https://homeostasis.scs.carleton.ca/wiki/api.php?action=feedcontributions&feedformat=atom&user=RhooperSoma-notes - User contributions [en]2026-05-02T09:13:17ZUser contributionsMediaWiki 1.42.1https://homeostasis.scs.carleton.ca/wiki/index.php?title=Early_Internet_%26_RPC&diff=1829Early Internet & RPC2008-04-16T00:33:42Z<p>Rhooper: /* Pros */ - fix remove -> remote</p>
<hr />
<div>==Readings==<br />
<br />
*'''[http://www.scs.carleton.ca/~soma/distos/2008-01-14/kahn1972-resource.pdf Robert E. Kahn, "Resource-Sharing Computer Communications Networks" (1972)]:'''<br />
<br />
This is one of the early papers describing the rationale behind the<br />
ARPANET (which later evolved into the Internet). For more<br />
background on the ARPANET, see [http://video.google.com/videoplay?docid=4989933629762859961 Computer Networks - The Heralds of Resource Sharing] (optional).<br />
<br />
Note how both the ARPANET and and standard operating systems were<br />
developed to facilitate resource sharing.<br />
<br />
*'''[http://www.scs.carleton.ca/~soma/distos/2008-01-14/nelson1981-rpc.pdf Bruce J. Nelson, ''Remote Procedure Call'' (1981)]:'''<br />
<br />
You only need to read the thesis summary which starts at page 224 in<br />
the PDF. If you have time, however, I'd suggest looking at the<br />
rest, particularly the introduction and related work.<br />
<br />
*'''[http://www.scs.carleton.ca/~soma/distos/2008-01-14/birrell1984-rpcimpl.pdf Birrell & Nelson, "Implementing Remote Procedure Calls" (1984)]'''<br />
<br />
Compare the perspective of this RPC implementation description with<br />
the more design-oriented focus of Nelson's thesis.<br />
<br />
==Questions to be discussed==<br />
<br />
# What did the (technical) world look like when this paper was published?<br />
# What is the paper about? What are the key ideas?<br />
# What is the basic argument of the paper, and what sort of evidence is used to make the argument?<br />
# To what extent do you "believe" the argument? Why?<br />
# What did the authors get right about the future? What did they miss about the future?<br />
# What has been forgotten since this paper?<br />
<br />
==Presentations==<br />
<br />
==Debate==<br />
Debate about the pros and cons of RPC. Topic: RPCs are the right foundation for the distributed applications (on today's Internet).<br />
<br />
===Pros===<br />
# Easy to use<br />
#* makes remote procedure calls look like local calls<br />
#* local is easy<br />
#* therefore remote is easy with RPC - good!<br />
# (Counter to first con) Use standards, problem goes away<br />
# Easy to debug<br />
# Avoids complexity of protocol design<br />
# RPC can be abstracted from the protocol design<br />
# (Counter to fourth con) Use threads for interactivity. Manage complexity by doing things pairwise.<br />
# (Counter to fifth con) - wrong!<br />
# (Counter to seventh con) - Use standards (ORBs in CORBA, etc.) for authentication<br />
# (Counter to eighth con) - But you specify the API<br />
# (Counter to ninth con) - It's the same with other methods. But RPC makes it easier to do.<br />
<br />
===Cons===<br />
# Language/implementation specific<br />
# (Counter to third pro) Not easy to debug. example: NullPointerException thrown on server, containing line of erroneous code running on the server.<br />
# Counter to fifth pro) But there is more overhead - slower<br />
# Synchronous - wrong model for large, distributed applications, and also bad for users<br />
# Limited scalability - hard to do well<br />
# Limited control of communication details<br />
# Authentication is opaque<br />
# Larger attack surface area<br />
# Poor match to listening (hard for server to communicate information back to client)<br />
# Backwards compatibility is difficult<br />
# RPC is not a "natural" interaction style - message passing is more similar to human communication<br />
# Too much to set up for simple applications<br />
# Less flexible<br />
<br />
===Anil's Comments===<br />
<br />
RPC makes the simple things very easy, but it doesn't help with the big challenges of distributed programming: robustness and security. If those factors are of minimal importance (e.g. you are programming an isolated cluster running a very high-performance application), then this trade-off doesn't matter. However, there exist other distributed programming paradigms that are easy to use but that still distinguish between accessing internal functions and communicating with external entities.<br />
<br />
If we can keep the developer aware of when communication occurs, then there is a chance that developer will remember to do the input validation and error checking at those points, which is what is needed to make robust and secure applications.</div>Rhooperhttps://homeostasis.scs.carleton.ca/wiki/index.php?title=MapReduce,_Globus,_BOINC&diff=1821MapReduce, Globus, BOINC2008-03-26T19:36:47Z<p>Rhooper: /* Readings */</p>
<hr />
<div>==Readings==<br />
<br />
[http://homeostasis.scs.carleton.ca/~soma/distos/2008-03-24/foster-grid.pdf Ian Foster and Carl Kesselman, "Computational Grids" (1998)]<br />
<br />
[http://homeostasis.scs.carleton.ca/~soma/distos/2008-03-24/foster-globus-intro.pdf Ian Foster, "Globus Toolkit Version 4: Software for Service-Oriented Systems" (2006)]<br />
<br />
[http://homeostasis.scs.carleton.ca/~soma/distos/2008-03-24/anderson-boinc.pdf David P. Anderson, "BOINC: A System for Public-Resource Computing and Storage" (2004)]<br />
<br />
[http://homeostasis.scs.carleton.ca/~soma/distos/2008-03-24/mapreduce-osdi04.pdf Jeffrey Dean and Sanjay Ghemawat, "MapReduce: Simplified Data Processing on Large Clusters" (2004)]<br />
<br />
Paper mentioned in class:<br />
<br />
[http://www.eecs.berkeley.edu/Pubs/TechRpts/2006/EECS-2006-183.pdf Krste Asanovíc, et al, "The Landscape of Parallel Computing Research: A View from Berkeley" (2006)]<br />
<br />
==Notes==<br />
===BOINC===<br />
*Premise? Local client on your machine downloads a 'workunit', churns the data, dumps the results and downloads a new 'workunit'<br />
*Why are we caring?<br />
**Entertainment?<br />
**How is this an OS paradigm? What is it useful for?<br />
***It isn't really an OS, just a method to have your mass computation done<br />
***More of a distributed scheduler?<br />
****Not even, central scheduler, but mass computation<br />
***How many systems have we seen that have accomplished mass computation on millions of uncontrolled computers?<br />
****ummm... none?<br />
***As an OS?<br />
****An OS is something that is created to run programs<br />
****This is a special case allowing us to run specific programs (BUT IS IT AN OS?)<br />
***Useful for "embarassingly parallel programs"<br />
*Perfect for large scale simulation?<br />
**But then you need LOTS of communication, and this system does not have interconnects<br />
*The type of problems that we most care about tend not to be THAT parallel<br />
<br />
*So what would a distributed OS be for?<br />
**Shared communication!<br />
***But we don't have much in the way that works well.<br />
*An OS typically provides a lot of services, together in one package<br />
**We have been seeing that there are no complete packages, just pieces and parts. Why?<br />
***Computers are changing too fast? Same *NIX OS, same TCP/IP stack... so more of the same, why no true solution?<br />
***Communication is unreliable? Yes, but that is also nothing new<br />
<br />
*If people found that distributed file systems were successful, they would be in use all the time, but they aren't. Reason? PERFORMANCE<br />
<br />
*Take away message?<br />
*Can't handle communication - how do you abstract access to resources when driven through a network?<br />
**As a result, we have many many specialized solutions for particular workloads.<br />
*If you are willing to not have communication between nodes, you gain a HUGE amount of computation.<br />
<br />
*The most reliable systems are the one that forget communication.<br />
**The more you system tolerates bad stuff with a network, the better is scales.<br />
<br />
*We dont have general cluster distributed OS.<br />
<br />
===MapReduce===<br />
*The communication happens when you reduce the problem. <br />
**MapReduce works because there is mapping and there is reducing.<br />
***There is no side effects (enabling things).<br />
*Why is it a good fit to a thousands of machines?<br />
**They first had all these pieces, and if one of them does not replay, then they just do it over :)<br />
***You create the algorithm to fit this model, create this pieces, you have a combining function.<br />
****You have to have some back end that keeps track of who got work done. But you don't care if any machine fail in the middle of the computation.<br />
*Compare MapReduce to POSIX<br />
**The difference is in efficiency. MapReduce is an extension to POSIX.<br />
***Distributed OSs trying to run the programs that run on different APIs. The systems that work, they are relaxed.<br />
****Here is the model, loose compatibility by gaining scalability.</div>Rhooperhttps://homeostasis.scs.carleton.ca/wiki/index.php?title=WebOS,_PlanetLab,_Starfish&diff=1804WebOS, PlanetLab, Starfish2008-03-18T23:08:03Z<p>Rhooper: /* Readings */</p>
<hr />
<div>==Readings==<br />
<br />
[http://homeostasis.scs.carleton.ca/~soma/distos/2008-03-17/vahat-webos-hpdc98.pdf Amin Vahat et al., "WebOS: Operating System Services for Wide Area Applications" (1998)]<br />
<br />
[http://homeostasis.scs.carleton.ca/~soma/distos/2008-03-17/starfish.pdf Adnan Agbaria and Roy Friedman, "Starfish: Fault-Tolerant Dynamic MPI Programs on Clusters of Workstations" (2003)]<br />
<br />
[http://homeostasis.scs.carleton.ca/~soma/distos/2008-03-17/peterson-planetlab-osdi06.pdf Larry Peterson et al., "Experiences Building PlanetLab" (2006)]<br />
<br />
[http://homeostasis.scs.carleton.ca/~soma/distos/2008-03-17/anderson-planetlab-learning.pdf Thomas Anderson and Timothy Roscoe, "Learning from PlanetLab" (2006)]<br />
<br />
<br />
----<br />
<br />
<br />
== WebOS ==<br />
<br />
=== Key features ===<br />
* High Availability<br />
* Lower Latency<br />
* Fault Tolerance<br />
<br />
Consensus: WebOS isn't really an distributed OS<br />
<br />
=== Main components ===<br />
* Smart Client<br />
* WebFS<br />
* Global naming scheme based on URLs<br />
* Process control system<br />
* CRISIS authentication/authorization system (Certificates with ACLs)<br />
<br />
=== Key ideas that were/were not not adopted from WebFS ===<br />
<br />
Adopted:<br />
* General idea of wide area dynamic distribution -> Akamai (but primarily for static content)<br />
* Global naming using URLs<br />
<br />
Not Adopted:<br />
* CRISIS <br />
* WebFS (Although WebDAV could be said to be related)<br />
* Smart client (for web sites)<br />
<br />
=== What are the pros and cons of using smart clients to do load balancing? ===<br />
<br />
Pro:<br />
* Distributes computation<br />
* More flexible<br />
<br />
Con:<br />
* Vulnerable to Denial of Service or other forms of attacks<br />
* Extra network overhead to locate a service</div>Rhooperhttps://homeostasis.scs.carleton.ca/wiki/index.php?title=WebOS,_PlanetLab,_Starfish&diff=1803WebOS, PlanetLab, Starfish2008-03-18T23:07:28Z<p>Rhooper: /* Readings */</p>
<hr />
<div>==Readings==<br />
<br />
[http://homeostasis.scs.carleton.ca/~soma/distos/2008-03-17/vahat-webos-hpdc98.pdf Amin Vahat et al., "WebOS: Operating System Services for Wide Area Applications" (1998)]<br />
<br />
[http://homeostasis.scs.carleton.ca/~soma/distos/2008-03-17/starfish.pdf Adnan Agbaria and Roy Friedman, "Starfish: Fault-Tolerant Dynamic MPI Programs on Clusters of Workstations" (2003)]<br />
<br />
[http://homeostasis.scs.carleton.ca/~soma/distos/2008-03-17/peterson-planetlab-osdi06.pdf Larry Peterson et al., "Experiences Building PlanetLab" (2006)]<br />
<br />
[http://homeostasis.scs.carleton.ca/~soma/distos/2008-03-17/anderson-planetlab-learning.pdf Thomas Anderson and Timothy Roscoe, "Learning from PlanetLab" (2006)]<br />
<br />
<br />
----<br />
<br />
<br />
=== WebOS ===<br />
<br />
==== Key features ====<br />
* High Availability<br />
* Lower Latency<br />
* Fault Tolerance<br />
<br />
Consensus: WebOS isn't really an distributed OS<br />
<br />
==== Main components ====<br />
* Smart Client<br />
* WebFS<br />
* Global naming scheme based on URLs<br />
* Process control system<br />
* CRISIS authentication/authorization system (Certificates with ACLs)<br />
<br />
==== Key ideas that were/were not not adopted from WebFS ====<br />
<br />
Adopted:<br />
* General idea of wide area dynamic distribution -> Akamai (but primarily for static content)<br />
* Global naming using URLs<br />
<br />
Not Adopted:<br />
* CRISIS <br />
* WebFS (Although WebDAV could be said to be related)<br />
* Smart client (for web sites)<br />
<br />
==== What are the pros and cons of using smart clients to do load balancing? ====<br />
<br />
Pro:<br />
* Distributes computation<br />
* More flexible<br />
<br />
Con:<br />
* Vulnerable to Denial of Service or other forms of attacks<br />
* Extra network overhead to locate a service</div>Rhooperhttps://homeostasis.scs.carleton.ca/wiki/index.php?title=Bell_Labs&diff=1783Bell Labs2008-03-02T17:56:38Z<p>Rhooper: /* Readings */</p>
<hr />
<div>==Readings==<br />
[http://homeostasis.scs.carleton.ca/~soma/distos/2008-03-03/unix.pdf Dennis M. Ritchie and Ken Thompson, "The UNIX Time-Sharing System"]<br />
<br />
[http://doc.cat-v.org/plan_9/4th_edition/papers/9 Rob Pike et al., "Plan 9 from Bell Labs"]<br />
<br />
[http://doc.cat-v.org/inferno/4th_edition/inferno_OS Sean Dorward et al., "The Inferno Operating System"]<br />
<br />
[http://doc.cat-v.org/inferno/4th_edition/styx Rob Pike and Dennis M. Ritchie, "The Styx Architecture for Distributed Systems"]<br />
<br />
==Questions on the Readings==<br />
<br />
Note that on Monday there will be a general group discussion on the readings - we won't split into groups. These questions are just for you to consider, you don't need to address them in your write-ups.<br />
<br />
# How did the thinking of Rob Pike, Dennis Ritchie, and the rest of the OS researchers at Bell Labs change over time? Specifically, what ideas did they throw away, and what new ideas came to replace them?<br />
# What ideas remained consistent across UNIX, Plan 9, and Inferno?<br />
# Why didn't Plan 9 or Inferno have the success of UNIX?<br />
# What was the impact of Plan 9 and Inferno?<br />
# How does the Styx architecture compare with the architectures of other distributed OSs we've been studying?<br />
# What does Styx ^not^ capture about the design of UNIX, Plan 9, or Inferno?<br />
# Is the view of "everything is a file" still relevant today, or are other approaches (e.g. object-oriented interfaces) more suitable? Why?<br />
<br />
==Project Topic Discussion==<br />
<br />
If you are planning on doing a class project, please come to class prepared to give an informal presentation on your chosen topic. If you wish, you may use a formal electronic presentation; if you do so, please either email it to me by Wednesday morning or make it web accessible. Note that you should only plan to speak for about five minutes - so please, no more than five slides!<br />
<br />
In your presentation, please address the following issues:<br />
<br />
# What is the topic of your project?<br />
# If you are writing a research proposal, what is your idea, and why is it novel?<br />
# Why did you choose it - why do you find it interesting?<br />
# How is it related to distributed operating systems?<br />
# (Very briefly) What related work have you identified?<br />
<br />
Everyone will receive a "group participation" grade on Wednesday. Those presenting a project idea will be graded on the basis of their presentation. (Note that slides are not necessary in order to get an A; all you need to do is coherently and concisely present your current thinking on your project topic.)<br />
<br />
Everyone else will be graded on the quality of the feedback given to the presenters. I expect everyone not presenting to give at least one constructive comment during class - that will get you a B. More participation, the better the grade - unless you start going overboard. Remember, time will be limited!</div>Rhooperhttps://homeostasis.scs.carleton.ca/wiki/index.php?title=Bell_Labs&diff=1782Bell Labs2008-03-02T17:30:38Z<p>Rhooper: /* Readings */</p>
<hr />
<div>==Readings==<br />
[http://homeostasis.scs.carleton.ca/~soma/distos/2008-03-03/unix.pdf Dennis M. Ritchie and Ken Thompson, "The UNIX Time-Sharing System"]<br />
<br />
[http://doc.cat-v.org/plan_9/4th_edition/papers/9 Rob Pike et al., "Plan 9 from Bell Labs"] ([http://citeseerx.ist.psu.edu/viewdoc/download?doi=10.1.1.25.8019&rep=rep1&type=pdf PDF])<br />
<br />
[http://doc.cat-v.org/inferno/4th_edition/inferno_OS Sean Dorward et al., "The Inferno Operating System"]<br />
<br />
[http://doc.cat-v.org/inferno/4th_edition/styx Rob Pike and Dennis M. Ritchie, "The Styx Architecture for Distributed Systems"]<br />
<br />
==Questions on the Readings==<br />
<br />
Note that on Monday there will be a general group discussion on the readings - we won't split into groups. These questions are just for you to consider, you don't need to address them in your write-ups.<br />
<br />
# How did the thinking of Rob Pike, Dennis Ritchie, and the rest of the OS researchers at Bell Labs change over time? Specifically, what ideas did they throw away, and what new ideas came to replace them?<br />
# What ideas remained consistent across UNIX, Plan 9, and Inferno?<br />
# Why didn't Plan 9 or Inferno have the success of UNIX?<br />
# What was the impact of Plan 9 and Inferno?<br />
# How does the Styx architecture compare with the architectures of other distributed OSs we've been studying?<br />
# What does Styx ^not^ capture about the design of UNIX, Plan 9, or Inferno?<br />
# Is the view of "everything is a file" still relevant today, or are other approaches (e.g. object-oriented interfaces) more suitable? Why?<br />
<br />
==Project Topic Discussion==<br />
<br />
If you are planning on doing a class project, please come to class prepared to give an informal presentation on your chosen topic. If you wish, you may use a formal electronic presentation; if you do so, please either email it to me by Wednesday morning or make it web accessible. Note that you should only plan to speak for about five minutes - so please, no more than five slides!<br />
<br />
In your presentation, please address the following issues:<br />
<br />
# What is the topic of your project?<br />
# If you are writing a research proposal, what is your idea, and why is it novel?<br />
# Why did you choose it - why do you find it interesting?<br />
# How is it related to distributed operating systems?<br />
# (Very briefly) What related work have you identified?<br />
<br />
Everyone will receive a "group participation" grade on Wednesday. Those presenting a project idea will be graded on the basis of their presentation. (Note that slides are not necessary in order to get an A; all you need to do is coherently and concisely present your current thinking on your project topic.)<br />
<br />
Everyone else will be graded on the quality of the feedback given to the presenters. I expect everyone not presenting to give at least one constructive comment during class - that will get you a B. More participation, the better the grade - unless you start going overboard. Remember, time will be limited!</div>Rhooperhttps://homeostasis.scs.carleton.ca/wiki/index.php?title=Proposal_Meeting_Schedule&diff=1542Proposal Meeting Schedule2007-10-26T04:05:13Z<p>Rhooper: /* Wednesday, Nov. 7th */</p>
<hr />
<div>==Tuesday, Oct. 30th==<br />
<br />
{| class="wikitable"<br />
| 10:00 AM<br />
| <br />
|-<br />
| 10:10 AM<br />
| <br />
|-<br />
| 10:20 AM<br />
| <br />
|-<br />
| 10:30 AM<br />
| <br />
|-<br />
| 10:40 AM<br />
| <br />
|-<br />
| 10:50 AM<br />
| <br />
|-<br />
| 2:30 PM<br />
| <br />
|-<br />
| 2:40 PM<br />
| <br />
|-<br />
| 2:50 PM<br />
|<br />
|-<br />
| 3:00 PM<br />
| <br />
|-<br />
| 3:10 PM<br />
|<br />
|-<br />
| 3:20 PM<br />
|<br />
|}<br />
<br />
==Wednesday, Oct. 31st==<br />
<br />
{| class="wikitable"<br />
| 10:30 AM<br />
| <br />
|-<br />
| 10:40 AM<br />
| <br />
|-<br />
| 10:50 AM<br />
| <br />
|-<br />
| 11:00 AM<br />
| <br />
|-<br />
| 11:10 AM<br />
| <br />
|-<br />
| 11:20 AM<br />
| <br />
|-<br />
| 11:30 AM<br />
| <br />
|-<br />
| 11:40 AM<br />
| <br />
|-<br />
| 11:50 AM<br />
|<br />
|-<br />
| 12:00 PM<br />
| Neil Dickson<br />
|-<br />
| 12:10 PM<br />
|<br />
|-<br />
| 12:20 PM<br />
| Richard Gould<br />
|}<br />
<br />
==Thursday, Nov. 1st==<br />
<br />
{| class="wikitable"<br />
| 1:30 PM<br />
| <br />
|-<br />
| 1:40 PM<br />
| <br />
|-<br />
| 1:50 PM<br />
| <br />
|-<br />
| 2:00 PM<br />
| <br />
|-<br />
| 2:10 PM<br />
| <br />
|-<br />
| 2:20 PM<br />
| <br />
|}<br />
<br />
==Tuesday, Nov. 6th==<br />
<br />
{| class="wikitable"<br />
| 10:00 AM<br />
| <br />
|-<br />
| 10:10 AM<br />
| <br />
|-<br />
| 10:20 AM<br />
| <br />
|-<br />
| 10:30 AM<br />
| David Tremayne<br />
|-<br />
| 10:40 AM<br />
| <br />
|-<br />
| 10:50 AM<br />
| <br />
|-<br />
| 2:30 PM<br />
| Maria Krol<br />
|-<br />
| 2:40 PM<br />
| Adam Becevello<br />
|-<br />
| 2:50 PM<br />
| Jeff Snell<br />
|-<br />
| 3:00 PM<br />
| <br />
|-<br />
| 3:10 PM<br />
|<br />
|-<br />
| 3:20 PM<br />
|<br />
|}<br />
<br />
==Wednesday, Nov. 7th==<br />
<br />
{| class="wikitable"<br />
| 10:30 AM<br />
| Kenneth Chan<br />
|-<br />
| 10:40 AM<br />
| <br />
|-<br />
| 10:50 AM<br />
| <br />
|-<br />
| 11:00 AM<br />
| <br />
|-<br />
| 11:10 AM<br />
| Adam McNamara<br />
|-<br />
| 11:20 AM<br />
| <br />
|-<br />
| 11:30 AM<br />
| <br />
|-<br />
| 11:40 AM<br />
| Geoffrey Johnson<br />
|-<br />
| 11:50 AM<br />
|<br />
|-<br />
| 12:00 PM<br />
| <br />
|-<br />
| 12:10 PM<br />
|<br />
|-<br />
| 12:20 PM<br />
| Roy Hooper<br />
|}<br />
<br />
==Thursday, Nov. 8th==<br />
<br />
{| class="wikitable"<br />
| 1:30 PM<br />
| <br />
|-<br />
| 1:40 PM<br />
| <br />
|-<br />
| 1:50 PM<br />
| <br />
|-<br />
| 2:00 PM<br />
| <br />
|-<br />
| 2:10 PM<br />
| <br />
|-<br />
| 2:20 PM<br />
| <br />
|}</div>Rhooperhttps://homeostasis.scs.carleton.ca/wiki/index.php?title=High-level_Synchronization_and_IPC&diff=1519High-level Synchronization and IPC2007-10-17T17:14:16Z<p>Rhooper: /* Limitations of Semaphores */</p>
<hr />
<div>==Dinning Philosophers Problem==<br />
<br />
[[Image:DiningPhilosophers.jpg]]<br />
<br />
* Thought experiment used to understand synchronization primitives<br />
* Five philosophers are dining at a frugal Chinese restaurant where they are only provided with one chopstick each. They need two chopsticks to pick up the noodles in order to eat.<br />
** Whenever they are hungry they pick up two chopsticks to eat.<br />
** When they are done eating they put down the chopsticks.<br />
** The philosophers do not talk to each other about eating, only high-minded ideas.<br />
* Have to define a strategy to make sure that no philosopher starves to death.<br />
* We can think of each chopstick as a semaphore.<br />
<br />
===Problems===<br />
* '''Starvation'''<br />
** One (or more) philosopher is never able to get two chopsticks and dies.<br />
* '''Deadlock'''<br />
** All philosophers have one chopstick and are waiting for another philosopher to put one down and they all starve to death.<br />
<br />
===Possible Solutions===<br />
* Could use a scheme involving timeouts, but we want a ''PERFECT'' solution<br />
* Could use synchronization; philosophers either grab one chopstick or none, this illustrates '''AND synchronization'''<br />
<br />
How could AND synchronization be implemented?<br />
* Could turn multiple semaphores into one by abstracting the semaphores into 1 class.<br />
* In general this is done by encapsulating the resources and using another process/thread/program to hand them out<br />
<br />
==Limitations of Semaphores==<br />
<br />
Semaphores are hard to use...<br />
** If the programmer forgets to grab the semaphore this can lead to corruption.<br />
** If the programmer never releases the semaphore this can lead to the program locking.<br />
<br />
The underlying problem is that the down and up need to be matched, with non-standard exits this can be difficult.<br />
<br />
But in C it's all you've got...<br />
* Solution: write a program to check the code (eg: Stanford Checker)<br />
** Problem: not reliable, can produce many false positives<br />
<br />
How about building synchronization into the language as a base level construct?<br />
* Java's ''synchronized''<br />
** Hides semaphores from developer<br />
** Developer still has to decide where to synchronize<br />
** Don't want to synchronize all your code, this leads to single threaded behaviour<br />
<br />
General idea: Monitor Object<br />
* An object instance where only one thread can be executing certain pieces of code at once.<br />
* Provides exclusive access to variables<br />
<br />
From review lecture Oct 17th:<br />
<br />
A monitor is a language construct for doing mutual exclusion. In Java this is known as synchronized.<br />
<br />
==Events and Message Passing==<br />
<br />
[[image:Structs.jpg]]<br />
<br />
===Message Passing===<br />
* Uses buffers<br />
* Message passing is used in large contexts<br />
<br />
===Events===<br />
* Message queue<br />
* When do they occur?<br />
** User does something<br />
** Device does something<br />
* Synchronization can be based around waiting for an event to occur.<br />
<br />
When an event occurs:<br />
* It has to be stored (in a buffer)<br />
* It might not be processed right away<br />
** What if the event is no longer relevant?<br />
*** Could implement events with timeouts<br />
** What if no one's listening for the event?<br />
*** Could drop the event<br />
** The challenge is determining which events should be dropped and which should be queued.<br />
*** In the case of a file open if the event is dropped there will be a leak<br />
*** In the case of mouse movement when no application is listening we want to drop it so that if an application starts listening to mouses events the mouse doesn't go crazy<br />
<br />
==Message passing in a WAN==<br />
<br />
Message passing in a WAN is unreliable. Packets can be dropped.<br />
<br />
In some cases it is acceptable to lose the data<br />
* Streaming video<br />
* VOIP<br />
* Cell phones<br />
<br />
In others we need a reliable transmission<br />
* Downloading content<br />
<br />
===TCP/IP===<br />
* A mechanism to resend dropped packets<br />
* If we build on top of TCP/IP we can assume reliable transmission<br />
<br />
===NAT (Network Address Translation)===<br />
* Used in local networks, to the outside world the whole network appears as a single address, NAT devices remember outgoing requests to route the response to the correct party.<br />
* Firewalls will automatically drop messages that do not have a corresponding outgoing request<br />
** Firewalls will often only let certain types of traffic through, often only TCP/IP<br />
*** Application developers may want to use UDP but may be forced to use TCP/IP to get through the firewall</div>Rhooperhttps://homeostasis.scs.carleton.ca/wiki/index.php?title=Main_Page&diff=1511Main Page2007-10-15T17:16:22Z<p>Rhooper: /* Lectures and Deadlines */</p>
<hr />
<div>Welcome to the Carleton University COMP 3000: Operating Systems (Fall 2007) wiki.<br />
<br />
==Course Outline==<br />
<br />
The course outline can be found [http://www.scs.carleton.ca/%7Ecourses/course_outline.php?number=COMP%203000A&amp;term=Fall&amp;year=2007 here]. A backup copy is [http://www.scs.carleton.ca/~soma/os-2007f/course_outline_printable.php.html here].<br />
<br />
==Running Linux at Home==<br />
<br />
To give you an opportunity to become more familiar with Linux and UNIX, consider running a Linux distribution on your own machine if you can. I suggest looking at [http://www.ubuntu.com Ubuntu] or [http://www.debian.org Debian] (the distribution used in the lab).<br />
<br />
If you don't want to dual boot from Windows/MacOS X or you just don't want to worry about repartitioning, you can run Linux in a virtual machine.<br />
See [[Running Linux in a Virtual Machine]] for more information.<br />
<br />
==Lectures and Deadlines==<br />
<br />
<table style="width: 100%;" border="1" cellpadding="4" cellspacing="0"><br />
<tr valign="top"><br />
<th><br />
<p align="left">Date</p><br />
</th><br />
<th><br />
<p align="left">Due/In Class<br />
</p><br />
</th><br />
<th><br />
<p align="left">Topics</p><br />
</th><br />
<th><br />
<p align="left">Readings</p><br />
</th><br />
</tr><br />
<tr><br />
<td><br />
<p>Sept. 10th<br />
</p><br />
</td><br />
<td> </td><br />
<td><br />
<p>[[Class Outline]]<br />
</p><br />
</td><br />
<td><br />
<p><br />
</p><br />
</td><br />
</tr><br />
<tr><br />
<td>Sept. 12th<br />
</td><br />
<td><br />
</td><br />
<td>#1: [[Introduction]]<br />
</td><br />
<td>Chap. 1<br />
</td><br />
</tr><br />
<tr><br />
<td>Sept. 17th<br />
</td><br />
<td><br />
</td><br />
<td>#2: [[Using the Operating System]], [http://www.scs.carleton.ca/~soma/os-2007f/labs/comp3000-2007F-lab1.pdf Lab 1 introduction]<br />
</td><br />
<td>Chap. 2<br />
</td><br />
</tr><br />
<tr><br />
<td>Sept. 19th<br />
</td><br />
<td><br />
</td><br />
<td>#3: [[Operating System Organization]] (Glenn)<br />
</td><br />
<td>Chap. 3<br />
</td><br />
</tr><br />
<tr><br />
<td>Sept. 24th<br />
</td><br />
<td><br />
</td><br />
<td>#4: [[Computer Organization]]<br />
</td><br />
<td>Chap. 4<br />
</td><br />
</tr><br />
<tr><br />
<td>Sept. 26th<br />
</td><br />
<td><br />
</td><br />
<td>#5: [[Device Management]]<br />
</td><br />
<td>Chap. 5<br />
</td><br />
</tr><br />
<tr><br />
<td>Oct. 1st<br />
</td><br />
<td>[http://www.scs.carleton.ca/~soma/os-2007f/labs/comp3000-2007F-lab1-solution.pdf Lab 1]</td><br />
<td>#6: [[Implementing Processes, Threads, and Resources]], [http://www.scs.carleton.ca/~soma/os-2007f/labs/lab2 Lab 2 introduction]<br />
</td><br />
<td>Chap. 6<br />
</td><br />
</tr><br />
<tr><br />
<td>Oct. 3rd<br />
</td><br />
<td><br />
</td><br />
<td>#7: [[Basic Synchronization Principles]]<br />
</td><br />
<td>Chap. 8<br />
</td><br />
</tr><br />
<tr><br />
<td>Oct. 8th<br />
</td><br />
<td><br />
</td><br />
<td>Thanksgiving<br />
</td><br />
<td>[http://www.cryptonomicon.com/beginning.html In the Beginning was the Command Line].<br />
Prettier version [http://www.csn.ul.ie/%7Ecaolan/Texts/stephenson.html here] (optional)</td><br />
</tr><br />
<tr><br />
<td>Oct. 10th<br />
</td><br />
<td><br />
</td><br />
<td>#8: [[High-level Synchronization and IPC]]<br />
</td><br />
<td>Chap. 9<br />
</td><br />
</tr><br />
<tr><br />
<td>Oct. 15th<br />
</td><br />
<td>Lab 2 (10pm on WebCT)<br />
<br />
</td><br />
<td>[[Test 1 Review]]<br />
</td><br />
<td><br />
</td><br />
</tr><br />
<tr><br />
<td>Oct. 17th<br />
</td><br />
<td>Test 1<br />
</td><br />
<td><br />
</td><br />
<td><br />
</td><br />
</tr><br />
<tr><br />
<td>Oct. 22nd<br />
</td><br />
<td><br />
</td><br />
<td>#9: [[Scheduling]], [[Lab 3 introduction]]<br />
</td><br />
<td>Chap. 7 </td><br />
</tr><br />
<tr><br />
<td>Oct. 24th<br />
</td><br />
<td><br />
</td><br />
<td>#10: [[Deadlock]] </td><br />
<td>Chap. 10 </td><br />
</tr><br />
<tr><br />
<td>Oct. 29th<br />
</td><br />
<td>Paper Outline </td><br />
<td>#11: [[Memory Management]]<br />
</td><br />
<td>Chap. 11<br />
</td><br />
</tr><br />
<tr><br />
<td>Oct. 31st<br />
</td><br />
<td><br />
</td><br />
<td>#12: [[Virtual Memory]]<br />
</td><br />
<td>Chap. 12<br />
</td><br />
</tr><br />
<tr><br />
<td>Nov. 5th<br />
</td><br />
<td>Lab 3<br />
</td><br />
<td>#13: [[File Management]], [[Lab 4 introduction]]<br />
</td><br />
<td>Chap. 13<br />
</td><br />
</tr><br />
<tr><br />
<td>Nov. 7th<br />
</td><br />
<td><br />
</td><br />
<td>#14: [[Protection and Security]] </td><br />
<td>Chap. 14<br />
</td><br />
</tr><br />
<tr><br />
<td>Nov. 12th<br />
</td><br />
<td><br />
</td><br />
<td>#15: [[Networks]]<br />
</td><br />
<td>Chap. 15<br />
</td><br />
</tr><br />
<tr><br />
<td>Nov. 14th<br />
</td><br />
<td> <br />
</td><br />
<td>#16: [[Remote Files]] (Glenn)<br />
</td><br />
<td>Chap. 16<br />
</td><br />
</tr><br />
<tr><br />
<td>Nov. 19th<br />
</td><br />
<td><br />
</td><br />
<td>#17: [[Networks 2]]<br />
</td><br />
<td><br />
</td><br />
</tr><br />
<tr><br />
<td>Nov. 21nd<br />
</td><br />
<td><br />
</td><br />
<td>#18: [[Security 2]]<br />
</td><br />
<td><br />
</td><br />
</tr><br />
<tr><br />
<td>Nov. 26th<br />
</td><br />
<td>Lab 4<br />
<br />
</td><br />
<td>[[Test 2 Review]]<br />
</td><br />
<td><br />
</td><br />
</tr><br />
<tr><br />
<td>Nov. 28th<br />
</td><br />
<td>Test 2<br />
</td><br />
<td> <br />
</td><br />
<td>Chap. 17 </td><br />
</tr><br />
<tr><br />
<td>Dec. 3rd<br />
</td><br />
<td>Paper Final Draft<br />
</td><br />
<td>#21: [[The Future of Operating Systems]]<br />
</td><br />
<td><br />
</td><br />
</tr> <br />
</table></div>Rhooperhttps://homeostasis.scs.carleton.ca/wiki/index.php?title=Running_Linux_in_a_Virtual_Machine&diff=1489Running Linux in a Virtual Machine2007-10-03T22:13:06Z<p>Rhooper: /* Configuring Debian */</p>
<hr />
<div>There are two things you need to run Linux in a virtual machine: a virtual machine application and an image.<br />
<br />
==Choosing a virtual machine application==<br />
<br />
If you are running Windows, two popular options for running Linux in a virtual machine are:<br />
<br />
* [http://www.vmware.com/products/player/ VMWare Player] (commercial but free)<br />
* [http://fabrice.bellard.free.fr/qemu/ QEMU] (open source)<br />
* [http://www.virtualbox.org/ VirtualBox] (commercial w/ free trial and open source)<br />
<br />
If you are running OSX, two popular options for running Linux in a virtual machine are:<br />
<br />
* [http://www.parallels.com/ Parallels] (commercial - trial available)<br />
* [http://www.vmware.com/products/fusion/ VMWare Fusion] (commercial)<br />
<br />
==Choosing a virtual machine image==<br />
<br />
You can do a fresh install of virtually any Linux distribution in most modern virtual machine environments, including [http://www.debian.org Debian] and [http://www.ubuntu.com Ubuntu]. However, it is easier to start with a prebuilt machine image. Such images are often referred to as [http://en.wikipedia.org/wiki/Virtual_appliance virtual appliances].<br />
<br />
There are a variety of images available. Please update the list below with your experiences running these virtual machines:<br />
<br />
* [http://www.visoracle.com/download/debian/ Debian 4.0 (Etch) image] for VMWare Player '''UNTESTED'''<br />
* [http://www.vmware.com/vmtn/appliances/directory/954 Ubuntu 7.04 (Feisty Fawn) image] for VMWare Player '''UNTESTED'''<br />
* [http://isv-image.ubuntu.com/vmware/ Ubuntu (Gnome) and kubuntu (KDE)] official 7.04, 6.10, 6.06 images for VMWare Player <br />
**'''Kubuntu-7.04-desktop-amd64.zip Tested OK'''<br />
**'''Ubuntu-7.04-desktop-amd64.zip Tested OK'''<br />
* Others?<br />
<br />
Note: The amd64 images work with Intel 64 Bit CPU's (ie. Core 2 Duo).<br />
<br />
When connected to the university network, NAT will allow internet access for the virtual machine. Ensure that any firewalls are configured to trust the VMWare Virtual Ethernet Adaptor.<br />
<br />
<br />
== Configuring Debian ==<br />
<br />
In order to do the first lab, you will likely want to install manpages-dev (as root):<br />
apt-get install manpages-dev<br />
<br />
In order to do the second lab, you will need the kernel sources and gcc. <br />
apt-get install linux-source-2.6.18 <br />
<br />
Remove or comment out the line:<br />
deb cdrom:[Debian GNU/Linux 4.0 r1 _Etch_ - Official i386 CD Binary-1 20070819-11:52]/ etch contrib main<br />
<br />
If you haven't modified /etc/apt/sources.list to remove the cdrom source, you will may want to do so first to install gcc and other packages.<br />
apt-get install gcc <br />
apt-get install libc-dev<br />
<br />
You'll also likely need to install the linux headers for your kernel. If you're running the latest etch, the linux-headers-2.6.18-5 or linux-headers-2.6.18-5-686 should be what you want.<br />
apt-get install linux-headers-2.6.18-5</div>Rhooperhttps://homeostasis.scs.carleton.ca/wiki/index.php?title=Running_Linux_in_a_Virtual_Machine&diff=1488Running Linux in a Virtual Machine2007-10-03T22:11:29Z<p>Rhooper: /* Configuring Debian */</p>
<hr />
<div>There are two things you need to run Linux in a virtual machine: a virtual machine application and an image.<br />
<br />
==Choosing a virtual machine application==<br />
<br />
If you are running Windows, two popular options for running Linux in a virtual machine are:<br />
<br />
* [http://www.vmware.com/products/player/ VMWare Player] (commercial but free)<br />
* [http://fabrice.bellard.free.fr/qemu/ QEMU] (open source)<br />
* [http://www.virtualbox.org/ VirtualBox] (commercial w/ free trial and open source)<br />
<br />
If you are running OSX, two popular options for running Linux in a virtual machine are:<br />
<br />
* [http://www.parallels.com/ Parallels] (commercial - trial available)<br />
* [http://www.vmware.com/products/fusion/ VMWare Fusion] (commercial)<br />
<br />
==Choosing a virtual machine image==<br />
<br />
You can do a fresh install of virtually any Linux distribution in most modern virtual machine environments, including [http://www.debian.org Debian] and [http://www.ubuntu.com Ubuntu]. However, it is easier to start with a prebuilt machine image. Such images are often referred to as [http://en.wikipedia.org/wiki/Virtual_appliance virtual appliances].<br />
<br />
There are a variety of images available. Please update the list below with your experiences running these virtual machines:<br />
<br />
* [http://www.visoracle.com/download/debian/ Debian 4.0 (Etch) image] for VMWare Player '''UNTESTED'''<br />
* [http://www.vmware.com/vmtn/appliances/directory/954 Ubuntu 7.04 (Feisty Fawn) image] for VMWare Player '''UNTESTED'''<br />
* [http://isv-image.ubuntu.com/vmware/ Ubuntu (Gnome) and kubuntu (KDE)] official 7.04, 6.10, 6.06 images for VMWare Player <br />
**'''Kubuntu-7.04-desktop-amd64.zip Tested OK'''<br />
**'''Ubuntu-7.04-desktop-amd64.zip Tested OK'''<br />
* Others?<br />
<br />
Note: The amd64 images work with Intel 64 Bit CPU's (ie. Core 2 Duo).<br />
<br />
When connected to the university network, NAT will allow internet access for the virtual machine. Ensure that any firewalls are configured to trust the VMWare Virtual Ethernet Adaptor.<br />
<br />
<br />
== Configuring Debian ==<br />
<br />
In order to do the first lab, you will likely want to install manpages-dev (as root):<br />
apt-get install manpages-dev<br />
<br />
In order to do the second lab, you will need the kernel sources and gcc. <br />
apt-get install linux-source-2.6.18 <br />
<br />
Remove or comment out the line:<br />
deb cdrom:[Debian GNU/Linux 4.0 r1 _Etch_ - Official i386 CD Binary-1 20070819-11:52]/ etch contrib main<br />
<br />
If you haven't modified /etc/apt/sources.list to remove the cdrom source, you will may want to do so first to install gcc.<br />
apt-get install gcc<br />
<br />
You'll also likely need to install the linux headers for your kernel. If you're running the latest etch, the linux-headers-2.6.18-5 or linux-headers-2.6.18-5-686 should be what you want.<br />
apt-get install linux-headers-2.6.18-5</div>Rhooperhttps://homeostasis.scs.carleton.ca/wiki/index.php?title=Running_Linux_in_a_Virtual_Machine&diff=1487Running Linux in a Virtual Machine2007-10-03T22:04:34Z<p>Rhooper: /* Configuring Debian */</p>
<hr />
<div>There are two things you need to run Linux in a virtual machine: a virtual machine application and an image.<br />
<br />
==Choosing a virtual machine application==<br />
<br />
If you are running Windows, two popular options for running Linux in a virtual machine are:<br />
<br />
* [http://www.vmware.com/products/player/ VMWare Player] (commercial but free)<br />
* [http://fabrice.bellard.free.fr/qemu/ QEMU] (open source)<br />
* [http://www.virtualbox.org/ VirtualBox] (commercial w/ free trial and open source)<br />
<br />
If you are running OSX, two popular options for running Linux in a virtual machine are:<br />
<br />
* [http://www.parallels.com/ Parallels] (commercial - trial available)<br />
* [http://www.vmware.com/products/fusion/ VMWare Fusion] (commercial)<br />
<br />
==Choosing a virtual machine image==<br />
<br />
You can do a fresh install of virtually any Linux distribution in most modern virtual machine environments, including [http://www.debian.org Debian] and [http://www.ubuntu.com Ubuntu]. However, it is easier to start with a prebuilt machine image. Such images are often referred to as [http://en.wikipedia.org/wiki/Virtual_appliance virtual appliances].<br />
<br />
There are a variety of images available. Please update the list below with your experiences running these virtual machines:<br />
<br />
* [http://www.visoracle.com/download/debian/ Debian 4.0 (Etch) image] for VMWare Player '''UNTESTED'''<br />
* [http://www.vmware.com/vmtn/appliances/directory/954 Ubuntu 7.04 (Feisty Fawn) image] for VMWare Player '''UNTESTED'''<br />
* [http://isv-image.ubuntu.com/vmware/ Ubuntu (Gnome) and kubuntu (KDE)] official 7.04, 6.10, 6.06 images for VMWare Player <br />
**'''Kubuntu-7.04-desktop-amd64.zip Tested OK'''<br />
**'''Ubuntu-7.04-desktop-amd64.zip Tested OK'''<br />
* Others?<br />
<br />
Note: The amd64 images work with Intel 64 Bit CPU's (ie. Core 2 Duo).<br />
<br />
When connected to the university network, NAT will allow internet access for the virtual machine. Ensure that any firewalls are configured to trust the VMWare Virtual Ethernet Adaptor.<br />
<br />
<br />
== Configuring Debian ==<br />
<br />
In order to do the first lab, you will likely want to install manpages-dev (as root):<br />
apt-get install manpages-dev<br />
<br />
In order to do the second lab, you will need the kernel sources and gcc. <br />
apt-get install linux-source-2.6.18 <br />
<br />
Remove or comment out the line:<br />
deb cdrom:[Debian GNU/Linux 4.0 r1 _Etch_ - Official i386 CD Binary-1 20070819-11:52]/ etch contrib main<br />
<br />
If you haven't modified /etc/apt/sources.list to remove the cdrom source, you will may want to do so first to install gcc.<br />
apt-get install gcc</div>Rhooperhttps://homeostasis.scs.carleton.ca/wiki/index.php?title=Running_Linux_in_a_Virtual_Machine&diff=1486Running Linux in a Virtual Machine2007-10-03T22:04:17Z<p>Rhooper: /* Configuring Debian */</p>
<hr />
<div>There are two things you need to run Linux in a virtual machine: a virtual machine application and an image.<br />
<br />
==Choosing a virtual machine application==<br />
<br />
If you are running Windows, two popular options for running Linux in a virtual machine are:<br />
<br />
* [http://www.vmware.com/products/player/ VMWare Player] (commercial but free)<br />
* [http://fabrice.bellard.free.fr/qemu/ QEMU] (open source)<br />
* [http://www.virtualbox.org/ VirtualBox] (commercial w/ free trial and open source)<br />
<br />
If you are running OSX, two popular options for running Linux in a virtual machine are:<br />
<br />
* [http://www.parallels.com/ Parallels] (commercial - trial available)<br />
* [http://www.vmware.com/products/fusion/ VMWare Fusion] (commercial)<br />
<br />
==Choosing a virtual machine image==<br />
<br />
You can do a fresh install of virtually any Linux distribution in most modern virtual machine environments, including [http://www.debian.org Debian] and [http://www.ubuntu.com Ubuntu]. However, it is easier to start with a prebuilt machine image. Such images are often referred to as [http://en.wikipedia.org/wiki/Virtual_appliance virtual appliances].<br />
<br />
There are a variety of images available. Please update the list below with your experiences running these virtual machines:<br />
<br />
* [http://www.visoracle.com/download/debian/ Debian 4.0 (Etch) image] for VMWare Player '''UNTESTED'''<br />
* [http://www.vmware.com/vmtn/appliances/directory/954 Ubuntu 7.04 (Feisty Fawn) image] for VMWare Player '''UNTESTED'''<br />
* [http://isv-image.ubuntu.com/vmware/ Ubuntu (Gnome) and kubuntu (KDE)] official 7.04, 6.10, 6.06 images for VMWare Player <br />
**'''Kubuntu-7.04-desktop-amd64.zip Tested OK'''<br />
**'''Ubuntu-7.04-desktop-amd64.zip Tested OK'''<br />
* Others?<br />
<br />
Note: The amd64 images work with Intel 64 Bit CPU's (ie. Core 2 Duo).<br />
<br />
When connected to the university network, NAT will allow internet access for the virtual machine. Ensure that any firewalls are configured to trust the VMWare Virtual Ethernet Adaptor.<br />
<br />
<br />
== Configuring Debian ==<br />
<br />
In order to do the first lab, you will likely want to install manpages-dev (as root):<br />
apt-get install manpages-dev<br />
<br />
In order to do the second lab, you will need the kernel sources and gcc. <br />
apt-get install linux-source-2.6.18 <br />
<br />
If you haven't modified /etc/apt/sources.list to remove the cdrom source, you will may want to do so first to install gcc.<br />
apt-get install gcc<br />
Remove or comment out the line:<br />
deb cdrom:[Debian GNU/Linux 4.0 r1 _Etch_ - Official i386 CD Binary-1 20070819-11:52]/ etch contrib main</div>Rhooperhttps://homeostasis.scs.carleton.ca/wiki/index.php?title=Running_Linux_in_a_Virtual_Machine&diff=1485Running Linux in a Virtual Machine2007-10-03T21:59:38Z<p>Rhooper: /* Configuring Debian */</p>
<hr />
<div>There are two things you need to run Linux in a virtual machine: a virtual machine application and an image.<br />
<br />
==Choosing a virtual machine application==<br />
<br />
If you are running Windows, two popular options for running Linux in a virtual machine are:<br />
<br />
* [http://www.vmware.com/products/player/ VMWare Player] (commercial but free)<br />
* [http://fabrice.bellard.free.fr/qemu/ QEMU] (open source)<br />
* [http://www.virtualbox.org/ VirtualBox] (commercial w/ free trial and open source)<br />
<br />
If you are running OSX, two popular options for running Linux in a virtual machine are:<br />
<br />
* [http://www.parallels.com/ Parallels] (commercial - trial available)<br />
* [http://www.vmware.com/products/fusion/ VMWare Fusion] (commercial)<br />
<br />
==Choosing a virtual machine image==<br />
<br />
You can do a fresh install of virtually any Linux distribution in most modern virtual machine environments, including [http://www.debian.org Debian] and [http://www.ubuntu.com Ubuntu]. However, it is easier to start with a prebuilt machine image. Such images are often referred to as [http://en.wikipedia.org/wiki/Virtual_appliance virtual appliances].<br />
<br />
There are a variety of images available. Please update the list below with your experiences running these virtual machines:<br />
<br />
* [http://www.visoracle.com/download/debian/ Debian 4.0 (Etch) image] for VMWare Player '''UNTESTED'''<br />
* [http://www.vmware.com/vmtn/appliances/directory/954 Ubuntu 7.04 (Feisty Fawn) image] for VMWare Player '''UNTESTED'''<br />
* [http://isv-image.ubuntu.com/vmware/ Ubuntu (Gnome) and kubuntu (KDE)] official 7.04, 6.10, 6.06 images for VMWare Player <br />
**'''Kubuntu-7.04-desktop-amd64.zip Tested OK'''<br />
**'''Ubuntu-7.04-desktop-amd64.zip Tested OK'''<br />
* Others?<br />
<br />
Note: The amd64 images work with Intel 64 Bit CPU's (ie. Core 2 Duo).<br />
<br />
When connected to the university network, NAT will allow internet access for the virtual machine. Ensure that any firewalls are configured to trust the VMWare Virtual Ethernet Adaptor.<br />
<br />
<br />
== Configuring Debian ==<br />
<br />
In order to do the first lab, you will likely want to install manpages-dev (as root):<br />
apt-get install manpages-dev<br />
<br />
In order to do the second lab, you will need the kernel sources:<br />
apt-get install linux-source-2.6.18</div>Rhooperhttps://homeostasis.scs.carleton.ca/wiki/index.php?title=Running_Linux_in_a_Virtual_Machine&diff=1469Running Linux in a Virtual Machine2007-09-24T17:07:13Z<p>Rhooper: </p>
<hr />
<div>There are two things you need to run Linux in a virtual machine: a virtual machine application and an image.<br />
<br />
==Choosing a virtual machine application==<br />
<br />
If you are running Windows, two popular options for running Linux in a virtual machine are:<br />
<br />
* [http://www.vmware.com/products/player/ VMWare Player] (commercial but free)<br />
* [http://fabrice.bellard.free.fr/qemu/ QEMU] (open source)<br />
* [http://www.virtualbox.org/ VirtualBox] (commercial w/ free trial and open source)<br />
<br />
If you are running OSX, two popular options for running Linux in a virtual machine are:<br />
<br />
* [http://www.parallels.com/ Parallels] (commercial - trial available)<br />
* [http://www.vmware.com/products/fusion/ VMWare Fusion] (commercial)<br />
<br />
==Choosing a virtual machine image==<br />
<br />
You can do a fresh install of virtually any Linux distribution in most modern virtual machine environments, including [http://www.debian.org Debian] and [http://www.ubuntu.com Ubuntu]. However, it is easier to start with a prebuilt machine image. Such images are often referred to as [http://en.wikipedia.org/wiki/Virtual_appliance virtual appliances].<br />
<br />
There are a variety of images available. Please update the list below with your experiences running these virtual machines:<br />
<br />
* [http://www.visoracle.com/download/debian/ Debian 4.0 (Etch) image] for VMWare Player '''UNTESTED'''<br />
* [http://www.vmware.com/vmtn/appliances/directory/954 Ubuntu 7.04 (Feisty Fawn) image] for VMWare Player '''UNTESTED'''<br />
* [http://isv-image.ubuntu.com/vmware/ Ubuntu (Gnome) and kubuntu (KDE)] official 7.04, 6.10, 6.06 images for VMWare Player <br />
**'''Kubuntu-7.04-desktop-amd64.zip Tested OK'''<br />
**'''Ubuntu-7.04-desktop-amd64.zip Tested OK'''<br />
* Others?<br />
<br />
Note: The amd64 images work with Intel 64 Bit CPU's (ie. Core 2 Duo).<br />
<br />
When connected to the university network, NAT will allow internet access for the virtual machine. Ensure that any firewalls are configured to trust the VMWare Virtual Ethernet Adaptor.<br />
<br />
<br />
== Configuring Debian ==<br />
<br />
In order to do the first lab, you will likely want to install manpages-dev (as root):<br />
