x86 virtualization
play

x86 Virtualization Hardware/Software Techniques Host/Guest - PowerPoint PPT Presentation

Jan 06, 2024 •233 likes •562 views

x86 Virtualization Corentin Derbois, Marc Angel Virtualization 101 x86 Virtualization Hardware/Software Techniques Host/Guest Communication Corentin Derbois Marc Angel corentin@lse.epita.fr null@lse.epita.fr http://lse.epita.fr/ July

  1. x86 Virtualization Corentin Derbois, Marc Angel Virtualization 101 x86 Virtualization Hardware/Software Techniques Host/Guest Communication Corentin Derbois Marc Angel corentin@lse.epita.fr null@lse.epita.fr http://lse.epita.fr/ July 17, 2013

  2. x86 Virtualization Corentin Derbois, Marc Angel Virtualization 101 1 Virtualization 101 Hardware/Software Techniques Host/Guest 2 Hardware/Software Techniques Communication 3 Host/Guest Communication

  3. What? x86 Virtualization Corentin Derbois, Marc Angel • Single computer, multiple OSs • Hardware-level virtualization Virtualization 101 What Why • As opposed to OS-level virtualization How Hardware/Software • LXC, OpenVZ, FreeBSD jails. . . Techniques Host/Guest Communication

  4. Why? x86 Virtualization Corentin Derbois, Marc Angel Virtualization 101 What Why How • Kernel Debugging Hardware/Software Techniques • Money Host/Guest Communication • Flexibility • . . .

  5. How? x86 Virtualization Corentin Derbois, Marc Angel • Popek and Goldberg requirements Virtualization 101 • Fidelity What Why • Safety How Hardware/Software • Performance Techniques • Binary Translation Host/Guest Communication • VMware, VirtualBox, KQEMU • Paravirtualization • Xen • Full Virtualization • KVM, VMware, VirtualBox, Xen. . .

  6. Instruction Set Virtualization x86 Virtualization Corentin Derbois, Marc Angel Virtualization 101 Hardware/Software • Run the VMM at a higher level of privilege Techniques Instruction Set Virt. • trap-and-emulate Memory Virtualization I/O Virtualization • Sensitive instructions yield control to ring 0 Host/Guest Communication • The VMM emulates them • Some instructions do not trap (popf, sidt. . . ) • 17 of those

  7. Software: Binary Translation x86 Virtualization • Replace critical instructions with traps Corentin Derbois, Marc Angel • Let the VMM emulate them • Run userland code “as is” Virtualization 101 • Need to emulate syscalls Hardware/Software Techniques Instruction Set Virt. Memory Virtualization I/O Virtualization Host/Guest Communication

  8. Software: Paravirtualization x86 Virtualization Corentin Derbois, Marc Angel Virtualization 101 Hardware/Software Techniques Instruction Set Virt. Memory Virtualization I/O Virtualization Host/Guest Communication

  9. Intel & AMD Hardware Solution x86 Virtualization Corentin Derbois, Marc Angel Virtualization 101 Hardware/Software Techniques Instruction Set Virt. • VT-x and AMD-v Memory Virtualization I/O Virtualization • One ring to rule them all Host/Guest Communication • new set of instructions at ring -1 • Guest OS goes back to ring 0

  10. Intel: VMX x86 Virtualization Corentin Derbois, Marc Angel Virtualization 101 Hardware/Software Techniques Instruction Set Virt. Memory Virtualization I/O Virtualization Host/Guest Communication

  11. AMD: SVM x86 Virtualization Corentin Derbois, Marc Angel Virtualization 101 Hardware/Software Techniques Instruction Set Virt. Memory Virtualization I/O Virtualization Host/Guest Communication

  12. Intel & AMD Hardware Solution x86 Virtualization Corentin Derbois, Marc Angel Virtualization 101 • Add protection to specific instructions Hardware/Software Techniques Instruction Set Virt. • CPUID Memory Virtualization I/O Virtualization • LGDT Host/Guest • . . . Communication • Two ways to handle critical instructions • Trigger VMEXIT • Let the processor handle them directly

  13. Hardware: VMEXIT & native x86 Virtualization Corentin Derbois, Marc Angel Virtualization 101 Hardware/Software Techniques Instruction Set Virt. • Processor data are stored in specific data structures Memory Virtualization I/O Virtualization • AMD: VMCB Host/Guest Communication • Intel: VMCS • Store to CRx, GDT, selectors. . .

