SlideShare una empresa de Scribd logo

UDS 2012 Xen

Descargar como ODP, PDF
George Dunlap
George Dunlap

Slide deck for the Ubuntu Developer's Summit 2012 Xen session.

Tecnología
1 de 19
Xen in Ubuntu Raring
Agenda ● Brief overview of Xen ● What's new in 4.2 ● What's coming in 4.3 ● What is a great Ubuntu Xen experience? ● Integration issues – Qemu – Libvirt ● Other improvements 2
Xen Overview
Basic Xen Concepts Control Domain aka Dom0 XL, XM (deprecated) • Dom0 kernel with drivers • Xen Management Toolstack VMn • Trusted Computing Base VM1 Guest Domains Control domain One or more VM0 (dom0) driver, stub or • Your apps service domains Guest OS and Apps • E.g. your cloud management stack Dom0 Kernel Driver/Stub/Service Domain(s) Scheduler, MMU Xen Hypervisor • A “driver, device model or control Host HW service in a box” I/O Memory CPUs • De-privileged and isolated • Lifetime: start, stop, kill 4
PV Domains & Driver Domains Control domain Guest VMn Driver Domain Linux PV guests have limitations: (dom0) e.g. • limited set of virtual hardware Apps • Disk • Network PV Back Ends PV Front Ends PV Back End Advantages • Fast HW Drivers HW Driver • Works on any system Guest OS Dom0 Kernel* (even without virt extensions) Driver Domains Xen Hypervisor • Security Host HW • Isolation I/O Memory CPUs • Reliability and Robustness *) Can be MiniOS 5
HVM & Stub Domains Dom0 Guest VMn Stubdomn Guest VMn Disadvantages • Slower than PV due to Emulation (mainly I/O devices) IO Emulation IO Emulation Device Model Device Model Advantages IO Event • Install the same way as native Linux IO Event VMEXIT Mini OS VMEXIT Stub Domains • Security Xen Hypervisor • Isolation • Reliability and Robustness Host HW 6
Xen 4.2 and 4.3
Xen 4.2 Release ● xl default toostack ● libxl stable interface ● xend deprecated ● Scalability ● 4095 host CPUs, 5TiB RAM ● cpupools for more flexible partitioning ● Scheduler, NUMA improvements ● Security improvements ● http://wiki.xen.org/wiki/Xen_4.2_Feature_List
Who writes Xen?
Xen 4.3 Release • Slated for 17 June 2013 • ARM server port • “PVH” mode: PV with some HVM extensions • NUMA • Numerous I/O path improvements • Qemu upsteam • Roadmap: http://wiki.xen.org/wiki/Xen_Roadmap/4.3
Xen and Ubuntu
Integration: qemu • Debian developments ● Qemu-dm: Xen qemu fork ● 4.2: qemu-upstream missing pass-through, migration ● 4.3: qemu-upstream will be default ● Debian has already removed qemu-dm • Solutions ● Qemu-xen-dm package ● Backport features
Integration: libvirt • Libvirt 0.10.2 has bindings for xend, 4.1 libxl • 4.2 libxl bindings incompatible, xend deprecated • Options ● Stick with 4.1 (bad) ● Xen 4.2, but only xend bindings ● Back-port 4.2 libxl support
What does a great Xen on Ubuntu look like? • As a Xen host ● Easy to install, set up ● Reliable, good performance ● Switching between Xen and non-Xen modes ● Good integration with libvirt, &c • As a Xen guest ● Installation ● Reliable, good performance
Potential improvements • “Xen Host” option in installer • Make configuring Grub2 easier • Switching between Xen / non-Xen • Getty for PV console (hvc0) • Xen-tools • Guest installation? • Keeping an eye on linux-xen perf tweaks to backport
Backup slides
Architecture Considerations Type 1: Bare metal Hypervisor Type 2: OS ‘Hosted’ A pure Hypervisor that runs directly on the A Hypervisor that runs within a Host OS and hosts hardware and hosts Guest OS’s. Guest OS’s inside of it, using the host OS services to provide the virtual environment. VMn User-level VMM VMn VM1 User VM1 Apps VM0 Device Models VM0 Guest OS Guest OS and Apps and Apps Host OS Scheduler Hypervisor Ring-0 VM Monitor Device Drivers/Models Device Drivers “Kernel “ MMU Host HW Host HW I/O Memory CPUs I/O Memory CPUs Provides partition isolation + reliability, Low cost, no additional drivers higher security Ease of use & installation
A bit of fun: our ARM Build Farm ● 10 Freescale i.MX53 Loco Quickstart boards Running Debian "armhf" with a mainline 3.2.0 kernel Speed up development of Xen for Cortex A15 (avoid cross compilation)
Xen 4.2 Release • Security: Intel Supervisor Mode Execution Protection, XSM / Flask improvements • Scalability: increased VM density for VDI use-cases, up to 256 Host CPUs for 64 bit HV , Multiple PCI segment support, prefer oxenstored • Performance: PCI pass-through for Linux Guests, AMD SVM DecodeAssist support, Remus memory image compression • EFI support • Libvchan cross domain comms in Xen mainline • XL improvements, XEND is formally deprecated • Documentation improvements (e.g. man pages)

Recomendados

Xen Project Update LinuxCon Brazil
Xen Project Update LinuxCon BrazilXen Project Update LinuxCon Brazil
Xen Project Update LinuxCon BrazilThe Linux Foundation
 
XCP: The Art of Open Virtualization for the Enterprise and the Cloud
XCP: The Art of Open Virtualization for the Enterprise and the CloudXCP: The Art of Open Virtualization for the Enterprise and the Cloud
XCP: The Art of Open Virtualization for the Enterprise and the CloudThe Linux Foundation
 
Mobile Virtualization using the Xen Technologies
Mobile Virtualization using the Xen TechnologiesMobile Virtualization using the Xen Technologies
Mobile Virtualization using the Xen TechnologiesThe Linux Foundation
 
Xen in the Cloud at SCALE 10x
Xen in the Cloud at SCALE 10xXen in the Cloud at SCALE 10x
Xen in the Cloud at SCALE 10xThe Linux Foundation
 
Linux Foundation Collaboration Summit 13 :10 years of Xen and Beyond
Linux Foundation Collaboration Summit 13 :10 years of Xen and BeyondLinux Foundation Collaboration Summit 13 :10 years of Xen and Beyond
Linux Foundation Collaboration Summit 13 :10 years of Xen and BeyondThe Linux Foundation
 
Nakajima hvm-be final
Nakajima hvm-be finalNakajima hvm-be final
Nakajima hvm-be finalThe Linux Foundation
 
Virtualization in the Cloud @ Build a Cloud Day SFO May 2012
Virtualization in the Cloud @ Build a Cloud Day SFO May 2012Virtualization in the Cloud @ Build a Cloud Day SFO May 2012
Virtualization in the Cloud @ Build a Cloud Day SFO May 2012The Linux Foundation
 
