DOCSLIB.ORG

Edinburgh Research Explorer

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Edinburgh Research Explorer Edinburgh Research Explorer The Serverkernel Operating System Citation for published version: Larrea, J & Barbalace, A 2020, The Serverkernel Operating System. in Proceedings of the Third ACM International Workshop on Edge Systems, Analytics and Networking. ACM Association for Computing Machinery, New York, NY, USA, pp. 13–18, 3rd International Workshop on Edge Systems, Analytics and Networking, Heraklion, Crete, Greece, 27/04/20. https://doi.org/10.1145/3378679.3394537 Digital Object Identifier (DOI): 10.1145/3378679.3394537 Link: Link to publication record in Edinburgh Research Explorer Document Version: Peer reviewed version Published In: Proceedings of the Third ACM International Workshop on Edge Systems, Analytics and Networking General rights Copyright for the publications made accessible via the Edinburgh Research Explorer is retained by the author(s) and / or other copyright owners and it is a condition of accessing these publications that users recognise and abide by the legal requirements associated with these rights. Take down policy The University of Edinburgh has made every reasonable effort to ensure that Edinburgh Research Explorer content complies with UK legislation. If you believe that the public display of this file breaches copyright please contact [email protected] providing details, and we will remove access to the work immediately and investigate your claim. Download date: 30. Sep. 2021 The Serverkernel Operating System Jon Larrea Antonio Barbalace University of Edinburgh University of Edinburgh [email protected] [email protected] ABSTRACT shop, familiar items like speakers or lamps come with integrated With the idea of exploiting all the computational resources that an voice assistant capabilities (e.g., Amazon Echo with Alexa support)! IoT environment with multiple mostly-idle interconnected devices From a compute capacity perspective, this scenario opens the door offers, the serverkernel is presented as a new operating system (OS) to a world that provides a broad set of network interconnected pro- architecture that blends ideas from Unikernels and RTOSes. These cessing units that remains the majority of the time in idle status. IoT ideas are further mixed with a FaaS-like programming model to lamps and lighting devices prove the truthfulness of this statement: provide a server in which a user can remotely offload computations their integrated processing units, commonly part of a System on and get the result. Such OS architecture is minimalistic – a bare- Chip (SoC), leaves the idle status only when a new turn-on/turn-off metal OS in which only drivers for CPU, network, and accelerators command arrives from the WiFi chip. Ergo, creating a substrate of are required in order to provide service. compute devices that can be opportunistically exploited to offload To demonstrate the advantages of the serverkernel, jonOS, an computations – especially when they are not energy-constrained, open-source C implementation of this architecture for Raspberry Pi, or have enough power to still correctly functioning for what they is provided. Compared with traditional OSes used in IoT devices, the have been built. serverkernel achieves an improvement ratio of 1.5 in CPU time, 2.5 At this point is where this research work comes into the scene, in execution time, and around 9 times better in network processing. providing a high-performance solution to delegate load on mostly- idle IoT and generic embedded devices. The serverkernel is presented KEYWORDS as a new OS architecture that takes advantage of this multi-device scenario allowing remote computation offloads, efficiently and se- Operating Systems, Serverkernel, IoT, Unikernel, FaaS curely. This new OS architecture mixes ideas from Unikernels, Func- ACM Reference Format: tion as a Service, and Cyclic Executive. Jon Larrea and Antonio Barbalace. 2020. The Serverkernel Operating System. jonOS is the result of implementing the serverkernel OS on real In 3rd International Workshop on Edge Systems, Analytics and Networking hardware targeting high performance. After exhaustive bench- (EdgeSys ’20), April 27, 2020, Heraklion, Greece. ACM, New York, NY, USA, jonOS 6 pages. https://doi.org/10.1145/3378679.3394537 marks, demonstrated better performance of using traditional operating systems, namely Linux, in the described targe scenario. 