nested virtualization on arm
play

Nested Virtualization on ARM NEVE: Nested Virtualization Extensions - PowerPoint PPT Presentation

Oct 18, 2023 •464 likes •986 views

Nested Virtualization on ARM NEVE: Nested Virtualization Extensions Jin Tack Lim Christoffer Dall Shih-Wei Li Jason Nieh Marc Zyngier LEADING jitack@cs.columbia.edu christo ff er.dall@linaro.org

  1. Nested Virtualization on ARM NEVE: Nested Virtualization Extensions Jin Tack Lim Christoffer Dall Shih-Wei Li 
 Jason Nieh Marc Zyngier LEADING 
 jitack@cs.columbia.edu christo ff er.dall@linaro.org shih-wei@cs.columbia.edu, COLLABORATION 
 nieh@cs.columbia.edu marc.zyngier@arm.com IN THE ARM 
 ECOSYSTEM connect.linaro.org

  2. Nested Virtualization VM VM VM App App App App VM Kernel Kernel App App Hypervisor Kernel Hypervisor Hardware

  3. Terminology VM Nested VM Nested VM App App App App VM Kernel Kernel App App Guest Hypervisor Kernel Host Hypervisor Hardware

  4. Use Cases 1. Run guest operating systems with built-in virtualization. 2. IaaS hosting private clouds 3. Test your hypervisor in a VM 4. Debug your hypervisor in a VM 5. Develop hypervisors using a cloud

  5. ARM Virtualization Extensions VM VM User Space User Space EL0 Kernel Kernel EL1 Hypervisor EL2

  6. ARM Nested Virtualization VM VM User Space User Space EL0 Kernel Kernel EL1 Virtual 
 Guest Hypervisor Guest Hypervisor EL2 Host Hypervisor EL2

  7. ARM Nested Virtualization VM VM User Space User Space EL0 Kernel Kernel EL1 Guest Hypervisor EL ?? Guest Hypervisor Host Hypervisor EL2

  8. ARMv8.0 Nested Virtualization VM VM User Space User Space EL0 Kernel Kernel EL1 Guest Hypervisor EL0 Guest Hypervisor Trap-and-emulate Host Hypervisor EL2

  9. ARMv8.0 Nested Virtualization VM VM User Space User Space EL0 Kernel Kernel EL1 Guest Hypervisor EL1 Guest Hypervisor ?? -and-emulate Host Hypervisor EL2

  10. ARMv8.3 Nested Virtualization • Gives you software emulation of VM vEL2 in EL1 User Space EL0 • HCR_EL2.NV: Kernel EL1 • Traps EL2 operations executed in EL1 to EL2 Guest Hypervisor EL1 • Traps eret to EL2 Trap -and-emulate Host Hypervisor EL2 • CurrentEL reports EL2 even in EL1

  11. KVM/ARM Nested Virtualization Implementation • EL2 Emulation • Stage 2 MMU Virtualization • Hyp Timer Virtualization • Nested Virtual Interrupts

  12. Nested CPU Virtualization struct kvm_cpu_context { u64 sys_regs[NR_SYS_REGS]; + u64 el2_regs[NR_EL2_REGS]; } struct kvm_vcpu_arch { … struct kvm_cpu_context ctxt; }

  13. Hypervisor-VM Switch Host VM App App App App EL0 Kernel EL1 Save EL1 sys_regs Linux KVM EL2 Restore EL1 sys_regs

  14. Hypervisor-Hypervisor Switch Host VM App App EL0 Kernel EL1 Guest Hypervisor Save/restore EL1 sys_regs Linux KVM EL2 Save/restore el2_regs

  15. Emulating EL2 in EL1 • Define mapping of EL2 registers to EL1 registers • Example: TTBR0_EL2 to TTBR0_EL1 • Example: SCTLR_EL2 adapted to SCTLR_EL1 • Shadow EL1 registers

  16. Nested CPU Virtualization struct kvm_cpu_context { u64 sys_regs[NR_SYS_REGS]; + u64 el2_regs[NR_EL2_REGS]; + u64 shaow_sys_regs[NR_SYS_REGS]; } struct kvm_vcpu_arch { … struct kvm_cpu_context ctxt; }

  17. Shadow Registers &sys_regs &shadow_sys_regs PSTATE.mode == EL0/1 PSTATE.mode == EL2 u64 *vcpu->ctxtx.hw_regs

  18. Virtual Exceptions VM EL0 User Space • Trap to virtual EL2 EL1 Kernel • “Forward” exceptions vEL2 Guest KVM • Emulate virtual exceptions Host KVM EL2

