dpsk3-power-boost-voltage-mode-control/a00218_source.html

 /*
  * @file   app_fault_monitor.c
  * Author: M91406
  * @brief  Fault monitor application layer source file
  * Revision history:
  */

 #include <xc.h> // include processor files - each processor file is guarded.
 #include <stdint.h> // include standard integer data types
 #include <stdbool.h> // include standard boolean data types
 #include <stddef.h> // include standard definition data types

 #include "config/hal.h" // include hardware abstraction layer header file
 #include "config/apps.h" // include application layer abstraction layer header file

 // User fault object declarations
 extern volatile struct FAULT_OBJECT_s* FaultObjectList[];
 extern volatile uint16_t FaultObjectList_size;

 /*********************************************************************************
  * @fn     volatile uint16_t appFaultMonitor_Execute(void)
  * @ingroup app-layer-fault-handler-functions-public
  * @brief  Application wide fault object monitoring routine
  * @return 0=failure
  * @return 1=success
  *
  * @details
  *   In this function all user-defined fault objects are monitored for
  *   threshold violations. While fault responses are triggered by each
  *   fault object individually, system recovery from a fault condition is
  *   only allowed when all fault conditions have been cleared. Hence,
  *   individual fault status bits are combined into a common fault bit,
  *   which needs to be cleared to allow the power supply to start-up again.
  *
  *********************************************************************************/

 volatile uint16_t appFaultMonitor_Execute(void)
 {
     volatile uint16_t retval=1;

     // Scan all declared fault objects
     drv_FaultHandler_ScanObjects(FaultObjectList, FaultObjectList_size);

     // Push global fault state to buck converter device driver status
     boost.status.bits.fault_active = FaultMonitor.Status.bits.FaultStatus;

     // If power supply controller passes POWER GOOD and reaches state ONLINE,
     // reset restart cycle counter
     if (boost.state_id.bits.opstate_id == BOOST_OPSTATE_ONLINE)
         FaultMonitor.FaultRecoveryCounter = 0;


     return (retval);
 }

 /*********************************************************************************
  * @fn     volatile uint16_t appFaultMonitor_Initialize(void)
  * @ingroup app-layer-fault-handler-functions-public
  * @brief  Initialization of user-defined fault objects
  * @return 0=failure
  * @return 1=success
  *
  * @details
  * This function initializes the fault monitor data object user settings.
  *********************************************************************************/

 volatile uint16_t appFaultMonitor_Initialize(void)
 {
     volatile uint16_t retval=1;

     FaultMonitor.FaultRecovery = &appPowerSupply_Resume;
     FaultMonitor.FaultLatchCount = BOOST_FAULT_RESTART_CYCLES;
     FaultMonitor.FaultRecoveryCounter = 0;

     return(retval);
 }

 /*********************************************************************************
  * @fn     volatile uint16_t appFaultMonitor_Start(void)
  * @ingroup app-layer-fault-handler-functions-public
  * @brief  Function starting all pre-configured fault checks
  * @return 0=failure
  * @return 1=success
  *
  * @details
  *   This function is used to set the fault status of all fault objects
  *   to ACTIVE, enforcing the system monitor to clear them one-by-one as
  *   default startup self-test procedure. Once cleared, the respective
  *   recovery procedures will turn on the respective user-tasks being
  *   kept on-hold while faults have been active.
  *
  *   Users can set the initial state of each fault object in accordance
  *   to their inclusion in the self-test period at firmware startup.
  *
  *********************************************************************************/

 volatile uint16_t appFaultMonitor_Start(void)
 {
     fltobj_BoostUVLO.Status.bits.FaultStatus = true; // Set Under Voltage Lock Out fault
     fltobj_BoostUVLO.Status.bits.FaultActive = true; // Set Under Voltage Lock Out fault condition indicator
     fltobj_BoostUVLO.Status.bits.Enabled = true; // Enable Under Voltage Lock Out object

     fltobj_BoostOVLO.Status.bits.FaultStatus = true; // Set Over Voltage Lock Out fault
     fltobj_BoostOVLO.Status.bits.FaultActive = true; // Set Over Voltage Lock Out fault condition indicator
     fltobj_BoostOVLO.Status.bits.Enabled = true; // Enable Over Voltage Lock Out object

