schedulability analysis as evidence
play

Schedulability Analysis as Evidence? Bjrn Brandenburg Max Planck - PowerPoint PPT Presentation

Feb 26, 2024 •301 likes •839 views

Schedulability Analysis as Evidence? Bjrn Brandenburg Max Planck Institute for Software Systems (MPI-SWS) 1 Schedulability Analysis as Evidence? Can safety case rely on schedulability analysis? Safety Case Argument Evidence

  1. Schedulability Analysis as Evidence? Björn Brandenburg Max Planck Institute for Software Systems (MPI-SWS) 1

  2. Schedulability Analysis as Evidence? Can safety case rely on schedulability analysis? Safety Case ← Argument ← Evidence ← Methodology 2

  3. Schedulability Analysis as Evidence? Can safety case rely on schedulability analysis? Safety Case ← Argument ← Evidence ← Methodology “ Is the methodology agreed as effective? ” -- Philippa Ryan • Does it “work”? • Is it sound ? Actually all deadlines met if analysis says ‘yes’? 3

  4. Schedulability Analysis as Evidence? Can safety case rely on schedulability analysis? Safety Case ← Argument ← Evidence ← Methodology “ Is the methodology agreed as effective? ” -- Philippa Ryan • Does it “work”? • Is it sound ? Actually all deadlines met if analysis says ‘yes’? 3

  5. Schedulability Analysis as Evidence? Can safety case rely on schedulability analysis? Safety Case ← Argument ← Evidence ← Methodology “ Is the methodology agreed as effective? ” -- Philippa Ryan • Does it “work”? • Is it sound ? Actually all deadlines met if analysis says ‘yes’? 3

  6. Advanced Analysis for Mixed- Criticality Systems? It’s been peer-reviewed — should it be deemed effective? • Difficult to predict the future. Let’s take a look at the history of real-time scheduling… 4

  7. Advanced Analysis for Mixed- Criticality Systems? It’s been peer-reviewed — should it be deemed effective? • Difficult to predict the future. Let’s take a look at the history of real-time scheduling… 4

  8. A Look Back (1/4) Liu & Layland (1973) • Raymond Devillers and Joël Goossens, “ Liu and Layland’s schedulability test revisited ”, Information Processing Letters , 73(5):157–161, 2000. 5

  9. A Look Back (1/4) Liu & Layland (1973) • Raymond Devillers and Joël Goossens, “ Liu and Layland’s schedulability test revisited ”, Information Processing Letters , 73(5):157–161, 2000. 5

  10. A Look Back (2/4) Response-Time Analysis (RTA) — deceptively simple • implicit/constrained deadlines vs. arbitrary deadlines • preemptive vs. non-preemptive scheduling [13 years] • Jitter vs. general self-suspensions [20 years] • Jian-Jia Chen et al. Many suspensions, many problems: A review of self-suspending tasks in real-time systems . Technical Report 854 (rev. 2), Dep. of Computer Science, TU Dortmund, March 2017. 6

  11. A Look Back (2/4) Response-Time Analysis (RTA) — deceptively simple • implicit/constrained deadlines vs. arbitrary deadlines • preemptive vs. non-preemptive scheduling [13 years] • Jitter vs. general self-suspensions [20 years] • Jian-Jia Chen et al. Many suspensions, many problems: A review of self-suspending tasks in real-time systems . Technical Report 854 (rev. 2), Dep. of Computer Science, TU Dortmund, March 2017. 6

  12. A Look Back (2/4) Response-Time Analysis (RTA) — deceptively simple • implicit/constrained deadlines vs. arbitrary deadlines • preemptive vs. non-preemptive scheduling [13 years] • Jitter vs. general self-suspensions [20 years] • Jian-Jia Chen et al. Many suspensions, many problems: A review of self-suspending tasks in real-time systems . Technical Report 854 (rev. 2), Dep. of Computer Science, TU Dortmund, March 2017. 6

  13. A Look Back (2/4) Response-Time Analysis (RTA) — deceptively simple • implicit/constrained deadlines vs. arbitrary deadlines • preemptive vs. non-preemptive scheduling [13 years] • Jitter vs. general self-suspensions [20 years] • Jian-Jia Chen et al. Many suspensions, many problems: A review of self-suspending tasks in real-time systems . Technical Report 854 (rev. 2), Dep. of Computer Science, TU Dortmund, March 2017. 6

