neve nested virtualization extensions for arm
play

NEVE: Nested Virtualization Extensions for ARM Jin Tack Lim, Christo - PowerPoint PPT Presentation

Oct 13, 2023 •17 likes •407 views

NEVE: Nested Virtualization Extensions for ARM Jin Tack Lim, Christo ff er Dall, Shih-Wei Li, Jason Nieh, and Marc Zyngier* * Nested Virtualization VM Nested VM Nested VM App App App App VM Kernel Kernel App App Guest Hypervisor

  1. NEVE: Nested Virtualization Extensions for ARM Jin Tack Lim, Christo ff er Dall, Shih-Wei Li, Jason Nieh, and Marc Zyngier* *

  2. Nested Virtualization VM Nested VM Nested VM App App App App VM Kernel Kernel App App Guest Hypervisor Kernel Host Hypervisor Hardware

  3. Nested Virtualization VM Nested VM Nested VM App App App App • Run your own VM in public clouds VM Kernel Kernel App App Guest Hypervisor Kernel Host Hypervisor Hardware

  4. Nested Virtualization VM Nested VM Nested VM App App App App • Run your own VM in public clouds VM Kernel Kernel App App Guest Hypervisor Kernel Host Hypervisor • Run OSes which have built-in 
 hypervisors in a VM Hardware

  7. Key Problem • No nested virtualization support on current hardware ARMv8.0 • Nested virtualization supported in future hardware ARMv8.3 • Nested virtualization performance on ARM is unknown • ARM hardware virtualization support di ff erent from x86

  8. Key Contributions • Introduced paravirtualization for architecture evaluation • Evaluated nested virtualization performance • Proposed a new architecture extension, NEVE • NEVE improves performance up to 10x • NEVE is included in the next ARM architecture, ARMv8.4

  9. Evaluation Challenges • No ARMv8.3 hardware, No idea about performance • ARMv8.0 is the latest hardware publicly available • Long development cycles A few years.. Architecture Hardware Evaluation Design Release

  10. Current Approaches • Cycle-accurate simulators • Costly, too slow and lack of device support • Simpler architecture models, e.g. ARM Fast Models • Provides only correct hardware functionality, not performance

  11. Paravirtualization for Architecture Emulation • Possible if existing hardware has instructions to mimic new architecture features • Architectural features for virtualization often involve traps

  12. Paravirtualization for Emulation of ARMv8.3 ARMv8.3 VM Instructions that do trap Guest Hypervisor Trap Host Hypervisor New Hardware

  13. Paravirtualization for Emulation of ARMv8.3 ARMv8.0 VM Instructions that don’t trap Guest Hypervisor Host Hypervisor Existing Hardware

  14. Paravirtualization for Emulation of ARMv8.3 ARMv8.0 VM Paravirtualized Instructions that do trap Guest Hypervisor Trap Host Hypervisor Existing Hardware

  15. Benefits • Makes possible to evaluate new architecture features with real workloads on real hardware • Allows co-design and rapid prototyping of SW and architecture • Make development cycles short Architecture Evaluation Design

  16. Implementation • Designed and implemented KVM/ARM Nested Virtualization • First ARM hypervisor supporting nested virtualization • Similar approach to Turtles [OSDI 2010] - KVM on x86

  17. Application Workloads Application Description Application Description Netperf TCP_RR Kernbench Kernel compile Network performance Hackbench Scheduler stress Netperf TCP STREAM Network performance SPECjvm2008 Java Runtime Netperf TCP MAERTS Network performance MySQL Database management Apache Web server stress Memcached Key-Value store Nginx Web server stress

  18. Experimental Setup • ARM • Native/VM/Nested VM Setup • Software • APM X-Gene • 4-way SMP • KVM on KVM (ARMv8.0) • Virtio 
 • PV ARMv8.3 • x86 (VM/nested VM) • Intel E5-2630 v3

  19. Application Benchmarks Normalized overhead (lower is better) 45 ARMv8.3 VM ARMv8.3 Nested VM 40 x86 VM x86 Nested VM 35 30 25 20 15 10 5 0 Kernbench Hackbench SPECjvm2008 TCP RR TCP STREAM TCP MAERTS Apache Nginx Memcached MySQL

  20. Nested Virtualization Why is it so slow on ARMv8.3?

  21. ARM Virtualization Extensions VM App App App EL0 OS Kernel EL1 Hypervisor EL2

  22. ARM Virtualization Extensions VM App App App EL0 OS Kernel EL1 System Registers EL1 Hypervisor EL2 System Registers EL2

  23. ARM Virtualization Extensions VM App App App EL0 OS Kernel TTBR0_EL1 EL1 Hypervisor TTBR0_EL2 EL2

  24. ARM Virtualization Extensions VM App App App EL0 OS Kernel EL1 System Registers EL1 Hypervisor EL2 System Registers EL2

