Presentation is loading. Please wait.

Presentation is loading. Please wait.

© Esterel Technologies, 2003 G. Berry, VLSI'2004 synchronous tutorial, 1 -1 Synchronous Methodology for Hardware, Software, and Mixed Embedded Systems.

Published byDorcas Douglas Modified over 8 years ago

Similar presentations

Presentation on theme: "© Esterel Technologies, 2003 G. Berry, VLSI'2004 synchronous tutorial, 1 -1 Synchronous Methodology for Hardware, Software, and Mixed Embedded Systems."— Presentation transcript:

1 © Esterel Technologies, 2003 G. Berry, VLSI'2004 synchronous tutorial, 1 -1 Synchronous Methodology for Hardware, Software, and Mixed Embedded Systems Chief Scientist www.esterel-technologies.com Gerard.Berry@esterel-technologies.com Gérard Berry Part 1: the Synchronous Model

2 © Esterel Technologies, 2003 G. Berry, VLSI'2004 synchronous tutorial, 1 -2 The Synchronous Model Born in the mid 80's (Esterel, Lustre, Signal) Industrial since the mid 90's Dedicated to embedded systems Embedded software: avionics, automobile Hardware: control-intensive circuits, SoC verification Versatile cycle-based computation model clock cycle, bus cycle, transaction cycle, sampling cycle Efficient implementation / verification original Esterel, Lustre Signal GMD, Synopsys, Karlsruhe (Quartz), Columbia University

3 © Esterel Technologies, 2003 G. Berry, VLSI'2004 synchronous tutorial, 1 -3 Global Agenda Part 1 : Synchrony for embedded languages Part 2 : The Esterel language Part 3 : Semantics, synthesis, optimization Part 4 : Verification, test generation Demos

4 © Esterel Technologies, 2003 G. Berry, VLSI'2004 synchronous tutorial, 1 -4 Embedded systems and correctness issues The three models of concurrency The synchronous model : data and control The synchronous design flows Current applications and envisioned extensions Agenda - Part 1 Synchrony for Embedded Systems

5 © Esterel Technologies, 2003 G. Berry, VLSI'2004 synchronous tutorial, 1 -5 Embedded systems and correctness issues The three models of concurrency The synchronous model : data and control The synchronous design flows Current applications and envisioned extensions Agenda - Part 1 Synchrony for Embedded Systems

6 © Esterel Technologies, 2003 G. Berry, VLSI'2004 synchronous tutorial, 1 -6 computers -> embedded and networked SoCs complete change in device interaction growing number of critical applications airplanes, automobiles, medical devices, robot surgeon smart cards, electronic wallets Embedded Systems

7 © Esterel Technologies, 2003 G. Berry, VLSI'2004 synchronous tutorial, 1 -7 Global Coordination ABS Panel Engine control Radio Light control Supension Gearbox Clutch Airbags Direction Air Con Sleep detector Radar Alarm detection Automatic toll GPS ABS Panel Engine control Radio Light control Supension Gearbox Clutch Airbags Direction Air Con Sleep detector Radar Alarm detection Automatic toll GPS

8 © Esterel Technologies, 2003 G. Berry, VLSI'2004 synchronous tutorial, 1 -8 Many processing units Large embedded software CPU DSP RAMFPGA GLU ROM Hardware or Software? Embedded Systems on Chip

9 © Esterel Technologies, 2003 G. Berry, VLSI'2004 synchronous tutorial, 1 -9 Embedded Systems Issues Direct cost hardware cost (consumer, automobile, etc.) development cost verification cost User aspects functionality and ergonomics usage cost: power (batteries) Correctness issues central for users potential business killer certification constraints => high indirect cost

10 © Esterel Technologies, 2003 G. Berry, VLSI'2004 synchronous tutorial, 1 -10 Therac 25 : lethal irradiations Dharan's Patriot Ariane V Mars explorers High-end automobile problems Pentium, SMP cpu networks Telephone and camera bugs Bugs grow faster than Moore's law! Ennemy number 1 : the bug

