undefined | Better HN

0 pointsHALtheWise4y ago0 comments

That makes sense. One part I'm still not clear on is how you accomplish a "restore" to fix the broken state of a process with a bitflip. Is it enough to simply copy all the shared state memory over as a block and jump into executing it? That seems like it would require the invariant that shared memory never references private memory, and I'm not sure how to statically enforce that.

0 comments

azernik4y ago

"Restore" is reboot. Usually these are called "watchdog circuits", which you may have heard of from more mundane embedded applications.

Once you've rebooted, yeah, you need to copy over the shared state from another of the processes.

ncmncm4y ago

You probably have hardware that watches ECC flags. For a correctable one-bit flip, it triggers a read-and-then-write. For a two-bit flip, it might just kill and restart the process, or reset the whole machine. As long as it doesn't happen too often, it's fine: the whole system (constellation and ground nodes) are designed to accommodate such events.

j / k navigate · click thread line to collapse

0 pointsHALtheWise4y ago0 comments

0 comments

azernik4y ago

"Restore" is reboot. Usually these are called "watchdog circuits", which you may have heard of from more mundane embedded applications.

Once you've rebooted, yeah, you need to copy over the shared state from another of the processes.

ncmncm4y ago

j / k navigate · click thread line to collapse