  14. Hardware: VMEXIT & native x86 Virtualization Corentin Derbois, Marc Angel Virtualization 101 Hardware/Software • Some behaviors can’t be automatically handled by the Techniques Instruction Set Virt. CPU Memory Virtualization I/O Virtualization • I/O Host/Guest • CPUID Communication • PageFault • In this case, a VMEXIT is triggered to ask the host OS to emulate them

  15. MMU Virtualization x86 Virtualization Corentin Derbois, Marc Angel Virtualization 101 Hardware/Software Techniques Instruction Set Virt. • Three levels of memory Memory Virtualization I/O Virtualization • Guest virtual address space Host/Guest Communication • Guest physical address space • VMM physical memory

  16. Software: Shadow Page Tables x86 Virtualization Corentin Derbois, Marc Angel Virtualization 101 Hardware/Software Techniques Instruction Set Virt. Memory Virtualization I/O Virtualization Host/Guest Communication

  17. Hardware: Intel EPT, AMD RVI x86 Virtualization Corentin Derbois, Marc Angel Virtualization 101 Hardware/Software Techniques Instruction Set Virt. Memory Virtualization I/O Virtualization Host/Guest Communication

  18. I/O Virtualization x86 Virtualization Corentin Derbois, Marc Angel Virtualization 101 Hardware/Software Techniques Instruction Set Virt. Memory Virtualization I/O Virtualization Host/Guest Communication

  19. IOMMU x86 Virtualization Corentin Derbois, Marc Angel Virtualization 101 Hardware/Software Techniques Instruction Set Virt. Memory Virtualization I/O Virtualization Host/Guest Communication

  20. CPUID x86 Virtualization Corentin Derbois, Marc Angel Virtualization 101 Hardware/Software • Triggers VMEXIT Techniques Host/Guest • Offers a decent interface for Question/Answer Communication CPUID • Static I/O Ports PCI • Xen Virtio • CPUID is overwritable in PVM • Can get specific value from Xen

  21. I/O Ports x86 Virtualization Corentin Derbois, Marc Angel Virtualization 101 • Triggers VMEXIT Hardware/Software • Offers a large choice to make I/O requests Techniques • Dynamic discussion at each VMEXIT Host/Guest Communication • VMware CPUID I/O Ports PCI • Port: 0x5658 Virtio • Can get lots of information: • Processor Speed • VMware version • Memory size • . . .

  22. PCI x86 Virtualization Corentin Derbois, Marc Angel • PCI offers a decent interface to communicate Virtualization 101 Hardware/Software • Some HVM use it to make their video driver and do Techniques some communication Host/Guest Communication • Mainly for Desktop drivers CPUID I/O Ports PCI • VirtualBox Virtio • BEEF - > video driver • CAFE - > some other driver • VMware • PCI driver for SVGA monitor

  23. Virtio x86 Virtualization Corentin Derbois, Marc Angel Virtualization 101 Hardware/Software Techniques Host/Guest Communication CPUID I/O Ports PCI Virtio • A common framework for I/O virtualization for hypervisors • Main I/O virtualization platform in KVM • High performance

  24. Virtio Architecture x86 Virtualization Corentin Derbois, Marc Angel Virtualization 101 Hardware/Software Techniques Host/Guest Communication CPUID I/O Ports PCI Virtio

  25. Supported Devices x86 Virtualization Corentin Derbois, Marc Angel Virtualization 101 Hardware/Software • Network Techniques • Block Host/Guest Communication • Console CPUID I/O Ports • Entropy PCI Virtio • Balloon • Rpmsg • SCSI Host

