|                | External reset                                                                                                                                               |   |
|                | Extension period Infinite                                                                                                                                    | • |
|                |                                                                                                                                                              |   |
|                | OK Cancel Help Appl                                                                                                                                          | y |

|          | <b>Extension Period</b><br>Select Finite (the default) to specify a fixed number of time steps<br>for extension. Select Infinite to specify indefinite extension.                                                                                                                             |
|----------|-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|
|          | <b>Time steps for extension</b><br>For finite extension, specify the number of time steps for<br>extending the true duration (minimum is 1).                                                                                                                                                  |
|          | <b>External reset</b><br>Specify whether an external Boolean reset signal can reset the<br>block extension. The reset signal also resets the infinite extension.<br>The infinite extension with an external reset is an indefinite<br>extension until the external reset signal becomes true. |
| Examples | In the following example, do the following:                                                                                                                                                                                                                                                   |
|          | • Set the model sample time to 1 second.                                                                                                                                                                                                                                                      |
|          | • For the Extender block:                                                                                                                                                                                                                                                                     |
|          | <ul> <li>Set the Extension Period parameter to Finite.</li> </ul>                                                                                                                                                                                                                             |
|          | <ul> <li>Set the <b>Time steps for extension</b> parameter to 2</li> </ul>                                                                                                                                                                                                                    |
|          | If the input signal becomes true during the extension period, the output                                                                                                                                                                                                                      |

If the input signal becomes true during the extension period, the output continues to be true and is extended after the last input true duration is complete. You can see this in the following scope.

## Extender





Detector, Within Implies

#### **Purpose** Specify condition that produces a certain response

Library

Simulink Design Verifier

Description



The Implies block lets you specify a condition to produce a given response; for example, when you press the brake pedal on a car, the cruise control mechanism becomes disabled. If input A is true and input B is false, the output is false; for all other pairs of inputs, the output is true.

You can use the Implies block in any model, not just when you run the Simulink Design Verifier software.

|                      | Function Block Parameters: Implies  Design Verifier Implies (mask)                                                                                |
|----------------------|---------------------------------------------------------------------------------------------------------------------------------------------------|
|                      | Tests whether the first input implies the second. Outputs false<br>when first input is true and second input is false, otherwise<br>outputs true. |
| Parameters           | OK Cancel Help Apply                                                                                                                              |
| and<br>Dialog<br>Box |                                                                                                                                                   |

## **Proof Assumption**

| Purpose | Constrain signal values when proving model properties                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                             |
|---------|-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|
| Library | Simulink Design Verifier                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                          |
| true    | When operating in property-proving mode, the Simulink Design Verifier<br>software proves that properties of your model satisfy specified criteria<br>(see "What Is Property Proving?"). In this mode, you can use Proof<br>Assumption blocks to define assumptions for signals in your model. The<br><b>Values</b> parameter lets you specify constraints on signal values during<br>a property proof. The block applies the specified <b>Values</b> parameter to<br>its input signal, and the Simulink Design Verifier software proves or<br>disproves that the properties of your model satisfy the specified criteria.<br>The block's parameter dialog box also allows you to: |
|         | <ul> <li>Enable or disable the assumption.</li> <li>Specify that the block should display its Values parameter in the</li> </ul>                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                  |

- Specify that the block should display its **Values** parameter in the model editor.
- Specify that the block should display its output port.

**Note** The Simulink and Simulink Coder<sup>™</sup> software ignore the Proof Assumption block during model simulation and code generation, respectively. The Simulink Design Verifier software uses the Proof Assumption block only when proving model properties.

#### **Specifying Proof Assumptions**

Use the **Values** parameter to constrain signal values in property proofs. Specify any combination of scalars and intervals in the form of a MATLAB cell array. (For information about cell arrays, see "Cell Arrays" in the MATLAB documentation.) **Tip** If the **Values** parameter specifies only one scalar value, you do not need to enter it in the form of a MATLAB cell array.

