Software requirements: Semaphore: collected all requirements so far #58
Conversation
Signed-off-by: Stanislav Pankevich <s.pankevich@gmail.com>
|
|
||
| - statically allocating the Counting Semaphore; | ||
| - statically initialize the Counting Semaphore with the provided count limit and initial count. | ||
| <<< |
There was a problem hiding this comment.
INCOSE GtWR R4 - Defined Terms:
- "Compile time" and "build time" are terms that need to be defined in the glossary. "Build time" is more encompassing and includes the following in addition to "compile": configuration evaluation, code generation, document extraction, linking, and sub-builds.
- "Zephyr RTOS" is a term that needs to be defined in the glossary.
There was a problem hiding this comment.
Yes, these terms need to be added to the glossary, but this does not block merging.
| COMPONENT: Counting Semaphore | ||
| TITLE: Build-Time Allocation and Initialization | ||
| STATEMENT: >>> | ||
| The Zephyr RTOS shall provide a mechanism to define and initialize a semaphore at compile time. |
There was a problem hiding this comment.
INCOSE GtWR R4 - Defined Terms: This statement needs to use the value of the COMPONENT: attribute.
|
|
||
| - statically allocating the Counting Semaphore; | ||
| - statically initialize the Counting Semaphore with the provided count limit and initial count. | ||
| <<< |
There was a problem hiding this comment.
INCOSE GtWR R5 - Definite Articles: Both statements use "a"/"an". The GtWR rule is to use "the" rather than "a".
There was a problem hiding this comment.
The requirement asks for an interface - "the" would be misleading here, as there is no interface existing that can be addressed as "the interface". So it is ok as it is here with the "an interface".
There was a problem hiding this comment.
Agreed, since both must happen at build time in this case. Run-time is a different matter.
| The Zephyr RTOS shall expose an interface for a Counting Semaphore to accomplish all of the following at build-time: | ||
|
|
||
| - statically allocating the Counting Semaphore; | ||
| - statically initialize the Counting Semaphore with the provided count limit and initial count. |
There was a problem hiding this comment.
INCOSE GtWR R11 - Separate Clauses: "allocating" and "initialize" are separate actions. They should be in separate clauses.
INCOSE GtWR R19 - Combinators: "count limit and initial count". Please either justify the high coupling of these parameters or state them in different clauses.
There was a problem hiding this comment.
I do not agree with Greg's comment, as this requirement focuses on the need to have an interfacing functionality and what this interface functionality must look like - even if it is not atomic at the first glance, it does not make sense to me to split it up - So for me this requirement is ok as is.
|
|
||
| - statically allocating the Counting Semaphore; | ||
| - statically initialize the Counting Semaphore with the provided count limit and initial count. | ||
| <<< |
There was a problem hiding this comment.
INCOSE GtWR R33 - Tolerance: "initial count", "count limit", and the "count" implicit in "Counting Semaphore" are quantities. Per R33 " Define each quantity with a range of values appropriate to the entity to which the quantity applies and against which the entity will be verified or validated."
There was a problem hiding this comment.
Yes, but for me that are additional requirements.
It does not block merging this requirement, it is a need for at least one more requirement here - and the additional requirements are following already below anyway.
| TITLE: Interface requirements | ||
|
|
||
| [SECTION] | ||
| TITLE: Initialize semaphore |
There was a problem hiding this comment.
This is a good example of following INCOSE GtWR R41 - Related Needs and Requirements: "Group related needs and requirements together."
| IMPORT_FROM_FILE: software_requirements.sgra | ||
|
|
||
| [SECTION] | ||
| TITLE: Interface requirements |
There was a problem hiding this comment.
This is a good example of following INCOSE GtWR R42 - Structured Sets: "Conform to a defined structure or template for organizing sets of needs and requirements."
| The Zephyr RTOS shall expose an interface for a Counting Semaphore to accomplish all of the following at build-time: | ||
|
|
||
| - statically allocating the Counting Semaphore; | ||
| - statically initialize the Counting Semaphore with the provided count limit and initial count. |
There was a problem hiding this comment.
I do not agree with Greg's comment, as this requirement focuses on the need to have an interfacing functionality and what this interface functionality must look like - even if it is not atomic at the first glance, it does not make sense to me to split it up - So for me this requirement is ok as is.
|
|
||
| - statically allocating the Counting Semaphore; | ||
| - statically initialize the Counting Semaphore with the provided count limit and initial count. | ||
| <<< |
There was a problem hiding this comment.
Yes, these terms need to be added to the glossary, but this does not block merging.
|
|
||
| - statically allocating the Counting Semaphore; | ||
| - statically initialize the Counting Semaphore with the provided count limit and initial count. | ||
| <<< |
There was a problem hiding this comment.
