xen and the art of virtualization
play

Xen and the Art of Virtualization - Barham et. al. CSE 598c - - PowerPoint PPT Presentation

Nov 23, 2022 •237 likes •461 views

Xen and the Art of Virtualization - Barham et. al. CSE 598c - Spring 2006 William Enck CSE598c - Spring 2006 - Virtual Machines - Prof. Urgaonkar Page 1 Xens Goals Isolation Access Control Performance Heterogeneity

  1. Xen and the Art of Virtualization - Barham et. al. CSE 598c - Spring 2006 William Enck CSE598c - Spring 2006 - Virtual Machines - Prof. Urgaonkar Page 1

  2. Xen’s Goals • Isolation ‣ Access Control ‣ Performance • Heterogeneity ‣ Support a variety of Guest OSs • Low Performance Overhead CSE598c - Spring 2006 - Virtual Machines - William Enck Page 2

  3. Terms • Guest OS: an operating system that Xen can host • Domain: a running virtual machine within a guest OS executes • Hypervisor: Xen, or the VMM. (operates at a higher privilege level than the supervisor of Guest OSs) CSE598c - Spring 2006 - Virtual Machines - William Enck Page 3

  4. A Review • Types of Virtual Machine Monitors (VMMs) App. App. App. App. App. App. App. App. App. App. Guest OS Guest OS Guest OS Guest OS Guest OS VMM App. App. VMM Host OS Host Hardware Host Hardware Type I Type II CSE598c - Spring 2006 - Virtual Machines - William Enck Page 4

  5. Xen Architecture Control User User User Plane Software Software Software Software GuestOS GuestOS GuestOS GuestOS (XenoLinux) (XenoLinux) (XenoBSD) (XenoXP) Xeno-Aware Xeno-Aware Xeno-Aware Xeno-Aware Device Drivers Device Drivers Device Drivers Device Drivers X Domain0 virtual virtual virtual virtual E control x86 CPU phy mem network blockdev interface N H/W (SMP x86, phy mem, enet, SCSI/IDE) Figure 1: The structure of a machine running the Xen hyper- visor, hosting a number of different guest operating systems, including Domain0 running control software in a XenoLinux environment. CSE598c - Spring 2006 - Virtual Machines - William Enck Page 5

  6. Xen Architecture Control User User User Plane Software Software Software Software GuestOS GuestOS GuestOS GuestOS (XenoLinux) (XenoLinux) (XenoBSD) (XenoXP) Xeno-Aware Xeno-Aware Xeno-Aware Xeno-Aware Device Drivers Device Drivers Device Drivers Device Drivers X Domain0 virtual virtual virtual virtual E control x86 CPU phy mem network blockdev interface N H/W (SMP x86, phy mem, enet, SCSI/IDE) Figure 1: The structure of a machine running the Xen hyper- visor, hosting a number of different guest operating systems, including Domain0 running control software in a XenoLinux environment. CSE598c - Spring 2006 - Virtual Machines - William Enck Page 6

  7. Xen Hypervisor • Hypervisor provides only basic control operations ‣ CPU scheduling between domains ‣ filtering network packets before transmission ‣ access control for block reads • No need to look deeper ‣ e.g. CPU sharing, type of transmitted data ‣ Potentially complex policy decisions are best performed by management software in a guest OS CSE598c - Spring 2006 - Virtual Machines - William Enck Page 7

  8. Xen Architecture Control User User User Plane Software Software Software Software GuestOS GuestOS GuestOS GuestOS (XenoLinux) (XenoLinux) (XenoBSD) (XenoXP) Xeno-Aware Xeno-Aware Xeno-Aware Xeno-Aware Device Drivers Device Drivers Device Drivers Device Drivers X Domain0 virtual virtual virtual virtual E control x86 CPU phy mem network blockdev interface N H/W (SMP x86, phy mem, enet, SCSI/IDE) Figure 1: The structure of a machine running the Xen hyper- visor, hosting a number of different guest operating systems, including Domain0 running control software in a XenoLinux environment. CSE598c - Spring 2006 - Virtual Machines - William Enck Page 8