Scalar values each comprise a single cell in the array, for example:

{0, 5}

A closed interval comprises a two-element vector as a cell in the array, where each element specifies an interval endpoint:

{[1, 2]}

Alternatively, you can specify scalar values using the Sldv.Point constructor, which accepts a single value as its argument. You can specify intervals using the Sldv.Interval constructor, which requires two input arguments, i.e., a lower bound and an upper bound for the interval. Optionally, you can provide one of the following strings as a third input argument that specifies inclusion or exclusion of the interval endpoints:

- '()' Defines an open interval.
- '[]' Defines a closed interval.
- '(]' Defines a left-open interval.
- '[)' Defines a right-open interval.

**Note** By default, Sldv. Interval considers an interval to be closed if you omit its third input argument.

As an example, the Values parameter

 $\{0, [1, 3]\}$ 

specifies:

- 0 a scalar
- [1, 3] a closed interval

The Values parameter

{Sldv.Interval(0, 1, '[)'), Sldv.Point(1)}

specifies:

- Sldv.Interval(0, 1, '[)') the right-open interval [0, 1)
- Sldv.Point(1) a scalar

If you specify multiple scalars and intervals for a Proof Assumption block, the Simulink Design Verifier software combines them using a logical OR operation during the property proof. In this case, the software considers the entire assumption to be satisfied if any single scalar or interval is satisfied.

# Data TypeThe Proof Assumption block accepts signals of all built-in data typesSupportSupported by the Simulink software. For a discussion on the data types<br/>supported by the Simulink software, see "Data Types Supported by<br/>Simulink".

| ĺ          | Function Block Parameters: Assumption                                                                                                                                                                                                                                                                                                                                                                                                                       |
|------------|-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|
|            | Design Verifier Assumption (mask)                                                                                                                                                                                                                                                                                                                                                                                                                           |
|            | Assumes signal values when Simulink Design Verifier proves model<br>properties. The input signal is assumed to be one of the values listed<br>in the 'Values' parameter. Two element vectors specify intervals. Cell<br>arrays specify lists. The signal must match one of the listed values or<br>intervals at every time step.<br>Example Values:<br>true<br>{[0 1], 2, [4 5], 6}<br>{Sldv.Interval(-2, -1), Sldv.Point(0), Sldv.Interval(0, 1, '()'), 1} |
|            | Parameters       Image: Parameters       Image: Parameters                                                                                                                                                                                                                                                                                                                                                                                                  |
|            | Type Assumption                                                                                                                                                                                                                                                                                                                                                                                                                                             |
|            | Values                                                                                                                                                                                                                                                                                                                                                                                                                                                      |
|            | true                                                                                                                                                                                                                                                                                                                                                                                                                                                        |
|            | ☑ Display values                                                                                                                                                                                                                                                                                                                                                                                                                                            |
|            | Pass through style (show Outport)                                                                                                                                                                                                                                                                                                                                                                                                                           |
| Parameters | OK Cancel Help Apply                                                                                                                                                                                                                                                                                                                                                                                                                                        |
| and        | Enable<br>Specify whether the block is enabled. If selected (the default), the                                                                                                                                                                                                                                                                                                                                                                              |

and Dialog Box

Simulink Design Verifier software uses the block when proving properties of a model. Clearing this option disables the block, that is, causes the Simulink Design Verifier software to behave as if

the Proof Assumption block did not exist. If this option is not selected, the block appears grayed out in the model editor.

#### Type

Specify whether the block behaves as a Proof Assumption or Test Condition block. Select Test Condition to transform the Proof Assumption block into a Test Condition block.

#### Values

Specify the proof assumption (see "Specifying Proof Assumptions" on page 4-14).

#### **Display values**

Specify whether the block displays the contents of its **Values** parameter in the model editor. By default, this option is selected.

#### Pass through style

Specify whether the block displays an output port in the model editor. If selected (the default), the block displays its output port, allowing its input signal to pass through as the block output. If not selected, the block hides its output port and terminates the input signal. The following graphics illustrate the appearance of the block in each case.

