hijack taking control of cots systems for real time user
play

Hijack: Taking Control of COTS Systems for Real-Time User-Level - PowerPoint PPT Presentation

Dec 23, 2023 •388 likes •706 views

Hijack: Taking Control of COTS Systems for Real-Time User-Level Services Gabriel Parmer and Richard West Computer Science Deparment Boston University Boston, MA 02215 { gabep1, richwest } @cs.bu.edu April 5, 2007 COTS in RT/Embedded Systems

  1. Hijack: Taking Control of COTS Systems for Real-Time User-Level Services Gabriel Parmer and Richard West Computer Science Deparment Boston University Boston, MA 02215 { gabep1, richwest } @cs.bu.edu April 5, 2007

  2. COTS in RT/Embedded Systems Commodity Off The Shelf (COTS) general purpose systems provide many advantages for RT/Embedded systems Tested and widely deployed code-base Established development tools/environments Developer familiarity → faster time to market/smaller development costs Parmer, West, BU CS Hijack 2/33

  3. COTS in RT/Embedded Systems (2) General purpose systems have a number of disadvantages General-purpose policies are often insufficient/awkward for needs of RT applications QoS, predictability, policies absent for satisfying app-specific requirements, i.e. EDF Semantic gap between the requirements of the application and the functionality/guarantees of the system Parmer, West, BU CS Hijack 3/33

  4. Shrinking the Semantic Gap Domain-specific OSs created with a focus on one class of applications (RTOSs) Extensible systems allow the modification of system policies in an application-specific manner Generally either not COTS, or not isolation preserving Developing extensions requires skill/experience Goal : provide app-specific policies using a COTS base in a safe and predictable manner Parmer, West, BU CS Hijack 4/33

  5. Hijacking your COTS system Efficient interposition on service requests from specific applications allows the definition at user-level of application-specific policy Parmer, West, BU CS Hijack 5/33

  6. Hijack Mechanism Hijack execution environment Hijack module receives Guest Guest specific events . . . system calls Background process page faults Executive Schedule / dispatch possibly device Syscall interception interrupts Unintercepted syscalls IDT Vector guest service Host Kernel requests to executive Kernel module Interrupts Hardware (I/O devices) executive controls execution context of guests create/switch address spaces access guest registers event-triggered executive scheduler Parmer, West, BU CS Hijack 6/33

  7. Hijack Mechanism (2) Hijack execution environment Guest Guest executive isolated at . . . user-level Background process Executive executive harnesses Schedule / dispatch base system Syscall interception functionality where Unintercepted syscalls IDT appropriate Host Kernel Kernel module Interrupts Hardware (I/O devices) Does not require changes to the COTS system source-code (no kernel recompilation) One (2000 LOC) hijack module enables flexibility in the definition of user-level app-specific services Parmer, West, BU CS Hijack 7/33

  8. Case Study: Guest System Call Interposition 1 guest service request Guest Guest intercepted by Hijack module 2 executive region mapped into syscall . . . current guest address space saved guest state 3 guest registers saved into Executive executive region 4 executive registers restored executive state (to be restored) Host Kernel 5 executive executed Kernel module executive not present while guest is executing – mapped in dynamically executive isolated from guests Parmer, West, BU CS Hijack 8/33

  9. Case Study: Guest System Call Return 1 executive returns to kernel module 2 executive registers saved in Guest Guest module . . . 3 guest registers restored from executive region saved guest state (to be restored) 4 executive region unmapped Executive from guest address space saved 5 executive ’s mappings evicted executive state Host Kernel from TLB Kernel module 6 guest executed Can use global bits to avoid flushing guest pages from TLB set all guest pages as global Parmer, West, BU CS Hijack 9/33

  10. Experimental Setup All experiments conducted on a 2.4 GHz Pentium 4 processor on Linux 2.6.13 with a clock tick every 10 milliseconds Parmer, West, BU CS Hijack 10/33

  11. nanosleep Experiments A goal of Hijack is to offer the ability to enhance default system functionality in an application-specific manner nanosleep : yield for at least a specific number of nanoseconds used in multimedia apps such as mplayer Wake up time variability/unpredictability clock granularity COTS CPU scheduler Parmer, West, BU CS Hijack 11/33

