Modern systems: Extensible Kernels and Containers

Slides:



Advertisements
Similar presentations
Northwestern University 2007 Winter – EECS 443 Advanced Operating Systems Exokernel: An Operating System Architecture for Application-Level Resource Management.
Advertisements

CS533 Concepts of Operating Systems Class 14 Virtualization and Exokernels.
Department of Computer Science and Engineering University of Washington Brian N. Bershad, Stefan Savage, Przemyslaw Pardyak, Emin Gun Sirer, Marc E. Fiuczynski,
XEN AND THE ART OF VIRTUALIZATION Paul Barham, Boris Dragovic, Keir Fraser, Steven Hand, Tim Harris, Alex Ho, Rolf Neugebauer, lan Pratt, Andrew Warfield.
Extensibility, Safety and Performance in the SPIN Operating System Presented by Allen Kerr.
Exokernel: An Opertion System Architecture for Application-Level Resource Management SIGCOMM ’ 96, PDOS-MIT Presented by Ahn Seunghoon Dawson R. Engler,
Background Computer System Architectures Computer System Software.
Extensibility, Safety and Performance in the SPIN Operating System Department of Computer Science and Engineering, University of Washington Brian N. Bershad,
Extensible Kernels: Exokernel and SPIN Presented by Hakim Weatherspoon (Based on slides from Edgar Velázquez-Armendáriz and Ken Birman)
Extensible Kernels Edgar Velázquez-Armendáriz September 24 th 2009.
CS533 Concepts of Operating Systems Class 7 Virtualization and Exokernels.
Extensibility, Safety and Performance in the SPIN Operating System Brian Bershad, Stefan Savage, Przemyslaw Pardyak, Emin Gun Sirer, Marc E. Fiuczynski,
Dawson R. Engler, M. Frans Kaashoek, and James O’Toole Jr.
Extensibility, Safety and Performance in the SPIN Operating System Bershad et al Presentation by norm Slides shamelessly “borrowed” from Stefan Savage’s.
Dawson R. Engler, M. Frans Kaashoek, and James O'Tool Jr.
Extensibility, Safety and Performance in the SPIN Operating System Brian Bershad, Stefan Savage, Przemyslaw Pardyak, Emin Gun Sirer, Marc E. Fiuczynski,
1 Extensible Kernels Ken, with slides by Amar Phanishayee.
Microkernels: Mach and L4
Dawson Engler, Frans Kaashoek, James O’Toole
Exokernel: An Operating System Architecture for Application-Level Resource Management Dawson R. Engler, M. Frans Kaashoek, and James O’Toole Jr. M.I.T.
Extensible Kernels Mingsheng Hong. OS Kernel Types Monolithic Kernels Microkernels – Flexible (?) – Module Design – Reliable – Secure Extensible Kernels.
CS533 Concepts of OS Class 16 ExoKernel by Constantia Tryman.
1 Extensible Kernels Amar Phanishayee. 2 Traditional OS services – Management and Protection Provides a set of abstractions Processes, Threads, Virtual.
Xen and the Art of Virtualization Paul Barham, Boris Dragovic, Keir Fraser, Steven Hand, Tim Harris, Alex Ho, Rolf Neugebauer, Ian Pratt, Andrew Warfield.
M. Frans Kaashoek, Dawson R. Engler, Gregory R. Ganger, Hector M. Bricefio, Russell Hunt, David Mazikres, Thomas Pinckney, Robert Grimm, John Jannotti.
Stack Management Each process/thread has two stacks  Kernel stack  User stack Stack pointer changes when exiting/entering the kernel Q: Why is this necessary?
Microkernels, virtualization, exokernels Tutorial 1 – CSC469.
Operating System Architectures
APPLICATION PERFORMANCE AND FLEXIBILITY ON EXOKERNEL SYSTEMS M. F. Kaashoek, D. R. Engler, G. R. Ganger H. M. Briceño, R. Hunt, D. Mazières, T. Pinckney,
Paper by Engler, Kaashoek, O’Toole Presentation by Charles Haiber.
CS533 Concepts of Operating Systems Jonathan Walpole.
1 Xen and the Art of Virtualization Paul Barham, Boris Dragovic, Keir Fraser, Steven Hand, Tim Harris, Alex Ho, Rolf Neugebauer, Ian Pratt, Andrew Warfield.
Extensibility, Safety and Performance in the SPIN Operating System Ashwini Kulkarni Operating Systems Winter 2006.
Xen and the Art of Virtualization Paul Barham, Boris Dragovic, Keir Fraser, Steven Hand, Tim Harris, Alex Ho, Rolf Neugebauer, Ian Pratt, Andrew Warfield.
Exokernel: An Operating System Architecture for Application-Level Resource Management" by Dawson R. Engler, M. Frans Kaashoek, and James O'Toole Jr. Chris.
Processes Introduction to Operating Systems: Module 3.
The xCloud and Design Alternatives Presented by Lavone Rodolph.
MIT’s Exokernel Presented by Victoria Barrow Kyle Safford Sean Sommers.
EXTENSIBILITY, SAFETY AND PERFORMANCE IN THE SPIN OPERATING SYSTEM
4-Dec-15CSE 60641: Operating Systems1 -Exokernel: an operating system architecture for application-level resource management. Dawson R. Engler, M. Frans.
A. Frank - P. Weisberg Operating Systems Structure of Operating Systems.
Overview of the MIT Exokernel Operating System James Madison University CS 450 Abzug MWF 10:10-11:00 12/2/02 Steven Petzinger Billy Lehner.
Protecting The Kernel Data through Virtualization Technology BY VENKATA SAI PUNDAMALLI id :
Exokernel: An Operating System Architecture for Application-Level Resource Management By Dawson R. Engler, M. Frans Kaashoek, James O’Toole Jr. Presented.
1 Chapter 2: Operating-System Structures Services Interface provided to users & programmers –System calls (programmer access) –User level access to system.
MICROKERNELS: MACH AND L4 Hakim Weatherspoon CS
Exokernel: An Operating System Architecture for Application-Level Resource Management by Dawson R. Engler, M. Frans Kaashoek, and James O'Toole Jr. Presented.
Introduction to Operating Systems Concepts
Virtualization Technology
Operating System Structures
Operating System Structure
Presented by Yoon-Soo Lee
Performance Comparison of Virtual Machines and Containers with Unikernels Nagashree N Suprabha S Rajat Bansal.
Microkernels: mach and L4
The Mach System Sri Ramkrishna.
The Multikernel: A New OS Architecture for Scalable Multicore Systems
Extensible OSes Exokernel and SPIN (Lecture 9, cs262a)
Presentation by Omar Abu-Azzah
Xen: The Art of Virtualization
OS Virtualization.
Dawson R. Engler, M. Frans Kaashoek, and James O’Toole Jr [SOSP’97]
Modern Systems: Extensible KERNELS AND containers
Extensible OSes Exokernel and SPIN Lecture 19, cs262a
Outline Chapter 2 (cont) OS Design OS structure
EXOKERNEL Gabriel Beltran John Blackman David Martin Kurt Rohrbacher
Operating Systems Structure
Xen and the Art of Virtualization
Microkernels: mach and L4
Advanced Operating Systems (CS 202) Operating System Structure
Presentation transcript:

