Xen in Embedded Systems. Ray Kinsella Senior Software Engineer Embedded and Communications Group Intel Corporation

Similar documents
Intel Platform Controller Hub EG20T

A Superior Hardware Platform for Server Virtualization

ARM* to Intel Atom Microarchitecture - A Migration Study

Upgrading Intel AMT 5.0 drivers to Linux kernel v2.6.31

Intel Ethernet and Configuring Single Root I/O Virtualization (SR-IOV) on Microsoft* Windows* Server 2012 Hyper-V. Technical Brief v1.

Internal LVDS Dynamic Backlight Brightness Control

DDR2 x16 Hardware Implementation Utilizing the Intel EP80579 Integrated Processor Product Line

White Paper Amit Aneja Platform Architect Intel Corporation. Xen* Hypervisor Case Study - Designing Embedded Virtualized Intel Architecture Platforms

Intel Data Direct I/O Technology (Intel DDIO): A Primer >

Full and Para Virtualization

Intel Media SDK Library Distribution and Dispatching Process

Intel IXP42X Product Line of Network Processors and IXC1100 Control Plane Processor: Spread-Spectrum Clocking to Reduce EMI

How to Configure Intel Ethernet Converged Network Adapter-Enabled Virtual Functions on VMware* ESXi* 5.1

Processor Reorder Buffer (ROB) Timeout

How to Configure Intel X520 Ethernet Server Adapter Based Virtual Functions on Citrix* XenServer 6.0*

Intel Cloud Builder Guide: Cloud Design and Deployment on Intel Platforms

Cyber Security Framework: Intel s Implementation Tools & Approach

PHYSICAL CORES V. ENHANCED THREADING SOFTWARE: PERFORMANCE EVALUATION WHITEPAPER

Toward a practical HPC Cloud : Performance tuning of a virtualized HPC cluster

Creating Overlay Networks Using Intel Ethernet Converged Network Adapters

Intel(R) IT Director User's Guide

Leading Virtualization 2.0

PCI-SIG SR-IOV Primer. An Introduction to SR-IOV Technology Intel LAN Access Division

Intel Virtualization Technology (VT) in Converged Application Platforms

with PKI Use Case Guide

Developing secure software A practical approach

Maximize Performance and Scalability of RADIOSS* Structural Analysis Software on Intel Xeon Processor E7 v2 Family-Based Platforms

Intel Open Network Platform Release 2.1: Driving Network Transformation

Hybrid Virtualization The Next Generation of XenLinux

Intel Desktop Board D945GCPE

Contents Overview and Product Contents

Intel Desktop Board DG43RK

Intel Desktop Board DG965RY

COLO: COarse-grain LOck-stepping Virtual Machine for Non-stop Service

Intel Desktop Board DG41BI

新 一 代 軟 體 定 義 的 網 路 架 構 Software Defined Networking (SDN) and Network Function Virtualization (NFV)

Intel Desktop Board DP55WB

Intel Identity Protection Technology Enabling improved user-friendly strong authentication in VASCO's latest generation solutions

Using GStreamer for hardware accelerated video decoding on Intel Atom Processor E6xx series

Intel Core i5 processor 520E CPU Embedded Application Power Guideline Addendum January 2011

VNF & Performance: A practical approach

Development for Mobile Devices Tools from Intel, Platform of Your Choice!

Intel Identity Protection Technology (IPT)

Intel Desktop Board D945GCPE Specification Update

Intel Desktop Board DG41WV

Different NFV/SDN Solutions for Telecoms and Enterprise Cloud

Enhanced Intel SpeedStep Technology for the Intel Pentium M Processor

Intel Desktop Board DG41TY

Intel Desktop Board DG31PR

Configuring RAID for Optimal Performance

RAID and Storage Options Available on Intel Server Boards and Systems

Intel Desktop Board DP43BF

Embedded Controller Usage in Low Power Embedded Designs

DPDK Summit 2014 DPDK in a Virtual World

CT Bus Clock Fallback for Linux Operating Systems

Intel Ethernet Switch Load Balancing System Design Using Advanced Features in Intel Ethernet Switch Family

Intel Network Builders: Lanner and Intel Building the Best Network Security Platforms

Intel Desktop Board DQ43AP

Intel EP80579 Software for Security Applications on Intel QuickAssist Technology Cryptographic API Reference

