RTE Configuration Exploration Techniques ECU - autosar

RTE-Configuration: Seamless Exploration Techniques for AUTOSAR ECUs
1
Presentation title l Author l Department l 13 February 2008 l Strictly confidential
© ETAS GmbH 2008. All rights reserved. The names and designations used in this document are trademarks or brands belonging to their respective owners.

2
Outline
• Introduction
• Exploration Techniques
• Conclusion
Presentation title l Author l Department l 13 February 2008 l Strictly confidential
© ETAS GmbH 2008. All rights reserved. The names and designations used in this document are trademarks or brands belonging to their respective owners.

3
Model-Based-Design & Code-Generation
Specification of
Software Functions
Simulation
Simulation System
Validation of
Software Functions
Rapid Prototyping
Specification of
Software Functions
Validation of
Software Functions
Experiment Hardware
Design & Implementation
of Software Functions
• One control-algorithm model is used for
• PC-simulation with a vehicle-model
• Rapid-Prototyping in the real vehicle
• Automatic code-generation for the
production ECU
Production Code
Generation
Electronic
Control
Unit
Verification and Validation of
Software Functions
• To realize model-based design, tools like
ASCET are based on
• a meta-model
• an execution scheme
• ASCET Production code generator
• has been used to generate code for
more than 50 millions production
vehicles
• Is certifiable according IEC 61508 (fit for
purpose)
Presentation title l Author l Department l 13 February 2008 l Strictly confidential
© ETAS GmbH 2008. All rights reserved. The names and designations used in this document are trademarks or brands belonging to their respective owners.

4
AUTOSAR Concepts & Code-Generation
Specification of
Software Functions
Simulation
Simulation System
Validation of
Software Functions
Rapid Prototyping
Specification of
Software Functions
Validation of
Software Functions
Experiment Hardware
• RTE configuration & codegeneration
is of paramount
importance
Production Production Code Code
Generation
Generation
Design & Implementation
of Software Functions
Electronic
Control
Unit
• code-generation is state-of-the-art
• What about appropriate RTEgeneration?
Verification and Validation of
Software Functions
New
concepts
Industry-wide
consolidation
of ‚existing‘
basic software
designs
Presentation title l Author l Department l 13 February 2008 l Strictly confidential
© ETAS GmbH 2008. All rights reserved. The names and designations used in this document are trademarks or brands belonging to their respective owners.
Memory
Services
Exchange
Formats
Input
Templates
Methodology
Mode
Management
Diagnostics
Meta Model
Virtual Function
Bus (VFB)
RunTime
Environment
OS Kernel
ECU
µController
Abstraction
Abstraction
Drivers
Network
Management
Gateway
Configuration
Concept
Bus systems
Complex
Drivers
• AUTOSAR proposes new concepts
like
• Meta-model
• VFB & RTE
• Configuration concepts
• …
Error
Handling
Comm.
Services

5
AUTOSAR Concepts & Code-Generation
Specification of
Software Functions
Simulation
Simulation System
Validation of
Software Functions
Rapid Prototyping
Specification of
Software Functions
Validation of
Software Functions
Experiment Hardware
Production Production Code Code
Generation
Generation
Design & Implementation
of Software Functions
Electronic
Control
Unit
Verification and Validation of
Software Functions
• On the one hand, evaluation projects * have shown that model-based
designed control-algorithms can easily be mapped to a RTE-based
software architecture
• On the other hand, there are a lot of RTE-configuration possibilities.
• Since RTE-configuration is interrelated with control-algorithm
modeling, re-modeling of the control-algorithm can improve RTEperformance
of an ECU.
* example shown on the 5 th PM-Conference
Presentation title l Author l Department l 13 February 2008 l Strictly confidential
© ETAS GmbH 2008. All rights reserved. The names and designations used in this document are trademarks or brands belonging to their respective owners.

6
Outline
• Introduction
• Exploration Techniques
• Conclusion
Presentation title l Author l Department l 13 February 2008 l Strictly confidential
© ETAS GmbH 2008. All rights reserved. The names and designations used in this document are trademarks or brands belonging to their respective owners.

