dynamic software updating for the linux kernel
play

Dynamic Software Updating for the Linux Kernel Iulian Neamtiu - PowerPoint PPT Presentation

Sep 02, 2022 •341 likes •419 views

Dynamic Software Updating for the Linux Kernel Iulian Neamtiu Michael Hicks University of Maryland Why On-the-fly Kernel Updates? Software updates - necessary evil Inconvenient, expensive OS update via stop/restart

  1. Dynamic Software Updating for the Linux Kernel Iulian Neamtiu Michael Hicks University of Maryland

  2. Why On-the-fly Kernel Updates? • Software updates - necessary evil – Inconvenient, expensive • OS update via stop/restart disruptive – Loss of OS/application state • Dynamic Software Updating (DSU) – User-space programs: easy, safe – Challenge: kernel

  3. DSU for User-space Applications • Ginseng: update C programs while they run [PLDI'06] – Indirect type accesses, function calls – Dynamic patch: new/changed code&data, transformers – Update: load dynamic patch – Safety analyses (type safety) • Results – Off-the-self apps: VsFTPd, OpenSSH, Zebra – 3 years of releases: 2002 - 2005 – Easy to use: minor changes to apps/patches – Good performance: 0..30% overhead – Minimal disruption: < 5 ms

  4. DSU for the Kernel • Safety challenges – Low-level, highly concurrent code � Transactions • Layout & performance constraints � Selective indirection

  5. Better Safety with Transactions • Ginseng enforces representation consistency – Type safety: old code/new data or vice versa • Transactions provide version consistency – Programmer-specified blocks: code/data from same version – Delineate logical events (e.g., ADT, top+bottom half) – No commit, rollback, log – Enforcement: static analyses + light dynamic checks • When is it safe to update ? – Code outside transactions, or – Transaction doesn't conflict with update

  6. Selective Indirection • Performance/representation constraints • Types – Fixed representation/no change expected • E.g., page table entry, IP address – Non-indirected types updated manually • Functions – Indirection/patch size trade-off • Static analysis-driven

  7. Conclusions • Updating the kernel dynamically… – Compile kernel specially (selective indirection) – Automatic patch generation – Safety analyses (version consistency) • …leads to better OS maintenance – Wide range of updates applied on the fly • Security patches, bug fixes, new features – Updates easy to construct, safe to apply http://www.cs.umd.edu/projects/dsu

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Debugging the Linux Kernel with GDB Kieran Bingham Debugging the Linux Kernel with GDB Many

Debugging the Linux Kernel with GDB Kieran Bingham Debugging the Linux Kernel with GDB Many

Debugging the Linux Kernel with GDB Kieran Bingham Debugging the Linux Kernel with GDB Many of us need to debug the Linux kernel Proprietary tools like Trace32 and DS-5 are $$$ Open source debuggers like GDB lack kernel

884 views • 40 slides
Intro to Linux Kernel Programming Don Porter Lab 4 You will write a Linux kernel module

Intro to Linux Kernel Programming Don Porter Lab 4 You will write a Linux kernel module

Intro to Linux Kernel Programming Don Porter Lab 4 You will write a Linux kernel module Linux is written in C, but does not include all standard libraries And some other idiosyncrasies This lecture will give you a crash

1.35k views • 22 slides
GIT ESSENTIALS October 2011 This image is the Linux kernel as visualised by Gource Why

GIT ESSENTIALS October 2011 This image is the Linux kernel as visualised by Gource Why

GIT ESSENTIALS October 2011 This image is the Linux kernel as visualised by Gource Why Distributed Version Control? Builds that never break Work that is always backed-up Safe local updating and merging Flexibility around adopted

472 views • 28 slides
1 Theres a kernel security researcher named Dan Rosenberg whose done a lot of linux kernel

1 Theres a kernel security researcher named Dan Rosenberg whose done a lot of linux kernel

1 Theres a kernel security researcher named Dan Rosenberg whose done a lot of linux kernel vulnerability research Thats unavoidable, but the linux kernel developers dont do very much to make the situation any better. -- Basically, the

625 views • 36 slides
Hacking on Xen in the Linux Kernel Lisa Nguyen, Linux Kernel Intern FOSS Outreach Program for

Hacking on Xen in the Linux Kernel Lisa Nguyen, Linux Kernel Intern FOSS Outreach Program for

Hacking on Xen in the Linux Kernel Lisa Nguyen, Linux Kernel Intern FOSS Outreach Program for Women LinuxCon North America 2013 Agenda Introduction What Got Me Interested in OPW Project Overview Xen Block Ring Protocol

922 views • 13 slides
Introduction to Linux Kernel Modules Luca Abeni luca.abeni@santannapisa.it Linux Kernel Modules