Using Windows* 7/Windows Embedded Standard 7* with Platforms Based on the Intel Atom Processor Z670/Z650 and Intel SM35 Express Chipset

Intel SSD 520 Series Specification Update

2972 Linux Options and Best Practices for Scaleup Virtualization

Intel Desktop Board DQ965GF

Intel Media Server Studio - Metrics Monitor (v1.1.0) Reference Manual

Power Benefits Using Intel Quick Sync Video H.264 Codec With Sorenson Squeeze

COLO: COarse-grain LOck-stepping Virtual Machine for Non-stop Service. Eddie Dong, Tao Hong, Xiaowei Yang

Intel Desktop Board DG45FC

Cloud based Holdfast Electronic Sports Game Platform

Intel Cloud Builders Guide to Cloud Design and Deployment on Intel Platforms

Intel Desktop Board D945GCL

COSBench: A benchmark Tool for Cloud Object Storage Services. Jiangang.Duan@intel.com

White Paper David Hibler Jr Platform Solutions Engineer Intel Corporation. Considerations for designing an Embedded IA System with DDR3 ECC SO-DIMMs

Intel Virtualization and Server Technology Update

Big Data Technologies for Ultra-High-Speed Data Transfer and Processing

Intel Desktop Board DQ35JO

Cloud Computing CS

Intel Embedded Virtualization Manager

Intel Solid-State Drive Pro 2500 Series Opal* Compatibility Guide

Intel Ethernet Controller X540 Feature Software Support Summary. LAN Access Division (LAD)

Intel Desktop Board D945GCZ

Knut Omang Ifi/Oracle 19 Oct, 2015

Intel Core TM i3 Processor Series Embedded Application Power Guideline Addendum

Intel Core i Processor (3M Cache, 3.30 GHz)

An Oracle Technical White Paper November Oracle Solaris 11 Network Virtualization and Network Resource Management

Intel Remote Configuration Certificate Utility Frequently Asked Questions

Intel Trusted Platforms Overview

Intel 810 and 815 Chipset Family Dynamic Video Memory Technology

Intel Active Management Technology Embedded Host-based Configuration in Intelligent Systems

Enabling Intel Virtualization Technology Features and Benefits

Analyzing the Virtualization Deployment Advantages of Two- and Four-Socket Server Platforms

Applying Multi-core and Virtualization to Industrial and Safety-Related Applications

RAID and Storage Options Available on Intel Server Boards and Systems based on Intel 5500/5520 and 3420 PCH Chipset

Performance tuning Xen

Intel Service Assurance Administrator. Product Overview

Intel Server Board S3420GPV

Enterprise-Class Virtualization with Open Source Technologies

Achieving Real-Time Performance on a Virtualized Industrial Control Platform

Transcription:

Xen in Embedded Systems Ray Kinsella Senior Software Engineer Embedded and Communications Group Intel Corporation

