SlideShare a Scribd company logo

Optimizing the Design and Implementation of KVM/ARM - SFO17-403

Linaro, profile picture
Linaro

The document discusses the optimization of the KVM/ARM virtualization architecture, focusing on the Virtualization Host Extensions (VHE) and their benefits. It highlights various performance improvements achieved, including a significant reduction in hypercall overhead and cycle counts compared to non-VHE and x86 systems. The conclusion emphasizes the advantages of the redesigned KVM/ARM, including faster operations and reduced workload overheads.

Technology
1 of 34
Downloaded 42 times
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
connect.linaro.org SFO17-403: Optimizing the Design and Implementation of KVM/ARM Christoffer Dall
ENGINEERS AND DEVICES WORKING TOGETHER –Popek and Golberg [Formal requirements for virtualizable third generation architectures ’74] ““Efficient, isolated duplicate
 of the real machine””
ENGINEERS AND DEVICES WORKING TOGETHER Hardware OS Kernel App AppApp Hardware Hypervisor VM Kernel App App VM Kernel App App Native Virtual Machines Virtualization
ENGINEERS AND DEVICES WORKING TOGETHER Hypervisor Design Hardware Hypervisor VM Kernel App App VM Kernel App App Type 1 (Standalone)
ENGINEERS AND DEVICES WORKING TOGETHER Hypervisor Design Hardware Hypervisor VM Kernel App App VM Kernel App App Type 1 (Standalone) Hardware OS Kernel VM Kernel App App VM Kernel App App Type 2 (Hosted) Hypervisor App
ENGINEERS AND DEVICES WORKING TOGETHER Hypervisor Design Hardware Xen Dom0 Linux App App DomU Linux App App Hardware Linux VM Linux App App VM Linux App App KVM App
ENGINEERS AND DEVICES WORKING TOGETHER ARM Virtualization Extensions Kernel UserEL0 EL1 HypervisorEL2
ENGINEERS AND DEVICES WORKING TOGETHER ARM VE and Hypervisors Xen Dom0 Linux App App DomU Linux App AppEL0 EL1 EL2 ?
ENGINEERS AND DEVICES WORKING TOGETHER KVM/ARM Host Linux AppApp VM Kernel AppApp KVM KVM lowvisor EL0 EL1 EL2 1. Hypercall 2. Return3. Hypercall 4. Return switch state
ENGINEERS AND DEVICES WORKING TOGETHER KVM/ARM Host Linux AppApp VM Kernel AppApp KVM EL0 EL1 EL2 1. Hypercall 2. Return
ENGINEERS AND DEVICES WORKING TOGETHER ARMv8.1 VHE • Virtualization Host Extensions • Supports running unmodified OSes in EL2 without using EL1 Linux EL0 EL1 EL2 AppApp
ENGINEERS AND DEVICES WORKING TOGETHER VHE: Backwards Compatible • HCR_EL2.E2H complete enables and disables VHE • When disabled, completely backwards compatible with ARMv8.0 • Example: Xen disables VHE
ENGINEERS AND DEVICES WORKING TOGETHER VHE: Expands Functionality of EL2 • Expanded EL2 functionality • New registers: TTBR1_EL2, CONTEXTIDR_EL2 • New virtual EL2 timer
ENGINEERS AND DEVICES WORKING TOGETHER VHE: Support Userspace in EL0 • TGE: Trap General Exceptions • Routes all exceptions to EL2 • VHE no longer disables EL0 stage 1 MMU Linux EL0 EL1 EL2 AppApp Exceptions
ENGINEERS AND DEVICES WORKING TOGETHER VHE: EL2&0 Translation Regime • Same page table format as EL1 • Used in EL0 with TGE bit set
ENGINEERS AND DEVICES WORKING TOGETHER VHE: System Register Redirection TCR_EL1 mrs x0, TCR_EL1 HCR_EL2.E2H == 0 TCR_EL2
ENGINEERS AND DEVICES WORKING TOGETHER VHE: System Register Redirection TCR_EL1 mrs x0, TCR_EL1 TCR_EL2 HCR_EL2.E2H == 1
ENGINEERS AND DEVICES WORKING TOGETHER VHE Register Redirection TCR_EL1mrs x0, TCR_EL12
