adacore paris tech day 2016: cyrille comar - looking ahead
TRANSCRIPT
![Page 1: AdaCore Paris Tech Day 2016: Cyrille Comar - Looking Ahead](https://reader034.vdocuments.site/reader034/viewer/2022042723/5a6e830e7f8b9ad9638b487b/html5/thumbnails/1.jpg)
Cyrille Comar
Looking Ahead
President
![Page 2: AdaCore Paris Tech Day 2016: Cyrille Comar - Looking Ahead](https://reader034.vdocuments.site/reader034/viewer/2022042723/5a6e830e7f8b9ad9638b487b/html5/thumbnails/2.jpg)
Outline
• Our Market is Growing
• Certification Support
• Language Support
• Hardware and OS Support
![Page 3: AdaCore Paris Tech Day 2016: Cyrille Comar - Looking Ahead](https://reader034.vdocuments.site/reader034/viewer/2022042723/5a6e830e7f8b9ad9638b487b/html5/thumbnails/3.jpg)
Our Market is GrowingAnd we’re getting ready for it
![Page 4: AdaCore Paris Tech Day 2016: Cyrille Comar - Looking Ahead](https://reader034.vdocuments.site/reader034/viewer/2022042723/5a6e830e7f8b9ad9638b487b/html5/thumbnails/4.jpg)
Slight Rebrand in 2017
• Version numbers switch to the year number (e.g. GNAT Pro 17)
• All existing products will be branded “Enterprise”§ GNAT Pro Native => GNAT Pro Native Enterprise§ GNAT Pro Cross => GNAT Pro Cross Enterprise§ GNAT Pro Safety Critical => GNAT Pro Cross Enterprise
• … other product-lines are cooking to address market shift…
![Page 5: AdaCore Paris Tech Day 2016: Cyrille Comar - Looking Ahead](https://reader034.vdocuments.site/reader034/viewer/2022042723/5a6e830e7f8b9ad9638b487b/html5/thumbnails/5.jpg)
GNAT Pro EnterpriseEverything you have today, plus…
• AWS is now included for all native platforms
• GNATemulator is now included for all bare metal platforms
• SPARK Discovery will be included in all GNAT Pro Enterprise & CodePeer packages
![Page 6: AdaCore Paris Tech Day 2016: Cyrille Comar - Looking Ahead](https://reader034.vdocuments.site/reader034/viewer/2022042723/5a6e830e7f8b9ad9638b487b/html5/thumbnails/6.jpg)
SPARK Discovery
• A “lightweight” version of SPARK
• Provides language subset verification & data flow analysis
• Provides basic proving capabilities through Alt-Ergo
• Great to start developing SPARK-ready code§ Improve quality of static analysis tools§ Reduce odds of error introduction§ Open the door to more powerful formal verification
![Page 7: AdaCore Paris Tech Day 2016: Cyrille Comar - Looking Ahead](https://reader034.vdocuments.site/reader034/viewer/2022042723/5a6e830e7f8b9ad9638b487b/html5/thumbnails/7.jpg)
GNAT Pro AssuranceA product for Certification & Stability
• Needs for stabilized –yet active– versions of the technology is increasing
• Today, AdaCore provides support on old versions of the technology
§ Workaround§ Help an analysis
![Page 8: AdaCore Paris Tech Day 2016: Cyrille Comar - Looking Ahead](https://reader034.vdocuments.site/reader034/viewer/2022042723/5a6e830e7f8b9ad9638b487b/html5/thumbnails/8.jpg)
GNAT Pro AssuranceA product for Certification & Stability
• Our new product will be tied to a version (or branch) of the technology
§ Only on selected branches
• Includes safety-critical fixes§ Silent compilation errors generating wrong code§ False-negative in a verification tool
• Include extra safety-critical know-problem analysis§ Impact analysis on the fix§ Potential risks for the application
![Page 9: AdaCore Paris Tech Day 2016: Cyrille Comar - Looking Ahead](https://reader034.vdocuments.site/reader034/viewer/2022042723/5a6e830e7f8b9ad9638b487b/html5/thumbnails/9.jpg)
A product for Certification & Stability
2016 2017 20187.4
7.4.1
7.4.2
7.4.3
7.4.4
18.3
17.2 18.2
17.1 18.1
17 18
![Page 10: AdaCore Paris Tech Day 2016: Cyrille Comar - Looking Ahead](https://reader034.vdocuments.site/reader034/viewer/2022042723/5a6e830e7f8b9ad9638b487b/html5/thumbnails/10.jpg)
GNAT Pro DeveloperA refocused product beyond A&D• Focused for modern embedded devices development
§ Natives: Linux, Windows, MacOSX§ Cross: ARM Bare Metal, ARM Linux
• Focused level of services§ Support only latest version§ Public support interface
• Focused level of tools§ Strict Ada 2012 compiler§ Only GPS as an IDE
![Page 11: AdaCore Paris Tech Day 2016: Cyrille Comar - Looking Ahead](https://reader034.vdocuments.site/reader034/viewer/2022042723/5a6e830e7f8b9ad9638b487b/html5/thumbnails/11.jpg)
Certification SupportBroadening the horizon
![Page 12: AdaCore Paris Tech Day 2016: Cyrille Comar - Looking Ahead](https://reader034.vdocuments.site/reader034/viewer/2022042723/5a6e830e7f8b9ad9638b487b/html5/thumbnails/12.jpg)
Certification support
• Historically focused on Avionics (DO-178), Space (ECSS-80-Q) and Railway (EN-50128)
• Opening to IEC 61508 (Industrial Systems, Military…)
• Opening to ISO-26262 (Automotive)
Lots of commonalities for tool providers
![Page 13: AdaCore Paris Tech Day 2016: Cyrille Comar - Looking Ahead](https://reader034.vdocuments.site/reader034/viewer/2022042723/5a6e830e7f8b9ad9638b487b/html5/thumbnails/13.jpg)
What’s coming in Avionics Certification?
