This content is not included in your SAE MOBILUS subscription, or you are not logged in.
Implementing Mixed Criticality Software Integration on Multicore - A Cost Model and the Lessons Learned
ISSN: 0148-7191, e-ISSN: 2688-3627
Published April 14, 2015 by SAE International in United States
Annotation ability available
The German funded project ARAMiS included work on several demonstrators one of which was a multicore approach on large scale software integration (LSSI) for the automotive domain. Here BMW and Audi intentionally implemented two different integration platforms to gain both experience and real life data on a Hypervisor based concept on one side as well as using only native AUTOSAR-based methods on the other side for later comparison.
The idea was to obtain figures on the added overhead both for multicore as well as safety, based on practical work and close-to-production implementations. During implementation and evaluation on one hand there were a lot of valuable lessons learned about multicore in conjunction with safety.
On the other hand valuable information was gathered to make it finally possible to set up a cost model for estimation of potential overhead generated by different integration approaches for safety related software functions. This model is intended as an aid for developers to decide for the most appropriate and efficient solution out of the two shown approaches at an early point of their development.
It shall provide more specific figures taking into account the particular aspects of the final aim of a planned integration project. Here incorporation of the results for the overhead of switching between partitions, isolation of resources and system monitoring helps us to attain those figures as well as the application of statistical models for occurrence based on Audi's practical measurements done on a close-to-production implementation.
This paper will describe the findings and experiences during implementation of the demonstrator platforms as well as the cost model, its usage and how it could help on development decisions for software projects aiming on integration of safety related automotive functions.
CitationJuergens, D., Reinhardt, D., Schneider, R., Hofstetter, G. et al., "Implementing Mixed Criticality Software Integration on Multicore - A Cost Model and the Lessons Learned," SAE Technical Paper 2015-01-0266, 2015, https://doi.org/10.4271/2015-01-0266.
- ISO 26262. Road vehicles - Functional safety - Part 1-10, 2011.
- Gut Georg, Allmann Christian, Schurius Markus, and Schmidt Karsten. Reduction of Electronic Control Units in Electric Vehicles Using Multicore Technology. In Pankratius Victor and Philippsen Michael, editors, Multicore Software Engineering, Performance, and Tools, volume 7303 of Lecture Notes in Computer Science, pages 90-93. Springer Berlin / Heidelberg, 2012. ISBN 978-3-642-31201-4.
- Reinhardt Dominik and Kucera Marcus. Domain Controlled Architecture - A New Approach for Large Scale Software Integrated Automotive Systems. In International Conference on Pervasive and Embedded Computing and Communication Systems (PECCS 2013), pages 221 - 226, February 2013. doi:10.5220/0004340702210226.
- AUTOSAR Administration. AUTomotive Open System ARchitecture. http://www.autosar.org, 2014.
- AUTOSAR. Specification of Operating System. Version 4.1.1, 2013. URL http://autosar.org/download/R4.1/AUTOSAR_SWS_OS.pdf.
- AUTOSAR. Layered Software Architecture. Version 4.1.1, 2013. URL http://autosar.org/download/R4.1/AUTOSAR_EXP_LayeredSoftwareArchitecture.pdf.
- Haworth David. An AUTOSAR-compatible microkernel for systems with safety-relevant components. Informatik aktuell, Herausforderungen durch Echtzeitbetrieb:11-20, 2012.
- Wenzel Thomas, Fassl Martin, and Kalmbach Joachim. Rezept für sichere Software. Elektronik automotive, 11: 52-53, November 2010.
- Aussagues C., Chabrol D., David V., Roux D., Willey N., Tournadre A., and Graniou M.. Pharos, a multicore os ready for safety-related automotive systems: results and future prospects. In The Embedded Real-Time Software and Systems (ERTS2), 2010.
- Brewerton, S., Willey, N., Gandhi, S., Rosenthal, T. et al., “Demonstration of Automotive Steering Column Lock using Multicore AutoSAR® Operating System,” SAE Technical Paper 2012-01-0031, 2012, doi:10.4271/2012-01-0031.
- Strobl M., Kucera M., Foeldi A., Waas T., Balbierer N., and Hilbert C.. Towards automotive virtualization. In Applied Electronics (AE), 2013 International Conference on, pages 1-6, September 2013.
