CS 444544 Operating Systems II Virtualization Summary and

  • Slides: 42
Download presentation
CS 444/544 Operating Systems II Virtualization Summary and Quiz 2 Prep Yeongjin Jang 1

CS 444/544 Operating Systems II Virtualization Summary and Quiz 2 Prep Yeongjin Jang 1

Quiz 2 • Thursday (11/5 -11/6 from 8: 30 am to 11: 59 pm,

Quiz 2 • Thursday (11/5 -11/6 from 8: 30 am to 11: 59 pm, 90 mins, 2 trials) • Open materials (slides, videos, code, and textbook) • You will be allowed to have 2 attempts for quiz • Uh-oh, a silly mistake, don’t worry, you can recover in the next trial • We will go over Quiz 2 prep at the end of this video • Don’t forget about the lab 3 due date, on 11/9 2

Today’s Topic • Virtualization -> Concurrency • OS Three Easy Pieces • Virtualization (memory,

Today’s Topic • Virtualization -> Concurrency • OS Three Easy Pieces • Virtualization (memory, process, user/kernel, etc. ) • Concurrency (multi-threading, multi-process, scheduling, synchronization) • Persistence (disk, file, snapshot, etc. ) • Do recap on Virtualization 3

What is an OS? Applications OS Hardware 4

What is an OS? Applications OS Hardware 4

Memory Backward compatibility: BIOS will put the code that assumes your CPU as i

Memory Backward compatibility: BIOS will put the code that assumes your CPU as i 8086 (a 42 -years old 16 -bit CPU). So we need to start with 16 -bit mode and then enable 32 -bit protected mode, paging, etc… UEFI does not go through this process; they directly starts with 32 -bit or 64 -bit mode, so OSes do not have to handle these things. . • 8086 Segmentation – Real Mode • Address = seg * 16 + offset • 80386 Segmentation – Protected Mode • GDT defines base and limit • seg selects a GDT entry • Address = GDT[seg]. base + offset 5

Virtual Memory • Paging • When enabled, all memory address will be translated via

Virtual Memory • Paging • When enabled, all memory address will be translated via • CR 3 -> PDE -> PTE -> Physical Page! 6

Recap – Page Table & Addr Translation 31 12 0 0 x 08048000 Offset

Recap – Page Table & Addr Translation 31 12 0 0 x 08048000 Offset (12 -bits) 0 x 000 Page number (20 -bits) 0 x 08048 Directory Index (10 -bits) 0 x 20 CR 3[0 x 20] Physical 0 x 8048000 0 x 10000 0 x 8049000 0 x 11000 0 x 804 a 000 0 x 50000 Table index (10 -bits) 0 x 48 22 31 Virtual 12 Page Directory Entry Page Table Entry 0 Addr PT . . Addr PT 0 x 48 0 x 10000 0 x 20 Addr PT 0 x 49 0 x 11000 0 x 3 ff Addr PT 0 x 4 a 0 x 50000 PDE[0 x 48] Phy. Page number (20 -bits) 0 x 10000 Offset (12 -bits) 0 x 000 pde_t * pd = KADDR(lcr 3()); pte_t *pt = KADDR(PTE_ADDR(pd[PDX(va)])) physaddr_t paddr = PTE_ADDR(pt[PTX(va)]) + PGOFF(va) 7

x 86 Memory Access 8

x 86 Memory Access 8

Why Virtual Memory? • Three goals • Transparency: does not need to know system’s

Why Virtual Memory? • Three goals • Transparency: does not need to know system’s internal state • Program A is loaded at 0 x 8048000. Can Program B be loaded at 0 x 8048000? • Efficiency: do not waste memory; manage memory fragmentation • Can Program B (288 KB) be loaded if 288 KB of memory is free, regardless of its allocation? • Protection: isolate program’s execution environment • Can we prevent an overflow from Program A from overwriting Program B’s data? 9

Paging: Virtual Memory • Having an indirect table that maps virt-addr to phys-addr Stack-2

Paging: Virtual Memory • Having an indirect table that maps virt-addr to phys-addr Stack-2 0 xbffdf 000 Stack 0 xbffdf 000 Program code-2 0 x 804 a 000 Program code-2 0 x 8049000 Program code-2 0 x 8048000 Program code 0 x 8048000 Virtual Physical 0 x 8048000 0 x 10000 0 x 8049000 0 x 11000 0 x 804 a 000 0 x 14000 0 xbffdf 000 0 x 12000 … … Virtual-2 Physical-2 0 x 8048000 0 x 13000 0 x 8049000 0 x 15000 0 x 804 a 000 0 x 16000 0 xbffdf 000 0 x 17000 … 10 … Physical Memory Stack-2 0 x 17000 Program code-2 0 x 16000 Program code-2 0 x 15000 Program code 0 x 14000 Program code-2 0 x 13000 Stack 0 x 12000 Program code 0 x 11000 Program code 0 x 10000

Transparency: does not need to know system’s internal state Program A is loaded at

Transparency: does not need to know system’s internal state Program A is loaded at 0 x 8048000. Paging: Virtual Memory Can Program B be loaded at 0 x 8048000? • Having an indirect table that maps virt-addr to phys-addr Stack-2 0 xbffdf 000 Stack 0 xbffdf 000 Program code-2 0 x 804 a 000 Program code-2 0 x 8049000 Program code-2 0 x 8048000 Program code 0 x 8048000 Virtual Physical 0 x 8048000 0 x 10000 0 x 8049000 0 x 11000 0 x 804 a 000 0 x 14000 0 xbffdf 000 0 x 12000 … … Virtual-2 Physical-2 0 x 8048000 0 x 13000 0 x 8049000 0 x 15000 0 x 804 a 000 0 x 16000 0 xbffdf 000 0 x 17000 … 11 … Physical Memory Stack-2 0 x 17000 Program code-2 0 x 16000 Program code-2 0 x 15000 Program code 0 x 14000 Program code-2 0 x 13000 Stack 0 x 12000 Program code 0 x 11000 Program code 0 x 10000

Efficiency: do not waste memory Can Program B (288 KB) be loaded if Paging:

Efficiency: do not waste memory Can Program B (288 KB) be loaded if Paging: Virtual Memory only 288 KB of memory is free, regardless of its allocation? • Having an indirect table that maps virt-addr to phys-addr Stack-2 0 xbffdf 000 Stack 0 xbffdf 000 Program code-2 0 x 804 a 000 Program code-2 0 x 8049000 Program code-2 0 x 8048000 Program code 0 x 8048000 Virtual Physical 0 x 8048000 0 x 10000 0 x 8049000 0 x 11000 0 x 804 a 000 0 x 14000 0 xbffdf 000 0 x 12000 … … Virtual-2 Physical-2 0 x 8048000 0 x 13000 0 x 8049000 0 x 15000 0 x 804 a 000 0 x 16000 0 xbffdf 000 0 x 17000 … 12 … Physical Memory Stack-2 0 x 17000 Program code-2 0 x 16000 Program code-2 0 x 15000 Program code 0 x 14000 Program code-2 0 x 13000 Stack 0 x 12000 Program code 0 x 11000 Program code 0 x 10000

Protection: isolate program’s execution environment Can we prevent an overflow from Program A from

Protection: isolate program’s execution environment Can we prevent an overflow from Program A from Paging: Virtual Memory overwriting Program B’s data? Stack-2 0 xbffdf 000 No mappings, FAULT! Stack 0 xbffdf 000 No mappings, FAULT! Program code-2 0 x 804 a 000 Program code-2 0 x 8049000 Program code-2 0 x 8048000 Program code 0 x 8048000 13

Kernel (Ring 0) • Runs with the highest privilege level (Ring 0) • Configures

Kernel (Ring 0) • Runs with the highest privilege level (Ring 0) • Configures system (devices, memory, etc. ) • Manages hardware resources • Disk, memory, network, video, keyboard, etc. • Manages other jobs • Processes and threads • Serves as trusted computing base (TCB) • Set privilege, restrict other jobs from doing something bad, etc. 14

User Level (Ring 3) • Runs with a restricted privilege (Ring 3) • The

User Level (Ring 3) • Runs with a restricted privilege (Ring 3) • The privilege level for running an application… • Most of our regular applications runs in this ring level • Cannot access kernel memory • Can only access pages set with PTE_U • Cannot talk directly to hardware devices • Kernel must mediate the access 15

A High-level Overview of User/Kernel Execution User Level (Ring 3) Libraries OS Kernel (Ring

A High-level Overview of User/Kernel Execution User Level (Ring 3) Libraries OS Kernel (Ring 0) 16

A High-level Overview of User/Kernel Execution User Level (Ring 3) A library call in

A High-level Overview of User/Kernel Execution User Level (Ring 3) A library call in ring 3 printf() Libraries sys_write() A system call, From ring 3 to ring 0 A kernel function do_sys_write() OS Kernel (Ring 0) 17

A High-level Overview of User/Kernel Execution User Level (Ring 3) A library call in

A High-level Overview of User/Kernel Execution User Level (Ring 3) A library call in ring 3 printf() ret (ring 3) Libraries sys_write() A system call, From ring 3 to ring 0 iret (ring 0 to ring 3) OS Kernel (Ring 0) A kernel function do_sys_write() 18

User Execution Strawman 2’ Much wait • What if a process runs No such

User Execution Strawman 2’ Much wait • What if a process runs No such yield() Ring 3 OS Kernel (Ring 0) 19 Too long

User Execution Strawman 2’ Much wait • What if a process runs No such

User Execution Strawman 2’ Much wait • What if a process runs No such yield() Ring 3 OS Kernel (Ring 0) 20 Too long

Recap: Timer Interrupt and Multitasking After 1 ms • Preemptive Multitasking (Lab 4) Ring

Recap: Timer Interrupt and Multitasking After 1 ms • Preemptive Multitasking (Lab 4) Ring 3 • CPU generates an interrupt to force execution at kernel after some time quantum • E. g. , 1000 Hz, on each 1 ms. . OS Kernel (Ring 0) Timer interrupt! 21

Recap: Timer Interrupt and Multitasking • Preemptive Multitasking (Lab 4) Ring 3 • CPU

Recap: Timer Interrupt and Multitasking • Preemptive Multitasking (Lab 4) Ring 3 • CPU generates an interrupt to force execution at kernel after some time quantum • E. g. , 1000 Hz, on each 1 ms. . OS Kernel (Ring 0) • Guaranteed execution in kernel • Let kernel mediate resource contention 22

Recap: Timer Interrupt and Multitasking • Preemptive Multitasking (Lab 4) Ring 3 • CPU

Recap: Timer Interrupt and Multitasking • Preemptive Multitasking (Lab 4) Ring 3 • CPU generates an interrupt to force execution at kernel after some time quantum iret (ring 0 to ring 3) Schedule() • E. g. , 1000 Hz, on each 1 ms. . OS Kernel (Ring 0) • Guaranteed execution in kernel • Let kernel mediate resource contention 23

User/Kernel Switch • System call • User calls Kernel APIs • Kernel mediates API

User/Kernel Switch • System call • User calls Kernel APIs • Kernel mediates API access (checks legitimacy at call gate) int $0 x 30 CHECK!! • How switch? • At the call gate, store trap frame Ring 3 App Library Calls OS Syscalls • Stores all registers, and other states Hardware • On returning to user (iret) • Restore all information from trap frame 24

User/Kernel Switch • Interrupts • Could come from hardware (when it is not a

User/Kernel Switch • Interrupts • Could come from hardware (when it is not a software interrupt) • Think about the timer interrupt • Let OS do context switch! • Steps • Stops current process (stores trapframe) • Runs kernel for handling the interrupt (refer to IDT) • Resumes previous (or new) process (iret) 25

Faults • An error that OS can recover • Example • Page fault •

Faults • An error that OS can recover • Example • Page fault • Copy-on-write fork • Swapping 26

Copy-on-Write Sharing Do we need to copy the same data for each process creation?

Copy-on-Write Sharing Do we need to copy the same data for each process creation? Process 2. bss (RW-) • Store one copy of file in the memory Process 1 . bss (RW-) . data (RW-) . rodata (R--) . text (R-X) 27 . text (R-X) . data (RW-). rodata (R--). text (R-X)

Sharing by Read-only • Set page table to map the same physical address to

Sharing by Read-only • Set page table to map the same physical address to share contents. bss (RW-). data (RW-). rodata (R--). text (R-X) 28 Process 1 Process 2 . bss (R--) . data (R--) . rodata (R--) . text (R-X)

Generate a Page Fault on Writing Attempt • How can Process 1 write on.

Generate a Page Fault on Writing Attempt • How can Process 1 write on. bss? ? . bss (RW-) Process 1. bss (R--) . data (RW-) . data (R--) . rodata (R--) . text (R-X) 29 . text (R-X) Write Page fault!

Copy–on-Write COPY! . bss (RW-) • How can Process 1 write on. bss? ?

Copy–on-Write COPY! . bss (RW-) • How can Process 1 write on. bss? ? . bss (RW-) Process 1. bss(RW-) (R--). bss . data (RW-) . data (R--) . rodata (R--) . text (R-X) 30 . text (R-X) MAP! Write Page fault!

A Challenge of Having Small Physical Memory • Suppose you have 8 GB of

A Challenge of Having Small Physical Memory • Suppose you have 8 GB of main memory • Can you run a program that its program size is 16 GB? • Yes, you can load them part by part • This is because we do not use all of data at the same time • Can your OS do this execution seamlessly to your application? 31

Swapping Virtual Memory 0 xf 0200000 PT pgdir 0 xf 0200000 PT 32 Physical

Swapping Virtual Memory 0 xf 0200000 PT pgdir 0 xf 0200000 PT 32 Physical Memory

Swapping – Remove a page… PT Virtual Memory Page Fault! Access 0 xf 0200000

Swapping – Remove a page… PT Virtual Memory Page Fault! Access 0 xf 0200000 pgdir 0 xf 0200000 PT DISK 0 xf 0200000 33 Physical Memory

Swapping – Remove a page… PT Virtual Memory Create new map! Access Continue! 0

Swapping – Remove a page… PT Virtual Memory Create new map! Access Continue! 0 xf 0200000 Physical Memory Page Fault! pgdir Allocate New page! PT DISK 0 xf 0200000 34 READ from DISK

Quiz 2 • Thursday (11/5 -11/6 from 8: 30 am to 11: 59 pm,

Quiz 2 • Thursday (11/5 -11/6 from 8: 30 am to 11: 59 pm, 90 mins, 2 trials) • Open materials (slides, videos, code, and textbook) • You will be allowed to have 2 attempts for quiz • Uh-oh, a silly mistake, don’t worry, you can recover in the next trial • We will go over Quiz 2 prep at the end of this video • Don’t forget about the lab 3 due date, on 11/9 35

Quiz 2 Coverage • JOS Lab 2 (Virtual Memory Management) • JOS Lab 3

Quiz 2 Coverage • JOS Lab 2 (Virtual Memory Management) • JOS Lab 3 (User/Kernel, System Call and Interrupt Handling) • Lecture 8: User/Kernel Context Switch • Lecture 9: Handling Interrupt & Exceptions • Lecture 10: System Calls, Call Gate, and Page Fault • Lecture 11: Virtualization Review 36

Few Questions • Memory Protection • How an OS/CPU applies access control to memory?

Few Questions • Memory Protection • How an OS/CPU applies access control to memory? • Protected mode (DPL), Page directory / page table (permission flags, PTE_W & PTE_U) • How an OS kernel protects itself against attacks from application code? • Removing PTE_U from PDE or PTE • How an OS protects memory area supposed to be read-only from write attempts? • Removing PTE_W from PDE or PTE • How OS isolates the memory space of a process from others? • Having a new page directory / page tables 37

Few Questions • Memory Overhead Calculation • We have the following mapping for a

Few Questions • Memory Overhead Calculation • We have the following mapping for a program. How much of physical memory is required to support virtual to physical address translation for this program (get the minimal total size of page directory and page tables that enables this allocation)? Area Start virtual addr End virtual addr Size . text (code) 0 x 800000 0 x 804000 0 x 4000 . data (read/write) 0 x 900000 0 x 902000 0 x 2000 . bss 0 xc 00000 0 xd 00000 0 x 100000 38

Few Questions • Memory Overhead Calculation Area Start virtual addr End virtual addr Size

Few Questions • Memory Overhead Calculation Area Start virtual addr End virtual addr Size . text (code) 0 x 800000 0 x 804000 0 x 4000 . data (read/write) 0 x 900000 0 x 902000 0 x 2000 . bss 0 xc 00000 0 xd 00000 0 x 100000 Index Address range PTE 0 0 x 0 ~ 0 x 400000 invalid 1 0 x 400000 ~ 0 x 800000 invalid 2 0 x 800000 ~ 0 xc 00000 valid 3 0 xc 00000 ~ 0 x 1000000 valid … … Invalid 0 x 3 ff 0 xffc 00000 ~ 0 xffff Invalid 1 page directory: 4 KB 2 page tables: 2 * 4 KB = 8 KB 4 KB + 8 KB = 12 KB 39