7
RTE-Configuration Exploration Approaches
a
b
Exploration Type A Exploration Type B
SWC
Runnable
Entity
Resource Consumption of
a Runnable Entity
x
y
• For exploration types A and B two different exploration approaches
can be used
1. Analytical: Toolsupport - ASCET, i-SOLAR, aiT, SymTA/S
2. Measurement: Toolsupport - ASCET, i-SOLAR, RTA-Trace
Presentation title l Author l Department l 13 February 2008 l Strictly confidential
© ETAS GmbH 2008. All rights reserved. The names and designations used in this document are trademarks or brands belonging to their respective owners.
AUTOSAR
SW-C
1
ECU I
RTE
Basic
Software
AUTOSAR
SW-C
3
ECU II
AUTOSAR
SW-C
2
RTE
Basic
Software
...
Gateway
ECU m
AUTOSAR
SW-C
n
RTE
Basic
Software
Signal Delay of several
scheduled SW-Components

8
Simple Example of RTE-Configuration (ASCET V6.0)
• Simple-Control-Algorithm
a
• Different RTE-Configuration
b
c
• AUTOSAR Software Component
SimpleSWC
Implicit Communication Explicit Communication
Presentation title l Author l Department l 13 February 2008 l Strictly confidential
© ETAS GmbH 2008. All rights reserved. The names and designations used in this document are trademarks or brands belonging to their respective owners.
a
b:=a*(a+1)
c:=a+1
b
c

9
Result of Code-Generation
• Generated C-Code (ASCET V6.0)
• 3x read from “a”
Implicit Communication Explicit Communication
• 1x write to “b” and “c” each
• 1x read von “a” to local variable
• 1x write to “b” and “c” each
Presentation title l Author l Department l 13 February 2008 l Strictly confidential
© ETAS GmbH 2008. All rights reserved. The names and designations used in this document are trademarks or brands belonging to their respective owners.
a
SimpleSWC
b:=a*(a+1)
c:=a+1
b
c

Analytical Exploration of RTE-Configuration
• Analysis of execution time & stack consumption (AbsInt aiT & StackAnalyzer)
• Requires target code-generation of runnable-entities (ASCET)
• RTE-configuration in contract-phase (RTA-RTE)
10
Implicit Communication Explicit Communication
Call Graph and WCET (aiT) Call Graph and WCET (aiT)
• Execution time: 1650 cycles (33 us) (WCET)
• Stack: 0 byte User Stack
• Execution time: 1598 cycles (31 us 950 ns)
(WCET)
• Stack: 8 byte User Stack by local variable (8
byte)
Presentation title l Author l Department l 13 February 2008 l Strictly confidential
© ETAS GmbH 2008. All rights reserved. The names and designations used in this document are trademarks or brands belonging to their respective owners.
a
SimpleSWC
b:=a*(a+1)
c:=a+1
b
c

Exploration of RTE-Configuration by Measurement
• Measurement of execution time & stack consumption (RTA-Trace)
• Requires target code-generation and ECU-integration (ASCET, i-SOLAR)
• RTE-configuration in RTE-phase
11
Implicit Communication Explicit Communication
Measured Exectution Time
(RTA-Trace)
• Execution time: 26 us 340 ns
• Resource consumption at the beginning of task
execution
• Interrupt locking before execution of runnables
• No additional stack per runnable.
Measured Execution Time
(RTA-Trace)
• Execution time: 25 us 980 ns
• No additional resource consumption at the
beginning of task execution
• Additional stack-consumption (8 byte)
• Interrupt locking during atomic data-access
within the RTE
Presentation title l Author l Department l 13 February 2008 l Strictly confidential
© ETAS GmbH 2008. All rights reserved. The names and designations used in this document are trademarks or brands belonging to their respective owners.
a
SimpleSWC
b:=a*(a+1)
c:=a+1
b
c

Analytical Exploration of RTE-Configuration
• Analytical schedule validation
• Response-times of OS-tasks and network messages
• Response-times of signal-path
• Identification of bottlenecks
12
SWC1
ECU
RTE
Basic
Software
SWC2
Scheduling-Analysis (SymTA/S)
Presentation title l Author l Department l 13 February 2008 l Strictly confidential
© ETAS GmbH 2008. All rights reserved. The names and designations used in this document are trademarks or brands belonging to their respective owners.
SWC1
ECU
RTE
SWC2
Basic Software