  26. Virtio Devices x86 Virtualization Corentin Derbois, Marc Angel Virtualization 101 Hardware/Software • Presented by the host as a regular PCI device Techniques Host/Guest • Vendor ID: 0x1AF4 (Qumranet) Communication CPUID • Device ID for each type of device I/O Ports PCI • Configuration header at the start of the BAR Virtio • Memory mapped header for embedded devices without PCI support

  27. Virtio PCI Header x86 Virtualization Corentin Derbois, Marc Angel Virtualization 101 Hardware/Software Techniques Host/Guest Communication CPUID I/O Ports PCI Can be followed by device specific headers: Virtio • MAC addresses for network devices • Other information for block devices (cylinder/head/sector counts. . . )

  28. Virtio PCI Device Init x86 Virtualization Corentin Derbois, Marc Angel Virtualization 101 Hardware/Software Techniques Host/Guest Communication 1 RESET CPUID I/O Ports 2 ACKNOWLEDGE PCI Virtio • Valid virtio PCI device 3 DRIVER • We know how to use the device 4 DRIVER OK • Virtqueue configuration • Feature exchange

  29. Virtqueues x86 Virtualization • 0 or more virtqueues per devices Corentin Derbois, • Spans 2 pages Marc Angel Virtualization 101 Hardware/Software Techniques Host/Guest Communication CPUID I/O Ports PCI Virtio

  30. Conclusion x86 Virtualization Corentin Derbois, Marc Angel Virtualization 101 Hardware/Software Techniques Host/Guest Communication Conclusion

  31. Questions? x86 Virtualization Corentin Derbois, Marc Angel Virtualization 101 Hardware/Software Techniques Host/Guest Communication Thank you

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Virtualization Virtualization Memory virtualization Process feels like it has its own

Virtualization Virtualization Memory virtualization Process feels like it has its own

4/25/08 Virtualization Virtualization Memory virtualization Process feels like it has its own address space Created by MMU, configured by OS Storage virtualization Logical view of disks connected to a machine External

441 views • 8 slides
Virtualization What is Virtualization? Virtualization is the simulation of the software and/

Virtualization What is Virtualization? Virtualization is the simulation of the software and/

Virtualization What is Virtualization? Virtualization is the simulation of the software and/ or hardware upon which other software runs. This simulated environment is called a virtual machine --Wikipedia 2 Computer Systems Arch.

1.26k views • 26 slides
AMD Pacifica Virtualization Technology AMD Unveils Virtualization Platform AMD Pacifica

AMD Pacifica Virtualization Technology AMD Unveils Virtualization Platform AMD Pacifica

AMD Pacifica Virtualization Technology AMD Unveils Virtualization Platform AMD Pacifica Tutorial 2 Virtual Machine Approaches Carve a Server into Many Virtual Machines Hosted Hypervisor-based Virtualization Virtualization App App

539 views • 18 slides
Virtualization and SDN Applications 2 Virtualization Network Virtualization Sharing

Virtualization and SDN Applications 2 Virtualization Network Virtualization Sharing

4/1/2013 Virtualization and SDN Applications 2 Virtualization Network Virtualization Sharing physical hardware or software resources by Share physical network resources to form multiple multiple users and/or use cases diverse virtual

511 views • 5 slides
4/22/2009 Virtualization Memory virtualization Process feels like it has its own address

4/22/2009 Virtualization Memory virtualization Process feels like it has its own address

4/22/2009 Virtualization Memory virtualization Process feels like it has its own address space Created by MMU, configured by OS Distributed Systems Storage virtualization Logical view of disks connected to a machine

407 views • 3 slides
Virtualization. A dream within a dream Type 1 Virtualization Hypervisor run on bare

Virtualization. A dream within a dream Type 1 Virtualization Hypervisor run on bare

Virtualization. A dream within a dream Type 1 Virtualization Hypervisor run on bare metal. Dedicated virtualization machine. Higher performance. Typical for servers. Type 2 Virtualization Hypervisor sits on

571 views • 17 slides
Virtualization and Containerization What is Virtualization? What is Containerization? What does

