Presentation is loading. Please wait.

Presentation is loading. Please wait.

CS533 Concepts of OS Class 16 ExoKernel by Constantia Tryman.

Published by Modified over 8 years ago

Similar presentations

Presentation on theme: "CS533 Concepts of OS Class 16 ExoKernel by Constantia Tryman."— Presentation transcript:

1 CS533 Concepts of OS Class 16 ExoKernel by Constantia Tryman

2 CS533 - Concepts of Operating Systems 2 Motivation for Exokernel Problems with general purpose abstractions:  overhead cost for features that are needed  hide information from applications  increase of complexity because of good performance problems  limit functionality of applications: no efficiency and flexibility

3 CS533 - Concepts of Operating Systems 3 ExoKernel Overview  Separate resource protection and management  Securely multiplex hw resources to application- specific Library OS  Exo exports hw resources through: o Secure binding o Visible source revocation o Abort protocol

4 CS533 - Concepts of Operating Systems 4 Exokernel Architecture

5 CS533 - Concepts of Operating Systems 5 Functionalities  Library OS: o Implement own system objects and policies o Uses low-level exokernel interfaces o Implements higher-level abstractions o Can define special-purpose implementations for best performance and functionality o Can be specialized, extended, or replaced of abstractions  Exokernel: o Multiplexes and exports physical resources securely through low-level primitive

6 CS533 - Concepts of Operating Systems 6 Library OS  Simple implementation  Kernel crossings are small  Provide portability and compatibility  To reduce space by libraries  support for shared libraries and dynamic linking

7 CS533 - Concepts of Operating Systems 7 Exokernel Backward Compatibility  Binary emulation of OS and programs  Implementing its hardware abstraction layer on top of exokernel  re-implementing OS’s abstraction on top of exokernel

8 CS533 - Concepts of Operating Systems 8 Exokernel Design  Giving LOS freedom for management  Securely expose hardware  Expose allocation  Expose names  Expose revocation  Policy: control allocation and revocation of resources  By deciding allocation requests to grant, from which application to revoke resources  Enforce traditional partitioning strategies: quotas, reservation schemes

9 CS533 - Concepts of Operating Systems 9 Protection Tasks:  Tracking ownership of resources  Ensuring protection by guarding all resources usage and binding points  Revoking access to resources Techniques:  Secure bindings  Visible revocation  Abort protocol

10 CS533 - Concepts of Operating Systems 10 Secure Bindings 3 Approaches:  Hardware mechanism  Software caching  Downloading application code

11 CS533 - Concepts of Operating Systems 11 Hardware Mechanism  TLB entry: translation virtual-to-physical address o TLB fault – TLB load into kernel at bind time Used multiple time at access time o At low level protection  File Server o Can buffer data in memory pages o Grant access to authorized applications o Checking w/o info of authorization mechanism  Frame Buffer HW o Associate ownership tag at each pixel o Application can access frame buffer HW directly, since HW checks ownership tag when I/O loaded

12 CS533 - Concepts of Operating Systems 12 Software Caching  Large SW TLB o Cache address that are not in HW TLB

13 CS533 - Concepts of Operating Systems 13 Download code into Kernel  Invoked in every access/event to determine ownership and actions for kernel  Eliminate expensive kernel crossings  Execution without scheduling  Protection done by o type-safe language, o interpretation and o sandboxing  Ex: ASHs

14 CS533 - Concepts of Operating Systems 14 Multiplexing Physical Memory  When LOS allocate physical memory page, exo creates secure binding, checks capabilities  Reducing number of secure bindings by SW TLB  Exo: guards TLB loads and DMA capabilities  LOS: visible deallocation  flush TLB mappings queue DMA request  Example of HW mechanism and SW caching

15 CS533 - Concepts of Operating Systems 15 Multiplexing the Network  HW: virtual circuit in ATM to bind streams to applications  SW: message demultiplexing by packet filters  Example of downloading code

16 CS533 - Concepts of Operating Systems 16 Downloading Code  Application-specific Sage Handlers (ASHs)  Initiate message (roundtrip latency low)  Initiate control at message reception time  No waiting on message reception  No pre-bind buffer location for message  Xen?  Disco?

17 CS533 - Concepts of Operating Systems 17 Visible Resource Revocation 1. Invisible: deallocate resources without application involvement 1. Perform better when revocations occur frequently 2. Visible: requires interaction with LOS o LOS can avoid saving state and registers that are not live  LOS handle revocation for quick resource deallocation

18 CS533 - Concepts of Operating Systems 18 Abort Protocol  For failed LOS response to revocation requests  Kill LOS and associated applications (rejected)  Exokernel will break existing secure bindings to resources and inform LOS  Done by repossession vector

19 CS533 - Concepts of Operating Systems 19 Aegis and ExOS  Aegis o Exports processor, physical memory, TLB, exceptions, and interrupts  ExOS o Implements processes, virtual memory, user-level exceptions, interprocess abstractions, network protocols  Experimental Methodologies o Exokernel can be efficient o Low-level, secure multiplexing of hw resources implemented efficiently o Traditional OS abstraction implemented efficiently at appl o Applications can create special-purpose implementations of abstractions

20 CS533 - Concepts of Operating Systems 20 Aegis: Exokernel  Support set of primitive operations of privileged instructions (pseudo-instruction)  Efficient because: o Keep track of ownership is simple o Kernel provides little functionality: small and lean o Caching secure binding in SW TLB for efficient TLB misses o Downloading packet filters and dynamic code generation for efficient secure binding to network