  9. Domain0 (Dom0) • The domain created at boot time is permitted to use the control interface ‣ Full access to the physical machine • Responsible for hosting application level management software ‣ create and terminate other domains ‣ delegate access to machine resources (mem, disks, NICs) CSE598c - Spring 2006 - Virtual Machines - William Enck Page 9

  10. Domain Management CSE598c - Spring 2006 - Virtual Machines - William Enck Page 10

  11. Xen Architecture Control User User User Plane Software Software Software Software GuestOS GuestOS GuestOS GuestOS (XenoLinux) (XenoLinux) (XenoBSD) (XenoXP) Xeno-Aware Xeno-Aware Xeno-Aware Xeno-Aware Device Drivers Device Drivers Device Drivers Device Drivers X Domain0 virtual virtual virtual virtual E control x86 CPU phy mem network blockdev interface N H/W (SMP x86, phy mem, enet, SCSI/IDE) Figure 1: The structure of a machine running the Xen hyper- visor, hosting a number of different guest operating systems, including Domain0 running control software in a XenoLinux environment. CSE598c - Spring 2006 - Virtual Machines - William Enck Page 11

  12. User Domains (DomU) • Use abstracted interfaces managed by Dom0 ‣ Virtual network InterFaces (VIF) • Dom0 can prevent source address spoofing ‣ Virtual Block Devices (VBD) • Additional reordering and scheduling in Xen • Receive a static amount of memory ‣ Strong Isolation ‣ Can be increased with the Balloon Driver CSE598c - Spring 2006 - Virtual Machines - William Enck Page 12

  13. Device View CSE598c - Spring 2006 - Virtual Machines - William Enck Page 13

  14. A Review • Challenges of Virtualization ‣ Processor Support • All sensitive instructions must be privileged (i.e. must trap) • Not the case for x86 ‣ Problem Areas • Syscalls, Page Faults • Work-arounds ‣ Full Virtualization (VMWare) ‣ Signal Handers (User-Mode Linux) CSE598c - Spring 2006 - Virtual Machines - William Enck Page 14

  15. Paravirtualization • Drawbacks of Full Virtualization ‣ Efficiency ‣ Need for real and virtual time (e.g. TCP timeouts) • Solution: Paravirtualization ‣ Present a virtual machine abstraction that is similar but not identical to the underlying hardware ‣ Requires modification of the guest OS • does not require changes to the ABI (guest applications) ‣ Xen does this differently than the Denali project CSE598c - Spring 2006 - Virtual Machines - William Enck Page 15

  16. Control Transfer • Domain to Xen ‣ Hypercall • synchronous call from a domain to Xen • Xen to Domain ‣ Asynchronous Event Mechanism • Replaces device interrupts ‣ e.g., received data • Similar to traditional UNIX signals (must register callback) CSE598c - Spring 2006 - Virtual Machines - William Enck Page 16

  17. Data Transfer • I/O Descriptor Rings ‣ For transferring data between a Domain and Xen • Indirectly reference Guest OS managed I/O buffers ‣ Four pointers {(Producer, Consumer) X (Xen, Domain)} • Domains produce requests Request� Consumer Request� Pr oducer Private� pointer Shared� pointer in� Xen updated� by� guest� OS • Xen consumes requests • Xen produces responses Response� Pr oducer Shared� pointer Response� Consumer updated� by Private� pointer Xen • Domains consume responses in� guest� OS queue -� Descriptors� queued� by� the VM� but� not� yet� accepted� by� Xen Request� Outstanding� descriptors -� Descriptor� slots� awaiting� a� response� from� Xen Response� queue -� Descriptors� returned� by� Xen� in� response� to� serviced� requests Unused� descriptors Figure 2: The structure of asynchronous I/O rings, which are used for data transfer between Xen and guest OSes. CSE598c - Spring 2006 - Virtual Machines - William Enck Page 17

