a half baked approach to an embedded device driver
play

A half-baked approach to an embedded device driver framework in - PowerPoint PPT Presentation

Jul 26, 2023 •1.02k likes •1.78k views

1 A half-baked approach to an embedded device driver framework in Esterel Timothy Bourke and Leonid Ryzhyk School of Computer Science and Engineering, UNSW and National ICT Australia Arcot Sowmya Ihor Kuz UNSW Asia, Singapore National

  1. � 1 A half-baked approach to an embedded device driver framework in Esterel Timothy Bourke and Leonid Ryzhyk School of Computer Science and Engineering, UNSW and National ICT Australia Arcot Sowmya Ihor Kuz UNSW Asia, Singapore National ICT Australia and UNSW Sydney

  2. � � 2 Leonid’s problem: Reliable driver framework My interest: using synchronous languages? Evaluate feasibility and identify related work, so far: – More questions than answers – Ideas rather than implementations Today: criticisms, opinions, missing references

  3. � � 3 Reliable I/O Framework: Aims Device drivers: 70% of systems code [Chou et al., 2001] 3 times more bugs per line of code

  4. � � � � � � � � � 3-b Reliable I/O Framework: Aims Device drivers: 70% of systems code [Chou et al., 2001] 3 times more bugs per line of code fault avoidance structure framework and API to simplify development fault prevention fault removal reduce number of faults find and eliminate bugs in SW fault detection recognise bad states & behaviours fault tolerance fault isolation prevent faulty drivers from corrupting recover from faults OS and applications error recovery MINIX, NOOKS

  5. 4 sm: Ethernet protocol state machine enabled tx_busy txReady! txEnqueue? enableComplete! [SUCCESS ] enable_in_progress tx_ready enable? enableComplete! [ERROR ] disabled txDone! disableComplete! rx_full disable? disable_in_progress rxReady! rxEnqueue? rx_need_more_buffers rxAbortPacket! txAbortPacket! rxDone! Created with Poseidon for UML Community Edition. Not for Commercial Use.

  6. � � � � � � � � � 5 Reliable I/O Framework: Protocol State Machines Constraints on the ordering and content of messages exchanged through a port fault avoidance precise specification fault prevention clarifies/documents API fault removal reduce number of faults static analysis of C analysis of implementation SMs fault detection observe protocol and driver fault tolerance fault isolation memory protection recover from faults graceful termination/recovery of pending requests error recovery recovery protocols(?)

  7. � � � � � 6 Reliable I/O Framework: Extend ‘Iguana’ Framework L4 micro-kernel single-threaded – non-blocking user level drivers split events: shift complexity – request – buffering, – completion – memory allocation, – concurrency into the framework

  8. � � � � � � � � 7 L4 microkernel [Liedtke, 1995] diagram credit: slides for Application CSE/UNSW COMP9242 s2/02 user sys. call mode VFS IPC, file system UNIX File . . . App. server server scheduler, virtual memory kernel IPC mode device drivers, dispatcher, . . . IPC, Virtual Memory hardware hardware Address spaces thin layer on top of hardware Threads Sydney version targeted at embedded systems Heavily optimised IPC Potential mismatch with IPC and architecture blank not real-time

  9. 8 Is Esterel suitable for such a subsystem?

  10. 8-b Is Esterel suitable for such a subsystem? (not answered!)

  11. � 8-c Is Esterel suitable for such a subsystem? (not answered!) highly suitable? no research needed; just engineering answer: show efficient prototype using existing tools

  12. � � 8-d Is Esterel suitable for such a subsystem? (not answered!) highly suitable? no research needed; just engineering answer: show efficient prototype using existing tools not suitable? give up! answer: reasons why, alternatives

  13. � � � � 8-e Is Esterel suitable for such a subsystem? (not answered!) highly suitable? no research needed; just engineering answer: show efficient prototype using existing tools suitable. . . if what must be done? but what are the limitations? not suitable? give up! answer: reasons why, alternatives