21 CS533 - Concepts of Operating Systems 21 ExOS: Library OS  IPC: LRPC  Virtual memory  Remote communication: ASHs

22 CS533 - Concepts of Operating Systems 22 Protected Control Transfers  Is an efficient implementation of IPC abstractions  Steps: o Change PC to callee o Donate current time slice o Install required elements of callee’s processor context 1. Asynchronous: gives remainder current time slice 2. Synchronous: donate current time slice  Properties: o Atomic o No overwrite on application-visible registers by exokernel  No protection check  Single-threaded  Yield primitive: donate remainder current time slice to another

23 CS533 - Concepts of Operating Systems 23 ASHs Performance

24 CS533 - Concepts of Operating Systems 24 Extensibility ExOS  Extensible RPC: o tLRPC (trusted LRPC): trust server to save and restore callee-saved registers with no permissions o LRPC: saves general-purpose callee-saved registers o Single-threaded  Extensible Page-table Structures o Inverted page table for sparse address space  Extensible Schedulers o Yield primitive to donate remainder of current time slice by stride scheduling

25 CS533 - Concepts of Operating Systems 25 Conclusion  Exo securely multiplexes HW resources among appls  LOS implements higher-level abstractions and define special-purpose implementation for best performance and functionality  Simplicity and limited primitives allow for efficiency implementation  Exo primitives are fast, low-level secure multiplexing is efficient  Traditional OS abstraction implemented at appl-level  Applications can create special-purpose implementation of abstractions by modifying library

Download ppt "CS533 Concepts of OS Class 16 ExoKernel by Constantia Tryman."

Similar presentations

Northwestern University 2007 Winter – EECS 443 Advanced Operating Systems Exokernel: An Operating System Architecture for Application-Level Resource Management.

Northwestern University 2007 Winter – EECS 443 Advanced Operating Systems Exokernel: An Operating System Architecture for Application-Level Resource Management.
CS533 Concepts of Operating Systems Class 14 Virtualization and Exokernels.

CS533 Concepts of Operating Systems Class 14 Virtualization and Exokernels.
More on Processes Chapter 3. Process image _the physical representation of a process in the OS _an address space consisting of code, data and stack segments.

More on Processes Chapter 3. Process image _the physical representation of a process in the OS _an address space consisting of code, data and stack segments.
Extensibility, Safety and Performance in the SPIN Operating System Presented by Allen Kerr.

Extensibility, Safety and Performance in the SPIN Operating System Presented by Allen Kerr.
Exokernel: An Opertion System Architecture for Application-Level Resource Management SIGCOMM ’ 96, PDOS-MIT Presented by Ahn Seunghoon Dawson R. Engler,

Exokernel: An Opertion System Architecture for Application-Level Resource Management SIGCOMM ’ 96, PDOS-MIT Presented by Ahn Seunghoon Dawson R. Engler,
Presented By Srinivas Sundaravaradan. MACH µ-Kernel system based on message passing Over 5000 cycles to transfer a short message Buffering IPC L3 Similar.

Presented By Srinivas Sundaravaradan. MACH µ-Kernel system based on message passing Over 5000 cycles to transfer a short message Buffering IPC L3 Similar.
Extensible Kernels Edgar Velázquez-Armendáriz September 24 th 2009.

Extensible Kernels Edgar Velázquez-Armendáriz September 24 th 2009.
G22.3250-001 Robert Grimm New York University Extensibility: SPIN and exokernels.

G Robert Grimm New York University Extensibility: SPIN and exokernels.
CS533 Concepts of Operating Systems Class 7 Virtualization and Exokernels.

CS533 Concepts of Operating Systems Class 7 Virtualization and Exokernels.
Extensibility, Safety and Performance in the SPIN Operating System Brian Bershad, Stefan Savage, Przemyslaw Pardyak, Emin Gun Sirer, Marc E. Fiuczynski,

Extensibility, Safety and Performance in the SPIN Operating System Brian Bershad, Stefan Savage, Przemyslaw Pardyak, Emin Gun Sirer, Marc E. Fiuczynski,
Dawson R. Engler, M. Frans Kaashoek, and James O’Toole Jr.

Dawson R. Engler, M. Frans Kaashoek, and James O’Toole Jr.
G22.3250-001 Robert Grimm New York University Disco.

G Robert Grimm New York University Disco.
CS533 Concepts of Operating Systems Class 16 Exokernel.

CS533 Concepts of Operating Systems Class 16 Exokernel.
INTRODUCTION OS/2 was initially designed to extend the capabilities of DOS by IBM and Microsoft Corporations. To create a single industry-standard operating.

INTRODUCTION OS/2 was initially designed to extend the capabilities of DOS by IBM and Microsoft Corporations. To create a single industry-standard operating.
User Level Interprocess Communication for Shared Memory Multiprocessor by Bershad, B.N. Anderson, A.E., Lazowska, E.D., and Levy, H.M.

User Level Interprocess Communication for Shared Memory Multiprocessor by Bershad, B.N. Anderson, A.E., Lazowska, E.D., and Levy, H.M.
Dawson R. Engler, M. Frans Kaashoek, and James O'Tool Jr.

Dawson R. Engler, M. Frans Kaashoek, and James O'Tool Jr.
G22.3250-001 Robert Grimm New York University Extensibility: SPIN and exokernels.

G Robert Grimm New York University Extensibility: SPIN and exokernels.
1 Extensible Kernels Ken, with slides by Amar Phanishayee.

1 Extensible Kernels Ken, with slides by Amar Phanishayee.
Figure 1.1 Interaction between applications and the operating system.

Figure 1.1 Interaction between applications and the operating system.
1 Last Class: Introduction Operating system = interface between user & architecture Importance of OS OS history: Change is only constant User-level Applications.

1 Last Class: Introduction Operating system = interface between user & architecture Importance of OS OS history: Change is only constant User-level Applications.

Similar presentations

Ads by Google