Architecture Modeling - SPES 2020

More documents

Recommendations

Info

Architecture Modeling (Vehicle Longitudinal Control) that receives the acceleration commands either produced by the FollowCtrl component or by the SpeedCtrl component and processes them. Which value is forwarded is determined by the Arbitration component based on the current overall state of the ACC (not shown in the figure). Now for the FollowCtrl component suppose there exist two contracts C1 and C11, which are defined as follows: C1 strong assumption always (0 ≤ speed ≤ 70 m s ) weak assumption true guarantee always (−3.0 m s2 ≤ accel ≤ 3.0 m s2 ) C11 strong assumption always (0 ≤ speed ≤ 70 m s ) weak assumption always (0 ≤ speed ≤ 50 m s ) guarantee always (−2.5 m s2 ≤ accel ≤ 2.5 m s2 ) Thus, the component FollowCtrl is designed to operate at travelling speeds up to 70 m s and guarantees it will issue acceleration commands in the value range [−3.0 m s2 ,3.0 m s2 ]. It may only be integrated in a context, where its environment ensures the strong assumption. Contract C11 however adds a weak assumption that actually confines the strong assumption by and guarantess acceleration commands in the value range requiring a maximum speed of 50 m s [−2.5 m s2 ,2.5 m s 2 ]. For the integration of the FollowCtrl component that means, if its context can even ensure the weak assumption, then the smaller range specified in the guarantee of C11 may be relied on when connecting FollowCtrl to the Arbitration and Vlc components. In that case both components can be more restrictive with regard to its own strong and weak assumptions as they only need to deal with a smaller range of acceleration values. Note that actually the same range of acceleration values must be assumed on the port named crsCtrlAccel of the Arbitration component such that it can also guarentee to provide that value range on its output port accel. 2.3.1.4 Requirement Specification Language The semantics of contracts and HRC provide the formal basis for reasoning about the relation of specifications stated as contracts and about the composition of HRCs and their contracts. With the requirements specification language (RSL)(↑) described in Section 6.1 we provide syntax and semantics of a pattern-based language, which can be used to define the aspect specifications of an HRC. An instance of a pattern of the RSL can be used to specify the assumption (strong and weak) as well as the guarantee parts of a contract. PortSpec1 e1 ComponentA p1 p2 p3 refers to C1 refers to Figure 2.8: Linking contracts and components PortSpec2 Suppose an HRC has been defined as sketched in Figure 2.8. It has two ports p1 and p2, which are typed by two port specifications PortSpec1, PortSpec2 respectively. Now the designer can select a pattern that suits the aspect, for which a contract shall be specified. As an example assume that a latency of 10ms is to be specified from the time data arrives at port p1 to the time data is provided at port p2. Such a specification f1 12/ 156
Architecture Modeling can usually only be realized by making assumptions about the frequency at which data arrives at the input port p1. Thus for the real-time aspect of the HRC a contract might be: C1 strong assumption p1.e1 occurs each 10ms with jitter 1ms weak assumption true guarantee delay between p1.e1 and p2.f1 within [0ms,10ms] The different patterns, which can be instantiated in order to specify the assumptions and guarantees of a contract, are defined in Section 6.1.1. Each pattern belongs to a category (functional patterns, real-time patterns), which is reflected by its name. For example all patterns with names prefixed by the letter F are functional patterns and the prefix R denotes a real-time pattern. The category of a pattern gives a first hint for the specification of which aspect it may be suited best. With regard to the example contract C1 an instance of the pattern R2 has been used for the strong assumption and an instance of the pattern R3 for the guarantee. The concrete number of the pattern does not need to be specified, as it can be automatically derived from the syntax of the expression. 2.3.2 Hierarchy and Composition When a component is used as part(↑) in the context of another component, its ports(↑) can be linked to other parts forming a composition of components. That composition is again a component, whose behavior is given by the behavior of its constituting parts. Thus components can support both top-down as well as bottom-up design approaches and mixed forms thereof. 