mirror of
https://github.com/ArduPilot/ardupilot
synced 2025-01-20 15:48:29 -04:00
AP_Arming: force user to ack crashdump or get prearm failure
This commit is contained in:
parent
ad0c6a8a30
commit
11cdc1d26f
@ -154,6 +154,15 @@ const AP_Param::GroupInfo AP_Arming::var_info[] = {
|
|||||||
// @User: Advanced
|
// @User: Advanced
|
||||||
AP_GROUPINFO("MAGTHRESH", 10, AP_Arming, magfield_error_threshold, AP_ARMING_MAGFIELD_ERROR_THRESHOLD),
|
AP_GROUPINFO("MAGTHRESH", 10, AP_Arming, magfield_error_threshold, AP_ARMING_MAGFIELD_ERROR_THRESHOLD),
|
||||||
|
|
||||||
|
#if AP_ARMING_CRASHDUMP_ACK_ENABLED
|
||||||
|
// @Param: CRSDP_IGN
|
||||||
|
// @DisplayName: Disable CrashDump Arming check
|
||||||
|
// @Description: Must have value "1" if crashdump data is present on the system, or a prearm failure will be raised. Do not set this parameter unless the risks of doing so are fully understood. The presence of a crash dump means that the firmware currently installed has suffered a critical software failure which resulted in the autopilot immediately rebooting. The crashdump file gives diagnostic information which can help in finding the issue, please contact the ArduPIlot support team. If this crashdump data is present, the vehicle is likely unsafe to fly. Check the ArduPilot documentation for more details.
|
||||||
|
// @Values: 0:Crash Dump arming check active, 1:Crash Dump arming check deactivated
|
||||||
|
// @User: Advanced
|
||||||
|
AP_GROUPINFO("CRSDP_IGN", 11, AP_Arming, crashdump_ack.acked, 0),
|
||||||
|
#endif // AP_ARMING_CRASHDUMP_ACK_ENABLED
|
||||||
|
|
||||||
AP_GROUPEND
|
AP_GROUPEND
|
||||||
};
|
};
|
||||||
|
|
||||||
@ -180,6 +189,13 @@ AP_Arming::AP_Arming()
|
|||||||
// performs pre-arm checks. expects to be called at 1hz.
|
// performs pre-arm checks. expects to be called at 1hz.
|
||||||
void AP_Arming::update(void)
|
void AP_Arming::update(void)
|
||||||
{
|
{
|
||||||
|
#if AP_ARMING_CRASHDUMP_ACK_ENABLED
|
||||||
|
// if we boot with no crashdump data present, reset the "ignore"
|
||||||
|
// parameter so the user will need to acknowledge future crashes
|
||||||
|
// too:
|
||||||
|
crashdump_ack.check_reset();
|
||||||
|
#endif
|
||||||
|
|
||||||
const uint32_t now_ms = AP_HAL::millis();
|
const uint32_t now_ms = AP_HAL::millis();
|
||||||
// perform pre-arm checks & display failures every 30 seconds
|
// perform pre-arm checks & display failures every 30 seconds
|
||||||
bool display_fail = false;
|
bool display_fail = false;
|
||||||
@ -197,6 +213,19 @@ void AP_Arming::update(void)
|
|||||||
pre_arm_checks(display_fail);
|
pre_arm_checks(display_fail);
|
||||||
}
|
}
|
||||||
|
|
||||||
|
#if AP_ARMING_CRASHDUMP_ACK_ENABLED
|
||||||
|
void AP_Arming::CrashDump::check_reset()
|
||||||
|
{
|
||||||
|
// if there is no crash dump data then clear the crash dump ack.
|
||||||
|
// This means on subsequent crash-dumps appearing the user must
|
||||||
|
// re-acknowledge.
