Avionics

Home » Avionics

Avionics

AbsInt — Worst-Case Execution Time, Stack, and Runtime Error Analysis

Sightsys is the official Israeli distributor of AbsInt, the German specialist in formal static program analysis for safety-critical avionics. Specifically, AbsInt’s tools generate the mathematical evidence required by DO-178C and ED-12C for worst-case execution time (WCET), maximum stack usage, and absence of runtime errors. Furthermore, all AbsInt tools are TÜV-qualified for DO-178C DAL A — making them the trusted choice for Israeli aerospace primes and Tier 1 avionics suppliers.

aiT WCET Analyzer — Worst-Case Execution Time

DO-178C DAL A and DAL B avionics require provable upper bounds on task execution time. Notably, traditional measurement-based timing analysis is unreliable on modern processors with caches, pipelines, and branch predictors. Therefore, aiT uses abstract interpretation to compute mathematically sound WCET bounds directly from the binary executable — no measurement runs needed. As a result, aiT delivers the certification evidence that DO-178C Section 6.3.4f requires. Furthermore, aiT supports a wide range of processors including Arm Cortex-M, Cortex-R, Cortex-A, PowerPC e200/e500/e600, TriCore, V850, MIPS, Renesas RH850, and Infineon AURIX.

StackAnalyzer — Maximum Stack Usage Proof

Stack overflow is one of the most insidious failure modes in embedded software — it manifests as random memory corruption rather than a clean crash. Conveniently, StackAnalyzer proves the maximum stack depth your application can ever reach, again using sound static analysis on the binary. As a result, you can size your stack with full confidence and generate the certification evidence DO-178C requires. Importantly, StackAnalyzer handles recursive calls, function pointers, and interrupt nesting correctly.

Astrée — Sound Runtime Error Detection

Astrée is the world’s most established sound static analyzer for C and C++ code. Specifically, Astrée proves the absence of entire classes of runtime errors — division by zero, integer and floating-point overflow, out-of-bounds array access, invalid pointer dereference, and data races in concurrent code. Notably, “sound” means Astrée never misses a possible error (no false negatives), which is exactly what DO-178C DAL A and ED-12C require. Furthermore, Astrée is famously used for the flight control software of the Airbus A340 and A380 — a benchmark of the highest-assurance avionics code in the world.

TimingProfiler — Early-Stage Timing Analysis

For earlier development phases when full WCET evidence is not yet required, TimingProfiler provides fast timing estimates that help engineers tune algorithms and identify hotspots before formal verification. Conveniently, the same analysis infrastructure that powers aiT delivers TimingProfiler’s quick feedback during daily development.

CompCert — Formally Verified C Compiler

CompCert is the world’s first commercially supported C compiler whose correctness has been formally proven. Specifically, the compilation process itself has a mathematical proof that the generated machine code preserves the semantics of the source code. As a result, CompCert eliminates an entire class of compiler-introduced bugs that ordinarily require extensive verification under DO-178C tool qualification. Notably, CompCert is the right choice for the highest-assurance avionics, defense, and security-critical code where compiler bugs simply cannot be tolerated.

AbsInt + Other Sightsys Tools — The Complete DO-178C Stack

AbsInt’s analysis tools integrate seamlessly into the broader Sightsys DO-178C portfolio:

  • IAR Embedded Workbench (Functional Safety) — qualified compiler whose output is analyzed by aiT and StackAnalyzer
  • SYSGO PikeOS — ARINC 653 hypervisor whose partitioned tasks get individual aiT WCET bounds
  • SEGGER embOS-Safe — TÜV-certified RTOS analyzed by Astrée for runtime error freedom
  • Axivion Suite — MISRA-C and architecture verification complementary to Astrée’s runtime analysis
  • QA Systems Cantata — MC/DC unit testing that proves the code paths Astrée and aiT analyzed are actually exercised
  • Solid Sands SuperTest — compiler validation evidence that complements aiT’s binary-level analysis

Therefore, an Israeli avionics team buying through Sightsys gets a single integrated stack — qualified compiler, certified RTOS or hypervisor, MISRA-C enforcement, sound runtime error analysis, provable WCET, provable stack bounds, and compiler qualification evidence — all from one local distributor with Hebrew technical support.

DO-178 Consultancy

Axivion - Static Code Analysis with Architecture verification

Cantata - Automated Unit and integration test framework for C/C++

Weston Embedded Cesium RTOS – The next generation of Micrium uC/OS-II and its...

Astree-Sound static analysis and provable WCET for safety-critical avionics

PikeOS -Hypervisor and RTOS in the same product. Multi-Core certification

Embedded Office – Flexible safety RTOS for Safety Critical applications