11 © Esterel Technologies, 2003 G. Berry, VLSI'2004 synchronous tutorial, 1 -11 As soon as we started programming, we found to our surprise that it wasn’t as easy to get programs right as we had thought. Debugging had to be discovered. I can remember the exact instant when I realized that a large part of my life from then on was going to be spent in finding mistakes in my own programs. Maurice Wilkes, 1949

12 © Esterel Technologies, 2003 G. Berry, VLSI'2004 synchronous tutorial, 1 -12 How to avoid or control bugs? Traditional : better verification by fancier simulation Next step : better design better and more reusable specifications simpler computation models, formalisms, semantics reduce architect / designer distance reduce hardware / software distance Better tooling higher-level synthesis formal property verification / program equivalence certified libraries

13 © Esterel Technologies, 2003 G. Berry, VLSI'2004 synchronous tutorial, 1 -13 Classical computation models are inadequate Turing complete => too powerful, too hard to verify No need for fancy dynamic memory allocation Concurrency is mandatory, but too difficult (e.g. threads) Determinism is mandatory, but contradicts concurrency Implementation of classical control theory not obvious Inadapted to circuit design

14 © Esterel Technologies, 2003 G. Berry, VLSI'2004 synchronous tutorial, 1 -14 There are much simpler models ! Asynchronous data-flow: Kahn Networks, Ptolemy simple, easy concurrency, nice semantics widely used in multimedia devices data-deterministic, but no support for distributed control Domain-specific synchronous languages simple, easy concurrency, nice semantics determinism, distributed control same source code compiled to hardware or software Direct match with embedded systems foundations control engineering : sampling theory, automata theory circuit design : RTL logic, transactional modeling

15 © Esterel Technologies, 2003 G. Berry, VLSI'2004 synchronous tutorial, 1 -15 Synchronous languages Started in the 80's ESTEREL : Ecole des Mines / INRIA, SyncCharts : Un. Nice LUSTRE : IMAG, SIGNAL : INRIA Rennes SAO : Aerospatiale -> Airbus, Gala : Thalès Reactive C : Ecole des Mines, TCCP : Xerox, Quartz : Karlsruhe, Ptolemy : Berkeley, Lava : Chalmers, Xilinx Industrial use in the 90's LUSTRE / SCADE : nuclear plants (Schneider), avionics (Airbus) Esterel : avionics (Dassault), telecom Signal / SILDEX : continuous control (SNECMA, EDF) Ptolemy-based systems (CoCentric) : hardware & signal processing => Full development in the 2000's

16 © Esterel Technologies, 2003 G. Berry, VLSI'2004 synchronous tutorial, 1 -16 Embedded systems and correctness issues The three models of concurrency The synchronous model : data and control The synchronous design flows Current applications and envisioned extensions Agenda - Part 1 Synchrony for Embedded Systems

17 © Esterel Technologies, 2003 G. Berry, VLSI'2004 synchronous tutorial, 1 -17 Concurrency : the compositionality principle P Q R P||Q

18 © Esterel Technologies, 2003 G. Berry, VLSI'2004 synchronous tutorial, 1 -18 P Q R t d t’ t’’ t ~ t + t t’’ = t + d + t’ t’’ ~ t ~ d ~ t’ P||Q

19 © Esterel Technologies, 2003 G. Berry, VLSI'2004 synchronous tutorial, 1 -19 Only 3 solutions : t arbitrary asynchrony t = 0 synchrony t predictablevibration

20 © Esterel Technologies, 2003 G. Berry, VLSI'2004 synchronous tutorial, 1 -20 t arbitrary : Brownian Motion Chemical reaction H + H + Cl _ H + _ _ HCL H + Internet routing H + Cl _ HCL +

21 © Esterel Technologies, 2003 G. Berry, VLSI'2004 synchronous tutorial, 1 -21 Concurrency + Determinism Calculations are feasible Zero delay example: Newtonian Mechanics

