schedulability analysis as evidence
play

Schedulability Analysis as Evidence? Bjrn Brandenburg Max Planck - PowerPoint PPT Presentation

Feb 26, 2024 •301 likes •839 views

Schedulability Analysis as Evidence? Bjrn Brandenburg Max Planck Institute for Software Systems (MPI-SWS) 1 Schedulability Analysis as Evidence? Can safety case rely on schedulability analysis? Safety Case Argument Evidence

  1. Schedulability Analysis as Evidence? Björn Brandenburg Max Planck Institute for Software Systems (MPI-SWS) 1

  2. Schedulability Analysis as Evidence? Can safety case rely on schedulability analysis? Safety Case ← Argument ← Evidence ← Methodology 2

  3. Schedulability Analysis as Evidence? Can safety case rely on schedulability analysis? Safety Case ← Argument ← Evidence ← Methodology “ Is the methodology agreed as effective? ” -- Philippa Ryan • Does it “work”? • Is it sound ? Actually all deadlines met if analysis says ‘yes’? 3

  4. Schedulability Analysis as Evidence? Can safety case rely on schedulability analysis? Safety Case ← Argument ← Evidence ← Methodology “ Is the methodology agreed as effective? ” -- Philippa Ryan • Does it “work”? • Is it sound ? Actually all deadlines met if analysis says ‘yes’? 3

  5. Schedulability Analysis as Evidence? Can safety case rely on schedulability analysis? Safety Case ← Argument ← Evidence ← Methodology “ Is the methodology agreed as effective? ” -- Philippa Ryan • Does it “work”? • Is it sound ? Actually all deadlines met if analysis says ‘yes’? 3

  6. Advanced Analysis for Mixed- Criticality Systems? It’s been peer-reviewed — should it be deemed effective? • Difficult to predict the future. Let’s take a look at the history of real-time scheduling… 4

  7. Advanced Analysis for Mixed- Criticality Systems? It’s been peer-reviewed — should it be deemed effective? • Difficult to predict the future. Let’s take a look at the history of real-time scheduling… 4

  8. A Look Back (1/4) Liu & Layland (1973) • Raymond Devillers and Joël Goossens, “ Liu and Layland’s schedulability test revisited ”, Information Processing Letters , 73(5):157–161, 2000. 5

  9. A Look Back (1/4) Liu & Layland (1973) • Raymond Devillers and Joël Goossens, “ Liu and Layland’s schedulability test revisited ”, Information Processing Letters , 73(5):157–161, 2000. 5

  10. A Look Back (2/4) Response-Time Analysis (RTA) — deceptively simple • implicit/constrained deadlines vs. arbitrary deadlines • preemptive vs. non-preemptive scheduling [13 years] • Jitter vs. general self-suspensions [20 years] • Jian-Jia Chen et al. Many suspensions, many problems: A review of self-suspending tasks in real-time systems . Technical Report 854 (rev. 2), Dep. of Computer Science, TU Dortmund, March 2017. 6

  11. A Look Back (2/4) Response-Time Analysis (RTA) — deceptively simple • implicit/constrained deadlines vs. arbitrary deadlines • preemptive vs. non-preemptive scheduling [13 years] • Jitter vs. general self-suspensions [20 years] • Jian-Jia Chen et al. Many suspensions, many problems: A review of self-suspending tasks in real-time systems . Technical Report 854 (rev. 2), Dep. of Computer Science, TU Dortmund, March 2017. 6

  12. A Look Back (2/4) Response-Time Analysis (RTA) — deceptively simple • implicit/constrained deadlines vs. arbitrary deadlines • preemptive vs. non-preemptive scheduling [13 years] • Jitter vs. general self-suspensions [20 years] • Jian-Jia Chen et al. Many suspensions, many problems: A review of self-suspending tasks in real-time systems . Technical Report 854 (rev. 2), Dep. of Computer Science, TU Dortmund, March 2017. 6

  13. A Look Back (2/4) Response-Time Analysis (RTA) — deceptively simple • implicit/constrained deadlines vs. arbitrary deadlines • preemptive vs. non-preemptive scheduling [13 years] • Jitter vs. general self-suspensions [20 years] • Jian-Jia Chen et al. Many suspensions, many problems: A review of self-suspending tasks in real-time systems . Technical Report 854 (rev. 2), Dep. of Computer Science, TU Dortmund, March 2017. 6

