Add to collection(s) Add to saved
  1. Engineering & Technology
  2. Computer Science
  3. Operating Systems

SpaceJMP: Programming with Multiple Virtual Address Spaces

advertisement 
SpaceJMP:
Programming with Multiple
Virtual Address Spaces
Izzat El Hajj, Alexander Merritt, Gerd Zellweger,
Dejan Milojicic, Reto Achermann, Paolo Faraboschi,
Wen-mei Hwu, Timothy Roscoe, Karsten Schwan
1
SpaceJMP:
Programming with Multiple
Virtual Address Spaces
Serialization is costly
Overcome insufficent
virtual address bits
Izzat El Hajj, Alexander Merritt, Gerd Zellweger,
Dejan Milojicic, Reto Achermann, Paolo Faraboschi,
Wen-mei Hwu, Timothy Roscoe, Karsten Schwan
Let applications
manage address spaces
Enormous Demand for Data
600
$5
Invested Captial ($Billion)
500
$4
No. of Deals
300
$3
In-memory real-time
analytics
$2
100
$1
“How much data is generated
every minute?” 1
1Source:
DOMO, Data Never Sleeps 3.0, 2015
200
Venture Investments in Big
Data Analytics Companies2
2Source:
SVB, Big Data Next: Capturing the Promise of Big Data, 2015
3
Memory-Centric Computing
Server
CPU DRAM
DRAM CPU
Shared nothing
• Private DRAM
• Network-only communication
• Data marshaling
1Faraboschi,
et al. Beyond Processor-Centric
Operating Systems. HotOS’15
DRAM SoC
3D XPoint
CPU DRAM
...
Network
DRAM SoC
...
...
DRAM CPU
CPU DRAM
load + store
DRAM SoC
NVM
Memristor
DRAM CPU
Blade
High Radix
Switches
Shared something1
• Private DRAM
• Global NVM pool
Byte-addressable
Near-uniform latency
4
Sharing Pointer-Based Data
0x8000
Symbol Table
Pointer Data Structure
list|0x8D40
tree|null
Region-based
Serialization
viaprogramming
file system
• Fixed
Marshaling
base costs
addresses
Contiguous Virtual Region
• Secondary
region conflicts!
representation
0x8000
No control
over the address
space!
• Special
pointers
Virtual Address Space
map+swizzling or use offsets!
Memory Region
L
0x4000
Virtual Address Space
base
0x8D40
region pointer
(absolute)
0x4000
offset
+
0x0D40
=
0x4D40
region pointer
(relative)
5
What About Large Memories?
256 = 64 PiB (or more)
Memory mapped region?
Physical Memory
region 1
region 2
VAS
region 1
No: not enough VA bits
2 = 256 TiB*
Awkward
and
inefficient
designs
What to do?
region 2
48
• Remapping
• Many processes
remap
Single Process
region 1
region 2
region 3
Multiple Processes
*Intel x86-64 Processors.
Challenges
• Data partitioning
• Coordination
6
Legacy Designs are Limiting
fragmentation (holes)
glob code
Virtual Address Space
libraries
heap
stack
kernel
Process Abstraction
VAS* PC
registers
256 GiB Range
map
11 sec.
unmap 2.44 sec.
region
void* mmap(...)
0x8000
int munmap(...)
• Limited control
•
•
•
•
Randomization due to ASLR
Aliasing not prevented1
µ-sec. msec. sec.
Latency
100
10
1
100
10
1
100
10
1
2-socket HSW Intel Xeon
512GB DRAM, GNU/Linux
Why not let applications region
manage
Limited granularity – files, ACL
address spaces?
Costly construction
32 KiB
1 MiB
32 MiB
(not incl. page zeroing or hard faults)
1 GiB
32 GiB
Memory Range Size
1Linux
kernel. FreeBSD has MAP_EXCL
to detect aliased regions.