  14. A Look Back (2/4) Response-Time Analysis (RTA) — deceptively simple • implicit/constrained deadlines vs. arbitrary deadlines • preemptive vs. non-preemptive scheduling [13 years] • Jitter vs. general self-suspensions [20 years] • Jian-Jia Chen et al. Many suspensions, many problems: A review of self-suspending tasks in real-time systems . Technical Report 854 (rev. 2), Dep. of Computer Science, TU Dortmund, March 2017. 6

  15. A Look Back (3/4) Multiprocessor Priority Ceiling Protocol (1990): • Maolin Yang, Jian-Jia Chen, and Wen-Hung Huang. A misconception in blocking time analyses under multiprocessor synchronization protocols . Real-Time Systems, 53(2):187–195, 2017. [ MPCP analysis (+others) assumes wrong critical instant ] • Jian-Jia Chen and Björn Brandenburg. A note on the period enforcer algorithm for self-suspending tasks . Leibniz Transactions on Embedded Systems, 4(1), 2017. [ Period enforcer incompatible with locking protocols / existing analyses ] 7

  16. A Look Back (3/4) Multiprocessor Priority Ceiling Protocol (1990): • Maolin Yang, Jian-Jia Chen, and Wen-Hung Huang. A misconception in blocking time analyses under multiprocessor synchronization protocols . Real-Time Systems, 53(2):187–195, 2017. [ MPCP analysis (+others) assumes wrong critical instant ] • Jian-Jia Chen and Björn Brandenburg. A note on the period enforcer algorithm for self-suspending tasks . Leibniz Transactions on Embedded Systems, 4(1), 2017. [ Period enforcer incompatible with locking protocols / existing analyses ] 7

  17. A Look Back (3/4) Multiprocessor Priority Ceiling Protocol (1990): • Maolin Yang, Jian-Jia Chen, and Wen-Hung Huang. A misconception in blocking time analyses under multiprocessor synchronization protocols . Real-Time Systems, 53(2):187–195, 2017. [ MPCP analysis (+others) assumes wrong critical instant ] • Jian-Jia Chen and Björn Brandenburg. A note on the period enforcer algorithm for self-suspending tasks . Leibniz Transactions on Embedded Systems, 4(1), 2017. [ Period enforcer incompatible with locking protocols / existing analyses ] 7

  18. A Look Back (4/4) Scheduling with Arbitrary Processor Affinities • A. Gujarati, F. Cerqueira, and B. Brandenburg. Schedulability Analysis of the Linux Push and Pull Scheduler with Arbitrary Processor Affinities . Proc. ECRTS’13. [ incorrect over-generalization: proposed reduction technique works only for a few, not all global schedulability tests ] • Bug also present in extended journal paper ➔ got past (at least) six reviewers! ➔ unrealistic and unreasonable to expect reviewers to determine correctness 8

  19. A Look Back (4/4) Scheduling with Arbitrary Processor Affinities • A. Gujarati, F. Cerqueira, and B. Brandenburg. Schedulability Analysis of the Linux Push and Pull Scheduler with Arbitrary Processor Affinities . Proc. ECRTS’13. [ incorrect over-generalization: proposed reduction technique works only for a few, not all global schedulability tests ] • Bug also present in extended journal paper ➔ got past (at least) six reviewers! ➔ unrealistic and unreasonable to expect reviewers to determine correctness 8

  20. A Look Back (4/4) Scheduling with Arbitrary Processor Affinities • A. Gujarati, F. Cerqueira, and B. Brandenburg. Schedulability Analysis of the Linux Push and Pull Scheduler with Arbitrary Processor Affinities . Proc. ECRTS’13. [ incorrect over-generalization: proposed reduction technique works only for a few, not all global schedulability tests ] • Bug also present in extended journal paper ➔ got past (at least) six reviewers! ➔ unrealistic and unreasonable to expect reviewers to determine correctness 8

  21. Mixed-Criticality Analysis is not Any Easier than Classic Schedulability Analysis! …so what can we do? • OPEN PROBLEM How to make complex schedulability analysis trustworthy? • DESPITE ➔ increasing model fidelity & complexity ➔ increasing proof sophistication & non-obvious correctness criteria 9