  14. A Look Back (2/4) Response-Time Analysis (RTA) — deceptively simple • implicit/constrained deadlines vs. arbitrary deadlines • preemptive vs. non-preemptive scheduling [13 years] • Jitter vs. general self-suspensions [20 years] • Jian-Jia Chen et al. Many suspensions, many problems: A review of self-suspending tasks in real-time systems . Technical Report 854 (rev. 2), Dep. of Computer Science, TU Dortmund, March 2017. 6

  15. A Look Back (3/4) Multiprocessor Priority Ceiling Protocol (1990): • Maolin Yang, Jian-Jia Chen, and Wen-Hung Huang. A misconception in blocking time analyses under multiprocessor synchronization protocols . Real-Time Systems, 53(2):187–195, 2017. [ MPCP analysis (+others) assumes wrong critical instant ] • Jian-Jia Chen and Björn Brandenburg. A note on the period enforcer algorithm for self-suspending tasks . Leibniz Transactions on Embedded Systems, 4(1), 2017. [ Period enforcer incompatible with locking protocols / existing analyses ] 7

  16. A Look Back (3/4) Multiprocessor Priority Ceiling Protocol (1990): • Maolin Yang, Jian-Jia Chen, and Wen-Hung Huang. A misconception in blocking time analyses under multiprocessor synchronization protocols . Real-Time Systems, 53(2):187–195, 2017. [ MPCP analysis (+others) assumes wrong critical instant ] • Jian-Jia Chen and Björn Brandenburg. A note on the period enforcer algorithm for self-suspending tasks . Leibniz Transactions on Embedded Systems, 4(1), 2017. [ Period enforcer incompatible with locking protocols / existing analyses ] 7

  17. A Look Back (3/4) Multiprocessor Priority Ceiling Protocol (1990): • Maolin Yang, Jian-Jia Chen, and Wen-Hung Huang. A misconception in blocking time analyses under multiprocessor synchronization protocols . Real-Time Systems, 53(2):187–195, 2017. [ MPCP analysis (+others) assumes wrong critical instant ] • Jian-Jia Chen and Björn Brandenburg. A note on the period enforcer algorithm for self-suspending tasks . Leibniz Transactions on Embedded Systems, 4(1), 2017. [ Period enforcer incompatible with locking protocols / existing analyses ] 7

  18. A Look Back (4/4) Scheduling with Arbitrary Processor Affinities • A. Gujarati, F. Cerqueira, and B. Brandenburg. Schedulability Analysis of the Linux Push and Pull Scheduler with Arbitrary Processor Affinities . Proc. ECRTS’13. [ incorrect over-generalization: proposed reduction technique works only for a few, not all global schedulability tests ] • Bug also present in extended journal paper ➔ got past (at least) six reviewers! ➔ unrealistic and unreasonable to expect reviewers to determine correctness 8

  19. A Look Back (4/4) Scheduling with Arbitrary Processor Affinities • A. Gujarati, F. Cerqueira, and B. Brandenburg. Schedulability Analysis of the Linux Push and Pull Scheduler with Arbitrary Processor Affinities . Proc. ECRTS’13. [ incorrect over-generalization: proposed reduction technique works only for a few, not all global schedulability tests ] • Bug also present in extended journal paper ➔ got past (at least) six reviewers! ➔ unrealistic and unreasonable to expect reviewers to determine correctness 8

  20. A Look Back (4/4) Scheduling with Arbitrary Processor Affinities • A. Gujarati, F. Cerqueira, and B. Brandenburg. Schedulability Analysis of the Linux Push and Pull Scheduler with Arbitrary Processor Affinities . Proc. ECRTS’13. [ incorrect over-generalization: proposed reduction technique works only for a few, not all global schedulability tests ] • Bug also present in extended journal paper ➔ got past (at least) six reviewers! ➔ unrealistic and unreasonable to expect reviewers to determine correctness 8

  21. Mixed-Criticality Analysis is not Any Easier than Classic Schedulability Analysis! …so what can we do? • OPEN PROBLEM How to make complex schedulability analysis trustworthy? • DESPITE ➔ increasing model fidelity & complexity ➔ increasing proof sophistication & non-obvious correctness criteria 9

