CN117519073A - Function safety test method, device and equipment of whole vehicle controller - Google Patents
Function safety test method, device and equipment of whole vehicle controller Download PDFInfo
- Publication number
- CN117519073A CN117519073A CN202311403097.6A CN202311403097A CN117519073A CN 117519073 A CN117519073 A CN 117519073A CN 202311403097 A CN202311403097 A CN 202311403097A CN 117519073 A CN117519073 A CN 117519073A
- Authority
- CN
- China
- Prior art keywords
- fault
- vehicle controller
- information
- whole vehicle
- sub
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000009781 safety test method Methods 0.000 title claims abstract description 12
- 238000012360 testing method Methods 0.000 claims abstract description 62
- 238000004088 simulation Methods 0.000 claims abstract description 27
- 238000000034 method Methods 0.000 claims abstract description 25
- 230000002265 prevention Effects 0.000 claims abstract description 17
- 238000009413 insulation Methods 0.000 claims description 8
- 238000012545 processing Methods 0.000 claims description 6
- 238000004590 computer program Methods 0.000 claims description 5
- 238000006243 chemical reaction Methods 0.000 claims description 4
- 230000010485 coping Effects 0.000 abstract description 10
- 230000006872 improvement Effects 0.000 abstract description 6
- 230000006870 function Effects 0.000 description 9
- 238000011076 safety test Methods 0.000 description 8
- 238000001514 detection method Methods 0.000 description 5
- 230000005540 biological transmission Effects 0.000 description 3
- 230000008878 coupling Effects 0.000 description 2
- 238000010168 coupling process Methods 0.000 description 2
- 238000005859 coupling reaction Methods 0.000 description 2
- 238000010586 diagram Methods 0.000 description 2
- 238000012986 modification Methods 0.000 description 2
- 230000004048 modification Effects 0.000 description 2
- 238000004891 communication Methods 0.000 description 1
- 230000008094 contradictory effect Effects 0.000 description 1
- 238000011161 development Methods 0.000 description 1
- 230000000694 effects Effects 0.000 description 1
- 238000005516 engineering process Methods 0.000 description 1
- 230000003287 optical effect Effects 0.000 description 1
- 230000002093 peripheral effect Effects 0.000 description 1
Classifications
-
- G—PHYSICS
- G05—CONTROLLING; REGULATING
- G05B—CONTROL OR REGULATING SYSTEMS IN GENERAL; FUNCTIONAL ELEMENTS OF SUCH SYSTEMS; MONITORING OR TESTING ARRANGEMENTS FOR SUCH SYSTEMS OR ELEMENTS
- G05B23/00—Testing or monitoring of control systems or parts thereof
- G05B23/02—Electric testing or monitoring
- G05B23/0205—Electric testing or monitoring by means of a monitoring system capable of detecting and responding to faults
- G05B23/0208—Electric testing or monitoring by means of a monitoring system capable of detecting and responding to faults characterized by the configuration of the monitoring system
- G05B23/0213—Modular or universal configuration of the monitoring system, e.g. monitoring system having modules that may be combined to build monitoring program; monitoring system that can be applied to legacy systems; adaptable monitoring system; using different communication protocols
-
- G—PHYSICS
- G05—CONTROLLING; REGULATING
- G05B—CONTROL OR REGULATING SYSTEMS IN GENERAL; FUNCTIONAL ELEMENTS OF SUCH SYSTEMS; MONITORING OR TESTING ARRANGEMENTS FOR SUCH SYSTEMS OR ELEMENTS
- G05B2219/00—Program-control systems
- G05B2219/20—Pc systems
- G05B2219/24—Pc safety
- G05B2219/24065—Real time diagnostics
Landscapes
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Engineering & Computer Science (AREA)
- Automation & Control Theory (AREA)
- Testing And Monitoring For Control Systems (AREA)
Abstract
The invention discloses a functional safety test method, a device and equipment of a whole vehicle controller, wherein the method comprises the following steps: acquiring fault logic information corresponding to a fault to be tested, which is generated by a whole vehicle simulation model, wherein the fault logic information comprises information for identifying the fault to be tested; the fault logic information is converted into a fault enabling signal which can be identified by the whole vehicle controller; the method comprises the steps of sending a fault enabling signal to a whole vehicle controller so that the whole vehicle controller executes a safety prevention instruction for coping with the fault enabling signal and generates an execution result; a test report is generated based on the execution result, the test report including information indicating whether improvement of the overall vehicle controller is required. The invention solves the technical problem of low safety when the whole vehicle controller is tested.
Description
Technical Field
The invention belongs to the technical field of controller testing, and particularly relates to a functional safety testing method, device and equipment of a whole vehicle controller.