  12. nanosleep Experiments (2) Hijack-provided extensions: 1 Hijack : Executive can give scheduler preference to tasks waking from nanosleep 2 Hijack Extended : Executive can busy wait for periods less than a clock tick Parmer, West, BU CS Hijack 12/33

  13. nanosleep Experiments (3) 100000 Hijack Linux Task Hijack Extended 10000 Jitter (Tens of Microseconds) 1000 100 10 1 0 1 2 3 4 Number of Background CPU Bound Tasks Parmer, West, BU CS Hijack 13/33

  14. � QoS for Packet Stream Delivery Scheduling of Tasks dependent on I/O availability with QoS constraints: models traffic shapers, QoS aware stream processing, etc. . . Four streams of 42,000 16 byte packets/second from separate hosts over GigE Single host with four tasks, each receiving a stream QoS constraints: Task 0 : 35,000 p/s higher QoS Task 1 : 20,000 p/s lower QoS Task 2 : 10,000 p/s Task 3 : best effort Start tasks every 5 seconds from Task 3 to Task 0 Parmer, West, BU CS Hijack 14/33

  15. QoS for Packet Stream Delivery (2) Three scenarios: 1 Linux, tasks with same priority 2 Linux, tasks with different priority 3 Hijack, Executive using policy similar to proportional-share Tasks assigned tokens proportional to QoS select used to probe for I/O activity Task with tokens and available I/O executed Tokens refreshed every given period When guest make system call to read data read data into guest buffer until no tokens, or no data Parmer, West, BU CS Hijack 15/33

  16. Packet Delivery QoS Results: Linux Same Priority 45000 Number of packets delivered to a task 40000 35000 30000 25000 20000 15000 10000 Task 0 Task 1 5000 Task 2 Task 3 0 0 5 10 15 20 25 30 Time (seconds) Parmer, West, BU CS Hijack 16/33

  17. Packet Delivery QoS Results: Linux Increasing Priority 45000 Number of packets delivered to a task 40000 35000 30000 25000 20000 15000 10000 Task 0 Task 1 5000 Task 2 Task 3 0 0 5 10 15 20 25 30 Time (seconds) Parmer, West, BU CS Hijack 17/33

  18. Packet Delivery QoS Results: Hijacked Linux 45000 Number of packets delivered to a task 40000 35000 30000 25000 20000 15000 10000 Task 0 Task 1 5000 Task 2 Task 3 0 0 5 10 15 20 25 30 Time (seconds) Parmer, West, BU CS Hijack 18/33

  19. Related Work Related work includes: RTLinux Separate system into two functional domains for Hard-RT predictability Focus is on interrupt latency, not app-specific resource management policies VMs Interface provided to guest OSs ( executives ) is identical to the hardware itself Focus is on HW virtualization, not on providing app-specific services Parmer, West, BU CS Hijack 19/33

  20. Conclusions Hijack enables app-specific, user-level RT policies using a general purpose computing base Use interposition on system service requests to redefine policies executive defined at user-level can leverage underlying system functionality where appropriate Demonstrated that complex policies can be introduced A useful approach towards shrinking the semantic gap Parmer, West, BU CS Hijack 20/33

  22. Limitations global bit trick not ideal for all workloads can revert to simply flushing whole TLB or use other techniques Certain aspects of the system that cannot be hijacked using these techniques If utilize functionality in base system, generally cannot Hijack that functionality COTS system interrupt handling behavior (prototype limitation) Parmer, West, BU CS Hijack 22/33

  23. Using Global-bit Trick to Avoid TLB Flushes Study the effect of TLB flushes on Executive ↔ Guest communication Vary working set size (WSS) of guest by 350 touching data/instruction Hijack Guest -> Executive RPC Linux Pipe System Call 300 pages then making system 250 call # iTLB Misses 200 instruction-TLB has 128 150 entries 100 50 data-TLB has 64 entries 0 0 50 100 150 200 250 300 Global-bit trick avoids Instruction WSS TLB flush, thus avoiding misses Parmer, West, BU CS Hijack 23/33