#### Pass through style: Selected



Pass through style: Deselected



#### See Also Proof Objective, Test Condition

## **Proof Objective**

| Purpose     | Define objectives that signals must satisfy when proving model properties                                                                                                                                                                                                                                                                                                                                                                                  |
|-------------|------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|
| Library     | Simulink Design Verifier                                                                                                                                                                                                                                                                                                                                                                                                                                   |
| Description | When operating in property-proving mode, the Simulink Design Verifier<br>software proves that properties of your model satisfy specified criteria<br>(see "What Is Property Proving?"). In this mode, you can use Proof<br>Objective blocks to define proof objectives for signals in your model.                                                                                                                                                          |
| -           | The <b>Values</b> parameter lets you specify acceptable values for the block's input signal. If a signal value deviates from the acceptable values in <i>any</i> time step, a property violation occurs and the proof objective is falsified. The block applies the specified <b>Values</b> parameter to its input signal, and the Simulink Design Verifier software proves or disproves that the properties of your model satisfy the specified criteria. |
|             | The block's parameter dialog box allows you to                                                                                                                                                                                                                                                                                                                                                                                                             |
|             | • Enable or disable the objective.                                                                                                                                                                                                                                                                                                                                                                                                                         |
|             | • Specify that the block should display its <b>Values</b> parameter in the model editor.                                                                                                                                                                                                                                                                                                                                                                   |
|             | • Specify that the block should display its output port.                                                                                                                                                                                                                                                                                                                                                                                                   |
|             | Note The Simuliak and Simuliak Coder software ignore the Preef                                                                                                                                                                                                                                                                                                                                                                                             |

**Note** The Simulink and Simulink Coder software ignore the Proof Objective block during model simulation and code generation, respectively. The Simulink Design Verifier software uses the Proof Objective block only when proving model properties.

#### **Specifying Proof Objectives**

Use the **Values** parameter to define values that a signal must achieve during a proof simulation. Specify any combination of scalars and intervals in the form of a MATLAB cell array. (For information about cell arrays, see "Cell Arrays" in the MATLAB documentation.) **Tip** If the **Values** parameter specifies only one scalar value, you do not need to enter it in the form of a MATLAB cell array.

Scalar values each comprise a single cell in the array, for example:

{0, 5}

A closed interval comprises a two-element vector as a cell in the array, where each element specifies an interval endpoint:

{[1, 2]}

Alternatively, you can specify scalar values using the Sldv.Point constructor, which accepts a single value as its argument. You can specify intervals using the Sldv.Interval constructor, which requires two input arguments, i.e., a lower bound and an upper bound for the interval. Optionally, you can provide one of the following strings as a third input argument that specifies inclusion or exclusion of the interval endpoints:

- '()' Defines an open interval.
- '[]' Defines a closed interval.
- '(]' Defines a left-open interval.
- '[)' Defines a right-open interval.

**Note** By default, Sldv. Interval considers an interval to be closed if you omit its third input argument.

As an example, the Values parameter

 $\{0, [1, 3]\}$ 

specifies:

- 0 a scalar
- [1, 3] a closed interval

The Values parameter

{Sldv.Interval(0, 1, '[)'), Sldv.Point(1)}

specifies:

- Sldv.Interval(0, 1, '[)') the right-open interval [0, 1)
- Sldv.Point(1) a scalar

If you specify multiple scalars and intervals for a Proof Objective block, the Simulink Design Verifier software combines them using a logical OR operation during the property proof. In this case, the software considers the entire proof objective to be satisfied if any single scalar or interval is satisfied.

# Data TypeThe Proof Objective block accepts signals of all built-in data typesSupportsupported by the Simulink software. For a discussion on the data typessupported by the Simulink software, see "Data Types Supported by<br/>Simulink".

