Virtualization Technology For AMD Architecture Steve McDowell Division Marketing Manager Computation Products Group AMD amd.com Geoffrey.

Slides:



Advertisements
Similar presentations
Virtualization Technology
Advertisements

Virtualisation From the Bottom Up From storage to application.
Computer Organization and Architecture
Crucial Security Programs Ring -1 vs. Ring -2: Containerizing Malicious SMM Interrupt Handlers on AMD-V Pete Markowsky Senior Security Researcher
© 2004, D. J. Foreman 1 O/S Organization. © 2004, D. J. Foreman 2 Topics  Basic functions of an OS ■ Dev mgmt ■ Process & resource mgmt ■ Memory mgmt.
Operating System Support Focus on Architecture
G Robert Grimm New York University Disco.
Disco Running Commodity Operating Systems on Scalable Multiprocessors.
Informationsteknologi Friday, November 16, 2007Computer Architecture I - Class 121 Today’s class Operating System Machine Level.
OS Spring’03 Introduction Operating Systems Spring 2003.
1 Last Class: Introduction Operating system = interface between user & architecture Importance of OS OS history: Change is only constant User-level Applications.
Computer Organization and Architecture
1 OS & Computer Architecture Modern OS Functionality (brief review) Architecture Basics Hardware Support for OS Features.
Slide 3-1 Copyright © 2004 Pearson Education, Inc. Operating Systems: A Modern Perspective, Chapter 3 Operating System Organization.
Virtualization for Cloud Computing
Windows Server Virtualization Scenarios And Features Jeff Woolsey Lead Program Manager Windows Virtualization Microsoft Corporation.
虛擬化技術 Virtualization and Virtual Machines
Computer Organization and Architecture Operating System Support Chapter 8.
Basics of Operating Systems March 4, 2001 Adapted from Operating Systems Lecture Notes, Copyright 1997 Martin C. Rinard.
Windows Server Licensing
CSE 451: Operating Systems Winter 2012 Module 18 Virtual Machines Mark Zbikowski and Gary Kimura.
Virtualization Technology Prof D M Dhamdhere CSE Department IIT Bombay Moving towards Virtualization… Department of Computer Science and Engineering, IIT.
Tanenbaum 8.3 See references
Zen and the Art of Virtualization Paul Barham, et al. University of Cambridge, Microsoft Research Cambridge Published by ACM SOSP’03 Presented by Tina.
Virtualization Virtualization is the creation of substitutes for real resources – abstraction of real resources Users/Applications are typically unaware.
Microkernels, virtualization, exokernels Tutorial 1 – CSC469.
Protection and the Kernel: Mode, Space, and Context.
Disco : Running commodity operating system on scalable multiprocessor Edouard et al. Presented by Jonathan Walpole (based on a slide set from Vidhya Sivasankaran)
CS533 Concepts of Operating Systems Jonathan Walpole.
Virtualization. Virtualization  In computing, virtualization is a broad term that refers to the abstraction of computer resources  It is "a technique.
Xen I/O Overview. Xen is a popular open-source x86 virtual machine monitor – full-virtualization – para-virtualization para-virtualization as a more efficient.
Three fundamental concepts in computer security: Reference Monitors: An access control concept that refers to an abstract machine that mediates all accesses.
Virtualization Paul Krzyzanowski Distributed Systems Except as otherwise noted, the content of this presentation is licensed.
Virtualization: Not Just For Servers Hollis Blanchard PowerPC kernel hacker.
IO Memory Management Hardware Goes Mainstream
Introduction 1-1 Introduction to Virtual Machines From “Virtual Machines” Smith and Nair Chapter 1.
Virtual Machine and its Role in Distributed Systems.
Operating Systems ECE344 Ashvin Goel ECE University of Toronto OS-Related Hardware.
Background: Operating Systems Brad Karp UCL Computer Science CS GZ03 / M th November, 2008.
Disco : Running commodity operating system on scalable multiprocessor Edouard et al. Presented by Vidhya Sivasankaran.
Microsoft Virtual Server: Overview and Roadmap Mike Neil Product Unit Manager Windows Virtualization microsoft.com Microsoft Corporation.
Error Management Solutions Synergy With WHEA John Strange Software Design Engineer Core OS microsoft.com Microsoft Corporation.
Introduction to virtualization
Operating Systems Security
Processes and Virtual Memory
Full and Para Virtualization
Lecture 26 Virtual Machine Monitors. Virtual Machines Goal: run an guest OS over an host OS Who has done this? Why might it be useful? Examples: Vmware,
Protection of Processes Security and privacy of data is challenging currently. Protecting information – Not limited to hardware. – Depends on innovation.
Cloud Computing – UNIT - II. VIRTUALIZATION Virtualization Hiding the reality The mantra of smart computing is to intelligently hide the reality Binary->
Running Commodity Operating Systems on Scalable Multiprocessors Edouard Bugnion, Scott Devine and Mendel Rosenblum Presentation by Mark Smith.
Unit 2 VIRTUALISATION. Unit 2 - Syllabus Basics of Virtualization Types of Virtualization Implementation Levels of Virtualization Virtualization Structures.
Virtualization Technology
Why VT-d Direct memory access (DMA) is a method that allows an input/output (I/O) device to send or receive data directly to or from the main memory, bypassing.
L2- Virtualization Technology
Virtualization Virtualization is the creation of substitutes for real resources – abstraction of real resources Users/Applications are typically unaware.
A Real Problem What if you wanted to run a program that needs more memory than you have? September 11, 2018.
Chapter 1: Introduction
Lecture 24 Virtual Machine Monitors
Virtualisation Assessment & Roadmap
CIT 480: Securing Computer Systems
Virtualization Virtualization is the creation of substitutes for real resources – abstraction of real resources Users/Applications are typically unaware.
Chapter 8: Main Memory.
OS Virtualization.
CSE 451: Operating Systems Autumn 2003 Lecture 2 Architectural Support for Operating Systems Hank Levy 596 Allen Center 1.
Computer Architecture
CSE 451: Operating Systems Winter 2003 Lecture 2 Architectural Support for Operating Systems Hank Levy 412 Sieg Hall 1.
Outline Operating System Organization Operating System Examples
COMP755 Advanced Operating Systems
Presentation transcript:

Virtualization Technology For AMD Architecture Steve McDowell Division Marketing Manager Computation Products Group AMD amd.com Geoffrey Strongin Platform Security Architect Computation Products Group AMD amd.com

Session Outline Driving Towards Virtualization Solving the IT Department’s Utilization Dilemma Virtual Machine Approaches System Architecture Matters x86 Needs Help “Pacifica” Architecture Core Architecture Access Control Interrupts Secure System Management Mode Device Protection

Session Goals Attendees should leave this session with the following A better understanding of virtualization use cases Understanding of hardware assist for virtualization and AMD’s virtualization technology, codenamed “Pacifica” Knowledge of where to find resources for learning more about AMD and virtualization

VirtualizationVirtualization is the pooling and abstraction of resources in a way that masks the physical nature and boundaries of those resources from the resource users

Problems With “Physical Boundaries” Today, IT Departments often have lots of pools of excess capacity and no way to share them Most applications are small 93% of x86 servers are 1 or 2-way Small applications don’t consume servers Applications typically have dynamic workloads Currently, x86 servers run at 10-20% utilization Mainframes typically run at 75-85% utilization The costs add up for running lots of under-utilized servers

Virtualization In Servers Benefits over non-virtualized environments Reduced Hardware Cost Higher physical resource utilization Smaller footprint (power, space, cooling, etc.) Improved flexibility and responsiveness Resources can be adjusted dynamically Enables On-Demand and Adaptive Enterprise operating environments

Virtualization In Clients Used for legacy support for enterprises who need to support applications on older Operating Systems (OS) side-by-side with new technology Test and Development Isolate development environments from production work Emerging use cases for management partitions, which may reduce IT support costs Heart of next generation security – allow trusted and untrusted partitions to co-exist Have partitions with different levels of security; The environment is designed to allow security policies to be reinforced

Carve a Server into Many Virtual Machines Virtual Machine Approaches Virtualization software manages resources between Host and Guest Operating Systems Application can suffer decreased performance due to added overhead Virtualization Software (Hypervisor) is the host environment Designed to enable better software performance by eliminating some of the associated overhead If hardware is available, the Hypervisor can be designed to take advantage of it Hypervisor-based Virtualization MgmtPartition Guest OS AMD64 w/“Pacifica” Hypervisor AppApp Hosted Virtualization X86 Hardware Guest OS App App Host Operating System VirtualizationSoftware

System Architecture Makes A Difference Legacy Architectures based around front-side bus aren’t scalable for today’s virtualization needs AMD’s Direct Connect Architecture reduces the bottlenecks, enabling efficient partitioning Examples: Today’s Server Architectures

Efficiencies Needed On x86 For Virtualization Virtualization on the existing x86 architecture requires “unnatural acts” to achieve objectives This level of emulation and code rewriting is not required on other architectures Existing approaches add performance overhead and undue complexity, and leave security holes at the most physical levels AMD’s Pacifica technology is designed to take the complexity out of the hypervisor, putting it into the CPU for higher performance, higher security, and lower complexity (compared to traditional software- based approaches) Pacifica brings the x86 into the 21st century On to the Pacifica architecture…

Core “Pacifica” Architecture

Core “Pacifica” Architecture Virtual Machine Run (VMRUN) instruction Virtualization based on VMRUN instruction VMRUN executed by host causes the guest to run Guest runs until it exits back to the host World-switch: host  guest  host Host resumes at the instruction following VMRUN Host instruction Stream Guest instruction Stream VMRUN [rAX] VMCB Data Structure

Core “Pacifica” Architecture Intercepts Guest runs until It performs an action that causes an exit to the host It explicitly executes the VMMCALL instruction The VMCB for a guest has settings that determine what actions cause the guest to exit to host These intercepts can vary from guest to guest Two kinds of intercepts Exception and Interrupt Intercepts Instruction Intercepts Rich set of intercepts allow the host to customize each guest’s privileges Information about the intercepted event is put into the VMCB on exit