  24. Using the Global-bit Trick to Avoid TLB Flushes (2) 35000 30000 Hijack Guest -> Executive RPC Hijack Guest -> Executive RPC Linux Pipe Linux Pipe 30000 25000 25000 20000 20000 Cycles Cycles 15000 15000 10000 10000 5000 5000 0 0 0 50 100 150 200 250 300 0 50 100 150 200 250 300 Data WSS Instruction WSS Parmer, West, BU CS Hijack 24/33

  25. Asynchronous Event Notification Experiments Timer interrupts in Average Signal Interarrival Time (milliseconds) 30.0 Executive synthesized Hijack Linux Task 25.0 with signals 20.0 Predictable notification Executive can define 15.0 customizable policy for 10.0 scheduling beyond 5.0 what is present in the 0.0 COTS system (EDF, 0 1 2 3 4 Number of Background CPU Bound Tasks PFAIR, DWCS, etc. . . ) Parmer, West, BU CS Hijack 25/33

  26. Hijack Execution Environment Address Space sigaltstack read-writable 4KB guard page executive stack executive 0x3FC00000 4KB guard page read-only signal_handler Parmer, West, BU CS Hijack 26/33

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

First-class Services First-class Services cont. Where possible, have same capabilities as

First-class Services First-class Services cont. Where possible, have same capabilities as

Introduction Hijack: Taking Control of COTS Systems Leverage commodity systems and generic hardware for to Enforce Predictable Service QoS-constrained applications Guarantees Eliminate cost of proprietary systems & custom hardware

324 views • 10 slides
Feedback Control for Real-Time Systems Chenyang Lu Cyber-Physical Systems Laboratory Department

Feedback Control for Real-Time Systems Chenyang Lu Cyber-Physical Systems Laboratory Department

Feedback Control for Real-Time Systems Chenyang Lu Cyber-Physical Systems Laboratory Department of Computer Science and Engineering CPS Week 2013 Outline q CPU UClizaCon Control for Distributed Real-Time Systems q Model PredicCve Control q

691 views • 37 slides
Real- Real -Time Systems Time Systems Real- -Time Systems Time Systems Real

Real- Real -Time Systems Time Systems Real- -Time Systems Time Systems Real

EDA222/DIT160 Real-Time Systems, Chalmers/GU, 2008/2009 Lecture #15 Updated 2009-03-03 Dependable Distributed Dependable Distributed Real- Real -Time Systems Time Systems Real- -Time Systems Time Systems Real Aircraft/automotive

501 views • 9 slides
1 Challenge 4: Adaptive QoS Control Certification Develop software feedback control in

1 Challenge 4: Adaptive QoS Control Certification Develop software feedback control in

Challenges for Real-Time Systems Adaptive QoS Control Classical real-time scheduling theory relies on accurate knowledge about workload and platform. in Distributed Real-Time Middleware New challenges under uncertainties Maintain robust

342 views • 8 slides
Real Real- -Time Systems Time Systems Designing a real- Designing a real -time system time

Real Real- -Time Systems Time Systems Designing a real- Designing a real -time system time

EDA222/DIT160 Real-Time Systems, Chalmers/GU, 2008/2009 Lecture #10 Updated 2009-02-15 Real Real- -Time Systems Time Systems Designing a real- Designing a real -time system time system Logical function What should be done &

500 views • 8 slides
Real-Time Wireless Control Networks for Cyber-Physical Systems Chenyang Lu

Real-Time Wireless Control Networks for Cyber-Physical Systems Chenyang Lu

Real-Time Wireless Control Networks for Cyber-Physical Systems Chenyang Lu Cyber-Physical Systems Laboratory Department of Computer Science and Engineering Wireless Control Networks Real-time Sensor Reliability Control

297 views • 28 slides
Experiences of Teaching Real-Time Systems to Control Engineers Karl-Erik rzn Dept of

Experiences of Teaching Real-Time Systems to Control Engineers Karl-Erik rzn Dept of