|                                            | Function Block Parameters: Proof Objective                                                                                                                                                                                                                                                                                                                                                                          |
|--------------------------------------------|---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|
|                                            | Design Verifier Proof Objective (mask)                                                                                                                                                                                                                                                                                                                                                                              |
|                                            | Proves signal values using Simulink Design Verifier. The 'Values'<br>parameter specifies input signal values to prove. Two element vectors<br>specify intervals. Cell arrays specify lists. Signals are proven to<br>satisfy at least one of the values or intervals at every time step.<br>Example Values:<br>true<br>{[0 1], 2, [4 5], 6}<br>{Sldv.Interval(-2, -1), Sldv.Point(0), Sldv.Interval(0, 1, '()'), 1} |
|                                            | Parameters                                                                                                                                                                                                                                                                                                                                                                                                          |
|                                            | ☑ Enable                                                                                                                                                                                                                                                                                                                                                                                                            |
|                                            | Values                                                                                                                                                                                                                                                                                                                                                                                                              |
|                                            | true                                                                                                                                                                                                                                                                                                                                                                                                                |
|                                            | ☑ Display values                                                                                                                                                                                                                                                                                                                                                                                                    |
|                                            | Pass through style (show Outport)                                                                                                                                                                                                                                                                                                                                                                                   |
|                                            | Stop simulation when the property is violated                                                                                                                                                                                                                                                                                                                                                                       |
|                                            | OK Cancel Help Apply                                                                                                                                                                                                                                                                                                                                                                                                |
| Parameters  <br>and<br>Dialoa <sup>]</sup> | Enable                                                                                                                                                                                                                                                                                                                                                                                                              |

Dialog Box

Specify whether the block is enabled. If selected (the default), the Simulink Design Verifier software uses the block when proving properties of a model. Clearing this option disables the block, that is, causes the Simulink Design Verifier software to behave

as if the Proof Objective block did not exist. If this option is not selected, the block appears grayed out in the model editor.

#### Values

Specify the proof objective (see "Specifying Proof Objectives" on page 4-20).

#### **Display values**

Specify whether the block displays the contents of its **Values** parameter in the model editor. By default, this option is selected.

#### Pass through style

Specify whether the block displays an output port in the model editor. If selected (the default), the block displays its output port, allowing its input signal to pass through as the block output. If not selected, the block hides its output port and terminates the input signal. The following graphics illustrate the appearance of the block in each case.

#### Pass through style: Selected



Pass through style: Deselected



#### Stop simulation when the property is violated

Specify whether to stop the simulation if the simulation encounters a signal that violates the property specified in the **Values** parameter.

If you select this parameter and simulate the model, the simulation stops if it encounters a violation of the specified property.

See Also Proof Assumption, Test Objective

## **Test Condition**

| Purpose     | Constrain signal values in test cases                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                             |
|-------------|---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|
| Library     | Simulink Design Verifier                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                          |
| Description | When operating in test generation mode, the Simulink Design Verifier<br>software produces test cases that satisfy the specified criteria (see<br>"What Is Test Case Generation?"). In this mode, you can use Test<br>Condition blocks to define test conditions for signals in your model. The<br><b>Values</b> parameter lets you specify constraints on signal values during a<br>test case simulation. The block applies the specified <b>Values</b> parameter<br>to its input signal, and the Simulink Design Verifier software attempts<br>to produce test cases that satisfy the condition. |
|             |                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   |

The block's parameter dialog box also allows you to

- Enable or disable the condition.
- Specify that the block should display its **Values** parameter in the model editor.
- Specify that the block should display its output port.

**Note** The Simulink and Simulink Coder software ignore the Test Condition block during model simulation and code generation, respectively. The Simulink Design Verifier software uses the Test Condition block only when generating test cases for a model.

#### **Specifying Test Conditions**

Use the **Values** parameter to constrain signal values in test cases. Specify any combination of scalars and intervals in the form of a MATLAB cell array. (For information about cell arrays, see "Cell Arrays" in the MATLAB documentation.) **Tip** If the **Values** parameter specifies only one scalar value, you do not need to enter it in the form of a MATLAB cell array.

Scalar values each comprise a single cell in the array, for example:

{0, 5}

A closed interval comprises a two-element vector as a cell in the array, where each element specifies an interval endpoint:

{[1, 2]}

Alternatively, you can specify scalar values using the Sldv.Point constructor, which accepts a single value as its argument. You can specify intervals using the Sldv.Interval constructor, which requires two input arguments, i.e., a lower bound and an upper bound for the interval. Optionally, you can provide one of the following strings as a third input argument that specifies inclusion or exclusion of the interval endpoints:

- '()' Defines an open interval.
- '[]' Defines a closed interval.
- '(]' Defines a left-open interval.
- '[)' Defines a right-open interval.

