View Issue Details

Jump to NotesJump to History
IDProjectCategoryView StatusDate SubmittedLast Update
000735910000-015: SafetySpecpublic2021-10-14 12:452021-10-15 09:05
ReporterChristian Eitner Assigned ToMax Walter  
PrioritynormalSeveritymajorReproducibilityalways
Status closedResolutionfixed 
Product Version1.05.00 RC1 
Fixed in Version1.05.00 
Summary0007359: Formula for calculation of SFRT value is too optimistic
Description

The formula for calculation of the SFRT value (clause 10.1) is too optimistic. In the worst case, the SafetyConsumer timeout can occur twice before the system switches to failsafe values (FSV).

Steps To Reproduce

1) The SafetyConsumer sends a RequestSPDU. At about the same time, a dangerous event occurs at the SafetyProvider, demanding the safety function to trigger.
2) However, in the worst case, the RequestSPDU is processed at the SafetyProvider just before the dangerous event becomes known.
3) Hence, the ResponseSPDU does not yet contain any information about the dangerous event.
4) In the worst case, the ResponseSPDU is processed in the SafetyConsumer just before the SafetyConsumerTimeout expires.
5) Another error (which may have the same root cause as the dangerous event) leads to a loss or unacceptable delay of either the RequestSPDU or the ResponseSPDU.
6) Hence, the SafetyConsumerTimeout expires.
7) In the worst case, the timer expires immediately after it was checked. Hence, it takes another cycle of the SafetyConsumer to detect the error.

TagsNo tags attached.
Commit Version

Activities

There are no notes attached to this issue.

Issue History

Date Modified Username Field Change
2021-10-14 12:45 Christian Eitner New Issue
2021-10-15 09:05 Max Walter Assigned To => Max Walter
2021-10-15 09:05 Max Walter Status new => closed
2021-10-15 09:05 Max Walter Resolution open => fixed
2021-10-15 09:05 Max Walter Fixed in Version => 1.05.00