2015-12-30 18:57:56 -04:00
// -*- tab-width: 4; Mode: C++; c-basic-offset: 4; indent-tabs-mode: nil -*-
2016-01-14 15:30:56 -04:00
# include "Sub.h"
2015-12-30 18:57:56 -04:00
/*
* This event will be called when the failsafe changes
* boolean failsafe reflects the current state
*/
2016-01-14 15:30:56 -04:00
void Sub : : failsafe_radio_on_event ( )
2015-12-30 18:57:56 -04:00
{
// if motors are not armed there is nothing to do
if ( ! motors . armed ( ) ) {
return ;
}
2016-04-18 01:38:21 -03:00
if ( should_disarm_on_failsafe ( ) ) {
init_disarm_motors ( ) ;
} else {
if ( control_mode = = AUTO & & g . failsafe_throttle = = FS_THR_ENABLED_CONTINUE_MISSION ) {
// continue mission
} else if ( control_mode = = LAND & & g . failsafe_battery_enabled = = FS_BATT_LAND & & failsafe . battery ) {
// continue landing
} else {
if ( g . failsafe_throttle = = FS_THR_ENABLED_ALWAYS_LAND ) {
set_mode_land_with_pause ( MODE_REASON_RADIO_FAILSAFE ) ;
} else {
set_mode_RTL_or_land_with_pause ( MODE_REASON_RADIO_FAILSAFE ) ;
2015-12-30 18:57:56 -04:00
}
2016-04-18 01:38:21 -03:00
}
2015-12-30 18:57:56 -04:00
}
// log the error to the dataflash
Log_Write_Error ( ERROR_SUBSYSTEM_FAILSAFE_RADIO , ERROR_CODE_FAILSAFE_OCCURRED ) ;
}
// failsafe_off_event - respond to radio contact being regained
// we must be in AUTO, LAND or RTL modes
// or Stabilize or ACRO mode but with motors disarmed
2016-01-14 15:30:56 -04:00
void Sub : : failsafe_radio_off_event ( )
2015-12-30 18:57:56 -04:00
{
// no need to do anything except log the error as resolved
// user can now override roll, pitch, yaw and throttle and even use flight mode switch to restore previous flight mode
Log_Write_Error ( ERROR_SUBSYSTEM_FAILSAFE_RADIO , ERROR_CODE_FAILSAFE_RESOLVED ) ;
}
2016-01-14 15:30:56 -04:00
void Sub : : failsafe_battery_event ( void )
2015-12-30 18:57:56 -04:00
{
// return immediately if low battery event has already been triggered
if ( failsafe . battery ) {
return ;
}
// failsafe check
2016-04-18 01:38:21 -03:00
if ( g . failsafe_battery_enabled ! = FS_BATT_DISABLED & & motors . armed ( ) ) {
if ( should_disarm_on_failsafe ( ) ) {
init_disarm_motors ( ) ;
} else {
if ( g . failsafe_battery_enabled = = FS_BATT_RTL | | control_mode = = AUTO ) {
set_mode_RTL_or_land_with_pause ( MODE_REASON_BATTERY_FAILSAFE ) ;
} else {
set_mode_land_with_pause ( MODE_REASON_BATTERY_FAILSAFE ) ;
}
}
}
2015-12-30 18:57:56 -04:00
// set the low battery flag
set_failsafe_battery ( true ) ;
// warn the ground station and log to dataflash
gcs_send_text ( MAV_SEVERITY_WARNING , " Low battery " ) ;
Log_Write_Error ( ERROR_SUBSYSTEM_FAILSAFE_BATT , ERROR_CODE_FAILSAFE_OCCURRED ) ;
}
// failsafe_gcs_check - check for ground station failsafe
2016-01-14 15:30:56 -04:00
void Sub : : failsafe_gcs_check ( )
2015-12-30 18:57:56 -04:00
{
uint32_t last_gcs_update_ms ;
// return immediately if gcs failsafe is disabled, gcs has never been connected or we are not overriding rc controls from the gcs and we are not in guided mode
// this also checks to see if we have a GCS failsafe active, if we do, then must continue to process the logic for recovery from this state.
2016-02-20 23:39:48 -04:00
if ( ( ! failsafe . gcs ) & & ( g . failsafe_gcs = = FS_GCS_DISABLED ) ) {
return ;
2015-12-30 18:57:56 -04:00
}
// calc time since last gcs update
// note: this only looks at the heartbeat from the device id set by g.sysid_my_gcs
2016-02-20 23:39:48 -04:00
last_gcs_update_ms = AP_HAL : : millis ( ) - failsafe . last_heartbeat_ms ;
2015-12-30 18:57:56 -04:00
// check if all is well
if ( last_gcs_update_ms < FS_GCS_TIMEOUT_MS ) {
// check for recovery from gcs failsafe
if ( failsafe . gcs ) {
failsafe_gcs_off_event ( ) ;
set_failsafe_gcs ( false ) ;
}
return ;
}
// do nothing if gcs failsafe already triggered or motors disarmed
if ( failsafe . gcs | | ! motors . armed ( ) ) {
return ;
}
// GCS failsafe event has occured
// update state, log to dataflash
set_failsafe_gcs ( true ) ;
Log_Write_Error ( ERROR_SUBSYSTEM_FAILSAFE_GCS , ERROR_CODE_FAILSAFE_OCCURRED ) ;
// clear overrides so that RC control can be regained with radio.