  19. Virtual Exceptions VM EL0 User Space • Returning from virtual EL2 EL1 Kernel • Trap eret to EL2 (ARMv8.3) vEL2 Guest KVM • Emulate virtual exception return Host KVM EL2

  20. KVM/ARM Nested Virtualization Implementation • EL2 Emulation • Stage 2 MMU Virtualization • Hyp Timer Virtualization • Nested Virtual Interrupts

  21. Memory Virtualization EL0 User Space Stage 1: VA -> IPA Kernel EL1

  22. Memory Virtualization VM EL0 User Space Stage 1: VA -> IPA Kernel EL1 Stage 2: IPA -> PA Host Hypervisor EL2

  23. Memory Virtualization VM Nested VM EL0 User Space Stage 1: VA -> IPA Kernel EL1 ???? Guest Hypervisor Stage 2: IPA -> PA Host Hypervisor EL2

  24. Memory Virtualization VM Nested VM EL0 User Space Stage 1: VA -> IPA Kernel EL1 Virtual stage 2 Guest Hypervisor Shadow Stage 2: 
 IPA -> PA Host Hypervisor EL2

  25. KVM/ARM Nested Virtualization Implementation • EL2 Emulation • Stage 2 MMU Virtualization • Hyp Timer Virtualization • Nested Virtual Interrupts

  26. Nested Timer Virtualization • ARM provides a virtual and physical timer in EL1 • EL2 provides a separate EL2 “hyp” timer • Nested KVM/ARM supports a virtual CPU with EL2 and the hyp timer

  27. KVM/ARM Nested Virtualization Implementation • EL2 Emulation • Stage 2 MMU Virtualization • Hyp Timer Virtualization • Nested Virtual Interrupts

  28. ARM Generic Interrupt Controller (GIC) IRQ CPU Interface Device 
 Interrupt 
 Dist. CPU ACK/EOI Lines CPU Interface GIC

  29. ARM Generic Interrupt Controller (GIC) List Registers (LRs) IRQ CPU Interface VIRQ Virtual CPU Interface Dist. CPU ACK/EOI CPU Interface ACK/EOI Virtual CPU Interface GIC List Registers (LRs)

  30. Nested Interrupt Virtualization VM Nested VM User Space • Deliver virtual interrupts Virtual CPU Kernel from the host to the VM Interface Guest VMM LRs Host VMM

  31. Nested Interrupt Virtualization VM • Deliver virtual interrupts Nested VM from the guest hypervisor User to the nested VM Space Virtual CPU • Shadow list registers Kernel Interface • The nested VM can ACK Guest VMM and EOI virtual interrupts LRs without trapping Host VMM

  32. Performance Evaluation • Problem: No ARMv8.3 hardware available. • Solution: Use ARMv8.0 hardware with the software modification

  33. Emulating v8.3 on v8.0 VM Nested VM App App App EL0 OS Kernel EL1 Guest Hypervisor HVCHVC HVC Paravirtualization HVC HVC Host Hypervisor EL2 ARMv8.0 Hardware

  34. Hypercall MicroBenchmark VM Nested VM VM App App App EL0 App App App EL0 OS Kernel EL1 OS Kernel EL1 Hypercall Return Guest Hypervisor Hypercall Return Hypervisor EL2 Host Hypervisor EL2

  35. Hypercall MicroBenchmark ARMv8.3 VM Nested VM 2,729 422,720 Cycle counts 1 155x Ratio to VM

  36. Application Benchmarks Normalized overhead (lower is better) 50 ARMv8.3 VM 40 ARMv8.3 Nested 30 20 10 0 5 4 3 2 1 0 Kernbench Hackbench SPECjvm2008 TCP RR TCP STREAM TCP MAERTS Apache Nginx Memcached MySQL

  37. Nested VM Exit/Entry on ARM VM Nested VM App App App EL0 OS Kernel EL1 VM Exit VM Entry EL1 Registers Guest Hypervisor … Host Hypervisor EL2 Registers EL2 > 120 traps

  38. NEVE: NEsted Virtualization Extensions for ARM • Supports unmodified guest hypervisors and OSes • Improves performance by providing register redirection

  39. Register Classification • VM registers: EL1 registers only a ff ecting the nested VM’s execution • Hypervisor registers: EL2 registers a ff ecting the hypervisor’s execution