apt-get install manpages-dev</div>Rhooperhttps://homeostasis.scs.carleton.ca/wiki/index.php?title=Running_Linux_in_a_Virtual_Machine&diff=1468Running Linux in a Virtual Machine2007-09-24T17:06:21Z<p>Rhooper: /* Choosing a virtual machine application */</p>
<hr />
<div>There are two things you need to run Linux in a virtual machine: a virtual machine application and an image.<br />
<br />
==Choosing a virtual machine application==<br />
<br />
If you are running Windows, two popular options for running Linux in a virtual machine are:<br />
<br />
* [http://www.vmware.com/products/player/ VMWare Player] (commercial but free)<br />
* [http://fabrice.bellard.free.fr/qemu/ QEMU] (open source)<br />
* [http://www.virtualbox.org/ VirtualBox] (commercial w/ free trial and open source)<br />
<br />
If you are running OSX, two popular options for running Linux in a virtual machine are:<br />
<br />
* [http://www.parallels.com/ Parallels] (commercial - trial available)<br />
* [http://www.vmware.com/products/fusion/ VMWare Fusion] (commercial)<br />
<br />
==Choosing a virtual machine image==<br />
<br />
You can do a fresh install of virtually any Linux distribution in most modern virtual machine environments, including [http://www.debian.org Debian] and [http://www.ubuntu.com Ubuntu]. However, it is easier to start with a prebuilt machine image. Such images are often referred to as [http://en.wikipedia.org/wiki/Virtual_appliance virtual appliances].<br />
<br />
There are a variety of images available. Please update the list below with your experiences running these virtual machines:<br />
<br />
* [http://www.visoracle.com/download/debian/ Debian 4.0 (Etch) image] for VMWare Player '''UNTESTED'''<br />
* [http://www.vmware.com/vmtn/appliances/directory/954 Ubuntu 7.04 (Feisty Fawn) image] for VMWare Player '''UNTESTED'''<br />
* [http://isv-image.ubuntu.com/vmware/ Ubuntu (Gnome) and kubuntu (KDE)] official 7.04, 6.10, 6.06 images for VMWare Player <br />
**'''Kubuntu-7.04-desktop-amd64.zip Tested OK'''<br />
**'''Ubuntu-7.04-desktop-amd64.zip Tested OK'''<br />
* Others?<br />
<br />
Note: The amd64 images work with Intel 64 Bit CPU's (ie. Core 2 Duo).<br />
<br />
When connected to the university network, NAT will allow internet access for the virtual machine. Ensure that any firewalls are configured to trust the VMWare Virtual Ethernet Adaptor.</div>Rhooperhttps://homeostasis.scs.carleton.ca/wiki/index.php?title=Running_Linux_in_a_Virtual_Machine&diff=1462Running Linux in a Virtual Machine2007-09-22T22:46:19Z<p>Rhooper: /* Choosing a virtual machine application */</p>
<hr />
<div>There are two things you need to run Linux in a virtual machine: a virtual machine application and an image.<br />
<br />
==Choosing a virtual machine application==<br />
<br />
If you are running Windows, two popular options for running Linux in a virtual machine are:<br />
<br />
* [http://www.vmware.com/products/player/ VMWare Player] (commercial but free)<br />
* [http://fabrice.bellard.free.fr/qemu/ QEMU] (open source)<br />
* [http://www.virtualbox.org/ VirtualBox] (commercial w/ free trial and open source)<br />
<br />
If you are running OSX, two popular options for running Linux in a virtual machine are:<br />
<br />
* [http://www.parallels.com/ Parallels] (commercial)<br />
* [http://www.vmware.com/products/fusion/ VMWare Fusion] (commercial)<br />
<br />
==Choosing a virtual machine image==<br />
<br />
You can do a fresh install of virtually any Linux distribution in most modern virtual machine environments, including [http://www.debian.org Debian] and [http://www.ubuntu.com Ubuntu]. However, it is easier to start with a prebuilt machine image. Such images are often referred to as [http://en.wikipedia.org/wiki/Virtual_appliance virtual appliances].<br />
<br />
There are a variety of images available. Please update the list below with your experiences running these virtual machines:<br />
<br />
* [http://www.visoracle.com/download/debian/ Debian 4.0 (Etch) image] for VMWare Player '''UNTESTED'''<br />
* [http://www.vmware.com/vmtn/appliances/directory/954 Ubuntu 7.04 (Feisty Fawn) image] for VMWare Player '''UNTESTED'''<br />
* Others?</div>Rhooperhttps://homeostasis.scs.carleton.ca/wiki/index.php?title=Using_the_Operating_System&diff=1456Using the Operating System2007-09-18T02:24:01Z<p>Rhooper: /* Term Paper */</p>
<hr />
<div>These notes have not yet been reviewed for correctness.<br />
<br />
== Lecture 3: Using the Operating System ==<br />
<br />
=== Administrative ===<br />
<br />
==== Course Notes ====<br />
The course webpage has been changed to point to this wiki. Notes for lectures will continue to be posted here.<br />
<br />
We still need volunteers to take notes and put them up. Don't forget the up to 3% bonus for doing so.<br />
<br />
==== Lab 1 ====<br />
<br />
Lab 1 will be up soon. Starting tomorrow, there are labs. Please show up.<br />
<br />
If you're clever, you can probably find most of the answers online. Avoid looking up the answers<br />
though, because you'll learn much more than the just answers if you explore<br />
while using the computer.<br />
<br />
You'll do better on the tests if you do the labs.<br />
<br />
The point of this course is to build up a conceptual model of<br />
how computers work. This conceptual model is not made up of answers, its made up<br />
of connections. You'll start to make these connections by doing the labs.<br />
<br />
The Lab will posted as a PDF. You can print it out to bring with it with you.<br />
When you go to hand in the lab, print off your answers on a separate piece of paper.<br />
Answers will be due in two weeks.<br />
<br />
All functioning lab machines are running Debian Linux 4.0 (etch).<br />
They should be connected to the internet. They should have a browser on them<br />
called [http://en.wikipedia.org/wiki/Naming_conflict_between_Debian_and_Mozilla IceWeasel]. <br />
Its really Mozilla Firefox. Because Mozilla has trademarked the name Firefox,<br />
in order to use their name, you have to use exactly their binary distribution. Debian could<br />
have had a waiver, but because Debian is about freedom, Debian didn't want<br />
the users of Debian to be bound by the terms of the Firefox agreement.<br />
<br />
One thing you'll notice while studying operating systems is that there's a lot<br />
of culture. This is because users get used to a particular way of doing things.<br />
For example, lots of us are probably used to Windows and how it works. If<br />
you changed the fundamentals of how Windows worked, many of us would be unhappy.<br />
<br />
Some of the things we'll be studying are based on decisions made long ago, often <br />
arbitrarily of for a technical reason was true at the time.<br />
Even if it was wrong the, or is now wrong, we're often stuck with it.<br />
<br />
We're going to look at some of the baggage in the operating systems as we progress in this course.<br />
<br />
<br />
For the lab, we'll be given a set of questions in 2 parts.<br />
<br />
Part A we should be able to finish during the hour, give or take a few minutes.<br />
If it takes you 3-4 hours, you're probably doing something wrong.<br />
<br />
Part B will take longer. Will need more research, and a bit more reading. You<br />
should be working together. If you have trouble finding a buddy, talk to Dr.<br />
S. Talk to each other to learn. The purpose isn't just about the right<br />
answers, but more so about the operating systems.<br />
<br />
We're going to look at:<br />
<br />
- Processes, and how Unix deals with them.<br />
- How are the parts of the system divided up.<br />
- Dynamic libraries, where they are, where they fit in memory.<br />
- What are the dependencies.<br />
- How does the graphical subsystem fit in there. X-Windows, the classical<br />
Unix graphical environment.<br />
- Practice on the command line. (If you're wondering where these fit in<br />
in modern graphical environments, read Neal Stephenson's essay)<br />
<br />
Try to finish part A in the lab. <br />
Answers due in class 2 weeks from today.<br />
<br />
==== Term Paper ====<br />
<br />
For the Term Paper... You don't have to do a pure literature review. You could<br />
do an original operating system extension. There's one caveat: You've got<br />
to get what you're going to do with Professor Somayaji. You have to get permission<br />
a week before the outline is due (The paper outline is due Oct 29).<br />
<br />
What types of things is he thinking of: Say you wanted to implement a new<br />
file-system? This is inherently more work, because you still have to give a<br />
nice write-up. The report should still cite other work.<br />
<br />
All of us should have started the process by next week, even if its just<br />
googling for 15 minutes. Just google and see what results come up. IF you<br />
start now, you'll have time to pick a topic that you like, instead of the<br />
first thing that comes along. Its better to work on something you like,<br />
instead of stuck reading papers you're not interested in.<br />
<br />
If you want to find good OS papers:<br />
* USENIX association has a number of systems oriented conferences.<br />
** OSDI <br />
** USENIX Annual Technical Conference<br />
** LISA<br />
<br />
=== Using the Operating System ===<br />
<br />
Chapter 2 looks at the programming model of an operating system. <br />
The operating system provides certain abstractions to help programmers work with it.<br />
<br />
What are some examples of abstractions?<br />
<br />
==== Files ====<br />
<br />
A file is a metaphor. What was the original metaphor? The manilla<br />
coloured folder that we put paper in. Its interesting to note that a file is used<br />
to hold many pages or documents, but that a computer file is a single document. Instead, a directory<br />
holds many files, which are each generally one document. <br />
The metaphor hasn't made much sense for a long time, but it is still in use.<br />
<br />
What is a file? <br />
<br />
A file is a bytestream you can read and write from.<br />
<br />
We also have an abstraction called a byte, 256 possible values, 0-255.<br />
We as computer scientists think we can represent just about anything<br />
with these.<br />
<br />
; file : named bytestream(s). <br />
<br />
In modern operating systems there are potentially more than <br />
one bytestream in a file. When there is more than one bytestream, we<br />
call this a forked file.<br />
<br />
An early operating system that used forked files was OS 9.<br />
On a traditional system, you get a sequence of bytes<br />
when you open a file. In a forked file, when you read it, you get some data,<br />
but there is also other data hanging around. We'll talk about that later.<br />
<br />
The standard API calls for a file are:<br />
<br />
* open<br />
* read<br />
* write<br />
* close<br />
* seek<br />
<br />
As well as a other operations that one might need to perform on files, such as:<br />
* truncate<br />
* append - (seek to end of file and write)<br />
* execute<br />
<br />
Why open and close? Why can't we just operate on a filename? <br />
Because it (usually) takes a long time to go through the filesystem to find the files.<br />
Open and close are optimizations -- the abstraction is a stateful interface.<br />
You start by using open to obtain some sort of "handle" representing the file, <br />
and pass this "handle" value to read and write. When you're done, closing the <br />
file frees the resources allocated when opening the file. On most systems<br />
you can only have a specific number of files open at any given time.<br />
<br />
There are some filesystems where open and close don't do much of anything,<br />
such as some networked filesystems.<br />
<br />
File represent storage, on disks... They're random access. If they're random access<br />
like RAM, why don't we access disks like we access RAM? <br />
Why couldn't we just allocate objects as we need them? We could indeed do this, but<br />
it turns out that there's a reason that we don't generally do this.<br />
<br />
The file interface is a procedural interface. <br />
<br />
One nice things about files is they're a minimal functionality interface. The concept of<br />
minimal functionality is a recurring theme you'll find when we discuss filesystems. <br />
<br />
The abstraction used to interface the filesystem<br />
shouldn't prohibit you from creating particular forms of applications. If we chose <br />
to use an object model, we'd be implying you don't want to give arbitrary access to the<br />
data on disk, as objects tend to encapsulate their data.<br />
<br />
The abstraction listed above is the minimal abstraction for efficiently<br />
managing persistent storage (disks).<br />
<br />
This doesn't necessarily mean this is the most absolutely minimal abstraction. <br />
An even more minimal abstraction would be<br />
to just treat storage devices as a bunch of fixed size blocks. However, that's getting too low level,<br />
because now all programs have to worry about where they put files.<br />
<br />
Because the files abstract model is reasonably good, its stuck around for decades.<br />
<br />
Fundamentally, though, its a legacy. Some models of filesystems try to get<br />
away from it. Look at the PalmOS - it resisted having files for a long time, but eventually<br />
gave in to support removable media, but the primary OS and API still don't support files. <br />
Microsoft's been wanting to get away from the legacy files abstraction too, but <br />
somehow it doesn't seem to happen.<br />
<br />
==== Processes and Threads ====<br />
<br />
There's lots of other devices, but from an OS level, there are two other big ones:<br />
CPU and RAM. These two are generally abstracted with processes.<br />
The process is the basic abstraction in operating systems for these two,<br />
but is not the only abstraction. There are also threads.<br />
<br />
CPU + RAM are abstracted as:<br />
* processes<br />
* threads<br />
<br />
A process may have multiple threads. A thread shares memory with its processes.<br />
<br />
* A process is an exclusive allocation of CPU and RAM.<br />
* A thread is a non-exclusive allocation of RAM within a process,<br />
but is an exclusive allocation of CPU.<br />
* One or more threads constitute a process.<br />
<br />
Another way to talk about processes is in terms of address spaces and<br />
execution context: <br />
* An address space is just a virtual version of RAM. It may<br />
be instantiated in physical memory, it may not be. Its a set of addresses you<br />
can call your own. <br />
* Execution context is CPU state (Registers, processor status<br />
words, etc.). There's lots of state surrounding the processor when its running<br />
a program. This state can be saved, and then restored later to resume execution<br />
at a later time.<br />
<br />
* A thread is one execution context matched with an address space.<br />
* A process is one or more execution contexts plus an address space.<br />
* A single-threaded process has one execution context, and one address space.<br />
* A multithreaded process has multiple execution contexts, and one address space.<br />
<br />
The concept of multiple address spaces is somewhat new in modern computing.<br />
However, if you go back to the old days of MS-DOS, there was only one address space, the<br />
physical address space. We used to have things like TSRs, a 640kb limit,<br />
etc. There was no virtualization of memory. In order to run at the same<br />
time, they had to co-exist in the physical memory address space.<br />
<br />
If you don't have multiple address spaces, you don't have processes and threads.<br />
At best, you have threads, sharing the one address space you have.<br />
<br />
Historically, threads were abstracted differently than now: These are<br />
capitalized here to differentiate them from the newer terms: FORK, JOIN, QUIT.<br />
<br />
Why FORK? Think of a fork in the road. You're going along, then things split.<br />
A FORK is supposed to represent that split.<br />
<br />
By FORKing, the main thing to note is that you're creating two execution<br />
contexts, that may be sharing memory. The execution may start at the same<br />
place, but may be diverging. How do you stop creating more and more and more<br />
of these, to bring them back under control or stop them? That's the JOIN<br />
operation. Each thread tracks how many threads are running, if you JOIN and<br />
you're not the last one running, you just go away, otherwise you need to<br />
synchronize back into the main thread.<br />
<br />
What's QUIT? QUIT stops the the whole program -- all execution. It will cut<br />
all threads off, even if the thread is one of the branches and not the main<br />
thread.<br />
<br />
This was one of the earliest ways to abstract multiple execution context.<br />
<br />
What if, when you did the fork, you made a copy of the entire process? There<br />
are now two separate instances of the program, with the same state? The<br />
difference here, is if you quit one, the other will stay around -- but the<br />
difference is more profound: they're not sharing the same address space (nor<br />
execution context). This is the Unix model of processes.<br />
<br />
In the Unix process model the system starts with only one process: init. It<br />
starts running, then it creates a copy of itself with fork, then another, etc.<br />
<br />
[[Image:Comp3000-process-tree.png]]<br />
<br />
In this diagram, What is the value of ''x?'' on the bottom-left-most branch?<br />
''x'' is 5 in the Unix process model. However, if this was multithreaded,<br />
''x'' could be 7 or 5, depending on how fast the threads are running. It might<br />
be 5 if the thread asking for the value of ''x'' runs before the thread setting ''x''<br />
to 7. This is known as a race condition, <br />
because we don't know which thread will run or finish first.<br />
<br />
In Unix, they decided to make it easy and have different processes. These<br />
processes can't change the state of their parents or children. <br />
To share a value, you have to set the value before forking. (Or through other means)<br />
<br />
There's a small glitch with what we've said so far about Unix processes: That<br />
they have exactly the same state when you fork. If this was true, they'd<br />
always do the same thing. How do they know that they're different?<br />
<br />
Turns out that Unix fork is very simple, yet it helps with this.<br />
The idiom you'll usually see is:<br />
<br />
pid = fork();<br />
<br />
fork takes no arguments.<br />
<br />
When you fork, the result of fork is the pid (process ID) of the new process,<br />
or 0 if you're the child.<br />
<br />
The tree of processes effectively becomes a family tree. (However, with some<br />
bizarre genealogy that we'll see later)<br />
<br />
What you usually do is check the value of pid, and if its 0, do one thing,<br />
otherwise do something else. If pid is nonzero, it is the pid of the child<br />
process we just created by forking. You usually use this to track your child.<br />
The classic use of fork is to create disposable children that do a specific<br />
task for a short while, then go away.<br />
<br />
The nice thing about this model is that it keeps things separate. You don't<br />
need to worry about what the child is doing. If you want to communicate, you<br />
have to explicitly set up to do this. There are some standard ways of doing<br />
that communication. We'll look at these later too.<br />
<br />
So now we know how to make new processes? How do we do something different? In<br />
principle we don't need anything else. We could open a file, read new code,<br />
then jump to the new code. However, we have the idea of exec(). <br />
Exec replaces the running program with the specified program, but preserves<br />
the pid.<br />
<br />
In Unix, to start a new program you usually fork() then you exec() the desired<br />
program on the child. If you don't fork() first, then exec() will kill the<br />
original process, replacing it with the program you called exec on.<br />
<br />
Exec causes the kernel to throw away the old address space, and give a new<br />
address space, with the new binary. The pid stays the same though.<br />
<br />
The Windows equivalent is CreateProcess()<br />
<br />
CreateProcess() takes lots of arguments about how to create the new<br />
process (what to load, permissions, etc). Fork takes none. With fork(), <br />
you can set things up yourself, and most of the settings will carry over to<br />
the new program. (Including open files). Note how different these two are.<br />
<br />
In Unix, you have the building blocks to do things, and you have to put them<br />
together yourself. In Windows, you have the single API call to do them all at<br />
once. Neither is strictly right or wrong.<br />
<br />
On older systems, when a big process was forked, everything was copied. On<br />
newer systems, fork doesn't necessarily copy everything. With virtual memory<br />
you can share much of the memory between two processes.<br />
<br />
In older APIs there was vfork() - suspend parent, fork, exec, then let the<br />
parent and child both start to go again. This idea avoided the copying when<br />
the first thing you were going to do was exec.<br />
<br />
The basic idea to make this efficient is that the descriptions of the virtual<br />
memory address spaces don't have to be mutually exclusive. You could have<br />
10 programs sharing portions of their address space -- such as the read-only<br />
portions like the program code, but not the read-write portions.<br />
<br />
What if you didn't want to do an exec after forking? A classic one is a<br />
daemon. One listening on the network for an incoming connection. When that<br />
incoming request comes in, the main program can deal with the request, but it<br />
would also have to keep checking for more requests at the same time. Instead,<br />
in Unix the typically idiom is to fork off a child to process that connection,<br />
and then go back and wait for more.<br />
<br />
You can have shared memory. But the default model for processes is<br />
that nothing is shared, but the threading model is everything is shared.<br />
For threads you have to implement protections, but for processes, you have to<br />
opt-in to share.<br />
<br />
Processes win out on reliability: fewer chances for errors. You control<br />
exactly what state is shared.<br />
<br />
Another thing we'll talk about later regarding threads versus processes is<br />
how does this play on multiple cores? This depends on the implementation,<br />
and sometimes is a little tricky.<br />
<br />
Chapter two is talking about the model presented to the programmer. An API<br />
for your processes and threads to talk to the world.<br />
<br />
This course is fundamentally about how these things are implemented. Its<br />
useful to know about these tricks, so that you know how the computer is used.<br />
It turns out the same tricks are useful in lots of other circumstances. Such<br />
as concurrency - when you have to deal with an application that has to deal<br />
with this - which happens to be most applications. You'll learn this because<br />
the OS guys did this first.<br />
<br />
==== Graphics ====<br />
<br />
This part of the lecture should help you with the lab. Its about graphics.<br />
<br />
We've talked about some standard abstractions so far: files, processes, threads.<br />
<br />
However, the thing you really interact with is the keyboard, mouse, and<br />
display. In the standard Unix model, these are not a part of the operating<br />
system. They're implemented in an application.<br />
<br />
The Unix philosophy is that if you don't have to put it in the kernel,<br />
don't put it there, or if you do, make it interchangeable.<br />
<br />
The standard way to do graphics in Unix is X-Windows, or X for short.<br />
Before X there was the W system. There was a Y system at one point,<br />
as well as Sun NeWs.<br />
<br />
There was also a system called Display Postscript. Postscript is a<br />
fully fledged programming language. Originally used for printers.<br />
It was developed for laser printers, by a little company called Adobe.<br />
When laser printers came out, they had really high resolutions. It was<br />
hard to get the data necessary to print a page to the printer fast<br />
enough... So postscript programs were sent to the printer. In the<br />
early days of the MacIntosh, the processor in the printer was more powerful<br />
than the processor in the computer. Postscript is a funny little language.<br />
Its a post-fix operator language. Instead of saying things like "4+5" you<br />
say "4 5 +" -- you push them onto the stack, then run an operator on them.<br />
The same with function calls.<br />
<br />
In the 80s, there were many competing technologies for how to do graphics<br />
in the Unix world. X won. But Display Postscript also kind of won,<br />
because Macs use Display PDF in a system called Quartz, which was<br />
created as a successor to Display Postscript. Because Postscript was linear,<br />
it was hard to parallelize. PDF is easier to parallelize.<br />
<br />
NeXT was the one that used Display Postscript first... NeXT was founded by<br />
Steve Jobs. OS X is Unix with Display PDF... And you can run X-Windows on top<br />
of that.<br />
<br />
X-Windows lets you open windows on remote computers. The way you create a<br />
window on your local computer is the same way that you open a window on a<br />
remote computer, 1000s of miles away. X is based on something called the X<br />
Window Protocol. It just happens to work locally as well (with some<br />
optimization like shared memory), but the messages were designed to work well<br />
over ethernet.<br />
<br />
This was created by folks that wanted to talk to hundreds of computers, such<br />
as the supercomputer in another room... but they wanted to see the windows<br />
on their own computer.<br />
<br />
Consider what you have to do to see a remote window in Windows. You fire up<br />
Remote Desktop Client, and you get the whole desktop remotely. If you want to<br />
do 10 computers, you end up with 10 windows with 10 desktops and 10 start<br />
buttons. This difference is a result of X-Windows being designed for networks<br />
and Windows being designed for one computer.<br />
<br />
The terminology for X-Windows is a bit backwards from what we're used to: The<br />
server is what we mostly think of of as a client. The server is what controls<br />
access to the display: it runs where your display is to control your display,<br />
mouse, keyboard... And to display a window, remotely or locally, you run a<br />
program known as a client in X-Windows which connects over the network to<br />
display a window on your X-Windows server.<br />
<br />
A funny thing about X is it took the abstraction to an extreme. The people who<br />
created X-Windows didn't know anything about usability or graphics or art. The<br />
original X-Windows tools were created by regular programmers. Technically<br />
underneath its very nice.. But they knew they didn't know, so they made it so<br />
the user could decide what it should look like themselves. So that you can<br />
just switch out a few programs and things keep on working.<br />
<br />
This means that when you do things like moving your mouse to a window -- what<br />
happens? Do you take focus or not? This is something known as click to focus.<br />
In older X Systems, you could just point your mouse there, and focus followed.<br />
This is potentially very efficient, but also very confusing if you're not used<br />
to it... Or how do you handle key sequences, or minimize? Who decides how to<br />
do this all? They had the idea of something called a Window Manager. This goes<br />
back to X Servers providing the technical minimums so that you're not limited<br />
to one behaviour. The Window Manager is just another X client, with some<br />
special privileges so it can run anywhere. It could run 1000s of miles away.<br />
<br />
This is why on Linux there's Gnome, KDE, etc. There's Motif, GTK, QT, IceWM,<br />
Aferstep, Blackbox, Sawfish, fvwm, twm. Etc. Other graphical toolkits too,<br />
abstracted away. These choices are all available there because the X-Windows<br />
people left it very open by not making the choice for us. This does make<br />
things a little confusing at times, though, because each application could<br />
have different assumptions.</div>Rhooperhttps://homeostasis.scs.carleton.ca/wiki/index.php?title=Using_the_Operating_System&diff=1455Using the Operating System2007-09-18T01:21:46Z<p>Rhooper: </p>
<hr />
<div>These notes have not yet been reviewed for correctness.<br />
<br />
== Lecture 3: Using the Operating System ==<br />
<br />
=== Administrative ===<br />
<br />
==== Course Notes ====<br />
The course webpage has been changed to point to this wiki. Notes for lectures will continue to be posted here.<br />
<br />
We still need volunteers to take notes and put them up. Don't forget the up to 3% bonus for doing so.<br />
<br />
==== Lab 1 ====<br />
<br />
Lab 1 will be up soon. Starting tomorrow, there are labs. Please show up.<br />
<br />
If you're clever, you can probably find most of the answers online. Avoid looking up the answers<br />
though, because you'll learn much more than the just answers if you explore<br />
while using the computer.<br />
<br />
You'll do better on the tests if you do the labs.<br />
<br />
The point of this course is to build up a conceptual model of<br />
how computers work. This conceptual model is not made up of answers, its made up<br />
of connections. You'll start to make these connections by doing the labs.<br />
<br />
The Lab will posted as a PDF. You can print it out to bring with it with you.<br />
When you go to hand in the lab, print off your answers on a separate piece of paper.<br />
Answers will be due in two weeks.<br />
<br />
All functioning lab machines are running Debian Linux 4.0 (etch).<br />
They should be connected to the internet. They should have a browser on them<br />
called [http://en.wikipedia.org/wiki/Naming_conflict_between_Debian_and_Mozilla IceWeasel]. <br />
Its really Mozilla Firefox. Because Mozilla has trademarked the name Firefox,<br />
in order to use their name, you have to use exactly their binary distribution. Debian could<br />
have had a waiver, but because Debian is about freedom, Debian didn't want<br />
the users of Debian to be bound by the terms of the Firefox agreement.<br />
<br />
One thing you'll notice while studying operating systems is that there's a lot<br />
of culture. This is because users get used to a particular way of doing things.<br />
For example, lots of us are probably used to Windows and how it works. If<br />
you changed the fundamentals of how Windows worked, many of us would be unhappy.<br />
<br />
Some of the things we'll be studying are based on decisions made long ago, often <br />
arbitrarily of for a technical reason was true at the time.<br />
Even if it was wrong the, or is now wrong, we're often stuck with it.<br />
<br />
We're going to look at some of the baggage in the operating systems as we progress in this course.<br />
<br />
<br />
For the lab, we'll be given a set of questions in 2 parts.<br />
<br />
Part A we should be able to finish during the hour, give or take a few minutes.<br />
If it takes you 3-4 hours, you're probably doing something wrong.<br />
<br />
Part B will take longer. Will need more research, and a bit more reading. You<br />
should be working together. If you have trouble finding a buddy, talk to Dr.<br />
S. Talk to each other to learn. The purpose isn't just about the right<br />
answers, but more so about the operating systems.<br />
<br />
We're going to look at:<br />
<br />
- Processes, and how Unix deals with them.<br />
- How are the parts of the system divided up.<br />
- Dynamic libraries, where they are, where they fit in memory.<br />
- What are the dependencies.<br />
- How does the graphical subsystem fit in there. X-Windows, the classical<br />
Unix graphical environment.<br />
- Practice on the command line. (If you're wondering where these fit in<br />
in modern graphical environments, read Neal Stephenson's essay)<br />
<br />
Try to finish part A in the lab. <br />
Answers due in class 2 weeks from today.<br />
<br />
==== Term Paper ====<br />
<br />
For the Term Paper... You don't have to do a pure literature review. You could<br />
do an original operating system extension. There's one caveat: You've got<br />
to get what you're going to do with the professor first. You have to tell<br />
him a week before the outline is due Oct 22nd.<br />
<br />
What types of things is he thinking of: Say you wanted to implement a new<br />
file-system? This is inherently more work, because you still have to give a<br />
nice write-up. The report should still cite other work.<br />
<br />
All of us should have started the process by next week, even if its just<br />
googling for 15 minutes. Just google and see what results come up. IF you<br />
start now, you'll have time to pick a topic that you like, instead of the<br />
first thing that comes along. Its better to work on something you like,<br />
instead of stuck reading papers you're not interested in.<br />
<br />
If you want to find good OS papers:<br />
* USENIX association has a number of systems oriented conferences.<br />
** OSDI <br />
** USENIX Annual Technical Conference<br />
** LISA<br />
<br />
=== Using the Operating System ===<br />
<br />
Chapter 2 looks at the programming model of an operating system. <br />
The operating system provides certain abstractions to help programmers work with it.<br />
<br />
What are some examples of abstractions?<br />
<br />
==== Files ====<br />
<br />
A file is a metaphor. What was the original metaphor? The manilla<br />
coloured folder that we put paper in. Its interesting to note that a file is used<br />
to hold many pages or documents, but that a computer file is a single document. Instead, a directory<br />
holds many files, which are each generally one document. <br />
The metaphor hasn't made much sense for a long time, but it is still in use.<br />
<br />
What is a file? <br />
<br />
A file is a bytestream you can read and write from.<br />
<br />
We also have an abstraction called a byte, 256 possible values, 0-255.<br />
We as computer scientists think we can represent just about anything<br />
with these.<br />
<br />
; file : named bytestream(s). <br />
<br />
In modern operating systems there are potentially more than <br />
one bytestream in a file. When there is more than one bytestream, we<br />
call this a forked file.<br />
<br />
An early operating system that used forked files was OS 9.<br />
On a traditional system, you get a sequence of bytes<br />
when you open a file. In a forked file, when you read it, you get some data,<br />
but there is also other data hanging around. We'll talk about that later.<br />
<br />
The standard API calls for a file are:<br />
<br />
* open<br />
* read<br />
* write<br />
* close<br />
* seek<br />
<br />
As well as a other operations that one might need to perform on files, such as:<br />
* truncate<br />
* append - (seek to end of file and write)<br />
* execute<br />
<br />
Why open and close? Why can't we just operate on a filename? <br />
Because it (usually) takes a long time to go through the filesystem to find the files.<br />
Open and close are optimizations -- the abstraction is a stateful interface.<br />
You start by using open to obtain some sort of "handle" representing the file, <br />
and pass this "handle" value to read and write. When you're done, closing the <br />
file frees the resources allocated when opening the file. On most systems<br />
you can only have a specific number of files open at any given time.<br />
<br />
There are some filesystems where open and close don't do much of anything,<br />
such as some networked filesystems.<br />
<br />
File represent storage, on disks... They're random access. If they're random access<br />
like RAM, why don't we access disks like we access RAM? <br />
Why couldn't we just allocate objects as we need them? We could indeed do this, but<br />
it turns out that there's a reason that we don't generally do this.<br />
<br />
The file interface is a procedural interface. <br />
<br />
One nice things about files is they're a minimal functionality interface. The concept of<br />
minimal functionality is a recurring theme you'll find when we discuss filesystems. <br />
<br />
The abstraction used to interface the filesystem<br />
shouldn't prohibit you from creating particular forms of applications. If we chose <br />
to use an object model, we'd be implying you don't want to give arbitrary access to the<br />
data on disk, as objects tend to encapsulate their data.<br />
<br />
The abstraction listed above is the minimal abstraction for efficiently<br />
managing persistent storage (disks).<br />
<br />
This doesn't necessarily mean this is the most absolutely minimal abstraction. <br />
An even more minimal abstraction would be<br />
to just treat storage devices as a bunch of fixed size blocks. However, that's getting too low level,<br />
because now all programs have to worry about where they put files.<br />
<br />
Because the files abstract model is reasonably good, its stuck around for decades.<br />
<br />
Fundamentally, though, its a legacy. Some models of filesystems try to get<br />
away from it. Look at the PalmOS - it resisted having files for a long time, but eventually<br />
gave in to support removable media, but the primary OS and API still don't support files. <br />
Microsoft's been wanting to get away from the legacy files abstraction too, but <br />
somehow it doesn't seem to happen.<br />
<br />
==== Processes and Threads ====<br />
<br />
There's lots of other devices, but from an OS level, there are two other big ones:<br />
CPU and RAM. These two are generally abstracted with processes.<br />
The process is the basic abstraction in operating systems for these two,<br />
but is not the only abstraction. There are also threads.<br />
<br />
CPU + RAM are abstracted as:<br />
* processes<br />
* threads<br />
<br />
A process may have multiple threads. A thread shares memory with its processes.<br />
<br />
* A process is an exclusive allocation of CPU and RAM.<br />
* A thread is a non-exclusive allocation of RAM within a process,<br />
but is an exclusive allocation of CPU.<br />
* One or more threads constitute a process.<br />
<br />
Another way to talk about processes is in terms of address spaces and<br />
execution context: <br />
* An address space is just a virtual version of RAM. It may<br />
be instantiated in physical memory, it may not be. Its a set of addresses you<br />
can call your own. <br />
* Execution context is CPU state (Registers, processor status<br />
words, etc.). There's lots of state surrounding the processor when its running<br />
a program. This state can be saved, and then restored later to resume execution<br />
at a later time.<br />
<br />
* A thread is one execution context matched with an address space.<br />
* A process is one or more execution contexts plus an address space.<br />
* A single-threaded process has one execution context, and one address space.<br />
* A multithreaded process has multiple execution contexts, and one address space.<br />
<br />
The concept of multiple address spaces is somewhat new in modern computing.<br />
However, if you go back to the old days of MS-DOS, there was only one address space, the<br />
physical address space. We used to have things like TSRs, a 640kb limit,<br />
etc. There was no virtualization of memory. In order to run at the same<br />
time, they had to co-exist in the physical memory address space.<br />
<br />
If you don't have multiple address spaces, you don't have processes and threads.<br />
At best, you have threads, sharing the one address space you have.<br />
<br />
Historically, threads were abstracted differently than now: These are<br />
capitalized here to differentiate them from the newer terms: FORK, JOIN, QUIT.<br />
<br />
Why FORK? Think of a fork in the road. You're going along, then things split.<br />
A FORK is supposed to represent that split.<br />
<br />
By FORKing, the main thing to note is that you're creating two execution<br />
contexts, that may be sharing memory. The execution may start at the same<br />
place, but may be diverging. How do you stop creating more and more and more<br />
of these, to bring them back under control or stop them? That's the JOIN<br />
operation. Each thread tracks how many threads are running, if you JOIN and<br />
you're not the last one running, you just go away, otherwise you need to<br />
synchronize back into the main thread.<br />
<br />
What's QUIT? QUIT stops the the whole program -- all execution. It will cut<br />
all threads off, even if the thread is one of the branches and not the main<br />
thread.<br />
<br />
This was one of the earliest ways to abstract multiple execution context.<br />
<br />
What if, when you did the fork, you made a copy of the entire process? There<br />
are now two separate instances of the program, with the same state? The<br />
difference here, is if you quit one, the other will stay around -- but the<br />
difference is more profound: they're not sharing the same address space (nor<br />
execution context). This is the Unix model of processes.<br />
<br />
In the Unix process model the system starts with only one process: init. It<br />
starts running, then it creates a copy of itself with fork, then another, etc.<br />
<br />
[[Image:Comp3000-process-tree.png]]<br />
<br />
In this diagram, What is the value of ''x?'' on the bottom-left-most branch?<br />
''x'' is 5 in the Unix process model. However, if this was multithreaded,<br />
''x'' could be 7 or 5, depending on how fast the threads are running. It might<br />
be 5 if the thread asking for the value of ''x'' runs before the thread setting ''x''<br />
to 7. This is known as a race condition, <br />
because we don't know which thread will run or finish first.<br />
<br />
In Unix, they decided to make it easy and have different processes. These<br />
processes can't change the state of their parents or children. <br />
To share a value, you have to set the value before forking. (Or through other means)<br />
<br />
There's a small glitch with what we've said so far about Unix processes: That<br />
they have exactly the same state when you fork. If this was true, they'd<br />
always do the same thing. How do they know that they're different?<br />
<br />
Turns out that Unix fork is very simple, yet it helps with this.<br />
The idiom you'll usually see is:<br />
<br />
pid = fork();<br />
<br />
fork takes no arguments.<br />
<br />
When you fork, the result of fork is the pid (process ID) of the new process,<br />
or 0 if you're the child.<br />
<br />
The tree of processes effectively becomes a family tree. (However, with some<br />
bizarre genealogy that we'll see later)<br />
<br />
What you usually do is check the value of pid, and if its 0, do one thing,<br />
otherwise do something else. If pid is nonzero, it is the pid of the child<br />
process we just created by forking. You usually use this to track your child.<br />
The classic use of fork is to create disposable children that do a specific<br />
task for a short while, then go away.<br />
<br />
The nice thing about this model is that it keeps things separate. You don't<br />
need to worry about what the child is doing. If you want to communicate, you<br />
have to explicitly set up to do this. There are some standard ways of doing<br />
that communication. We'll look at these later too.<br />
<br />
So now we know how to make new processes? How do we do something different? In<br />
principle we don't need anything else. We could open a file, read new code,<br />
then jump to the new code. However, we have the idea of exec(). <br />
Exec replaces the running program with the specified program, but preserves<br />
the pid.<br />
<br />
In Unix, to start a new program you usually fork() then you exec() the desired<br />
program on the child. If you don't fork() first, then exec() will kill the<br />
original process, replacing it with the program you called exec on.<br />
<br />
Exec causes the kernel to throw away the old address space, and give a new<br />
address space, with the new binary. The pid stays the same though.<br />
<br />
The Windows equivalent is CreateProcess()<br />
<br />
CreateProcess() takes lots of arguments about how to create the new<br />
process (what to load, permissions, etc). Fork takes none. With fork(), <br />
you can set things up yourself, and most of the settings will carry over to<br />
the new program. (Including open files). Note how different these two are.<br />
<br />
In Unix, you have the building blocks to do things, and you have to put them<br />
together yourself. In Windows, you have the single API call to do them all at<br />
once. Neither is strictly right or wrong.<br />
<br />
On older systems, when a big process was forked, everything was copied. On<br />
newer systems, fork doesn't necessarily copy everything. With virtual memory<br />
you can share much of the memory between two processes.<br />
<br />
In older APIs there was vfork() - suspend parent, fork, exec, then let the<br />
parent and child both start to go again. This idea avoided the copying when<br />
the first thing you were going to do was exec.<br />
<br />
The basic idea to make this efficient is that the descriptions of the virtual<br />
memory address spaces don't have to be mutually exclusive. You could have<br />
10 programs sharing portions of their address space -- such as the read-only<br />
portions like the program code, but not the read-write portions.<br />
<br />
What if you didn't want to do an exec after forking? A classic one is a<br />
daemon. One listening on the network for an incoming connection. When that<br />
incoming request comes in, the main program can deal with the request, but it<br />
would also have to keep checking for more requests at the same time. Instead,<br />
in Unix the typically idiom is to fork off a child to process that connection,<br />
and then go back and wait for more.<br />
<br />
You can have shared memory. But the default model for processes is<br />
that nothing is shared, but the threading model is everything is shared.<br />
For threads you have to implement protections, but for processes, you have to<br />
opt-in to share.<br />
<br />
Processes win out on reliability: fewer chances for errors. You control<br />
exactly what state is shared.<br />
<br />
Another thing we'll talk about later regarding threads versus processes is<br />
how does this play on multiple cores? This depends on the implementation,<br />
and sometimes is a little tricky.<br />
<br />
Chapter two is talking about the model presented to the programmer. An API<br />
for your processes and threads to talk to the world.<br />
<br />
This course is fundamentally about how these things are implemented. Its<br />
useful to know about these tricks, so that you know how the computer is used.<br />
It turns out the same tricks are useful in lots of other circumstances. Such<br />
as concurrency - when you have to deal with an application that has to deal<br />
with this - which happens to be most applications. You'll learn this because<br />
the OS guys did this first.<br />
<br />
==== Graphics ====<br />
<br />
This part of the lecture should help you with the lab. Its about graphics.<br />
<br />
We've talked about some standard abstractions so far: files, processes, threads.<br />
<br />
However, the thing you really interact with is the keyboard, mouse, and<br />
display. In the standard Unix model, these are not a part of the operating<br />
system. They're implemented in an application.<br />
<br />
The Unix philosophy is that if you don't have to put it in the kernel,<br />
don't put it there, or if you do, make it interchangeable.<br />
<br />
The standard way to do graphics in Unix is X-Windows, or X for short.<br />
Before X there was the W system. There was a Y system at one point,<br />
as well as Sun NeWs.<br />
<br />
There was also a system called Display Postscript. Postscript is a<br />
fully fledged programming language. Originally used for printers.<br />
It was developed for laser printers, by a little company called Adobe.<br />
When laser printers came out, they had really high resolutions. It was<br />
hard to get the data necessary to print a page to the printer fast<br />
enough... So postscript programs were sent to the printer. In the<br />
early days of the MacIntosh, the processor in the printer was more powerful<br />
than the processor in the computer. Postscript is a funny little language.<br />
Its a post-fix operator language. Instead of saying things like "4+5" you<br />
say "4 5 +" -- you push them onto the stack, then run an operator on them.<br />
The same with function calls.<br />
<br />
In the 80s, there were many competing technologies for how to do graphics<br />
in the Unix world. X won. But Display Postscript also kind of won,<br />
because Macs use Display PDF in a system called Quartz, which was<br />
created as a successor to Display Postscript. Because Postscript was linear,<br />
it was hard to parallelize. PDF is easier to parallelize.<br />
<br />
NeXT was the one that used Display Postscript first... NeXT was founded by<br />
Steve Jobs. OS X is Unix with Display PDF... And you can run X-Windows on top<br />
of that.<br />
<br />
X-Windows lets you open windows on remote computers. The way you create a<br />
window on your local computer is the same way that you open a window on a<br />
remote computer, 1000s of miles away. X is based on something called the X<br />
Window Protocol. It just happens to work locally as well (with some<br />
optimization like shared memory), but the messages were designed to work well<br />
over ethernet.<br />
<br />
This was created by folks that wanted to talk to hundreds of computers, such<br />
as the supercomputer in another room... but they wanted to see the windows<br />
on their own computer.<br />
<br />
Consider what you have to do to see a remote window in Windows. You fire up<br />
Remote Desktop Client, and you get the whole desktop remotely. If you want to<br />
do 10 computers, you end up with 10 windows with 10 desktops and 10 start<br />
