Loading…
July 9 - 11, 2019 | Chicago, Illinois
View More Details  & Register Here
Simple
Expanded
Grid
By Venue
Hypervisor [clear filter]
Tuesday, July 9
 

10:00am CDT

Keynote: Secret-free Hypervisor: Now and Future - Wei Liu, Software Engineer, Citrix
The idea of making Xen secret-free has been floating since Spectre and Meltdown came into light. In this talk we will discuss what is being done and what needs to be done next.
Speakers
WL

Wei Liu

Software Engineer, Citrix
Wei has worked on various aspects in Xen ecosystem for the past few years. His recent interest is hypervisor development and upstream CI systems.

Tuesday July 9, 2019 10:00am - 10:25am CDT
Gallery, 5th Floor
  Keynote Sessions

10:55am CDT

Status of PCI Emulation in Xen - Roger Pau Monné, Citrix Systems R&D
PCI is a local computer bus for attaching hardware devices in a computer, and is the main peripheral bus on modern x86 systems. As such, having a proper way to emulate it is crucial for Xen to be able to expose both fully emulated devices or passthrough devices to guests.

This talk will focus on the current status of PCI emulation in Xen, how and where it is used, what are its main limitations and future plans to improve it in order to be more robust and modular.
Speakers
avatar for Roger Pau Monne

Roger Pau Monne

Software Engineer, Citrix
Roger Pau Monné is a Software Engineer at Citrix. He is currently working on hypervisor related topics most of the time. Apart from contributing to Xen he is also a FreeBSD developer and contributes to other Xen-related projects, like the Linux kernel and QEMU.

Tuesday July 9, 2019 10:55am - 11:20am CDT
Gallery, 5th Floor
  Sessions

12:25pm CDT

Core Scheduling in Xen - Jürgen Groß, SUSE
Today Xen is scheduling guest virtual cpus on all available physical cpus independently from each other. Recent security issues on modern processors (e.g. L1TF) require to turn off hyperthreading for best security in order to avoid leaking information from one hyperthread to the other. One way to avoid having to turn off hyperthreading is to only ever schedule virtual cpus of the same guest on one physical core at the same time. This is called core scheduling.

This presentation shows results from the effort to implement core scheduling in the Xen hypervisor. The basic modifications in Xen are presented and performance numbers with core scheduling active are shown.
Speakers
avatar for Jürgen Groß

Jürgen Groß

Principal Developer, SUSE
Contributing to Xen since 2007, maintainer of several Xen components.

2019 Xen Summit Core scheduling pdf
Tuesday July 9, 2019 12:25pm - 12:50pm CDT
Gallery, 5th Floor
  Sessions
 
Wednesday, July 10
 

9:00am CDT

Keynote: Xen Dom0-less - Stefano Stabellini, Principal Engineer, Xilinx
This talk will introduce Dom0-less: a new way of using Xen to build mixed-criticality solutions. Dom0-less is a Xen feature that adds a novel approach to static partitioning based on virtualization. It allows multiple domains to start at boot time directly from the Xen hypervisor, decreasing boot times dramatically. Xen userspace tools, such as xl and libvirt, become optional.

Dom0-less extends the existing device tree based Xen boot protocol to cover information required by additional domains. Binaries, such as kernels and ramdisks, are loaded by the bootloader (u-boot) and advertised to Xen via new device tree bindings.

The audience will learn how to use Dom0-less to partition the system. Uboot and device tree configuration details will be explained to enable the audience to get the most out of this feature. The talk will include a status update and details on future plans.
Speakers
avatar for Stefano Stabellini

Stefano Stabellini

Principal Engineer, Xilinx
Stefano Stabellini serves as system software architect and virtualization lead at Xilinx, the world's largest supplier of FPGA solutions. Previously, at Aporeto, he created a virtualization-based security solution for containers and authored several security articles. As Senior Principal... Read More →

Dom0less Xen Summit 2019 pdf
Wednesday July 10, 2019 9:00am - 9:25am CDT
Gallery, 5th Floor
  Keynote Sessions