     fltobj_BoostOCP.Status.bits.FaultStatus = false; // Clear Over Current Protection fault
     fltobj_BoostOCP.Status.bits.FaultActive = false; // Clear Over Current Protection fault condition indicator
     fltobj_BoostOCP.Status.bits.Enabled = false; // Disable Over Current Protection object (will be enabled by power supply state machine)

     fltobj_BoostRegErr.Status.bits.FaultStatus = false; // Clear Regulation Error fault
     fltobj_BoostRegErr.Status.bits.FaultActive = false; // Clear Regulation Error fault condition indicator
     fltobj_BoostRegErr.Status.bits.Enabled = false; // Disable Regulation Error object (will be enabled by power supply state machine)

     return(1);
 }

 /*********************************************************************************
  * @fn     volatile uint16_t appFaultMonitor_Dispose(void)
  * @ingroup app-layer-fault-handler-functions-public
  * @brief  Function clearing all fault object settings
  * @return 0=failure
  * @return 1=success
  *
  * @details
  *   This function is used to clear all fault objects settings. Once cleared,
  *   the fault objects are detached from memory addresses and cannot be used
  *   for fault monitoring anymore until they have been re-initialized.
  *
  *********************************************************************************/

 volatile uint16_t appFaultMonitor_Dispose(void) {

     // Clear all user defined fault objects
     drv_FaultHandler_Dispose(FaultObjectList, FaultObjectList_size);

     return(1);
 }

 // end of file
BOOST_CONVERTER_STATUS_s::fault_active
volatile bool fault_active
Bit #5: Flag bit indicating system is in enforced shut down mode (usually due to a fault condition)
Definition: dev_boost_typedef.h:214

FLT_OBJECT_STATUS_s::Enabled
volatile bool Enabled
Bit 15: Control bit enabling/disabling monitoring of the fault object.
Definition: drv_fault_handler.h:89

FAULT_MONITOR_s::FaultRecovery
volatile uint16_t(* FaultRecovery)(void)
Function pointer to the common fault recovery function.
Definition: drv_fault_handler.h:164

FAULT_OBJECT_s::Status
volatile struct FLT_OBJECT_STATUS_s Status
Status word of this fault object.
Definition: drv_fault_handler.h:133

FAULT_MONITOR_s::FaultRecoveryCounter
volatile uint16_t FaultRecoveryCounter
Most recent number of fault recovery attempts.
Definition: drv_fault_handler.h:162

BOOST_STATE_ID_s::bits
struct BOOST_STATE_ID_s::@372::@373 bits

FAULT_MONITOR_s::Status
volatile struct FAULT_MONITOR_STATUS_s Status
Status word of the fault monitor.
Definition: drv_fault_handler.h:160

FLT_OBJECT_STATUS_s::FaultStatus
volatile bool FaultStatus
Bit 0: Flag bit indicating if FAULT has been tripped.
Definition: drv_fault_handler.h:84

FAULT_OBJECT_s
Generic fault object.
Definition: drv_fault_handler.h:131

FAULT_MONITOR_s::FaultLatchCount
volatile uint16_t FaultLatchCount
Number of fault recovery attempts after which the system gets locked in a latched fault state.
Definition: drv_fault_handler.h:163

BOOST_CONVERTER_s::status
volatile struct BOOST_CONVERTER_STATUS_s status
BOOST operation status bits.
Definition: dev_boost_typedef.h:529

BOOST_CONVERTER_s::state_id
volatile struct BOOST_STATE_ID_s state_id
BOOST state machine operating state ID.
Definition: dev_boost_typedef.h:530

FLT_OBJECT_STATUS_s::FaultActive
volatile bool FaultActive
Bit 1: Flag bit indicating if fault condition has been detected but FAULT has not been tripped yet.
Definition: drv_fault_handler.h:85

FAULT_MONITOR_STATUS_s::FaultStatus
volatile bool FaultStatus
Bit 0: Flag bit indicating if a FAULT condition has been tripped.
Definition: drv_fault_handler.h:146