Presentation is loading. Please wait.

Presentation is loading. Please wait.

1 Immediate Multi-Threaded Dynamic Software Updates Using Stack Reconstruction Kristis Makris Rida A. Bazzi

Published byAleesha Todd Modified over 7 years ago

Similar presentations

Presentation on theme: "1 Immediate Multi-Threaded Dynamic Software Updates Using Stack Reconstruction Kristis Makris Rida A. Bazzi"— Presentation transcript:

1 1 Immediate Multi-Threaded Dynamic Software Updates Using Stack Reconstruction Kristis Makris Rida A. Bazzi {makristis,bazzi}@asu.edu

2 2 Motivation Software update problem: replace old version with new version Traditional approach is static: – stop, update, restart – Impairs high-availability Dynamic software update (DSU) can help minimize downtime

3 3 main f g h f Stack Execution trace g request update h g

4 4 main f g h f Stack Execution trace g request update h g h g f ? g g

5 5 Type-safety: No old code executed on new data; and vice versa typedef struct { char name[64]; float balance; } customer_record_v1_t; old version typedef struct { char name[64]; int number_of_accesses; float balance; } customer_record_v2_t; new version 0.0 John memory alignment f() writes balance = 145.0 145.0 0 John memory alignment 145 g() is called data are transformed g() writes balance = 160.0 160 g() returns; f() executes f() reads incorrect balance = 0

6 6 main f g h f Stack Execution trace g request update h g h g f g h g f main Is old version in valid state ? Is there a valid mapping ? Undecidable problem – Need user input Should provide useful safety guarantees

7 7 main f g h f Stack Execution trace g request update h g h g f g h g f main f g h update finished Undecidable problem – Need user input Should provide useful safety guarantees

8 8 Useful DSU Safety Guarantees Atomic update (subsumes type-safety) Transaction-safety Thread-safety

9 9 Atomic Update – At no time does the executing application expect different representations of state – After the update only new code executes over the new state; no old code ever executes again hybrid execution new version resume map state pause old version

10 10 Transaction-safety Some code executes only in old or only in new version Requires user annotations f() {... while(condition) { i(); j(); k(); }... } do not update inside region

11 11 Thread-safety while (condition) { recv(&data); process(&data); } server clients active connections new connections active connections new connections old code active connections new connections new code 1. 2. 3.

12 12 Providing thread-safety requires immediate updates – Atomic update – Bounded delay Existing DSU mechanisms do not provide support for immediate updates

13 13 Our Results First general DSU mechanism that supports – Immediate updates Atomic update Bounded delay Multi-threaded – Update active code and data – Low data-access overhead

14 14 Our Approach: UpStare Compiler, patch-generator, runtime – Insert update points – Source-to-source transformations of C programs – Architecture and OS independent Immediate multi-threaded updates – Atomic update: using stack reconstruction – Bounded delay: converting blocking calls to non-blocking – Multithreaded: safely blocking all threads

15 15 block until unroll finishes Stack Reconstruction: unrolling main() _main() a() b() c() e() f() g() main() _main() a() b() c() d() i() _i() k() m() Thread 1Thread 2Thread 3 g() f() e() c() b() a() _main() m() k() _i() d() c() b() a() _main() saved frames block all threads map global variables

16 16 Stack Reconstruction: restoring main() _main() a() b() c() e() d() main() _main() a() b() c() d() i() _i_new() k() m() Thread 1Thread 2Thread 3 g() f() e() c() b() a() _main() m() k() _i() d() c() b() a() _main() saved frames p() copy map Can update: local variables formal parameters return addresses Program Counter apply stack transformers - split functions - map continuation - merge functions together

17 17 Continuation Points main() { UPDATE_POINT(); a(); c(); g(); } a() { UPDATE_POINT(); b(); } b() { UPDATE_POINT(); d(); while(condition) { UPDATE_POINT(); e(); } main() _main() old version

