DOCSLIB.ORG

SLIC: an Extensibility System for Commodity Operating Systems

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
SLIC: an Extensibility System for Commodity Operating Systems The following paper was originally published in the Proceedings of the USENIX Annual Technical Conference (NO 98) New Orleans, Louisiana, June 1998 SLIC: An Extensibility System for Commodity Operating Systems Douglas P. Ghormley, University of California, Berkeley David Petrou, Carnegie Mellon University Steven H. Rodrigues, Network Appliance, Inc. Thomas E. Anderson, University of Washington For more information about USENIX Association contact: 1. Phone: 510 528-8649 2. FAX: 510 548-5738 3. Email: [email protected] 4. WWW URL:http://www.usenix.org/ SLIC: An Extensibility System for Commodity Operating Systems Douglas P. Ghormley David Petrou Steven H. Rodrigues U.C. Berkeley Carnegie Mellon University Network Appliance, Inc. [email protected] [email protected] [email protected] Thomas E. Anderson University of Washington [email protected] Abstract 1 Introduction Modern commodity operating systems are large and com- Modifying modern commodity operating systems is plex systems developed over many years by large teams of extremely dif®cult and costly. They are large, complex programmers, containing hundreds of thousands of lines of systems developed over many years by large teams of code. Consequently, it is extremely dif®cult to add signi®- programmers and contain millions of lines of code. It cant new functionality to these systems. In response to this is not unusual for major releases of commodity oper- problem, a number of recent research projects have explored ating systems to be riddled with ¯aws introduced dur- novel operating system architectures to support untrusted ex- ing development, typically requiring additional ªbug tensions, including SPIN, VINO, Exokernel, and Fluke. Un- ®xº releases which may in turn introduce their own fortunately, these architectures require substantialimplemen- ¯aws. Compounding these problems, the development tation effort and are not generally available in commodity and debugging environments for operating system ker- systems. nels are considerably behind the state of the art. Conse- In contrast, by leveraging the technique of interposition, quently, it is extremely dif®cult in practice to add sig- we have designed and implemented a prototype extension ni®cant new functionality to modern commodity oper- system called SLIC which requires only trivial operating sys- ating systems [12, 1, 34]. tem changes. SLIC ef®ciently inserts trusted extension code Although modifying commodity operating systems into commodity operating systems, enabling a large class of is complex and dif®cult, the need to do so remains. trusted extensions for existing commodity operating systems There is a large catalog of operating system function- such as Solaris and Linux, while retaining full compatibil- ality which has not been widely deployed, in part be- ity with existing application binaries. By interposing trusted cause of the dif®culty of modifying existing systems: extensions on existing kernel interfaces, our solution enables load sharing [51], process migration [43, 12], fast com- extensions which are protected from malicious applications, munication primitives [6, 44], upcalls [9], distributed are enforced upon uncooperative applications, are compos- shared memory [25], user-level pagers [49], and novel able with extensions from other third-party sources, and can schedulers [46, 13, 27]. In addition, security ¯aws be developed at the user-level using state-of-the-art develop- are routinely discovered and reported by organizations ment tools. We have used SLIC to implement and demon- such as Carnegie-Mellon's Computer Emergency Re- strate a number of useful operating system extensions, in- sponse Team (CERT) and the Department of Energy's cluding a patch to ®x a security hole described in a CERT ad- Computer Incident Advisory Capability (CIAC). De- visory, a simple encryption ®le system, and a restricted exe- spite the need for immediate repair to prevent wide ex- cution environment for arbitrary untrusted binaries. Perfor- ploitation of these ¯aws, the required patches can take mance measurements of the SLIC prototype demonstrate a weeks to become available [42]. one-time installation cost of 2-8 µsec and a per-extension in- This work aims to signi®cantly simplify the pro- vocation overhead commensurate with a procedure call. cess of evolving existing commodity operating sys- tems by enabling new extensions which can manage global resources and/or enforce security guarantees. This work was supported in part by the Defense Advanced Research The ideal system which achieves this goal would pos- Projects Agency (N00600-93-C-2481, F30602-95-C-0014), the National Sci- sess a number of characteristics: it would require few ence Foundation (CDA 9401156), Sun Microsystems, California MICRO, Hewlett Packard, Intel, Microsoft, and Mitsubishi. Anderson was also sup- or no modi®cations to existingoperating systems or ap- ported by a National Science Foundation Presidential Faculty Fellowship. plications; it would introduce little overhead; multiple extensions from independent, third-partysources could binaries. Our work differs from earlier efforts in that be active simultaneously; extensions would be pro- our solutionÐkernel-level interposition of trusted ex- tected from malicious applications and enforced upon tensions on kernel