TIMES - A Tool for Modelling and Implementation of ... - CiteSeerX
Recommend Documents
Abstract. The paper presents Save-IDE, an Integrated Develop- ... The pa- per briefly describes these development phases and the tools .... desktop computer. 3.
RENEW - REcoverable NEtwork of Workstations, a run- .... up-call] void renew recvMesgR(int source, char *ckp buf, char *head, int h ..... Research Center [29].
as an effective support tool for distance learning. The ... programming problems, the problem generator, the ... Keywords: Computer aided education, WWW,.
Abstract Times is a tool suite designed mainly for symbolic schedu- lability analysis and synthesis of executable code with predictable be- haviours for real-time ...
Feb 15, 2018 - To cite this article: Linda M. Rose, Catherine A. A. Beauchemin & W. Patrick Neumann (2018). Modelling endurance and resumption times for ...
C++Builder to generate a dynamic link library (DLL). SANBuilder will load this DLL ..... Conf. on App. and Theory of Petri Nets (LNCS 2679),. Springer, 482-505.
Models are defined as groups of blended primitives based on skeletons. .... from the surface of a sphere, such that the point is warped in the direction of the center of the .... scale and shear have been implemented as a call with the following ...
ABSTRACT. This paper describes a software tool that has been developed to help students learn to draw entity-relationship diagrams in the context of data ...
Postbus 94249, â NL-1090 GE Amsterdam, The Netherlands email: [email protected] ... Adapting the code to reproduce observed telluric lines requires additional capabilities: (d) ... eso.org/sci/facilities/paranal/sciops/CALISTA/pwv/data.html).
Digital document (pdf). EDITOR. Scott Brainerd. QUALITY CONTROLLED BY. Erik Framstad. SIGNATURE OF RESPONSIBLE PERSON. Research director Erik ...
It also highlights the impact of a Maritime Patrol Aircraft radar antenna pattern ... may be met by a Long-Range Surface Surveillance (LSS) mode that meets a ...
Spec Explorer[2] is a software modelling and testing tool from Microsoft Re- search. Formal ... cases in âlock-stepsâ on both the model and the implementation, and comparing their results. ... An extensive model can be found in www.fe.up.pt/Ëapa
rectal surgery that met the requirements of a good assess- ment tool. Methods A generic .... The Statistical Package for the Social Sciences software. (Version ...
Dec 17, 2012 - an old context and urban structure with 61% adobe build- ings, which makes it too ..... building feature classes. It generates a new numerical field ..... ples and practice for local government, Washington, DC: Inter- national City ...
conforming MAS frameworks, which have now reached a high level of maturity. ... frameworks include: ZEUS [15] is a Java based open-source project, developed ..... Schema's main content is the list of states, which themselves contain the ...
to be able to monitor the performance of the site, in or d er to un d erstan d the bottlenec ..... Apache: A pache is a very popular W eb server that supports several ...
( e.g., slot in a T C P listen queue, http threa d) . T he w or k ... T his paper presents Profit , a ne w tool for pro fi ling the performance of e-commerce sites. P ro fi t ...
modelling tool in the context of business process modelling. The prototype ... domain. One of the goals of domain specific-modelling is the generation of software.
beyond upper secondary education is necessary if .... Function is something about a formula, which ... teachers of mathematics, physics, and mathematics.
Marta Navarro Hernandeza, Rafael Molinab, Miguel Martin Monerrisc, Jose M. Hernandez Torresa, Aina Hernández Mascarella a Tecnoma S. A. C/ Antiga ...
http://dx.doi.org/10.1016/j.wear.2005.02.044. 1. School of ... The new tool wear rate model is also evaluated by the cutting tests. 2. Tool flank wear rate ... and workpiece in the form of contact stress and cutting temperature. The interactions in .
Email: Valerie.Bertin@st. ... coder, when compressing a B or a P frame, needs access not only to the ... coder algorithms where a video sequence is divided into.
Jun 14, 2007 - gas turbine and aircraft performance, estimation of engine weight, .... These TERA software can then be applied to the optimisation of one or ...
TIMES - A Tool for Modelling and Implementation of ... - CiteSeerX
Abstract. Times is a new modelling, scheduling, and code-generation tool for embedded real-time systems modelled as timed automata extended with sporadic,.