buttons. This difference is a result of X-Windows being designed for networks<br />
and Windows being designed for one computer.<br />
<br />
The terminology for X-Windows is a bit backwards from what we're used to: The<br />
server is what we mostly think of of as a client. The server is what controls<br />
access to the display: it runs where your display is to control your display,<br />
mouse, keyboard... And to display a window, remotely or locally, you run a<br />
program known as a client in X-Windows which connects over the network to<br />
display a window on your X-Windows server.<br />
<br />
A funny thing about X is it took the abstraction to an extreme. The people who<br />
created X-Windows didn't know anything about usability or graphics or art. The<br />
original X-Windows tools were created by regular programmers. Technically<br />
underneath its very nice.. But they knew they didn't know, so they made it so<br />
the user could decide what it should look like themselves. So that you can<br />
just switch out a few programs and things keep on working.<br />
<br />
This means that when you do things like moving your mouse to a window -- what<br />
happens? Do you take focus or not? This is something known as click to focus.<br />
In older X Systems, you could just point your mouse there, and focus followed.<br />
This is potentially very efficient, but also very confusing if you're not used<br />
to it... Or how do you handle key sequences, or minimize? Who decides how to<br />
do this all? They had the idea of something called a Window Manager. This goes<br />
back to X Servers providing the technical minimums so that you're not limited<br />
to one behaviour. The Window Manager is just another X client, with some<br />
special privileges so it can run anywhere. It could run 1000s of miles away.<br />
<br />
This is why on Linux there's Gnome, KDE, etc. There's Motif, GTK, QT, IceWM,<br />
Aferstep, Blackbox, Sawfish, fvwm, twm. Etc. Other graphical toolkits too,<br />
abstracted away. These choices are all available there because the X-Windows<br />
people left it very open by not making the choice for us. This does make<br />
things a little confusing at times, though, because each application could<br />
have different assumptions.</div>Rhooperhttps://homeostasis.scs.carleton.ca/wiki/index.php?title=Introduction&diff=1454Introduction2007-09-18T01:21:33Z<p>Rhooper: </p>
<hr />
<div>These notes have not yet been reviewed for correctness.<br />
<br />
== Introduction ==<br />
<br />
[[Class Outline#Introduction|Last class]], we began talking about turning the machine we have into the machine we want.<br />
<br />
What are some properties of the machine that we want?<br />
<br />
- usable / accessible<br />
- stable / reliable<br />
- functional (access to underlying resources)<br />
- efficient<br />
- customizable<br />
- secure<br />
- multitasking<br />
- portability<br />
<br />
If you have a computer that doesn't let you access the hardware, eg. a<br />
keyboard or video camera, it isn't very functional. Multitasking is slightly different than efficiency. <br />
For portability, do you really want to have to rewrite applications to support<br />
slight variations in the hardware such as different size hard disks and different<br />
amounts of RAM?<br />
<br />
Operating systems don't do all of these perfectly, but they tend to do a lot<br />
of these at least acceptably.<br />
<br />
If you look at the introduction to the text book, it talks about various<br />
types of operatings systems. Some of the operating systems we know about are:<br />
Linux, Windows, MacOSX, VXWorks, QNX, MS-DOS, Soliaris/xBSD, OS/2, BeOS, VMS,<br />
MVS, OS/370, AIX, etc.<br />
<br />
Linux isn't a variety of different operating systems to the same degree as the <br />
different versions of windows, as most linuxes share some components, whereas windows tends not to.<br />
<br />
Of the list above, most of them are modern operating systems, except MS-DOS.<br />
To be a "modern" OS, there are two major qualities: Does it have protected<br />
memory, and does it have pre-emptive multitasking?<br />
<br />
=== Protected Memory ===<br />
<br />
What is protected memory? <br />
<br />
Student: A situation where each program and the operating system has its own memory, and the OS prevents<br />
other programs from writing to another program's memory. <br />
<br />
Dr. Somayaji: Access mechanisms to avoid having one program overwrite another program's memory.<br />
<br />
This lets you have a situation where if one program crashes, you can just restart it. Damage due to<br />
memory overwrites is limited to one program.<br />
<br />
=== Preemptive Multi-tasking ===<br />
<br />
A way to have more than one program run at a time. Older machines were known<br />
as batch machines and their operating systems were batch operating systems.<br />
These ran tasks that took a long time to run. These were queued up, and run<br />
one at a time in sequence. These were typically things such things as payroll and accounts receivable.<br />
Usually these would be run overnight and the output, either on magnetic tape or a<br />
stack of printouts which would be returned to the user in the morning.<br />
<br />
Preemptive multitasking - the OS enforces time sharing.<br />
Co-operative multitasking - each program lets others run.<br />
<br />
If you look at MS-DOS, there are batch files. These are just a sequence of<br />
commands to run. It runs them and then returns when done. <br />
<br />
If you want to run a GUI, however, a batch system is unlikely to be what you want, as<br />
a GUI environment tends to be interactive. <br />
<br />
With the big iron in the old days they had big computers that would be sitting<br />
mostly idle, except when running the batch jobs. The idea of time sharing came along around then.<br />
<br />
=== Structure of a computer ===<br />
<br />
[[Image:Stored_program_architecture_1.png]]<br />
Stored Program architecture<br />
<br />
The stored program architecture with today's computers is a bit of a fiction.<br />
<br />
The things the microprocessor does are significantly faster than the RAM<br />
storage. Modern computers have to wait for data from RAM. However this time is<br />
dwarfed by the time spent waiting for I/O. This is because I/O devices tend to be mechanical:<br />
printers, hard disks, people at keyboards.<br />
<br />
This helped cause the idea "what if we had multiple users and let them share the CPU" to come<br />
about. This is time-sharing. On modern computers, we do this too, but instead<br />
of sharing with multiple users we run multiple programs for a single user --<br />
multi-tasking.<br />
<br />
In older systems such as Win3.1 and MacOS 9, this was co-operative multi-tasking.<br />
When things started running, they'd hog the CPU until they decided they were<br />
ready to give up the CPU. <br />
<br />
There used to be a great feature in the Mac in the old days where if you held<br />
down the mouse button, no networking would happen. This was because the<br />
program running at the time was hogging the CPU when the mouse button was pressed.<br />
In pre-emptive multitasking, you get booted out periodically so that the<br />
system can spend time paying attention to the network, to do animations, or<br />
to let other applications run. It spends a millisecond here, a millisecond there,<br />
etc. Instead of actually running simultaneously, they're periodically running, but <br />
they seem to run simultaneously to the end-user.<br />
<br />
Sometimes you have 2 or more CPUs, but you have more than 2 things going on... <br />
<br />
=== Processes and the Kernel ===<br />
<br />
Processes are fundamentally the things that get multitasked and protected. It<br />
is the abstraction of a running program. This is what makes an operating<br />
system modern. In the old days, you had one memory space and the OS and its<br />
applications were all sharing the CPU and memory. Now, with a process model,<br />
there are barriers all over the place, and more importantly, something/someone<br />
in charge governing the process. It's not a free-for all, it has a dictator,<br />
and its name is the kernel.<br />
<br />
Kernel as in the center piece.<br />
<br />
Question to class: How many people have heard of the term Microkernel? <br />
Not many hands.<br />
<br />
There are various terms that modify the term kernel such as monolithic kernel, microkernel,<br />
picokernel, etc. These specify how much stuff is in the microkernel.<br />
The idea is that the more code is in the kernel, the faster it goes, but<br />
conversely, that the more code there is the risk of crashing is higher.<br />
<br />
All of the problem code goes into processes, as they can be restarted, and kept<br />
out of the kernel.<br />
<br />
The debate about what is faster is not fully settled for technical and philosophical reasons.<br />
Almost all operating systems on the list above are big kernels, not small ones.<br />
<br />
So if that's what a kernel is, how does a program fit into that?<br />
If there's one program to rule them all, where do processes fit in?<br />
The kernel decides who gets to run, that implements a priority scheme.<br />
<br />
Student: "It got there first. You start the computer, then the kernel gets in. Everything has to<br />
talk to it or it doesn't run..."<br />
<br />
It gets to set the rules... that's sort of it... <br />
In unix, there's the idea of the init process. It is first to run, and has<br />
special responsibilities. It is run using a regular binary, at system boot,<br />
by the kernel. This still doesn't tell us how the kernel keeps control of it.<br />
<br />
The kernel often keeps control by getting the hardware to help. By loading first,<br />
the kernel can setup the CPU and memory so that it has control. This<br />
type of hardware assistance is generally available to the first code to<br />
request it.<br />
<br />
=== Interrupts ===<br />
<br />
Interrupts -- what are they? It's an alert to say something has to be done now.<br />
<br />
A CPU is running the programs, until something happens, like someone pressing<br />
a key or a network packet arrives. So an I/O device flags an interrupt. The CPU<br />
now has to stop and pay attention<br />
<br />
An interrupt is just a mechanism to allow the CPU to change contexts, to switch<br />
from running one bit of code to another. There's a standard set of interrupts<br />
defined by the hardware. Associated with each interrupt there's a bit of code.<br />
When one interrupts happens, run its code, when another happens, run another. <br />
For example, for the keyboard, there's a routine to read a key from the keyboard, store it in<br />
a buffer so its not overwritten when the next key is pressed, then returns.<br />
<br />
{|align="right"<br />
|[[Image:Stored_program_architecture_2.png]]<br />
|}<br />
Think of an interrupt as a little kid pulling at your pant leg. It wants your attention now.<br />
<br />
The OS controls interrupts to control the CPU (and also what happens with RAM).<br />
<br />
Wait a second? If the kernel can only control interrupts, how can it keep<br />
general control if no interrupts happen? The clock IO device! It throws<br />
interrupts too.<br />
<br />
As a part of the boot sequence, the kernel programs the clock to wake the<br />
operating system up every, say, 100th of a second. Call me! So the OS can<br />
then keep running and perform its tasks as it needs:<br />
"Is everyone behaving nicely? Do I need to kill anyone?"<br />
<br />
=== Virtual Memory ===<br />
<br />
A slight fly in the ointment: If you are a program, and want to take control,<br />
how do you mount a rebellion? You overwrite the interrupt table! This is<br />
where protected memory comes in. It prevents a regular program from doing this.<br />
As a regular process, you often can't even see the interrupt table.<br />
<br />
How is that possible? Many schemes have been proposed for doing protected<br />
memory. Some variants will be spoken about, but the most widespread method <br />
is something known as virtual memory. Often tied into the concept of<br />
virtual memory is the ability to use disk for memory too.<br />
<br />
The fundamental idea is that the address you think your instruction or variable is at in memory is<br />
fictional/virtual. Say you want to load from address 2000 and load it into a register, and you<br />
have another program that want to do the same thing, are they doing the same thing?<br />
Nope! They have nothing to do with each other in a virtual memory model.<br />
Both programs live in their own virtual worlds, and can't see each other.<br />
The kernel, with the help of a little piece of hardware called the MMU <br />
is able to give each process its own virtual view of memory. It decides<br />
how that's going to map to real memory as it sees it.<br />
<br />
So the kernel controls interrupts to control IO and it controls memory.<br />
These are the two key controls. If a kernel can't control these, it<br />
can't properly provide protections ("It can't stop the rebellion").<br />
<br />
Last class we talked about hypervisors. The whole idea there is that the<br />
kernel thinks that it has control of the interrupt table and the real<br />
MMU are actually virtual ones, provided by the Hypervisor.<br />
<br />
So you can now run windows inside a window on Linux, OSX, etc.<br />
<br />
<br />
The difference between the various versions of windows:<br />
<br />
- Windows 95, Windows 98 implemented these ideas for some programs, but not all, and<br />
could get around it easily.<br />
- Windows 3.1 didn't have these.<br />
- Windows XP, Vista are modern.<br />
<br />
There's one small problem with Vista and XP, however. <br />
This has to do with the nature of the processes:<br />
<br />
{|align="right"<br />
|[[Image:Processes_and_kernel.png]]<br />
|}<br />
To upgrade things, the kernel trusts some programs/users to allow them to<br />
upgrade. In windows, you tend to run as the user admin. This means you're<br />
running the equivalent of the unix root command. The kernel listens to you<br />
and does just about anything you want, including install programs. <br />
<br />
Say that cute Christmas animation.. which happens to install a keylogger<br />
to send all your keystrokes to the other side of the world, so they can<br />
log into your bank account.<br />
<br />
In unix, there's the concept of root users and non-root users. Root can<br />
ask for almost anything to be done, including change its code. If you can<br />
tell the kernel to load new code, you can pretty much do anything. As<br />
an unpriviledged user, the kernel/OS say no.<br />
<br />
When people make fun of windows being insecure, its not a fundamental flaw<br />
with the design of windows -- its a little broken, overly complex in some ways --<br />
but certain design choices along the way in the name of usability, such as<br />
running as admin users so that users don't need to be asked to do something<br />
special to change settings, install software, upgrade, etc.<br />
This is why we have the current spyware problem.<br />
<br />
Vista changes this slightly with the UAC (User Access Control) which runs<br />
a regular user with full priviledges, but asks you whenever priviledged<br />
operations need doing -- Yes/No. And you just click on it. But users<br />
still click yes. <br />
<br />
And now there's easy ways to turn off UAC completely. We'll talk about this more<br />
later when we talk about security.<br />
<br />
=== System Calls ===<br />
<br />
How do you talk to a kernel?<br />
<br />
It's the dictator and you're a supplicant. How do you make a timely request<br />
to the kernel to ask it to please do something? System calls!<br />
<br />
A system call is a standard mechanism for an application to talk to a kernel.<br />
<br />
A system call is NOT a function call. In your APIs and the like, it may look like<br />
a function call, may be wrapped in one.. But in implementation, they are very<br />
different.<br />
<br />
In order for the kernel to be in control, it has to run with special<br />
privileges and not give these to the user programs. There are various schemes,<br />
but the common one is a 1-bit option: User mode, or supervisor mode. User mode<br />
means that running as a regular program, you can't talk to the IO/interrupt<br />
vectors or talk tot he MMU, but you can run instructions and access your own<br />
memory. When you switch to supervisor mode, then everything is accessible. The<br />
kernel runs in supervisor mode.<br />
<br />
So if you're cut off and can't see the kernel, how do you send it a message?<br />
You might be able to write to a special place in memory that the kernel might<br />
check periodically, but how do you get it to check now? Normally the kernel<br />
is invoked by interrupts.. So as a user program, to invoke the kernel,<br />
you call an interrupt. There are special instructions, software interrupts,<br />
that are like a hardware interrupt, but software initiates them. There are<br />
interrupt tables just like for hardware.<br />
<br />
So the kernel can then look at the memory of the invoking user program when a<br />
user program calls the system call. Remember, because of the memory<br />
protections, you can't just jump into kernel code, so the only way in is via an<br />
interrupt.<br />
<br />
Therefore, system calls cause interrupts to invoke the kernel.<br />
<br />
In the process of doing a system call, the system has to do a lot of 'paperwork' <br />
to change context. System calls are expensive, very expensive. This is<br />
one of the things that tends to bound the performance of an operating system.<br />
<br />
Modern CPUs are so fast, shouldn't they be able to switch really fast?<br />
Turns out the tricks used to make modern CPUs really fast are like those<br />
used to make muscle cars -- they tend to go really fast in a straight line,<br />
but when you want to turn, you have to slow down to nearly a stop. Modern<br />
CPUs are like that.<br />
<br />
Interrupts cause all partial work done in parallel by modern CPUs to be<br />
thrown out, such as 10-20 or more instructions. The CPU has to fill the<br />
pipelines and resume. This stuff happens at a level below that of what the<br />
kernel runs at. The kernel saves its registers before switching context,<br />
so that it can resume later.</div>Rhooperhttps://homeostasis.scs.carleton.ca/wiki/index.php?title=Using_the_Operating_System&diff=1453Using the Operating System2007-09-18T01:02:48Z<p>Rhooper: /* Lab 1 */</p>
<hr />
<div>These notes are have not yet been reviewed for correctness.<br />
<br />
== Lecture 3: Using the Operating System ==<br />
<br />
=== Administrative ===<br />
<br />
==== Course Notes ====<br />
The course webpage has been changed to point to this wiki. Notes for lectures will continue to be posted here.<br />
<br />
We still need volunteers to take notes and put them up. Don't forget the up to 3% bonus for doing so.<br />
<br />
==== Lab 1 ====<br />
<br />
Lab 1 will be up soon. Starting tomorrow, there are labs. Please show up.<br />
<br />
If you're clever, you can probably find most of the answers online. Avoid looking up the answers<br />
though, because you'll learn much more than the just answers if you explore<br />
while using the computer.<br />
<br />
You'll do better on the tests if you do the labs.<br />
<br />
The point of this course is to build up a conceptual model of<br />
how computers work. This conceptual model is not made up of answers, its made up<br />
of connections. You'll start to make these connections by doing the labs.<br />
<br />
The Lab will posted as a PDF. You can print it out to bring with it with you.<br />
When you go to hand in the lab, print off your answers on a separate piece of paper.<br />
Answers will be due in two weeks.<br />
<br />
All functioning lab machines are running Debian Linux 4.0 (etch).<br />
They should be connected to the internet. They should have a browser on them<br />
called [http://en.wikipedia.org/wiki/Naming_conflict_between_Debian_and_Mozilla IceWeasel]. <br />
Its really Mozilla Firefox. Because Mozilla has trademarked the name Firefox,<br />
in order to use their name, you have to use exactly their binary distribution. Debian could<br />
have had a waiver, but because Debian is about freedom, Debian didn't want<br />
the users of Debian to be bound by the terms of the Firefox agreement.<br />
<br />
One thing you'll notice while studying operating systems is that there's a lot<br />
of culture. This is because users get used to a particular way of doing things.<br />
For example, lots of us are probably used to Windows and how it works. If<br />
you changed the fundamentals of how Windows worked, many of us would be unhappy.<br />
<br />
Some of the things we'll be studying are based on decisions made long ago, often <br />
arbitrarily of for a technical reason was true at the time.<br />
Even if it was wrong the, or is now wrong, we're often stuck with it.<br />
<br />
We're going to look at some of the baggage in the operating systems as we progress in this course.<br />
<br />
<br />
For the lab, we'll be given a set of questions in 2 parts.<br />
<br />
Part A we should be able to finish during the hour, give or take a few minutes.<br />
If it takes you 3-4 hours, you're probably doing something wrong.<br />
<br />
Part B will take longer. Will need more research, and a bit more reading. You<br />
should be working together. If you have trouble finding a buddy, talk to Dr.<br />
S. Talk to each other to learn. The purpose isn't just about the right<br />
answers, but more so about the operating systems.<br />
<br />
We're going to look at:<br />
<br />
- Processes, and how Unix deals with them.<br />
- How are the parts of the system divided up.<br />
- Dynamic libraries, where they are, where they fit in memory.<br />
- What are the dependencies.<br />
- How does the graphical subsystem fit in there. X-Windows, the classical<br />
Unix graphical environment.<br />
- Practice on the command line. (If you're wondering where these fit in<br />
in modern graphical environments, read Neal Stephenson's essay)<br />
<br />
Try to finish part A in the lab. <br />
Answers due in class 2 weeks from today.<br />
<br />
==== Term Paper ====<br />
<br />
For the Term Paper... You don't have to do a pure literature review. You could<br />
do an original operating system extension. There's one caveat: You've got<br />
to get what you're going to do with the professor first. You have to tell<br />
him a week before the outline is due Oct 22nd.<br />
<br />
What types of things is he thinking of: Say you wanted to implement a new<br />
file-system? This is inherently more work, because you still have to give a<br />
nice write-up. The report should still cite other work.<br />
<br />
All of us should have started the process by next week, even if its just<br />
googling for 15 minutes. Just google and see what results come up. IF you<br />
start now, you'll have time to pick a topic that you like, instead of the<br />
first thing that comes along. Its better to work on something you like,<br />
instead of stuck reading papers you're not interested in.<br />
<br />
If you want to find good OS papers:<br />
* USENIX association has a number of systems oriented conferences.<br />
** OSDI <br />
** USENIX Annual Technical Conference<br />
** LISA<br />
<br />
=== Using the Operating System ===<br />
<br />
Chapter 2 looks at the programming model of an operating system. <br />
The operating system provides certain abstractions to help programmers work with it.<br />
<br />
What are some examples of abstractions?<br />
<br />
==== Files ====<br />
<br />
A file is a metaphor. What was the original metaphor? The manilla<br />
coloured folder that we put paper in. Its interesting to note that a file is used<br />
to hold many pages or documents, but that a computer file is a single document. Instead, a directory<br />
holds many files, which are each generally one document. <br />
The metaphor hasn't made much sense for a long time, but it is still in use.<br />
<br />
What is a file? <br />
<br />
A file is a bytestream you can read and write from.<br />
<br />
We also have an abstraction called a byte, 256 possible values, 0-255.<br />
We as computer scientists think we can represent just about anything<br />
with these.<br />
<br />
; file : named bytestream(s). <br />
<br />
In modern operating systems there are potentially more than <br />
one bytestream in a file. When there is more than one bytestream, we<br />
call this a forked file.<br />
<br />
An early operating system that used forked files was OS 9.<br />
On a traditional system, you get a sequence of bytes<br />
when you open a file. In a forked file, when you read it, you get some data,<br />
but there is also other data hanging around. We'll talk about that later.<br />
<br />
The standard API calls for a file are:<br />
<br />
* open<br />
* read<br />
* write<br />
* close<br />
* seek<br />
<br />
As well as a other operations that one might need to perform on files, such as:<br />
* truncate<br />
* append - (seek to end of file and write)<br />
* execute<br />
<br />
Why open and close? Why can't we just operate on a filename? <br />
Because it (usually) takes a long time to go through the filesystem to find the files.<br />
Open and close are optimizations -- the abstraction is a stateful interface.<br />
You start by using open to obtain some sort of "handle" representing the file, <br />
and pass this "handle" value to read and write. When you're done, closing the <br />
file frees the resources allocated when opening the file. On most systems<br />
you can only have a specific number of files open at any given time.<br />
<br />
There are some filesystems where open and close don't do much of anything,<br />
such as some networked filesystems.<br />
<br />
File represent storage, on disks... They're random access. If they're random access<br />
like RAM, why don't we access disks like we access RAM? <br />
Why couldn't we just allocate objects as we need them? We could indeed do this, but<br />
it turns out that there's a reason that we don't generally do this.<br />
<br />
The file interface is a procedural interface. <br />
<br />
One nice things about files is they're a minimal functionality interface. The concept of<br />
minimal functionality is a recurring theme you'll find when we discuss filesystems. <br />
<br />
The abstraction used to interface the filesystem<br />
shouldn't prohibit you from creating particular forms of applications. If we chose <br />
to use an object model, we'd be implying you don't want to give arbitrary access to the<br />
data on disk, as objects tend to encapsulate their data.<br />
<br />
The abstraction listed above is the minimal abstraction for efficiently<br />
managing persistent storage (disks).<br />
<br />
This doesn't necessarily mean this is the most absolutely minimal abstraction. <br />
An even more minimal abstraction would be<br />
to just treat storage devices as a bunch of fixed size blocks. However, that's getting too low level,<br />
because now all programs have to worry about where they put files.<br />
<br />
Because the files abstract model is reasonably good, its stuck around for decades.<br />
<br />
Fundamentally, though, its a legacy. Some models of filesystems try to get<br />
away from it. Look at the PalmOS - it resisted having files for a long time, but eventually<br />
gave in to support removable media, but the primary OS and API still don't support files. <br />
Microsoft's been wanting to get away from the legacy files abstraction too, but <br />
somehow it doesn't seem to happen.<br />
<br />
==== Processes and Threads ====<br />
<br />
There's lots of other devices, but from an OS level, there are two other big ones:<br />
CPU and RAM. These two are generally abstracted with processes.<br />
The process is the basic abstraction in operating systems for these two,<br />
but is not the only abstraction. There are also threads.<br />
<br />
CPU + RAM are abstracted as:<br />
* processes<br />
* threads<br />
<br />
A process may have multiple threads. A thread shares memory with its processes.<br />
<br />
* A process is an exclusive allocation of CPU and RAM.<br />
* A thread is a non-exclusive allocation of RAM within a process,<br />
but is an exclusive allocation of CPU.<br />
* One or more threads constitute a process.<br />
<br />
Another way to talk about processes is in terms of address spaces and<br />
execution context: <br />
* An address space is just a virtual version of RAM. It may<br />
be instantiated in physical memory, it may not be. Its a set of addresses you<br />
can call your own. <br />
* Execution context is CPU state (Registers, processor status<br />
words, etc.). There's lots of state surrounding the processor when its running<br />
a program. This state can be saved, and then restored later to resume execution<br />
at a later time.<br />
<br />
* A thread is one execution context matched with an address space.<br />
* A process is one or more execution contexts plus an address space.<br />
* A single-threaded process has one execution context, and one address space.<br />
* A multithreaded process has multiple execution contexts, and one address space.<br />
<br />
The concept of multiple address spaces is somewhat new in modern computing.<br />
However, if you go back to the old days of MS-DOS, there was only one address space, the<br />
physical address space. We used to have things like TSRs, a 640kb limit,<br />
etc. There was no virtualization of memory. In order to run at the same<br />
time, they had to co-exist in the physical memory address space.<br />
<br />
If you don't have multiple address spaces, you don't have processes and threads.<br />
At best, you have threads, sharing the one address space you have.<br />
<br />
Historically, threads were abstracted differently than now: These are<br />
capitalized here to differentiate them from the newer terms: FORK, JOIN, QUIT.<br />
<br />
Why FORK? Think of a fork in the road. You're going along, then things split.<br />
A FORK is supposed to represent that split.<br />
<br />
By FORKing, the main thing to note is that you're creating two execution<br />
contexts, that may be sharing memory. The execution may start at the same<br />
place, but may be diverging. How do you stop creating more and more and more<br />
of these, to bring them back under control or stop them? That's the JOIN<br />
operation. Each thread tracks how many threads are running, if you JOIN and<br />
you're not the last one running, you just go away, otherwise you need to<br />
synchronize back into the main thread.<br />
<br />
What's QUIT? QUIT stops the the whole program -- all execution. It will cut<br />
all threads off, even if the thread is one of the branches and not the main<br />
thread.<br />
<br />
This was one of the earliest ways to abstract multiple execution context.<br />
<br />
What if, when you did the fork, you made a copy of the entire process? There<br />
are now two separate instances of the program, with the same state? The<br />
difference here, is if you quit one, the other will stay around -- but the<br />
difference is more profound: they're not sharing the same address space (nor<br />
execution context). This is the Unix model of processes.<br />
<br />
In the Unix process model the system starts with only one process: init. It<br />
starts running, then it creates a copy of itself with fork, then another, etc.<br />
<br />
[[Image:Comp3000-process-tree.png]]<br />
<br />
In this diagram, What is the value of ''x?'' on the bottom-left-most branch?<br />
''x'' is 5 in the Unix process model. However, if this was multithreaded,<br />
''x'' could be 7 or 5, depending on how fast the threads are running. It might<br />
be 5 if the thread asking for the value of ''x'' runs before the thread setting ''x''<br />
to 7. This is known as a race condition, <br />
because we don't know which thread will run or finish first.<br />
<br />
In Unix, they decided to make it easy and have different processes. These<br />
processes can't change the state of their parents or children. <br />
To share a value, you have to set the value before forking. (Or through other means)<br />
<br />
There's a small glitch with what we've said so far about Unix processes: That<br />
they have exactly the same state when you fork. If this was true, they'd<br />
always do the same thing. How do they know that they're different?<br />
<br />
Turns out that Unix fork is very simple, yet it helps with this.<br />
The idiom you'll usually see is:<br />
<br />
pid = fork();<br />
<br />
fork takes no arguments.<br />
<br />
When you fork, the result of fork is the pid (process ID) of the new process,<br />
or 0 if you're the child.<br />
<br />
The tree of processes effectively becomes a family tree. (However, with some<br />
bizarre genealogy that we'll see later)<br />
<br />
What you usually do is check the value of pid, and if its 0, do one thing,<br />
otherwise do something else. If pid is nonzero, it is the pid of the child<br />
process we just created by forking. You usually use this to track your child.<br />
The classic use of fork is to create disposable children that do a specific<br />
task for a short while, then go away.<br />
<br />
The nice thing about this model is that it keeps things separate. You don't<br />
need to worry about what the child is doing. If you want to communicate, you<br />
have to explicitly set up to do this. There are some standard ways of doing<br />
that communication. We'll look at these later too.<br />
<br />
So now we know how to make new processes? How do we do something different? In<br />
principle we don't need anything else. We could open a file, read new code,<br />
then jump to the new code. However, we have the idea of exec(). <br />
Exec replaces the running program with the specified program, but preserves<br />
the pid.<br />
<br />
In Unix, to start a new program you usually fork() then you exec() the desired<br />
program on the child. If you don't fork() first, then exec() will kill the<br />
original process, replacing it with the program you called exec on.<br />
<br />
Exec causes the kernel to throw away the old address space, and give a new<br />
address space, with the new binary. The pid stays the same though.<br />
<br />
The Windows equivalent is CreateProcess()<br />
<br />
CreateProcess() takes lots of arguments about how to create the new<br />
process (what to load, permissions, etc). Fork takes none. With fork(), <br />
you can set things up yourself, and most of the settings will carry over to<br />
the new program. (Including open files). Note how different these two are.<br />
<br />
In Unix, you have the building blocks to do things, and you have to put them<br />
together yourself. In Windows, you have the single API call to do them all at<br />
once. Neither is strictly right or wrong.<br />
<br />
On older systems, when a big process was forked, everything was copied. On<br />
newer systems, fork doesn't necessarily copy everything. With virtual memory<br />
you can share much of the memory between two processes.<br />
<br />
In older APIs there was vfork() - suspend parent, fork, exec, then let the<br />
parent and child both start to go again. This idea avoided the copying when<br />
the first thing you were going to do was exec.<br />
<br />
The basic idea to make this efficient is that the descriptions of the virtual<br />
memory address spaces don't have to be mutually exclusive. You could have<br />
10 programs sharing portions of their address space -- such as the read-only<br />
portions like the program code, but not the read-write portions.<br />
<br />
What if you didn't want to do an exec after forking? A classic one is a<br />
daemon. One listening on the network for an incoming connection. When that<br />
incoming request comes in, the main program can deal with the request, but it<br />
would also have to keep checking for more requests at the same time. Instead,<br />
in Unix the typically idiom is to fork off a child to process that connection,<br />
and then go back and wait for more.<br />
<br />
You can have shared memory. But the default model for processes is<br />
that nothing is shared, but the threading model is everything is shared.<br />
For threads you have to implement protections, but for processes, you have to<br />
opt-in to share.<br />
<br />
Processes win out on reliability: fewer chances for errors. You control<br />
exactly what state is shared.<br />
<br />
Another thing we'll talk about later regarding threads versus processes is<br />
how does this play on multiple cores? This depends on the implementation,<br />
and sometimes is a little tricky.<br />
<br />
Chapter two is talking about the model presented to the programmer. An API<br />
for your processes and threads to talk to the world.<br />
<br />
This course is fundamentally about how these things are implemented. Its<br />
useful to know about these tricks, so that you know how the computer is used.<br />
It turns out the same tricks are useful in lots of other circumstances. Such<br />
as concurrency - when you have to deal with an application that has to deal<br />
with this - which happens to be most applications. You'll learn this because<br />
the OS guys did this first.<br />
<br />
==== Graphics ====<br />
<br />
This part of the lecture should help you with the lab. Its about graphics.<br />
<br />
We've talked about some standard abstractions so far: files, processes, threads.<br />
<br />
However, the thing you really interact with is the keyboard, mouse, and<br />
display. In the standard Unix model, these are not a part of the operating<br />
system. They're implemented in an application.<br />
<br />
The Unix philosophy is that if you don't have to put it in the kernel,<br />
don't put it there, or if you do, make it interchangeable.<br />
<br />
The standard way to do graphics in Unix is X-Windows, or X for short.<br />
Before X there was the W system. There was a Y system at one point,<br />
as well as Sun NeWs.<br />
<br />
There was also a system called Display Postscript. Postscript is a<br />
fully fledged programming language. Originally used for printers.<br />
It was developed for laser printers, by a little company called Adobe.<br />
When laser printers came out, they had really high resolutions. It was<br />
hard to get the data necessary to print a page to the printer fast<br />
enough... So postscript programs were sent to the printer. In the<br />
early days of the MacIntosh, the processor in the printer was more powerful<br />
than the processor in the computer. Postscript is a funny little language.<br />
Its a post-fix operator language. Instead of saying things like "4+5" you<br />
say "4 5 +" -- you push them onto the stack, then run an operator on them.<br />
The same with function calls.<br />
<br />
In the 80s, there were many competing technologies for how to do graphics<br />
in the Unix world. X won. But Display Postscript also kind of won,<br />
because Macs use Display PDF in a system called Quartz, which was<br />
created as a successor to Display Postscript. Because Postscript was linear,<br />
it was hard to parallelize. PDF is easier to parallelize.<br />
<br />
NeXT was the one that used Display Postscript first... NeXT was founded by<br />
Steve Jobs. OS X is Unix with Display PDF... And you can run X-Windows on top<br />
of that.<br />
<br />
X-Windows lets you open windows on remote computers. The way you create a<br />
window on your local computer is the same way that you open a window on a<br />
remote computer, 1000s of miles away. X is based on something called the X<br />
Window Protocol. It just happens to work locally as well (with some<br />
optimization like shared memory), but the messages were designed to work well<br />
over ethernet.<br />
<br />
This was created by folks that wanted to talk to hundreds of computers, such<br />
as the supercomputer in another room... but they wanted to see the windows<br />
on their own computer.<br />
<br />
Consider what you have to do to see a remote window in Windows. You fire up<br />
Remote Desktop Client, and you get the whole desktop remotely. If you want to<br />
do 10 computers, you end up with 10 windows with 10 desktops and 10 start<br />
buttons. This difference is a result of X-Windows being designed for networks<br />
and Windows being designed for one computer.<br />
<br />
The terminology for X-Windows is a bit backwards from what we're used to: The<br />
server is what we mostly think of of as a client. The server is what controls<br />
access to the display: it runs where your display is to control your display,<br />
mouse, keyboard... And to display a window, remotely or locally, you run a<br />
program known as a client in X-Windows which connects over the network to<br />
display a window on your X-Windows server.<br />
<br />
A funny thing about X is it took the abstraction to an extreme. The people who<br />
created X-Windows didn't know anything about usability or graphics or art. The<br />
original X-Windows tools were created by regular programmers. Technically<br />
underneath its very nice.. But they knew they didn't know, so they made it so<br />
the user could decide what it should look like themselves. So that you can<br />
just switch out a few programs and things keep on working.<br />
<br />
This means that when you do things like moving your mouse to a window -- what<br />
happens? Do you take focus or not? This is something known as click to focus.<br />
In older X Systems, you could just point your mouse there, and focus followed.<br />
This is potentially very efficient, but also very confusing if you're not used<br />
to it... Or how do you handle key sequences, or minimize? Who decides how to<br />
do this all? They had the idea of something called a Window Manager. This goes<br />
back to X Servers providing the technical minimums so that you're not limited<br />
to one behaviour. The Window Manager is just another X client, with some<br />
special privileges so it can run anywhere. It could run 1000s of miles away.<br />
<br />
This is why on Linux there's Gnome, KDE, etc. There's Motif, GTK, QT, IceWM,<br />
Aferstep, Blackbox, Sawfish, fvwm, twm. Etc. Other graphical toolkits too,<br />
abstracted away. These choices are all available there because the X-Windows<br />
people left it very open by not making the choice for us. This does make<br />
things a little confusing at times, though, because each application could<br />
have different assumptions.</div>Rhooperhttps://homeostasis.scs.carleton.ca/wiki/index.php?title=Using_the_Operating_System&diff=1452Using the Operating System2007-09-18T00:59:45Z<p>Rhooper: /* Processes and Threads */</p>
<hr />
<div>These notes are have not yet been reviewed for correctness.<br />
<br />
== Lecture 3: Using the Operating System ==<br />
<br />
=== Administrative ===<br />
<br />
==== Course Notes ====<br />
The course webpage has been changed to point to this wiki. Notes for lectures will continue to be posted here.<br />
<br />
We still need volunteers to take notes and put them up. Don't forget the up to 3% bonus for doing so.<br />
<br />
==== Lab 1 ====<br />
<br />
Lab 1 will be up soon. Starting tomorrow, there are labs. Please show up.<br />
<br />
If you're clever, you can probably find most of the answers online. Avoid looking up the answers<br />
though, because you'll learn much more than the just answers if you explore<br />
while using the computer.<br />
<br />
You'll do better on the tests if you do the labs.<br />
<br />
The point of this course is to build up a conceptual model of<br />
how computers work. This conceptual model is not made up of answers, its made up<br />
of connections. You'll start to make these connections by doing the labs.<br />
<br />
The Lab will posted as a PDF. You can print it out to bring with it with you.<br />
When you go to hand in the lab, print off your answers on a separate piece of paper.<br />
Answers will be due in two weeks.<br />
<br />
All functioning lab machines are running Debian Linux 4.0 (etch).<br />
They should be connected to the internet. They should have a browser on them<br />
called [IceWeasel http://en.wikipedia.org/wiki/Naming_conflict_between_Debian_and_Mozilla]. <br />
Its really Mozilla Firefox. Because Mozilla has trademarked the name Firefox,<br />
in order to use their name, you have to use exactly their binary distribution. Debian could<br />
have had a waiver, but because Debian is about freedom, Debian didn't want<br />
the users of Debian to be bound by the terms of the Firefox agreement.<br />
<br />
One thing you'll notice while studying operating systems is that there's a lot<br />
of culture. This is because users get used to a particular way of doing things.<br />
For example, lots of us are probably used to Windows and how it works. If<br />
you changed the fundamentals of how Windows worked, many of us would be unhappy.<br />
<br />
Some of the things we'll be studying are based on decisions made long ago, often <br />
arbitrarily of for a technical reason was true at the time.<br />
Even if it was wrong the, or is now wrong, we're often stuck with it.<br />
<br />
We're going to look at some of the baggage in the operating systems as we progress in this course.<br />
<br />
<br />
For the lab, we'll be given a set of questions in 2 parts.<br />
<br />
Part A we should be able to finish during the hour, give or take a few minutes.<br />
If it takes you 3-4 hours, you're probably doing something wrong.<br />
<br />
Part B will take longer. Will need more research, and a bit more reading. You<br />
should be working together. If you have trouble finding a buddy, talk to Dr.<br />
S. Talk to each other to learn. The purpose isn't just about the right<br />
answers, but more so about the operating systems.<br />
<br />
We're going to look at:<br />
<br />
- Processes, and how Unix deals with them.<br />
- How are the parts of the system divided up.<br />
- Dynamic libraries, where they are, where they fit in memory.<br />
- What are the dependencies.<br />
- How does the graphical subsystem fit in there. X-Windows, the classical<br />
Unix graphical environment.<br />
- Practice on the command line. (If you're wondering where these fit in<br />
in modern graphical environments, read Neal Stephenson's essay)<br />
<br />
Try to finish part A in the lab. <br />
Answers due in class 2 weeks from today.<br />
<br />
==== Term Paper ====<br />
<br />
For the Term Paper... You don't have to do a pure literature review. You could<br />
do an original operating system extension. There's one caveat: You've got<br />
to get what you're going to do with the professor first. You have to tell<br />
him a week before the outline is due Oct 22nd.<br />
<br />
What types of things is he thinking of: Say you wanted to implement a new<br />
file-system? This is inherently more work, because you still have to give a<br />
nice write-up. The report should still cite other work.<br />
<br />
All of us should have started the process by next week, even if its just<br />
googling for 15 minutes. Just google and see what results come up. IF you<br />
start now, you'll have time to pick a topic that you like, instead of the<br />
first thing that comes along. Its better to work on something you like,<br />
instead of stuck reading papers you're not interested in.<br />
<br />
If you want to find good OS papers:<br />
* USENIX association has a number of systems oriented conferences.<br />
** OSDI <br />
** USENIX Annual Technical Conference<br />
** LISA<br />
<br />
=== Using the Operating System ===<br />
<br />
Chapter 2 looks at the programming model of an operating system. <br />
The operating system provides certain abstractions to help programmers work with it.<br />
<br />
What are some examples of abstractions?<br />
<br />
==== Files ====<br />
<br />
A file is a metaphor. What was the original metaphor? The manilla<br />
coloured folder that we put paper in. Its interesting to note that a file is used<br />
to hold many pages or documents, but that a computer file is a single document. Instead, a directory<br />
holds many files, which are each generally one document. <br />
The metaphor hasn't made much sense for a long time, but it is still in use.<br />
<br />
What is a file? <br />
<br />
A file is a bytestream you can read and write from.<br />
<br />
We also have an abstraction called a byte, 256 possible values, 0-255.<br />
We as computer scientists think we can represent just about anything<br />
with these.<br />
<br />
; file : named bytestream(s). <br />
<br />
In modern operating systems there are potentially more than <br />
one bytestream in a file. When there is more than one bytestream, we<br />
call this a forked file.<br />
<br />
An early operating system that used forked files was OS 9.<br />
On a traditional system, you get a sequence of bytes<br />
when you open a file. In a forked file, when you read it, you get some data,<br />
but there is also other data hanging around. We'll talk about that later.<br />
<br />
The standard API calls for a file are:<br />
<br />
* open<br />
* read<br />
* write<br />
* close<br />
* seek<br />
<br />
As well as a other operations that one might need to perform on files, such as:<br />
* truncate<br />
* append - (seek to end of file and write)<br />
* execute<br />
<br />
Why open and close? Why can't we just operate on a filename? <br />
Because it (usually) takes a long time to go through the filesystem to find the files.<br />
Open and close are optimizations -- the abstraction is a stateful interface.<br />
You start by using open to obtain some sort of "handle" representing the file, <br />
and pass this "handle" value to read and write. When you're done, closing the <br />
file frees the resources allocated when opening the file. On most systems<br />
you can only have a specific number of files open at any given time.<br />
<br />
There are some filesystems where open and close don't do much of anything,<br />
such as some networked filesystems.<br />
<br />
File represent storage, on disks... They're random access. If they're random access<br />
