the oasis model for developpement of deterministic safety
play

The OASIS model for developpement of deterministic safety-critical - PowerPoint PPT Presentation

Feb 18, 2023 •119 likes •607 views

The OASIS model for developpement of deterministic safety-critical multitask real-time systems Matthieu Lemerre CEA LIST LaSTRE (V. David) Synchron08 Aussois, December 5th, 2008 Matthieu Lemerre (CEA LIST) The OASIS model Synchron08

  1. The OASIS model for developpement of deterministic safety-critical multitask real-time systems Matthieu Lemerre CEA LIST LaSTRE (V. David) Synchron’08 Aussois, December 5th, 2008 Matthieu Lemerre (CEA LIST) The OASIS model Synchron’08 1 / 35

  2. Introduction OASIS is an industrialized toolchain (compiler, runtime kernel...) based on a time-triggered model of computation OASIS model : computations take time (no zero-time abstraction) Computations happens during intervals of time (not point in time) Use results of past computations (not that of parallel ones) Model still independent of execution time (used only for scheduling) Matthieu Lemerre (CEA LIST) The OASIS model Synchron’08 2 / 35

  3. Introduction OASIS is an industrialized toolchain (compiler, runtime kernel...) based on a time-triggered model of computation OASIS model : computations take time (no zero-time abstraction) Computations happens during intervals of time (not point in time) Use results of past computations (not that of parallel ones) Model still independent of execution time (used only for scheduling) Ψ is a language extension for expressing the time-triggered constraints of the model in a procedural language (e.g. C or Ada) Matthieu Lemerre (CEA LIST) The OASIS model Synchron’08 2 / 35

  4. Outline Timing Model 1 Specifying time-triggered constraints Example uses and use in OASIS Simple example uses Use in OASIS Scheduling semantics 2 Scheduling of chains Scheduling of trees Scheduling of automata Implementation 3 Communication primitives Implementation Conclusion 4 Matthieu Lemerre (CEA LIST) The OASIS model Synchron’08 3 / 35

  5. Outline Timing Model 1 Specifying time-triggered constraints Example uses and use in OASIS Simple example uses Use in OASIS Scheduling semantics 2 Scheduling of chains Scheduling of trees Scheduling of automata Implementation 3 Communication primitives Implementation Conclusion 4 Matthieu Lemerre (CEA LIST) The OASIS model Synchron’08 4 / 35

  6. Chains Notions Block Sequence of instructions, a b represented by an arc. Nodes Separates 2 blocks Chain Sequence of blocks and nodes. b runs after a . Matthieu Lemerre (CEA LIST) The OASIS model Synchron’08 5 / 35

  7. Temporal constraints Goal: to specify temporal constraints on a block 2 possibilities: to make it start after a certain date OR to make it end before another date b b b Matthieu Lemerre (CEA LIST) The OASIS model Synchron’08 6 / 35

  8. Temporal constraints Goal: to specify temporal constraints on a block 2 possibilities: to make it start after a certain date OR to make it end before another date We chose to make the adjascent b nodes bear the constraints: “before” nodes constraint the 5 preceding block b Matthieu Lemerre (CEA LIST) The OASIS model Synchron’08 6 / 35

  9. Temporal constraints Goal: to specify temporal constraints on a block 2 possibilities: to make it start after a certain date OR to make it end before another date We chose to make the adjascent b nodes bear the constraints: “before” nodes constraint the 2 preceding block b “after” nodes constraint the succeeding block Matthieu Lemerre (CEA LIST) The OASIS model Synchron’08 6 / 35

  10. Temporal constraints Goal: to specify temporal constraints on a block 2 possibilities: to make it start after a certain date OR to make it end before another date We chose to make the adjascent b nodes bear the constraints: “before” nodes constraint the 2 5 preceding block b “after” nodes constraint the succeeding block Matthieu Lemerre (CEA LIST) The OASIS model Synchron’08 6 / 35

  11. Temporal constraints Goal: to specify temporal constraints on a block 2 possibilities: to make it start after a certain date OR to make it end before another date We chose to make the adjascent a b c nodes bear the constraints: “before” nodes constraint the 1 5 7 preceding block a c b b “after” nodes constraint the succeeding block Lemma: constraint extension A block b is implicitly constrained by all preceding “after” nodes, and by all following “before” nodes Matthieu Lemerre (CEA LIST) The OASIS model Synchron’08 6 / 35