  22. Mixed-Criticality Analysis is not Any Easier than Classic Schedulability Analysis! …so what can we do? • OPEN PROBLEM How to make complex schedulability analysis trustworthy? • DESPITE ➔ increasing model fidelity & complexity ➔ increasing proof sophistication & non-obvious correctness criteria 9

  23. Mixed-Criticality Analysis is not Any Easier than Classic Schedulability Analysis! …so what can we do? • OPEN PROBLEM How to make complex schedulability analysis trustworthy? • DESPITE ➔ increasing model fidelity & complexity ➔ increasing proof sophistication & non-obvious correctness criteria 9

  24. 10

  25. PROSA : Formally Pro ven S chedulability A nalysis An open-source effort to formally verify the core of real-time scheduling theory, with the help of the Coq proof assistant . • Precise, unambiguous, uniform definitions • All assumptions explicit • Guaranteed-correct proofs : all claims in Prosa have machine-checked proofs, which rules out human error! 11

  26. PROSA : Formally Pro ven S chedulability A nalysis An open-source effort to formally verify the core of real-time scheduling theory, with the help of the Coq proof assistant . • Precise, unambiguous, uniform definitions • All assumptions explicit • Guaranteed-correct proofs : all claims in Prosa have machine-checked proofs, which rules out human error! 11

  27. PROSA : Formally Pro ven S chedulability A nalysis An open-source effort to formally verify the core of real-time scheduling theory, with the help of the Coq proof assistant . • Precise, unambiguous, uniform definitions • All assumptions explicit • Guaranteed-correct proofs : all claims in Prosa have machine-checked proofs, which rules out human error! 11

Recommend

Schedulability analysis Schedulability analysis : The process of determining whether a task set

Schedulability analysis Schedulability analysis : The process of determining whether a task set

EDA421/DIT171 - Parallel and Distributed Real-Time Systems, Chalmers/GU, 2011/2012 Lecture #5 Updated March 21, 2012 Schedulability analysis Schedulability analysis : The process of determining whether a task set can be scheduled

306 views • 14 slides
On the Meaning of pWCET Distributions and their use in Schedulability Analysis Robert I. Davis

On the Meaning of pWCET Distributions and their use in Schedulability Analysis Robert I. Davis

On the Meaning of pWCET Distributions and their use in Schedulability Analysis Robert I. Davis How do we verifying the timing correctness of a real-time system? Typically a two step process Timing Analysis Used to characterise the

629 views • 39 slides
Schedulability Analysis of Timed CSP Models Using the PAT Model Checker O uzcan O UZ Jan

Schedulability Analysis of Timed CSP Models Using the PAT Model Checker O uzcan O UZ Jan

Schedulability Analysis of Timed CSP Models Using the PAT Model Checker O uzcan O UZ Jan F. BROENINK Angelika MADER Robotics and Mechatronics, University of Twente, The Netherlands Contents Problem Statement & Approach

516 views • 24 slides
Principled Schedulability Analysis for Distributed Storage Systems Using Thread Architecture

Principled Schedulability Analysis for Distributed Storage Systems Using Thread Architecture

Principled Schedulability Analysis for Distributed Storage Systems Using Thread Architecture Models Suli Yang*, Jing Liu, Andrea C. Arpaci-Dusseau, Remzi H. Arpaci-Dusseau * work done while at UW-Madison Scheduling: A Fundamental Primitive

614 views • 34 slides
Schedulability Analysis and Software Synthesis for Graph-based Task Models with Resource Sharing

Schedulability Analysis and Software Synthesis for Graph-based Task Models with Resource Sharing

Schedulability Analysis and Software Synthesis for Graph-based Task Models with Resource Sharing Jakaria Abdullah , Gaoyang Dai, Morteza Mohaqeqi, Wang Yi Uppsala University April 13, 2018 Outline Problem Problem 1 Algorithm Evaluation

1.08k views • 48 slides
Schedulability Analysis for Fixed Priority Real-Time Systems with Energy- Harvesting m 1 Younes

Schedulability Analysis for Fixed Priority Real-Time Systems with Energy- Harvesting m 1 Younes

Schedulability Analysis for Fixed Priority Real-Time Systems with Energy- Harvesting m 1 Younes Chandarli 1 , 2 Rob Davis 3 Damien Masson 1 Yasmina Abdedda ( 1 ) Universit e Paris-Est, LIGM UMR CNRS 8049, ESIEE Paris, France ( 2 )

