Computer Science 161 (2013)

Instructions

• Download the exam and read through the entire exam.
• Go to dinner and think about the exam.
• Spend a couple of hours Tuesday evening writing up answers the questions that you know.
• Get a good night's sleep.
• Spend another couple of hours on Wednesday working on the remaining problems.
• Read over your answers.
• Email them to me at margo@eecs.harvard.edu.
• Show up in Pierce 309 to consume ice cream, pick up your T-shirt, optionally iron on a team patch (see Piazza post for details).

Exam Policy Statement

1. Buffer Cache Fun (60 points)

A. O_DIRECT

As you learned in assignment 4 and our file system lectures, file systems often maintain an in-memory collection of pages to speed access to frequently used files (i.e., the buffer cache). Software that wishes more explicit control over when data gets to disk (e.g., transactional database systems) frequently find the buffer cache a problem. They often implement their own in-memory cache and when they issue a write system call, they really want the data to go to disk.

In recognition of this problem, some systems provide an open flag (i.e., a flag to the open system call), O_DIRECT (or the F_NOCACHE flag to the fcntl system call), that directs the file system not to cache data for the file in question, but instead to service read/write requests directly from/to the disk.

Consider the following scenario:

• Process P opens file F with the O_DIRECT flag set.
• The standard cp utility does not set O_DIRECT.
• Now, let's say that P periodically writes blocks to F.
• A shell script wakes up periodically and copies F to make a backup.

If P follows the semantics of O_DIRECT exactly and cp uses the buffer cache as it currently exists, you can get out-of-date backups. For example, let's say that at time 1, cp copies file F and leaves blocks in the buffer cache. Now P writes a block of F directly to disk (i.e., does not update the buffer cache). If cp runs again while its blocks are still in the cache, it could copy the old version of F without P's most recent update.

Design an implementation of O_DIRECT that solves this problem in the context of OS/161. You needn't write pseudocode, but identify the key data structures you want to change and, in English, describe what parts of the code you wish to modify and how you wish to modify them. After you present your design, explain how it avoids the problem described.

Note: One challenge not explicitly mentioned is that you might have dirty buffers in the cache when P opens a file O_DIRECT. You may ignore this situation in this question.

There were many ways to address this problem. In terms of code path,
I was hoping people would mention some aspect of passing the O_DIRECT
around and storing it.  Then, you could have done various things:
If you make things go through the buffer cache:
* store O_DIRECT in the open-file structure at open time
* pass O_DIRECT through to VOP_READ/VOP_WRITE
* pass it from sfs_read/sfs_write to and through sfs_io
* in sfs_blockio and sfs_partialio, if writing do buffer_writeout
  at the end, and then do buffer_release_and_invalidate instead of
  buffer_release.
If you make all accesses to O_DIRECT files bypass the cache
* tag the vnode with O_DIRECT when it's opened that way
  (this probably requires a counter, not just a flag, in case there
  are multiple such opens)
* in sfs_blockio, if the vnode is tagged O_DIRECT, go straight to
  the disk device with the passed-in uio structure.
* in sfs_partialio, even if the vnode is tagged O_DIRECT, you still
  need to use a buffer, so do the same thing as in the previous
  way.
If you try to invalidate cached blocks when you O_DIRECT write them:
* store O_DIRECT in the open-file structure at open time
* pass O_DIRECT through to VOP_READ/VOP_WRITE
* pass it from sfs_read/sfs_write to and through sfs_io
* in sfs_blockio, if doing O_DIRECT, go straight to the disk device
  with the passed-in uio structure.
* on write, also do buffer_drop on the block.
* on read... one way is to ignore the buffer cache (in which case,
  non-O_DIRECT writes not yet flushed out may not be seen); another
  way is to do buffer_drop, and if someone has done a non-O_DIRECT
  write they lose; a third way is to do buffer_read to read the
  block, and buffer_release_and_invalidate afterwards (like above),
  which guarantees write consistency at the expense of doing an
  extra copy for all reads.
* in sfs_partialio, if doing O_DIRECT, just return EINVAL (that is,
  demand block-aligned I/O) or do the same as in the other ways.

B. Mmap

• Sketch out in a paragraph or two how you might implement a limited form of mmap that simply maps an entire file into a process's virtual address space at whatever address the VM system wants. For this part of the question, ignore what happens if anyone tries to extend the file or if another process accesses the file using open/close/read/write (that comes in part B).
  At one level, this is only a small extension to the VM system: we have entries in a process's page table that reference pages on disk. However, at another level, it greatly complicates it because right now when a file is backed on disk, that page lives in swap. Using mmap, we now need to distinguish between pages that live in swap and pages that live in a particular file. Let's pretend for now that I implemented a segmented page table. I would place mmapped files in their own segment, so that I could associate segments with the right backing stores. Some of the segments would have a "0-fill" backing store; some would have swap; and others would reference files. For this part of the question I'm going to leave the file table in place and I would have an mmap essentially do an open (for read/write). I would then give the segment a reference to that open file, indicating that the file backs this part of virtual memory. There is some additional error checking I need to do -- I need to find a place in the address space large enough to map the entire file. For example, if I have a 32-bit address space and a TB file, I have to fail. Even if the file isn't larger than my address space, if it's larger than any contiguous region in my address space I have to fail.
  