Background
In recent years, with the rapid development of the intelligence and the electric performance of automobiles, the functions of the whole automobile controller are more and more complex, and the function safety problem is also more and more concerned. The functional safety test of the existing whole vehicle controller mainly comprises the step of performing fault input on a real vehicle to detect whether functional safety measures are realized or not. However, during real vehicle testing, extreme conditions exist in the vehicle, and potential safety hazards exist in the testing due to the extreme conditions. Therefore, the low safety of the whole vehicle controller during testing is a technical problem to be solved urgently.
Disclosure of Invention
The embodiment of the invention provides a functional safety test method, device and equipment of a whole vehicle controller, which solve the technical problem of low safety when the whole vehicle controller is tested.
In a first aspect, an embodiment of the present invention provides a method for testing functional safety of an overall vehicle controller, including: acquiring fault logic information corresponding to a fault to be tested, which is generated by a whole vehicle simulation model, wherein the fault logic information comprises information for identifying the fault to be tested; converting the fault logic information into a fault enabling signal which can be identified by the whole vehicle controller; the fault enabling signal is sent to the whole vehicle controller, so that the whole vehicle controller executes a safety prevention instruction for responding to the fault enabling signal and generates an execution result; and generating a test report based on the execution result, wherein the test report comprises information for prompting whether the whole vehicle controller needs to be improved.
With reference to the first aspect of the present invention, in some embodiments, the fault to be tested includes a plurality of sub-faults to be tested of the same type, and the converting the fault logic information into a fault enabling signal identifiable by the whole vehicle controller includes: sequentially taking each piece of fault logic sub-information in the fault logic information as target sub-information, wherein the fault logic sub-information is obtained by generating a sub-fault to be tested by the whole vehicle simulation model; converting the target sub-information into a fault enabling sub-signal which can be identified by the whole vehicle controller; and obtaining the fault enabling signal based on the fault enabling sub-signal corresponding to each fault logic sub-information in the fault logic information.
With reference to the first aspect of the present invention, in some implementations, the sending the fault enabling signal to the vehicle controller, so that the vehicle controller executes a safety precaution instruction for handling the fault enabling signal and generates an execution result, includes: sequentially taking each fault enabling sub-signal in the fault enabling signals as a target sub-signal; the target sub-signals are sent to the whole vehicle controller; if the whole vehicle controller executes the safety prevention sub-instruction for processing the target sub-signal and generates an execution sub-result, the next target sub-signal is sent to the whole vehicle controller; and obtaining an execution result based on the execution sub-result corresponding to each fault enabling sub-signal in the fault enabling signals.
With reference to the first aspect of the present invention, in some implementations, the fault to be tested is a network fault or a signal fault, the fault logic information includes a first fault type, first validity information, and a first check message, and the converting the fault logic information into a fault enabling signal identifiable by a vehicle controller includes: converting the first fault type into a second fault type which can be identified by the whole vehicle controller; converting the first validity information into second validity information which can be identified by the whole vehicle controller; converting the first check message into a second check message which can be identified by the whole vehicle controller; and generating the fault enabling signal based on the second fault type, the second validity information and the second check message.
With reference to the first aspect of the present invention, in some implementations, the sending the fault enabling signal to the vehicle controller includes: and sending the fault enabling signal to the whole vehicle controller through a controller local area network bus interface.
With reference to the first aspect of the present invention, in some embodiments, the fault to be tested is an electrical fault, the fault logic information includes first open circuit information, first short circuit to ground information, or first short circuit to power information, and the converting the fault logic information into a fault enabling signal identifiable by a vehicle controller includes: converting the first open circuit information into second open circuit information which can be identified by the whole vehicle controller; converting the first short-circuit to ground information into second short-circuit to ground information which can be identified by the whole vehicle controller; or converting the first short circuit to power supply information into second short circuit to power supply information which can be identified by the whole vehicle controller; and obtaining the fault enabling signal based on the second open circuit information, the second short circuit to ground information or the second short circuit to power supply information.
With reference to the first aspect of the present invention, in some implementations, the sending the fault enabling signal to the vehicle controller includes: and sending the fault enabling signal to the whole vehicle controller through a hard wire interface.
With reference to the first aspect of the present invention, in some embodiments, the method further includes: acquiring user input information; determining the fault to be tested based on the user input information, wherein the fault to be tested is any one of a network fault, a signal fault and an electrical fault; the network faults comprise one or more of single ID message loss faults, single sending node loss faults and all sending node loss faults, the signal faults comprise one or more of collision faults, high-voltage interlocking faults, double-side insulation faults and single-side insulation faults, and the electric faults comprise one or more of first accelerator pedal sensor faults, second accelerator pedal sensor faults, brake switch faults and power CAN faults.
