AdaCore, profile picture
Uploaded byAdaCore
PPTX, PDF718 views

Tech Days 2015: Ada 2012 and Spark Crazyflie and Railway Demo

This document summarizes presentations given by Eric Perlade on using Ada 2012 and SPARK 2014 for safety-critical drone and railway signaling software. It describes reimplementing the stabilization system of the Crazyflie drone firmware in SPARK to prove absence of runtime errors. It also outlines plans to reimplement the entire drone firmware without C using Ada 2012 and SPARK. Additionally, it discusses a demonstration of using SPARK 2014 to model a railway signaling system and prove absence of collisions.

Embed presentation

Downloaded 15 times
Ada 2012 and SPARK Crazyflie and Railway demos Eric Perlade 2015/10/01
CrazyFlie 2.0 • 27g ready to fly drone • Ideal for indoor use • Android and iOS app (Bluetooth LE) • Python client using a radio dongle • Based on STM32F4 (ARM Cortex M4) and NRF5181 (radio chip) • Firmware entirely written in C • 5900 lines of code (without including drivers, HAL and external libs) • Based on FreeRTOS (tasking)
Why ? • Drones security and safety becoming an important issue • Stricter certification regime for drones coming in Europe • AdaCore is partnering with Squadrone Systems to build open- source certifiable drone in Ada/SPARK • Will show the feasibility of this project
First Steps … towards safety Q1 ) What code parts are the most critical in a drone firmware? Answer: the parts related to the stabilization system Action Items: – Re-implementing stabilization system in SPARK 2014 – Proving absence of runtime errors
Stabilization system Stabilization system
Issues with original source code • The C code was not designed to be formally proved • Stabilization system in C uses C predefined types (float, int etc.) • Absence of runtime errors can’t be proved on calculations with general types • Example: float calculateError(float measured, float desired) { return desired – measured; } // Will cause an obvious overflow if called with // FLT_MIN and FLT_MAX…
Solution with SPARK 2014 • Each module of the stabilization system transformed into a SPARK package • Use of constrained types and subtypes (ex: defining a type T_Angle instead of using the general Ada type Float) • Genericity for sharing code • Insert saturation when needed Result • Proof of absence of runtime errors on every package • Discovery of one bug related to overflows, corrected by the Bitcraze team later
Next Steps … towards more safety Q2) What code parts are critical in a drone firmware? Answer: whole! Action Items: Re-implementing the whole firmware in Ada 2012 and SPARK • Replacing the OS by Ravenscar runtime • Rewriting other modules and drivers
SPARK 2014 and C SPARK 2014 High-Level C code Low-Level C code
Runtime and Drivers • Replace FreeRTOS by a Ravenscar based runtime targeting the STM32F4 • Replace all the FreeRTOS tasks using the Ravenscar tasking model (tasks, protected objects) • Rewrite the Crazyflie drivers using ST Peripheral Drivers in Ada
SPARK 2014, Ada 2012 and no C SPARK 2014 High-Level Ada 2012 code Low-Level Ada 2012 code
Goal achieved ? • Crazyflie with a 100% Ada and SPARK firmware in 5 months without any previous Ada nor fomal methods experience • But still not easy to pilot One last question, what code part would be critical in a drone firmware? Answer: A secret recovery feature Action Item: Implementing free fall recovery mode
Free Fall detection When placed on a flat surface Free-fall detected
Recovery and Landing • Set desired angles to 0.0 for roll and pitch • High thrust applied after a free-fall • Thrust slowly decreased until a minimum that permits the drone to land properly • Calculate the acceleration variance when the drone is in the descending phase • If variance is high, the drone has landed, recovery is over !
Real life validation Action Item: Dropping the flie
Railway safe signaling Demo
Why ? • To prove the absence of collision using SPARK 2014 • To get closer to customer experience • And mainly to play with our new Raspberry Pi 2 port !
Hardware • Electrical railway modelling kit • On-off power relay to control trains • Hall effect sensors to detect trains • Turnout motors to control switches • Raspberry Pi 2
One way track model Controlled section On/Off Uncontrolled section always on Sensor
Slow train coming
Slow train going on
Slow train detected
Slow train still going
Slow train detected again
Slow train going away
Turnout the tricky part
Turnout the tricky part
Railway layout
Software design with SPARK_Mode Signaling Manager (protected object) Sensor monitoring (Task) SDL Graphical Interface (task) Train Simulator (Task) HW interface Raspberry Pi 2 GPIO
SPARK proof
Real life validation Action Item: Dropping the train
Conclusion • It works! • Ada 2012 mixed with SPARK 2014 are ready for the industry • Easy to access and learn technology • Demo sources will be available on GitHub • Have a look at AdaCore University • http://university.adacore.com/