22 © Esterel Technologies, 2003 G. Berry, VLSI'2004 synchronous tutorial, 1 -22 Here should be a fabulous drawing of Hergé’s "On a Marché sur la Lune", in English "Explorers on the Moon". French edition, page 10, first drawing. Drunk Captain Haddock has become a satellite of the Adonis asteroid. To catch him, Tintin, courageously standing on the rocket's side, asked Pr. Calculus to start the rocket's atomic engine. At precisely the right time, he shouts "STOP"! This is the trickiest real-time manoeuver ever performed by man. It required a perfect understanding of Newtonian Mechanics and absolute synchrony. The most difficult real-time manoeuver ever

23 © Esterel Technologies, 2003 G. Berry, VLSI'2004 synchronous tutorial, 1 -23 Here should be the 3rd drawing of page 10 of "Explorers on the Moon". Tintin's manoeuver was a perfect success, and he now catches Haddock with a lasso (highly non- trivial in deep space!) Digital synchronous circuits the RTL zero-delay model Synchronous languages Esterel, Lustre, Signal,... Excellent abstract model

24 © Esterel Technologies, 2003 G. Berry, VLSI'2004 synchronous tutorial, 1 -24 Nothing can illustrate vibration better than Bianca Castafiore, Hergé's famous prima donna. See [1] for details. The power of her voice forcibly shakes the microphone and the ears of the poor spectators. [1] King's Ottokar Sceptre, Hergé, page 29, last drawing. t predictable : vibration propagation of light, electrons, program counter...

25 © Esterel Technologies, 2003 G. Berry, VLSI'2004 synchronous tutorial, 1 -25 Bianca Castafiore singing for the King Muskar XII in Klow, Syldavia. King's Ottokar Sceptre, page 38, first drawing. Although the speed of sounds is finite, it is fast enough to look infinite. Full abstraction! The synchronous model Specify with zero-delay Implement with predictable delay Control room size (delay analysis) If room small enough, predictable delay implements zero-delay

26 © Esterel Technologies, 2003 G. Berry, VLSI'2004 synchronous tutorial, 1 -26 Cycle based read inputs compute reaction produce outputs Synchronous = within the same cycle propagate control propagate signals Zero-delay : standard model in control theory Software Synchronous Systems

27 © Esterel Technologies, 2003 G. Berry, VLSI'2004 synchronous tutorial, 1 -27 Hardware - the RTL model TRY PASS REQ OK GET_TOKENPASS_TOKEN OK = REQ and GO PASS = not REQ and GO GO = TRY or GET_TOKEN PASS_TOKEN = reg(GET_TOKEN) GO

28 © Esterel Technologies, 2003 G. Berry, VLSI'2004 synchronous tutorial, 1 -28 Synchronous Languages Characteristics A very simple computation model valid for software and hardware A high degree of concurrency but still deterministic Mathematical semantics made understandable and usable Translation algorithms to hardware and software correct by construction Formal verification based on mathematical semantics

29 © Esterel Technologies, 2003 G. Berry, VLSI'2004 synchronous tutorial, 1 -29 Embedded systems and correctness issues The three models of concurrency The synchronous model : data and control The synchronous design flows Current applications and envisioned extensions Agenda - Part 1 Synchrony for Embedded Systems

30 © Esterel Technologies, 2003 G. Berry, VLSI'2004 synchronous tutorial, 1 -30 control data signals values signals values Esterel SyncCharts Argos PBS Lustre SCADE Signal Lava Esterel v7 Data vs. Control

31 © Esterel Technologies, 2003 G. Berry, VLSI'2004 synchronous tutorial, 1 -31 Behavior steady,data flows data path, signal processing, continuous control Lustre / SCADE : sequential equations, declarative * - + X pre sin 0. U + pre cos 1. S pre boxes = operators arrows = data flows Y = sin(X) * cos(pre(Y)) Y t = sin(X t ) * cos(Y t-1 ) Data-Dominated Designs

32 © Esterel Technologies, 2003 G. Berry, VLSI'2004 synchronous tutorial, 1 -32 Behavior keeps changing, little data handling state-machine control bus protocols, memory / cache / pipeline control Esterel v5 / SyncCharts : imperative + hierarchical behavior boxes = states arrows = transitions names = signals hierarchy = preemption abort sustain DmaReq when DmaOk; abort every ByteIn do emit ByteOut (?ByteIn) end every when DmaEnd when 10 MilliSecond do emit TimeOut end abort Control-Dominated Designs

