- Forums
- Product Forums
- General Purpose MicrocontrollersGeneral Purpose Microcontrollers
- i.MX Forumsi.MX Forums
- QorIQ Processing PlatformsQorIQ Processing Platforms
- Identification and SecurityIdentification and Security
- Power ManagementPower Management
- Wireless ConnectivityWireless Connectivity
- RFID / NFCRFID / NFC
- Advanced AnalogAdvanced Analog
- MCX Microcontrollers
- S32G
- S32K
- S32V
- MPC5xxx
- Other NXP Products
- S12 / MagniV Microcontrollers
- Powertrain and Electrification Analog Drivers
- Sensors
- Vybrid Processors
- Digital Signal Controllers
- 8-bit Microcontrollers
- ColdFire/68K Microcontrollers and Processors
- PowerQUICC Processors
- OSBDM and TBDML
- S32M
- S32Z/E
-
- Solution Forums
- Software Forums
- MCUXpresso Software and ToolsMCUXpresso Software and Tools
- CodeWarriorCodeWarrior
- MQX Software SolutionsMQX Software Solutions
- Model-Based Design Toolbox (MBDT)Model-Based Design Toolbox (MBDT)
- FreeMASTER
- eIQ Machine Learning Software
- Embedded Software and Tools Clinic
- S32 SDK
- S32 Design Studio
- GUI Guider
- Zephyr Project
- Voice Technology
- Application Software Packs
- Secure Provisioning SDK (SPSDK)
- Processor Expert Software
- Generative AI & LLMs
-
- Topics
- Mobile Robotics - Drones and RoversMobile Robotics - Drones and Rovers
- NXP Training ContentNXP Training Content
- University ProgramsUniversity Programs
- Rapid IoT
- NXP Designs
- SafeAssure-Community
- OSS Security & Maintenance
- Using Our Community
-
- Cloud Lab Forums
-
- Knowledge Bases
- ARM Microcontrollers
- i.MX Processors
- Identification and Security
- Model-Based Design Toolbox (MBDT)
- QorIQ Processing Platforms
- S32 Automotive Processing Platform
- Wireless Connectivity
- CodeWarrior
- MCUXpresso Suite of Software and Tools
- MQX Software Solutions
- RFID / NFC
- Advanced Analog
-
- NXP Tech Blogs
- Home
- :
- Product Forums
- :
- S32K
- :
- RTD 4.0 safety application with a multi-core setup (esp. Port module)
RTD 4.0 safety application with a multi-core setup (esp. Port module)
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Mute
- Printer Friendly Page
RTD 4.0 safety application with a multi-core setup (esp. Port module)
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi all,
I've a couple of questions regarding the use of the RTD 4.0 Port module in a safety context and a multi-core setup.
We are targeting ASIL C. We're using the S32K358, the functional safety core (master core) is M7_0 with M7_1 in lockstep configuration. A QM only core is realised with the M7_2 core.
Used references:
- My NXP post about general multi-core use: https://community.nxp.com/t5/S32K/Usage-of-RTD-4-0-MCAL-drivers-in-a-multi-core-application/td-p/183...
- Application Note "Multi-Core Implementation in RTD of S32K3" (Rev. 1, 07/2022)
- RTD Software Safety Manual for S32K3_S32M27X (Rev. 13.1 — 4 December 2023)
- S32K3xx Functional Safety Application Note (Rev. 0.2 Preliminary Version 06 Feb 2023)
1) Port module with XRDC
As stated in the integration manual of the Port module, it's a Type III multi-core module. According to the multi-core app note, that means that initialisation is done only on one core, the master core. Thus, the master core must access all pad control registers to initialise each pin.
However, with XRDC, I assign a pad to one PDAC, which is then assigned to one core. But then the master core does not have access to these registers?
What approach did NXP think of for this setup?
2) Type III modules and Fully Trusted Environment (FTE)
For RTD as SEooC, assumptions for the integration are stated, the so called FTE.
How can this be achieved with a Type III module? Especially with EA_RTD_00057 and EA_RTD_00058?
As far as I understand, "The codes/constants and variables have GLOBAL scope" would mean that the Port module uses shared RAM. And the QM core will call in QM context the module and access memory.
So how can these assumptions be met in a multi-core setup with different ASIL levels?
Thank you
Andreas
lukaszadrapa
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Please notice that S32K358 is still in pre-production status and that mentioned application note has not been officially published yet. Please contact your FAE for further support.
Thanks for understanding.
Regards,
Lukas
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi,
after internal discussion, another solution comes to mind:
Can the Port module used in a "single core" configuration in combination with XRDC protection?
This would mean that each core has its own Port module code, its own Port configuration and will call Port_Init itself. XRDC (via the virtual wrapper) will allow only access to the pad control etc. assigned to the core.
You would just need to take care that in each configuration, every port is configured, either as used or untouched, so that no unused pins are default configured and thus triggering an acces protection.
Would this in general be a (better?) approach for Freedom from Interference also for Type II RTD modules?
The same could be done for Type II modules like ADC. Just don't use the multi-core functionality, have each core has its own copy of RTD code and guarantee FFI just by using XRDC?
(Basically the advantage of multi-core functionality is being able to save flash memory size?)
Thanks
Andreas