1 INTRODUCTION In the last years, the demand for IoT devices has grown exponen- 2 BACKGROUND tially, stimulating vendors to broaden the offer of available devices Minimal OSes. Recently, there has been a returned interest in on the market. With more IoT devices on the market, vendors minimal operating systems with Unikernels [18] in the domain of compete for higher performance, smaller physical sizes (miniatur- cloud computing, and little real-time OSes in the domain of IoT ization), lower power consumption, etc. while the per-device price [5, 6]. These fundamentally differ from the well documented tradi- dropped down. Thus, IoT devices are today part of our life; they can tional multi-user/task OS architectures described in [25] – which be found in our city (e.g., intelligent hospital), workplace, home, Linux [13] is a reference implementation. Linux has many variants and on our body (e.g., smartwatch). As a consequence, there are that provide a complete solution for all kinds of scenarios, including research and development to further make IoT devices part of our embedded systems [31]. Thus, it is preferred in several deployments lives, including their integration in wearable and textiles [9, 16, 30], because it may reduce the time to market, and also because it is as well as into medical devices and prothesis [17, 28], which are backed by a large development community that makes it easy to supported by innovative production mechanisms, such as replacing find people trained on Linux. the traditional silicon wafer with flexible materials7 [ ]. Moreover, Unikernels are somewhat derived by the Exokernel OS design [14]. as many of these devices are battery-powered, but batteries cannot Such design strives to provide the closest access to hardware re- easily be charged, energy-harvesting technologies, which aims to sources to the application itself, enabling the application developer implement power-independent platforms that can reap energy from to make low-level decisions. In an Exokernel OS most of the oper- movements or the environment, are at raise [20, 22, 27, 29]. ating system services are deployed into a user-space library, called Now we have an uncommon scenario with many devices at- libOS, which is linked with the application itself. A Unikernel is tached to everyday objects. No one gets surprised when, at the quite similar; in fact, it also provides a libOS that is linked with the application itself. Of the libOS, only the functionalities that EdgeSys ’20, April 27, 2020, Heraklion, Greece © 2020 Association for Computing Machinery. are strictly required by the application to run are used, the oth- This is the author’s version of the work. It is posted here for your personal use. Not ers are discarded during the compilation process – reducing the for redistribution. The definitive Version of Record was published in 3rd International trusted computing base (TCB), and improving security [19]. Thus, Workshop on Edge Systems, Analytics and Networking (EdgeSys ’20), April 27, 2020, Heraklion, Greece, https://doi.org/10.1145/3378679.3394537. Unikernels are tailored to fit the specific needs of an application. Additionally, the application and the libOS run in the same address EdgeSys ’20, April 27, 2020, Heraklion, Greece Jon Larrea and Antonio Barbalace space, which is kernel-space for a Unikernel. Due to the single The serverkernel is a single-address space mono-task OS. The address space, a unikernelized application does not cross address- OS kernel and the application code – which has been received via space boundaries and has direct access to (potentially) all devices the network, reside both in kernel-space to avoid context switch- on a platform – thus, it can access them with the maximum perfor- ing overhead. At the same time, to do not expose the hardware to mance. security risks, application code is run in a shielded environment, Besides the security and performance advantages brought by and a watchdog periodically checks for OS liveliness. For the sake Unikernels, Unikernels were not designed to run on bare-metal, of minimality, the serverkernel offers a limited set of functionalities. but atop a hypervisor that exposes standard virtualized devices. Only device drivers for network cards, CPU, and accelerators (in- Running a hypervisor is not always an option on embedded de- cluded security engines) are necessary to achieve high-performance vices [23], and when it is, it may introduce non-trivial overheads, executions. not just because of the hardware but also due to the software [21]. This could be thought of as a Unikernel, which is also single- Unikernels usually support a very narrow set of devices, hence address space, but its main functionality is a server. However, a are not a good fit for embedded devices, including IoT. Therefore, serverkernel cannot be optimized according to just one application’s most IoT devices today adopt little real-time operating systems [26] requirements because it has been designed to run generic appli- (RTOS). Such OSes offer time guarantees for applications that need cation code. From the functionality perspective, the proposed OS to process data as it comes to the device – i.e., producing an answer sounds similar to a FaaS runtime, but the latter runs in user-space, in a specific amount of time from when the data is received. How- not integrated within the OS kernel. Moreover, the dispatching of ever, most RTOS today are bloated with additional code to support application code to the serverkernel is directed by the client itself, multimedia, multi-tasking, etc., incorporating design traits from while in FaaS it is the responsibility of the data-center provider. traditional multi-user/task OS architectures. Hence, less suitable Hence, the serverkenel borrows concepts from Unikernels and FaaS, for maximum performance.