  18. Virtual Address Translation • Hardware page tables cause problems ‣ No ASID tags on TLB = flush on address space switch • VMWare: “shadow” page tables (hurts performance) • Paravirtualization allows Xen to avoid this ‣ Xen registers Guest OS page tables directly with MMU • Restricts Guest OSes to read-only access • Guest OS manages page tables (hypercalls) • Xen need only be involved in page table updates • Xen in top 64MB CSE598c - Spring 2006 - Virtual Machines - William Enck Page 18

  19. Performance 1.1 1714 567 567 263 172 418 518 514 554 550 271 1633 400 1.0 158 0.9 334 310 0.8 Relative score to Linux 0.7 0.6 535 80 0.5 65 0.4 172 150 111 0.3 306 0.2 199 0.1 0.0 L X V U L X V U L X V U L X V U L X V U L X V U SPEC INT2000 (score) Linux build time (s) OSDB-IR (tup/s) OSDB-OLTP (tup/s) dbench (score) SPEC WEB99 (score) Figure 3: Relative performance of native Linux (L), XenoLinux (X), VMware workstation 3.2 (V) and User-Mode Linux (U). CSE598c - Spring 2006 - Virtual Machines - William Enck Page 19

  20. Applications of VMMs • Server Consolidation • Co-Located Hosting Facilities • Distributed Web Services • Secure Computing Platforms • Application Mobility CSE598c - Spring 2006 - Virtual Machines - William Enck Page 20

  21. Xen Since 1.0 • I/O changes • Live Migration • SMP for DomUs • Support for Intel VT -x and AMD Pacifica ‣ No more paravirtualization! CSE598c - Spring 2006 - Virtual Machines - William Enck Page 21

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Virtualization Virtualization Memory virtualization Process feels like it has its own

Virtualization Virtualization Memory virtualization Process feels like it has its own

4/25/08 Virtualization Virtualization Memory virtualization Process feels like it has its own address space Created by MMU, configured by OS Storage virtualization Logical view of disks connected to a machine External

441 views • 8 slides
Virtualization What is Virtualization? Virtualization is the simulation of the software and/

Virtualization What is Virtualization? Virtualization is the simulation of the software and/

Virtualization What is Virtualization? Virtualization is the simulation of the software and/ or hardware upon which other software runs. This simulated environment is called a virtual machine --Wikipedia 2 Computer Systems Arch.

1.26k views • 26 slides
AMD Pacifica Virtualization Technology AMD Unveils Virtualization Platform AMD Pacifica

AMD Pacifica Virtualization Technology AMD Unveils Virtualization Platform AMD Pacifica

AMD Pacifica Virtualization Technology AMD Unveils Virtualization Platform AMD Pacifica Tutorial 2 Virtual Machine Approaches Carve a Server into Many Virtual Machines Hosted Hypervisor-based Virtualization Virtualization App App

539 views • 18 slides
Virtualization and SDN Applications 2 Virtualization Network Virtualization Sharing

Virtualization and SDN Applications 2 Virtualization Network Virtualization Sharing

4/1/2013 Virtualization and SDN Applications 2 Virtualization Network Virtualization Sharing physical hardware or software resources by Share physical network resources to form multiple multiple users and/or use cases diverse virtual

511 views • 5 slides
4/22/2009 Virtualization Memory virtualization Process feels like it has its own address

4/22/2009 Virtualization Memory virtualization Process feels like it has its own address

4/22/2009 Virtualization Memory virtualization Process feels like it has its own address space Created by MMU, configured by OS Distributed Systems Storage virtualization Logical view of disks connected to a machine

407 views • 3 slides
Virtualization. A dream within a dream Type 1 Virtualization Hypervisor run on bare

Virtualization. A dream within a dream Type 1 Virtualization Hypervisor run on bare

Virtualization. A dream within a dream Type 1 Virtualization Hypervisor run on bare metal. Dedicated virtualization machine. Higher performance. Typical for servers. Type 2 Virtualization Hypervisor sits on

571 views • 17 slides
Virtualization and Containerization What is Virtualization? What is Containerization? What does

Virtualization and Containerization What is Virtualization? What is Containerization? What does

Virtualization and Containerization What is Virtualization? What is Containerization? What does this do for us? Virtual Machines: Terminology Types of Hypervisors VirtualBox and VMWare