Introduction to Linux Kernel Modules Luca Abeni luca.abeni@santannapisa.it Linux Kernel Modules

Introduction to Linux Kernel Modules Luca Abeni luca.abeni@santannapisa.it Linux Kernel Modules Kernel module: code that can be dynamically loaded/unloaded into the kernel at runtime Change the kernel code without needing to reboot

545 views • 13 slides
SPINFER: Inferring Semantic Patches for the Linux Kernel Lucas Serrano , Van-Anh Nguyen , Ferdian

SPINFER: Inferring Semantic Patches for the Linux Kernel Lucas Serrano , Van-Anh Nguyen , Ferdian

SPINFER: Inferring Semantic Patches for the Linux Kernel Lucas Serrano , Van-Anh Nguyen , Ferdian Thung Lingxiao Jiang , David Lo , Julia Lawall , Gilles Muller 1 Maintenance of the Linux kernel Maintenance tasks are very common in all software

937 views • 51 slides
Async execution with workqueues Bhaktipriya Shridhar About me $whoami Outreachy Intern at the

Async execution with workqueues Bhaktipriya Shridhar About me $whoami Outreachy Intern at the

Async execution with workqueues Bhaktipriya Shridhar About me $whoami Outreachy Intern at the Linux Kernel with Tejun Heo as my mentor. Working on updating Legacy workqueue interface users in the Linux Kernel . Also, a 3rd year

613 views • 49 slides
GNU/Linux Why use it? What is Linux? Linux is a UNIX-like, GPL-licensed open-source kernel. The

GNU/Linux Why use it? What is Linux? Linux is a UNIX-like, GPL-licensed open-source kernel. The

GNU/Linux Why use it? What is Linux? Linux is a UNIX-like, GPL-licensed open-source kernel. The GNU userland consists of libc, the init system (SystemD) X11 GUI toolkits etc. Ask the audience Who has used

442 views • 22 slides
. Kernel The Variability Model of the Linux Extra Conclusions Linux Study Introduction .

. Kernel The Variability Model of the Linux Extra Conclusions Linux Study Introduction .

. Krzysztof Czarnecki, Andrzej Wsowski The Variability Model of the Linux Kernel . . January 26, 2010 IT University of Copenhagen University of Leipzig University of Waterloo Steven She, Rafael Lotufo, Thorsten Berger, . Kernel The

928 views • 39 slides
Debugging Enterprise Kernels: A Real World Example Vlastimil Babka Linux Kernel Developer, SUSE

Debugging Enterprise Kernels: A Real World Example Vlastimil Babka Linux Kernel Developer, SUSE

Debugging Enterprise Kernels: A Real World Example Vlastimil Babka Linux Kernel Developer, SUSE Labs vbabka@suse.cz Enterprise Linux Distro (including Kernel) The software installation (e.g. ISO) itself is free (and open source, obviously)

933 views • 54 slides
Updating an Embedded System About me Me: Software Engineer at DENX, Gmbh U-Boot

Updating an Embedded System About me Me: Software Engineer at DENX, Gmbh U-Boot

SWUpdate Updating an Embedded System About me Me: Software Engineer at DENX, Gmbh U-Boot Custodian for NXP's i.MX Focus on Linux embedded Author of FOSS SWUpdate Do we update ? Local Update Push Software Pull Software

870 views • 38 slides
Linux Kernel Security &amp; Hardening Thomas Lamprecht January 17, 2019 Introduction The Linux

Linux Kernel Security &amp; Hardening Thomas Lamprecht January 17, 2019 Introduction The Linux

Linux Kernel Security &amp; Hardening Thomas Lamprecht January 17, 2019 Introduction The Linux Kernel Widespread Deployed on: powerful (high performance compute clusters) sensitive (bank, gov. systems, ..) safety critical

995 views • 29 slides
Linux Kernel Synchronization System Calls Synchronization in Kernel the kernel RCU File

Linux Kernel Synchronization System Calls Synchronization in Kernel the kernel RCU File

3/1/20 COMP 790: OS Implementation COMP 790: OS Implementation Logical Diagram Binary Memory Threads Formats Allocators User Todays Lecture Linux Kernel Synchronization System Calls Synchronization in Kernel the kernel RCU File

647 views • 8 slides
Linux Kernel Debugging Linux Kernel Debugging Advanced Operating Systems 2018/2019

Linux Kernel Debugging Linux Kernel Debugging Advanced Operating Systems 2018/2019

Linux Kernel Debugging Linux Kernel Debugging Advanced Operating Systems 2018/2019 http://d3s.mff.cuni.cz CHARLES UNIVERSITY IN PRAGUE faculty of mathematjcs and physics faculty of mathematjcs and physics Vlastimil Babka vbabka@suse.cz