Load more

Recommended publications
  • Uva-DARE (Digital Academic Repository)
    UvA-DARE (Digital Academic Repository) On the construction of operating systems for the Microgrid many-core architecture van Tol, M.W. Publication date 2013 Link to publication Citation for published version (APA): van Tol, M. W. (2013). On the construction of operating systems for the Microgrid many-core architecture. General rights It is not permitted to download or to forward/distribute the text or part of it without the consent of the author(s) and/or copyright holder(s), other than for strictly personal, individual use, unless the work is under an open content license (like Creative Commons). Disclaimer/Complaints regulations If you believe that digital publication of certain material infringes any of your rights or (privacy) interests, please let the Library know, stating your reasons. In case of a legitimate complaint, the Library will make the material inaccessible and/or remove it from the website. Please Ask the Library: https://uba.uva.nl/en/contact, or a letter to: Library of the University of Amsterdam, Secretariat, Singel 425, 1012 WP Amsterdam, The Netherlands. You will be contacted as soon as possible. UvA-DARE is a service provided by the library of the University of Amsterdam (https://dare.uva.nl) Download date:27 Sep 2021 General Bibliography [1] J. Aas. Understanding the linux 2.6.8.1 cpu scheduler. Technical report, Silicon Graphics Inc. (SGI), Eagan, MN, USA, February 2005. [2] D. Abts, S. Scott, and D. J. Lilja. So many states, so little time: Verifying memory coherence in the Cray X1. In Proceedings of the 17th International Symposium on Parallel and Distributed Processing, IPDPS '03, page 10 pp., Washington, DC, USA, April 2003.
    [Show full text]
  • High Performance Computing Systems
    High Performance Computing Systems Multikernels Doug Shook Multikernels Two predominant approaches to OS: – Full weight kernel – Lightweight kernel Why not both? – How does implementation affect usage and performance? Gerolfi, et. al. “A Multi-Kernel Survey for High- Performance Computing,” 2016 2 FusedOS Assumes heterogeneous architecture – Linux on full cores – LWK requests resources from linux to run programs Uses CNK as its LWK 3 IHK/McKernel Uses an Interface for Heterogeneous Kernels – Resource allocation – Communication McKernel is the LWK – Only operable with IHK Uses proxy processes 4 mOS Embeds LWK into the Linux kernel – LWK is visible to Linux just like any other process Resource allocation is performed by sysadmin/user 5 FFMK Uses the L4 microkernel – What is a microkernel? Also uses a para-virtualized Linux instance – What is paravirtualization? 6 Hobbes Pisces Node Manager Kitten LWK Palacios Virtual Machine Monitor 7 Sysadmin Criteria Is the LWK standalone? Which kernel is booted by the BIOS? How and when are nodes partitioned? 8 Application Criteria What is the level of POSIX support in the LWK? What is the pseudo file system support? How does an application access Linux functionality? What is the system call overhead? Can LWK and Linux share memory? Can a single process span Linux and the LWK? Does the LWK support NUMA? 9 Linux Criteria Are LWK processes visible to standard tools like ps and top? Are modifications to the Linux kernel necessary? Do Linux kernel changes propagate to the LWK?
