Presentation is loading. Please wait.

Presentation is loading. Please wait.

G22.3250-001 Robert Grimm New York University Extensibility: SPIN and exokernels.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "G22.3250-001 Robert Grimm New York University Extensibility: SPIN and exokernels."— Presentation transcript:

1 G22.3250-001 Robert Grimm New York University Extensibility: SPIN and exokernels

2 Preliminaries  Please remember one reading summary per paper!  Reviews are an essential component of this class  Project, milestone 1  Due 2/8/05 before class  PDF, emailed to me  Project proposal and related work in one (~3 pages)  What is the problem? Why does it matter?  What is your overall solution? What are non-goals?  What resource do you need?  What have others done in that domain and related domains?

3 The Three Questions  What is the problem?  What is new or different?  What are the contributions and limitations?

4 OS Abstraction Barrier  Fixed high-level abstractions  Hurt application performance  Hide information  Limit functionality  Examples  Buffer cache management  Persistent storage

5 Goals  Extensibility  Applications introduce specialized services  Safety  Kernel, applications, services are protected  Performance  Extensibility and safety have low cost

6 Why Is This Hard?

7 Two Approaches

8 SPIN Approach  Put extension code in the kernel  Cheap communication  Use language protection features  Static safety  Dynamically impose on any service  Fine-grained extensibility

9 The Big Picture

10 Modula-3  Type-safe programming language  Interfaces  Garbage collection  Other features  Objects, generic interfaces, threads, exceptions  Most of kernel written in Modula-3  Drivers “borrowed” from DEC OSF/1  Extensions must be written in Modula-3  User-space applications written in any language

11 Safety  Capabilities  Simply a pointer  Can we pass capabilities to user-land?  Protection domains  Language-level  Limit visibility of names  Enforced at dynamic link time

12 Extensibility  Extension model  Events  Indicate the occurrence of some condition  Event handlers  May execute synchronously, asynchronously, or in bounded time  Guards  Restrict invocation of event handlers based on arguments  Mechanism  Event dispatcher  Common case: an (indirect) procedure call  Module implementing the interface

13 Core Services  Memory management  Physical addresses  Virtual addresses  Translations  Thread management  Signals to scheduler  Block, unblock  Signals to thread manager  Checkpoint, resume

14 Performance  It works

15 Exokernels Approach  Make the application do it!

16 Exokernels Approach (again)  Separate protection and management  Expose allocation  Expose names  Expose revocation  Expose information

17 The Big Picture

18 At The Core  Processor time slices  Processor environments  Hardware exceptions (Aegis, Xok)  Timer interrupts (Aegis, Xok)  Protected entries (Aegis, Xok)  Addressing  Aegis: Guaranteed mappings, applications notified of TLB misses  Xok: Hardware page tables, applications specify mappings  Hierarchical capabilities (Xok only)  Book keeping Aegis: MIPS-based DECstations Xok: x86-based PCs

19 How to Protect Shared Abstractions?  Software regions  Provide access to memory only through system calls  Are typically more fine-grained than pages  Hierarchically-named capabilities  Easily restrict access  Wakeup predicates  Ensure that processes get their time in the limelight  Robust critical sections  Provides isolation with low overhead and without requiring cooperation

20 Separate Protection and Management: The Disk  Problem  How to store meta-data?  Ownership of disk blocks  Failed approaches  Simple capabilities  Where to put the capabilities? In the block? A separate area?  Self-descriptive meta-data  How expressive is the description language?  How much space is used for descriptions?  Template-based descriptions  Again, how expressive is the description language?

21 The Disk (cont.)  Untrusted deterministic functions  Programmatic templates that specify pointed-to blocks  Shared data  System-wide buffer cache registry  Entries can be locked  Ordered disk writes  Ensure consistency after crash  Never reuse on-disk resource before nullifying pointers  Never create pointers before pointed-to data has been initialized  Never reset old pointer before new one has been set

22 Performance  It works  It scales

23 Issues  SPIN  Trusted compiler  Resource control

24 Issues (cont.)  Exokernels  Extension model  Downloaded code  Wakeup predicates  Dynamic packet filters  Application-specific handlers  Untrusted deterministic functions  Complexity of disk management

25 What Do You Think?

Download ppt "G22.3250-001 Robert Grimm New York University Extensibility: SPIN and exokernels."

Similar presentations

CS533 Concepts of Operating Systems Class 14 Virtualization and Exokernels.

CS533 Concepts of Operating Systems Class 14 Virtualization and Exokernels.
More on Processes Chapter 3. Process image _the physical representation of a process in the OS _an address space consisting of code, data and stack segments.

