VIRTUALIZATION. Dresden, 2011/12/6. Julian Stecklina
|
|
|
- Liliana Barrett
- 6 years ago
- Views:
Transcription
1 Department of Computer Science Institute of Systems Architecture, Operating Systems Group VIRTUALIZATION Julian Stecklina Dresden, 2011/12/6
2 00 Goals Give you an overview about: virtualization and virtual machines in general, hardware virtualization on x86, our research regarding virtualization. We will not discuss: lots and lots of details, language runtimes, how to use XEN/KVM/... TU Dresden, 2011/12/6 Virtualization slide 2 of 77
3 00 Outline What s Virtualization? Very Short History Virtualization on x86 Example: L4Linux Example: NOVA TU Dresden, 2011/12/6 Virtualization slide 3 of 77
4 01 Outline What s Virtualization? Very Short History Virtualization on x86 Example: L4Linux Example: NOVA TU Dresden, 2011/12/6 Virtualization slide 4 of 77
5 01 The Hype TU Dresden, 2011/12/6 Virtualization slide 5 of 77
6 01 Virtualization virtual existing in essence or effect though not in actual fact All problems in computer science can be solved by another level of indirection. Butler Lampson, 1972 TU Dresden, 2011/12/6 Virtualization slide 6 of 77
7 01 Emulation Suppose you develop for a system G (guest, e.g. an ARM-base phone) on your workstation H (host, e.g., an x86 PC). An emulator for G running on H precisely emulates G s CPU, memory subsystem, and I/O devices. Ideally, programs running on the emulated G exhibit the same behaviour as when running on a real G (except for timing). TU Dresden, 2011/12/6 Virtualization slide 7 of 77
8 01 Emulation (cont d) The emulator simulates every instruction in software as its executed, prevents direct access to H s resources from code running inside G, maps G s devices onto H s devices, may run multiple times on H. TU Dresden, 2011/12/6 Virtualization slide 8 of 77
9 01 Mapping G to H Both systems may have considerably different instructions sets and hardware devices making emulation slow and complex (depending on emulation fidelity). TU Dresden, 2011/12/6 Virtualization slide 9 of 77
10
11 01 G = H If host and emulated hardware architecture is (about) the same, interpreting every executed instruction seems not necessary, near-native execution speed should be possible. This is (easily) possible, if the architecture is virtualizable. TU Dresden, 2011/12/6 Virtualization slide 11 of 77
12 01 From Emulation to Virtualization A virtual machine is defined to be an efficient, isolated duplicate of a real machine. The software that provides this illusion is the Virtual Machine Monitor (VMM, mostly used synonymous with Hypervisor). (Popek, Goldberg 1974) TU Dresden, 2011/12/6 Virtualization slide 12 of 77
13 01 Virtualizable?... is a property of the Instruction Set Architecture (ISA). Instructions are divided into two classes: A sensitive instruction changes the configuration or mode of the processor, or depends in its behavior on the processor s state. A privileged instruction causes a trap (unconditional control transfer to privileged mode) in user mode. TU Dresden, 2011/12/6 Virtualization slide 13 of 77
14 01 Trap & Emulate If all sensitive instructions are privileged, a VMM can be written. execute guest in unprivileged mode, emulate all instructions that cause traps. TU Dresden, 2011/12/6 Virtualization slide 14 of 77
15 01 Trap & Emulate (cont d) Will be topic of seminar on December 13 th : Formal Requirements for Virtualizable Third-Generation Architectures TU Dresden, 2011/12/6 Virtualization slide 15 of 77
16 01 Where to put the VMM? Hardware Kernel POSIX API POSIX API Application Application TU Dresden, 2011/12/6 Virtualization slide 16 of 77
17 Hardware T1 Hypervisor Virtual Hardware Virtual Hardware Kernel A Kernel B Win32 API POSIX API POSIX API Application Application Application
18 Hardware Kernel POSIX API POSIX API POSIX API Application T2 Hypervisor Virtual Hardware T2 Hypervisor Virtual Hardware Kernel A Kernel B Win32 API Win32 API Application Application
19 01 Type 1 vs. Type 2 Type 1 are implemented on the bare metal: no OS overhead complete control over host resources high maintainance effort Popular examples are Xen, VMware ESXi. TU Dresden, 2011/12/6 Virtualization slide 19 of 77
20 01 Type 1 vs. Type 2 (cont d) Type 2 run as normal process on top of an OS: doesn t reinvent the wheel performance may suffer Popular examples are KVM, VMware Server/Workstation, VirtualBox,... TU Dresden, 2011/12/6 Virtualization slide 20 of 77
21 01 Paravirtualization Why all the trouble? Just port a guest operating system to the interface of your choice. Paravirtualization can provide better performance, simplify VMM but at a maintainance cost and you need the source code! Compromise: Use paravirtualized drivers for I/O performance (KVM virtio, VMware). Examples are MkLinux, L4Linux, Xen/XenoLinux,... TU Dresden, 2011/12/6 Virtualization slide 21 of 77
22 01 Reimplementation of the OS Interface E.g. wine reimplements (virtualizes) the Windows ABI. Run unmodified Windows binaries. Windows API calls are mapped to Linux/FreeBSD/Solaris/MacOS X equivalents. Huge moving target! Can also be used to recompile Windows applications as native applications linking to winelib API virtualization TU Dresden, 2011/12/6 Virtualization slide 22 of 77
23 01 Recap Virtualization is an overloaded term. Classification criteria: Target real hardware, OS API, OS ABI,... Emulation vs. Virtualization Interpret some or all instructions? Guest Modifications? Paravirtualization TU Dresden, 2011/12/6 Virtualization slide 23 of 77
24 01 Recap (cont d) A (Popek/Goldberg) Virtual Machine is an efficient, isolated duplicate of a real machine. The software that implements the VM is the Virtual Machine Monitor (hypervisor). Type 1 hypervisors run on the bare metal. Type 2 hypervisors run as applications on a conventional OS. TU Dresden, 2011/12/6 Virtualization slide 24 of 77
25 02 Outline What s Virtualization? Very Short History Virtualization on x86 Example: L4Linux Example: NOVA TU Dresden, 2011/12/6 Virtualization slide 25 of 77
26 Virtual machines have finally arrived. Dismissed for a number of years as merely academic curiosities, they are now seen as cost-effective techniques for organizing computer systems resources to provide extraordinary system flexibility and support for certain unique applications. Survey of Virtual Machine Research Robert P. Goldberg 1974 TU Dresden, 2011/12/6 Virtualization slide 26 of 77
27 02 Early History: IBM TU Dresden, 2011/12/6 Virtualization slide 27 of 77
28 02 Early History: IBM Virtualization was pioneered with IBM s CP/CMS in 1967 running on System/360 and System/370: CP Control Program provided System/360 virtual machines. CMS Cambridge Monitor System (later Conversational Monitor System) single-user OS. At the time more flexible and efficient than time-sharing multi-user systems. TU Dresden, 2011/12/6 Virtualization slide 28 of 77
29 02 Early History: IBM (cont d) CP encodes guest state in a hardware-defined format. CP provides: SIE Start Interpretive Execution (instruction) runs the VM until a trap or interrupt occurs. CP resume control and handles trap. memory protection between VMs, preemptive scheduling. Gave rise to IBM s VM line of operating systems. First release: 1972 Latest release: z/vm 6.2 (Dec 2 nd, 2011) TU Dresden, 2011/12/6 Virtualization slide 29 of 77
30 02 Virtualization is Great Consolidation improve server utilization Isolation isolate services for security reasons or because of incompatibility Reuse run legacy software Development... but was confined to the mainframe world for a very long time. TU Dresden, 2011/12/6 Virtualization slide 30 of 77
31 ... fast forward to the late nineties...