Keynote Speech: Xen ARM Virtualization
Keynote Speech: Xen ARM VirtualizationKeynote Speech: Xen ARM Virtualization
Keynote Speech: Xen ARM VirtualizationThe Linux Foundation
 

Recomendados

Xen Project Update LinuxCon Brazil
Xen Project Update LinuxCon BrazilXen Project Update LinuxCon Brazil
Xen Project Update LinuxCon BrazilThe Linux Foundation
 
XCP: The Art of Open Virtualization for the Enterprise and the Cloud
XCP: The Art of Open Virtualization for the Enterprise and the CloudXCP: The Art of Open Virtualization for the Enterprise and the Cloud
XCP: The Art of Open Virtualization for the Enterprise and the CloudThe Linux Foundation
 
Mobile Virtualization using the Xen Technologies
Mobile Virtualization using the Xen TechnologiesMobile Virtualization using the Xen Technologies
Mobile Virtualization using the Xen TechnologiesThe Linux Foundation
 
Xen in the Cloud at SCALE 10x
Xen in the Cloud at SCALE 10xXen in the Cloud at SCALE 10x
Xen in the Cloud at SCALE 10xThe Linux Foundation
 
Linux Foundation Collaboration Summit 13 :10 years of Xen and Beyond
Linux Foundation Collaboration Summit 13 :10 years of Xen and BeyondLinux Foundation Collaboration Summit 13 :10 years of Xen and Beyond
Linux Foundation Collaboration Summit 13 :10 years of Xen and BeyondThe Linux Foundation
 
Nakajima hvm-be final
Nakajima hvm-be finalNakajima hvm-be final
Nakajima hvm-be finalThe Linux Foundation
 
Virtualization in the Cloud @ Build a Cloud Day SFO May 2012
Virtualization in the Cloud @ Build a Cloud Day SFO May 2012Virtualization in the Cloud @ Build a Cloud Day SFO May 2012
Virtualization in the Cloud @ Build a Cloud Day SFO May 2012The Linux Foundation
 
Keynote Speech: Xen ARM Virtualization
Keynote Speech: Xen ARM VirtualizationKeynote Speech: Xen ARM Virtualization
Keynote Speech: Xen ARM VirtualizationThe Linux Foundation
 
Bare-Metal Hypervisor as a Platform for Innovation
Bare-Metal Hypervisor as a Platform for InnovationBare-Metal Hypervisor as a Platform for Innovation
Bare-Metal Hypervisor as a Platform for InnovationThe Linux Foundation
 
Xen cloud platform v1.1 (given at Build a Cloud Day in Antwerp)
Xen cloud platform v1.1 (given at Build a Cloud Day in Antwerp)Xen cloud platform v1.1 (given at Build a Cloud Day in Antwerp)
Xen cloud platform v1.1 (given at Build a Cloud Day in Antwerp)The Linux Foundation
 
Realtime scheduling for virtual machines in SKT
Realtime scheduling for virtual machines in SKTRealtime scheduling for virtual machines in SKT
Realtime scheduling for virtual machines in SKTThe Linux Foundation
 
Xen io
Xen ioXen io
Xen iowangyuanzhf
 
Ian Pratt Nsdi Keynote Apr2008
Ian Pratt Nsdi Keynote Apr2008Ian Pratt Nsdi Keynote Apr2008
Ian Pratt Nsdi Keynote Apr2008The Linux Foundation
 
Xen PV Performance Status and Optimization Opportunities
Xen PV Performance Status and Optimization OpportunitiesXen PV Performance Status and Optimization Opportunities
Xen PV Performance Status and Optimization OpportunitiesThe Linux Foundation
 
Workshop: XenClient Serve & Manage your road warriors with local virtual desktop
Workshop: XenClient Serve & Manage your road warriors with local virtual desktopWorkshop: XenClient Serve & Manage your road warriors with local virtual desktop
Workshop: XenClient Serve & Manage your road warriors with local virtual desktopDigicomp Academy AG
 
Hypervisors
HypervisorsHypervisors
HypervisorsInzemamul Haque
 
Nakajima numa-final
Nakajima numa-finalNakajima numa-final
Nakajima numa-finalThe Linux Foundation
 
LinuxCon NA 2012: Virtualization in the cloud featuring xen
LinuxCon NA 2012: Virtualization in the cloud featuring xenLinuxCon NA 2012: Virtualization in the cloud featuring xen
LinuxCon NA 2012: Virtualization in the cloud featuring xenThe Linux Foundation
 
Ian Pratt Usenix 08 Keynote
Ian Pratt Usenix 08 KeynoteIan Pratt Usenix 08 Keynote
Ian Pratt Usenix 08 KeynoteThe Linux Foundation
 
XS Boston 2008 ARM
XS Boston 2008 ARMXS Boston 2008 ARM
XS Boston 2008 ARMThe Linux Foundation
 
XS Boston 2008 Memory Overcommit
XS Boston 2008 Memory OvercommitXS Boston 2008 Memory Overcommit
XS Boston 2008 Memory OvercommitThe Linux Foundation
 
Linaro connect : Introduction to Xen on ARM
Linaro connect : Introduction to Xen on ARMLinaro connect : Introduction to Xen on ARM
Linaro connect : Introduction to Xen on ARMThe Linux Foundation
 
Linaro Connect Asia 13 : Citrix - Xen on ARM plenary session
Linaro Connect Asia 13 : Citrix - Xen on ARM plenary sessionLinaro Connect Asia 13 : Citrix - Xen on ARM plenary session
Linaro Connect Asia 13 : Citrix - Xen on ARM plenary sessionThe Linux Foundation
 
Hyper V And Scvmm Best Practis
Hyper V And Scvmm Best PractisHyper V And Scvmm Best Practis
Hyper V And Scvmm Best PractisBlauge
 
Xen Hypervisor
Xen HypervisorXen Hypervisor
Xen HypervisorSusheel Thakur
 
Linuxcon EU : Virtualization in the Cloud featuring Xen and XCP
Linuxcon EU : Virtualization in the Cloud featuring Xen and XCPLinuxcon EU : Virtualization in the Cloud featuring Xen and XCP
Linuxcon EU : Virtualization in the Cloud featuring Xen and XCPThe Linux Foundation
 
Presentation cloud computing workshop - virtualization
Presentation cloud computing workshop - virtualizationPresentation cloud computing workshop - virtualization
Presentation cloud computing workshop - virtualizationxKinAnx
 
Hypervisors and Virtualization - VMware, Hyper-V, XenServer, and KVM
Hypervisors and Virtualization - VMware, Hyper-V, XenServer, and KVMHypervisors and Virtualization - VMware, Hyper-V, XenServer, and KVM
Hypervisors and Virtualization - VMware, Hyper-V, XenServer, and KVMvwchu
 
Virtualization in the cloud
Virtualization in the cloudVirtualization in the cloud
Virtualization in the cloudCloudStack - Open Source Cloud Computing Project
 
Virtualization Technology Overview
Virtualization Technology OverviewVirtualization Technology Overview
Virtualization Technology OverviewOpenCity Community
 

Más contenido relacionado

La actualidad más candente

Bare-Metal Hypervisor as a Platform for Innovation
Bare-Metal Hypervisor as a Platform for InnovationBare-Metal Hypervisor as a Platform for Innovation
Bare-Metal Hypervisor as a Platform for InnovationThe Linux Foundation
 
Xen cloud platform v1.1 (given at Build a Cloud Day in Antwerp)
Xen cloud platform v1.1 (given at Build a Cloud Day in Antwerp)Xen cloud platform v1.1 (given at Build a Cloud Day in Antwerp)
Xen cloud platform v1.1 (given at Build a Cloud Day in Antwerp)The Linux Foundation
 
Realtime scheduling for virtual machines in SKT
Realtime scheduling for virtual machines in SKTRealtime scheduling for virtual machines in SKT
Realtime scheduling for virtual machines in SKTThe Linux Foundation
 
Xen PV Performance Status and Optimization Opportunities
Xen PV Performance Status and Optimization OpportunitiesXen PV Performance Status and Optimization Opportunities
Xen PV Performance Status and Optimization OpportunitiesThe Linux Foundation
 
Workshop: XenClient Serve & Manage your road warriors with local virtual desktop
Workshop: XenClient Serve & Manage your road warriors with local virtual desktopWorkshop: XenClient Serve & Manage your road warriors with local virtual desktop
Workshop: XenClient Serve & Manage your road warriors with local virtual desktopDigicomp Academy AG
 
LinuxCon NA 2012: Virtualization in the cloud featuring xen
LinuxCon NA 2012: Virtualization in the cloud featuring xenLinuxCon NA 2012: Virtualization in the cloud featuring xen
LinuxCon NA 2012: Virtualization in the cloud featuring xenThe Linux Foundation
 
Linaro connect : Introduction to Xen on ARM
Linaro connect : Introduction to Xen on ARMLinaro connect : Introduction to Xen on ARM
Linaro connect : Introduction to Xen on ARMThe Linux Foundation
 
Linaro Connect Asia 13 : Citrix - Xen on ARM plenary session
Linaro Connect Asia 13 : Citrix - Xen on ARM plenary sessionLinaro Connect Asia 13 : Citrix - Xen on ARM plenary session
Linaro Connect Asia 13 : Citrix - Xen on ARM plenary sessionThe Linux Foundation
 
Hyper V And Scvmm Best Practis
Hyper V And Scvmm Best PractisHyper V And Scvmm Best Practis
Hyper V And Scvmm Best PractisBlauge
 
Linuxcon EU : Virtualization in the Cloud featuring Xen and XCP
Linuxcon EU : Virtualization in the Cloud featuring Xen and XCPLinuxcon EU : Virtualization in the Cloud featuring Xen and XCP
Linuxcon EU : Virtualization in the Cloud featuring Xen and XCPThe Linux Foundation
 
Presentation cloud computing workshop - virtualization
Presentation cloud computing workshop - virtualizationPresentation cloud computing workshop - virtualization
Presentation cloud computing workshop - virtualizationxKinAnx
 
Hypervisors and Virtualization - VMware, Hyper-V, XenServer, and KVM
Hypervisors and Virtualization - VMware, Hyper-V, XenServer, and KVMHypervisors and Virtualization - VMware, Hyper-V, XenServer, and KVM
Hypervisors and Virtualization - VMware, Hyper-V, XenServer, and KVMvwchu
 

La actualidad más candente (20)

Bare-Metal Hypervisor as a Platform for Innovation
Bare-Metal Hypervisor as a Platform for InnovationBare-Metal Hypervisor as a Platform for Innovation
Bare-Metal Hypervisor as a Platform for Innovation
 
Xen cloud platform v1.1 (given at Build a Cloud Day in Antwerp)
Xen cloud platform v1.1 (given at Build a Cloud Day in Antwerp)Xen cloud platform v1.1 (given at Build a Cloud Day in Antwerp)
Xen cloud platform v1.1 (given at Build a Cloud Day in Antwerp)
 
Realtime scheduling for virtual machines in SKT
Realtime scheduling for virtual machines in SKTRealtime scheduling for virtual machines in SKT
Realtime scheduling for virtual machines in SKT
 
Xen io
Xen ioXen io
Xen io
 
Ian Pratt Nsdi Keynote Apr2008
Ian Pratt Nsdi Keynote Apr2008Ian Pratt Nsdi Keynote Apr2008
Ian Pratt Nsdi Keynote Apr2008
 
Xen PV Performance Status and Optimization Opportunities
Xen PV Performance Status and Optimization OpportunitiesXen PV Performance Status and Optimization Opportunities
Xen PV Performance Status and Optimization Opportunities
 
Workshop: XenClient Serve & Manage your road warriors with local virtual desktop
Workshop: XenClient Serve & Manage your road warriors with local virtual desktopWorkshop: XenClient Serve & Manage your road warriors with local virtual desktop
Workshop: XenClient Serve & Manage your road warriors with local virtual desktop
 
Hypervisors
HypervisorsHypervisors
Hypervisors
 
Nakajima numa-final
Nakajima numa-finalNakajima numa-final
Nakajima numa-final
 
LinuxCon NA 2012: Virtualization in the cloud featuring xen
LinuxCon NA 2012: Virtualization in the cloud featuring xenLinuxCon NA 2012: Virtualization in the cloud featuring xen
LinuxCon NA 2012: Virtualization in the cloud featuring xen
 
Ian Pratt Usenix 08 Keynote
Ian Pratt Usenix 08 KeynoteIan Pratt Usenix 08 Keynote
Ian Pratt Usenix 08 Keynote
 
XS Boston 2008 ARM
XS Boston 2008 ARMXS Boston 2008 ARM
XS Boston 2008 ARM
 
XS Boston 2008 Memory Overcommit
XS Boston 2008 Memory OvercommitXS Boston 2008 Memory Overcommit
XS Boston 2008 Memory Overcommit
 
Linaro connect : Introduction to Xen on ARM
Linaro connect : Introduction to Xen on ARMLinaro connect : Introduction to Xen on ARM
Linaro connect : Introduction to Xen on ARM
 
Linaro Connect Asia 13 : Citrix - Xen on ARM plenary session
Linaro Connect Asia 13 : Citrix - Xen on ARM plenary sessionLinaro Connect Asia 13 : Citrix - Xen on ARM plenary session
Linaro Connect Asia 13 : Citrix - Xen on ARM plenary session
 
Hyper V And Scvmm Best Practis
Hyper V And Scvmm Best PractisHyper V And Scvmm Best Practis
Hyper V And Scvmm Best Practis
 
Xen Hypervisor
Xen HypervisorXen Hypervisor
Xen Hypervisor
 
Linuxcon EU : Virtualization in the Cloud featuring Xen and XCP
Linuxcon EU : Virtualization in the Cloud featuring Xen and XCPLinuxcon EU : Virtualization in the Cloud featuring Xen and XCP
Linuxcon EU : Virtualization in the Cloud featuring Xen and XCP
 
Presentation cloud computing workshop - virtualization
Presentation cloud computing workshop - virtualizationPresentation cloud computing workshop - virtualization
Presentation cloud computing workshop - virtualization
 
Hypervisors and Virtualization - VMware, Hyper-V, XenServer, and KVM
Hypervisors and Virtualization - VMware, Hyper-V, XenServer, and KVMHypervisors and Virtualization - VMware, Hyper-V, XenServer, and KVM
Hypervisors and Virtualization - VMware, Hyper-V, XenServer, and KVM
 

Similar a UDS 2012 Xen

Virtualization Technology Overview
Virtualization Technology OverviewVirtualization Technology Overview
Virtualization Technology OverviewOpenCity Community
 
LinuxCon Japan 13 : 10 years of Xen and Beyond
LinuxCon Japan 13 : 10 years of Xen and BeyondLinuxCon Japan 13 : 10 years of Xen and Beyond
LinuxCon Japan 13 : 10 years of Xen and BeyondThe Linux Foundation
 
Xen 10th anniversary Status Report (at SELF 2013)
Xen 10th anniversary Status Report (at SELF 2013)Xen 10th anniversary Status Report (at SELF 2013)
Xen 10th anniversary Status Report (at SELF 2013)Russell Pavlicek
 
LinuxTag13: 10 years of Xen and beyond
LinuxTag13: 10 years of Xen and beyondLinuxTag13: 10 years of Xen and beyond
LinuxTag13: 10 years of Xen and beyondThe Linux Foundation
 
Dealing with Hardware Heterogeneity Using EmbeddedXEN, a Virtualization Frame...
Dealing with Hardware Heterogeneity Using EmbeddedXEN, a Virtualization Frame...Dealing with Hardware Heterogeneity Using EmbeddedXEN, a Virtualization Frame...
Dealing with Hardware Heterogeneity Using EmbeddedXEN, a Virtualization Frame...The Linux Foundation
 
Virtualization Primer for Java Developers
Virtualization Primer for Java DevelopersVirtualization Primer for Java Developers
Virtualization Primer for Java DevelopersRichard McDougall
 
BACD July 2012 : The Xen Cloud Platform
BACD July 2012 : The Xen Cloud Platform BACD July 2012 : The Xen Cloud Platform
BACD July 2012 : The Xen Cloud Platform The Linux Foundation
 
RHEL5 XEN HandOnTraining_v0.4.pdf
RHEL5 XEN HandOnTraining_v0.4.pdfRHEL5 XEN HandOnTraining_v0.4.pdf
RHEL5 XEN HandOnTraining_v0.4.pdfPaul Yang
 
Windsor: Domain 0 Disaggregation for XenServer and XCP
Windsor: Domain 0 Disaggregation for XenServer and XCP Windsor: Domain 0 Disaggregation for XenServer and XCP
Windsor: Domain 0 Disaggregation for XenServer and XCPThe Linux Foundation
 
Xen and Client Virtualization: the case of XenClient XT
Xen and Client Virtualization: the case of XenClient XTXen and Client Virtualization: the case of XenClient XT
Xen and Client Virtualization: the case of XenClient XTThe Linux Foundation
 
2 architectural at CloudStack Developer Day
2 architectural at CloudStack Developer Day2 architectural at CloudStack Developer Day
2 architectural at CloudStack Developer DayKimihiko Kitase
 
Apache CloudStack Architecture by Alex Huang
Apache CloudStack Architecture by Alex HuangApache CloudStack Architecture by Alex Huang
Apache CloudStack Architecture by Alex Huangbuildacloud
 
Private cloud virtual reality to reality a partner story daniel mar_technicom
Private cloud virtual reality to reality a partner story daniel mar_technicomPrivate cloud virtual reality to reality a partner story daniel mar_technicom
Private cloud virtual reality to reality a partner story daniel mar_technicomMicrosoft Singapore
 
Xen: Hypervisor for the Cloud - CCC13
Xen: Hypervisor for the Cloud - CCC13Xen: Hypervisor for the Cloud - CCC13
Xen: Hypervisor for the Cloud - CCC13The Linux Foundation
 

Similar a UDS 2012 Xen (20)

Virtualization in the cloud
Virtualization in the cloudVirtualization in the cloud
Virtualization in the cloud
 
Virtualization Technology Overview
Virtualization Technology OverviewVirtualization Technology Overview
Virtualization Technology Overview
 
LinuxCon Japan 13 : 10 years of Xen and Beyond
LinuxCon Japan 13 : 10 years of Xen and BeyondLinuxCon Japan 13 : 10 years of Xen and Beyond
LinuxCon Japan 13 : 10 years of Xen and Beyond
 
Xen 10th anniversary Status Report (at SELF 2013)
Xen 10th anniversary Status Report (at SELF 2013)Xen 10th anniversary Status Report (at SELF 2013)
Xen 10th anniversary Status Report (at SELF 2013)
 
LinuxTag13: 10 years of Xen and beyond
LinuxTag13: 10 years of Xen and beyondLinuxTag13: 10 years of Xen and beyond
LinuxTag13: 10 years of Xen and beyond
 
Xen Community Update 2011
Xen Community Update 2011Xen Community Update 2011
Xen Community Update 2011
 
Xen and Apache cloudstack
Xen and Apache cloudstack Xen and Apache cloudstack
Xen and Apache cloudstack
 
Dealing with Hardware Heterogeneity Using EmbeddedXEN, a Virtualization Frame...
Dealing with Hardware Heterogeneity Using EmbeddedXEN, a Virtualization Frame...Dealing with Hardware Heterogeneity Using EmbeddedXEN, a Virtualization Frame...
Dealing with Hardware Heterogeneity Using EmbeddedXEN, a Virtualization Frame...
 
Virtualization Primer for Java Developers
Virtualization Primer for Java DevelopersVirtualization Primer for Java Developers
Virtualization Primer for Java Developers
 
CloudStack Architecture
CloudStack ArchitectureCloudStack Architecture
CloudStack Architecture
 
BACD July 2012 : The Xen Cloud Platform
BACD July 2012 : The Xen Cloud Platform BACD July 2012 : The Xen Cloud Platform
BACD July 2012 : The Xen Cloud Platform
 
vBACD July 2012 - Xen Cloud Platform
vBACD July 2012 - Xen Cloud PlatformvBACD July 2012 - Xen Cloud Platform
vBACD July 2012 - Xen Cloud Platform
 
Xen Hypervisor Update 2011
Xen Hypervisor Update 2011Xen Hypervisor Update 2011
Xen Hypervisor Update 2011
 
RHEL5 XEN HandOnTraining_v0.4.pdf
RHEL5 XEN HandOnTraining_v0.4.pdfRHEL5 XEN HandOnTraining_v0.4.pdf
RHEL5 XEN HandOnTraining_v0.4.pdf
 
Windsor: Domain 0 Disaggregation for XenServer and XCP
Windsor: Domain 0 Disaggregation for XenServer and XCP Windsor: Domain 0 Disaggregation for XenServer and XCP
Windsor: Domain 0 Disaggregation for XenServer and XCP
 
Xen and Client Virtualization: the case of XenClient XT
Xen and Client Virtualization: the case of XenClient XTXen and Client Virtualization: the case of XenClient XT
Xen and Client Virtualization: the case of XenClient XT
 
2 architectural at CloudStack Developer Day
2 architectural at CloudStack Developer Day2 architectural at CloudStack Developer Day
2 architectural at CloudStack Developer Day
 
Apache CloudStack Architecture by Alex Huang
Apache CloudStack Architecture by Alex HuangApache CloudStack Architecture by Alex Huang
Apache CloudStack Architecture by Alex Huang
 
Private cloud virtual reality to reality a partner story daniel mar_technicom
Private cloud virtual reality to reality a partner story daniel mar_technicomPrivate cloud virtual reality to reality a partner story daniel mar_technicom
Private cloud virtual reality to reality a partner story daniel mar_technicom
 
Xen: Hypervisor for the Cloud - CCC13
Xen: Hypervisor for the Cloud - CCC13Xen: Hypervisor for the Cloud - CCC13
Xen: Hypervisor for the Cloud - CCC13
 

Último

Streamlining Python Development: A Guide to a Modern Project Setup
Streamlining Python Development: A Guide to a Modern Project SetupStreamlining Python Development: A Guide to a Modern Project Setup
Streamlining Python Development: A Guide to a Modern Project SetupFlorian Wilhelm
 
Unleash Your Potential - Namagunga Girls Coding Club
Unleash Your Potential - Namagunga Girls Coding ClubUnleash Your Potential - Namagunga Girls Coding Club
Unleash Your Potential - Namagunga Girls Coding ClubKalema Edgar
 
"ML in Production",Oleksandr Bagan
"ML in Production",Oleksandr Bagan"ML in Production",Oleksandr Bagan
"ML in Production",Oleksandr BaganFwdays
 
The Ultimate Guide to Choosing WordPress Pros and Cons
The Ultimate Guide to Choosing WordPress Pros and ConsThe Ultimate Guide to Choosing WordPress Pros and Cons
The Ultimate Guide to Choosing WordPress Pros and ConsPixlogix Infotech
 
Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!Commit University
 
unit 4 immunoblotting technique complete.pptx
unit 4 immunoblotting technique complete.pptxunit 4 immunoblotting technique complete.pptx
unit 4 immunoblotting technique complete.pptxBkGupta21
 
WordPress Websites for Engineers: Elevate Your Brand
WordPress Websites for Engineers: Elevate Your BrandWordPress Websites for Engineers: Elevate Your Brand
WordPress Websites for Engineers: Elevate Your Brandgvaughan
 
DevoxxFR 2024 Reproducible Builds with Apache Maven
DevoxxFR 2024 Reproducible Builds with Apache MavenDevoxxFR 2024 Reproducible Builds with Apache Maven
DevoxxFR 2024 Reproducible Builds with Apache MavenHervé Boutemy
 
Use of FIDO in the Payments and Identity Landscape: FIDO Paris Seminar.pptx
Use of FIDO in the Payments and Identity Landscape: FIDO Paris Seminar.pptxUse of FIDO in the Payments and Identity Landscape: FIDO Paris Seminar.pptx
Use of FIDO in the Payments and Identity Landscape: FIDO Paris Seminar.pptxLoriGlavin3
 
Transcript: New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024Transcript: New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024BookNet Canada
 
New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024
New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024
New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024BookNet Canada
 
Scanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL CertsScanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL CertsRizwan Syed
 
Passkey Providers and Enabling Portability: FIDO Paris Seminar.pptx
Passkey Providers and Enabling Portability: FIDO Paris Seminar.pptxPasskey Providers and Enabling Portability: FIDO Paris Seminar.pptx
Passkey Providers and Enabling Portability: FIDO Paris Seminar.pptxLoriGlavin3
 
Dev Dives: Streamline document processing with UiPath Studio Web
Dev Dives: Streamline document processing with UiPath Studio WebDev Dives: Streamline document processing with UiPath Studio Web
Dev Dives: Streamline document processing with UiPath Studio WebUiPathCommunity
 
SIP trunking in Janus @ Kamailio World 2024
SIP trunking in Janus @ Kamailio World 2024SIP trunking in Janus @ Kamailio World 2024
SIP trunking in Janus @ Kamailio World 2024Lorenzo Miniero
 
The State of Passkeys with FIDO Alliance.pptx
The State of Passkeys with FIDO Alliance.pptxThe State of Passkeys with FIDO Alliance.pptx
The State of Passkeys with FIDO Alliance.pptxLoriGlavin3
 
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek SchlawackFwdays
 
SALESFORCE EDUCATION CLOUD | FEXLE SERVICES
SALESFORCE EDUCATION CLOUD | FEXLE SERVICESSALESFORCE EDUCATION CLOUD | FEXLE SERVICES
SALESFORCE EDUCATION CLOUD | FEXLE SERVICESmohitsingh558521
 
Connect Wave/ connectwave Pitch Deck Presentation
Connect Wave/ connectwave Pitch Deck PresentationConnect Wave/ connectwave Pitch Deck Presentation
Connect Wave/ connectwave Pitch Deck PresentationSlibray Presentation
 
TrustArc Webinar - How to Build Consumer Trust Through Data Privacy
TrustArc Webinar - How to Build Consumer Trust Through Data PrivacyTrustArc Webinar - How to Build Consumer Trust Through Data Privacy
TrustArc Webinar - How to Build Consumer Trust Through Data PrivacyTrustArc
 

Último (20)

Streamlining Python Development: A Guide to a Modern Project Setup
Streamlining Python Development: A Guide to a Modern Project SetupStreamlining Python Development: A Guide to a Modern Project Setup
Streamlining Python Development: A Guide to a Modern Project Setup
 
Unleash Your Potential - Namagunga Girls Coding Club
Unleash Your Potential - Namagunga Girls Coding ClubUnleash Your Potential - Namagunga Girls Coding Club
Unleash Your Potential - Namagunga Girls Coding Club
 
"ML in Production",Oleksandr Bagan
"ML in Production",Oleksandr Bagan"ML in Production",Oleksandr Bagan
"ML in Production",Oleksandr Bagan
 
The Ultimate Guide to Choosing WordPress Pros and Cons
The Ultimate Guide to Choosing WordPress Pros and ConsThe Ultimate Guide to Choosing WordPress Pros and Cons
The Ultimate Guide to Choosing WordPress Pros and Cons
 
Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!
 
unit 4 immunoblotting technique complete.pptx
unit 4 immunoblotting technique complete.pptxunit 4 immunoblotting technique complete.pptx
unit 4 immunoblotting technique complete.pptx
 
WordPress Websites for Engineers: Elevate Your Brand
WordPress Websites for Engineers: Elevate Your BrandWordPress Websites for Engineers: Elevate Your Brand
WordPress Websites for Engineers: Elevate Your Brand
 
DevoxxFR 2024 Reproducible Builds with Apache Maven
DevoxxFR 2024 Reproducible Builds with Apache MavenDevoxxFR 2024 Reproducible Builds with Apache Maven
DevoxxFR 2024 Reproducible Builds with Apache Maven
 
Use of FIDO in the Payments and Identity Landscape: FIDO Paris Seminar.pptx
Use of FIDO in the Payments and Identity Landscape: FIDO Paris Seminar.pptxUse of FIDO in the Payments and Identity Landscape: FIDO Paris Seminar.pptx
Use of FIDO in the Payments and Identity Landscape: FIDO Paris Seminar.pptx
 
Transcript: New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024Transcript: New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024
 
New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024
New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024
New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024
 
Scanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL CertsScanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL Certs
 
Passkey Providers and Enabling Portability: FIDO Paris Seminar.pptx
Passkey Providers and Enabling Portability: FIDO Paris Seminar.pptxPasskey Providers and Enabling Portability: FIDO Paris Seminar.pptx
Passkey Providers and Enabling Portability: FIDO Paris Seminar.pptx
 
Dev Dives: Streamline document processing with UiPath Studio Web
Dev Dives: Streamline document processing with UiPath Studio WebDev Dives: Streamline document processing with UiPath Studio Web
Dev Dives: Streamline document processing with UiPath Studio Web
 
SIP trunking in Janus @ Kamailio World 2024
SIP trunking in Janus @ Kamailio World 2024SIP trunking in Janus @ Kamailio World 2024
SIP trunking in Janus @ Kamailio World 2024
 
The State of Passkeys with FIDO Alliance.pptx
The State of Passkeys with FIDO Alliance.pptxThe State of Passkeys with FIDO Alliance.pptx
The State of Passkeys with FIDO Alliance.pptx
 
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack
 
SALESFORCE EDUCATION CLOUD | FEXLE SERVICES
SALESFORCE EDUCATION CLOUD | FEXLE SERVICESSALESFORCE EDUCATION CLOUD | FEXLE SERVICES
SALESFORCE EDUCATION CLOUD | FEXLE SERVICES
 
Connect Wave/ connectwave Pitch Deck Presentation
Connect Wave/ connectwave Pitch Deck PresentationConnect Wave/ connectwave Pitch Deck Presentation
Connect Wave/ connectwave Pitch Deck Presentation
 
TrustArc Webinar - How to Build Consumer Trust Through Data Privacy
TrustArc Webinar - How to Build Consumer Trust Through Data PrivacyTrustArc Webinar - How to Build Consumer Trust Through Data Privacy
TrustArc Webinar - How to Build Consumer Trust Through Data Privacy
 

UDS 2012 Xen

  • 1. Xen in Ubuntu Raring
  • 2. Agenda ● Brief overview of Xen ● What's new in 4.2 ● What's coming in 4.3 ● What is a great Ubuntu Xen experience? ● Integration issues – Qemu – Libvirt ● Other improvements 2
  • 4. Basic Xen Concepts Control Domain aka Dom0 XL, XM (deprecated) • Dom0 kernel with drivers • Xen Management Toolstack VMn • Trusted Computing Base VM1 Guest Domains Control domain One or more VM0 (dom0) driver, stub or • Your apps service domains Guest OS and Apps • E.g. your cloud management stack Dom0 Kernel Driver/Stub/Service Domain(s) Scheduler, MMU Xen Hypervisor • A “driver, device model or control Host HW service in a box” I/O Memory CPUs • De-privileged and isolated • Lifetime: start, stop, kill 4
  • 5. PV Domains & Driver Domains Control domain Guest VMn Driver Domain Linux PV guests have limitations: (dom0) e.g. • limited set of virtual hardware Apps • Disk • Network PV Back Ends PV Front Ends PV Back End Advantages • Fast HW Drivers HW Driver • Works on any system Guest OS Dom0 Kernel* (even without virt extensions) Driver Domains Xen Hypervisor • Security Host HW • Isolation I/O Memory CPUs • Reliability and Robustness *) Can be MiniOS 5
  • 6. HVM & Stub Domains Dom0 Guest VMn Stubdomn Guest VMn Disadvantages • Slower than PV due to Emulation (mainly I/O devices) IO Emulation IO Emulation Device Model Device Model Advantages IO Event • Install the same way as native Linux IO Event VMEXIT Mini OS VMEXIT Stub Domains • Security Xen Hypervisor • Isolation • Reliability and Robustness Host HW 6
  • 8. Xen 4.2 Release ● xl default toostack ● libxl stable interface ● xend deprecated ● Scalability ● 4095 host CPUs, 5TiB RAM ● cpupools for more flexible partitioning ● Scheduler, NUMA improvements ● Security improvements ● http://wiki.xen.org/wiki/Xen_4.2_Feature_List
  • 10. Xen 4.3 Release • Slated for 17 June 2013 • ARM server port • “PVH” mode: PV with some HVM extensions • NUMA • Numerous I/O path improvements • Qemu upsteam • Roadmap: http://wiki.xen.org/wiki/Xen_Roadmap/4.3
  • 12. Integration: qemu • Debian developments ● Qemu-dm: Xen qemu fork ● 4.2: qemu-upstream missing pass-through, migration ● 4.3: qemu-upstream will be default ● Debian has already removed qemu-dm • Solutions ● Qemu-xen-dm package ● Backport features
  • 13. Integration: libvirt • Libvirt 0.10.2 has bindings for xend, 4.1 libxl • 4.2 libxl bindings incompatible, xend deprecated • Options ● Stick with 4.1 (bad) ● Xen 4.2, but only xend bindings ● Back-port 4.2 libxl support
  • 14. What does a great Xen on Ubuntu look like? • As a Xen host ● Easy to install, set up ● Reliable, good performance ● Switching between Xen and non-Xen modes ● Good integration with libvirt, &c • As a Xen guest ● Installation ● Reliable, good performance
  • 15. Potential improvements • “Xen Host” option in installer • Make configuring Grub2 easier • Switching between Xen / non-Xen • Getty for PV console (hvc0) • Xen-tools • Guest installation? • Keeping an eye on linux-xen perf tweaks to backport
  • 17. Architecture Considerations Type 1: Bare metal Hypervisor Type 2: OS ‘Hosted’ A pure Hypervisor that runs directly on the A Hypervisor that runs within a Host OS and hosts hardware and hosts Guest OS’s. Guest OS’s inside of it, using the host OS services to provide the virtual environment. VMn User-level VMM VMn VM1 User VM1 Apps VM0 Device Models VM0 Guest OS Guest OS and Apps and Apps Host OS Scheduler Hypervisor Ring-0 VM Monitor Device Drivers/Models Device Drivers “Kernel “ MMU Host HW Host HW I/O Memory CPUs I/O Memory CPUs Provides partition isolation + reliability, Low cost, no additional drivers higher security Ease of use & installation
  • 18. A bit of fun: our ARM Build Farm ● 10 Freescale i.MX53 Loco Quickstart boards Running Debian "armhf" with a mainline 3.2.0 kernel Speed up development of Xen for Cortex A15 (avoid cross compilation)
  • 19. Xen 4.2 Release • Security: Intel Supervisor Mode Execution Protection, XSM / Flask improvements • Scalability: increased VM density for VDI use-cases, up to 256 Host CPUs for 64 bit HV , Multiple PCI segment support, prefer oxenstored • Performance: PCI pass-through for Linux Guests, AMD SVM DecodeAssist support, Remus memory image compression • EFI support • Libvchan cross domain comms in Xen mainline • XL improvements, XEND is formally deprecated • Documentation improvements (e.g. man pages)

