Recent device hardware trends enable a new approach to the design of
network server operating systems. In a traditional operating system, the
kernel mediates access to device hardware by server applications, to
enforce process isolation as well as network and disk security.
However, new operating system, Arrakis, splits the traditional role of the
kernel in two. Applications have direct access to virtualized I/O devices,
allowing most I/O operations to skip the kernel entirely, while the kernel
is re-engineered to provide network and disk protection without kernel
mediation of every operation.
I will describe the hardware and software changes needed to
take advantage of this new abstraction, and illustrate its perfomance
results.