XPDDS19: Secure Unikraft Applications with Solo5 - Haibo Xu, ARM

•Download as PPTX, PDF•

0 likes•230 views

As the number of contributions grow, reviewer bandwidth becomes a bottleneck; and maintainers are always asking for more help. However, ultimately maintainers must at least Ack every patch that goes in; so if you're not a maintainer, how can you contribute? Why should anyone care about your opinion? This talk will try to lay out some advice and guidelines for non-maintainers, for how they can do code review in a way which will effectively reduce the load on maintainers when they do come to review a patch.

Technology

Secure unikraft application
with solo5
Haibo Xu, Software Engineer, ARM

Agenda
• Overview
• Solo5
• Unikraft
• Running Unikraft on Solo5
• Things to hack on

Overview: Solo5
Solo5 is a sandboxed execution environment suitable for running
applications built using various unikernels, targeting different
sandboxing technologies on diverse host operating systems and
hypervisors. – About Solo5
It is essentially a piece of “middleware” interfacing unikernel-style
applications with their host systems, and can not be an standalone
product as such.

Overview: Solo5
Features:
 minimalist API and monitor
• reduced attack surface
• fast boot time(~10 ms)
• management
 public guest facing APIs
• easy to port existing and future unikernels app
• easy to port to different sandboxing or host environment
 live and post debugging of unikernel
 no SMP
• scale out by running multiple instance
 no interrupts or scheduling
 does not run on bare metal
limited APIs to application,
currently 13
Limited system calls,
as few as 7 on spt tender

Overview: Unikraft
Unikraft, introduced by NEC Laboratories Europe, is a development
model – SDK for unikernels.
evolution
Web Service Unikernel
Block Device
Library
Net Device
Library
Filesystem
Library
Network Stack
Library
Python Runtime
Library
Web Service Application
• Minimalistic
• Single address space
• Collection of required libraries
• Deployed with minimal dependency

Overview: Unikraft
Unikraft_bare_x86_64
Unikraft_bare_arm32/64
Unikraft_bare_MIPS
Unikraft_xen_x86_64
Unikraft_xen_arm32/64
Unikraft_xen_MIPS
Unikraft_kvm_x86_64
Unikraft_kvm_arm32/64
Unikraft_kvm_MIPS
Unikraft_ulinux

Running Unikraft on Solo5
• ~1000 LOC
• New LIBSOLO5PLAT added
• Implemented LIBSOLO5PLAT APIs with
Solo5 bindings(include/uk/plat/)
• External platform library is added to
include solo5 source code(unikraft/libs/)
• unikraft/apps/helloworld is verified on both
x86_64 and arm64 machine with solo5 hvt
and spt tenders

Things to hack on
• Solo5 doesn’t support interrupts
 network/block device I/O support – event driven?
 spinlock APIs
 thread context switch APIs
 irq register/save/restore APIs?

XPDDS19: Secure Unikraft Applications with Solo5 - Haibo Xu, ARM

What's hot

Fatih Degirmenci, Ericsson, Yolanda Robla Mota, RedHat, Markos Chandras, SUSE OPNFV has been working with the communities such as OpenStack, OpenDaylight, and fd.io as part of its Cross Community CI (XCI) effort in order to provide means for the developers to work with the latest versions of upstream components, cutting the time it takes to develop new features significantly and testing them on the OPNFV Infrastructure. Apart from developing and testing new features, OPNFV XCI will enable developers to identify bugs earlier, issue fixes faster, and get feedback on a daily basis. This is a prerequisite for OPNFV in its CD & DevOps journey. OPNFV aims to run XCI by reusing what other communities developed such as bifrost and openstack-ansible. While doing this, OPNFV intends to develop, maintain, and evolve OPNFV Infrastructure like how the other OPNFV projects do; upstream first. Whatever missing functionality and issues we identify in the components we use as part of our infrastructure and CI/CD toolchain, we strive to fix them directly upstream. During this session, we will talk about the progress we have made so far, contributions we made to our upstream communities, and share our experiences. We will also highlight the key benefits of XCI for the community in order for developers to utilize the mechanisms, work with OpenStack master to implement new features and fix bugs using the toolchain XCI established.

