I/O virtualization. Jiang, Yunhong Yang, Xiaowei Software and Service Group 2009 虚拟化技术全国高校师资研讨班
|
|
- Jasper Gibson
- 6 years ago
- Views:
Transcription
1 I/O virtualization Jiang, Yunhong Yang, Xiaowei 1
2 Legal Disclaimer INFORMATION IN THIS DOCUMENT IS PROVIDED IN CONNECTION WITH INTEL PRODUCTS. NO LICENSE, EXPRESS OR IMPLIED, BY ESTOPPEL OR OTHERWISE, TO ANY INTELLECTUAL PROPERTY RIGHTS IS GRANTED BY THIS DOCUMENT. EXCEPT AS PROVIDED IN INTEL S TERMS AND CONDITIONS OF SALE FOR SUCH PRODUCTS, INTEL ASSUMES NO LIABILITY WHATSOEVER, AND INTEL DISCLAIMS ANY EXPRESS OR IMPLIED WARRANTY, RELATING TO SALE AND/OR USE OF INTEL PRODUCTS INCLUDING LIABILITY OR WARRANTIES RELATING TO FITNESS FOR A PARTICULAR PURPOSE, MERCHANTABILITY, OR INFRINGEMENT OF ANY PATENT, COPYRIGHT OR OTHER INTELLECTUAL PROPERTY RIGHT. INTEL PRODUCTS ARE NOT INTENDED FOR USE IN MEDICAL, LIFE SAVING, OR LIFE SUSTAINING APPLICATIONS. Intel may make changes to specifications and product descriptions at any time, without notice. All products, computer systems, dates, and figures specified are preliminary based on current expectations, and are subject to change without notice. Intel and the Intel logo are trademarks of Intel Corporation in the United States and other countries. *Other names and brands may be claimed as the property of others. Copyright 2009 Intel Corporation. 2
3 Agenda Overview Software Emulation Para-virtualization Direct I/O SR-IOV 3
4 A Retrospect on Physical Platform Processor Memory USB SATA Disk USB host controller USB Device PCIe PCIe IOH ICH 10 Intel QuickPath Interconnect PCIe PCIe LPC Display NIC Legacy Device 4
5 Device Semantic Software communicate with device Port I/O MMIO Interrupt Device transfer data to and from system memory DMA access Events notification from device Interrupt Device discovery and configuration Configuration space access in PCI device Processor I/O System Memory DMA Device 5
6 I/O Virtualization Overview Present virtual I/O to VM Isolation Performance Scalability Reliability Approaches Software Emulation Para-virtualization Direct I/O 6
7 Agenda Overview Software Emulation Para-virtualization Direct I/O SR-IOV 7
8 Overview Emulate existing hardware completely in software components (aka. Device Model) Must maintain same SW interface as native device E.g. I/O, MMIO, Interrupt, DMA But, could use arbitrary media to emulate the virtualized device E.g. VMM can use a SATA disk (or a partition, a file) to emulate a virtualized IDE disk Device Model IRQ Emul VM Exit Apps Native Driver I/O IRQ Virtual Interrupt Transparent to VM software stack Driver Hypervisor Device 8
9 I/O Access Emulation Device Model Apps 0x70, w, 1 State machine 0x90, w, 2 Handlers Native Driver Driver VM Exit VM Entry VMM Device HW 9
10 I/O Access Emulation (II) VMCS IO bitmap decides which IO port access will cause VM Exit CR3 VMM setup shadow page table/ept table to trap MMIO access In shadow model, corresponding shadow L1 entry will be set nonpresent In EPT model, the EPT table will not setup the mapping for the MMIO range shadow CR3 L2 L1 MMIO Device Not present Shadow L2 Shadow L1 MMIO trap in shadow model 10
11 DMA Emulation Device Model State machine 0x70, w, 1 0x90, w, 2 Handlers Apps Native Driver Driver DMA target address VMM Device HW 11
12 Interrupt Emulation CPU IDTR IDT Virtual CPU vidtr vidt PIC VM Entry Interrupt Injection PIRQA ICH Device Model Device API Virtual PIC INTA# Device Native Interrupt Injection Virtual Interrupt Injection 12
13 Case Study IDE sector read Driver allocate the PRDT Driver write register BMIDTPP to setup the PRDT address VMM trap the write operation and notify DM (Device Model) Device model map the guest memory pointed by PRDT Driver set the buffer address/length in the PRDT Device Model Buffer Buffer IDE Driver APPs PRDT Buffer Driver write register to set the target IDE vector VMM trap the write operation and notify DM DM keep this information in state machine Driver write the BMICX command register to trigger a DMA read VMM trap the write operation and notify DM DM translate the IDE sector to offset in the image file DM read corresponding data DM copy the data to guest s memory SATA Driver IRQ Emul VM Exit I/O IRQ Virtual Interrupt Hypervisor A interrupt is injected after DMA read DM inject a virtual IDE interrupt to guest OS acknowledge the interrupt and consume the data in the buffer SATA Disk
14 PCI Device Discovery & Configuration in Native PCI device is presented as (BUS, Device, Function) in PCI hierarchy Software enumerate devices through configuration space Configuration space access return 0xFF for non-exist device Device ID/Vendor ID/Revision ID to identify devices Device s Port IO/MMIO base address is configurable BAR (Base Address Register) in configuration space Dev0 F0 Host-PCI Bridge Dev 2 F0 PCI-PCI Bridge Dev2 F1 Dev3 F0 14