TIMES - A Tool for Modelling and Implementation of Embedded Systems
Tobias Amnell, Elena Fersman, Leonid Mokrushin, Paul Pettersson, and Wang Yi? Uppsala University, Sweden
Abstract.
Times is a new modelling, scheduling, and code-generation tool for
embedded real-time systems modelled as timed automata extended with sporadic,
periodic, non-preemptive, or preemptive asynchronous processes. It provides a graphical interface for editing and simulation, and an engine for schedulability analysis.
1
Introduction
Times is a modelling and schedulability analysis tool for embedded real-time systems, developed at Uppsala University in 2001. It is appropriate for systems that can be described as a set of tasks which are triggered periodically or sporadically by time or external events. The main features of Times are: { A graphical editor for timed automata extended with tasks [1], which allows the user to model a system and the abstract behaviour of its environment In addition the user may specify a set of preemptive or non-preemtive tasks with parameters such as (relative) deadline, execution time, priority, etc. { A simulator, in which the user can validate the dynamic behaviour of the system and see how the tasks execute according to the task parameters and a given scheduling policy. The simulator shows a graphical representation of the generated trace showing the time points when the tasks are released, invoked, suspended, resumed, and completed. { A veri er for schedulability analysis, which is used to check if all reachable states of the complete system are schedulable that is, all task instances meet their deadlines. A symbolic algorithm has been developed based on the DBM techniques and implemented based on the veri er of the Uppaal tool [2]. { A code generator for automatic synthesis of C-code on LegoOS platform from the model. If the automata model is schedulable according to the schedulability analyser the execution of the generated code will meet all the timing constraints speci ed in the model and the tasks. An screen-shot of the Times tool is shown in Fig. 1. In section 3 we describe the tool and its main functionalities in more details. The modelling language and the theoretical foundation of Times is based on the model of timed automata with tasks, described in the following section. ? Corresponding author: Wang Yi, Department of Information Technology, Uppsala University, Box 325, 751 05, Uppsala, Sweden. Email: [email protected]
Fig. 1. Screen-shot of the
2
Times tool.
Input Language
The core of the input language of Times is timed automata with real time tasks (TAT), described in details in [1] included in this volume, with one major addition that shared variables between automata and tasks are allowed. Here we give a brief introduction to the model. A TAT is a timed automaton extended with tasks triggered by events. A task is an executable program (written in a programming language e.g. C) characterized by its worst execution time and deadline, and possibly other parameters such as priorities etc. for scheduling. A task may update a set of variables using assignments in the form x := E where x is a variable and E is an expression (computed by the task and the value of E is returned when the task is nished). The variables may also be changed and tested by an automaton. Intuitively an edge leading to a location in the automaton denotes an event triggering the task, and the guard (clock constraints) on the transition speci es the possible arrival times of the event. This allows us to describe concurrency and synchronization, and real time tasks which may be periodic, sporadic, preemptive and (or) non-preemptive, with or without precedence constraints. An automaton is schedulable if there exists a (preemptive or non-preemptive) scheduling strategy such that all possible sequences of events accepted by the automaton are schedulable in the sense that all associated tasks can be computed within their deadlines. Semantically, an extended timed automaton may perform two types of transitions just as standard timed automata. But the di erence is that delay transitions correspond to the execution of running tasks with highest priority (or earliest deadline) and idling for the other tasks waiting to run. Discrete transitions corresponds to the arrival of new task instances. Whenever a task is triggered, it will be put in a task queue for execution
(corresponding to the ready queue in operating systems). Thus there may be a number of processes (released tasks) running logically in parallel during the execution of an automaton. The scheduling problem of TAT is to verify that all released tasks are guaranteed to always meet their deadlines when executed according to a given scheduling policy. In Times the analysis is performed by transforming a TAT system into ordinary timed automata extended with subtraction operations on clocks, and encoding the schedulability problem to a reachability problem as described in [1].
