User space and kernel space: Difference between revisions
→Implementation: Programming languages have nothing to do with virtual machines. In particular, they don' t "have" machines. Instead, they have semantics. |
Guy Harris (talk | contribs) →Implementation: Don't commit to "many" for single-address-space operating systems or per-process-address-space operating systems. |
||
| (29 intermediate revisions by 26 users not shown) | |||
| Line 1: | Line 1: | ||
{{Short description|Way of using computer memory}} |
|||
| ⚫ | |||
{{Redirect|Kernel space|the mathematical definition|Null space}} |
{{Redirect|Kernel space|the mathematical definition|Null space}} |
||
| ⚫ | |||
{{ |
{{more citations needed|date=October 2012}} |
||
A modern computer [[operating system]] usually |
A modern computer [[operating system]] usually uses [[virtual memory]] to provide separate address spaces, or separate regions of a single address space, called '''user space and kernel space'''.<ref>{{cite web|url=https://linux-kernel-labs.github.io/refs/heads/master/lectures/address-space.html#address-space-options-for-32bit-systems|title=Address space|at=Address space options for 32bit systems}}</ref>{{efn|Older operating systems, such as [[DOS]] and [[Windows 3.1x]], do not use this architecture.}} Primarily, this separation serves to provide [[memory protection]] and hardware protection from malicious or errant software behaviour. |
||
{{anchor|KERNEL}} |
{{anchor|KERNEL}} |
||
Kernel space is strictly reserved for running a privileged [[operating system kernel]], kernel extensions, and most [[device driver]]s. In contrast, user space is the memory area where [[application software]] and some drivers execute. |
Kernel space is strictly reserved for running a privileged [[operating system kernel]], kernel extensions, and most [[device driver]]s. In contrast, user space is the memory area where [[application software]] and some drivers execute, typically one address space per process. |
||
== {{Anchor|USERLAND}}Overview == |
== {{Anchor|USERLAND}}Overview == |
||
The term ''' |
The term '''user space''' (or '''userland''') refers to all code that runs outside the operating system's kernel.<ref>{{cite web |
||
| url = http://www.catb.org/jargon/html/U/userland.html |
| url = http://www.catb.org/jargon/html/U/userland.html |
||
| title = userland, n. |
| title = userland, n. |
||
| work = The [[Jargon File]] |
| work = The [[Jargon File]] |
||
| publisher = [[Eric S. Raymond]] |
| publisher = [[Eric S. Raymond]] |
||
| |
| access-date = 2016-08-14}}</ref> User space usually refers to the various programs and [[library (computing)|libraries]] that the operating system uses to interact with the kernel: software that performs [[input/output]], manipulates [[file system]] objects, [[application software]], etc. |
||
Each user space [[process (computing)|process]] normally runs in its own [[virtual memory]] space, and, unless explicitly allowed, cannot access the memory of other processes. This is the basis for [[memory protection]] in today's mainstream operating systems, and a building block for [[privilege separation]]. A separate user mode can also be used to build efficient virtual machines – see [[Popek and Goldberg virtualization requirements]]. With enough privileges, processes can request the kernel to map part of another process's memory space to its own, as is the case for [[debugger]]s. Programs can also request [[Shared memory (interprocess communication)|shared memory]] regions with other processes, although other techniques are also available to allow [[inter-process communication]]. |
Each user space [[process (computing)|process]] normally runs in its own [[virtual memory]] space, and, unless explicitly allowed, cannot access the memory of other processes. This is the basis for [[memory protection]] in today's mainstream operating systems, and a building block for [[privilege separation]]. A separate user mode can also be used to build efficient virtual machines – see [[Popek and Goldberg virtualization requirements]]. With enough privileges, processes can request the kernel to map part of another process's memory space to its own, as is the case for [[debugger]]s. Programs can also request [[Shared memory (interprocess communication)|shared memory]] regions with other processes, although other techniques are also available to allow [[inter-process communication]]. |
||
| Line 22: | Line 23: | ||
== Implementation == |
== Implementation == |
||
The most common way of implementing a '''user mode''' separate from [[supervisor mode|kernel mode]] involves operating system [[ |
The most common way of implementing a '''user mode''' separate from [[supervisor mode|kernel mode]] involves operating system [[protection ring]]s. |
||
Protection rings, in turn, are implemented using [[CPU modes]]. |
|||
Typically, kernel space programs run in [[kernel mode]], also called [[supervisor mode]]; |
|||
normal applications in user space run in user mode. |
|||
Some operating systems are [[single address space operating system]]s—they have a single address space for all user-mode code. (The kernel-mode code may be in the same address space, or it may be in a second address space). |
|||
Other operating systems have a per-process address space, with a separate address space for each and every user-mode process. |
|||
Another approach taken in experimental operating systems is to have a single [[address space]] for all software, and rely on a programming language's semantics to make sure that arbitrary memory cannot be accessed – applications simply cannot acquire any [[reference (computer science)|reference]]s to the objects that they are not allowed to access.<ref>{{cite web |
Another approach taken in experimental operating systems is to have a single [[address space]] for all software, and rely on a programming language's semantics to make sure that arbitrary memory cannot be accessed – applications simply cannot acquire any [[reference (computer science)|reference]]s to the objects that they are not allowed to access.<ref>{{cite web |