15 PCI Device Discovery in Software Emulation Device model emulates a virtual PCI hierarchy A host-pci bridge is emulated PCI device s configuration space access is emulated, like Device ID/Vendor ID for emulated device Port IO/MMIO BAR 15
16 Device Emulation Pros & Cons Pros Transparent to VM software stack Agnostic to physical device in the platform. Thus Legacy SW can still run, even after HW upgrade Smooth VM migration across different platforms Good physical device sharing Cons Un-optimum performance Cannot enjoy latest & greatest HW Lack of modern device emulation, since too complex Poor scalability Isolation and stability depends on implementation 16
17 Agenda Overview Software Emulation Para-virtualization Direct I/O SR-IOV 17
18 Overview Goal -- Improve I/O performance through SW approach VMM presents a specialized virtual device to VM A new & efficient interface between VMM & VM driver Usually high-level abstraction Requires a specialized driver in VM Tactics to further reduce overhead caused by VMM Batched I/O Shared memory Back-end Driver Driver Shared Memory Hyper call Apps Front-end Driver Notification Hypervisor Device 18
19 Case Study PV block device read FE (front-end) driver receives an OS standard read request FE grants the write permission of read buffer to the domain where BE (backend) driver is in FE produces a corresponding request (buffer s index, offset, length) in shared data structure, then notifies BE Upon notification, BE consumes the requests by mapping the remote domain s buffer, reassembling it in a OS standard format delivering downwards When the request is complete, BE callback function assembles the response in the shared data structure and notifies FE FE removes the buffer s granted permission and completes the read request finally Back-end Driver Driver Device Shared Memory Hyper call Apps Front-end Driver Notification Hypervisor 19
20 Para-virtualization Pros & Cons Pros Better performance Agnostic to physical device in the platform. Benefit smooth VM migration Cons Need install specialized driver in VM High CPU utilization for the I/O interface and memory copy Not so good scalability because of CPU utilization Isolation and stability depends on implementation 20
21 Agenda Overview Software Emulation Para-virtualization Direct I/O SR-IOV 21
22 Device I/O - Overview Assign a physical device to a VM directly VM access the device directly, w/ VMM intervention reduced to minimum Physical device access guest s memory directly with help of Intel s VT-d technology Interrupt will be injected to guest through hypervisor VMM emulates PCI configuration space (may through device model) Write Through Hypervisor Apps Native Driver I/O IRQ Virtual Interrupt Physical Interrupt 22
23 Case Study IDE sector read Driver allocate the PRDT Driver write register BMIDTPP to setup the PRDT address The access is passed-through to hardware Driver set the buffer address/length in the PRDT Driver write register to set the target IDE vector The access is passed-through to hardware Driver write the BMICX command register to trigger a DMA read The access is passed-through to hardware IDE disk perform DMA access to the memory through VT-d A interrupt is injected after DMA read DM inject a virtual IDE interrupt to guest OS acknowledge the interrupt and consume the data in the buffer Hypervisor Passthrough IDE Driver I/O IRQ APPs PRDT Buffer Interrupt 2 3 VT-d IDE disk 23
24 DMA Operation Driver in guest use guest physical address as DMA target Device issue DMA access using address setup by guest Also, driver in VM can set bogus address as DMA target Guest Pseudo Physical Memory Machine Physical Memory VM1 VM2 VM3 VM Hypervisor
25 Intel VT-d Technology DMA Remapping All DMA transaction is captured by chipset Intel VT-d technology provides DMA remapping, to translate. 25
26 Intel VT-d Technology DMA Remapping DMA Requests Device ID Virtual Address Length Fault Generation Bus 255 Bus N Bus 0 Dev 31, Func 7 Dev P, Func 2 Dev P, Func 1 Dev 0, Func 0 4KB Page Tables 4KB Page Frame DMA Remapping Engine Translation Cache Context Cache Device Assignment Structures Device D1 Device D2 Address Translation Structures Address Translation Structures Memory-resident Partitioning & Translation Structures 26
27 DMA Remapping Translation Flow Context entry points to the translation structure Multiple-level page table is used for address translation 0s 9 bit DMA address 9 bit 9 bit 12 bit Context Entry 27
28 DMA Remapping PCIe ATS PCIe ATS (Address Translation Services ) specification enable I/O devices to participate in DMA remapping Device can request a translation explicitly before DMA access A special flag to indicate if DMA access s target address is translated or not VT-d will only translate DMA request that isn t translated by device 28
