There are a number of fully charged batteries, and a control system switches load between these batteries to achieve longer lifetime out of the batteries. Each battery \(i\) involves three modes \(switchedOn\), \(switchedOff\), and \(dead\).
Dynamics
The dynamics of the battery charge is expressed by the following differential equations for different modes:
\begin{equation}
(\mbox{on})
\left[
\begin{aligned}
\dot{d}_i &= L / c - k \cdot d_i
\\
\dot{g}_i &= - L
\end{aligned}
\right],
\qquad
(\mbox{off})
\left[
\begin{aligned}
\dot{d}_i &= - k \cdot d_i
\\
\dot{g}_i &= 0
\end{aligned}
\right],
\qquad
(\mbox{dead})
\left[
\begin{aligned}
\dot{d}_i &= 0
\\
\dot{g}_i &= 0
\end{aligned}
\right],
\end{equation}
with variable \(d_i\) its kinetic energy difference, variable \(g_i\) its total charge, constant \(L \in \mathbb{R}\) its load, and constant \(c \in [0,1]\) its threshold. If \(g_i > (1 - c) d_i\), then battery \(i\) is dead. If battery \(i\) is not dead, then it can be either on or off. When \(k \in \mathbb{N}\) batteries are on, then load to each battery is divided by \(k\). There is a timer variable \(\tau\) with the flow condition \(\dot{\tau} = 1\) to keep track of the elapsed time.
Benchmarks
We consider the cases of networks of two batteries with the parameters \(k = 0.122\) and \(c = 0.166\), and the initial condition \(g_1 = 8.5 \;\wedge\; d_1 = 0 \;\wedge\; g_2 = 7.5 \;\wedge\; d_2 = 0 \;\wedge\; g_3 = 9.5 \;\wedge\; d_3 = 0\). We have performed bounded model checking up to \(k = 5\) for the properties \(\mathit{safe}_t = \tau > 10 \) (the reachability of \(\neg\mathit{safe}_t\) unsat) and \(\mathit{safe}_f = \tau > 0\) (the reachability of \(\neg\mathit{safe}_f\) sat). We set a timeout of 30 hours for the experiments.
| Benchmark (BMC) | k=1 | k=2 | k=3 | k=4 | k=5 |
|---|---|---|---|---|---|
| Double (Unsat) (new) | 0.13 s | 0.87 s | 6.68 s | 53.13 s | 315.16 s |
| Double (Unsat) (heuristics) | 0.36 s | 4.48 s | 35.87 s | 257.22 s | 1261.14 s |
| Double (Unsat) (non-modular) | 1.95 s | 746.37 s | - | - | - |
| Double (Sat) (new) | 0.46 s | 2.59 s | 6.52 s | 12.08 s | 25.77 s |
| Double (Sat) (heuristics) | 0.84 s | 56.38 s | 3885.32 s | 6564.96 s | 1483.22 s |
| Double (Sat) (non-modular) | 1.03 s | 2.12 s | 9.49 s | 14.82 s | 33.26 s |
| Triple (Unsat) (new) | 0.53 s | 7.28 s | 37.46 s | 123.31 s | 310.58 s |
| Triple (Unsat) (heuristics) | 4.46 s | 237.94 s | 4321.21 s | - | - |
| Triple (Unsat) (non-modular) | 4.24 s | - | - | - | - |
| Triple (Sat) (new) | 1.37 s | 7.12 s | 27.35 s | 60.30 s | 130.11 s |
| Triple (Sat) (heuristics) | 2.73 s | 12.43 s | 24.35 s | 54.09 s | 136.78 s |
| Triple (Sat) (non-modular) | 55.70 s | 287.37 s | - | - | 659.98 s |
Files
To generate SMT files for this model in the new/standard encodings, we have developed a simple python script. For example, for the unsat case with bound \(k = 2\), we can run the following commands to generate the SMT file using the new encoding and check its satisfiability using dReal provided that the library file gen.py is in the same directory:
python battery-double-p.py 2 > battery-double-p_2.smt2
dReal battery-double-p_2.smt2
For the dReach scripts, we use the option -k N -l N to set both lower and upper bound to \(N\).
For example, we can set \(N = 2\) using the following command:
dReach -k 2 -l 2 battery-double.drh
The following are the python scripts (to generate SMT files) and the dReach models.
- SMT generation script: gen.py
- Two networked batteries
- Unsat: New encoding, Standard encoding, dReach script
- Sat: New encoding, Standard encoding, dReach script
- Three networked batteries
- Unsat: New encoding, Standard encoding, dReach script
- Sat: New encoding, Standard encoding, dReach script