More Related Content

PPTX
GNAT Pro User Day: QGen: Simulink® static verification and code generation
byAdaCore
 
PDF
The Ultimate Dependency Manager Shootout (QCon NY 2014)
bySander Mak (@Sander_Mak)
 
PPTX
GNAT Pro User Day: Latest Advances in AdaCore Static Analysis Tools
byAdaCore
 
PDF
GNAT Pro User Day: AdaCore Insights
byAdaCore
 
PDF
GNAT Pro User Day: GNATdashboard - Tracking and Improving Software Quality
byAdaCore
 
PDF
Visibility Challenge on OF@TEIN SDN-enabled Virtual Playgrounds
byGIST (Gwangju Institute of Science and Technology)
 
PPTX
Developing intelligent robots with AWS RoboMaker
byThomas Moulard
 
PDF
GNAT Pro User Day: Ada at Ansaldo STS
byAdaCore
 
GNAT Pro User Day: QGen: Simulink® static verification and code generation
byAdaCore
 
The Ultimate Dependency Manager Shootout (QCon NY 2014)
bySander Mak (@Sander_Mak)
 
GNAT Pro User Day: Latest Advances in AdaCore Static Analysis Tools
byAdaCore
 
GNAT Pro User Day: AdaCore Insights
byAdaCore
 
GNAT Pro User Day: GNATdashboard - Tracking and Improving Software Quality
byAdaCore
 
Visibility Challenge on OF@TEIN SDN-enabled Virtual Playgrounds
byGIST (Gwangju Institute of Science and Technology)
 
Developing intelligent robots with AWS RoboMaker
byThomas Moulard
 
GNAT Pro User Day: Ada at Ansaldo STS
byAdaCore
 

What's hot

PPTX
Indoor Wireless Localization - Zigbee
byAlex Salim
 
PDF
ScilabTEC 2015 - Evidence
byScilab
 
PPT
GM
bysam ran
 
PDF
The Paved PaaS to Microservices at Netflix (IAS2017 Nanjing)
byYunong Xiao
 
PDF
SCIO : Apache Beam API
byParis Data Engineers !
 
PPTX
Beyond Continuous Delivery at ThoughtWorks North America Away Day
byChris Hilton
 
DOC
Divyam Virmani
byDivyam Virmani
 
PPTX
Beyond Continuous Delivery TW Away Day June 2013
byChris Hilton
 
PDF
How we scale up our architecture and organization at Dailymotion
byStanislas Chollet
 
PDF
Frail & Cast Iron tools - a Postman Case Study
byPostman
 
PPTX
Strel streaming
byVincenzo Gulisano
 
DOCX
LinkedIn – Engineer I at Infineon Technologies
byJan Yeong Koay
 
PPS
H S
byJEDAmarketing
 
Indoor Wireless Localization - Zigbee
byAlex Salim
 
ScilabTEC 2015 - Evidence
byScilab
 
GM
bysam ran
 
The Paved PaaS to Microservices at Netflix (IAS2017 Nanjing)
byYunong Xiao
 
SCIO : Apache Beam API
byParis Data Engineers !
 
Beyond Continuous Delivery at ThoughtWorks North America Away Day
byChris Hilton
 
Divyam Virmani
byDivyam Virmani
 
Beyond Continuous Delivery TW Away Day June 2013
byChris Hilton
 
How we scale up our architecture and organization at Dailymotion
byStanislas Chollet
 