32 03 Outline What s Virtualization? Very Short History Virtualization on x86 Example: L4Linux Example: NOVA TU Dresden, 2011/12/6 Virtualization slide 32 of 77
33 03 Is x86 Virtualizable? x86 has several virtualization holes that violate Popek&Goldberg requirement. Possibly too expensive to trap on every privileged instruction. popf (pop flags) silently ignores writes to the Interrupt Enable flag in user mode. Should trap! More in the seminar. TU Dresden, 2011/12/6 Virtualization slide 33 of 77
34 03 VMware Workstation: Binary Translation First commercial virtualization solution for x86, introduced in Overcame limitations of the x86 architecture: translate problematic instructions into appropriate calls to the VMM can avoid costly traps for privileged instructions Provided decent performance but: requires complex runtime translation engine (self-modifying code... ) Other examples: KQemu, Virtual Box, Valgrind TU Dresden, 2011/12/6 Virtualization slide 34 of 77
35 03 Hardware Support for Virtualization Late Pentium 4 (2004) introduced hardware support for virtualization: Intel VT. (AMD-V is conceptually very similar) root mode vs. non-root mode root mode runs hypervisor non-root mode runs guest situations that Intel VT cannot handle trap to root mode (VM Exit) special memory region (VMCS) holds guest state reduced software complexity Supported by all major virtualization solutions today. TU Dresden, 2011/12/6 Virtualization slide 35 of 77
36 03 Instruction Emulator Intel VT and AMD-V still require an instruction emulator, e.g. for running 16-bit code (not in AMD-V, latest Intel VT), BIOS boot loaders handling MMIO (need to emulate instruction that caused a page fault) realized as non-present page in guest physical mode emulate offending instruction... TU Dresden, 2011/12/6 Virtualization slide 36 of 77
37 03 MMU Virtualization Early versions of Intel VT do not completely virtualize the MMU. The VMM has to handle guest virtual memory. Four different types of memory addresses: HPA Host Physical Address HVA Host Virtual Address GPA Guest Physical Address GVA Guest Virtual Address TU Dresden, 2011/12/6 Virtualization slide 37 of 77
38 PDBR host guest PDBR HVA->HPA Page Table GVA->GPA Page Table Host Physical Memory Host Virtual Memory Guest Physical Memory Guest Virtual Memory
39 03 Shadow Page Tables If the hardware can handle only one page table, the hypervisor must maintain a shadow page table that merges guest and host page table (maps from GVA to HPA), must be adapted on changes to virtual memory layout. TU Dresden, 2011/12/6 Virtualization slide 39 of 77
40 Host Physical Memory PDBR host guest GVA->HPA Host Virtual Memory Guest Physical Memory Guest Virtual Memory
41 03 Shadow Paging in a Nutshell 1. page fault in guest (GVA) 2. traps to VMM 3. parse guest page tables (GVA GPA) 4. mapping found 5. parse host page table (HVA HPA) 6. create shadow entry 7. resume guest 4. no mapping found 5. resume guest with page fault TU Dresden, 2011/12/6 Virtualization slide 41 of 77
42 03 Drawbacks of Shadow Paging Maintaining Shadow Page Tables causes significant overhead, because they need to be updated or recreated on guest page table modification, guest address space switch. Certain workloads are penalized. TU Dresden, 2011/12/6 Virtualization slide 42 of 77
43 03 Nested Paging Introduced in the Intel Nehalem (EPT) and AMD Barcelona (Nested Paging) microarchitectures, the CPU can handle guest and host page table at the same time. Can reduce VM Exits by two orders of magnitude, but introduces measurable constant overhead (< 1%) TU Dresden, 2011/12/6 Virtualization slide 43 of 77
44 03 Nested Paging (cont d) (Linux Kernel Compile) Event Shadow Paging Nested Paging vtlb Fill 181,966,391 Guest Page Fault 13,987,802 CR Read/Write 3,000,321 vtlb Flush 2,328,044 INVLPG 537,270 Hardware Interrupts 239, ,558 Port I/O 723, ,589 Memory-Mapped I/O 75,151 76,285 HLT 4,027 3,738 Interrupt Window 3,371 2,171 Sum 202,864, ,341 Runtime (seconds) Exit/s 314,519 1,845 TU Dresden, 2011/12/6 Virtualization slide 44 of 77
45 04 Outline What s Virtualization? Very Short History Virtualization on x86 Example: L4Linux Example: NOVA TU Dresden, 2011/12/6 Virtualization slide 45 of 77
46 04 L4Linux... is a paravirtualized Linux first presented at SOSP 97 running on the original L4 kernel. L4Linux predates the x86 virtualization hype L4Linux 2.2 supported MIPS and x86 L4Linux 2.4 first version to run on L4Env L4Linux 2.6 uses Fiasco.OC s paravirtualization features The current status: Linux 3.0 x86 and ARM support SMP TU Dresden, 2011/12/6 Virtualization slide 46 of 77
47 user kernel Arch- Depend. Application Application Application Application System-Call Interface Linux Kernel Arch- Ind. File Systems VFS File System Impl. Device Drivers Networking Sockets Protocols Processes Scheduling IPC Memory Management Page allocation Address spaces Swapping Arch- Depend. Hardware Access Hardware CPU, Memory, PCI, Devices
48 04 Porting Linux to L4 Regard L4 as new hardware platform. Port small architecture dependent part: system call interface kernel entry signal delivery copy from/to user space hardware access CPU state and features MMU interrupts memory-mapped and port I/O TU Dresden, 2011/12/6 Virtualization slide 48 of 77
49 L4 Task L4 Task L4 Task L4 Task Application Application Application Application L4 Task Arch- Depend. System-Call Interface Linux Kernel Arch- Ind. File Systems VFS File System Impl. Device Drivers Networking Sockets Protocols Processes Scheduling IPC Memory Management Page allocation Address spaces Swapping Arch- Depend. Hardware Access user kernel sigma0 Fiasco.OC L4IO Console moe Hardware
