beyond per cpu atomics and rseq syscall subset of ebpf
play

Beyond per-CPU atomics and rseq syscall: subset of eBPF bytecode - PowerPoint PPT Presentation

Aug 27, 2022 •352 likes •457 views

Linux Plumbers Conference 2019 eBPF conf Beyond per-CPU atomics and rseq syscall: subset of eBPF bytecode for the do_on_cpu syscall mathieu.desnoyers@efcios.com Restartable Sequences (RSEQ) in a nutshell System call registering

  1. Linux Plumbers Conference 2019 – eBPF µconf Beyond per-CPU atomics and rseq syscall: subset of eBPF bytecode for the do_on_cpu syscall mathieu.desnoyers@efcios.com 

  2. Restartable Sequences (RSEQ) in a nutshell ● System call registering user-space TLS data, ● TLS data acts as ABI between kernel and user-space, ● Enables user-space to implement efficient per-CPU data accesses. 2

  3. The need for a system call fallback to RSEQ ● Concurrent update of remote user-space per-CPU data, – Aware of CPU hotplug, ● Early/late per-CPU data use in libc initialization and thread life-time, ● Single-stepping through RSEQ with existing debuggers. SYSCALL_DEFINE5(do_on_cpu, struct bpf_insn __user *, ubytecode, u32, len, int64_t __user *, uresult, int, cpu, int, flags) 3

  4. do_on_cpu RSEQ fallback requirements ● Not a fast-path, ● Large number of eBPF programs can exist in user-space memory: – Preloading them into the kernel is impractical wrt memory consumption, ● Received as parameter from a system call for single-use, ● Execute on a specific CPU received as parameter, ● Preemption disabled critical sections (exclusive per-CPU data access), ● Only access user-space memory and interpreter registers: may fault with preemption disabled . 4

  5. do_on_cpu runtime interpreter ● Upstream Linux eBPF infrastructure not useful for do_on_cpu: – Load/store of stack, kernel data, – All calls to external functions, – Most of eBPF verifier, – eBPF bytecode to native code JIT, ● Currently, do_on_cpu implements its own: – Bytecode validation, – Bytecode interpreter (with loops support), – User-space to kernel memory mapping translation. 5

  6. Additional eBPF extensions required ● Define an eBPF memory model, ● New instructions specifying memory ordering: – Load-acquire, – Store-release, – Memory barrier, ● Preemption disable/enable: – Allow disabling preemption for short bounded critical sections, – Minimize scheduler latency impact for preempt-RT. 6

  7. Additional Slides (if required by discussion) ● Handling page-faults with preemption disabled, ● Handling execution mismatch between passes. 7

  8. Handling page-faults with preemption disabled ● Multi-pass scheme: 1) Create kernel mapping of memory: ● Grab reference to each user-space page touched by bytecode, ● Create vmap aligned on same page colour as user-space pages (for virtually-aliased architectures), ● Enable preemption and restart bytecode interpretation each time a new page is added to the set, 2) Perform store side-effects. 8

  9. Handling execution mismatch between passes ● Caused by changes in data loaded from user-space (tainted register): – Address for load/store from/to user-space memory, – Conditional branch, ● Handling of changes detected within pass (2) (store side-effects): – Restart if change detected before any store side-effect, – Return EIO (corruption detected) if change detected after side-effect is visible to user-space. 9

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Blowing up the (C++11) atomic barrier Optimizing C++11 atomics in LLVM Robin Morisset, Intern at

Blowing up the (C++11) atomic barrier Optimizing C++11 atomics in LLVM Robin Morisset, Intern at

Blowing up the (C++11) atomic barrier Optimizing C++11 atomics in LLVM Robin Morisset, Intern at Google Background: C++11 atomics Optimizing around atomics Fence elimination Miscellaneous optimizations Further work: Problems with atomics

880 views • 66 slides
eBPF Offload to Hardware: cls_bpf and XDP Motivation - Avoiding Whack-a-mole Motivation - Why

eBPF Offload to Hardware: cls_bpf and XDP Motivation - Avoiding Whack-a-mole Motivation - Why

eBPF Offload to Hardware: cls_bpf and XDP Motivation - Avoiding Whack-a-mole Motivation - Why eBPF? Target architecture (NFP based NIC) RX Path Flow of eBPF Packet The Flow Processing Core (Fully Programmable) Mapping eBPF -> NFP

668 views • 24 slides
General Atomics Aeronautical Systems, Inc. (Looped Video) 1 This document does not contain U.S.

General Atomics Aeronautical Systems, Inc. (Looped Video) 1 This document does not contain U.S.

General Atomics Aeronautical Systems, Inc. (Looped Video) 1 This document does not contain U.S. export controlled technical data. General Atomics Predator Cliff Stone VP, Life Cycle Sustainment General Atomics Aeronautical UAS Tech Forum

406 views • 30 slides
Endless Network Programming An Update from eBPF Land Quentin Monnet @qeole Outline Q.

Endless Network Programming An Update from eBPF Land Quentin Monnet @qeole Outline Q.