  22. Mixed-Criticality Analysis is not Any Easier than Classic Schedulability Analysis! …so what can we do? • OPEN PROBLEM How to make complex schedulability analysis trustworthy? • DESPITE ➔ increasing model fidelity & complexity ➔ increasing proof sophistication & non-obvious correctness criteria 9

  23. Mixed-Criticality Analysis is not Any Easier than Classic Schedulability Analysis! …so what can we do? • OPEN PROBLEM How to make complex schedulability analysis trustworthy? • DESPITE ➔ increasing model fidelity & complexity ➔ increasing proof sophistication & non-obvious correctness criteria 9

  24. 10

  25. PROSA : Formally Pro ven S chedulability A nalysis An open-source effort to formally verify the core of real-time scheduling theory, with the help of the Coq proof assistant . • Precise, unambiguous, uniform definitions • All assumptions explicit • Guaranteed-correct proofs : all claims in Prosa have machine-checked proofs, which rules out human error! 11

  26. PROSA : Formally Pro ven S chedulability A nalysis An open-source effort to formally verify the core of real-time scheduling theory, with the help of the Coq proof assistant . • Precise, unambiguous, uniform definitions • All assumptions explicit • Guaranteed-correct proofs : all claims in Prosa have machine-checked proofs, which rules out human error! 11

  27. PROSA : Formally Pro ven S chedulability A nalysis An open-source effort to formally verify the core of real-time scheduling theory, with the help of the Coq proof assistant . • Precise, unambiguous, uniform definitions • All assumptions explicit • Guaranteed-correct proofs : all claims in Prosa have machine-checked proofs, which rules out human error! 11

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Schedulability analysis Schedulability analysis : The process of determining whether a task set

Schedulability analysis Schedulability analysis : The process of determining whether a task set

EDA421/DIT171 - Parallel and Distributed Real-Time Systems, Chalmers/GU, 2011/2012 Lecture #5 Updated March 21, 2012 Schedulability analysis Schedulability analysis : The process of determining whether a task set can be scheduled

306 views • 14 slides
On the Meaning of pWCET Distributions and their use in Schedulability Analysis Robert I. Davis

On the Meaning of pWCET Distributions and their use in Schedulability Analysis Robert I. Davis

On the Meaning of pWCET Distributions and their use in Schedulability Analysis Robert I. Davis How do we verifying the timing correctness of a real-time system? Typically a two step process Timing Analysis Used to characterise the

629 views • 39 slides
Schedulability Analysis of Timed CSP Models Using the PAT Model Checker O uzcan O UZ Jan

Schedulability Analysis of Timed CSP Models Using the PAT Model Checker O uzcan O UZ Jan

Schedulability Analysis of Timed CSP Models Using the PAT Model Checker O uzcan O UZ Jan F. BROENINK Angelika MADER Robotics and Mechatronics, University of Twente, The Netherlands Contents Problem Statement & Approach

516 views • 24 slides
Principled Schedulability Analysis for Distributed Storage Systems Using Thread Architecture

Principled Schedulability Analysis for Distributed Storage Systems Using Thread Architecture

Principled Schedulability Analysis for Distributed Storage Systems Using Thread Architecture Models Suli Yang*, Jing Liu, Andrea C. Arpaci-Dusseau, Remzi H. Arpaci-Dusseau * work done while at UW-Madison Scheduling: A Fundamental Primitive

614 views • 34 slides
Schedulability Analysis and Software Synthesis for Graph-based Task Models with Resource Sharing

Schedulability Analysis and Software Synthesis for Graph-based Task Models with Resource Sharing

Schedulability Analysis and Software Synthesis for Graph-based Task Models with Resource Sharing Jakaria Abdullah , Gaoyang Dai, Morteza Mohaqeqi, Wang Yi Uppsala University April 13, 2018 Outline Problem Problem 1 Algorithm Evaluation

1.08k views • 48 slides
Schedulability Analysis for Fixed Priority Real-Time Systems with Energy- Harvesting m 1 Younes

Schedulability Analysis for Fixed Priority Real-Time Systems with Energy- Harvesting m 1 Younes

Schedulability Analysis for Fixed Priority Real-Time Systems with Energy- Harvesting m 1 Younes Chandarli 1 , 2 Rob Davis 3 Damien Masson 1 Yasmina Abdedda ( 1 ) Universit e Paris-Est, LIGM UMR CNRS 8049, ESIEE Paris, France ( 2 )