633 views • 51 slides
Schedulability Analysis of Synchronous Digraph Real-Time Tasks Morteza Mohaqeqi, Jakaria

Schedulability Analysis of Synchronous Digraph Real-Time Tasks Morteza Mohaqeqi, Jakaria

Schedulability Analysis of Synchronous Digraph Real-Time Tasks Morteza Mohaqeqi, Jakaria Abdullah, Nan Guan, Wang Yi Uppsala University ECRTS 2016 Introduction Real-Time Task Models: Digraph (DRT) recurring branching (RB) non-cyclic GMF

1.11k views • 49 slides
Sequence Estimation and Schedulability Aim Analysis for Partially Observable Petri Nets

Sequence Estimation and Schedulability Aim Analysis for Partially Observable Petri Nets

Sequence Estimation and Schedulability Analysis for Partially Observable Petri Nets (Part I) Ph. Declerck Sequence Estimation and Schedulability Aim Analysis for Partially Observable Petri Nets Preliminaries (Part I) Estimation in

448 views • 41 slides
Parallel & Distributed Real-Time Systems Lecture #5 Risat Pathan Department of Computer

Parallel & Distributed Real-Time Systems Lecture #5 Risat Pathan Department of Computer

Parallel & Distributed Real-Time Systems Lecture #5 Risat Pathan Department of Computer Science and Engineering Chalmers University of Technology Schedulability analysis Schedulability analysis : The process of determining whether a task

461 views • 30 slides
Schedulability Analysis under Uncertainty using Formal Methods (part 2) tienne Andr and

Schedulability Analysis under Uncertainty using Formal Methods (part 2) tienne Andr and

ESWEEK Tutorial Sunday, 30th of September Schedulability Analysis under Uncertainty using Formal Methods (part 2) tienne Andr and Giusppe Lipari LIPN, Universit Paris 13, CNRS, France tienne Andr (Universit Paris 13) Tutorial @

1.87k views • 149 slides
Controller Area Network (CAN) Schedulability Analysis with FIFO queues Robert Davis 1 , Steffen

Controller Area Network (CAN) Schedulability Analysis with FIFO queues Robert Davis 1 , Steffen

Controller Area Network (CAN) Schedulability Analysis with FIFO queues Robert Davis 1 , Steffen Kollmann 2 , Victor Pollex 2 , Frank Slomka 2 1 Real-Time Systems Research Group, University of York 2 Institute of Embedded Systems / Real-Time

483 views • 31 slides
1) R=I+C1=0+1=1,I= R/P3 *C3= 1/6 *2=2. Since R <=

1) R=I+C1=0+1=1,I= R/P3 *C3= 1/6 *2=2. Since R <=

Examples of Schedulability Analysis 1. a) Is the following set of periodic tasks schedulable under Rate Monotonic (RM)? b) How about under Deadline

57 views • 3 slides
Meta-analysis provides the best and most reliable scientific evidence Meta-analysis aggregates

Meta-analysis provides the best and most reliable scientific evidence Meta-analysis aggregates

Meta-analysis provides the best and most reliable scientific evidence Meta-analysis aggregates evidence across several studies 1. Search literature 3. Select the studies of interest 5. Calculate effect sizes and 2. Screen articles for 4.

462 views • 15 slides
Robust Evidence Synthesis Ullrika Sahlin Thursday 9.00-12.30 1 Evidence-based Meta-analysis

Robust Evidence Synthesis Ullrika Sahlin Thursday 9.00-12.30 1 Evidence-based Meta-analysis

Robust Evidence Synthesis Ullrika Sahlin Thursday 9.00-12.30 1 Evidence-based Meta-analysis Statistical technique to combine results from multiple independent studies Consider differences in quality in studies Experi Meta-analysis Observ

611 views • 40 slides
Worst-Case Execution-Time Analysis WCET Analysis slides: P. Puschner, R. Kirner, B. Huber

Worst-Case Execution-Time Analysis WCET Analysis slides: P. Puschner, R. Kirner, B. Huber

Worst-Case Execution-Time Analysis WCET Analysis slides: P. Puschner, R. Kirner, B. Huber Time in RTS Construction Design Architecture, resource planning, schedules Implementation Timing Analysis Schedulability analysis, WCET analysis 2