    [Show full text]
  • W4118: Multikernel
    W4118: multikernel Instructor: Junfeng Yang References: Modern Operating Systems (3rd edition), Operating Systems Concepts (8th edition), previous W4118, and OS at MIT, Stanford, and UWisc Motivation: sharing is expensive Difficult to parallelize single-address space kernels with shared data structures . Locks/atomic instructions: limit scalability . Must make every shared data structure scalable • Partition data • Lock-free data structures • … . Tremendous amount of engineering Root cause . Expensive to move cache lines . Congestion of interconnect 1 Multikernel: explicit sharing via messages Multicore chip == distributed system! . No shared data structures! . Send messages to core to access its data Advantages . Scalable . Good match for heterogeneous cores . Good match if future chips don’t provide cache- coherent shared memory 2 Challenge: global state OS must manage global state . E.g., page table of a process Solution . Replicate global state . Read: read local copy low latency . Update: update local copy + distributed protocol to update remote copies • Do so asynchronously (“split phase”) 3 Barrelfish overview Figure 5 in paper CPU driver . kernel-mode part per core . Inter-Processor interrupt (IPI) Monitors . OS abstractions . User-level RPC (URPC) 4 IPC through shared memory #define CACHELINE (64) struct box{ char buf[CACHELINE-1]; // message contents char flag; // high bit == 0 means sender owns it }; __attribute__ ((aligned (CACHELINE))) struct box m __attribute__ ((aligned (CACHELINE))); send() recv() { { // set up message while(!(m.flag & 0x80)) memcpy(m.buf, …); ; m.flag |= 0x80; m.buf … //process message } } 5 Case study: TLB shootdown When is it necessary? Windows & Linux: send IPIs Barrelfish: sends messages to involved monitors . 1 broadcast message N-1 invalidates, N-1 fetches .
    [Show full text]
  • Multiprocessor Operating Systems CS 6410: Advanced Systems
    Introduction Multikernel Tornado Conclusion Discussion Outlook References Multiprocessor Operating Systems CS 6410: Advanced Systems Kai Mast Department of Computer Science Cornell University September 4, 2014 Kai Mast — Multiprocessor Operating Systems 1/47 Introduction Multikernel Tornado Conclusion Discussion Outlook References Let us recall Multiprocessor vs. Multicore Figure: Multiprocessor [10] Figure: Multicore [10] Kai Mast — Multiprocessor Operating Systems 2/47 Introduction Multikernel Tornado Conclusion Discussion Outlook References Let us recall Message Passing vs. Shared Memory Shared Memory Threads/Processes access the same memory region Communication via changes in variables Often easier to implement Message Passing Threads/Processes don’t have shared memory Communication via messages/events Easier to distribute between different processors More robust than shared memory Kai Mast — Multiprocessor Operating Systems 3/47 Introduction Multikernel Tornado Conclusion Discussion Outlook References Let us recall Miscellaneous Cache Coherence Inter-Process Communication Remote-Procedure Call Preemptive vs. cooperative Multitasking Non-uniform memory access (NUMA) Kai Mast — Multiprocessor Operating Systems 4/47 Introduction Multikernel Tornado Conclusion Discussion Outlook References Current Systems are Diverse Different Architectures (x86, ARM, ...) Different Scales (Desktop, Server, Embedded, Mobile ...) Different Processors (GPU, CPU, ASIC ...) Multiple Cores and/or Multiple Processors Multiple Operating Systems on a System (Firmware,
    [Show full text]
  • Design and Implementation of the Heterogeneous Multikernel Operating System
    223 Design and Implementation of the Heterogeneous Multikernel Operating System Yauhen KLIMIANKOU Department of Computer Systems and Networks, Belarusian State University of Informatics and Radioelectronics, Belarus Abstract. The design of the computer system was significantly changed due to the emergence and popularization of the multicore processors. Moving to the advanced multicore processors, moving to the heterogeneous computer systems and increasing of the integrity level between computer system components are the main trends of the computer systems development. Significant changes in the computer systems design make reasonable the attempt of reviewing the operating system design to make it optimal for the new hardware platform. The proposed operation system design assume moving from monolithic centralized operating system to the decentralized network of the distributed independent nodes, each of which will play the role of the processor driver and threads container. The proposed design provide the numbers of the benefits against ordinal operating systems: dynamics in space and time, improved level of reliability and flexibility, support of the heterogeneous computer systems. Keywords. Multiprocessor computer system, heterogeneous computer system, real-time system Introduction Computer systems design is changing much faster than the operating systems design. The internal architecture of the modern computer resembles a distributed network system consisting from the mix of processor cores, caches, internal communications, I/O devices and expansion cards. The modern computer is similar to the early parallel computer systems or multiprocessor systems of the last century. Multi-core computer systems, which are essentially the same multi-processor systems localized on the processor die, occupy an increasingly strong position in most segments of the computer market.