Legal Notices INFORMATION IN THIS DOCUMENT IS PROVIDED IN CONNECTION WITH INTEL PRODUCTS. NO LICENSE, EXPRESS OR IMPLIED, BY ESTOPPEL OR OTHERWISE, TO ANY INTELLECTUAL PROPERTY RIGHTS IS GRANTED BY THIS DOCUMENT. EXCEPT AS PROVIDED IN INTEL'S TERMS AND CONDITIONS OF SALE FOR SUCH PRODUCTS, INTEL ASSUMES NO LIABILITY WHATSOEVER AND INTEL DISCLAIMS ANY EXPRESS OR IMPLIED WARRANTY, RELATING TO SALE AND/OR USE OF INTEL PRODUCTS INCLUDING LIABILITY OR WARRANTIES RELATING TO FITNESS FOR A PARTICULAR PURPOSE, MERCHANTABILITY, OR INFRINGEMENT OF ANY PATENT, COPYRIGHT OR OTHER INTELLECTUAL PROPERTY RIGHT. UNLESS OTHERWISE AGREED IN WRITING BY INTEL, THE INTEL PRODUCTS ARE NOT DESIGNED NOR INTENDED FOR ANY APPLICATION IN WHICH THE FAILURE OF THE INTEL PRODUCT COULD CREATE A SITUATION WHERE PERSONAL INJURY OR DEATH MAY OCCUR. Intel may make changes to specifications and product descriptions at any time, without notice. Designers must not rely on the absence or characteristics of any features or instructions marked "reserved" or "undefined." Intel reserves these for future definition and shall have no responsibility whatsoever for conflicts or incompatibilities arising from future changes to them. The information here is subject to change without notice. Do not finalize a design with this information. Intel Virtualization Technology requires a computer system with a processor, chipset, BIOS, virtual machine monitor (VMM) and applications enabled for virtualization technology. Functionality, performance or other virtualization technology benefits will vary depending on hardware and software configurations. Virtualization technology-enabled BIOS and VMM applications are currently in development. Performance results are based on certain tests measured on specific computer systems. Any difference in system hardware, software or configuration will affect actual performance. For more information go to http://www.intel.com/performance. The products described in this document may contain design defects or errors known as errata which may cause the product to deviate from published specifications. Current characterized errata are available on request. Contact your local Intel sales office or your distributor to obtain the latest specifications and before placing your product order. Copies of documents which have an order number and are referenced in this document, or other Intel literature, may be obtained by calling 1-800-548-4725, or go to: http://www.intel.com/design/literature.htm BunnyPeople, Celeron, Celeron Inside, Centrino, Centrino Inside, Core Inside, i960, Intel, the Intel logo, Intel AppUp, Intel Atom, Intel Atom Inside, Intel Core, Intel Inside, the Intel Inside logo, Intel NetBurst, Intel NetMerge, Intel NetStructure, Intel SingleDriver, Intel SpeedStep, Intel Sponsors of Tomorrow., the Intel Sponsors of Tomorrow. logo, Intel StrataFlash, Intel vpro, Intel XScale, InTru, the InTru logo, the InTru Inside logo, InTru soundmark, Itanium, Itanium Inside, MCS, MMX, Moblin, Pentium, Pentium Inside, skoool, the skoool logo, Sound Mark, The Creators Project, The Journey Inside, vpro Inside, VTune, Xeon, and Xeon Inside are trademarks of Intel Corporation in the U.S. and/or other countries. *Other names and brands may be claimed as the property of others. Copyright 2010, Intel Corporation. All rights reserved. 2

Summary & Agenda This presentation examines the integration of Xen* Virtualisation into embedded systems. It covers effective partitioning of system resources for deterministic embedded applications. Agenda Overview of Xen Virtualisation Types of hypervisor Types of guest Embedded use cases Xen in Embedded Systems Partitioning CPU Time Partitioning System Memory Partitioning System I/O Power usage 3

What is Xen? Desktop Virtualisation Kernel Virtualisation Overview of Xen Virtualisation Bare metal Hypervisor Xen Virtualisation Xen is a bare metal hypervisor Originally designed for data centre or server environments consolidation. A privileged guest Domain 0 (Dom 0) will always exist. Dom 0 owns all devices (PCI, Storage, USB, etc.) and arbitrates their usage between guests. Xen includes mechanisms for device multiplexing such as split drivers. Xen s design goal is the separation of policy and mechanism. Policy is implemented in Dom 0 Daemons (Xen Daemon). Mechanism is implemented in the Xen hypervisor layer. 4

Types of guests Overview of Xen Virtualisation Xen can support many diverse guests concurrently Para-Virtualised (PV) Guests Are aware they are virtualised. PV guest will delegate many aspects of operating system function to the hypervisor via kernel hooks aka hypercalls. Hardware-Virtual-Machine (HVM) Guests Are not aware that they are virtualised. Qemu* emulates common hardware for HVM guests and the operating system loads real world drivers. Graphics interface is exported through VNC. 5

Embedded use cases Overview of Xen Virtualisation Application integration Integrating new and legacy applications onto same hardware. Un-trusted application Integrate an un-trusted application (a 3 rd party application) onto same hardware. Xen PV Dom0 Control Plane PV DomU High Performance Application PV DomU High Performance Application Xen PV Dom0 Control Plane PV DomU High Availability Application PV DomU High Availability Application Intel Architecture Intel Architecture Resource isolation Restricting the resources assigned to each application. High availability Ensuring that an application is always available. Standby instances are always ready to run in case of failure. 6

7 Xen in Embedded Systems

Virtual CPU Architecture Partitioning CPU Time PV Guest HVM Guest VCPU-0 VCPU-1 VCPU-0 VCPU-1 Xen. VCPU-N. VCPU-N Credit Scheduler CORE-0 CORE-1 CORE-2 CORE-3 Intel Architecture Virtual CPU (VCPU) Are an abstraction layer created by Xen s scheduler. Isolates guest from the actual number of physical CPUs. Xen has a scheduler similar to an OS scheduler that arbitrates between the guests contending for CPU time based on priority. 8