In a second aspect, an embodiment of the present invention provides a functional safety test device for an overall vehicle controller, including: the fault acquisition unit is used for acquiring fault logic information corresponding to a fault to be tested, which is generated by the whole vehicle simulation model, wherein the fault logic information comprises information for identifying the fault to be tested; the conversion unit is used for converting the fault logic information into a fault enabling signal which can be identified by the whole vehicle controller; the fault sending unit is used for sending the fault enabling signal to the whole vehicle controller so that the whole vehicle controller executes a safety prevention instruction for responding to the fault enabling signal and generates an execution result; and the report generation unit is used for generating a test report based on the execution result, wherein the test report comprises information for prompting whether the whole vehicle controller needs to be improved.
In a third aspect, an embodiment of the present invention provides an electronic device, including: a memory, a processor and a computer program stored on the memory and executable on the processor, the processor implementing the method of any one of the first aspects when the computer program is executed.
The one or more technical solutions provided by the embodiments of the present invention at least achieve the following technical effects or advantages:
according to the embodiment of the invention, the fault logic information corresponding to the fault to be tested, which is generated by the whole vehicle simulation model, is obtained, and the fault logic information comprises information for identifying the fault to be tested; the fault logic information is converted into a fault enabling signal which can be identified by the whole vehicle controller; the method comprises the steps of sending a fault enabling signal to a whole vehicle controller so that the whole vehicle controller executes a safety prevention instruction for coping with the fault enabling signal and generates an execution result; a test report is generated based on the execution result, the test report including information indicating whether improvement of the overall vehicle controller is required. The fault logic information is obtained by running the whole vehicle simulation model, the fault logic information is converted into a fault enabling signal which can be identified by the whole vehicle controller, and the fault enabling signal is sent to the whole vehicle controller so as to obtain a test result, so that the real vehicle test is avoided, the vehicle is not required to be in an extreme working condition, and the potential safety hazard of the vehicle under the extreme working condition is avoided. Therefore, the safety of the whole vehicle controller during testing is improved.
Drawings
In order to more clearly illustrate the technical solutions of the embodiments of the present invention, the drawings required for the description of the embodiments will be briefly described below, and it is obvious that the drawings in the following description are some embodiments of the present invention, and other drawings may be obtained according to these drawings without inventive effort for a person skilled in the art.
FIG. 1 is a flow chart of a functional safety test method of a vehicle controller according to an embodiment of the present invention;
FIG. 2 is a functional block diagram of a functional safety test device of a vehicle controller according to an embodiment of the present invention;
fig. 3 is a schematic structural diagram of an electronic device according to an embodiment of the invention.
Detailed Description
The following description of the embodiments of the present invention will be made clearly and fully with reference to the accompanying drawings, in which it is evident that the embodiments described are only some, but not all embodiments of the invention. All other embodiments, which can be made by those skilled in the art based on the embodiments of the invention without making any inventive effort, are intended to be within the scope of the invention.
The description as it relates to "first", "second", etc. in the present invention is for descriptive purposes only and is not to be construed as indicating or implying a relative importance or implicitly indicating the number of technical features indicated. Thus, a feature defining "a first" or "a second" may explicitly or implicitly include at least one such feature. In addition, the technical solutions of the embodiments may be combined with each other, but it is necessary to base that the technical solutions can be realized by those skilled in the art, and when the technical solutions are contradictory or cannot be realized, the combination of the technical solutions should be considered to be absent and not within the scope of protection claimed in the present invention.
The embodiment of the invention provides a functional safety test method of a whole vehicle controller, which can be applied to a hardware-in-the-loop simulation system, and is shown with reference to fig. 1, and the method comprises the following steps S101-S104:
s101: and acquiring fault logic information corresponding to the fault to be tested, which is generated by the whole vehicle simulation model, wherein the fault logic information comprises information for identifying the fault to be tested.
In some embodiments, the whole vehicle simulation model may be stored in an upper computer, so the method for obtaining fault logic information corresponding to the fault to be tested generated by the whole vehicle simulation model may be: and running the whole vehicle simulation model through the upper computer, and controlling the whole vehicle simulation model to generate faults to be tested so as to obtain fault logic information.
In some embodiments, before obtaining the fault logic information corresponding to the fault to be tested generated by the whole vehicle simulation model, the method may further include: and determining a whole vehicle simulation model. The method for determining the whole vehicle simulation model can be as follows: and selecting a whole vehicle simulation model according to the type of the vehicle to which the whole vehicle controller to be tested belongs. It should be noted that, because different vehicle types can cause the control logic of the whole vehicle controller to be different, the whole vehicle simulation model is selected according to the vehicle types, so that the test of applying wrong test signals is avoided, and the test efficiency is improved.
In some embodiments, before obtaining the fault logic information corresponding to the fault to be tested generated by the whole vehicle simulation model, the method further includes: acquiring user input information; determining a fault to be tested based on user input information, wherein the fault to be tested is any one of a network fault, a signal fault and an electrical fault; the network faults comprise one or more of single ID message loss faults, single sending node loss faults and all sending node loss faults, the signal faults comprise one or more of collision faults, high-voltage interlocking faults, double-side insulation faults and single-side insulation faults, and the electric faults comprise one or more of first accelerator pedal sensor faults, second accelerator pedal sensor faults, brake switch faults and power CAN faults.