Modern systems: Extensible Kernels and Containers CS6410 Hakim Weatherspoon

Motivation Monolithic Kernels just aren't good enough? Conventional virtual memory isn't what userspace programs need (Appel + Li '91) Application-level control of caching gives 45% speedup (Cao et al '94) Application-specific VM increases performance (Krueger '93, Harty + Cheriton '92) Filesystems for databases (Stonebraker '81) And more...

Motivation Lots of problems…

Motivation Lots of problems…Lots of design opportunities!

Motivation Extensibility Security Performance Can we have all 3 Ability to use application specific knowledge Security Extensions should not compromise security. Applications should still be able to share resourses Performance Can we have all 3 in a single OS? From Stefan Savage’s SOSP 95 presentation

Context for these papers Researchers (mostly) were doing special purpose OS hacks Commercial market complaining that OS imposed big overheads on them OS research community began to ask what the best way to facilitate customization might be. In the spirit of the Flux OS toolkit… 2010’s containers: single-purpose appliances Unikernels: (“sealable”) single-address space Compile time specialized

Motivation 1988-1995: lots of innovation in OS development Mach 3, the first “true” microkernel SPIN, Exokernel, Nemesis, Scout, SPACE, Chorus, Vino, Amoeba, etc... And even more design papers

Motivation Exploring new spaces Distributed computing Secure computing Extensible kernels (exokernel, unikernel) Virtual machines (exokernel) New languages (spin) New memory management (exokernel, unikernel)

Exokernel Dawson R. Engler, M. Frans Kaashoek and James O’Toole Jr. Engler’s Master’s Thesis. Follow-up publications on 1997 and 2002. Kaashoek later worked on Corey.

Exokernels - Motivation Existing Systems offer fixed high-level abstractions which is bad Hurt app performance (generalization – eg: LRU) Hide information (eg: page fault) Limit functionality (infrequent changes – cool ideas don’t make it through)

Motivation (cont.) Separate protection from management, mgmt in user space Apps should use domain specific knowledge to influence OS services Small and simple kernel – adaptable and maintainable

Exokernel Kernel only multiplexes hardware resources (Aegis) Higher-level abstractions in Library OS (ExOS) Secure binding, Visible resource revocation, Abort Apps link with the LibOS of their choice Extensibility, Safety and Performance

OS Component Layout Exokernel

Exokernel main ideas Kernel Library Operating System Resource sharing, not policies Library Operating System Responsible for the abstractions IPC VM Scheduling Networking

Lib OS and the Exokernel Lib OS (untrusted) can implement traditional OS abstractions (compatibility) Efficient (Lib OS in user space) Apps link with Lib OS of their choice Kernel allows LibOS to manage resources, protects LibOss

Exokernel vs Microkenels vs VM Exokernel defines only a low-level interface. A microkernel also runs almost everything on user-level, but has fixed abstractions. A VM emulates the whole machine, doesn’t provide direct access.