  25. Nested Virtualization on ARM VM Nested VM App App App EL0 OS Kernel EL1 Guest Hypervisor Host Hypervisor EL2

  26. Nested Virtualization on ARM VM Nested VM App App App EL0 OS Kernel EL1 Nested VM Entry Nested VM Exit Guest Hypervisor Host Hypervisor EL2 Trap Trap

  27. Nested VM Entry on ARM VM Nested VM App App App EL0 OS Kernel EL1 Nested VM Entry Nested VM Exit Guest Hypervisor … Host Hypervisor EL2 Trap Trap Trap Trap Trap … TrapTrap Trap

  28. Exit Multiplication • A single exit from the nested VM leads to lots of traps • It slows down ARM nested VM performance badly • x86 has this problem, but not bad as ARM

  29. NEVE: NEsted Virtualization Extensions for ARM • Supports unmodified guest hypervisors and OSes • Improves performance of nested virtualization • Provides two techniques to avoid traps based on register classification

  30. Register Classification • VM registers, which a ff ect VM execution • Hypervisor control registers, which a ff ect hypervisor execution

  31. VM Registers VM Nested VM App App App EL0 OS Kernel EL1 VM Exit VM Entry EL1 Registers Guest Hypervisor … Host Hypervisor EL2 This is when VM register states are used

  32. VM Registers: Redirection to Memory • NEVE redirects VM register access instructions to memory • On nested VM entry, the host hypervisor can get VM register states from memory VM Registers Guest Hypervisor Memory

  33. VM Registers: Redirection to Memory • NEVE redirects VM register access instructions to memory • On nested VM entry, the host hypervisor can get VM register states from memory VM Registers Guest Hypervisor Memory

  34. Hypervisor Control Registers • The hypervisor accesses them to control execution • EL2 registers • Can’t apply the technique for VM registers • Traps are handled by redirecting to EL1 registers in software Guest Hypervisor EL1 Registers EL1 Host Hypervisor EL2 EL2 Registers

  35. Hypervisor Control Registers • The hypervisor accesses them to control execution • EL2 registers • Can’t apply the technique for VM registers • Traps are handled by redirecting to EL1 registers in software • Redirect in hardware instead! Guest Hypervisor EL1 Registers EL1 Host Hypervisor EL2 EL2 Registers

  36. NEVE Evaluation • NEVE is a new architecture extension, but no hardware • Use paravirtualization for architecture evaluation • Memory redirection emulation • Register access instructions -> load/store instructions • Register redirection emulation • EL2 register access instructions -> EL1 register access instructions

  37. Application Workloads Application Description Application Description Netperf TCP_RR Kernbench Kernel compile Network performance Hackbench Scheduler stress Netperf TCP STREAM Network performance SPECjvm2008 Java Runtime Netperf TCP MAERTS Network performance MySQL Database management Apache Web server stress Memcached Key-Value store Nginx Web server stress

  38. Application Benchmarks Normalized overhead (lower is better) 45 ARMv8.3 Nested VM NEVE Nested VM 40 x86 Nested VM 35 30 25 20 15 10 5 0 Kernbench Hackbench SPECjvm2008 TCP RR TCP STREAM TCP MAERTS Apache Nginx Memcached MySQL

  39. Conclusions • Introduced paravirtualization for architecture evaluation • Built the first ARM hypervisor supporting nested virtualization • Nested virtualization on ARMv8.3 performs poorly • NEVE improved performance up to 10x • NEVE is included in the next ARM architecture, ARMv8.4

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Nested Virtualization on ARM NEVE: Nested Virtualization Extensions Jin Tack Lim

Nested Virtualization on ARM NEVE: Nested Virtualization Extensions Jin Tack Lim

Nested Virtualization on ARM NEVE: Nested Virtualization Extensions Jin Tack Lim Christoffer Dall Shih-Wei Li Jason Nieh Marc Zyngier LEADING jitack@cs.columbia.edu christo ff er.dall@linaro.org

986 views • 51 slides
The Turtles Project: Design and Implementation of Nested Virtualization Muli Ben-Yehuda

The Turtles Project: Design and Implementation of Nested Virtualization Muli Ben-Yehuda

The Turtles Project: Design and Implementation of Nested Virtualization Muli Ben-Yehuda Michael D. Day Zvi Dubitzky Michael Factor Nadav HarEl Abel Gordon Anthony Liguori Orit Wasserman Ben-Ami Yassour IBM

919 views • 63 slides
Virtualization Virtualization Memory virtualization Process feels like it has its own

Virtualization Virtualization Memory virtualization Process feels like it has its own

4/25/08 Virtualization Virtualization Memory virtualization Process feels like it has its own address space Created by MMU, configured by OS Storage virtualization Logical view of disks connected to a machine External

441 views • 8 slides
Virtualization What is Virtualization? Virtualization is the simulation of the software and/

Virtualization What is Virtualization? Virtualization is the simulation of the software and/

Virtualization What is Virtualization? Virtualization is the simulation of the software and/ or hardware upon which other software runs. This simulated environment is called a virtual machine --Wikipedia 2 Computer Systems Arch.