hal . rcin - > clear_overrides ( ) ;
failsafe . rc_override_active = false ;
2016-02-12 00:03:57 -04:00
// Disarm the motors, pilot has lost all contact/control over vehicle.
init_disarm_motors ( ) ;
2015-12-30 18:57:56 -04:00
}
// failsafe_gcs_off_event - actions to take when GCS contact is restored
2016-01-14 15:30:56 -04:00
void Sub : : failsafe_gcs_off_event ( void )
2015-12-30 18:57:56 -04:00
{
// log recovery of GCS in logs?
Log_Write_Error ( ERROR_SUBSYSTEM_FAILSAFE_GCS , ERROR_CODE_FAILSAFE_RESOLVED ) ;
}
2016-05-03 01:45:37 -03:00
// executes terrain failsafe if data is missing for longer than a few seconds
// missing_data should be set to true if the vehicle failed to navigate because of missing data, false if navigation is proceeding successfully
void Sub : : failsafe_terrain_check ( )
{
// trigger with 5 seconds of failures while in AUTO mode
bool valid_mode = ( control_mode = = AUTO | | control_mode = = GUIDED | | control_mode = = RTL ) ;
bool timeout = ( failsafe . terrain_last_failure_ms - failsafe . terrain_first_failure_ms ) > FS_TERRAIN_TIMEOUT_MS ;
bool trigger_event = valid_mode & & timeout ;
// check for clearing of event
if ( trigger_event ! = failsafe . terrain ) {
if ( trigger_event ) {
failsafe_terrain_on_event ( ) ;
} else {
Log_Write_Error ( ERROR_SUBSYSTEM_FAILSAFE_TERRAIN , ERROR_CODE_ERROR_RESOLVED ) ;
failsafe . terrain = false ;
}
}
}
// set terrain data status (found or not found)
void Sub : : failsafe_terrain_set_status ( bool data_ok )
{
uint32_t now = millis ( ) ;
// record time of first and latest failures (i.e. duration of failures)
if ( ! data_ok ) {
failsafe . terrain_last_failure_ms = now ;
if ( failsafe . terrain_first_failure_ms = = 0 ) {
failsafe . terrain_first_failure_ms = now ;
}
} else {
// failures cleared after 0.1 seconds of persistent successes
if ( now - failsafe . terrain_last_failure_ms > 100 ) {
failsafe . terrain_last_failure_ms = 0 ;
failsafe . terrain_first_failure_ms = 0 ;
}
}
}
// terrain failsafe action
void Sub : : failsafe_terrain_on_event ( )
{
failsafe . terrain = true ;
gcs_send_text ( MAV_SEVERITY_CRITICAL , " Failsafe: Terrain data missing " ) ;
Log_Write_Error ( ERROR_SUBSYSTEM_FAILSAFE_TERRAIN , ERROR_CODE_FAILSAFE_OCCURRED ) ;
if ( should_disarm_on_failsafe ( ) ) {
init_disarm_motors ( ) ;
} else if ( control_mode = = RTL ) {
rtl_restart_without_terrain ( ) ;
} else {
set_mode_RTL_or_land_with_pause ( MODE_REASON_TERRAIN_FAILSAFE ) ;
}
}
2015-12-30 18:57:56 -04:00
// set_mode_RTL_or_land_with_pause - sets mode to RTL if possible or LAND with 4 second delay before descent starts
// this is always called from a failsafe so we trigger notification to pilot
2016-04-18 01:38:21 -03:00
void Sub : : set_mode_RTL_or_land_with_pause ( mode_reason_t reason )
2015-12-30 18:57:56 -04:00
{
// attempt to switch to RTL, if this fails then switch to Land
2016-04-18 01:38:21 -03:00
if ( ! set_mode ( RTL , reason ) ) {
2015-12-30 18:57:56 -04:00
// set mode to land will trigger mode change notification to pilot
2016-04-18 01:38:21 -03:00
set_mode_land_with_pause ( reason ) ;
2015-12-30 18:57:56 -04:00
} else {
// alert pilot to mode change
AP_Notify : : events . failsafe_mode_change = 1 ;
}
}
2016-04-18 01:38:21 -03:00
bool Sub : : should_disarm_on_failsafe ( ) {
switch ( control_mode ) {
case STABILIZE :
case ACRO :
// if throttle is zero OR vehicle is landed disarm motors
return ap . throttle_zero | | ap . land_complete ;
break ;
case AUTO :
// if mission has not started AND vehicle is landed, disarm motors
return ! ap . auto_armed & & ap . land_complete ;
break ;
default :
// used for AltHold, Guided, Loiter, RTL, Circle, Drift, Sport, Flip, Autotune, PosHold
// if landed disarm
return ap . land_complete ;
break ;
}
}
2016-01-14 15:30:56 -04:00
void Sub : : update_events ( )
2015-12-30 18:57:56 -04:00
{
ServoRelayEvents . update_events ( ) ;
}
