Time driven operating systems: a case study on the MARS kernel

Authors:
Johannes Reisinger
Affiliations:
Technische Universität Wien, Treitlstraße 3/182/1, A-1040 Wien, Austria/Europe
Venue:
EW 5 Proceedings of the 5th workshop on ACM SIGOPS European workshop: Models and paradigms for distributed systems structuring
Year:
1992

Citing 8
Cited 0

Clock synchronization in distributed real-time systems

IEEE Transactions on Computers - Special Issue on Real-Time Systems
The V distributed system

Communications of the ACM
The real-time operating system of MARS

ACM SIGOPS Operating Systems Review
Amoeba: A Distributed Operating System for the 1990s

Computer
Calculating the maximum, execution time of real-time programs

Real-Time Systems
What is predictability for real-time systems?

Real-Time Systems
Distributed Operating Systems: The Logical Design

Distributed Operating Systems: The Logical Design
Distributed Fault-Tolerant Real-Time Systems: The Mars Approach

IEEE Micro

Quantified Score

Hi-index	0.00

Visualization

Abstract

Time driven real-time systems are of increasing importance in the field of critical computer control applications [Sta90]. Because of their predictable behavior they are well suited for systems whose correct operation in the time domain must be guaranteed already in the design phase of an application. Time driven systems allow the proof of the correct timing behavior of an application by construction of a feasible schedule.In the MARS system [Kop89] the time driven approach is realized. The structure of the MARS operating system kernel differs significantly from that of others because of the specific demands which a distributed time driven system imposes on its underlying operating system. Based on the experiences with the first prototype of the MARS operating system [Dam89] (MARS-1), a new operating system kernel, MARS-2, has been developed from scratch. There have been some motivations for the development of MARS-2:• New processor boards ('MARS components') have been developed to fully support the MARS concepts [Ste91]. These boards provide mechanisms to achieve a high self-checking coverage and a highly predictable timing behavior.• The introduction of new concepts and mechanisms into the MARS system (e.g. membership protocol, time redundant process execution, shadow component [Kop90], [Kop91]) requires support by the runtime system.• A predictable timing behavior should be achieved by the new kernel. Although the system overhead caused by the old implementation was boundable in principle, the calculated bounds were too high to guarantee the correct timing behavior of an application already at design time [Vrc91].• The self-checking coverage of the MARS components has to be high because the fault tolerance mechanisms of MARS are based on it. Whereas the old kernel was not specifically designed in order to meet this requirement, MARS-2 uses both hardware and software mechanisms to increase the self-checking coverage to a sufficiently high degree.MARS-2 is based on a microkernel operating system architecture in contrast to the monolithic kernel of MARS-1.