50 04 L4Linux Architecture L4 specific code is divided into: x86 and ARM specific code hardware generic code Linux kernel and Linux user processes run each with a single L4 task. L4Linux kernel task does not see a L4Linux process virtual memory TU Dresden, 2011/12/6 Virtualization slide 50 of 77
51 FiascoOC Microkernel 0xFFFFFFFF Kernel Address Space PAGE_OFFSET 0xC TASK_SIZE User Address Space 0x vmalloc, kmap, Phys. Memory Kernel Image Application, Libraries, L4Linux User Process Application, Libraries, FiascoOC Microkernel L4Linux Server vmalloc, kmap, Guest-phys. Memory Kernel Image
52 04 L4Linux Challenges The L4Linux kernel server has to: access user process data, manage page tables of its processes, handle exceptions from processes, and schedule them. L4Linux user processes have to: enter the L4Linux kernel (living in a different address space). TU Dresden, 2011/12/6 Virtualization slide 52 of 77
53 04 Kernel Entry L4Linux app Normal Linux syscall interface (int 80h) causes trap. (1) (4) L4Linux server receives exception IPC. Heavyweight compared to native Linux system calls: two address space switches, two Fiasco kernel entries/exits L4Linux kernel (2) (3) Fiasco.OC TU Dresden, 2011/12/6 Virtualization slide 53 of 77
54 04 Threads & Interrupts The old L4Linux has a thread for each user thread and virtual interrupt. Interrupts are received as messages. Interrupt threads have higher priority than normal Linux threads (Linux semantics). Interrupt threads force running user process (or idle thread) into L4Linux server. Linux uses CLI/STI to disable interrupts, L4Linux uses a lock. A synchronization nightmare. TU Dresden, 2011/12/6 Virtualization slide 54 of 77
55
56 04 vcpus Simplify interrupt/exception handling by introducing vcpus (Fiasco.OC): have dedicated interrupt entry points, need to differentiate between interrupt and systemcall can be rebound to different tasks, simulates address space switches can mask interrupts emulates Interrupt Enable flag don t need that lock anymore TU Dresden, 2011/12/6 Virtualization slide 56 of 77
57
58 04 Not Covered in Detail access to user process memory walk page tables of user process device drivers DMA is problematic IOMMU TU Dresden, 2011/12/6 Virtualization slide 58 of 77
59 04 Hybrid Applications Linux applications that are L4 aware Need special handling by L4Linux server processes with ongoing IPC are marked UNINTERRUPTIBLE in L4Linux IPC is not disturbed TU Dresden, 2011/12/6 Virtualization slide 59 of 77
60 MPlayer Frontend controls L4Linux RT-MPEG Player Loader Roottask moe DOpE FiascoOC kernel
61 04 Splitted Applications TU Dresden, 2011/12/6 Virtualization slide 61 of 77
62 04 Multiple L4Linux Instances Of course, you can run multiple L4Linux instances. isolate applications for e.g. security reasons, communication via network or IPC devices need to be multiplexed (will be covered in resource management lecture) TU Dresden, 2011/12/6 Virtualization slide 62 of 77
63 04 Secure VPN Gateway TU Dresden, 2011/12/6 Virtualization slide 63 of 77
64 04 L4Linux as Toolbox Reuse large parts of code from Linux: filesystems, network stack, device drivers. Use a hybrid application to provide this service to native L4 applications. TU Dresden, 2011/12/6 Virtualization slide 64 of 77
65 05 Outline What s Virtualization? Very Short History Virtualization on x86 Example: L4Linux Example: NOVA TU Dresden, 2011/12/6 Virtualization slide 65 of 77
66 05 Security and Virtualization Virtualizing several insecure operating systems on one host is safe and secure, because they cannot interfere with each other, and they are confined to their virtual machine. Is it? Does virtualization add security? TU Dresden, 2011/12/6 Virtualization slide 66 of 77
67 05 Recap Xen runs its instruction emulator and virtual devices in Ring 0 in Root Mode. KVM runs its instruction emulator and virtual devices (mostly) as normal Linux application in Ring 3 in Root Mode.... but both share code for instruction emulation and virtual devices. TU Dresden, 2011/12/6 Virtualization slide 67 of 77
68 05 Secunia Advisory SA The size of ethernet frames is not correctly checked against the MTU before being copied into the registers of the NE2000 network driver. This can be exploited to cause a heap-based buffer overflow. An error within the handling of the aam instruction can result in a division by zero.... TU Dresden, 2011/12/6 Virtualization slide 68 of 77
69 05 TCB of Virtual Machines The Trusted Computing Base of a Virtual Machine is the amount of hardware and software you have to trust to guarantee this VM s security. (More in lecture on Security) For e.g. KVM this (conservatively) includes: the Linux kernel, Qemu. TU Dresden, 2011/12/6 Virtualization slide 69 of 77
70
71 05 NOVA Architecture Reduce complexity of hypervisor: hypervisor provides low-level protection domains address spaces virtual machines VM exits are relayed to VMM as IPC with guest state, one VMM per guest in (root mode) userspace, possibly specialized VMMs to reduce attack surface only one generic VMM implement so far TU Dresden, 2011/12/6 Virtualization slide 71 of 77
72 05 NOVA OS Virtualization Architecture TU Dresden, 2011/12/6 Virtualization slide 72 of 77
73 05 Example: Low Complexity VMM Diplomarbeit by Steffen Liebergeld Idea: Reduce TCB of VMM by using paravirtualization and hardware-assisted virtualization. Implemented on Fiasco using AMD-V Small VMM: 3800 LOC 300 LOC changed in Linux No instruction emulator required no MMIO no 16-bit code Only simple paravirtualized device models required: 2600 LOC salvaged from L4Linux TU Dresden, 2011/12/6 Virtualization slide 73 of 77
74 05 Recap: Examples L4Linux is the paravirtualized workhorse on L4: reuse Linux applications, reuse Linux components. NOVA provides faithful virtualization with small TCB for VMs. TU Dresden, 2011/12/6 Virtualization slide 74 of 77