Core “Pacifica” Architecture Virtual Machine Control Block All CPU state for a guest is located in the Virtual Memory Control Block (VMCB) data-structure VMRUN: Entry Host state is saved to memory Guest state loaded from VMCB Guest runs VMRUN: Exit Guest state is saved back to VMCB Host state loaded from memory Host state saved using Model Specific Register (MSR): vm_hsave_pa

Page Tables or Directories If this is a “Guest Physical” it must be translated to “Host Physical” via the host page tables when nested paging is enabled Input Linear/Virtual Address (LA,VA) Final Host or Guest Physical Address CR3 (Physical Address) Guest or Host Physical Address of next table Core “Pacifica” Architecture Address translation: Page Tables

Core “Pacifica” Architecture Address translation: Modes with virtualization

Core “Pacifica” Architecture Shadow Page Tables Memory Protection – Central Processing Unit (CPU) accesses Shadow Page Tables (SPT) Nested Page Tables SPT Constraints on host design Host intercepts guest CR3 Reads/Writes Host monitors guest edits to guest page tables Guest page tables are marked “read only” Host constructs and manages SPT in software Software strategies for this are mature Guest never sees the “real” page tables or the real content of Control Register 3 (CR3) Address Space ID’s (ASID) implemented to improve Translation Look-aside Buffer (TLB) performance VMRUN sets guest ASID

Core “Pacifica” Architecture CPU Access protection SPT sets guest access rights to physical address space No guest access is possible unless a mapping is present in the SPT Covers DRAM and Memory Mapped Input/Output (MMIO) Minimum granularity 4k-bytes VMCB contains a pointer to an IO Permission Map (IOPM) that controls guest access rights to IO Ports Granularity is to 1-byte port VMCB contains a pointer to a Model Specific Register (MSR) permission map that control guest access to MSRs

Core “Pacifica” Architecture Interrupts Processor response to hardware interrupts is setup in the VMCB Two Options Hardware interrupts while guest is running are intercepted causing exit to host Host manages physical APIC Host determines interrupt routing and distribution Host injects virtual interrupts into guests as needed Hardware support for virtual interrupts: v_irq, v_vector, v_prio, v_tpr, PHYS_IF Interrupts serviced directly in the guest Guest manages physical APIC Host can still inject virtual interrupts Global Interrupt Flag (GIF) Protects host code critical-regions

Core “Pacifica” Architecture System Management mode “Pacifica” implements a flexible architecture for System Management Interrupt (SMI)/SMM Full legacy support for SMI from within host or guest SMI Intercepts Allow host to scrub state if needed followed by native SMI from host Support for “containerized” SMM SMM Mode control via SMM_CTL_MSR Allow host to scrub state and dispatch the SMM handler from a VMCB

Core “Pacifica” Architecture Containerized SMM flow Top: … VMMRUN [rAX] … (Examine Exit Code) … If external SMM (Setup SMM save state) VMRUN [rAX] … Loop Top Host Inst 1 Inst 2 SMI Guest RSM SMM Entry Point SMMCode SMM Save State SMIIntercept RSMIntercept

Core “Pacifica” Architecture Paged Real mode (New) SMM code is designed to start in real mode Memory protections rely on paging, guests must run with paging-enabled Pacifica Solution: Paged Real Mode Only available for guests cr0.pg=1, cr0.pe=0 Host must intercept page faults Real-mode address translation (segment+offset) = Linear address  translation via SPT  physical address Correct composition of SPT’s is host responsibility Guest is assuming linear, 0-based mapping

Core “Pacifica” Architecture DMA protection Protection Domains Mapping from bus/device ID to protection domain Device Exclusion Vector (DEV) One DEV per protection domain Permission-checks all upstream accesses 1-bit per physical 4K page (0.003% tax; 128K/4G) of the system address space Protection for both DRAM and Memory Mapped IO space Contiguous table in physical memory

Summary Virtualization is being used in several server scenarios today AMD expects that virtualization will prove valuable for PC clients too There are ways to modify the x86 architecture, so that virtualization is easier to accomplish, performs better, and provides more security AMD’s “Pacifica” technology is being developed for future AMD64 CPUs for servers and clients Key technologies include adding new instructions, supporting different methods of handling page tables, handle host, and guest interrupts (including SMI/SMM), and provide DMA protection

Call To Action Read the “Pacifica” specification to understand hardware assisted virtualization, available at Continue to ensure that your device and driver works with AMD64 on ALL 64-bit enabled Windows Operating Systems Pacifica Technology is for AMD64 CPUs Sign up for AMD’s development center at

Additional Resources Web Resources Main Page: Developer Center: Related Sessions TWSE05008 Microsoft Virtual Server-Overview and Roadmap TWAR05013 Windows Virtualization Architecture

Community Resources Windows Hardware and Driver Central (WHDC) Technical Communities Non-Microsoft Community Sites Microsoft Public Newsgroups Technical Chats and Webcasts Microsoft Blogs