interfacesÐis simple to implement, uncooperative applications; and kernel extension de- is ef®cient, requires no specialized hardware support, velopers would be able to make use of state-of-the-art protects extensions from malicious or faulty applica- user-level development and debugging tools. tions, enforces extensions on uncooperative applica- Accomplishing this goal would enable independent tions, and supports extension stacking. We believe that software vendors (ISV's) to develop and deploy inno- no other system provides this powerful combination of vative operating system features. In particular, new op- features for extending existing commodity operating erating system features developed by research projects systems. could be transferred directly to end users without the Prior attempts to extend the operating system with- need to convince or wait for operating system vendors out signi®cant modi®cation suffered from signi®cant to adopt the modi®cations. Furthermore, many CERT limitations. Interposition Agents [20] leverages the and CIAC security advisories normally require the sys- Mach [1] system call redirection facility to transpar- tem administrator to wait for a patch from the operating ently insert user-level extensions at the system call in- system vendor; instead, the advisory could directly in- terface. However, because extensions run unprotected clude a small extension to correct the ¯aw, reducing the in the application's address space and require appli- window of vulnerability dramatically. cation cooperation, extensions cannot enforce security Prior approaches to extending operating systems guarantees or manage shared resources for competing can be roughly divided into three categories: (i) re- applications. Software Fault Isolation (SFI) [45] can engineering the operating system from the ground up, be used to protect extensions from applications even in the process making it easier to extend, (ii) incremen- when loaded in the same address space. Unfortunately, tally re-engineering selected portions of the kernel, and SFI requires a number of compiler optimizations to (iii) adding extensions to existing systems without sig- achieve low overhead and therefore cannot be applied ni®cant modi®cation to either the operating system or ef®ciently to existing application binaries. Protected its applications. Shared Libraries [4] has the same capability as SFI Over the years, a number of systems have attempted without the need for compiler optimizations, but does to reduce the cost of adding new operating system func- not enforce extensions on applications. tionality by re-engineering the operating system to be To overcome the limitations of these systems, we extensible. Systems built using this approach include have developed SLIC, a prototype system for ef®- Hydra [48], SPIN [5], VINO [36], Exokernel [14], and ciently inserting trusted extension code into existing Fluke [15]. While many of these systems have success- operating systems with minor or no modi®cations to fully demonstrated greatly reduced costs for adding operating system source code. Conceptually, SLIC dy- new functionality, the initial cost of replacing existing namically ªhijacksº various kernel interfaces (such as commodity operating systems is prohibitive; for exam- the system call, signal, or virtual memory paging in- ple, Microsoft spent over $300 M developing Windows terfaces) and transparently reroutes events which cross NT [50]. Consequently, extensibility architectures de- that interface to extensions located either in the kernel veloped using this approach will remain unavailable to (for performance) or at the user-level (for ease of de- the average user for the foreseeable future. velopment). Extensions both use and implement the A small number of projects have taken the second intercepted kernel interface, enabling new functional- approach of re-engineering certain kernel interfaces ity to be added to the system while the underlying ker- to reduce the complexity of adding new functional- nel and existing application binaries remain oblivious ity at those interfaces. The vnode interface [23] is a to those extensions. SLIC dynamically interposes ex- prime example of this approach. However,
Load more

Recommended publications
  • Performance Best Practices for Vmware Workstation Vmware Workstation 7.0
    Performance Best Practices for VMware Workstation VMware Workstation 7.0 This document supports the version of each product listed and supports all subsequent versions until the document is replaced by a new edition. To check for more recent editions of this document, see http://www.vmware.com/support/pubs. EN-000294-00 Performance Best Practices for VMware Workstation You can find the most up-to-date technical documentation on the VMware Web site at: http://www.vmware.com/support/ The VMware Web site also provides the latest product updates. If you have comments about this documentation, submit your feedback to: [email protected] Copyright © 2007–2009 VMware, Inc. All rights reserved. This product is protected by U.S. and international copyright and intellectual property laws. VMware products are covered by one or more patents listed at http://www.vmware.com/go/patents. VMware is a registered trademark or trademark of VMware, Inc. in the United States and/or other jurisdictions. All other marks and names mentioned herein may be trademarks of their respective companies. VMware, Inc. 3401 Hillview Ave. Palo Alto, CA 94304 www.vmware.com 2 VMware, Inc. Contents About This Book 5 Terminology 5 Intended Audience 5 Document Feedback 5 Technical Support and Education Resources 5 Online and Telephone Support 5 Support Offerings 5 VMware Professional Services 6 1 Hardware for VMware Workstation 7 CPUs for VMware Workstation 7 Hyperthreading 7 Hardware-Assisted Virtualization 7 Hardware-Assisted CPU Virtualization (Intel VT-x and AMD AMD-V)