75 05 Next Weeks Next week s lecture starts at 1 PM and will be about Legacy Containers and OS Personalities. Don t forget to read until December 13 th : Formal Requirements for Virtualizable Third-Generation Architectures TU Dresden, 2011/12/6 Virtualization slide 75 of 77
76 05 References Virtualization NOVA http: //os.inf.tu-dresden.de/papers_ps/steinberg_eurosys2010.pdf L4Linux http: //os.inf.tu-dresden.de/papers_ps/rtlws2010_genericvirt.pdf TU Dresden, 2011/12/6 Virtualization slide 76 of 77
VIRTUALIZATION. Dresden, 2013/12/3. Julian Stecklina
Department of Computer Science Institute of Systems Architecture, Operating Systems Group VIRTUALIZATION Julian Stecklina (jsteckli@os.inf.tu-dresden.de) Dresden, 2013/12/3 00 Goals Give you an overview
MOS - VIRTUALIZATION. Tobias Stumpf, Marcus Hähnel WS 2015/16
MOS - VIRTUALIZATION Tobias Stumpf, Marcus Hähnel WS 2015/16 Goals Give you an overview about: virtualization and virtual machines in general, hardware virtualization on x86, our research regarding virtualization.
Faculty of Computer Science Institute for System Architecture, Operating Systems Group. Virtualization. Henning Schild. Dresden,
Faculty of Computer Science Institute for System Architecture, Operating Systems Group Virtualization Henning Schild Dresden, 2009-12-01 So Far... Basics Introduction Threads & synchronization Memory Real-time
VIRTUALIZATION. Dresden, 2011/6/23. Julian Stecklina
Department of Computer Science Institute of Systems Architecture, Operating Systems Group VIRTUALIZATION Julian Stecklina (jsteckli@os.inf.tu-dresden.de) Dresden, 2011/6/23 00 Goals Give you an overview
Virtualization. Starting Point: A Physical Machine. What is a Virtual Machine? Virtualization Properties. Types of Virtualization
Starting Point: A Physical Machine Virtualization Based on materials from: Introduction to Virtual Machines by Carl Waldspurger Understanding Intel Virtualization Technology (VT) by N. B. Sahgal and D.
Virtualization. ! Physical Hardware Processors, memory, chipset, I/O devices, etc. Resources often grossly underutilized
Starting Point: A Physical Machine Virtualization Based on materials from: Introduction to Virtual Machines by Carl Waldspurger Understanding Intel Virtualization Technology (VT) by N. B. Sahgal and D.
Virtualization. Pradipta De
Virtualization Pradipta De pradipta.de@sunykorea.ac.kr Today s Topic Virtualization Basics System Virtualization Techniques CSE506: Ext Filesystem 2 Virtualization? A virtual machine (VM) is an emulation
The Architecture of Virtual Machines Lecture for the Embedded Systems Course CSD, University of Crete (April 29, 2014)
The Architecture of Virtual Machines Lecture for the Embedded Systems Course CSD, University of Crete (April 29, 2014) ManolisMarazakis (maraz@ics.forth.gr) Institute of Computer Science (ICS) Foundation
The Challenges of X86 Hardware Virtualization. GCC- Virtualization: Rajeev Wankar 36
The Challenges of X86 Hardware Virtualization GCC- Virtualization: Rajeev Wankar 36 The Challenges of X86 Hardware Virtualization X86 operating systems are designed to run directly on the bare-metal hardware,
Björn Döbel. Microkernel-Based Operating Systems. Exercise 3: Virtualization
Faculty of Computer Science Institute for System Architecture, Operating Systems Group Björn Döbel Microkernel-Based Operating Systems Exercise 3: Virtualization Emulation Virtualization Emulation / Simulation
What is KVM? KVM patch. Modern hypervisors must do many things that are already done by OSs Scheduler, Memory management, I/O stacks
LINUX-KVM The need for KVM x86 originally virtualization unfriendly No hardware provisions Instructions behave differently depending on privilege context(popf) Performance suffered on trap-and-emulate
CSE 120 Principles of Operating Systems
CSE 120 Principles of Operating Systems Spring 2018 Lecture 16: Virtual Machine Monitors Geoffrey M. Voelker Virtual Machine Monitors 2 Virtual Machine Monitors Virtual Machine Monitors (VMMs) are a hot
Learning Outcomes. Extended OS. Observations Operating systems provide well defined interfaces. Virtual Machines. Interface Levels
Learning Outcomes Extended OS An appreciation that the abstract interface to the system can be at different levels. Virtual machine monitors (VMMs) provide a lowlevel interface An understanding of trap
COMPUTER ARCHITECTURE. Virtualization and Memory Hierarchy
COMPUTER ARCHITECTURE Virtualization and Memory Hierarchy 2 Contents Virtual memory. Policies and strategies. Page tables. Virtual machines. Requirements of virtual machines and ISA support. Virtual machines:
COS 318: Operating Systems. Virtual Machine Monitors
COS 318: Operating Systems Virtual Machine Monitors Prof. Margaret Martonosi Computer Science Department Princeton University http://www.cs.princeton.edu/courses/archive/fall11/cos318/ Announcements Project
Advanced Operating Systems (CS 202) Virtualization
Advanced Operating Systems (CS 202) Virtualization Virtualization One of the natural consequences of the extensibility research we discussed What is virtualization and what are the benefits? 2 Virtualization
Virtualization. Operating Systems, 2016, Meni Adler, Danny Hendler & Amnon Meisels
Virtualization Operating Systems, 2016, Meni Adler, Danny Hendler & Amnon Meisels 1 What is virtualization? Creating a virtual version of something o Hardware, operating system, application, network, memory,
CS 550 Operating Systems Spring Introduction to Virtual Machines
CS 550 Operating Systems Spring 2018 Introduction to Virtual Machines 1 How to share a physical computer Operating systems allows multiple processes/applications to run simultaneously Via process/memory
Virtual Machines. Part 2: starting 19 years ago. Operating Systems In Depth IX 1 Copyright 2018 Thomas W. Doeppner. All rights reserved.