29 I/O Access Pass-through Guest may change device s Port IO/MMIO base address Will not impact physical MMIO BAR through configuration space emulation Guest has different port IO/MMIO base address with physical one MMIO access pass-through For shadow mode, setup shadow page table according to physical address For EPT, setup the EPT table for the translation CR3 shadow CR3 L2 L1 MMIO Device Port I/O access is passthrough only if guest doesn t change Port IO BAR Otherwise need trap-andemulation Shadow L2 MMIO Device 29
30 Device Initial State Device should have clean state before assigned to guest To avoid information leak when device detach To avoid in-flight device action VMM need quiescent and reset a PCIe function before device assignment 30
31 Device Direct Assignment Pros & Cons Pros Near-to-native performance Minimum VMM intervention, thus low CPU utilization Good isolation Cons Exclusive device access PCI slots in system is limited. Thus not a very scalable solution. 31
32 Agenda I/O Virtualization Overview Device Emulation Device Para-virtualization Device Direct Assignment SR-IOV 32
33 SR-IOV - Overview A standard defined by PCI SIG, to provide virtualization friendly device Device can be shared by VMs, while still enjoying the benefits of device direct assignment 33
34 SR-IOV - Overview A PCI standard to provide virtualization friendly device Device can be shared by VMs, while still enjoying the benefits of device direct assignment Start with a single function device HW under the control of privileged software (VMM) Includes a SR-IOV capability Physical Function Replicate the resources needed by a VM MMIO for direct communication RID for tag DMA traffict Minimal configuration space Virtual Function (VF) 34
35 SR-IOV Runtime Operation Guest s run-time operation to VF is same to Device Direct assignment Same MMIO pass-through mechanism No Port IO supported in VF DMA through DMA remapping Interrupt emulation through hypervisor The only difference is device configuration How to enable the VF VF does not exists by default How to locate the VF s resource, like MMIO base address 35
36 Network Performance and Scalability with SR- IOV dom0% vm% BW dom0% vm% BW CPU % Bandwidth ( Gbp s ) CPU % Bandwidth ( Gbp s ) VM # VM # Xen network scalability with software virtualization Xen network scalability with Intel VT-c (SR-IOV) 36
37 SR-IOV - Summary Pros Good performance Good Scalability A cost effective I/O virtualization solution 37
38 Agenda I/O Virtualization Overview Device Emulation Device Para-virtualization Device Direct Assignment SR-IOV 38
39 Backup 39
40 Interrupt Isolation Challenges In existing interrupt architecture on x86 Platform Interrupt is an DMA write to a specific address (0xFEEX_XXXX) Interrupt attribute is contained in the data/address Device issue DMA write according to guest driver setup Guest can trigger arbitrary interrupt through bogus DMA access it is not page grained, DMA remapping can t cover this range 40
41 Intel VT-d Technology - Interrupt Remapping Interrupt remapping redefines the interrupt message format The DMA write include only an index to a remapping table The Remapping table is setup in memory by VMM and includes the interrupt attribute Interrupt Remapping Engine will translate the index to interrupt attribute VMM need intercept guest s setup to interrupt attribute (Message Interrupt setup) Vector Target, etc CPU Interrupt Remapping Engine Index Device search Interrupt Remapping Table vector, destination 0 n 41
Intel Virtualization Technology Roadmap and VT-d Support in Xen
Intel Virtualization Technology Roadmap and VT-d Support in Xen Jun Nakajima Intel Open Source Technology Center Legal Disclaimer INFORMATION IN THIS DOCUMENT IS PROVIDED IN CONNECTION WITH INTEL PRODUCTS.
More informationSR-IOV support in Xen. Yaozu (Eddie) Dong Yunhong Jiang Kun (Kevin) Tian
SR-IOV support in Xen Yaozu (Eddie) Dong (Eddie.Dong@intel.com) Yunhong Jiang Kun (Kevin) Tian Agenda SR-IOV specification overview Xen/SR-IOV architecture Discussions 2 SR-IOV specification overview Start
More informationIntel Graphics Virtualization on KVM. Aug KVM Forum 2011 Rev. 3
Intel Graphics Virtualization on KVM Aug-16-2011 allen.m.kay@intel.com KVM Forum 2011 Rev. 3 Agenda Background on IO Virtualization Device Operation on Native Platform QEMU IO Virtualization Device Direct
More informationVirtual Machine Virtual Machine Types System Virtual Machine: virtualize a machine Container: virtualize an OS Program Virtual Machine: virtualize a process Language Virtual Machine: virtualize a language
More informationMaking Nested Virtualization Real by Using Hardware Virtualization Features
Making Nested Virtualization Real by Using Hardware Virtualization Features May 28, 2013 Jun Nakajima Intel Corporation 1 Legal Disclaimer INFORMATION IN THIS DOCUMENT IS PROVIDED IN CONNECTION WITH INTEL
More informationNested Virtualization Update From Intel. Xiantao Zhang, Eddie Dong Intel Corporation