like RAM, why don't we access disks like we access RAM? <br />
Why couldn't we just allocate objects as we need them? We could indeed do this, but<br />
it turns out that there's a reason that we don't generally do this.<br />
<br />
The file interface is a procedural interface. <br />
<br />
One nice things about files is they're a minimal functionality interface. The concept of<br />
minimal functionality is a recurring theme you'll find when we discuss filesystems. <br />
<br />
The abstraction used to interface the filesystem<br />
shouldn't prohibit you from creating particular forms of applications. If we chose <br />
to use an object model, we'd be implying you don't want to give arbitrary access to the<br />
data on disk, as objects tend to encapsulate their data.<br />
<br />
The abstraction listed above is the minimal abstraction for efficiently<br />
managing persistent storage (disks).<br />
<br />
This doesn't necessarily mean this is the most absolutely minimal abstraction. <br />
An even more minimal abstraction would be<br />
to just treat storage devices as a bunch of fixed size blocks. However, that's getting too low level,<br />
because now all programs have to worry about where they put files.<br />
<br />
Because the files abstract model is reasonably good, its stuck around for decades.<br />
<br />
Fundamentally, though, its a legacy. Some models of filesystems try to get<br />
away from it. Look at the PalmOS - it resisted having files for a long time, but eventually<br />
gave in to support removable media, but the primary OS and API still don't support files. <br />
Microsoft's been wanting to get away from the legacy files abstraction too, but <br />
somehow it doesn't seem to happen.<br />
<br />
==== Processes and Threads ====<br />
<br />
There's lots of other devices, but from an OS level, there are two other big ones:<br />
CPU and RAM. These two are generally abstracted with processes.<br />
The process is the basic abstraction in operating systems for these two,<br />
but is not the only abstraction. There are also threads.<br />
<br />
CPU + RAM are abstracted as:<br />
* processes<br />
* threads<br />
<br />
A process may have multiple threads. A thread shares memory with its processes.<br />
<br />
* A process is an exclusive allocation of CPU and RAM.<br />
* A thread is a non-exclusive allocation of RAM within a process,<br />
but is an exclusive allocation of CPU.<br />
* One or more threads constitute a process.<br />
<br />
Another way to talk about processes is in terms of address spaces and<br />
execution context: <br />
* An address space is just a virtual version of RAM. It may<br />
be instantiated in physical memory, it may not be. Its a set of addresses you<br />
can call your own. <br />
* Execution context is CPU state (Registers, processor status<br />
words, etc.). There's lots of state surrounding the processor when its running<br />
a program. This state can be saved, and then restored later to resume execution<br />
at a later time.<br />
<br />
* A thread is one execution context matched with an address space.<br />
* A process is one or more execution contexts plus an address space.<br />
* A single-threaded process has one execution context, and one address space.<br />
* A multithreaded process has multiple execution contexts, and one address space.<br />
<br />
The concept of multiple address spaces is somewhat new in modern computing.<br />
However, if you go back to the old days of MS-DOS, there was only one address space, the<br />
physical address space. We used to have things like TSRs, a 640kb limit,<br />
etc. There was no virtualization of memory. In order to run at the same<br />
time, they had to co-exist in the physical memory address space.<br />
<br />
If you don't have multiple address spaces, you don't have processes and threads.<br />
At best, you have threads, sharing the one address space you have.<br />
<br />
Historically, threads were abstracted differently than now: These are<br />
capitalized here to differentiate them from the newer terms: FORK, JOIN, QUIT.<br />
<br />
Why FORK? Think of a fork in the road. You're going along, then things split.<br />
A FORK is supposed to represent that split.<br />
<br />
By FORKing, the main thing to note is that you're creating two execution<br />
contexts, that may be sharing memory. The execution may start at the same<br />
place, but may be diverging. How do you stop creating more and more and more<br />
of these, to bring them back under control or stop them? That's the JOIN<br />
operation. Each thread tracks how many threads are running, if you JOIN and<br />
you're not the last one running, you just go away, otherwise you need to<br />
synchronize back into the main thread.<br />
<br />
What's QUIT? QUIT stops the the whole program -- all execution. It will cut<br />
all threads off, even if the thread is one of the branches and not the main<br />
thread.<br />
<br />
This was one of the earliest ways to abstract multiple execution context.<br />
<br />
What if, when you did the fork, you made a copy of the entire process? There<br />
are now two separate instances of the program, with the same state? The<br />
difference here, is if you quit one, the other will stay around -- but the<br />
difference is more profound: they're not sharing the same address space (nor<br />
execution context). This is the Unix model of processes.<br />
<br />
In the Unix process model the system starts with only one process: init. It<br />
starts running, then it creates a copy of itself with fork, then another, etc.<br />
<br />
[[Image:Comp3000-process-tree.png]]<br />
<br />
In this diagram, What is the value of ''x?'' on the bottom-left-most branch?<br />
''x'' is 5 in the Unix process model. However, if this was multithreaded,<br />
''x'' could be 7 or 5, depending on how fast the threads are running. It might<br />
be 5 if the thread asking for the value of ''x'' runs before the thread setting ''x''<br />
to 7. This is known as a race condition, <br />
because we don't know which thread will run or finish first.<br />
<br />
In Unix, they decided to make it easy and have different processes. These<br />
processes can't change the state of their parents or children. <br />
To share a value, you have to set the value before forking. (Or through other means)<br />
<br />
There's a small glitch with what we've said so far about Unix processes: That<br />
they have exactly the same state when you fork. If this was true, they'd<br />
always do the same thing. How do they know that they're different?<br />
<br />
Turns out that Unix fork is very simple, yet it helps with this.<br />
The idiom you'll usually see is:<br />
<br />
pid = fork();<br />
<br />
fork takes no arguments.<br />
<br />
When you fork, the result of fork is the pid (process ID) of the new process,<br />
or 0 if you're the child.<br />
<br />
The tree of processes effectively becomes a family tree. (However, with some<br />
bizarre genealogy that we'll see later)<br />
<br />
What you usually do is check the value of pid, and if its 0, do one thing,<br />
otherwise do something else. If pid is nonzero, it is the pid of the child<br />
process we just created by forking. You usually use this to track your child.<br />
The classic use of fork is to create disposable children that do a specific<br />
task for a short while, then go away.<br />
<br />
The nice thing about this model is that it keeps things separate. You don't<br />
need to worry about what the child is doing. If you want to communicate, you<br />
have to explicitly set up to do this. There are some standard ways of doing<br />
that communication. We'll look at these later too.<br />
<br />
So now we know how to make new processes? How do we do something different? In<br />
principle we don't need anything else. We could open a file, read new code,<br />
then jump to the new code. However, we have the idea of exec(). <br />
Exec replaces the running program with the specified program, but preserves<br />
the pid.<br />
<br />
In Unix, to start a new program you usually fork() then you exec() the desired<br />
program on the child. If you don't fork() first, then exec() will kill the<br />
original process, replacing it with the program you called exec on.<br />
<br />
Exec causes the kernel to throw away the old address space, and give a new<br />
address space, with the new binary. The pid stays the same though.<br />
<br />
The Windows equivalent is CreateProcess()<br />
<br />
CreateProcess() takes lots of arguments about how to create the new<br />
process (what to load, permissions, etc). Fork takes none. With fork(), <br />
you can set things up yourself, and most of the settings will carry over to<br />
the new program. (Including open files). Note how different these two are.<br />
<br />
In Unix, you have the building blocks to do things, and you have to put them<br />
together yourself. In Windows, you have the single API call to do them all at<br />
once. Neither is strictly right or wrong.<br />
<br />
On older systems, when a big process was forked, everything was copied. On<br />
newer systems, fork doesn't necessarily copy everything. With virtual memory<br />
you can share much of the memory between two processes.<br />
<br />
In older APIs there was vfork() - suspend parent, fork, exec, then let the<br />
parent and child both start to go again. This idea avoided the copying when<br />
the first thing you were going to do was exec.<br />
<br />
The basic idea to make this efficient is that the descriptions of the virtual<br />
memory address spaces don't have to be mutually exclusive. You could have<br />
10 programs sharing portions of their address space -- such as the read-only<br />
portions like the program code, but not the read-write portions.<br />
<br />
What if you didn't want to do an exec after forking? A classic one is a<br />
daemon. One listening on the network for an incoming connection. When that<br />
incoming request comes in, the main program can deal with the request, but it<br />
would also have to keep checking for more requests at the same time. Instead,<br />
in Unix the typically idiom is to fork off a child to process that connection,<br />
and then go back and wait for more.<br />
<br />
You can have shared memory. But the default model for processes is<br />
that nothing is shared, but the threading model is everything is shared.<br />
For threads you have to implement protections, but for processes, you have to<br />
opt-in to share.<br />
<br />
Processes win out on reliability: fewer chances for errors. You control<br />
exactly what state is shared.<br />
<br />
Another thing we'll talk about later regarding threads versus processes is<br />
how does this play on multiple cores? This depends on the implementation,<br />
and sometimes is a little tricky.<br />
<br />
Chapter two is talking about the model presented to the programmer. An API<br />
for your processes and threads to talk to the world.<br />
<br />
This course is fundamentally about how these things are implemented. Its<br />
useful to know about these tricks, so that you know how the computer is used.<br />
It turns out the same tricks are useful in lots of other circumstances. Such<br />
as concurrency - when you have to deal with an application that has to deal<br />
with this - which happens to be most applications. You'll learn this because<br />
the OS guys did this first.<br />
<br />
==== Graphics ====<br />
<br />
This part of the lecture should help you with the lab. Its about graphics.<br />
<br />
We've talked about some standard abstractions so far: files, processes, threads.<br />
<br />
However, the thing you really interact with is the keyboard, mouse, and<br />
display. In the standard Unix model, these are not a part of the operating<br />
system. They're implemented in an application.<br />
<br />
The Unix philosophy is that if you don't have to put it in the kernel,<br />
don't put it there, or if you do, make it interchangeable.<br />
<br />
The standard way to do graphics in Unix is X-Windows, or X for short.<br />
Before X there was the W system. There was a Y system at one point,<br />
as well as Sun NeWs.<br />
<br />
There was also a system called Display Postscript. Postscript is a<br />
fully fledged programming language. Originally used for printers.<br />
It was developed for laser printers, by a little company called Adobe.<br />
When laser printers came out, they had really high resolutions. It was<br />
hard to get the data necessary to print a page to the printer fast<br />
enough... So postscript programs were sent to the printer. In the<br />
early days of the MacIntosh, the processor in the printer was more powerful<br />
than the processor in the computer. Postscript is a funny little language.<br />
Its a post-fix operator language. Instead of saying things like "4+5" you<br />
say "4 5 +" -- you push them onto the stack, then run an operator on them.<br />
The same with function calls.<br />
<br />
In the 80s, there were many competing technologies for how to do graphics<br />
in the Unix world. X won. But Display Postscript also kind of won,<br />
because Macs use Display PDF in a system called Quartz, which was<br />
created as a successor to Display Postscript. Because Postscript was linear,<br />
it was hard to parallelize. PDF is easier to parallelize.<br />
<br />
NeXT was the one that used Display Postscript first... NeXT was founded by<br />
Steve Jobs. OS X is Unix with Display PDF... And you can run X-Windows on top<br />
of that.<br />
<br />
X-Windows lets you open windows on remote computers. The way you create a<br />
window on your local computer is the same way that you open a window on a<br />
remote computer, 1000s of miles away. X is based on something called the X<br />
Window Protocol. It just happens to work locally as well (with some<br />
optimization like shared memory), but the messages were designed to work well<br />
over ethernet.<br />
<br />
This was created by folks that wanted to talk to hundreds of computers, such<br />
as the supercomputer in another room... but they wanted to see the windows<br />
on their own computer.<br />
<br />
Consider what you have to do to see a remote window in Windows. You fire up<br />
Remote Desktop Client, and you get the whole desktop remotely. If you want to<br />
do 10 computers, you end up with 10 windows with 10 desktops and 10 start<br />
buttons. This difference is a result of X-Windows being designed for networks<br />
and Windows being designed for one computer.<br />
<br />
The terminology for X-Windows is a bit backwards from what we're used to: The<br />
server is what we mostly think of of as a client. The server is what controls<br />
access to the display: it runs where your display is to control your display,<br />
mouse, keyboard... And to display a window, remotely or locally, you run a<br />
program known as a client in X-Windows which connects over the network to<br />
display a window on your X-Windows server.<br />
<br />
A funny thing about X is it took the abstraction to an extreme. The people who<br />
created X-Windows didn't know anything about usability or graphics or art. The<br />
original X-Windows tools were created by regular programmers. Technically<br />
underneath its very nice.. But they knew they didn't know, so they made it so<br />
the user could decide what it should look like themselves. So that you can<br />
just switch out a few programs and things keep on working.<br />
<br />
This means that when you do things like moving your mouse to a window -- what<br />
happens? Do you take focus or not? This is something known as click to focus.<br />
In older X Systems, you could just point your mouse there, and focus followed.<br />
This is potentially very efficient, but also very confusing if you're not used<br />
to it... Or how do you handle key sequences, or minimize? Who decides how to<br />
do this all? They had the idea of something called a Window Manager. This goes<br />
back to X Servers providing the technical minimums so that you're not limited<br />
to one behaviour. The Window Manager is just another X client, with some<br />
special privileges so it can run anywhere. It could run 1000s of miles away.<br />
<br />
This is why on Linux there's Gnome, KDE, etc. There's Motif, GTK, QT, IceWM,<br />
Aferstep, Blackbox, Sawfish, fvwm, twm. Etc. Other graphical toolkits too,<br />
abstracted away. These choices are all available there because the X-Windows<br />
people left it very open by not making the choice for us. This does make<br />
things a little confusing at times, though, because each application could<br />
have different assumptions.</div>Rhooperhttps://homeostasis.scs.carleton.ca/wiki/index.php?title=Using_the_Operating_System&diff=1451Using the Operating System2007-09-18T00:59:18Z<p>Rhooper: /* Files */</p>
<hr />
<div>These notes are have not yet been reviewed for correctness.<br />
<br />
== Lecture 3: Using the Operating System ==<br />
<br />
=== Administrative ===<br />
<br />
==== Course Notes ====<br />
The course webpage has been changed to point to this wiki. Notes for lectures will continue to be posted here.<br />
<br />
We still need volunteers to take notes and put them up. Don't forget the up to 3% bonus for doing so.<br />
<br />
==== Lab 1 ====<br />
<br />
Lab 1 will be up soon. Starting tomorrow, there are labs. Please show up.<br />
<br />
If you're clever, you can probably find most of the answers online. Avoid looking up the answers<br />
though, because you'll learn much more than the just answers if you explore<br />
while using the computer.<br />
<br />
You'll do better on the tests if you do the labs.<br />
<br />
The point of this course is to build up a conceptual model of<br />
how computers work. This conceptual model is not made up of answers, its made up<br />
of connections. You'll start to make these connections by doing the labs.<br />
<br />
The Lab will posted as a PDF. You can print it out to bring with it with you.<br />
When you go to hand in the lab, print off your answers on a separate piece of paper.<br />
Answers will be due in two weeks.<br />
<br />
All functioning lab machines are running Debian Linux 4.0 (etch).<br />
They should be connected to the internet. They should have a browser on them<br />
called [IceWeasel http://en.wikipedia.org/wiki/Naming_conflict_between_Debian_and_Mozilla]. <br />
Its really Mozilla Firefox. Because Mozilla has trademarked the name Firefox,<br />
in order to use their name, you have to use exactly their binary distribution. Debian could<br />
have had a waiver, but because Debian is about freedom, Debian didn't want<br />
the users of Debian to be bound by the terms of the Firefox agreement.<br />
<br />
One thing you'll notice while studying operating systems is that there's a lot<br />
of culture. This is because users get used to a particular way of doing things.<br />
For example, lots of us are probably used to Windows and how it works. If<br />
you changed the fundamentals of how Windows worked, many of us would be unhappy.<br />
<br />
Some of the things we'll be studying are based on decisions made long ago, often <br />
arbitrarily of for a technical reason was true at the time.<br />
Even if it was wrong the, or is now wrong, we're often stuck with it.<br />
<br />
We're going to look at some of the baggage in the operating systems as we progress in this course.<br />
<br />
<br />
For the lab, we'll be given a set of questions in 2 parts.<br />
<br />
Part A we should be able to finish during the hour, give or take a few minutes.<br />
If it takes you 3-4 hours, you're probably doing something wrong.<br />
<br />
Part B will take longer. Will need more research, and a bit more reading. You<br />
should be working together. If you have trouble finding a buddy, talk to Dr.<br />
S. Talk to each other to learn. The purpose isn't just about the right<br />
answers, but more so about the operating systems.<br />
<br />
We're going to look at:<br />
<br />
- Processes, and how Unix deals with them.<br />
- How are the parts of the system divided up.<br />
- Dynamic libraries, where they are, where they fit in memory.<br />
- What are the dependencies.<br />
- How does the graphical subsystem fit in there. X-Windows, the classical<br />
Unix graphical environment.<br />
- Practice on the command line. (If you're wondering where these fit in<br />
in modern graphical environments, read Neal Stephenson's essay)<br />
<br />
Try to finish part A in the lab. <br />
Answers due in class 2 weeks from today.<br />
<br />
==== Term Paper ====<br />
<br />
For the Term Paper... You don't have to do a pure literature review. You could<br />
do an original operating system extension. There's one caveat: You've got<br />
to get what you're going to do with the professor first. You have to tell<br />
him a week before the outline is due Oct 22nd.<br />
<br />
What types of things is he thinking of: Say you wanted to implement a new<br />
file-system? This is inherently more work, because you still have to give a<br />
nice write-up. The report should still cite other work.<br />
<br />
All of us should have started the process by next week, even if its just<br />
googling for 15 minutes. Just google and see what results come up. IF you<br />
start now, you'll have time to pick a topic that you like, instead of the<br />
first thing that comes along. Its better to work on something you like,<br />
instead of stuck reading papers you're not interested in.<br />
<br />
If you want to find good OS papers:<br />
* USENIX association has a number of systems oriented conferences.<br />
** OSDI <br />
** USENIX Annual Technical Conference<br />
** LISA<br />
<br />
=== Using the Operating System ===<br />
<br />
Chapter 2 looks at the programming model of an operating system. <br />
The operating system provides certain abstractions to help programmers work with it.<br />
<br />
What are some examples of abstractions?<br />
<br />
==== Files ====<br />
<br />
A file is a metaphor. What was the original metaphor? The manilla<br />
coloured folder that we put paper in. Its interesting to note that a file is used<br />
to hold many pages or documents, but that a computer file is a single document. Instead, a directory<br />
holds many files, which are each generally one document. <br />
The metaphor hasn't made much sense for a long time, but it is still in use.<br />
<br />
What is a file? <br />
<br />
A file is a bytestream you can read and write from.<br />
<br />
We also have an abstraction called a byte, 256 possible values, 0-255.<br />
We as computer scientists think we can represent just about anything<br />
with these.<br />
<br />
; file : named bytestream(s). <br />
<br />
In modern operating systems there are potentially more than <br />
one bytestream in a file. When there is more than one bytestream, we<br />
call this a forked file.<br />
<br />
An early operating system that used forked files was OS 9.<br />
On a traditional system, you get a sequence of bytes<br />
when you open a file. In a forked file, when you read it, you get some data,<br />
but there is also other data hanging around. We'll talk about that later.<br />
<br />
The standard API calls for a file are:<br />
<br />
* open<br />
* read<br />
* write<br />
* close<br />
* seek<br />
<br />
As well as a other operations that one might need to perform on files, such as:<br />
* truncate<br />
* append - (seek to end of file and write)<br />
* execute<br />
<br />
Why open and close? Why can't we just operate on a filename? <br />
Because it (usually) takes a long time to go through the filesystem to find the files.<br />
Open and close are optimizations -- the abstraction is a stateful interface.<br />
You start by using open to obtain some sort of "handle" representing the file, <br />
and pass this "handle" value to read and write. When you're done, closing the <br />
file frees the resources allocated when opening the file. On most systems<br />
you can only have a specific number of files open at any given time.<br />
<br />
There are some filesystems where open and close don't do much of anything,<br />
such as some networked filesystems.<br />
<br />
File represent storage, on disks... They're random access. If they're random access<br />
like RAM, why don't we access disks like we access RAM? <br />
Why couldn't we just allocate objects as we need them? We could indeed do this, but<br />
it turns out that there's a reason that we don't generally do this.<br />
<br />
The file interface is a procedural interface. <br />
<br />
One nice things about files is they're a minimal functionality interface. The concept of<br />
minimal functionality is a recurring theme you'll find when we discuss filesystems. <br />
<br />
The abstraction used to interface the filesystem<br />
shouldn't prohibit you from creating particular forms of applications. If we chose <br />
to use an object model, we'd be implying you don't want to give arbitrary access to the<br />
data on disk, as objects tend to encapsulate their data.<br />
<br />
The abstraction listed above is the minimal abstraction for efficiently<br />
managing persistent storage (disks).<br />
<br />
This doesn't necessarily mean this is the most absolutely minimal abstraction. <br />
An even more minimal abstraction would be<br />
to just treat storage devices as a bunch of fixed size blocks. However, that's getting too low level,<br />
because now all programs have to worry about where they put files.<br />
<br />
Because the files abstract model is reasonably good, its stuck around for decades.<br />
<br />
Fundamentally, though, its a legacy. Some models of filesystems try to get<br />
away from it. Look at the PalmOS - it resisted having files for a long time, but eventually<br />
gave in to support removable media, but the primary OS and API still don't support files. <br />
Microsoft's been wanting to get away from the legacy files abstraction too, but <br />
somehow it doesn't seem to happen.<br />
<br />
===== Processes and Threads =====<br />
<br />
There's lots of other devices, but from an OS level, there are two other big ones:<br />
CPU and RAM. These two are generally abstracted with processes.<br />
The process is the basic abstraction in operating systems for these two,<br />
but is not the only abstraction. There are also threads.<br />
<br />
CPU + RAM are abstracted as:<br />
* processes<br />
* threads<br />
<br />
A process may have multiple threads. A thread shares memory with its processes.<br />
<br />
* A process is an exclusive allocation of CPU and RAM.<br />
* A thread is a non-exclusive allocation of RAM within a process,<br />
but is an exclusive allocation of CPU.<br />
* One or more threads constitute a process.<br />
<br />
Another way to talk about processes is in terms of address spaces and<br />
execution context: <br />
* An address space is just a virtual version of RAM. It may<br />
be instantiated in physical memory, it may not be. Its a set of addresses you<br />
can call your own. <br />
* Execution context is CPU state (Registers, processor status<br />
words, etc.). There's lots of state surrounding the processor when its running<br />
a program. This state can be saved, and then restored later to resume execution<br />
at a later time.<br />
<br />
* A thread is one execution context matched with an address space.<br />
* A process is one or more execution contexts plus an address space.<br />
* A single-threaded process has one execution context, and one address space.<br />
* A multithreaded process has multiple execution contexts, and one address space.<br />
<br />
The concept of multiple address spaces is somewhat new in modern computing.<br />
However, if you go back to the old days of MS-DOS, there was only one address space, the<br />
physical address space. We used to have things like TSRs, a 640kb limit,<br />
etc. There was no virtualization of memory. In order to run at the same<br />
time, they had to co-exist in the physical memory address space.<br />
<br />
If you don't have multiple address spaces, you don't have processes and threads.<br />
At best, you have threads, sharing the one address space you have.<br />
<br />
Historically, threads were abstracted differently than now: These are<br />
capitalized here to differentiate them from the newer terms: FORK, JOIN, QUIT.<br />
<br />
Why FORK? Think of a fork in the road. You're going along, then things split.<br />
A FORK is supposed to represent that split.<br />
<br />
By FORKing, the main thing to note is that you're creating two execution<br />
contexts, that may be sharing memory. The execution may start at the same<br />
place, but may be diverging. How do you stop creating more and more and more<br />
of these, to bring them back under control or stop them? That's the JOIN<br />
operation. Each thread tracks how many threads are running, if you JOIN and<br />
you're not the last one running, you just go away, otherwise you need to<br />
synchronize back into the main thread.<br />
<br />
What's QUIT? QUIT stops the the whole program -- all execution. It will cut<br />
all threads off, even if the thread is one of the branches and not the main<br />
thread.<br />
<br />
This was one of the earliest ways to abstract multiple execution context.<br />
<br />
What if, when you did the fork, you made a copy of the entire process? There<br />
are now two separate instances of the program, with the same state? The<br />
difference here, is if you quit one, the other will stay around -- but the<br />
difference is more profound: they're not sharing the same address space (nor<br />
execution context). This is the Unix model of processes.<br />
<br />
In the Unix process model the system starts with only one process: init. It<br />
starts running, then it creates a copy of itself with fork, then another, etc.<br />
<br />
[[Image:Comp3000-process-tree.png]]<br />
<br />
In this diagram, What is the value of ''x?'' on the bottom-left-most branch?<br />
''x'' is 5 in the Unix process model. However, if this was multithreaded,<br />
''x'' could be 7 or 5, depending on how fast the threads are running. It might<br />
be 5 if the thread asking for the value of ''x'' runs before the thread setting ''x''<br />
to 7. This is known as a race condition, <br />
because we don't know which thread will run or finish first.<br />
<br />
In Unix, they decided to make it easy and have different processes. These<br />
processes can't change the state of their parents or children. <br />
To share a value, you have to set the value before forking. (Or through other means)<br />
<br />
There's a small glitch with what we've said so far about Unix processes: That<br />
they have exactly the same state when you fork. If this was true, they'd<br />
always do the same thing. How do they know that they're different?<br />
<br />
Turns out that Unix fork is very simple, yet it helps with this.<br />
The idiom you'll usually see is:<br />
<br />
pid = fork();<br />
<br />
fork takes no arguments.<br />
<br />
When you fork, the result of fork is the pid (process ID) of the new process,<br />
or 0 if you're the child.<br />
<br />
The tree of processes effectively becomes a family tree. (However, with some<br />
bizarre genealogy that we'll see later)<br />
<br />
What you usually do is check the value of pid, and if its 0, do one thing,<br />
otherwise do something else. If pid is nonzero, it is the pid of the child<br />
process we just created by forking. You usually use this to track your child.<br />
The classic use of fork is to create disposable children that do a specific<br />
task for a short while, then go away.<br />
<br />
The nice thing about this model is that it keeps things separate. You don't<br />
need to worry about what the child is doing. If you want to communicate, you<br />
have to explicitly set up to do this. There are some standard ways of doing<br />
that communication. We'll look at these later too.<br />
<br />
So now we know how to make new processes? How do we do something different? In<br />
principle we don't need anything else. We could open a file, read new code,<br />
then jump to the new code. However, we have the idea of exec(). <br />
Exec replaces the running program with the specified program, but preserves<br />
the pid.<br />
<br />
In Unix, to start a new program you usually fork() then you exec() the desired<br />
program on the child. If you don't fork() first, then exec() will kill the<br />
original process, replacing it with the program you called exec on.<br />
<br />
Exec causes the kernel to throw away the old address space, and give a new<br />
address space, with the new binary. The pid stays the same though.<br />
<br />
The Windows equivalent is CreateProcess()<br />
<br />
CreateProcess() takes lots of arguments about how to create the new<br />
process (what to load, permissions, etc). Fork takes none. With fork(), <br />
you can set things up yourself, and most of the settings will carry over to<br />
the new program. (Including open files). Note how different these two are.<br />
<br />
In Unix, you have the building blocks to do things, and you have to put them<br />
together yourself. In Windows, you have the single API call to do them all at<br />
once. Neither is strictly right or wrong.<br />
<br />
On older systems, when a big process was forked, everything was copied. On<br />
newer systems, fork doesn't necessarily copy everything. With virtual memory<br />
you can share much of the memory between two processes.<br />
<br />
In older APIs there was vfork() - suspend parent, fork, exec, then let the<br />
parent and child both start to go again. This idea avoided the copying when<br />
the first thing you were going to do was exec.<br />
<br />
The basic idea to make this efficient is that the descriptions of the virtual<br />
memory address spaces don't have to be mutually exclusive. You could have<br />
10 programs sharing portions of their address space -- such as the read-only<br />
portions like the program code, but not the read-write portions.<br />
<br />
What if you didn't want to do an exec after forking? A classic one is a<br />
daemon. One listening on the network for an incoming connection. When that<br />
incoming request comes in, the main program can deal with the request, but it<br />
would also have to keep checking for more requests at the same time. Instead,<br />
in Unix the typically idiom is to fork off a child to process that connection,<br />
and then go back and wait for more.<br />
<br />
You can have shared memory. But the default model for processes is<br />
that nothing is shared, but the threading model is everything is shared.<br />
For threads you have to implement protections, but for processes, you have to<br />
opt-in to share.<br />
<br />
Processes win out on reliability: fewer chances for errors. You control<br />
exactly what state is shared.<br />
<br />
Another thing we'll talk about later regarding threads versus processes is<br />
how does this play on multiple cores? This depends on the implementation,<br />
and sometimes is a little tricky.<br />
<br />
Chapter two is talking about the model presented to the programmer. An API<br />
for your processes and threads to talk to the world.<br />
<br />
This course is fundamentally about how these things are implemented. Its<br />
useful to know about these tricks, so that you know how the computer is used.<br />
It turns out the same tricks are useful in lots of other circumstances. Such<br />
as concurrency - when you have to deal with an application that has to deal<br />
with this - which happens to be most applications. You'll learn this because<br />
the OS guys did this first.<br />
<br />
==== Graphics ====<br />
<br />
This part of the lecture should help you with the lab. Its about graphics.<br />
<br />
We've talked about some standard abstractions so far: files, processes, threads.<br />
<br />
However, the thing you really interact with is the keyboard, mouse, and<br />
display. In the standard Unix model, these are not a part of the operating<br />
system. They're implemented in an application.<br />
<br />
The Unix philosophy is that if you don't have to put it in the kernel,<br />
don't put it there, or if you do, make it interchangeable.<br />
<br />
The standard way to do graphics in Unix is X-Windows, or X for short.<br />
Before X there was the W system. There was a Y system at one point,<br />
as well as Sun NeWs.<br />
<br />
There was also a system called Display Postscript. Postscript is a<br />
fully fledged programming language. Originally used for printers.<br />
It was developed for laser printers, by a little company called Adobe.<br />
When laser printers came out, they had really high resolutions. It was<br />
hard to get the data necessary to print a page to the printer fast<br />
enough... So postscript programs were sent to the printer. In the<br />
early days of the MacIntosh, the processor in the printer was more powerful<br />
than the processor in the computer. Postscript is a funny little language.<br />
Its a post-fix operator language. Instead of saying things like "4+5" you<br />
say "4 5 +" -- you push them onto the stack, then run an operator on them.<br />
The same with function calls.<br />
<br />
In the 80s, there were many competing technologies for how to do graphics<br />
in the Unix world. X won. But Display Postscript also kind of won,<br />
because Macs use Display PDF in a system called Quartz, which was<br />
created as a successor to Display Postscript. Because Postscript was linear,<br />
it was hard to parallelize. PDF is easier to parallelize.<br />
<br />
NeXT was the one that used Display Postscript first... NeXT was founded by<br />
Steve Jobs. OS X is Unix with Display PDF... And you can run X-Windows on top<br />
of that.<br />
<br />
X-Windows lets you open windows on remote computers. The way you create a<br />
window on your local computer is the same way that you open a window on a<br />
remote computer, 1000s of miles away. X is based on something called the X<br />
Window Protocol. It just happens to work locally as well (with some<br />
optimization like shared memory), but the messages were designed to work well<br />
over ethernet.<br />
<br />
This was created by folks that wanted to talk to hundreds of computers, such<br />
as the supercomputer in another room... but they wanted to see the windows<br />
on their own computer.<br />
<br />
Consider what you have to do to see a remote window in Windows. You fire up<br />
Remote Desktop Client, and you get the whole desktop remotely. If you want to<br />
do 10 computers, you end up with 10 windows with 10 desktops and 10 start<br />
buttons. This difference is a result of X-Windows being designed for networks<br />
and Windows being designed for one computer.<br />
<br />
The terminology for X-Windows is a bit backwards from what we're used to: The<br />
server is what we mostly think of of as a client. The server is what controls<br />
access to the display: it runs where your display is to control your display,<br />
mouse, keyboard... And to display a window, remotely or locally, you run a<br />
program known as a client in X-Windows which connects over the network to<br />
display a window on your X-Windows server.<br />
<br />
A funny thing about X is it took the abstraction to an extreme. The people who<br />
created X-Windows didn't know anything about usability or graphics or art. The<br />
original X-Windows tools were created by regular programmers. Technically<br />
underneath its very nice.. But they knew they didn't know, so they made it so<br />
the user could decide what it should look like themselves. So that you can<br />
just switch out a few programs and things keep on working.<br />
<br />
This means that when you do things like moving your mouse to a window -- what<br />
happens? Do you take focus or not? This is something known as click to focus.<br />
In older X Systems, you could just point your mouse there, and focus followed.<br />
This is potentially very efficient, but also very confusing if you're not used<br />
to it... Or how do you handle key sequences, or minimize? Who decides how to<br />
do this all? They had the idea of something called a Window Manager. This goes<br />
back to X Servers providing the technical minimums so that you're not limited<br />
to one behaviour. The Window Manager is just another X client, with some<br />
special privileges so it can run anywhere. It could run 1000s of miles away.<br />
<br />
This is why on Linux there's Gnome, KDE, etc. There's Motif, GTK, QT, IceWM,<br />
Aferstep, Blackbox, Sawfish, fvwm, twm. Etc. Other graphical toolkits too,<br />
abstracted away. These choices are all available there because the X-Windows<br />
people left it very open by not making the choice for us. This does make<br />
things a little confusing at times, though, because each application could<br />
have different assumptions.</div>Rhooperhttps://homeostasis.scs.carleton.ca/wiki/index.php?title=Introduction&diff=1449Introduction2007-09-18T00:45:57Z<p>Rhooper: </p>
<hr />
<div>These notes are have not yet been reviewed for correctness.<br />
<br />
== Introduction ==<br />
<br />
[[Class Outline#Introduction|Last class]], we began talking about turning the machine we have into the machine we want.<br />
<br />
What are some properties of the machine that we want?<br />
<br />
- usable / accessible<br />
- stable / reliable<br />
- functional (access to underlying resources)<br />
- efficient<br />
- customizable<br />
- secure<br />
- multitasking<br />
- portability<br />
<br />
If you have a computer that doesn't let you access the hardware, eg. a<br />
keyboard or video camera, it isn't very functional. Multitasking is slightly different than efficiency. <br />
For portability, do you really want to have to rewrite applications to support<br />
slight variations in the hardware such as different size hard disks and different<br />
amounts of RAM?<br />
<br />
Operating systems don't do all of these perfectly, but they tend to do a lot<br />
of these at least acceptably.<br />
<br />
If you look at the introduction to the text book, it talks about various<br />
types of operatings systems. Some of the operating systems we know about are:<br />
Linux, Windows, MacOSX, VXWorks, QNX, MS-DOS, Soliaris/xBSD, OS/2, BeOS, VMS,<br />
MVS, OS/370, AIX, etc.<br />
<br />
Linux isn't a variety of different operating systems to the same degree as the <br />
different versions of windows, as most linuxes share some components, whereas windows tends not to.<br />
<br />
Of the list above, most of them are modern operating systems, except MS-DOS.<br />
To be a "modern" OS, there are two major qualities: Does it have protected<br />
memory, and does it have pre-emptive multitasking?<br />
<br />
=== Protected Memory ===<br />
<br />
What is protected memory? <br />
<br />
Student: A situation where each program and the operating system has its own memory, and the OS prevents<br />
other programs from writing to another program's memory. <br />
<br />
Dr. Somayaji: Access mechanisms to avoid having one program overwrite another program's memory.<br />
<br />
This lets you have a situation where if one program crashes, you can just restart it. Damage due to<br />
memory overwrites is limited to one program.<br />
<br />
=== Preemptive Multi-tasking ===<br />
<br />
A way to have more than one program run at a time. Older machines were known<br />
as batch machines and their operating systems were batch operating systems.<br />
These ran tasks that took a long time to run. These were queued up, and run<br />
one at a time in sequence. These were typically things such things as payroll and accounts receivable.<br />
Usually these would be run overnight and the output, either on magnetic tape or a<br />
stack of printouts which would be returned to the user in the morning.<br />
<br />
Preemptive multitasking - the OS enforces time sharing.<br />
Co-operative multitasking - each program lets others run.<br />
<br />
If you look at MS-DOS, there are batch files. These are just a sequence of<br />
commands to run. It runs them and then returns when done. <br />
<br />
If you want to run a GUI, however, a batch system is unlikely to be what you want, as<br />
a GUI environment tends to be interactive. <br />
<br />
With the big iron in the old days they had big computers that would be sitting<br />
mostly idle, except when running the batch jobs. The idea of time sharing came along around then.<br />
<br />
=== Structure of a computer ===<br />
<br />
[[Image:Stored_program_architecture_1.png]]<br />
Stored Program architecture<br />
<br />
The stored program architecture with today's computers is a bit of a fiction.<br />
<br />
The things the microprocessor does are significantly faster than the RAM<br />
storage. Modern computers have to wait for data from RAM. However this time is<br />
dwarfed by the time spent waiting for I/O. This is because I/O devices tend to be mechanical:<br />
printers, hard disks, people at keyboards.<br />
<br />
This helped cause the idea "what if we had multiple users and let them share the CPU" to come<br />
about. This is time-sharing. On modern computers, we do this too, but instead<br />
of sharing with multiple users we run multiple programs for a single user --<br />
multi-tasking.<br />
<br />
In older systems such as Win3.1 and MacOS 9, this was co-operative multi-tasking.<br />
When things started running, they'd hog the CPU until they decided they were<br />
ready to give up the CPU. <br />
<br />
There used to be a great feature in the Mac in the old days where if you held<br />
down the mouse button, no networking would happen. This was because the<br />
program running at the time was hogging the CPU when the mouse button was pressed.<br />
In pre-emptive multitasking, you get booted out periodically so that the<br />
system can spend time paying attention to the network, to do animations, or<br />
to let other applications run. It spends a millisecond here, a millisecond there,<br />
etc. Instead of actually running simultaneously, they're periodically running, but <br />
they seem to run simultaneously to the end-user.<br />
<br />
Sometimes you have 2 or more CPUs, but you have more than 2 things going on... <br />
<br />
=== Processes and the Kernel ===<br />
<br />
Processes are fundamentally the things that get multitasked and protected. It<br />
is the abstraction of a running program. This is what makes an operating<br />
system modern. In the old days, you had one memory space and the OS and its<br />
applications were all sharing the CPU and memory. Now, with a process model,<br />
there are barriers all over the place, and more importantly, something/someone<br />
in charge governing the process. It's not a free-for all, it has a dictator,<br />
and its name is the kernel.<br />
<br />
Kernel as in the center piece.<br />
<br />
Question to class: How many people have heard of the term Microkernel? <br />
Not many hands.<br />
<br />
There are various terms that modify the term kernel such as monolithic kernel, microkernel,<br />
picokernel, etc. These specify how much stuff is in the microkernel.<br />
The idea is that the more code is in the kernel, the faster it goes, but<br />
conversely, that the more code there is the risk of crashing is higher.<br />
<br />
All of the problem code goes into processes, as they can be restarted, and kept<br />
out of the kernel.<br />
<br />
The debate about what is faster is not fully settled for technical and philosophical reasons.<br />
Almost all operating systems on the list above are big kernels, not small ones.<br />
<br />
So if that's what a kernel is, how does a program fit into that?<br />
If there's one program to rule them all, where do processes fit in?<br />
The kernel decides who gets to run, that implements a priority scheme.<br />
<br />
Student: "It got there first. You start the computer, then the kernel gets in. Everything has to<br />
talk to it or it doesn't run..."<br />
<br />
It gets to set the rules... that's sort of it... <br />
In unix, there's the idea of the init process. It is first to run, and has<br />
special responsibilities. It is run using a regular binary, at system boot,<br />
by the kernel. This still doesn't tell us how the kernel keeps control of it.<br />
<br />
The kernel often keeps control by getting the hardware to help. By loading first,<br />
the kernel can setup the CPU and memory so that it has control. This<br />
type of hardware assistance is generally available to the first code to<br />
request it.<br />
<br />
=== Interrupts ===<br />
<br />
Interrupts -- what are they? It's an alert to say something has to be done now.<br />
<br />
A CPU is running the programs, until something happens, like someone pressing<br />
a key or a network packet arrives. So an I/O device flags an interrupt. The CPU<br />
now has to stop and pay attention<br />
<br />
An interrupt is just a mechanism to allow the CPU to change contexts, to switch<br />
from running one bit of code to another. There's a standard set of interrupts<br />
defined by the hardware. Associated with each interrupt there's a bit of code.<br />
When one interrupts happens, run its code, when another happens, run another. <br />
For example, for the keyboard, there's a routine to read a key from the keyboard, store it in<br />
a buffer so its not overwritten when the next key is pressed, then returns.<br />
<br />
{|align="right"<br />
|[[Image:Stored_program_architecture_2.png]]<br />
|}<br />
Think of an interrupt as a little kid pulling at your pant leg. It wants your attention now.<br />
<br />
The OS controls interrupts to control the CPU (and also what happens with RAM).<br />
<br />
Wait a second? If the kernel can only control interrupts, how can it keep<br />
general control if no interrupts happen? The clock IO device! It throws<br />
interrupts too.<br />
<br />
As a part of the boot sequence, the kernel programs the clock to wake the<br />
operating system up every, say, 100th of a second. Call me! So the OS can<br />
then keep running and perform its tasks as it needs:<br />
"Is everyone behaving nicely? Do I need to kill anyone?"<br />
<br />
=== Virtual Memory ===<br />
<br />
A slight fly in the ointment: If you are a program, and want to take control,<br />