Design Application-level resource management Exports hardware resources Multiplexes access between processes Separates policy from management avoid resource management!

What problems do we solve? High-level abstractions hurt application performance Hide information Limit functionality Existing monolithic kernels Encourage stable (archaic) interfaces Difficult to extend with modern techniques

How do we solve them: Design Secure bindings Downloading code Visible resource revocation The abort protocol

How do we solve them: Design Secure bindings Downloading code Visible resource revocation The abort protocol

Secure bindings Decouples authorization from use Authorize once, at “bind time” Use transferable “capabilities” to check access Cache bindings in-kernel to decrease binding frequency Example: huge software-based TLB

How do we solve them: Design Secure bindings Downloading code Visible resource revocation The abort protocol

Downloading code Userspace application produces kernel space code Access checks at download time Code is verified before being run, with JIT for speed

How do we solve them: Design Secure bindings Downloading code Visible resource revocation The abort protocol

Visible resource revocation Revocation traditionally invisible (or transparent) Expensive: have to save entire state Try visible instead! Save only the state you need Kernel gives you a few microseconds to do it

How do we solve them: Design Secure bindings Downloading code Visible resource revocation The abort protocol

Revocation: kernel asks process for resource “relinquish page 5 please” Process tracks state and returns resource Abort: kernel demands resource “page 5 in 50 microseconds” Takes resource “by force” Invalidates credentials and bindings. Notifies library operating system

Exokernel DEC MIPS Aegis: actual exokernel Processor Physical memory TLB Exceptions, Interrupts ExOS: library operating system Processes, IPC, Virtual Memory, Network protocols

Microbenchmark results

ExOS Virtual Memory + Fast Sys call. Dirty – query if the page is dirty (user level) Prot1 – change the protection of 1 page 100 – read [un]protect 100 pages Trap – time to handle page-protection trap Appel1 – access random protected page – prot (some other) + trap + unprot (faulting page) Appel2 – prot100 + trap + unprot + Fast Sys call. - Half the time in look-up (vector). Repeated access to Aegis STLB and ExOS PageTable

Perspective Extensible kernels are actually fast. End-to-end arguments. Efficient implementations. Extensibility without loss of security or performance Exokernels Safely export machine resources Decouple protection from management

Containers Grouping of processes Provide isolation between groups Containers cannot customize operating systems Isn’t this similar to the problem exokernels tried to solve? Container Container Container Operating system may not be good for all groupings. MySQL Web Server MySQL Web Server Web Server OS Hypervisor

Unikernel: Library Operating Systems for the Cloud Anil Madhavapeddy, Richard Mortier, Charalampos Rotsos, David Scott, Ralraj Singh, ThomasGazagnaire, Steven Smith, Steven Hand, and Jon Crowcroft University of Cambridge, University of Nottingham, Citrix Systems Ltd, OCamlPro SAS In Proceedings of the 18th International Conference on Architectural Support for Programming Languages and Operating Systems pg. 461–472. Unikernel slides from Shannon Joyner

Unikernel = EXOKERNEL + CONTAINERs Run one application per virtual machine One process per application Everything compiled into a VM image Do not compile unused code Unikernel, Figure 1

Unikernel Run directly on top of standard hypervisor Can run multiple unikernels on the same hypervisor Unikernel Unikernel Unikernel Application Application Application OS OS OS Hypervisor

Mirage Produces unikernels Compiles OCaml code to Xen VM image 4 main components Text + Data segment Foreign Grants Minor Heap Major Heap Chose OCaml because of flexibility (implement imperative, functional, and OOP). Brevity. High performance. Xen is implemented in OCaml, so integration is easy. PV Boot - Way to initialize VM with a single virtual CPU and multiple Xen event channels. Unikernel, Figure 2

Text and Data OCaml Runtime PVBoot Initializes VM Unikernel, Figure 2 Initializes VM that application runs in Unikernel, Figure 2

HEAP Minor Heap Short lived values in VM Fast Major Heap Long lived values Unikernel, Figure 2

Foreign Grants Used for VM communication Write data to a grant table Exchange table between VM address spaces Unikernel, Figure 2

ApACHE BENCHMARK Mirage unikernel improvements result in better performance than having multiple cores Unikernel, Figure 2

Exokernel versus Unikernel All applications on same system Poor isolation Unikernel Single application per system Better isolation

Next Time Read and write review: The Origin of the VM/370 Time-Sharing System, R. J. Creasy, In IBM Journal of Research and Development, 25(5):483-490, September 1981. Xen and the Art of Virtualization, Paul Barham, Boris Dragovic, Keir Fraser, Steven Hand, Tim Harris, Alex Ho, Rolf Neugebauer, Ian Pratt, Andrew Warfield. 19th ACM symposium on Operating systems principles (SOSP), October 2003, page 164--177.

Next Time MP1 part 2 due Friday Project Survey Paper proposals due next week Presentation schedule Check website for updated schedule

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.