Nested Virtualization Update From Intel Xiantao Zhang, Eddie Dong Intel Corporation Legal Disclaimer INFORMATION IN THIS DOCUMENT IS PROVIDED IN CONNECTION WITH INTEL PRODUCTS. NO LICENSE, EXPRESS OR IMPLIED,
More informationKVM for IA64. Anthony Xu
KVM for IA64 Anthony Xu Legal Disclaimer INFORMATION IN THIS DOCUMENT IS PROVIDED IN CONNECTION WITH INTEL PRODUCTS. NO LICENSE, EXPRESS OR IMPLIED, BY ESTOPPEL OR OTHERWISE, TO ANY INTELLECTUAL PROPERTY
More informationJunhong Jiang, Kevin Tian, Chris Wright, Don Dugger
Updating Xen for the Client Environment Junhong Jiang, Kevin Tian, Chris Wright, Don Dugger Legal Content INFORMATION IN THIS DOCUMENT IS PROVIDED IN CONNECTION WITH INTEL PRODUCTS. EXCEPT AS PROVIDED
More informationGraphics Pass-through with VT-d
Graphics Pass-through with VT-d Nov-19-2009 Weidong Han Ben Lin Xen Summit Asia 2009 Agenda Graphics Virtualization Introduction Graphics Pass-through with VT-d Performance Conclusion 2 Requirements on
More informationHardware-Assisted Mediated Pass-Through with VFIO. Kevin Tian Principal Engineer, Intel
Hardware-Assisted Mediated Pass-Through with VFIO Kevin Tian Principal Engineer, Intel 1 Legal Disclaimer No license (express or implied, by estoppel or otherwise) to any intellectual property rights is
More informationEnhancing pass through device support with IOMMU. Haitao Shan Yunhong Jiang Allen M Kay Eddie (Yaozu) Dong
Enhancing pass through device support with IOMMU Haitao Shan (haitao.shan@intel.com) Yunhong Jiang Allen M Kay Eddie (Yaozu) Dong Agenda Current Status Further enhancement Hardening host Improving functionality
More informationIntel Virtualization Technology for Directed I/O
Intel Virtualization Technology for Directed I/O Architecture Specification May 27 Revision:. Order Number: D5397-2 Legal Lines and Disclaimers Copyright 27, Intel Corporation. All Rights Reserved. Intel
More informationIntel Virtualization Technology for Directed I/O Architecture Specification
Intel Virtualization Technology for Directed I/O Architecture Specification February 2006 Order Number: D51397-001 INFORMATION IN THIS DOCUMENT IS PROVIDED IN CONNECTION WITH INTEL PRODUCTS. NO LICENSE,
More informationCOSC6376 Cloud Computing Lecture 14: CPU and I/O Virtualization
COSC6376 Cloud Computing Lecture 14: CPU and I/O Virtualization Instructor: Weidong Shi (Larry), PhD Computer Science Department University of Houston Outline CPU Virtualization I/O Virtualization Types
More informationI/O Scalability in Xen
I/O Scalability in Xen Kevin Tian kevin.tian@intel.com Eddie Dong eddie.dong@intel.com Yang Zhang yang.zhang@intel.com Sponsored by: & & Agenda Overview of I/O Scalability Issues Excessive Interrupts Hurt
More informationIntel Virtualization Technology for Directed I/O
Intel Virtualization Technology for Directed I/O Architecture Specification February Revision:. Order Number: D597-5 Legal Lines and Disclaimers Copyright, Intel Corporation. All Rights Reserved. Intel
More informationKVM as The NFV Hypervisor
KVM as The NFV Hypervisor Jun Nakajima Contributors: Mesut Ergin, Yunhong Jiang, Krishna Murthy, James Tsai, Wei Wang, Huawei Xie, Yang Zhang 1 Legal Disclaimer INFORMATION IN THIS DOCUMENT IS PROVIDED
More informationPractical Xen Testing at Intel
Practical Xen Testing at Intel Nov. 2009 Haicheng Li Jiajun Xu Xen Summit Asia 2009 Legal Information INFORMATION IN THIS DOCUMENT IS PROVIDED IN CONNECTION
More informationIntel Atom Processor Based Platform Technologies. Intelligent Systems Group Intel Corporation
Intel Atom Processor Based Platform Technologies Intelligent Systems Group Intel Corporation Legal Disclaimer INFORMATION IN THIS DOCUMENT IS PROVIDED IN CONNECTION WITH INTEL PRODUCTS. NO LICENSE, EXPRESS
More informationHow to abstract hardware acceleration device in cloud environment. Maciej Grochowski Intel DCG Ireland
How to abstract hardware acceleration device in cloud environment Maciej Grochowski Intel DCG Ireland Outline Introduction to Hardware Accelerators Intel QuickAssist Technology (Intel QAT) as example of
More informationExtended Page Tables (EPT) A VMM must protect host physical memory Multiple guest operating systems share the same host physical memory VMM typically implements protections through page-table shadowing
More informationVirtualization. ! Physical Hardware Processors, memory, chipset, I/O devices, etc. Resources often grossly underutilized
Starting Point: A Physical Machine Virtualization Based on materials from: Introduction to Virtual Machines by Carl Waldspurger Understanding Intel Virtualization Technology (VT) by N. B. Sahgal and D.
More informationVirtualization. Starting Point: A Physical Machine. What is a Virtual Machine? Virtualization Properties. Types of Virtualization
Starting Point: A Physical Machine Virtualization Based on materials from: Introduction to Virtual Machines by Carl Waldspurger Understanding Intel Virtualization Technology (VT) by N. B. Sahgal and D.