1.26k views • 26 slides
meets Micro-Hypervisors: Towards a Virtualization Architecture for User-Centric Multi-Clouds Alex

meets Micro-Hypervisors: Towards a Virtualization Architecture for User-Centric Multi-Clouds Alex

Nested Virtualization meets Micro-Hypervisors: Towards a Virtualization Architecture for User-Centric Multi-Clouds Alex PALESANDRO Marc LACOSTE Nadia BENNANI Chirine GHEDIRA-GUEGAN SEC2 - 30 June 2015, Lille Is this the best of all possible

294 views • 6 slides
Nested Word Automata Jens Stimpfle 30.6.2014 Nested Words Nested Words Theoretically and

Nested Word Automata Jens Stimpfle 30.6.2014 Nested Words Nested Words Theoretically and

Nested Word Automata Jens Stimpfle 30.6.2014 Nested Words Nested Words Theoretically and practically pleasant model for the representation of data with both: a linear ordering a hierarchically nested matching Nested Words

796 views • 58 slides
AMD Pacifica Virtualization Technology AMD Unveils Virtualization Platform AMD Pacifica

AMD Pacifica Virtualization Technology AMD Unveils Virtualization Platform AMD Pacifica

AMD Pacifica Virtualization Technology AMD Unveils Virtualization Platform AMD Pacifica Tutorial 2 Virtual Machine Approaches Carve a Server into Many Virtual Machines Hosted Hypervisor-based Virtualization Virtualization App App

539 views • 18 slides
Nested Transactions Nested Transactions Flat transactions The rules for committing of

Nested Transactions Nested Transactions Flat transactions The rules for committing of

Nested Transactions Nested Transactions Flat transactions The rules for committing of nested transactions Nested Transactions A transaction commits or aborts only after its child transactions have completed; Structured in

808 views • 11 slides
Virtualization and SDN Applications 2 Virtualization Network Virtualization Sharing

Virtualization and SDN Applications 2 Virtualization Network Virtualization Sharing

4/1/2013 Virtualization and SDN Applications 2 Virtualization Network Virtualization Sharing physical hardware or software resources by Share physical network resources to form multiple multiple users and/or use cases diverse virtual

511 views • 5 slides
4/22/2009 Virtualization Memory virtualization Process feels like it has its own address

4/22/2009 Virtualization Memory virtualization Process feels like it has its own address

4/22/2009 Virtualization Memory virtualization Process feels like it has its own address space Created by MMU, configured by OS Distributed Systems Storage virtualization Logical view of disks connected to a machine

407 views • 3 slides
Virtualization. A dream within a dream Type 1 Virtualization Hypervisor run on bare

Virtualization. A dream within a dream Type 1 Virtualization Hypervisor run on bare

Virtualization. A dream within a dream Type 1 Virtualization Hypervisor run on bare metal. Dedicated virtualization machine. Higher performance. Typical for servers. Type 2 Virtualization Hypervisor sits on

571 views • 17 slides
Virtualization and Containerization What is Virtualization? What is Containerization? What does

Virtualization and Containerization What is Virtualization? What is Containerization? What does

Virtualization and Containerization What is Virtualization? What is Containerization? What does this do for us? Virtual Machines: Terminology Types of Hypervisors VirtualBox and VMWare

2.8k views • 30 slides
Virtualization Technology Zhiming Shen Virtualization: rejuvenation 1960s: first track of

Virtualization Technology Zhiming Shen Virtualization: rejuvenation 1960s: first track of

Virtualization Technology Zhiming Shen Virtualization: rejuvenation 1960s: first track of virtualization Time and resource sharing on expensive mainframes IBM VM/370 Late 1970s and early 1980s: became unpopular Cheap

924 views • 34 slides
Advanced OpenMP Lecture 6: Nested parallelism Nested parallelism Nested parallelism is

Advanced OpenMP Lecture 6: Nested parallelism Nested parallelism Nested parallelism is

Advanced OpenMP Lecture 6: Nested parallelism Nested parallelism Nested parallelism is supported in OpenMP. If a PARALLEL directive is encountered within another PARALLEL directive, a new team of threads will be created. This is

242 views • 11 slides
Hardware / Virtualization / Architectures Foundations of the cloud Implementing Virtualization

