A copy of this work was available on the public web and has been preserved in the Wayback Machine. The capture dates from 2008; you can also visit <a rel="external noopener" href="http://pages.cs.wisc.edu/~swift/papers/nooks-tocs.pdf">the original URL</a>. The file type is <code>application/pdf</code>.
Improving the reliability of commodity operating systems
<span title="">2003</span>
<i title="ACM Press">
Proceedings of the nineteenth ACM symposium on Operating systems principles - SOSP '03
</i>
Preserved Fulltext
Despite decades of research in extensible operating system technology, extensions such as device drivers remain a significant cause of system failures. In Windows XP, for example, drivers account for 85% of recently reported failures. This article describes Nooks, a reliability subsystem that seeks to greatly enhance operating system (OS) reliability by isolating the OS from driver failures. The Nooks approach is practical: rather than guaranteeing complete fault tolerance through a new (and
<span class="external-identifiers">
<a target="_blank" rel="external noopener noreferrer" href="https://doi.org/10.1145/945465.945466">doi:10.1145/945465.945466</a>
<a target="_blank" rel="external noopener" href="https://fatcat.wiki/release/s3mtk5zegzhlph7smb4ti2httq">fatcat:s3mtk5zegzhlph7smb4ti2httq</a>
</span>
more »
... ompatible) OS or driver architecture, our goal is to prevent the vast majority of driver-caused crashes with little or no change to the existing driver and system code. Nooks isolates drivers within lightweight protection domains inside the kernel address space, where hardware and software prevent them from corrupting the kernel. Nooks also tracks a driver's use of kernel resources to facilitate automatic cleanup during recovery. To prove the viability of our approach, we implemented Nooks in the Linux operating system and used it to fault-isolate several device drivers. Our results show that Nooks offers a substantial increase in the reliability of operating systems, catching and quickly recovering from many faults that would otherwise crash the system. Under a wide range and number of fault conditions, we show that Nooks recovers automatically from 99% of the faults that otherwise cause Linux to crash. While Nooks was designed for drivers, our techniques generalize to other kernel extensions. We demonstrate this by isolating a kernel-mode file system and an in-kernel Internet service. Overall, because Nooks supports existing C-language extensions, runs on a commodity operating system and hardware, and enables automated recovery, it represents a substantial step beyond the specialized architectures and type-safe languages required by previous efforts directed at safe extensibility.
<a target="_blank" rel="noopener" href="https://web.archive.org/web/20080419061527/http://pages.cs.wisc.edu/~swift/papers/nooks-tocs.pdf" title="fulltext PDF download" data-goatcounter-click="serp-fulltext" data-goatcounter-title="serp-fulltext">
<button class="ui simple right pointing dropdown compact black labeled icon button serp-button">
<i class="icon ia-icon"></i>
Web Archive
[PDF]
<div class="menu fulltext-thumbnail">
<img src="https://blobs.fatcat.wiki/thumbnail/pdf/3e/37/3e373837626a6e1ead6d4eafcf859c125acf3816.180px.jpg" alt="fulltext thumbnail" loading="lazy">
</div>
</button>
</a>
<a target="_blank" rel="external noopener noreferrer" href="https://doi.org/10.1145/945465.945466">
<button class="ui left aligned compact blue labeled icon button serp-button">
<i class="external alternate icon"></i>
acm.org
</button>
</a>