10:10am CDT

Application Agnostic High Availability Solution On Hypervisor Level - Chen Zhang, Intel
In today's public and private cloud markets, availability is a very important metric for all cloud service providers. COLO is an ideal Application-agnostic Solution for Non-stop service in the cloud. Our solution can protect user service even from physical network or power interruption. And the the switching process is difficult for users to perceive (TCP connection will not be terminated). Under COLO mode, both primary VM (PVM) and secondary VM (SVM) are running parallel. The COLO has more than ten times performance increase compared with previous solution (like Remus). Current COLO codes has been merged in QEMU community, we can use COLO in upstream without any other addition patches. In this talk, we will talk about the COLO implementation in QEMU and Xen, the new designed COLO-Proxy, discussing on problems we've met while developing COLO. and report the latest progress from Intel.
Speakers
avatar for Chen Zhang

Chen Zhang

Software Engineer, Intel
Chen is a software engineer from the Intel virtualization team. He works in the virtualization field for many years. Maintain COLO project in KVM/Qemu and Xen. And he is the core developer of this project. Most recently he focuses on eBPF related development, the VMM security field... Read More →

Application Agnostic High Availability Solution On Hypervisor Level V1.4 pdf
Wednesday July 10, 2019 10:10am - 10:35am CDT
Contemporary, 6th Floor
  Sessions

10:10am CDT

Live-Updating Xen - Amit Shah & David Woodhouse, Amazon
Xen currently has two major mechanisms to maintain security while hosting untrusted VMs without causing disruption to those guests: live patching, and live migration. We introduce a third method: live updating Xen. A live-update operation involves loading of the newly-staged hypervisor into RAM, the currently-running Xen serializing its state, and then transferring control to the newly-staged Xen, all without disrupting running instances, beyond a little downtime when neither hypervisor is running guest vCPUs.

We present a proposal on the design of such a feature, and invite comments and feedback.
Speakers
DW

David Woodhouse

Principal Kernel / Hypervisor Engineer, Amazon
David has been hacking on the Linux kernel since its early days, both professionally and as a hobbyist. Of late, he is interested in hypervisor and OS security.
AS

Amit Shah

Kernel / Hypervisor Engineer, Amazon
Amit is a long-time contributor to Operating Systems and Hypervisors. While more experienced in KVM, he is probing some aspects of Xen while working at EC2.

20190710 xensummit live updating xen pdf
Wednesday July 10, 2019 10:10am - 10:35am CDT
Gallery, 5th Floor
  Sessions

11:55am CDT

The Xen-Blanket for 2019 - Christopher Clark and Kelli Little, Star Lab Corporation
The Open Source Xen-Blanket software was developed by researchers at IBM and Cornell University, as extensions to the Xen hypervisor and its PV drivers, to enable seamless use of Xen PV drivers in guest VMs of nested Xen deployments. It was presented at the EuroSys 2012 conference, with a paper that has been widely cited since, and deployed in Cornell's SuperCloud.

Xen-Blanket has never been presented to the Xen Community and the software left unmaintained. However, recent work by Star Lab has modernized its implementation, aiming to encourage its adoption and incorporation into the Xen Project software.

This session will introduce the Xen-Blanket, describing its motivation and features; present the structure of the implementation in the hypervisor and device drivers; outline an example architecture for its deployment; and summarize its current state and plans within the Xen Project.
Speakers
KL

Kelli Little

Software Engineer, Star Lab Corporation
Kelli Little is a software engineer at Star Lab. She has worked as a developer for 7 years, starting as an intern in high school working with Raytheon. Kelli received her BS from Berry College with a focus in physics. She has worked extensively with project development and research... Read More →
avatar for Christopher Clark

Christopher Clark

Consultant, Xen Project, OpenEmbedded, Yocto
Christopher Clark is a software consultant working on Open Source virtualization technology with the Xen hypervisor, most recently involved with developing the new Hyperlaunch feature for Xen with Star Lab.

The Xen Blanket Star Lab Christopher Clark Kelli Little Xen Summit 2019 pdf
Wednesday July 10, 2019 11:55am - 12:20pm CDT
Gallery, 5th Floor
  Sessions

12:25pm CDT

Support of PV Devices in Nested Xen - Jürgen Groß, SUSE
Current support of nested virtualization with Xen is limited to fully emulated devices for the L1 hypervisor (L0 hypervisor being the one running on the physical machine). For being able to let L2 dom0 make use of L1 PV devices several new interfaces are needed.
In this design session I'll present my ideas how to add support of PV devices for L2 dom0. There are several possibilities how to do the work which I'd like to discuss.
Speakers
avatar for Jürgen Groß

Jürgen Groß

Principal Developer, SUSE
Contributing to Xen since 2007, maintainer of several Xen components.