    [Show full text]
  • On the Performance and Isolation of Asymmetric Microkernel Design For
    On the Performance and Isolation of Asymmetric Microkernel Design for Lightweight Manycores Pedro Henrique Penna, João Souto, Davidson Lima, Márcio Castro, François Broquedis, Henrique Freitas, Jean-François Mehaut To cite this version: Pedro Henrique Penna, João Souto, Davidson Lima, Márcio Castro, François Broquedis, et al.. On the Performance and Isolation of Asymmetric Microkernel Design for Lightweight Manycores. SBESC 2019 - IX Brazilian Symposium on Computing Systems Engineering, Nov 2019, Natal, Brazil. pp.1-31. hal-02297637v3 HAL Id: hal-02297637 https://hal.archives-ouvertes.fr/hal-02297637v3 Submitted on 30 Mar 2020 HAL is a multi-disciplinary open access L’archive ouverte pluridisciplinaire HAL, est archive for the deposit and dissemination of sci- destinée au dépôt et à la diffusion de documents entific research documents, whether they are pub- scientifiques de niveau recherche, publiés ou non, lished or not. The documents may come from émanant des établissements d’enseignement et de teaching and research institutions in France or recherche français ou étrangers, des laboratoires abroad, or from public or private research centers. publics ou privés. On the Performance and Isolation of Asymmetric Microkernel Design for Lightweight Manycores Pedro Henrique Penna, João Souto, Davidson Lima, Márcio Castro, François Broquedis, Henrique Freitas, Jean-Francois Mehaut To cite this version: Pedro Henrique Penna, João Souto, Davidson Lima, Márcio Castro, François Broquedis, et al.. On the Performance and Isolation of Asymmetric Microkernel
    [Show full text]
  • The Barrelfish Multi- Kernel: an Interview with Timothy Roscoe
    INCREASING CPU PERFORMANCE WITH faster clock speeds and ever more complex RIK FARROW hardware for pipelining and memory ac- cess has hit the brick walls of power and the Barrelfish multi- bandwidth. Multicore CPUs provide the way forward but also present obstacles to using kernel: an interview existing operating systems design as they with Timothy Roscoe scale upwards. Barrelfish represents an ex- perimental operating system design where Timothy Roscoe is part of the ETH Zürich Computer early versions run faster than Linux on the Science Department’s Systems Group. His main research areas are operating systems, distributed same hardware, with a design that should systems, and networking, with some critical theory on the side. scale well to systems with many cores and [email protected] even different CPU architectures. Barrelfish explores the design of a multikernel Rik Farrow is the Editor of ;login:. operating system, one designed to run non-shared [email protected] copies of key kernel data structures. Popular cur- rent operating systems, such as Windows and Linux, use a single, shared operating system image even when running on multiple-core CPUs as well as on motherboard designs with multiple CPUs. These monolithic kernels rely on cache coherency to protect shared data. Multikernels each have their own copy of key data structures and use message passing to maintain the correctness of each copy. In their SOSP 2009 paper [1], Baumann et al. describe their experiences in building and bench- marking Barrelfish on a variety of Intel and AMD systems ranging from four to 32 cores. When these systems run Linux or Windows, they rely on cache coherency mechanisms to maintain a single image of the operating system.