18 18 Continuation Points main() { UPDATE_POINT(); a(); c(); g(); } a() { UPDATE_POINT(); b(); } b() { UPDATE_POINT(); d(); while(condition) { UPDATE_POINT(); e(); } main() _main() old version

19 19 Continuation Points main() { UPDATE_POINT(); a(); c(); g(); } a() { UPDATE_POINT(); b(); } b() { UPDATE_POINT(); d(); while(condition) { UPDATE_POINT(); e(); } main() _main() a() old version

20 20 Continuation Points main() { UPDATE_POINT(); a(); c(); g(); } a() { UPDATE_POINT(); b(); } b() { UPDATE_POINT(); d(); while(condition) { UPDATE_POINT(); e(); } main() _main() a() old version

21 21 Continuation Points main() { UPDATE_POINT(); a(); c(); g(); } a() { UPDATE_POINT(); b(); } b() { UPDATE_POINT(); d(); while(condition) { UPDATE_POINT(); e(); } main() _main() a() b() old version

22 22 Continuation Points main() { UPDATE_POINT(); a(); c(); g(); } a() { UPDATE_POINT(); b(); } b() { UPDATE_POINT(); d(); while(condition) { UPDATE_POINT(); e(); } main() _main() a() b() d() old version

23 23 Continuation Points main() { UPDATE_POINT(); a(); c(); g(); } a() { UPDATE_POINT(); b(); } b() { UPDATE_POINT(); d(); while(condition) { UPDATE_POINT(); e(); } main() _main() a() b() old version

24 24 Continuation Points main() { UPDATE_POINT(); a(); c(); g(); } a() { UPDATE_POINT(); b(); } b() { UPDATE_POINT(); // CP 1 d(); // CP 2 while(condition) { UPDATE_POINT(); // CP 3 e(); // CP 4 } main() _main() a() b() Saved continuation points: b_CP_3 initiate an update old version

25 25 Continuation Points main() { UPDATE_POINT(); a(); c(); g(); } a() { UPDATE_POINT(); // CP 1 b(); // CP 2 } main() _main() a() Saved continuation points: b_CP_3 a_CP_2

26 26 Continuation Points main() { UPDATE_POINT(); // CP 1 a(); // CP 2 c(); // CP 3 g(); // CP 4 } main() _main() Saved continuation points: b_CP_3 a_CP_2 _main_CP_2

27 27 Continuation Points main() _main() Saved continuation points: b_CP_3 a_CP_2 _main_CP_2 Restored continuation points: _main_CP_2 main() { UPDATE_POINT(); a(); // CP 2 c(); g(); } new version

28 28 Continuation Points main() _main() Saved continuation points: b_CP_3 a_CP_2 _main_CP_2 Restored continuation points: _main_CP_2 new version main() { UPDATE_POINT(); a(); // CP 2 c(); g(); } a() { UPDATE_POINT(); b(); // CP 2 } a() a_CP_2

29 29 main() { UPDATE_POINT(); a(); c(); g(); } a() { UPDATE_POINT(); b(); } b() { UPDATE_POINT(); // CP 1 d(); // CP 2 f(); // CP 3 while(condition) { UPDATE_POINT(); // CP 4 e(); // CP 5 } Continuation Points main() _main() a() Saved continuation points: b_CP_3 a_CP_2 _main_CP_2 Restored continuation points: _main_CP_2 a_CP_2 b_CP_4 b() new version

30 30 Multi-Threaded Updates HAS lock L WANTS lock L voluntarily blocked blocked Thread 1Thread 2 LOCK(L); UPDATE_POINT(); LOCK(L); Detect if all threads are blocked Treat locks as update points Multi-Process Updates wrap fork(), wait(), waitpid() coordinate atomic reconstruction

31 31 Bounded Delay SOME DATA 0000000000 stack data buffer YYYYYYYYY YY ZZZZZZZZZZ other data functionA() { char data[SIZE];... recv(FD, &data);... } heap SOME DATA 0000000000 save issue non-blocking XXXXXXXXX SOME DATA MORE DATA 0000000000 voluntarily block restore SOME DATA MORE DATA 0000000000 RECV(FD,&data); SELECT(FD); UPDATE_POINT(); RECV_FINISH(FD,&data);