It should be noted that the fault to be tested may be one fault, for example, the fault to be tested includes only a single ID message loss fault. The faults to be tested may also be a set of faults of the same type, i.e. the faults to be tested comprise a plurality of sub-faults to be tested of the same type, e.g. the faults to be tested comprise a single ID message loss fault, a single sending node loss fault and a plurality of all sending node loss faults. Under the condition that the faults to be tested comprise a plurality of faults to be tested of the same type, the whole vehicle controller can sequentially test the faults to be tested, test contents can be carried out in units of groups, a test report generated finally can also explain a group of test conditions, the test is prevented from being carried out one by one, a group of test results can be obtained only through one input of a user, and the test efficiency is improved.
S102: and converting the fault logic information into a fault enabling signal which can be identified by the whole vehicle controller.
In the case that the fault to be tested includes a plurality of sub faults to be tested of the same type, the converting the fault logic information into the fault enabling signal identifiable by the whole vehicle controller may include: sequentially taking each piece of fault logic sub-information in the fault logic information as target sub-information, wherein the fault logic sub-information is obtained by generating a sub-fault to be tested by a whole vehicle simulation model; converting the target sub-information into a fault enabling sub-signal which can be identified by the whole vehicle controller; and obtaining a fault enabling signal based on the fault enabling sub-signal corresponding to each fault logic sub-information in the fault logic information.
For example, the faults to be tested are network faults, which include a single ID message loss fault, a single sending node loss fault, and all sending node loss faults. Then, the single ID packet loss fault is a first fault logic sub-information, the single sending node loss fault is a second fault logic sub-information, all sending nodes loss faults are third fault logic sub-information, the first fault logic sub-information is converted into a first fault enabling sub-signal identifiable by the whole vehicle controller, the second fault logic sub-information is converted into a second fault enabling sub-signal identifiable by the whole vehicle controller, the third fault logic sub-information is converted into a third fault enabling sub-signal identifiable by the whole vehicle controller, and the fault enabling signal is obtained based on the first fault enabling sub-signal, the second fault enabling sub-signal and the third fault enabling sub-signal.
It should be noted that the fault to be tested may be a network fault, a signal fault or an electrical fault, and different fault types may distinguish the step S102, which is described in detail below:
under the condition that the fault to be tested is a network fault or a signal fault, the fault logic information comprises a first fault type, first validity information and a first check message which cannot be identified by the vehicle control unit, and the fault logic information is converted into a fault enabling signal which can be identified by the vehicle control unit, and the method can comprise the following steps: converting the first fault type into a second fault type which can be identified by the whole vehicle controller; converting the first validity information into second validity information which can be identified by the whole vehicle controller; converting the first check message into a second check message which can be identified by the whole vehicle controller; and generating a fault enabling signal based on the second fault type, the second validity information and the second check message.
It should be noted that, the validity information is valid for effectively characterizing the detection result of the detection device corresponding to the fault to be tested, and the validity information is invalid for invaliding the detection result of the detection device corresponding to the fault to be tested. The second check message is used for judging whether the second validity information is sent out by the corresponding detection device.
Under the condition that the fault to be tested is an electrical fault, the fault logic information vehicle controller cannot identify the fault logic information vehicle controller and comprises first open circuit information, first short circuit to ground information or first short circuit to power supply information, and the fault logic information is converted into a fault enabling signal which can be identified by the vehicle controller, and the fault logic information vehicle controller can comprise: converting the first open-circuit information into second open-circuit information which can be identified by the whole vehicle controller; converting the first short-circuit to ground information into second short-circuit to ground information which can be identified by the vehicle controller; or converting the first short circuit to power supply information into second short circuit to power supply information which can be identified by the vehicle controller; and obtaining a fault enabling signal based on the second open circuit information, the second short circuit to ground information or the second short circuit to power supply information.
It can be understood that the conversion of the fault logic information into the fault enabling signal identifiable by the vehicle controller may be: and converting the fault logic information into a fault enabling signal which can be identified by the whole vehicle controller through the test bench.
S103: and sending the fault enabling signal to the whole vehicle controller so that the whole vehicle controller executes a safety prevention instruction for coping with the fault enabling signal and generates an execution result.
In the case that the fault to be tested includes a plurality of sub faults to be tested of the same type, the sending of the fault enabling signal to the whole vehicle controller so that the whole vehicle controller executes the safety precaution instruction for coping with the fault enabling signal and generates the execution result may include: sequentially taking each fault enabling sub-signal in the fault enabling signals as a target sub-signal; transmitting the target sub-signal to a whole vehicle controller; if the whole vehicle controller executes the safety prevention sub-instruction for coping with the target sub-signal and generates an execution sub-result, the next target sub-signal is sent to the whole vehicle controller; and obtaining an execution result based on the execution sub-result corresponding to each fault enabling sub-signal in the fault enabling signals.
