SlideShare a Scribd company logo

i-just-want-to-use-one-giant-vm.pdf

Liang Yan
Liang Yan

i-just-want-to-use-one-giant-vm

Technology
1 of 30
Download to read offline
Giant VM: I just want to use one vm Liang Yan (lyan) SUSE Labs Lee Martin SAP Alliance
2 Outline Schedul ed Downti me 1. Background 2. User Cases and Challenges VDI SAP HANA Edge computing 3. Brain Storm for Optimization 4. Q&A
Background
4 What is Giant VM Giant is relative to HOST Instead of using a mount of VMs, Only use quite a limit number in Host, sometimes may just one. This VM will take full usage of Host in every way, CPU, Memory, IO devices.
5 Why do we want it? Virtualization still has advantage on management even we do not think about scalability here. VDI VM should be able to do anything bare-metal can do, works like one. SAP HANA VM workload is so heavy that it could not allow so many VMs running at the same time. Edge Computing The host resource is limited that it could not support so many VMs running at the same time.
User Cases and Challenges
7 This is an visualize application, has graphic performance and 3D requirement. For some reasons, customer still wants to keep their legacy code which was 11sp3, so we need to come up with a solution that . Host 12SP4 Guest 11SP3 VDI + decent performance
8 VDI + decent performance “Passthrough” everything inside VM at boot time. 1. Usb(3.x) redirection /keyborad&Mouse -device usb-host,hostbus=3,hostaddr=11 2. Physical DVD/CD/BD hde and virtio-scsi -drive file=/dev/sr2,if=none,id=scsicd -device virtio-blk,drive=scsicd,logical_block_size=2048,physical_block_size=2048 3. Serial port redirection -chardev tty,path=/dev/ttyUSB0,id=hostusbserial
9 VDI + decent performance 4. Network SR-IOV Vhost-net + multi-queue 5. Disk A little bit tricky, could not use LV and passthrough. Did a lot test on disk cache mode and iothreads setup 6 VGA Dual monitor support VGA PCI-passthrogh denied Spice + QXL Xserver + Xclient
10 SAP HANA KVM https://etherpad.nue.suse.com/p/SAP-KVM-network-experiment - Single-VM, Multi-VM, SAP HANA scale-out - SAP Certification process (OLTP, OLAP, IO, Memory, CPU...) - NUMA, network latency - Cross functional/cross team project - May 2018 Certification [1] for Single-VM, 2TB, Haswell CPU on SLES12 SP2 - KVM != KVM - Customer Demand Footnote: https://documentation.suse.com/sbp/all/pdf/SBP-HANAonKVM- SLES12SP2_color_en.pdf
11 SAP HANA KVM https://etherpad.nue.suse.com/p/SAP-KVM-network-experiment Some test ideas: multiple queue numbers with different values pin vhost-pids isolcpu vs libvirt-pin LPcores for VM different vm setup: mem size, disable virtio-ballon, vcpus vhost, nr-queues == nr-vcpus, pin IRQs to vcpus MTU size 1500 vs 9000 OVS-DPDK SRIOV
12 Computing is remotely and close to end user, it has higher security requirement. Hardware resource is limited, need less and lighter VMs Distribute management, sometimes it may need boot up and shut down frequently. Real time requirement, at least low latency. Edge Computing/IoT Devices
13 Edge Computing/IoT Devices VNF in NFV CDN Auto Drive Is virtualization necessary? Yes and No Does people want it? Sure. We just think how could make virtualization fit Edge Compute better. Lighter, Real time, Boot up faster ...
Optimization Brain Storm
15 Object Analysis What does hardware looks like today?(X86-Intel) NUMA(Non-Uniform Memory Access) North Bridge/South Bridge PCIe Controller and Memory Controller are moved into CPU, per-node LAPIC, IOAPIC Hardware Implementation for Virtualization VT-x/EPT IOMMU IO: GPU/NIC/Disk SRIOV MultipQueue
16 Object Analysis https://www.sqlskills.com/blogs/jonathan/understanding-non-uniform-memory-accessarchitectures-numa/
17 Object Analysis
18 Object Analysis [root@localhost]# perf stat -e 'kvm:*' -a sleep 1h ^Csleep: Interrupt Performance counter stats for 'sleep 1h': 1,880 kvm:kvm_entry [100.00%] 20 kvm:kvm_pio [100.00%] 0 kvm:kvm_cpuid [100.00%] 596 kvm:kvm_apic [100.00%] 1,934 kvm:kvm_exit [100.00%] 284 kvm:kvm_inj_virq [100.00%] 3 kvm:kvm_inj_exception [100.00%] 602 kvm:kvm_page_fault [100.00%] 0 kvm:kvm_msr [100.00%] 102 kvm:kvm_cr [100.00%] 260 kvm:kvm_pic_set_irq [100.00%] 156 kvm:kvm_apic_ipi [100.00%] 292 kvm:kvm_apic_accept_irq [100.00%] 292 kvm:kvm_eoi [100.00%] 0 kvm:kvm_pv_eoi [100.00%] 0 kvm:kvm_invlpga [100.00%] 0 kvm:kvm_skinit [100.00%] 979 kvm:kvm_emulate_insn [100.00%] 618 kvm:vcpu_match_mmio [100.00%] 635 kvm:kvm_userspace_exit [100.00%] 276 kvm:kvm_set_irq [100.00%] 276 kvm:kvm_ioapic_set_irq [100.00%] 4 kvm:kvm_msi_set_irq [100.00%] 277 kvm:kvm_ack_irq [100.00%] 1,627 kvm:kvm_mmio [100.00%] 762 kvm:kvm_fpu [100.00%] 0 kvm:kvm_age_page [100.00%] 0 kvm:kvm_try_async_get_page [100.00%] 0 kvm:kvm_async_pf_doublefault [100.00%] 0 kvm:kvm_async_pf_not_present [100.00%] 0 kvm:kvm_async_pf_ready [100.00%] 0 kvm:kvm_async_pf_completed 1.895712367 seconds time elapsed
19 Object Analysis # ./perf kvm stat report --event=vmexit Analyze events for all VCPUs: VM-EXIT Samples Samples% Time% Avg time APIC_ACCESS 65381 66.58% 5.95% 37.72us ( +- 6.54% ) EXTERNAL_INTERRUPT 16031 16.32% 3.06% 79.11us ( +- 7.34% ) CPUID 5360 5.46% 0.06% 4.50us ( +- 35.07% ) HLT 4496 4.58% 90.75% 8360.34us ( +- 5.22% ) EPT_VIOLATION 2667 2.72% 0.04% 5.49us ( +- 5.05% ) PENDING_INTERRUPT 2242 2.28% 0.03% 5.25us ( +- 2.96% ) EXCEPTION_NMI 1332 1.36% 0.02% 6.53us ( +- 6.51% ) IO_INSTRUCTION 383 0.39% 0.09% 93.39us ( +- 40.92% ) CR_ACCESS 310 0.32% 0.00% 6.10us ( +- 3.95% ) Total Samples:98202, Total events handled time:41419293.63us.
20 One Vs Scale No overcommits: Disable overcommit for vcpu and memory Less competition between qemu processes, but same situation for kernel vcpu. Memory: Disable switch Disable virtio-ballon Disable KSM # systemctl disable ksm # systemctl disable ksmtuned
21 It is complicated with very large VMs, where vCPUs and memory cannot be held in single NUMA node. The number of NUMA nodes inside the VM directly effects the VM's performance – Kernel compile on 120-vcpu VM on host: – 1 NUMA node: 192 seconds 4 NUMA nodes: 169 seconds This is because many locks are per-node, and more nodes means more choices for guest kernel and less lock. NUMA
22 VM_EXIT Kernel main-loop 1. CPU-PIN 2. Huge-Page 1G 3. Pass-through/SRIOV 4. virtio/vhost device 5. irq affinity for host device, try to bind the cpus that not bind vcpu 6. idle=poll for HLT vm_exit
23 iothread QEMU main-loop and global mutex Iothread QEMU thread + VCPU threads + worker threads Big qemu lock for thread Sync qemu -object iothread,id=iothread0 QEMU block layer used inside of IOThread IOThread runs an AioContext event loop
24 1. Add iothreads for virtio devices 2. Enable multiqueue 3. Lock-holder Preemption issue PLE(pause-loop-exit), good for small vcpu numbers linux-lyan:~/code/test # rmmod kvm-intel linux-lyan:~/code/test # modprobe kvm-intel ple_gap=128 linux-lyan:~/code/test # cat /sys/module/kvm_intel/parameters/ple_gap 0 iothread
25 1. Userspace driver 2. Real Time Virtualziation Others?
Q&A
27 Thank you. Question?
28 REFERENCE https://documentation.suse.com/sles/12-SP4/html/SLES-all/article-vt-best-practices.html, https://www.spice-space.org/usbredir.html
29 +49 911 740 53 0 (Worldwide) www.suse.com Corporate Headquarters Maxfeldstrasse 5 90409 Nuremberg Germany Join us on: www.opensuse.org
Unpublished Work of SUSE. All Rights Reserved. This work is an unpublished work and contains confidential, proprietary, and trade secret information of SUSE. Access to this work is restricted to SUSE employees who have a need to know to perform tasks within the scope of their assignments. No part of this work may be practiced, performed, copied, distributed, revised, modified, translated, abridged, condensed, expanded, collected, or adapted without the prior written consent of SUSE. Any use or exploitation of this work without authorization could subject the perpetrator to criminal and civil liability. General Disclaimer This document is not to be construed as a promise by any participating company to develop, deliver, or market a product. It is not a commitment to deliver any material, code, or functionality, and should not be relied upon in making purchasing decisions. SUSE makes no representations or warranties with respect to the contents of this document, and specifically disclaims any express or implied warranties of merchantability or fitness for any particular purpose. The development, release, and timing of features or functionality described for SUSE products remains at the sole discretion of SUSE. Further, SUSE reserves the right to revise this document and to make changes to its content, at any time, without obligation to notify any person or entity of such revisions or changes. All SUSE marks referenced in this presentation are trademarks or registered trademarks of Novell, Inc. in the United States and other countries. All third-party trademarks are the property of their respective owners. 257-000020-001