(4-KiB page)
7
SpaceJMP: VAS as First-Class Citizen
Process A
PC
[private] Virtual Address Space
VAS*
glob
code
glob
code
heap
lib
stack
lib
stack
registers
switch VAS B’
(return)
Q
S
B’
attach VAS B
Q
S
Q
S
B
Explicit, arbitrary page table
add segment to VAS B
create VAS (global)
“jumping”copy
pertranslations
thread
create segments
8
SpaceJMP: Shared Address Spaces
Process A
PC
VAS*
[private] Virtual Address Space
glob
code
glob
code
heap
lib
stack
lib
stack
registers
Q
S
Q
S
S
B’
B
Process B
glob
code
Q
glob
code
heap
lib
stack
lib
stack
B’’
registers
PC
VAS*
[private] Virtual Address Space
9
SpaceJMP: Lockable Segments
Process A
PC
VAS*
[private] Virtual Address Space
glob
code
glob
code
heap
lib
stack
lib
stack
registers
switch VAS B’  acquire lock
Kernel forces processes to
abide by locking protocol
Q
S
B’
Segment S is lockable
Q
S
B
switch VAS B’’  block! (inside kernel)
Process B
glob
code
Q
glob
code
heap
S
lib
stack
lib
stack
B’’
registers
PC
VAS*
[private] Virtual Address Space
10
Unobtrusive Implementation
DragonFly BSD v4.0.6
• Small derivative of FreeBSD
BSD struct vmspace
Virtual Address Space
vm_map
memory system based on Mach µkernel
• Supports only AMD64 arch.
vm_map_entry
start; end;
offset; protection;
vm_object*
vm_object
OBJT_PHYS
Resident
Pages
SpaceJMP Segment
Segment – wrapper around VM Object
VAS – instance of vmspace
Process modifications
• Primary and attached VAS set
VAS Switch (as system call)
• Lookup vmspace, overwrite CR3
11
Unobtrusive Implementation
retype!
Capability
physical address
RAM
Barrelfish OS
x86 PML4
x86 PTDP
Raw Memory x86 PTD
Segment
x86 PTE
Page Table
SpaceJMP VAS
Frame
App
App
user space
Application
kernel
OS node
state
replica
x86
...
OS node
state
replica
OS node
state
replica
Xeon Phi
ARM
interconnect
• SpaceJMP user-level implementation
• No dynamic memory allocation in kernel
all memory is typed – frame, vnode, cnode
safe via kernel-enforced capabilities
• Flexible to experiment with
optimizations
Linux port at Hewlett Packard Labs.
12
Sharing Pointer-Rich Data
SAMTools Genomics Utilities
Normalized Runtime
stage 1
stage 2
un-marshal
marshal
stage 1
stage 3
un-marshal
marshal
stage 2
stage 3
1.0
0.8
0.6
0.4
0.2
Flagstat
switch
switch switch
VAS
• No data marshaling
• Use of absolute pointers
no swizzling, or address conflicts
2-socket 24-core Westmere
92 GiB DRAM, DF BSD
Qname Sort
Coordinate Sort
Index
SAMTools Alignment Operations
1.0
0.8
0.6
0.4
0.2
Flagstat
Qname Sort
Coordinate Sort
Index
13
Single-System Client-Server
GET per second
user space
S
C
marshal + unmarshal
Redis – UNIX Sockets
• Serialized data into sockets
• Buffer copying
• Scheduling coordination
kernel
buffers
2-socket 24-core Westmere
92 GiB DRAM, DF BSD
14
Single-System Client-Server
GET per second
Client VAS
C0
S
Server VAS
Client VAS
C1
C0 C1
C2
C0 get!
get! get! get!
Client VAS
C2
Redis with SpaceJMP
2-socket 24-core Westmere
92 GiB DRAM, DF BSD
15
Single-System Client-Server
Requests per second
Client VAS
C0
Client VAS
C1 writer
C2
Client VAS
Server VAS
C0 C1C1 set!
get!
get!
block!
