Question of the Week: Do you use or allow dynamic memory allocation in your embedded design?

My experience from the embedded world (only one 'real' project so far). Good clean object oriented C++, lower layer C wrapped up for easy C++ access. NO DYNAMIC memory allocations used. But the machine was very limited with resources.

My experience from the embedded world (only one 'real' project so far). Good clean object oriented C++, lower layer C wrapped up for easy C++ access. NO DYNAMIC memory allocations used. But the machine was very limited with resources.

Like a previous poster, I have never designed an embedded device where system failure was an acceptable performance metric (This ain't Windows). In my present industry (UPSs), the typical system is installed by the customer, turned on, and may run until it is retired (5-7 years) without a re-boot; making it extremely intolerant of memory leaks. I also follow a personal standard that if you run out of a resource, the device must degrade gracefully. For example, I must maintain a log of past events that the customer can scroll through on the front panel. Making it finite in length forces me to confront the only choices when I run out of RAM: - Stop logging, or - Overwrite the oldest event. Dynamic allocation schemes make it much more difficult to handle such scenarios and increase the chance of a catastrophic failure.

Like a previous poster, I have never designed an embedded device where system failure was an acceptable performance metric (This ain't Windows). In my present industry (UPSs), the typical system is installed by the customer, turned on, and may run until it is retired (5-7 years) without a re-boot; making it extremely intolerant of memory leaks. I also follow a personal standard that if you run out of a resource, the device must degrade gracefully. For example, I must maintain a log of past events that the customer can scroll through on the front panel. Making it finite in length forces me to confront the only choices when I run out of RAM: - Stop logging, or - Overwrite the oldest event. Dynamic allocation schemes make it much more difficult to handle such scenarios and increase the chance of a catastrophic failure.

We only allow dynamic allocation... never allowed to let it go.

We only allow dynamic allocation... never allowed to let it go.

I use dynamic memory, but I use the dynamic memory in private heaps. Private heaps allow only a few function to use it and it can be reset without taking down the entire system. Construction of private heaps are easy as the code example in page 140- 150 of the K & R book

I use dynamic memory, but I use the dynamic memory in private heaps. Private heaps allow only a few function to use it and it can be reset without taking down the entire system. Construction of private heaps are easy as the code example in page 140- 150 of the K & R book

My designs all have 100% uptime requirements (I am not allowed to count on the user ever restarting the system during the lifetime of the product). The risks of a memory leak outweighs the benefits of dynamic memory allocation in my applications. I do use library functions, but my compiler vendor has lived in the deeply embedded world for a long time (Keil). In addition, we are careful to avoid using function that involve dynamic memory allocation. We also code in C not C++. We do write OO code, but manually encapsulate data and methods instead of using C++ constructs.

My designs all have 100% uptime requirements (I am not allowed to count on the user ever restarting the system during the lifetime of the product). The risks of a memory leak outweighs the benefits of dynamic memory allocation in my applications. I do use library functions, but my compiler vendor has lived in the deeply embedded world for a long time (Keil). In addition, we are careful to avoid using function that involve dynamic memory allocation. We also code in C not C++. We do write OO code, but manually encapsulate data and methods instead of using C++ constructs.

NFW. One crash in machine control takes out hundreds of dollars in tooling. Just to save $3 in RAM? And if you need more RAM than $10 worth of RAM in a real time system, it's time to fire the firmware people.

NFW. One crash in machine control takes out hundreds of dollars in tooling. Just to save $3 in RAM? And if you need more RAM than $10 worth of RAM in a real time system, it's time to fire the firmware people.