The Experts below are selected from a list of 162 Experts worldwide ranked by ideXlab platform
Andrew S Tanenbaum - One of the best experts on this subject based on the ideXlab platform.
-
reorganizing unix for reliability
Lecture Notes in Computer Science, 2006Co-Authors: Jorrit N. Herder, Ben Gras, Philip Homburg, Andrew S TanenbaumAbstract:In this paper, we discuss the architecture of a modular UNIX-compatible operating system, MINIX3, that provides reliability beyond that of most other systems. With nearly the entire operating system running as a set of User-mode servers and drivers atop a minimal kernel, the system is fully compartmentalized. By moving most of the code to Unprivileged User-mode processes and restricting the powers of each one, we gain proper fault isolation and limit the damage bugs can do. Moreover, the system has been designed to survive and automatically recover from failures in critical modules, such as device drivers, transparent to applications and without User intervention. We used this new design to develop a highly reliable, open-source, POSIX-conformant member of the UNIX family. The resulting system is freely available and has been downloaded over 75,000 times since its release.
-
Asia-Pacific Computer Systems Architecture Conference - Reorganizing UNIX for reliability
Lecture Notes in Computer Science, 2006Co-Authors: Jorrit N. Herder, Ben Gras, Philip Homburg, Herbert Bos, Andrew S TanenbaumAbstract:In this paper, we discuss the architecture of a modular UNIX-compatible operating system, MINIX3, that provides reliability beyond that of most other systems. With nearly the entire operating system running as a set of User-mode servers and drivers atop a minimal kernel, the system is fully compartmentalized. By moving most of the code to Unprivileged User-mode processes and restricting the powers of each one, we gain proper fault isolation and limit the damage bugs can do. Moreover, the system has been designed to survive and automatically recover from failures in critical modules, such as device drivers, transparent to applications and without User intervention. We used this new design to develop a highly reliable, open-source, POSIX-conformant member of the UNIX family. The resulting system is freely available and has been downloaded over 75,000 times since its release.
-
EDCC - Construction of a Highly Dependable Operating System
2006 Sixth European Dependable Computing Conference, 2006Co-Authors: Jorrit N. Herder, Ben Gras, Philip Homburg, Herbert Bos, Andrew S TanenbaumAbstract:It has been well established that most operating system crashes are due to bugs in device drivers. Because drivers are normally linked into the kernel address space, a buggy driver can wipe out kernel tables and bring the system crashing to a grinding halt. We have greatly mitigated this problem by reducing the kernel to an absolute minimum and running each driver as a separate, Unprivileged User-mode process. In addition, we implemented a POSIX-conformant operating system, MINIX 3, as multiple User-mode servers. In this design, a server or driver failure no longer is fatal and does not require rebooting the computer. This paper discusses how we designed and implemented the system, which problems we encountered, and how we solved these problems. We also discuss the performance effects of our changes and evaluate how our multiserver design improves operating system dependability over monolithic designs.
-
Construction of a Highly Dependable Operating System
2006Co-Authors: Jorrit N. Herder, Ben Gras, Philip Homburg, Herbert Bos, Andrew S TanenbaumAbstract:It has been well established that most operating system crashes are due to bugs in device drivers. Because drivers are normally linked into the kernel address space, a buggy driver can wipe out kernel tables and bring the system crashing to a grinding halt. We have greatly mitigated this problem by reducing the kernel to an absolute minimum and running each driver as a separate, Unprivileged User-mode process. In addition, we implemented a POSIX-conformant operating system, MINIX 3, as multiple User-mode servers. In this design, a server or driver failure no longer is fatal and does not require rebooting the computer. This paper discusses how we designed and implemented the system, which problems we encountered, and how we solved these problems. We also discuss the performance effects of our changes and evaluate how our multiserver design improves operating system dependability over monolithic designs. ’Perfection is not achieved when there is nothing left to add, but when there is nothing left to take away.’ 1
Jorrit N. Herder - One of the best experts on this subject based on the ideXlab platform.
-
reorganizing unix for reliability
Lecture Notes in Computer Science, 2006Co-Authors: Jorrit N. Herder, Ben Gras, Philip Homburg, Andrew S TanenbaumAbstract:In this paper, we discuss the architecture of a modular UNIX-compatible operating system, MINIX3, that provides reliability beyond that of most other systems. With nearly the entire operating system running as a set of User-mode servers and drivers atop a minimal kernel, the system is fully compartmentalized. By moving most of the code to Unprivileged User-mode processes and restricting the powers of each one, we gain proper fault isolation and limit the damage bugs can do. Moreover, the system has been designed to survive and automatically recover from failures in critical modules, such as device drivers, transparent to applications and without User intervention. We used this new design to develop a highly reliable, open-source, POSIX-conformant member of the UNIX family. The resulting system is freely available and has been downloaded over 75,000 times since its release.
-
Asia-Pacific Computer Systems Architecture Conference - Reorganizing UNIX for reliability
Lecture Notes in Computer Science, 2006Co-Authors: Jorrit N. Herder, Ben Gras, Philip Homburg, Herbert Bos, Andrew S TanenbaumAbstract:In this paper, we discuss the architecture of a modular UNIX-compatible operating system, MINIX3, that provides reliability beyond that of most other systems. With nearly the entire operating system running as a set of User-mode servers and drivers atop a minimal kernel, the system is fully compartmentalized. By moving most of the code to Unprivileged User-mode processes and restricting the powers of each one, we gain proper fault isolation and limit the damage bugs can do. Moreover, the system has been designed to survive and automatically recover from failures in critical modules, such as device drivers, transparent to applications and without User intervention. We used this new design to develop a highly reliable, open-source, POSIX-conformant member of the UNIX family. The resulting system is freely available and has been downloaded over 75,000 times since its release.
-
EDCC - Construction of a Highly Dependable Operating System
2006 Sixth European Dependable Computing Conference, 2006Co-Authors: Jorrit N. Herder, Ben Gras, Philip Homburg, Herbert Bos, Andrew S TanenbaumAbstract:It has been well established that most operating system crashes are due to bugs in device drivers. Because drivers are normally linked into the kernel address space, a buggy driver can wipe out kernel tables and bring the system crashing to a grinding halt. We have greatly mitigated this problem by reducing the kernel to an absolute minimum and running each driver as a separate, Unprivileged User-mode process. In addition, we implemented a POSIX-conformant operating system, MINIX 3, as multiple User-mode servers. In this design, a server or driver failure no longer is fatal and does not require rebooting the computer. This paper discusses how we designed and implemented the system, which problems we encountered, and how we solved these problems. We also discuss the performance effects of our changes and evaluate how our multiserver design improves operating system dependability over monolithic designs.
-
Construction of a Highly Dependable Operating System
2006Co-Authors: Jorrit N. Herder, Ben Gras, Philip Homburg, Herbert Bos, Andrew S TanenbaumAbstract:It has been well established that most operating system crashes are due to bugs in device drivers. Because drivers are normally linked into the kernel address space, a buggy driver can wipe out kernel tables and bring the system crashing to a grinding halt. We have greatly mitigated this problem by reducing the kernel to an absolute minimum and running each driver as a separate, Unprivileged User-mode process. In addition, we implemented a POSIX-conformant operating system, MINIX 3, as multiple User-mode servers. In this design, a server or driver failure no longer is fatal and does not require rebooting the computer. This paper discusses how we designed and implemented the system, which problems we encountered, and how we solved these problems. We also discuss the performance effects of our changes and evaluate how our multiserver design improves operating system dependability over monolithic designs. ’Perfection is not achieved when there is nothing left to add, but when there is nothing left to take away.’ 1
Ben Gras - One of the best experts on this subject based on the ideXlab platform.
-
reorganizing unix for reliability
Lecture Notes in Computer Science, 2006Co-Authors: Jorrit N. Herder, Ben Gras, Philip Homburg, Andrew S TanenbaumAbstract:In this paper, we discuss the architecture of a modular UNIX-compatible operating system, MINIX3, that provides reliability beyond that of most other systems. With nearly the entire operating system running as a set of User-mode servers and drivers atop a minimal kernel, the system is fully compartmentalized. By moving most of the code to Unprivileged User-mode processes and restricting the powers of each one, we gain proper fault isolation and limit the damage bugs can do. Moreover, the system has been designed to survive and automatically recover from failures in critical modules, such as device drivers, transparent to applications and without User intervention. We used this new design to develop a highly reliable, open-source, POSIX-conformant member of the UNIX family. The resulting system is freely available and has been downloaded over 75,000 times since its release.
-
Asia-Pacific Computer Systems Architecture Conference - Reorganizing UNIX for reliability
Lecture Notes in Computer Science, 2006Co-Authors: Jorrit N. Herder, Ben Gras, Philip Homburg, Herbert Bos, Andrew S TanenbaumAbstract:In this paper, we discuss the architecture of a modular UNIX-compatible operating system, MINIX3, that provides reliability beyond that of most other systems. With nearly the entire operating system running as a set of User-mode servers and drivers atop a minimal kernel, the system is fully compartmentalized. By moving most of the code to Unprivileged User-mode processes and restricting the powers of each one, we gain proper fault isolation and limit the damage bugs can do. Moreover, the system has been designed to survive and automatically recover from failures in critical modules, such as device drivers, transparent to applications and without User intervention. We used this new design to develop a highly reliable, open-source, POSIX-conformant member of the UNIX family. The resulting system is freely available and has been downloaded over 75,000 times since its release.
-
EDCC - Construction of a Highly Dependable Operating System
2006 Sixth European Dependable Computing Conference, 2006Co-Authors: Jorrit N. Herder, Ben Gras, Philip Homburg, Herbert Bos, Andrew S TanenbaumAbstract:It has been well established that most operating system crashes are due to bugs in device drivers. Because drivers are normally linked into the kernel address space, a buggy driver can wipe out kernel tables and bring the system crashing to a grinding halt. We have greatly mitigated this problem by reducing the kernel to an absolute minimum and running each driver as a separate, Unprivileged User-mode process. In addition, we implemented a POSIX-conformant operating system, MINIX 3, as multiple User-mode servers. In this design, a server or driver failure no longer is fatal and does not require rebooting the computer. This paper discusses how we designed and implemented the system, which problems we encountered, and how we solved these problems. We also discuss the performance effects of our changes and evaluate how our multiserver design improves operating system dependability over monolithic designs.
-
Construction of a Highly Dependable Operating System
2006Co-Authors: Jorrit N. Herder, Ben Gras, Philip Homburg, Herbert Bos, Andrew S TanenbaumAbstract:It has been well established that most operating system crashes are due to bugs in device drivers. Because drivers are normally linked into the kernel address space, a buggy driver can wipe out kernel tables and bring the system crashing to a grinding halt. We have greatly mitigated this problem by reducing the kernel to an absolute minimum and running each driver as a separate, Unprivileged User-mode process. In addition, we implemented a POSIX-conformant operating system, MINIX 3, as multiple User-mode servers. In this design, a server or driver failure no longer is fatal and does not require rebooting the computer. This paper discusses how we designed and implemented the system, which problems we encountered, and how we solved these problems. We also discuss the performance effects of our changes and evaluate how our multiserver design improves operating system dependability over monolithic designs. ’Perfection is not achieved when there is nothing left to add, but when there is nothing left to take away.’ 1
Philip Homburg - One of the best experts on this subject based on the ideXlab platform.
-
reorganizing unix for reliability
Lecture Notes in Computer Science, 2006Co-Authors: Jorrit N. Herder, Ben Gras, Philip Homburg, Andrew S TanenbaumAbstract:In this paper, we discuss the architecture of a modular UNIX-compatible operating system, MINIX3, that provides reliability beyond that of most other systems. With nearly the entire operating system running as a set of User-mode servers and drivers atop a minimal kernel, the system is fully compartmentalized. By moving most of the code to Unprivileged User-mode processes and restricting the powers of each one, we gain proper fault isolation and limit the damage bugs can do. Moreover, the system has been designed to survive and automatically recover from failures in critical modules, such as device drivers, transparent to applications and without User intervention. We used this new design to develop a highly reliable, open-source, POSIX-conformant member of the UNIX family. The resulting system is freely available and has been downloaded over 75,000 times since its release.