  40. VM Registers VM Nested VM App App App EL0 OS Kernel EL1 VM Exit VM Entry EL1 Registers Guest Hypervisor … Host Hypervisor EL2 This is when VM register states are used

  41. VM Registers: Logging to Memory VM Register Trap! Without NEVE msr x0, TTBR0_EL1 Memory

  42. VM Registers: Logging to Memory VM Register msr x0, TTBR0_EL1 Memory With NEVE TTBR0_EL1

  43. Hypervisor control registers • Can’t apply the technique for VM registers • They have an immediate impact (EL2 system registers) • Traps are handled by redirecting to EL1 registers in software Guest Hypervisor EL1 Registers EL1 Host Hypervisor EL2 EL2 Registers

  44. Hypervisor control registers • Can’t apply the technique for VM registers • They have an immediate impact (EL2 system registers) • Traps are handled by redirecting to EL1 registers in software • Redirect in hardware instead! Guest Hypervisor EL1 Registers EL1 Host Hypervisor EL2 EL2 Registers

  45. Hypercall MicroBenchmark ARMv8.3 NEVE VM Nested VM Nested VM 92,385 2,729 422,720 Cycle counts 34x 155x Ratio to VM 15 1 126 Trap counts

  46. Application Workloads Application Description Application Description Netperf TCP_RR Kernbench Kernel compile Network performance Hackbench Scheduler stress Netperf TCP STREAM Network performance SPECjvm2008 Java Runtime Netperf TCP MAERTS Network performance MySQL Database management Apache Web server stress Memcached Key-Value store Nginx Web server stress

  47. Experimental Setup • Software • ARM Hardware • Native/VM/Nested VM • APM X-Gene (ARMv8.0) • KVM on KVM • 4-way SMP • 8-way SMP • 64 GB RAM • v4.10 • 12 GB RAM • x86 Hardware • Virt I/O 
 • Intel E5-2630 v3 (VM/nested VM) • VMCS Shadowing • 10 Gb Ethernet • 8-way SMP • 128 GB RAM

  48. Application Benchmarks Normalized overhead (lower is better) 50 ARMv8.3 VM 40 ARMv8.3 Nested NEVE Nested 30 20 10 0 5 4 3 2 1 0 Kernbench Hackbench SPECjvm2008 TCP RR TCP STREAM TCP MAERTS Apache Nginx Memcached MySQL

  49. Application Benchmarks Normalized overhead (lower is better) 50 ARMv8.3 VM 40 ARMv8.3 Nested NEVE Nested 30 x86 Nested VM 20 10 0 5 4 3 2 1 0 Kernbench Hackbench SPECjvm2008 TCP RR TCP STREAM TCP MAERTS Apache Nginx Memcached MySQL

Recommend

NEVE: Nested Virtualization Extensions for ARM Jin Tack Lim, Christo ff er Dall, Shih-Wei Li, Jason

NEVE: Nested Virtualization Extensions for ARM Jin Tack Lim, Christo ff er Dall, Shih-Wei Li, Jason

NEVE: Nested Virtualization Extensions for ARM Jin Tack Lim, Christo ff er Dall, Shih-Wei Li, Jason Nieh, and Marc Zyngier* * Nested Virtualization VM Nested VM Nested VM App App App App VM Kernel Kernel App App Guest Hypervisor

407 views • 39 slides
The Turtles Project: Design and Implementation of Nested Virtualization Muli Ben-Yehuda

The Turtles Project: Design and Implementation of Nested Virtualization Muli Ben-Yehuda

The Turtles Project: Design and Implementation of Nested Virtualization Muli Ben-Yehuda Michael D. Day Zvi Dubitzky Michael Factor Nadav HarEl Abel Gordon Anthony Liguori Orit Wasserman Ben-Ami Yassour IBM

919 views • 63 slides
Virtualization Virtualization Memory virtualization Process feels like it has its own

Virtualization Virtualization Memory virtualization Process feels like it has its own

4/25/08 Virtualization Virtualization Memory virtualization Process feels like it has its own address space Created by MMU, configured by OS Storage virtualization Logical view of disks connected to a machine External

441 views • 8 slides
Virtualization What is Virtualization? Virtualization is the simulation of the software and/

Virtualization What is Virtualization? Virtualization is the simulation of the software and/

Virtualization What is Virtualization? Virtualization is the simulation of the software and/ or hardware upon which other software runs. This simulated environment is called a virtual machine --Wikipedia 2 Computer Systems Arch.