Notas del editor

  1. PVOPS is the Kernel Infrastructure to run a PV Hypervisor on top of Linux
  2. Dom 0: In a typical Xen set-up Dom0 contains a smorgasboard of functionality: System boot Device emulation & multiplexing Administrative toolstack Drivers (e.g. Storage & Network) Etc. LARGE TCB – BUT, Smaller as in a Type 2 hypervisor Driver/Stub/Service Domains: also known as Disaggregation
  3. PVOPS is the Kernel Infrastructure to run a PV Hypervisor on top of Linux
  4. Dom 0: In a typical Xen set-up Dom0 contains a smorgasboard of functionality: System boot Device emulation & multiplexing Administrative toolstack Drivers (e.g. Storage & Network) Etc. LARGE TCB – BUT, Smaller as in a Type 2 hypervisor Driver/Stub/Service Domains: also known as Disaggregation
  5. Device Model emulated in QEMU Models for newer devices are much faster, but for now PV is even faster
  6. PVOPS is the Kernel Infrastructure to run a PV Hypervisor on top of Linux
  7. Detailed List General Documentation improvements (e.g. man pages) Lots of bug fixing of course. [ edit ] Tools xl is now default toolstack and xend is formally deprecated lots of xl improvements. we should highlight xend deprecation (not effectively maintained since 2008) Remus compression (compression of memory image improves performance) Prefer oxenstored when available (improves scalability!) Support for upstream qemu; nearing feature parity (non default still, but we want people to be testing it) Added libvchan to xen mainline(cross domain comms) [ edit ] Xen Improvements to paging and sharing, enabling higher VM density for VDI use-cases EFI (extensible Firmware Interface) support for HV (i.e. if I have a machine that has EFI, I can use Xen on it) Support up to 256 Host CPUs for 64 bit h/v (from 128) Support dom0 kernels compressed with xz Per-device interrupt remapping (increases scalability) Support for pvhvm guest direct pirq injection (Performance improvement for PCI passthrough for Linux Guests) Intel SMEP (Supervisor Mode Execution Protection) support Mem event stuff? (Allows to externally observe what guests are up to and can be used for external virus checking - not sure what the right terminology is) Multiple PCI segment support Added xsave support(floating point) Lots of XSM / Flask fixes (security) AMD SVM "DecodeAssist" support (AMD CPU feature that avoids emulation and increases performance) [ edit ] Removed Functionality ACM (alternative XSM to Flask) was removed (unmaintained) Removed vnet (unmaintained) [ edit ] Xen Development Support Can build with clang Added "make deb" target Lots of xentrace improvements update ocaml bindings and make them usable by xapi (which previously had it's own fork of the same codebase)
  8. Detailed List General Documentation improvements (e.g. man pages) Lots of bug fixing of course. [ edit ] Tools xl is now default toolstack and xend is formally deprecated lots of xl improvements. we should highlight xend deprecation (not effectively maintained since 2008) Remus compression (compression of memory image improves performance) Prefer oxenstored when available (improves scalability!) Support for upstream qemu; nearing feature parity (non default still, but we want people to be testing it) Added libvchan to xen mainline(cross domain comms) [ edit ] Xen Improvements to paging and sharing, enabling higher VM density for VDI use-cases EFI (extensible Firmware Interface) support for HV (i.e. if I have a machine that has EFI, I can use Xen on it) Support up to 256 Host CPUs for 64 bit h/v (from 128) Support dom0 kernels compressed with xz Per-device interrupt remapping (increases scalability) Support for pvhvm guest direct pirq injection (Performance improvement for PCI passthrough for Linux Guests) Intel SMEP (Supervisor Mode Execution Protection) support Mem event stuff? (Allows to externally observe what guests are up to and can be used for external virus checking - not sure what the right terminology is) Multiple PCI segment support Added xsave support(floating point) Lots of XSM / Flask fixes (security) AMD SVM "DecodeAssist" support (AMD CPU feature that avoids emulation and increases performance) [ edit ] Removed Functionality ACM (alternative XSM to Flask) was removed (unmaintained) Removed vnet (unmaintained) [ edit ] Xen Development Support Can build with clang Added "make deb" target Lots of xentrace improvements update ocaml bindings and make them usable by xapi (which previously had it's own fork of the same codebase)
  9. PVOPS is the Kernel Infrastructure to run a PV Hypervisor on top of Linux
  10. Detailed List General Documentation improvements (e.g. man pages) Lots of bug fixing of course. [ edit ] Tools xl is now default toolstack and xend is formally deprecated lots of xl improvements. we should highlight xend deprecation (not effectively maintained since 2008) Remus compression (compression of memory image improves performance) Prefer oxenstored when available (improves scalability!) Support for upstream qemu; nearing feature parity (non default still, but we want people to be testing it) Added libvchan to xen mainline(cross domain comms) [ edit ] Xen Improvements to paging and sharing, enabling higher VM density for VDI use-cases EFI (extensible Firmware Interface) support for HV (i.e. if I have a machine that has EFI, I can use Xen on it) Support up to 256 Host CPUs for 64 bit h/v (from 128) Support dom0 kernels compressed with xz Per-device interrupt remapping (increases scalability) Support for pvhvm guest direct pirq injection (Performance improvement for PCI passthrough for Linux Guests) Intel SMEP (Supervisor Mode Execution Protection) support Mem event stuff? (Allows to externally observe what guests are up to and can be used for external virus checking - not sure what the right terminology is) Multiple PCI segment support Added xsave support(floating point) Lots of XSM / Flask fixes (security) AMD SVM "DecodeAssist" support (AMD CPU feature that avoids emulation and increases performance) [ edit ] Removed Functionality ACM (alternative XSM to Flask) was removed (unmaintained) Removed vnet (unmaintained) [ edit ] Xen Development Support Can build with clang Added "make deb" target Lots of xentrace improvements update ocaml bindings and make them usable by xapi (which previously had it's own fork of the same codebase)
  11. Detailed List General Documentation improvements (e.g. man pages) Lots of bug fixing of course. [ edit ] Tools xl is now default toolstack and xend is formally deprecated lots of xl improvements. we should highlight xend deprecation (not effectively maintained since 2008) Remus compression (compression of memory image improves performance) Prefer oxenstored when available (improves scalability!) Support for upstream qemu; nearing feature parity (non default still, but we want people to be testing it) Added libvchan to xen mainline(cross domain comms) [ edit ] Xen Improvements to paging and sharing, enabling higher VM density for VDI use-cases EFI (extensible Firmware Interface) support for HV (i.e. if I have a machine that has EFI, I can use Xen on it) Support up to 256 Host CPUs for 64 bit h/v (from 128) Support dom0 kernels compressed with xz Per-device interrupt remapping (increases scalability) Support for pvhvm guest direct pirq injection (Performance improvement for PCI passthrough for Linux Guests) Intel SMEP (Supervisor Mode Execution Protection) support Mem event stuff? (Allows to externally observe what guests are up to and can be used for external virus checking - not sure what the right terminology is) Multiple PCI segment support Added xsave support(floating point) Lots of XSM / Flask fixes (security) AMD SVM "DecodeAssist" support (AMD CPU feature that avoids emulation and increases performance) [ edit ] Removed Functionality ACM (alternative XSM to Flask) was removed (unmaintained) Removed vnet (unmaintained) [ edit ] Xen Development Support Can build with clang Added "make deb" target Lots of xentrace improvements update ocaml bindings and make them usable by xapi (which previously had it's own fork of the same codebase)