Being Brave: Deploying OpenStack from Master

OPNFV

Data Breaches are all over the news these days, and no organization is safe. Nobody, from the largest governments to the biggest banks to the most advanced security companies is able to adequately protect themselves. The difficulty is that there are infinite number of ways to exfiltrate data from an organization ranging from stolen/lost hardware to steganography to malicious insiders to 0Day exploits installing malware to side channels. The industry is trying to solve this problem using detection, heuristics, pattern matching and behavioral analysis. A new approach is clearly needed to fight the Data Breach problem and keep data inside an organization. Come find out how to use Hypervisors to repurpose hardware to protect sensitive data under the assumption of compromised networks, devices and users (Malicious Insiders). In addition, find out how to do so without using any type of detection, heuristics, pattern matching or behavioral analysis, but rather a strictly algorithmic approach rooted in hardware. Finally, learn about how this technology can be used in a generic manner to protect data of DataBases, Server Software, unmodified legacy applications, and unmodified consumer applications such as word processing and spreadsheet software.

XPDS16: Hypervisor Enforced Data Loss Prevention - Neil Sikka, A1LOGIC

The Linux Foundation

Java hot spot

Sagar Janagonda

Virtualization Technology Overview

OpenCity Community

Gil Hellmann, Wind River, Xuesong Wang, Wind River, Qiao Fu, China Mobile, Jinglong Lv, China Mobile A traditional non-virtualization environment is fully integrated with the hardware platform, software platform, and service application as indivisible whole. It makes failure detection and HA much easier in north - south directions. In a virtualization environment, especially three-layer decoupling, the hardware platform, NFVI/VIM, VNF and even MANO may all come from separate vendors. This provides operators with more choices and flexibility. However, it also introduces challenges on how to achieve the same level HA as with non-virtualization environment. In this session, we will cover the following: • Common reliability strategy of traditional telecom network elements • The general HA mechanisms of VIM (OpenStack) platform today • What new requirements are brought to a VIM platform in the ETSI-MANO structure for a telecom-level high availability • The impact of various types of failures on the VMs and business programs, and some fault handling strategies performed by VIM and MANO according to our test results.

Requirement analysis of vim platform reliability in a three-layer decoupling ...

OPNFV

Wslconf - Docker Desktop WSL 2 integration

Simon Ferquel

Quickboot on i.MX6

Gary Bisson

Présentation d'Unikernel

Proto204

Docker Desktop is probably the most common way to work with Linux containers on Windows 10. Also, Microsoft continues to improve Windows 10 and offers with the Windows Subsystem for Linux a very good platform to work natively with Linux. Microsoft is currently preparing a new version of WSL 2, which for the first time brings a real Linux kernel. This makes operation of the Docker Engine under WSL possible. Microsoft and Docker are working closely together to optimally enable the running of Linux containers under WSL 2. This talk will show what is going to improve on Docker Desktop on the upcoming Windows 10 version 20H1. The current status can already be tried out with the Windows Insider program and the Technical Preview of Docker Desktop.

WSL2 and Docker Desktop

Stefan Scherer

Whats new in Windows Server 2012 R2 Hyper-V

Ravikanth Chaganti

Qubes os presentation_to_clug_20150727

csirac2

Kentaro Matsumoto, KDDI Corporation, Hyde Sugiyama, Red Hat, Inc As telecom career, we KDDI have been managing thousands of physical servers and run various kinds of workloads. In our operation of such a huge environment, We are frequently required to shut down our servers for maintenance, but it is not easy to negotiate with our tenant users to allow downtime. To make it easier, we are developing the structure called "Zone Migration", using the framework of OpenStack project "Watcher". "Zone Migration" makes it possible to migrate tenants’ workloads from compute nodes and storage devices we want to maintain (source zone) to new blank ones (destination zone) efficiently, automatically, and with minimum downtime. These requirements as follows are realized. -A lot of VMs and volumes should be migrated within a limited time frame -Operations should be automated, but also can be controlled manually -Time and load of migration should be under control so that tenants’ systems will not be affected We are proceeding with the project in cooperation with NEC and Red Hat, and developing this structure on Red Hat OpenStack Platform.

Software-defined migration how to migrate bunch of v-ms and volumes within a...