ENGINEERS AND DEVICES WORKING TOGETHER More VHE Register Redirection • Some registers change bit position to be similar between EL1 and EL2 • Example: CNTHTCL_EL2 changes layout to match CNTKCTL_EL1 with extra bits
ENGINEERS AND DEVICES WORKING TOGETHER Legacy KVM/ARM without VHE HypervisorLinux EL2 EL1 KVM Lowvisor Trap Run VM
ENGINEERS AND DEVICES WORKING TOGETHER KVM/ARM with VHE HypervisorLinux EL2 KVM Lowvisor Function
 Call Run VM
ENGINEERS AND DEVICES WORKING TOGETHER Experimental Setup • AMD Seattle B0 • 64-bit ARMv8-A • 2.0 GHz AMD A1100 CPU • 8-way SMP • 16 GB RAM • 10 GB Ethernet (passthrough) *Measurements obtained using Linux in EL2. See BKK16 talk.
ENGINEERS AND DEVICES WORKING TOGETHER VHE Performance at First Glance CPU Clock Cycles non-VHE VHE* Hypercall 3.181 3.045 *Measurements obtained using Linux in EL2. See BKK16 talk.
ENGINEERS AND DEVICES WORKING TOGETHER KVM/ARM Optimization #1 VM Kernel AppAppEL0 EL1 EL2 Host AppApp Linux KVM • Avoid saving/restoring EL1 register state
ENGINEERS AND DEVICES WORKING TOGETHER KVM/ARM Optimization #2 VM Kernel AppAppEL0 EL1 EL2 Host AppApp Linux KVM • Legacy KVM/ARM design enabled/disabled virtualization features on every transition • Virtual/Physical interrupts • Stage 2 memory translation KVM Lowvisor Disable traps Enable traps
ENGINEERS AND DEVICES WORKING TOGETHER KVM/ARM Optimization #2 VM Kernel AppAppEL0 EL1 EL2 Host AppApp Linux KVM • Leave virtualization features enabled • Host EL2 never uses stage 2 translations and always has full hardware access.
ENGINEERS AND DEVICES WORKING TOGETHER KVM/ARM Optimization #3 • Don’t context switch the timer on every exit from the VM • Completely reworks the timer code • 20 patches on list
ENGINEERS AND DEVICES WORKING TOGETHER KVM/ARM Optimization #4 • Reduce run loop work • Do work in vcpu_load and vcpu_put instead • Called when entering/exiting run-loop • Called when preempted/scheduled • Requires VHE vcpu_load vcpu_put vcpu run loop
ENGINEERS AND DEVICES WORKING TOGETHER KVM/ARM Optimization #5 • Rewrite the world switch code kvm_arch_vcpu_ioctl_run { ... while (1) { ... if (has_vhe() /* static key */ ret = kvm_vcpu_vhe_run(vcpu); else ret = kvm_call_hyp(__kvm_vcpu_run, vcpu); ... } ... }
ENGINEERS AND DEVICES WORKING TOGETHER Microbenchmark Results CPU Clock Cycles non-VHE VHE OPT * x86 Hypercall 3.181 752 1.437 I/O Kernel 3.992 1.604 2.565 I/O User 6.665 7.630 6.732 Virtual IPI 14.155 2.526 3.102 *Measurements obtained using Linux in EL2. See BKK16 talk.
Application Workloads Application Description Kernbench Kernel compile Hackbench Scheduler stress Netperf Network performance Apache Web server stress Memcached Key-Value store
ENGINEERS AND DEVICES WORKING TOGETHER Application Workloads 0.00 0.50 1.00 1.50 2.00 Kernbench Hackbench TCP_STREAM TCP_MAERTS TCP_RR Apache Memcached non-VHE VHE OPT* *Measurements obtained using Linux in EL2. See BKK16 talk. Normalized overhead (lower is better)
ENGINEERS AND DEVICES WORKING TOGETHER Conclusions • Optimize and redesign KVM/ARM for VHE • Reduce hypercall overhead by more than 75% • Better cycle counts than x86 for key hypervisor operations • Network benchmark overhead reduced by 50% • Key-value store workload overhead reduced by more than 80%
ENGINEERS AND DEVICES WORKING TOGETHER Upstream Status • Timer patches on list • Core optimization patches coming soon

