Presentation is loading. Please wait.

Presentation is loading. Please wait.

A Virtual Instruction Set Interface for Operating System Kernels John Criswell, Brent Monroe, Vikram Adve University of Illinois at Urbana-Champaign.

Published byRoger Price Modified over 8 years ago

Similar presentations

Presentation on theme: "A Virtual Instruction Set Interface for Operating System Kernels John Criswell, Brent Monroe, Vikram Adve University of Illinois at Urbana-Champaign."— Presentation transcript:

1 A Virtual Instruction Set Interface for Operating System Kernels John Criswell, Brent Monroe, Vikram Adve University of Illinois at Urbana-Champaign

2 Outline Motivation LLVA-OS Design Hardware Control State Manipulation Preliminary Performance Results

3 Motivation OS/Hardware interface is non-standard & often machine code Difficult to analyze OS difficult to infer all control flow information some type information lost no ability to track virtual memory map changes Difficult to adapt OS memory safety transforms (SAFECode) changes in processor instruction set Difficult for hardware to infer OS behavior context switching

4 Motivation Solution: decouple program representation (Virtual ISA) from hardware control (Native ISA) Execution Engine translates between Virtual ISA and Native ISA Virtual ISA design aids software analysis and transformation Software Hardware Execution Engine Virtual ISA Native ISA

5 LLVA Code Example [MICRO 03, CGO 04] ;; LLVA Translated Code int %SumArray(int* %Array, int %Num) { bb1: %cond = setgt int %Num, 0 br bool %cond, label %bb2, label %bb3 bb2: %sum0 = phi int [%tmp10, %bb2], [0, %bb1] %i0 = phi int [%inc, %bb2], [0, %bb1] %tmp7 = cast int %i0 to long %tmp8 = getelementptr int* %Array, long %tmp7 %tmp9 = load int* %tmp8 %tmp10 = add int %tmp9, %sum0 %inc = add int %i0, 1 %cond2 = setlt int %inc, %Num br bool %cond2, label %bb2, label %bb3 bb3: %sum1 = phi int [0, %bb1], [%tmp10,%bb2] ret int %sum1 } /* C Source Code */ int SumArray(int Array[], int Num) { int i, sum = 0; for (i = 0; i < Num; ++i) sum += Array[i]; return sum; } Architecture-neutral Low-level operations SSA representation Strictly-typed High-level semantic info

6 LLVA-OS: Extend LLVA to OS Kernels Kernels require new functionality Hardware Control I/O MMU State Manipulation context switching

7 Outline Motivation LLVA-OS Design Hardware Control State Manipulation Preliminary Performance Results

8 Hardware Control Registration functions void llva_register_syscall (int number, int (*f)(…)) void llva_register_interrupt (int number, int (*f)(void * icontext)) void llva_register_exception (int number, int (*f)(void * icontext)) I/O int llva_io_read (void * ioaddress) void llva_io_write (void * ioaddress, int value) Memory Management void llva_load_pgtable (void * table) void * llva_save_pgtable ()

9 Outline Motivation LLVA-OS Design Hardware Control State Manipulation Preliminary Performance Results

10 Virtual and Native State Virtual State Virtual Registers Program Counter Privilege Mode Interrupt Flag Stack Pointer MMU State Native State General Purpose Registers Control Registers MMU Registers

11 Challenges with Virtual State Mapping between virtual state and native state changes over short time intervals, requiring a large mapping structure Manipulating virtual state is cumbersome Many virtual registers per function Many virtual registers are dead

12 State Saving/Restoring Instructions Solution: Expose existence of native state Define native state based on correlation to virtual state integer state floating point (FP) state Instructions void llva_save_integer (void * buffer) void llva_load_integer (void * buffer) void llva_save_fp (void * buffer, bool save_always) void llva_load_fp (void * buffer)

13 Interrupted Program State Execution Engine must save program state when entering the OS Problem: Want to minimize the amount of state saved No need to save FP state How do we use low latency interrupt facilities shadow registers (e.g. ARM) register windows (e.g. SPARC)