33 © Esterel Technologies, 2003 G. Berry, VLSI'2004 synchronous tutorial, 1 -33 Tricky control path + extensive data path Multi-mode signal processing, alarm detection and handling Bus bridges, QoS arbiters, fancy memory control The Evolution: Mixed Designs Software: SCADE incorporates Esterel state machines Hardware: Esterel v7 incorporates Lustre equations + more system-oriented design features UML architecture description configuration management requirement traceability

34 © Esterel Technologies, 2003 G. Berry, VLSI'2004 synchronous tutorial, 1 -34 1 0 + * Data-control interaction : actions and predicates

35 © Esterel Technologies, 2003 G. Berry, VLSI'2004 synchronous tutorial, 1 -35 Embedded systems and correctness issues The three models of concurrency The synchronous model : data and control The synchronous design flows Current applications and envisioned extensions Agenda - Part 1 Synchrony for Embedded Systems

36 © Esterel Technologies, 2003 G. Berry, VLSI'2004 synchronous tutorial, 1 -36 Maximal quality constraints: DO-178B Certified Avionics Software Flow Mandatory for civilian avionics, reference elsewhere Very strong software engineering control Full traceability from source code to embedded bits Synchronous technology: certifiable code generation Code generator certified with the same DO-178-B constraints No unit testing needed on generated code Airbus: 50 % cost improvement

37 © Esterel Technologies, 2003 G. Berry, VLSI'2004 synchronous tutorial, 1 -37 DO-178B Development Processes SW Requirements process SW Design process SW Coding process High-Level Requirements SW Integration process System Requirements process Integrated Executable Source Code Low-Level Requirements & Architecture System Requirements Allocated to Software System Life Cycle (ARP-4754) Software Life Cycle (DO-178B) Change requests Change requests

38 © Esterel Technologies, 2003 G. Berry, VLSI'2004 synchronous tutorial, 1 -38 Embedded software design flow Informal specsMatlab / Simulink modeling SCADE data flow automata Embedded C / ADA code Formal verification SAT + numbers (Prover plug-in) DO 178-B certifiable code generator Semantics preservation + compiler certification: = no unit test needed on C code. Airbus : 50% savings simulation animation

39 © Esterel Technologies, 2003 G. Berry, VLSI'2004 synchronous tutorial, 1 -39

40 © Esterel Technologies, 2003 G. Berry, VLSI'2004 synchronous tutorial, 1 -40 Current Software Users Avionics: Airbus, Dassault Aviation, EADS, Elbit, Eurocopter, Flight Dynamics, NASA, Thales, etc. Aircraft engines: Hispano-Suiza, Pratt&Whitney, etc. Automobile: Audi, General Motors, PSA, etc. Automobile equipment: Johnson Controls, Visteon, etc. Energy / transportation: CSEE, Framatome, DESS, etc.

41 © Esterel Technologies, 2003 G. Berry, VLSI'2004 synchronous tutorial, 1 -41 Esterel v7 Hardware Design Flow Esterel Spec (unique reference) Paper spec C simulation System C FPGA proto. Formal verification Test generation hardware : VHDL, Verilog software: C, C++ semantics is preserved throughout the flow and identical for hardware and software

42 © Esterel Technologies, 2003 G. Berry, VLSI'2004 synchronous tutorial, 1 -42 Current Hardware Users Module-level design: Intel, STM, Thales, T.I, Xilinx Application / coprocessor fast prototyping: TI, STM SoC modeling and analysis: STM, Philips Protocols : Eurecom Test generation: T.I., Oberthur

43 © Esterel Technologies, 2003 G. Berry, VLSI'2004 synchronous tutorial, 1 -43 Extract of UART with OPB Interface (Xilinx)

44 © Esterel Technologies, 2003 G. Berry, VLSI'2004 synchronous tutorial, 1 -44 UART Hardware / Software implementation on XILINX Virtex Chip XCV2V1000 Hardware (CLB)Software (SoftCore) (courtesy of Satnam Singh, Xilinx)

