Windows system >> Linux system Tutorial >> Linux Tutorial

KVM Fundamentals and Architecture - Concepts and Terminology

  
 

l KVM: Kernel-based Virtual Machine, kernel-based virtual machine

l VMM: Virtual Machine Monitor, virtual machine monitor, in the KVM virtualization environment, the KVM kernel.

l VM: Virtual Machine, virtual machine, that is, Guest machine.

l Full Virtualization: Guest OS can be run without any changes. There are two implementations: software-assisted implementation and hardware-assisted implementation.

ü Software-assisted implementation of full virtualization: generally using priority compression (Ring Compression) and binary translation (Binary Translation). Since some privileged instructions must run on the privilege level Ring0, such as LGDT, usually the OS kernel runs Ring0, so in the virtualized environment, VMM has no Ring available. The general principle of priority compression is to make the VMM run on Ring0, the Guest OS kernel to run on Ring1, and the Guest OS user to run on Ring3. Priority compression handles most of the privileged instructions correctly, but due to virtualization vulnerabilities in the x86 architecture (some sensitive instructions cannot be captured), binary translation methods are used to handle these virtualization vulnerabilities: VMM scans and modifies the guest binary code, Sensitive instructions that cannot be captured are converted to instructions that support virtualization.

ü Full virtualization of hardware-assisted implementation: relying on hardware virtualization features (such as Intel VT-x), the basic idea is to add enough virtualization capabilities to the hardware architecture to enable it to intercept the guest. All sensitive instructions in the OS and simulated.

l Paravirtualization: The Guest OS needs to be modified to replace sensitive instructions that cannot be "snap" to resolve the capture of sensitive instructions.

l VT-x: Intel provides VT-x (Intel Virtualization for x86) technology for CPU virtualization (AMD SVM also provides similar functionality), VT-x introduces a new working mode VMX (Virtual Machine eXtension), the CPU in this mode has two modes of operation: root mode (VMX root operation) and non-root mode (VMX non-root operation). In each mode of operation, there is a separate Ring0-Ring3.

ü VMM runs in root mode. For KVM virtualization environment, the KVM host runs in root mode. The kernel in the host runs Ring0 in the root mode, and the user mode program in the host (such as Qemu) -kvm) Run3 running in root mode.

ü Guest runs in non-root mode, the kernel in Guest runs in Ring0 in non-root mode, and the user-mode program in Guest runs in Ring3 in non-root mode.

In addition, VT-x introduces a new set of instructions, including VMLAUNCH/VMRESUME (for launching VM-Entry), VMREAD/VMWRITE (for configuring VMCS), and so on.

l VM-Exit/VM-Entry: In the VT-x environment, in non-root mode (that is, in the Guest), the execution of sensitive instructions triggers "to fall into" & is called VM-Exit. When VM-Exit occurs, the CPU automatically switches from non-root mode to root mode, and then the VMM can further process or simulate the sensitive instructions that trigger VM-Exit.

The VM-Entry corresponds to VM-Entry. This operation is initiated by the VMM. Usually, it is caused by the VMM scheduling a Guest (or VCPU) runtime. At this time, the CPU automatically switches from the root mode to the non-root mode. .

l VMCS: In the VT-x environment, VMCS (Virtual Machine Control Structure) was introduced to better support CPU virtualization. VMCS is used to save the relevant state required by the virtual CPU, such as the value of the register of the CPU in the root mode and the non-root mode, the reason of the VM-Exit, etc. When the CPU generates VM-Exit and VM-Entry, it automatically queries and To update VMCS, VMM can also control the behavior of the CPU by configuring VMCS.

Linux Tutorial
Windows system
Linux high-end: ReiserFS file system data recovery software

ReiserFS file system is a very good file system, especially for large files or a large number of sma
Live555 can't get ip address solution under LINUX

 Running live55 under linux shows the figure: not getting ip: ip is 0.0.0.0 live555 does not know th
How to uninstall the built-in JDK under Linux

 How to uninstall the built-in JDK under Linux, many of us can find java under the operating system

Ls -l | Wc -l command multiple statistics one line

#ls -l | Wc -l Note: The total usage also takes 1 row, so the statistics are 14 instead of 13 Other

Linux/UNIX Awk Command Tutorial with Examples

AWK Stands for ‘Aho, Weinberger, and Kernighan‘Awk is a scripting language which is use
The three query methods for the last reboot time of the Linux system

For the engineers who are developing or operating the Linux platform, it is often necessary to query
  • Linux system FAQ
  • Linux Tutorial
  • About Linux

    • win7 qq games hall login screen does not show how to solve

    Win8 system play battlefield 4 "DirectX Error" error how to solve?

    How to configure a high couple magnet for Win10 Mobile/pc?

    How to solve Win8.1 Modern IE11 strike/flashback problem

    Former Microsoft engineer: Originally Windows was developed like this

    Cleverly put Win10 "control panel, this computer, recycle bin, network, user folder" solid

    Will Nokia come back or do a Win10 phone?

    Win8 system to create a VPN through IE

    How to set the Windows 8 title bar font size

    Windows 8 will no longer support the 1394 interface! ?

  • Windows XP System Tutorial
  • Windows 7 System Tutorial
  • Windows 8 System Tutorial
  • Windows 10 System Tutorial
  • Windows 2003 System Tutorial
  • Windows 2008 System Tutorial
  • Windows Vista System Tutorial
  • Windows tutorial synthesis
  • Windows Server System Tutorial
  • Linux system Tutorial
  • Computer software Tutorial
  • Windows NT Tutorial
    • Copyright © Windows knowledge All Rights Reserved