Experiences of Teaching Real-Time Systems to Control Engineers Karl-Erik rzn Dept of Automatic Control Lund University Outline The Lund Education Systems The Real-Time Systems Course A MBSE Perspective on the course Education

718 views • 43 slides
Real- -Time Systems Time Systems Real Specification Implementation Task model

Real- -Time Systems Time Systems Real Specification Implementation Task model

EDA222/DIT160 Real-Time Systems, Chalmers/GU, 2008/2009 Lecture #10 Updated 2009-02-15 Real- -Time Systems Time Systems Real Specification Implementation Task model Execution-time analysis Verification Designing a real-

487 views • 15 slides
Real Real- -Time Systems Time Systems Example: scheduling using EDF Example: scheduling using

Real Real- -Time Systems Time Systems Example: scheduling using EDF Example: scheduling using

EDA222/DIT160 Real-Time Systems, Chalmers/GU, 2008/2009 Lecture #14 Updated 2009-03-01 Real Real- -Time Systems Time Systems Example: scheduling using EDF Example: scheduling using EDF Problem: Assume a system with tasks according to the

593 views • 5 slides
Real Time Operating Systems from Fundamentals of Real Time Systems Mukul Shirvaikar &

Real Time Operating Systems from Fundamentals of Real Time Systems Mukul Shirvaikar &

Real Time Operating Systems from Fundamentals of Real Time Systems Mukul Shirvaikar & Theodore Elbert Chapter 4 1 Real Time Systems Design Various design approaches implemented by system designers to meet real-time requirements

718 views • 36 slides
Real-Time Systems Prof. Chenyang Lu TAs: Ruixuan Dai, Jiangnan Liu Real-Time Systems Systems

Real-Time Systems Prof. Chenyang Lu TAs: Ruixuan Dai, Jiangnan Liu Real-Time Systems Systems

CSE 520S Real-Time Systems Prof. Chenyang Lu TAs: Ruixuan Dai, Jiangnan Liu Real-Time Systems Systems operating under timing constraints Safety-critical systems q Automobiles. q Airplanes. q Mars rovers. q Factory automation. q Air traffic

897 views • 31 slides
Real- -Time Systems Time Systems Real Ada 95 Specification Clocks, time, delay Task

Real- -Time Systems Time Systems Real Ada 95 Specification Clocks, time, delay Task

EDA222/DIT160 Real-Time Systems, Chalmers/GU, 2008/2009 Lecture #4 Updated 2009-01-25 Real- -Time Systems Time Systems Real Ada 95 Specification Clocks, time, delay Task priorities Implementation Verification Ada 95

157 views • 13 slides
Real- Real -time systems time systems Real- Real -time programming time programming

Real- Real -time systems time systems Real- Real -time programming time programming

EDA222/DIT160 Real-Time Systems, Chalmers/GU, 2008/2009 Lecture #2 Updated 2009-01-18 Real- Real -time systems time systems Real- Real -time programming time programming Recommended programming method: Recommended programming method:

251 views • 8 slides
Real- -Time Systems Time Systems Real Low-level programming Specification Resource

Real- -Time Systems Time Systems Real Low-level programming Specification Resource

EDA222/DIT160 Real-Time Systems, Chalmers/GU, 2008/2009 Lecture #6 Updated 2009-02-01 Real- -Time Systems Time Systems Real Low-level programming Specification Resource management Deadlock and starvation Implementation

336 views • 14 slides
Real Time Operating Systems Shirvaikar Chapter 4 REAL TIME SYSTEMS SHIRVAIKAR 1 Real Time

Real Time Operating Systems Shirvaikar Chapter 4 REAL TIME SYSTEMS SHIRVAIKAR 1 Real Time

Real Time Operating Systems Shirvaikar Chapter 4 REAL TIME SYSTEMS SHIRVAIKAR 1 Real Time Systems Design Various design approaches implemented by system designers to meet real-time requirements Three general approaches to task

557 views • 37 slides
RTOS Real-Time Operating Systems Chenyang Lu OS Support for Real-Time Real-Time OS

RTOS Real-Time Operating Systems Chenyang Lu OS Support for Real-Time Real-Time OS