32 32 Evaluation KissFFT – Small, data-intensive application (2,000 LoC) Very Secure FTP Daemon – Medium-sized application (12,000 LoC) – Forks non-communicating connection handlers PostgreSQL DBMS – Large application (postmaster: 225,000 LoC) – Forks communicating connection handlers Shared Memory

33 33 KissFFT v1.2.0 Overhead – Execution time: 38%; faster than Ginseng (150%) functionA functionB uninstrumented version desired optimization outside.text segment code for restoring instrumented version code for unrolling code for update points

34 34 Very Secure FTP Daemon Updates – Under two use cases: idle client, file transfer – 13 updates (5.5 years-worth) – 11 manual continuation mappings – Latency 60ms (50ms to block all threads) Overhead – Latency: retrieve a 32-byte file 1000 times – Throughput: retrieve a 300MB file – In-memory and on-disk, over cross-over cable

35 35 vsFTPd Overhead Latency: 16-17% (1.6ms); throughput: 0%

36 36 PostgreSQL DBMS Updates – 1 update: v7.4.16 to v7.4.17 – No manual continuation points; latency 60ms Overhead – Latency: run 1 transaction 1000 times – Throughput: “TPC-B like” pgbench; 100,000 txs – In-memory and on-disk, over cross-over cable

37 37 PostgreSQL Latency Latency: 89-97% (22.5ms)

38 38 PostgreSQL Throughput Throughput: 41% in-memory; 26% on-disk

39 39 Related Work Application DSU – OPUS: Small, isolated, feature-less updates – POLUS: Cannot update local variables – Ginseng: Data-access indirection Kernel DSU – DynAMOS,KSplice Data-access indirection; limited safety – K42: Immediate updates; specially crafted

40 40 On-going and Future Work Move cold code at end of process image Automatically map pointers – Developed in previous work; not integrated yet Runtime safety checking – Transaction-safety through dynamic stack tracing Temporary overhead 10-12% Semantic analysis – Identify nature of updates and prove correctness – Reduce user input Update in-transit data and files

41 41 Conclusion UpStare: Dynamic Software Updating – Source-to-source transformation of C applications – Useful safety guarantees Stack reconstruction – Update active code and data atomically – No data-access indirection Multi-threaded and multi-process updates Immediate updates – Convert blocking calls to non-blocking Demonstrated updates – vsFTPd: 13 updates (5.5 years-worth); 12,000 LOC – PostgreSQL v7.4.16; over 200,000 LOC Low overhead (0-26%); unoptimized

42 42 Questions ?

Download ppt "1 Immediate Multi-Threaded Dynamic Software Updates Using Stack Reconstruction Kristis Makris Rida A. Bazzi"

Similar presentations

More on Processes Chapter 3. Process image _the physical representation of a process in the OS _an address space consisting of code, data and stack segments.

More on Processes Chapter 3. Process image _the physical representation of a process in the OS _an address space consisting of code, data and stack segments.
Dynamic Software Updates: The State Mapping Problem Rida A. Bazzi Kristis Makris Peyman Nayeri Jun Shen ARIZONA STATE UNIVERSITY.

Dynamic Software Updates: The State Mapping Problem Rida A. Bazzi Kristis Makris Peyman Nayeri Jun Shen ARIZONA STATE UNIVERSITY.
R4 Dynamically loading processes. Overview R4 is closely related to R3, much of what you have written for R3 applies to R4 In R3, we executed procedures.

R4 Dynamically loading processes. Overview R4 is closely related to R3, much of what you have written for R3 applies to R4 In R3, we executed procedures.
The Interface Definition Language for Fail-Safe C Kohei Suenaga, Yutaka Oiwa, Eijiro Sumii, Akinori Yonezawa University of Tokyko.

