Presentation is loading. Please wait.

Presentation is loading. Please wait.

1 Distributed File Systems: Design Comparisons David Eckhardt, Bruce Maggs slides used and modified with permission from Pei Cao’s lectures in Stanford.

Published byLesley Garrison Modified over 9 years ago

Similar presentations

Presentation on theme: "1 Distributed File Systems: Design Comparisons David Eckhardt, Bruce Maggs slides used and modified with permission from Pei Cao’s lectures in Stanford."— Presentation transcript:

1 1 Distributed File Systems: Design Comparisons David Eckhardt, Bruce Maggs slides used and modified with permission from Pei Cao’s lectures in Stanford Class CS-244B

2 2 Other Materials Used 15-410 Lecture 34, NFS & AFS, Fall 2003, Eckhardt NFS: –RFC 1094 for v2 (3/1989) –RFC 1813 for v3 (6/1995) –RFC 3530 for v4 (4/2003) AFS: –“The ITC Distributed File System: Principles and Design”, Proceedings of the 10 th ACM Symposium on Operating System Principles, Dec. 1985, pp. 35-50. –“Scale and Performance in a Distributed File System”, ACM Transactions on Computer Systems, Vol. 6, No. 1, Feb. 1988, pp. 51-81. –IBM AFS User Guide, version 36

3 3 More Related Material RFCs related to Remote Procedure Calls (RPCs) –RFC 1831 XDR representation –RFC 1832 RPC –RFC 2203 RPC security

4 4 Outline Why Distributed File Systems? Basic mechanisms for building DFSs –Using NFS V2 as an example Design choices and their implications –Naming (this lecture) –Authentication and Access Control (this lecture) –Batched Operations (this lecture) –Caching (next lecture) –Concurrency Control (next lecture) –Locking implementation (next lecture)

5 5 15-410 Gratuitous Quote of the Day Good judgment comes from experience… Experience comes from bad judgment. - attributed to many

6 6 Why Distributed File Systems?

7 7 What Distributed File Systems Provide Access to data stored at servers using file system interfaces What are the file system interfaces? –Open a file, check status of a file, close a file –Read data from a file –Write data to a file –Lock a file or part of a file –List files in a directory, create/delete a directory –Delete a file, rename a file, add a symlink to a file –etc

8 8 Why DFSs are Useful Data sharing among multiple users User mobility Location transparency Backups and centralized management

9 9 “File System Interfaces” vs. “Block Level Interfaces” Data are organized in files, which in turn are organized in directories Compare these with disk-level access or “block” access interfaces: [Read/Write, LUN, block#] Key differences: –Implementation of the directory/file structure and semantics –Synchronization (locking)

10 10 Digression: “Network Attached Storage” vs. “Storage Area Networks” NASSAN Access MethodsFile accessDisk block access Access MediumEthernetFiber Channel and Ethernet Transport ProtocolLayer over TCP/IPSCSI/FC and SCSI/IP EfficiencyLessMore Sharing and Access Control GoodPoor Integrity demandsStrongVery strong ClientsWorkstationsDatabase servers

11 11 Basic DFS Implementation Mechanisms

12 12 Components in a DFS Implementation Client side: –What has to happen to enable applications to access a remote file the same way a local file is accessed? Communication layer: –Just TCP/IP or a protocol at a higher level of abstraction? Server side: –How are requests from clients serviced?

13 13 Client Side Example: Basic UNIX Implementation Accessing remote files in the same way as accessing local files  kernel support

14 14 VFS interception VFS provides “pluggable” file systems Standard flow of remote access –User process calls read() –Kernel dispatches to VOP_READ() in some VFS –nfs_read() check local cache send RPC to remote NFS server put process to sleep

15 15 VFS interception Standard flow of remote access (continued) –server interaction handled by kernel process retransmit if necessary convert RPC response to file system buffer store in local cache wake up user process –nfs_read() copy bytes to user memory

16 16 Communication Layer Example: Remote Procedure Calls (RPC) Failure handling: timeout and re-issue xid “call” service version procedure auth-info arguments … xid “reply” reply_stat auth-info results … RPC callRPC reply

17 17 Extended Data Representation (XDR) Argument data and response data in RPC are packaged in XDR format –Integers are encoded in big-endian format –Strings: len followed by ascii bytes with NULL padded to four-byte boundaries –Arrays: 4-byte size followed by array entries –Opaque: 4-byte len followed by binary data Marshalling and un-marshalling data Extra overhead in data conversion to/from XDR

18 18 Some NFS V2 RPC Calls NFS RPCs using XDR over, e.g., TCP/IP fhandle: 32-byte opaque data (64-byte in v3) Proc.Input argsResults LOOKUPdirfh, namestatus, fhandle, fattr READfhandle, offset, countstatus, fattr, data CREATEdirfh, name, fattrstatus, fhandle, fattr WRITEfhandle, offset, count, data status, fattr