More informationAchieve Low Latency NFV with Openstack*
Achieve Low Latency NFV with Openstack* Yunhong Jiang Yunhong.Jiang@intel.com *Other names and brands may be claimed as the property of others. Agenda NFV and network latency Why network latency on NFV
More informationNested Virtualization Friendly KVM
Nested Virtualization Friendly KVM Sheng Yang, Qing He, Eddie Dong 1 Virtualization vs. Nested Virtualization Single-Layer Virtualization Multi-Layer (Nested) Virtualization (L2) Virtual Platform (L1)
More informationLinux and Xen. Andrea Sarro. andrea.sarro(at)quadrics.it. Linux Kernel Hacking Free Course IV Edition
Linux and Xen Andrea Sarro andrea.sarro(at)quadrics.it Linux Kernel Hacking Free Course IV Edition Andrea Sarro (andrea.sarro(at)quadrics.it) Linux and Xen 07/05/2008 1 / 37 Introduction Xen and Virtualization
More informationInterrupt Swizzling Solution for Intel 5000 Chipset Series based Platforms
Interrupt Swizzling Solution for Intel 5000 Chipset Series based Platforms Application Note August 2006 Document Number: 314337-002 Notice: This document contains information on products in the design
More informationevm for Windows* User Manual
evm for Windows* User Manual Rev 4.0 1 Copyright 2017 TenAsys Corporation No part of this manual may be copied, duplicated, reprinted, and stored in a retrieval system by any means, mechanical or electronic,
More informationThe Transition to PCI Express* for Client SSDs
The Transition to PCI Express* for Client SSDs Amber Huffman Senior Principal Engineer Intel Santa Clara, CA 1 *Other names and brands may be claimed as the property of others. Legal Notices and Disclaimers
More informationIntel s s Security Vision for Xen
Intel s s Security Vision for Xen Carlos Rozas Intel Corporation Xen Summit April 7-8, 7 2005 INFORMATION IN THIS DOCUMENT IS PROVIDED IN CONNECTION WITH INTEL PRODUCTS. EXCEPT AS PROVIDED IN INTEL'S TERMS
More informationRuntime VM Protection By Intel Multi-Key Total Memory Encryption (MKTME)
Runtime VM Protection By Intel Multi-Key Total Memory Encryption (MKTME) Kai Huang @ Intel Corporation LINUXCON + CONTAINERCON + CLOUDOPEN Beijing, China, 2018 1 Legal Disclaimer No license (express or
More informationKnut Omang Ifi/Oracle 20 Oct, Introduction to virtualization (Virtual machines) Aspects of network virtualization:
Software and hardware support for Network Virtualization part 2 Knut Omang Ifi/Oracle 20 Oct, 2015 32 Overview Introduction to virtualization (Virtual machines) Aspects of network virtualization: Virtual
More informationAdvanced Operating Systems (CS 202) Virtualization
Advanced Operating Systems (CS 202) Virtualization Virtualization One of the natural consequences of the extensibility research we discussed What is virtualization and what are the benefits? 2 Virtualization
More informationKnut Omang Ifi/Oracle 6 Nov, 2017
Software and hardware support for Network Virtualization part 1 Knut Omang Ifi/Oracle 6 Nov, 2017 1 Motivation Goal: Introduction to challenges in providing fast networking to virtual machines Prerequisites:
More informationChapter 5 C. Virtual machines
Chapter 5 C Virtual machines Virtual Machines Host computer emulates guest operating system and machine resources Improved isolation of multiple guests Avoids security and reliability problems Aids sharing
More informationIntel Transparent Computing
Intel Transparent Computing Jeff Griffen Director of Platform Software Infrastructure Software and Services Group October, 21 2010 1 Legal Information INFORMATION IN THIS DOCUMENT IS PROVIDED IN CONNECTION
More informationIntel Virtualization Technology for Directed I/O
Intel Virtualization Technology for Directed I/O Architecture Specification September 203 Order Number: D5397-006, Rev. 2.2 INFORMATION IN THIS DOCUMENT IS PROVIDED IN CONNECTION WITH INTEL PRODUCTS. NO
More informationCS-580K/480K Advanced Topics in Cloud Computing. VM Virtualization II
CS-580K/480K Advanced Topics in Cloud Computing VM Virtualization II 1 How to Build a Virtual Machine? 2 How to Run a Program Compiling Source Program Loading Instruction Instruction Instruction Instruction
More informationIntel s Virtualization Extensions (VT-x) So you want to build a hypervisor?
Intel s Virtualization Extensions (VT-x) So you want to build a hypervisor? Mr. Jacob Torrey May 13, 2014 Dartmouth College 153 Brooks Road, Rome, NY 315.336.3306 http://ainfosec.com @JacobTorrey torreyj@ainfosec.com
More informationXen and the Art of Virtualization. CSE-291 (Cloud Computing) Fall 2016
Xen and the Art of Virtualization CSE-291 (Cloud Computing) Fall 2016 Why Virtualization? Share resources among many uses Allow heterogeneity in environments Allow differences in host and guest Provide
More informationIntroduction to SGX (Software Guard Extensions) and SGX Virtualization. Kai Huang, Jun Nakajima (Speaker) July 12, 2017
Introduction to SGX (Software Guard Extensions) and SGX Virtualization Kai Huang, Jun Nakajima (Speaker) July 12, 2017 1 INTEL RESTRICTED SECRET Agenda SGX Introduction Xen SGX Virtualization Support Backup
More informationVirtualization. Operating Systems, 2016, Meni Adler, Danny Hendler & Amnon Meisels
Virtualization Operating Systems, 2016, Meni Adler, Danny Hendler & Amnon Meisels 1 What is virtualization? Creating a virtual version of something o Hardware, operating system, application, network, memory,
More informationIntroduction to Virtual Machines. Carl Waldspurger (SB SM 89 PhD 95) VMware R&D
Introduction to Virtual Machines Carl Waldspurger (SB SM 89 PhD 95) VMware R&D Overview Virtualization and VMs Processor Virtualization Memory Virtualization I/O Virtualization Typesof Virtualization Process
More informationFast access ===> use map to find object. HW == SW ===> map is in HW or SW or combo. Extend range ===> longer, hierarchical names
Fast access ===> use map to find object HW == SW ===> map is in HW or SW or combo Extend range ===> longer, hierarchical names How is map embodied: --- L1? --- Memory? The Environment ---- Long Latency
More informationLive Migration of vgpu
Live Migration of vgpu Aug 2016 Xiao Zheng xiao.zheng@intel.com Kevin Tian kevin.tian@intel.com Agenda GPU Virtualization and vgpu Live Migration vgpu Resources Design and Solution Current Status Summary
More informationVirtualization. Pradipta De
Virtualization Pradipta De pradipta.de@sunykorea.ac.kr Today s Topic Virtualization Basics System Virtualization Techniques CSE506: Ext Filesystem 2 Virtualization? A virtual machine (VM) is an emulation
More informationNon-Volatile Memory Cache Enhancements: Turbo-Charging Client Platform Performance
Non-Volatile Memory Cache Enhancements: Turbo-Charging Client Platform Performance By Robert E Larsen NVM Cache Product Line Manager Intel Corporation August 2008 1 Legal Disclaimer INFORMATION IN THIS
More informationI/O Virtualization The Next Virtualization Frontier
I/O Virtualization The Next Virtualization Frontier Dennis Martin President Demartek Demartek Company Overview Industry analysis with on-site test lab Lab includes servers, networking and storage infrastructure
More informationMicro VMMs and Nested Virtualization
Micro VMMs and Nested Virtualization For the TCE 4th summer school on computer security, big data and innovation Baruch Chaikin, Intel 9 September 2015 Agenda Virtualization Basics The Micro VMM Nested
More informationProgrammed I/O accesses: a threat to Virtual Machine Monitors?
