This repository contains a framework for injecting artificial SEU faults into RISC-V core. This work was done as a part of ISAE Supaero Master Aerospace Engineering degree.
RISC-V is an open-source Instruction Set Architecture. Due to its non-proprietary nature its adaptation to space industry offers great costs cut related to the lack of any licensing.
Central Processing Units that operate in the space environment are subjected to different kinds of radiation. A very common case is the exposition to an ionizing radiation which interacts with electrical components of satellites on Earth's orbit. A physical phenomena known as Single Event Upset (SEU) can result in a bit flip within CPU's memory, register file causing incorrect execution of a running software. Reprecussions of such an accident can be fatal to the mission.
This project focuses on two goals:
- Adapting RISC-V architecture to the space environment with respect to SEU: applying hardware mitigation techniques.
- Establishing a generic test framework within Zybo line of ARM/FPGA SoC platforms, which injects simulate SEU faults and analyzes outputs to evaluate mitigated core performance. The framework should allow for a verification of different cores as long as they can synthesize on the supported platform with minial changes (mostly ports expositions).
The proposed architecture uses Digilent Zybo Z7-20 development boards and a master computer (later called as Master PC).
The idea is to have two workers (Zybo boards) one implements mitigated core, another one unmitigated. Both workers communicate with the Master PC (on the diagram below Fault Injection Orchestrator) which sends to them what kind of instruction to execute and what kind of fault to inject.
The outputs from cores are collected and compared against each other to establish, if mitigation worked and what was the time performance of the mitgated CPU.
The detailed aritecture of a single worker is depicted below. Master PC sends commands through UART, which is received by built-in Zybo ARM Cortex CPU. ARM Cortex implements AXI Master which interprets requests from Master PC and does the following:
- Inform the Control Module to stop the processor.
- Modify instruction memory of the core with a new instruction and according to the fault vector part related to the memory.
- Inform Control Module of the values to write to the register file. This module communicates with Fault Injection Module (FIM) about the fault to inject- into register file. Once FIM prepares the data, then Control Module updates the register file.
- Once register file is updated the
unstall signalis issued and the core executes instruction(s). In the meantime a timer is launched to measure how long it takes to complete the instruction. - When the processor finishes it is being stalled once again via
Zynq PC -> Control Module. After stall the data is collected: memory, register file, program counter. - Collected data is send back to the Master PC.
Entire communication between Programmable Logic (PL) and Processing System (PS)- ARM, is done through AMBA AXI protocol.
Component labeled as RISC-V soft-core is meant to be any core that can synthesize on the supported hardware like Zybo Z7-20. The principal advantage of this approach is that this architecture can mimick debugger workflow without having to implement full debug mode within the core (greately simplyfying it) and inject SEU into the processor.
The project's tree in the simplified form form looks as follows:
├── cores
├── docs
├── masterpc
└── soc
cores: contains HDL implementations of soft-cores to verify + any build system they usemasterpc: Master PC applicationsoc: ARM Cortex application + full implementation including the selected core