2.3.2.1 Hierarchy ComponentC part2:ComponentB component instance role Ports part1:ComponentA ComponentA C1 aspect specification aspect realization Figure 2.9: Hierarchy of components component specification The component model of HRC supports the type/part concept found in many other modeling languages, e. g. the UML [41]. Figure 2.9 shows an illustration of that concept. An HRC ComponentA is modelled with its ports and contracts that specify the behavior of that HRC under the different aspects. That HRC can be used in the context of other HRCs playing the role of a part in that context. A part denotes component instances that the surrounding HRC owns by composition. In the example, the HRC ComponentA is used as part with the role name part1 in the context of the HRC ComponentC. The aspect specifications characterized by contracts that are linked to ComponentA and corresponding realizations are valid for part1 as well. This holds for any context, in which ComponentA is used as a part. The type/part concept results in a possibly deeply nested hierarchy of components ultimately leading to some top-level component specification. Such a hierarchy of HRCs can be con- 13/ 156
Page 1 and 2: Architecture Modeling ∗ Andreas B
Page 3 and 4: Contents 1 Introduction 1 2 Quick-T
Page 5 and 6: 1 Introduction This document propos
Page 7 and 8: Architecture Modeling allowing to m
Page 9 and 10: Architecture Modeling creating a vi
Page 11 and 12: Architecture Modeling the design it
Page 13 and 14: Architecture Modeling of the logica
Page 15: Architecture Modeling realization o
Page 19 and 20: 3 The Architecture Meta-Model In Se
Page 21 and 22: Abstraction-Levels (detail increase
Page 23 and 24: 3.2.2 Functional Perspective Archit
Page 25 and 26: Architecture Modeling The semantics
Page 27 and 28: Architecture Modeling expressed by
Page 29 and 30: Architecture Modeling computing cap
Page 31 and 32: 3.2.5 Geometrical Perspective Archi
Page 33 and 34: ShapeCompositionOperator intersecti
Page 35 and 36: Architecture Modeling The constrain
Page 37 and 38: Architecture Modeling of particular
Page 39 and 40: Architecture Modeling Shape that de
Page 41 and 42: Architecture Modeling Conjugation o
Page 43 and 44: RichComponent Architecture Modeling
Page 45 and 46: MultiplicityElement +part 0..* Rich
Page 47 and 48: ComponentC Architecture Modeling pa
Page 49 and 50: 4 Steps in Component-Based Design T
Page 51 and 52: Architecture Modeling Assume/guaran
Page 53 and 54: Architecture Modeling When specifyi
Page 55 and 56: Architecture Modeling next selectio
Page 57 and 58: Architecture Modeling ports must ha
Page 59 and 60: established if (and only if): Archi
Page 61 and 62: 12°C < tempSelect < 35°C actTemp
Page 63 and 64: Architecture Modeling The component
Page 65 and 66: Architecture Modeling 4.3.2 Establi
Page 67 and 68:
Architecture Modeling a mapping is
Page 69 and 70:
Architecture Modeling Another impor
Page 71 and 72:
5 Using the Architecture Meta-Model
Page 73 and 74:
Architecture Modeling Design proces
Page 75 and 76:
Architecture Modeling abstraction l
Page 77 and 78:
Pwr1 Pedal_Pos1 Pwr2 Pedal_Pos2 CMD
Page 79 and 80:
Architecture Modeling Figure 5.4: O
Page 81 and 82:
Architecture Modeling Figure 5.7: L
Page 83 and 84:
Architecture Modeling Figure 5.9: T
Page 85 and 86:
Architecture Modeling Figure 5.12:
Page 87 and 88:
Page 89 and 90:
Architecture Modeling However this
Page 91 and 92:
Architecture Modeling The considera
Page 93 and 94:
Page 95 and 96:
Page 97 and 98:
Architecture Modeling tasks Command
Page 99 and 100:
Architecture Modeling of the V, suc
Page 101 and 102:
Architecture Modeling thus decorate
Page 103 and 104:
Architecture Modeling In summary, P
Page 105 and 106:
Architecture Modeling OEMs are incr
Page 107 and 108:
Architecture Modeling provide effec
Page 109 and 110:
Page 111 and 112:
Architecture Modeling patterns, cap
Page 113 and 114:
Architecture Modeling 6.1 Syntax an
Page 115 and 116:
6.1.1.1.1 Attribuute Definit tion a
Page 117 and 118:
Constrrain Eventts with Co ondition
Page 119 and 120:
These events used in the “and the
Page 121 and 122:
Formalization: whenever StartButton
Page 123 and 124:
Architecture Modeling Basic bloock
Page 125 and 126:
6.1.1.1.1.3 Conditions Conditions c
Page 127 and 128:
6.1.1.1.2.2 Seammless Con ncatenati
Page 129 and 130:
e3 && (clk==0) e1 idle pre e1 idle
Page 131 and 132:
Pattern whenever event occurs condi
Page 133 and 134:
If the brake force is above 80% for
Page 135 and 136:
Pattern S3: Failure shall not be ca
Page 137 and 138:
Pattern S9: failureCondition failur
Page 139 and 140:
Pattern R2: Event occurs each perio
Page 141 and 142:
idle e1 |clk:=0 e2 && (l
Page 143 and 144:
The function : allocates a singl
Page 145 and 146:
Examplees of clocks: • Run: {c=0@
Page 147 and 148:
Architecture Modeling 1. For σ ∈
Page 149 and 150:
Architecture Modeling Traces accord
Page 151 and 152:
Architecture Modeling Definition 6.
Page 153 and 154:
Architecture Modeling the one given
Page 155 and 156:
Architecture Modeling Decomposition
Page 157 and 158:
Bibliography [1] ARINC 653 - Avioni
Page 159 and 160:
Architecture Modeling [26] Holger G
show all

Architecture Modeling - SPES 2020

Create successful ePaper yourself

Delete template?

Save as template?