3
Tool Overview
An overview of the Times tool is shown in Fig. 2. The tool is divided in three parts: a system speci cation part, a system analysis part, and a code generator1. In the system speci cation part, the user models a system to be analysed. A system speci cation in Times consists of three parts: the control automata modelled as a network of timed automata extended with tasks [1], a task table with information about the processes triggered (released) when the control automata changes location, and a scheduling policy. The System Editor tool, shown in Fig. 1, is a an editor for drawing the control automata of the system model. It also provides a table for de ning the task parameters. The task parameters currently supported are: (relative) deadline, execution time, period, priority, a reference to the task code, and a eld indicating the task behaviour. A task has one of the following three behaviours: \S" for sporadic, \TP" for temporarily periodic, and \P" for periodic. The currently supported scheduling polices are: rst-come rst-served, xed priority (i.e. according to the priorities assigned in the task table), rate monotonic, deadline monotonic, and earliest-deadline rst. All polices can be either preemptive or non-preemptive. 1
The components indicated with dashed lines in Fig. 2 are planed extension not yet included.
The output of the System Editor is an XML representation of the control automata. The information from the task table and the scheduling policy, are used by the Scheduler Generator to generate a scheduler automaton that is composed in parallel with the controller automata to ensure that the system behaves according to the scheduling policy and the task parameters. If the scheduling policy is non-preemptive, the scheduler automaton is an ordinary timed automaton. If the scheduling policy is preemptive, the scheduler automaton is modelled as a variant of timed automata in which clock variables may be updated by subtractions. For more information about how to solve scheduling problems of timed automata with tasks using timed automata, see [1]. The parallel composition of the control automata and the scheduler automaton is used as input to the System Analyser that consist of two main components: a Simulator, and a Schedule Analyser. In the Simulator the user may debug the system by exploring the dynamic behaviour of the system model and observe how the tasks execute according to the chosen scheduling policy. Screen-shots of the Simulator are shown in Fig. 1 and 4. As shown, the Simulator displays a diagram with n + 1 lines, where n is the number of tasks. On the upper line, it is indicated in blue (or black) when no task is executing. The lower n lines are associated with one task each, and used to show in red (or gray) when the corresponding task is executing. As time progresses the diagram grows to the right (i.e. the time line goes from left to right). Note that at any moment in time either, one or zero tasks are executing, or a switch takes place. From the System Analyser it is also possible to invoke the Schedule Analyser that performs schedulability analysis of the system. The analysis is performed by rephrasing scheduling to a reachability problem that is solved with an extended version of the veri er of the Uppaal tool [2]. In case the output of the analysis is negative, the analyser generates a trace of the system that ends in a state in which one of the system task fails to meet its deadline. The Code Generator of Times uses the control automata and the task programs to synthesise executable C-code. Currently the only supported platform is the LegOS operating system. Support for other platforms will be included in future versions.
4
Example: Box Sorter
In this section, we describe how Times is applied to the box sorter example of [2]. The system sorts red and black boxes arriving on a belt by kicking the black boxes of the belt. The physical components are the feed belt, a light sensor, and a kick-o arm. The programs controlling the feed belt and the arm are modelled using two timed automata with tasks, as shown in Fig. 3. The tasks of the automaton in Fig. 3(a) uses a global array named pos to store the positions of the black boxes on the belt. An initial assignment of the array is done in the task InitBelt. The tasks UpdatePositionsA and UpdatePositionsB update the array (every 25 ms) by decrementing the elements (with non-negative values) at every task execution. When the light sensor senses a black box on the belt, the automaton changes control to location NOP and eventually (after 25 ms) releases the UpdatePositionsB task. The new box is inserted in the pos array by the task BoxAtStart when the end of the box has passed the light sensor. The automaton in Fig. 3(b) controls the kick-o arm. It is initialised by task InitArm and whenever pos[0] is zero, indicating that a black box on the belt is at the position
Fig. 3. The two Control Automata of the Box Sorter.
of the arm, the arm moves forward and backward, implemented by the tasks Forward and Backward, kicking the box o the belt. Otherwise, in location Stop, the arm is not moving.
Fig. 4. The Box Sorter Schedule.
Fig. 4 shows an execution trace of the box sorter system, as it appears in the simulator window of the Times tool. Note how the simulator indicates that e.g. the second invocation of task UpdatePositionsA is delayed and preempted twice by higher priority tasks.
References 1. Elena Fersman, Paul Pettersson, and Wang Yi. Timed Automata with Asynchronous Processes: Schedulability and Decidability. In Proceedings of TACAS, 2002. 2. Kim G. Larsen, Paul Pettersson, and Wang Yi. in a Nutshell. Software Tools for Technology Transfer,