14 GPR 1: 0xBEEF0000 ControlReg 2: 0x4EF23465 ControlReg 1: 0xC025E525 Solution: Interrupt Context Definition: Reserved space on kernel stack Conceptually: the saved Integer State of the interrupted program On interrupt, Execution Engine saves subset of Integer State on the kernel stack Can leave state in registers if kernel does not overwrite it Kernel can convert Interrupt Context to/from Integer State Pointer to Interrupt Context passed to system call, interrupt, and trap handlers Kernel StackProcessor ControlReg 1: 0xC025E525 GPR 1: 0xBEEF0000 ControlReg 2: 0x4EF23465 GPR N: 0x00000000 GPR N: 0x00000000

15 Manipulating Interrupt Context Push function frames void llva_ipush_function (void * icontext, void (*f)(…), …) Interrupt Context  Integer State void llva_icontext_save (void * icontext, void * buffer void llva_icontext_load (void * icontext, void * buffer)

16 Function 1 Example: Signal Handler Dispatch Save program state with llva_icontext_save () Save FP state with llva_save_fp () Push new function frame on to program stack with llva_ipush_function () Interrupt Context Signal Handler Stack User SpaceKernel Space Stack Heap Processor FP Registers Other Registers Trap Handler

17 Outline Motivation LLVA-OS Design Hardware Control State Manipulation Preliminary Performance Results

18 LLVA-OS Prototype LLVA-OS C and i386 assembly code for Pentium 3 Compiled to native code library ahead of time Some instructions inlined through header files Linux 2.4.22 port to LLVA-OS Like a port to a new architecture Inline assembly replaced with LLVA-OS instructions Compiled with GCC and linked with LLVA-OS library

19 Performance Evaluation Nano- and micro-benchmarks Based on HBench-OS benchmark suite Run for 100 iterations Identify overheads in key kernel operations Macro-benchmarks Determine impact of overheads on real application loads

20 Nanobenchmarks

21 Absolute increase in page fault latency is very small User-Kernel strcpy overhead due to inefficient strcpy routine Trap entry is faster (no VM86 mode)

22 Microbenchmarks

23 Signal Handler Dispatch overhead due to extraneous FP state loading on sigreturn() Open/Close has user to kernel strncpy() overhead

24 Microbenchmarks: Filesystem

25 Maximum overhead is 2% Benchmark reads file using repeated read() calls No I/O overhead (file in buffer cache)

26 Microbenchmarks: TCP

27 Maximum overhead is 21% Server process reads at least 10 MB from client process

28 Performance: Macrobenchmarks

29 WebStone: standard workload Less than 8% overhead to thttpd

30 Performance: Macrobenchmarks 1.01% overhead Primarily CPU bound process

31 Future Work Performance tuning of LLVA-OS implementation Framework for providing additional security Memory safety for OS kernel Protect application memory from kernel Translator enforced system call policies Install time privilege bracketing

32 Acknowledgements Pierre Salverda David Raila LLVM Developers, past and present The Reviewers And all the others who gave us feedback and input

33 Summary LLVA-OS uses novel approaches to virtualize state manipulation More tuning to the implementation is necessary but possible Linux on LLVA-OS No assembly code Many compiler opportunities

Download ppt "A Virtual Instruction Set Interface for Operating System Kernels John Criswell, Brent Monroe, Vikram Adve University of Illinois at Urbana-Champaign."

Similar presentations

Secure In-VM Monitoring Using Hardware Virtualization Monirul Sharif, Wenke Lee, Weidong Cui, and Andrea Lanzi Presented by Tyler Bletsch.