Programmed I/O accesses: a threat to Virtual Machine Monitors? Loïc Duflot & Laurent Absil Central Department for Information Systems Security SGDN/DCSSI 51 boulevard de la Tour Maubourg 75007 Paris Introduction
More informationOptimizing and Enhancing VM for the Cloud Computing Era. 20 November 2009 Jun Nakajima, Sheng Yang, and Eddie Dong
Optimizing and Enhancing VM for the Cloud Computing Era 20 November 2009 Jun Nakajima, Sheng Yang, and Eddie Dong Implications of Cloud Computing to Virtualization More computation and data processing
More informationHardware assisted Virtualization in Embedded
Hardware assisted Virtualization in Embedded Tanveer Alam Platform Architect Embedded Virtualization Sponsored by: & Agenda Embedded Virtualization What is embedded? Embedded specific requirements Key
More informationVirtual Machines. Part 2: starting 19 years ago. Operating Systems In Depth IX 1 Copyright 2018 Thomas W. Doeppner. All rights reserved.
Virtual Machines Part 2: starting 19 years ago Operating Systems In Depth IX 1 Copyright 2018 Thomas W. Doeppner. All rights reserved. Operating Systems In Depth IX 2 Copyright 2018 Thomas W. Doeppner.
More informationFast access ===> use map to find object. HW == SW ===> map is in HW or SW or combo. Extend range ===> longer, hierarchical names
Fast access ===> use map to find object HW == SW ===> map is in HW or SW or combo Extend range ===> longer, hierarchical names How is map embodied: --- L1? --- Memory? The Environment ---- Long Latency
More informationIntroduction to Intel Boot Loader Development Kit (Intel BLDK) Intel SSG/SSD/UEFI
Introduction to Intel Boot Loader Development Kit (Intel BLDK) Intel SSG/SSD/UEFI Legal Disclaimer INFORMATION IN THIS DOCUMENT IS PROVIDED IN CONNECTION WITH INTEL PRODUCTS. NO LICENSE, EXPRESS OR IMPLIED,
More informationDistributed Systems COMP 212. Lecture 18 Othon Michail
Distributed Systems COMP 212 Lecture 18 Othon Michail Virtualisation & Cloud Computing 2/27 Protection rings It s all about protection rings in modern processors Hardware mechanism to protect data and
More informationIntel Rapid Storage Technology (Intel RST) Production Version Release
Intel Rapid Storage Technology (Intel RST) 16.5.1.1030 Production Version Release 19 July 2018 DISCLAIMER: Information in this document is provided in connection with Intel products. No license, express
More informationSystem Virtual Machines
System Virtual Machines Outline Need and genesis of system Virtual Machines Basic concepts User Interface and Appearance State Management Resource Control Bare Metal and Hosted Virtual Machines Co-designed
More informationVirtualization. Virtualization
Virtualization Virtualization Memory virtualization Process feels like it has its own address space Created by MMU, configured by OS Storage virtualization Logical view of disks connected to a machine
More informationVirtual Virtual Memory
Virtual Virtual Memory Jason Power 3/20/2015 With contributions from Jayneel Gandhi and Lena Olson 4/17/2015 UNIVERSITY OF WISCONSIN 1 Virtual Machine History 1970 s: VMMs 1997: Disco 1999: VMWare (binary
More informationSpring 2017 :: CSE 506. Introduction to. Virtual Machines. Nima Honarmand
Introduction to Virtual Machines Nima Honarmand Virtual Machines & Hypervisors Virtual Machine: an abstraction of a complete compute environment through the combined virtualization of the processor, memory,
More informationCOMPUTER ARCHITECTURE. Virtualization and Memory Hierarchy
COMPUTER ARCHITECTURE Virtualization and Memory Hierarchy 2 Contents Virtual memory. Policies and strategies. Page tables. Virtual machines. Requirements of virtual machines and ISA support. Virtual machines:
More informationBIOS Update Release Notes
BIOS Update Release Notes PRODUCTS: D946GZIS, D946GZTS (Standard BIOS) BIOS Version 0067 January 31, 2007 TS94610J.86A.0067.2007.0130.1308 VBIOS info: Build Number: 1377 PC 14.18 08/11/2006 17:22:22 Fixed
More informationZhang Tianfei. Rosen Xu
Zhang Tianfei Rosen Xu Agenda Part 1: FPGA and OPAE - Intel FPGAs and the Modern Datacenter - Platform Options and the Acceleration Stack - FPGA Hardware overview - Open Programmable Acceleration Engine
More informationMxGPU Setup Guide with VMware
Page 1 of 17 MxGPU Setup Guide with VMware 1 Page 2 of 17 DISCLAIMER The information contained herein is for informational purposes only, and is subject to change without notice. While every precaution
More informationI/O and virtualization