More Related Content

PDF
Secure Boot on ARM systems – Building a complete Chain of Trust upon existing...
Linaro
 
PDF
LMG Lightning Talks - SFO17-205
Linaro
 
PPTX
U-boot and Android Verified Boot 2.0
GlobalLogic Ukraine
 
PPTX
Demystifying Security Root of Trust Approaches for IoT/Embedded - SFO17-304
Linaro
 
PDF
Mirko Damiani - An Embedded soft real time distributed system in Go
linuxlab_conf
 
PDF
HKG15-400: Next steps in KVM enablement on ARM
Linaro
 
PDF
SFO15-407: Performance Overhead of ARM Virtualization
Linaro
 
PDF
Claudio Scordino - Handling mixed criticality on embedded multi-core systems
linuxlab_conf
 
Secure Boot on ARM systems – Building a complete Chain of Trust upon existing...
Linaro
 
LMG Lightning Talks - SFO17-205
Linaro
 
U-boot and Android Verified Boot 2.0
GlobalLogic Ukraine
 
Demystifying Security Root of Trust Approaches for IoT/Embedded - SFO17-304
Linaro
 
Mirko Damiani - An Embedded soft real time distributed system in Go
linuxlab_conf
 
HKG15-400: Next steps in KVM enablement on ARM
Linaro
 
SFO15-407: Performance Overhead of ARM Virtualization
Linaro
 
Claudio Scordino - Handling mixed criticality on embedded multi-core systems
linuxlab_conf
 

What's hot (20)

PDF
Linux Kernel Platform Development: Challenges and Insights
GlobalLogic Ukraine
 
PDF
LCU14 500 ARM Trusted Firmware
Linaro
 
PDF
XenSummit NA 2012: Xen on ARM Cortex A15
The Linux Foundation
 
PDF
ARM Architecture and Meltdown/Spectre
GlobalLogic Ukraine
 
PDF
Sfo17 109 containerized vn fs with data plane acceleration on arm platform
Linaro
 
PDF
SFO15-200: Linux kernel generic TEE driver
Linaro
 
PDF
Kernel Recipes 2015: Greybus
Anne Nicolas
 
PDF
MOVED: RDK/WPE Port on DB410C - SFO17-206
Linaro
 
PDF
LCU14 302- How to port OP-TEE to another platform
Linaro
 
PPTX
QEMU and Raspberry Pi. Instant Embedded Development
GlobalLogic Ukraine
 
PDF
BKK16-504 Running Linux in EL2 Virtualization
Linaro
 
PDF
Andrea Righi - Spying on the Linux kernel for fun and profit
linuxlab_conf
 
PDF
BKK16-502 Suspend to Idle
Linaro
 
PDF
BUD17-416: Benchmark and profiling in OP-TEE
Linaro
 
PDF
LAS16-111: Easing Access to ARM TrustZone – OP-TEE and Raspberry Pi 3
Linaro
 
PDF
Lcu14 107- op-tee on ar mv8
Linaro
 
PDF
BKK16-309A Open Platform support in UEFI
Linaro
 
PDF
LXC, Docker, and the future of software delivery | LinuxCon 2013
dotCloud
 
PDF
Linux firmware for iRMC controller on Fujitsu Primergy servers
Vladimir Shakhov
 
PDF
Project ACRN USB mediator introduction
Project ACRN
 
Linux Kernel Platform Development: Challenges and Insights
GlobalLogic Ukraine
 
LCU14 500 ARM Trusted Firmware
Linaro
 
XenSummit NA 2012: Xen on ARM Cortex A15
The Linux Foundation
 
ARM Architecture and Meltdown/Spectre
GlobalLogic Ukraine
 
Sfo17 109 containerized vn fs with data plane acceleration on arm platform
Linaro
 