C0
user
kernel
C2
Varying read-write loads
•
Scalability – lock granularity
scalable locks, e.g., MCS
hardware transactional memory
Write Ratio %
2-socket 24-core Westmere
92 GiB DRAM, DF BSD
•
Typical read/write ratio for KVS ca. 10%
16
SpaceJMP – Summary
P
P
Physical Memory
attached
P
P
VAS 1
VAS 2
P
P
VAS
attached
Future Work
Takeaway
•
•
•
•
• Promote address spaces to
first-class citizens
• Processes explicitly create, attach,
switch address spaces
Persistence – fast reboots
Security – sandboxing
Semantics – transactions
Versioning – fast checkpointing
17
Backup Slides
Programs: How to Use SpaceJMP
vas_create(NAME,PERMS)
VAS
VAS*
seg_alloc(NAME,BASE,LEN,PERMS)
seg_attach(VAS#,SEG#)
S
B’
S
VAS B
vas_attach(VAS#)
S
vas_switch(VAS#HANDLE)
List *items = // lookup in symbol table
append(items, malloc(new_item))
19
Programming Large Memories
with a GUPS-like workload
Physical Memory
Updates per
second (mil.)
VAS
80
P
60
re-mapping
MultiProcess
Physical Memory
VAS 2
VAS 1
P
OpenMPI busywaiting
40
20
2-socket 36-core HSW
512 GiB DRAM, DF BSD
0
SpaceJMP
20
Study: Implications for RPC based
communication
Can SpaceJMP support fast RPC?
– Unix domain sockets are ubiquitous
– Faster published inter-machine RPC
mechanisms?
21
Pointer Safety Issues
Risk for Unsafe Behavior
Pointer dereferences in the wrong address
space are undesirable
Safe Programming Semantics
switch v1
a = malloc
a is valid in v1 only
b = *a
b is valid in v1 only
c = vcast v2 b
c is valid in v2 only
d = alloca
d is valid in any VAS
*d = c
e = *d
e is valid wherever c was valid
22
Compiler-Enforced Pointer Safety
Analysis Identifies Potentially Unsafe Behavior
–
–
–
Analyze active VASes at each program
point
Analyze which VAS each pointer may
point to
Identify dereferences with mismatch
between current VAS and points-to VAS
(safety-ambiguous)
Transformation Guards Dereferences
–
–
–
Protect potentially unsafe dereferences
with tag checks
Tag pointers involved in potentially unsafe
dereferences
Tag pointers that escape visibility (e.g.
external function invocation, stores, etc.)
a = malloc
b = malloc
switch v
*a
*b
safe dereference
safety-ambiguous dereference
23
How fast is address space
switching?
Switching costs – breakdown
– CR3 write cost increases with tags
– Switch latency lower with tags
– Bold is with tagging
Impact of TLB tagging
– Translations remain in TLB
– Diminishing returns with larger
working sets
24
Concrete Systems
Example: HP Superdome X1
• 16 sockets, 288 cores (physical)
• 24 TiB DRAM
• Byte-addressable
• cache-coherent
• $500K–$1M
Improvements to make
• No NVM
• Non-uniform latencies
• Cache coherence wall
1Source:
Hewlett Packard Enterprise
25
Related documents
Vas Taras received his PhD in International Human Resource Management... Dynamics from the University of Calgary, Canada and his Master’s...
Vas Taras received his PhD in International Human Resource Management... Dynamics from the University of Calgary, Canada and his Master’s...
MIDTERM TERMINOLOGY Digestive System 1. Match the word
MIDTERM TERMINOLOGY Digestive System 1. Match the word
Male Reproduction
Male Reproduction
Software Development Summer Intern 1 ABOUT VAS
Software Development Summer Intern 1 ABOUT VAS
ITU-D Regional Development Forum for the EUR and CIS Region
ITU-D Regional Development Forum for the EUR and CIS Region
View/Open
View/Open
Download
advertisement