Virtual Machines Part 2: starting 19 years ago Operating Systems In Depth IX 1 Copyright 2018 Thomas W. Doeppner. All rights reserved. Operating Systems In Depth IX 2 Copyright 2018 Thomas W. Doeppner.
A Survey on Virtualization Technologies
A Survey on Virtualization Technologies Virtualization is HOT Microsoft acquires Connectix Corp. EMC acquires VMware Veritas acquires Ejascent IBM, already a pioneer Sun working hard on it HP picking up
24-vm.txt Mon Nov 21 22:13: Notes on Virtual Machines , Fall 2011 Carnegie Mellon University Randal E. Bryant.
24-vm.txt Mon Nov 21 22:13:36 2011 1 Notes on Virtual Machines 15-440, Fall 2011 Carnegie Mellon University Randal E. Bryant References: Tannenbaum, 3.2 Barham, et al., "Xen and the art of virtualization,"
Virtualization. Dr. Yingwu Zhu
Virtualization Dr. Yingwu Zhu Virtualization Definition Framework or methodology of dividing the resources of a computer into multiple execution environments. Types Platform Virtualization: Simulate a
Virtualization and memory hierarchy
Virtualization and memory hierarchy Computer Architecture J. Daniel García Sánchez (coordinator) David Expósito Singh Francisco Javier García Blas ARCOS Group Computer Science and Engineering Department
Module 1: Virtualization. Types of Interfaces
Module 1: Virtualization Virtualization: extend or replace an existing interface to mimic the behavior of another system. Introduced in 1970s: run legacy software on newer mainframe hardware Handle platform
Cloud Computing Virtualization
Cloud Computing Virtualization Anil Madhavapeddy anil@recoil.org Contents Virtualization. Layering and virtualization. Virtual machine monitor. Virtual machine. x86 support for virtualization. Full and
Spring 2017 :: CSE 506. Introduction to. Virtual Machines. Nima Honarmand
Introduction to Virtual Machines Nima Honarmand Virtual Machines & Hypervisors Virtual Machine: an abstraction of a complete compute environment through the combined virtualization of the processor, memory,
Knut Omang Ifi/Oracle 6 Nov, 2017
Software and hardware support for Network Virtualization part 1 Knut Omang Ifi/Oracle 6 Nov, 2017 1 Motivation Goal: Introduction to challenges in providing fast networking to virtual machines Prerequisites:
Chapter 5 C. Virtual machines
Chapter 5 C Virtual machines Virtual Machines Host computer emulates guest operating system and machine resources Improved isolation of multiple guests Avoids security and reliability problems Aids sharing
Virtual Machines. To do. q VM over time q Implementation methods q Hardware features supporting VM q Next time: Midterm?
Virtual Machines To do q VM over time q Implementation methods q Hardware features supporting VM q Next time: Midterm? *Partially based on notes from C. Waldspurger, VMware, 2010 and Arpaci-Dusseau s Three
CS370 Operating Systems
CS370 Operating Systems Colorado State University Yashwant K Malaiya Fall 2017 Lecture 27 Virtualization Slides based on Various sources 1 1 Virtualization Why we need virtualization? The concepts and
Virtual Machine Monitors (VMMs) are a hot topic in
CSE 120 Principles of Operating Systems Winter 2007 Lecture 16: Virtual Machine Monitors Keith Marzullo and Geoffrey M. Voelker Virtual Machine Monitors Virtual Machine Monitors (VMMs) are a hot topic
Nested Virtualization and Server Consolidation
Nested Virtualization and Server Consolidation Vara Varavithya Department of Electrical Engineering, KMUTNB varavithya@gmail.com 1 Outline Virtualization & Background Nested Virtualization Hybrid-Nested
Faculty of Computer Science, Operating Systems Group. The L4Re Microkernel. Adam Lackorzynski. July 2017
Faculty of Computer Science, Operating Systems Group The L4Re Microkernel Adam Lackorzynski July 2017 2 Agenda Plan What is L4Re? History The L4Re Microkernel / Hypervisor Fiasco Interfaces SMP Virtualization...
Facing the Reality: Virtualization in a Microkernelbased Operating System. Matthias Lange, MOS, January 26th, 2016
Facing the Reality: Virtualization in a Microkernelbased Operating System Matthias Lange, MOS, January 26th, 2016 matthias.lange@kernkonzept.com Today's take aways Microkernel systems are used to build
System Virtual Machines
System Virtual Machines Outline Need and genesis of system Virtual Machines Basic concepts User Interface and Appearance State Management Resource Control Bare Metal and Hosted Virtual Machines Co-designed
references Virtualization services Topics Virtualization
references Virtualization services Virtual machines Intel Virtualization technology IEEE xplorer, May 2005 Comparison of software and hardware techniques for x86 virtualization ASPLOS 2006 Memory resource
Xen is not just paravirtualization
Xen is not just paravirtualization Dongli Zhang Oracle Asia Research and Development Centers (Beijing) dongli.zhang@oracle.com December 16, 2016 Dongli Zhang (Oracle) Xen is not just paravirtualization
Fakultät Informatik Institut für Systemarchitektur, Betriebssysteme THE NOVA KERNEL API. Julian Stecklina
Fakultät Informatik Institut für Systemarchitektur, Betriebssysteme THE NOVA KERNEL API Julian Stecklina (jsteckli@os.inf.tu-dresden.de) Dresden, 5.2.2012 00 Disclaimer This is not about OpenStack Compute.
