Benchmarking the Impact of Faulty Drivers: Application to the Linux Kernel
نویسندگان
چکیده
Dependability concerns, encompassing robustness assessment, are essential questions to answer before a developer can make the decision whether to integrate off-the-shelf (OTS) components into a dependable system. Here, and in what follows, robustness is understood as the degree to which a system operates correctly in the presence of exceptional inputs or stressful environmental conditions, in compliance with the generic definition (dependability with respect to external faults) given in [Avizienis et al. 2004]. From a cost-effectiveness viewpoint, operating systems and kernels are privileged OTS components as candidates for integration into a system. However, integrators are often reluctant to make such a move without obtaining a deeper knowledge and understanding about such a component beyond functional issues, in particular with respect to its failure modes and its behavior in the presence of faults. Due to the opacity that is often attached to the commercial offer and to the difficulty and significant cost associated with the availability of the source code, the Open Source option, for which access to the source code is granted, is progressively making its way as an attractive and promising alternative. Also, results of many studies have shown that Open Source solutions did not exhibit significantly more critical failure modes and in some cases they were even found to demonstrate behaviors superior to commercial options [Koopman and DeVale 1999, Arlat et al. 2002, Marsden et al. 2002, Vieira & Madeira 2003]; see also Chapter 5 for the latter. In this chapter, we will simply denote such components (either commercial or Open Source) as OTS components. In the past years, several experimental studies have addressed this important issue from different perspectives [Koopman and DeVale 1999 (see also Chapter 11), Arlat et al. 2002, Madeira et al. 2002]. This has also led to the proposal of tentative dependability benchmarking approaches, aimed at characterizing the robustness of computer systems
منابع مشابه
Benchmarking Real-Time Linux Implementation on Embedded Platform
This paperdeals with design, implementation and testing of real time drivers for I2C and UART processor controllers on Beaglebone Black. Embedded Board runs with Linux 3.8.13 and real time co-kernel, Xenomai-2.6.3. Beaglebone Black has cortex A8 processor with 1GHz frequency. Xenomai Real time driver Model(RTDM) drivers are made for I2C and UART processor controller and their performance parame...
متن کاملRecovering from Faulty Device Drivers
Several studies (see Swift et. al.’s study of Windows XP in SOSP 2003 and Chou et. al’s study of Linux in SOSP 2001) have attributed a large fraction of operating system failures to device driver flaws. Not only can driver errors cause kernel instability, but these errors can also be exploited for privilege escalation and access to kernel data structures. A search on securityfocus.com shows vul...
متن کاملSymDrive: Testing Drivers without Devices
Device-driver development and testing is a complex and error-prone undertaking. For example, testing errorhandling code requires simulating faulty inputs from the device. A single driver may support dozens of devices, and a developer may not have access to any of them. Consequently, many Linux driver patches include the comment “compile tested only.” SymDrive is a system for testing Linux and F...
متن کاملGenerating environment model for Linux device drivers
Linux device drivers can't be analyzed separately from the kernel core due to their large interdependency with each other. But source code of the whole Linux kernel is rather complex and huge to be analyzed by existing model checking tools. So a driver should be analyzed with environment model instead of the real kernel core. In the given paper requirements for driver environment model are disc...
متن کاملnDriver: Online Driver Replacement for Increasing Operating System Availability
Device drivers are the most unreliable part of an operating system. In this paper, we propose a framework called nDriver. Based on the design diversity concept, it uses multiple implementations of a device driver to survive from driver faults. Once a fault happens in a driver, nDriver can dynamically replace the faulty driver with another implementation, instead of allowing the faulty driver to...
متن کاملA Comparative Study of Device Driver APIs Towards a Uniform Linux Approach
Linux Application Program Interfaces (APIs) lack stability and standardization. There is a need for a standard API for Linux device drivers that allow backward compatibility while easing the development of new drivers. The advantage of standardizing the API is to make the kernel core more robust and the development of new drivers easier; however the main challenge is performance-based. This wor...
متن کامل