Virtualization and Containerization What is Virtualization? What is Containerization? What does

Virtualization and Containerization What is Virtualization? What is Containerization? What does this do for us? Virtual Machines: Terminology Types of Hypervisors VirtualBox and VMWare

2.8k views • 30 slides
Virtualization Technology Zhiming Shen Virtualization: rejuvenation 1960s: first track of

Virtualization Technology Zhiming Shen Virtualization: rejuvenation 1960s: first track of

Virtualization Technology Zhiming Shen Virtualization: rejuvenation 1960s: first track of virtualization Time and resource sharing on expensive mainframes IBM VM/370 Late 1970s and early 1980s: became unpopular Cheap

924 views • 34 slides
Hardware / Virtualization / Architectures Foundations of the cloud Implementing Virtualization

Hardware / Virtualization / Architectures Foundations of the cloud Implementing Virtualization

Hardware / Virtualization / Architectures Foundations of the cloud Implementing Virtualization Technologies Cloud Computing relies heavily on the concept of virtualization In fact not possible without it. But they are separate

835 views • 32 slides
Linux Virtualization Kir Kolyshkin <kir@openvz.org> OpenVZ project manager What is

Linux Virtualization Kir Kolyshkin <kir@openvz.org> OpenVZ project manager What is

Linux Virtualization Kir Kolyshkin <kir@openvz.org> OpenVZ project manager What is virtualization? Virtualization is a technique for deploying technologies. Virtualization creates a level of indirection or an abstraction layer between a

388 views • 27 slides
IO Virtualization Kedar & Ozzie Overview Benefits Challenges Full Virtualization

IO Virtualization Kedar & Ozzie Overview Benefits Challenges Full Virtualization

IO Virtualization Kedar & Ozzie Overview Benefits Challenges Full Virtualization Paravirtualization Front-ends, Back-ends Pass through mode Virtualization : Review Create a Virtual machine that can emulate

327 views • 20 slides
Introduction to Virtual Machines Carl Waldspurger (SB SM 89 PhD 95) VMware R&D Overview

Introduction to Virtual Machines Carl Waldspurger (SB SM 89 PhD 95) VMware R&D Overview

Introduction to Virtual Machines Carl Waldspurger (SB SM 89 PhD 95) VMware R&D Overview Virtualization and VMs Processor Virtualization Memory Virtualization I/O Virtualization I/O Virtualization Types of Virtualization

574 views • 33 slides
KVM MMU Virtualization Xiao Guangrong <xiaoguangrong@cn.fujitsu.com> Index What is MMU

KVM MMU Virtualization Xiao Guangrong <xiaoguangrong@cn.fujitsu.com> Index What is MMU

KVM MMU Virtualization Xiao Guangrong <xiaoguangrong@cn.fujitsu.com> Index What is MMU Virtualization? How to implement MMU Virtualization? How to optimize MMU Virtualization? What will I do? 2 What is MMU Virtualization

621 views • 28 slides
Distributed Systems Virtualization Paul Krzyzanowski pxk@cs.rutgers.edu Except as otherwise

Distributed Systems Virtualization Paul Krzyzanowski pxk@cs.rutgers.edu Except as otherwise

Distributed Systems Virtualization Paul Krzyzanowski pxk@cs.rutgers.edu Except as otherwise noted, the content of this presentation is licensed under the Creative Commons Attribution 2.5 License. Virtualization Memory virtualization

471 views • 15 slides
A Fault Tolerant Virtualization Server Based on Xen Jrgen Gro Virtualization Kernel

A Fault Tolerant Virtualization Server Based on Xen Jrgen Gro Virtualization Kernel

A Fault Tolerant Virtualization Server Based on Xen Jrgen Gro Virtualization Kernel Developer SUSE Linux GmbH, jgross@suse.com Status Quo Standard Xen Virtualization Server dom0 HVM pv Net- Block- xenstore qemu backend backend

421 views • 23 slides
Network Virtualization What is Network Virtualization? Abstraction of the physical network

Network Virtualization What is Network Virtualization? Abstraction of the physical network