633 views • 51 slides
Schedulability Analysis of Synchronous Digraph Real-Time Tasks Morteza Mohaqeqi, Jakaria

Schedulability Analysis of Synchronous Digraph Real-Time Tasks Morteza Mohaqeqi, Jakaria

Schedulability Analysis of Synchronous Digraph Real-Time Tasks Morteza Mohaqeqi, Jakaria Abdullah, Nan Guan, Wang Yi Uppsala University ECRTS 2016 Introduction Real-Time Task Models: Digraph (DRT) recurring branching (RB) non-cyclic GMF

1.11k views • 49 slides
Sequence Estimation and Schedulability Aim Analysis for Partially Observable Petri Nets

Sequence Estimation and Schedulability Aim Analysis for Partially Observable Petri Nets

Sequence Estimation and Schedulability Analysis for Partially Observable Petri Nets (Part I) Ph. Declerck Sequence Estimation and Schedulability Aim Analysis for Partially Observable Petri Nets Preliminaries (Part I) Estimation in

448 views • 41 slides
Parallel & Distributed Real-Time Systems Lecture #5 Risat Pathan Department of Computer

Parallel & Distributed Real-Time Systems Lecture #5 Risat Pathan Department of Computer

Parallel & Distributed Real-Time Systems Lecture #5 Risat Pathan Department of Computer Science and Engineering Chalmers University of Technology Schedulability analysis Schedulability analysis : The process of determining whether a task

461 views • 30 slides
Schedulability Analysis under Uncertainty using Formal Methods (part 2) tienne Andr and

Schedulability Analysis under Uncertainty using Formal Methods (part 2) tienne Andr and

ESWEEK Tutorial Sunday, 30th of September Schedulability Analysis under Uncertainty using Formal Methods (part 2) tienne Andr and Giusppe Lipari LIPN, Universit Paris 13, CNRS, France tienne Andr (Universit Paris 13) Tutorial @

1.87k views • 149 slides
Controller Area Network (CAN) Schedulability Analysis with FIFO queues Robert Davis 1 , Steffen

Controller Area Network (CAN) Schedulability Analysis with FIFO queues Robert Davis 1 , Steffen

Controller Area Network (CAN) Schedulability Analysis with FIFO queues Robert Davis 1 , Steffen Kollmann 2 , Victor Pollex 2 , Frank Slomka 2 1 Real-Time Systems Research Group, University of York 2 Institute of Embedded Systems / Real-Time

483 views • 31 slides
1) R=I+C1=0+1=1,I= R/P3 *C3= 1/6 *2=2. Since R <=

1) R=I+C1=0+1=1,I= R/P3 *C3= 1/6 *2=2. Since R <=

Examples of Schedulability Analysis 1. a) Is the following set of periodic tasks schedulable under Rate Monotonic (RM)? b) How about under Deadline

57 views • 3 slides
Meta-analysis provides the best and most reliable scientific evidence Meta-analysis aggregates

Meta-analysis provides the best and most reliable scientific evidence Meta-analysis aggregates

Meta-analysis provides the best and most reliable scientific evidence Meta-analysis aggregates evidence across several studies 1. Search literature 3. Select the studies of interest 5. Calculate effect sizes and 2. Screen articles for 4.

462 views • 15 slides
Robust Evidence Synthesis Ullrika Sahlin Thursday 9.00-12.30 1 Evidence-based Meta-analysis

Robust Evidence Synthesis Ullrika Sahlin Thursday 9.00-12.30 1 Evidence-based Meta-analysis

Robust Evidence Synthesis Ullrika Sahlin Thursday 9.00-12.30 1 Evidence-based Meta-analysis Statistical technique to combine results from multiple independent studies Consider differences in quality in studies Experi Meta-analysis Observ

611 views • 40 slides
Worst-Case Execution-Time Analysis WCET Analysis slides: P. Puschner, R. Kirner, B. Huber

Worst-Case Execution-Time Analysis WCET Analysis slides: P. Puschner, R. Kirner, B. Huber

Worst-Case Execution-Time Analysis WCET Analysis slides: P. Puschner, R. Kirner, B. Huber Time in RTS Construction Design Architecture, resource planning, schedules Implementation Timing Analysis Schedulability analysis, WCET analysis 2