how do you mount a rebellion? You overwrite the interrupt table! This is<br />
where protected memory comes in. It prevents a regular program from doing this.<br />
As a regular process, you often can't even see the interrupt table.<br />
<br />
How is that possible? Many schemes have been proposed for doing protected<br />
memory. Some variants will be spoken about, but the most widespread method <br />
is something known as virtual memory. Often tied into the concept of<br />
virtual memory is the ability to use disk for memory too.<br />
<br />
The fundamental idea is that the address you think your instruction or variable is at in memory is<br />
fictional/virtual. Say you want to load from address 2000 and load it into a register, and you<br />
have another program that want to do the same thing, are they doing the same thing?<br />
Nope! They have nothing to do with each other in a virtual memory model.<br />
Both programs live in their own virtual worlds, and can't see each other.<br />
The kernel, with the help of a little piece of hardware called the MMU <br />
is able to give each process its own virtual view of memory. It decides<br />
how that's going to map to real memory as it sees it.<br />
<br />
So the kernel controls interrupts to control IO and it controls memory.<br />
These are the two key controls. If a kernel can't control these, it<br />
can't properly provide protections ("It can't stop the rebellion").<br />
<br />
Last class we talked about hypervisors. The whole idea there is that the<br />
kernel thinks that it has control of the interrupt table and the real<br />
MMU are actually virtual ones, provided by the Hypervisor.<br />
<br />
So you can now run windows inside a window on Linux, OSX, etc.<br />
<br />
<br />
The difference between the various versions of windows:<br />
<br />
- Windows 95, Windows 98 implemented these ideas for some programs, but not all, and<br />
could get around it easily.<br />
- Windows 3.1 didn't have these.<br />
- Windows XP, Vista are modern.<br />
<br />
There's one small problem with Vista and XP, however. <br />
This has to do with the nature of the processes:<br />
<br />
{|align="right"<br />
|[[Image:Processes_and_kernel.png]]<br />
|}<br />
To upgrade things, the kernel trusts some programs/users to allow them to<br />
upgrade. In windows, you tend to run as the user admin. This means you're<br />
running the equivalent of the unix root command. The kernel listens to you<br />
and does just about anything you want, including install programs. <br />
<br />
Say that cute Christmas animation.. which happens to install a keylogger<br />
to send all your keystrokes to the other side of the world, so they can<br />
log into your bank account.<br />
<br />
In unix, there's the concept of root users and non-root users. Root can<br />
ask for almost anything to be done, including change its code. If you can<br />
tell the kernel to load new code, you can pretty much do anything. As<br />
an unpriviledged user, the kernel/OS say no.<br />
<br />
When people make fun of windows being insecure, its not a fundamental flaw<br />
with the design of windows -- its a little broken, overly complex in some ways --<br />
but certain design choices along the way in the name of usability, such as<br />
running as admin users so that users don't need to be asked to do something<br />
special to change settings, install software, upgrade, etc.<br />
This is why we have the current spyware problem.<br />
<br />
Vista changes this slightly with the UAC (User Access Control) which runs<br />
a regular user with full priviledges, but asks you whenever priviledged<br />
operations need doing -- Yes/No. And you just click on it. But users<br />
still click yes. <br />
<br />
And now there's easy ways to turn off UAC completely. We'll talk about this more<br />
later when we talk about security.<br />
<br />
=== System Calls ===<br />
<br />
How do you talk to a kernel?<br />
<br />
It's the dictator and you're a supplicant. How do you make a timely request<br />
to the kernel to ask it to please do something? System calls!<br />
<br />
A system call is a standard mechanism for an application to talk to a kernel.<br />
<br />
A system call is NOT a function call. In your APIs and the like, it may look like<br />
a function call, may be wrapped in one.. But in implementation, they are very<br />
different.<br />
<br />
In order for the kernel to be in control, it has to run with special<br />
privileges and not give these to the user programs. There are various schemes,<br />
but the common one is a 1-bit option: User mode, or supervisor mode. User mode<br />
means that running as a regular program, you can't talk to the IO/interrupt<br />
vectors or talk tot he MMU, but you can run instructions and access your own<br />
memory. When you switch to supervisor mode, then everything is accessible. The<br />
kernel runs in supervisor mode.<br />
<br />
So if you're cut off and can't see the kernel, how do you send it a message?<br />
You might be able to write to a special place in memory that the kernel might<br />
check periodically, but how do you get it to check now? Normally the kernel<br />
is invoked by interrupts.. So as a user program, to invoke the kernel,<br />
you call an interrupt. There are special instructions, software interrupts,<br />
that are like a hardware interrupt, but software initiates them. There are<br />
interrupt tables just like for hardware.<br />
<br />
So the kernel can then look at the memory of the invoking user program when a<br />
user program calls the system call. Remember, because of the memory<br />
protections, you can't just jump into kernel code, so the only way in is via an<br />
interrupt.<br />
<br />
Therefore, system calls cause interrupts to invoke the kernel.<br />
<br />
In the process of doing a system call, the system has to do a lot of 'paperwork' <br />
to change context. System calls are expensive, very expensive. This is<br />
one of the things that tends to bound the performance of an operating system.<br />
<br />
Modern CPUs are so fast, shouldn't they be able to switch really fast?<br />
Turns out the tricks used to make modern CPUs really fast are like those<br />
used to make muscle cars -- they tend to go really fast in a straight line,<br />
but when you want to turn, you have to slow down to nearly a stop. Modern<br />
CPUs are like that.<br />
<br />
Interrupts cause all partial work done in parallel by modern CPUs to be<br />
thrown out, such as 10-20 or more instructions. The CPU has to fill the<br />
pipelines and resume. This stuff happens at a level below that of what the<br />
kernel runs at. The kernel saves its registers before switching context,<br />
so that it can resume later.</div>Rhooperhttps://homeostasis.scs.carleton.ca/wiki/index.php?title=Using_the_Operating_System&diff=1448Using the Operating System2007-09-18T00:45:39Z<p>Rhooper: </p>
<hr />
<div>These notes are have not yet been reviewed for correctness.<br />
<br />
== Lecture 3: Using the Operating System ==<br />
<br />
=== Administrative ===<br />
<br />
==== Course Notes ====<br />
The course webpage has been changed to point to this wiki. Notes for lectures will continue to be posted here.<br />
<br />
We still need volunteers to take notes and put them up. Don't forget the up to 3% bonus for doing so.<br />
<br />
==== Lab 1 ====<br />
<br />
Lab 1 will be up soon. Starting tomorrow, there are labs. Please show up.<br />
<br />
If you're clever, you can probably find most of the answers online. Avoid looking up the answers<br />
though, because you'll learn much more than the just answers if you explore<br />
while using the computer.<br />
<br />
You'll do better on the tests if you do the labs.<br />
<br />
The point of this course is to build up a conceptual model of<br />
how computers work. This conceptual model is not made up of answers, its made up<br />
of connections. You'll start to make these connections by doing the labs.<br />
<br />
The Lab will posted as a PDF. You can print it out to bring with it with you.<br />
When you go to hand in the lab, print off your answers on a separate piece of paper.<br />
Answers will be due in two weeks.<br />
<br />
All functioning lab machines are running Debian Linux 4.0 (etch).<br />
They should be connected to the internet. They should have a browser on them<br />
called [IceWeasel http://en.wikipedia.org/wiki/Naming_conflict_between_Debian_and_Mozilla]. <br />
Its really Mozilla Firefox. Because Mozilla has trademarked the name Firefox,<br />
in order to use their name, you have to use exactly their binary distribution. Debian could<br />
have had a waiver, but because Debian is about freedom, Debian didn't want<br />
the users of Debian to be bound by the terms of the Firefox agreement.<br />
<br />
One thing you'll notice while studying operating systems is that there's a lot<br />
of culture. This is because users get used to a particular way of doing things.<br />
For example, lots of us are probably used to Windows and how it works. If<br />
you changed the fundamentals of how Windows worked, many of us would be unhappy.<br />
<br />
Some of the things we'll be studying are based on decisions made long ago, often <br />
arbitrarily of for a technical reason was true at the time.<br />
Even if it was wrong the, or is now wrong, we're often stuck with it.<br />
<br />
We're going to look at some of the baggage in the operating systems as we progress in this course.<br />
<br />
<br />
For the lab, we'll be given a set of questions in 2 parts.<br />
<br />
Part A we should be able to finish during the hour, give or take a few minutes.<br />
If it takes you 3-4 hours, you're probably doing something wrong.<br />
<br />
Part B will take longer. Will need more research, and a bit more reading. You<br />
should be working together. If you have trouble finding a buddy, talk to Dr.<br />
S. Talk to each other to learn. The purpose isn't just about the right<br />
answers, but more so about the operating systems.<br />
<br />
We're going to look at:<br />
<br />
- Processes, and how Unix deals with them.<br />
- How are the parts of the system divided up.<br />
- Dynamic libraries, where they are, where they fit in memory.<br />
- What are the dependencies.<br />
- How does the graphical subsystem fit in there. X-Windows, the classical<br />
Unix graphical environment.<br />
- Practice on the command line. (If you're wondering where these fit in<br />
in modern graphical environments, read Neal Stephenson's essay)<br />
<br />
Try to finish part A in the lab. <br />
Answers due in class 2 weeks from today.<br />
<br />
==== Term Paper ====<br />
<br />
For the Term Paper... You don't have to do a pure literature review. You could<br />
do an original operating system extension. There's one caveat: You've got<br />
to get what you're going to do with the professor first. You have to tell<br />
him a week before the outline is due Oct 22nd.<br />
<br />
What types of things is he thinking of: Say you wanted to implement a new<br />
file-system? This is inherently more work, because you still have to give a<br />
nice write-up. The report should still cite other work.<br />
<br />
All of us should have started the process by next week, even if its just<br />
googling for 15 minutes. Just google and see what results come up. IF you<br />
start now, you'll have time to pick a topic that you like, instead of the<br />
first thing that comes along. Its better to work on something you like,<br />
instead of stuck reading papers you're not interested in.<br />
<br />
If you want to find good OS papers:<br />
* USENIX association has a number of systems oriented conferences.<br />
** OSDI <br />
** USENIX Annual Technical Conference<br />
** LISA<br />
<br />
=== Using the Operating System ===<br />
<br />
Chapter 2 looks at the programming model of an operating system. <br />
The operating system provides certain abstractions to help programmers work with it.<br />
<br />
What are some examples of abstractions?<br />
<br />
==== Files ====<br />
<br />
A file is a metaphor. What was the original metaphor? The manilla<br />
coloured folder that we put paper in. Its interesting to note that a file is used<br />
to hold many pages or documents, but that a computer file is a single document. Instead, a directory<br />
holds many files, which are each generally one document. <br />
The metaphor hasn't made much sense for a long time, but it is still in use.<br />
<br />
What is a file? <br />
<br />
A file is a bytestream you can read and write from.<br />
<br />
We also have an abstraction called a byte, 256 possible values, 0-255.<br />
We as computer scientists think we can represent just about anything<br />
with these.<br />
<br />
; file : named bytestream(s). <br />
<br />
In modern operating systems there are potentially more than <br />
one bytestream in a file. When there is more than one bytestream, we<br />
call this a forked file.<br />
<br />
An early operating system that used forked files was OS 9.<br />
On a traditional system, you get a sequence of bytes<br />
when you open a file. In a forked file, when you read it, you get some data,<br />
but there is also other data hanging around. We'll talk about that later.<br />
<br />
The standard API calls for a file are:<br />
<br />
* open<br />
* read<br />
* write<br />
* close<br />
* seek<br />
<br />
As well as a other operations that one might need to perform on files, such as:<br />
* truncate<br />
* append - (seek to end of file and write)<br />
* execute<br />
<br />
Why open and close? Why can't we just operate on a filename? <br />
Because it (usually) takes a long time to go through the filesystem to find the files.<br />
Open and close are optimizations -- the abstraction is a stateful interface.<br />
You start by using open to obtain some sort of "handle" representing the file, <br />
and pass this "handle" value to read and write. When you're done, closing the <br />
file frees the resources allocated when opening the file. On most systems<br />
you can only have a specific number of files open at any given time.<br />
<br />
There are some filesystems where open and close don't do much of anything,<br />
such as some networked filesystems.<br />
<br />
File represent storage, on disks... They're random access. If they're random access<br />
like RAM, why don't we access disks like we access RAM? <br />
Why couldn't we just allocate objects as we need them? We could indeed do this, but<br />
it turns out that there's a reason that we don't generally do this.<br />
<br />
The file interface is a procedural interface. <br />
<br />
One nice things about files is they're a minimal functionality interface. The concept of<br />
minimal functionality is a recurring theme you'll find when we discuss filesystems. <br />
<br />
The abstraction used to interface the filesystem<br />
shouldn't prohibit you from creating particular forms of applications. If we chose <br />
to use an object model, we'd be implying you don't want to give arbitrary access to the<br />
data on disk, as objects tend to encapsulate their data.<br />
<br />
The abstraction listed above is the minimal abstraction for efficiently<br />
managing persistent storage (disks).<br />
<br />
This doesn't necessarily mean this is the most absolutely minimal abstraction. <br />
An even more minimal abstraction would be<br />
to just treat storage devices as a bunch of fixed size blocks. However, that's getting too low level,<br />
because now all programs have to worry about where they put files.<br />
<br />
Because the files abstract model is reasonably good, its stuck around for decades.<br />
<br />
Fundamentally, though, its a legacy. Some models of filesystems try to get<br />
away from it. Look at the PalmOS - it resisted having files for a long time, but eventually<br />
gave in to support removable media, but the primary OS and API still don't support files. <br />
Microsoft's been wanting to get away from the legacy files abstraction too, but <br />
somehow it doesn't seem to happen.<br />
<br />
===== Processes and Threads =====<br />
<br />
There's lots of other devices, but from an OS level, there are two other big ones:<br />
CPU and RAM. These two are generally abstracted with processes.<br />
The process is the basic abstraction in operating systems for these two,<br />
but is not the only abstraction. There are also threads.<br />
<br />
CPU + RAM are abstracted as:<br />
* processes<br />
* threads<br />
<br />
A process may have multiple threads. A thread shares memory with its processes.<br />
<br />
* A process is an exclusive allocation of CPU and RAM.<br />
* A thread is a non-exclusive allocation of RAM within a process,<br />
but is an exclusive allocation of CPU.<br />
* One or more threads constitute a process.<br />
<br />
Another way to talk about processes is in terms of address spaces and<br />
execution context: <br />
* An address space is just a virtual version of RAM. It may<br />
be instantiated in physical memory, it may not be. Its a set of addresses you<br />
can call your own. <br />
* Execution context is CPU state (Registers, processor status<br />
words, etc.). There's lots of state surrounding the processor when its running<br />
a program. This state can be saved, and then restored later to resume execution<br />
at a later time.<br />
<br />
* A thread is one execution context matched with an address space.<br />
* A process is one or more execution contexts plus an address space.<br />
* A single-threaded process has one execution context, and one address space.<br />
* A multithreaded process has multiple execution contexts, and one address space.<br />
<br />
The concept of multiple address spaces is somewhat new in modern computing.<br />
However, if you go back to the old days of MS-DOS, there was only one address space, the<br />
physical address space. We used to have things like TSRs, a 640kb limit,<br />
etc. There was no virtualization of memory. In order to run at the same<br />
time, they had to co-exist in the physical memory address space.<br />
<br />
If you don't have multiple address spaces, you don't have processes and threads.<br />
At best, you have threads, sharing the one address space you have.<br />
<br />
Historically, threads were abstracted differently than now: These are<br />
capitalized here to differentiate them from the newer terms: FORK, JOIN, QUIT.<br />
<br />
Why FORK? Think of a fork in the road. You're going along, then things split.<br />
A FORK is supposed to represent that split.<br />
<br />
By FORKing, the main thing to note is that you're creating two execution<br />
contexts, that may be sharing memory. The execution may start at the same<br />
place, but may be diverging. How do you stop creating more and more and more<br />
of these, to bring them back under control or stop them? That's the JOIN<br />
operation. Each thread tracks how many threads are running, if you JOIN and<br />
you're not the last one running, you just go away, otherwise you need to<br />
synchronize back into the main thread.<br />
<br />
What's QUIT? QUIT stops the the whole program -- all execution. It will cut<br />
all threads off, even if the thread is one of the branches and not the main<br />
thread.<br />
<br />
This was one of the earliest ways to abstract multiple execution context.<br />
<br />
What if, when you did the fork, you made a copy of the entire process? There<br />
are now two separate instances of the program, with the same state? The<br />
difference here, is if you quit one, the other will stay around -- but the<br />
difference is more profound: they're not sharing the same address space (nor<br />
execution context). This is the Unix model of processes.<br />
<br />
In the Unix process model the system starts with only one process: init. It<br />
starts running, then it creates a copy of itself with fork, then another, etc.<br />
<br />
[[Image:Comp3000-process-tree.png]]<br />
<br />
In this diagram, What is the value of ''x?'' on the bottom-left-most branch?<br />
''x'' is 5 in the Unix process model. However, if this was multithreaded,<br />
''x'' could be 7 or 5, depending on how fast the threads are running. It might<br />
be 5 if the thread asking for the value of ''x'' runs before the thread setting ''x''<br />
to 7. This is known as a race condition, <br />
because we don't know which thread will run or finish first.<br />
<br />
In Unix, they decided to make it easy and have different processes. These<br />
processes can't change the state of their parents or children. <br />
To share a value, you have to set the value before forking. (Or through other means)<br />
<br />
There's a small glitch with what we've said so far about Unix processes: That<br />
they have exactly the same state when you fork. If this was true, they'd<br />
always do the same thing. How do they know that they're different?<br />
<br />
Turns out that Unix fork is very simple, yet it helps with this.<br />
The idiom you'll usually see is:<br />
<br />
pid = fork();<br />
<br />
fork takes no arguments.<br />
<br />
When you fork, the result of fork is the pid (process ID) of the new process,<br />
or 0 if you're the child.<br />
<br />
The tree of processes effectively becomes a family tree. (However, with some<br />
bizarre genealogy that we'll see later)<br />
<br />
What you usually do is check the value of pid, and if its 0, do one thing,<br />
otherwise do something else. If pid is nonzero, it is the pid of the child<br />
process we just created by forking. You usually use this to track your child.<br />
The classic use of fork is to create disposable children that do a specific<br />
task for a short while, then go away.<br />
<br />
The nice thing about this model is that it keeps things separate. You don't<br />
need to worry about what the child is doing. If you want to communicate, you<br />
have to explicitly set up to do this. There are some standard ways of doing<br />
that communication. We'll look at these later too.<br />
<br />
So now we know how to make new processes? How do we do something different? In<br />
principle we don't need anything else. We could open a file, read new code,<br />
then jump to the new code. However, we have the idea of exec(). <br />
Exec replaces the running program with the specified program, but preserves<br />
the pid.<br />
<br />
In Unix, to start a new program you usually fork() then you exec() the desired<br />
program on the child. If you don't fork() first, then exec() will kill the<br />
original process, replacing it with the program you called exec on.<br />
<br />
Exec causes the kernel to throw away the old address space, and give a new<br />
address space, with the new binary. The pid stays the same though.<br />
<br />
The Windows equivalent is CreateProcess()<br />
<br />
CreateProcess() takes lots of arguments about how to create the new<br />
process (what to load, permissions, etc). Fork takes none. With fork(), <br />
you can set things up yourself, and most of the settings will carry over to<br />
the new program. (Including open files). Note how different these two are.<br />
<br />
In Unix, you have the building blocks to do things, and you have to put them<br />
together yourself. In Windows, you have the single API call to do them all at<br />
once. Neither is strictly right or wrong.<br />
<br />
On older systems, when a big process was forked, everything was copied. On<br />
newer systems, fork doesn't necessarily copy everything. With virtual memory<br />
you can share much of the memory between two processes.<br />
<br />
In older APIs there was vfork() - suspend parent, fork, exec, then let the<br />
parent and child both start to go again. This idea avoided the copying when<br />
the first thing you were going to do was exec.<br />
<br />
The basic idea to make this efficient is that the descriptions of the virtual<br />
memory address spaces don't have to be mutually exclusive. You could have<br />
10 programs sharing portions of their address space -- such as the read-only<br />
portions like the program code, but not the read-write portions.<br />
<br />
What if you didn't want to do an exec after forking? A classic one is a<br />
daemon. One listening on the network for an incoming connection. When that<br />
incoming request comes in, the main program can deal with the request, but it<br />
would also have to keep checking for more requests at the same time. Instead,<br />
in Unix the typically idiom is to fork off a child to process that connection,<br />
and then go back and wait for more.<br />
<br />
You can have shared memory. But the default model for processes is<br />
that nothing is shared, but the threading model is everything is shared.<br />
For threads you have to implement protections, but for processes, you have to<br />
opt-in to share.<br />
<br />
Processes win out on reliability: fewer chances for errors. You control<br />
exactly what state is shared.<br />
<br />
Another thing we'll talk about later regarding threads versus processes is<br />
how does this play on multiple cores? This depends on the implementation,<br />
and sometimes is a little tricky.<br />
<br />
Chapter two is talking about the model presented to the programmer. An API<br />
for your processes and threads to talk to the world.<br />
<br />
This course is fundamentally about how these things are implemented. Its<br />
useful to know about these tricks, so that you know how the computer is used.<br />
It turns out the same tricks are useful in lots of other circumstances. Such<br />
as concurrency - when you have to deal with an application that has to deal<br />
with this - which happens to be most applications. You'll learn this because<br />
the OS guys did this first.<br />
<br />
<br />
==== Graphics ====<br />
<br />
This part of the lecture should help you with the lab. Its about graphics.<br />
<br />
We've talked about some standard abstractions so far: files, processes, threads.<br />
<br />
However, the thing you really interact with is the keyboard, mouse, and<br />
display. In the standard Unix model, these are not a part of the operating<br />
system. They're implemented in an application.<br />
<br />
The Unix philosophy is that if you don't have to put it in the kernel,<br />
don't put it there, or if you do, make it interchangeable.<br />
<br />
The standard way to do graphics in Unix is X-Windows, or X for short.<br />
Before X there was the W system. There was a Y system at one point,<br />
as well as Sun NeWs.<br />
<br />
There was also a system called Display Postscript. Postscript is a<br />
fully fledged programming language. Originally used for printers.<br />
It was developed for laser printers, by a little company called Adobe.<br />
When laser printers came out, they had really high resolutions. It was<br />
hard to get the data necessary to print a page to the printer fast<br />
enough... So postscript programs were sent to the printer. In the<br />
early days of the MacIntosh, the processor in the printer was more powerful<br />
than the processor in the computer. Postscript is a funny little language.<br />
Its a post-fix operator language. Instead of saying things like "4+5" you<br />
say "4 5 +" -- you push them onto the stack, then run an operator on them.<br />
The same with function calls.<br />
<br />
In the 80s, there were many competing technologies for how to do graphics<br />
in the Unix world. X won. But Display Postscript also kind of won,<br />
because Macs use Display PDF in a system called Quartz, which was<br />
created as a successor to Display Postscript. Because Postscript was linear,<br />
it was hard to parallelize. PDF is easier to parallelize.<br />
<br />
NeXT was the one that used Display Postscript first... NeXT was founded by<br />
Steve Jobs. OS X is Unix with Display PDF... And you can run X-Windows on top<br />
of that.<br />
<br />
X-Windows lets you open windows on remote computers. The way you create a<br />
window on your local computer is the same way that you open a window on a<br />
remote computer, 1000s of miles away. X is based on something called the X<br />
Window Protocol. It just happens to work locally as well (with some<br />
optimization like shared memory), but the messages were designed to work well<br />
over ethernet.<br />
<br />
This was created by folks that wanted to talk to hundreds of computers, such<br />
as the supercomputer in another room... but they wanted to see the windows<br />
on their own computer.<br />
<br />
Consider what you have to do to see a remote window in Windows. You fire up<br />
Remote Desktop Client, and you get the whole desktop remotely. If you want to<br />
do 10 computers, you end up with 10 windows with 10 desktops and 10 start<br />
buttons. This difference is a result of X-Windows being designed for networks<br />
and Windows being designed for one computer.<br />
<br />
The terminology for X-Windows is a bit backwards from what we're used to: The<br />
server is what we mostly think of of as a client. The server is what controls<br />
access to the display: it runs where your display is to control your display,<br />
mouse, keyboard... And to display a window, remotely or locally, you run a<br />
program known as a client in X-Windows which connects over the network to<br />
display a window on your X-Windows server.<br />
<br />
A funny thing about X is it took the abstraction to an extreme. The people who<br />
created X-Windows didn't know anything about usability or graphics or art. The<br />
original X-Windows tools were created by regular programmers. Technically<br />
underneath its very nice.. But they knew they didn't know, so they made it so<br />
the user could decide what it should look like themselves. So that you can<br />
just switch out a few programs and things keep on working.<br />
<br />
This means that when you do things like moving your mouse to a window -- what<br />
happens? Do you take focus or not? This is something known as click to focus.<br />
In older X Systems, you could just point your mouse there, and focus followed.<br />
This is potentially very efficient, but also very confusing if you're not used<br />
to it... Or how do you handle key sequences, or minimize? Who decides how to<br />
do this all? They had the idea of something called a Window Manager. This goes<br />
back to X Servers providing the technical minimums so that you're not limited<br />
to one behaviour. The Window Manager is just another X client, with some<br />
special privileges so it can run anywhere. It could run 1000s of miles away.<br />
<br />
This is why on Linux there's Gnome, KDE, etc. There's Motif, GTK, QT, IceWM,<br />
Aferstep, Blackbox, Sawfish, fvwm, twm. Etc. Other graphical toolkits too,<br />
abstracted away. These choices are all available there because the X-Windows<br />
people left it very open by not making the choice for us. This does make<br />
things a little confusing at times, though, because each application could<br />
have different assumptions.</div>Rhooperhttps://homeostasis.scs.carleton.ca/wiki/index.php?title=Using_the_Operating_System&diff=1447Using the Operating System2007-09-18T00:42:27Z<p>Rhooper: </p>
<hr />
<div>These notes are still in the process of being posted.<br />
<br />
== Lecture 3: Using the Operating System ==<br />
<br />
=== Administrative ===<br />
<br />
==== Course Notes ====<br />
The course webpage has been changed to point to this wiki. Notes for lectures will continue to be posted here.<br />
<br />
We still need volunteers to take notes and put them up. Don't forget the up to 3% bonus for doing so.<br />
<br />
==== Lab 1 ====<br />
<br />
Lab 1 will be up soon. Starting tomorrow, there are labs. Please show up.<br />
<br />
If you're clever, you can probably find most of the answers online. Avoid looking up the answers<br />
though, because you'll learn much more than the just answers if you explore<br />
while using the computer.<br />
<br />
You'll do better on the tests if you do the labs.<br />
<br />
The point of this course is to build up a conceptual model of<br />
how computers work. This conceptual model is not made up of answers, its made up<br />
of connections. You'll start to make these connections by doing the labs.<br />
<br />
The Lab will posted as a PDF. You can print it out to bring with it with you.<br />
When you go to hand in the lab, print off your answers on a separate piece of paper.<br />
Answers will be due in two weeks.<br />
<br />
All functioning lab machines are running Debian Linux 4.0 (etch).<br />
They should be connected to the internet. They should have a browser on them<br />
called [IceWeasel http://en.wikipedia.org/wiki/Naming_conflict_between_Debian_and_Mozilla]. <br />
Its really Mozilla Firefox. Because Mozilla has trademarked the name Firefox,<br />
in order to use their name, you have to use exactly their binary distribution. Debian could<br />
have had a waiver, but because Debian is about freedom, Debian didn't want<br />
the users of Debian to be bound by the terms of the Firefox agreement.<br />
<br />
One thing you'll notice while studying operating systems is that there's a lot<br />
of culture. This is because users get used to a particular way of doing things.<br />
For example, lots of us are probably used to Windows and how it works. If<br />
you changed the fundamentals of how Windows worked, many of us would be unhappy.<br />
<br />
Some of the things we'll be studying are based on decisions made long ago, often <br />
arbitrarily of for a technical reason was true at the time.<br />
Even if it was wrong the, or is now wrong, we're often stuck with it.<br />
<br />
We're going to look at some of the baggage in the operating systems as we progress in this course.<br />
<br />
<br />
For the lab, we'll be given a set of questions in 2 parts.<br />
<br />
Part A we should be able to finish during the hour, give or take a few minutes.<br />
If it takes you 3-4 hours, you're probably doing something wrong.<br />
<br />
Part B will take longer. Will need more research, and a bit more reading. You<br />
should be working together. If you have trouble finding a buddy, talk to Dr.<br />
S. Talk to each other to learn. The purpose isn't just about the right<br />
answers, but more so about the operating systems.<br />
<br />
We're going to look at:<br />
<br />
- Processes, and how Unix deals with them.<br />
- How are the parts of the system divided up.<br />
- Dynamic libraries, where they are, where they fit in memory.<br />
- What are the dependencies.<br />
- How does the graphical subsystem fit in there. X-Windows, the classical<br />
Unix graphical environment.<br />
- Practice on the command line. (If you're wondering where these fit in<br />
in modern graphical environments, read Neal Stephenson's essay)<br />
<br />
Try to finish part A in the lab. <br />
Answers due in class 2 weeks from today.<br />
<br />
==== Term Paper ====<br />
<br />
For the Term Paper... You don't have to do a pure literature review. You could<br />
do an original operating system extension. There's one caveat: You've got<br />
to get what you're going to do with the professor first. You have to tell<br />
him a week before the outline is due Oct 22nd.<br />
<br />
What types of things is he thinking of: Say you wanted to implement a new<br />
file-system? This is inherently more work, because you still have to give a<br />
nice write-up. The report should still cite other work.<br />
<br />
All of us should have started the process by next week, even if its just<br />
googling for 15 minutes. Just google and see what results come up. IF you<br />
start now, you'll have time to pick a topic that you like, instead of the<br />
first thing that comes along. Its better to work on something you like,<br />
instead of stuck reading papers you're not interested in.<br />
<br />
If you want to find good OS papers:<br />
* USENIX association has a number of systems oriented conferences.<br />
** OSDI <br />
** USENIX Annual Technical Conference<br />
** LISA<br />
<br />
=== Using the Operating System ===<br />
<br />
Chapter 2 looks at the programming model of an operating system. <br />
The operating system provides certain abstractions to help programmers work with it.<br />
<br />
What are some examples of abstractions?<br />
<br />
==== Files ====<br />
<br />
A file is a metaphor. What was the original metaphor? The manilla<br />
coloured folder that we put paper in. Its interesting to note that a file is used<br />
to hold many pages or documents, but that a computer file is a single document. Instead, a directory<br />
holds many files, which are each generally one document. <br />
The metaphor hasn't made much sense for a long time, but it is still in use.<br />
<br />
What is a file? <br />
<br />
A file is a bytestream you can read and write from.<br />
<br />
We also have an abstraction called a byte, 256 possible values, 0-255.<br />
We as computer scientists think we can represent just about anything<br />
with these.<br />
<br />
; file : named bytestream(s). <br />
<br />
In modern operating systems there are potentially more than <br />
one bytestream in a file. When there is more than one bytestream, we<br />
call this a forked file.<br />
<br />
An early operating system that used forked files was OS 9.<br />
On a traditional system, you get a sequence of bytes<br />
when you open a file. In a forked file, when you read it, you get some data,<br />
but there is also other data hanging around. We'll talk about that later.<br />
<br />
The standard API calls for a file are:<br />
<br />
* open<br />
* read<br />
* write<br />
* close<br />
* seek<br />
<br />
As well as a other operations that one might need to perform on files, such as:<br />
* truncate<br />
* append - (seek to end of file and write)<br />
* execute<br />
<br />
Why open and close? Why can't we just operate on a filename? <br />
Because it (usually) takes a long time to go through the filesystem to find the files.<br />
Open and close are optimizations -- the abstraction is a stateful interface.<br />
You start by using open to obtain some sort of "handle" representing the file, <br />
and pass this "handle" value to read and write. When you're done, closing the <br />
file frees the resources allocated when opening the file. On most systems<br />
you can only have a specific number of files open at any given time.<br />
<br />
There are some filesystems where open and close don't do much of anything,<br />
such as some networked filesystems.<br />
<br />
File represent storage, on disks... They're random access. If they're random access<br />
like RAM, why don't we access disks like we access RAM? <br />
Why couldn't we just allocate objects as we need them? We could indeed do this, but<br />
it turns out that there's a reason that we don't generally do this.<br />
<br />
The file interface is a procedural interface. <br />
<br />
One nice things about files is they're a minimal functionality interface. The concept of<br />
minimal functionality is a recurring theme you'll find when we discuss filesystems. <br />
<br />
The abstraction used to interface the filesystem<br />
shouldn't prohibit you from creating particular forms of applications. If we chose <br />
to use an object model, we'd be implying you don't want to give arbitrary access to the<br />
data on disk, as objects tend to encapsulate their data.<br />
<br />
The abstraction listed above is the minimal abstraction for efficiently<br />
managing persistent storage (disks).<br />
<br />
This doesn't necessarily mean this is the most absolutely minimal abstraction. <br />
An even more minimal abstraction would be<br />
to just treat storage devices as a bunch of fixed size blocks. However, that's getting too low level,<br />
because now all programs have to worry about where they put files.<br />
<br />
Because the files abstract model is reasonably good, its stuck around for decades.<br />
<br />
Fundamentally, though, its a legacy. Some models of filesystems try to get<br />
away from it. Look at the PalmOS - it resisted having files for a long time, but eventually<br />
gave in to support removable media, but the primary OS and API still don't support files. <br />
Microsoft's been wanting to get away from the legacy files abstraction too, but <br />
somehow it doesn't seem to happen.<br />
<br />
===== Processes and Threads =====<br />
<br />
There's lots of other devices, but from an OS level, there are two other big ones:<br />
CPU and RAM. These two are generally abstracted with processes.<br />
The process is the basic abstraction in operating systems for these two,<br />
but is not the only abstraction. There are also threads.<br />
<br />
CPU + RAM are abstracted as:<br />
* processes<br />
* threads<br />
<br />
A process may have multiple threads. A thread shares memory with its processes.<br />
<br />
* A process is an exclusive allocation of CPU and RAM.<br />
* A thread is a non-exclusive allocation of RAM within a process,<br />
but is an exclusive allocation of CPU.<br />
* One or more threads constitute a process.<br />
<br />
Another way to talk about processes is in terms of address spaces and<br />
execution context: <br />
* An address space is just a virtual version of RAM. It may<br />
be instantiated in physical memory, it may not be. Its a set of addresses you<br />
can call your own. <br />
* Execution context is CPU state (Registers, processor status<br />
words, etc.). There's lots of state surrounding the processor when its running<br />
a program. This state can be saved, and then restored later to resume execution<br />
at a later time.<br />
<br />
* A thread is one execution context matched with an address space.<br />
* A process is one or more execution contexts plus an address space.<br />
* A single-threaded process has one execution context, and one address space.<br />
* A multithreaded process has multiple execution contexts, and one address space.<br />
<br />
The concept of multiple address spaces is somewhat new in modern computing.<br />
However, if you go back to the old days of MS-DOS, there was only one address space, the<br />
physical address space. We used to have things like TSRs, a 640kb limit,<br />
etc. There was no virtualization of memory. In order to run at the same<br />
time, they had to co-exist in the physical memory address space.<br />
<br />
If you don't have multiple address spaces, you don't have processes and threads.<br />
At best, you have threads, sharing the one address space you have.<br />
<br />
Historically, threads were abstracted differently than now: These are<br />
capitalized here to differentiate them from the newer terms: FORK, JOIN, QUIT.<br />
<br />
Why FORK? Think of a fork in the road. You're going along, then things split.<br />
A FORK is supposed to represent that split.<br />
<br />
By FORKing, the main thing to note is that you're creating two execution<br />
contexts, that may be sharing memory. The execution may start at the same<br />
place, but may be diverging. How do you stop creating more and more and more<br />
of these, to bring them back under control or stop them? That's the JOIN<br />
operation. Each thread tracks how many threads are running, if you JOIN and<br />
you're not the last one running, you just go away, otherwise you need to<br />
synchronize back into the main thread.<br />
<br />
What's QUIT? QUIT stops the the whole program -- all execution. It will cut<br />
all threads off, even if the thread is one of the branches and not the main<br />
thread.<br />
<br />
This was one of the earliest ways to abstract multiple execution context.<br />
<br />
What if, when you did the fork, you made a copy of the entire process? There<br />
are now two separate instances of the program, with the same state? The<br />
difference here, is if you quit one, the other will stay around -- but the<br />
difference is more profound: they're not sharing the same address space (nor<br />
execution context). This is the Unix model of processes.<br />
<br />
In the Unix process model the system starts with only one process: init. It<br />
starts running, then it creates a copy of itself with fork, then another, etc.<br />
<br />
[[Image:Comp3000-process-tree.png]]<br />
<br />
In this diagram, What is the value of ''x?'' on the bottom-left-most branch?<br />
''x'' is 5 in the Unix process model. However, if this was multithreaded,<br />
''x'' could be 7 or 5, depending on how fast the threads are running. It might<br />
be 5 if the thread asking for the value of ''x'' runs before the thread setting ''x''<br />
to 7. This is known as a race condition, <br />
because we don't know which thread will run or finish first.<br />
<br />
In Unix, they decided to make it easy and have different processes. These<br />
processes can't change the state of their parents or children. <br />
To share a value, you have to set the value before forking. (Or through other means)<br />
<br />
There's a small glitch with what we've said so far about Unix processes: That<br />
they have exactly the same state when you fork. If this was true, they'd<br />
always do the same thing. How do they know that they're different?<br />
<br />
Turns out that Unix fork is very simple, yet it helps with this.<br />
The idiom you'll usually see is:<br />
<br />
pid = fork();<br />
<br />
fork takes no arguments.<br />
<br />
When you fork, the result of fork is the pid (process ID) of the new process,<br />
or 0 if you're the child.<br />
<br />
The tree of processes effectively becomes a family tree. (However, with some<br />
bizarre genealogy that we'll see later)<br />
<br />
What you usually do is check the value of pid, and if its 0, do one thing,<br />
otherwise do something else. If pid is nonzero, it is the pid of the child<br />
process we just created by forking. You usually use this to track your child.<br />
The classic use of fork is to create disposable children that do a specific<br />
task for a short while, then go away.<br />
<br />
The nice thing about this model is that it keeps things separate. You don't<br />
need to worry about what the child is doing. If you want to communicate, you<br />
have to explicitly set up to do this. There are some standard ways of doing<br />
that communication. We'll look at these later too.<br />
<br />
So now we know how to make new processes? How do we do something different? In<br />
principle we don't need anything else. We could open a file, read new code,<br />
then jump to the new code. However, we have the idea of exec(). <br />
Exec replaces the running program with the specified program, but preserves<br />
the pid.<br />
<br />
In Unix, to start a new program you usually fork() then you exec() the desired<br />
program on the child. If you don't fork() first, then exec() will kill the<br />
original process, replacing it with the program you called exec on.<br />
<br />
Exec causes the kernel to throw away the old address space, and give a new<br />
address space, with the new binary. The pid stays the same though.<br />
<br />
The Windows equivalent is CreateProcess()<br />
<br />
CreateProcess() takes lots of arguments about how to create the new<br />
process (what to load, permissions, etc). Fork takes none. With fork(), <br />
you can set things up yourself, and most of the settings will carry over to<br />
the new program. (Including open files). Note how different these two are.<br />
<br />
In Unix, you have the building blocks to do things, and you have to put them<br />
together yourself. In Windows, you have the single API call to do them all at<br />
once. Neither is strictly right or wrong.<br />
<br />
On older systems, when a big process was forked, everything was copied. On<br />
newer systems, fork doesn't necessarily copy everything. With virtual memory<br />
you can share much of the memory between two processes.<br />
<br />
In older APIs there was vfork() - suspend parent, fork, exec, then let the<br />
parent and child both start to go again. This idea avoided the copying when<br />
the first thing you were going to do was exec.<br />
<br />
The basic idea to make this efficient is that the descriptions of the virtual<br />
memory address spaces don't have to be mutually exclusive. You could have<br />
10 programs sharing portions of their address space -- such as the read-only<br />
portions like the program code, but not the read-write portions.<br />
<br />
What if you didn't want to do an exec after forking? A classic one is a<br />
daemon. One listening on the network for an incoming connection. When that<br />
incoming request comes in, the main program can deal with the request, but it<br />
would also have to keep checking for more requests at the same time. Instead,<br />
in Unix the typically idiom is to fork off a child to process that connection,<br />
and then go back and wait for more.<br />
<br />
You can have shared memory. But the default model for processes is<br />
that nothing is shared, but the threading model is everything is shared.<br />
For threads you have to implement protections, but for processes, you have to<br />
opt-in to share.<br />
<br />
Processes win out on reliability: fewer chances for errors. You control<br />
exactly what state is shared.<br />
<br />
Another thing we'll talk about later regarding threads versus processes is<br />
how does this play on multiple cores? This depends on the implementation,<br />
and sometimes is a little tricky.<br />
<br />
Chapter two is talking about the model presented to the programmer. An API<br />
for your processes and threads to talk to the world.<br />
<br />
This course is fundamentally about how these things are implemented. Its<br />
useful to know about these tricks, so that you know how the computer is used.<br />
It turns out the same tricks are useful in lots of other circumstances. Such<br />
as concurrency - when you have to deal with an application that has to deal<br />
with this - which happens to be most applications. You'll learn this because<br />
the OS guys did this first.<br />
<br />
<br />
==== Graphics ====<br />
<br />
This part of the lecture should help you with the lab. Its about graphics.<br />
<br />
We've talked about some standard abstractions so far: files, processes, threads.<br />
<br />