1.26k views • 26 slides
meets Micro-Hypervisors: Towards a Virtualization Architecture for User-Centric Multi-Clouds Alex

meets Micro-Hypervisors: Towards a Virtualization Architecture for User-Centric Multi-Clouds Alex

Nested Virtualization meets Micro-Hypervisors: Towards a Virtualization Architecture for User-Centric Multi-Clouds Alex PALESANDRO Marc LACOSTE Nadia BENNANI Chirine GHEDIRA-GUEGAN SEC2 - 30 June 2015, Lille Is this the best of all possible

294 views • 6 slides
Nested Word Automata Jens Stimpfle 30.6.2014 Nested Words Nested Words Theoretically and

Nested Word Automata Jens Stimpfle 30.6.2014 Nested Words Nested Words Theoretically and

Nested Word Automata Jens Stimpfle 30.6.2014 Nested Words Nested Words Theoretically and practically pleasant model for the representation of data with both: a linear ordering a hierarchically nested matching Nested Words

796 views • 58 slides
AMD Pacifica Virtualization Technology AMD Unveils Virtualization Platform AMD Pacifica

AMD Pacifica Virtualization Technology AMD Unveils Virtualization Platform AMD Pacifica

AMD Pacifica Virtualization Technology AMD Unveils Virtualization Platform AMD Pacifica Tutorial 2 Virtual Machine Approaches Carve a Server into Many Virtual Machines Hosted Hypervisor-based Virtualization Virtualization App App

539 views • 18 slides
Nested Transactions Nested Transactions Flat transactions The rules for committing of

Nested Transactions Nested Transactions Flat transactions The rules for committing of

Nested Transactions Nested Transactions Flat transactions The rules for committing of nested transactions Nested Transactions A transaction commits or aborts only after its child transactions have completed; Structured in

808 views • 11 slides
Virtualization and SDN Applications 2 Virtualization Network Virtualization Sharing

Virtualization and SDN Applications 2 Virtualization Network Virtualization Sharing

4/1/2013 Virtualization and SDN Applications 2 Virtualization Network Virtualization Sharing physical hardware or software resources by Share physical network resources to form multiple multiple users and/or use cases diverse virtual

511 views • 5 slides
4/22/2009 Virtualization Memory virtualization Process feels like it has its own address

4/22/2009 Virtualization Memory virtualization Process feels like it has its own address

4/22/2009 Virtualization Memory virtualization Process feels like it has its own address space Created by MMU, configured by OS Distributed Systems Storage virtualization Logical view of disks connected to a machine

407 views • 3 slides
Virtualization. A dream within a dream Type 1 Virtualization Hypervisor run on bare

Virtualization. A dream within a dream Type 1 Virtualization Hypervisor run on bare

Virtualization. A dream within a dream Type 1 Virtualization Hypervisor run on bare metal. Dedicated virtualization machine. Higher performance. Typical for servers. Type 2 Virtualization Hypervisor sits on

571 views • 17 slides
Virtualization and Containerization What is Virtualization? What is Containerization? What does

Virtualization and Containerization What is Virtualization? What is Containerization? What does

Virtualization and Containerization What is Virtualization? What is Containerization? What does this do for us? Virtual Machines: Terminology Types of Hypervisors VirtualBox and VMWare

2.8k views • 30 slides
Virtualization Technology Zhiming Shen Virtualization: rejuvenation 1960s: first track of

Virtualization Technology Zhiming Shen Virtualization: rejuvenation 1960s: first track of

Virtualization Technology Zhiming Shen Virtualization: rejuvenation 1960s: first track of virtualization Time and resource sharing on expensive mainframes IBM VM/370 Late 1970s and early 1980s: became unpopular Cheap

924 views • 34 slides
Advanced OpenMP Lecture 6: Nested parallelism Nested parallelism Nested parallelism is

Advanced OpenMP Lecture 6: Nested parallelism Nested parallelism Nested parallelism is

Advanced OpenMP Lecture 6: Nested parallelism Nested parallelism Nested parallelism is supported in OpenMP. If a PARALLEL directive is encountered within another PARALLEL directive, a new team of threads will be created. This is

242 views • 11 slides
Hardware / Virtualization / Architectures Foundations of the cloud Implementing Virtualization

