Startseite Erkunden Hilfe
Anmelden
ademant
/
gpsd
Beobachten 1
Favorit hinzufügen 0
Fork 0
Dateien Issues 0 Pull-Requests 0 Wiki
Struktur: 37b05f92d4
Branches Tags
gpsd
/
www
/
reliability.html

reliability.html 6.3 KB
Verlauf Originalformat

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160 
  1. <!DOCTYPE HTML>
    2. 

  2. <html lang="en">
    3. 

  3. <head lang="en">
    4. 

  4.    <meta http-equiv="Content-Type" content="text/html; charset=utf-8">
    5. 

  5.    <meta name="Author" content="Eric S. Raymond">
    6. 

  6.    <meta name="Description" content="gpsd is a utility that can listen to a GPS or AIS receiver and re-publish the positional data in a simpler format.">
    7. 

  7.    <meta name="Keywords" content="GPS, translator, GIS">
    8. 

  8.    <meta name="Revised" content="9 April 2015">
    9. 

  9.    <meta name="robots" content="index,follow">
    10. 

  10.    <!-- the following is a verification tag for Google Analytics -->
    11. 

  11.    <meta name="verify-v1" content="kb4f3qxJPMaOltYTpJHnvbnteza1PHO4EhrRIfcq2gk=">
    12. 

  12.    <title>GPSd &mdash; Put your GPS on the net!</title>
    13. 

  13.    <link rel="stylesheet" href="main.css" type="text/css">
    14. 

  14. </head>
    15. 

  15. <body>
    16. 

  16. 

  17. <div id="Header">
    18. 

  18. How We Engineer For High Reliability.
    19. 

  19. </div>
    20. 

  20. 

  21. <div id="Menu">
    22. 

  22.     <img src="gpsd-logo-small.png" alt="Small gpsd Logo" height="126"
    23. 

  23.     width="105"><br>
    24. 

  24.     Home<br>
    25. 

  25.     <div>
    26. 

  26.     <a href="#news">News</a><br>
    27. 

  27.     <a href="#downloads">Downloads</a><br>
    28. 

  28.     <a href="index.html#install">Installation &amp; Building</a><br>
    29. 

  29.     <a href="#mailing-lists">Mailing lists</a><br>
    30. 

  30.     <a href="#documentation">Documentation</a><br>
    31. 

  31.     <a href="faq.html">FAQ</a><br>
    32. 

  32.     <a href="xgps-sample.html">Screenshots</a><br>
    33. 

  33.     <a href="#recipes">Recipes</a><br>
    34. 

  34.     <a href="#others">Other GPSDs</a><br>
    35. 

  35.     <a href="hardware.html">Hardware</a><br>
    36. 

  36.     <a href="for-vendors.html">For GPS Vendors</a><br>
    37. 

  37.     <a href="wishlist.html">Wish List</a><br>
    38. 

  38.     <a href="hall-of-shame.html">Hall of Shame</a><br>
    39. 

  39.     <a href="troubleshooting.html">Troubleshooting Guide</a><br>
    40. 

  40.     <a href="hacking.html">Hacker's Guide</a><br>
    41. 

  41.     <a href="references.html">References</a><br>
    42. 

  42.     <a href="protocol-transition.html">Application Compatibility</a>
    43. 

  43.     <a href="history.html">History</a><br>
    44. 

  44.     <a href="future.html">Future</a><br>
    45. 

  45.     </div>
    46. 

  46. 

  47.     <div>&nbsp;</div>
    48. 

  48. 

  49.     <a href='http://www.catb.org/hacker-emblem/'><img
    50. 

  50.     src='glider.png' alt='hacker emblem' height="55" width="55"></a><br>
    51. 

  51. 

  52.     <script src="https://www.openhub.net/p/3944/widgets/project_thin_badge.js"></script>
    53. 

  53. 

  54.     <hr>
    55. 

  55.     <script><!--
    56. 

  56.     google_ad_client = "pub-1458586455084261";
    57. 

  57.     google_ad_width = 160;
    58. 

  58.     google_ad_height = 600;
    59. 

  59.     google_ad_format = "160x600_as";
    60. 

  60.     google_ad_type = "text";
    61. 

  61.     google_ad_channel = "";
    62. 

  62.     //--></script>
    63. 

  63.     <script src="https://pagead2.googlesyndication.com/pagead/show_ads.js">
    64. 

  64.     </script>
    65. 

  65.     <hr>
    66. 

  66. 

  67.     <a href="https://validator.w3.org/check/referer"><img
    68. 

  68.           src="html5.png"
    69. 

  69.           alt="Valid HTML 5!" height="31" width="88"></a>
    70. 

  70. </div>
    71. 

  71. 

  72. <div id="Content">
    73. 

  73. 

  74. <p>GPSD has an exceptionally low defect rate.  Our first <a
    75. 

  75. href='http://coverity.com'>Coverity</a> scan, in March 2007, turned up
    76. 