RTOS Real-Time Operating Systems Chenyang Lu OS Support for Real-Time Real-Time OS Real-time extensions to general-purpose OS Chenyang Lu 2 RTOS: Features for Efficiency Small Minimal set of functionality Fast context switch

504 views • 16 slides
CISC 322 Software Architecture Lecture 19: Software Cost Estimation Emad Shihab Slides adapted

CISC 322 Software Architecture Lecture 19: Software Cost Estimation Emad Shihab Slides adapted

CISC 322 Software Architecture Lecture 19: Software Cost Estimation Emad Shihab Slides adapted from Ian Sommerville Last Class Program Evaluation and Review Technique (PERT) Determine critical path Calculate prob. that a project

459 views • 29 slides
CAB-Fuzz: Practical Concolic Testing Techniques for COTS Operating Systems Su Yong Kim, Sangho

CAB-Fuzz: Practical Concolic Testing Techniques for COTS Operating Systems Su Yong Kim, Sangho

CAB-Fuzz: Practical Concolic Testing Techniques for COTS Operating Systems Su Yong Kim, Sangho Lee, Insu Yun, Wen Xu, Byoungyoung Lee, Youngtae Yun, Taesoo Kim USENIX Annual Technical Conference July 14, 2017 The Affiliated Institute of ETRI

812 views • 46 slides
Honeycomb Crea/ve Works is financed by the European

Honeycomb Crea/ve Works is financed by the European

Honeycomb Crea/ve Works is financed by the European Unions European Regional Development Fund through the INTERREG IVA Cross-border Programme managed

1.36k views • 103 slides
2018 Navigating the Annual Report and Proxy Season 2018: Looking Ahead Steven Kennedy Finally,

2018 Navigating the Annual Report and Proxy Season 2018: Looking Ahead Steven Kennedy Finally,

2018 Navigating the Annual Report and Proxy Season 2018: Looking Ahead Steven Kennedy Finally, a Full Commission Hester Pierce Robert Jackson Jr. George Mason Univ Columbia Law School Confirmed 12/21/17 Confirmed 12/21/17 3 SEC

722 views • 33 slides
Deciphering a Commercial WiMAX Deployment using COTS Equipments Kok-Kiong Yap SING Group

Deciphering a Commercial WiMAX Deployment using COTS Equipments Kok-Kiong Yap SING Group

Deciphering a Commercial WiMAX Deployment using COTS Equipments Kok-Kiong Yap SING Group Meeting : August 10, 2010 Wireless Networks Today Mobile network High latency (100 - 200 ms) Low bandwidth Good coverage WLAN/WiFi

677 views • 21 slides
Augmenting Hypergraph Models with Message Nets to Reduce Bandwidth and Latency Costs

Augmenting Hypergraph Models with Message Nets to Reduce Bandwidth and Latency Costs

Augmenting Hypergraph Models with Message Nets to Reduce Bandwidth and Latency Costs Simultaneously Oguz Selvitopi, Seher Acer , and Cevdet Aykanat Bilkent University, Ankara, Turkey CSC16, Albuquerque, NM, USA October 10-12, 2016 To appear in

447 views • 11 slides
Slim Fly: A Cost Effective Low-Diameter Network Topology Images belong to their creator!

Slim Fly: A Cost Effective Low-Diameter Network Topology Images belong to their creator!

spcl.inf.ethz.ch @spcl_eth T ORSTEN H OEFLER , M ACIEJ B ESTA Slim Fly: A Cost Effective Low-Diameter Network Topology Images belong to their creator! spcl.inf.ethz.ch @spcl_eth Background Im an HPC (systems) guy New to the DC

755 views • 38 slides
Software Measurement Notes by mainly Jo Anne Atlee, with modifications by Daniel Berry and

Software Measurement Notes by mainly Jo Anne Atlee, with modifications by Daniel Berry and

Software Measurement Notes by mainly Jo Anne Atlee, with modifications by Daniel Berry and Richard Trefler Fall 2012 0-0 CS445/CS645/ECE451/SE463 COSTS There is no point in using exact methods where there is no clarity in the

967 views • 40 slides

More recommend