For example, the faults to be tested are network faults, which include a single ID message loss fault, a single sending node loss fault, and all sending node loss faults. Then, the failure enable signal includes a first failure enable sub-signal corresponding to a single ID message loss failure, a second failure enable sub-signal corresponding to a single transmission node loss failure, and a third failure enable sub-signal corresponding to all transmission node loss failures. The method comprises the steps of sending a first fault enabling sub-signal to a whole vehicle controller, and sending a second fault enabling sub-signal to the whole vehicle controller if the whole vehicle controller executes a safety prevention sub-instruction for coping with the first fault enabling sub-signal and generates a first execution sub-result; and if the whole vehicle controller executes the safety prevention sub-instruction for processing the second fault enabling sub-signal and generates a second execution sub-result, the third fault enabling sub-signal is sent to the whole vehicle controller, and the whole vehicle controller executes the safety prevention sub-instruction for processing the third fault enabling sub-signal and generates a third execution sub-result. And obtaining an execution result based on the first execution sub-result, the second execution sub-result and the third execution sub-result.
It should be noted that, if the whole vehicle controller executes the safety precaution sub-instruction for coping with the target sub-signal, but does not generate the execution sub-result, which indicates that the test is not completed, or that the test has a problem, at this time, if the next target sub-signal is sent to the whole vehicle controller, the program execution of the whole vehicle controller may be wrong, even a card is generated, which affects each test that follows. Therefore, after the whole vehicle controller generates the execution sub-result, the next target sub-signal is sent to the whole vehicle controller, so that the program execution of the whole vehicle controller is prevented from being wrong and blocked, the test is smoother, and the test efficiency is improved.
It should be noted that the fault to be tested may be a network fault, a signal fault or an electrical fault, and different fault types may distinguish the step S103, which is described in detail below:
in the case that the fault to be tested is a network fault or a signal fault, sending a fault enabling signal to the whole vehicle controller may include: and sending a fault enabling signal to the whole vehicle controller through the controller local area network bus interface.
In the case that the fault to be tested is an electrical fault, sending a fault enabling signal to the vehicle controller may include: and sending a fault enabling signal to the whole vehicle controller through the hard wire interface.
It should be noted that, through the hard line interface and the controller local area network bus interface, the electrical fault, the network fault and the signal fault can all be tested, so that the testing content is enriched and the testing coverage is improved.
S104: a test report is generated based on the execution result, the test report including information indicating whether improvement of the overall vehicle controller is required.
Specifically, the test report is generated based on the execution result, which may be: if the execution result indicates that the whole vehicle controller does not realize safety prevention, generating a test report comprising information prompting that the whole vehicle controller needs to be improved; and if the execution result represents that the whole vehicle controller realizes safety prevention, generating a test report comprising information prompting that the whole vehicle controller does not need to be improved.
The method is characterized in that based on a hardware-in-the-loop simulation system, the function safety test of the whole vehicle controller is carried out, the function safety test working condition of inconvenient real vehicle operation can be carried out, and the test safety and convenience are provided; on the other hand, the front end and the rear end of the functional safety testing environment can be separated, so that the front end of the testing environment can realize fault input through simple switch operation, the workload and the working difficulty of front-end testers are reduced, and the testers can focus on the testing of the testing cases.
According to the embodiment of the invention, the fault logic information corresponding to the fault to be tested, which is generated by the whole vehicle simulation model, is obtained, and the fault logic information comprises information for identifying the fault to be tested; the fault logic information is converted into a fault enabling signal which can be identified by the whole vehicle controller; the method comprises the steps of sending a fault enabling signal to a whole vehicle controller so that the whole vehicle controller executes a safety prevention instruction for coping with the fault enabling signal and generates an execution result; a test report is generated based on the execution result, the test report including information indicating whether improvement of the overall vehicle controller is required. The fault logic information is obtained by running the whole vehicle simulation model, the fault logic information is converted into a fault enabling signal which can be identified by the whole vehicle controller, and the fault enabling signal is sent to the whole vehicle controller so as to obtain a test result, so that the real vehicle test is avoided, the vehicle is not required to be in an extreme working condition, and the potential safety hazard of the vehicle under the extreme working condition is avoided. Therefore, the safety of the whole vehicle controller during testing is improved. Meanwhile, the convenience of testing is improved.
Based on the same inventive concept, referring to fig. 2, an embodiment of the present invention provides a functional safety test device 10 of a vehicle controller, including: the fault obtaining unit 110 is configured to obtain fault logic information corresponding to a fault to be tested, where the fault logic information is generated by the vehicle simulation model and includes information for identifying the fault to be tested; the conversion unit 120 is configured to convert the fault logic information into a fault enabling signal that can be identified by the vehicle controller; a fault sending unit 130, configured to send a fault enabling signal to the vehicle controller, so that the vehicle controller executes a safety precaution instruction for coping with the fault enabling signal and generates an execution result; and a report generating unit 140 for generating a test report based on the execution result, the test report including information indicating whether improvement of the overall vehicle controller is required.