Frail & Cast Iron tools - a Postman Case Study
byPostman
 
Strel streaming
byVincenzo Gulisano
 
LinkedIn – Engineer I at Infineon Technologies
byJan Yeong Koay
 
H S
byJEDAmarketing
 

Viewers also liked

PPTX
Tech Days 2015: SPARK 2014
byAdaCore
 
PDF
An3906 serial to eth freescale
byFernando
 
PDF
S emb t1-introduction
byJoão Moreira
 
PPTX
Tech Days 2015: Multi-language Programming with GPRbuild
byAdaCore
 
PDF
Bolt mld1717 11100975
byJoão Moreira
 
PPTX
Introduction to the new MediaTek LinkIt™ Development Platform for RTOS
byMediaTek Labs
 
DOCX
4th ARM Developer Day Presenters info
byAntonio Mondragon
 
PPTX
2013 ARM Student Design Competition @RIT
byAntonio Mondragon
 
PPTX
Arm rit design_comp 2014
byAntonio Mondragon
 
PPTX
4th ARM Developer Day Presentation
byAntonio Mondragon
 
PPTX
Los jaliles pesados
byAntonio Mondragon
 
PDF
Exp w21
bySelectedPresentations
 
PPTX
RIT 2nd ARM Developer Day - Texas Instruments Presentation
byAntonio Mondragon
 
PDF
Windows Azure – Building & Deploying Cloud Services
byWinWire Technologies Inc
 
PPTX
Andrew_Liu_ARDrone
byAndrew Liu
 
PPT
Sistema de monitoreo multipropósito
byAntonio Mondragon
 
PPTX
Matthew Bailey IoT Keynote - Future of Wireless, Humanity and our Planet
byMatthew Bailey
 
PPT
2nd ARM Developer Day - mbed Workshop - ARM
byAntonio Mondragon
 
PPTX
Building IoT Solutions using Windows IoT Core
byWinWire Technologies Inc
 
PDF
The impact of IOT - exchange cala - 2015
byEduardo Pelegri-Llopart
 
Tech Days 2015: SPARK 2014
byAdaCore
 
An3906 serial to eth freescale
byFernando
 
S emb t1-introduction
byJoão Moreira
 
Tech Days 2015: Multi-language Programming with GPRbuild
byAdaCore
 
Bolt mld1717 11100975
byJoão Moreira
 
Introduction to the new MediaTek LinkIt™ Development Platform for RTOS
byMediaTek Labs
 
4th ARM Developer Day Presenters info
byAntonio Mondragon
 
2013 ARM Student Design Competition @RIT
byAntonio Mondragon
 
Arm rit design_comp 2014
byAntonio Mondragon
 
4th ARM Developer Day Presentation
byAntonio Mondragon
 
Los jaliles pesados
byAntonio Mondragon
 
Exp w21
bySelectedPresentations
 
RIT 2nd ARM Developer Day - Texas Instruments Presentation
byAntonio Mondragon
 
Windows Azure – Building & Deploying Cloud Services
byWinWire Technologies Inc
 
Andrew_Liu_ARDrone
byAndrew Liu
 
Sistema de monitoreo multipropósito
byAntonio Mondragon
 
Matthew Bailey IoT Keynote - Future of Wireless, Humanity and our Planet
byMatthew Bailey
 
2nd ARM Developer Day - mbed Workshop - ARM
byAntonio Mondragon
 
Building IoT Solutions using Windows IoT Core
byWinWire Technologies Inc
 
The impact of IOT - exchange cala - 2015
byEduardo Pelegri-Llopart
 

Similar to Tech Days 2015: Ada 2012 and Spark Crazyflie and Railway Demo

KEY
Eating Fruit - Combining Robots & Apps
byRobotGrrl
 
PDF
Open_IoT_Summit-Europe-2016-Building_a_Drone_from_scratch
byIgor Stoppa
 
PDF
Convolution Neural Network Based Fire Fighting Robot
byIRJET Journal
 
PDF
Adith Jagadish Boloor - Arduino by Example - 2015.pdf
byCristian A. Tissera
 
PDF
IoT Project Analysis Report of Year 1 - Project Semester 2.
byRobertSolomon23
 
PPTX
ppt flame guard FLAME GUARD PRESENTATION.pptx
byvenkateshjavvadi36
 
PDF
TFM_Marti_POMES also b forgot quick soap.pdf
bybelaydemeke475
 
PDF
Hacking for Salone: Drone Races - Di Saverio; Lippolis - Codemotion Milan 2016
byCodemotion
 
