一、 系统虚拟化
1. Directvisor: Virtualization for Bare-metal Cloud
Abstract Bare-metal cloud platforms allow customers to rent remote physical servers and install their
preferred operating systems and software to make the best of servers’ raw hardware capabilities. However,
this quest for bare-metal performance compromises cloud manageability. To avoid overheads, cloud
operators cannot install traditional hypervisors that provide common manageability functions such as live
migration and introspection. We aim to bridge this gap between performance, isolation, and manageability
for bare-metal clouds. Traditional hypervisors are designed to limit and emulate hardware access by virtual
machines (VM). In contrast, we propose Directvisor – a hypervisor that maximizes a VM’s ability to
directly access hardware for near-native performance, yet retains hardware control and manageability.
Directvisor goes beyond traditional direct-assigned (passthrough) I/O devices by allowing VMs to directly
control and receive hardware timer interrupts and inter-processor interrupts (IPIs) besides eliminating most
VM exits. At the same time, Directvisor supports seamless (low-downtime) live migration and introspection
for such VMs having direct hardware access.
2. Lightweight Kernel Isolation with Virtualization and VM Functions
Abstract Commodity operating systems execute core kernel subsystems in a single address space along with
hundreds of dynamically loaded extensions and device drivers. Lack of isolation within the kernel implies
that a vulnerability in any of the kernel subsystems or device drivers opens a way to mount a successful
attack on the entire kernel. Historically, isolation within the kernel remained prohibitive due to the high cost
of hardware isolation primitives. Recent CPUs, however, bring a new set of mechanisms. Extended page-
table (EPT) switching with VM functions and memory protection keys (MPKs) provide memory isolation
and invocations across boundaries of protection domains with overheads comparable to system calls.
Unfortunately, neither MPKs nor EPT switching provide architectural support for isolation of privileged
ring 0 kernel code, i.e., control of privileged instructions and well-defined entry points to securely restore
state of the system on transition between isolated domains. Our work develops a collection of techniques for
lightweight isolation of privileged kernel code. To control execution of privileged instructions, we rely on a
minimal hypervisor that transparently deprivileges the system into a non-root VT-x guest. We develop a
new isolation boundary that leverages extended page table (EPT) switching with the VMFUNC instruction.
We define a set of invariants that allows us to isolate kernel components in the face of an intricate execution
model of the kernel, e.g., provide isolation of preemptable, concurrent interrupt handlers. To minimize
overheads of virtualization, we develop support for exitless interrupt delivery across isolated domains. We
evaluate our approach by developing isolated versions of several device drivers in the Linux kernel.
3. Learn-as-you-go with Megh: Efficient Live Migration of Virtual Machines
Abstract—Cloud providers leverage live migration of virtual machines to reduce energy consumption and
allocate resources efficiently in data centers. Each migration decision depends on three questions: when to
move a virtual machine, which virtual machine to move and where to move it? Dynamic, uncertain, and
heterogeneous workloads running on virtual machines make such decisions difficult. Knowledge-based and
heuristics-based algorithms are commonly used to tackle this problem. Knowledge-based algorithms, such
as MaxWeight scheduling algorithms, are dependent on the specifics and the dynamics of the targeted Cloud
architectures and applications. Heuristics-based algorithms, such as MMT algorithms, suffer from high
variance and poor convergence because of their greedy approach. We propose an online reinforcement
剩余28页未读,继续阅读
评论0