Recommended

SUSE OpenStack Cloud
SUSE OpenStack CloudSUSE OpenStack Cloud
SUSE OpenStack Cloud
Finceptum Oy
 
Running SAP on SUSE Cloud 2.0
Running SAP on SUSE Cloud 2.0Running SAP on SUSE Cloud 2.0
Running SAP on SUSE Cloud 2.0
Dirk Oppenkowski
 
A-Journney-to-support-vgpu-in-firecracker.pdf
A-Journney-to-support-vgpu-in-firecracker.pdfA-Journney-to-support-vgpu-in-firecracker.pdf
A-Journney-to-support-vgpu-in-firecracker.pdf
Liang Yan
 
OpenStack in the Enterprise - Are You Ready? - Maish Saidel-Keesing
OpenStack in the Enterprise - Are You Ready? - Maish Saidel-KeesingOpenStack in the Enterprise - Are You Ready? - Maish Saidel-Keesing
OpenStack in the Enterprise - Are You Ready? - Maish Saidel-Keesing
Cloud Native Day Tel Aviv
 
Azure + DataStax Enterprise (DSE) Powers Office365 Per User Store
Azure + DataStax Enterprise (DSE) Powers Office365 Per User StoreAzure + DataStax Enterprise (DSE) Powers Office365 Per User Store
Azure + DataStax Enterprise (DSE) Powers Office365 Per User Store
DataStax Academy
 
Open stack meetup 2014 11-13 - 101 + high availability
Open stack meetup 2014 11-13 - 101 + high availabilityOpen stack meetup 2014 11-13 - 101 + high availability
Open stack meetup 2014 11-13 - 101 + high availability
Rick Ashford
 
Use bonding driver with ethernet
Use bonding driver with ethernetUse bonding driver with ethernet
Use bonding driver with ethernet
SUSE Labs Taipei
 
Dr Elephant: LinkedIn's Self-Service System for Detecting and Treating Hadoop...
Dr Elephant: LinkedIn's Self-Service System for Detecting and Treating Hadoop...Dr Elephant: LinkedIn's Self-Service System for Detecting and Treating Hadoop...
Dr Elephant: LinkedIn's Self-Service System for Detecting and Treating Hadoop...
DataWorks Summit
 

Recommended

SUSE OpenStack Cloud
SUSE OpenStack CloudSUSE OpenStack Cloud
SUSE OpenStack Cloud
Finceptum Oy
 
Running SAP on SUSE Cloud 2.0
Running SAP on SUSE Cloud 2.0Running SAP on SUSE Cloud 2.0
Running SAP on SUSE Cloud 2.0
Dirk Oppenkowski
 
A-Journney-to-support-vgpu-in-firecracker.pdf
A-Journney-to-support-vgpu-in-firecracker.pdfA-Journney-to-support-vgpu-in-firecracker.pdf
A-Journney-to-support-vgpu-in-firecracker.pdf
Liang Yan
 
OpenStack in the Enterprise - Are You Ready? - Maish Saidel-Keesing
OpenStack in the Enterprise - Are You Ready? - Maish Saidel-KeesingOpenStack in the Enterprise - Are You Ready? - Maish Saidel-Keesing
OpenStack in the Enterprise - Are You Ready? - Maish Saidel-Keesing
Cloud Native Day Tel Aviv
 
Azure + DataStax Enterprise (DSE) Powers Office365 Per User Store
Azure + DataStax Enterprise (DSE) Powers Office365 Per User StoreAzure + DataStax Enterprise (DSE) Powers Office365 Per User Store
Azure + DataStax Enterprise (DSE) Powers Office365 Per User Store
DataStax Academy
 
Open stack meetup 2014 11-13 - 101 + high availability
Open stack meetup 2014 11-13 - 101 + high availabilityOpen stack meetup 2014 11-13 - 101 + high availability
Open stack meetup 2014 11-13 - 101 + high availability
Rick Ashford
 
Use bonding driver with ethernet
Use bonding driver with ethernetUse bonding driver with ethernet
Use bonding driver with ethernet
SUSE Labs Taipei
 
Dr Elephant: LinkedIn's Self-Service System for Detecting and Treating Hadoop...
Dr Elephant: LinkedIn's Self-Service System for Detecting and Treating Hadoop...Dr Elephant: LinkedIn's Self-Service System for Detecting and Treating Hadoop...
Dr Elephant: LinkedIn's Self-Service System for Detecting and Treating Hadoop...
DataWorks Summit
 
GPU Virtualization in SUSE
GPU Virtualization in SUSEGPU Virtualization in SUSE
GPU Virtualization in SUSE
Liang Yan
 
Web Werks Cloud Hosting FAQ
Web Werks Cloud Hosting FAQWeb Werks Cloud Hosting FAQ
Web Werks Cloud Hosting FAQ
Web Werks Data Centers
 
Healthcheck 07 application
Healthcheck 07 applicationHealthcheck 07 application
Healthcheck 07 application
Nakedi Kobo
 
Gartner Data Center Conference 2014 - When Downtime is Not an Option.
Gartner Data Center Conference 2014 - When Downtime is Not an Option.Gartner Data Center Conference 2014 - When Downtime is Not an Option.
Gartner Data Center Conference 2014 - When Downtime is Not an Option.
Joe Felisky
 
How to configure esx to pass an audit
How to configure esx to pass an auditHow to configure esx to pass an audit
How to configure esx to pass an audit
Concentrated Technology
 
ROCm and Distributed Deep Learning on Spark and TensorFlow
ROCm and Distributed Deep Learning on Spark and TensorFlowROCm and Distributed Deep Learning on Spark and TensorFlow
ROCm and Distributed Deep Learning on Spark and TensorFlow
Databricks
 
Server Virtualization - Smashing Success! Desktop Virtualization - Not So Mu...
Server Virtualization - Smashing Success! Desktop Virtualization - Not So Mu...Server Virtualization - Smashing Success! Desktop Virtualization - Not So Mu...
Server Virtualization - Smashing Success! Desktop Virtualization - Not So Mu...
Unidesk Corporation
 
Shift Happens - Rapidly Rolling Forward During Production Failure
Shift Happens - Rapidly Rolling Forward During Production FailureShift Happens - Rapidly Rolling Forward During Production Failure
Shift Happens - Rapidly Rolling Forward During Production Failure
IBM UrbanCode Products
 
Open source technologies in Microsoft cloud
Open source technologies in Microsoft cloudOpen source technologies in Microsoft cloud
Open source technologies in Microsoft cloud
Alexey Bokov
 
PALETTE BUSINESS SOLUTION DOCUMENTATION
PALETTE BUSINESS SOLUTION DOCUMENTATIONPALETTE BUSINESS SOLUTION DOCUMENTATION
PALETTE BUSINESS SOLUTION DOCUMENTATION
Onwubiko Emmanuel
 
prezentációt
prezentációtprezentációt
prezentációt
webhostingguy
 
V sphere 5 roadshow final
V sphere 5 roadshow finalV sphere 5 roadshow final
V sphere 5 roadshow final
bluechipper
 
Managing Performance in a Virtual Environment
Managing Performance in a Virtual EnvironmentManaging Performance in a Virtual Environment
Managing Performance in a Virtual Environment
SolarWinds
 
Basic concepts for_clustered_data_ontap_8.3_v1.1-lab_guide
Basic concepts for_clustered_data_ontap_8.3_v1.1-lab_guideBasic concepts for_clustered_data_ontap_8.3_v1.1-lab_guide
Basic concepts for_clustered_data_ontap_8.3_v1.1-lab_guide
Vikas Sharma
 
CloudStack - Top 5 Technical Issues and Troubleshooting
CloudStack - Top 5 Technical Issues and TroubleshootingCloudStack - Top 5 Technical Issues and Troubleshooting
CloudStack - Top 5 Technical Issues and Troubleshooting
ShapeBlue
 
WHITE PAPER: Threats to Virtual Environments - Symantec Security Response Team
WHITE PAPER: Threats to Virtual Environments - Symantec Security Response TeamWHITE PAPER: Threats to Virtual Environments - Symantec Security Response Team
WHITE PAPER: Threats to Virtual Environments - Symantec Security Response Team
Symantec
 
VMware View – Storage Considerations
VMware View – Storage ConsiderationsVMware View – Storage Considerations
VMware View – Storage Considerations
Calin Damian Tanase
 
Hyperconvergence FAQ's
Hyperconvergence FAQ'sHyperconvergence FAQ's
Hyperconvergence FAQ's
Springpath
 
20150704 benchmark and user experience in sahara weiting
20150704 benchmark and user experience in sahara weiting20150704 benchmark and user experience in sahara weiting
20150704 benchmark and user experience in sahara weiting
Wei Ting Chen
 
Getting Started with Splunk Enterprise
Getting Started with Splunk EnterpriseGetting Started with Splunk Enterprise
Getting Started with Splunk Enterprise
Splunk
 
Stable-Diffusion-v2.pdf
Stable-Diffusion-v2.pdfStable-Diffusion-v2.pdf
Stable-Diffusion-v2.pdf
Liang Yan
 
ChatGPT-the-revolution-is-coming.pdf
ChatGPT-the-revolution-is-coming.pdfChatGPT-the-revolution-is-coming.pdf
ChatGPT-the-revolution-is-coming.pdf
Liang Yan
 

More Related Content

Similar to i-just-want-to-use-one-giant-vm.pdf

Healthcheck 07 application
Healthcheck 07 applicationHealthcheck 07 application
Healthcheck 07 application
Nakedi Kobo
 
ROCm and Distributed Deep Learning on Spark and TensorFlow
ROCm and Distributed Deep Learning on Spark and TensorFlowROCm and Distributed Deep Learning on Spark and TensorFlow
ROCm and Distributed Deep Learning on Spark and TensorFlow
Databricks
 
PALETTE BUSINESS SOLUTION DOCUMENTATION
PALETTE BUSINESS SOLUTION DOCUMENTATIONPALETTE BUSINESS SOLUTION DOCUMENTATION
PALETTE BUSINESS SOLUTION DOCUMENTATION
Onwubiko Emmanuel
 
V sphere 5 roadshow final
V sphere 5 roadshow finalV sphere 5 roadshow final
V sphere 5 roadshow final
bluechipper
 
Managing Performance in a Virtual Environment
Managing Performance in a Virtual EnvironmentManaging Performance in a Virtual Environment
Managing Performance in a Virtual Environment
SolarWinds
 
WHITE PAPER: Threats to Virtual Environments - Symantec Security Response Team
WHITE PAPER: Threats to Virtual Environments - Symantec Security Response TeamWHITE PAPER: Threats to Virtual Environments - Symantec Security Response Team
WHITE PAPER: Threats to Virtual Environments - Symantec Security Response Team
Symantec
 
VMware View – Storage Considerations
VMware View – Storage ConsiderationsVMware View – Storage Considerations
VMware View – Storage Considerations
Calin Damian Tanase
 
20150704 benchmark and user experience in sahara weiting
20150704 benchmark and user experience in sahara weiting20150704 benchmark and user experience in sahara weiting
20150704 benchmark and user experience in sahara weiting
Wei Ting Chen
 

Similar to i-just-want-to-use-one-giant-vm.pdf (20)

GPU Virtualization in SUSE
GPU Virtualization in SUSEGPU Virtualization in SUSE
GPU Virtualization in SUSE
 
Web Werks Cloud Hosting FAQ
Web Werks Cloud Hosting FAQWeb Werks Cloud Hosting FAQ
Web Werks Cloud Hosting FAQ
 
Healthcheck 07 application
Healthcheck 07 applicationHealthcheck 07 application
Healthcheck 07 application
 
Gartner Data Center Conference 2014 - When Downtime is Not an Option.
Gartner Data Center Conference 2014 - When Downtime is Not an Option.Gartner Data Center Conference 2014 - When Downtime is Not an Option.
Gartner Data Center Conference 2014 - When Downtime is Not an Option.
 
How to configure esx to pass an audit
How to configure esx to pass an auditHow to configure esx to pass an audit
How to configure esx to pass an audit
 
ROCm and Distributed Deep Learning on Spark and TensorFlow
ROCm and Distributed Deep Learning on Spark and TensorFlowROCm and Distributed Deep Learning on Spark and TensorFlow
ROCm and Distributed Deep Learning on Spark and TensorFlow
 
Server Virtualization - Smashing Success! Desktop Virtualization - Not So Mu...
Server Virtualization - Smashing Success! Desktop Virtualization - Not So Mu...Server Virtualization - Smashing Success! Desktop Virtualization - Not So Mu...
Server Virtualization - Smashing Success! Desktop Virtualization - Not So Mu...
 
Shift Happens - Rapidly Rolling Forward During Production Failure
Shift Happens - Rapidly Rolling Forward During Production FailureShift Happens - Rapidly Rolling Forward During Production Failure
Shift Happens - Rapidly Rolling Forward During Production Failure
 
Open source technologies in Microsoft cloud
Open source technologies in Microsoft cloudOpen source technologies in Microsoft cloud
Open source technologies in Microsoft cloud
 
PALETTE BUSINESS SOLUTION DOCUMENTATION
PALETTE BUSINESS SOLUTION DOCUMENTATIONPALETTE BUSINESS SOLUTION DOCUMENTATION
PALETTE BUSINESS SOLUTION DOCUMENTATION
 
prezentációt
prezentációtprezentációt
prezentációt
 
V sphere 5 roadshow final
V sphere 5 roadshow finalV sphere 5 roadshow final
V sphere 5 roadshow final
 
Managing Performance in a Virtual Environment
Managing Performance in a Virtual EnvironmentManaging Performance in a Virtual Environment
Managing Performance in a Virtual Environment
 
Basic concepts for_clustered_data_ontap_8.3_v1.1-lab_guide
Basic concepts for_clustered_data_ontap_8.3_v1.1-lab_guideBasic concepts for_clustered_data_ontap_8.3_v1.1-lab_guide
Basic concepts for_clustered_data_ontap_8.3_v1.1-lab_guide
 
CloudStack - Top 5 Technical Issues and Troubleshooting
CloudStack - Top 5 Technical Issues and TroubleshootingCloudStack - Top 5 Technical Issues and Troubleshooting
CloudStack - Top 5 Technical Issues and Troubleshooting
 
WHITE PAPER: Threats to Virtual Environments - Symantec Security Response Team
WHITE PAPER: Threats to Virtual Environments - Symantec Security Response TeamWHITE PAPER: Threats to Virtual Environments - Symantec Security Response Team
WHITE PAPER: Threats to Virtual Environments - Symantec Security Response Team
 
VMware View – Storage Considerations
VMware View – Storage ConsiderationsVMware View – Storage Considerations
VMware View – Storage Considerations
 
Hyperconvergence FAQ's
Hyperconvergence FAQ'sHyperconvergence FAQ's
Hyperconvergence FAQ's
 
20150704 benchmark and user experience in sahara weiting
20150704 benchmark and user experience in sahara weiting20150704 benchmark and user experience in sahara weiting
20150704 benchmark and user experience in sahara weiting
 
Getting Started with Splunk Enterprise
Getting Started with Splunk EnterpriseGetting Started with Splunk Enterprise
Getting Started with Splunk Enterprise
 