    [Show full text]
  • Chapter 1. Origins of Mac OS X
    1 Chapter 1. Origins of Mac OS X "Most ideas come from previous ideas." Alan Curtis Kay The Mac OS X operating system represents a rather successful coming together of paradigms, ideologies, and technologies that have often resisted each other in the past. A good example is the cordial relationship that exists between the command-line and graphical interfaces in Mac OS X. The system is a result of the trials and tribulations of Apple and NeXT, as well as their user and developer communities. Mac OS X exemplifies how a capable system can result from the direct or indirect efforts of corporations, academic and research communities, the Open Source and Free Software movements, and, of course, individuals. Apple has been around since 1976, and many accounts of its history have been told. If the story of Apple as a company is fascinating, so is the technical history of Apple's operating systems. In this chapter,[1] we will trace the history of Mac OS X, discussing several technologies whose confluence eventually led to the modern-day Apple operating system. [1] This book's accompanying web site (www.osxbook.com) provides a more detailed technical history of all of Apple's operating systems. 1 2 2 1 1.1. Apple's Quest for the[2] Operating System [2] Whereas the word "the" is used here to designate prominence and desirability, it is an interesting coincidence that "THE" was the name of a multiprogramming system described by Edsger W. Dijkstra in a 1968 paper. It was March 1988. The Macintosh had been around for four years.
    [Show full text]
  • Zenon Manual Programming Interfaces
    zenon manual Programming interfaces v.7.11 ©2014 Ing. Punzenberger COPA-DATA GmbH All rights reserved. Distribution and/or reproduction of this document or parts thereof in any form are permitted solely with the written permission of the company COPA-DATA. The technical data contained herein has been provided solely for informational purposes and is not legally binding. Subject to change, technical or otherwise. Contents 1. Welcome to COPA-DATA help ...................................................................................................... 6 2. Programming interfaces ............................................................................................................... 6 3. Process Control Engine (PCE) ........................................................................................................ 9 3.1 The PCE Editor ............................................................................................................................................. 9 3.1.1 The Taskmanager ....................................................................................................................... 10 3.1.2 The editing area .......................................................................................................................... 10 3.1.3 The output window .................................................................................................................... 11 3.1.4 The menus of the PCE Editor .....................................................................................................
    [Show full text]
  • Operating System Architectures
    Operating System Architectures • Learning objectives: • Explain how OS functionality is orthogonal to where you place services relative to processor modes. • Describe some alternative ways to structure the operating system. • Operating systems evolve over time, but that evolution is frequently in terms of their architecture: how they structure functionality relative to protection boundaries. • We’ll review some of the basic architectures: • Executives • Monolithic kernels • Micro kernels • Exo kernels • Extensible operating systems 2/3/15 CS161 Spring 2015 1 OS Executives • Think MS-DOS: With no hardware protection, the OS is simply a set of services: • Live in memory • Applications can invoke them • Requires a software trap to invoke them. • Live in same address space as application 1-2-3 QBasic WP Applications Command Software Traps Operating System routlines 2/3/15 CS161 Spring 2015 2 Monolithic Operating System • Traditional architecture • Applications and operating system run in different address spaces. • Operating system runs in privileged mode; applications run in user mode. Applications Operating System file system processes networking Device drivers virtual memory 2/3/15 CS161 Spring 2015 3 Microkernels (late 80’s and on) • Put as little of OS as possible in privileged mode (the microkernel). • Implement most core OS services as user-level servers. • Only microkernel really knows about hardware • File system, device drivers, virtual memory all implemented in unprivileged servers. • Must use IPC (interprocess communication) to communicate among different servers. Applications Process Virtual management memory file system networking Microkernel 2/3/15 CS161 Spring 2015 4 Microkernels: Past and Present • Much research and debate in late 80’s early 90’s • Pioneering effort in Mach (CMU).