However, the thing you really interact with is the keyboard, mouse, and<br />
display. In the standard Unix model, these are not a part of the operating<br />
system. They're implemented in an application.<br />
<br />
The Unix philosophy is that if you don't have to put it in the kernel,<br />
don't put it there, or if you do, make it interchangeable.<br />
<br />
The standard way to do graphics in Unix is X-Windows, or X for short.<br />
Before X there was the W system. There was a Y system at one point,<br />
as well as Sun NeWs.<br />
<br />
There was also a system called Display Postscript. Postscript is a<br />
fully fledged programming language. Originally used for printers.<br />
It was developed for laser printers, by a little company called Adobe.<br />
When laser printers came out, they had really high resolutions. It was<br />
hard to get the data necessary to print a page to the printer fast<br />
enough... So postscript programs were sent to the printer. In the<br />
early days of the MacIntosh, the processor in the printer was more powerful<br />
than the processor in the computer. Postscript is a funny little language.<br />
Its a post-fix operator language. Instead of saying things like "4+5" you<br />
say "4 5 +" -- you push them onto the stack, then run an operator on them.<br />
The same with function calls.<br />
<br />
In the 80s, there were many competing technologies for how to do graphics<br />
in the Unix world. X won. But Display Postscript also kind of won,<br />
because Macs use Display PDF in a system called Quartz, which was<br />
created as a successor to Display Postscript. Because Postscript was linear,<br />
it was hard to parallelize. PDF is easier to parallelize.<br />
<br />
NeXT was the one that used Display Postscript first... NeXT was founded by<br />
Steve Jobs. OS X is Unix with Display PDF... And you can run X-Windows on top<br />
of that.<br />
<br />
X-Windows lets you open windows on remote computers. The way you create a<br />
window on your local computer is the same way that you open a window on a<br />
remote computer, 1000s of miles away. X is based on something called the X<br />
Window Protocol. It just happens to work locally as well (with some<br />
optimization like shared memory), but the messages were designed to work well<br />
over ethernet.<br />
<br />
This was created by folks that wanted to talk to hundreds of computers, such<br />
as the supercomputer in another room... but they wanted to see the windows<br />
on their own computer.<br />
<br />
Consider what you have to do to see a remote window in Windows. You fire up<br />
Remote Desktop Client, and you get the whole desktop remotely. If you want to<br />
do 10 computers, you end up with 10 windows with 10 desktops and 10 start<br />
buttons. This difference is a result of X-Windows being designed for networks<br />
and Windows being designed for one computer.<br />
<br />
The terminology for X-Windows is a bit backwards from what we're used to: The<br />
server is what we mostly think of of as a client. The server is what controls<br />
access to the display: it runs where your display is to control your display,<br />
mouse, keyboard... And to display a window, remotely or locally, you run a<br />
program known as a client in X-Windows which connects over the network to<br />
display a window on your X-Windows server.<br />
<br />
A funny thing about X is it took the abstraction to an extreme. The people who<br />
created X-Windows didn't know anything about usability or graphics or art. The<br />
original X-Windows tools were created by regular programmers. Technically<br />
underneath its very nice.. But they knew they didn't know, so they made it so<br />
the user could decide what it should look like themselves. So that you can<br />
just switch out a few programs and things keep on working.<br />
<br />
This means that when you do things like moving your mouse to a window -- what<br />
happens? Do you take focus or not? This is something known as click to focus.<br />
In older X Systems, you could just point your mouse there, and focus followed.<br />
This is potentially very efficient, but also very confusing if you're not used<br />
to it... Or how do you handle key sequences, or minimize? Who decides how to<br />
do this all? They had the idea of something called a Window Manager. This goes<br />
back to X Servers providing the technical minimums so that you're not limited<br />
to one behaviour. The Window Manager is just another X client, with some<br />
special privileges so it can run anywhere. It could run 1000s of miles away.<br />
<br />
This is why on Linux there's Gnome, KDE, etc. There's Motif, GTK, QT, IceWM,<br />
Aferstep, Blackbox, Sawfish, fvwm, twm. Etc. Other graphical toolkits too,<br />
abstracted away. These choices are all available there because the X-Windows<br />
people left it very open by not making the choice for us. This does make<br />
things a little confusing at times, though, because each application could<br />
have different assumptions.</div>Rhooperhttps://homeostasis.scs.carleton.ca/wiki/index.php?title=File:Comp3000-process-tree.png&diff=1446File:Comp3000-process-tree.png2007-09-18T00:40:49Z<p>Rhooper: Process Tree</p>
<hr />
<div>Process Tree</div>Rhooperhttps://homeostasis.scs.carleton.ca/wiki/index.php?title=Using_the_Operating_System&diff=1445Using the Operating System2007-09-18T00:16:53Z<p>Rhooper: </p>
<hr />
<div>These notes are still in the process of being posted.<br />
<br />
== Lecture 3: Using the Operating System ==<br />
<br />
=== Administrative ===<br />
<br />
==== Course Notes ====<br />
The course webpage has been changed to point to this wiki. Notes for lectures will continue to be posted here.<br />
<br />
We still need volunteers to take notes and put them up. Don't forget the up to 3% bonus for doing so.<br />
<br />
==== Lab 1 ====<br />
<br />
Lab 1 will be up soon. Starting tomorrow, there are labs. Please show up.<br />
<br />
If you're clever, you can probably find most of the answers online. Avoid looking up the answers<br />
though, because you'll learn much more than the just answers if you explore<br />
while using the computer.<br />
<br />
You'll do better on the tests if you do the labs.<br />
<br />
The point of this course is to build up a conceptual model of<br />
how computers work. This conceptual model is not made up of answers, its made up<br />
of connections. You'll start to make these connections by doing the labs.<br />
<br />
The Lab will posted as a PDF. You can print it out to bring with it with you.<br />
When you go to hand in the lab, print off your answers on a separate piece of paper.<br />
Answers will be due in two weeks.<br />
<br />
All functioning lab machines are running Debian Linux 4.0 (etch).<br />
They should be connected to the internet. They should have a browser on them<br />
called [IceWeasel http://en.wikipedia.org/wiki/Naming_conflict_between_Debian_and_Mozilla]. <br />
Its really Mozilla Firefox. Because Mozilla has trademarked the name Firefox,<br />
in order to use their name, you have to use exactly their binary distribution. Debian could<br />
have had a waiver, but because Debian is about freedom, Debian didn't want<br />
the users of Debian to be bound by the terms of the Firefox agreement.<br />
<br />
One thing you'll notice while studying operating systems is that there's a lot<br />
of culture. This is because users get used to a particular way of doing things.<br />
For example, lots of us are probably used to Windows and how it works. If<br />
you changed the fundamentals of how Windows worked, many of us would be unhappy.<br />
<br />
Some of the things we'll be studying are based on decisions made long ago, often <br />
arbitrarily of for a technical reason was true at the time.<br />
Even if it was wrong the, or is now wrong, we're often stuck with it.<br />
<br />
We're going to look at some of the baggage in the operating systems as we progress in this course.<br />
<br />
<br />
For the lab, we'll be given a set of questions in 2 parts.<br />
<br />
Part A we should be able to finish during the hour, give or take a few minutes.<br />
If it takes you 3-4 hours, you're probably doing something wrong.<br />
<br />
Part B will take longer. Will need more research, and a bit more reading. You<br />
should be working together. If you have trouble finding a buddy, talk to Dr.<br />
S. Talk to each other to learn. The purpose isn't just about the right<br />
answers, but more so about the operating systems.<br />
<br />
We're going to look at:<br />
<br />
- Processes, and how Unix deals with them.<br />
- How are the parts of the system divided up.<br />
- Dynamic libraries, where they are, where they fit in memory.<br />
- What are the dependencies.<br />
- How does the graphical subsystem fit in there. X-Windows, the classical<br />
Unix graphical environment.<br />
- Practice on the command line. (If you're wondering where these fit in<br />
in modern graphical environments, read Neal Stephenson's essay)<br />
<br />
Try to finish part A in the lab. <br />
Answers due in class 2 weeks from today.<br />
<br />
==== Term Paper ====<br />
<br />
For the Term Paper... You don't have to do a pure literature review. You could<br />
do an original operating system extension. There's one caveat: You've got<br />
to get what you're going to do with the professor first. You have to tell<br />
him a week before the outline is due Oct 22nd.<br />
<br />
What types of things is he thinking of: Say you wanted to implement a new<br />
file-system? This is inherently more work, because you still have to give a<br />
nice write-up. The report should still cite other work.<br />
<br />
All of us should have started the process by next week, even if its just<br />
googling for 15 minutes. Just google and see what results come up. IF you<br />
start now, you'll have time to pick a topic that you like, instead of the<br />
first thing that comes along. Its better to work on something you like,<br />
instead of stuck reading papers you're not interested in.<br />
<br />
If you want to find good OS papers:<br />
* USENIX association has a number of systems oriented conferences.<br />
** OSDI <br />
** USENIX Annual Technical Conference<br />
** LISA<br />
<br />
=== Using the Operating System ===<br />
<br />
Chapter 2 looks at the programming model of an operating system. <br />
The operating system provides certain abstractions to help programmers work with it.<br />
<br />
What are some examples of abstractions?<br />
<br />
==== Files ====<br />
<br />
A file is a metaphor. What was the original metaphor? The manilla<br />
coloured folder that we put paper in. Its interesting to note that a file is used<br />
to hold many pages or documents, but that a computer file is a single document. Instead, a directory<br />
holds many files, which are each generally one document. <br />
The metaphor hasn't made much sense for a long time, but it is still in use.<br />
<br />
What is a file? <br />
<br />
A file is a bytestream you can read and write from.<br />
<br />
We also have an abstraction called a byte, 256 possible values, 0-255.<br />
We as computer scientists think we can represent just about anything<br />
with these.<br />
<br />
; file : named bytestream(s). <br />
<br />
In modern operating systems there are potentially more than <br />
one bytestream in a file. When there is more than one bytestream, we<br />
call this a forked file.<br />
<br />
An early operating system that used forked files was OS 9.<br />
On a traditional system, you get a sequence of bytes<br />
when you open a file. In a forked file, when you read it, you get some data,<br />
but there is also other data hanging around. We'll talk about that later.<br />
<br />
The standard API calls for a file are:<br />
<br />
* open<br />
* read<br />
* write<br />
* close<br />
* seek<br />
<br />
As well as a other operations that one might need to perform on files, such as:<br />
* truncate<br />
* append - (seek to end of file and write)<br />
* execute<br />
<br />
Why open and close? Why can't we just operate on a filename? <br />
Because it (usually) takes a long time to go through the filesystem to find the files.<br />
Open and close are optimizations -- the abstraction is a stateful interface.<br />
You start by using open to obtain some sort of "handle" representing the file, <br />
and pass this "handle" value to read and write. When you're done, closing the <br />
file frees the resources allocated when opening the file. On most systems<br />
you can only have a specific number of files open at any given time.<br />
<br />
There are some filesystems where open and close don't do much of anything,<br />
such as some networked filesystems.<br />
<br />
File represent storage, on disks... They're random access. If they're random access<br />
like RAM, why don't we access disks like we access RAM? <br />
Why couldn't we just allocate objects as we need them? We could indeed do this, but<br />
it turns out that there's a reason that we don't generally do this.<br />
<br />
The file interface is a procedural interface. <br />
<br />
One nice things about files is they're a minimal functionality interface. The concept of<br />
minimal functionality is a recurring theme you'll find when we discuss filesystems. <br />
<br />
The abstraction used to interface the filesystem<br />
shouldn't prohibit you from creating particular forms of applications. If we chose <br />
to use an object model, we'd be implying you don't want to give arbitrary access to the<br />
data on disk, as objects tend to encapsulate their data.<br />
<br />
The abstraction listed above is the minimal abstraction for efficiently<br />
managing persistent storage (disks).<br />
<br />
This doesn't necessarily mean this is the most absolutely minimal abstraction. <br />
An even more minimal abstraction would be<br />
to just treat storage devices as a bunch of fixed size blocks. However, that's getting too low level,<br />
because now all programs have to worry about where they put files.<br />
<br />
Because the files abstract model is reasonably good, its stuck around for decades.<br />
<br />
Fundamentally, though, its a legacy. Some models of filesystems try to get<br />
away from it. Look at the PalmOS - it resisted having files for a long time, but eventually<br />
gave in to support removable media, but the primary OS and API still don't support files. <br />
Microsoft's been wanting to get away from the legacy files abstraction too, but <br />
somehow it doesn't seem to happen.<br />
<br />
===== Processes and Threads =====<br />
<br />
There's lots of other devices, but from an OS level, there are two other big ones:<br />
CPU and RAM. These two are generally abstracted with processes.<br />
The process is the basic abstraction in operating systems for these two,<br />
but is not the only abstraction. There are also threads.<br />
<br />
CPU + RAM are abstracted as:<br />
* processes<br />
* threads<br />
<br />
A process may have multiple threads. A thread shares memory with its processes.<br />
<br />
* A process is an exclusive allocation of CPU and RAM.<br />
* A thread is a non-exclusive allocation of RAM within a process,<br />
but is an exclusive allocation of CPU.<br />
* One or more threads constitute a process.<br />
<br />
Another way to talk about processes is in terms of address spaces and<br />
execution context: <br />
* An address space is just a virtual version of RAM. It may<br />
be instantiated in physical memory, it may not be. Its a set of addresses you<br />
can call your own. <br />
* Execution context is CPU state (Registers, processor status<br />
words, etc.). There's lots of state surrounding the processor when its running<br />
a program. This state can be saved, and then restored later to resume execution<br />
at a later time.<br />
<br />
* A thread is one execution context matched with an address space.<br />
* A process is one or more execution contexts plus an address space.<br />
* A single-threaded process has one execution context, and one address space.<br />
* A multithreaded process has multiple execution contexts, and one address space.<br />
<br />
The concept of multiple address spaces is somewhat new in modern computing.<br />
However, if you go back to the old days of MS-DOS, there was only one address space, the<br />
physical address space. We used to have things like TSRs, a 640kb limit,<br />
etc. There was no virtualization of memory. In order to run at the same<br />
time, they had to co-exist in the physical memory address space.<br />
<br />
If you don't have multiple address spaces, you don't have processes and threads.<br />
At best, you have threads, sharing the one address space you have.<br />
<br />
Historically, threads were abstracted differently than now: These are<br />
capitalized here to differentiate them from the newer terms: FORK, JOIN, QUIT.<br />
<br />
Why FORK? Think of a fork in the road. You're going along, then things split.<br />
A FORK is supposed to represent that split.<br />
<br />
By FORKing, the main thing to note is that you're creating two execution<br />
contexts, that may be sharing memory. The execution may start at the same<br />
place, but may be diverging. How do you stop creating more and more and more<br />
of these, to bring them back under control or stop them? That's the JOIN<br />
operation. Each thread tracks how many threads are running, if you JOIN and<br />
you're not the last one running, you just go away, otherwise you need to<br />
synchronize back into the main thread.<br />
<br />
What's QUIT? QUIT stops the the whole program -- all execution. It will cut<br />
all threads off, even if the thread is one of the branches and not the main<br />
thread.<br />
<br />
This was one of the earliest ways to abstract multiple execution context.<br />
<br />
What if, when you did the fork, you made a copy of the entire process? There<br />
are now two separate instances of the program, with the same state? The<br />
difference here, is if you quit one, the other will stay around -- but the<br />
difference is more profound: they're not sharing the same address space (nor<br />
execution context). This is the Unix model of processes.<br />
<br />
In the Unix process model the system starts with only one process: init. It<br />
starts running, then it creates a copy of itself with fork, then another, etc.<br />
<br />
TODO: diagram<br />
<br />
In this diagram, What is the value of ''x?'' on the bottom-left-most branch?<br />
''x'' is 5 in the Unix process model. However, if this was multithreaded,<br />
''x'' could be 7 or 5, depending on how fast the threads are running. It might<br />
be 5 if the thread asking for the value of ''x'' runs before the thread setting ''x''<br />
to 7. This is known as a race condition, <br />
because we don't know which thread will run or finish first.<br />
<br />
In Unix, they decided to make it easy and have different processes. These<br />
processes can't change the state of their parents or children. <br />
To share a value, you have to set the value before forking. (Or through other means)<br />
<br />
There's a small glitch with what we've said so far about Unix processes: That<br />
they have exactly the same state when you fork. If this was true, they'd<br />
always do the same thing. How do they know that they're different?<br />
<br />
Turns out that Unix fork is very simple, yet it helps with this.<br />
The idiom you'll usually see is:<br />
<br />
pid = fork();<br />
<br />
fork takes no arguments.<br />
<br />
When you fork, the result of fork is the pid (process ID) of the new process,<br />
or 0 if you're the child.<br />
<br />
The tree of processes effectively becomes a family tree. (However, with some<br />
bizarre genealogy that we'll see later)<br />
<br />
What you usually do is check the value of pid, and if its 0, do one thing,<br />
otherwise do something else. If pid is nonzero, it is the pid of the child<br />
process we just created by forking. You usually use this to track your child.<br />
The classic use of fork is to create disposable children that do a specific<br />
task for a short while, then go away.<br />
<br />
The nice thing about this model is that it keeps things separate. You don't<br />
need to worry about what the child is doing. If you want to communicate, you<br />
have to explicitly set up to do this. There are some standard ways of doing<br />
that communication. We'll look at these later too.<br />
<br />
So now we know how to make new processes? How do we do something different? In<br />
principle we don't need anything else. We could open a file, read new code,<br />
then jump to the new code. However, we have the idea of exec(). <br />
Exec replaces the running program with the specified program, but preserves<br />
the pid.<br />
<br />
In Unix, to start a new program you usually fork() then you exec() the desired<br />
program on the child. If you don't fork() first, then exec() will kill the<br />
original process, replacing it with the program you called exec on.<br />
<br />
Exec causes the kernel to throw away the old address space, and give a new<br />
address space, with the new binary. The pid stays the same though.<br />
<br />
The Windows equivalent is CreateProcess()<br />
<br />
CreateProcess() takes lots of arguments about how to create the new<br />
process (what to load, permissions, etc). Fork takes none. With fork(), <br />
you can set things up yourself, and most of the settings will carry over to<br />
the new program. (Including open files). Note how different these two are.<br />
<br />
In Unix, you have the building blocks to do things, and you have to put them<br />
together yourself. In Windows, you have the single API call to do them all at<br />
once. Neither is strictly right or wrong.<br />
<br />
On older systems, when a big process was forked, everything was copied. On<br />
newer systems, fork doesn't necessarily copy everything. With virtual memory<br />
you can share much of the memory between two processes.<br />
<br />
In older APIs there was vfork() - suspend parent, fork, exec, then let the<br />
parent and child both start to go again. This idea avoided the copying when<br />
the first thing you were going to do was exec.<br />
<br />
The basic idea to make this efficient is that the descriptions of the virtual<br />
memory address spaces don't have to be mutually exclusive. You could have<br />
10 programs sharing portions of their address space -- such as the read-only<br />
portions like the program code, but not the read-write portions.<br />
<br />
What if you didn't want to do an exec after forking? A classic one is a<br />
daemon. One listening on the network for an incoming connection. When that<br />
incoming request comes in, the main program can deal with the request, but it<br />
would also have to keep checking for more requests at the same time. Instead,<br />
in Unix the typically idiom is to fork off a child to process that connection,<br />
and then go back and wait for more.<br />
<br />
You can have shared memory. But the default model for processes is<br />
that nothing is shared, but the threading model is everything is shared.<br />
For threads you have to implement protections, but for processes, you have to<br />
opt-in to share.<br />
<br />
Processes win out on reliability: fewer chances for errors. You control<br />
exactly what state is shared.<br />
<br />
Another thing we'll talk about later regarding threads versus processes is<br />
how does this play on multiple cores? This depends on the implementation,<br />
and sometimes is a little tricky.<br />
<br />
Chapter two is talking about the model presented to the programmer. An API<br />
for your processes and threads to talk to the world.<br />
<br />
This course is fundamentally about how these things are implemented. Its<br />
useful to know about these tricks, so that you know how the computer is used.<br />
It turns out the same tricks are useful in lots of other circumstances. Such<br />
as concurrency - when you have to deal with an application that has to deal<br />
with this - which happens to be most applications. You'll learn this because<br />
the OS guys did this first.<br />
<br />
<br />
==== Graphics ====<br />
<br />
This part of the lecture should help you with the lab. Its about graphics.<br />
<br />
We've talked about some standard abstractions so far: files, processes, threads.<br />
<br />
However, the thing you really interact with is the keyboard, mouse, and<br />
display. In the standard Unix model, these are not a part of the operating<br />
system. They're implemented in an application.<br />
<br />
The Unix philosophy is that if you don't have to put it in the kernel,<br />
don't put it there, or if you do, make it interchangeable.<br />
<br />
The standard way to do graphics in Unix is X-Windows, or X for short.<br />
Before X there was the W system. There was a Y system at one point,<br />
as well as Sun NeWs.<br />
<br />
There was also a system called Display Postscript. Postscript is a<br />
fully fledged programming language. Originally used for printers.<br />
It was developed for laser printers, by a little company called Adobe.<br />
When laser printers came out, they had really high resolutions. It was<br />
hard to get the data necessary to print a page to the printer fast<br />
enough... So postscript programs were sent to the printer. In the<br />
early days of the MacIntosh, the processor in the printer was more powerful<br />
than the processor in the computer. Postscript is a funny little language.<br />
Its a post-fix operator language. Instead of saying things like "4+5" you<br />
say "4 5 +" -- you push them onto the stack, then run an operator on them.<br />
The same with function calls.<br />
<br />
In the 80s, there were many competing technologies for how to do graphics<br />
in the Unix world. X won. But Display Postscript also kind of won,<br />
because Macs use Display PDF in a system called Quartz, which was<br />
created as a successor to Display Postscript. Because Postscript was linear,<br />
it was hard to parallelize. PDF is easier to parallelize.<br />
<br />
NeXT was the one that used Display Postscript first... NeXT was founded by<br />
Steve Jobs. OS X is Unix with Display PDF... And you can run X-Windows on top<br />
of that.<br />
<br />
X-Windows lets you open windows on remote computers. The way you create a<br />
window on your local computer is the same way that you open a window on a<br />
remote computer, 1000s of miles away. X is based on something called the X<br />
Window Protocol. It just happens to work locally as well (with some<br />
optimization like shared memory), but the messages were designed to work well<br />
over ethernet.<br />
<br />
This was created by folks that wanted to talk to hundreds of computers, such<br />
as the supercomputer in another room... but they wanted to see the windows<br />
on their own computer.<br />
<br />
Consider what you have to do to see a remote window in Windows. You fire up<br />
Remote Desktop Client, and you get the whole desktop remotely. If you want to<br />
do 10 computers, you end up with 10 windows with 10 desktops and 10 start<br />
buttons. This difference is a result of X-Windows being designed for networks<br />
and Windows being designed for one computer.<br />
<br />
The terminology for X-Windows is a bit backwards from what we're used to: The<br />
server is what we mostly think of of as a client. The server is what controls<br />
access to the display: it runs where your display is to control your display,<br />
mouse, keyboard... And to display a window, remotely or locally, you run a<br />
program known as a client in X-Windows which connects over the network to<br />
display a window on your X-Windows server.<br />
<br />
A funny thing about X is it took the abstraction to an extreme. The people who<br />
created X-Windows didn't know anything about usability or graphics or art. The<br />
original X-Windows tools were created by regular programmers. Technically<br />
underneath its very nice.. But they knew they didn't know, so they made it so<br />
the user could decide what it should look like themselves. So that you can<br />
just switch out a few programs and things keep on working.<br />
<br />
This means that when you do things like moving your mouse to a window -- what<br />
happens? Do you take focus or not? This is something known as click to focus.<br />
In older X Systems, you could just point your mouse there, and focus followed.<br />
This is potentially very efficient, but also very confusing if you're not used<br />
to it... Or how do you handle key sequences, or minimize? Who decides how to<br />
do this all? They had the idea of something called a Window Manager. This goes<br />
back to X Servers providing the technical minimums so that you're not limited<br />
to one behaviour. The Window Manager is just another X client, with some<br />
special privileges so it can run anywhere. It could run 1000s of miles away.<br />
<br />
This is why on Linux there's Gnome, KDE, etc. There's Motif, GTK, QT, IceWM,<br />
Aferstep, Blackbox, Sawfish, fvwm, twm. Etc. Other graphical toolkits too,<br />
abstracted away. These choices are all available there because the X-Windows<br />
people left it very open by not making the choice for us. This does make<br />
things a little confusing at times, though, because each application could<br />
have different assumptions.</div>Rhooperhttps://homeostasis.scs.carleton.ca/wiki/index.php?title=Introduction&diff=1442Introduction2007-09-16T18:14:49Z<p>Rhooper: </p>
<hr />
<div>== Introduction ==<br />
<br />
[[Class Outline#Introduction|Last class]], we began talking about turning the machine we have into the machine we want.<br />
<br />
What are some properties of the machine that we want?<br />
<br />
- usable / accessible<br />
- stable / reliable<br />
- functional (access to underlying resources)<br />
- efficient<br />
- customizable<br />
- secure<br />
- multitasking<br />
- portability<br />
<br />
If you have a computer that doesn't let you access the hardware, eg. a<br />
keyboard or video camera, it isn't very functional. Multitasking is slightly different than efficiency. <br />
For portability, do you really want to have to rewrite applications to support<br />
slight variations in the hardware such as different size hard disks and different<br />
amounts of RAM?<br />
<br />
Operating systems don't do all of these perfectly, but they tend to do a lot<br />
of these at least acceptably.<br />
<br />
If you look at the introduction to the text book, it talks about various<br />
types of operatings systems. Some of the operating systems we know about are:<br />
Linux, Windows, MacOSX, VXWorks, QNX, MS-DOS, Soliaris/xBSD, OS/2, BeOS, VMS,<br />
MVS, OS/370, AIX, etc.<br />
<br />
Linux isn't a variety of different operating systems to the same degree as the <br />
different versions of windows, as most linuxes share some components, whereas windows tends not to.<br />
<br />
Of the list above, most of them are modern operating systems, except MS-DOS.<br />
To be a "modern" OS, there are two major qualities: Does it have protected<br />
memory, and does it have pre-emptive multitasking?<br />
<br />
=== Protected Memory ===<br />
<br />
What is protected memory? <br />
<br />
Student: A situation where each program and the operating system has its own memory, and the OS prevents<br />
other programs from writing to another program's memory. <br />
<br />
Dr. Somayaji: Access mechanisms to avoid having one program overwrite another program's memory.<br />
<br />
This lets you have a situation where if one program crashes, you can just restart it. Damage due to<br />
memory overwrites is limited to one program.<br />
<br />
=== Preemptive Multi-tasking ===<br />
<br />
A way to have more than one program run at a time. Older machines were known<br />
as batch machines and their operating systems were batch operating systems.<br />
These ran tasks that took a long time to run. These were queued up, and run<br />
one at a time in sequence. These were typically things such things as payroll and accounts receivable.<br />
Usually these would be run overnight and the output, either on magnetic tape or a<br />
stack of printouts which would be returned to the user in the morning.<br />
<br />
Preemptive multitasking - the OS enforces time sharing.<br />
Co-operative multitasking - each program lets others run.<br />
<br />
If you look at MS-DOS, there are batch files. These are just a sequence of<br />
commands to run. It runs them and then returns when done. <br />
<br />
If you want to run a GUI, however, a batch system is unlikely to be what you want, as<br />
a GUI environment tends to be interactive. <br />
<br />
With the big iron in the old days they had big computers that would be sitting<br />
mostly idle, except when running the batch jobs. The idea of time sharing came along around then.<br />
<br />
=== Structure of a computer ===<br />
<br />
[[Image:Stored_program_architecture_1.png]]<br />
Stored Program architecture<br />
<br />
The stored program architecture with today's computers is a bit of a fiction.<br />
<br />
The things the microprocessor does are significantly faster than the RAM<br />
storage. Modern computers have to wait for data from RAM. However this time is<br />
dwarfed by the time spent waiting for I/O. This is because I/O devices tend to be mechanical:<br />
printers, hard disks, people at keyboards.<br />
<br />
This helped cause the idea "what if we had multiple users and let them share the CPU" to come<br />
about. This is time-sharing. On modern computers, we do this too, but instead<br />
of sharing with multiple users we run multiple programs for a single user --<br />
multi-tasking.<br />
<br />
In older systems such as Win3.1 and MacOS 9, this was co-operative multi-tasking.<br />
When things started running, they'd hog the CPU until they decided they were<br />
ready to give up the CPU. <br />
<br />
There used to be a great feature in the Mac in the old days where if you held<br />
down the mouse button, no networking would happen. This was because the<br />
program running at the time was hogging the CPU when the mouse button was pressed.<br />
In pre-emptive multitasking, you get booted out periodically so that the<br />
system can spend time paying attention to the network, to do animations, or<br />
to let other applications run. It spends a millisecond here, a millisecond there,<br />
etc. Instead of actually running simultaneously, they're periodically running, but <br />
they seem to run simultaneously to the end-user.<br />
<br />
Sometimes you have 2 or more CPUs, but you have more than 2 things going on... <br />
<br />
=== Processes and the Kernel ===<br />
<br />
Processes are fundamentally the things that get multitasked and protected. It<br />
is the abstraction of a running program. This is what makes an operating<br />
system modern. In the old days, you had one memory space and the OS and its<br />
applications were all sharing the CPU and memory. Now, with a process model,<br />
there are barriers all over the place, and more importantly, something/someone<br />
in charge governing the process. It's not a free-for all, it has a dictator,<br />
and its name is the kernel.<br />
<br />
Kernel as in the center piece.<br />
<br />
Question to class: How many people have heard of the term Microkernel? <br />
Not many hands.<br />
<br />
There are various terms that modify the term kernel such as monolithic kernel, microkernel,<br />
picokernel, etc. These specify how much stuff is in the microkernel.<br />
The idea is that the more code is in the kernel, the faster it goes, but<br />
conversely, that the more code there is the risk of crashing is higher.<br />
<br />
All of the problem code goes into processes, as they can be restarted, and kept<br />
out of the kernel.<br />
<br />
The debate about what is faster is not fully settled for technical and philosophical reasons.<br />
Almost all operating systems on the list above are big kernels, not small ones.<br />
<br />
So if that's what a kernel is, how does a program fit into that?<br />
If there's one program to rule them all, where do processes fit in?<br />
The kernel decides who gets to run, that implements a priority scheme.<br />
<br />
Student: "It got there first. You start the computer, then the kernel gets in. Everything has to<br />
talk to it or it doesn't run..."<br />
<br />
It gets to set the rules... that's sort of it... <br />
In unix, there's the idea of the init process. It is first to run, and has<br />
special responsibilities. It is run using a regular binary, at system boot,<br />
by the kernel. This still doesn't tell us how the kernel keeps control of it.<br />
<br />
The kernel often keeps control by getting the hardware to help. By loading first,<br />
the kernel can setup the CPU and memory so that it has control. This<br />
type of hardware assistance is generally available to the first code to<br />
request it.<br />
<br />
=== Interrupts ===<br />
<br />
Interrupts -- what are they? It's an alert to say something has to be done now.<br />
<br />
A CPU is running the programs, until something happens, like someone pressing<br />
a key or a network packet arrives. So an I/O device flags an interrupt. The CPU<br />
now has to stop and pay attention<br />
<br />
An interrupt is just a mechanism to allow the CPU to change contexts, to switch<br />
from running one bit of code to another. There's a standard set of interrupts<br />
defined by the hardware. Associated with each interrupt there's a bit of code.<br />
When one interrupts happens, run its code, when another happens, run another. <br />
For example, for the keyboard, there's a routine to read a key from the keyboard, store it in<br />
a buffer so its not overwritten when the next key is pressed, then returns.<br />
<br />
{|align="right"<br />
|[[Image:Stored_program_architecture_2.png]]<br />
|}<br />
Think of an interrupt as a little kid pulling at your pant leg. It wants your attention now.<br />
<br />
The OS controls interrupts to control the CPU (and also what happens with RAM).<br />
<br />
Wait a second? If the kernel can only control interrupts, how can it keep<br />
general control if no interrupts happen? The clock IO device! It throws<br />
interrupts too.<br />
<br />
As a part of the boot sequence, the kernel programs the clock to wake the<br />
operating system up every, say, 100th of a second. Call me! So the OS can<br />
then keep running and perform its tasks as it needs:<br />
"Is everyone behaving nicely? Do I need to kill anyone?"<br />
<br />
=== Virtual Memory ===<br />
<br />
A slight fly in the ointment: If you are a program, and want to take control,<br />
how do you mount a rebellion? You overwrite the interrupt table! This is<br />
where protected memory comes in. It prevents a regular program from doing this.<br />
As a regular process, you often can't even see the interrupt table.<br />
<br />
How is that possible? Many schemes have been proposed for doing protected<br />
memory. Some variants will be spoken about, but the most widespread method <br />
is something known as virtual memory. Often tied into the concept of<br />
virtual memory is the ability to use disk for memory too.<br />
<br />
The fundamental idea is that the address you think your instruction or variable is at in memory is<br />
fictional/virtual. Say you want to load from address 2000 and load it into a register, and you<br />
have another program that want to do the same thing, are they doing the same thing?<br />
Nope! They have nothing to do with each other in a virtual memory model.<br />
Both programs live in their own virtual worlds, and can't see each other.<br />
The kernel, with the help of a little piece of hardware called the MMU <br />
is able to give each process its own virtual view of memory. It decides<br />
how that's going to map to real memory as it sees it.<br />
<br />
So the kernel controls interrupts to control IO and it controls memory.<br />
These are the two key controls. If a kernel can't control these, it<br />
can't properly provide protections ("It can't stop the rebellion").<br />
<br />
Last class we talked about hypervisors. The whole idea there is that the<br />
kernel thinks that it has control of the interrupt table and the real<br />
MMU are actually virtual ones, provided by the Hypervisor.<br />
<br />
So you can now run windows inside a window on Linux, OSX, etc.<br />
<br />
<br />
The difference between the various versions of windows:<br />
<br />
- Windows 95, Windows 98 implemented these ideas for some programs, but not all, and<br />
could get around it easily.<br />
- Windows 3.1 didn't have these.<br />
- Windows XP, Vista are modern.<br />
<br />
There's one small problem with Vista and XP, however. <br />
This has to do with the nature of the processes:<br />
<br />
{|align="right"<br />
|[[Image:Processes_and_kernel.png]]<br />
|}<br />
To upgrade things, the kernel trusts some programs/users to allow them to<br />
upgrade. In windows, you tend to run as the user admin. This means you're<br />
running the equivalent of the unix root command. The kernel listens to you<br />
and does just about anything you want, including install programs. <br />
<br />
Say that cute Christmas animation.. which happens to install a keylogger<br />
to send all your keystrokes to the other side of the world, so they can<br />
log into your bank account.<br />
<br />
In unix, there's the concept of root users and non-root users. Root can<br />
ask for almost anything to be done, including change its code. If you can<br />
tell the kernel to load new code, you can pretty much do anything. As<br />
an unpriviledged user, the kernel/OS say no.<br />
<br />
When people make fun of windows being insecure, its not a fundamental flaw<br />
with the design of windows -- its a little broken, overly complex in some ways --<br />
but certain design choices along the way in the name of usability, such as<br />
running as admin users so that users don't need to be asked to do something<br />
special to change settings, install software, upgrade, etc.<br />
This is why we have the current spyware problem.<br />
<br />
Vista changes this slightly with the UAC (User Access Control) which runs<br />
a regular user with full priviledges, but asks you whenever priviledged<br />
operations need doing -- Yes/No. And you just click on it. But users<br />
still click yes. <br />
<br />
And now there's easy ways to turn off UAC completely. We'll talk about this more<br />
later when we talk about security.<br />
<br />
=== System Calls ===<br />
<br />
How do you talk to a kernel?<br />
<br />
It's the dictator and you're a supplicant. How do you make a timely request<br />
to the kernel to ask it to please do something? System calls!<br />
<br />
A system call is a standard mechanism for an application to talk to a kernel.<br />
<br />
A system call is NOT a function call. In your APIs and the like, it may look like<br />
a function call, may be wrapped in one.. But in implementation, they are very<br />
different.<br />
<br />
In order for the kernel to be in control, it has to run with special<br />
privileges and not give these to the user programs. There are various schemes,<br />
but the common one is a 1-bit option: User mode, or supervisor mode. User mode<br />
means that running as a regular program, you can't talk to the IO/interrupt<br />
vectors or talk tot he MMU, but you can run instructions and access your own<br />
memory. When you switch to supervisor mode, then everything is accessible. The<br />
kernel runs in supervisor mode.<br />
<br />
So if you're cut off and can't see the kernel, how do you send it a message?<br />
You might be able to write to a special place in memory that the kernel might<br />
check periodically, but how do you get it to check now? Normally the kernel<br />
is invoked by interrupts.. So as a user program, to invoke the kernel,<br />
you call an interrupt. There are special instructions, software interrupts,<br />
that are like a hardware interrupt, but software initiates them. There are<br />
interrupt tables just like for hardware.<br />
<br />
So the kernel can then look at the memory of the invoking user program when a<br />
user program calls the system call. Remember, because of the memory<br />
protections, you can't just jump into kernel code, so the only way in is via an<br />
interrupt.<br />
<br />
Therefore, system calls cause interrupts to invoke the kernel.<br />
<br />
In the process of doing a system call, the system has to do a lot of 'paperwork' <br />
to change context. System calls are expensive, very expensive. This is<br />
one of the things that tends to bound the performance of an operating system.<br />
<br />
Modern CPUs are so fast, shouldn't they be able to switch really fast?<br />
Turns out the tricks used to make modern CPUs really fast are like those<br />
used to make muscle cars -- they tend to go really fast in a straight line,<br />
but when you want to turn, you have to slow down to nearly a stop. Modern<br />
CPUs are like that.<br />
<br />
Interrupts cause all partial work done in parallel by modern CPUs to be<br />
thrown out, such as 10-20 or more instructions. The CPU has to fill the<br />
pipelines and resume. This stuff happens at a level below that of what the<br />
kernel runs at. The kernel saves its registers before switching context,<br />
so that it can resume later.</div>Rhooperhttps://homeostasis.scs.carleton.ca/wiki/index.php?title=Introduction&diff=1441Introduction2007-09-16T18:13:48Z<p>Rhooper: </p>
<hr />
<div>== Introduction ==<br />
<br />
[[Class Outline#Introduction|Last class]], we began talking about turning the machine we have into the machine we want.<br />
<br />
What are some properties of the machine that we want?<br />
<br />
- usable / accessible<br />
- stable / reliable<br />
- functional (access to underlying resources)<br />
- efficient<br />
- customizable<br />
- secure<br />
- multitasking<br />
- portability<br />
<br />
If you have a computer that doesn't let you access the hardware, eg. a<br />
keyboard or video camera, it isn't very functional. Multitasking is slightly different than efficiency. <br />
For portability, do you really want to have to rewrite applications to support<br />
slight variations in the hardware such as different size hard disks and different<br />
amounts of RAM?<br />
<br />
Operating systems don't do all of these perfectly, but they tend to do a lot<br />
of these at least acceptably.<br />
<br />
If you look at the introduction to the text book, it talks about various<br />
types of operatings systems. Some of the operating systems we know about are:<br />
Linux, Windows, MacOSX, VXWorks, QNX, MS-DOS, Soliaris/xBSD, OS/2, BeOS, VMS,<br />
MVS, OS/370, AIX, etc.<br />
<br />
Linux isn't a variety of different operating systems to the same degree as the <br />
different versions of windows, as most linuxes share some components, whereas windows tends not to.<br />
<br />
Of the list above, most of them are modern operating systems, except MS-DOS.<br />
To be a "modern" OS, there are two major qualities: Does it have protected<br />
memory, and does it have pre-emptive multitasking?<br />
<br />
=== Protected Memory ===<br />
<br />
What is protected memory? <br />
<br />
Student: A situation where each program and the operating system has its own memory, and the OS prevents<br />
other programs from writing to another program's memory. <br />
<br />
Dr. Somayaji: Access mechanisms to avoid having one program overwrite another program's memory.<br />
<br />
This lets you have a situation where if one program crashes, you can just restart it. Damage due to<br />
memory overwrites is limited to one program.<br />
<br />
=== Preemptive Multi-tasking ===<br />
<br />
A way to have more than one program run at a time. Older machines were known<br />
as batch machines and their operating systems were batch operating systems.<br />
These ran tasks that took a long time to run. These were queued up, and run<br />
one at a time in sequence. These were typically things such things as payroll and accounts receivable.<br />
Usually these would be run overnight and the output, either on magnetic tape or a<br />
stack of printouts which would be returned to the user in the morning.<br />
<br />
Preemptive multitasking - the OS enforces time sharing.<br />
Co-operative multitasking - each program lets others run.<br />
<br />
If you look at MS-DOS, there are batch files. These are just a sequence of<br />
commands to run. It runs them and then returns when done. <br />
<br />
If you want to run a GUI, however, a batch system is unlikely to be what you want, as<br />
a GUI environment tends to be interactive. <br />
<br />
With the big iron in the old days they had big computers that would be sitting<br />
mostly idle, except when running the batch jobs. The idea of time sharing came along around then.<br />
<br />
=== Structure of a computer ===<br />
<br />
[[Image:Stored_program_architecture_1.png]]<br />
Stored Program architecture<br />
<br />
The stored program architecture with today's computers is a bit of a fiction.<br />
<br />
The things the microprocessor does are significantly faster than the RAM<br />
storage. Modern computers have to wait for data from RAM. However this time is<br />
dwarfed by the time spent waiting for I/O. This is because I/O devices tend to be mechanical:<br />
printers, hard disks, people at keyboards.<br />
<br />
This helped cause the idea "what if we had multiple users and let them share the CPU" to come<br />
about. This is time-sharing. On modern computers, we do this too, but instead<br />
of sharing with multiple users we run multiple programs for a single user --<br />
multi-tasking.<br />
<br />
In older systems such as Win3.1 and MacOS 9, this was co-operative multi-tasking.<br />
When things started running, they'd hog the CPU until they decided they were<br />
ready to give up the CPU. <br />
<br />
There used to be a great feature in the Mac in the old days where if you held<br />
down the mouse button, no networking would happen. This was because the<br />
program running at the time was hogging the CPU when the mouse button was pressed.<br />