**Note** By default, Sldv. Interval considers an interval to be closed if you omit its third input argument.

As an example, the Values parameter

 $\{0, [1, 3]\}$ 

specifies:

- 0 a scalar
- [1, 3] a closed interval

The Values parameter

{Sldv.Interval(0, 1, '[)'), Sldv.Point(1)}

specifies:

- Sldv.Interval(0, 1, '[)') the right-open interval [0, 1)
- Sldv.Point(1) a scalar

If you specify multiple scalars and intervals for a Test Condition block, the Simulink Design Verifier software combines them using a logical OR operation when generating test cases. Consequently, the software considers the entire test condition to be satisfied if any single scalar or interval is satisfied.

# Data TypeThe Test Condition block accepts signals of all built-in data typesSupportsupported by the Simulink software. For a discussion on the data typessupported by the Simulink software, see "Data Types Supported by<br/>Simulink".

| Function Block Parameters: Test Condition                                                                                                                                                                                                                                                                                                                                                                            | 3 |
|----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|---|
| Design Verifier Test Condition (mask)                                                                                                                                                                                                                                                                                                                                                                                |   |
| Constrains signal values in Simulink Design Verifier test cases. The<br>'Values' parameter constrains the block input signal. Two element<br>vectors specify intervals. Cell arrays specify lists. The signal must<br>satisfy at least one of the values or intervals at every time step.<br>Example Values:<br>true<br>{[0 1], 2, [4 5], 6}<br>{Sldv.Interval(-2, -1), Sldv.Point(0), Sldv.Interval(0, 1, '()'), 1} |   |
| Parameters                                                                                                                                                                                                                                                                                                                                                                                                           |   |
| I Enable                                                                                                                                                                                                                                                                                                                                                                                                             |   |
| Type Test Condition                                                                                                                                                                                                                                                                                                                                                                                                  | ] |
| Values                                                                                                                                                                                                                                                                                                                                                                                                               |   |
| true                                                                                                                                                                                                                                                                                                                                                                                                                 | ] |
| Display values                                                                                                                                                                                                                                                                                                                                                                                                       |   |
| Pass through style (show Outport)                                                                                                                                                                                                                                                                                                                                                                                    |   |
|                                                                                                                                                                                                                                                                                                                                                                                                                      |   |
|                                                                                                                                                                                                                                                                                                                                                                                                                      |   |
| OK Cancel Help Apply                                                                                                                                                                                                                                                                                                                                                                                                 |   |
|                                                                                                                                                                                                                                                                                                                                                                                                                      |   |

#### Parameters and Dialog Box

#### Enable

Specify whether the block is enabled. If selected (the default), Simulink Design Verifier software uses the block when generating tests for a model. Clearing this option disables the block, that is, causes the Simulink Design Verifier software to behave as if the Test Condition block did not exist. If this option is not selected, the block appears grayed out in the model editor.

#### Type

Specify whether the block behaves as a Test Condition or Proof Assumption block. Select Assumption to transform the Test Condition block into a Proof Assumption block.

#### Values

Specify the test condition (see "Specifying Test Conditions" on page 4-26).

#### **Display values**

Specify whether the block displays the contents of its **Values** parameter in the model editor. By default, this option is selected.

#### Pass through style

Specify whether the block displays an output port in the model editor. If selected (the default), the block displays its output port, allowing its input signal to pass through as the block output. If not selected, the block hides its output port and terminates the input signal. The following graphics illustrate the appearance of the block in each case.

#### Pass through style: Selected



Pass through style: Deselected



See Also Proof Assumption, Test Objective

## **Test Objective**

| Define custom objectives that signals must satisfy in test cases                                                                                                                                                                                                                                                                                                                                        |
|---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|
| Simulink Design Verifier                                                                                                                                                                                                                                                                                                                                                                                |
| When operating in test generation mode, the Simulink Design Verifier software produces test cases that satisfy the specified criteria (see "What Is Test Case Generation?"). In this mode, you can use Test                                                                                                                                                                                             |
| Objective blocks to define custom test objectives for signals in your model. The <b>Values</b> parameter lets you specify values that a signal must achieve for at least one time step during a test case simulation. The block applies the specified <b>Values</b> parameter to its input signal, and the Simulink Design Verifier software attempts to produce test cases that satisfy the objective. |
|                                                                                                                                                                                                                                                                                                                                                                                                         |

The block's parameter dialog box also allows you to

- Enable or disable the objective.
- Specify that the block should display its **Values** parameter in the model editor.
- Specify that the block should display its output port.