45 © Esterel Technologies, 2003 G. Berry, VLSI'2004 synchronous tutorial, 1 -45 Comparison with HDL, SW, and system-level languages Esterel is not a replacement for HDLs, SystemC, or C Esterel modules can be plugged into any of the above Semantics is defined formally, not by implementation Full mathematical study available Everything is synthesizable in hardware and software Formal semantics and implementation are 100% in agreement At least 5 different implementation techniques available Formal verification is directly based on the semantics

46 © Esterel Technologies, 2003 G. Berry, VLSI'2004 synchronous tutorial, 1 -46 Compilers Data-flow to software (Lustre / SCADE, Signal) inline expansion, toplogical sorting optimization: memory allocation, locality (limited by traceability) Control-flow to hardware (Esterel) structural translation to RTL + sequential optimization program dependency graph + smart encoding (Columbia) Control-flow to software RTL simulation in software (Esterel v5 / v7) static scheduling of control-flow graph (Synopsys) static scheduling of aggregated blocks (France Telecom, INRIA, Columbia)

47 © Esterel Technologies, 2003 G. Berry, VLSI'2004 synchronous tutorial, 1 -47 Different communities, different needs Safety-critical software : keep it simple prefer graphical programming add unit-delays to break cyclic dependencies => strong acyclicity constraints on dependencies => simplified state machines Efficient hardware : maximal power textual programming + some state machines agressively pack computations in the cycle play with combinational / sequential logic (pipeline) accept clever cycles (reincarnation, combinational cycles) => minimal language restrictions

48 © Esterel Technologies, 2003 G. Berry, VLSI'2004 synchronous tutorial, 1 -48 Different communities, same needs Better specifications early executable models from architectural descriptions golden models, linked to system models formal contracts with subcontractors Better synthesis why recode by hand? Better formal verification property checking sequential equivalence Architects and designers start understanding the value of formal methods

49 © Esterel Technologies, 2003 G. Berry, VLSI'2004 synchronous tutorial, 1 -49 Embedded systems and correctness issues The three models of concurrency The synchronous model : data and control The synchronous design flows Current applications and envisioned extensions Agenda - Part 1 Synchrony for Embedded Systems

50 © Esterel Technologies, 2003 G. Berry, VLSI'2004 synchronous tutorial, 1 -50 Current main sweetspot : compact unitary systems software : flight control, brakes, suspension, airbag, alarm management, climate control, etc. hardware : equipment interface (disk, camera), protocols, DMAs, memory control, caches, etc. both : simulation, synthesis, formal verification compatibility with current design chains Extensions for full system handling software : multi-computer distributed system handling hardware : SoC modeling, multiclock circuits, clock gating both : controlled non-determinism for modeling Towards GALS : Globally Asynchronous Locally Synchronous use local synchrony as much as possible connect synchronous islands asynchronously very similar to a company organization!

Download ppt "© Esterel Technologies, 2003 G. Berry, VLSI'2004 synchronous tutorial, 1 -1 Synchronous Methodology for Hardware, Software, and Mixed Embedded Systems."

Similar presentations

SOC Design: From System to Transistor

SOC Design: From System to Transistor
ECOE 560 Design Methodologies and Tools for Software/Hardware Systems Spring 2004 Serdar Taşıran.

ECOE 560 Design Methodologies and Tools for Software/Hardware Systems Spring 2004 Serdar Taşıran.
Esterel Technologies © 2006 — www.esterel-technologies.com - DASC meeting, July 25thwww.esterel-technologies.com 1 1 Esterel v7 IEEE / DASC Standardization.

Esterel Technologies © 2006 — - DASC meeting, July 25thwww.esterel-technologies.com 1 1 Esterel v7 IEEE / DASC Standardization.
© Chinese University, CSE Dept. Software Engineering / 1 - 1 Software Engineering Topic 1: Software Engineering: A Preview Your Name: ____________________.

© Chinese University, CSE Dept. Software Engineering / Software Engineering Topic 1: Software Engineering: A Preview Your Name: ____________________.
Evolution and History of Programming Languages Software/Hardware/System.

