PDF Editor
PDF Converter
Image Converter
Video Converter
Audio Converter
File Compressor
buddy memory allocation in zephyr rtos

Buddy Memory Allocation in Zephyr RTOS L o L o g o g o Authors: - PowerPoint PPT Presentation

Jun 07, 2023 •152 likes •475 views

Fine-Grained Formal Specification and Analysis of Buddy Memory Allocation in Zephyr RTOS L o L o g o g o Authors: Feng Zhang , Yongwang Zhao , , Dianfu Ma , Wensheng Niu *. Corresponding Author 1. School of Computer

  1. Fine-Grained Formal Specification and Analysis of Buddy Memory Allocation in Zephyr RTOS L o L o g o g o Authors: Feng Zhang 𝟐 , Yongwang Zhao ∗,𝟐 , Dianfu Ma 𝟐 , Wensheng Niu 𝟑 *. Corresponding Author 1. School of Computer Science and Engineering, Beihang Univerisity, China 2. Aeronautical Computing Technique Research Institute, Xi’an, China

  2. Contents ➢ 1. Introduction ➢ 2. Buddy Memory Allocation Algorithm in Zephyr ➢ 3. Fine-Grained Formal Specification in Isabell/HOL ➢ 4. Formal Proof ➢ 5. Results and Discussions ➢ 6. Conclusions 1 Fine-Grained Formal Specification and Analysis of Buddy Memory Allocation in Zephyr RTOS

  3. 1. Introduction - Abstract ➢ Memory management (MM) is a critical component of OS ➢ Bugs in MM may crash OS or the whole critical system ➢ This paper presents a case study of formal verification on the buddy memory allocation component of the Zephyr RTOS: • Provide Fine-Grained formal specification in Isabelle/HOL • Conduct Formal proof using the interactive prover in Isabelle • Find two flaws in the C code when executing sequentially 2 Fine-Grained Formal Specification and Analysis of Buddy Memory Allocation in Zephyr RTOS

  4. 1. Introduction – Research Status ➢ Verification of the TLSF algorithm in Event-B: O nly verifies an abstract specification at the requirement level • • not check consistency between elements in the data structure ➢ seL4 pushes the memory allocation outside of the kernel ➢ Yu et al. introduce a low-level language CAP (certified assembly programming) in Coq • build certified programs • present a certified library for dynamic storage allocation • not a kernel’s component but a certified memory library • 75 lines C code 3 Fine-Grained Formal Specification and Analysis of Buddy Memory Allocation in Zephyr RTOS

  5. 1. Introduction – summary ➢ We create a fine-grained formal specification: • All the elements of the data structure • All the operations (initialization, allocation and release) • System clocks and simple kernel scheduling • The execution of memory allocation is preemptive ➢ We concentrate in five types of critical properties: • Invariants • Correctness of doubly linked lists • Functional correctness of events • Conformity of event specifications to kernel requirements • Livelock-free of the system specification. 4 Fine-Grained Formal Specification and Analysis of Buddy Memory Allocation in Zephyr RTOS

  6. Contents ➢ 1. Introduction ➢ 2. Buddy Memory Allocation Algorithm in Zephyr ➢ 3. Fine-Grained Formal Specification in Isabell/HOL ➢ 4. Formal Proof ➢ 5. Results and Discussions ➢ 6. Conclusions 5 Fine-Grained Formal Specification and Analysis of Buddy Memory Allocation in Zephyr RTOS

  7. 2.1 – Zephyr Project ➢ Zephyr Project is a Linux Foundation Project ➢ Be perfect for building simple connected sensors: • up to modems and small IoT wireless gateways • Built with safety and security in mind • Cross-architecture with growing developer tool support • Complete, fully integrated, highly configurable, modular for flexibility, better than roll-your-own • Product development ready • Permissively licensed 6 Fine-Grained Formal Specification and Analysis of Buddy Memory Allocation in Zephyr RTOS

  8. 2.2 – Zephyr OS Kernel ➢ Derived from Wind River ’s commercial Microkernel Profile ➢ Microkernel Profile has evolved over 20 years from DSP RTOS technology known as Virtuoso ➢ Used in several commercial applications: • satellites, military command and control communications, radar, telecommunications and image processing • successful Philae Landing on Comet Churyumov – Gerasimenko and the accompanying Rosetta Orbiter 7 Fine-Grained Formal Specification and Analysis of Buddy Memory Allocation in Zephyr RTOS