508 views • 35 slides
Introduction: T r e y H ic k s Analysis and Evidence of Impact: G re g C o llin s

Introduction: T r e y H ic k s Analysis and Evidence of Impact: G re g C o llin s

Stakeholder Community Meeting: Mitigating the Impacts of COVID-1 9 on Food, Nutrition, and Water Security J u ly 3 0 , 2 0 2 0 8 :3 0 - 1 0 :0 0 A M E D T I A g e n d a Introduction: T r e y H ic k s Analysis and Evidence of Impact: G re

354 views • 34 slides
Kaon Physics Jorge Portols Instituto de Fsica Corpuscular CSIC-UVEG, Valencia (Spain)

Kaon Physics Jorge Portols Instituto de Fsica Corpuscular CSIC-UVEG, Valencia (Spain)

Kaon Physics Jorge Portols Instituto de Fsica Corpuscular CSIC-UVEG, Valencia (Spain) (GeV) 0.5 K + K S K L Discovery of kaon meson (strangeness) Rochester, Butler (1947) [2] Cosmic ray particles which were just like pions except for

583 views • 44 slides
Precise Predictions for Higgs Production in Neutralino Decays Alison Fowler Supervisor: G.

Precise Predictions for Higgs Production in Neutralino Decays Alison Fowler Supervisor: G.

0 0 CP-violating MSSM Higher Order Corrections to i j h k vertex Numerical Results Summary Precise Predictions for Higgs Production in Neutralino Decays Alison Fowler Supervisor: G. Weiglein IPPP Seminar, Friday 19th June 0

649 views • 28 slides
with high-momentum hadron beams K. Shirotori for the E50 collaboration Research Center for

with high-momentum hadron beams K. Shirotori for the E50 collaboration Research Center for

Hadron spectroscopy with high-momentum hadron beams K. Shirotori for the E50 collaboration Research Center for Nuclear Physics (RCNP) Osaka University The 3rd J-PARC symposium (J-PARC2019) 26 th September 2019 2 Contents Motivations of

472 views • 24 slides
Stability of the IMS Radionuclide Detector Network and Lessons Learned for Exotic

Stability of the IMS Radionuclide Detector Network and Lessons Learned for Exotic

Stability of the IMS Radionuclide Detector Network and Lessons Learned for Exotic Physics Searches Robert Lee, PhD, Maj, USAF Physics Department, USAF Academy Colorado Springs, CO Dan Animal Javorsek, PhD, Maj, USAF Air Force

419 views • 19 slides
HP2.3rd - GGI Florence High Precision for Hard Processes at the LHC

HP2.3rd - GGI Florence High Precision for Hard Processes at the LHC

HP2.3rd - GGI Florence High Precision for Hard Processes at the LHC

1.87k views • 36 slides
TechnischeUniversitt Berlin

TechnischeUniversitt Berlin

TechnischeUniversitt Berlin InstitutfrSoftwaretechnikundTheoretischeInformatik 2001,SusanneBusse 1 TechnischeUniversitt Berlin InstitutfrSoftwaretechnikundTheoretischeInformatik

512 views • 26 slides
FACILITATING ICN DEPLOYMENT WITH AN EXTENDED OPENFLOW PROTOCOL Piotr Zuraniewski, Niels van

FACILITATING ICN DEPLOYMENT WITH AN EXTENDED OPENFLOW PROTOCOL Piotr Zuraniewski, Niels van

FACILITATING ICN DEPLOYMENT WITH AN EXTENDED OPENFLOW PROTOCOL Piotr Zuraniewski, Niels van Adrichem, Wieger Ijntema, Daan Ravesteijn (TNO) Borgert van der Kluit, Ray van Brandenburg (former TNO) CONNECTING ICN ISLANDS One of deployment

301 views • 3 slides
Stellar Evidence of a Solar Dynamo in Transition Travis Metcalfe (SSI & NSO) Travis Metcalfe

Stellar Evidence of a Solar Dynamo in Transition Travis Metcalfe (SSI & NSO) Travis Metcalfe

Stellar Evidence of a Solar Dynamo in Transition Travis Metcalfe (SSI & NSO) Travis Metcalfe (SSI & NSO) Collaborators: Ricky Egeland, Jennifer van Saders : Ricky Egeland, Jennifer van Saders Collaborators Breaking magnetic braking

406 views • 11 slides

More recommend