ECS 251: Operating systems

When virtual is better than real

Notes

Piazza: there are two UC Davis entries, you have to pick the right one to find 251

Class size: looking into larger room, no promises though

Quizzes and grade update: updated website, one free quiz

Office hours posted, Wednesdays from 3:10pm - 4pm in my office (3061 Kemper)

Administrative

Can sign up for presentations on the google doc now

• First lecture available is 1/23 (Nested Kernels paper)
• Extra credit to anyone who signs up to lead the discussion on 1/23 or 1/25

Administrative

Office hours set: Wednesdays 3:10pm - 4pm

Administrative

Start thinking about your project groups now (we’ll talk more about proposals later)

• Requirements 2-3 students. Can do 4, but there is lots of overhead then
• Suggestions / hopes
• At least 1 PhD student per team
• At least 1 MS student per team
• Welcome to work on your own research, feel free to drop by or send email for feedback

Discussion questions

One of the most important parts of your presentation

Three default questions:

• What did you like about the paper?
• What did you dislike about the paper?
• What future work did this inspire?

Other questions designed to spark a discussion

• Most papers are accepted / rejected based on opinions, rarely because of facts
• This class will hopefully help you learn how your classmates think

Quote

“Intelligent and polite disagreement is what separates us from the politicians”

-- Matt Hicks, Advanced OS alum and current professor

​

How to read a paper...

​

Overview for lecture

Reminder, I’m doing both the “administrative” part and the discussion leading part

• Description of a VMM
• Why we read these papers
• Deterministic replay
• Small group discussions
• Class-wide discussions

VMM basics

Definitions

• VM -- software abstraction of a real machine
• Guest software -- anything running inside of a VM
• VMM -- “thin” layer of software
• Host software / resources are the VMM and below
• Eg host physical memory
• Manages resources
• Provides abstractions
• How is this different than an operating system?
• Examples?

VMM architecture

Workshop papers

No real implementation

Lots of ideas

Potential for impact

When virtual is better than real

Pete Chen’s most cited work

One of the two main reasons why VMs were such a popular research topic

• The other is Stanford work on making VMMs practical for x86
• Very deep technical innovations to do this for legacy x86 processors

Lots of impact (academic and beyond)

Secure logging / ReVirt

• 5+ papers, 2 commercial products, 3+ PhDs (including mine), running in VMware

Intrusion detection

• Tons of papers, sandboxing email, servers, etc

Migration

• 3+ papers, a company (Moka5), Intel Internet suspend / resume
• Used heavily in cloud infrastructure

VMMs in general

Used heavily in data centers

Shipped with Windows 7 by default for Windows XP mode

Used to debug Android apps (the Android simulator uses the qemu VMM)

This is where my “historical context” would have ended

Key points

VMMs are great for certain things

VMMs are not the solution to all problems (like we thought they were in ‘01)

Using VMMs for services

Benefits

• Modify the hardware layer
• Simple abstractions to work with
• Not always true, but sometimes true (e.g., checkpoints)
• Improved isolation
• Should have been done by OSes of the time, but done poorly
• It turns out that mobile OSes might have gotten this right
• I’m going to teach an entire class on this next quarter!

Uses

• Clouds, secure logging, intrusion detection, debugging Android apps

Poor uses of VMMs

Need to peer into the guest system (e.g., the Semantic Gap)

E.g., debugging a guest process from outside of the VM

Secure logging -- deterministic replay

Use “time-travel” to recreate the past

Architecturally visible state transitions

• Same starting state + same input => same state
• E.g., “Hello world”
• E.g., “Hello world, it’s 5:00pm”
• In general, need to log sources of non-determinism, re-execute the rest

ReVirt

Uses VMM to record virtual machine

Most computation is deterministic

Non-determinism -- I/O, interrupts

• Log these values
• Use performance counters

Uniprocessor only

Can also replay a process

Inject inputs back into process to replay

Software-only replay

Advantages

• Simple and efficient
• Closer to abstractions you care about
• Multi-thread on a single core

Disadvantages

• Multi-thread on multi-core

Problem: race conditions

The final state depends on the interleaving of the two processors memory access

Problem: race conditions

Software-only approach would have to inspect all load and store instructions

• Some optimizations to improve this
• Still ongoing research

Alternative: Delorean: H/W support for multi core replay

Downside: records entire system

Capo: combines HW and SW replay systems

What did you like about the paper?

• What did you dislike about the paper?

• What future work did this inspire?

​

•

​

Can you create a complete VMM log from

within the guest (or non-virtual) OS?

• Will VMMs become the next OS?

• Is smaller more secure?

• Are VMMs more secure than OSes?

• Are extra layers on computer systems good?

• What will it take to make replay practical?

• Are we going to have HW support for replay?