DO-178C
DO-254
ARP4754AGet back to the essential 3 Overarching Properties
~150mandatory(major)objectives~1000pages
- 3“things”todemonstrate- 1page
![Page 14: AdaCore Paris Tech Day 2016: Cyrille Comar - Looking Ahead](https://reader034.vdocuments.site/reader034/viewer/2022042723/5a6e830e7f8b9ad9638b487b/html5/thumbnails/14.jpg)
What’s coming in Avionics Certification?
1.Intent: The defined intended functions are correct and complete with respect to the desired system behavior.
2.Correctness: The implementation is correct with respect to its defined intended functions, under foreseeable operating conditions.
3.Necessity: All of the implementation is either required by the defined intended functions or is without unacceptable safety impact.
![Page 15: AdaCore Paris Tech Day 2016: Cyrille Comar - Looking Ahead](https://reader034.vdocuments.site/reader034/viewer/2022042723/5a6e830e7f8b9ad9638b487b/html5/thumbnails/15.jpg)
Language SupportA single provider for the entire
workshop
![Page 16: AdaCore Paris Tech Day 2016: Cyrille Comar - Looking Ahead](https://reader034.vdocuments.site/reader034/viewer/2022042723/5a6e830e7f8b9ad9638b487b/html5/thumbnails/16.jpg)
C and C++
• Progressively adding C support for cross products§ VxWorks and Bare Metal are first, others will follow
• Tools are progressively being brought up to speed§ GPS support C development§ GNATcoverage & GNATstack support C when used with GNAT Pro§ Other tools (metrics, coding standard…) are on the roadmap
• Embedded C++ is potential next step
![Page 17: AdaCore Paris Tech Day 2016: Cyrille Comar - Looking Ahead](https://reader034.vdocuments.site/reader034/viewer/2022042723/5a6e830e7f8b9ad9638b487b/html5/thumbnails/17.jpg)
AdaCore C/C++ Toolchain Benefits
• IDE integrating the toolchain for Ada and C
• Integration with structural coverage and static stack analysis tools
• Portability across platforms (Linux/Windows, PPC, ARM, AVR, Leon…)
• Industrial-grade validated toolchain, used for 20 years across A&D companies
• Long term support for specific versions available, including, known problem safety analysis, workaround and fixes (including for hardware faults)
• Reactive support provided by the developer of the technology
• Certification-related support available for compiler and run-times
![Page 18: AdaCore Paris Tech Day 2016: Cyrille Comar - Looking Ahead](https://reader034.vdocuments.site/reader034/viewer/2022042723/5a6e830e7f8b9ad9638b487b/html5/thumbnails/18.jpg)
Hardware and OSAda as a first-class citizen
![Page 19: AdaCore Paris Tech Day 2016: Cyrille Comar - Looking Ahead](https://reader034.vdocuments.site/reader034/viewer/2022042723/5a6e830e7f8b9ad9638b487b/html5/thumbnails/19.jpg)
Looking at new entrants
• The RTOS market is always producing new products, new versions
§ Our job is to make sure that you have a wide range of options§ Your feedback is welcome!
• 64 bits cross targets are on the rise§ PowerPC (T2080, T4080)§ ARM Cortex A (A53, A57…)
![Page 20: AdaCore Paris Tech Day 2016: Cyrille Comar - Looking Ahead](https://reader034.vdocuments.site/reader034/viewer/2022042723/5a6e830e7f8b9ad9638b487b/html5/thumbnails/20.jpg)
SPARK-to-C – The Universal Compiler?
• Some targets remain difficult to support by GNAT Pro§ Because the number of potential users is small§ Because there is no gcc version available
• There targets may be needed by newcomers§ And they can develop code within the SPARK subset
• SPARK-to-C will use C as an intermediate representation…§ … and allow to use the target C compiler
• Can provide some interesting options with C integration§ Use SPARK as a specification to C code?
![Page 21: AdaCore Paris Tech Day 2016: Cyrille Comar - Looking Ahead](https://reader034.vdocuments.site/reader034/viewer/2022042723/5a6e830e7f8b9ad9638b487b/html5/thumbnails/21.jpg)