More from Liang Yan

More from Liang Yan (11)

Stable-Diffusion-v2.pdf
Stable-Diffusion-v2.pdfStable-Diffusion-v2.pdf
Stable-Diffusion-v2.pdf
 
ChatGPT-the-revolution-is-coming.pdf
ChatGPT-the-revolution-is-coming.pdfChatGPT-the-revolution-is-coming.pdf
ChatGPT-the-revolution-is-coming.pdf
 
Bring-your-ML-Project-into-Production-v2.pdf
Bring-your-ML-Project-into-Production-v2.pdfBring-your-ML-Project-into-Production-v2.pdf
Bring-your-ML-Project-into-Production-v2.pdf
 
utf.pdf
utf.pdfutf.pdf
utf.pdf
 
GPU-Virtualization-in-openSUSE.pdf
GPU-Virtualization-in-openSUSE.pdfGPU-Virtualization-in-openSUSE.pdf
GPU-Virtualization-in-openSUSE.pdf
 
a-new-playground-for-spdk-dpdk-on-arm64.pdf
a-new-playground-for-spdk-dpdk-on-arm64.pdfa-new-playground-for-spdk-dpdk-on-arm64.pdf
a-new-playground-for-spdk-dpdk-on-arm64.pdf
 
Accelerate-your-AI-Cloud-infrastructure.pdf
Accelerate-your-AI-Cloud-infrastructure.pdfAccelerate-your-AI-Cloud-infrastructure.pdf
Accelerate-your-AI-Cloud-infrastructure.pdf
 
A journay to do AI research in the cloud.pdf
A journay to do AI research in the cloud.pdfA journay to do AI research in the cloud.pdf
A journay to do AI research in the cloud.pdf
 
Linux and SUSE
Linux and SUSELinux and SUSE
Linux and SUSE
 
The abcs of gpu
The abcs of gpuThe abcs of gpu
The abcs of gpu
 
How to-boot-linuxl-on-your-soc-boards
How to-boot-linuxl-on-your-soc-boardsHow to-boot-linuxl-on-your-soc-boards
How to-boot-linuxl-on-your-soc-boards
 

Recently uploaded

+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
?#DUbAI#??##{{(☎️+971_581248768%)**%*]'#abortion pills for sale in dubai@
 
TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data DiscoveryTrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc
 
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationFrom Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
Safe Software
 
Top 5 Benefits OF Using Muvi Live Paywall For Live Streams
Top 5 Benefits OF Using Muvi Live Paywall For Live StreamsTop 5 Benefits OF Using Muvi Live Paywall For Live Streams
Top 5 Benefits OF Using Muvi Live Paywall For Live Streams
Roshan Dwivedi
 
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law DevelopmentsTrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc
 
Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdfUnderstanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
UK Journal
 
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot TakeoffStrategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
sammart93
 
A Year of the Servo Reboot: Where Are We Now?
A Year of the Servo Reboot: Where Are We Now?A Year of the Servo Reboot: Where Are We Now?
A Year of the Servo Reboot: Where Are We Now?
Igalia
 

Recently uploaded (20)

+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
 
presentation ICT roal in 21st century education
presentation ICT roal in 21st century educationpresentation ICT roal in 21st century education
presentation ICT roal in 21st century education
 
Powerful Google developer tools for immediate impact! (2023-24 C)
Powerful Google developer tools for immediate impact! (2023-24 C)Powerful Google developer tools for immediate impact! (2023-24 C)
Powerful Google developer tools for immediate impact! (2023-24 C)
 
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
 
TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data DiscoveryTrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
 
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationFrom Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
 
Apidays New York 2024 - The value of a flexible API Management solution for O...
Apidays New York 2024 - The value of a flexible API Management solution for O...Apidays New York 2024 - The value of a flexible API Management solution for O...
Apidays New York 2024 - The value of a flexible API Management solution for O...
 
AWS Community Day CPH - Three problems of Terraform
AWS Community Day CPH - Three problems of TerraformAWS Community Day CPH - Three problems of Terraform
AWS Community Day CPH - Three problems of Terraform
 
Top 5 Benefits OF Using Muvi Live Paywall For Live Streams
Top 5 Benefits OF Using Muvi Live Paywall For Live StreamsTop 5 Benefits OF Using Muvi Live Paywall For Live Streams
Top 5 Benefits OF Using Muvi Live Paywall For Live Streams
 
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law DevelopmentsTrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
 
Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdfUnderstanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
 
Manulife - Insurer Innovation Award 2024
Manulife - Insurer Innovation Award 2024Manulife - Insurer Innovation Award 2024
Manulife - Insurer Innovation Award 2024
 
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot TakeoffStrategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
 
🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘
 
Strategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a FresherStrategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a Fresher
 
HTML Injection Attacks: Impact and Mitigation Strategies
HTML Injection Attacks: Impact and Mitigation StrategiesHTML Injection Attacks: Impact and Mitigation Strategies
HTML Injection Attacks: Impact and Mitigation Strategies
 
A Year of the Servo Reboot: Where Are We Now?
A Year of the Servo Reboot: Where Are We Now?A Year of the Servo Reboot: Where Are We Now?
A Year of the Servo Reboot: Where Are We Now?
 
Exploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone ProcessorsExploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone Processors
 
Scaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organizationScaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organization
 
Automating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps ScriptAutomating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps Script
 

i-just-want-to-use-one-giant-vm.pdf

  • 1. Giant VM: I just want to use one vm Liang Yan (lyan) SUSE Labs Lee Martin SAP Alliance
  • 2. 2 Outline Schedul ed Downti me 1. Background 2. User Cases and Challenges VDI SAP HANA Edge computing 3. Brain Storm for Optimization 4. Q&A
  • 4. 4 What is Giant VM Giant is relative to HOST Instead of using a mount of VMs, Only use quite a limit number in Host, sometimes may just one. This VM will take full usage of Host in every way, CPU, Memory, IO devices.
  • 5. 5 Why do we want it? Virtualization still has advantage on management even we do not think about scalability here. VDI VM should be able to do anything bare-metal can do, works like one. SAP HANA VM workload is so heavy that it could not allow so many VMs running at the same time. Edge Computing The host resource is limited that it could not support so many VMs running at the same time.
  • 6. User Cases and Challenges
  • 7. 7 This is an visualize application, has graphic performance and 3D requirement. For some reasons, customer still wants to keep their legacy code which was 11sp3, so we need to come up with a solution that . Host 12SP4 Guest 11SP3 VDI + decent performance
  • 8. 8 VDI + decent performance “Passthrough” everything inside VM at boot time. 1. Usb(3.x) redirection /keyborad&Mouse -device usb-host,hostbus=3,hostaddr=11 2. Physical DVD/CD/BD hde and virtio-scsi -drive file=/dev/sr2,if=none,id=scsicd -device virtio-blk,drive=scsicd,logical_block_size=2048,physical_block_size=2048 3. Serial port redirection -chardev tty,path=/dev/ttyUSB0,id=hostusbserial
  • 9. 9 VDI + decent performance 4. Network SR-IOV Vhost-net + multi-queue 5. Disk A little bit tricky, could not use LV and passthrough. Did a lot test on disk cache mode and iothreads setup 6 VGA Dual monitor support VGA PCI-passthrogh denied Spice + QXL Xserver + Xclient
  • 10. 10 SAP HANA KVM https://etherpad.nue.suse.com/p/SAP-KVM-network-experiment - Single-VM, Multi-VM, SAP HANA scale-out - SAP Certification process (OLTP, OLAP, IO, Memory, CPU...) - NUMA, network latency - Cross functional/cross team project - May 2018 Certification [1] for Single-VM, 2TB, Haswell CPU on SLES12 SP2 - KVM != KVM - Customer Demand Footnote: https://documentation.suse.com/sbp/all/pdf/SBP-HANAonKVM- SLES12SP2_color_en.pdf
  • 11. 11 SAP HANA KVM https://etherpad.nue.suse.com/p/SAP-KVM-network-experiment Some test ideas: multiple queue numbers with different values pin vhost-pids isolcpu vs libvirt-pin LPcores for VM different vm setup: mem size, disable virtio-ballon, vcpus vhost, nr-queues == nr-vcpus, pin IRQs to vcpus MTU size 1500 vs 9000 OVS-DPDK SRIOV
  • 12. 12 Computing is remotely and close to end user, it has higher security requirement. Hardware resource is limited, need less and lighter VMs Distribute management, sometimes it may need boot up and shut down frequently. Real time requirement, at least low latency. Edge Computing/IoT Devices
  • 13. 13 Edge Computing/IoT Devices VNF in NFV CDN Auto Drive Is virtualization necessary? Yes and No Does people want it? Sure. We just think how could make virtualization fit Edge Compute better. Lighter, Real time, Boot up faster ...
  • 15. 15 Object Analysis What does hardware looks like today?(X86-Intel) NUMA(Non-Uniform Memory Access) North Bridge/South Bridge PCIe Controller and Memory Controller are moved into CPU, per-node LAPIC, IOAPIC Hardware Implementation for Virtualization VT-x/EPT IOMMU IO: GPU/NIC/Disk SRIOV MultipQueue
  • 18. 18 Object Analysis [root@localhost]# perf stat -e 'kvm:*' -a sleep 1h ^Csleep: Interrupt Performance counter stats for 'sleep 1h': 1,880 kvm:kvm_entry [100.00%] 20 kvm:kvm_pio [100.00%] 0 kvm:kvm_cpuid [100.00%] 596 kvm:kvm_apic [100.00%] 1,934 kvm:kvm_exit [100.00%] 284 kvm:kvm_inj_virq [100.00%] 3 kvm:kvm_inj_exception [100.00%] 602 kvm:kvm_page_fault [100.00%] 0 kvm:kvm_msr [100.00%] 102 kvm:kvm_cr [100.00%] 260 kvm:kvm_pic_set_irq [100.00%] 156 kvm:kvm_apic_ipi [100.00%] 292 kvm:kvm_apic_accept_irq [100.00%] 292 kvm:kvm_eoi [100.00%] 0 kvm:kvm_pv_eoi [100.00%] 0 kvm:kvm_invlpga [100.00%] 0 kvm:kvm_skinit [100.00%] 979 kvm:kvm_emulate_insn [100.00%] 618 kvm:vcpu_match_mmio [100.00%] 635 kvm:kvm_userspace_exit [100.00%] 276 kvm:kvm_set_irq [100.00%] 276 kvm:kvm_ioapic_set_irq [100.00%] 4 kvm:kvm_msi_set_irq [100.00%] 277 kvm:kvm_ack_irq [100.00%] 1,627 kvm:kvm_mmio [100.00%] 762 kvm:kvm_fpu [100.00%] 0 kvm:kvm_age_page [100.00%] 0 kvm:kvm_try_async_get_page [100.00%] 0 kvm:kvm_async_pf_doublefault [100.00%] 0 kvm:kvm_async_pf_not_present [100.00%] 0 kvm:kvm_async_pf_ready [100.00%] 0 kvm:kvm_async_pf_completed 1.895712367 seconds time elapsed
