skip to main content
research-article

Facilitating inter-application interactions for OS-level virtualization

Published:03 March 2012Publication History
Skip Abstract Section

Abstract

OS-level virtualization generates a minimal start-up and run-time overhead on the host OS and thus suits applications that require both good isolation and high efficiency. However, multiple-member applications required for forming a system may need to occasionally communicate across this isolation barrier to cooperate with each other while they are separated in different VMs to isolate intrusion or fault. Such application scenarios are often critical to enterprise-class servers, HPC clusters and intrusion/fault-tolerant systems, etc. We make the first effort to support the inter-application interactions in an OS-level virtualization system without causing a significant compromise on VM isolation. We identify all interactive operations that impact inter-application interactions, including inter-process communications, application invocations, resource name transfers and application dependencies. We propose Shuttle, a novel approach for facilitating inter-application interactions within and across OS-level virtual machines. Our results demonstrate that Shuttle can correctly address all necessary inter-application interactions while providing good isolation capability to all sample applications on different versions of Windows OS.

References

  1. B. Alpern, J. Auerbach, V. Bala, T. Frauenhofer, T. Mummert, and M. Pigott, "Pds: A virtual execution environment for software deployment," in Proceedings of the 1st International Conference on Virtual Execution Environments, 2005. Google ScholarGoogle ScholarDigital LibraryDigital Library
  2. J. Andrus, C. Dall, A. V. Hof, O. Laadan, and J. Nieh. Cells: a virtual mobile smartphone architecture. In Proceedings of the Twenty-Third ACM Symposium on Operating Systems Principles (SOSP '11). ACM, New York, NY, USA, 173--187. Google ScholarGoogle ScholarDigital LibraryDigital Library
  3. M. Armbrust, A. Fox, R. Griffith et al., Above the Clouds: A Berkeley View of Cloud Computing, Unversity of California, Berkeley, Berkeley, CA, 2009.Google ScholarGoogle Scholar
  4. P. Barham, B. Dragovic, K. Fraser, S. Hand, T. Harris, A. Ho, R. Neugebauer, I. Pratt, and A. Warfield. Xen and the art of virtualization. In Proceedings of the 19th ACM Symposium on Operating Systems Principles, pages 164--177. ACM Press, 2003. Google ScholarGoogle ScholarDigital LibraryDigital Library
  5. A. Bavier , M. Bowman , B. Chun , D. Culler , S. Karlin, S. Muir, L. Peterson, T. Roscoe, T. Spalink, M. Wawrzoniak, Operating system support for planetary-scale network services, Proceedings of the 1st conference on Symposium on Networked Systems Design and Implementation, p.19--19, March, 2004, California. Google ScholarGoogle ScholarDigital LibraryDigital Library
  6. A. Burtsev, K. Srinivasan, P. Radhakrishnan, L. N. Bairavasundaram, K. Voruganti, and G. R. Goodson, "Fido: Fast inter-virtual-machine communication for enterprise appliances," in Proceedings of the USENIX Annual Technical Conference, San Diego, USA, 2009. Google ScholarGoogle ScholarDigital LibraryDigital Library
  7. D. R. Cheriton and K. J. Duda. A Caching Model of Operating System Kernel Functionality. In Proceedings of the 1st USENIX Symposium on Operating Systems Design and Implementation, 1994. Google ScholarGoogle ScholarDigital LibraryDigital Library
  8. D. R. Engler, M. F. Kaashoek, and J. O'Toole, Jr.. 1995. Exokernel: an operating system architecture for application-level resource management. In Proceedings of the fifteenth ACM symposium on Operating systems principles (SOSP '95), Michael B. Jones (Ed.). ACM, New York, NY, USA, 251--266. Google ScholarGoogle ScholarDigital LibraryDigital Library
  9. W. Huang, M. Koop, Q. Gao, and D.K. Panda. Virtual machine aware communication libraries for high performance computing. In Proceedings of SuperComputing, Reno, NV, Nov. 2007. Google ScholarGoogle ScholarDigital LibraryDigital Library
  10. P.-H. Kamp and R. N. M. Watson. Jails: Confining the omnipotent root. In Proceedings of the 2nd International SANE Conference, 2000.Google ScholarGoogle Scholar
  11. K. Kim, C. Kim, S.-I. Jung, H.-S. Shin, and J.-S. Kim. Inter-domain socket communications supporting high performance and full binary compatibility on Xen. In Proceedings of the fourth ACM International Conference on Virtual Execution Environments, 2008. Google ScholarGoogle ScholarDigital LibraryDigital Library
  12. I. Leslie, D. McAuley, R. Black, T. Roscoe, P. Barham, D. Evers, R. Fairbairns, and E. Hyden. The Design and Implementation of an Operating System to Support Distributed Multimedia Applications. IEEE Journal on Selected Areas In Communications, 14 (7), 1996. Google ScholarGoogle ScholarDigital LibraryDigital Library