OPNFV

GNAT Pro for ARM processors

AdaCore

Vagrant and docker

文峰眭

OpenIO Summit'17 - ARM, Object Storage and more

OpenIO Object Storage

Intro to Spring Boot and Spring Cloud OSS - Twin Cities Cloud Foundry Meetup

Josh Ghiloni

Profiling Xilinx Zynq Software Applications in SDK (MiniZED board)

Vincent Claes

An Eye for (Network) Design

Scott Lowe

OpenNebula is a great cloud orchestration and management tool, characterised by its flexibility, durability and focused feature matrix. A feature matrix that is driven largely by real world problem scenarios and real world feedback : something that has been the focus of CentOS project as well. From large scale deployment automation to patch management and state control, the CentOS Project aims to solve real world problems faced by the people who run infrastructure : The Sysadmins administrators and operations teams. During this talk, I will share why OpenNebula and CentOS Linux are a perfect match and go into some user stories that demonstrate this relationships success in real world scenarios.

CentOS and OpenNebula, a Perfect Match

NETWAYS

As a technical preview, SUSE Linux Enterprise Server 11 contains KVM, which is the next-generation virtualization software delivered with the Linux kernel. In this technical session we will demonstrate how to set up SUSE Linux Enterprise Server 11 for KVM, install some virtual machines and deal with different storage and networking setups. To demonstrate live migration we will also show a distributed replicated block device (DRBD) setup and a setup based on iSCSI and OCFS2, which are included in SUSE Linux Enterprise Server 11 and SUSE Linux Enterprise 11 High Availability Extension.

Virtualization with KVM (Kernel-based Virtual Machine)

Novell

What's hot (20)

Being Brave: Deploying OpenStack from Master

XPDS16: Hypervisor Enforced Data Loss Prevention - Neil Sikka, A1LOGIC

Java hot spot

Virtualization Technology Overview

Requirement analysis of vim platform reliability in a three-layer decoupling ...

Wslconf - Docker Desktop WSL 2 integration

Quickboot on i.MX6

Présentation d'Unikernel

WSL2 and Docker Desktop

Whats new in Windows Server 2012 R2 Hyper-V

Qubes os presentation_to_clug_20150727

Software-defined migration how to migrate bunch of v-ms and volumes within a...

GNAT Pro for ARM processors

Vagrant and docker

OpenIO Summit'17 - ARM, Object Storage and more

Intro to Spring Boot and Spring Cloud OSS - Twin Cities Cloud Foundry Meetup

Profiling Xilinx Zynq Software Applications in SDK (MiniZED board)

An Eye for (Network) Design

CentOS and OpenNebula, a Perfect Match

Virtualization with KVM (Kernel-based Virtual Machine)

Similar to XPDDS19: Secure Unikraft Applications with Solo5 - Haibo Xu, ARM

OW2 JOnAS 5.0 Java EE AS- An OSGi Based Integration Platform - François Forna...

mfrancis

Unikernel – an executable image that can run natively on a hypervisor without the need for a separate operating system – are rapidly gaining momentum. To integrate unikernels into the echo-system, cloud-computing platforms as a service are required to provide unikernels with the same services they provide for constrainers. Here we present Unik, a open source (goo.gl/iEesqK) orchestration system for unikernels. Unik handles the compilation of libraries and applications for running on verity of cloud providers, manages their scheduling, and ensures their health. To provide the user with a seamless PaaS experience, Unik is integrated as a backend to Docker, Kubernetes & Cloud Foundry runtime.

Unik Slides

Idit Levine

This presentation was given at LabVIEW Developer Days 2018 in Katowice. There are two key points discussed: first is using QHM architecture to improve user interface responsiveness. Second is using multiple threads (/loops/processes/actors/...) for doing "N same things" in parallel - the example case here is test stand with four test slots that make the same tests. The slides themselves (without the presenter discussing them :) might not give the full picture of those topics, but they might give you just enough to think about some aspects of multithreaded LabVIEW architectures.

Key considerations for multithreaded architectures in LabVIEW

Piotr Demski

Start with Angular framework

Knoldus Inc.

Unikernels

sally.de

Presentation given at the 2017 LinuxCon China Unikernel is a novel software technology that links an application with OS in the form of a library and packages them into a specialized image that facilitates direct deployment on a hypervisor. Comparing to the traditional VM or the recent containers, Unikernels are smaller, more secure and efficient, making them ideal for cloud environments. There are already lots of open source projects like OSv, Rumprun and so on. But why these existing unikernels have yet to gain large popularity broadly? We think Unikernels are facing three major challenges: 1. Compatibility with existing applications; 2. Lack of production support (e.g. monitoring, debugging, logging); 3. Lack of compelling use case. In this presentation, we will review our investigations and exploration of if-how we can convert Linux as Unikernel to eliminate these significant shortcomings, plus some explorations of coordinating and cooperating with hypervisor.