In pre-emptive multitasking, you get booted out periodically so that the<br />
system can spend time paying attention to the network, to do animations, or<br />
to let other applications run. It spends a millisecond here, a millisecond there,<br />
etc. Instead of actually running simultaneously, they're periodically running, but <br />
they seem to run simultaneously to the end-user.<br />
<br />
Sometimes you have 2 or more CPUs, but you have more than 2 things going on... <br />
<br />
=== Processes and the Kernel ===<br />
<br />
Processes are fundamentally the things that get multitasked and protected. It<br />
is the abstraction of a running program. This is what makes an operating<br />
system modern. In the old days, you had one memory space and the OS and its<br />
applications were all sharing the CPU and memory. Now, with a process model,<br />
there are barriers all over the place, and more importantly, something/someone<br />
in charge governing the process. It's not a free-for all, it has a dictator,<br />
and its name is the kernel.<br />
<br />
Kernel as in the center piece.<br />
<br />
Question to class: How many people have heard of the term Microkernel? <br />
Not many hands.<br />
<br />
There are various terms that modify the term kernel such as monolithic kernel, microkernel,<br />
picokernel, etc. These specify how much stuff is in the microkernel.<br />
The idea is that the more code is in the kernel, the faster it goes, but<br />
conversely, that the more code there is the risk of crashing is higher.<br />
<br />
All of the problem code goes into processes, as they can be restarted, and kept<br />
out of the kernel.<br />
<br />
The debate about what is faster is not fully settled for technical and philosophical reasons.<br />
Almost all operating systems on the list above are big kernels, not small ones.<br />
<br />
So if that's what a kernel is, how does a program fit into that?<br />
If there's one program to rule them all, where do processes fit in?<br />
The kernel decides who gets to run, that implements a priority scheme.<br />
<br />
Student: "It got there first. You start the computer, then the kernel gets in. Everything has to<br />
talk to it or it doesn't run..."<br />
<br />
It gets to set the rules... that's sort of it... <br />
In unix, there's the idea of the init process. It is first to run, and has<br />
special responsibilities. It is run using a regular binary, at system boot,<br />
by the kernel. This still doesn't tell us how the kernel keeps control of it.<br />
<br />
The kernel often keeps control by getting the hardware to help. By loading first,<br />
the kernel can setup the CPU and memory so that it has control. This<br />
type of hardware assistance is generally available to the first code to<br />
request it.<br />
<br />
=== Interrupts ===<br />
<br />
Interrupts -- what are they? It's an alert to say something has to be done now.<br />
<br />
A CPU is running the programs, until something happens, like someone pressing<br />
a key or a network packet arrives. So an I/O device flags an interrupt. The CPU<br />
now has to stop and pay attention<br />
<br />
An interrupt is just a mechanism to allow the CPU to change contexts, to switch<br />
from running one bit of code to another. There's a standard set of interrupts<br />
defined by the hardware. Associated with each interrupt there's a bit of code.<br />
When one interrupts happens, run its code, when another happens, run another. <br />
For example, for the keyboard, there's a routine to read a key from the keyboard, store it in<br />
a buffer so its not overwritten when the next key is pressed, then returns.<br />
<br />
Think of an interrupt as a little kid pulling at your pant leg. It wants your attention now.<br />
<br />
The OS controls interrupts to control the CPU (and also what happens with RAM).<br />
<br />
Wait a second? If the kernel can only control interrupts, how can it keep<br />
general control if no interrupts happen? The clock IO device! It throws<br />
interrupts too.<br />
<br />
As a part of the boot sequence, the kernel programs the clock to wake the<br />
operating system up every, say, 100th of a second. Call me! So the OS can<br />
then keep running and perform its tasks as it needs:<br />
"Is everyone behaving nicely? Do I need to kill anyone?"<br />
<br />
[[Image:Stored_program_architecture_2.png]]<br />
<br />
=== Virtual Memory ===<br />
<br />
A slight fly in the ointment: If you are a program, and want to take control,<br />
how do you mount a rebellion? You overwrite the interrupt table! This is<br />
where protected memory comes in. It prevents a regular program from doing this.<br />
As a regular process, you often can't even see the interrupt table.<br />
<br />
How is that possible? Many schemes have been proposed for doing protected<br />
memory. Some variants will be spoken about, but the most widespread method <br />
is something known as virtual memory. Often tied into the concept of<br />
virtual memory is the ability to use disk for memory too.<br />
<br />
The fundamental idea is that the address you think your instruction or variable is at in memory is<br />
fictional/virtual. Say you want to load from address 2000 and load it into a register, and you<br />
have another program that want to do the same thing, are they doing the same thing?<br />
Nope! They have nothing to do with each other in a virtual memory model.<br />
Both programs live in their own virtual worlds, and can't see each other.<br />
The kernel, with the help of a little piece of hardware called the MMU <br />
is able to give each process its own virtual view of memory. It decides<br />
how that's going to map to real memory as it sees it.<br />
<br />
So the kernel controls interrupts to control IO and it controls memory.<br />
These are the two key controls. If a kernel can't control these, it<br />
can't properly provide protections ("It can't stop the rebellion").<br />
<br />
Last class we talked about hypervisors. The whole idea there is that the<br />
kernel thinks that it has control of the interrupt table and the real<br />
MMU are actually virtual ones, provided by the Hypervisor.<br />
<br />
So you can now run windows inside a window on Linux, OSX, etc.<br />
<br />
<br />
The difference between the various versions of windows:<br />
<br />
- Windows 95, Windows 98 implemented these ideas for some programs, but not all, and<br />
could get around it easily.<br />
- Windows 3.1 didn't have these.<br />
- Windows XP, Vista are modern.<br />
<br />
There's one small problem with Vista and XP, however. <br />
This has to do with the nature of the processes:<br />
<br />
[[Image:Processes_and_kernel.png]]<br />
<br />
To upgrade things, the kernel trusts some programs/users to allow them to<br />
upgrade. In windows, you tend to run as the user admin. This means you're<br />
running the equivalent of the unix root command. The kernel listens to you<br />
and does just about anything you want, including install programs. <br />
<br />
Say that cute Christmas animation.. which happens to install a keylogger<br />
to send all your keystrokes to the other side of the world, so they can<br />
log into your bank account.<br />
<br />
In unix, there's the concept of root users and non-root users. Root can<br />
ask for almost anything to be done, including change its code. If you can<br />
tell the kernel to load new code, you can pretty much do anything. As<br />
an unpriviledged user, the kernel/OS say no.<br />
<br />
When people make fun of windows being insecure, its not a fundamental flaw<br />
with the design of windows -- its a little broken, overly complex in some ways --<br />
but certain design choices along the way in the name of usability, such as<br />
running as admin users so that users don't need to be asked to do something<br />
special to change settings, install software, upgrade, etc.<br />
This is why we have the current spyware problem.<br />
<br />
Vista changes this slightly with the UAC (User Access Control) which runs<br />
a regular user with full priviledges, but asks you whenever priviledged<br />
operations need doing -- Yes/No. And you just click on it. But users<br />
still click yes. <br />
<br />
And now there's easy ways to turn off UAC completely. We'll talk about this more<br />
later when we talk about security.<br />
<br />
=== System Calls ===<br />
<br />
How do you talk to a kernel?<br />
<br />
It's the dictator and you're a supplicant. How do you make a timely request<br />
to the kernel to ask it to please do something? System calls!<br />
<br />
A system call is a standard mechanism for an application to talk to a kernel.<br />
<br />
A system call is NOT a function call. In your APIs and the like, it may look like<br />
a function call, may be wrapped in one.. But in implementation, they are very<br />
different.<br />
<br />
In order for the kernel to be in control, it has to run with special<br />
privileges and not give these to the user programs. There are various schemes,<br />
but the common one is a 1-bit option: User mode, or supervisor mode. User mode<br />
means that running as a regular program, you can't talk to the IO/interrupt<br />
vectors or talk tot he MMU, but you can run instructions and access your own<br />
memory. When you switch to supervisor mode, then everything is accessible. The<br />
kernel runs in supervisor mode.<br />
<br />
So if you're cut off and can't see the kernel, how do you send it a message?<br />
You might be able to write to a special place in memory that the kernel might<br />
check periodically, but how do you get it to check now? Normally the kernel<br />
is invoked by interrupts.. So as a user program, to invoke the kernel,<br />
you call an interrupt. There are special instructions, software interrupts,<br />
that are like a hardware interrupt, but software initiates them. There are<br />
interrupt tables just like for hardware.<br />
<br />
So the kernel can then look at the memory of the invoking user program when a<br />
user program calls the system call. Remember, because of the memory<br />
protections, you can't just jump into kernel code, so the only way in is via an<br />
interrupt.<br />
<br />
Therefore, system calls cause interrupts to invoke the kernel.<br />
<br />
In the process of doing a system call, the system has to do a lot of 'paperwork' <br />
to change context. System calls are expensive, very expensive. This is<br />
one of the things that tends to bound the performance of an operating system.<br />
<br />
Modern CPUs are so fast, shouldn't they be able to switch really fast?<br />
Turns out the tricks used to make modern CPUs really fast are like those<br />
used to make muscle cars -- they tend to go really fast in a straight line,<br />
but when you want to turn, you have to slow down to nearly a stop. Modern<br />
CPUs are like that.<br />
<br />
Interrupts cause all partial work done in parallel by modern CPUs to be<br />
thrown out, such as 10-20 or more instructions. The CPU has to fill the<br />
pipelines and resume. This stuff happens at a level below that of what the<br />
kernel runs at. The kernel saves its registers before switching context,<br />
so that it can resume later.</div>Rhooperhttps://homeostasis.scs.carleton.ca/wiki/index.php?title=Introduction&diff=1440Introduction2007-09-16T18:09:57Z<p>Rhooper: </p>
<hr />
<div>== Introduction ==<br />
<br />
[[Class Outline#Introduction|Last class]], we began talking about turning the machine we have into the machine we want.<br />
<br />
What are some properties of the machine that we want?<br />
<br />
- usable / accessible<br />
- stable / reliable<br />
- functional (access to underlying resources)<br />
- efficient<br />
- customizable<br />
- secure<br />
- multitasking<br />
- portability<br />
<br />
If you have a computer that doesn't let you access the hardware, eg. a<br />
keyboard or video camera, it isn't very functional. Multitasking is slightly different than efficiency. <br />
For portability, do you really want to have to rewrite applications to support<br />
slight variations in the hardware such as different size hard disks and different<br />
amounts of RAM?<br />
<br />
Operating systems don't do all of these perfectly, but they tend to do a lot<br />
of these at least acceptably.<br />
<br />
If you look at the introduction to the text book, it talks about various<br />
types of operatings systems. Some of the operating systems we know about are:<br />
Linux, Windows, MacOSX, VXWorks, QNX, MS-DOS, Soliaris/xBSD, OS/2, BeOS, VMS,<br />
MVS, OS/370, AIX, etc.<br />
<br />
Linux isn't a variety of different operating systems to the same degree as the <br />
different versions of windows, as most linuxes share some components, whereas windows tends not to.<br />
<br />
Of the list above, most of them are modern operating systems, except MS-DOS.<br />
To be a "modern" OS, there are two major qualities: Does it have protected<br />
memory, and does it have pre-emptive multitasking?<br />
<br />
=== Protected Memory ===<br />
<br />
What is protected memory? <br />
<br />
Student: A situation where each program and the operating system has its own memory, and the OS prevents<br />
other programs from writing to another program's memory. <br />
<br />
Dr. Somayaji: Access mechanisms to avoid having one program overwrite another program's memory.<br />
<br />
This lets you have a situation where if one program crashes, you can just restart it. Damage due to<br />
memory overwrites is limited to one program.<br />
<br />
=== Preemptive Multi-tasking ===<br />
<br />
A way to have more than one program run at a time. Older machines were known<br />
as batch machines and their operating systems were batch operating systems.<br />
These ran tasks that took a long time to run. These were queued up, and run<br />
one at a time in sequence. These were typically things such things as payroll and accounts receivable.<br />
Usually these would be run overnight and the output, either on magnetic tape or a<br />
stack of printouts which would be returned to the user in the morning.<br />
<br />
Preemptive multitasking - the OS enforces time sharing.<br />
Co-operative multitasking - each program lets others run.<br />
<br />
If you look at MS-DOS, there are batch files. These are just a sequence of<br />
commands to run. It runs them and then returns when done. <br />
<br />
If you want to run a GUI, however, a batch system is unlikely to be what you want, as<br />
a GUI environment tends to be interactive. <br />
<br />
With the big iron in the old days they had big computers that would be sitting<br />
mostly idle, except when running the batch jobs. The idea of time sharing came along around then.<br />
<br />
=== Structure of a computer ===<br />
<br />
[[Image:Stored_program_architecture_1.png]]<br />
Stored Program architecture<br />
<br />
The stored program architecture with today's computers is a bit of a fiction.<br />
<br />
The things the microprocessor does are significantly faster than the RAM<br />
storage. Modern computers have to wait for data from RAM. However this time is<br />
dwarfed by the time spent waiting for I/O. This is because I/O devices tend to be mechanical:<br />
printers, hard disks, people at keyboards.<br />
<br />
This helped cause the idea "what if we had multiple users and let them share the CPU" to come<br />
about. This is time-sharing. On modern computers, we do this too, but instead<br />
of sharing with multiple users we run multiple programs for a single user --<br />
multi-tasking.<br />
<br />
In older systems such as Win3.1 and MacOS 9, this was co-operative multi-tasking.<br />
When things started running, they'd hog the CPU until they decided they were<br />
ready to give up the CPU. <br />
<br />
There used to be a great feature in the Mac in the old days where if you held<br />
down the mouse button, no networking would happen. This was because the<br />
program running at the time was hogging the CPU when the mouse button was pressed.<br />
In pre-emptive multitasking, you get booted out periodically so that the<br />
system can spend time paying attention to the network, to do animations, or<br />
to let other applications run. It spends a millisecond here, a millisecond there,<br />
etc. Instead of actually running simultaneously, they're periodically running, but <br />
they seem to run simultaneously to the end-user.<br />
<br />
Sometimes you have 2 or more CPUs, but you have more than 2 things going on... <br />
<br />
=== Processes and the Kernel ===<br />
<br />
Processes are fundamentally the things that get multitasked and protected. It<br />
is the abstraction of a running program. This is what makes an operating<br />
system modern. In the old days, you had one memory space and the OS and its<br />
applications were all sharing the CPU and memory. Now, with a process model,<br />
there are barriers all over the place, and more importantly, something/someone<br />
in charge governing the process. It's not a free-for all, it has a dictator,<br />
and its name is the kernel.<br />
<br />
Kernel as in the center piece.<br />
<br />
Question to class: How many people have heard of the term Microkernel? <br />
Not many hands.<br />
<br />
There are various terms that modify the term kernel such as monolithic kernel, microkernel,<br />
picokernel, etc. These specify how much stuff is in the microkernel.<br />
The idea is that the more code is in the kernel, the faster it goes, but<br />
conversely, that the more code there is the risk of crashing is higher.<br />
<br />
All of the problem code goes into processes, as they can be restarted, and kept<br />
out of the kernel.<br />
<br />
The debate about what is faster is not fully settled for technical and philosophical reasons.<br />
Almost all operating systems on the list above are big kernels, not small ones.<br />
<br />
So if that's what a kernel is, how does a program fit into that?<br />
If there's one program to rule them all, where do processes fit in?<br />
The kernel decides who gets to run, that implements a priority scheme.<br />
<br />
Student: "It got there first. You start the computer, then the kernel gets in. Everything has to<br />
talk to it or it doesn't run..."<br />
<br />
It gets to set the rules... that's sort of it... <br />
In unix, there's the idea of the init process. It is first to run, and has<br />
special responsibilities. It is run using a regular binary, at system boot,<br />
by the kernel. This still doesn't tell us how the kernel keeps control of it.<br />
<br />
The kernel often keeps control by getting the hardware to help. By loading first,<br />
the kernel can setup the CPU and memory so that it has control. This<br />
type of hardware assistance is generally available to the first code to<br />
request it.<br />
<br />
=== Interrupts ===<br />
<br />
Interrupts -- what are they? It's an alert to say something has to be done now.<br />
<br />
A CPU is running the programs, until something happens, like someone pressing<br />
a key or a network packet arrives. So an I/O device flags an interrupt. The CPU<br />
now has to stop and pay attention<br />
<br />
An interrupt is just a mechanism to allow the CPU to change contexts, to switch<br />
from running one bit of code to another. There's a standard set of interrupts<br />
defined by the hardware. Associated with each interrupt there's a bit of code.<br />
When one interrupts happens, run its code, when another happens, run another. <br />
For example, for the keyboard, there's a routine to read a key from the keyboard, store it in<br />
a buffer so its not overwritten when the next key is pressed, then returns.<br />
<br />
Think of an interrupt as a little kid pulling at your pant leg. It wants your attention now.<br />
<br />
The OS controls interrupts to control the CPU (and also what happens with RAM).<br />
<br />
Wait a second? If the kernel can only control interrupts, how can it keep<br />
general control if no interrupts happen? The clock IO device! It throws<br />
interrupts too.<br />
<br />
As a part of the boot sequence, the kernel programs the clock to wake the<br />
operating system up every, say, 100th of a second. Call me! So the OS can<br />
then keep running and perform its tasks as it needs:<br />
"Is everyone behaving nicely? Do I need to kill anyone?"<br />
<br />
[[Image:Stored_program_architecture_2.png]]<br />
<br />
=== Virtual Memory ===<br />
<br />
A slight fly in the ointment: If you are a program, and want to take control,<br />
how do you mount a rebellion? You overwrite the interrupt table! This is<br />
where protected memory comes in. It prevents a regular program from doing this.<br />
As a regular process, you often can't even see the interrupt table.<br />
<br />
How is that possible? Many schemes have been proposed for doing protected<br />
memory. Some variants will be spoken about, but the most widespread method <br />
is something known as virtual memory. Often tied into the concept of<br />
virtual memory is the ability to use disk for memory too.<br />
<br />
The fundamental idea is that the address you think your instruction or variable is at in memory is<br />
fictional/virtual. Say you want to load from address 2000 and load it into a register, and you<br />
have another program that want to do the same thing, are they doing the same thing?<br />
Nope! They have nothing to do with each other in a virtual memory model.<br />
Both programs live in their own virtual worlds, and can't see each other.<br />
The kernel, with the help of a little piece of hardware called the MMU <br />
is able to give each process its own virtual view of memory. It decides<br />
how that's going to map to real memory as it sees it.<br />
<br />
So the kernel controls interrupts to control IO and it controls memory.<br />
These are the two key controls. If a kernel can't control these, it<br />
can't properly provide protections ("It can't stop the rebellion").<br />
<br />
Last class we talked about hypervisors. The whole idea there is that the<br />
kernel thinks that it has control of the interrupt table and the real<br />
MMU are actually virtual ones, provided by the Hypervisor.<br />
<br />
So you can now run windows inside a window on Linux, OSX, etc.<br />
<br />
<br />
The difference between the various versions of windows:<br />
<br />
- Windows 95, Windows 98 implemented these ideas for some programs, but not all, and<br />
could get around it easily.<br />
- Windows 3.1 didn't have these.<br />
- Windows XP, Vista are modern.<br />
<br />
There's one small problem with Vista and XP, however. <br />
This has to do with the nature of the processes:<br />
<br />
[[Image:Processes_and_kernel.png]]<br />
<br />
To upgrade things, the kernel trusts some programs/users to allow them to<br />
upgrade. In windows, you tend to run as the user admin. This means you're<br />
running the equivalent of the unix root command. The kernel listens to you<br />
and does just about anything you want, including install programs. <br />
<br />
Say that cute Christmas animation.. which happens to install a keylogger<br />
to send all your keystrokes to the other side of the world, so they can<br />
log into your bank account.<br />
<br />
In unix, there's the concept of root users and non-root users. Root can<br />
ask for almost anything to be done, including change its code. If you can<br />
tell the kernel to load new code, you can pretty much do anything. As<br />
an unpriviledged user, the kernel/OS say no.<br />
<br />
When people make fun of windows being insecure, its not a fundamental flaw<br />
with the design of windows -- its a little broken, overly complex in some ways --<br />
but certain design choices along the way in the name of usability, such as<br />
running as admin users so that users don't need to be asked to do something<br />
special to change settings, install software, upgrade, etc.<br />
This is why we have the current spyware problem.<br />
<br />
Vista changes this slightly with the UAC (User Access Control) which runs<br />
a regular user with full priviledges, but asks you whenever priviledged<br />
operations need doing -- Yes/No. And you just click on it. But users<br />
still click yes. <br />
<br />
And now there's easy ways to turn off UAC completely. We'll talk about this more<br />
later when we talk about security.<br />
<br />
=== System Calls ===<br />
<br />
How do you talk to a kernel?<br />
<br />
It's the dictator and you're a supplicant. How do you make a timely request<br />
to the kernel to ask it to please do something? System calls!<br />
<br />
A system call is a standard mechanism for an application to talk to a kernel.<br />
<br />
A system call is NOT a function call. In your APIs and the like, it may look like<br />
a function call, may be wrapped in one.. But in implementation, they are very<br />
different.<br />
<br />
In order for the kernel to be in control, it has to run with special<br />
privileges and not give these to the user programs. There are various schemes,<br />
but the common one is a 1-bit option: User mode, or supervisor mode. User mode<br />
means that running as a regular program, you can't talk to the IO/interrupt<br />
vectors or talk tot he MMU, but you can run instructions and access your own<br />
memory. When you switch to supervisor mode, then everything is accessible. The<br />
kernel runs in supervisor mode.<br />
<br />
So if you're cut off and can't see the kernel, how do you send it a message?<br />
You might be able to write to a special place in memory that the kernel might<br />
check periodically, but how do you get it to check now? Normally the kernel<br />
is invoked by interrupts.. So as a user program, to invoke the kernel,<br />
you call an interrupt. There are special instructions, software interrupts,<br />
that are like a hardware interrupt, but software initiates them. There are<br />
interrupt tables just like for hardware.<br />
<br />
So the kernel can then look at the memory of the invoking user program when a<br />
user program calls the system call. Remember, because of the memory<br />
protections, you can't just jump into kernel code, so the only way in is via an<br />
interrupt.<br />
<br />
Therefore, system calls cause interrupts to invoke the kernel.<br />
<br />
In the process of doing a system call, the system has to do a lot of 'paperwork' <br />
to change context. System calls are expensive, very expensive. This is<br />
one of the things that tends to bound the performance of an operating system.<br />
<br />
Modern CPUs are so fast, shouldn't they be able to switch really fast?<br />
Turns out the tricks used to make modern CPUs really fast are like those<br />
used to make muscle cars -- they tend to go really fast in a straight line,<br />
but when you want to turn, you have to slow down to nearly a stop. Modern<br />
CPUs are like that.<br />
<br />
Interrupts cause all partial work done in parallel by modern CPUs to be<br />
thrown out, such as 10-20 or more instructions. The CPU has to fill the<br />
pipelines and resume. This stuff happens at a level below that of what the<br />
kernel runs at. The kernel saves its registers before switching context,<br />
so that it can resume later.</div>Rhooperhttps://homeostasis.scs.carleton.ca/wiki/index.php?title=Introduction&diff=1439Introduction2007-09-16T18:09:48Z<p>Rhooper: </p>
<hr />
<div>== Introduction == (continued)<br />
<br />
[[Class Outline#Introduction|Last class]], we began talking about turning the machine we have into the machine we want.<br />
<br />
What are some properties of the machine that we want?<br />
<br />
- usable / accessible<br />
- stable / reliable<br />
- functional (access to underlying resources)<br />
- efficient<br />
- customizable<br />
- secure<br />
- multitasking<br />
- portability<br />
<br />
If you have a computer that doesn't let you access the hardware, eg. a<br />
keyboard or video camera, it isn't very functional. Multitasking is slightly different than efficiency. <br />
For portability, do you really want to have to rewrite applications to support<br />
slight variations in the hardware such as different size hard disks and different<br />
amounts of RAM?<br />
<br />
Operating systems don't do all of these perfectly, but they tend to do a lot<br />
of these at least acceptably.<br />
<br />
If you look at the introduction to the text book, it talks about various<br />
types of operatings systems. Some of the operating systems we know about are:<br />
Linux, Windows, MacOSX, VXWorks, QNX, MS-DOS, Soliaris/xBSD, OS/2, BeOS, VMS,<br />
MVS, OS/370, AIX, etc.<br />
<br />
Linux isn't a variety of different operating systems to the same degree as the <br />
different versions of windows, as most linuxes share some components, whereas windows tends not to.<br />
<br />
Of the list above, most of them are modern operating systems, except MS-DOS.<br />
To be a "modern" OS, there are two major qualities: Does it have protected<br />
memory, and does it have pre-emptive multitasking?<br />
<br />
=== Protected Memory ===<br />
<br />
What is protected memory? <br />
<br />
Student: A situation where each program and the operating system has its own memory, and the OS prevents<br />
other programs from writing to another program's memory. <br />
<br />
Dr. Somayaji: Access mechanisms to avoid having one program overwrite another program's memory.<br />
<br />
This lets you have a situation where if one program crashes, you can just restart it. Damage due to<br />
memory overwrites is limited to one program.<br />
<br />
=== Preemptive Multi-tasking ===<br />
<br />
A way to have more than one program run at a time. Older machines were known<br />
as batch machines and their operating systems were batch operating systems.<br />
These ran tasks that took a long time to run. These were queued up, and run<br />
one at a time in sequence. These were typically things such things as payroll and accounts receivable.<br />
Usually these would be run overnight and the output, either on magnetic tape or a<br />
stack of printouts which would be returned to the user in the morning.<br />
<br />
Preemptive multitasking - the OS enforces time sharing.<br />
Co-operative multitasking - each program lets others run.<br />
<br />
If you look at MS-DOS, there are batch files. These are just a sequence of<br />
commands to run. It runs them and then returns when done. <br />
<br />
If you want to run a GUI, however, a batch system is unlikely to be what you want, as<br />
a GUI environment tends to be interactive. <br />
<br />
With the big iron in the old days they had big computers that would be sitting<br />
mostly idle, except when running the batch jobs. The idea of time sharing came along around then.<br />
<br />
=== Structure of a computer ===<br />
<br />
[[Image:Stored_program_architecture_1.png]]<br />
Stored Program architecture<br />
<br />
The stored program architecture with today's computers is a bit of a fiction.<br />
<br />
The things the microprocessor does are significantly faster than the RAM<br />
storage. Modern computers have to wait for data from RAM. However this time is<br />
dwarfed by the time spent waiting for I/O. This is because I/O devices tend to be mechanical:<br />
printers, hard disks, people at keyboards.<br />
<br />
This helped cause the idea "what if we had multiple users and let them share the CPU" to come<br />
about. This is time-sharing. On modern computers, we do this too, but instead<br />
of sharing with multiple users we run multiple programs for a single user --<br />
multi-tasking.<br />
<br />
In older systems such as Win3.1 and MacOS 9, this was co-operative multi-tasking.<br />
When things started running, they'd hog the CPU until they decided they were<br />
ready to give up the CPU. <br />
<br />
There used to be a great feature in the Mac in the old days where if you held<br />
down the mouse button, no networking would happen. This was because the<br />
program running at the time was hogging the CPU when the mouse button was pressed.<br />
In pre-emptive multitasking, you get booted out periodically so that the<br />
system can spend time paying attention to the network, to do animations, or<br />
to let other applications run. It spends a millisecond here, a millisecond there,<br />
etc. Instead of actually running simultaneously, they're periodically running, but <br />
they seem to run simultaneously to the end-user.<br />
<br />
Sometimes you have 2 or more CPUs, but you have more than 2 things going on... <br />
<br />
=== Processes and the Kernel ===<br />
<br />
Processes are fundamentally the things that get multitasked and protected. It<br />
is the abstraction of a running program. This is what makes an operating<br />
system modern. In the old days, you had one memory space and the OS and its<br />
applications were all sharing the CPU and memory. Now, with a process model,<br />
there are barriers all over the place, and more importantly, something/someone<br />
in charge governing the process. It's not a free-for all, it has a dictator,<br />
and its name is the kernel.<br />
<br />
Kernel as in the center piece.<br />
<br />
Question to class: How many people have heard of the term Microkernel? <br />
Not many hands.<br />
<br />
There are various terms that modify the term kernel such as monolithic kernel, microkernel,<br />
picokernel, etc. These specify how much stuff is in the microkernel.<br />
The idea is that the more code is in the kernel, the faster it goes, but<br />
conversely, that the more code there is the risk of crashing is higher.<br />
<br />
All of the problem code goes into processes, as they can be restarted, and kept<br />
out of the kernel.<br />
<br />
The debate about what is faster is not fully settled for technical and philosophical reasons.<br />
Almost all operating systems on the list above are big kernels, not small ones.<br />
<br />
So if that's what a kernel is, how does a program fit into that?<br />
If there's one program to rule them all, where do processes fit in?<br />
The kernel decides who gets to run, that implements a priority scheme.<br />
<br />
Student: "It got there first. You start the computer, then the kernel gets in. Everything has to<br />
talk to it or it doesn't run..."<br />
<br />
It gets to set the rules... that's sort of it... <br />
In unix, there's the idea of the init process. It is first to run, and has<br />
special responsibilities. It is run using a regular binary, at system boot,<br />
by the kernel. This still doesn't tell us how the kernel keeps control of it.<br />
<br />
The kernel often keeps control by getting the hardware to help. By loading first,<br />
the kernel can setup the CPU and memory so that it has control. This<br />
type of hardware assistance is generally available to the first code to<br />
request it.<br />
<br />
=== Interrupts ===<br />
<br />
Interrupts -- what are they? It's an alert to say something has to be done now.<br />
<br />
A CPU is running the programs, until something happens, like someone pressing<br />
a key or a network packet arrives. So an I/O device flags an interrupt. The CPU<br />
now has to stop and pay attention<br />
<br />
An interrupt is just a mechanism to allow the CPU to change contexts, to switch<br />
from running one bit of code to another. There's a standard set of interrupts<br />
defined by the hardware. Associated with each interrupt there's a bit of code.<br />
When one interrupts happens, run its code, when another happens, run another. <br />
For example, for the keyboard, there's a routine to read a key from the keyboard, store it in<br />
a buffer so its not overwritten when the next key is pressed, then returns.<br />
<br />
Think of an interrupt as a little kid pulling at your pant leg. It wants your attention now.<br />
<br />
The OS controls interrupts to control the CPU (and also what happens with RAM).<br />
<br />
Wait a second? If the kernel can only control interrupts, how can it keep<br />
general control if no interrupts happen? The clock IO device! It throws<br />
interrupts too.<br />
<br />
As a part of the boot sequence, the kernel programs the clock to wake the<br />
operating system up every, say, 100th of a second. Call me! So the OS can<br />
then keep running and perform its tasks as it needs:<br />
"Is everyone behaving nicely? Do I need to kill anyone?"<br />
<br />
[[Image:Stored_program_architecture_2.png]]<br />
<br />
=== Virtual Memory ===<br />
<br />
A slight fly in the ointment: If you are a program, and want to take control,<br />
how do you mount a rebellion? You overwrite the interrupt table! This is<br />
where protected memory comes in. It prevents a regular program from doing this.<br />
As a regular process, you often can't even see the interrupt table.<br />
<br />
How is that possible? Many schemes have been proposed for doing protected<br />
memory. Some variants will be spoken about, but the most widespread method <br />
is something known as virtual memory. Often tied into the concept of<br />
virtual memory is the ability to use disk for memory too.<br />
<br />
The fundamental idea is that the address you think your instruction or variable is at in memory is<br />
fictional/virtual. Say you want to load from address 2000 and load it into a register, and you<br />
have another program that want to do the same thing, are they doing the same thing?<br />
Nope! They have nothing to do with each other in a virtual memory model.<br />
Both programs live in their own virtual worlds, and can't see each other.<br />
The kernel, with the help of a little piece of hardware called the MMU <br />
is able to give each process its own virtual view of memory. It decides<br />
how that's going to map to real memory as it sees it.<br />
<br />
So the kernel controls interrupts to control IO and it controls memory.<br />
These are the two key controls. If a kernel can't control these, it<br />
can't properly provide protections ("It can't stop the rebellion").<br />
<br />
Last class we talked about hypervisors. The whole idea there is that the<br />
kernel thinks that it has control of the interrupt table and the real<br />
MMU are actually virtual ones, provided by the Hypervisor.<br />
<br />
So you can now run windows inside a window on Linux, OSX, etc.<br />
<br />
<br />
The difference between the various versions of windows:<br />
<br />
- Windows 95, Windows 98 implemented these ideas for some programs, but not all, and<br />
could get around it easily.<br />
- Windows 3.1 didn't have these.<br />
- Windows XP, Vista are modern.<br />
<br />
There's one small problem with Vista and XP, however. <br />
This has to do with the nature of the processes:<br />
<br />
[[Image:Processes_and_kernel.png]]<br />
<br />
To upgrade things, the kernel trusts some programs/users to allow them to<br />
upgrade. In windows, you tend to run as the user admin. This means you're<br />
running the equivalent of the unix root command. The kernel listens to you<br />
and does just about anything you want, including install programs. <br />
<br />
Say that cute Christmas animation.. which happens to install a keylogger<br />
to send all your keystrokes to the other side of the world, so they can<br />
log into your bank account.<br />
<br />
In unix, there's the concept of root users and non-root users. Root can<br />
ask for almost anything to be done, including change its code. If you can<br />
tell the kernel to load new code, you can pretty much do anything. As<br />
an unpriviledged user, the kernel/OS say no.<br />
<br />
When people make fun of windows being insecure, its not a fundamental flaw<br />
with the design of windows -- its a little broken, overly complex in some ways --<br />
but certain design choices along the way in the name of usability, such as<br />
running as admin users so that users don't need to be asked to do something<br />
special to change settings, install software, upgrade, etc.<br />
This is why we have the current spyware problem.<br />
<br />
Vista changes this slightly with the UAC (User Access Control) which runs<br />
a regular user with full priviledges, but asks you whenever priviledged<br />
operations need doing -- Yes/No. And you just click on it. But users<br />
still click yes. <br />
<br />
And now there's easy ways to turn off UAC completely. We'll talk about this more<br />
later when we talk about security.<br />
<br />
=== System Calls ===<br />
<br />
How do you talk to a kernel?<br />
<br />
It's the dictator and you're a supplicant. How do you make a timely request<br />
to the kernel to ask it to please do something? System calls!<br />
<br />
A system call is a standard mechanism for an application to talk to a kernel.<br />
<br />
A system call is NOT a function call. In your APIs and the like, it may look like<br />
a function call, may be wrapped in one.. But in implementation, they are very<br />
different.<br />
<br />
In order for the kernel to be in control, it has to run with special<br />
privileges and not give these to the user programs. There are various schemes,<br />
but the common one is a 1-bit option: User mode, or supervisor mode. User mode<br />
means that running as a regular program, you can't talk to the IO/interrupt<br />
vectors or talk tot he MMU, but you can run instructions and access your own<br />
memory. When you switch to supervisor mode, then everything is accessible. The<br />
kernel runs in supervisor mode.<br />
<br />
So if you're cut off and can't see the kernel, how do you send it a message?<br />
You might be able to write to a special place in memory that the kernel might<br />
check periodically, but how do you get it to check now? Normally the kernel<br />
is invoked by interrupts.. So as a user program, to invoke the kernel,<br />
you call an interrupt. There are special instructions, software interrupts,<br />
that are like a hardware interrupt, but software initiates them. There are<br />
interrupt tables just like for hardware.<br />
<br />
So the kernel can then look at the memory of the invoking user program when a<br />
user program calls the system call. Remember, because of the memory<br />
protections, you can't just jump into kernel code, so the only way in is via an<br />
interrupt.<br />
<br />
Therefore, system calls cause interrupts to invoke the kernel.<br />
<br />
In the process of doing a system call, the system has to do a lot of 'paperwork' <br />
to change context. System calls are expensive, very expensive. This is<br />
one of the things that tends to bound the performance of an operating system.<br />
<br />
Modern CPUs are so fast, shouldn't they be able to switch really fast?<br />
Turns out the tricks used to make modern CPUs really fast are like those<br />
used to make muscle cars -- they tend to go really fast in a straight line,<br />
but when you want to turn, you have to slow down to nearly a stop. Modern<br />
CPUs are like that.<br />
<br />
Interrupts cause all partial work done in parallel by modern CPUs to be<br />
thrown out, such as 10-20 or more instructions. The CPU has to fill the<br />
pipelines and resume. This stuff happens at a level below that of what the<br />
kernel runs at. The kernel saves its registers before switching context,<br />
so that it can resume later.</div>Rhooperhttps://homeostasis.scs.carleton.ca/wiki/index.php?title=Introduction&diff=1438Introduction2007-09-16T18:09:28Z<p>Rhooper: </p>
<hr />
<div>== Introduction ==<br />
<br />
[[Class Outline#Introduction|Last class]], we began talking about turning the machine we have into the machine we want.<br />
<br />
What are some properties of the machine that we want?<br />
<br />
- usable / accessible<br />
- stable / reliable<br />
- functional (access to underlying resources)<br />
- efficient<br />
- customizable<br />
- secure<br />
- multitasking<br />
- portability<br />
<br />
If you have a computer that doesn't let you access the hardware, eg. a<br />
keyboard or video camera, it isn't very functional. Multitasking is slightly different than efficiency. <br />
For portability, do you really want to have to rewrite applications to support<br />
slight variations in the hardware such as different size hard disks and different<br />
amounts of RAM?<br />
<br />
Operating systems don't do all of these perfectly, but they tend to do a lot<br />
of these at least acceptably.<br />
<br />
If you look at the introduction to the text book, it talks about various<br />
types of operatings systems. Some of the operating systems we know about are:<br />
Linux, Windows, MacOSX, VXWorks, QNX, MS-DOS, Soliaris/xBSD, OS/2, BeOS, VMS,<br />
MVS, OS/370, AIX, etc.<br />
<br />
Linux isn't a variety of different operating systems to the same degree as the <br />
different versions of windows, as most linuxes share some components, whereas windows tends not to.<br />
<br />
Of the list above, most of them are modern operating systems, except MS-DOS.<br />
To be a "modern" OS, there are two major qualities: Does it have protected<br />
memory, and does it have pre-emptive multitasking?<br />
<br />
=== Protected Memory ===<br />
<br />
What is protected memory? <br />
<br />
Student: A situation where each program and the operating system has its own memory, and the OS prevents<br />
other programs from writing to another program's memory. <br />
<br />
Dr. Somayaji: Access mechanisms to avoid having one program overwrite another program's memory.<br />
<br />
This lets you have a situation where if one program crashes, you can just restart it. Damage due to<br />
memory overwrites is limited to one program.<br />
<br />
=== Preemptive Multi-tasking ===<br />
<br />
A way to have more than one program run at a time. Older machines were known<br />
as batch machines and their operating systems were batch operating systems.<br />
These ran tasks that took a long time to run. These were queued up, and run<br />
one at a time in sequence. These were typically things such things as payroll and accounts receivable.<br />
Usually these would be run overnight and the output, either on magnetic tape or a<br />
stack of printouts which would be returned to the user in the morning.<br />
<br />
Preemptive multitasking - the OS enforces time sharing.<br />
Co-operative multitasking - each program lets others run.<br />
<br />
If you look at MS-DOS, there are batch files. These are just a sequence of<br />
commands to run. It runs them and then returns when done. <br />
<br />
If you want to run a GUI, however, a batch system is unlikely to be what you want, as<br />
a GUI environment tends to be interactive. <br />
<br />
With the big iron in the old days they had big computers that would be sitting<br />
mostly idle, except when running the batch jobs. The idea of time sharing came along around then.<br />
<br />
=== Structure of a computer ===<br />
<br />
[[Image:Stored_program_architecture_1.png]]<br />
Stored Program architecture<br />
<br />
The stored program architecture with today's computers is a bit of a fiction.<br />
<br />
The things the microprocessor does are significantly faster than the RAM<br />
storage. Modern computers have to wait for data from RAM. However this time is<br />
dwarfed by the time spent waiting for I/O. This is because I/O devices tend to be mechanical:<br />
printers, hard disks, people at keyboards.<br />
<br />
This helped cause the idea "what if we had multiple users and let them share the CPU" to come<br />
about. This is time-sharing. On modern computers, we do this too, but instead<br />
of sharing with multiple users we run multiple programs for a single user --<br />
multi-tasking.<br />
<br />
In older systems such as Win3.1 and MacOS 9, this was co-operative multi-tasking.<br />
When things started running, they'd hog the CPU until they decided they were<br />
ready to give up the CPU. <br />
<br />
There used to be a great feature in the Mac in the old days where if you held<br />
down the mouse button, no networking would happen. This was because the<br />
program running at the time was hogging the CPU when the mouse button was pressed.<br />
In pre-emptive multitasking, you get booted out periodically so that the<br />
system can spend time paying attention to the network, to do animations, or<br />
to let other applications run. It spends a millisecond here, a millisecond there,<br />
etc. Instead of actually running simultaneously, they're periodically running, but <br />
they seem to run simultaneously to the end-user.<br />
<br />
Sometimes you have 2 or more CPUs, but you have more than 2 things going on... <br />
<br />
=== Processes and the Kernel ===<br />
<br />
Processes are fundamentally the things that get multitasked and protected. It<br />
is the abstraction of a running program. This is what makes an operating<br />
system modern. In the old days, you had one memory space and the OS and its<br />
applications were all sharing the CPU and memory. Now, with a process model,<br />
there are barriers all over the place, and more importantly, something/someone<br />
in charge governing the process. It's not a free-for all, it has a dictator,<br />
and its name is the kernel.<br />
<br />
Kernel as in the center piece.<br />
<br />
Question to class: How many people have heard of the term Microkernel? <br />
Not many hands.<br />
<br />
There are various terms that modify the term kernel such as monolithic kernel, microkernel,<br />
picokernel, etc. These specify how much stuff is in the microkernel.<br />
The idea is that the more code is in the kernel, the faster it goes, but<br />
conversely, that the more code there is the risk of crashing is higher.<br />
<br />
All of the problem code goes into processes, as they can be restarted, and kept<br />
out of the kernel.<br />
<br />
The debate about what is faster is not fully settled for technical and philosophical reasons.<br />
Almost all operating systems on the list above are big kernels, not small ones.<br />
<br />
So if that's what a kernel is, how does a program fit into that?<br />
If there's one program to rule them all, where do processes fit in?<br />
The kernel decides who gets to run, that implements a priority scheme.<br />
<br />
Student: "It got there first. You start the computer, then the kernel gets in. Everything has to<br />
talk to it or it doesn't run..."<br />
<br />
It gets to set the rules... that's sort of it... <br />