SFO15-200: Linux kernel generic TEE driver
Linaro
 
Kernel Recipes 2015: Greybus
Anne Nicolas
 
MOVED: RDK/WPE Port on DB410C - SFO17-206
Linaro
 
LCU14 302- How to port OP-TEE to another platform
Linaro
 
QEMU and Raspberry Pi. Instant Embedded Development
GlobalLogic Ukraine
 
BKK16-504 Running Linux in EL2 Virtualization
Linaro
 
Andrea Righi - Spying on the Linux kernel for fun and profit
linuxlab_conf
 
BKK16-502 Suspend to Idle
Linaro
 
BUD17-416: Benchmark and profiling in OP-TEE
Linaro
 
LAS16-111: Easing Access to ARM TrustZone – OP-TEE and Raspberry Pi 3
Linaro
 
Lcu14 107- op-tee on ar mv8
Linaro
 
BKK16-309A Open Platform support in UEFI
Linaro
 
LXC, Docker, and the future of software delivery | LinuxCon 2013
dotCloud
 
Linux firmware for iRMC controller on Fujitsu Primergy servers
Vladimir Shakhov
 
Project ACRN USB mediator introduction
Project ACRN
 
Ad

Similar to Optimizing the Design and Implementation of KVM/ARM - SFO17-403 (20)

PDF
MOVED: Optimizing the Design and Implementation of KVM/ARM - SFO17-403
Linaro
 
PDF
KVM/ARM Nested Virtualization Support and Performance - SFO17-410
Linaro
 
PDF
Rootlinux17: Hypervisors on ARM - Overview and Design Choices by Julien Grall...
The Linux Foundation
 
PPTX
Xen Project Update LinuxCon Brazil
The Linux Foundation
 
PDF
64-bit ARM Unikernels on uKVM
LinuxCon ContainerCon CloudOpen China
 
PDF
OpenVZ Linux Containers
Kirill Kolyshkin
 
PDF
Rmll Virtualization As Is Tool 20090707 V1.0
guest72e8c1
 
PDF
RMLL / LSM 2009
Franck_Villaume
 
PDF
You Call that Micro, Mr. Docker? How OSv and Unikernels Help Micro-services S...
rhatr
 
PDF
LCA13: Xen on ARM
Linaro
 
PPTX
Hyper V And Scvmm Best Practis
Blauge
 
PDF
ARM Architecture-based System Virtualization: Xen ARM open source software pr...
The Linux Foundation
 
PDF
Exploiting Linux Control Groups for Effective Run-time Resource Management
Patrick Bellasi
 
PPTX
zLinux
Abdul Jaleel Kavungal
 
PDF
CIF16: Building the Superfluid Cloud with Unikernels (Simon Kuenzer, NEC Europe)
The Linux Foundation
 
PDF
Linaro connect : Introduction to Xen on ARM
The Linux Foundation
 
PDF
Experiences porting KVM to SmartOS
bcantrill
 
PDF
Joyent's Bryan Cantrill: Experiences Porting KVM to SmartOS at KVM Forum, Aug...
Peter Tripp
 
PDF
i-just-want-to-use-one-giant-vm.pdf
Liang Yan
 
PDF
Technical update KVM and Red Hat Enterprise Virtualization (RHEV) by syedmshaaf
Syed Shaaf
 
MOVED: Optimizing the Design and Implementation of KVM/ARM - SFO17-403
Linaro
 
KVM/ARM Nested Virtualization Support and Performance - SFO17-410
Linaro
 
Rootlinux17: Hypervisors on ARM - Overview and Design Choices by Julien Grall...
The Linux Foundation
 
Xen Project Update LinuxCon Brazil
The Linux Foundation
 
64-bit ARM Unikernels on uKVM
LinuxCon ContainerCon CloudOpen China
 
OpenVZ Linux Containers
Kirill Kolyshkin
 
Rmll Virtualization As Is Tool 20090707 V1.0
guest72e8c1
 
RMLL / LSM 2009
Franck_Villaume
 
You Call that Micro, Mr. Docker? How OSv and Unikernels Help Micro-services S...
rhatr
 
LCA13: Xen on ARM
Linaro
 
Hyper V And Scvmm Best Practis
Blauge
 
ARM Architecture-based System Virtualization: Xen ARM open source software pr...
The Linux Foundation
 
Exploiting Linux Control Groups for Effective Run-time Resource Management
Patrick Bellasi
 
zLinux
Abdul Jaleel Kavungal
 
CIF16: Building the Superfluid Cloud with Unikernels (Simon Kuenzer, NEC Europe)
The Linux Foundation
 