Intel s Virtualization Extensions (VT-x) So you want to build a hypervisor?
Intel s Virtualization Extensions (VT-x) So you want to build a hypervisor? Mr. Jacob Torrey May 13, 2014 Dartmouth College 153 Brooks Road, Rome, NY 315.336.3306 http://ainfosec.com @JacobTorrey torreyj@ainfosec.com
Virtual Virtual Memory
Virtual Virtual Memory Jason Power 3/20/2015 With contributions from Jayneel Gandhi and Lena Olson 4/17/2015 UNIVERSITY OF WISCONSIN 1 Virtual Machine History 1970 s: VMMs 1997: Disco 1999: VMWare (binary
Lecture 5: February 3
CMPSCI 677 Operating Systems Spring 2014 Lecture 5: February 3 Lecturer: Prashant Shenoy Scribe: Aditya Sundarrajan 5.1 Virtualization Virtualization is a technique that extends or replaces an existing
CS370: Operating Systems [Spring 2017] Dept. Of Computer Science, Colorado State University
![CS370: Operating Systems [Spring 2017] Dept. Of Computer Science, Colorado State University](/thumbs/89/100547178.jpg "CS370: Operating Systems [Spring 2017] Dept. Of Computer Science, Colorado State University")
Frequently asked questions from the previous class survey CS 370: OPERATING SYSTEMS [VIRTUALIZATION] Shrideep Pallickara Computer Science Colorado State University Difference between physical and logical
Virtualization History and Future Trends
Virtualization History and Future Trends Christoffer Dall - Candidacy Exam - January 2013 Columbia University - Computer Science Department IBM Mainframe VMs VMware Workstation x86 Hardware Support Virtual
Virtual Machine Virtual Machine Types System Virtual Machine: virtualize a machine Container: virtualize an OS Program Virtual Machine: virtualize a process Language Virtual Machine: virtualize a language
VIRTUALIZATION: IBM VM/370 AND XEN
1 VIRTUALIZATION: IBM VM/370 AND XEN CS6410 Hakim Weatherspoon IBM VM/370 Robert Jay Creasy (1939-2005) Project leader of the first full virtualization hypervisor: IBM CP-40, a core component in the VM
Virtualization and Virtual Machines. CS522 Principles of Computer Systems Dr. Edouard Bugnion
Virtualization and Virtual Machines CS522 Principles of Computer Systems Dr. Edouard Bugnion Virtualization and Virtual Machines 2 This week Introduction, definitions, A short history of virtualization
DISCO and Virtualization
DISCO and Virtualization 1. Announcements: a. Project now due Friday at 9 pm b. Class moving to CS 1325 starting Thursday. 2. Questions from reviews: a. NFS scalability bottleneck? i. Yes, other things
System Virtual Machines
System Virtual Machines Outline Need and genesis of system Virtual Machines Basic concepts User Interface and Appearance State Management Resource Control Bare Metal and Hosted Virtual Machines Co-designed
Virtualisation: The KVM Way. Amit Shah
Virtualisation: The KVM Way Amit Shah amit.shah@qumranet.com foss.in/2007 Virtualisation Simulation of computer system in software Components Processor Management: register state, instructions, exceptions
CHAPTER 16 - VIRTUAL MACHINES
CHAPTER 16 - VIRTUAL MACHINES 1 OBJECTIVES Explore history and benefits of virtual machines. Discuss the various virtual machine technologies. Describe the methods used to implement virtualization. Show
A Userspace Packet Switch for Virtual Machines
SHRINKING THE HYPERVISOR ONE SUBSYSTEM AT A TIME A Userspace Packet Switch for Virtual Machines Julian Stecklina OS Group, TU Dresden jsteckli@os.inf.tu-dresden.de VEE 2014, Salt Lake City 1 Motivation
CSCE 410/611: Virtualization
CSCE 410/611: Virtualization Definitions, Terminology Why Virtual Machines? Mechanics of Virtualization Virtualization of Resources (Memory) Some slides made available Courtesy of Gernot Heiser, UNSW.
I/O and virtualization
I/O and virtualization CSE-C3200 Operating systems Autumn 2015 (I), Lecture 8 Vesa Hirvisalo Today I/O management Control of I/O Data transfers, DMA (Direct Memory Access) Buffering Single buffering Double
Virtualization. Adam Belay
Virtualization Adam Belay What is a virtual machine Simulation of a computer Running as an application on a host computer Accurate Isolated Fast Why use a virtual machine? To run multiple
Master s Thesis! Improvement of the Virtualization Support in the Fiasco.OC Microkernel! Julius Werner!
Master s Thesis! Improvement of the Virtualization Support in the Fiasco.OC Microkernel! Julius Werner! jwerner@cs.tu- berlin.de Technische Universität Berlin! 28.08.2012! Julius Werner (Master s Thesis)!
Operating Systems 4/27/2015
Virtualization inside the OS Operating Systems 24. Virtualization Memory virtualization Process feels like it has its own address space Created by MMU, configured by OS Storage virtualization Logical view
Virtualization. Darren Alton
Virtualization Darren Alton A brief introduction... In general, virtualization means emulating computer hardware* with software**. Virtual machine (VM) can mean a couple of things: A process virtual machine
Microkernel-based Operating Systems - Introduction
Faculty of Computer Science Institute for System Architecture, Operating Systems Group Microkernel-based Operating Systems - Introduction Nils Asmussen Dresden, Oct 09 2018 Lecture Goals Provide deeper
OS Virtualization. Why Virtualize? Introduction. Virtualization Basics 12/10/2012. Motivation. Types of Virtualization.