Unikernelized Linux

LinuxCon ContainerCon CloudOpen China

The cloud is undoubtedly a major success story, but while extremely convenient in terms of deployment and scalability, it’s become increasingly clear that is it highly inefficient, with services deployed in bloated, wasteful virtual machines (VMs). Worse, such VMs are kept on most if not all of the time, once again wasting resources, driving up both cloud infrastructure bills and energy consumption. We introduce Unikraft, a novel cloud operating system that allows for easily building cloud-ready images fully tailored to the needs of particular applications: Unikraft images boot in a few milliseconds, consume only a few MBs even when running mainstream applications (e.g., NGINX, SQLite, Redis, etc.), and can provide throughput higher than Linux. We will also show Unikraft’s ability to boot images just-in-time, as requests come in, and go to sleep thereafter, further saving resources. Unikraft is an open source Linux Foundation project and can be found at unikraft.org .

stackconf 2022: It’s Time to Debloat the Cloud with Unikraft

NETWAYS

5 Things to Know about the F75P: a Vital Embedded Computer for Safety-Critica...

MEN Micro

5 Things to Know about the F75P: a Vital Embedded Computer for Safety-Critica...

MEN Mikro Elektronik GmbH

The F75P is a SIL 4 certifiable embedded single board computer based on the CompactPCI PlusIO Standard and comes with certificates from TÜV SÜD for hardware and software, saving cost and time to market during the development and certification process of a functional safe computer system. Do you want to know why it is so unique? Read the 5 things to know about this vital computer board. https://www.menmicro.com/products/cpu-boards-1/f75p/

5 Things to Know about the F75P

MEN Micro

Presented by Norberto Leite, Developer Advocate, MongoDB In this session you will learn how to leverage both Python and MongoDB to build highly scalable, asynchronous applications based on microservices architecture. We will review how to connect several different “exotic” services, using a variety of datasets, that together we can mashup into a consolidated application. We will start by introducing several technologies that we will be using (e.g. Python, Flask, MongoDB, AngularJS) and take a ten-thousand foot overview of micro services architecture. At the end of the talk you will have a better understanding of how to decouple and implement microservices with MongoDB.

From Monolithic to Microservices in 45 Minutes

MongoDB

Join UI5 on its journey to evolve into a state-of-the-art Universal JavaScript Framework. While keeping the enterprise-proven qualities you see how fundamental changes are applied to the Core of and throughout the framework. Featuring a layered architecture, Asynchronous Module Definition (AMD), clear dependencies, new module loaders, async variants replacing sync API, and more. Learn how you benefit from the modularization of UI5 and its complementary build and development tooling. Understand the paradigm shift introduced by UI5 Evolution, embrace the new capabilities and leverage them for your current and future projects.

UI5con 2018: UI5 Evolution - The Core Changes

Andreas_Ecker

For many .NET developers today, the learning curve to port applications to Linux is prohibitively high. Now using Mono Tools for Microsoft Visual Studio, you can quickly and easily port your .NET applications to Linux, UNIX and Mac OS X, from entirely within your Visual Studio integrated development environment. You can also use it to build .NET software appliances. Attend this session to learn how you, too, can use Mono Tools for Visual Studio to fulfill your cross-platform needs, build .NET software appliances, and run your .NET applications on Linux using SUSE Linux Enterprise Mono Extension.

How to Port Your .NET Applications to Linux Using Mono Tools for Visual Studio

Novell

When JavaFX Script was released, the mobile component was an important part. It was also one of the reasons many people and analysts believed in JavaFX as a real cross-platform client-side framework. For a number of reasons, JavaFX on mobile disappeared from the official Java roadmap. Fortunately, the OpenJFX team at Oracle made all the required sources available, and the JavaFXPorts initiative worked on providing JavaFX SDK's for the mobile platforms. In this session, we will show the current state of JavaFX on Mobile. We will show how to create a real cross-platform JavaFX Application using an IDE, and how easy it actually is to deploy that application on Android and iOS devices. We will show some of the features and limitations, and talk about the eco-system that is starting to take shape.