- Reinhardt, D., Kaule, D., and Kucera, M., “Achieving a Scalable E/E-Architecture Using AUTOSAR and Virtualization,” SAE Int. J. Passeng. Cars - Electron. Electr. Syst. 6(2):489-497, 2013, doi:10.4271/2013-01-1399.
- Brewerton, S. and Schneider, R., “Hardware Based Paravirtualization: Simplifying the Co-Hosting of Legacy Code for Mixed Criticality Applications,” SAE Technical Paper 2013-01-0186, 2013, doi:10.4271/2013-01-0186.
- Schneider, R., Kohn, A., Schmidt, K., Schoenberg, S. et al., “Efficient Virtualization for Functional Integration on Modern Microcontrollers in Safety-Relevant Domains,” SAE Technical Paper 2014-01-0206, 2014, doi:10.4271/2014-01-0206.
- Kaiser R. and Wagner S.. The PikeOS Concept - History and Design. Technical report, Sysgo, 2007.
- Heiser Gernot and Leslie Ben. The OKL4 Microvisor: Convergence point of microkernels and hypervisors. In Proceedings of the 1st Asia-Pacific Workshop on Systems (APSys), pages 19-24, New Delhi, India, August 2010.
- Barham Paul, Dragovic Boris, Fraser Keir, Hand Steven, Harris Tim, Ho Alex, Neugebauer Rolf, Pratt Ian, and Warfield An-drew. Xen and the Art of Virtualization. SIGOPS Oper. Syst. Rev., 37(5):164-177, October 2003. ISSN 0163-5980. doi:10.1145/1165389.945462.
- Masmano Miguel, Ripoll Ismael, Crespo Alfons, and Metge J.J.. XtratuM: a Hypervisor for Safety Critical Embedded Systems. In Eleventh Real-Time Linux Workshop, Dresden (Germany), September 2009.
- Keegan Will. The Rise of the Type Zero Hypervisor. Technical report, Lynx Software Technologies, Inc., 2012.
- Carrascosa E., Coronel J., Masmano M., Balbastre P., and Crespo A.. Xtratum hypervisor redesign for leon4 multicore processor. SIGBED Rev., 11(2):27-31, September 2014. ISSN 1551-3688. doi:10.1145/2668138.2668142.
- Iqbal A., Sadeque N., and Mutia R. I.. An Overview of Microkernel, Hypervisor and Microvisor Virtualization Approaches for Embedded Systems. Technical report, Lund University, 2010.
- Aichouch M., Prevotet J.-C., and Nouvel F.. Evaluation of the overheads and latencies of a virtualized RTOS. In Industrial Embedded Systems (SIES), 2013 8th IEEE International Symposium on, pages 81-84, June 2013. doi:10.1109/SIES.2013.6601475.
- Hamayun Mian M., Spyridakis Alexander, and Raho Daniel S.. Towards Hard Real-Time Control and Infotain- ment Applications in Automotive Platforms. In Proceedings of the 10th International Workshop on Operating Systems Platforms for Embedded Real-Time Applications (OSPERT 2014), July 2014.
- Syama R Devika K. An Overview of AUTOSAR Multicore Operating System Implementation. International Journal of Innovative Research in Science, Engineering and Technology, July 2013.URL http://www.ijirset.com/upload/july/40A_An%20Overview.pdf. ISSN: 2319-8753.
- TC27x AURIX microcontroller C-Step User's Manual V2.0 2014-07. www.infineon.com/AURIX
- Reinhardt Dominik and Morgan Gary. An embedded hypervisor for safety-relevant automotive E/E-systems. In Industrial Embedded Systems (SIES), 2014 9th IEEE International Symposium on, pages 189-198, June 2014. doi:10.1109/SIES.2014.6871203.
- Graf Andreas. Achieving fault and performance isolation on the AURIX™ mpsoc using virtualization. Master's thesis, Technische Universität München, Institute for Integrated Systems, April 2014.
- AUTOSAR. Explanation of Interrupt Handling within AUTOSAR. Version 4.1.1, 2013. URL https://svn3.autosar.org/repos2/work/22\_Releases/.