Hardware / Virtualization / Architectures Foundations of the cloud Implementing Virtualization

Hardware / Virtualization / Architectures Foundations of the cloud Implementing Virtualization Technologies Cloud Computing relies heavily on the concept of virtualization In fact not possible without it. But they are separate

835 views • 32 slides
Comparing Nested Models Two models are nested if one model contains all the terms of the other,

Comparing Nested Models Two models are nested if one model contains all the terms of the other,

ST 430/514 Introduction to Regression Analysis/Statistics for Management and the Social Sciences II Comparing Nested Models Two models are nested if one model contains all the terms of the other, and at least one additional term. The larger model

418 views • 20 slides
Linux Virtualization Kir Kolyshkin <kir@openvz.org> OpenVZ project manager What is

Linux Virtualization Kir Kolyshkin <kir@openvz.org> OpenVZ project manager What is

Linux Virtualization Kir Kolyshkin <kir@openvz.org> OpenVZ project manager What is virtualization? Virtualization is a technique for deploying technologies. Virtualization creates a level of indirection or an abstraction layer between a

388 views • 27 slides
IO Virtualization Kedar & Ozzie Overview Benefits Challenges Full Virtualization

IO Virtualization Kedar & Ozzie Overview Benefits Challenges Full Virtualization

IO Virtualization Kedar & Ozzie Overview Benefits Challenges Full Virtualization Paravirtualization Front-ends, Back-ends Pass through mode Virtualization : Review Create a Virtual machine that can emulate

327 views • 20 slides
Nested and Composite Classes Lecture 14 COP 3252 Summer 2017 May 30, 2017 Nested Classes

Nested and Composite Classes Lecture 14 COP 3252 Summer 2017 May 30, 2017 Nested Classes

Nested and Composite Classes Lecture 14 COP 3252 Summer 2017 May 30, 2017 Nested Classes The Java programming language allows you to define a class within another class. Such a class is called a nested class. Nested classes are divided

587 views • 6 slides
Introduction to Virtual Machines Carl Waldspurger (SB SM 89 PhD 95) VMware R&D Overview

Introduction to Virtual Machines Carl Waldspurger (SB SM 89 PhD 95) VMware R&D Overview

Introduction to Virtual Machines Carl Waldspurger (SB SM 89 PhD 95) VMware R&D Overview Virtualization and VMs Processor Virtualization Memory Virtualization I/O Virtualization I/O Virtualization Types of Virtualization

574 views • 33 slides
6 Subsequences and sequential compactness 6.1 Nested intervals and nested d -cells Recall the

6 Subsequences and sequential compactness 6.1 Nested intervals and nested d -cells Recall the

6 Subsequences and sequential compactness 6.1 Nested intervals and nested d -cells Recall the nested intervals principle from G11ACF: Let I k = [ a k , b k ] R be closed (non-empty) intervals in R with I 1 I 2 I 3 . . . (such a

157 views • 13 slides
KVM MMU Virtualization Xiao Guangrong <xiaoguangrong@cn.fujitsu.com> Index What is MMU

KVM MMU Virtualization Xiao Guangrong <xiaoguangrong@cn.fujitsu.com> Index What is MMU

KVM MMU Virtualization Xiao Guangrong <xiaoguangrong@cn.fujitsu.com> Index What is MMU Virtualization? How to implement MMU Virtualization? How to optimize MMU Virtualization? What will I do? 2 What is MMU Virtualization

621 views • 28 slides
Distributed Systems Virtualization Paul Krzyzanowski pxk@cs.rutgers.edu Except as otherwise

Distributed Systems Virtualization Paul Krzyzanowski pxk@cs.rutgers.edu Except as otherwise

Distributed Systems Virtualization Paul Krzyzanowski pxk@cs.rutgers.edu Except as otherwise noted, the content of this presentation is licensed under the Creative Commons Attribution 2.5 License. Virtualization Memory virtualization

471 views • 15 slides
A Fault Tolerant Virtualization Server Based on Xen Jrgen Gro Virtualization Kernel

A Fault Tolerant Virtualization Server Based on Xen Jrgen Gro Virtualization Kernel

A Fault Tolerant Virtualization Server Based on Xen Jrgen Gro Virtualization Kernel Developer SUSE Linux GmbH, jgross@suse.com Status Quo Standard Xen Virtualization Server dom0 HVM pv Net- Block- xenstore qemu backend backend

421 views • 23 slides

More recommend