Fault tolerance under UNIX

1 January 1989

journal article
Published by Association for Computing Machinery (ACM) in ACM Transactions on Computer Systems

Vol. 7 (1), 1-24
https://doi.org/10.1145/58564.58565

Abstract

The initial design for a distributed, fault-tolerant version of UNIX based on three-way atomic message transmission was presented in an earlier paper [3]. The implementation effort then moved from Auragen Systems ¹ to Nixdorf Computer where it was completed. This paper describes the working system, now known as the TARGON/32. The original design left open questions in at least two areas: fault tolerance for server processes and recovery after a crash were briefly and inaccurately sketched, rebackup after recovery was not discussed at all. The fundamental design involving three-way message transmission has remained unchanged. However, in addition to important changes in the implementation, server backup has been redesigned and is now more consistent with that of normal user processes. Recovery and rebackup have been completed in a less centralized and thus more efficient manner than previously envisioned. In this paper we review important aspects of the original design and note how the implementation differs from our original ideas. We then focus on the backup and recovery for server processes and the changes and additions in the design and implementation of recovery and rebackup.

Keywords

This publication has 6 references indexed in Scilit:

Optimistic recovery in distributed systems
ACM Transactions on Computer Systems, 1985
Byzantine generals in action
ACM Transactions on Computer Systems, 1984
Highly available systems for database applications
ACM Computing Surveys, 1984
Guardians and Actions: Linguistic Support for Robust, Distributed Programs
ACM Transactions on Programming Languages and Systems, 1983
The Recovery Manager of the System R Database Manager
ACM Computing Surveys, 1981
Recovery Techniques for Database Systems
ACM Computing Surveys, 1978

Cited by 147 articles