||
| url=http://uuu.sourceforge.net/si.php#SEC6 |
| url=http://uuu.sourceforge.net/si.php#SEC6 |
||
| title=Unununium System Introduction |
| title=Unununium System Introduction |
||
| |
| archive-url=https://web.archive.org/web/20011215052223/http://uuu.sourceforge.net/si.php#SEC6 |
||
| |
| archive-date=2001-12-15 |
||
| url-status=dead |
|||
| deadurl=yes |
|||
| |
| access-date = 2016-08-14}}</ref><ref>{{cite web |
||
| url=http://uuu.cvs.sourceforge.net/viewvc/uuu/uuu/docs/system_introduction/uuu_intro.tex?view=markup |
| url=http://uuu.cvs.sourceforge.net/viewvc/uuu/uuu/docs/system_introduction/uuu_intro.tex?view=markup |
||
| title=uuu/docs/system_introduction/uuu_intro.tex |
| title=uuu/docs/system_introduction/uuu_intro.tex |
||
| work=UUU System Introduction Guide |
| work=UUU System Introduction Guide |
||
| date=2001-06-01 |
| date=2001-06-01 |
||
| |
| access-date = 2016-08-14}}</ref> This approach has been implemented in [[JX (operating system)|JXOS]], Unununium as well as Microsoft's [[Singularity (operating system)|Singularity]] research project. |
||
== See also == |
== See also == |
||
* [[BIOS]] |
* [[BIOS]] |
||
* [[CPU modes]] |
* [[CPU modes]] |
||
* [[Early user space]] |
|||
* [[Memory protection]] |
* [[Memory protection]] |
||
* [[OS-level virtualization]] |
|||
==Notes== |
==Notes== |
||
Latest revision as of 23:13, 16 June 2024
 | This article needs additional citations for verification. (October 2012) |
A modern computer operating system usually uses virtual memory to provide separate address spaces, or separate regions of a single address space, called user space and kernel space.[1][a] Primarily, this separation serves to provide memory protection and hardware protection from malicious or errant software behaviour.
Kernel space is strictly reserved for running a privileged operating system kernel, kernel extensions, and most device drivers. In contrast, user space is the memory area where application software and some drivers execute, typically one address space per process.
Overview
[edit]The term user space (or userland) refers to all code that runs outside the operating system's kernel.[2] User space usually refers to the various programs and libraries that the operating system uses to interact with the kernel: software that performs input/output, manipulates file system objects, application software, etc.
Each user space process normally runs in its own virtual memory space, and, unless explicitly allowed, cannot access the memory of other processes. This is the basis for memory protection in today's mainstream operating systems, and a building block for privilege separation. A separate user mode can also be used to build efficient virtual machines – see Popek and Goldberg virtualization requirements. With enough privileges, processes can request the kernel to map part of another process's memory space to its own, as is the case for debuggers. Programs can also request shared memory regions with other processes, although other techniques are also available to allow inter-process communication.
| User mode | User applications | bash, LibreOffice, GIMP, Blender, 0 A.D., Mozilla Firefox, ... | ||||
|---|---|---|---|---|---|---|
| System components | init daemon: OpenRC, runit, systemd... |
System daemons: polkitd, smbd, sshd, udevd... |
Window manager: X11, Wayland, SurfaceFlinger (Android) |
Graphics: Mesa, AMD Catalyst, ... |
Other libraries: GTK, Qt, EFL, SDL, SFML, FLTK, GNUstep, ... | |
| C standard library | fopen, execv, malloc, memcpy, localtime, pthread_create... (up to 2000 subroutines)glibc aims to be fast, musl aims to be lightweight, uClibc targets embedded systems, bionic was written for Android, etc. All aim to be POSIX/SUS-compatible. | |||||
| Kernel mode | Linux kernel | stat, splice, dup, read, open, ioctl, write, mmap, close, exit, etc. (about 380 system calls)The Linux kernel System Call Interface (SCI), aims to be POSIX/SUS-compatible[3] | ||||
| Process scheduling subsystem | IPC subsystem | Memory management subsystem | Virtual files subsystem | Networking subsystem | ||
| Other components: ALSA, DRI, evdev, klibc, LVM, device mapper, Linux Network Scheduler, Netfilter Linux Security Modules: SELinux, TOMOYO, AppArmor, Smack | ||||||
| Hardware (CPU, main memory, data storage devices, etc.) | ||||||
Implementation
[edit]The most common way of implementing a user mode separate from kernel mode involves operating system protection rings. Protection rings, in turn, are implemented using CPU modes. Typically, kernel space programs run in kernel mode, also called supervisor mode; normal applications in user space run in user mode.
Some operating systems are single address space operating systems—they have a single address space for all user-mode code. (The kernel-mode code may be in the same address space, or it may be in a second address space). Other operating systems have a per-process address space, with a separate address space for each and every user-mode process.
Another approach taken in experimental operating systems is to have a single address space for all software, and rely on a programming language's semantics to make sure that arbitrary memory cannot be accessed – applications simply cannot acquire any references to the objects that they are not allowed to access.[4][5] This approach has been implemented in JXOS, Unununium as well as Microsoft's Singularity research project.
See also
[edit]Notes
[edit]- ^ Older operating systems, such as DOS and Windows 3.1x, do not use this architecture.
References
[edit]- ^ "Address space". Address space options for 32bit systems.
- ^ "userland, n." The Jargon File. Eric S. Raymond. Retrieved 2016-08-14.
- ^ "Admin Guide README". Kernel.org git repositories.
- ^ "Unununium System Introduction". Archived from the original on 2001-12-15. Retrieved 2016-08-14.
- ^ "uuu/docs/system_introduction/uuu_intro.tex". UUU System Introduction Guide. 2001-06-01. Retrieved 2016-08-14.
External links
[edit]- Linux Kernel Space Definition
- Entering User Mode at the Wayback Machine (archived March 26, 2016)