Virtual CPU Performance Partitioning CPU Time 2600 2400 2200 SSL Encrypt Throughput Mb/sec 2000 1800 1600 1400 1200 1000 16 Threads 16 Threads 8 Threads Note the scale CentOS* 5.4 1 Guest 2 Guests Native Xen 4.0.0 Xen 4.0.0 SSL Encrypt is a simple CPU-intensive application. It uses the pthreads library to parallelise an encrypted workload over multiple cores. It uses the OpenSSL* libraries to encrypt pools of 64-byte buffers using AES 128-bit CBC encryption. Equivalent performance native to virtualised 9

The Credit Scheduler Partitioning CPU Time 2500 2000 SSL Encrypt Throughput Mb/sec 1500 1000 Guest B Guest A 80/20 Ideal 500 0 Default Xen 4.0.0 80/20 Xen 4.0.0 The Xen Credit scheduler Default scheduler in Xen 4.0.0 The Credit scheduler is proportional fair share scheduler. The Credit scheduler is a work-conserving scheduler. Scheduler parameters Cap : Assign a time cap in hundredths of seconds to a guest, (0 N *100), where N is the number of cores in the system. Weight: Assign a weight to each guest (1 65536); default is a weight of 256. Scheduler partitioning of core time is effective 50/50 running two guests on the same cores with equal weighting. 10

The Credit Scheduler 7 Partitioning CPU Time 6 5 SSL Encrypt STDev - MB 4 3 2 1 0 No Pinning Pinning Weighting Capping 2 PV Guests 2 PV Guests 2 PV Guests 2 PV Guests The graph above shows the standard deviation of throughput with different scheduler settings, assignment, pinning, and capping. Modest cost in determinism with scheduler partitioning 11

Virtual CPU Configuration Partitioning CPU Time Caveat Emptor Partitioning CPU Time: If possible, partition CPU resources by assigning cores to guests rather than using scheduler weighting or caps. CPU Pinning: Make the number of Virtual CPUs equal to the number of cores. Use vcpu-pin to assign a guest VCPU to a specific core. Remember: Dom 0 must service the hardware assigned to it. In all guests: Switch off unnecessary OS kernel features; i.e., use a tickless kernel Turn off unnecessary OS services e.g., CentOS* Bluetooth* manager. Remove unnecessary drivers; e.g., the USB driver. 12

Real-Time on Xen Real-Time Recommended reading: Supporting Soft Real-Time Tasks in the Xen Hypervisor; Min Lee, A.S Krishnakumar, P. Krishnan, Navjot Singh, Shalini Yajnik; Georgia Institute of Technology, and Avaya Labs Extending Virtualization to Communications and Embedded Applications; Edwin Verplanke, Don Banks; Intel Corporation, and Cisco Systems, Inc.; Intel Developer Forum (IDF) 2010 The Chinese Dragon Festival Photo Walter Baxter and licensed for reuse under a Creative Commons License. 13

Bubble Memory + NUMA Partitioning System Memory Bubble Memory Increase in cost of a page allocation usec 250 200 150 100 50 0 Page alloc The bubble memory driver can arbitrate (share) memory between guests. This is not the default behaviour on Xen. Page allocation incurs a ~16% performance penalty during memory bubbling. Mitigate by statically assigning memory to guests. This is the default behaviour on Xen. maxmem: set maximum amount of memory a domain can be allocated memory: set initial amount of memory a domain is allocated NUMA Xen is NUMA-aware Non-Uniform Memory Architecture (NUMA) Switched on in Xen 4.0.0 by default Guests are not NUMA-aware (yet!) A patchset has been submitted to Xen, to enable NUMA awareness for PV and HVM guests. DDR3 DDR3 DDR3 CORE-0 CORE-1 CORE-2 CORE-3 Socket-0 CORE-4 CORE-6 CORE-5 CORE-7 Socket-1 DDR3 DDR3 DDR3 14