  14. � � � � � � � � � 9 Is Esterel suitable for such a subsystem? Advantageous properties: Notation for event-driven reactive systems Synchronous rounds may simplify recovery mechanisms Amenable to validation (interfaces, model-checking) Desirable properties: Able to exploit hardware memory protection Separate compilation of drivers Operate in a multi-tasking environment Tractable reasoning about execution within the system context Limited addition and removal of hardware Track user request state

  15. 10 Presentation Outline Reliable I/O Framework Possible Architectures Strictly event-driven modules Event-driven scheduling Example: IP Stack and Ethernet driver Other related work Summary

  16. � � � � � � � � � 11 Possible Architectures: monolithic Wristwatch [Berry, 1989] Most straight-forward application of Esterel Utilise standard tools application Responsible for interface code Reasoning about system: hardware Behaviour of the underlying transition system Meaning of signals (depends on interface) or, For driver framework: Fast execution (almost no run-time overhead) hardware No memory protection Relatively inflexible

  17. � � � � � � � 12 Architectures: HW/SW Interface (single driver) app. HDLC Protocol [Berry and Gonthier, 1989] . . . Utilize standard tools i/face Application side: may need to avoid blocking hardware Reasoning about system: e.g. As per normal global serializing relation Queueing in application queuing app. For driver framework: HDLC Driver Memory protection possible Communication between drivers? line instantaneous view

  18. � � � � � � 13 Architectures: Application subsystem AT&T 5ESS switch [Jagadeesan et al., 1995] app. Part of TCP/IP stack [Castelluccia et al., 1996] . . . Utilize standard tools OS hardware Ad hoc interfacing code Reasoning about system: and/or, Dependent on application environment app. For driver framework: . . . Less suitable for micro-kernel with user-level drivers OS hardware

  19. 14 Architectures: Driver Framework . . . App 1 App n file system IP stack Media Dev. Dev. Hub HD CDR ATA USB HC Eth PCI L4 micro-kernel hardware

  20. 14-b Architectures: Driver Framework . . . App 1 App n file system IP stack Media Dev. Dev. Scheduler Hub HD CDR ATA USB HC Eth PCI L4 micro-kernel hardware

  21. 14-c Architectures: Driver Framework . . . App 1 App n file system IP stack Media Dev. Dev. Scheduler Hub HD CDR ATA USB HC Eth PCI L4 micro-kernel hardware

  22. � � � � � � ✁ ✁ � ✁ ✁ � 15 Two-level architecture Dynamically scheduled level: flat calculus [Berry and Sentovich, 2001] run comp1[connections] ... run compN[connections] permit (initially): Memory protection for top-level modules – signal S in ... end Trade-off cost of dynamic scheduling – loop ... end ? against safety/flexibility – weak abort ... when S? More constructs for recovery features? Feasiblity uncertain! Component level: strictly event-driven modules Block waiting for events (as per usual) Minimise computation/context-switching

  23. 16 Presentation Outline Reliable I/O Framework Possible Architectures Strictly event-driven modules Event-driven scheduling Example: IP Stack and Ethernet driver Other related work Summary

  24. ✂ ✂ ✂ 17 Triggering Multiform time [Berry, 2000] application requests General form [Caspi, 2001] driver framework Whatever the structure: hardware interrupts monolithic multi-threaded . . . event-driven rather than sample-driven

  25. 18 Strictly event-driven modules Modules where observable behaviour and state changes occur strictly in response to events listed in the input/output interface and are otherwise independent of reaction triggering. statement strictly event-driven? await A; emit O pause ; emit O await A; pause ; emit O loop pause end ( halt )

  26. 18-b Strictly event-driven modules Modules where observable behaviour and state changes occur strictly in response to events listed in the input/output interface and are otherwise independent of reaction triggering. statement strictly event-driven? await A; emit O yes pause ; emit O await A; pause ; emit O loop pause end ( halt )