JavaFX on Mobile (by Johan Vos)

Stephen Chin

Xen role, details of implementation and problems in a sample solution based on OSS (Android, Linux and Xen) that addresses Automotive requirements such as ultra-fast RVC boot time, quick IVI system boot time, cloud connectivity and multimedia capabilities, reliability and security through hardware virtualization. Secure CAN/LIN/MOST bus integration handled by Linux on Dom0 while Android runs customizable QML-based HMI in a sandbox of DomU. These case studies will include but not be limited to: computing power requirements, memory requirements, virtualization, stability, boot-time sequence and optimization, video clips showing results of the work done. Case study is built on TexasInstruments OMAP5 SoC.

XPDS13: Xen in OSS based In–Vehicle Infotainment Systems - Artem Mygaiev, Glo...

The Linux Foundation

History and Future of the Downloadable Mobile Marketplace - Jon Bostrom, Nokia

mfrancis

Open Kernel Labs is the global leader in open source virtualization software for mobile devices, consumer electronics and embedded systems. Backed by the largest, independent team of microkernel developers, the OKL4 embedded hypervisor is deployed on more than 250 million mobile phones worldwide. Chipset suppliers, handset OEMs, and mobile network operators depend on OK Labs to deliver high performance solutions that decrease BOM cost, reduce complexity and speed time-to-market.

Ok Labs Webinar Android Migration At The Speed Of Light

Open Kernel Labs

44CON London 2015 - Software Defined Networking (SDN) Security

44CON

44CON & Ruxcon: SDN security

David Jorm

Using OSGi R4 Service Platform in Vehicle Embedded Systems - Miguel Lopez, So...

mfrancis

Similar to XPDDS19: Secure Unikraft Applications with Solo5 - Haibo Xu, ARM (20)

OW2 JOnAS 5.0 Java EE AS- An OSGi Based Integration Platform - François Forna...

Unik Slides

Key considerations for multithreaded architectures in LabVIEW

Start with Angular framework

Unikernels

Unikernelized Linux

stackconf 2022: It’s Time to Debloat the Cloud with Unikraft

5 Things to Know about the F75P: a Vital Embedded Computer for Safety-Critica...

5 Things to Know about the F75P

From Monolithic to Microservices in 45 Minutes

UI5con 2018: UI5 Evolution - The Core Changes

How to Port Your .NET Applications to Linux Using Mono Tools for Visual Studio

JavaFX on Mobile (by Johan Vos)

XPDS13: Xen in OSS based In–Vehicle Infotainment Systems - Artem Mygaiev, Glo...

History and Future of the Downloadable Mobile Marketplace - Jon Bostrom, Nokia

Ok Labs Webinar Android Migration At The Speed Of Light

44CON London 2015 - Software Defined Networking (SDN) Security

44CON & Ruxcon: SDN security

Using OSGi R4 Service Platform in Vehicle Embedded Systems - Miguel Lopez, So...

More from The Linux Foundation

Static partitioning is used to split an embedded system into multiple domains, each of them having access only to a portion of the hardware on the SoC. It is key to enable mixed-criticality scenarios, where a critical application, often based on a small RTOS, runs alongside a larger non-critical app, typically based on Linux. The two domains cannot interfere with each other. This talk will explain how to use Xen for static partitioning. It will introduce dom0-less, a new Xen feature written for the purpose. Dom0-less allows multiple VMs to start at boot time directly from the Xen hypervisor, decreasing boot times drastically. It makes it very easy to partition the system without virtualization overhead. Dom0 becomes unnecessary. This presentation will go into details on how to setup a Xen dom0-less system. It will show configuration examples and explain device assignment. The talk will discuss its implications for latency-sensitive and safety-critical environments.

ELC2019: Static Partitioning Made Simple

The Linux Foundation

TrenchBoot is a cross-community OSS integration project for hardware-rooted, late launch integrity of open and proprietary systems. It provides a general purpose, open-source DRTM kernel for measured system launch and attestation of device integrity to trust-centric access infrastructure. TrenchBoot closes the UEFI Measurement Gap and reduces the need to trust system firmware. This talk will introduce TrenchBoot architecture and a recent collaboration with Oracle to launch the Linux kernel directly with Intel TXT or AMD SVM Secure Launch. It will propose mechanisms for integrating the Xen hypervisor into a TrenchBoot system launch. DRTM-enabled capabilities for client, server and embedded platforms will be presented for consideration by the Xen community.

XPDDS19: How TrenchBoot is Enabling Measured Launch for Open-Source Platform ...