Virtualization Basics Motivation OS Virtualization CSC 456 Final Presentation Brandon D. Shroyer Types of Virtualization Process virtualization (Java) System virtualization (classic, hosted) Emulation
Knut Omang Ifi/Oracle 20 Oct, Introduction to virtualization (Virtual machines) Aspects of network virtualization:
Software and hardware support for Network Virtualization part 2 Knut Omang Ifi/Oracle 20 Oct, 2015 32 Overview Introduction to virtualization (Virtual machines) Aspects of network virtualization: Virtual
CSCE 410/611: Virtualization!
CSCE 410/611: Virtualization! Definitions, Terminology! Why Virtual Machines?! Mechanics of Virtualization! Virtualization of Resources (Memory)! Some slides made available Courtesy of Gernot Heiser, UNSW.!
Virtual Machine Monitors!
ISA 673 Operating Systems Security Virtual Machine Monitors! Angelos Stavrou, George Mason University! Virtual Machine Monitors 2! Virtual Machine Monitors (VMMs) are everywhere! Industry commitment! Software:
Virtual Machines Disco and Xen (Lecture 10, cs262a) Ion Stoica & Ali Ghodsi UC Berkeley February 26, 2018
Virtual Machines Disco and Xen (Lecture 10, cs262a) Ion Stoica & Ali Ghodsi UC Berkeley February 26, 2018 Today s Papers Disco: Running Commodity Operating Systems on Scalable Multiprocessors, Edouard
Virtual Machines. Jinkyu Jeong Computer Systems Laboratory Sungkyunkwan University
Virtual Machines Jinkyu Jeong (jinkyu@skku.edu) Computer Systems Laboratory Sungkyunkwan University http://csl.skku.edu Today's Topics History and benefits of virtual machines Virtual machine technologies
Introduction Construction State of the Art. Virtualization. Bernhard Kauer OS Group TU Dresden Dresden,
Virtualization Bernhard Kauer OS Group TU Dresden bk@vmmon.org Dresden, 2010-07-15 Motivation The vision: general-purpose OS secure trustworthy small fast fancy First problem: Legacy Application Supporting
Microkernel-based Operating Systems - Introduction
Faculty of Computer Science Institute for System Architecture, Operating Systems Group Microkernel-based Operating Systems - Introduction Carsten Weinhold Dresden, Oct 09 th 2012 Lecture Goals Provide
CprE Virtualization. Dr. Yong Guan. Department of Electrical and Computer Engineering & Information Assurance Center Iowa State University
Virtualization Dr. Yong Guan Department of Electrical and Computer Engineering & Information Assurance Center Iowa State University Outline for Today s Talk Introduction Virtualization Technology Applications
CS-580K/480K Advanced Topics in Cloud Computing. VM Virtualization II
CS-580K/480K Advanced Topics in Cloud Computing VM Virtualization II 1 How to Build a Virtual Machine? 2 How to Run a Program Compiling Source Program Loading Instruction Instruction Instruction Instruction
CSCI 8530 Advanced Operating Systems. Part 19 Virtualization
CSCI 8530 Advanced Operating Systems Part 19 Virtualization Virtualization This is a very old idea It appears in many different forms A variety of commercial products exist The idea has become hot again
Lecture 7. Xen and the Art of Virtualization. Paul Braham, Boris Dragovic, Keir Fraser et al. 16 November, Advanced Operating Systems
Lecture 7 Xen and the Art of Virtualization Paul Braham, Boris Dragovic, Keir Fraser et al. Advanced Operating Systems 16 November, 2011 SOA/OS Lecture 7, Xen 1/38 Contents Virtualization Xen Memory CPU
Introduction to Virtual Machines. Carl Waldspurger (SB SM 89 PhD 95) VMware R&D
Introduction to Virtual Machines Carl Waldspurger (SB SM 89 PhD 95) VMware R&D Overview Virtualization and VMs Processor Virtualization Memory Virtualization I/O Virtualization Typesof Virtualization Process
Linux and Xen. Andrea Sarro. andrea.sarro(at)quadrics.it. Linux Kernel Hacking Free Course IV Edition
Linux and Xen Andrea Sarro andrea.sarro(at)quadrics.it Linux Kernel Hacking Free Course IV Edition Andrea Sarro (andrea.sarro(at)quadrics.it) Linux and Xen 07/05/2008 1 / 37 Introduction Xen and Virtualization
Advanced Systems Security: Virtual Machine Systems
Systems and Internet Infrastructure Security Network and Security Research Center Department of Computer Science and Engineering Pennsylvania State University, University Park PA Advanced Systems Security:
The Future of Virtualization
The "anyos" paradigm and its implications through virtualization 30 December 2005 22c3 Berlin Introduction Tools The Future Introduction Application Area Theorie What is Virtualization? Virtualization
CS370: Operating Systems [Spring 2017] Dept. Of Computer Science, Colorado State University
![CS370: Operating Systems [Spring 2017] Dept. Of Computer Science, Colorado State University](/thumbs/86/93946155.jpg "CS370: Operating Systems [Spring 2017] Dept. Of Computer Science, Colorado State University")
Frequently asked questions from the previous class survey CS 370: OPERATING SYSTEMS [VIRTUALIZATION] Shrideep Pallickara Computer Science Colorado State University CPU vs Disk I/O contention Local/Global:
Xen and the Art of Virtualization. Nikola Gvozdiev Georgian Mihaila
Xen and the Art of Virtualization Nikola Gvozdiev Georgian Mihaila Outline Xen and the Art of Virtualization Ian Pratt et al. I. The Art of Virtualization II. Xen, goals and design III. Xen evaluation
Virtual machine architecture and KVM analysis D 陳彥霖 B 郭宗倫
Virtual machine architecture and KVM analysis D97942011 陳彥霖 B96902030 郭宗倫 Virtual machine monitor serves as an interface between hardware and software; no matter what kind of hardware under, software can
Distributed Systems COMP 212. Lecture 18 Othon Michail
Distributed Systems COMP 212 Lecture 18 Othon Michail Virtualisation & Cloud Computing 2/27 Protection rings It s all about protection rings in modern processors Hardware mechanism to protect data and
Concepts. Virtualization
Concepts Virtualization Concepts References and Sources James Smith, Ravi Nair, The Architectures of Virtual Machines, IEEE Computer, May 2005, pp. 32-38. Mendel Rosenblum, Tal Garfinkel, Virtual Machine
Lecture 5. KVM for ARM. Christoffer Dall and Jason Nieh. 5 November, Operating Systems Practical. OSP Lecture 5, KVM for ARM 1/42
Lecture 5 KVM for ARM Christoffer Dall and Jason Nieh Operating Systems Practical 5 November, 2014 OSP Lecture 5, KVM for ARM 1/42 Contents Virtualization KVM Virtualization on ARM KVM/ARM: System architecture
Introduction to Cloud Computing and Virtualization. Mayank Mishra Sujesha Sudevalayam PhD Students CSE, IIT Bombay
Introduction to Cloud Computing and Virtualization By Mayank Mishra Sujesha Sudevalayam PhD Students CSE, IIT Bombay Talk Layout Cloud Computing Need Features Feasibility Virtualization of Machines What
Micro VMMs and Nested Virtualization
Micro VMMs and Nested Virtualization For the TCE 4th summer school on computer security, big data and innovation Baruch Chaikin, Intel 9 September 2015 Agenda Virtualization Basics The Micro VMM Nested
Microkernel Construction
Introduction SS2013 Class Goals Provide deeper understanding of OS mechanisms Introduce L4 principles and concepts Make you become enthusiastic L4 hackers Propaganda for OS research at 2 Administration
Multiprocessor Scheduling. Multiprocessor Scheduling
Multiprocessor Scheduling Will consider only shared memory multiprocessor or multi-core CPU Salient features: One or more caches: cache affinity is important Semaphores/locks typically implemented as spin-locks:
1 Virtualization Recap
1 Virtualization Recap 2 Recap 1 What is the user part of an ISA? What is the system part of an ISA? What functionality do they provide? 3 Recap 2 Application Programs Libraries Operating System Arrows?