It may be appreciated that the faults to be tested include a plurality of sub-faults to be tested of the same type, and the converting unit 120 is specifically configured to: sequentially taking each piece of fault logic sub-information in the fault logic information as target sub-information, wherein the fault logic sub-information is obtained by generating a sub-fault to be tested by a whole vehicle simulation model; converting the target sub-information into a fault enabling sub-signal which can be identified by the whole vehicle controller; and obtaining a fault enabling signal based on the fault enabling sub-signal corresponding to each fault logic sub-information in the fault logic information.
It may be appreciated that the fault sending unit 130 is specifically configured to: sequentially taking each fault enabling sub-signal in the fault enabling signals as a target sub-signal; transmitting the target sub-signal to a whole vehicle controller; if the whole vehicle controller executes the safety prevention sub-instruction for coping with the target sub-signal and generates an execution sub-result, the next target sub-signal is sent to the whole vehicle controller; and obtaining an execution result based on the execution sub-result corresponding to each fault enabling sub-signal in the fault enabling signals.
It may be appreciated that the fault to be tested is a network fault or a signal fault, and the fault logic information includes a first fault type, first validity information and a first check message, and the converting unit 120 is specifically configured to: converting the first fault type into a second fault type which can be identified by the whole vehicle controller; converting the first validity information into second validity information which can be identified by the whole vehicle controller; converting the first check message into a second check message which can be identified by the whole vehicle controller; and generating a fault enabling signal based on the second fault type, the second validity information and the second check message.
It can be understood that the fault transmitting unit 130 includes: the first sending subunit is used for sending the fault enabling signal to the whole vehicle controller through the controller local area network bus interface.
It may be appreciated that the fault to be tested is an electrical fault, and the fault logic information includes first open circuit information, first short circuit to ground information, or first short circuit to power information, and the converting unit 120 is specifically configured to: converting the first open-circuit information into second open-circuit information which can be identified by the whole vehicle controller; converting the first short-circuit to ground information into second short-circuit to ground information which can be identified by the vehicle controller; or converting the first short circuit to power supply information into second short circuit to power supply information which can be identified by the vehicle controller; and obtaining a fault enabling signal based on the second open circuit information, the second short circuit to ground information or the second short circuit to power supply information.
It can be understood that the fault transmitting unit 130 includes: and the second sending subunit is used for sending the fault enabling signal to the whole vehicle controller through the hard wire interface.
It can be appreciated that the functional safety test device 10 of the vehicle controller further includes: the information acquisition unit is used for acquiring user input information; the fault determining unit is used for determining a fault to be tested based on the user input information, wherein the fault to be tested is any one of a network fault, a signal fault and an electrical fault; the network faults comprise one or more of single ID message loss faults, single sending node loss faults and all sending node loss faults, the signal faults comprise one or more of collision faults, high-voltage interlocking faults, double-side insulation faults and single-side insulation faults, and the electric faults comprise one or more of first accelerator pedal sensor faults, second accelerator pedal sensor faults, brake switch faults and power CAN faults.
It should be understood that, in the embodiment of the present invention, further implementation details of the functional safety test device 10 of the whole vehicle controller are described with reference to the foregoing functional safety test method of the whole vehicle controller, and are not repeated herein for brevity of description.
Based on the same inventive concept, the embodiment of the present invention further provides an electronic device, as shown in fig. 3, including a memory 304, a processor 302, and a computer program stored in the memory 304 and capable of running on the processor 302, where the processor 302 executes the program to implement the steps described in any implementation manner of the embodiment of the method for testing functional safety of the whole vehicle controller.
Where in FIG. 3 a bus architecture (represented by bus 300), bus 300 may comprise any number of interconnected buses and bridges, with bus 300 linking together various circuits, including one or more processors, represented by processor 302, and memory, represented by memory 304. Bus 300 may also link together various other circuits such as peripheral devices, voltage regulators, power management circuits, etc., as are well known in the art and, therefore, will not be described further herein. Bus interface 305 provides an interface between bus 300 and receiver 301 and transmitter 303. The receiver 301 and the transmitter 303 may be the same element, i.e. a transceiver, providing a means for communicating with various other apparatus over a transmission medium. The processor 302 is responsible for managing the bus 300 and general processing, while the memory 304 may be used to store data used by the processor 302 in performing operations.
The functions described herein may be implemented in hardware, software executed by a processor, firmware, or any combination thereof. If implemented in software that is executed by a processor, the functions may be stored on or transmitted over as one or more instructions or code on a computer-readable medium. Other examples and implementations are within the scope and spirit of the invention and the appended claims. For example, due to the nature of software, the functions described above may be implemented using software executed by a processor, hardware, firmware, hardwired, or a combination of any of these. In addition, each functional unit may be integrated in one processing unit, each unit may exist alone physically, or two or more units may be integrated in one unit.