2.8k views • 30 slides
Virtualization Technology Zhiming Shen Virtualization: rejuvenation 1960s: first track of

Virtualization Technology Zhiming Shen Virtualization: rejuvenation 1960s: first track of

Virtualization Technology Zhiming Shen Virtualization: rejuvenation 1960s: first track of virtualization Time and resource sharing on expensive mainframes IBM VM/370 Late 1970s and early 1980s: became unpopular Cheap

924 views • 34 slides
Hardware / Virtualization / Architectures Foundations of the cloud Implementing Virtualization

Hardware / Virtualization / Architectures Foundations of the cloud Implementing Virtualization

Hardware / Virtualization / Architectures Foundations of the cloud Implementing Virtualization Technologies Cloud Computing relies heavily on the concept of virtualization In fact not possible without it. But they are separate

835 views • 32 slides
Linux Virtualization Kir Kolyshkin <kir@openvz.org> OpenVZ project manager What is

Linux Virtualization Kir Kolyshkin <kir@openvz.org> OpenVZ project manager What is

Linux Virtualization Kir Kolyshkin <kir@openvz.org> OpenVZ project manager What is virtualization? Virtualization is a technique for deploying technologies. Virtualization creates a level of indirection or an abstraction layer between a

388 views • 27 slides
IO Virtualization Kedar & Ozzie Overview Benefits Challenges Full Virtualization

IO Virtualization Kedar & Ozzie Overview Benefits Challenges Full Virtualization

IO Virtualization Kedar & Ozzie Overview Benefits Challenges Full Virtualization Paravirtualization Front-ends, Back-ends Pass through mode Virtualization : Review Create a Virtual machine that can emulate

327 views • 20 slides
Introduction to Virtual Machines Carl Waldspurger (SB SM 89 PhD 95) VMware R&D Overview

Introduction to Virtual Machines Carl Waldspurger (SB SM 89 PhD 95) VMware R&D Overview

Introduction to Virtual Machines Carl Waldspurger (SB SM 89 PhD 95) VMware R&D Overview Virtualization and VMs Processor Virtualization Memory Virtualization I/O Virtualization I/O Virtualization Types of Virtualization

574 views • 33 slides
KVM MMU Virtualization Xiao Guangrong <xiaoguangrong@cn.fujitsu.com> Index What is MMU

KVM MMU Virtualization Xiao Guangrong <xiaoguangrong@cn.fujitsu.com> Index What is MMU

KVM MMU Virtualization Xiao Guangrong <xiaoguangrong@cn.fujitsu.com> Index What is MMU Virtualization? How to implement MMU Virtualization? How to optimize MMU Virtualization? What will I do? 2 What is MMU Virtualization

621 views • 28 slides
Distributed Systems Virtualization Paul Krzyzanowski pxk@cs.rutgers.edu Except as otherwise

Distributed Systems Virtualization Paul Krzyzanowski pxk@cs.rutgers.edu Except as otherwise

Distributed Systems Virtualization Paul Krzyzanowski pxk@cs.rutgers.edu Except as otherwise noted, the content of this presentation is licensed under the Creative Commons Attribution 2.5 License. Virtualization Memory virtualization

471 views • 15 slides
A Fault Tolerant Virtualization Server Based on Xen Jrgen Gro Virtualization Kernel

A Fault Tolerant Virtualization Server Based on Xen Jrgen Gro Virtualization Kernel

A Fault Tolerant Virtualization Server Based on Xen Jrgen Gro Virtualization Kernel Developer SUSE Linux GmbH, jgross@suse.com Status Quo Standard Xen Virtualization Server dom0 HVM pv Net- Block- xenstore qemu backend backend

421 views • 23 slides
Network Virtualization What is Network Virtualization? Abstraction of the physical network

Network Virtualization What is Network Virtualization? Abstraction of the physical network

Network Virtualization What is Network Virtualization? Abstraction of the physical network Support for multiple logical networks running on a common shared physical substrate A container of network services Aspects of the

589 views • 21 slides
Student diversity in CS1 y ECSS Paris October 2009 ECSS, Paris, October 2009 Michela Pedroni