Linaro connect : Introduction to Xen on ARM
The Linux Foundation
 
Experiences porting KVM to SmartOS
bcantrill
 
Joyent's Bryan Cantrill: Experiences Porting KVM to SmartOS at KVM Forum, Aug...
Peter Tripp
 
i-just-want-to-use-one-giant-vm.pdf
Liang Yan
 
Technical update KVM and Red Hat Enterprise Virtualization (RHEV) by syedmshaaf
Syed Shaaf
 
Ad

More from Linaro (20)

PDF
Deep Learning Neural Network Acceleration at the Edge - Andrea Gallo
Linaro
 
PDF
Arm Architecture HPC Workshop Santa Clara 2018 - Kanta Vekaria
Linaro
 
PDF
Huawei’s requirements for the ARM based HPC solution readiness - Joshua Mora
Linaro
 
PDF
Bud17 113: distribution ci using qemu and open qa
Linaro
 
PDF
OpenHPC Automation with Ansible - Renato Golin - Linaro Arm HPC Workshop 2018
Linaro
 
PDF
HPC network stack on ARM - Linaro HPC Workshop 2018
Linaro
 
PDF
It just keeps getting better - SUSE enablement for Arm - Linaro HPC Workshop ...
Linaro
 
PDF
Intelligent Interconnect Architecture to Enable Next Generation HPC - Linaro ...
Linaro
 
PDF
Yutaka Ishikawa - Post-K and Arm HPC Ecosystem - Linaro Arm HPC Workshop Sant...
Linaro
 
PDF
Andrew J Younge - Vanguard Astra - Petascale Arm Platform for U.S. DOE/ASC Su...
Linaro
 
PDF
HKG18-501 - EAS on Common Kernel 4.14 and getting (much) closer to mainline
Linaro
 
PDF
HKG18-100K1 - George Grey: Opening Keynote
Linaro
 
PDF
HKG18-318 - OpenAMP Workshop
Linaro
 
PDF
HKG18-501 - EAS on Common Kernel 4.14 and getting (much) closer to mainline
Linaro
 
PDF
HKG18-315 - Why the ecosystem is a wonderful thing, warts and all
Linaro
 
PDF
HKG18- 115 - Partitioning ARM Systems with the Jailhouse Hypervisor
Linaro
 
PDF
HKG18-TR08 - Upstreaming SVE in QEMU
Linaro
 
PDF
HKG18-113- Secure Data Path work with i.MX8M
Linaro
 
PPTX
HKG18-120 - Devicetree Schema Documentation and Validation
Linaro
 
PPTX
HKG18-223 - Trusted FirmwareM: Trusted boot
Linaro
 
Deep Learning Neural Network Acceleration at the Edge - Andrea Gallo
Linaro
 
Arm Architecture HPC Workshop Santa Clara 2018 - Kanta Vekaria
Linaro
 
Huawei’s requirements for the ARM based HPC solution readiness - Joshua Mora
Linaro
 
Bud17 113: distribution ci using qemu and open qa
Linaro
 
OpenHPC Automation with Ansible - Renato Golin - Linaro Arm HPC Workshop 2018
Linaro
 
HPC network stack on ARM - Linaro HPC Workshop 2018
Linaro
 
It just keeps getting better - SUSE enablement for Arm - Linaro HPC Workshop ...
Linaro
 
Intelligent Interconnect Architecture to Enable Next Generation HPC - Linaro ...
Linaro
 
Yutaka Ishikawa - Post-K and Arm HPC Ecosystem - Linaro Arm HPC Workshop Sant...
Linaro
 
Andrew J Younge - Vanguard Astra - Petascale Arm Platform for U.S. DOE/ASC Su...
Linaro
 
HKG18-501 - EAS on Common Kernel 4.14 and getting (much) closer to mainline
Linaro
 
HKG18-100K1 - George Grey: Opening Keynote
Linaro
 
HKG18-318 - OpenAMP Workshop
Linaro
 
HKG18-501 - EAS on Common Kernel 4.14 and getting (much) closer to mainline
Linaro
 
HKG18-315 - Why the ecosystem is a wonderful thing, warts and all
Linaro
 
HKG18- 115 - Partitioning ARM Systems with the Jailhouse Hypervisor
Linaro
 
HKG18-TR08 - Upstreaming SVE in QEMU
Linaro
 
HKG18-113- Secure Data Path work with i.MX8M
Linaro
 
HKG18-120 - Devicetree Schema Documentation and Validation
Linaro
 
HKG18-223 - Trusted FirmwareM: Trusted boot
Linaro
 

Recently uploaded (20)