  12. Combining constraints a b c a b c = ⇒ Some constraints can d ′ ≤ d d ′ d be simplified 0 1 4 a b c Matthieu Lemerre (CEA LIST) The OASIS model Synchron’08 7 / 35

  13. Combining constraints a b c a b c = ⇒ Some constraints can d ′ ≤ d d d be simplified 0 1 4 a b c Matthieu Lemerre (CEA LIST) The OASIS model Synchron’08 7 / 35

  14. Combining constraints b = ⇒ Impossible or d ′ ≤ d d d = d ′ Some constraints can be simplified 0 1 4 b 2 3 0.5 Matthieu Lemerre (CEA LIST) The OASIS model Synchron’08 7 / 35

  15. Combining constraints a b c OK d ′ ≤ d Some constraints can d be simplified 0 1 7 a b c a b c Matthieu Lemerre (CEA LIST) The OASIS model Synchron’08 7 / 35

  16. Combining constraints = ⇒ d ′ ≤ d d d ′ Some constraints can = ⇒ (a) be simplified d ′ ≤ d d d Reductions ( a ) and = ⇒ Impossible or (b) ( b ) allows for relative d ′ ≤ d d d = d ′ labeling of constraints: OK d ′ ≤ d d Lemma (relative labeling) All constraints can be expressed as a stricly positive increment from the last “after” node. (In an equivalent, simplified automaton) Matthieu Lemerre (CEA LIST) The OASIS model Synchron’08 7 / 35

  17. From chains to trees: Handling choices either b or c will be executed. a b a → b has 3 unit of times to if complete 1 4 c a → c only has 2. 3 Important: Choice between b and c is done dynamicallly 0 1 4 And is known only after a ’s a b execution → Both choices must be doable until a finishes a c This is reflected in scheduling semantics (later) Matthieu Lemerre (CEA LIST) The OASIS model Synchron’08 8 / 35

  18. From trees to automata: Handling loops and joins b a Semantic of unfolding : “copy” of the traversed 1 1 c 2 tree = Must use relative a b c b c labeling to be useful 1 1 1 2 2 0 1 8 a b c b c Matthieu Lemerre (CEA LIST) The OASIS model Synchron’08 9 / 35

  19. From trees to automata: Handling loops and joins b d Semantic of unfolding : a c “copy” of the traversed = tree c d c d Must use relative labeling to be useful a a When both loops and choices: unfolding gives b b c d an infinite tree! Execution trace a = path in the tree = chain b Matthieu Lemerre (CEA LIST) The OASIS model Synchron’08 9 / 35

  20. Example uses a b 3 1 2 c 2 (a) Implicit-deadline periodic task (b) A periodic task (period 5). b is constrained with of period 2 fine-grained jitter specification (maximum jitter 1) ǫ ǫ 1 1 2 1 a b 2 2 (c) Two constrained-deadline periodic tasks of period 2 and deadline 1, with respective phase 1 and 2. a and b are in mutual exclusion Matthieu Lemerre (CEA LIST) The OASIS model Synchron’08 10 / 35

  21. Generation of the automaton from Ψ C code while(1) { after(1); if(...) { while after(2); for(i=0;i<10;i++) after(1) { advance(1); } } if else before(2); after(2) advance(5); for } before(2) The CFG defines the automaton. advance(1); Tasks define sequential advance(5) execution Multiple tasks to get parallel execution Matthieu Lemerre (CEA LIST) The OASIS model Synchron’08 11 / 35

  22. Outline Timing Model 1 Specifying time-triggered constraints Example uses and use in OASIS Simple example uses Use in OASIS Scheduling semantics 2 Scheduling of chains Scheduling of trees Scheduling of automata Implementation 3 Communication primitives Implementation Conclusion 4 Matthieu Lemerre (CEA LIST) The OASIS model Synchron’08 12 / 35

  23. Semantics for scheduling chains Conditions for a correct schedule for a chain: To respect the “before” and “after” constraints Blocks must be executed in order Blocks must be executed for their required execution time || b || a b || a || = 2 1 3 6 || b || = 1 7 0 1 a a b b Matthieu Lemerre (CEA LIST) The OASIS model Synchron’08 13 / 35