The requirement asks for an interface - "the" would be misleading here, as there is no interface existing that can be addressed as "the interface". So it is ok as it is here with the "an interface".
|
|
||
| - statically allocating the Counting Semaphore; | ||
| - statically initialize the Counting Semaphore with the provided count limit and initial count. | ||
| <<< |
There was a problem hiding this comment.
Yes, but for me that are additional requirements.
It does not block merging this requirement, it is a need for at least one more requirement here - and the additional requirements are following already below anyway.
| UID: ZEP-SEMAPHORE-003 | ||
| STATUS: Draft | ||
| TYPE: Functional | ||
| COMPONENT: Semaphore |
There was a problem hiding this comment.
The COMPONENT changes between Counting Semaphore and Semaphore - is this intentionally? Otherwise I'd like to stick to one of them.
There was a problem hiding this comment.
This already is a very much improved synthesis of the previous two proposals. And it's only because of that, that the things I noted became visible. Overall these are my main observations
-
by using the technical term thread (which has a very specific meaning in the context of Zephyr) everywhere the text excludes other running contexts where it shouldn't. E.g. Semaphores can be taken/given from ISRs as well, yet ISRs mustn't block. We could deal with this in different ways, i.e. introduce similar RQTs for the ISR context, introduce a more generic term such as running context, control flow unit etc.
-
Timeouts are tricky and I am not sure this covers completely their implications. E.g. just because a timeout runs out, doesn't mean the waiting thread starts to run to evaluate the error - which by the time the thread runs indeed might be obsolete
-
I didn't find anything about what happens when giving a semaphore that has already reached its max count. I believe, nothing happens, ie. the calling thread stills see SUCCESS, just the counter isn't incremented any further.
| UID: ZEP-SEMAPHORE-005 | ||
| STATUS: Draft | ||
| TYPE: Functional | ||
| COMPONENT: Semaphore |
There was a problem hiding this comment.
nitpick: Should probably read Counting Semaphore
| UID: ZEP-SEMAPHORE-007 | ||
| STATUS: Draft | ||
| TYPE: Functional | ||
| COMPONENT: Semaphore |
| UID: ZEP-SEMAPHORE-010 | ||
| STATUS: Draft | ||
| TYPE: Functional | ||
| COMPONENT: Semaphore |
| COMPONENT: Semaphore | ||
| TITLE: Semaphore Timeout | ||
| STATEMENT: >>> | ||
| When attempting to take (acquire) a semaphore, the Zephyr RTOS shall accept options that specify timeout periods, allowing threads to set a maximum wait time for semaphore acquisition. |
There was a problem hiding this comment.
suggestion: strictly speaking semaphores could also be taken from ISRs when they K_NO_WAIT, so it's not solely about threads. That's why I was proposing a more generic term such as task or control flow entity to cover such corner cases. For now it's probably fine to leave as is and we can revisit later.
| COMPONENT: Semaphore | ||
| TITLE: Maximum limit of a semaphore | ||
| STATEMENT: >>> | ||
| When a semaphore is used for counting purposes and when the semaphore does not have an explicit |
There was a problem hiding this comment.
issue: What other purposes are Counting Semaphores use for than counting? Also I am pretty sure that the maximum limit cannot be avoided as per our current implementation.
| - resume the waiting thread; | ||
| - indicate TIMEDOUT to the waiting thread; | ||
| - reschedule the waiting thread. | ||
|
|
There was a problem hiding this comment.
thought: there is an interesting question here: what happens if by means of a timeout a waiting thread becomes runnable again but can't run for some more time in which the semaphore now is given ... shall it then return TIMEOUT or SUCCESS?
| UID: ZEP-SEMAPHORE-009 | ||
| STATUS: Draft | ||
| TYPE: Functional | ||
| COMPONENT: Semaphore |
| STATUS: Draft | ||
| TYPE: Functional | ||
| COMPONENT: Counting Semaphore | ||
| TITLE: Semaphore Give while Thread Waiting |
There was a problem hiding this comment.
suggestion: while threads are waiting
| COMPONENT: Counting Semaphore | ||
| TITLE: Semaphore Give while Thread Waiting | ||
| STATEMENT: >>> | ||
| While a thread is waiting for a Counting Semaphore, |
There was a problem hiding this comment.
suggestion: there can be one more more threads waiting for the semaphore
| UID: ZEP-SEMAPHORE-006 | ||
| STATUS: Draft | ||
| TYPE: Functional | ||
| COMPONENT: Semaphore |
|
As discussed at the SWG meeting 02.05.2024, this PR is being closed. The only source of truth for the new semaphore requirements is: #30. |
As discussed on the meeting last week, I would like to open this combined PR for review.
The contents:
----. Let's pick the wording that works best.Some notes: