DOCSLIB.ORG

SI202: Week 1

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
SI202: Week 1 EC312 Homework 7 Name: __________key______________ 1. What features of the C language make a buffer overflow attack possible? C does not automatically perform bounds checking. 2. Answer the following questions concerning how a program is stored in memory during its execution. (a) Which segment of memory has contents that remain unchanged during program execution? The text segment (also known as the code segment) (b) Does the programmer have complete control over how the stack is organized? No, the stack is controlled by the compiler. (c) What is the relationship between the order in which variables appear in a function and the order in which these same variables are stored in the function's stack frame? Variables are stored on the stack in the order they are declared. (d) What important registers are used to define the boundaries of a stack frame? esp – Stack Pointer ebp – Base Pointer (e) Suppose main calls a function named fun. After all the commands of fun have executed, how does the program know to continue at the exact location in main where it left off? The return address is stored on the stack when the function fun is called. (f) Is a source code file permitted to have more than one function? Yes. (g) If your answer to (f) was "no", explain why that is the case. If your answer to (e) was "yes", explain how the operating system knows where to begin executing your program if the source code file contains multiple functions. Program execution always begins at the main() function for command line programs. 1 3. Segmentation Fault Carefully enter the following program using nano. Notice that the program has no blank lines. #include<stdio.h> void happy_times( int x , int y ) { char alpha_code[ 7 ]; printf("\nEnter your alpha code:" ); scanf( "%s" , alpha_code ); printf("\nYour alpha code is: %s\n\n", alpha_code ); } int main( ) { int a = 77; int b = 21; happy_times( a , b); } Execute the program entering just the numeric portion of your alpha code. You should see something like this: Now, rerun the program entering a ridiculously long alpha code. You should see a segmentation fault: Recall that a segmentation fault occurs if a program attempts to run beyond the boundaries of main memory that the operating system has allotted the program. In this homework problem we will explore in depth the cause of this segmentation fault. Let's run our program (which I've named happy.c) by entering: gcc –g happy.c gdb –q ./a.out list main disass main break 13 run nexti nexti Exactly four nexti's nexti nexti 2 (a) Using your gdb skills, determine the following: - What is the next instruction that will be executed? ___call 0x80483b4 <happy_times>___ - Is the program execution still in main, or has it moved into the function happy_times? _Program execution is still in main._______________________________ - List the variables which should already have been loaded onto the stack, from lowest on the stack to highest (i.e. from highest address to lowest address)? [Hint: you don’t have to examine memory to figure this out. You can determine it based on your knowledge of how a stack is set up during program execution.] _______a,b,y,x_______________________________________________________________________________________ (b) Our goal is to locate main's variables and the function's arguments on the stack. As a first step, simply express the variables a and b in hexadecimal format: a: 0x_0000004d______ b: 0x_00000015______ Note: For Parts (c) – (i) you will fill in the table which begins on page 5. (c) Determine the current value of the stack pointer and the base pointer. Fill in the values in the table below, showing where the base pointer (label as EBP-main) and stack pointer (label as ESP-main) are pointing to. (d) Use the examine (x) command to look at 40 bytes starting at the stack pointer. Now locate main's variables and the function's arguments on the stack. Fill in the table, annotating the locations of these four values. Label these as (main variable: a), (main variable b), (function argument: x) and (function argument: y). (e) Now set a breakpoint at line 2 of your code (which is in the happy_times function), run the program until that point, and then execute one more instruction, by entering break 2 continue nexti The program is now at the point where the old value of the base pointer and the correct return address have been placed on the stack. What should be stored as the correct return address? ______0x0804841e__ What should be the saved value of the base pointer? ______0xbffff808___ 3 (f) Enter x/40xb $esp to examine the 40 bytes in the stack starting with the new stack pointer, esp. Locate the saved value of the base pointer and the return address on the stack. Fill in the table, annotating the locations of these two items. Label these as (saved base pointer) and (return address). (g) Now enter break 8 continue When prompted to enter your alpha code, enter: AAAAAA Determine the current value of the stack pointer and the base pointer. Fill in the values in the table below, showing where the base pointer (label as EBP-happy_times) and stack pointer (label as ESP- happy_times) are pointing to. (h) Locate the alpha code you entered (i.e. AAAAAA) in the stack frame for happy_times. Do this by examining 40 bytes starting at the stack pointer. Note that the capital letter A is equivalent to hexadecimal 0x41. Fill in the table, annotating the location of the string alpha_code. Note that the NULL that terminates the string is part of the string. (i) Now, examine your memory drawing. How many characters would you have had to enter for your alpha code before you start to overwrite the saved value of the base pointer (remember that the NULL is automatically added)? [Note: you should enter the number of characters required to overwrite the byte at the lowest address of the save value of the base pointer, i.e. you don’t need to overwrite the entire address.] Answer: _____24_________ Overwriting the saved value of the base pointer will (almost always) cause a segmentation fault, because the program will attempt to restore the stack to a location in memory outside the region of main memory given to the program. (j) Exit the debugger (by entering quit) and run your program by entering ./a.out. Enter an alpha code of size equal to the number of characters you calculated in part (i). Did you get a segmentation fault? (You should have!) ____Yes________ (k) Enter an alpha code of size less than the number of characters you calculated in part (i). Did you get a segmentation fault? (You should not have.) ____No________ 4 Address Value Description BFFFF7ED 84 BFFFF7C0 esp-happy-times points BFFFF7EE 04 here BFFFF7EF 08 BFFFF7C1 BFFFF7F0 4d x BFFFF7C2 BFFFF7F1 00 BFFFF7C3 BFFFF7F2 00 BFFFF7C4 BFFFF7F3 00 BFFFF7C5 BFFFF7F4 15 y BFFFF7C6 BFFFF7F5 00 BFFFF7C7 BFFFF7F6 00 BFFFF7C8 BFFFF7F7 00 BFFFF7C9 BFFFF7F8 BFFFF7CA BFFFF7F9 BFFFF7CB BFFFF7FA BFFFF7CC BFFFF7FB BFFFF7CD BFFFF7FC BFFFF7CE BFFFF7FD BFFFF7CF BFFFF7FE BFFFF7D0 41 alpha_code BFFFF7FF BFFFF7D1 41 BFFFF800 15 b BFFFF7D2 41 BFFFF801 00 BFFFF7D3 41 BFFFF802 00 BFFFF7D4 41 BFFFF803 00 BFFFF7D5 41 BFFFF804 4d a BFFFF7D6 00 BFFFF805 00 BFFFF7D7 BFFFF806 00 BFFFF7D8 BFFFF807 00 BFFFF7D9 BFFFF808 ebp-main points here BFFFF7DA BFFFF809 BFFFF7DB BFFFF80A BFFFF7DC BFFFF80B BFFFF7DD BFFFF80C BFFFF7DE BFFFF80D BFFFF7DF BFFFF80E BFFFF7E0 BFFFF80F BFFFF7E1 BFFFF810 BFFFF7E2 BFFFF811 BFFFF7E3 BFFFF812 BFFFF7E4 BFFFF813 BFFFF7E5 BFFFF814 BFFFF7E6 BFFFF815 BFFFF7E7 BFFFF816 BFFFF7E8 08 Saved base pointer BFFFF817 (ebp-happy_times points BFFFF818 here) BFFFF819 BFFFF7E9 f8 BFFFF81A BFFFF7EA ff BFFFF7EB bf BFFFF7EC 1e return address 5 .
Load more

Recommended publications
  • University of California at Berkeley College of Engineering Department of Electrical Engineering and Computer Science
    University of California at Berkeley College of Engineering Department of Electrical Engineering and Computer Science EECS 61C, Fall 2003 Lab 2: Strings and pointers; the GDB debugger PRELIMINARY VERSION Goals To learn to use the gdb debugger to debug string and pointer programs in C. Reading Sections 5.1-5.5, in K&R GDB Reference Card (linked to class page under “resources.”) Optional: Complete GDB documentation (http://www.gnu.org/manual/gdb-5.1.1/gdb.html) Note: GDB currently only works on the following machines: • torus.cs.berkeley.edu • rhombus.cs.berkeley.edu • pentagon.cs.berkeley.edu Please ssh into one of these machines before starting the lab. Basic tasks in GDB There are two ways to start the debugger: 1. In EMACS, type M-x gdb, then type gdb <filename> 2. Run gdb <filename> from the command line The following are fundamental operations in gdb. Please make sure you know the gdb commands for the following operations before you proceed. 1. How do you run a program in gdb? 2. How do you pass arguments to a program when using gdb? 3. How do you set a breakpoint in a program? 4. How do you set a breakpoint which which only occurs when a set of conditions is true (eg when certain variables are a certain value)? 5. How do you execute the next line of C code in the program after a break? 1 6. If the next line is a function call, you'll execute the call in one step. How do you execute the C code, line by line, inside the function call? 7.
    [Show full text]
  • Compiling and Debugging Basics
    Compiling and Debugging Basics Service CoSiNus IMFT P. Elyakime H. Neau A. Pedrono A. Stoukov Avril 2015 Outline ● Compilers available at IMFT? (Fortran, C and C++) ● Good practices ● Debugging Why? Compilation errors and warning Run time errors and wrong results Fortran specificities C/C++ specificities ● Basic introduction to gdb, valgrind and TotalView IMFT - CoSiNus 2 Compilers on linux platforms ● Gnu compilers: gcc, g++, gfortran ● Intel compilers ( 2 licenses INPT): icc, icpc, ifort ● PGI compiler fortran only (2 licenses INPT): pgf77, pgf90 ● Wrappers mpich2 for MPI codes: mpicc, mpicxx, mpif90 IMFT - CoSiNus 3 Installation ● Gnu compilers: included in linux package (Ubuntu 12.04 LTS, gcc/gfortran version 4.6.3) ● Intel and PGI compilers installed on a centralized server (/PRODCOM), to use it: source /PRODCOM/bin/config.sh # in bash source /PRODCOM/bin/config.csh # in csh/tcsh ● Wrappers mpich2 installed on PRODCOM: FORTRAN : mympi intel # (or pgi or gnu) C/C++ : mympi intel # (or gnu) IMFT - CoSiNus 4 Good practices • Avoid too long source files! • Use a makefile if you have more than one file to compile • In Fortran : ” implicit none” mandatory at the beginning of each program, module and subroutine! • Use compiler’s check options IMFT - CoSiNus 5 Why talk about debugging ? Yesterday, my program was running well: % gfortran myprog.f90 % ./a.out % vmax= 3.3e-2 And today: % gfortran myprog.f90 % ./a.out % Segmentation fault Yet I have not changed anything… Because black magic is not the reason most often, debugging could be helpful! (If you really think that the cause of your problem is evil, no need to apply to CoSiNus, we are not God!) IMFT - CoSiNus 6 Debugging Methodical process to find and fix flows in a code.
    [Show full text]
  • Lecture 15 15.1 Paging
    CMPSCI 377 Operating Systems Fall 2009 Lecture 15 Lecturer: Emery Berger Scribe: Bruno Silva,Jim Partan 15.1 Paging In recent lectures, we have been discussing virtual memory. The valid addresses in a process' virtual address space correspond to actual data or code somewhere in the system, either in physical memory or on the disk. Since physical memory is fast and is a limited resource, we use the physical memory as a cache for the disk (another way of saying this is that the physical memory is \backed by" the disk, just as the L1 cache is \backed by" the L2 cache). Just as with any cache, we need to specify our policies for when to read a page into physical memory, when to evict a page from physical memory, and when to write a page from physical memory back to the disk. 15.1.1 Reading Pages into Physical Memory For reading, most operating systems use demand paging. This means that pages are only read from the disk into physical memory when they are needed. In the page table, there is a resident status bit, which says whether or not a valid page resides in physical memory. If the MMU tries to get a physical page number for a valid page which is not resident in physical memory, it issues a pagefault to the operating system. The OS then loads that page from disk, and then returns to the MMU to finish the translation.1 In addition, many operating systems make some use of pre-fetching, which is called pre-paging when used for pages.
    [Show full text]
  • NASM for Linux
    1 NASM for Linux Microprocessors II 2 NASM for Linux Microprocessors II NASM Package nasm package available as source or as executables Typically /usr/bin/nasm and /usr/bin/ndisasm Assembly NASM Linux requires elf format for object files ELF = Executable and Linking Format Typical header size = 330h bytes for nasm −f elf [−o <output>] <filename> Linking Linux Object files can be linked with gcc gcc [−options] <filename.o> [other_files.o] Disassembly View executable as 32-bit assembly code ndisasm −e 330h –b 32 a.out | less objdump –d a.out | less Fall 2007 Hadassah College Dr. Martin Land Fall 2007 Hadassah College Dr. Martin Land 3 NASM for Linux Microprocessors II 4 NASM for Linux Microprocessors II gcc Stages Example — 1 Stages of Gnu C compilation factorial2.c #include <math.h> main #include <stdio.h> sets j = 12 main() Source Translation Assembly Object Executable calls factorial 10,000,000 times Code Unit Code Code File { int times; prog.c prog.i prog.s prog.o a.out int i , j = 12; preprocess compile assemble link for (times = 0 ; times < 10000000 ; ++times){ i = factorial(j); gcc -E } gcc -S printf("%d\n",i); gcc -c } gcc int factorial(n) int n; factorial calculates n! by recursion { if (n == 0) return 1; else return n * factorial(n-1); } Fall 2007 Hadassah College Dr. Martin Land Fall 2007 Hadassah College Dr. Martin Land 5 NASM for Linux Microprocessors II 6 NASM for Linux Microprocessors II Example — 2 Example — 3 ~/gcc$ gcc factorial2.c Compile program as separate files produces executable a.out factorial2a.c ~/gcc$ time a.out main() { 479001600 int times; int i,j=12; for (times = 0 ; times < 10000000 ; ++times){ real 0m9.281s i = factorial(j); factorial2b.c } #include <math.h> printf("%d\n",i); user 0m8.339s #include <stdio.h> } sys 0m0.008s int factorial(n) int n; { Program a.out runs in 8.339 seconds on 300 MHz if (n == 0) Pentium II return 1; else return n * factorial(n-1); } Fall 2007 Hadassah College Dr.
    [Show full text]
  • Memory Management
    Memory management Virtual address space ● Each process in a multi-tasking OS runs in its own memory sandbox called the virtual address space. ● In 32-bit mode this is a 4GB block of memory addresses. ● These virtual addresses are mapped to physical memory by page tables, which are maintained by the operating system kernel and consulted by the processor. ● Each process has its own set of page tables. ● Once virtual addresses are enabled, they apply to all software running in the machine, including the kernel itself. ● Thus a portion of the virtual address space must be reserved to the kernel Kernel and user space ● Kernel might not use 1 GB much physical memory. ● It has that portion of address space available to map whatever physical memory it wishes. ● Kernel space is flagged in the page tables as exclusive to privileged code (ring 2 or lower), hence a page fault is triggered if user-mode programs try to touch it. ● In Linux, kernel space is constantly present and maps the same physical memory in all processes. ● Kernel code and data are always addressable, ready to handle interrupts or system calls at any time. ● By contrast, the mapping for the user-mode portion of the address space changes whenever a process switch happens Kernel virtual address space ● Kernel address space is the area above CONFIG_PAGE_OFFSET. ● For 32-bit, this is configurable at kernel build time. The kernel can be given a different amount of address space as desired. ● Two kinds of addresses in kernel virtual address space – Kernel logical address – Kernel virtual address Kernel logical address ● Allocated with kmalloc() ● Holds all the kernel data structures ● Can never be swapped out ● Virtual addresses are a fixed offset from their physical addresses.
    [Show full text]
  • ENCM 335 Fall 2018 Lab 3 for the Week of October 1
    page 1 of 11 ENCM 335 Fall 2018 Lab 3 for the Week of October 1 Steve Norman Department of Electrical & Computer Engineering University of Calgary September 2018 Lab instructions and other documents for ENCM 335 can be found at https://people.ucalgary.ca/~norman/encm335fall2018/ Administrative details Each student must hand in their own assignment Later in the course, you may be allowed to work in pairs on some assignments. Due Dates The Due Date for this assignment is 3:30pm Friday, October 5. The Late Due Date is 3:30pm Tuesday, October 9 (not Monday the 8th, because that is a holiday). The penalty for handing in an assignment after the Due Date but before the Late Due Date is 3 marks. In other words, X/Y becomes (X{3)/Y if the assignment is late. There will be no credit for assignments turned in after the Late Due Date; they will be returned unmarked. Marking scheme A 4 marks B 8 marks C unmarked D 2 marks E 8 marks F 2 marks G 4 marks total 28 marks How to package and hand in your assignments Please see the information in the Lab 1 instructions. Function interface comments, continued For Lab 2, you were asked to read a document called \Function Interface Com- ments". ENCM 335 Fall 2018 Lab 3 page 2 of 11 Figure 1: Sketch of a program with a function to find the average element value of an array of ints. The function can be given only one argument, and the function is supposed to work correctly for whatever number of elements the array has.
    [Show full text]
  • Theory of Operating Systems
    Exam Review ● booting ● I/O hardware, DMA, I/O software ● device drivers ● virtual memory 1 booting ● hardware is configured to execute a program in Read-Only Memory (ROM) or flash memory: – the BIOS, basic I/O system – UEFI is the current equivalent ● BIOS knows how to access all the disk drives, chooses one to boot (perhaps with user assistance), loads the first sector (512 bytes) into memory, and starts to execute it (jmp) – first sector often includes a partition table 2 I/O hardware and DMA ● electronics, and sometimes moving parts, e.g. for disks or printers ● status registers and control registers read and set by CPU software – registers can directly control hardware, or be read and set by the device controller ● device controller can be instructed to do Direct Memory Access to transfer data to and from the CPU's memory – DMA typically uses physical addresses 3 Structure of I/O software ● user programs request I/O: read/write, send/recv, etc – daemons and servers work autonomously ● device-independent software converts the request to a device-dependent operation, and also handles requests from device drivers – e.g file systems and protocol stacks – e.g. servers in Minix ● one device driver may manage multiple devices – and handles interrupts ● buffer management required! 4 Device Drivers ● configure the device or device controller – i.e. must know specifics about the hardware ● respond to I/O requests from higher-level software: read, write, ioctl ● respond to interrupts, usually by reading status registers, writing to control registers, and transferring data (either via DMA, or by reading and writing data registers) 5 Memory Management ● linear array of memory locations ● memory is either divided into fixed-sized units (e.g.
    [Show full text]
  • Theory of Operating Systems
    Exam Review ● booting ● I/O hardware, DMA, I/O software ● device drivers ● memory (i.e. address space) management ● virtual memory 1 booting ● hardware is configured to execute a program in Read-Only Memory (ROM) or flash memory: – the BIOS, basic I/O system – UEFI is the current equivalent ● BIOS knows how to access all the disk drives, chooses one to boot (perhaps with user assistance), loads the first sector (512 bytes) into memory, and starts to execute it (jmp) – first sector often includes a partition table 2 I/O hardware and DMA ● electronics, and sometimes (disks, printers) moving parts ● status registers and control registers read and set by CPU software – registers can directly control hardware, or be read and set by the device controller ● device controller can be instructed to do Direct Memory Access to transfer data to and from the CPU's memory – DMA typically uses physical addresses 3 Structure of I/O software ● user programs request I/O: read/write, send/recv, etc – daemons and servers work autonomously ● device-independent software converts the request to a device-dependent operation, and also handles requests from device drivers – e.g file systems and protocol stacks – e.g. servers in Minix ● one device driver may manage multiple devices – and handles interrupts ● buffer management required! 4 Device Drivers ● configure the device or device controller – i.e. must know specifics about the hardware ● respond to I/O requests from higher-level software: read, write, ioctl ● respond to interrupts, usually by reading status registers, writing to control registers, and transferring data (either via DMA, or by reading and writing data registers) 5 Memory Management ● linear array of memory locations ● memory is either divided into fixed-sized units (e.g.
    [Show full text]
  • A Study on Faults and Error Propagation in the Linux Operating System
    A Thesis for the Degree of Ph.D. in Engineering A Study on Faults and Error Propagation in the Linux Operating System March 2016 Graduate School of Science and Technology Keio University Takeshi Yoshimura Acknowledgement I would like to thank my adviser, Prof. Kenji Kono. His guidance helped me in all the time of research. I would like to express my sincere gratitude to Prof. Hiroshi Yamada. This dissertation would not have been possible without their advice and encouragement. I am also grateful to the members of my thesis committee: Prof. Shingo Takada, Prof. Hiroaki Saito, and Prof. Kenichi Kourai. This dissertation was greatly improved by their invaluable feedback. During my Ph.D., I did an internship at NEC. I enjoyed working with Dr. Masato Asahara and the opportunity had a significant impact on my research skills. He also taught me LDA, which is the core of the fault study in this dis- sertation. I am also thankful to my colleagues in the sslab. Their surprising enthusiasm and skills have always inspired me. I appreciate the financial supports from the Research Fellowships of the Japan Society for the Promotion of Science for Young Scientists and the Core Re- search for Evolutional Science and Technology of Japan Science and Technology Agency. Finally, I would like to thank my family, my parents, sister for their support all these years. Without their support and encouragement, many accomplishments in my life including this dissertation would not have been possible. 2 Abstract A Study on Faults and Error Propagation in the Linux Operating System Takeshi Yoshimura Operating systems are crucial for application reliability.
    [Show full text]
  • GDB Debugger CS 211 – Programming Practicum GDB Debugger
    GDB Debugger CS 211 – Programming Practicum GDB Debugger • Part of the GNU Software Tools • Many Debuggers in IDEs are just Wrappers for GDB • Huge amount of commands in GBD, many options available to help debug your program • Even to most basic knowledge can save you lots of time GDB Debugger • Step 1 – Compile your program using the –g flag • gcc –g mazeflawed.c • The –g flag creates additional information for the executable that gdb used to convert machine code lines back to the source code line of the original program GDB Debugger • Step 2 - Open the GDB debugger • gdb a.out • Give the name of the executable created by the compiler GDB Debugger • Step 3 – Run your program with any command line arguments • run <command-line-arguments> • If no command line arguments are needed, just type in run. • For the mazeflawed.c program, you need the datafile name, so: • run mazedata1.txt GDB Debugger • Step 4 – Let GDB tell you on which line the Segmentation Fault occurs Program received signal SIGSEGV, Segmentation fault. 0x00000000004007a9 in main (argc=2, argv=0x7fffffffca78) at mazeflawed.c:52 52 m1.arr[i][j] = '.’; • The above states the Segmentation fault occurred at line 52. • It also shows the code at line 52 GDB Debugger • Step 5 – The list command will display more lines of code • Use the help command to find out about more commands. • GDB has so many commands that no one knows them all. • Most people learn a few key commands. GDB Debugger • Step 6 – The print command will display values stored in variables 52 m1.arr[i][j] = ‘.’; print i $1 = 14 • The print i command shows that the variable i contains the value of 14 at the time of the segmentation fault.
    [Show full text]
  • Release Notes for Iplanet Unified Development Server (UDS) Version 5.0, SP1 Updated December 7, 2001
    Release Notes for iPlanet Unified Development Server (UDS) Version 5.0, SP1 Updated December 7, 2001 These release notes contain important information available at the time of the release of iPlanet Unified Development Server, Version 5.0, SP1 (UDS). Information on significant updates, known problems, fixed bugs, and other issues are addressed here. Read this document before you begin using this release of UDS. These release notes contain the following sections: • “General Information” • “Supported Systems and Software” • “Updates in UDS, Version 5.0, SP1” • “Bugs Fixed in UDS, Version 5.0, SP1” • “Known Problems” • “UDS Distribution Files” • “How to Report Problems” • “For More Information” 1 General Information General Information UDS Version 5.0, SP1 contains fixes for problems that were found with iPlanet Unified Development Server, Version 5.0. This release is available to all currently supported customers through iPlanet’s SubscribeNet service and will be shipped to new customers. New customers who want access to this release, please contact iPlanet sales. The distribution for this release includes the following: • UDS Ve rsion 5.0 , SP 1 • UDS Express Version 5.0, SP1 • UDS Web Enterprise Version 5.0, SP1 • UDS Runtime Version 5.0, SP1 • UDS Version 5.0 documentation Changes in Distribution Format The format for the distribution files has changed for this release. The section in this document, “UDS Distribution Files,” provides information on how to prepare the downloaded distribution files for installation. Note: UDS for the OS/390 platform is only available on IBM 3490 tape media. The SubscribeNet web site contains information about obtaining the UDS for the OS/390 distribution.
    [Show full text]
  • Memory Protection: Kernel and User Address Spaces Andy Wang Operating Systems COP 4610 / CGS 5765 up to This Point
    Memory Protection: Kernel and User Address Spaces Andy Wang Operating Systems COP 4610 / CGS 5765 Up to This Point . Threads provide the illusion of an infinite number of CPUs . On a single processor machine . Memory management provides a different set of illusions . Protected memory . Infinite amount of memory . Transparent sharing Physical vs. Virtual Memory Physical memory Virtual memory No protection Each process isolated from others and from OS Limited size Illusion of infinite memory Sharing visible to Each process cannot tell processes if memory is shared Memory Organizations . Simplest: uniprogramming without memory protection . Each application runs within a hardwired range of physical memory addresses . One application runs at a time . Application can use the same physical addresses every time, across reboots Uniprogramming Without Memory Protection . Applications typically use the lower memory addresses . An OS uses the higher memory addresses . An application can address any physical memory location Application Operating system 000000 ffffff Physical memory Multiprogramming Without Memory Protection . When a program is copied into memory, a linker-loader alters the code of the program (e.g., loads, stores, and jumps) . To use the address of where the program lands in memory . This is kind of what happens when you run the command gcc –o [filename]. It links object code into an executable. Multiprogramming Without Memory Protection . Bugs in any program can cause other programs to crash, even the OS Application 1 Application 2 Operating system 000000 ffffff Physical memory Multiprogrammed OS With Memory Protection . Memory protection keeps user programs from crashing one another and the OS . Two hardware-supported mechanisms .
    [Show full text]