PPTX
Hacking for salone: drone races
byEmanuele Di Saverio
 
PDF
Sentinel - The First Home Security Robot Powered by Android Things (DroidCon...
byOscar Salguero
 
PPTX
Open Source Robotics as Booster to Creativity
byCarlos J. Costa
 
PDF
SSCCIP Final Presentation (The Spartans)
byDerek J. Russell
 
PDF
Fulltext02
byAl Mtdrs
 
PDF
Raspberry Pi + ROS
byArnoldBail
 
PDF
IRJET - Implementation of SDC: Self-Driving Car based on Raspberry Pi
byIRJET Journal
 
PDF
BUD17-405: Building a reference IoT product with Zephyr
byLinaro
 
PPTX
Intelligent robots and drone technology ppt
byumadevikakarlapudi
 
PPTX
Unit-5 (1).intelligent robotics and drone technoloy
byUma Kakarlapudi
 
PDF
IoT_IO1_2 Getting familiar with Hardware - Development Boards.pdf
byDanishMahmood23
 
PPTX
Manjunath Kashinath Munjanni project work
bymanjunathmunjanni037
 
Eating Fruit - Combining Robots & Apps
byRobotGrrl
 
Open_IoT_Summit-Europe-2016-Building_a_Drone_from_scratch
byIgor Stoppa
 
Convolution Neural Network Based Fire Fighting Robot
byIRJET Journal
 
Adith Jagadish Boloor - Arduino by Example - 2015.pdf
byCristian A. Tissera
 
IoT Project Analysis Report of Year 1 - Project Semester 2.
byRobertSolomon23
 
ppt flame guard FLAME GUARD PRESENTATION.pptx
byvenkateshjavvadi36
 
TFM_Marti_POMES also b forgot quick soap.pdf
bybelaydemeke475
 
Hacking for Salone: Drone Races - Di Saverio; Lippolis - Codemotion Milan 2016
byCodemotion
 
Hacking for salone: drone races
byEmanuele Di Saverio
 
Sentinel - The First Home Security Robot Powered by Android Things (DroidCon...
byOscar Salguero
 
Open Source Robotics as Booster to Creativity
byCarlos J. Costa
 
SSCCIP Final Presentation (The Spartans)
byDerek J. Russell
 
Fulltext02
byAl Mtdrs
 
Raspberry Pi + ROS
byArnoldBail
 
IRJET - Implementation of SDC: Self-Driving Car based on Raspberry Pi
byIRJET Journal
 
BUD17-405: Building a reference IoT product with Zephyr
byLinaro
 
Intelligent robots and drone technology ppt
byumadevikakarlapudi
 
Unit-5 (1).intelligent robotics and drone technoloy
byUma Kakarlapudi
 
IoT_IO1_2 Getting familiar with Hardware - Development Boards.pdf
byDanishMahmood23
 
Manjunath Kashinath Munjanni project work
bymanjunathmunjanni037
 

More from AdaCore

PDF
RCA OCORA: Safe Computing Platform using open standards
byAdaCore
 
PDF
Have we a Human Ecosystem?
byAdaCore
 
PDF
Rust and the coming age of high integrity languages
byAdaCore
 
PDF
SPARKNaCl: A verified, fast cryptographic library
byAdaCore
 
PDF
Developing Future High Integrity Processing Solutions
byAdaCore
 
PDF
Taming event-driven software via formal verification
byAdaCore
 
PDF
Pushing the Boundary of Mostly Automatic Program Proof
byAdaCore
 
PDF
RCA OCORA: Safe Computing Platform using open standards
byAdaCore
 
PDF
Product Lines and Ecosystems: from customization to configuration
byAdaCore
 
PDF
Securing the Future of Safety and Security of Embedded Software
byAdaCore
 
PDF
Spark / Ada for Safe and Secure Firmware Development
byAdaCore
 
PDF
Introducing the HICLASS Research Programme - Enabling Development of Complex ...
byAdaCore
 
PDF
The Future of Aerospace – More Software Please!
byAdaCore
 
PDF
Adaptive AUTOSAR - The New AUTOSAR Architecture
byAdaCore
 
PDF
Using Tiers of Assurance Evidence to Reduce the Tears! Adopting the “Wheel of...
byAdaCore
 