  24. Optimal scheduling with EDF-dyn In conventional scheduling models, tasks dynamically release fix jobs (i.e. 1 starttime, 1 deadline, 1 execution time) In the OASIS task model, a task is one job that changes dynamically → cannot use conventional scheduling algorithms “as is” Definition EDF-Dyn: EDF with dynamic change of deadlines Matthieu Lemerre (CEA LIST) The OASIS model Synchron’08 14 / 35

  25. Optimal scheduling with EDF-dyn Theorem EDF-Dyn is optimal for scheduling OASIS tasks. a c T 1 || a || = 1 . 5 1 3 6 b T 2 || b || = 2 2 5 || c || = 1 0 1 7 Dynamic deadline a b c T 1 deadline=3 a c b T 1 deadline=6 a b a c Matthieu Lemerre (CEA LIST) The OASIS model Synchron’08 14 / 35

  26. Implementation Scheduling decisions have to be made only when The date of an after node is reached An after node is reached A before node is reached Scheduler implementation: Deletion of useless constraints Translation into system calls to the scheduler a b c d e 2 3 4 5 1 a b c d e s = 1 s = 4 e = 2 e = 3 e = 5 e = ... Matthieu Lemerre (CEA LIST) The OASIS model Synchron’08 15 / 35

Recommend

OASIS SB Program Open Season On ramp Overview How to get on OASIS OASIS Program Management Office

OASIS SB Program Open Season On ramp Overview How to get on OASIS OASIS Program Management Office

U.S. General Services Administration OASIS SB Program Open Season On ramp Overview How to get on OASIS OASIS Program Management Office Slide Deck Version: July 10, 2018 1 OASIS and OASIS Small Business OASIS and OASIS Small Business (SB) are

763 views • 41 slides
Joint ICTP-IAEA Essential Knowledge Workshop on Deterministic Safety Analysis and Engineering

Joint ICTP-IAEA Essential Knowledge Workshop on Deterministic Safety Analysis and Engineering

Joint ICTP-IAEA Essential Knowledge Workshop on Deterministic Safety Analysis and Engineering Aspects Important to Safety Trieste,12-23 October 2015 Safety classification of structures, systems and components Marco Gasparini / Bernard Poulat

567 views • 36 slides
Deterministic vs. stochastic models In deterministic models, the output of the model is fully

Deterministic vs. stochastic models In deterministic models, the output of the model is fully

Deterministic vs. stochastic models In deterministic models, the output of the model is fully determined by the parameter values and the initial conditions initial conditions. Stochastic models possess some inherent randomness. The same set

531 views • 12 slides
Joint ICTP-IAEA Essential Knowledge Workshop on Deterministic Safety Analysis and Engineering

Joint ICTP-IAEA Essential Knowledge Workshop on Deterministic Safety Analysis and Engineering

Joint ICTP-IAEA Essential Knowledge Workshop on Deterministic Safety Analysis and Engineering Aspects Important to Safety Trieste,12-23 October 2015 Safety Design Requirements Overview of SSR-2/1 Marco GASPARINI (IAEA Consultant) IAEA

402 views • 26 slides
UBL Update Jon Bosak Sun Microsystems http:// oasis- open.org / OASIS Symposium on the

UBL Update Jon Bosak Sun Microsystems http:// oasis- open.org / OASIS Symposium on the

UBL Update Jon Bosak Sun Microsystems http:// oasis- open.org / OASIS Symposium on the committees/ ubl Future of XML Vocabularies New Orleans, 25 April 2005 The Universal Business Language (UBL) International effort to define a

632 views • 10 slides
Reference Architecture for SOA OASIS Service Oriented Architecture Reference Model TC 1

Reference Architecture for SOA OASIS Service Oriented Architecture Reference Model TC 1

Reference Architecture for SOA OASIS Service Oriented Architecture Reference Model TC 1 Systems and eco- systems Multiple ownership domains No one entity controls everything Parallel development, deployment and usage of services A medium

564 views • 43 slides
and Commissioning Joint ICTP-IAEA Essential Knowledge Workshop on Deterministic Safety Assessment

and Commissioning Joint ICTP-IAEA Essential Knowledge Workshop on Deterministic Safety Assessment