More on Processes Chapter 3. Process image _the physical representation of a process in the OS _an address space consisting of code, data and stack segments.
Department of Computer Science and Engineering University of Washington Brian N. Bershad, Stefan Savage, Przemyslaw Pardyak, Emin Gun Sirer, Marc E. Fiuczynski,

Department of Computer Science and Engineering University of Washington Brian N. Bershad, Stefan Savage, Przemyslaw Pardyak, Emin Gun Sirer, Marc E. Fiuczynski,
G22.3250-001 Robert Grimm New York University Virtual Memory.

G Robert Grimm New York University Virtual Memory.
EXTENSIBILITY, SAFETY AND PERFORMANCE IN THE SPIN OPERATING SYSTEM B. Bershad, S. Savage, P. Pardyak, E. G. Sirer, D. Becker, M. Fiuczynski, C. Chambers,

EXTENSIBILITY, SAFETY AND PERFORMANCE IN THE SPIN OPERATING SYSTEM B. Bershad, S. Savage, P. Pardyak, E. G. Sirer, D. Becker, M. Fiuczynski, C. Chambers,
Extensibility, Safety and Performance in the SPIN Operating System Presented by Allen Kerr.

Extensibility, Safety and Performance in the SPIN Operating System Presented by Allen Kerr.
Exokernel: An Opertion System Architecture for Application-Level Resource Management SIGCOMM ’ 96, PDOS-MIT Presented by Ahn Seunghoon Dawson R. Engler,

Exokernel: An Opertion System Architecture for Application-Level Resource Management SIGCOMM ’ 96, PDOS-MIT Presented by Ahn Seunghoon Dawson R. Engler,
Extensibility, Safety and Performance in the SPIN Operating System Brian Bershad, Stefan Savage, Przemyslaw Pardyak, Emin Gun Sirer, David Becker, Marc.

Extensibility, Safety and Performance in the SPIN Operating System Brian Bershad, Stefan Savage, Przemyslaw Pardyak, Emin Gun Sirer, David Becker, Marc.
Extensibility, Safety and Performance in the SPIN Operating System Department of Computer Science and Engineering, University of Washington Brian N. Bershad,

Extensibility, Safety and Performance in the SPIN Operating System Department of Computer Science and Engineering, University of Washington Brian N. Bershad,
Presented By Srinivas Sundaravaradan. MACH µ-Kernel system based on message passing Over 5000 cycles to transfer a short message Buffering IPC L3 Similar.

Presented By Srinivas Sundaravaradan. MACH µ-Kernel system based on message passing Over 5000 cycles to transfer a short message Buffering IPC L3 Similar.
Extensible Kernels Edgar Velázquez-Armendáriz September 24 th 2009.

Extensible Kernels Edgar Velázquez-Armendáriz September 24 th 2009.
G22.3250-001 Robert Grimm New York University Lightweight RPC.

G Robert Grimm New York University Lightweight RPC.
G22.3250-001 Robert Grimm New York University Extensibility: SPIN and exokernels.

G Robert Grimm New York University Extensibility: SPIN and exokernels.
Extensibility, Safety and Performance in the SPIN Operating System B. N. Bershad, S. Savage, P. Pardyak, E. G. Sirer, M. E. Fiuczyski, D. Becker, C. Chambers,

Extensibility, Safety and Performance in the SPIN Operating System B. N. Bershad, S. Savage, P. Pardyak, E. G. Sirer, M. E. Fiuczyski, D. Becker, C. Chambers,
G22.3250-001 Robert Grimm New York University Opal.

G Robert Grimm New York University Opal.
490dp Synchronous vs. Asynchronous Invocation Robert Grimm.

490dp Synchronous vs. Asynchronous Invocation Robert Grimm.
Extensibility, Safety and Performance in the SPIN Operating System Brian Bershad, Stefan Savage, Przemyslaw Pardyak, Emin Gun Sirer, Marc E. Fiuczynski,

Extensibility, Safety and Performance in the SPIN Operating System Brian Bershad, Stefan Savage, Przemyslaw Pardyak, Emin Gun Sirer, Marc E. Fiuczynski,
Figure 2.8 Compiler phases. 2.8.1 Compiling. Figure 2.9 Object module. 2.8.2 Linking.

Figure 2.8 Compiler phases Compiling. Figure 2.9 Object module Linking.
Dawson R. Engler, M. Frans Kaashoek, and James O’Toole Jr.

Dawson R. Engler, M. Frans Kaashoek, and James O’Toole Jr.
Extensibility, Safety and Performance in the SPIN Operating System Bershad et al Presentation by norm Slides shamelessly “borrowed” from Stefan Savage’s.

Extensibility, Safety and Performance in the SPIN Operating System Bershad et al Presentation by norm Slides shamelessly “borrowed” from Stefan Savage’s.

Similar presentations

Ads by Google