Re: [ANNOUNCE] Linux Hardened Device Drivers Project

Greg KH (greg@kroah.com)
Tue, 24 Sep 2002 16:07:25 -0700

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Karim Yaghmour: "Re: [Adeos-main] Re: [PATCH] Adeos nanokernel for 2.5.38 1/2: no-arch"
Previous message: Rhoads, Rob: "RE: Some Initial Comments on DDH-Spec-0.5h.pdf"

On Tue, Sep 24, 2002 at 02:46:35PM -0700, Rhoads, Rob wrote:
>
> First throw away any idea of a spec. That was a bad idea. :)
>
> Next, turn the first section, "Stability & Reliability" of our
> original doc into a "Driver Hardening HOWTO". It would be a
> list of characteristics that all good drivers should have,
> packed with examples to back it up.

Sounds very good. I recommend that it be written in DocBook and added
to the Documentation/DocBook directory of the kernel tree.

> BTW, by no means did I or anyone involved on this project, ever
> mean to imply that the current drivers in the kernel are "bad".
> Rather, I'd like to capture a list of the best practices and
> document them. In any event our current list needs to be
> strengthened with concrete examples. My thinking is that we
> should work with the Kernel Janitor project. This is where
> Intel can probably really help out.

Great, the janitor project can really use extra people to help out. I
suggest that you read over their TODO list again and pick up the pieces
from there that are missing from your "Driver Hardening HOWTO".

> The section on Instrumentation should be broken up and each piece
> dealt with separately as separate project. Most likely killed outright
> or as part of existing efforts. I see this section as not having
> anything to do with driver hardening and more to do with driver RAS.

Agreed.

> POSIX Event Logging-- is a dead issue. The mailing list feedback
> is making that point very clear, many thanks. The current
> thread on an alternative, seems like there is some sort of need
> for event logging. Whatever the final decision that the Linux
> community decides, we'll do.

Thanks for listening.

> There seems to be a desire to have some sort of driver diagnostics.
> We can work on that with the existing linux-diag project.

Sounds good. I know those people are actively working to get their code
into the 2.5 kernel, using the driver model. This is a good thing.

> Statistics needs to be debated on its own merits. There are some
> arguments for keeping it, but I think that stats could be better
> handled in user-space and NOT kernel space. IMHO it's not driver
> hardening, therefore it's a separate project.

Agreed, it should be done in userspace.

> Third, the most of the section on High Availability should just
> be axed. The big exception being "fault injection testing".
>
> I see value in keeping FI testing. I think that getting FI
> tools into the hands of developers would be worthwhile. Why?
> Because letting people do more complicated testing, produces
> better code. I think there is room for us to work on a set of
> FI tools.

It would be wonderful if there were some good FI tools that were
available for our use. It can only help to make better drivers.

Thank you for your response, and for listening to the community.

greg k-h
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Karim Yaghmour: "Re: [Adeos-main] Re: [PATCH] Adeos nanokernel for 2.5.38 1/2: no-arch"
Previous message: Rhoads, Rob: "RE: Some Initial Comments on DDH-Spec-0.5h.pdf"