The Linux Foundation

Artem will briefly cover what has been done since the first talk on Xen in Automotive domain back in 2013, what is going on now and what is still missing for broad adaptation of Xen in vehicles. The following topics will be covered: Embedded/automotive features of Xen Collaboration with AGL and GENIVI organizations for standardization Efforts on Functional Safety compliance Artem will also go over typical automotive use scenarios for Xen which may not be the same as generic computing use of hypervisor.

XPDDS19 Keynote: Xen in Automotive - Artem Mygaiev, Director, Technology Solu...

The Linux Foundation

XPDDS19 Keynote: Xen Project Weather Report 2019 - Lars Kurth, Director of Op...

The Linux Foundation

In recent years unikernels have shown immense performance potential (e.g., boot times of only a few ms, image sizes of only hundreds of KBs).The fundamental drawback of unikernels is that they require that applications be manually ported to the underlying minimalistic OS, needing both expert work and often considerable amount of time. The Unikraft project provides a unikernel code base and build system that significantly simplifies the building of unikernels. In addition to support for a number CPU architectures, languages and frameworks, Unikraft provides debugging and tracing features that are generally sorely missing from unikernel projects. In this talk we will talk about these features, show a set of preliminary performance numbers, and provide a roadmap for the project's future.

XPDDS19 Keynote: Unikraft Weather Report

The Linux Foundation

XPDDS19 Keynote: Secret-free Hypervisor: Now and Future - Wei Liu, Software E...

The Linux Foundation

This talk will introduce Dom0-less: a new way of using Xen to build mixed-criticality solutions. Dom0-less is a Xen feature that adds a novel approach to static partitioning based on virtualization. It allows multiple domains to start at boot time directly from the Xen hypervisor, decreasing boot times dramatically. Xen userspace tools, such as xl and libvirt, become optional. Dom0-less extends the existing device tree based Xen boot protocol to cover information required by additional domains. Binaries, such as kernels and ramdisks, are loaded by the bootloader (u-boot) and advertised to Xen via new device tree bindings. The audience will learn how to use Dom0-less to partition the system. Uboot and device tree configuration details will be explained to enable the audience to get the most out of this feature. The talk will include a status update and details on future plans.

XPDDS19 Keynote: Xen Dom0-less - Stefano Stabellini, Principal Engineer, Xilinx

The Linux Foundation

XPDDS19 Keynote: Patch Review for Non-maintainers - George Dunlap, Citrix Sys...

The Linux Foundation

This talk is a follow-up to our Summit 2017 presentation in which we covered our plans for Intel VMFUNC and #VE, as well as related use-cases. This year, we will provide a report on what we have accomplished in Xen 4.12, and what remains to be addressed. We will also give a brief status update of VMI on AMD hardware. The session will end with some real-world numbers of the Hypervisor Introspection solution running on Citrix Hypervisor 8.0 with #VE enabled.

XPDDS19: Memories of a VM Funk - Mihai Donțu, Bitdefender

The Linux Foundation

Safety certification is one of the essential requirements for software to be used in highly regulated industries. Besides technical and compliance issues (such as ISO 26262 vs IEC 611508) transitioning an existing project to become more easily safety certifiable requires significant changes to development practices within an open source project. In this session, we will lay out some challenges of making safety certification achievable in open source and the Xen Project. We will outline the process the Xen Project has followed thus far and highlight lessons learned along the way. The talk will primarily focus on necessary process, tooling changes and community challenges that can prevent progress. We will be offering an in-depth review of how Xen Project is approaching this challenging goal and try to derive lessons for other projects and contributors.

OSSJP/ALS19: The Road to Safety Certification: Overcoming Community Challeng...

The Linux Foundation

Safety certification is one of the essential requirements for software to be used in highly regulated industries. The Xen Project, a secure and stable hypervisor that is used in many different markets, has been exploring the feasibility of building safety certified products on top of Xen for a year, looking at key aspects of its code base and development practices. In this session, we will lay out the motivation and challenges of making safety certification achievable in open source and the Xen Project. We will outline the process the project has followed thus far and highlight lessons learned along the way. The talk will cover technical enablers, necessary process and tooling changes and community challenges offering an in-depth review of how Xen Project is approaching this exciting and and challenging goal.

OSSJP/ALS19: The Road to Safety Certification: How the Xen Project is Making...

The Linux Foundation

2018 saw fundamental shifts in security boundaries which were previously taken for granted. A lot of work has been done in the past 2 years, and largely in secret under embargo, but there is plenty more work to be done to strengthen the existing mitigations and to try to recover some performance without reopening security holes. This talk will look at speculative execution sidechannels, the work which has already been done to mitigate the security holes, and future work which hopes to bring some improvements.

