Privileged operations in the PlanetLab virtualised environment

Steve Muir, Larry Peterson, Marc Fiuczynski, Justin Cappos, John Hartman
2006 ACM SIGOPS Operating Systems Review  
Virtualised systems have experienced a resurgence in popularity in recent years, whether used to support multiple OSes running on a user's desktop, provide commercial application hosting facilities, or isolate a large number of users from each other in global network testbeds. We also see an increasing level of interest in having entities within these virtualised systems interact with each other, either as peers or as helpers providing a service to clients. Very little work has been previously
more » ... onducted on how such interaction between virtualised environments can take place. We introduce Proper, a service running on the Planet-Lab system, that allows unprivileged entities to access privileged operations in a safe, tightly controlled manner. This paper describes our work designing and implementing Proper, including a discussion of the various architectural decisions made. We describe how implementing such a system in a traditional UNIX environment is non-trivial, and provide a number of examples of how services running on PlanetLab actually use Proper.
doi:10.1145/1113361.1113375 fatcat:74pgjsla2fgx3jyb4ka4qr2dky