  27. 18-c Strictly event-driven modules Modules where observable behaviour and state changes occur strictly in response to events listed in the input/output interface and are otherwise independent of reaction triggering. statement strictly event-driven? await A; emit O yes pause ; emit O no await A; pause ; emit O loop pause end ( halt )

  28. 18-d Strictly event-driven modules Modules where observable behaviour and state changes occur strictly in response to events listed in the input/output interface and are otherwise independent of reaction triggering. statement strictly event-driven? await A; emit O yes pause ; emit O no await A; pause ; emit O no loop pause end ( halt )

  29. 18-e Strictly event-driven modules Modules where observable behaviour and state changes occur strictly in response to events listed in the input/output interface and are otherwise independent of reaction triggering. statement strictly event-driven? await A; emit O yes pause ; emit O no await A; pause ; emit O no loop pause end ( halt ) yes

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Writing and Adapting Device Drivers for FreeBSD John Baldwin November 5, 2011 What is a Device

Writing and Adapting Device Drivers for FreeBSD John Baldwin November 5, 2011 What is a Device

Writing and Adapting Device Drivers for FreeBSD John Baldwin November 5, 2011 What is a Device Driver? Hardware Functionality A device driver is the software that bridges Device Driver the two. 2 Focus of This Presentation

1.08k views • 93 slides
disclaimer: half-baked ideas IP spoofing is a well-known problem a key component of such

disclaimer: half-baked ideas IP spoofing is a well-known problem a key component of such

disclaimer: half-baked ideas IP spoofing is a well-known problem a key component of such DDoS attacks addressing spoofing attempts to eliminate spoofing, not adopted IETF BCPs 38-84, ISOC MANRS scrubbing centers (eg Akamai,

700 views • 19 slides
Roadmap for Section 6.3 Driver and Device Objects I/O Request Packets (IRP) Processing Driver

Roadmap for Section 6.3 Driver and Device Objects I/O Request Packets (IRP) Processing Driver

Unit OS6: Device Management 6.3. Windows I/O Processing Windows Operating System Internals - by David A. Solomon and Mark E. Russinovich with Andreas Polze Roadmap for Section 6.3 Driver and Device Objects I/O Request Packets (IRP) Processing

477 views • 23 slides
A Mathematically Verified Device I 2 C Driver Using ASD Herman Roebbers Nov-2-2009 How to

A Mathematically Verified Device I 2 C Driver Using ASD Herman Roebbers Nov-2-2009 How to

A Mathematically Verified Device I 2 C Driver Using ASD Herman Roebbers Nov-2-2009 How to develop defect-free device drivers with ASD:Suite Contents Introduction Development Process General structure of ASD component

428 views • 31 slides
Automatic Device Driver Synthesis with Termite Leonid Ryzhyk, Peter Chubb, Ihor Kuz, Etienne Le

Automatic Device Driver Synthesis with Termite Leonid Ryzhyk, Peter Chubb, Ihor Kuz, Etienne Le

Automatic Device Driver Synthesis with Termite Leonid Ryzhyk, Peter Chubb, Ihor Kuz, Etienne Le Sueur, Gernot Heiser UNSW, NICTA, Open Kernel Labs (Australia), John Keys, Intel Conventional driver development OS interface spec device spec

899 views • 57 slides
Anatomy of an Embedded KMS Driver Embedded Linux Conference 2013 San Francisco 2013/02/20

Anatomy of an Embedded KMS Driver Embedded Linux Conference 2013 San Francisco 2013/02/20

Anatomy of an Embedded KMS Driver Embedded Linux Conference 2013 San Francisco 2013/02/20 Laurent Pinchart laurent.pinchart@ideasonboard.com DRM ? KMS APIs Memory Management Vertical Blanking Version, Authentication,

609 views • 48 slides
How to avoid writing device drivers for embedded Linux Chris Simmonds 2net Limited Winchester,

How to avoid writing device drivers for embedded Linux Chris Simmonds 2net Limited Winchester,