Evolution and History of Programming Languages Software/Hardware/System.
Synchron’08 Jean-François LE TALLEC INRIA SOP lab, AOSTE INRIA SOP lab, EPI AOSTE ScaleoChip Company SoC Conception Methodology.

Synchron’08 Jean-François LE TALLEC INRIA SOP lab, AOSTE INRIA SOP lab, EPI AOSTE ScaleoChip Company SoC Conception Methodology.
Modern VLSI Design 4e: Chapter 8 Copyright  2008 Wayne Wolf Topics High-level synthesis. Architectures for low power. GALS design.

Modern VLSI Design 4e: Chapter 8 Copyright  2008 Wayne Wolf Topics High-level synthesis. Architectures for low power. GALS design.
Requirements on the Execution of Kahn Process Networks Marc Geilen and Twan Basten 11 April 2003 /e.

Requirements on the Execution of Kahn Process Networks Marc Geilen and Twan Basten 11 April 2003 /e.
Implementing Constructive Synchronous Programs on POLIS CFSM Networks G.Berry E.Sentovich Ecole des Mines de Paris / INRIA Cadence Berkeley Labs.

Implementing Constructive Synchronous Programs on POLIS CFSM Networks G.Berry E.Sentovich Ecole des Mines de Paris / INRIA Cadence Berkeley Labs.
The Design Process Outline Goal Reading Design Domain Design Flow

The Design Process Outline Goal Reading Design Domain Design Flow
NSF Foundations of Hybrid and Embedded Software Systems UC Berkeley: Chess Vanderbilt University: ISIS University of Memphis: MSI A New System Science.

NSF Foundations of Hybrid and Embedded Software Systems UC Berkeley: Chess Vanderbilt University: ISIS University of Memphis: MSI A New System Science.
1 HW/SW Partitioning Embedded Systems Design. 2 Hardware/Software Codesign “Exploration of the system design space formed by combinations of hardware.

1 HW/SW Partitioning Embedded Systems Design. 2 Hardware/Software Codesign “Exploration of the system design space formed by combinations of hardware.
Behavioral Design Outline –Design Specification –Behavioral Design –Behavioral Specification –Hardware Description Languages –Behavioral Simulation –Behavioral.

Behavioral Design Outline –Design Specification –Behavioral Design –Behavioral Specification –Hardware Description Languages –Behavioral Simulation –Behavioral.
ECE 667 - Synthesis & Verification1 ECE 667 Spring 2011 Synthesis and Verification of Digital Systems Verification Introduction.

ECE Synthesis & Verification1 ECE 667 Spring 2011 Synthesis and Verification of Digital Systems Verification Introduction.
Review of “Embedded Software” by E.A. Lee Katherine Barrow Vladimir Jakobac.

Review of “Embedded Software” by E.A. Lee Katherine Barrow Vladimir Jakobac.
Define Embedded Systems Small (?) Application Specific Computer Systems.

Define Embedded Systems Small (?) Application Specific Computer Systems.
Models of Computation for Embedded System Design Alvise Bonivento.

Models of Computation for Embedded System Design Alvise Bonivento.
NSF Foundations of Hybrid and Embedded Software Systems UC Berkeley: Chess Vanderbilt University: ISIS University of Memphis: MSI A New System Science.

NSF Foundations of Hybrid and Embedded Software Systems UC Berkeley: Chess Vanderbilt University: ISIS University of Memphis: MSI A New System Science.
Copyright © 2001 Stephen A. Edwards All rights reserved Esterel and Other Projects Prof. Stephen A. Edwards Columbia University, New York www.cs.columbia.edu/~sedwards.

Copyright © 2001 Stephen A. Edwards All rights reserved Esterel and Other Projects Prof. Stephen A. Edwards Columbia University, New York
The Synchronous Programming Model and Its Applciations Gérard Berry Chief Scientist Esterel Technologies

The Synchronous Programming Model and Its Applciations Gérard Berry Chief Scientist Esterel Technologies

Similar presentations

Ads by Google