bhyvecon Ottawa 2019 - The BSD Hypervisor Conference

Speaker: Kamil Rytarowski (not the NVMM author!)

E-mail: kamil@netbsd.org

Date: May 14th, 2019

Location: Ottawa, Canada

Kamil Rytarowski (born 1987)

Krakow, Poland

NetBSD user since 6.1.

NetBSD Foundation member since 2015.

Work areas: kernel, userland, pkgsrc.

Interest: NetBSD on desktop and in particular NetBSD as a workstation.

Current activity in 3rd party software:

• LLVM committer.
• GDB & binutils committer.
• NetBSD maintenance in qemu.

• Overview of NVMM
• The libnvmm(3) usage
• xhyve/NVMM research idea
• qemu/NVMM

Author: Maxime Villard (maxv @ NetBSD org)

Maxime is an x86 and RISCV maintainer in NetBSD.

Maxime is the author of notable projects such as Kernel ASan and Kernel ASLR (and many others).

Quick characteristics:

• Comprehensive virtualization solution for NetBSD
• Loadable kernel module
• AMD64 and Intel 64-bit support
• Fully MP-safe, fine grained locking, up to 128 VMs with 256 VCPUs & 128 GB RAM each
• Offers C API through libnvmm(3)
• Instruction simulator runs in userspace
• Needs recent NetBSD snapshot and modified Qemu (pkgsrc-wip/qemu-nvmm)

NVMM is divided into two general parts:

• kernel part - device driver and ioctl(2) interface, hardware specific backend
• userland part - libnvmm, (mostly) machine independent API

I will pick the following definitions:

• NVMM backend - the kernel part of NVMM
• NVMM frontend - the userland part of NVMM
• emulator - software set of emulated devices and user interaction controllers for creating and running Virtual Machines

NVMM does not implement an emulator.

NVMM is suitable for existing emulators such as Qemu, VirtualBox, Android Studio or xhyve.

This makes NVMM similar to:

• HAXM (NetBSD, Linux, Windows, macOS)
• KVM (Linux)
• HVF (macOS)
• WHPX (Windows)

Pros:

• Reduction of attack surface
• Easier integration with existing emulators (in C/C++)
• Easier process of development and testing
• Easier to perform fuzzing of NVMM components running in userland
• Crashes are not fatal to host

Cons:

• Kernel and userland must be synchronized (however the IOCTL interface can change transparently)
• Performance overhead for extra context switch to userland for operations that could be performed in the kernel without returning to userland (however some other operations can be performed in userland only without going into the kernel)

From an end-user perspective NVMM is the same in spirit as WHPX, HVF, HAXM, KVM (we are closer to WHPX than KVM).

All of these hardware acceleration APIs could be abstracted with a single API (example: https://github.com/StrikerX3/virt86 ).

In the end we build the same simulators on top of different hypervisors, however basic differences between these solutions are as follows:

• KVM has rich user and codebase with many open-source tools and bultin paravirt drivers
• HVF closed source solution that pushes raw CPU capabilities directly to userspace
• HAXM open-source, targets single CPU architecture, but target multiple kernels
• WHPX closed source solution that is similar to NVMM with a high level API

There are two mappings:

• guest virtual addresses (GVA) to guest physical addresses (GPA)
• host virtual address (HVA) to guest physical addresses (GPA)

This allows to access guest's memory as a regular buffer in an emulator.

Idea:

• BSD licensed emulator that runs NetBSD, Linux and Windows on top of NVMM?

Possible research:

• xhyve, a lightweight OS X virtualization solution
• https://github.com/machyve/xhyve

Why xhyve?

• Work already done to make bhyve standalone and portable out of FreeBSD
• Reworks bhyve and put device drivers like clocks into userspace application (NVMM as of now does not implement emulated clocks in the kernel)
• Strips unneeded or unportable parts (bhyvectl, FreeBSD direct booting code...)

The FreeBSD booting code (userboot.so) has to be crossbuilt from a modified FreeBSD distribution running by the FreeBSD kernel - too much burden for a realistic solution.

This differs from Linux booting as Linux uses a well-defined booting protocol. The existing code is a standalone solution and does not require up to date Linux kernel headers, filesystem definitions of internals neither pregenerated files.

There is a similar direct booting issue in VMD for OpenBSD. If VMD will be ever ported to NetBSD or direct OpenBSD booting supported in an existing simulator, it will be done with bios/EFI booting.

Direct booting of NetBSD is easier to achieve, as we have direct access to up to date system headers. On the other hand booting is usually not a bottleneck and probably better to invest into proper MULTIBOOT/EFI/bios support.

Current status:

• Waiting for stabilization of the APIs (there are still planned changes before branching -9).
• Waiting for fixing of detected NVMM/kernel bugs.

Issues with xhyve:

• The xhyve repository is no longer actively developed.
• xhyve/NVMM will most likely create a new distinct fork/project.

More ideas:

• Port xhyve (or rather its fork) to HAXM?

More projects for NVMM:

• Port VirtualBox on top of NVMM (there is already a functional WHPX backend support)
• Nested virtualization support (useful for fuzzing and developing)
• aarch64 support
• Write or port emulators dedicated for a certain game or application (mostly targetting Windows games)
• Embedded and server solutions competing with the KVM emulation

Project's home page:

• https://m00nbsd.net/4e0798b7f2620c965d0dd9d6a7a2f296.html

The NetBSD Foundation blog post:

• https://blog.netbsd.org/tnf/entry/from_zero_to_nvmm