CMSIS-RTOS2 API supports a concept of process isolation that allows developers to protect execution of critical software tasks against potential flaws in other parts of a program.
Process Isolation in CMSIS-RTOS2 is enabled by following features:
- MPU Protected Zones for memory access protection in the system using Memory Protection Unit (MPU).
RTOS threads are executed with permission to access only memory regions and peripherals required for their operation. Hence thread code cannot accidentally modify critical RTOS kernel data or memory dedicated to other tasks.
- Safety Classes for access protection to RTOS objects via RTOS APIs.
The RTOS objects with a higher safety class assigned to them cannot be modified via RTOS API functions from threads that have lower safety class assigned.
- Thread Watchdogs to verify execution times of threads.
Each thread can maintain own thread watchdog and in case of timing violations, corresponding thread watchdog alarm will be triggered.
- Fault Handling in case of a detected failure (for example thread watchdog alarm or MPU Fault).
The RTOS provides functions to block execution of malfunctioning components and with that dedicate system resources for operation of the safety critical threads.