**Note** The Simulink and Simulink Coder software ignore the Test Objective block during model simulation and code generation, respectively. The Simulink Design Verifier software uses the Test Objective block only when generating test cases for a model.

#### **Specifying Test Objectives**

Use the **Values** parameter to define custom objectives that signals must satisfy in test cases. Specify any combination of scalars and intervals in the form of a MATLAB cell array. (For information about cell arrays, see "Cell Arrays" in the MATLAB documentation.) **Tip** If the **Values** parameter specifies only one scalar value, you do not need to enter it in the form of a MATLAB cell array.

Scalar values each comprise a single cell in the array, for example:

{0, 5}

A closed interval comprises a two-element vector as a cell in the array, where each element specifies an interval endpoint:

{[1, 2]}

Alternatively, you can specify scalar values using the Sldv.Point constructor, which accepts a single value as its argument. You can specify intervals using the Sldv.Interval constructor, which requires two input arguments, i.e., a lower bound and an upper bound for the interval. Optionally, you can provide one of the following strings as a third input argument that specifies inclusion or exclusion of the interval endpoints:

- '()' Defines an open interval.
- '[]' Defines a closed interval.
- '(]' Defines a left-open interval.
- '[)' Defines a right-open interval.

**Note** By default, Sldv. Interval considers an interval to be closed if you omit its third input argument.

As an example, the Values parameter

 $\{0, [1, 3]\}$ 

specifies:

- 0 a scalar
- [1, 3] a closed interval

The Values parameter

{Sldv.Interval(0, 1, '[)'), Sldv.Point(1)}

specifies:

- Sldv.Interval(0, 1, '[)') the right-open interval [0, 1)
- Sldv.Point(1) a scalar

#### Data Type Support

The Test Objective block accepts signals of all built-in data types supported by the Simulink software. For a discussion on the data types supported by the Simulink software, see "Data Types Supported by Simulink".

| Design Verifier Test Condition (mask)<br>Constrains signal values in Simulink Design Verifier test cases. The<br>'Values' parameter constrains the block input signal. Two element<br>vectors specify intervals. Cell arrays specify lists. The signal must<br>satisfy at least one of the values or intervals at every time step.<br>Example Values:<br>true<br>{[0 1], 2, [4 5], 6}<br>{Sldv.Interval(-2, -1), Sldv.Point(0), Sldv.Interval(0, 1, '()'), 1}<br>Parameters<br>✓ Enable<br>Type Test Condition<br>✓<br>Values<br>true<br>✓ Display values<br>✓ Pass through style (show Outport) | 🎦 Func                                                    | tion Block Parameter                                                                                           | s: Test Condition                                          |                                                                 | ×                          |
|--------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|-----------------------------------------------------------|----------------------------------------------------------------------------------------------------------------|------------------------------------------------------------|-----------------------------------------------------------------|----------------------------|
| 'Values' parameter constrains the block input signal. Two element vectors specify intervals. Cell arrays specify lists. The signal must satisfy at least one of the values or intervals at every time step.         Example Values:         true         {[0 1], 2, [4 5], 6}         {Sldv.Interval(-2, -1), Sldv.Point(0), Sldv.Interval(0, 1, '()'), 1}         Parameters         ✓ Enable         Type         Test Condition         ✓         Values         true                                                                                                                         | - Desigr                                                  | Verifier Test Condi                                                                                            | tion (mask)                                                |                                                                 |                            |
| ✓ Enable Type Test Condition  Values true ✓ Display values                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                       | 'Values<br>vectors<br>satisfy<br>Examp<br>true<br>{[0 1], | <pre>' parameter constr<br/>s specify intervals.<br/>at least one of the<br/>le Values:<br/>2, [4 5], 6}</pre> | ains the block in<br>Cell arrays spec<br>values or interva | put signal. Two e<br>ify lists. The sign<br>als at every time s | lement<br>al must<br>step. |
| Type Test Condition   Values true Display values                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                 | Param                                                     | eters                                                                                                          |                                                            |                                                                 |                            |
| Values<br>true<br>Display values                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                 | 🔽 Ena                                                     | ble                                                                                                            |                                                            |                                                                 |                            |
| true                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                             | Туре                                                      | Test Condition                                                                                                 |                                                            |                                                                 | •                          |
| ☑ Display values                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                 | Values                                                    |                                                                                                                |                                                            |                                                                 |                            |
|                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                  | true                                                      |                                                                                                                |                                                            |                                                                 |                            |
| Pass through style (show Outport)                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                | 🔽 Dis                                                     | olay values                                                                                                    |                                                            |                                                                 |                            |
|                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                  | 🔽 Pas                                                     | s through style (she                                                                                           | ow Outport)                                                |                                                                 |                            |
|                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                  |                                                           |                                                                                                                |                                                            |                                                                 |                            |
|                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                  |                                                           | ОК                                                                                                             | Cancel                                                     | Help                                                            | Apply                      |