• Discuss in another paragraph or two the implications that mmap has on the file system buffer cache and how you might address them.
  This part is potentialy much trickier. The problem arises if some other process opens the file and starts reading and writing to it; if I don't do anything special, there will be parts of the file in the buffer cache as well as in pages mapped into a process's address space managed by the VM system. That sounds pretty ugly. So it seems that what I want to do is have pages in the buffer cache that the VM manages. Most systems today implement an integrated VM and buffer cache, so that would seem where I'm headed. For now I'll try to keep it simple. I guess I'd let the file system call upon the VM system to give it pages that the OS maps into its address space to create the buffer cache. I would not want to require that all open files be mapped in their entirety in the kernel's address space, because that would limit the sizes and/or number of files I could have open. I'd still use something like the file open table to keep track of what files were being managed. So, let's say an mmap comes in and it's a first open: I simply mmap as above and don't do anything special as above. Now let's say that another process opens the file normally (i.e., the open system call). I would see that the file was already in a process address space when I looked it up in the file table. So, I would essentially let the buffer cache now include the region mapped by the process so that subsequent accesses to that file would result in my sharing the exact same page in memory with the process. The slow and simple way to do this would be to create buffer headers for each mmapped page, but that seems like overkill, so I would want to teach the buffer manager to consult the process's page table and create an efficient mechanism to do it (i.e., a pointer into the appropriate page table). Now let's consider the opposite order: I have buffers in the buffer cache and a process tries to mmap it. That seems fairly straight forward in that when I create the mappings in the process' address space, I just need to make sure that I map the pages that are already in memory to the same physical pages that the VM system is managing. If I refcount pages properly, this should all work nicely.
  

2. Virtual Memory (40 points)

• It implements a 32-bit virtual address space.
• It has a 64 entry TLB.
  • Each entry can contain a global mapping (address space IDs are ignored) or it can contain a 6-bit address space ID.
  • Each entry can map either 1 MB or 4 KB.
  • Each entry specifies access of one of: no-access, read-only, read-write.
• It implements 2-level page tables in hardware.
  • The page tables are only accessed on a TLB fault.
  • The first/top level page table translates either a full 1 MB region or it points to a second level table.
  • The second level page table translates 4 KB pages.
• Access to the page tables is as follows (you might find it useful to draw a picture for this process).
  • The top 12 bits of the virtual address index into the top level page table.
  • If the entry is a 1 MB region, then the necessary part of the physical address resides in the top level table.
  • If the entry is a not for a 1 MB entry, then the physical address of the beginning of second level page table resides in the top level page table.

• 00 = Invalid mapping
• 01 = Mapping is valid, but no access is granted
• 10 = read-only
• 11 = read-write

1. Why are 12 bits of the Virtual Address used to index into the top level page table? (4) That leaves 20 bits or 1 MB, so each entry in the top level table maps 1 MB, which lets you store the translation for large regions in the top level table.
2. How many entries are there in the top-level page table? (2)4096
3. On a TLB fault handled by the hardware page table path, how many memory accesses are required to read data stored in a 1 MB mapped segment? (2)2 -- 1 for the 1st level table; 1 for the data
4. On a TLB fault handled by the hardware page table path, how many memory accesses are required to access data stored in a 4 KB page (not in a 1 MB segment). (2)3 -- 1 for the 1st level table; 1 for the second level table; 1 for the data
5. Which bit(s) of a first level page table entry tell you whether the address you are translating is part of a 1 MB region or a 4 KB page? (2)The low 2 bits -- actually either of the bits
6. How many entries are there in a 2nd level page table? (4)1 MB/4 KB = 256
7. As described this processor can only access a 32-bit physical address space. How could you let it access a larger physical address space? (4)Use some of the unused bits as part of the physical address.
8. Is it possible to run the LEG processor on a system with less than 4 GB (32 bits worth) of physical memory? (2)Yes
9. Can two different pages in the same 1 MB region mapped in the top-level page table have different access protection? (2) No
10. Can two consecutive 4 KB pages mapped through second level page tables have different access protection? (2) Yes

11. At what address will you find the page table entry for virtual address 0x40277123? (6)0x48D159DC = 0x123456<<10 + 0x77<<2 = 0100 1000 1101 0001 0101 1001 1101 1100
12. Given the information above, do you know that 0x40277123 is an address from which you are allowed to read? (2) No -- page permissions could deny it.
13. What is the physical address for virtual address 0x40666ABC? (4) 0xABCDE66ABC (Note that this exceeds 32 bits, which was really quite unfair)
14. Given the information above, do you know that you can read from that address?(2) Yes -- there are no additional permission bits to check