QEMU Binary Translation

1. QEMU Binary Translation Ashish Kaila (akaila) Maneet Singh (maneets) 1

2. Virtualization Techniques • Full Virtualization using Binary Translation 2

3. Virtualization Techniques • OS Assisted Virtualization or Paravirtualization 3

4. Virtualization Techniques • Hardware Assisted Virtualization 4

5. Binary Translation • VMWare Software Virtualization Translation Units (TU) IR1 IR2 . . IRn Compiled Code Fragment (CCF) Source Inst Stream (binary) Target Inst Stream (binary) IR1 IR2 . . IRn Dynamic Binary Translator 5

6. Binary Translation • QEMU Binary Translation in brief Micro-operations implemented in C Source Inst Stream (binary) Object file Target Inst Stream (binary) dyngen 6

7. Quick EMUlation (QEMU) • Machine Emulator • Virtualizer QEMU modes: • User-mode emulation – Allows a process built for one CPU to be executed on another. • System-mode emulation – Allows emulation of a full system, including processor and assorted peripherals. 7

8. References A comparison of software and hardware techniques for x86 virtualization – Keith Adams, Ole Agesen, ASPLOS’06 Understanding Full Virtualization, Paravirtualization and Hardware Assist – VMware Whitepaper QEMU, a fast and portable Dynamic Translator – FabriceBellard QEMU Wiki: wiki.qemu.org 8

9. QEMU Deep Dive Source: wiki.qemu.org 9

10. 10

11. 11

12. 12

13. 13

14. 14

15. 15

16. 16

17. QEMU ARCHITECTURE 17

18. 18

19. 19

20. Thank you 20