Alarm checking is currently not particularly well-specified. There are various things that haven't been entirely decided upon:
What are the exact semantics of rate of change alarms?
How does persistence interact with compound (SOE, logical AND, logical OR) alarms?
How should things be handled when alarm conditions rapidly change between satisfied and not satisfied?
It might be worth it to write out a more formal specification of the precise semantics of alarms, and verify that the current code for alarm checking behaves in the desired ways.
Alarm checking is currently not particularly well-specified. There are various things that haven't been entirely decided upon:
It might be worth it to write out a more formal specification of the precise semantics of alarms, and verify that the current code for alarm checking behaves in the desired ways.