Exploration of RTE-Configuration by Measurement
• Measured schedule validation
• Execution time
• Stack consumption
• Correct Integration
• Optimization
13
SWC1
ECU
RTE
Basic
Software
SWC2
Measurement of Execution-time (RTA-TRACE)
Presentation title l Author l Department l 13 February 2008 l Strictly confidential
© ETAS GmbH 2008. All rights reserved. The names and designations used in this document are trademarks or brands belonging to their respective owners.
SWC1
ECU
RTE
SWC2
Basic Software

ECU Integration: Runnable to Task-Mapping (Execution Time)
14
Task Execution Time Consumption
0
1
Switch from
Explicit to Implicit
Communication
Number of Runnable Entities per Task
• Typically, a runnable entity has RTE data-access via its port-prototypes.
• RTE updates the original data value in its buffer.
• RTE copies data to runnable buffer (explicit) or task-buffer (implicit)
• RTE updates task buffer update once at start of the task (implicit),
• Runnable buffer update occurs at every read access (explicit), sometimes even
of the same data-element in different runnable entities of the same task.
Presentation title l Author l Department l 13 February 2008 l Strictly confidential
© ETAS GmbH 2008. All rights reserved. The names and designations used in this document are trademarks or brands belonging to their respective owners.
Explicit Communication
Implicit Communication

ECU Integration: Runnable to Task-Mapping (Memory Consumption)
15
0
Memory Consumption
1
Implicit: sizeof(Task-Buffer) = ∑(DataElementPrototypes per Runnable)
Explicit: sizeof(RunnableStak) = max(DataElemenProtoypes per Runnable)
Switch from
Explicit to Implicit
Communication?
Implicit Communication
Explicit Communication
Number of Runnable Entities per Task
• Typically, a runnable entity has RTE data-access via its port-prototypes.
• The task buffer (RAM) grows with the number of runnable entities (implicit).
• It is unlikely that one runnable needs access to all data-elements of all
runnable entities mapped to that task (Stack).
Presentation title l Author l Department l 13 February 2008 l Strictly confidential
© ETAS GmbH 2008. All rights reserved. The names and designations used in this document are trademarks or brands belonging to their respective owners.

RTE-Configuration Exploration Techniques at one Glance
16
Ad-hoc solution RTE solution I RTE solution II
• Analytical resource analysis for atomic software components
explore the internal structuring of runnable entities.
• Analytical schedule analysis gives feedback on valid data-flows.
• Analytical resource analysis of integrated ECUs gives feedback on
the RTE-communication mechanism.
• Measurement & Tracing of integrated ECUs provide mean resource
consumption values, but RTE-configuration exploration is more
difficult.
Presentation title l Author l Department l 13 February 2008 l Strictly confidential
© ETAS GmbH 2008. All rights reserved. The names and designations used in this document are trademarks or brands belonging to their respective owners.

Outline
17
• Introduction
• Exploration Techniques
• Conclusion
Presentation title l Author l Department l 13 February 2008 l Strictly confidential
© ETAS GmbH 2008. All rights reserved. The names and designations used in this document are trademarks or brands belonging to their respective owners.

Conclusion
• ASCET allows an easy migration of hierarchal structured control
algorithms to AUTOSAR software components in an ad-hoc manner as
well as in an optimized way.
• To reveal optimization opportunities exploration of the RTEconfiguration
is necessary.
• RTE-Configurations can be easily explored by coupling of ASCET with
RTA-RTE, aiT, SymTA/S and RTA-TRACE.
• Timing Annotations as currently developed in the Timing-Team of WP
II-1.2 will facilitate tool-supported RTE-configuration exploration
further.
• As a result, AUTOSAR ECUs will run optimized RTEs with validated OSschedules
18
Presentation title l Author l Department l 13 February 2008 l Strictly confidential
© ETAS GmbH 2008. All rights reserved. The names and designations used in this document are trademarks or brands belonging to their respective owners.