Few Questions • User / Kernel Switch • How OS gets back CPU execution

Few Questions • User / Kernel Switch • How OS gets back CPU execution from user while user runs while(1); ? • Timer interrupt will preempt the execution from user to kernel • How a user program access hardware? What OS does for this? • OS offers system calls (APIs available in OS) • User program invokes system call via generating a software interrupt • OS checks access to resources • File, network, memory, etc. 40

Few Questions • For an interrupt that has an error code, • Which part

Few Questions • For an interrupt that has an error code, • Which part of Trap. Frame is prepared by the CPU? • tf_ss, tf_esp, tf_eflags, tf_cs, tf_eip and tf_err • Which part of Trap. Frame is prepared by JOS? • All others: tf_trapno, tf_ds, tf_es, tf_regs 41

Few Questions • Page Fault • We run 1, 000 instances of /bin/bash in

Few Questions • Page Fault • We run 1, 000 instances of /bin/bash in our os 2 server, running Linux enabled with copy-on-write fork(). How many copies of the code (the readonly part) of /bin/bash exist in the physical memory? • One, shared via copy-on-write • How an OS can run a program that requires more memory than a machine’s physical memory? • • We can store currently unused memory pages in the disk (swap-out) Accessing to swapped-out pages will generate a page fault The OS can search for swapped-out pages, and fill a page in if exists (swap-in) Resumes user execution! 42

Customer Premises Equipment Virtualization Virtualization 2 Virtualization VirtualizationCustomer Premises Equipment Virtualization Virtualization 2 Virtualization Virtualization
Virtualization Technique System Virtualization Credit Agenda Server VirtualizationVirtualization Technique System Virtualization Credit Agenda Server Virtualization
Virtualization Technique System Virtualization Memory Virtualization Agenda BasicVirtualization Technique System Virtualization Memory Virtualization Agenda Basic
Virtualization B Ramamurthy References Practical Virtualization Solutions VirtualizationVirtualization B Ramamurthy References Practical Virtualization Solutions Virtualization
Virtualization A brief introduction Virtualization 1 Virtualization definitionsVirtualization A brief introduction Virtualization 1 Virtualization definitions
Virtualization Dr S R Ahmed Virtualization Virtualization dealsVirtualization Dr S R Ahmed Virtualization Virtualization deals
Virtualization Jerry Breecher 19 Virtualization 1 Virtualization WhatVirtualization Jerry Breecher 19 Virtualization 1 Virtualization What
Server Virtualization 1 Virtualization 2 Platform Virtualization 3Server Virtualization 1 Virtualization 2 Platform Virtualization 3
Brief Introduction to Virtualization Virtualization Virtualization is oneBrief Introduction to Virtualization Virtualization Virtualization is one
Virtualization Concepts CS 5204 Operating Systems Virtualization ConceptsVirtualization Concepts CS 5204 Operating Systems Virtualization Concepts
Advanced Operating Systems CS 202 Virtualization Virtualization OneAdvanced Operating Systems CS 202 Virtualization Virtualization One
Virtualization Concepts CS 5204 Operating Systems Virtualization ConceptsVirtualization Concepts CS 5204 Operating Systems Virtualization Concepts
Processes and operating systems Operating systems Operating systemsProcesses and operating systems Operating systems Operating systems
Operating Systems Operating Systems Operating systems provide aOperating Systems Operating Systems Operating systems provide a
CS 444544 Operating Systems II Lock and SynchronizationCS 444544 Operating Systems II Lock and Synchronization
CS 444544 Operating Systems II Paging and VirtualCS 444544 Operating Systems II Paging and Virtual
CS 444544 Operating Systems II System Calls andCS 444544 Operating Systems II System Calls and
CS 444544 Operating Systems II BIOS Booting andCS 444544 Operating Systems II BIOS Booting and
CS 444544 Operating Systems II Concurrency and LocklessCS 444544 Operating Systems II Concurrency and Lockless
CS 444544 Operating Systems II System Calls andCS 444544 Operating Systems II System Calls and
CS 444544 Operating Systems II Concurrency Bugs andCS 444544 Operating Systems II Concurrency Bugs and
CS 444544 Operating Systems II Lock and SynchronizationCS 444544 Operating Systems II Lock and Synchronization
CS 444544 Operating Systems II System Calls andCS 444544 Operating Systems II System Calls and
Operating System Virtualization Adam Nofsinger OS Virtualization WhatOperating System Virtualization Adam Nofsinger OS Virtualization What