1.6k views • 62 slides
Unleashing Use-After-Free Vulnerabilities in Linux Kernel Wen Xu , Juanru Li, Junliang Shu, Wenbo

Unleashing Use-After-Free Vulnerabilities in Linux Kernel Wen Xu , Juanru Li, Junliang Shu, Wenbo

From Collision To Exploitation: Unleashing Use-After-Free Vulnerabilities in Linux Kernel Wen Xu , Juanru Li, Junliang Shu, Wenbo Yang, Tianyi Xie, Yuanyuan Zhang, Dawu Gu Group of Software Security In Progress Lab of Cryptology and Computer

584 views • 25 slides
LOUD AND CLEAR Seniors and caregivers speak out S i d i k t about navigating Ontarios

LOUD AND CLEAR Seniors and caregivers speak out S i d i k t about navigating Ontarios

LOUD AND CLEAR Seniors and caregivers speak out S i d i k t about navigating Ontarios healthcare system Presentation to Services for Seniors Extended Action Group Central West LHIN, April 11, 2012 Sine MacKinnon Sine MacKinnon

638 views • 29 slides
Experience of Emergency Management in Response to the Earthquake Hong-Ren Lo Chunghwa Telecom

Experience of Emergency Management in Response to the Earthquake Hong-Ren Lo Chunghwa Telecom

APRICOT 2007 Experience of Emergency Management in Response to the Earthquake Hong-Ren Lo Chunghwa Telecom Feb. 28, 2007 1 Content 1. The Earthquake &amp; Its Damage 2. 2006 Hengchun Earthquake 3. Emergency Measures &amp; Restoration 4.

762 views • 37 slides
Affective Computing ATCM State-of-the-Art Theoretical Presentation Hernani Costa and Luis Macedo

Affective Computing ATCM State-of-the-Art Theoretical Presentation Hernani Costa and Luis Macedo

Affective Computing ATCM State-of-the-Art Theoretical Presentation Hernani Costa and Luis Macedo { hpcosta,macedo } @dei.uc.pt Cognitive &amp; Media Systems Group CISUC, University of Coimbra Coimbra, 29 June, 2012 Hernani Costa (CISUC) ATCM

368 views • 16 slides
SUBMARINE NETWORKS BECOMING A COMMODITY PRODUCT? Zvika Caspy MedNautilus conference &amp;

SUBMARINE NETWORKS BECOMING A COMMODITY PRODUCT? Zvika Caspy MedNautilus conference &amp;

conference &amp; convention enabling the next generation of networks &amp; services SUBMARINE NETWORKS BECOMING A COMMODITY PRODUCT? Zvika Caspy MedNautilus conference &amp; convention enabling the next generation of networks &amp; services

405 views • 13 slides
Rump File Systems Kernel Code Reborn Antti Kantee pooka@cs.hut.fi Helsinki University of

Rump File Systems Kernel Code Reborn Antti Kantee pooka@cs.hut.fi Helsinki University of

Rump File Systems Kernel Code Reborn Antti Kantee pooka@cs.hut.fi Helsinki University of Technology USENIX Annual Technical Conference, San Diego, USA June 2009 Introduction kernel / userspace dichotomy interfaces dictate environment

544 views • 25 slides
All Presentations and our guidebook will be available on our website.

All Presentations and our guidebook will be available on our website.

All Presentations and our guidebook will be available on our website. https://www.mountbakerbsa.org/events/popcorn/ Please stand for the Pledge of Allegiance Gary Bazzell Anna Foster Brittani Smith Mount Baker Council Council Popcorn

970 views • 84 slides
Preservation of RCN and Kernels Quality and Specification Compliance: a new approach Stefano

Preservation of RCN and Kernels Quality and Specification Compliance: a new approach Stefano

Preservation of RCN and Kernels Quality and Specification Compliance: a new approach Stefano Massari Oltremare February 13 th 2020 RCN POST HARVEST TREATMENT 2 RCN POST HARVEST TREATMENT 3 RCN POST HARVEST TREATMENT 4 RCN POST HARVEST

813 views • 15 slides
Evolutionary Artificial Potential Field for Path Planning: A GPU Implementation Ulises

Evolutionary Artificial Potential Field for Path Planning: A GPU Implementation Ulises

National Polytechnic Institute Center of Research and Development in Digital Technology Evolutionary Artificial Potential Field for Path Planning: A GPU Implementation Ulises Orozco-Rosas, Oscar Montiel, Roberto Seplveda March 2015 National

241 views • 21 slides

More recommend