    [Show full text]
  • Access Control for the SPIN Extensible Operating System
    Access Control for the SPIN Extensible Operating System Robert Grimm Brian N. Bershad Dept. of Computer Science and Engineering University of Washington Seattle, WA 98195, U.S.A. Extensible systems, such as SPIN or Java, raise new se- on extensions and threads, are enforced at link time (when curity concerns. In these systems, code can be added to a an extension wants to link against other extensions) and at running system in almost arbitrary fashion, and it can inter- call time (when a thread wants to call an extension). Ac- act through low latency (but type safe) interfaces with other cess restrictions on objects are enforced by the extension code. Consequently, it is necessary to devise and apply that provides an object’s abstraction (if an extension is not security mechanisms that allow the expression of policies trusted to enforce access control on its objects but is ex- controlling an extension’s access to other extensions and its pected to do so, DTE can be used to prevent other exten- ability to extend, or override, the behavior of already exist- sions from linking against the untrusted extension). ing services. In the SPIN operating system [3, 4] built at the Due to the fine grained composition of extensions in University of Washington, we are experimenting with a ver- SPIN, it is important to minimize the performance overhead sion of domain and type enforcement (DTE) [1, 2] that has of call time access control. We are therefore exploring opti- been extended to address the security concerns of extensible mization that make it possible to avoid some dynamic ac- systems.
    [Show full text]
  • Designing a Concurrent File Server
    Communicating Process Architectures 2012 1 P.H. Welch et al. (Eds.) Open Channel Publishing Ltd., 2012 c 2012 The authors and Open Channel Publishing Ltd. All rights reserved. Designing a Concurrent File Server James WHITEHEAD II Department of Computer Science, University of Oxford, Wolfson Building, Parks Road, Oxford, OX1 3QD, United Kingdom; [email protected] Abstract. In this paper we present a design and architecture for a concurrent file sys- tem server. This architecture is a compromise between the fully concurrent V6 UNIX implementation, and the simple sequential implementation in the MINIX operating system. The design of the server is made easier through the use of a disciplined model of concurrency, based on the CSP process algebra. By viewing the problem through this restricted lens, without traditional explicit locking mechanisms, we can construct the system as a process network of components with explicit connections and depen- dencies. This provides us with insight into the problem domain, and allows us to anal- yse the issues present in concurrent file system implementation. Keywords. file system, Go, CSP, UNIX, MINIX. Introduction Modern operating systems allow multiple users and programs to share the computing re- sources on a single machine. They also serve as an intermediary between programs and the physical computing hardware, such as persistent storage devices. In the UNIX family of op- erating systems, disk access is accomplished by interacting with files and directories through a hierarchical file system, using system calls. Managing access to the file system in a concurrent environment is a challenging problem. An implementation must ensure that a program cannot corrupt the state of the file system, or the data stored on disk.
    [Show full text]
  • Z/OS Basics Preface
    Contents Preface . iii How this course is organized . iii How each topic is organized . iv Part 1. Introduction to z/OS and the mainframe environment Chapter 1. Introduction to the new mainframe . 3 1.1 The new mainframe. 4 1.2 The S/360: A turning point in mainframe history . 4 1.3 An evolving architecture . 5 1.4 Mainframes in our midst . 6 1.5 What is a mainframe? . 7 1.6 Who uses mainframe computers?. 10 1.7 Factors contributing to mainframe use . 11 1.8 Typical mainframe workloads . 14 1.9 Roles in the mainframe world . 21 1.10 z/OS and other mainframe operating systems . 27 1.11 Summary . 29 Chapter 2. z/OS overview. 31 2.1 What is an operating system? . 32 2.2 Overview of z/OS facilities. 32 2.3 What is z/OS? . 34 2.4 Virtual storage and other mainframe concepts . 39 2.5 What is workload management? . 57 2.6 I/O and data management. 60 2.7 Supervising the execution of work in the system . 60 2.8 Defining characteristics of z/OS . 68 2.9 Licensed programs for z/OS . 69 2.10 Middleware for z/OS . 70 2.11 A brief comparison of z/OS and UNIX. 71 2.12 Summary . 73 Chapter 3. TSO/E, ISPF, and UNIX: Interactive facilities of z/OS . 75 3.1 How do we interact with z/OS? . 76 3.2 TSO overview . 76 3.3 ISPF overview . 80 3.4 z/OS UNIX interactive interfaces. 99 3.5 Summary .
