Daniel Kaestner (AbsInt),
Carsten Rustemeier (dSPACE GmbH),
|Elektronik automotive, Mar 2014|
In model-based development, software is developed at a high level of abstraction, i.e., as a model, and the C code implementation is automatically generated from the model. The high degree of abstraction allows intuitive application development and increases the efficiency of development. However, to verify system safety, it is not enough to regard only the model level; the properties of the C code and even of the binary machine code also have to be investigated. For example, this has to be done to determine the bounds for execution time and stack usage as required by ISO 26262 and also to prove the absence of run-time errors. Such errors can be reliably excluded by means of abstract interpretation-based static analyzers. The production code generator from dSPACE, TargetLink, has been coupled with the static analysis tools aiT, StackAnalyzer and Astrée from AbsInt to allow the analyzers – which function at implementation level – to be integrated seamlessly into the process of model-based software development. Thus, timing bugs, stack overflows and run-time errors can be detected in early development phases and reliably excluded.