-
Asia-Pacific Computer Systems Architecture Conference - Reorganizing UNIX for reliability
Lecture Notes in Computer Science, 2006Co-Authors: Jorrit N. Herder, Ben Gras, Philip Homburg, Herbert Bos, Andrew S TanenbaumAbstract:In this paper, we discuss the architecture of a modular UNIX-compatible operating system, MINIX3, that provides reliability beyond that of most other systems. With nearly the entire operating system running as a set of User-mode servers and drivers atop a minimal kernel, the system is fully compartmentalized. By moving most of the code to Unprivileged User-mode processes and restricting the powers of each one, we gain proper fault isolation and limit the damage bugs can do. Moreover, the system has been designed to survive and automatically recover from failures in critical modules, such as device drivers, transparent to applications and without User intervention. We used this new design to develop a highly reliable, open-source, POSIX-conformant member of the UNIX family. The resulting system is freely available and has been downloaded over 75,000 times since its release.
-
EDCC - Construction of a Highly Dependable Operating System
2006 Sixth European Dependable Computing Conference, 2006Co-Authors: Jorrit N. Herder, Ben Gras, Philip Homburg, Herbert Bos, Andrew S TanenbaumAbstract:It has been well established that most operating system crashes are due to bugs in device drivers. Because drivers are normally linked into the kernel address space, a buggy driver can wipe out kernel tables and bring the system crashing to a grinding halt. We have greatly mitigated this problem by reducing the kernel to an absolute minimum and running each driver as a separate, Unprivileged User-mode process. In addition, we implemented a POSIX-conformant operating system, MINIX 3, as multiple User-mode servers. In this design, a server or driver failure no longer is fatal and does not require rebooting the computer. This paper discusses how we designed and implemented the system, which problems we encountered, and how we solved these problems. We also discuss the performance effects of our changes and evaluate how our multiserver design improves operating system dependability over monolithic designs.
-
Construction of a Highly Dependable Operating System
2006Co-Authors: Jorrit N. Herder, Ben Gras, Philip Homburg, Herbert Bos, Andrew S TanenbaumAbstract:It has been well established that most operating system crashes are due to bugs in device drivers. Because drivers are normally linked into the kernel address space, a buggy driver can wipe out kernel tables and bring the system crashing to a grinding halt. We have greatly mitigated this problem by reducing the kernel to an absolute minimum and running each driver as a separate, Unprivileged User-mode process. In addition, we implemented a POSIX-conformant operating system, MINIX 3, as multiple User-mode servers. In this design, a server or driver failure no longer is fatal and does not require rebooting the computer. This paper discusses how we designed and implemented the system, which problems we encountered, and how we solved these problems. We also discuss the performance effects of our changes and evaluate how our multiserver design improves operating system dependability over monolithic designs. ’Perfection is not achieved when there is nothing left to add, but when there is nothing left to take away.’ 1
Gernot Heiser - One of the best experts on this subject based on the ideXlab platform.
-
User-Level Device Drivers: Achieved Performance
Journal of Computer Science and Technology, 2005Co-Authors: Ben Leslie, Peter Chubb, Nicholas Fitzroy-dale, Stefan Götz, Charles Gray, Luke Macpherson, Daniel Potts, Yueting Shen, Kevin Elphinstone, Gernot HeiserAbstract:Running device drivers as Unprivileged User-level code, encapsulated into their own process, has often been proposed as a technique for increasing system robustness. However, in the past, systems based on User-level drivers have generally exhibited poor I/O performance. Consequently, User-level device drivers have never caught on to any significant degree. In this paper we demonstrate that it is possible to build systems which employ User-level device drivers, without significant performance degradation, even for high-bandwidth devices such as Gigabit Ethernet.
-
User-level Device Drivers: Achieved Performance
2005Co-Authors: Ben Leslie, Peter Chubb, Nicholas Fitzroy-dale, Stefan Götz, Charles Gray, Luke Macpherson, Daniel Potts, Yueting Shen, Kevin Elphinstone, Gernot HeiserAbstract:Running device drivers as Unprivileged User-level code, encapsulated into their own process, has often been proposed as a technique for increasing system robustness