19 19 Server Side Example: mountd and nfsd mountd: provides the initial file handle for the exported directory –Client issues nfs_mount request to mountd –mountd checks if the pathname is a directory and if the directory should be exported to the client nfsd: answers the RPC calls, gets reply from local file system, and sends reply via RPC –Usually listening at port 2049 Both mountd and nfsd use underlying RPC implementation

20 20 NFS V2 Design “Dumb”, “Stateless” servers Smart clients Portable across different OSs Immediate commitment and idempotency of operations Low implementation cost Small number of clients Single administrative domain

21 21 Stateless File Server? Statelessness –Files are state, but... –Server exports files without creating extra state No list of “who has this file open” (permission check on each operation on open file!) No “pending transactions” across crash Results –Crash recovery is “fast” Reboot, let clients figure out what happened –Protocol is “simple” State stashed elsewhere –Separate MOUNT protocol –Separate NLM locking protocol

22 22 NFS V2 Operations V2: –NULL, GETATTR, SETATTR –LOOKUP, READLINK, READ –CREATE, WRITE, REMOVE, RENAME –LINK, SYMLINK –READIR, MKDIR, RMDIR –STATFS (get file system attributes)

23 23 NFS V3 and V4 Operations V3 added: –READDIRPLUS, COMMIT (server cache!) –FSSTAT, FSINFO, PATHCONF V4 added: –COMPOUND (bundle operations) –LOCK (server becomes more stateful!) –PUTROOTFH, PUTPUBFH (no separate MOUNT) –Better security and authentication

24 24 NFS File Server Failure Issues Semantics of file write in V2 –Bypass UFS file buffer cache Semantics of file write in V3 –Provide “COMMIT” procedure Locking provided by server in V4

25 25 Design Choices in DFS

26 26 Topic 1: Name-Space Construction and Organization NFS: per-client linkage –Server: export /root/fs1/ –Client: mount server:/root/fs1 /fs1  fhandle AFS: global name space –Name space is organized into Volumes Global directory /afs; /afs/cs.wisc.edu/vol1/…; /afs/cs.stanford.edu/vol1/… –Each file is identified as fid = –All AFS servers keep a copy of “volume location database”, which is a table of vol_id  server_ip mappings

27 27 Implications on Location Transparency NFS: no transparency –If a directory is moved from one server to another, client must remount AFS: transparency –If a volume is moved from one server to another, only the volume location database on the servers needs to be updated

28 28 Topic 2: User Authentication and Access Control User X logs onto workstation A, wants to access files on server B –How does A tell B who X is? –Should B believe A? Choices made in NFS V2 –All servers and all client workstations share the same name space  B send X’s to A Problem: root access on any client workstation can lead to creation of users of arbitrary –Server believes client workstation unconditionally Problem: if any client workstation is broken into, the protection of data on the server is lost; sent in clear-text over wire  request packets can be faked easily

29 29 User Authentication (cont’d) How do we fix the problems in NFS v2 –Hack 1: root remapping  strange behavior –Hack 2: UID remapping  no user mobility –Real Solution: use a centralized Authentication/Authorization/Access-control (AAA) system

30 30 Example AAA System: NTLM Microsoft Windows Domain Controller –Centralized AAA server –NTLM v2: per-connection authentication client file server Domain Controller 1 2 3 4 5 67

31 31 A Better AAA System: Kerberos Basic idea: shared secrets –User proves to KDC who he is; KDC generates shared secret between client and file server client ticket server generates S “Need to access fs” K client [S] file server K fs [S] S: specific to {client,fs} pair; “short-term session-key”; expiration time (e.g. 8 hours) KDC encrypt S with client’s key

32 32 Kerberos Interactions client ticket server generates S “Need to access fs” K client [S], ticket = K fs [use S for client] file server client 1. 2. ticket=K fs [use S for client], S{client, time} S{time} Why “time”?: guard against replay attack mutual authentication File server doesn’t store S, which is specific to {client, fs} Client doesn’t contact “ticket server” every time it contacts fs KDC

33 33 Kerberos: User Log-on Process How does user prove to KDC who the user is –Long-term key: 1-way-hash-func(passwd) –Long-term key comparison happens once only, at which point the KDC generates a shared secret for the user and the KDC itself  ticket-granting ticket, or “logon session key” –The “ticket-granting ticket” is encrypted in KDC’s long-term key

34 34 Operator Batching Should each client/server interaction accomplish one file system operation or multiple operations? Advantage of batched operations How to define batched operations

35 35 Examples of Batched Operators NFS v3: –READDIRPLUS NFS v4: –COMPOUND RPC calls

36 36 Summary Functionalities of DFS Implementation of DFS –Client side: VFC interception –Communication: RPC or TCP/UDP –Server side: server daemons DFS name space construction –Mount vs. Global name space DFS access control –NTLM –Kerberos

Download ppt "1 Distributed File Systems: Design Comparisons David Eckhardt, Bruce Maggs slides used and modified with permission from Pei Cao’s lectures in Stanford."