FOSDEM20 Brussels, 2020-02-01 Endless Network Programming An Update from eBPF Land Quentin Monnet @qeole Outline Q. Monnet eBPF Update 2/18 eBPF Basics New Features eBPF Universe eBPF Basics Q. Monnet

531 views • 18 slides
An out-of-order thread-local semantics for something like volatile relaxed atomics in C and the

An out-of-order thread-local semantics for something like volatile relaxed atomics in C and the

An out-of-order thread-local semantics for something like volatile relaxed atomics in C and the problems it highlights Jean Pichon 24th of September 2014 Goal How to avoid out-of-thin-air with C11s relaxed atomics? Remark by Mark

305 views • 18 slides
DTrace Topics: xclock 20 xntpd 25

DTrace Topics: xclock 20 xntpd 25

# dtrace -n 'syscall:::entry { @[exe dtrace: description 'syscall:::entry ^C iscsitgtd 1 nscd 1 operapluginclean 3 screen-4.0.2 3 devfsadm

739 views • 56 slides
eBPF and XDP walkthrough and recent updates Daniel Borkmann <daniel@iogearbox.net> cilium

eBPF and XDP walkthrough and recent updates Daniel Borkmann <daniel@iogearbox.net> cilium

eBPF and XDP walkthrough and recent updates Daniel Borkmann <daniel@iogearbox.net> cilium project fosdem17, February 4, 2017 Daniel Borkmann eBPF in tcs cls bpf and XDP February 4, 2017 1 / 11 Big Picture: eBPF and Networking eBPF:

476 views • 11 slides
Adding Linux Restartable Sequences (RSEQ) Support in glibc mathieu.desnoyers@efcios.com

Adding Linux Restartable Sequences (RSEQ) Support in glibc mathieu.desnoyers@efcios.com

GNU Tools Cauldron 2019 GNU Tools Cauldron 2019 Adding Linux Restartable Sequences (RSEQ) Support in glibc mathieu.desnoyers@efcios.com Content Content Restartable Sequences (RSEQ) Introduction Use-Cases Benchmarks Linux

361 views • 17 slides
Theorem 7.56 SUBSET-SUM is NP Complete ANSHUMAN MOHANTY SUBSET-SUM Problem Consider a set of

Theorem 7.56 SUBSET-SUM is NP Complete ANSHUMAN MOHANTY SUBSET-SUM Problem Consider a set of

Theorem 7.56 SUBSET-SUM is NP Complete ANSHUMAN MOHANTY SUBSET-SUM Problem Consider a set of numbers S. and a target number t. We have to determine of the exists a subset of S such that the summation of the numbers present in the subset is

353 views • 11 slides
Syscall Proxying Simulating Remote Execution Maximiliano Cceres maximiliano.caceres@corest.com

Syscall Proxying Simulating Remote Execution Maximiliano Cceres maximiliano.caceres@corest.com

Syscall Proxying Simulating Remote Execution Syscall Proxying Simulating Remote Execution Maximiliano Cceres maximiliano.caceres@corest.com Caesars Palace, Las Vegas, NV, USA July 31st, 2002 Syscall Proxying Simulating Remote Execution

779 views • 42 slides
W4231: Analysis of Algorithms Subset Sum The Subset Sum problem is defined as follows: 11/30/99

W4231: Analysis of Algorithms Subset Sum The Subset Sum problem is defined as follows: 11/30/99

W4231: Analysis of Algorithms Subset Sum The Subset Sum problem is defined as follows: 11/30/99 Given a sequence of integers a 1 , . . . , a n and a parameter k , NP-completeness of Subset Sum, Partition, Minimum Bin Packing. Decide

214 views • 3 slides
Quantum algorithms Subset-sum example: for the subset-sum problem Is there a subsequence of (499

Quantum algorithms Subset-sum example: for the subset-sum problem Is there a subsequence of (499

Quantum algorithms Subset-sum example: for the subset-sum problem Is there a subsequence of (499 852 1927 2535 3596 3608 D. J. Bernstein 4688 5989 6385 7353 7650 9413) University of Illinois at

2.02k views • 163 slides
Bri Bring nging ng the the Power r of eB eBPF to to Open vSwitch ch Linux Plumber 2018

Bri Bring nging ng the the Power r of eB eBPF to to Open vSwitch ch Linux Plumber 2018

Bri Bring nging ng the the Power r of eB eBPF to to Open vSwitch ch Linux Plumber 2018 William Tu, Joe Stringer, Yifeng Sun, Yi-Hung Wei VMware Inc. and Cilium.io 1 Outline Introduction and Motivation OVS-eBPF Project

612 views • 45 slides
Bri Bring nging ng the the Power r of eB eBPF to to Open vSwitch ch Linux Plumber 2018

Bri Bring nging ng the the Power r of eB eBPF to to Open vSwitch ch Linux Plumber 2018

Bri Bring nging ng the the Power r of eB eBPF to to Open vSwitch ch Linux Plumber 2018 William Tu, Joe Stringer, Yifeng Sun, Yi-Hung Wei VMware Inc. and Cilium.io 1 Outline Introduction and Motivation OVS-eBPF Project

