- Action that is intended to be taken does not happen when it should.
- That very same action does happen when it should not.
This note analyzes just one of thirteen instances identified by DBDOC in a particular system where a TSTALM block tests a block that already has a TSTALM applied to it (in fact two of these errors are not a concern, because previous examination has shown that the incorrect action is not taken because the signals are unused). The remaining eleven messages in fact indicate twenty actions that will not happen when they should, plus twenty places where the same action will happen when it should not.
Of course, a situation where a TSTALM block triggers one or more wrong actions, and where the designed TSTALM block fails to trigger the desired action, can be serious for any block type.
Example:
The TSTALM error is typically caused caused by the DCS worker failing to change specification S1 to match logic that is put onto a sheet and given new block numbers. So the block is copied, but the TSTALM S1 is not changed to match the new block it is supposed to be testing.
Take a look at this image:
[A] Error Browser: Multiple TSTALM: Module 1,10,04 Block 3623 is tested multiple times
This error is selected in the error browser. It indicates that more than one TSTALM block is testing Block 3623. The Error Browser shows a total of thirteen errors of this type.
[B] TSTALM Block 3632 -- The working original
The MSDRVR (Block 3623) is being tested correctly for being in Auto or Manual because the TSTALM (Block 3632) shown has S1=3623, indicating that it tests MSDVDR Block 3623.
[C] Intended action on block in Auto or Manual
If TSTALM (Block 3632) is put into Manual, its output at block 3633 will be 0. However, if TSTALM (Block 3632) is put into Auto, block 3633 will be set to 1.
[D] OR block with this result in it
Clearly documented "OVERRIDE TO DEFAULT", this action works in the prototype logic. When TSTALM (Block 3632) is in Auto, the S25 override input into MSDRVR (Block 3623) will be set.
[E] The MSDRVR block Override input
The diagrammed MSDRVR (Block 3623) will be put into Override when it should be.
[F] Working action
Tag 1SLWHS806 "FLUSH WATER PUMP" will be put into Override if TSTALM (Block 3632) tests the MSDRVR (Block 3623)as expected.
[G] Seven errors: MSDRVR (Block 3623) is spuriously tested by SEVEN other TSTALM blocks.
The block index shows seven more TSTALM blocks responding to the status of tag 1SLWHS806 in a spurious and possibly dangerous fashion.
These seven TSTALM blocks, each with their S1 set incorrectly to 3623, are displayed below.
Each of these seven TSTALM blocks will put some random MSDVDR into Override when the unrelated MSDRVR (Block 3623) is in Auto, and at the same time fail to put the expect block into Override when it should.
Each of these seven TSTALM blocks will put some random MSDVDR into Override when the unrelated MSDRVR (Block 3623) is in Auto, and at the same time fail to put the expect block into Override when it should.
Ramifications:
Some of the failed or unintended actions might be noticed. Others will not be until a problem arises. It is very likely that the cause of the sporadic operation will not be found if the problem actions or failed actions are noticed, because there is no expected logical connection between these unrelated blocks.
No comments:
Post a Comment