SPRUID8D September 2020 – January 2022 TMS320F280040-Q1 , TMS320F280040C-Q1 , TMS320F280041 , TMS320F280041-Q1 , TMS320F280041C , TMS320F280041C-Q1 , TMS320F280045 , TMS320F280048-Q1 , TMS320F280048C-Q1 , TMS320F280049 , TMS320F280049-Q1 , TMS320F280049C , TMS320F280049C-Q1
The diagnostics libraries designed for the F28004x family of devices comprise of three libraries, namely, the CLA_STL, C28x_STL and SDL. These libraries are designed to help TI customers, using the F28004x, develop functionally safe systems that can comply with a wide range of standards for end products in the automotive (ISO 26262), industrial (IEC 61508) and appliance (IEC 60730) markets. The CLA_STL and the C28x_STL implements the CLA2 - Software Test of CLA and CPU3 - Software Test of CPU safety mechanisms and the SDL provides examples for several safety mechanisms provided in the functional safety manual.
Library | Permanent fault Diagnostic Coverage | Systematic Capability Compliance | Description |
---|---|---|---|
CLA_STL | ≥ 60% | ASIL D/SIL 3 | This STL implements CLA2 - Software Test of CLA |
C28x_STL | ≥ 60% | ASIL D/SIL 3 | This STL implements CPU3 - Software Test of CPU |
SDL | Examples Only | N/A | The SDL provides examples of several safety mechanisms described in the safety manual |
The CLA_STL and C28x_STL were independently assessed and found to be suitable for being integrated into safety related systems up to ASIL D and SIL 3 according to ISO 26262:2018 and IEC 61508:2010 respectively. The CLA_STL represents a safety mechanism with the capability to detect permanent faults of the Control Law Accelerator (CLA). The C28x_STL represents a safety mechanism with the capability to detect permanent faults of the C28x CPU. See the SPS delivered with the CSP for the exact DC requirements applicable to each STL product.
The SDL is generally called a Software Diagnostic Library and is an integral part of the overall safety related collateral provided by TI. It comprises general example implementations of several safety mechanisms. The SDL examples are developed using a Baseline Quality software development flow and are not required to be compliant with any particular standard. As such, the SDL is not certified by TÜV SÜD. Users are expected to study and adapt the provided examples into their safety related applications and are responsible to for their own product level third party certifications.
In order to assist customers with getting their own product level certifications, TI has developed an F28004x Compliance Support Package (CSP). The CSP provides documentation, source code, static analysis results, MISRA C compliance results, unit test reports, dynamic analysis results, functional tests and integration examples. The STL (C28x_STL and CLA_STL) libraries and the corresponding source code released in the CSP demonstrate the product of a software development flow that is compliant with ISO 26262 ASIL D systematic capability.
Table 4-2 shows the tools used to develop the F28004x libraries.
SW/HW/Tool | Version | Dependency |
---|---|---|
Code Composer Studio | 9.2.0.00013 | Integrated Development Environment |
CGT | 20.2.1.LTS | Code Generation Tool Chain (Compiler, Assembler, Linker) |
C2000Ware | V3.01.00.00 | F28004x Header Files |
TMDSCNCD280049C | Rev. A | F280049 controlCARD Information Guide |
The system integrator must consult the C28x_STL and CLA_STL user guides for all the details related to installation and development.
The STLs were tested on the F28004x controlCARD.