In unix, there's the idea of the init process. It is first to run, and has<br />
special responsibilities. It is run using a regular binary, at system boot,<br />
by the kernel. This still doesn't tell us how the kernel keeps control of it.<br />
<br />
The kernel often keeps control by getting the hardware to help. By loading first,<br />
the kernel can setup the CPU and memory so that it has control. This<br />
type of hardware assistance is generally available to the first code to<br />
request it.<br />
<br />
=== Interrupts ===<br />
<br />
Interrupts -- what are they? It's an alert to say something has to be done now.<br />
<br />
A CPU is running the programs, until something happens, like someone pressing<br />
a key or a network packet arrives. So an I/O device flags an interrupt. The CPU<br />
now has to stop and pay attention<br />
<br />
An interrupt is just a mechanism to allow the CPU to change contexts, to switch<br />
from running one bit of code to another. There's a standard set of interrupts<br />
defined by the hardware. Associated with each interrupt there's a bit of code.<br />
When one interrupts happens, run its code, when another happens, run another. <br />
For example, for the keyboard, there's a routine to read a key from the keyboard, store it in<br />
a buffer so its not overwritten when the next key is pressed, then returns.<br />
<br />
Think of an interrupt as a little kid pulling at your pant leg. It wants your attention now.<br />
<br />
The OS controls interrupts to control the CPU (and also what happens with RAM).<br />
<br />
Wait a second? If the kernel can only control interrupts, how can it keep<br />
general control if no interrupts happen? The clock IO device! It throws<br />
interrupts too.<br />
<br />
As a part of the boot sequence, the kernel programs the clock to wake the<br />
operating system up every, say, 100th of a second. Call me! So the OS can<br />
then keep running and perform its tasks as it needs:<br />
"Is everyone behaving nicely? Do I need to kill anyone?"<br />
<br />
[[Image:Stored_program_architecture_2.png]]<br />
<br />
=== Virtual Memory ===<br />
<br />
A slight fly in the ointment: If you are a program, and want to take control,<br />
how do you mount a rebellion? You overwrite the interrupt table! This is<br />
where protected memory comes in. It prevents a regular program from doing this.<br />
As a regular process, you often can't even see the interrupt table.<br />
<br />
How is that possible? Many schemes have been proposed for doing protected<br />
memory. Some variants will be spoken about, but the most widespread method <br />
is something known as virtual memory. Often tied into the concept of<br />
virtual memory is the ability to use disk for memory too.<br />
<br />
The fundamental idea is that the address you think your instruction or variable is at in memory is<br />
fictional/virtual. Say you want to load from address 2000 and load it into a register, and you<br />
have another program that want to do the same thing, are they doing the same thing?<br />
Nope! They have nothing to do with each other in a virtual memory model.<br />
Both programs live in their own virtual worlds, and can't see each other.<br />
The kernel, with the help of a little piece of hardware called the MMU <br />
is able to give each process its own virtual view of memory. It decides<br />
how that's going to map to real memory as it sees it.<br />
<br />
So the kernel controls interrupts to control IO and it controls memory.<br />
These are the two key controls. If a kernel can't control these, it<br />
can't properly provide protections ("It can't stop the rebellion").<br />
<br />
Last class we talked about hypervisors. The whole idea there is that the<br />
kernel thinks that it has control of the interrupt table and the real<br />
MMU are actually virtual ones, provided by the Hypervisor.<br />
<br />
So you can now run windows inside a window on Linux, OSX, etc.<br />
<br />
<br />
The difference between the various versions of windows:<br />
<br />
- Windows 95, Windows 98 implemented these ideas for some programs, but not all, and<br />
could get around it easily.<br />
- Windows 3.1 didn't have these.<br />
- Windows XP, Vista are modern.<br />
<br />
There's one small problem with Vista and XP, however. <br />
This has to do with the nature of the processes:<br />
<br />
[[Image:Processes_and_kernel.png]]<br />
<br />
To upgrade things, the kernel trusts some programs/users to allow them to<br />
upgrade. In windows, you tend to run as the user admin. This means you're<br />
running the equivalent of the unix root command. The kernel listens to you<br />
and does just about anything you want, including install programs. <br />
<br />
Say that cute Christmas animation.. which happens to install a keylogger<br />
to send all your keystrokes to the other side of the world, so they can<br />
log into your bank account.<br />
<br />
In unix, there's the concept of root users and non-root users. Root can<br />
ask for almost anything to be done, including change its code. If you can<br />
tell the kernel to load new code, you can pretty much do anything. As<br />
an unpriviledged user, the kernel/OS say no.<br />
<br />
When people make fun of windows being insecure, its not a fundamental flaw<br />
with the design of windows -- its a little broken, overly complex in some ways --<br />
but certain design choices along the way in the name of usability, such as<br />
running as admin users so that users don't need to be asked to do something<br />
special to change settings, install software, upgrade, etc.<br />
This is why we have the current spyware problem.<br />
<br />
Vista changes this slightly with the UAC (User Access Control) which runs<br />
a regular user with full priviledges, but asks you whenever priviledged<br />
operations need doing -- Yes/No. And you just click on it. But users<br />
still click yes. <br />
<br />
And now there's easy ways to turn off UAC completely. We'll talk about this more<br />
later when we talk about security.<br />
<br />
=== System Calls ===<br />
<br />
How do you talk to a kernel?<br />
<br />
It's the dictator and you're a supplicant. How do you make a timely request<br />
to the kernel to ask it to please do something? System calls!<br />
<br />
A system call is a standard mechanism for an application to talk to a kernel.<br />
<br />
A system call is NOT a function call. In your APIs and the like, it may look like<br />
a function call, may be wrapped in one.. But in implementation, they are very<br />
different.<br />
<br />
In order for the kernel to be in control, it has to run with special<br />
privileges and not give these to the user programs. There are various schemes,<br />
but the common one is a 1-bit option: User mode, or supervisor mode. User mode<br />
means that running as a regular program, you can't talk to the IO/interrupt<br />
vectors or talk tot he MMU, but you can run instructions and access your own<br />
memory. When you switch to supervisor mode, then everything is accessible. The<br />
kernel runs in supervisor mode.<br />
<br />
So if you're cut off and can't see the kernel, how do you send it a message?<br />
You might be able to write to a special place in memory that the kernel might<br />
check periodically, but how do you get it to check now? Normally the kernel<br />
is invoked by interrupts.. So as a user program, to invoke the kernel,<br />
you call an interrupt. There are special instructions, software interrupts,<br />
that are like a hardware interrupt, but software initiates them. There are<br />
interrupt tables just like for hardware.<br />
<br />
So the kernel can then look at the memory of the invoking user program when a<br />
user program calls the system call. Remember, because of the memory<br />
protections, you can't just jump into kernel code, so the only way in is via an<br />
interrupt.<br />
<br />
Therefore, system calls cause interrupts to invoke the kernel.<br />
<br />
In the process of doing a system call, the system has to do a lot of 'paperwork' <br />
to change context. System calls are expensive, very expensive. This is<br />
one of the things that tends to bound the performance of an operating system.<br />
<br />
Modern CPUs are so fast, shouldn't they be able to switch really fast?<br />
Turns out the tricks used to make modern CPUs really fast are like those<br />
used to make muscle cars -- they tend to go really fast in a straight line,<br />
but when you want to turn, you have to slow down to nearly a stop. Modern<br />
CPUs are like that.<br />
<br />
Interrupts cause all partial work done in parallel by modern CPUs to be<br />
thrown out, such as 10-20 or more instructions. The CPU has to fill the<br />
pipelines and resume. This stuff happens at a level below that of what the<br />
kernel runs at. The kernel saves its registers before switching context,<br />
so that it can resume later.</div>Rhooperhttps://homeostasis.scs.carleton.ca/wiki/index.php?title=Introduction&diff=1437Introduction2007-09-16T18:07:27Z<p>Rhooper: </p>
<hr />
<div><br />
== Introduction ==<br />
<br />
Last class, we began talking about turning the machine we have into the machine we want.<br />
<br />
What are some properties of the machine that we want?<br />
<br />
- usable / accessible<br />
- stable / reliable<br />
- functional (access to underlying resources)<br />
- efficient<br />
- customizable<br />
- secure<br />
- multitasking<br />
- portability<br />
<br />
If you have a computer that doesn't let you access the hardware, eg. a<br />
keyboard or video camera, it isn't very functional. Multitasking is slightly different than efficiency. <br />
For portability, do you really want to have to rewrite applications to support<br />
slight variations in the hardware such as different size hard disks and different<br />
amounts of RAM?<br />
<br />
Operating systems don't do all of these perfectly, but they tend to do a lot<br />
of these at least acceptably.<br />
<br />
If you look at the introduction to the text book, it talks about various<br />
types of operatings systems. Some of the operating systems we know about are:<br />
Linux, Windows, MacOSX, VXWorks, QNX, MS-DOS, Soliaris/xBSD, OS/2, BeOS, VMS,<br />
MVS, OS/370, AIX, etc.<br />
<br />
Linux isn't a variety of different operating systems to the same degree as the <br />
different versions of windows, as most linuxes share some components, whereas windows tends not to.<br />
<br />
Of the list above, most of them are modern operating systems, except MS-DOS.<br />
To be a "modern" OS, there are two major qualities: Does it have protected<br />
memory, and does it have pre-emptive multitasking?<br />
<br />
=== Protected Memory ===<br />
<br />
What is protected memory? <br />
<br />
Student: A situation where each program and the operating system has its own memory, and the OS prevents<br />
other programs from writing to another program's memory. <br />
<br />
Dr. Somayaji: Access mechanisms to avoid having one program overwrite another program's memory.<br />
<br />
This lets you have a situation where if one program crashes, you can just restart it. Damage due to<br />
memory overwrites is limited to one program.<br />
<br />
=== Preemptive Multi-tasking ===<br />
<br />
A way to have more than one program run at a time. Older machines were known<br />
as batch machines and their operating systems were batch operating systems.<br />
These ran tasks that took a long time to run. These were queued up, and run<br />
one at a time in sequence. These were typically things such things as payroll and accounts receivable.<br />
Usually these would be run overnight and the output, either on magnetic tape or a<br />
stack of printouts which would be returned to the user in the morning.<br />
<br />
Preemptive multitasking - the OS enforces time sharing.<br />
Co-operative multitasking - each program lets others run.<br />
<br />
If you look at MS-DOS, there are batch files. These are just a sequence of<br />
commands to run. It runs them and then returns when done. <br />
<br />
If you want to run a GUI, however, a batch system is unlikely to be what you want, as<br />
a GUI environment tends to be interactive. <br />
<br />
With the big iron in the old days they had big computers that would be sitting<br />
mostly idle, except when running the batch jobs. The idea of time sharing came along around then.<br />
<br />
=== Structure of a computer ===<br />
<br />
[[Image:Stored_program_architecture_1.png]]<br />
Stored Program architecture<br />
<br />
The stored program architecture with today's computers is a bit of a fiction.<br />
<br />
The things the microprocessor does are significantly faster than the RAM<br />
storage. Modern computers have to wait for data from RAM. However this time is<br />
dwarfed by the time spent waiting for I/O. This is because I/O devices tend to be mechanical:<br />
printers, hard disks, people at keyboards.<br />
<br />
This helped cause the idea "what if we had multiple users and let them share the CPU" to come<br />
about. This is time-sharing. On modern computers, we do this too, but instead<br />
of sharing with multiple users we run multiple programs for a single user --<br />
multi-tasking.<br />
<br />
In older systems such as Win3.1 and MacOS 9, this was co-operative multi-tasking.<br />
When things started running, they'd hog the CPU until they decided they were<br />
ready to give up the CPU. <br />
<br />
There used to be a great feature in the Mac in the old days where if you held<br />
down the mouse button, no networking would happen. This was because the<br />
program running at the time was hogging the CPU when the mouse button was pressed.<br />
In pre-emptive multitasking, you get booted out periodically so that the<br />
system can spend time paying attention to the network, to do animations, or<br />
to let other applications run. It spends a millisecond here, a millisecond there,<br />
etc. Instead of actually running simultaneously, they're periodically running, but <br />
they seem to run simultaneously to the end-user.<br />
<br />
Sometimes you have 2 or more CPUs, but you have more than 2 things going on... <br />
<br />
=== Processes and the Kernel ===<br />
<br />
Processes are fundamentally the things that get multitasked and protected. It<br />
is the abstraction of a running program. This is what makes an operating<br />
system modern. In the old days, you had one memory space and the OS and its<br />
applications were all sharing the CPU and memory. Now, with a process model,<br />
there are barriers all over the place, and more importantly, something/someone<br />
in charge governing the process. It's not a free-for all, it has a dictator,<br />
and its name is the kernel.<br />
<br />
Kernel as in the center piece.<br />
<br />
Question to class: How many people have heard of the term Microkernel? <br />
Not many hands.<br />
<br />
There are various terms that modify the term kernel such as monolithic kernel, microkernel,<br />
picokernel, etc. These specify how much stuff is in the microkernel.<br />
The idea is that the more code is in the kernel, the faster it goes, but<br />
conversely, that the more code there is the risk of crashing is higher.<br />
<br />
All of the problem code goes into processes, as they can be restarted, and kept<br />
out of the kernel.<br />
<br />
The debate about what is faster is not fully settled for technical and philosophical reasons.<br />
Almost all operating systems on the list above are big kernels, not small ones.<br />
<br />
So if that's what a kernel is, how does a program fit into that?<br />
If there's one program to rule them all, where do processes fit in?<br />
The kernel decides who gets to run, that implements a priority scheme.<br />
<br />
Student: "It got there first. You start the computer, then the kernel gets in. Everything has to<br />
talk to it or it doesn't run..."<br />
<br />
It gets to set the rules... that's sort of it... <br />
In unix, there's the idea of the init process. It is first to run, and has<br />
special responsibilities. It is run using a regular binary, at system boot,<br />
by the kernel. This still doesn't tell us how the kernel keeps control of it.<br />
<br />
The kernel often keeps control by getting the hardware to help. By loading first,<br />
the kernel can setup the CPU and memory so that it has control. This<br />
type of hardware assistance is generally available to the first code to<br />
request it.<br />
<br />
=== Interrupts ===<br />
<br />
Interrupts -- what are they? It's an alert to say something has to be done now.<br />
<br />
A CPU is running the programs, until something happens, like someone pressing<br />
a key or a network packet arrives. So an I/O device flags an interrupt. The CPU<br />
now has to stop and pay attention<br />
<br />
An interrupt is just a mechanism to allow the CPU to change contexts, to switch<br />
from running one bit of code to another. There's a standard set of interrupts<br />
defined by the hardware. Associated with each interrupt there's a bit of code.<br />
When one interrupts happens, run its code, when another happens, run another. <br />
For example, for the keyboard, there's a routine to read a key from the keyboard, store it in<br />
a buffer so its not overwritten when the next key is pressed, then returns.<br />
<br />
Think of an interrupt as a little kid pulling at your pant leg. It wants your attention now.<br />
<br />
The OS controls interrupts to control the CPU (and also what happens with RAM).<br />
<br />
Wait a second? If the kernel can only control interrupts, how can it keep<br />
general control if no interrupts happen? The clock IO device! It throws<br />
interrupts too.<br />
<br />
As a part of the boot sequence, the kernel programs the clock to wake the<br />
operating system up every, say, 100th of a second. Call me! So the OS can<br />
then keep running and perform its tasks as it needs:<br />
"Is everyone behaving nicely? Do I need to kill anyone?"<br />
<br />
[[Image:Stored_program_architecture_2.png]]<br />
<br />
=== Virtual Memory ===<br />
<br />
A slight fly in the ointment: If you are a program, and want to take control,<br />
how do you mount a rebellion? You overwrite the interrupt table! This is<br />
where protected memory comes in. It prevents a regular program from doing this.<br />
As a regular process, you often can't even see the interrupt table.<br />
<br />
How is that possible? Many schemes have been proposed for doing protected<br />
memory. Some variants will be spoken about, but the most widespread method <br />
is something known as virtual memory. Often tied into the concept of<br />
virtual memory is the ability to use disk for memory too.<br />
<br />
The fundamental idea is that the address you think your instruction or variable is at in memory is<br />
fictional/virtual. Say you want to load from address 2000 and load it into a register, and you<br />
have another program that want to do the same thing, are they doing the same thing?<br />
Nope! They have nothing to do with each other in a virtual memory model.<br />
Both programs live in their own virtual worlds, and can't see each other.<br />
The kernel, with the help of a little piece of hardware called the MMU <br />
is able to give each process its own virtual view of memory. It decides<br />
how that's going to map to real memory as it sees it.<br />
<br />
So the kernel controls interrupts to control IO and it controls memory.<br />
These are the two key controls. If a kernel can't control these, it<br />
can't properly provide protections ("It can't stop the rebellion").<br />
<br />
Last class we talked about hypervisors. The whole idea there is that the<br />
kernel thinks that it has control of the interrupt table and the real<br />
MMU are actually virtual ones, provided by the Hypervisor.<br />
<br />
So you can now run windows inside a window on Linux, OSX, etc.<br />
<br />
<br />
The difference between the various versions of windows:<br />
<br />
- Windows 95, Windows 98 implemented these ideas for some programs, but not all, and<br />
could get around it easily.<br />
- Windows 3.1 didn't have these.<br />
- Windows XP, Vista are modern.<br />
<br />
There's one small problem with Vista and XP, however. <br />
This has to do with the nature of the processes:<br />
<br />
[[Image:Processes_and_kernel.png]]<br />
<br />
To upgrade things, the kernel trusts some programs/users to allow them to<br />
upgrade. In windows, you tend to run as the user admin. This means you're<br />
running the equivalent of the unix root command. The kernel listens to you<br />
and does just about anything you want, including install programs. <br />
<br />
Say that cute Christmas animation.. which happens to install a keylogger<br />
to send all your keystrokes to the other side of the world, so they can<br />
log into your bank account.<br />
<br />
In unix, there's the concept of root users and non-root users. Root can<br />
ask for almost anything to be done, including change its code. If you can<br />
tell the kernel to load new code, you can pretty much do anything. As<br />
an unpriviledged user, the kernel/OS say no.<br />
<br />
When people make fun of windows being insecure, its not a fundamental flaw<br />
with the design of windows -- its a little broken, overly complex in some ways --<br />
but certain design choices along the way in the name of usability, such as<br />
running as admin users so that users don't need to be asked to do something<br />
special to change settings, install software, upgrade, etc.<br />
This is why we have the current spyware problem.<br />
<br />
Vista changes this slightly with the UAC (User Access Control) which runs<br />
a regular user with full priviledges, but asks you whenever priviledged<br />
operations need doing -- Yes/No. And you just click on it. But users<br />
still click yes. <br />
<br />
And now there's easy ways to turn off UAC completely. We'll talk about this more<br />
later when we talk about security.<br />
<br />
=== System Calls ===<br />
<br />
How do you talk to a kernel?<br />
<br />
It's the dictator and you're a supplicant. How do you make a timely request<br />
to the kernel to ask it to please do something? System calls!<br />
<br />
A system call is a standard mechanism for an application to talk to a kernel.<br />
<br />
A system call is NOT a function call. In your APIs and the like, it may look like<br />
a function call, may be wrapped in one.. But in implementation, they are very<br />
different.<br />
<br />
In order for the kernel to be in control, it has to run with special<br />
privileges and not give these to the user programs. There are various schemes,<br />
but the common one is a 1-bit option: User mode, or supervisor mode. User mode<br />
means that running as a regular program, you can't talk to the IO/interrupt<br />
vectors or talk tot he MMU, but you can run instructions and access your own<br />
memory. When you switch to supervisor mode, then everything is accessible. The<br />
kernel runs in supervisor mode.<br />
<br />
So if you're cut off and can't see the kernel, how do you send it a message?<br />
You might be able to write to a special place in memory that the kernel might<br />
check periodically, but how do you get it to check now? Normally the kernel<br />
is invoked by interrupts.. So as a user program, to invoke the kernel,<br />
you call an interrupt. There are special instructions, software interrupts,<br />
that are like a hardware interrupt, but software initiates them. There are<br />
interrupt tables just like for hardware.<br />
<br />
So the kernel can then look at the memory of the invoking user program when a<br />
user program calls the system call. Remember, because of the memory<br />
protections, you can't just jump into kernel code, so the only way in is via an<br />
interrupt.<br />
<br />
Therefore, system calls cause interrupts to invoke the kernel.<br />
<br />
In the process of doing a system call, the system has to do a lot of 'paperwork' <br />
to change context. System calls are expensive, very expensive. This is<br />
one of the things that tends to bound the performance of an operating system.<br />
<br />
Modern CPUs are so fast, shouldn't they be able to switch really fast?<br />
Turns out the tricks used to make modern CPUs really fast are like those<br />
used to make muscle cars -- they tend to go really fast in a straight line,<br />
but when you want to turn, you have to slow down to nearly a stop. Modern<br />
CPUs are like that.<br />
<br />
Interrupts cause all partial work done in parallel by modern CPUs to be<br />
thrown out, such as 10-20 or more instructions. The CPU has to fill the<br />
pipelines and resume. This stuff happens at a level below that of what the<br />
kernel runs at. The kernel saves its registers before switching context,<br />
so that it can resume later.</div>Rhooperhttps://homeostasis.scs.carleton.ca/wiki/index.php?title=File:Processes_and_kernel.png&diff=1436File:Processes and kernel.png2007-09-16T18:06:20Z<p>Rhooper: Processes and Kernel</p>
<hr />
<div>Processes and Kernel</div>Rhooperhttps://homeostasis.scs.carleton.ca/wiki/index.php?title=File:Stored_program_architecture_2.png&diff=1435File:Stored program architecture 2.png2007-09-16T18:00:03Z<p>Rhooper: Stored Program Architecture diagram</p>
<hr />
<div>Stored Program Architecture diagram</div>Rhooperhttps://homeostasis.scs.carleton.ca/wiki/index.php?title=Introduction&diff=1434Introduction2007-09-16T17:59:36Z<p>Rhooper: </p>
<hr />
<div>(Posting of notes still in progress)<br />
<br />
== Introduction ==<br />
<br />
Last class, we began talking about turning the machine we have into the machine we want.<br />
<br />
What are some properties of the machine that we want?<br />
<br />
- usable / accessible<br />
- stable / reliable<br />
- functional (access to underlying resources)<br />
- efficient<br />
- customizable<br />
- secure<br />
- multitasking<br />
- portability<br />
<br />
If you have a computer that doesn't let you access the hardware, eg. a<br />
keyboard or video camera, it isn't very functional. Multitasking is slightly different than efficiency. <br />
For portability, do you really want to have to rewrite applications to support<br />
slight variations in the hardware such as different size hard disks and different<br />
amounts of RAM?<br />
<br />
Operating systems don't do all of these perfectly, but they tend to do a lot<br />
of these at least acceptably.<br />
<br />
If you look at the introduction to the text book, it talks about various<br />
types of operatings systems. Some of the operating systems we know about are:<br />
Linux, Windows, MacOSX, VXWorks, QNX, MS-DOS, Soliaris/xBSD, OS/2, BeOS, VMS,<br />
MVS, OS/370, AIX, etc.<br />
<br />
Linux isn't a variety of different operating systems to the same degree as the <br />
different versions of windows, as most linuxes share some components, whereas windows tends not to.<br />
<br />
Of the list above, most of them are modern operating systems, except MS-DOS.<br />
To be a "modern" OS, there are two major qualities: Does it have protected<br />
memory, and does it have pre-emptive multitasking?<br />
<br />
=== Protected Memory ===<br />
<br />
What is protected memory? <br />
<br />
Student: A situation where each program and the operating system has its own memory, and the OS prevents<br />
other programs from writing to another program's memory. <br />
<br />
Dr. Somayaji: Access mechanisms to avoid having one program overwrite another program's memory.<br />
<br />
This lets you have a situation where if one program crashes, you can just restart it. Damage due to<br />
memory overwrites is limited to one program.<br />
<br />
=== Preemptive Multi-tasking ===<br />
<br />
A way to have more than one program run at a time. Older machines were known<br />
as batch machines and their operating systems were batch operating systems.<br />
These ran tasks that took a long time to run. These were queued up, and run<br />
one at a time in sequence. These were typically things such things as payroll and accounts receivable.<br />
Usually these would be run overnight and the output, either on magnetic tape or a<br />
stack of printouts which would be returned to the user in the morning.<br />
<br />
Preemptive multitasking - the OS enforces time sharing.<br />
Co-operative multitasking - each program lets others run.<br />
<br />
If you look at MS-DOS, there are batch files. These are just a sequence of<br />
commands to run. It runs them and then returns when done. <br />
<br />
If you want to run a GUI, however, a batch system is unlikely to be what you want, as<br />
a GUI environment tends to be interactive. <br />
<br />
With the big iron in the old days they had big computers that would be sitting<br />
mostly idle, except when running the batch jobs. The idea of time sharing came along around then.<br />
<br />
=== Structure of a computer ===<br />
<br />
[[Image:Stored_program_architecture_1.png]]<br />
Stored Program architecture<br />
<br />
The stored program architecture with today's computers is a bit of a fiction.<br />
<br />
The things the microprocessor does are significantly faster than the RAM<br />
storage. Modern computers have to wait for data from RAM. However this time is<br />
dwarfed by the time spent waiting for I/O. This is because I/O devices tend to be mechanical:<br />
printers, hard disks, people at keyboards.<br />
<br />
This helped cause the idea "what if we had multiple users and let them share the CPU" to come<br />
about. This is time-sharing. On modern computers, we do this too, but instead<br />
of sharing with multiple users we run multiple programs for a single user --<br />
multi-tasking.<br />
<br />
In older systems such as Win3.1 and MacOS 9, this was co-operative multi-tasking.<br />
When things started running, they'd hog the CPU until they decided they were<br />
ready to give up the CPU. <br />
<br />
There used to be a great feature in the Mac in the old days where if you held<br />
down the mouse button, no networking would happen. This was because the<br />
program running at the time was hogging the CPU when the mouse button was pressed.<br />
In pre-emptive multitasking, you get booted out periodically so that the<br />
system can spend time paying attention to the network, to do animations, or<br />
to let other applications run. It spends a millisecond here, a millisecond there,<br />
etc. Instead of actually running simultaneously, they're periodically running, but <br />
they seem to run simultaneously to the end-user.<br />
<br />
Sometimes you have 2 or more CPUs, but you have more than 2 things going on... <br />
<br />
=== Processes and the Kernel ===<br />
<br />
Processes are fundamentally the things that get multitasked and protected. It<br />
is the abstraction of a running program. This is what makes an operating<br />
system modern. In the old days, you had one memory space and the OS and its<br />
applications were all sharing the CPU and memory. Now, with a process model,<br />
there are barriers all over the place, and more importantly, something/someone<br />
in charge governing the process. It's not a free-for all, it has a dictator,<br />
and its name is the kernel.<br />
<br />
Kernel as in the center piece.<br />
<br />
Question to class: How many people have heard of the term Microkernel? <br />
Not many hands.<br />
<br />
There are various terms that modify the term kernel such as monolithic kernel, microkernel,<br />
picokernel, etc. These specify how much stuff is in the microkernel.<br />
The idea is that the more code is in the kernel, the faster it goes, but<br />
conversely, that the more code there is the risk of crashing is higher.<br />
<br />
All of the problem code goes into processes, as they can be restarted, and kept<br />
out of the kernel.<br />
<br />
The debate about what is faster is not fully settled for technical and philosophical reasons.<br />
Almost all operating systems on the list above are big kernels, not small ones.<br />
<br />
So if that's what a kernel is, how does a program fit into that?<br />
If there's one program to rule them all, where do processes fit in?<br />
The kernel decides who gets to run, that implements a priority scheme.<br />
<br />
Student: "It got there first. You start the computer, then the kernel gets in. Everything has to<br />
talk to it or it doesn't run..."<br />
<br />
It gets to set the rules... that's sort of it... <br />
In unix, there's the idea of the init process. It is first to run, and has<br />
special responsibilities. It is run using a regular binary, at system boot,<br />
by the kernel. This still doesn't tell us how the kernel keeps control of it.<br />
<br />
The kernel often keeps control by getting the hardware to help. By loading first,<br />
the kernel can setup the CPU and memory so that it has control. This<br />
type of hardware assistance is generally available to the first code to<br />
request it.<br />
<br />
=== Interrupts ===<br />
<br />
Interrupts -- what are they? It's an alert to say something has to be done now.<br />
<br />
A CPU is running the programs, until something happens, like someone pressing<br />
a key or a network packet arrives. So an I/O device flags an interrupt. The CPU<br />
now has to stop and pay attention<br />
<br />
An interrupt is just a mechanism to allow the CPU to change contexts, to switch<br />
from running one bit of code to another. There's a standard set of interrupts<br />
defined by the hardware. Associated with each interrupt there's a bit of code.<br />
When one interrupts happens, run its code, when another happens, run another. <br />
For example, for the keyboard, there's a routine to read a key from the keyboard, store it in<br />
a buffer so its not overwritten when the next key is pressed, then returns.<br />
<br />
Think of an interrupt as a little kid pulling at your pant leg. It wants your attention now.<br />
<br />
The OS controls interrupts to control the CPU (and also what happens with RAM).<br />
<br />
Wait a second? If the kernel can only control interrupts, how can it keep<br />
general control if no interrupts happen? The clock IO device! It throws<br />
interrupts too.<br />
<br />
As a part of the boot sequence, the kernel programs the clock to wake the<br />
operating system up every, say, 100th of a second. Call me! So the OS can<br />
then keep running and perform its tasks as it needs:<br />
"Is everyone behaving nicely? Do I need to kill anyone?"<br />
<br />
[[Image:Stored_program_architecture_2.png]]<br />
<br />
=== Virtual Memory ===<br />
<br />
A slight fly in the ointment: If you are a program, and want to take control,<br />
how do you mount a rebellion? You overwrite the interrupt table! This is<br />
where protected memory comes in. It prevents a regular program from doing this.<br />
As a regular process, you often can't even see the interrupt table.<br />
<br />
How is that possible? Many schemes have been proposed for doing protected<br />
memory. Some variants will be spoken about, but the most widespread method <br />
is something known as virtual memory. Often tied into the concept of<br />
virtual memory is the ability to use disk for memory too.<br />
<br />
The fundamental idea is that the address you think your instruction or variable is at in memory is<br />
fictional/virtual. Say you want to load from address 2000 and load it into a register, and you<br />
have another program that want to do the same thing, are they doing the same thing?<br />
Nope! They have nothing to do with each other in a virtual memory model.<br />
Both programs live in their own virtual worlds, and can't see each other.<br />
The kernel, with the help of a little piece of hardware called the MMU <br />
is able to give each process its own virtual view of memory. It decides<br />
how that's going to map to real memory as it sees it.<br />
<br />
So the kernel controls interrupts to control IO and it controls memory.<br />
These are the two key controls. If a kernel can't control these, it<br />
can't properly provide protections ("It can't stop the rebellion").<br />
<br />
Last class we talked about hypervisors. The whole idea there is that the<br />
kernel thinks that it has control of the interrupt table and the real<br />
MMU are actually virtual ones, provided by the Hypervisor.<br />
<br />
So you can now run windows inside a window on Linux, OSX, etc.<br />
<br />
<br />
The difference between the various versions of windows:<br />
<br />
- Windows 95, Windows 98 implemented these ideas for some programs, but not all, and<br />
could get around it easily.<br />
- Windows 3.1 didn't have these.<br />
- Windows XP, Vista are modern.<br />
<br />
There's one small problem with Vista and XP, however. <br />
This has to do with the nature of the processes:<br />
<br />
To upgrade things, the kernel trusts some programs/users to allow them to<br />
upgrade. In windows, you tend to run as the user admin. This means you're<br />
running the equivalent of the unix root command. The kernel listens to you<br />
and does just about anything you want, including install programs. <br />
<br />
Say that cute Christmas animation.. which happens to install a keylogger<br />
to send all your keystrokes to the other side of the world, so they can<br />
log into your bank account.<br />
<br />
In unix, there's the concept of root users and non-root users. Root can<br />
ask for almost anything to be done, including change its code. If you can<br />
tell the kernel to load new code, you can pretty much do anything. As<br />
an unpriviledged user, the kernel/OS say no.<br />
<br />
When people make fun of windows being insecure, its not a fundamental flaw<br />
with the design of windows -- its a little broken, overly complex in some ways --<br />
but certain design choices along the way in the name of usability, such as<br />
running as admin users so that users don't need to be asked to do something<br />
special to change settings, install software, upgrade, etc.<br />
This is why we have the current spyware problem.<br />
<br />
Vista changes this slightly with the UAC (User Access Control) which runs<br />
a regular user with full priviledges, but asks you whenever priviledged<br />
operations need doing -- Yes/No. And you just click on it. But users<br />
still click yes. <br />
<br />
And now there's easy ways to turn off UAC completely. We'll talk about this more<br />
later when we talk about security.</div>Rhooperhttps://homeostasis.scs.carleton.ca/wiki/index.php?title=File:Stored_program_architecture_1.png&diff=1433File:Stored program architecture 1.png2007-09-16T17:44:53Z<p>Rhooper: Stored Program Architecture diagram</p>
<hr />
<div>Stored Program Architecture diagram</div>Rhooperhttps://homeostasis.scs.carleton.ca/wiki/index.php?title=Class_Outline&diff=1432Class Outline2007-09-16T17:06:25Z<p>Rhooper: </p>
<hr />
<div>== Lecture Notes: September 10th, 2007 ==<br />
<br />
This lecture covered Administrative items and a part of the Introduction.<br />
<br />
=== Administrative ===<br />
<br />
==== Textbook ====<br />
<br />
Dr Somayaji has used the 3rd edition textbook before. It isn't ideal, but it will suffice. If you wish to a different textbook, you're expected to ensure that it covers the topics as covered in class.<br />
<br />
==== Exams, Tests, Quizzes, Labs, Assignments ====<br />
<br />
There will be no quizzes and no final exam. There will be 4 labs, 2 tests, and a term paper. We may collaborate on the labs, but not on the quizzes and term paper.<br />
<br />
½ to ⅔ of a test is designed to be easy, with the remainder being more difficult.<br />
<br />
==== Term Paper ====<br />
<br />
Choice of topic for term paper is fairly flexible. Take what you know in other areas of computer<br />
science and integrate them in the paper. Include your own interests. The most common mistake seen<br />
is to take an idea for the exact paper, and then do research to fulfill the paper. Do research first, then come up<br />
with a topic, as the thing you want to write on may not have been written about yet.<br />
<br />
For bibliographies, use the form found in most papers and journals. Bibtex is great for bibliographies.<br />
<br />
Google scholar is a great place to start looking for papers. Many journals are only accessible by subscription, however the [http://library.carleton.ca Carleton University Library] provides access to students both onsite and off. You will need your student ID in order to authenticate from off-site. While on-site, you should be able to access the journals without authentication.<br />
<br />
A useful trick is to take the URL of a journal article and append ''proxy.library.com'' to the domain name portion of the URL.<br />
<br />
==== Extra Credit ====<br />
<br />
Dr Somayaji would like to build a class notes wiki. You can get up to 3 percent added to your final mark if you participate and do an outstanding job. Lower quality jobs will result in less extra credit. You will be able to volunteer once during term. <br />
<br />
==== Labs ====<br />
<br />
You are expected to attend the first lab for each lab assignment, as there<br />
will be marks given for work done in class. This is sort of a way to take<br />
attendance, as well as to help students get started with assignments. This<br />
means there's 4 mandatory tutorials. Students are encouraged to attend all of<br />
the labs. Labs will take longer than one assignment. Don’t be discouraged by<br />
students who manage to finish labs in one hour, as they may have experience<br />
with operating systems already, or may have taken the course before.<br />
<br />
==== Term Papers ====<br />
<br />
You may talk to each other about papers to get feedback, but each paper is<br />
supposed to be your own work.<br />
<br />
Plagiarism is a big deal, and some students of COMP3000 have been caught plagarizing in<br />
the past. '''Do not plagiarize.''' The official policy requires handing over the<br />
plagiarized paper and student to the dean for discipline. <br />
<br />
You can't just cut and paste. If a section in<br />
another person's work is fundamentally the same as yours, this is still<br />
plagiarism. The paper is supposed to be your own work. Figures cannot just be cut<br />
and pasted. You must redraw it yourself, then cite it. Using a thesaurus to<br />
rephrase every word will not work. This is still fundamentally someone else's work.<br />
<br />
This issue carries over into the commercial world, even in code: Free code may<br />
not be free -- read the licenses. Incorporating some 3rd party code may<br />
require your company to divulge all of their code into the wild.<br />
<br />
Watch out for incorporating something but only tweaking it. <br />
<br />
You should read your sources, put them away, and then pull them back out to<br />
put the citations in... This should help avoid plagiarizing, unless you have a<br />
photographic memory.<br />
<br />
==== Lectures ====<br />
<br />
Question from the floor: How do you structure the lectures?<br />
<br />
Dr Somayaji tries to keep the tests to the material in the text and tests.<br />
The lectures will vary, and he considers them to be a performance. Skipping<br />
class will result in some interesting material getting missed, but you should<br />
do acceptably by reading the text and doing the assignments. The goal of the<br />
lectures, however, is to make it worth your time to attend.<br />
<br />
One of the things that universities are struggling with is, especially with the<br />
compute science field, is why are we still requiring students to attend in person? Part<br />
of this is that lectures and other interactions with professors an TAs encourage<br />
a different learning due to physical presence. There is a different type of energy, different<br />
type of synergy. Being able to see reactions of students helps to fine tune the lecture.<br />
<br />
<br />
==== Optional Reading ====<br />
<br />
Over thanksgiving, students are encouraged to read the [http://web.mac.com/nealstephenson/Neal_Stephensons_Site/Home.html Neal Stephenson]'s article [http://www.cryptonomicon.com/beginning.html In the Beginning was the Command Line]. While<br />
he's not entirely correct that UNIX is the one true computer science operating<br />
system, it is almost true. UNIX wasn't built to fulfill a commercial niche. It was<br />
built for programmers by programmers. It has survived because it has been<br />
useful to programmers.<br />
<br />
One of the first things that tends to happen to most new Operating Systems or<br />
platforms is that some part of unix or some variant of unix is ported to it (such as [http://www.netbsd.org/ NetBSD] or [http://www.linux.org/ Linux].<br />
Additionally, things like cygwin will pop up to allow you to port applications<br />
and programs over. [http://www.cygwin.com/ Cygwin] works fairly well, but not perfectly. This is like<br />
a handyman going to a new job. He's going to bring some of his favorite tools<br />
with him to use at the new job. You bring along your favorite tools because<br />
you're familiar with them and can do powerful things with them. <br />
<br />
While we mostly hear about unix in class, we'll still hear about windows some.<br />
<br />
=== Introduction ===<br />
<br />
What is an operating system?<br />
<br />
Student: A large piece of software that interfaces with the machine's hardware<br />
to allow a user to interact with the computer to perform actions.<br />
<br />
Dr Somayaji doesn't like the size qualifier.<br />
<br />
The operating system turns the hardware (the computer that you have) into the<br />
computer that you want (the applications).<br />
<br />
{|align="right"<br />
|[[Image:Comp3000_lecture1_figure1.png]]<br />
|}<br />
Ideally an application should not depend on specific hardware, but rather<br />
generic things - not a specific brand of mouse, but rather any mouse by<br />
abstraction.<br />
<br />
This is an interesting time to talk about operating systems, as this model<br />
of operating system is becoming more and more obsolete. Part of this is that<br />
more and more big applications are becoming part of the operating system (eg<br />
browsers). Even the protection and privilege level separation is becoming<br />
blurred. For example, Internet Explorer's HTML rendering engine is an object that can be used<br />
by many other applications, making it an operating system service. This has<br />
resulted in lawsuits surrounding what an Operating System is. Dr. Somayaji tends to take the<br />
larger view that rather than the more specific view that the layer that talks to<br />
the hardware is the Operating System.<br />
<br />
What's newer, even if the idea is old, is an idea that has become really hot<br />
in the last 5 years (but has been around for 10 years). Virtualization. VMWare<br />
is now worth many billions of dollars. Xensource got bought by citrix.<br />
<br />
How many people like to install Windows? (Nobody raised their hand).<br />
<br />
The reason that this is important is that its a huge pain to install operating<br />
systems. So system administrators turn around and turn the OS into an<br />
application, and just take copies of a new image and replace the OS image with<br />
the new image to upgrade with instead.<br />
<br />
OS <math>\leftrightarrow</math> Application interface is the system calls.<br />
<br />
{|align="right"<br />
|[[Image:Comp3000_lecture1_figure2.png]]<br />
|}<br />
OS <math>\leftrightarrow</math> Hypervisor interface/provides virtual hardware to the OS (eg: here's an abstract<br />
disk, keyboard, network). This abstraction is mapped as the hypervisor sees<br />
fit onto hardware.<br />
<br />
Having software provide virtual hardware requires a few tricks, as some<br />
instructions on a processor go straight to the hardware making virtualization<br />
hard. Fortunately, Intel and AMD have provided extensions to help with this<br />
(VTx).<br />
<br />
The main point to keep in mind here is that operating systems have<br />
traditionally provided imaginary or virtual things for applications to play<br />
with. Such as "Oh, you want memory?", I'll give you memory.. But what it gives<br />
you may not correspond to memory at all. Say you asked for a megabyte of<br />
memory, it may not actually give you it at that time, but only give it to you<br />
when you use it. The same goes with CPUs and the hypervisor. It may not give<br />
you a real CPU at that time.<br />
<br />
The other big trend going on that makes things interesting that is going has<br />
to do with gaming systems. Game manufacturers want to write their game for<br />
all of the platforms... The hardware, however, is remarkably different. <br />
Modern PCs are moving towards 2-4 cores plus graphics processors. Managing<br />
multiple CPUs is a bit tricky, but we know how to do it. The hard part<br />
comes in with the graphics processors and non-traditional processors, such as <br />
the cell processor: The cell processor is 9 cores, but each core is specialized<br />
and not symmetric. They're not all general purpose. <br />
<br />
{|align="right"<br />
|[[Image:Comp3000_lecture1_cell_processor.png]]<br />
|}<br />
A standard cell processor has 8 SPUs and a central core, but one can be bad.<br />
The PS3 has 7 SPUs+Central CPU. It is a standard PPC (Power PC) core. The SPUs implement<br />
SIMD. This takes one instruction and<br />
applies it to multiple data items. Can do the op to an entire array at once.<br />
Processing graphics and sound need to process big arrays. This is what<br />
graphics cards to to a large extent. This means that they're not good for<br />
general purpose code. There's no decision making capability (branching).<br />
<br />
; SISD : Single Instruction Single Data. Plain vanilla processors.<br />
; SIMD : Single instruction multiple data<br />
; MIMD : Multiple Instructions Multiple Data.<br />
<br />
How do you use these? How do you co-ordinate these processors? How do you<br />
abstract this division between CPU and GPU.<br />
<br />
The XBox 360 is closer to a PC in that it has multiple CPUs and a GPU.<br />
Developing for the PS3 versus the XBox is thus very different.<br />
<br />
Hardware is becoming more and more parallel, but more and more dedicated<br />
purpose.</div>Rhooper