  • 19. 19 Object Analysis # ./perf kvm stat report --event=vmexit Analyze events for all VCPUs: VM-EXIT Samples Samples% Time% Avg time APIC_ACCESS 65381 66.58% 5.95% 37.72us ( +- 6.54% ) EXTERNAL_INTERRUPT 16031 16.32% 3.06% 79.11us ( +- 7.34% ) CPUID 5360 5.46% 0.06% 4.50us ( +- 35.07% ) HLT 4496 4.58% 90.75% 8360.34us ( +- 5.22% ) EPT_VIOLATION 2667 2.72% 0.04% 5.49us ( +- 5.05% ) PENDING_INTERRUPT 2242 2.28% 0.03% 5.25us ( +- 2.96% ) EXCEPTION_NMI 1332 1.36% 0.02% 6.53us ( +- 6.51% ) IO_INSTRUCTION 383 0.39% 0.09% 93.39us ( +- 40.92% ) CR_ACCESS 310 0.32% 0.00% 6.10us ( +- 3.95% ) Total Samples:98202, Total events handled time:41419293.63us.
  • 20. 20 One Vs Scale No overcommits: Disable overcommit for vcpu and memory Less competition between qemu processes, but same situation for kernel vcpu. Memory: Disable switch Disable virtio-ballon Disable KSM # systemctl disable ksm # systemctl disable ksmtuned
  • 21. 21 It is complicated with very large VMs, where vCPUs and memory cannot be held in single NUMA node. The number of NUMA nodes inside the VM directly effects the VM's performance – Kernel compile on 120-vcpu VM on host: – 1 NUMA node: 192 seconds 4 NUMA nodes: 169 seconds This is because many locks are per-node, and more nodes means more choices for guest kernel and less lock. NUMA
  • 22. 22 VM_EXIT Kernel main-loop 1. CPU-PIN 2. Huge-Page 1G 3. Pass-through/SRIOV 4. virtio/vhost device 5. irq affinity for host device, try to bind the cpus that not bind vcpu 6. idle=poll for HLT vm_exit
  • 23. 23 iothread QEMU main-loop and global mutex Iothread QEMU thread + VCPU threads + worker threads Big qemu lock for thread Sync qemu -object iothread,id=iothread0 QEMU block layer used inside of IOThread IOThread runs an AioContext event loop
  • 24. 24 1. Add iothreads for virtio devices 2. Enable multiqueue 3. Lock-holder Preemption issue PLE(pause-loop-exit), good for small vcpu numbers linux-lyan:~/code/test # rmmod kvm-intel linux-lyan:~/code/test # modprobe kvm-intel ple_gap=128 linux-lyan:~/code/test # cat /sys/module/kvm_intel/parameters/ple_gap 0 iothread
  • 25. 25 1. Userspace driver 2. Real Time Virtualziation Others?
  • 26. Q&A
  • 29. 29 +49 911 740 53 0 (Worldwide) www.suse.com Corporate Headquarters Maxfeldstrasse 5 90409 Nuremberg Germany Join us on: www.opensuse.org
  • 30. Unpublished Work of SUSE. All Rights Reserved. This work is an unpublished work and contains confidential, proprietary, and trade secret information of SUSE. Access to this work is restricted to SUSE employees who have a need to know to perform tasks within the scope of their assignments. No part of this work may be practiced, performed, copied, distributed, revised, modified, translated, abridged, condensed, expanded, collected, or adapted without the prior written consent of SUSE. Any use or exploitation of this work without authorization could subject the perpetrator to criminal and civil liability. General Disclaimer This document is not to be construed as a promise by any participating company to develop, deliver, or market a product. It is not a commitment to deliver any material, code, or functionality, and should not be relied upon in making purchasing decisions. SUSE makes no representations or warranties with respect to the contents of this document, and specifically disclaims any express or implied warranties of merchantability or fitness for any particular purpose. The development, release, and timing of features or functionality described for SUSE products remains at the sole discretion of SUSE. Further, SUSE reserves the right to revise this document and to make changes to its content, at any time, without obligation to notify any person or entity of such revisions or changes. All SUSE marks referenced in this presentation are trademarks or registered trademarks of Novell, Inc. in the United States and other countries. All third-party trademarks are the property of their respective owners. 257-000020-001