  13. Linux VServer, http://linux-vserver.org/Documentation, 2010.Google ScholarGoogle Scholar
  14. Linux VServer, http://linux-vserver.org/Problematic_Programs, 2011Google ScholarGoogle Scholar
  15. Microsoft. Process Explorer. http://technet.microsoft.com/en-us/ sysinternals/bb896653.aspxGoogle ScholarGoogle Scholar
  16. S. Osman, D. Subhraveti, G. Su, and J. Nieh. The Design and Implementation of Zap: A System for Migrating Computing Environments. In Proceedings of the 5th USENIX Symposium on Operating Systems Design and Implementation (OSDI02), pages 361--376, Boston, MA, Dec 2002. Google ScholarGoogle ScholarDigital LibraryDigital Library
  17. P. Padala, X. Zhu, Z.Wang, S. Singhal, and K. Shin. Performance Evaluation of Virtualization Technologies for Server Consolidation. Technical Report HPL-2007--59, HP Labs, April 2007.Google ScholarGoogle Scholar
  18. PC Magazine, PC Magazine benchmarks, http://www.pcm-ag.com/encyclopedia_term/0,2542,t=WebBench&i=48947,00.aspGoogle ScholarGoogle Scholar
  19. D. E. Porter, S. Boyd-Wickizer, J. Howell, R. Olinsky, and G. C. Hunt. 2011. Rethinking the library OS from the top down. In Proceedings of the sixteenth international conference on Architectural support for programming languages and operating systems (ASPLOS '11). ACM, New York, NY, USA, 291--304. Google ScholarGoogle ScholarDigital LibraryDigital Library
  20. D. Price and A. Tucker. Solaris Zones: Operating system support for consolidating commercial workloads. In Proceedings of the 18th Large Installation System Administration Conference (LISA), USENIX, 2004. Google ScholarGoogle ScholarDigital LibraryDigital Library
  21. J.H. Saltzer and M.D. Schroeder. The protection of information in computer systems. In Proceedings of the IEEE, 63(9):1278--1308, September 1975.Google ScholarGoogle Scholar
  22. Z. Shan, T. Chiueh, and X. Wang. Virtualizing system and ordinary services in Windows-based OS-level virtual machines. In Proceedings of the 2011 ACM Symposium on Applied Computing (SAC '11). ACM, New York, NY, USA, 579--583. Google ScholarGoogle ScholarDigital LibraryDigital Library
  23. S. Soltesz , H. Pötzl , M. E. Fiuczynski, A. Bavier, L. Peterson, Container-based operating system virtualization: a scalable, high-performance alternative to hypervisors, In Proceedings of the 2nd ACM SIGOPS/EuroSys European Conference on Computer Systems 2007, March 21--23, 2007, Lisbon, Portugal. Google ScholarGoogle ScholarDigital LibraryDigital Library
  24. SWSoft, "OpenVZ - Server Virtualization," 2006, http://www. openvz.org/.Google ScholarGoogle Scholar
  25. VMware. Vmware products. http://www.vmware.com/products/ home.html.Google ScholarGoogle Scholar
  26. P. Walters, V. Chaudhary, M. Cha, S. Guercio Jr., S. Gallo, "A Comparison of Virtualization Technologies for HPC," In Proceedings of the 22nd International Conference on Advanced Information Networking and Applications (aina 2008), pp.861--868. Google ScholarGoogle ScholarDigital LibraryDigital Library
  27. J. Wang, K.-L. Wright, and K. Gopalan. Xenloop: A transparent high performance inter-VM network loopback. In Proceedings of the 17th International Symposium on High Performance Distributed Computing (HPDC), 2008. Google ScholarGoogle ScholarDigital LibraryDigital Library
  28. Y. Yu, F. Guo, S. Nanda, L. Lam, T. Chiueh, ''A Feather-weight Virtual Machine for Windows Applications'', in Proceedings of the 2nd ACM/USENIX Conference on Virtual Execution Environments (VEE'06), June 2006. Google ScholarGoogle ScholarDigital LibraryDigital Library
  29. Y. Yu, H. K. Govindarajan, L. Lam, T. Chiueh "Applications of Feather-Weight Virtual Machine", In Proceedings of the ACM SIGPLAN/SIGOPS International Conference on Virtual Execution Environments (VEE08), Seattle WA, March 2008. Google ScholarGoogle ScholarDigital LibraryDigital Library
  30. X. Zhang, S. McIntosh, P. Rohatgi, and J.L. Griffin. Xensocket: A high-throughput interdomain transport for virtual machines. In Proceedings of Middleware, 2007. Google ScholarGoogle ScholarDigital LibraryDigital Library

Index Terms

  1. Facilitating inter-application interactions for OS-level virtualization

        Recommendations

        Comments

        Login options

        Check if you have access through your login credentials or your institution to get full access on this article.

        Sign in

        Full Access

        PDF Format

        View or Download as a PDF file.

        PDF

        eReader

        View online with eReader.

        eReader
        About Cookies On This Site

        We use cookies to ensure that we give you the best experience on our website.

        Learn more

        Got it!