    [Show full text]
  • Contents of Lecture 8 on UNIX History
    Contents of Lecture 8 on UNIX History Before UNIX Origin of UNIX Commerical wars and other threats Linux Game over. UNIX won. Continued work by the original UNIX team: Plan 9 and Inferno Microkernels vs Monolithic kernels and other issues. Jonas Skeppstedt ([email protected]) Lecture 8 2014 1 / 67 CTSS The Compatible Time-Sharing System was designed at MIT in the early 1960s. Supported up to 32 simultanously logged in users: proof of the time-sharing idea. Ran on IBM 7090 with 32K 36 bit words, of which the monitor used 5K. User programs were swapped in from a magnetic drum (disk). Multilevel feedback scheduling queue. Higher priorities have shorter time quantum Initial priority (quantum) reflects size of the executable file so it can be swapped in and run. CTSS was extremely successful and used as late as 1972: basis for MULTICS. Jonas Skeppstedt ([email protected]) Lecture 8 2014 2 / 67 MULTICS Multiplexed Information and Computing Ser vice designed by MIT, AT&T, and GE. AT&T and GE provided telephone and electricity ser vices as utilities. GE also produced computers, eg the GE-645 used in MULTICS development. Why not do the same with computing power? The goal was one computer for 100,000s users in Boston (on hardware equivalent to about 386 or 486). Designed as an extension to CTSS with virtual memory and sophisticated protection (more levels than UNIX user vs superuser). MULTICS was written in PL/1 and consisted of about 300,000 lines. Jonas Skeppstedt ([email protected]) Lecture 8 2014 3 / 67 End of MULTICS Lots of people were very enthusiastic about MULTICS, including the newly graduated Ken Thompson from Berkeley.
    [Show full text]
  • A Generic Software Modeling Framework for Building Heterogeneous Distributed and Parallel Software Systems
    Loyola University Chicago Loyola eCommons Computer Science: Faculty Publications and Other Works Faculty Publications 1994 A Generic Software Modeling Framework for Building Heterogeneous Distributed and Parallel Software Systems William T. O'Connell George K. Thiruvathukal Loyola University Chicago, [email protected] Thomas W. Christopher Follow this and additional works at: https://ecommons.luc.edu/cs_facpubs Part of the Computer Sciences Commons Recommended Citation William T. O'Connell, George K. Thiruvathukal, and Thomas W. Christopher. A generic modeling environment for heterogeneous parallel and distributed computing. In International Conference on Advanced Science and Technology 1994 (ICAST 1994), AT&T Bell Laboratories, 1994. This Conference Proceeding is brought to you for free and open access by the Faculty Publications at Loyola eCommons. It has been accepted for inclusion in Computer Science: Faculty Publications and Other Works by an authorized administrator of Loyola eCommons. For more information, please contact [email protected]. This work is licensed under a Creative Commons Attribution-Noncommercial-No Derivative Works 3.0 License. Copyright © 1994 William T. O'Connell, George K. Thiruvathukal, and Thomas W. Christopher A Generic Software Modelling Framework for Building Heterogeneous Distributed and Parallel Software Systems William T. O’Connell George K. Thiruvathukal Thomas W. Christopher AT&T Bell Laboratories R.R. Donnelley and Sons Company Illinois Institute of Technology Building IX, Rm. 1B-422 Technical Center Department of Computer Science 1200 E. Warrenville Rd. 750 Warrenville Road 10 West Federal Street Naperville, IL 60566 Lisle, IL 60532 Chicago, IL 60616 [email protected] [email protected] [email protected] Abstract Processing Language) are available as alternative interfaces to our distributed computing environment [1].