PDF
Software Engineering for Robotics - The RoboStar Technology
byAdaCore
 
PDF
MISRA C in an ISO 26262 context
byAdaCore
 
PPTX
Application of theorem proving for safety-critical vehicle software
byAdaCore
 
PDF
The Application of Formal Methods to Railway Signalling Software
byAdaCore
 
PDF
Bounded Model Checking for C Programs in an Enterprise Environment
byAdaCore
 
RCA OCORA: Safe Computing Platform using open standards
byAdaCore
 
Have we a Human Ecosystem?
byAdaCore
 
Rust and the coming age of high integrity languages
byAdaCore
 
SPARKNaCl: A verified, fast cryptographic library
byAdaCore
 
Developing Future High Integrity Processing Solutions
byAdaCore
 
Taming event-driven software via formal verification
byAdaCore
 
Pushing the Boundary of Mostly Automatic Program Proof
byAdaCore
 
RCA OCORA: Safe Computing Platform using open standards
byAdaCore
 
Product Lines and Ecosystems: from customization to configuration
byAdaCore
 
Securing the Future of Safety and Security of Embedded Software
byAdaCore
 
Spark / Ada for Safe and Secure Firmware Development
byAdaCore
 
Introducing the HICLASS Research Programme - Enabling Development of Complex ...
byAdaCore
 
The Future of Aerospace – More Software Please!
byAdaCore
 
Adaptive AUTOSAR - The New AUTOSAR Architecture
byAdaCore
 
Using Tiers of Assurance Evidence to Reduce the Tears! Adopting the “Wheel of...
byAdaCore
 
Software Engineering for Robotics - The RoboStar Technology
byAdaCore
 
MISRA C in an ISO 26262 context
byAdaCore
 
Application of theorem proving for safety-critical vehicle software
byAdaCore
 
The Application of Formal Methods to Railway Signalling Software
byAdaCore
 
Bounded Model Checking for C Programs in an Enterprise Environment
byAdaCore
 

Recently uploaded

PDF
Constraints First - Why Our On-Prem Ticketing System Starts With Limits, Not ...
bySpirit Face
 
PDF
Here’s the case study that shows how companies lose ₹2–6 Cr annually due to m...
bysiddhantdazzlo
 
PDF
Intelligent CRM for Insurance Brokers: Managing Clients with Precision
byInsurance Tech Services
 
PPTX
AI Clinic Management Software for Otolaryngology Clinics Bringing Precision, ...
byEasy Clinic
 
PDF
Imed Eddine Bouchoucha | computer engineer | software Architect
byImed Bouchoucha
 
PDF
How Modern Custom Software is Revolutionizing Mortgage Lending Processes -Ma...
byMatellio
 
PDF
API_SECURITY CONSULTANCY SERVICES IN USA
bydavidjohansen1597
 
PDF
BCS-FACS Peter Landin Semantics Seminar - Formal Methods: Whence and Whither?
byJonathan Bowen
 
PDF
Advanced Prompt Engineering: The Art and Science
byMaxim Salnikov
 
PDF
How NetSuite Cloud ERP Helps Businesses Overcome Legacy System Downtime.
byTechWize
 
PDF
IT Estate Modernization: Transform Your Infrastructure for the Future .pdf
byAstuteBusiness
 
PPTX
Binance Smart Chain Development Guide.pptx
bylakshubadai
 
PPTX
Why Your Business Needs Snowflake Consulting_ From Data Silos to AI-Ready Cloud
byChetu
 
PDF
Navigating SEC Regulations for Crypto Exchanges Preparing for a Compliant Fut...
byzak jasper
 
PDF
Database Management Systems(DBMS):UNIT-II Relational Data Model BCA SEP SEM ...
byKuvempu University
 
PDF
Database Management Systems(DBMS):UNIT-I Introduction to Database(DBMS) BCA S...
byKuvempu University
 
PPTX
AI Clinic Management Software for Pulmonology Clinics Bringing Clarity, Contr...
byEasy Clinic
 
PPTX
SNG460-CNG489_Week6_3-7Nov25_Chp6-Part1.pptx
byberayseray382
 
PDF
Blueprint to build quality before the code exists - StackConnect Milan 2025
byLudovicoBesana1
 