#### Parameters and Dialog Box

#### Enable

Specify whether the block is enabled. If selected (the default), the Simulink Design Verifier software uses the block when generating tests for a model. Clearing this option disables the block, that is, causes the Simulink Design Verifier software to behave as if the Test Objective block did not exist. If this option is not selected, the block appears grayed out in the model editor.

#### Values

Specify the test objective (see "Specifying Test Objectives" on page 4-32).

#### **Display values**

Specify whether the block displays the contents of its **Values** parameter in the model editor. By default, this option is selected.

#### Pass through style

Specify whether the block displays an output port in the model editor. If selected (the default), the block displays its output port, allowing its input signal to pass through as the block output. If not selected, the block hides its output port and terminates the input signal. The following figure illustrates the appearance of the block in each case.

#### Pass through style: Selected



Pass through style: Deselected



See Also Proof Objective, Test Condition

### **Verification Subsystem**

## **Purpose** Specify proof or test objectives without impacting simulation results or generated code

Library Simulink Design Verifier

#### Description



This block is a Subsystem block that is preconfigured to serve as a starting point for creating a subsystem that specifies proof or test objectives for use with the Simulink Design Verifier software.

The Simulink Coder software ignores Verification Subsystem blocks during code generation, behaving as if the subsystems do not exist. A Verification Subsystem block allows you to add Simulink Design Verifier components to a model without affecting its generated code.

**Note** If a Verification Subsystem block contains blocks that depend on absolute time, and you select an ERT-based target for code generation, open the Configuration Parameters dialog box and on the **Code Generation > Interface** pane under **Software environment**, select **absolute time**. Do not select **continuous time**. For more information on this setting, see "Support: absolute time" in the Simulink Coder documentation.

When collecting model coverage, the Simulink Verification and Validation software only records coverage for Simulink Design Verifier blocks in the Verification Subsystem block; it does not record coverage for any other blocks in the Verification Subsystem.

To create a Verification Subsystem in your model:

- **1** Copy the Verification Subsystem block from the Simulink Design Verifier library into your model.
- 2 Open the Verification Subsystem block by double-clicking it.

**3** In the Verification Subsystem window, add blocks that specify proof or test objectives. Use Inport blocks to represent input from outside the subsystem.

The Verification Subsystem block in the Simulink Design Verifier library is preconfigured to work with the Simulink Design Verifier software. A Verification Subsystem block must:

- Contain no Outport blocks.
- Enable its Treat as Atomic Unit parameter.
- Specify its Mask type parameter as VerificationSubsystem.

If you alter the Verification Subsystem block so that the preceding conditions are not met, the Simulink Design Verifier software displays a warning.

## **Examples** The sldvdemo\_debounce\_validprop example model includes a Verification Subsystem called Verify Output, as shown in the image below.



The Verify Output subsystem specifies two proof objectives, detailed in the following image.