Hardware / Virtualization / Architectures Foundations of the cloud Implementing Virtualization

Hardware / Virtualization / Architectures Foundations of the cloud Implementing Virtualization Technologies Cloud Computing relies heavily on the concept of virtualization In fact not possible without it. But they are separate

835 views • 32 slides
Virtualization CERN openlab II quarterly review 20 September 2006 Hvard Bjerke Community,

Virtualization CERN openlab II quarterly review 20 September 2006 Hvard Bjerke Community,

Virtualization CERN openlab II quarterly review 20 September 2006 Hvard Bjerke Community, tracking Visit to USENIX, Argonne National Labs Testing Xen paravirtualization and VT extensions new machines Montecito / VT-i Dempsey /

422 views • 6 slides
PAC Identification of Many Good Arms in Stochastic Multi-Armed Bandits Arghya Roy Chaudhuri

PAC Identification of Many Good Arms in Stochastic Multi-Armed Bandits Arghya Roy Chaudhuri

PAC Identification of Many Good Arms in Stochastic Multi-Armed Bandits Arghya Roy Chaudhuri under the guidance of Prof. Shivaram Kalyanakrishnan Indian Institute of Technology Bombay, India 1 / 8 What Is It All About? 2 / 8 What Is It All

347 views • 24 slides
M 3 : INTEGRATING ARBITRARY COMPUTE UNITS AS FIRST-CLASS CITIZENS OS: Nils Asmussen, Hermann H

M 3 : INTEGRATING ARBITRARY COMPUTE UNITS AS FIRST-CLASS CITIZENS OS: Nils Asmussen, Hermann H

Faculty of Computer Science, Institute for System Architecture, Operating Systems Group M 3 : INTEGRATING ARBITRARY COMPUTE UNITS AS FIRST-CLASS CITIZENS OS: Nils Asmussen, Hermann H artig, Marcus V olp EE: Benedikt N othen, Gerhard

912 views • 26 slides
ARM memory generator Arm Memory generator Make sure you create a folder similar to what you

ARM memory generator Arm Memory generator Make sure you create a folder similar to what you

ARM memory generator Arm Memory generator Make sure you create a folder similar to what you did for other hws. Then for memory generator point to the location that the executable arm memory generator command can exectute. For example:

192 views • 5 slides
ARM EDITION Matt Spisak REcon 2016, Montreal RECON 2016 ABOUT Offense-based approach to

ARM EDITION Matt Spisak REcon 2016, Montreal RECON 2016 ABOUT Offense-based approach to

HARDWARE-ASSISTED ROOTKITS & INSTRUMENTATION: ARM EDITION Matt Spisak REcon 2016, Montreal RECON 2016 ABOUT Offense-based approach to security and hunting adversaries Research thrusts in malware, threat intel, data science, and

1.4k views • 81 slides
Extending the swsusp Hibernation Framework to ARM Russell Dill 1 2 Introduction Russ Dill

Extending the swsusp Hibernation Framework to ARM Russell Dill 1 2 Introduction Russ Dill

Extending the swsusp Hibernation Framework to ARM Russell Dill 1 2 Introduction Russ Dill of Texas Instruments swsusp/hibernation on ARM Overview Challenges Implementation Remaining work Debugging

712 views • 43 slides
HIGHLEVELMANIPULATION PRIMITIVESFORAROBOTARM Supported by National

HIGHLEVELMANIPULATION PRIMITIVESFORAROBOTARM Supported by National

ThesisProposalfortheMasterofScienceDegreeinComputerScience PresentedbyGlennV.Nickens AdvisedbyDr.DavidTouretzky Thursday,January29,2009 HIGHLEVELMANIPULATION

663 views • 54 slides
ARM Exception Handling CS2253 Owen Kaser, UNBSJ Overview Warning: hardest parts of CS2253.

ARM Exception Handling CS2253 Owen Kaser, UNBSJ Overview Warning: hardest parts of CS2253.

ARM Exception Handling CS2253 Owen Kaser, UNBSJ Overview Warning: hardest parts of CS2253. Back to Chapter 1: Processor Modes & Vector Table Concept of Exceptions Interrupt Handlers Priority Levels Software Interrupts

955 views • 33 slides
Next generation mobile rootkits Hack In Paris 2013 leveldown security Thomas Roth Hi!

Next generation mobile rootkits Hack In Paris 2013 leveldown security Thomas Roth Hi!

Next generation mobile rootkits Hack In Paris 2013 leveldown security Thomas Roth Hi! Thomas Roth Embedded security (Payment terminals etc.) Distributed computing (and breaking) Web-stuff Social: @stacksmashing leveldown

986 views • 76 slides

More recommend