Overview of Preparation for Licensing and Commissioning Joint ICTP-IAEA Essential Knowledge Workshop on Deterministic Safety Assessment and Engineering Aspects Important to Safety Trieste, Italy, 12 - 16 October 2015 Ivica Basic

895 views • 57 slides
Essential Knowledge Workshop on Deterministic Safety Assessment and Engineering Aspects Important

Essential Knowledge Workshop on Deterministic Safety Assessment and Engineering Aspects Important

2740 Activity SMR: Essential Knowledge Workshop on Deterministic Safety Assessment and Engineering Aspects Important to Safety 12 October 2015 - 23 October 2015 Trieste - ITALY International Atomic Energy Agency Final List of Participants

791 views • 12 slides
Deterministic Load Balancing and Dictionaries in the Parallel Disk Model Mette Berger, Esben

Deterministic Load Balancing and Dictionaries in the Parallel Disk Model Mette Berger, Esben

Deterministic Load Balancing and Dictionaries in the Parallel Disk Model Mette Berger, Esben Rune Hansen, Rasmus Pagh, Mihai P atras cu, zi Milan Ru c, and Peter Tiedemann Deterministic Load Balancing and Dictionariesin the Parallel

348 views • 16 slides
Can a Model Checker Generate Tests for Non-Deterministic Systems? Sergiy Boroday, Alexandre

Can a Model Checker Generate Tests for Non-Deterministic Systems? Sergiy Boroday, Alexandre

Can a Model Checker Generate Tests for Non-Deterministic Systems? Sergiy Boroday, Alexandre Petrenko CRIM, Montreal, Canada Roland Groz INPG, France MBT 2007 Outline Motivation Weak and Strong Tests Test Generation Model

802 views • 22 slides
Probability Theory Probability Models for random phenomena Phenomena Non-deterministic

Probability Theory Probability Models for random phenomena Phenomena Non-deterministic

Probability Theory Probability Models for random phenomena Phenomena Non-deterministic Deterministic Deterministic Phenomena There exists a mathematical model that allows perfect prediction the phenomenas outcome.

1.47k views • 113 slides
EQUIPMENT QUALIFICATION Joint ICTP-IAEA Essential Knowledge Workshop on Deterministic Safety

EQUIPMENT QUALIFICATION Joint ICTP-IAEA Essential Knowledge Workshop on Deterministic Safety

EQUIPMENT QUALIFICATION Joint ICTP-IAEA Essential Knowledge Workshop on Deterministic Safety Assessment and Engineering Aspects Important to Safety 12 23 October 2015 Trieste, Italy Ales KARASEK EQUIPMENT QUALIFICATION INTRODUCTION Ales

640 views • 41 slides
Joint ICTP-IAEA Essential Knowledge Workshop on Deterministic Safety Analysis and Engineering

Joint ICTP-IAEA Essential Knowledge Workshop on Deterministic Safety Analysis and Engineering

Joint ICTP-IAEA Essential Knowledge Workshop on Deterministic Safety Analysis and Engineering Aspects Important to Safety Trieste,12-23 October 2015 Introduction to the Assessment of Engineering Aspects Marco Gasparini IAEA International

357 views • 33 slides
Limit-Deterministic Bchi Automata for Probabilistic Model Checking Jan Ketnsk Javier

Limit-Deterministic Bchi Automata for Probabilistic Model Checking Jan Ketnsk Javier

Limit-Deterministic Bchi Automata for Probabilistic Model Checking Jan Ketnsk Javier Esparza Salomon Sickert Stefan Jaax Technische Universitt Mnchen PROBABILISTIC MODEL CHECKING Markov Decision Process (MDP) . At each state,

1.31k views • 100 slides
EU PROGRAMME CARE-HIPPI The developpement of the 1MW 704 MHz FPC started with EU R&amp;D programme

EU PROGRAMME CARE-HIPPI The developpement of the 1MW 704 MHz FPC started with EU R&amp;D programme

PIP-II WORKSHOP CEA COUPLERS G. Devanz EU PROGRAMME CARE-HIPPI The developpement of the 1MW 704 MHz FPC started with EU R&amp;D programme CARE directed towards high power pulsed proton accelerators with 10% duty cycle KEK-B, SNS type coupler