#### See Also

- Implies
- Within Implies
- Proof Assumption
- Proof Objective

- Test Condition
- Test Objective
- Subsystem block in the Simulink documentation
- "Create a Subsystem" in the Simulink documentation

## Within Implies

| Purpose                              | Verify response occurs within desired duration                                            |
|--------------------------------------|-------------------------------------------------------------------------------------------|
| Library                              | Simulink Design Verifier                                                                  |
| Temporal<br>Operators<br>Terminology | • <i>True duration</i> of a signal — Consecutive time steps during which a signal is true |
| Description                          | The Within Implies block captures the within implication by observing                     |



The Within Implies block captures the within implication by observing whether the Obs input is true for at least one step within each true duration of the first input In. Whenever Obs is not detected within a particular input true duration, the output becomes false for one time step in the step that follows the input true duration.

|               | Function Block Parameters: Within Implies                                                                                                                                                                                                                                                                              |
|---------------|------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|
|               | Within Implies (mask)                                                                                                                                                                                                                                                                                                  |
|               | This block captures the behavior: ('Within' In) => Obs                                                                                                                                                                                                                                                                 |
|               | The block captures the implication by observing whether the 'Obs' input is true for at least one step within each true duration of the first input 'In'. Whenever Obs is not detected within a particular input true duration, then the output becomes false for 1 step in the step that follows the In true duration. |
|               | Parameters                                                                                                                                                                                                                                                                                                             |
|               | External reset                                                                                                                                                                                                                                                                                                         |
|               | OK Cancel Help Apply                                                                                                                                                                                                                                                                                                   |
| Parameters    |                                                                                                                                                                                                                                                                                                                        |
| and<br>Dialog | The Within Implies block has only one user-specified parameter:                                                                                                                                                                                                                                                        |
| Box           | <b>External reset</b><br>Specify whether the block observation of <b>Obs</b> can be reset by an<br>external Boolean reset signal.                                                                                                                                                                                      |
| Examples      | In the following example, consider a sample time of 1 second.                                                                                                                                                                                                                                                          |
|               | Obs is not observed within the first true duration of In, so Out becomes false for one time step. Obs is observed within the second true duration of In, so Out is true. When there is no true duration of In, Out remains true.                                                                                       |
|               | If Obs occurs multiple times, it does not affect the output.                                                                                                                                                                                                                                                           |



See Also

Detector, Extender

## Index

#### A

analysis results functions 1-5

#### B

blocks Detector 4-2 Extender 4-9 Implies 4-13 Proof Assumption 4-14 Proof Objective 4-20 Test Condition 4-26 Test Objective 4-32 Verification Subsystem 4-38 Within Implies 4-42

#### D

Detector block 4-2

#### E

Extender block 4-9

#### F

functions analysis results 1-5 MATLAB for code generation 1-6 model analysis 1-3 model preparation 1-2 sldv.assume 2-2 sldv.condition 2-9 sldv.prove 2-47 sldv.test 2-67 sldvblockreplacement 2-5 sldvcompat 2-7 sldvextract 2-13 sldvgencov 2-15 sldvharnessopts 2-18 sldvisactive 2-20 sldvlogsignals 2-22 sldvmakeharness 2-24 sldvmergeharness 2-28 sldvoptions 2-31 sldvreport 2-50 sldvrun 2-53 sldvruncgvtest 2-56 2-64 sldvruntest 2-60 sldvtimer 2-69 Stateflow 1-6 test execution 1-4

#### 

Implies block 4-13

#### Μ

MATLAB functions for code generation 1-6 model analysis functions 1-3 models preparing for analysis functions 1-2

#### Ρ

Proof Assumption block 4-14 Proof Objective block 4-20

#### S

sldv.assume function 2-2
sldv.condition function 2-9
sldv.prove function 2-47
sldv.test function 2-67
sldvblockreplacement function 2-5
sldvcompat function 2-7
sldvextract function 2-13
sldvgencov function 2-15
sldvharnessopts function 2-18

sldvisactive function 2-20 sldvlogsignals function 2-22 sldvmakeharness function 2-24 sldvmergeharness function 2-28 sldvoptions function 2-31 sldvreport function 2-50 sldvrun function 2-53 sldvruncgvtest function 2-56 2-64 sldvruntest function 2-60 sldvtimer function 2-69 Stateflow functions 1-6

#### Т

Test Condition block 4-26 test execution functions 1-4 Test Objective block 4-32

#### V

Verification Subsystem block 4-38

#### W

Within Implies block 4-42