  9. 2.2 – Buddy Memory Allocation Algorithm in Zephyr Kernel ➢ (1) Pool and block Initialization • only be defined and initialized at compile time ➢ (2) Block Allocation • Quad-Partitioning: iteratively partitioning larger blocks into smaller quad- ones ➢ (3)Block Release • Immediately, automatically, and recursively combining smaller blocks into bigger ones 8 Fine-Grained Formal Specification and Analysis of Buddy Memory Allocation in Zephyr RTOS

  10. 2.2 – Buddy Memory Allocation Algorithm in Zephyr Kernel ➢ (1) Pool and block Initialization • only be defined and initialized at compile time ➢ (2) Block Allocation • Quad-Partitioning: iteratively partitioning larger blocks into smaller quad- ones ➢ (3)Block Release • Immediately, automatically, and recursively combining smaller blocks into bigger ones 9 Fine-Grained Formal Specification and Analysis of Buddy Memory Allocation in Zephyr RTOS

  11. Contents ➢ 1. Introduction ➢ 2. Buddy Memory Allocation Algorithm ➢ 3. Fine-Grained Formal Specification in Isabell/HOL ➢ 4. Formal Proof ➢ 5. Results and Discussions ➢ 6. Conclusions 10 Fine-Grained Formal Specification and Analysis of Buddy Memory Allocation in Zephyr RTOS

  12. 3 – Fine-Grained Formal Specification ➢ A. State Machine • The state is defined as a record StateD • the initial state 𝑡 0 state-transition functions φ • 11 Fine-Grained Formal Specification and Analysis of Buddy Memory Allocation in Zephyr RTOS

  13. 3 – Fine-Grained Formal Specification ➢ B. Data Structure 12 Fine-Grained Formal Specification and Analysis of Buddy Memory Allocation in Zephyr RTOS

  14. 3 – Fine-Grained Formal Specification ➢ B. Data Structure 13 Fine-Grained Formal Specification and Analysis of Buddy Memory Allocation in Zephyr RTOS

  15. 3 – Fine-Grained Formal Specification ➢ C. Event Specification  system behaviors based on Zephyr characteristics • system clocks time_tick • the thread scheduling schedule  actions operated on memory pools and blocks • pool and block initializations • block allocations • block release 14 Fine-Grained Formal Specification and Analysis of Buddy Memory Allocation in Zephyr RTOS

  16. 3 – Fine-Grained Formal Specification ➢ C. Event Specification  system behaviors based on Zephyr characteristics • system clocks time_tick • the thread scheduling schedule  actions operated on memory pools and blocks • pool and block initializations • block allocations • block release 15 Fine-Grained Formal Specification and Analysis of Buddy Memory Allocation in Zephyr RTOS

  17. 3 – Fine-Grained Formal Specification ➢ C. Event Specification 16 Fine-Grained Formal Specification and Analysis of Buddy Memory Allocation in Zephyr RTOS

  18. 3 – Fine-Grained Formal Specification ➢ D. State Space 17 Fine-Grained Formal Specification and Analysis of Buddy Memory Allocation in Zephyr RTOS

  19. Contents ➢ 1. Introduction ➢ 2. Buddy Memory Allocation Algorithm in Zephyr ➢ 3. Fine-Grained Formal Specification in Isabell/HOL ➢ 4. Formal Proof ➢ 5. Results and Discussions ➢ 6. Conclusions 18 Fine-Grained Formal Specification and Analysis of Buddy Memory Allocation in Zephyr RTOS

  20. 4 – Formal Proof ➢ 4.1 Invariants - Consistency of Data Structure • bitMap_freelistS s specifies the consistency between bit_maps and free lists • bitMap_treeS s specifies the consistency between bit_maps and abstract trees. 19 Fine-Grained Formal Specification and Analysis of Buddy Memory Allocation in Zephyr RTOS

  21. 4 – Formal Proof ➢ 4.2 Correctness of Doubly Linked Lists • The pointer in C is specified as a ref in Isabelle • ref = (UNIV::nat set) • head_next :: “ref => ref“ • tail_prev :: "ref => ref" 20 Fine-Grained Formal Specification and Analysis of Buddy Memory Allocation in Zephyr RTOS

  22. 4 – Formal Proof ➢ 4.2 Correctness of Doubly Linked Lists • Length of a dilist • Validity of a node • Validity of a dlist • Validity of appending actions 21 Fine-Grained Formal Specification and Analysis of Buddy Memory Allocation in Zephyr RTOS