  76. only 2 errors in over 22KLOC; our second, in May 2012, turned up just
    77. 

  77. 13 errors in 72KLOC, all on rarely-used code paths.  Though the
    78. 

  78. software is very widely deployed on multiple platforms, we often go
    79. 

  79. for months between new tracker bugs.</p>
    80. 

  80. 

  81. <p>Here's how that's done:</p>
    82. 

  82. 

  83. <h2>We have an extensive suite of unit tests and regression tests</h2>
    84. 

  84. 

  85. <p>GPSD has around 100 unit tests and regression tests, including sample
    86. 

  86. device output for almost every sensor type we support. We've put a lot of
    87. 

  87. effort into making the tests easy and fast to run so they can be run
    88. 

  88. often. This makes it actively difficult for random code changes to
    89. 

  89. break our device drivers without somebody noticing.</p>
    90. 

  90. 

  91. <p>Which isn't to say those drivers can't be wrong, just that the ways
    92. 

  92. they can be wrong are constrained to be through either:</p>
    93. 

  93. 

  94. <ol>
    95. 

  95. <li> a protocol-spec-level misunderstanding of what the driver is
    96. 

  96. supposed to be doing, or </li>
    97. 

  97. <li> an implementation bug somewhere in the program's
    98. 

  98. state space that is obscure and difficult to reach.  </li>
    99. 

  99. </ol>
    100. 

  100. 

  101. <p>Our first Coverity run only turned up two driver bugs - static
    102. 

  102. buffer overruns in methods for changing the device's reporting
    103. 

  103. protocol and line speed that escaped notice because they can't be
    104. 

  104. checked in our test harnesses but only on a live device.</p>
    105. 

  105. 

  106. <p>This is also why Coverity didn't find defects on commonly-used code
    107. 

  107. paths. If there'd been any, the regression tests probably would have
    108. 

  108. smashed them out long ago. A great deal of boring, grubby, finicky
    109. 

  109. work went into getting our test framework in shape, but it has paid
    110. 

  110. off hugely.</p>
    111. 

  111. 

  112. <h2>We use every fault scanner we can lay our hands on.</h2>
    113. 

  113. 

  114. <p>We regulary apply Coverity, <a
    115. 

  115. href='http://sourceforge.net/apps/mediawiki/cppcheck/'>cppcheck</a>,
    116. 

  116. and <a
    117. 

  117. href="http://clang-analyzer.llvm.org/scan-build.html">scan-build</a>.
    118. 

  118. We've as yet been unable to eliminate all scan-build warnings, but we
    119. 

  119. require the code to audit clean under all the other tools on each
    120. 

  120. release. </p>
    121. 

  121. 

  122. <p>We used to use <a href='http://www.splint.org'>splint</a>, until
    123. 

  123. we found that we couldn't replicate the results of splint runs
    124. 

  124. reliably in different Linux distributions. Also, far and away the biggest
    125. 

  125. pain in the ass to use. You have to drop cryptic, cluttery magic
    126. 

  126. comments all over your source to pass hints to splint and suppress its
    127. 

  127. extremely voluminous and picky output. We have retired in favor of more
    128. 

  128. modern analyzers.</p>
    129. 

  129. 

  130. <p>cppcheck is much newer and much less prone to false
    131. 

  131. positives. Likewise scan-build. But here's what experience tells us:
    132. 

  132. each of these tools finds overlapping but different sets of
    133. 

  133. bugs. Coverity is, by reputation at least, capable enough that it
    134. 

  134. might dominate one or more of them - but why take chances? Best to use
    135. 

  135. all and constrain the population of undiscovered bugs into as
    136. 

  136. small a fraction of the state space as we can.</p>
    137. 

  137. 

  138. <p>We also use <a href='http://valgrind.org/'>valgrind</a> to check
    139. 

  139. for memory leaks, though this is not expected to turn up bugs (and
    140. 

  140. doesn't) due to our no-dynamic-allocation <a href="hacking.html#malloc">house
    141. 

  141. rule</a>.</p>
    142. 

  142. 

  143. <h2>We are methodical and merciless</h2>
    144. 

  144. 

  145. <p>Neither magic or genius is required to get defect densities as
    146. 

  146. low as GPSD's. It's more a matter of sheer bloody-minded persistence -
    147. 

  147. the willingness to do the up-front work required to apply and
    148. 

  148. discipline fault scanners, write test harnesses, and automate your
    149. 

  149. verification process so you can run a truly rigorous validation with
    150. 

  150. the push of a button.</p>
    151. 

  151. 

  152. <p>Many more projects could do this than do. And many more projects
    153. 

  153. should.</p>
    154. 

  154. 

  155. <hr>
    156. 

  156. <script src="datestamp.js"></script>
    157. 

  157. </div>
    158. 

  158. </body>
    159. 

  159. </html>
    160. 

  160.