    [Show full text]
  • Microkernels in a Bit More Depth
    MICROKERNELS IN A BIT MORE DEPTH COMP9242 2006/S2 Week 4 MOTIVATION • Early operating systems had very little structure • A strictly layered approach was promoted by [Dij68] • Later OS (more or less) followed that approach (e.g., Unix). • Such systems are known as monolithic kernels COMP924206S2W04 MICROKERNELS... 2 ADVANTAGES OF MONOLITHIC KERNELS • Kernel has access to everything: ➜ all optimisations possible ➜ all techniques/mechanisms/concepts implementable • Kernel can be extended by adding more code, e.g. for: ➜ new services ➜ support for new hardare COMP924206S2W04 MICROKERNELS... 3 PROBLEMS WITH LAYERED APPROACH • Widening range of services and applications ⇒ OS bigger, more complex, slower, more error prone. • Need to support same OS on different hardware. • Like to support various OS environments. • Distribution ⇒ impossible to provide all services from same (local) kernel. COMP924206S2W04 MICROKERNELS... 4 EVOLUTION OF THE LINUX KERNEL Linux Kernel Size (.tar.gz) 35 30 25 20 15 Size (Mb)Size 10 5 0 31-Jan-93 28-Oct-95 24-Jul-98 19-Apr-01 14-Jan-04 Date Linux 2.4.18: 2.7M LoC COMP924206S2W04 MICROKERNELS... 5 APPROACHES TO TACKLING COMPLEXITY • Classical software-engineering approach: modularity ➜ (relatively) small, mostly self-contained components ➜ well-defined interfaces between them ➜ enforcement of interfaces ➜ containment of faults to few modules COMP924206S2W04 MICROKERNELS... 6 APPROACHES TO TACKLING COMPLEXITY • Classical software-engineering approach: modularity ➜ (relatively) small, mostly self-contained components ➜ well-defined interfaces between them ➜ enforcement of interfaces ➜ containment of faults to few modules • Doesn’t work with monolithic kernels: ➜ all kernel code executes in privileged mode ➜ faults aren’t contained ➜ interfaces cannot be enforced ➜ performance takes priority over structure COMP924206S2W04 MICROKERNELS..
    [Show full text]
  • Extensibility, Safety and Performance in the SPIN Operating
    Overview Extensibility, Safety Background and Motivation and Performance in Modula-3 the SPIN Operating SPIN architecture System Benchmarks Conclusion Presented by Allen Kerr Hardware Vs Software Protection How Network Video works Hardware One-size-fits-all approach to system calls Requires software abstraction Software Applications tell the system what needs to be done Allows checks to be optimized using assumptions Allows untrusted user code to be safely integrated into the kernel How It Ought to Be Motivation Taken from talk “Language Support for Extensible Operating Systems” 1 Modula-3 SPIN Similar feature set to Java Kernel programmed almost exclusively in Pointer safety Exceptions Modula-3 Interfaces Applications can link into kernel Modules Static Type Checking Examples of services Dynamic Linking Filing and buffer cache management Concerns Execution Speed Protocol processing Threads, allocation, and garbage collection Scheduling and thread management Memory Usage Mixed-Language Environment Virtual memory Further SPIN Motivation Goals Most OSs balance generality with specialization Extensibility General systems run many programs but run Allow applications to extend any service few well Performance Specializing general operating system Dynamically inject application code into the kernel Costly Safety Time consuming Rely on language protection for memory safety Error-prone Rely on interface design for component safety SPIN System Components Related Work Hydra Applications manage resources High overhead Microkernels
    [Show full text]
  • In-Kernel Servers on Mach
    InKernel ServersonMach Implementation and Performance Jay Lepreau Mike Hibler Bryan Ford Jerey Law Center for Software Science Department of Computer Science University of Utah Salt LakeCity UT Email flepreaumikebafordlawgcsuta hedu Abstract The advantages in mo dularityandpower of microkernelbased op erating systems suchas Macharewell known The existing p erformance problems of these systems however are signicant Much of the p erformance degradation is due to the cost of maintaining separate protection domains traversing software layers and using a semantically richinterpro cess com munication mechanism An approach that optimizes the common case is to p ermit merging of protection domains in p erformance critical applications while maintainin g protection b ound aries for debugging or in situations that demand robustness In our system client calls to the server are eectively b ound either to a simple system call interface or to a full RPC mechanism dep ending on the servers lo cation The optimization reduces argument copies as well as work done in the control path to handle complex and infrequently encountered message typ es In this pap er we present a general metho d of doing this for Mach and the results of applying it to the Mach microkernel and the OSF single server We describ e the necessary mo dications to the kernel the single server and the RPC stub generator Semantic equivalence backwards compatibility and common source and binary co de are preserved Performance on micro and macro b enchmarks is rep orted with RPC p erformance
    [Show full text]