2019 Xen Summit pv nested pdf
Wednesday July 10, 2019 12:25pm - 12:50pm CDT
Gallery, 5th Floor
  Sessions

1:50pm CDT

Improve the Reliability and Efficiency of Late Microcode Update - Chao Gao, Intel
Microcode update is used to correct errata by loading an Intel-supplied data block (so-called microcode) into the processor. Especially, late microcode update (aka, load microcode to processors at run-time) avoids system reboot which is necessary in early microcode update and greatly reduces system downtime. But, current late microcode update on Xen may fail in some cases as microcode becomes more complex in order to fix some sophisticated security issues. Chao will introduce his work to improve reliability and efficiency of microcode update.
Speakers
CG

Chao Gao

Cloud Software Engineer, Intel
Chao has work for Intel for 4 years as a software engineer. He is responsible for enabling new Intel virtualization features in KVM/Xen and is familiar with interrupt virtualization, performance tuning and virtualization base security. Currently, Chao is working on using HLAT to enhance... Read More →

Microcode final pdf
Wednesday July 10, 2019 1:50pm - 2:15pm CDT
Gallery, 5th Floor
  Sessions

2:50pm CDT

Argo and Hypervisor-Mediated Data eXchange (HMX) - Christopher Clark, OpenXT Project
Defending the security of interconnected systems is shifting to depend upon methods for determining the level of trust to be placed in devices and users, with mandatory enforcement of access control policies and robust mechanisms for ensuring the integrity of communication between mutually-authenticated entities.

Virtualization-based security leverages trust in the hypervisor to provide strong mechanisms to virtual machines, enabling increased protection, in server, client and embedded deployments.

The interfaces provided by the hypervisor for inter-domain communication determine critical properties for data isolation and control of information flow.

Hypervisor-Mediated data eXchange describes key aspects of these data transfer primitives and has some support in Hyper-V. The first Open Source implementation of HMX is Argo, a Xen hypervisor feature developed with the OpenXT Project.
Speakers
avatar for Christopher Clark

Christopher Clark

Consultant, Xen Project, OpenEmbedded, Yocto
Christopher Clark is a software consultant working on Open Source virtualization technology with the Xen hypervisor, most recently involved with developing the new Hyperlaunch feature for Xen with Star Lab.

Argo and HMX OpenXT Christopher Clark Xen Summit 2019 pdf
Wednesday July 10, 2019 2:50pm - 3:15pm CDT
Contemporary, 6th Floor
  Sessions

3:45pm CDT

Keeping Coherency on Arm: Reborn - Julien Grall, Arm ltd
The Arm architecture provides a set of guidelines that any software should abide by when accessing the memory with MMU off and update page-tables. Failing to do so may result in getting TLB conflicts or breaking coherency.

In a previous talk ("Keeping coherency on Arm"), we focused on updating safely the stage-2 (aka P2M) page-tables. This talk will focus on the boot code and Xen memory management.

During this session, we will introduce some of the guidelines and when they should be used. We will also discuss how Xen boot sequence needs to be reworked to avoid breaking the guidelines.
Speakers
avatar for Julien Grall

Julien Grall

Xen maintainer, Amazon Web Services
Julien Grall is an kernel/hypervisor engineer in the Amazon EC2 team. He is currently working on adding support for live updating the Xen hypervisor. Julien has been involved in Xen community since 2012. Today he is a Xen Project committer, and he maintains Xen on Arm.

Wednesday July 10, 2019 3:45pm - 4:30pm CDT
Gallery, 5th Floor
  Sessions
 
Filter sessions
Apply filters to sessions.
Tuesday, July 9
Wednesday, July 10
Thursday, July 11
Canvas, 1st Floor
Contemporary, 6th Floor
Gallery 1, 5th Floor
Gallery 2/3, 5th Floor
Gallery Foyer, 5th Floor
Gallery, 5th Floor
SPIN Chicago
  • Breaks + Meals
  • Design Sessions
  • Evening Event
  • Keynote Sessions
  • Registration
  • Sessions
  • Subject
  • Case Study / User Story
  • Community
  • Embedded / Automotive
  • Hypervisor
  • Security
  • Tools
  • Unikernels
  • Experience Level
  • Advanced
  • Any
  • Beginner
  • Intermediate
  • Audience
  • Both
  • Developers