    [Show full text]
  • XOS: an Application-Defined Operating System for Datacenter Computing
    XOS: An Application-Defined Operating System for Datacenter Computing Chen Zheng∗y, Lei Wang∗, Sally A. McKeez, Lixin Zhang∗, Hainan Yex and Jianfeng Zhan∗y ∗State Key Laboratory of Computer Architecture, Institute of Computing Technology, Chinese Academy of Sciences yUniversity of Chinese Academy of Sciences, China zChalmers University of Technology xBeijing Academy of Frontier Sciences and Technology Abstract—Rapid growth of datacenter (DC) scale, urgency of ability, and isolation. Such general-purpose, one-size-fits-all cost control, increasing workload diversity, and huge software designs simply cannot meet the needs of all applications. The investment protection place unprecedented demands on the op- kernel traditionally controls resource abstraction and alloca- erating system (OS) efficiency, scalability, performance isolation, and backward-compatibility. The traditional OSes are not built tion, which hides resource-management details but lengthens to work with deep-hierarchy software stacks, large numbers of application execution paths. Giving applications control over cores, tail latency guarantee, and increasingly rich variety of functionalities usually reserved for the kernel can streamline applications seen in modern DCs, and thus they struggle to meet systems, improving both individual performances and system the demands of such workloads. throughput [5]. This paper presents XOS, an application-defined OS for modern DC servers. Our design moves resource management There is a large and growing gap between what DC ap- out of the
    [Show full text]
  • Providing a Shared File System in the Hare POSIX Multikernel Charles
    Providing a Shared File System in the Hare POSIX Multikernel by Charles Gruenwald III Submitted to the Department of Electrical Engineering and Computer Science in partial fulfillment of the requirements for the degree of Doctor of Philosophy in Computer Science at the MASSACHUSETTS INSTITUTE OF TECHNOLOGY June 2014 c Massachusetts Institute of Technology 2014. All rights reserved. Author.............................................................. Department of Electrical Engineering and Computer Science May 21, 2014 Certified by. Frans Kaashoek Professor Thesis Supervisor Certified by. Nickolai Zeldovich Associate Professor Thesis Supervisor Accepted by . Leslie Kolodziejski Chairman, Department Committee on Graduate Theses 2 Providing a Shared File System in the Hare POSIX Multikernel by Charles Gruenwald III Submitted to the Department of Electrical Engineering and Computer Science on May 21, 2014, in partial fulfillment of the requirements for the degree of Doctor of Philosophy in Computer Science Abstract Hare is a new multikernel operating system that provides a single system image for multicore processors without cache coherence. Hare allows applications on different cores to share files, directories, file descriptors, sockets, and processes. The main challenge in designing Hare is to support shared abstractions faithfully enough to run applications that run on traditional shared-memory operating systems with few modifications, and to do so while scaling with an increasing number of cores. To achieve this goal, Hare must support shared abstractions (e.g., file descriptors shared between processes) that appear consistent to processes running on any core, but without relying on hardware cache coherence between cores. Moreover, Hare must implement these abstractions in a way that scales (e.g., sharded directories across servers to allow concurrent operations in that directory).
    [Show full text]
  • Popcorn Linux: Enabling Efficient Inter-Core Communication in a Linux-Based Multikernel Operating System
    Popcorn Linux: enabling efficient inter-core communication in a Linux-based multikernel operating system Benjamin H. Shelton Thesis submitted to the Faculty of the Virginia Polytechnic Institute and State University in partial fulfillment of the requirements for the degree of Master of Science in Computer Engineering Binoy Ravindran Christopher Jules White Paul E. Plassman May 2, 2013 Blacksburg, Virginia Keywords: Operating systems, multikernel, high-performance computing, heterogeneous computing, multicore, scalability, message passing Copyright 2013, Benjamin H. Shelton Popcorn Linux: enabling efficient inter-core communication in a Linux-based multikernel operating system Benjamin H. Shelton (ABSTRACT) As manufacturers introduce new machines with more cores, more NUMA-like architectures, and more tightly integrated heterogeneous processors, the traditional abstraction of a mono- lithic OS running on a SMP system is encountering new challenges. One proposed path forward is the multikernel operating system. Previous efforts have shown promising results both in scalability and in support for heterogeneity. However, one effort’s source code is not freely available (FOS), and the other effort is not self-hosting and does not support a majority of existing applications (Barrelfish). In this thesis, we present Popcorn, a Linux-based multikernel operating system. While Popcorn was a group effort, the boot layer code and the memory partitioning code are the authors work, and we present them in detail here. To our knowledge, we are the first to support multiple instances of the Linux kernel on a 64-bit x86 machine and to support more than 4 kernels running simultaneously. We demonstrate that existing subsystems within Linux can be leveraged to meet the design goals of a multikernel OS.
