Lecture 5

OS goals
- Protection
- Robustness
- Utilization
- Performance
- Flexibility
- Simplicity
Kernel Abstraction
Different operating systems deploy different schemes when it comes to kernel abstraction
- X86 supports 4 levels of abstraction in hardware.
- Linux only supports 2 levels of abstraction for performance reasons.
- OS X supports more than 2 levels of abstraction, but it keeps the exact number a secret.
Examples:

fork()

Takes a process and clones it
The copy is identical to the original except for
- Different process ids
  - PID is like a stamp on each process
  - pid_t getpid(void) gets different pids for parent and child processes
- Different parent PIDs
  - pid_t getppid(void) gets different parent pids
- Different file descriptor tables ---->
- CPU time info
- Pending signals
  - for example: when the user types Control^C, only one process gets a signal
- File locks
  - Note that these are advisory locks
  - It works only if all processes follow the rules.

execvp(char const *, char * const *)
- It destroys/reuses the process
- Destroys everthing about that process
  - Except (things mentioned above)
  - Destroy all variables, program (code), registers %rip …
  - As a corollary, signal handlers get reset

Code example: program that prints out the time of the day


//Program that prints out the time of the day
bool printdate() {
    pid_t p = fork();
    switch(p) {
        case -1:
            error();
        case  0: {
            static char const date[] = "/bin/date";
            execvp("/bin/date", (char const *){date,0});
            error(); //execvp doesn't return if succeed
        }
        default: {
            int status;
            if (waitpid(p,&status,0) != p)
                error();
        }
    }
    //WIFEXITED: if child terminated normally, returns ture
    //WEXITSTATUS(status) prints out the real exit status
    return WIFEXITED(status) && WEXITSTATUS(status) == 0;
}

//Program that prints out the time of the day to a file
bool printdate(char const *outfile) {
    pid_t p = fork();
    switch(p) {
        case -1:
            error();
        case  0: {
            static char const date[] = "/bin/date";
            int fd = open(outfile, O_WRONLY);
            if (fd < 0)
                error();
            if (dup2(fd,1) < 0)
                error();
            if (fd != 1)
                close(fd);
            execvp("/bin/date", (char const *){date,0});
            error(); //execvp doesn't return if succeed
        }
        default: {
            int status;
            if (waitpid(p,&status,0) != p)
            error();
        }
    }
    return WIFEXITED(status) && WEXITSTATUS(status) == 0;
}

Usual pattern for executing a program:

if(fork() == 0) {
  //Housekeeping;
  execvp(...);
}

Another school of thought, which is simpler and does all jobs in one system call:

int posix_spawnvp(
  pid_t * restrict pid,    
  char const *restrict file,
  posix_spawn_file_actions_t const * restrict file_acts,
  posix_spawn_attr_t const * restrict attrp,
  char * const * restrict argv,
  char * const * restrict envp
);

posix_spawnvp doesn't copy all that memory(imagine you copied 8GB memory only to do an execvp), so it is very efficient and fast and cheap.

Definition: the choice of one attribute doesn't constrain you from choosing another attribute
For processes, we want system calls to be orthogonal to other system calls
- e.g. we want functions like nice() rather than attributes in posix_spawnvp
For files (from CPU point of view, files are slow, unreliable):
- Robustness
- Performance
- Orthogonality
Unix BIG IDEA: everything is a file.
- example actions on files:
  - open
    - open("/dev/tty", O_RDONLY) to open keyboard
    - open("/dev/rdisk/b", O_WRONLY) to open hard disk which has booting files
  - close
  - read
  - write
  - dup2
  - lseek
    - If we apply lseek on a stream device, it will return -1 and set the errno:
    - e.g. leek(fd, 27000 million, SEEK_SET) doesn't make sense for keyboard
  - locking

Comparison of Linux’s files:

Pipe:
- Pipes are FIFO (First In First Out) bounded buffers
- Buffers are located in kernel memory
- Because the buffer is bounded, there is no need to worry about exhausting the memory
  - Bounded pipe limits the amount of data that is in transit
  - If a pipe is full and some process still wants to write to it, kernel will hang it
  - If a pipe is empty and some process wants to read from it, kernel will hang it
- Shell Example: (A & B) | ( C & D & E)
  - On the writer end of the pipe, we have A and B writing to the pipe (A is running in the background. The ‘&’ command runs the program in the background)
  - On the reader end of the pipe, we have C and D and E reading from the pipe
  - Due to how pipe works, in this case there is no way for a writer to send a message to a particular reader. For example, if A writes "abcde" and B writes "12345", C may read "abcd", D may read "e123", E may read "45"

Race conditions occur when behaviors of the program differ according to how processes are scheduled
Sometimes, the pursuit of orthogonality introduces race conditions

Code example: creating a temporary file that stores sorted data.


// create_temp_file returns the new file descriptor, or -1 if an error occurred

//Proposal:
int create_temp_file(void) {
    return open("/tmp/sort.tmp",O_RDWR|O_CREAT|O_TRUNC,0600);
}

//Problem: when two sort programs are running at the same time, one will trash the other's temp file!

//Fix:
int create_temp_file(void) {
    char name[1000];
    sprintf(name, "/tmp/sort.%d", getpid());
    return open(name, O_RDWR|O_CREAT|O_TRUNC,0600);
}
//name[1000] is an char array big enough to hold our temp file's name
//sprintf() puts "/temp/sort." and our process ID into name[1000]. (e.g. "/temp/sort.30149", where 30149 is our process ID) Thus, no two sort programs running at the same time can trash each other's temp files because each process has a unique process ID!

//Problem: what if someone else has already created the same file and you don't have the access to open it?

//Fix:
int create_temp_file(void) {
    char name[1000];
    int fd;
    while (1) {
        sprintf(name, "/tmp/sort.%d", random());
        if((fd = open(name, O_RDWR|O_CREAT|O_TRUNC|O_EXCL,0600)) > 0)
            return fd;
    }
}

//now we have a loop, and a random name generator. O_EXCl flag ensures that when the file with the same name already exists, open() should fail.

//Simplified version:
int create_temp_file(void) {
    for(;;) {
        sprintf(name, some_random_string());
        if(open(name, O_RDONLY|O_CREAT|O_TRUNC|O_EXCL))
            return open(name, O_WRONLY, 0600);
    }
}

//Problem: now race condition arises! What if two sort call open() on the same file at the same time?