The Interface Definition Language for Fail-Safe C Kohei Suenaga, Yutaka Oiwa, Eijiro Sumii, Akinori Yonezawa University of Tokyko.
The Kernel Abstraction. Challenge: Protection How do we execute code with restricted privileges? – Either because the code is buggy or if it might be.

The Kernel Abstraction. Challenge: Protection How do we execute code with restricted privileges? – Either because the code is buggy or if it might be.
1 Created by Another Process Reason: modeling concurrent sub-tasks Fetch large amount data from network and process them Two sub-tasks: fetching  processing.

1 Created by Another Process Reason: modeling concurrent sub-tasks Fetch large amount data from network and process them Two sub-tasks: fetching  processing.
Day 10 Threads. Threads and Processes  Process is seen as two entities Unit of resource allocation (process or task) Unit of dispatch or scheduling (thread.

Day 10 Threads. Threads and Processes  Process is seen as two entities Unit of resource allocation (process or task) Unit of dispatch or scheduling (thread.
Presented By Srinivas Sundaravaradan. MACH µ-Kernel system based on message passing Over 5000 cycles to transfer a short message Buffering IPC L3 Similar.

Presented By Srinivas Sundaravaradan. MACH µ-Kernel system based on message passing Over 5000 cycles to transfer a short message Buffering IPC L3 Similar.
Contiki A Lightweight and Flexible Operating System for Tiny Networked Sensors Presented by: Jeremy Schiff.

Contiki A Lightweight and Flexible Operating System for Tiny Networked Sensors Presented by: Jeremy Schiff.
Processes CSCI 444/544 Operating Systems Fall 2008.

Processes CSCI 444/544 Operating Systems Fall 2008.
Precept 3 COS 461. Concurrency is Useful Multi Processor/Core Multiple Inputs Don’t wait on slow devices.

Precept 3 COS 461. Concurrency is Useful Multi Processor/Core Multiple Inputs Don’t wait on slow devices.
Threads 1 CS502 Spring 2006 Threads CS-502 Spring 2006.

Threads 1 CS502 Spring 2006 Threads CS-502 Spring 2006.
Run-Time Storage Organization

Run-Time Storage Organization
Threads CSCI 444/544 Operating Systems Fall 2008.

Threads CSCI 444/544 Operating Systems Fall 2008.
Threads. Processes and Threads  Two characteristics of “processes” as considered so far: Unit of resource allocation Unit of dispatch  Characteristics.

Threads. Processes and Threads  Two characteristics of “processes” as considered so far: Unit of resource allocation Unit of dispatch  Characteristics.
PRASHANTHI NARAYAN NETTEM.

PRASHANTHI NARAYAN NETTEM.
CS533 Concepts of Operating Systems Class 9 Lightweight Remote Procedure Call (LRPC) Rizal Arryadi.

CS533 Concepts of Operating Systems Class 9 Lightweight Remote Procedure Call (LRPC) Rizal Arryadi.
CSE 451: Operating Systems Autumn 2013 Module 6 Review of Processes, Kernel Threads, User-Level Threads Ed Lazowska 570 Allen.

CSE 451: Operating Systems Autumn 2013 Module 6 Review of Processes, Kernel Threads, User-Level Threads Ed Lazowska 570 Allen.
1 Lecture 4: Threads Operating System Fall 2006. 2 Contents Overview: Processes & Threads Benefits of Threads Thread State and Operations User Thread.

1 Lecture 4: Threads Operating System Fall Contents Overview: Processes & Threads Benefits of Threads Thread State and Operations User Thread.
Process Introspection: A Checkpoint Mechanism for High Performance Heterogeneous Distributed Systems. University of Virginia. Author: Adam J. Ferrari.

Process Introspection: A Checkpoint Mechanism for High Performance Heterogeneous Distributed Systems. University of Virginia. Author: Adam J. Ferrari.

Similar presentations

Ads by Google