In the several embodiments provided in the present application, it should be understood that the disclosed technology content may be implemented in other manners. The above-described embodiments of the apparatus are merely exemplary, and the division of the units, for example, may be a logic function division, and may be implemented in another manner, for example, a plurality of units or components may be combined or may be integrated into another system, or some features may be omitted, or not performed. Alternatively, the coupling or direct coupling or communication connection shown or discussed with each other may be through some interfaces, units or modules, or may be in electrical or other forms.
The units described as separate components may or may not be physically separate, and components as control devices may or may not be physical units, may be located in one place, or may be distributed over a plurality of units. Some or all of the units may be selected according to actual needs to achieve the purpose of the solution of this embodiment.
The integrated units, if implemented in the form of software functional units and sold or used as stand-alone products, may be stored in a computer readable storage medium. Based on such understanding, the technical solution of the present invention may be embodied essentially or in part or all of the technical solution or in part in the form of a software product stored in a storage medium, including instructions for causing a computer device (which may be a personal computer, a server, or a network device, etc.) to perform all or part of the steps of the method according to the embodiments of the present invention. And the aforementioned storage medium includes: a U-disk, a Read-Only Memory (ROM), a random access Memory (RAM, random Access Memory), a removable hard disk, a magnetic disk, or an optical disk, or other various media capable of storing program codes.
The above description is only an example of the present invention and is not intended to limit the present invention, but various modifications and variations can be made to the present invention by those skilled in the art. Any modification, equivalent replacement, improvement, etc. made within the spirit and principle of the present invention should be included in the scope of the claims of the present invention.
Claims (10)
1. The functional safety test method of the whole vehicle controller is characterized by comprising the following steps of:
acquiring fault logic information corresponding to a fault to be tested, which is generated by a whole vehicle simulation model, wherein the fault logic information comprises information for identifying the fault to be tested;
converting the fault logic information into a fault enabling signal which can be identified by the whole vehicle controller;
the fault enabling signal is sent to the whole vehicle controller, so that the whole vehicle controller executes a safety prevention instruction for responding to the fault enabling signal and generates an execution result;
and generating a test report based on the execution result, wherein the test report comprises information for prompting whether the whole vehicle controller needs to be improved.
2. The method for testing the functional safety of the vehicle controller according to claim 1, wherein the fault to be tested includes a plurality of sub-faults to be tested of the same type, and the converting the fault logic information into the fault enabling signal identifiable by the vehicle controller includes:
sequentially taking each piece of fault logic sub-information in the fault logic information as target sub-information, wherein the fault logic sub-information is obtained by generating a sub-fault to be tested by the whole vehicle simulation model;
converting the target sub-information into a fault enabling sub-signal which can be identified by the whole vehicle controller;
and obtaining the fault enabling signal based on the fault enabling sub-signal corresponding to each fault logic sub-information in the fault logic information.
3. The method for testing the functional safety of the vehicle controller according to claim 2, wherein the sending the fault enabling signal to the vehicle controller to enable the vehicle controller to execute a safety precaution instruction for handling the fault enabling signal and generate an execution result includes:
sequentially taking each fault enabling sub-signal in the fault enabling signals as a target sub-signal;
the target sub-signals are sent to the whole vehicle controller;
if the whole vehicle controller executes the safety prevention sub-instruction for processing the target sub-signal and generates an execution sub-result, the next target sub-signal is sent to the whole vehicle controller;
and obtaining an execution result based on the execution sub-result corresponding to each fault enabling sub-signal in the fault enabling signals.
4. The method for testing the functional safety of the vehicle controller according to any one of claims 1 to 3, wherein the fault to be tested is a network fault or a signal fault, the fault logic information includes a first fault type, first validity information and a first check message, and the converting the fault logic information into a fault enabling signal identifiable by the vehicle controller includes:
converting the first fault type into a second fault type which can be identified by the whole vehicle controller;
converting the first validity information into second validity information which can be identified by the whole vehicle controller; and
converting the first check message into a second check message which can be identified by the whole vehicle controller;
and generating the fault enabling signal based on the second fault type, the second validity information and the second check message.
5. The method for testing the functional safety of the vehicle controller according to claim 4, wherein the sending the fault enabling signal to the vehicle controller includes:
and sending the fault enabling signal to the whole vehicle controller through a controller local area network bus interface.
6. The method for testing the functional safety of the vehicle controller according to any one of claims 1 to 3, wherein the fault to be tested is an electrical fault, the fault logic information includes first open circuit information, first short circuit to ground information, or first short circuit to power information, and the converting the fault logic information into a fault enabling signal identifiable by the vehicle controller includes:
converting the first open circuit information into second open circuit information which can be identified by the whole vehicle controller;
converting the first short-circuit to ground information into second short-circuit to ground information which can be identified by the whole vehicle controller; or alternatively
Converting the first short circuit to power supply information into second short circuit to power supply information which can be identified by the whole vehicle controller;
and obtaining the fault enabling signal based on the second open circuit information, the second short circuit to ground information or the second short circuit to power supply information.
7. The method for testing the functional safety of the vehicle controller according to claim 6, wherein the sending the fault enabling signal to the vehicle controller includes:
and sending the fault enabling signal to the whole vehicle controller through a hard wire interface.
8. The functional safety test method of a vehicle controller according to claim 1, further comprising:
acquiring user input information;
determining the fault to be tested based on the user input information, wherein the fault to be tested is any one of a network fault, a signal fault and an electrical fault;
the network faults comprise one or more of single ID message loss faults, single sending node loss faults and all sending node loss faults, the signal faults comprise one or more of collision faults, high-voltage interlocking faults, double-side insulation faults and single-side insulation faults, and the electric faults comprise one or more of first accelerator pedal sensor faults, second accelerator pedal sensor faults, brake switch faults and power CAN faults.
9. The utility model provides a vehicle control unit's functional safety testing arrangement which characterized in that includes:
the fault acquisition unit is used for acquiring fault logic information corresponding to a fault to be tested, which is generated by the whole vehicle simulation model, wherein the fault logic information comprises information for identifying the fault to be tested;
the conversion unit is used for converting the fault logic information into a fault enabling signal which can be identified by the whole vehicle controller;
the fault sending unit is used for sending the fault enabling signal to the whole vehicle controller so that the whole vehicle controller executes a safety prevention instruction for responding to the fault enabling signal and generates an execution result;
and the report generation unit is used for generating a test report based on the execution result, wherein the test report comprises information for prompting whether the whole vehicle controller needs to be improved.
10. An electronic device, comprising: memory, a processor and a computer program stored on the memory and executable on the processor, the processor implementing the method of any of claims 1-8 when the computer program is executed.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202311403097.6A CN117519073A (en) | 2023-10-25 | 2023-10-25 | Function safety test method, device and equipment of whole vehicle controller |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202311403097.6A CN117519073A (en) | 2023-10-25 | 2023-10-25 | Function safety test method, device and equipment of whole vehicle controller |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN117519073A true CN117519073A (en) | 2024-02-06 |
Family
ID=89752248
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202311403097.6A Pending CN117519073A (en) | 2023-10-25 | 2023-10-25 | Function safety test method, device and equipment of whole vehicle controller |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN117519073A (en) |
-
2023
- 2023-10-25 CN CN202311403097.6A patent/CN117519073A/en active Pending
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN103139011A (en) | Integrated fault diagnosis and prognosis for in-vehicle communications | |
| CN103019141B (en) | Control module, control method and electric power dynamic recording device and implementation method thereof | |
| CN110445635B (en) | Control message sending method and device and bus simulation test system | |
| CN114124767B (en) | Automatic test method and device for gateway network management strategy | |
| CN114338464B (en) | Fault diagnosis method, device, equipment and computer readable storage medium | |
| CN103941240A (en) | Radar system communication extension detection device and detection methods | |
| CN109001576B (en) | Vehicle collision simulation test method and device | |
| CN212846495U (en) | Test system for rail train control logic | |
| CN113092130A (en) | Method for simulating conformance test of electric automobile and vehicle-mounted terminal | |
| CN110262921A (en) | A kind of method for diagnosing faults, system and the device of the vehicle-mounted loudspeaker of vehicle | |
| CN115542875A (en) | Vehicle detection method based on SOA service and related equipment | |
| CN115470064A (en) | Security test method and device for device to be tested, electronic device and storage medium | |
| CN101667953B (en) | Reporting method of rapid looped network physical link state and device therefor | |
| CN114356671A (en) | Board card debugging device, system and method | |
| CN111142504B (en) | Bus detection device and method | |
| CN113595245A (en) | Test system and method of precise load control system based on 5G communication | |
| CN117240738A (en) | Method, device, equipment and storage medium for testing vehicle-mounted Ethernet | |
| CN117519073A (en) | Function safety test method, device and equipment of whole vehicle controller | |
| CN111917692A (en) | Fuzzy test method, device, equipment and computer readable storage medium | |
| CN111786842B (en) | Data processing method and hardware-in-the-loop test system | |
| CN115933591A (en) | Controller diagnosis method, device, equipment and storage medium | |
| CN111740881B (en) | Network card link detection method, system, equipment and computer storage medium | |
| CN110493247B (en) | Power distribution terminal communication detection method, system, equipment and computer medium | |
| CN105044552A (en) | Fault diagnosis method, system and device for distribution network automation system | |
| CN116684913B (en) | 4G communication module testing method, system, electronic equipment and storage medium |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination |