Presentation is loading. Please wait.

Presentation is loading. Please wait.

Interfaces for Control Components Rajeev Alur University of Pennsylvania Joint work with Gera Weiss (and many others)

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "Interfaces for Control Components Rajeev Alur University of Pennsylvania Joint work with Gera Weiss (and many others)"— Presentation transcript:

1 Interfaces for Control Components Rajeev Alur University of Pennsylvania Joint work with Gera Weiss (and many others)

2 Interface-based Control Design Interface: Simplified description useful for system integration Control Designs Implementation Platforms

3 Interface Specs: Desirable Properties Compositional: Design each component in isolation Dependable: If interface spec is satisfied, performance goals are met Separation of concerns: Between control and software engineers Analyzability: Tool support to check if all interface specs can be met

4 Execution Period as Interface Spec Interface: Period at which sense-compute-actuate cycle to be executed Control Designer: Does sampling frequency ensure performance spec? Discrete-time control theory 3 ms 5 ms System Integrator: Can resource requirements of all the components be met? Platform-specific WCET analysis Real-time scheduling theory

5 Challenges : Composition, adaptation to changes in resource availability, online admission control, performance optimization Composing two periodic specs does not give periodic spec Should component be executed more frequently, if possible? How does period relate to control performance ? Execution Period as an Interface Spec

6 Time-triggered Resource Scheduling Resource Controller 2 Controller 1Plant 2 Plant 1 Controller 1 Controller 2 Time

7 Automata Based Interfaces Generalization of the periodic interface: Automaton (regular language) for each component specifying allowed patterns of resource allocations 0 0 0 1 1 1 1 0: Slot not allocated to the component 1: Slot allocated to the component Periodic: ( 1. 0 k )* Spec: Component must get at least one slot in a window of 3 slots

8 Automata Based Interfaces Infinite schedules specified using Buchi automata 0 1 1 Spec: Component must get infinitely many slots 0 Example specs: Component must get at least 2 slots in a window of 5 Eventually component must get every alternate slot

9 Composing Specs Composition : Rename followed by intersection (product) 0 1 1 Component A 0 1 10 Component B 0/B A A 0/A B B Rename 0 B A 0 A A B A Product Schedulability Test: Check if composition of all specs is nonempty

10 Analyzing stability with resource scheduling t models elapsed time Transitions happen at the beginning of Δ intervals Next discrete mode is determined by the schedule σ Different dynamics based on controller has the resource or not Challenge: Compute set of schedules  for which system is stable

11 Stable modes ⇏ Stability stable unstable Switching may introduce instability !

12 Can we express stability with a Finite Automaton? Answer: No! (Language of stable schedules is not regular) Proof: Transform a stable word to an unstable one by pumping

13 Exponential Stability StabilityRegular Exp. Stability Quantified version of stability

14 Automata-based Interfaces Interface: Regular language for desired allocation on time-triggered platform Control Designer: Specify all acceptable allocation sequences as a regular language E.g. Periodicity, Exponential stability, Fairness System Integrator: Can resource requirements of all the components be met? Find a schedule acceptable to all using automata constructions Application: Real-time Java components

15 Embedded Control Software Discrete Control (Software) Physical Plant (Continuous Dynamics) Sensors Actuators Java ???

16 Java for Real-Time Java Bytecode portability Component based Java RTS Real-time guarantees No timing portability! Can I run the same code on a faster machine and expect better performance?

17 RTComposer A tool for building modular Real-Time Java applications Java Class + Automaton specifying patterns of method calls Component: Real-Time Operating System Real-Time Java RTComposer InterruptsNon Real-Time

18 Logical Execution Time Macro Schedule: Assignment of methods to time slots Micro Schedule: CPU scheduling within each slot Macro Micro Component 1 Component 2 Short method Heavy method … …… … Interrupts I/O … … Tasks finish in allotted slots ⇒ Dynamics determined by macro schedule We use automata interfaces for specifying macro schedules

19 Example component public class Example { void p() {...}; void q() {...}; void r() {...}; } p and q not invoked for 3 consecutive slots ⇒ q must run in the next slot Temporal logic: Automaton: Requirement: Class signature:

20 Proposed Methodology Product Automaton Platform Automaton Component Automaton empty? Macro Scheduler inter-slot schedule intra-slot schedule Micro Scheduler Background tasks CPU Interrupts Which methods can be executed together within a slot?

21 Timing Portability Bytecode portability is not enough for real-time systems Previous approaches: Same timing on fast and slow machines [Giotto, Metronome, Exotasks] RTComposer: Faster machines allow better performance (faster convergence) Time (milliseconds) Displacement (millimeters)

22 Dynamic Scheduling Static schedules [Giotto, Exotasks]: Same set of methods in all execution slots. RTComposer: Dynamic assignment of methods to execution slots allows to adjust to changing conditions Time (milliseconds) Displacement (millimeters)

23 Automata-based Interfaces Interface: Regular language for desired allocation on time-triggered platform Control Designer: Specify all acceptable allocation sequences as a regular language E.g. Periodicity, Exponential stability, Fairness System Integrator: Can resource requirements of all the components be met? Find a schedule acceptable to all using automata constructions Application: Wireless control networks

24 Multi-Hop Control Networks Plant 1 Plant 2 Plant 3 Controller A distributed system of sensor and actuator nodes interconnected by communication links: measurement feedback

25 WirelessHART™ Time Division Multiple Access (TDMA) Each device maintains a precise sense of time Communication is done in pre-scheduled time frames A periodic schedule, called Superframe, is distributed Challenge: Systematic design and evaluation of schedules?

26 Industrial Case Study Separation of minerals using floatation cells Boliden mine, Garpenberg, Sweden 17 Control loops communicating using WirelessHART Computed set of acceptable schedules/routes for each loop Schedule generated by intersecting 17 automata using NuSMV Shortest path generated by SMV as a counter-example to the claim that no schedule exists that is acceptable to all

27 Recap: Automata-based Interfaces Interface: Regular language for desired allocation on time-triggered platform Control Designer: Specify all acceptable allocation sequences as a regular language E.g. Periodicity, Exponential stability, Fairness System Integrator: Can resource requirements of all the components be met? Find a schedule acceptable to all using automata constructions Applications: Real-time Java components, Networked sensors/actuators Wireless control network (WirelessHART)

28 References Automata based interfaces for control and scheduling Weiss, Alur. HSCC 2007 RTComposer: A framework for real-time components with scheduling interfaces Alur, Weiss. EMSOFT 2008 Specification and analysis of network resource requirements of control systems Weiss, Fischmeister, Anand, Alur. HSCC 2008 Modeling and analysis of multi-hop control networks Alur, D’Innocenzo, Johansson, Pappas, Weiss. RTAS 2008 Scalable scheduling algorithms for wireless networked control D’Innocenzo, Weiss, Alur, Isaksson, Johansson, Pappas. CDC 2009

Download ppt "Interfaces for Control Components Rajeev Alur University of Pennsylvania Joint work with Gera Weiss (and many others)"

Similar presentations

Interfaces for Control Components Rajeev Alur University of Pennsylvania Joint work with Gera Weiss (and many others)

Interfaces for Control Components Rajeev Alur University of Pennsylvania Joint work with Gera Weiss (and many others)
A Survey of Runtime Verification Jonathan Amir 2004.

A Survey of Runtime Verification Jonathan Amir 2004.
Signals and Systems March 25, 2013. Summary thus far: software engineering Focused on abstraction and modularity in software engineering. Topics: procedures,

Signals and Systems March 25, Summary thus far: software engineering Focused on abstraction and modularity in software engineering. Topics: procedures,
Automatic Verification Book: Chapter 6. What is verification? Traditionally, verification means proof of correctness automatic: model checking deductive:

Automatic Verification Book: Chapter 6. What is verification? Traditionally, verification means proof of correctness automatic: model checking deductive:
Sensor Network Platforms and Tools

Sensor Network Platforms and Tools
1 An Approach to Real-Time Support in Ad Hoc Wireless Networks Mark Gleeson Distributed Systems Group Dept.