Virtualization with XEN. Trusted Computing CS599 Spring 2007 Arun Viswanathan University of Southern California
Virtualization with XEN Trusted Computing CS599 Spring 2007 Arun Viswanathan University of Southern California A g e n d a Introduction Virtualization approaches Basic XEN Architecture Setting up XEN Bootstrapping
CS 350 Winter 2011 Current Topics: Virtual Machines + Solid State Drives
CS 350 Winter 2011 Current Topics: Virtual Machines + Solid State Drives Virtual Machines Resource Virtualization Separating the abstract view of computing resources from the implementation of these resources
Portland State University ECE 587/687. Virtual Memory and Virtualization
Portland State University ECE 587/687 Virtual Memory and Virtualization Copyright by Alaa Alameldeen and Zeshan Chishti, 2015 Virtual Memory A layer of abstraction between applications and hardware Programs
CS370: Operating Systems [Spring 2016] Dept. Of Computer Science, Colorado State University
![CS370: Operating Systems [Spring 2016] Dept. Of Computer Science, Colorado State University](/thumbs/81/84153508.jpg "CS370: Operating Systems [Spring 2016] Dept. Of Computer Science, Colorado State University")
Frequently asked questions from the previous class survey CS 370: OPERATING SYSTEMS [VIRTUALIZATION] Shrideep Pallickara Computer Science Colorado State University RAM: Implications of 3 2GB cards over
NON SCHOLAE, SED VITAE
TDIU11 Operating systems Operating System Structures and Machines [SGG7/8] Chapter 2.7-2.8 [SGG9] Chapter 2.7, 1.11.6 Copyright Notice: The lecture notes are modifications of the slides accompanying the
Background. IBM sold expensive mainframes to large organizations. Monitor sits between one or more OSes and HW
Virtual Machines Background IBM sold expensive mainframes to large organizations Some wanted to run different OSes at the same time (because applications were developed on old OSes) Solution: IBM developed
Server Virtualization Approaches
Server Virtualization Approaches Virtual Machine Applications Emulation Replication Composition Emulation: Mix-and-match cross-platform portability Replication: Multiple VMs on single platform Composition:
Advanced Systems Security: Virtual Machine Systems
Systems and Internet Infrastructure Security Network and Security Research Center Department of Computer Science and Engineering Pennsylvania State University, University Park PA Advanced Systems Security:
CSC 5930/9010 Cloud S & P: Virtualization
CSC 5930/9010 Cloud S & P: Virtualization Professor Henry Carter Fall 2016 Recap Network traffic can be encrypted at different layers depending on application needs TLS: transport layer IPsec: network
Virtualization, Xen and Denali
Virtualization, Xen and Denali Susmit Shannigrahi November 9, 2011 Susmit Shannigrahi () Virtualization, Xen and Denali November 9, 2011 1 / 70 Introduction Virtualization is the technology to allow two
Intel Virtualization Technology Roadmap and VT-d Support in Xen
Intel Virtualization Technology Roadmap and VT-d Support in Xen Jun Nakajima Intel Open Source Technology Center Legal Disclaimer INFORMATION IN THIS DOCUMENT IS PROVIDED IN CONNECTION WITH INTEL PRODUCTS.
LINUX Virtualization. Running other code under LINUX
LINUX Virtualization Running other code under LINUX Environment Virtualization Citrix/MetaFrame Virtual desktop under Windows NT. aka Windows Remote Desktop Protocol VNC, Dameware virtual console. XWindows
Today s Papers. Virtual Machines Background. Why Virtualize? EECS 262a Advanced Topics in Computer Systems Lecture 19
EECS 262a Advanced Topics in Computer Systems Lecture 19 Xen/Microkernels November 5 th, 2014 John Kubiatowicz Electrical Engineering and Computer Sciences University of California, Berkeley Today s Papers
CS370 Operating Systems
CS370 Operating Systems Colorado State University Yashwant K Malaiya Spring 2018 Lecture 26 Virtualization Slides based on Text by Silberschatz, Galvin, Gagne Various sources 1 1 Virtualization Why we
Virtualization. Part 1 Concepts & XEN
Part 1 Concepts & XEN Concepts References and Sources James Smith, Ravi Nair, The Architectures of Virtual Machines, IEEE Computer, May 2005, pp. 32-38. Mendel Rosenblum, Tal Garfinkel, Virtual Machine