How to avoid writing device drivers for embedded Linux Chris Simmonds 2net Limited Winchester, UK chris@2net.co.uk Abstract Modern Linux kernels provide interfaces that use of the basic I/O functions that the driver provides. Writing

412 views • 4 slides
http://www.movieweb.com/movie/half-baked/HUf0AjhlkcyMih

http://www.movieweb.com/movie/half-baked/HUf0AjhlkcyMih

http://www.movieweb.com/movie/half-baked/HUf0AjhlkcyMih

509 views • 28 slides
Embedded Linux Device Drivers Aleksandar Peji Andrija Pri Balkan Computer Congress 2014

Embedded Linux Device Drivers Aleksandar Peji Andrija Pri Balkan Computer Congress 2014

Embedded Linux Device Drivers Aleksandar Peji Andrija Pri Balkan Computer Congress 2014 September 7 th , Novi Sad, Serbia Agenda About Embedded Systems Hardware Specifics of Embedded Systems Embedded Linux Linux Device

244 views • 11 slides
Embedded Device Cryptography in the Field Introduction Motivation State of Affairs Coping

Embedded Device Cryptography in the Field Introduction Motivation State of Affairs Coping

Embedded Device Cryptography in the Field Embedded Device Cryptography in the Field Introduction Motivation State of Affairs Coping Mechanisms Indefensible Alex Kropivny Local Attacks Trust Relationships Use Cases Factory Testing

699 views • 49 slides
How to write a Device Driver in FreeBSD John-Mark Gurney Frameworks kld newbus

How to write a Device Driver in FreeBSD John-Mark Gurney Frameworks kld newbus

How to write a Device Driver in FreeBSD John-Mark Gurney Frameworks kld newbus rman/bus_space(9) cdevsw bus_dma(9) sysctl SYSINIT http://people.freebsd.org/~jmg/drivers/ newbus Device Methods Tree with root

542 views • 23 slides
Device tree and embedded Linux Vitaly Bordug Principal Engineer What is the device tree?

Device tree and embedded Linux Vitaly Bordug Principal Engineer What is the device tree?

Device tree and embedded Linux Vitaly Bordug Principal Engineer What is the device tree? Just a data structure representing: a tree, layered out system of nodes; only one parent allowed. Each node has following properties:

175 views • 13 slides
Device Creation with Qt Enterprise Embedded Andy Nichols Overview The challenges of device

Device Creation with Qt Enterprise Embedded Andy Nichols Overview The challenges of device

Device Creation with Qt Enterprise Embedded Andy Nichols Overview The challenges of device creation What is Qt Enterprise Embedded Prototyping a device Device creation 2 The Challenges of Device Creation 3 The Application is

611 views • 50 slides
Device Management Device Management Organization Application Application Process Process API

Device Management Device Management Organization Application Application Process Process API

Device Management Device Management Organization Application Application Process Process API File File Manager Manager Device Device Driver Driver Hardware Interface Command Status Data Command Status Data Device Controller

435 views • 27 slides
UMBC A B M A L T F O U M B C I M Y O R T 1 (May 2, 2002) I E S R C E O

UMBC A B M A L T F O U M B C I M Y O R T 1 (May 2, 2002) I E S R C E O

Systems Design&Programming Linux Device Drivers III CMPE 310 Char Drivers Well develop a device driver, scull , which treats an area of memory as a device. There are several types of scull devices: scull[0-3] This type has four

481 views • 19 slides
Flattened Device Trees for embedded FreeBSD Rafa Jaworowski raj@semihalf.com, raj@FreeBSD.org

Flattened Device Trees for embedded FreeBSD Rafa Jaworowski raj@semihalf.com, raj@FreeBSD.org

Flattened Device Trees for embedded FreeBSD Rafa Jaworowski raj@semihalf.com, raj@FreeBSD.org BSDCan 2010, Ottawa Flattened Device Trees for embedded FreeBSD Presentation outline Introduction Integration of FDT with FreeBSD