Secure In-VM Monitoring Using Hardware Virtualization Monirul Sharif, Wenke Lee, Weidong Cui, and Andrea Lanzi Presented by Tyler Bletsch.
MODERN OPERATING SYSTEMS Third Edition ANDREW S. TANENBAUM Chapter 3 Memory Management Tanenbaum, Modern Operating Systems 3 e, (c) 2008 Prentice-Hall,

MODERN OPERATING SYSTEMS Third Edition ANDREW S. TANENBAUM Chapter 3 Memory Management Tanenbaum, Modern Operating Systems 3 e, (c) 2008 Prentice-Hall,
Chapter 6 Limited Direct Execution

Chapter 6 Limited Direct Execution
Figure 2.8 Compiler phases. 2.8.1 Compiling. Figure 2.9 Object module. 2.8.2 Linking.

Figure 2.8 Compiler phases Compiling. Figure 2.9 Object module Linking.
OS Fall ’ 02 Introduction Operating Systems Fall 2002.

OS Fall ’ 02 Introduction Operating Systems Fall 2002.
OS Spring’03 Introduction Operating Systems Spring 2003.

OS Spring’03 Introduction Operating Systems Spring 2003.
Unix & Windows Processes 1 CS502 Spring 2006 Unix/Windows Processes.

Unix & Windows Processes 1 CS502 Spring 2006 Unix/Windows Processes.
KVM/ARM: The Design and Implementation of the Linux ARM Hypervisor Fall 2014 Presented By: Probir Roy.

KVM/ARM: The Design and Implementation of the Linux ARM Hypervisor Fall 2014 Presented By: Probir Roy.
OS Spring’04 Introduction Operating Systems Spring 2004.

OS Spring’04 Introduction Operating Systems Spring 2004.
Virtual Machine Monitors CSE451 Andrew Whitaker. Hardware Virtualization Running multiple operating systems on a single physical machine Examples:  VMWare,

Virtual Machine Monitors CSE451 Andrew Whitaker. Hardware Virtualization Running multiple operating systems on a single physical machine Examples:  VMWare,
Basics of Operating Systems March 4, 2001 Adapted from Operating Systems Lecture Notes, Copyright 1997 Martin C. Rinard.

Basics of Operating Systems March 4, 2001 Adapted from Operating Systems Lecture Notes, Copyright 1997 Martin C. Rinard.
CSE 451: Operating Systems Autumn 2013 Module 6 Review of Processes, Kernel Threads, User-Level Threads Ed Lazowska 570 Allen.

CSE 451: Operating Systems Autumn 2013 Module 6 Review of Processes, Kernel Threads, User-Level Threads Ed Lazowska 570 Allen.
Tanenbaum 8.3 See references

Tanenbaum 8.3 See references
1 CS503: Operating Systems Part 1: OS Interface Dongyan Xu Department of Computer Science Purdue University.

1 CS503: Operating Systems Part 1: OS Interface Dongyan Xu Department of Computer Science Purdue University.
SymCall: Symbiotic Virtualization Through VMM-to-Guest Upcalls John R. Lange and Peter Dinda University of Pittsburgh (CS) Northwestern University (EECS)

SymCall: Symbiotic Virtualization Through VMM-to-Guest Upcalls John R. Lange and Peter Dinda University of Pittsburgh (CS) Northwestern University (EECS)
System Calls 1.

System Calls 1.
Secure Virtual Architecture John Criswell, Arushi Aggarwal, Andrew Lenharth, Dinakar Dhurjati, and Vikram Adve University of Illinois at Urbana-Champaign.

Secure Virtual Architecture John Criswell, Arushi Aggarwal, Andrew Lenharth, Dinakar Dhurjati, and Vikram Adve University of Illinois at Urbana-Champaign.
Microkernels, virtualization, exokernels Tutorial 1 – CSC469.

Microkernels, virtualization, exokernels Tutorial 1 – CSC469.
Protection and the Kernel: Mode, Space, and Context.

Protection and the Kernel: Mode, Space, and Context.
CS533 Concepts of Operating Systems Jonathan Walpole.

CS533 Concepts of Operating Systems Jonathan Walpole.

Similar presentations

Ads by Google