NUMA Optimal Configuration 10000 9000 Guest A crosses sockets Partitioning System Memory 8000 7000 Lmbench* mem_bw MB/sec 6000 5000 4000 3000 2000 1000 0 Guest A - 16 Threads Native - 16 Threads Guest A+B - 8+8 Threads Sub-optimal Configuration Guest crosses sockets, guest is bound to cores on more than one socket Optimal Configuration Guest does not cross sockets, bind guests to cores on one socket only. Xen Numa Node 1 Guest Guest Numa Node 2 Xen NUMA Node 1 Guest CORE-0 CORE-1 CORE-2 CORE-3 Guest CORE-4 CORE-6 CORE-5 CORE-7 NUMA Node 2 Intel Architecture Intel Architecture 15

Xen Networking Software Switch Partitioning System I/O Xen shared device model Xen software switching mechanism Packets Xen PV Dom0 Backend PV Guest Frontend Xen Bus HVM Guest OS driver Qemu Packets PV Dom0 e1000 Network Bridge Netback Netback PV Guest Netfront Intel Architecture Hotspot Xen Bus Device sharing via the split driver model. The backend driver located in the Dom0 is responsible for multiplexing guest access to physical hardware. The frontend driver delivers data to the guest, implementing OS device driver interfaces. Xen networking 1. Packets are received by the Dom0 Ethernet* driver. 2. Packets then passed into the OS bridge driver, the destination Ethernet device is looked up, and the packets are forwarded to the Ethernet device driver. 3. Packets are received the Netback driver in Dom0 and pushed onto a Xenbus ring. 4. Packets are popped off the Xenbus ring by Netfront driver and passed to the guest operating system. 16

Xen Networking Hardware Switch Xen device passthrough model Partitioning System I/O SR-IOV hardware switching Packets Config Space Xen PV Dom0 Backend PV DomU OS driver Xen Bus HVM DomU OS driver Qemu VT-d (IOMMU) Packets Config Space igb pciback PV Dom0 PV DomU igbvf Intel Architecture Single Root I/O Virtualisation (SR-IOV) Built on the following technologies available Intel VT-c enabled Network Interface Cards (NIC) I/O Acceleration: Intel VT-d (IOMMU) Filtering Technology: Virtual Machine Device Queues (VMDq) - Hardware MAC Filtering Queuing Technology: Multiple RX + TX Hardware Queues Each guest has an exclusive NIC that has been virtualised in hardware (SR-IOV). Xen Passthrough PCI configuration space is still owned by Dom0, guest PCI configuration read and writes are trapped and fixed by Xen PCI passthrough SW Xen Bus Software Switch VMDq SR-IOV RX TX RX TX RX: Receive Queue TX: Transmission Queue HW: Hardware Queue SW: Software Queue SW HW SW HW HW MAC Filter RX IOMMU TX MAC Filter 17

Hardware vs. Software Packet Switching 100 Partitioning System I/O % Line Rate (10 Gb) 90 80 70 60 50 40 30 20 10 Xen Bridge Xen + SR-IOV CentOS 5.4 + SRIOV 0 64 128 256 512 1024 1280 1518 Packet size in bytes 18 35x performance increase on small packet sizes Hardware 2 x Intel Xeon Processor E5645 (12M Cache, 2.40 GHz, 5.86 GT/s Intel QuickPath Interconnect) 80W Thermal Design Power (TDP) Intel 82599 10Gb Ethernet Controller with SR-IOV capabilities Software Measured with Xen 4.0.0 with CentOS 5.4 Guests 1 Socket/6 Cores used to route traffic

Power Usage 250 Power usage Each guest is bound to the cores on a separate socket 200 150 Watts 100 50 0 Idle Idle (Dom0 only) 2 Idle guests (+ Dom0) 1 socket active 1 active guest (+Dom0 ) 2 sockets active 2 active guests (+ Dom0) CentOS 5.4 Xen 4.0.0 + CentOS 5.4 Xen 4.0.0 + CentOS 5.4 CentOS 5.4 Xen 4.0.0 + CentOS 5.4 CentOS 5.4 Xen 4.0.0 + CentOS 5.4 Equivalent performance native to virtualised Hardware 2 x Intel Xeon Processor L5530 (8M Cache, 2.40 GHz, 5.86 GT/s Intel QPI) 60W TDP Intel Server Board S5520HC Enermax* EVR1050EWT* Power Supply Unit 88.61% efficiency Software Measured with Xen 4.0.0 with CentOS 5.4 Guests and CentOS 5.4 Native 19

Conclusions Equivalent performance native to virtualised. Potential benefits of virtualisation for embedded system designers: Greater system security. Greater system determinism. Improved resource isolation. Controlled 3 rd party platform access. 20

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information