372 views • 33 slides
DISRUPTING CONSENSUS: THE ROLE AND NATURE OF MINORITY REPORTS OF COMMITTEES MR JOHN ALIFERIS

DISRUPTING CONSENSUS: THE ROLE AND NATURE OF MINORITY REPORTS OF COMMITTEES MR JOHN ALIFERIS

DISRUPTING CONSENSUS: THE ROLE AND NATURE OF MINORITY REPORTS OF COMMITTEES MR JOHN ALIFERIS AND DR ANITA MACKAY OVERVIEW 1. Minority Reports as institutionalised dissent 2. Nuanced dissent: A taxonomy for classifying minority reports

489 views • 14 slides
Compositionality in Recursive Neural Networks Martha Lewis ILLC University of Amsterdam SYCO3,

Compositionality in Recursive Neural Networks Martha Lewis ILLC University of Amsterdam SYCO3,

Compositionality in Recursive Neural Networks Martha Lewis ILLC University of Amsterdam SYCO3, March 2019 Oxford, UK M. Lewis Compositionality in TreeRNNs 1/25 Outline Compositional distributional semantics Pregroup grammars and how to

314 views • 27 slides
S. Scalabrino G. Grano D. Di Nucci A. De Lucia M. Guerra H. Gall R. Oliveto OCELOT a

S. Scalabrino G. Grano D. Di Nucci A. De Lucia M. Guerra H. Gall R. Oliveto OCELOT a

S. Scalabrino G. Grano D. Di Nucci A. De Lucia M. Guerra H. Gall R. Oliveto OCELOT a Search-Based Test-Data Generation Tool for C Testing is expensive Automatic Test Generation Search-Based Test Generation TIOBE Ranking TIOBE Ranking

398 views • 28 slides
News Department of Computer Science Undergraduate Events CPSC 314 Computer Graphics Events this

News Department of Computer Science Undergraduate Events CPSC 314 Computer Graphics Events this

University of British Columbia News Department of Computer Science Undergraduate Events CPSC 314 Computer Graphics Events this week CS dept announcements Jan-Apr 2010 Drop-in Resume/Cover Letter Editing CSSS Laser Tag Date:

317 views • 4 slides
CuriOS: Improving Reliability through Operating System Structure Nils Asmussen Paper Reading

CuriOS: Improving Reliability through Operating System Structure Nils Asmussen Paper Reading

Introduction Related OSs Design of CuriOS Evaluation Conclusion CuriOS: Improving Reliability through Operating System Structure Nils Asmussen Paper Reading Group 08/29/2012 1 / 21 Introduction Related OSs Design of CuriOS Evaluation

243 views • 23 slides
JUST THE MATHS SLIDES NUMBER 6.1 COMPLEX NUMBERS 1 (Definitions and algebra) by

JUST THE MATHS SLIDES NUMBER 6.1 COMPLEX NUMBERS 1 (Definitions and algebra) by

JUST THE MATHS SLIDES NUMBER 6.1 COMPLEX NUMBERS 1 (Definitions and algebra) by A.J.Hobson 6.1.1 The definition of a complex number 6.1.2 The algebra of complex numbers UNIT 6.1 - COMPLEX NUMBERS 1 DEFINITIONS AND ALGEBRA 6.1.1 THE

226 views • 7 slides
Complex numbers The complex number system is an extension of the real number system. It unifies

Complex numbers The complex number system is an extension of the real number system. It unifies

Complex numbers The complex number system is an extension of the real number system. It unifies the mathematical number system and explains many mathematical phenomena. Elementary Functions We introduce a number i = 1 defined to satisfy

429 views • 9 slides
Complex Numbers Bernd Schr oder logo1 Bernd Schr oder Louisiana Tech University, College

Complex Numbers Bernd Schr oder logo1 Bernd Schr oder Louisiana Tech University, College

Introduction Field Absolute Value Complex Numbers Bernd Schr oder logo1 Bernd Schr oder Louisiana Tech University, College of Engineering and Science Complex Numbers Introduction Field Absolute Value Introduction logo1 Bernd

1.34k views • 82 slides

More recommend