  12. Detailed List General Documentation improvements (e.g. man pages) Lots of bug fixing of course. [ edit ] Tools xl is now default toolstack and xend is formally deprecated lots of xl improvements. we should highlight xend deprecation (not effectively maintained since 2008) Remus compression (compression of memory image improves performance) Prefer oxenstored when available (improves scalability!) Support for upstream qemu; nearing feature parity (non default still, but we want people to be testing it) Added libvchan to xen mainline(cross domain comms) [ edit ] Xen Improvements to paging and sharing, enabling higher VM density for VDI use-cases EFI (extensible Firmware Interface) support for HV (i.e. if I have a machine that has EFI, I can use Xen on it) Support up to 256 Host CPUs for 64 bit h/v (from 128) Support dom0 kernels compressed with xz Per-device interrupt remapping (increases scalability) Support for pvhvm guest direct pirq injection (Performance improvement for PCI passthrough for Linux Guests) Intel SMEP (Supervisor Mode Execution Protection) support Mem event stuff? (Allows to externally observe what guests are up to and can be used for external virus checking - not sure what the right terminology is) Multiple PCI segment support Added xsave support(floating point) Lots of XSM / Flask fixes (security) AMD SVM "DecodeAssist" support (AMD CPU feature that avoids emulation and increases performance) [ edit ] Removed Functionality ACM (alternative XSM to Flask) was removed (unmaintained) Removed vnet (unmaintained) [ edit ] Xen Development Support Can build with clang Added "make deb" target Lots of xentrace improvements update ocaml bindings and make them usable by xapi (which previously had it's own fork of the same codebase)
  13. Detailed List General Documentation improvements (e.g. man pages) Lots of bug fixing of course. [ edit ] Tools xl is now default toolstack and xend is formally deprecated lots of xl improvements. we should highlight xend deprecation (not effectively maintained since 2008) Remus compression (compression of memory image improves performance) Prefer oxenstored when available (improves scalability!) Support for upstream qemu; nearing feature parity (non default still, but we want people to be testing it) Added libvchan to xen mainline(cross domain comms) [ edit ] Xen Improvements to paging and sharing, enabling higher VM density for VDI use-cases EFI (extensible Firmware Interface) support for HV (i.e. if I have a machine that has EFI, I can use Xen on it) Support up to 256 Host CPUs for 64 bit h/v (from 128) Support dom0 kernels compressed with xz Per-device interrupt remapping (increases scalability) Support for pvhvm guest direct pirq injection (Performance improvement for PCI passthrough for Linux Guests) Intel SMEP (Supervisor Mode Execution Protection) support Mem event stuff? (Allows to externally observe what guests are up to and can be used for external virus checking - not sure what the right terminology is) Multiple PCI segment support Added xsave support(floating point) Lots of XSM / Flask fixes (security) AMD SVM "DecodeAssist" support (AMD CPU feature that avoids emulation and increases performance) [ edit ] Removed Functionality ACM (alternative XSM to Flask) was removed (unmaintained) Removed vnet (unmaintained) [ edit ] Xen Development Support Can build with clang Added "make deb" target Lots of xentrace improvements update ocaml bindings and make them usable by xapi (which previously had it's own fork of the same codebase)
  14. At this point I want to make a quick detour into the different hypervisor architectures from a viewpoint of security. Let’s look at type 1 hypervisor: Basically a very simple architecture, where the Hypervisor replaces the kernel The architecture is significantly simpler that a Type 2 hypervisor, because it does not need to provide rich “process” semantics, like “user”, filesystems, etc. BUT: the trade-off is that all the device drivers need to be rewritten for each hardware platform Type 2 is hosted - The hypervisor is just a driver that typically works with user-level monitor . HW access is intercepted by the ring 0- VM monitor passed to the User level Virtual Monitor, which passes requests to the kernel Re-use of device drivers is traded off against security and a large trusted computing base (green)
  15. Dom 0: In a typical Xen set-up Dom0 contains a smorgasboard of functionality: System boot Device emulation & multiplexing Administrative toolstack Drivers (e.g. Storage & Network) Etc. LARGE TCB – BUT, Smaller as in a Type 2 hypervisor
  16. Detailed List General Documentation improvements (e.g. man pages) Lots of bug fixing of course. [ edit ] Tools xl is now default toolstack and xend is formally deprecated lots of xl improvements. we should highlight xend deprecation (not effectively maintained since 2008) Remus compression (compression of memory image improves performance) Prefer oxenstored when available (improves scalability!) Support for upstream qemu; nearing feature parity (non default still, but we want people to be testing it) Added libvchan to xen mainline(cross domain comms) [ edit ] Xen Improvements to paging and sharing, enabling higher VM density for VDI use-cases EFI (extensible Firmware Interface) support for HV (i.e. if I have a machine that has EFI, I can use Xen on it) Support up to 256 Host CPUs for 64 bit h/v (from 128) Support dom0 kernels compressed with xz Per-device interrupt remapping (increases scalability) Support for pvhvm guest direct pirq injection (Performance improvement for PCI passthrough for Linux Guests) Intel SMEP (Supervisor Mode Execution Protection) support Mem event stuff? (Allows to externally observe what guests are up to and can be used for external virus checking - not sure what the right terminology is) Multiple PCI segment support Added xsave support(floating point) Lots of XSM / Flask fixes (security) AMD SVM "DecodeAssist" support (AMD CPU feature that avoids emulation and increases performance) [ edit ] Removed Functionality ACM (alternative XSM to Flask) was removed (unmaintained) Removed vnet (unmaintained) [ edit ] Xen Development Support Can build with clang Added "make deb" target Lots of xentrace improvements update ocaml bindings and make them usable by xapi (which previously had it's own fork of the same codebase)