I/O and virtualization CSE-C3200 Operating systems Autumn 2015 (I), Lecture 8 Vesa Hirvisalo Today I/O management Control of I/O Data transfers, DMA (Direct Memory Access) Buffering Single buffering Double
More informationNested Virtualization and Server Consolidation
Nested Virtualization and Server Consolidation Vara Varavithya Department of Electrical Engineering, KMUTNB varavithya@gmail.com 1 Outline Virtualization & Background Nested Virtualization Hybrid-Nested
More informationIntel Rapid Storage Technology (Intel RST) Production Version Release
Intel Rapid Storage Technology (Intel RST) 16.8.0.1000 Production Version Release 12 December 2018 DISCLAIMER: Information in this document is provided in connection with Intel products. No license, express
More informationPacifica Next Generation Architecture for Efficient Virtual Machines
Pacifica Next Generation Architecture for Efficient Virtual Machines Steve McDowell Division Marketing Manager Computation Products Group AMD steven.mcdowell@amd.com Geoffrey Strongin Platform Security
More informationBIOS Update Release Notes
BIOS Update Release Notes PRODUCTS: D946GZIS, D946GZTS (Standard BIOS) BIOS Version 0087 November 11, 2007 TS94610J.86A.0087.2007.1111.0015 VBIOS info: Build Number: 1518 PC 14.27 07/06/2007 17:11:20 PXE
More informationBackground. IBM sold expensive mainframes to large organizations. Monitor sits between one or more OSes and HW
Virtual Machines Background IBM sold expensive mainframes to large organizations Some wanted to run different OSes at the same time (because applications were developed on old OSes) Solution: IBM developed
More informationTowards More Power Friendly Xen
Towards More Power Friendly Xen June 2008 Yu Ke Tian Kevin Wei Gang Liu Jinsong Agenda Xen power management current
More informationCSE 120 Principles of Operating Systems
CSE 120 Principles of Operating Systems Spring 2018 Lecture 16: Virtual Machine Monitors Geoffrey M. Voelker Virtual Machine Monitors 2 Virtual Machine Monitors Virtual Machine Monitors (VMMs) are a hot
More informationInnovating and Integrating for Communications and Storage
Innovating and Integrating for Communications and Storage Stephen Price Director of Marketing Performance Platform Division Embedded and Communications Group September 2009 WHAT IS THE NEWS? New details
More informationVGPU ON KVM VFIO BASED MEDIATED DEVICE FRAMEWORK Neo Jia & Kirti Wankhede, 08/25/2016
V ON K BASED MEDIATED DEVICE FEWORK Neo Jia & Kirti Wankhede, 08/25/2016 Background / Motivation Framework Overview AGENDA Framework Deep-Dive Current Status Demo Future work 2 TODAY, HOW PRESENTED INSIDE
More informationBIOS Update Release Notes
PRODUCTS: D510MO (Standard BIOS) BIOS Update Release Notes BIOS Version 0400 - MOPNV10N.86A.0400.2010.1019.1048 October 19, 2010 Integrated Graphics Option ROM: 2036 06/14/2010 v2.35 (100614) v1.23 (100728)
More informationRack Disaggregation Using PCIe Networking
Ethernet-based Software Defined Network (SDN) Rack Disaggregation Using PCIe Networking Cloud Computing Research Center for Mobile Applications (CCMA) Industrial Technology Research Institute 雲端運算行動應用研究中心
More informationNetwork device virtualization: issues and solutions
Network device virtualization: issues and solutions Ph.D. Seminar Report Submitted in partial fulfillment of the requirements for the degree of Doctor of Philosophy by Debadatta Mishra Roll No: 114050005
More informationLecture 7. Xen and the Art of Virtualization. Paul Braham, Boris Dragovic, Keir Fraser et al. 16 November, Advanced Operating Systems
Lecture 7 Xen and the Art of Virtualization Paul Braham, Boris Dragovic, Keir Fraser et al. Advanced Operating Systems 16 November, 2011 SOA/OS Lecture 7, Xen 1/38 Contents Virtualization Xen Memory CPU
More informationOperating Systems 4/27/2015
Virtualization inside the OS Operating Systems 24. Virtualization Memory virtualization Process feels like it has its own address space Created by MMU, configured by OS Storage virtualization Logical view
More informationVIRTIO: VHOST DATA PATH ACCELERATION TORWARDS NFV CLOUD. CUNMING LIANG, Intel
VIRTIO: VHOST DATA PATH ACCELERATION TORWARDS NFV CLOUD CUNMING LIANG, Intel Agenda Towards NFV Cloud vhost Data Path Acceleration vdpa Intro vdpa Design vdpa Implementation Summary & Future Work Towards
More informationDevelopment of I/O Pass-through: Current Status & the Future. Nov 21, 2008 Yuji Shimada NEC System Technologies, Ltd.