PDF
Why Zoho Notebook’s AI-Fueled Upgrade Matters for Knowledge Workers in 2026
byEvoluz Global Solutions
 
Constraints First - Why Our On-Prem Ticketing System Starts With Limits, Not ...
bySpirit Face
 
Here’s the case study that shows how companies lose ₹2–6 Cr annually due to m...
bysiddhantdazzlo
 
Intelligent CRM for Insurance Brokers: Managing Clients with Precision
byInsurance Tech Services
 
AI Clinic Management Software for Otolaryngology Clinics Bringing Precision, ...
byEasy Clinic
 
Imed Eddine Bouchoucha | computer engineer | software Architect
byImed Bouchoucha
 
How Modern Custom Software is Revolutionizing Mortgage Lending Processes -Ma...
byMatellio
 
API_SECURITY CONSULTANCY SERVICES IN USA
bydavidjohansen1597
 
BCS-FACS Peter Landin Semantics Seminar - Formal Methods: Whence and Whither?
byJonathan Bowen
 
Advanced Prompt Engineering: The Art and Science
byMaxim Salnikov
 
How NetSuite Cloud ERP Helps Businesses Overcome Legacy System Downtime.
byTechWize
 
IT Estate Modernization: Transform Your Infrastructure for the Future .pdf
byAstuteBusiness
 
Binance Smart Chain Development Guide.pptx
bylakshubadai
 
Why Your Business Needs Snowflake Consulting_ From Data Silos to AI-Ready Cloud
byChetu
 
Navigating SEC Regulations for Crypto Exchanges Preparing for a Compliant Fut...
byzak jasper
 
Database Management Systems(DBMS):UNIT-II Relational Data Model BCA SEP SEM ...
byKuvempu University
 
Database Management Systems(DBMS):UNIT-I Introduction to Database(DBMS) BCA S...
byKuvempu University
 
AI Clinic Management Software for Pulmonology Clinics Bringing Clarity, Contr...
byEasy Clinic
 
SNG460-CNG489_Week6_3-7Nov25_Chp6-Part1.pptx
byberayseray382
 
Blueprint to build quality before the code exists - StackConnect Milan 2025
byLudovicoBesana1
 
Why Zoho Notebook’s AI-Fueled Upgrade Matters for Knowledge Workers in 2026
byEvoluz Global Solutions
 