508 views • 35 slides
Introduction: T r e y H ic k s Analysis and Evidence of Impact: G re g C o llin s

Introduction: T r e y H ic k s Analysis and Evidence of Impact: G re g C o llin s

Stakeholder Community Meeting: Mitigating the Impacts of COVID-1 9 on Food, Nutrition, and Water Security J u ly 3 0 , 2 0 2 0 8 :3 0 - 1 0 :0 0 A M E D T I A g e n d a Introduction: T r e y H ic k s Analysis and Evidence of Impact: G re

354 views • 34 slides
Regarding the Optimality of Speedup Bounds of Mixed-Criticality Schedulability Tests Zhishan Guo

Regarding the Optimality of Speedup Bounds of Mixed-Criticality Schedulability Tests Zhishan Guo

Regarding the Optimality of Speedup Bounds of Mixed-Criticality Schedulability Tests Zhishan Guo Department of Computer Science, Missouri S&T Presented at Dagstuhl Seminar 17131 Mar. 29, 2017 MC & Vestals Interpretation Mixed

513 views • 23 slides
2 Model i Density: The density i of a task i is the ratio C i /D i of A sporadic

2 Model i Density: The density i of a task i is the ratio C i /D i of A sporadic

Techniques for Multiprocessor Global Schedulability Analysis Sanjoy Baruah The University of North Carolina at Chapel Hill Abstract algorithm is then applied locally in each cluster, to the jobs generated by the tasks that are assigned to

362 views • 10 slides
Exercise and Bone Mass Systematic Reviews of RCTs & Meta-Analysis Whats the Evidence?

Exercise and Bone Mass Systematic Reviews of RCTs & Meta-Analysis Whats the Evidence?

Clinical Decision Making for Standing June 2003 Programs for Children with Disablities Pyramid of Evidence Exercise and Bone Mass Systematic Reviews of RCTs & Meta-Analysis Whats the Evidence? Randomized Controlled Clinical Trials (RCT)

435 views • 22 slides
Mountain Sheep Evidence Evidence 2: Horn Growth Evidence

Mountain Sheep Evidence Evidence 2: Horn Growth Evidence

Mountain Sheep Evidence Evidence 2: Horn Growth Evidence 3: Trophy Hun7ng Evidence 4: Offspring Evidence 5: Hunters Blog Click on each

484 views • 10 slides
Scheduling Algorithm and Analysis Interrupts and non-RM Tasks (Module 31) Yann-Hang Lee Arizona

Scheduling Algorithm and Analysis Interrupts and non-RM Tasks (Module 31) Yann-Hang Lee Arizona

Scheduling Algorithm and Analysis Interrupts and non-RM Tasks (Module 31) Yann-Hang Lee Arizona State University yhlee@asu.edu (480) 727-7507 Summer 2014 Real-time Systems Lab, Computer Science and Engineering, ASU Schedulability with

144 views • 10 slides
Input Evidence Causal Leverage Analysis Lance Shea Partner BakerHostetler Washington, DC

Input Evidence Causal Leverage Analysis Lance Shea Partner BakerHostetler Washington, DC

Substantiating Claims With Patient Input Evidence Causal Leverage Analysis Lance Shea Partner BakerHostetler Washington, DC Data, Information & Evidence Although data, information, and evidence are often used as if

426 views • 32 slides
Fixed-Priority Schedulability of Sporadic Tasks on Uniprocessors is NP -hard Pontus Ekberg &

Fixed-Priority Schedulability of Sporadic Tasks on Uniprocessors is NP -hard Pontus Ekberg &

Fixed-Priority Schedulability of Sporadic Tasks on Uniprocessors is NP -hard Pontus Ekberg & Wang Yi Uppsala University RTSS 2017 Overview for coNP -complete Strongly Polynomial time utilization Arbitrary EDF c NP -hard coNP -complete

802 views • 76 slides
CBOs Use of Evidence in Analysis of Budget and Economic Policies November 3, 2011 Jeffrey R.

CBOs Use of Evidence in Analysis of Budget and Economic Policies November 3, 2011 Jeffrey R.

Congressional Budget Office Presentation at the Annual Fall Research Conference of the Association for Public Policy Analysis & Management CBOs Use of Evidence in Analysis of Budget and Economic Policies November 3, 2011 Jeffrey R. Kling

326 views • 32 slides

More recommend