PDF
Per capita expenditure prediction using model stacking based on satellite ima...
IAESIJAI
 
PDF
Unlocking AI with Model Context Protocol (MCP)
Brian McKeiver
 
PPTX
Understanding_Digital_Forensics_Presentation.pptx
ImranKhan423233
 
PDF
Optimiser vos workloads AI/ML sur Amazon EC2 et AWS Graviton
Julien SIMON
 
PPT
Teaching material agriculture food technology
LiaRayya
 
PDF
NewMind AI Monthly Chronicles - July 2025
NewMind AI
 
PPTX
Effective Security Operations Center (SOC) A Modern, Strategic, and Threat-In...
ReZa AdineH
 
PPTX
PA Analog/Digital System: The Backbone of Modern Surveillance and Communication
AVTRON Technologies LLC
 
PDF
GDG Cloud Iasi [PUBLIC] Florian Blaga - Unveiling the Evolution of Cybersecur...
athlonica
 
PDF
7 ChatGPT Prompts to Help You Define Your Ideal Customer Profile.pdf
SOFTTECHHUB
 
PPTX
Big Data Technologies - Introduction.pptx
kuthubussaman1
 
PDF
Bridging biosciences and deep learning for revolutionary discoveries: a compr...
IAESIJAI
 
PDF
[발표본] 너의 과제는 클라우드에 있어_KTDS_김동현_20250524.pdf
ssuserf8b8bd1
 
PDF
Machine learning based COVID-19 study performance prediction
IAESIJAI
 
PPT
“AI and Expert System Decision Support & Business Intelligence Systems”
ZubinRadhakrishnan
 
PPTX
VMware vSphere Foundation How to Sell Presentation-Ver1.4-2-14-2024.pptx
blackmambaettijean
 
PDF
Peak of Data & AI Encore- AI for Metadata and Smarter Workflows
Safe Software
 
PDF
Review of recent advances in non-invasive hemoglobin estimation
IAESIJAI
 
PPTX
breach-and-attack-simulation-cybersecurity-india-chennai-defenderrabbit-2025....
defencerabbit Team
 
PDF
Advanced methodologies resolving dimensionality complications for autism neur...
IAESIJAI
 
Per capita expenditure prediction using model stacking based on satellite ima...
IAESIJAI
 
Unlocking AI with Model Context Protocol (MCP)
Brian McKeiver
 
Understanding_Digital_Forensics_Presentation.pptx
ImranKhan423233
 
Optimiser vos workloads AI/ML sur Amazon EC2 et AWS Graviton
Julien SIMON
 
Teaching material agriculture food technology
LiaRayya
 
NewMind AI Monthly Chronicles - July 2025
NewMind AI
 
Effective Security Operations Center (SOC) A Modern, Strategic, and Threat-In...
ReZa AdineH
 
PA Analog/Digital System: The Backbone of Modern Surveillance and Communication
AVTRON Technologies LLC
 
GDG Cloud Iasi [PUBLIC] Florian Blaga - Unveiling the Evolution of Cybersecur...
athlonica
 
7 ChatGPT Prompts to Help You Define Your Ideal Customer Profile.pdf
SOFTTECHHUB
 
Big Data Technologies - Introduction.pptx
kuthubussaman1
 
Bridging biosciences and deep learning for revolutionary discoveries: a compr...
IAESIJAI
 
[발표본] 너의 과제는 클라우드에 있어_KTDS_김동현_20250524.pdf
ssuserf8b8bd1
 
Machine learning based COVID-19 study performance prediction
IAESIJAI
 
“AI and Expert System Decision Support & Business Intelligence Systems”
ZubinRadhakrishnan
 
VMware vSphere Foundation How to Sell Presentation-Ver1.4-2-14-2024.pptx
blackmambaettijean
 
Peak of Data & AI Encore- AI for Metadata and Smarter Workflows
Safe Software
 
Review of recent advances in non-invasive hemoglobin estimation
IAESIJAI
 
breach-and-attack-simulation-cybersecurity-india-chennai-defenderrabbit-2025....
defencerabbit Team
 