    [Show full text]
  • Library Operating Systems for the Cloud
    Unikernels: Library Operating Systems for the Cloud Anil Madhavapeddy, Richard Mortier1, Charalampos Rotsos, David Scott2, Balraj Singh, Thomas Gazagnaire3, Steven Smith, Steven Hand and Jon Crowcroft University of Cambridge, University of Nottingham1, Citrix Systems Ltd2, OCamlPro SAS3 fi[email protected], fi[email protected], [email protected], fi[email protected] Abstract Configuration Files Mirage Compiler We present unikernels, a new approach to deploying cloud services application source code via applications written in high-level source code. Unikernels are Application Binary configuration files single-purpose appliances that are compile-time specialised into Language Runtime hardware architecture standalone kernels, and sealed against modification when deployed whole-system optimisation to a cloud platform. In return they offer significant reduction in Parallel Threads image sizes, improved efficiency and security, and should reduce operational costs. Our Mirage prototype compiles OCaml code into User Processes Application Code specialised unikernels that run on commodity clouds and offer an order of unikernel magnitude reduction in code size without significant performance OS Kernel Mirage Runtime } penalty. The architecture combines static type-safety with a single address-space layout that can be made immutable via a hypervisor Hypervisor Hypervisor extension. Mirage contributes a suite of type-safe protocol libraries, and our results demonstrate that the hypervisor is a platform that Hardware Hardware overcomes the hardware compatibility issues that have made past library operating systems impractical to deploy in the real-world. Figure 1: Contrasting software layers in existing VM appliances vs. Categories and Subject Descriptors D.4 [Operating Systems]: unikernel’s standalone kernel compilation approach.
    [Show full text]
  • Technologies
    Technologies 3 juillet 2017, RMLL St-Etienne, Michael Bright @mjbright Agenda What are Unikernels ? What they are not. Why Unikernels ? Advantages / Characteristics Application domains Implementations & Tools Demos Usage: Baremetal anyone ? Where’s it all heading ? @mjbright What's it all about ? @mjbright What are Unikernels? “Unikernels are specialized, single-address-space machine images constructed by using library operating systems” “What are Unikernels”, unikernel.org @mjbright What are Unikernels? “Unikernels are specialized, single-address-space machine images constructed by using library operating systems” “What are Unikernels”, unikernel.org “VMs aren't heavy, OSes are" Alfred Bratterud, #includeOS @mjbright What are Unikernels? - They are "Library OS" Specialized applications built with only the "OS" components they need. A Unikernel is an image able to run directly as a VM (on bare metal?) "OS" components such as Network stack, File- system, Device drivers are optional typically, there is no filesystem. So configuration is stored in the unikernel @apmpljibcraitgihotn binary Unikernels: What they are not ... General Purpose OS kernels with unneeded features e.g. floppy drivers, designed to run any software on any hardware are huge - lines of code @mjbright Unikernels are not "top-down" minified versions of General Purpose OSes ... Unikernels: What they are not ... minified OS Container hosts Minimal Linux distributions have been created with similar goals to Unikernels, aimed to be minimal host OS for container engines, e.g. CoreOS Linux Project Atomic RancherOS They aim to be Secure Less features/lines of code : reduced attack surface Atomic updates of system (not quite immutable) Fast to boot : Small binary size Specialized to run containers But these are still reduced versions of general purpose OSes and so have many unnecessary features.
    [Show full text]