• Corpus ID: 2041148

The Turtles Project: Design and Implementation of Nested Virtualization

@inproceedings{BenYehuda2010TheTP,
  title={The Turtles Project: Design and Implementation of Nested Virtualization},
  author={Muli Ben-Yehuda and Michael D. Day and Zvi Dubitzky and Michael Factor and Nadav Har'El and Abel Gordon and Anthony Liguori and Orit Wasserman and Ben-Ami Yassour},
  booktitle={OSDI},
  year={2010}
}
In classical machine virtualization, a hypervisor runs multiple operating systems simultaneously, each on its own virtual machine. In nested virtualization, a hypervisor can run multiple other hypervisors with their associated virtual machines. As operating systems gain hypervisor functionality--Microsoft Windows 7 already runs Windows XP in a virtual machine--nested virtualization will become necessary in hypervisors that wish to host them. We present the design, implementation, analysis, and… 
HARDWARE VIRTUALIZATION IN NESTED VIRTUALIZATION
TLDR
This review discusses many types of virtualization techniques and their interrupt handling, including full virtualization with binary translation, which is the most effective and reliable technology used ever with great ease of use.
NEVE: Nested Virtualization Extensions for ARM
TLDR
It is shown that NEVE allows hypervisors running real application workloads to provide an order of magnitude better performance than current ARM nested virtualization support and up to three times less overhead than x86 nestedvirtualization.
Optimizing Nested Virtualization Performance Using Direct Virtual Hardware
TLDR
DVH (Direct Virtual Hardware), a new approach that enables a host hypervisor, the hypervisor that runs directly on the hardware, to directly provide virtual hardware to nested virtual machines without the intervention of multiple levels of hypervisors, is implemented in the Linux KVM hypervisor.
Multi-Hypervisor Virtual Machines: Enabling an Ecosystem of Hypervisor-level Services
TLDR
This work presents the notion of a multi-hypervisorVM, which is an unmodified guest that can simultaneously use services from multiple coresident, but isolated, hypervisors, that leverages nesting to allow multiple hypervisors to concurrently control a guest's memory, virtual CPU, and I/O resources.
Architectural support for hypervisor-secure virtualization
TLDR
This work presents hypervisor-secure virtualization - a new research direction with the goal of protecting the guest VMs from an untrusted hypervisor, and presents the HyperWall architecture which achievesHyperWall, which allows a hypervisor to freely manage the memory, processor cores and other resources of a platform.
NestCloud: Towards practical nested virtualization
TLDR
NestCloud is proposed and implemented, a practical high performance nested virtualization architecture, which fully employs the hardware virtualization extensions, and the performance of NestCloud guest is close to single level guest in both CPU-intensive and memory-intensive benchmarks.
A Low Overhead and Reliable Nested Virtualization VMM for Cloud Computing
TLDR
A new VMM nOSV is presented, based on OSV VMM, a lightweight VMM and can host multiple Xen VMMs, with little runtime overhead and with verified interfaces provided by OSV, n OSV is more robust and secure.
Enabling Efficient Hypervisor-as-a-Service Clouds with Ephemeral Virtualization
  • Dan Williams, Yaohui Hu, H. Jamjoom
  • Computer Science
    Proceedings of the12th ACM SIGPLAN/SIGOPS International Conference on Virtual Execution Environments
  • 2016
TLDR
Dichotomy, a new two-layer cloud architecture in which the roles of the hypervisor are split, uses a new virtualization technique called eemeral virtualization which efficiently (and repeatedly) transfers control of a VM between the hyperplexor and featurevisor using memory mapping techniques.
Using SMT to Accelerate Nested Virtualization
TLDR
This work proposes to leverage the replicated thread execution resources in simultaneous multithreaded (SMT) cores to alleviate the overheads of VM traps in nested virtualization, and introduces a simple mechanism to colocate different VMs and hypervisors on separate hardware threads of a core.
HypFDI: Fault Domain Isolation for Hosted Hypervisor in ARM
TLDR
A system that aims to isolate, ‘deprivilege’ and constrain the hosted hypervisor inside kernel, by enforcing function access control on hypervisor, disabling writes to virtual memory control registers from hypervisor and developing a trusted switch gate is presented.
...
1
2
3
4
5
...

References

SHOWING 1-10 OF 71 REFERENCES
Pre-virtualization: Soft layering for virtual machines
TLDR
Soft layering is demonstrated: one can load a single Linux binary on a variety of hypervisors (and thus substitute virtual machine environments and their enhancements), while achieving essentially the same performance as para-virtualization with less effort.
A comparison of software and hardware techniques for x86 virtualization
TLDR
It is found that the hardware support for Virtual Machine Monitors for x86 fails to provide an unambiguous performance advantage for two primary reasons: first, it offers no support for MMU virtualization; second, it fails to co-exist with existing software techniques for MM U virtualization.
Live Migration with Pass-through Device for Linux VM
TLDR
This paper shows how to solve the network connectivity issue using virtual hot plug technology, in addition with the Linux bonding driver, and is organized as follows: The authors start from device virtualization and live migration challenges, followed by the design and implementation of the virtual hotplug based solution.
Intel virtualization technology
TLDR
Once confined to specialized, proprietary, high-end server and mainframe systems, virtualization is now becoming more broadly available and is supported in off-the-shelf systems based on Intel architecture (IA) hardware.
kvm : the Linux Virtual Machine Monitor
TLDR
The Kernel-based Virtual Machine, or kvm, is a new Linux subsystem which leverages virtualization extensions to add a virtual machine monitor (or hypervisor) capability to Linux.
High-Performance Hypervisor Architectures: Virtualization in HPC Systems
TLDR
New methods for device virtualization are presented, along with evidence that such methods can improve the I/O performance experienced by guest operating systems and applications running on HPC machines, and new directions for research in virtualization for H PCs are offered.
High performance and scalable I/O virtualization via self-virtualized devices
TLDR
A novel approach to I/O virtualization is developed, termed self-virtualized devices, which improvesI/O performance by off loading select virtualization functionality onto the device, which permits guest virtual machines to more efficiently interact with the virtualized device.
Direct Device Assignment for Untrusted Fully-Virtualized Virtual Machines
TLDR
Direct device assignment for untrusted, fully-virtualized virtual machines in the Linux/KVM environment using Intel’s VT-d IOMMU is implemented and shows that with large-enough messages direct device access throughput is statistically indistinguishable from native, albeit with CPU utilization that is slightly higher.
Virtualizing I/O Devices on VMware Workstation's Hosted Virtual Machine Monitor
TLDR
Results indicate that with optimizations, VMware Workstation’s hosted virtualization architecture can match native I/O throughput on standard PCs.
Nomad: migrating OS-bypass networks in virtual machines
TLDR
Nad, a design for migrating modern interconnects with intelligent NICs pose significantly more challenges as they have additional features including hardware level reliable services and direct I/O accesses, is presented, focusing on cluster environments running VMs.
...
1
2
3
4
5
...