  23. 4 – Formal Proof ➢ 4.3 Functional Correctness of Events • {P} C {Q} • Our specifications are all total correctness specifications • terminations are ensured by using the primrec, fun, function and definition 22 Fine-Grained Formal Specification and Analysis of Buddy Memory Allocation in Zephyr RTOS

  24. 4 – Formal Proof ➢ 4.4 Conformity of Event Specifications to Kernel Requirements • determine whether event executions and their return values conform to the kernel requirements ➢ 4.5 Livelock-free • Starvation • Execution loop • No further progress 23 Fine-Grained Formal Specification and Analysis of Buddy Memory Allocation in Zephyr RTOS

  25. Contents ➢ 1. Introduction ➢ 2. Buddy Memory Allocation Algorithm in Zephyr ➢ 3. Fine-Grained Formal Specification in Isabell/HOL ➢ 4. Formal Proof ➢ 5. Results and Discussions ➢ 6. Conclusions 24 Fine-Grained Formal Specification and Analysis of Buddy Memory Allocation in Zephyr RTOS

  26. 5 – Results and Discussions ➢ A. Evaluation • 600 lines C • 800 lines specification: 109 functions/definitions 12 primary events • 9400 lines proof: 338 lemmas 25 Fine-Grained Formal Specification and Analysis of Buddy Memory Allocation in Zephyr RTOS

  27. 5 – Results and Discussions ➢ B. Results of formal analysis: fine two flaws  Return code not conform to the kernel requirement  Application thread will fall into live lock. 26 Fine-Grained Formal Specification and Analysis of Buddy Memory Allocation in Zephyr RTOS

Recommend

Zephyr Power Management Ramesh Thomas OTC, Intel Zephyr is a trademark of the Linux

Zephyr Power Management Ramesh Thomas OTC, Intel Zephyr is a trademark of the Linux

Zephyr Power Management Ramesh Thomas OTC, Intel Zephyr is a trademark of the Linux Foundation. *Other names and brands may be claimed as the property of others. Agenda Why Power Management? The core concepts behind Zephyr RTOS PM Power

487 views • 34 slides
Zephyr OS Configuration via Device Tree Andy Gross - Linaro IoT Zephyr is a trademark of the

Zephyr OS Configuration via Device Tree Andy Gross - Linaro IoT Zephyr is a trademark of the

Zephyr OS Configuration via Device Tree Andy Gross - Linaro IoT Zephyr is a trademark of the Linux Foundation. *Other names and brands may be claimed as the property of others. Configuration in Zephyr today Configuration is spread out

879 views • 11 slides
Using SoC Vendor HALs in in the Zephyr Proje ject Maureen Helm, NXP What is Zephyr Project?

Using SoC Vendor HALs in in the Zephyr Proje ject Maureen Helm, NXP What is Zephyr Project?

Using SoC Vendor HALs in in the Zephyr Proje ject Maureen Helm, NXP What is Zephyr Project? Small Footprint RTOS Truly Open Source Cross Architecture As small as 8KB Apache 2.0 License ARM Enables Hosted by Linux

340 views • 16 slides
Native IP Stack For Zephyr OS Zephyr is a trademark of the Linux Foundation. *Other names and

Native IP Stack For Zephyr OS Zephyr is a trademark of the Linux Foundation. *Other names and

Native IP Stack For Zephyr OS Zephyr is a trademark of the Linux Foundation. *Other names and brands may be claimed as the property of others. Why a native IP stack? Features missing in current Contiki based uIP stack No dual IPv6 &

225 views • 11 slides
JavaScript* Meets Zephyr OS Sakari Poussa @spoussa Intel Zephyr is a trademark of the Linux

JavaScript* Meets Zephyr OS Sakari Poussa @spoussa Intel Zephyr is a trademark of the Linux

JavaScript* Meets Zephyr OS Sakari Poussa @spoussa Intel Zephyr is a trademark of the Linux Foundation. *Other names and brands may be claimed as the property of others. Outline Why JavaScript* Architecture Arduino 101* Port Building

244 views • 21 slides
ELC 2017 War Story: Using Zephyr to Develop a Wearable Device Neil Armstrong & Fabien Parent

ELC 2017 War Story: Using Zephyr to Develop a Wearable Device Neil Armstrong & Fabien Parent

ELC 2017 War Story: Using Zephyr to Develop a Wearable Device Neil Armstrong & Fabien Parent Agenda Based on a true story Many choices, why Zephyr? Zephyr in a nutshell Porting & upstreaming a new platform