Development of I/O Pass-through: Current Status & the Future Nov 21, 2008 Yuji Shimada NEC System Technologies, Ltd. Agenda 1.Implementation of I/O Pass-through 2.Future Enhancement Plan 3.Challenges for
More informationChapter 5 (Part II) Large and Fast: Exploiting Memory Hierarchy. Baback Izadi Division of Engineering Programs
Chapter 5 (Part II) Baback Izadi Division of Engineering Programs bai@engr.newpaltz.edu Virtual Machines Host computer emulates guest operating system and machine resources Improved isolation of multiple
More informationVirtualization, Xen and Denali
Virtualization, Xen and Denali Susmit Shannigrahi November 9, 2011 Susmit Shannigrahi () Virtualization, Xen and Denali November 9, 2011 1 / 70 Introduction Virtualization is the technology to allow two
More informationModule 1: Virtualization. Types of Interfaces
Module 1: Virtualization Virtualization: extend or replace an existing interface to mimic the behavior of another system. Introduced in 1970s: run legacy software on newer mainframe hardware Handle platform
More informationIntel Rapid Storage Technology (Intel RST) Production Version Release
Intel Rapid Storage Technology (Intel RST) 17.2.0.1009 Production Version Release 08 March 2019 DISCLAIMER: Information in this document is provided in connection with Intel products. No license, express
More informationIntel Rapid Storage Technology (Intel RST) (Intel Optane Memory SDK Only) Production Version Release
Intel Rapid Storage Technology (Intel RST) 16.7.0.1009 (Intel Optane Memory SDK Only) Production Version Release 18 October 2018 DISCLAIMER: Information in this document is provided in connection with
More informationReference Boot Loader from Intel
Document Number: 328739-001 Introduction INFORMATION IN THIS DOCUMENT IS PROVIDED IN CONNECTION WITH INTEL PRODUCTS. NO LICENSE, EXPRESS OR IMPLIED, BY ESTOPPEL OR OTHERWISE, TO ANY INTELLECTUAL PROPERTY
More informationJeff Dodson / Avago Technologies
SNIA PRESENTATION Tutorial: TITLE PCIe GOES Shared HERE I/O Jeff Dodson / Avago Technologies SNIA Legal Notice The material contained in this tutorial is copyrighted by the SNIA unless otherwise noted.
More informationVIRTIO-NET: VHOST DATA PATH ACCELERATION TORWARDS NFV CLOUD. CUNMING LIANG, Intel
VIRTIO-NET: VHOST DATA PATH ACCELERATION TORWARDS NFV CLOUD CUNMING LIANG, Intel Agenda Towards NFV Cloud Background & Motivation vhost Data Path Acceleration Intro Design Impl Summary & Future Work Towards
More informationVirtualisation: The KVM Way. Amit Shah
Virtualisation: The KVM Way Amit Shah amit.shah@qumranet.com foss.in/2007 Virtualisation Simulation of computer system in software Components Processor Management: register state, instructions, exceptions
More informationVirtually Impossible
Virtually Impossible The Reality of Virtualization Security Gal Diskin / Chief Research Officer / Cyvera LTD. /WhoAmI? Chief Research Officer @ Cvyera LTD Formerly Security Evaluation Architect of the
More informationVirtualization (II) SPD Course 17/03/2010 Massimo Coppola
Virtualization (II) SPD Course 17/03/2010 Massimo Coppola The players The Hypervisor (HV) implements the virtual machine emulation to run a Guest OS Provides resources and functionalities to the Guest
More informationSR-IOV Networking in Xen: Architecture, Design and Implementation
SR-IOV Networking in Xen: Architecture, Design and Implementation Yaozu Dong, Zhao Yu and Greg Rose Abstract. SR-IOV capable network devices offer the benefits of direct I/O throughput and reduced CPU
More informationWhat is KVM? KVM patch. Modern hypervisors must do many things that are already done by OSs Scheduler, Memory management, I/O stacks
LINUX-KVM The need for KVM x86 originally virtualization unfriendly No hardware provisions Instructions behave differently depending on privilege context(popf) Performance suffered on trap-and-emulate
More informationVirtual Machines Disco and Xen (Lecture 10, cs262a) Ion Stoica & Ali Ghodsi UC Berkeley February 26, 2018
Virtual Machines Disco and Xen (Lecture 10, cs262a) Ion Stoica & Ali Ghodsi UC Berkeley February 26, 2018 Today s Papers Disco: Running Commodity Operating Systems on Scalable Multiprocessors, Edouard
More informationBIOS Update Release Notes
BIOS Update Release Notes PRODUCTS: D410PT, D510MO (Standard BIOS) BIOS Version 0516 - MOPNV10N.86A.0516.2011.0331.1730 March 31, 2011 Increased Setup time and Data range. Added support for new SPI flash
More informationIntel SRCS28X RAID Controller 814G Firmware Upgrade for Intel Storage System SSR316MJ+
Intel SRCS28X RAID Controller 814G Firmware Upgrade for Intel Storage System SSR316MJ+ Firmware Release Notes Revision 1.0 October, 2006 Storage Systems Technical Marketing 2 Revision HistoryIntel SRCS28X
More informationBIOS Update Release Notes
PRODUCTS: D5400XS (Standard BIOS) BIOS Update Release Notes BIOS Version 1353 July 24, 2009 XS54010J.86A.1353.2009.0724.1139 SATA RAID Option ROM: Intel(R) RAID for SATA v5.6.7.1001 SATA RAID Option ROM:
More informationEvolving Small Cells. Udayan Mukherjee Senior Principal Engineer and Director (Wireless Infrastructure)
Evolving Small Cells Udayan Mukherjee Senior Principal Engineer and Director (Wireless Infrastructure) Intelligent Heterogeneous Network Optimum User Experience Fibre-optic Connected Macro Base stations
More information