Advanced methodologies resolving dimensionality complications for autism neur...
IAESIJAI
 

Optimizing the Design and Implementation of KVM/ARM - SFO17-403

  • 1. connect.linaro.org SFO17-403: Optimizing the Design and Implementation of KVM/ARM Christoffer Dall
  • 2. ENGINEERS AND DEVICES WORKING TOGETHER –Popek and Golberg [Formal requirements for virtualizable third generation architectures ’74] ““Efficient, isolated duplicate
 of the real machine””
  • 3. ENGINEERS AND DEVICES WORKING TOGETHER Hardware OS Kernel App AppApp Hardware Hypervisor VM Kernel App App VM Kernel App App Native Virtual Machines Virtualization
  • 4. ENGINEERS AND DEVICES WORKING TOGETHER Hypervisor Design Hardware Hypervisor VM Kernel App App VM Kernel App App Type 1 (Standalone)
  • 5. ENGINEERS AND DEVICES WORKING TOGETHER Hypervisor Design Hardware Hypervisor VM Kernel App App VM Kernel App App Type 1 (Standalone) Hardware OS Kernel VM Kernel App App VM Kernel App App Type 2 (Hosted) Hypervisor App
  • 6. ENGINEERS AND DEVICES WORKING TOGETHER Hypervisor Design Hardware Xen Dom0 Linux App App DomU Linux App App Hardware Linux VM Linux App App VM Linux App App KVM App
  • 7. ENGINEERS AND DEVICES WORKING TOGETHER ARM Virtualization Extensions Kernel UserEL0 EL1 HypervisorEL2
  • 8. ENGINEERS AND DEVICES WORKING TOGETHER ARM VE and Hypervisors Xen Dom0 Linux App App DomU Linux App AppEL0 EL1 EL2 ?
  • 9. ENGINEERS AND DEVICES WORKING TOGETHER KVM/ARM Host Linux AppApp VM Kernel AppApp KVM KVM lowvisor EL0 EL1 EL2 1. Hypercall 2. Return3. Hypercall 4. Return switch state
  • 10. ENGINEERS AND DEVICES WORKING TOGETHER KVM/ARM Host Linux AppApp VM Kernel AppApp KVM EL0 EL1 EL2 1. Hypercall 2. Return
  • 11. ENGINEERS AND DEVICES WORKING TOGETHER ARMv8.1 VHE • Virtualization Host Extensions • Supports running unmodified OSes in EL2 without using EL1 Linux EL0 EL1 EL2 AppApp
  • 12. ENGINEERS AND DEVICES WORKING TOGETHER VHE: Backwards Compatible • HCR_EL2.E2H complete enables and disables VHE • When disabled, completely backwards compatible with ARMv8.0 • Example: Xen disables VHE
  • 13. ENGINEERS AND DEVICES WORKING TOGETHER VHE: Expands Functionality of EL2 • Expanded EL2 functionality • New registers: TTBR1_EL2, CONTEXTIDR_EL2 • New virtual EL2 timer
  • 14. ENGINEERS AND DEVICES WORKING TOGETHER VHE: Support Userspace in EL0 • TGE: Trap General Exceptions • Routes all exceptions to EL2 • VHE no longer disables EL0 stage 1 MMU Linux EL0 EL1 EL2 AppApp Exceptions
  • 15. ENGINEERS AND DEVICES WORKING TOGETHER VHE: EL2&0 Translation Regime • Same page table format as EL1 • Used in EL0 with TGE bit set
  • 16. ENGINEERS AND DEVICES WORKING TOGETHER VHE: System Register Redirection TCR_EL1 mrs x0, TCR_EL1 HCR_EL2.E2H == 0 TCR_EL2
  • 17. ENGINEERS AND DEVICES WORKING TOGETHER VHE: System Register Redirection TCR_EL1 mrs x0, TCR_EL1 TCR_EL2 HCR_EL2.E2H == 1
  • 18. ENGINEERS AND DEVICES WORKING TOGETHER VHE Register Redirection TCR_EL1mrs x0, TCR_EL12
  • 19. ENGINEERS AND DEVICES WORKING TOGETHER More VHE Register Redirection • Some registers change bit position to be similar between EL1 and EL2 • Example: CNTHTCL_EL2 changes layout to match CNTKCTL_EL1 with extra bits
