A Formal Model of a Run-Time Kernel for Ravenscar
نویسندگان
چکیده
The Ravenscar tasking profile for Ada 95 has been designed to allow implementation of highly safety critical systems in Ada. Ravenscar defines a tasking run-time system with deterministic behaviour and low complexity. We provide a formal model of the primitives provided by Ravenscar including exceptions. This formal model can be used to verify safety properties of applications targeting a Ravenscarcompliant run-time system. As an illustration of this, we model a sample application using all features of Ravenscar and formally verify its correctness using the real-time model checker UPPAAL.
منابع مشابه
Evaluation of Delay Queues for a Ravenscar Hardware Kernel
In this paper we present and evaluate four delay queues designed for application tailored Ravenscar hardware realtime kernels. The properties of the different queues and optimisations of them are discussed and both formal models and actual hardware implementation of the queues are presented. A transformation from timed automata to VHDL is described during the translation of the timed automata o...
متن کاملTransformation of the Ravenscar Profile Based Ada Real-time Application to the Verification-ready Statecharts: Reverse Engineering and Statemate approach
The Ravenscar Profile is a subset of Ada95 tasking model which removes the Ada’s unsafe real-time characteristics and allows high-integrity of system. By the Ravenscar Profile, Ada95 can meet the determinism on system behavior. It also allows schedulability analysis and formal verification on the concurrent model of system. But the formal verification may be additional hard works to improve val...
متن کاملRavenscar Protected Objects: a Circus Semantics
The Ravenscar pro le is a restricted subset of the Ada 95 tasking model | designed to provide a certi able deterministic tasking model that supports schedulability analysis and meets tight memory constraints and performance requirements. Centre to Ravenscar is the use of Ada protected objects as the means for ensuring mutually exclusive access to data shared between di erent tasks. In this repo...
متن کاملImplementing Execution-Time Clocks for the Ada Ravenscar Profile
The capability to monitor the amount of processor time that is used by real-time tasks is crucial for building real-time systems that are robust with respect to worst case execution time estimations. Executiontime clocks and timers have been proposed to be added to the language in order to support this functionality. Since a wide class of systems which may benefit from this mechanism are likely...
متن کاملGnat/ork: an Open Cross-development Environment for Embedded Ravenscar–ada Software
Ada tasking is a powerful abstraction mechanism for developing concurrent embedded systems. However, many implementations of concurrent tasking have been seen as potentially unsafe for critical systems because of their high degree of indeterminism. The Ravenscar profile is a subset of Ada 95 tasking with purpose of providing a basis for the implementation of certifiable critical systems. ORK is...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
عنوان ژورنال:
دوره شماره
صفحات -
تاریخ انتشار 1999