Network Virtualization What is Network Virtualization? Abstraction of the physical network Support for multiple logical networks running on a common shared physical substrate A container of network services Aspects of the

589 views • 21 slides
your exercise Order of Presentations Team Topic 212 Distributed file systems 209 OpenSSH:

your exercise Order of Presentations Team Topic 212 Distributed file systems 209 OpenSSH:

The iLab Experience a blended learning hands-on course concept you set the focus Create Your Own Lab July 5, 2016 your exercise Order of Presentations Team Topic 212 Distributed file systems 209 OpenSSH: More than a remote shell 207

1.21k views • 118 slides
Characterizing the Strength of Software Obfuscation Against Automated Attacks Sebastian Banescu,

Characterizing the Strength of Software Obfuscation Against Automated Attacks Sebastian Banescu,

Fakultt fr Informatik T echnische Universitt Mnchen Dagstuhl Seminar 17281 Characterizing the Strength of Software Obfuscation Against Automated Attacks Sebastian Banescu, BMW Group Outline 1 Introduction 2 Obfuscation in Theory 3

815 views • 69 slides
Introduction to Monte Carlo Event Generators Torbj orn Sj ostrand Lund University 1.

Introduction to Monte Carlo Event Generators Torbj orn Sj ostrand Lund University 1.

CTEQ-MCnet School 2010 Lauterbad, Germany 26 July - 4 August 2010 Introduction to Monte Carlo Event Generators Torbj orn Sj ostrand Lund University 1. (today) Introduction and Overview; Monte Carlo Techniques 2. (today) Matrix

464 views • 42 slides
Lauschgert Gets in your victims traffjc and out of yours Adrian Vollmer November 29, 2019

Lauschgert Gets in your victims traffjc and out of yours Adrian Vollmer November 29, 2019

November 29, 2019 Adrian Vollmer | Lauschgert SySS GmbH Page 1 Lauschgert Gets in your victims traffjc and out of yours Adrian Vollmer November 29, 2019 @mr_mitm Adrian Vollmer | Lauschgert SySS GmbH Page 2 About me Used to

830 views • 34 slides
Tolera'ng FileSystem Mistakes with EnvyFS Swaminathan Sundararaman Lakshmi N. Bairavasundaram

Tolera'ng FileSystem Mistakes with EnvyFS Swaminathan Sundararaman Lakshmi N. Bairavasundaram

Tolera'ng FileSystem Mistakes with EnvyFS Swaminathan Sundararaman Lakshmi N. Bairavasundaram Andrea C. ArpaciDusseau NetApp, Inc. Remzi H. ArpaciDusseau University of Wisconsin Madison File Systems in Todays World Modern

941 views • 36 slides
Automatic calculation of NLO splitting functions with loops for exclusive parton shower

Automatic calculation of NLO splitting functions with loops for exclusive parton shower

Automatic calculation of NLO splitting functions with loops for exclusive parton shower Monte-Carlo Oleksandr Gituliar oleksandr.gituliar@ifj.edu.pl Institute of Nuclear Physics Polish Academy of Sciences, Cracow, Poland http://www.ifj.edu.pl

760 views • 12 slides
P Part I Overview t I O i C Chapter 2: Operating System Structures 2 O i S S 1 Fall

P Part I Overview t I O i C Chapter 2: Operating System Structures 2 O i S S 1 Fall

P Part I Overview t I O i C Chapter 2: Operating System Structures 2 O i S S 1 Fall 2010 Operating System Services Operating System Services User Interface ( e.g ., command processor shell and GUI Graphical User

748 views • 31 slides
Announcements No class next Tuesday CS Department Research Symposium (10/08, next Tuesday) 1

Announcements No class next Tuesday CS Department Research Symposium (10/08, next Tuesday) 1

Announcements No class next Tuesday CS Department Research Symposium (10/08, next Tuesday) 1 CS6501: T opics in Learning and Game Theory (Fall 2019) Optimal Auction Design for Single-Item Allocation (Part II) Instructor: Haifeng Xu

784 views • 42 slides

More recommend