Similar presentations

Distributed File System: Design Comparisons Pei Cao Cisco Systems, Inc.

Distributed File System: Design Comparisons Pei Cao Cisco Systems, Inc.
Remote Procedure Call (RPC)

Remote Procedure Call (RPC)
Distributed Storage March 12, 2001. 2 Distributed Storage What is Distributed Storage?  Simple answer: Storage that can be shared throughout a network.

Distributed Storage March 12, Distributed Storage What is Distributed Storage?  Simple answer: Storage that can be shared throughout a network.
1 UNIX Internals – the New Frontiers Distributed File Systems.

1 UNIX Internals – the New Frontiers Distributed File Systems.
Tam Vu (tvu@mail.eecis.udel.edu) Remote Procedure Call CISC 879 – Spring 03 Tam Vu (tvu@mail.eecis.udel.edu) March 06, 03.

Tam Vu Remote Procedure Call CISC 879 – Spring 03 Tam Vu March 06, 03.
CS-550: Distributed File Systems [SiS]1 Resource Management in Distributed Systems: Distributed File Systems.

CS-550: Distributed File Systems [SiS]1 Resource Management in Distributed Systems: Distributed File Systems.
Design and Implementation of the Sun Network File System Russel Sandberg, David Goldberg, Steve Kleiman, Dan Walsh, and Bob Lyon Appears in USENIX Annual.

Design and Implementation of the Sun Network File System Russel Sandberg, David Goldberg, Steve Kleiman, Dan Walsh, and Bob Lyon Appears in USENIX Annual.
Distributed File Systems

Distributed File Systems
File System Implementation

File System Implementation
CS490T Advanced Tablet Platform Applications Network Programming Evolution.

CS490T Advanced Tablet Platform Applications Network Programming Evolution.
Other File Systems: AFS, Napster. 2 Recap NFS: –Server exposes one or more directories Client accesses them by mounting the directories –Stateless server.

Other File Systems: AFS, Napster. 2 Recap NFS: –Server exposes one or more directories Client accesses them by mounting the directories –Stateless server.
Distributed File System: Design Comparisons II Pei Cao Cisco Systems, Inc.

Distributed File System: Design Comparisons II Pei Cao Cisco Systems, Inc.
NFS. The Sun Network File System (NFS) An implementation and a specification of a software system for accessing remote files across LANs. The implementation.

NFS. The Sun Network File System (NFS) An implementation and a specification of a software system for accessing remote files across LANs. The implementation.
Distributed File System: Data Storage for Networks Large and Small Pei Cao Cisco Systems, Inc.

Distributed File System: Data Storage for Networks Large and Small Pei Cao Cisco Systems, Inc.
1 DNS,NFS & RPC Rizwan Rehman, CCS, DU. Netprog: DNS and name lookups 2 Hostnames IP Addresses are great for computers –IP address includes information.

1 DNS,NFS & RPC Rizwan Rehman, CCS, DU. Netprog: DNS and name lookups 2 Hostnames IP Addresses are great for computers –IP address includes information.
Distributed File System: Design Comparisons II Pei Cao.

Distributed File System: Design Comparisons II Pei Cao.
L-17 Distributed File Systems 1. Outline Why Distributed File Systems? Basic mechanisms for building DFSs  Using NFS and AFS as examples Design choices.

L-17 Distributed File Systems 1. Outline Why Distributed File Systems? Basic mechanisms for building DFSs  Using NFS and AFS as examples Design choices.
NETWORK FILE SYSTEM (NFS) By Ameeta.Jakate. NFS NFS was introduced in 1985 as a means of providing transparent access to remote file systems. NFS Architecture.

NETWORK FILE SYSTEM (NFS) By Ameeta.Jakate. NFS NFS was introduced in 1985 as a means of providing transparent access to remote file systems. NFS Architecture.
Network File System (NFS) in AIX System COSC513 Operation Systems Instructor: Prof. Anvari Yuan Ma SID: 105820.

Network File System (NFS) in AIX System COSC513 Operation Systems Instructor: Prof. Anvari Yuan Ma SID:
1 Network File System. 2 Network Services A Linux system starts some services at boot time and allow other services to be started up when necessary. These.

1 Network File System. 2 Network Services A Linux system starts some services at boot time and allow other services to be started up when necessary. These.

Similar presentations

Ads by Google