1 An Approach to Real-Time Support in Ad Hoc Wireless Networks Mark Gleeson Distributed Systems Group Dept.
CIS 540 Principles of Embedded Computation Spring 2015 Instructor: Rajeev Alur

CIS 540 Principles of Embedded Computation Spring Instructor: Rajeev Alur
CIS 540 Principles of Embedded Computation Spring 2015 Instructor: Rajeev Alur

CIS 540 Principles of Embedded Computation Spring Instructor: Rajeev Alur
Succinct Approximations of Distributed Hybrid Behaviors P.S. Thiagarajan School of Computing, National University of Singapore Joint Work with: Yang Shaofa.

Succinct Approximations of Distributed Hybrid Behaviors P.S. Thiagarajan School of Computing, National University of Singapore Joint Work with: Yang Shaofa.
Threads, SMP, and Microkernels Chapter 4. Process Resource ownership - process is allocated a virtual address space to hold the process image Scheduling/execution-

Threads, SMP, and Microkernels Chapter 4. Process Resource ownership - process is allocated a virtual address space to hold the process image Scheduling/execution-
Overview of PTIDES Project

Overview of PTIDES Project
2/11/2010 BEARS 2010 On PTIDES Programming Model John Eidson Jeff C. Jensen Edward A. Lee Slobodan Matic Jia Zou PtidyOS.

2/11/2010 BEARS 2010 On PTIDES Programming Model John Eidson Jeff C. Jensen Edward A. Lee Slobodan Matic Jia Zou PtidyOS.
Page 1 Building Reliable Component-based Systems Chapter 13 -Components in Real-Time Systems Chapter 13 Components in Real-Time Systems.

Page 1 Building Reliable Component-based Systems Chapter 13 -Components in Real-Time Systems Chapter 13 Components in Real-Time Systems.
Systems Engineering for Automating V&V of Dependable Systems John S. Baras Institute for Systems Research University of Maryland College Park 301-405-6606.

Systems Engineering for Automating V&V of Dependable Systems John S. Baras Institute for Systems Research University of Maryland College Park
Integrated Design and Analysis Tools for Software-Based Control Systems Shankar Sastry (PI) Tom Henzinger Edward Lee University of California, Berkeley.

Integrated Design and Analysis Tools for Software-Based Control Systems Shankar Sastry (PI) Tom Henzinger Edward Lee University of California, Berkeley.
David Adams ATLAS DIAL Distributed Interactive Analysis of Large datasets David Adams BNL March 25, 2003 CHEP 2003 Data Analysis Environment and Visualization.

David Adams ATLAS DIAL Distributed Interactive Analysis of Large datasets David Adams BNL March 25, 2003 CHEP 2003 Data Analysis Environment and Visualization.
Testing and Monitoring at Penn Testing and Monitoring Model-based Generated Program Li Tan, Jesung Kim, and Insup Lee July, 2003.

Testing and Monitoring at Penn Testing and Monitoring Model-based Generated Program Li Tan, Jesung Kim, and Insup Lee July, 2003.
April 16, 2009 Center for Hybrid and Embedded Software Systems PtidyOS: An Operating System based on the PTIDES Programming.

April 16, 2009 Center for Hybrid and Embedded Software Systems PtidyOS: An Operating System based on the PTIDES Programming.
Chess Review May 11, 2005 Berkeley, CA Composable Code Generation for Distributed Giotto Tom Henzinger Christoph Kirsch Slobodan Matic.

Chess Review May 11, 2005 Berkeley, CA Composable Code Generation for Distributed Giotto Tom Henzinger Christoph Kirsch Slobodan Matic.
Scheduling with Optimized Communication for Time-Triggered Embedded Systems Slide 1 Scheduling with Optimized Communication for Time-Triggered Embedded.

Scheduling with Optimized Communication for Time-Triggered Embedded Systems Slide 1 Scheduling with Optimized Communication for Time-Triggered Embedded.

Similar presentations

Ads by Google