Student diversity in CS1 y ECSS Paris October 2009 ECSS, Paris, October 2009 Michela Pedroni

Chair of Softw are Engineering Student diversity in CS1 y ECSS Paris October 2009 ECSS, Paris, October 2009 Michela Pedroni Bertrand Meyer (ETH) y ( ) Manuel Oriol (University of York, UK) Context Introduction to Programming course at

342 views • 13 slides
Access Control Access Control 1 Access Control Access control : ensures that all direct

Access Control Access Control 1 Access Control Access control : ensures that all direct

Access Control Access Control 1 Access Control Access control : ensures that all direct accesses to object are authorized a scheme for mapping users to allowed actions Protection objects : system resources for which protection is

576 views • 21 slides
The Mu2e Experiment at Fermilab STEVEN BOI, UNIVERSITY OF VIRGINIA ON BEHALF OF THE MU2E

The Mu2e Experiment at Fermilab STEVEN BOI, UNIVERSITY OF VIRGINIA ON BEHALF OF THE MU2E

FERMILAB-SLIDES-18-789-E The Mu2e Experiment at Fermilab STEVEN BOI, UNIVERSITY OF VIRGINIA ON BEHALF OF THE MU2E COLLABORATION NUFACT 2018 This document was prepared by Mu2e collaboration using the resources of the Fermi National Accelerator

567 views • 43 slides
Bitcoin vs. Bitcoin Cash: Coexistence or Downfall of Bitcoin Cash? Yujin Kwon* , Hyoungshick Kim

Bitcoin vs. Bitcoin Cash: Coexistence or Downfall of Bitcoin Cash? Yujin Kwon* , Hyoungshick Kim

Bitcoin vs. Bitcoin Cash: Coexistence or Downfall of Bitcoin Cash? Yujin Kwon* , Hyoungshick Kim , Jinwoo Shin*, Yongdae Kim* *KAIST, Sungkyunkwan University 1 Governance conflict The number of Bitcoin transaction per month Bad scala bility

731 views • 46 slides
OpenAFS On Solaris 11 x86 Robert Milkowski Unix Engineering prototype template (5428278)\print

OpenAFS On Solaris 11 x86 Robert Milkowski Unix Engineering prototype template (5428278)\print

OpenAFS On Solaris 11 x86 Robert Milkowski Unix Engineering prototype template (5428278)\print library_new_final.ppt 10/15/2012 Why Solaris? ZFS Transparent and in-line data compression and deduplication Big $$ savings

812 views • 49 slides
Introduction to Privacy Michelle Mazurek Some slides adapted from Lorrie Cranor, Elaine Shi,

Introduction to Privacy Michelle Mazurek Some slides adapted from Lorrie Cranor, Elaine Shi,

Introduction to Privacy Michelle Mazurek Some slides adapted from Lorrie Cranor, Elaine Shi, Christin Trask, and Yu-Xiang Wang 1 Logistics Presentation assignments later this week So far, everyone likes biometrics Guest lectures

882 views • 44 slides
P4 and Open vSwitch Ben Pfaff blp@nicira.com Open vSwitch Commiter Open vSwitch Architecture

P4 and Open vSwitch Ben Pfaff blp@nicira.com Open vSwitch Commiter Open vSwitch Architecture

P4 and Open vSwitch Ben Pfaff blp@nicira.com Open vSwitch Commiter Open vSwitch Architecture ... VM 1 VM 2 VM n VMs Netlink Hypervisor OVSDB kernel module ovsdb-server ovs-vswitchd user kernel OpenFlow OVSDB NICs Controller

163 views • 13 slides
Introduction to GENI ECE671 March 22 nd , 2018 April 4th, 2019 Outline Testbeds What are

Introduction to GENI ECE671 March 22 nd , 2018 April 4th, 2019 Outline Testbeds What are

Introduction to GENI ECE671 March 22 nd , 2018 April 4th, 2019 Outline Testbeds What are they? GENI Testbed What resources do I select? How can I reserve resources? The learning switch hands-on tutorial Systematic

942 views • 10 slides

More recommend