356 views • 35 slides
Dynamic Memory Management Allocating memory: The Interface Buddy System

Dynamic Memory Management Allocating memory: The Interface Buddy System

CPSC 410/611 : Operating Systems Dynamic Memory Management Allocating memory: The Interface Buddy System Slab Allocation Reading: Doeppner, 3.3 Memory Areas Memory areas (regions) are intervals of legal

183 views • 5 slides
CSE 351: Section 10 Memory Allocation Memory Allocation Must allocate any memory you need to

CSE 351: Section 10 Memory Allocation Memory Allocation Must allocate any memory you need to

CSE 351: Section 10 Memory Allocation Memory Allocation Must allocate any memory you need to use Allocating memory = designating a block of it as 'used' This way, you don't overwrite your data The memory isn't changed, but

417 views • 15 slides
Dynamic Memory Allocation Today Dynamic memory allocation mechanisms & policies

Dynamic Memory Allocation Today Dynamic memory allocation mechanisms & policies

Dynamic Memory Allocation Today Dynamic memory allocation mechanisms & policies Memory bugs Chris Riesbeck, Spring 2010 Original: Fabian Bustamante Wednesday, November 2, 2011 Dynamic memory allocation Application Dynamic

1.2k views • 47 slides
Ausgewhlte Betriebssysteme Memory 1 Memory Management Kernel Page Frames Buddy

Ausgewhlte Betriebssysteme Memory 1 Memory Management Kernel Page Frames Buddy

Ausgewhlte Betriebssysteme Memory 1 Memory Management Kernel Page Frames Buddy Allocator Slab Allocators Buffer Cache Page Cache Process Memory Regions 2 Memory Map 3 Page Frame kernel must keep track of

878 views • 43 slides
Memory II. Memory improvement III. Problems with memory 3 systems/stages of Memory: memory

Memory II. Memory improvement III. Problems with memory 3 systems/stages of Memory: memory

Main Focus I. Memory as a process Memory II. Memory improvement III. Problems with memory 3 systems/stages of Memory: memory the process by which I. Sensory Memory information is - acquired, II. Short -Term Memory - stored,

169 views • 5 slides
Impiego di 3DF Zephyr nel rilievo da APR Andrea Fusiello (andrea.fusiello@uniud.it) -- DIEGM

Impiego di 3DF Zephyr nel rilievo da APR Andrea Fusiello (andrea.fusiello@uniud.it) -- DIEGM

Impiego di 3DF Zephyr nel rilievo da APR Andrea Fusiello (andrea.fusiello@uniud.it) -- DIEGM University of Udine Roberto Toldo, Filippo Fantini, Simone Fantoni, Luca Giona -- 3Dflow srl www.3dflow.net 3DF Zephyr Software per la ricostruzione

709 views • 46 slides
Memory Management Ausgewhlte Betriebssysteme Kernel Page Frames Buddy Allocator

Memory Management Ausgewhlte Betriebssysteme Kernel Page Frames Buddy Allocator

Memory Management Ausgewhlte Betriebssysteme Kernel Page Frames Buddy Allocator Slab Allocators Buffer Cache Memory Page Cache Process Memory Regions 1 2 Memory Map Page Frame kernel

234 views • 11 slides
SILK RTO WHAT IS AN RTO? Registered Training Organisations (RTOs) are providers and assessors of

SILK RTO WHAT IS AN RTO? Registered Training Organisations (RTOs) are providers and assessors of

SIGNING UP A SILK RTO WHAT IS AN RTO? Registered Training Organisations (RTOs) are providers and assessors of nationally recognised training. Only RTOs can issue nationally recognised qualifications. In order to become registered, training

192 views • 17 slides
Protected mode RTOS: what does it mean? Dr. Bernhard Sputh bernhard.sputh@altreonic.com

Protected mode RTOS: what does it mean? Dr. Bernhard Sputh bernhard.sputh@altreonic.com

Protected mode RTOS: what does it mean? Dr. Bernhard Sputh bernhard.sputh@altreonic.com Altreonic NV Gemeentestraat 61 Bus 1 3210 Linden Belgium August 24, 2015 Dr. Bernhard Sputh (Altreonic) Protected mode RTOS August 24, 2015 1 / 20

463 views • 20 slides
CMSIS Real Time Operating System (Based on Free RTOS) References:

CMSIS Real Time Operating System (Based on Free RTOS) References:

CMSIS Real Time Operating System (Based on Free RTOS) References: HTTPS://developer.mbed.org/handbook/CMSIS-RTOS http://www.keil.com/pack/doc/CMSIS/RTOS2/html/index.html uVision5 Books Pane: MDK-ARM Getting Started (PDF), CMSIS-RTOS2

1.34k views • 37 slides
CSE 331 Review: Classes, Inheritance, and Collections slides created by Marty Stepp based on

CSE 331 Review: Classes, Inheritance, and Collections slides created by Marty Stepp based on

CSE 331 Review: Classes, Inheritance, and Collections slides created by Marty Stepp based on materials by M. Ernst, S. Reges, D. Notkin, R. Mercer, Wikipedia http://www.cs.washington.edu/331/ 1 Recall: A typical Java class public class Point

622 views • 22 slides
Monthly Proton Flux Monthly Proton Flux Matteo Palermo (University of Hawaii) on behalf of the

Monthly Proton Flux Monthly Proton Flux Matteo Palermo (University of Hawaii) on behalf of the

Properties of The Forbush Properties of The Forbush decreases measured by AMS decreases measured by AMS on the ISS on the ISS Monthly Proton Flux Monthly Proton Flux Matteo Palermo (University of Hawaii) on behalf of the AMS Collaboration

830 views • 41 slides
CARSI: Cross University Identity Management and Resource Sharing over CERNET Prof. PING CHEN

CARSI: Cross University Identity Management and Resource Sharing over CERNET Prof. PING CHEN

CARSI: Cross University Identity Management and Resource Sharing over CERNET Prof. PING CHEN Peking University, Beijing, China Feb, 24 th , 2011 CARSI & Peking University Agenda n Current IdM Situation in CERNET n What is

758 views • 40 slides
The Automated Acquisition of Suggestions from Tweets July 16, 2013 What is suggestion?

The Automated Acquisition of Suggestions from Tweets July 16, 2013 What is suggestion?

The Automated Acquisition of Suggestions from Tweets July 16, 2013 What is suggestion? Suggestion: The psychological process by which one person guides the thoughts, feelings, or behavior of another. Why do suggestions matter? When I

548 views • 16 slides
http://cs224w.stanford.edu Course website: Course website: http://cs224w.stanford.edu

http://cs224w.stanford.edu Course website: Course website: http://cs224w.stanford.edu

CS224W: Social and Information Network Analysis Jure Leskovec, Stanford University , y http://cs224w.stanford.edu Course website: Course website: http://cs224w.stanford.edu Slides will be available online Reading material will be

499 views • 28 slides
Operating Systems Practical Coursework 2 Tom Spink tspink@inf.ed.ac.uk February 2019 Tom Spink

Operating Systems Practical Coursework 2 Tom Spink tspink@inf.ed.ac.uk February 2019 Tom Spink

Operating Systems Practical Coursework 2 Tom Spink tspink@inf.ed.ac.uk February 2019 Tom Spink tspink@inf.ed.ac.uk School of Informatics Coursework Task 1 Task 1 was to implement a round-robin scheduler Tom Spink tspink@inf.ed.ac.uk School

551 views • 27 slides
Data Manipulation Jonathan Rosenberg dynamicsoft XCAP Issue #1 Should we just instead use

Data Manipulation Jonathan Rosenberg dynamicsoft XCAP Issue #1 Should we just instead use

Data Manipulation Jonathan Rosenberg dynamicsoft XCAP Issue #1 Should we just instead use actual filesystem hierarchy for buddy lists? I.e., each buddy is a separate file Makes it easy to modify individual buddies with HTTP

385 views • 23 slides
Stop Bullying Now Dr. Elizabeth Gail S. Marsal North Carolina Wesleyan College Rocky

Stop Bullying Now Dr. Elizabeth Gail S. Marsal North Carolina Wesleyan College Rocky

10/2/2015 Stop Bullying Now Dr. Elizabeth Gail S. Marsal North Carolina Wesleyan College Rocky Mount , NC Childnet Video http://digizen.org/resources/cyberbullying/films/uk/lfit film.aspx Effects of Cyber Bullying Lowered

269 views • 4 slides

More recommend

Logo Sambuz

Unleash a World of Digital Possibilities—Browse, Share, and Explore Content Without Boundaries

Useful Links

About Us Privacy Services FAQ's Contact

Newsletter

Stay Informed & Inspired—Subscribe for the Latest Updates, Tips, and Exclusive Content Directly to Your Inbox.

Mail Us

mail@sambuz.com

2025 SAMBUZ, All right reserved.