Tech Days 2015: Ada 2012 and Spark Crazyflie and Railway Demo

  • 2.
    Ada 2012 andSPARK Crazyflie and Railway demos Eric Perlade 2015/10/01
  • 3.
    CrazyFlie 2.0 • 27gready to fly drone • Ideal for indoor use • Android and iOS app (Bluetooth LE) • Python client using a radio dongle • Based on STM32F4 (ARM Cortex M4) and NRF5181 (radio chip) • Firmware entirely written in C • 5900 lines of code (without including drivers, HAL and external libs) • Based on FreeRTOS (tasking)
  • 4.
    Why ? • Dronessecurity and safety becoming an important issue • Stricter certification regime for drones coming in Europe • AdaCore is partnering with Squadrone Systems to build open- source certifiable drone in Ada/SPARK • Will show the feasibility of this project
  • 5.
    First Steps …towards safety Q1 ) What code parts are the most critical in a drone firmware? Answer: the parts related to the stabilization system Action Items: – Re-implementing stabilization system in SPARK 2014 – Proving absence of runtime errors
  • 6.
  • 7.
    Issues with originalsource code • The C code was not designed to be formally proved • Stabilization system in C uses C predefined types (float, int etc.) • Absence of runtime errors can’t be proved on calculations with general types • Example: float calculateError(float measured, float desired) { return desired – measured; } // Will cause an obvious overflow if called with // FLT_MIN and FLT_MAX…
  • 8.
    Solution with SPARK2014 • Each module of the stabilization system transformed into a SPARK package • Use of constrained types and subtypes (ex: defining a type T_Angle instead of using the general Ada type Float) • Genericity for sharing code • Insert saturation when needed Result • Proof of absence of runtime errors on every package • Discovery of one bug related to overflows, corrected by the Bitcraze team later
  • 9.
    Next Steps …towards more safety Q2) What code parts are critical in a drone firmware? Answer: whole! Action Items: Re-implementing the whole firmware in Ada 2012 and SPARK • Replacing the OS by Ravenscar runtime • Rewriting other modules and drivers
  • 10.
    SPARK 2014 andC SPARK 2014 High-Level C code Low-Level C code
  • 11.
    Runtime and Drivers •Replace FreeRTOS by a Ravenscar based runtime targeting the STM32F4 • Replace all the FreeRTOS tasks using the Ravenscar tasking model (tasks, protected objects) • Rewrite the Crazyflie drivers using ST Peripheral Drivers in Ada
  • 12.
    SPARK 2014, Ada2012 and no C SPARK 2014 High-Level Ada 2012 code Low-Level Ada 2012 code
  • 13.
    Goal achieved ? •Crazyflie with a 100% Ada and SPARK firmware in 5 months without any previous Ada nor fomal methods experience • But still not easy to pilot One last question, what code part would be critical in a drone firmware? Answer: A secret recovery feature Action Item: Implementing free fall recovery mode
  • 14.
    Free Fall detection Whenplaced on a flat surface Free-fall detected
  • 15.
    Recovery and Landing •Set desired angles to 0.0 for roll and pitch • High thrust applied after a free-fall • Thrust slowly decreased until a minimum that permits the drone to land properly • Calculate the acceleration variance when the drone is in the descending phase • If variance is high, the drone has landed, recovery is over !
  • 16.
    Real life validation ActionItem: Dropping the flie
  • 17.
  • 18.
    Why ? • Toprove the absence of collision using SPARK 2014 • To get closer to customer experience • And mainly to play with our new Raspberry Pi 2 port !
  • 19.
    Hardware • Electrical railwaymodelling kit • On-off power relay to control trains • Hall effect sensors to detect trains • Turnout motors to control switches • Raspberry Pi 2
  • 20.
    One way trackmodel Controlled section On/Off Uncontrolled section always on Sensor
  • 21.
  • 22.
  • 23.
  • 24.
  • 25.
  • 26.
  • 27.
  • 28.
  • 29.
  • 30.
    Software design with SPARK_Mode SignalingManager (protected object) Sensor monitoring (Task) SDL Graphical Interface (task) Train Simulator (Task) HW interface Raspberry Pi 2 GPIO
  • 31.
  • 32.
    Real life validation ActionItem: Dropping the train
  • 33.
    Conclusion • It works! •Ada 2012 mixed with SPARK 2014 are ready for the industry • Easy to access and learn technology • Demo sources will be available on GitHub • Have a look at AdaCore University • http://university.adacore.com/

Editor's Notes

  • #3 Change the title
  • #4 No solder Software that are provided by BitCraze
  • #7 Divided in 3 main modules: PID module, implementation of a general PID controller Controller module, used to control the 3 Attitude/Rate PIDs (for each axis) Stabilizer module, which contains the main stabilization loop (Read commands / IMU measurements  Update the controller  Send output to the actuators)
  • #9 Post on the AdaCore blog explaining the techniques I used
  • #11 SPARK color #853577 133, 53, 119 FB color #3B5998 (59,89,152)
  • #13 Crazyflie flying with a 100% Ada + SPARK firmware Discovery of some flaws on the remaining C parts Bug found in the Ravenscar runtime related with interrupts and context switching (corrected)
  • #20 Or model railroading in US One way
  • #21 On off power control => no orange section One way only
  • #22 Bod dylan
  • #23 Bod dylan
  • #24 Bod dylan
  • #25 Bod dylan
  • #26 Bod dylan
  • #27 Bod dylan
  • #28 Requires control on validity of switching Can’t switch to occupied track procedure Can_Switch Contract_Cases => (Is_Occupied(Connected_Section) => not Can_Switch’Return, not Is_Occupied(Connected_Section) => Can_Switch’Return) f Can_Switch’Return then Is_Occupied(Connected_Section) = False Else Is_Occupied(Connected_Section) = True) procedure Swith Post => Is_Locked(Disconnected_Section)
  • #29 Requires control on validity of switching Can’t switch to occupied track
  • #34 Formal methods through SPARK 2014 mixed with Ada 2012 are industrial ready Summarize presentation content by restating the important points from the lessons. What do you want the audience to remember when they leave your presentation?