429 views • 39 slides
Approximation Algorithms Subset Sum III Instance : X = { x 1 , . . . , x n } n integer

Approximation Algorithms Subset Sum III Instance : X = { x 1 , . . . , x n } n integer

NEW CS 473: Theory II, Fall 2015 Subset Sum Approximation Algorithms Subset Sum III Instance : X = { x 1 , . . . , x n } n integer positive num- bers, t - target number Question: subset of X s.t. sum of its elements is t ? Lecture 10

200 views • 8 slides
Replacing iptables with eBPF in Kubernetes with Cilium Cilium, eBPF, Envoy, Istio, Hubble Michal

Replacing iptables with eBPF in Kubernetes with Cilium Cilium, eBPF, Envoy, Istio, Hubble Michal

Replacing iptables with eBPF in Kubernetes with Cilium Cilium, eBPF, Envoy, Istio, Hubble Michal Rostecki Swaminathan Vasudevan Software Engineer Software Engineer mrostecki@suse.com svasudevan@suse.com mrostecki@opensuse.org Whats

2.06k views • 52 slides
EMA I nitiatives on Product Shortages Due To Manufacturing/ GMP I ssues EMA W orkshop on Shortages

EMA I nitiatives on Product Shortages Due To Manufacturing/ GMP I ssues EMA W orkshop on Shortages

EMA I nitiatives on Product Shortages Due To Manufacturing/ GMP I ssues EMA W orkshop on Shortages due to m anufacturing and quality problem s Session 2 Presented by Brendan Cuddy An agency of the European Union Head of Manufacturing and

577 views • 13 slides
Just-In-Time EOC Training Videos July 9, 2015 Corinne Bartshire Regional Project Manager Bay

Just-In-Time EOC Training Videos July 9, 2015 Corinne Bartshire Regional Project Manager Bay

Just-In-Time EOC Training Videos July 9, 2015 Corinne Bartshire Regional Project Manager Bay Area UASI Complete Video Series Catastrophic Planning Video Highlights Video Highlights Video Highlights Stakeholder Engagement Wow! Nice job on

98 views • 8 slides
Integration of Health and Social Care Simon Carr, Housing Team,JIT JIT is a strategic

Integration of Health and Social Care Simon Carr, Housing Team,JIT JIT is a strategic

Integration of Health and Social Care Simon Carr, Housing Team,JIT JIT is a strategic improvement partnership between the Scottish Government, NHSScotland, COSLA and the Third, Independent and Housing Sectors @jitscotland

319 views • 10 slides
Higgs A monitoring JIT for JavaScript Maxime Chevalier-Boisvert Dynamic Language Team

Higgs A monitoring JIT for JavaScript Maxime Chevalier-Boisvert Dynamic Language Team

Higgs A monitoring JIT for JavaScript Maxime Chevalier-Boisvert Dynamic Language Team Universit de Montral Higgs Tracing JIT for JavaScript Written in D + JS Second iteration of Tachyon compiler Simpler, more straightforward

697 views • 35 slides
De APS Swapbody Cost Savings within the Supply Chain of the Construction Industry NOMINATED

De APS Swapbody Cost Savings within the Supply Chain of the Construction Industry NOMINATED

De APS Swapbody Cost Savings within the Supply Chain of the Construction Industry NOMINATED FOR THE LOGIMATCH AWARD HOLLAND 2008 De APS Swapbody A swap system based on a trailerchassis In every modification available - 8 meter

471 views • 28 slides
TRANSFORMATION. THE KEY INGREDIENT: LEADERSHIP KEN GUITY GUITY EXECUTIVE COACHING American

TRANSFORMATION. THE KEY INGREDIENT: LEADERSHIP KEN GUITY GUITY EXECUTIVE COACHING American

SUSTAINABLE LEAN TRANSFORMATION. THE KEY INGREDIENT: LEADERSHIP KEN GUITY GUITY EXECUTIVE COACHING American Manufacturing Strategies Summit Houston, Texas October 21-22, 2019 95% OF LEAN INITIATIVES FAIL! PROFESSIONAL BACKGROUND

406 views • 24 slides
Presentation Ms Pam Bowen Cross-Border Cooperation in Claiming Compensation Justice at Last

Presentation Ms Pam Bowen Cross-Border Cooperation in Claiming Compensation Justice at Last

Presentation Ms Pam Bowen Cross-Border Cooperation in Claiming Compensation Justice at Last seminar, May 27 Brussels, Belgium Enhancing compensation via prosecution Ensuring justice through successful prosecutions is just one way in which we can

482 views • 3 slides
Cuyahoga Job and Family Services Department of Health and Human Services Joseph Gauntner,

Cuyahoga Job and Family Services Department of Health and Human Services Joseph Gauntner,

Cuyahoga Job and Family Services Department of Health and Human Services Joseph Gauntner, Administrator 2014-2015 BUDGET PRESENTATION Cuyahoga County Executive Edward FitzGerald CUYAHOGA JOB AND FAMILY SERVICES Who We Serve: 6,627

284 views • 4 slides

More recommend