689 views • 32 slides
Limit-Deterministic Bchi Automata for Probabilistic Model Checking Javier Esparza Jan K

Limit-Deterministic Bchi Automata for Probabilistic Model Checking Javier Esparza Jan K

Limit-Deterministic Bchi Automata for Probabilistic Model Checking Javier Esparza Jan K etnsk Stefan Jaax Salomon Sickert Technische Universitt Mnchen PROBABILISTIC MODEL CHECKING Markov Decision Process (MDP) . At each

430 views • 23 slides
Training Deterministic Parsers with Non-Deterministic Oracles by Yoav Goldberg and Joakim

Training Deterministic Parsers with Non-Deterministic Oracles by Yoav Goldberg and Joakim

Training Deterministic Parsers with Non-Deterministic Oracles by Yoav Goldberg and Joakim Nivre, 2013 Seminarvortrag Pius Meinert July 13, 2018 Training Deterministic Parsers with Non-Deterministic Oracles root PRD SBJ DOBJ IOBJ

842 views • 47 slides
Session Outline n PIEs in IAEA SS o Regulatory perspective o Design perspective o Safety

Session Outline n PIEs in IAEA SS o Regulatory perspective o Design perspective o Safety

IAEA Safety Assessment Education and Training (SAET) Programme Joint ICTP-IAEA Essential Knowledge Workshop on Deterministic Safety Assessment and Engineering Aspects Important to Safety Postulated Initiating Events Marin Kri tof, NNEES

550 views • 30 slides
Network Integration Transmission Service on OASIS (NITS on OASIS) Project 2016 NETWORK OPERATING

Network Integration Transmission Service on OASIS (NITS on OASIS) Project 2016 NETWORK OPERATING

B O N N E V I L L E P O W E R A D M I N I S T R A T I O N Network Integration Transmission Service on OASIS (NITS on OASIS)

215 views • 9 slides
Session Outline n Acceptance criteria in overall safety assessment process n Definition of

Session Outline n Acceptance criteria in overall safety assessment process n Definition of

IAEA Safety Assessment Education and Training (SAET) Programme Joint ICTP-IAEA Essential Knowledge Workshop on Deterministic Safety Assessment and Engineering Aspects Important to Safety Acceptance Criteria in DBA Marin Kri tof, NNEES

355 views • 34 slides
Safety Documentation and Format and Content of SAR Marin Kri tof, NNEES Content n Plant

Safety Documentation and Format and Content of SAR Marin Kri tof, NNEES Content n Plant

IAEA Safety Assessment Education and Training (SAET) Programme Joint ICTP-IAEA Essential Knowledge Workshop on Deterministic Safety Assessment and Engineering Aspects Important to Safety Safety Documentation and Format and Content of SAR Marin

632 views • 46 slides
Work Health &amp; Safety Legislation Model Work Health and Safety (WHS) Legislation Model

Work Health &amp; Safety Legislation Model Work Health and Safety (WHS) Legislation Model

Presentation by Don Pitt, Managing Director Work Health &amp; Safety Legislation Model Work Health and Safety (WHS) Legislation Model WHS Act Safe Work Australia Model WHS Commonwealth, Regulations states, and territories

1.39k views • 110 slides
Customer Webinar / OASIS Application Updates Neela Alla &amp; Prince Philip IT Product Management

Customer Webinar / OASIS Application Updates Neela Alla &amp; Prince Philip IT Product Management

Customer Webinar / OASIS Application Updates Neela Alla &amp; Prince Philip IT Product Management Thursday, March 28 th , 2019 ISO Public ISO Public Agenda Introduction Recent OASIS UI Upgrade OASIS Production Data Retrieval

240 views • 8 slides
Governance in the Development of an OASIS Standard for Business Documents Jon Bosak, Sun

Governance in the Development of an OASIS Standard for Business Documents Jon Bosak, Sun

Governance in the Development of an OASIS Standard for Business Documents Jon Bosak, Sun Microsystems http:// Ontolog Forum &amp; Collaborative oasis- open.org / Expedition Workshop committees/ ubl National Science Foundation Ballston,

424 views • 23 slides

More recommend