  • 20. ENGINEERS AND DEVICES WORKING TOGETHER Legacy KVM/ARM without VHE HypervisorLinux EL2 EL1 KVM Lowvisor Trap Run VM
  • 21. ENGINEERS AND DEVICES WORKING TOGETHER KVM/ARM with VHE HypervisorLinux EL2 KVM Lowvisor Function
 Call Run VM
  • 22. ENGINEERS AND DEVICES WORKING TOGETHER Experimental Setup • AMD Seattle B0 • 64-bit ARMv8-A • 2.0 GHz AMD A1100 CPU • 8-way SMP • 16 GB RAM • 10 GB Ethernet (passthrough) *Measurements obtained using Linux in EL2. See BKK16 talk.
  • 23. ENGINEERS AND DEVICES WORKING TOGETHER VHE Performance at First Glance CPU Clock Cycles non-VHE VHE* Hypercall 3.181 3.045 *Measurements obtained using Linux in EL2. See BKK16 talk.
  • 24. ENGINEERS AND DEVICES WORKING TOGETHER KVM/ARM Optimization #1 VM Kernel AppAppEL0 EL1 EL2 Host AppApp Linux KVM • Avoid saving/restoring EL1 register state
  • 25. ENGINEERS AND DEVICES WORKING TOGETHER KVM/ARM Optimization #2 VM Kernel AppAppEL0 EL1 EL2 Host AppApp Linux KVM • Legacy KVM/ARM design enabled/disabled virtualization features on every transition • Virtual/Physical interrupts • Stage 2 memory translation KVM Lowvisor Disable traps Enable traps
  • 26. ENGINEERS AND DEVICES WORKING TOGETHER KVM/ARM Optimization #2 VM Kernel AppAppEL0 EL1 EL2 Host AppApp Linux KVM • Leave virtualization features enabled • Host EL2 never uses stage 2 translations and always has full hardware access.
  • 27. ENGINEERS AND DEVICES WORKING TOGETHER KVM/ARM Optimization #3 • Don’t context switch the timer on every exit from the VM • Completely reworks the timer code • 20 patches on list
  • 28. ENGINEERS AND DEVICES WORKING TOGETHER KVM/ARM Optimization #4 • Reduce run loop work • Do work in vcpu_load and vcpu_put instead • Called when entering/exiting run-loop • Called when preempted/scheduled • Requires VHE vcpu_load vcpu_put vcpu run loop
  • 29. ENGINEERS AND DEVICES WORKING TOGETHER KVM/ARM Optimization #5 • Rewrite the world switch code kvm_arch_vcpu_ioctl_run { ... while (1) { ... if (has_vhe() /* static key */ ret = kvm_vcpu_vhe_run(vcpu); else ret = kvm_call_hyp(__kvm_vcpu_run, vcpu); ... } ... }
  • 30. ENGINEERS AND DEVICES WORKING TOGETHER Microbenchmark Results CPU Clock Cycles non-VHE VHE OPT * x86 Hypercall 3.181 752 1.437 I/O Kernel 3.992 1.604 2.565 I/O User 6.665 7.630 6.732 Virtual IPI 14.155 2.526 3.102 *Measurements obtained using Linux in EL2. See BKK16 talk.
  • 31. Application Workloads Application Description Kernbench Kernel compile Hackbench Scheduler stress Netperf Network performance Apache Web server stress Memcached Key-Value store
  • 32. ENGINEERS AND DEVICES WORKING TOGETHER Application Workloads 0.00 0.50 1.00 1.50 2.00 Kernbench Hackbench TCP_STREAM TCP_MAERTS TCP_RR Apache Memcached non-VHE VHE OPT* *Measurements obtained using Linux in EL2. See BKK16 talk. Normalized overhead (lower is better)
  • 33. ENGINEERS AND DEVICES WORKING TOGETHER Conclusions • Optimize and redesign KVM/ARM for VHE • Reduce hypercall overhead by more than 75% • Better cycle counts than x86 for key hypervisor operations • Network benchmark overhead reduced by 50% • Key-value store workload overhead reduced by more than 80%
  • 34. ENGINEERS AND DEVICES WORKING TOGETHER Upstream Status • Timer patches on list • Core optimization patches coming soon