XPDDS19: Speculative Sidechannels and Mitigations - Andrew Cooper, Citrix

The Linux Foundation

The Arm architecture provides a set of guidelines that any software should abide by when accessing the memory with MMU off and update page-tables. Failing to do so may result in getting TLB conflicts or breaking coherency. In a previous talk ("Keeping coherency on Arm"), we focused on updating safely the stage-2 (aka P2M) page-tables. This talk will focus on the boot code and Xen memory management. During this session, we will introduce some of the guidelines and when they should be used. We will also discuss how Xen boot sequence needs to be reworked to avoid breaking the guidelines.

XPDDS19: Keeping Coherency on Arm: Reborn - Julien Grall, Arm ltd

The Linux Foundation

For many years the QEMU codebase has contained PV backends for Xen guests, giving them paravirtual access to storage, network, keyboard, mouse, etc. however these backends have not been configurable as QEMU devices as their implementation did not fully adhere to the QEMU Object Model (QOM). Particularly the PV storage backend not using proper QOM devices, or qdevs, meant that the QEMU block layer needed to maintain legacy code that was cluttering up the source. This was causing push-back from the maintainers who did not want to accept any patches relating to that Xen backend until it was 'qdevified'. In this talk, I'll explain the modifications I made to QEMU to achieve 'qdevification' of the PV storage backend, how compatibility with the libxl toolstack was maintained, and what the next steps in both QEMU and libxl development should be.

XPDDS19: QEMU PV Backend 'qdevification'... What Does it Mean? - Paul Durrant...

The Linux Foundation

PCI is a local computer bus for attaching hardware devices in a computer, and is the main peripheral bus on modern x86 systems. As such, having a proper way to emulate it is crucial for Xen to be able to expose both fully emulated devices or passthrough devices to guests. This talk will focus on the current status of PCI emulation in Xen, how and where it is used, what are its main limitations and future plans to improve it in order to be more robust and modular.

XPDDS19: Status of PCI Emulation in Xen - Roger Pau Monné, Citrix Systems R&D

The Linux Foundation

XPDDS19: [ARM] OP-TEE Mediator in Xen - Volodymyr Babchuk, EPAM Systems

The Linux Foundation

Xen is a very powerful hypervisor with a talented and diverse developers community. Despite the fact it's almost everywhere (from the Cloud to the embedded world), it can be difficult to set up and manage as a system administrator. General purpose distros have Xen packages, but that's just a start in your Xen journey: you need some tooling and knowledge to have a working and scalable platform. XCP-ng was built to overcome those issues: by bringing Xen to the masses with a fully turnkey distro with Xen as its core. It's the logical sequel to the XCP project, with a community focus from the start. We'll see how it happened, what we did, and what's next. Finally, we'll see the impact of XCP-ng on the Xen Project.

XPDDS19: Bringing Xen to the Masses: The Story of Building a Community-driven...

The Linux Foundation

XPDDS19: Will Robots Automate Your Job Away? Streamlining Xen Project Contrib...

The Linux Foundation

High level toolstacks for server and cloud virtualization are very mature with large communities using and supporting them. Client virtualization is a much more niche community with unique requirements when compared to those found in the server space. In this talk, we’ll introduce a client virtualization toolstack for Xen (redctl) that we are using in Redfield, a new open-source client virtualization distribution that builds upon the work done by the greater virtualization and Linux communities. We will present a case for maturing libxl’s Go bindings and discuss what advantages Go has to offer for high level toolstacks, including in the server space.

XPDDS19: Client Virtualization Toolstack in Go - Nick Rosbrook & Brendan Kerr...

The Linux Foundation

Today Xen is scheduling guest virtual cpus on all available physical cpus independently from each other. Recent security issues on modern processors (e.g. L1TF) require to turn off hyperthreading for best security in order to avoid leaking information from one hyperthread to the other. One way to avoid having to turn off hyperthreading is to only ever schedule virtual cpus of the same guest on one physical core at the same time. This is called core scheduling. This presentation shows results from the effort to implement core scheduling in the Xen hypervisor. The basic modifications in Xen are presented and performance numbers with core scheduling active are shown.

XPDDS19: Core Scheduling in Xen - Jürgen Groß, SUSE

The Linux Foundation

More from The Linux Foundation (20)