|
||||||
|
if (hal.util->last_crash_dump_size() == 0) {
|
||||||
|
// no crash dump data
|
||||||
|
acked.set_and_save_ifchanged(0);
|
||||||
|
}
|
||||||
|
}
|
||||||
|
#endif // AP_ARMING_CRASHDUMP_ACK_ENABLED
|
||||||
|
|
||||||
uint16_t AP_Arming::compass_magfield_expected() const
|
uint16_t AP_Arming::compass_magfield_expected() const
|
||||||
{
|
{
|
||||||
return AP_ARMING_COMPASS_MAGFIELD_EXPECTED;
|
return AP_ARMING_COMPASS_MAGFIELD_EXPECTED;
|
||||||
@ -1637,6 +1666,9 @@ bool AP_Arming::pre_arm_checks(bool report)
|
|||||||
#endif
|
#endif
|
||||||
#if AP_OPENDRONEID_ENABLED
|
#if AP_OPENDRONEID_ENABLED
|
||||||
& opendroneid_checks(report)
|
& opendroneid_checks(report)
|
||||||
|
#endif
|
||||||
|
#if AP_ARMING_CRASHDUMP_ACK_ENABLED
|
||||||
|
& crashdump_checks(report)
|
||||||
#endif
|
#endif
|
||||||
& serial_protocol_checks(report)
|
& serial_protocol_checks(report)
|
||||||
& estop_checks(report);
|
& estop_checks(report);
|
||||||
@ -1689,6 +1721,30 @@ bool AP_Arming::arm_checks(AP_Arming::Method method)
|
|||||||
return true;
|
return true;
|
||||||
}
|
}
|
||||||
|
|
||||||
|
#if AP_ARMING_CRASHDUMP_ACK_ENABLED
|
||||||
|
bool AP_Arming::crashdump_checks(bool report)
|
||||||
|
{
|
||||||
|
if (hal.util->last_crash_dump_size() == 0) {
|
||||||
|
// no crash dump data
|
||||||
|
return true;
|
||||||
|
}
|
||||||
|
|
||||||
|
// see if the user has acknowledged the failure and wants to fly anyway:
|
||||||
|
if (crashdump_ack.acked) {
|
||||||
|
// they may have acked the problem, that doesn't mean we don't
|
||||||
|
// continue to warn them they're on thin ice:
|
||||||
|
if (report) {
|
||||||
|
GCS_SEND_TEXT(MAV_SEVERITY_WARNING, "CrashDump data detected");
|
||||||
|
}
|
||||||
|
return true;
|
||||||
|
}
|
||||||
|
|
||||||
|
check_failed(ARMING_CHECK_PARAMETERS, true, "CrashDump data detected");
|
||||||
|
|
||||||
|
return false;
|
||||||
|
}
|
||||||
|
#endif // AP_ARMING_CRASHDUMP_ACK_ENABLED
|
||||||
|
|
||||||
bool AP_Arming::mandatory_checks(bool report)
|
bool AP_Arming::mandatory_checks(bool report)
|
||||||
{
|
{
|
||||||
bool ret = true;
|
bool ret = true;
|
||||||
|
@ -3,6 +3,7 @@
|
|||||||
#include <AP_HAL/AP_HAL_Boards.h>
|
#include <AP_HAL/AP_HAL_Boards.h>
|
||||||
#include <AP_HAL/Semaphores.h>
|
#include <AP_HAL/Semaphores.h>
|
||||||
#include <AP_Param/AP_Param.h>
|
#include <AP_Param/AP_Param.h>
|
||||||
|
#include <AP_BoardConfig/AP_BoardConfig_config.h>
|
||||||
|
|
||||||
#include "AP_Arming_config.h"
|
#include "AP_Arming_config.h"
|
||||||
#include "AP_InertialSensor/AP_InertialSensor_config.h"
|
#include "AP_InertialSensor/AP_InertialSensor_config.h"
|
||||||
@ -230,6 +231,10 @@ protected:
|
|||||||
|
|
||||||
bool estop_checks(bool display_failure);
|
bool estop_checks(bool display_failure);
|
||||||
|
|
||||||
|
#if AP_ARMING_CRASHDUMP_ACK_ENABLED
|
||||||
|
bool crashdump_checks(bool report);
|
||||||
|
#endif
|
||||||
|
|
||||||
virtual bool system_checks(bool report);
|
virtual bool system_checks(bool report);
|
||||||
|
|
||||||
bool can_checks(bool report);
|
bool can_checks(bool report);
|
||||||
@ -309,6 +314,14 @@ private:
|
|||||||
bool report_immediately; // set to true when check goes from true to false, to trigger immediate report
|
bool report_immediately; // set to true when check goes from true to false, to trigger immediate report
|
||||||
|
|
||||||
void update_arm_gpio();
|
void update_arm_gpio();
|
||||||
|
|
||||||
|
#if AP_ARMING_CRASHDUMP_ACK_ENABLED
|
||||||
|
struct CrashDump {
|
||||||
|
void check_reset();
|
||||||
|
AP_Int8 acked;
|
||||||
|
} crashdump_ack;
|
||||||
|
#endif // AP_ARMING_CRASHDUMP_ACK_ENABLED
|
||||||
|
|
||||||
};
|
};
|
||||||
|
|
||||||
namespace AP {
|
namespace AP {
|
||||||
|
@ -5,3 +5,7 @@
|
|||||||
#ifndef AP_ARMING_AUX_AUTH_ENABLED
|
#ifndef AP_ARMING_AUX_AUTH_ENABLED
|
||||||
#define AP_ARMING_AUX_AUTH_ENABLED AP_SCRIPTING_ENABLED
|
#define AP_ARMING_AUX_AUTH_ENABLED AP_SCRIPTING_ENABLED
|
||||||
#endif
|
#endif
|
||||||
|
|
||||||
|
#ifndef AP_ARMING_CRASHDUMP_ACK_ENABLED
|
||||||
|
#define AP_ARMING_CRASHDUMP_ACK_ENABLED AP_CRASHDUMP_ENABLED
|
||||||
|
#endif
|
||||||
|
Loading…
Reference in New Issue
Block a user