IT TAKES VIRTUALIZATION TO MAKE AN
AGILE INFRASTRUCTURE
Part IV of a Series of AMD White Papers on 64-bit Computing
Just sixty years ago, scientists powered up the ENIAC,1
generally regarded as the first electronic computer.
ENIACs clock ran at five kilohertz, and the systems
17,468 vacuum tubes consumed over 150 kilowatts of
2
power. ENIACs software environment was primitive
by todays standards. Programs consisted of sequences
of register settings, entered via dials on control panels,
and small modifications to the internal circuits,
implemented like the connections in operator-assisted
telephone switchboards.
The industry has come a long way in sixty years. First,
the transistor and, later, the integrated circuit enabled
the creation of inexpensive microprocessors containing
hundreds of millions of transistors, running at multi-
gigahertz frequencies, and consuming less than 100
watts. Advances in software technology enabled the
productive deployment of these powerful systems.
Technological evolution both drives, and is driven
by, ever-increasing levels of abstraction in hardware
and software architectures. High-level programming
languages like Fortran, COBOL, BASIC, C, and Java
1
The name ENIAC was an acronym for Electronic Numerical Integrator and Computer.
2
Transistor technology had yet to be invented at the time of ENIACs design. Since power cycling shortened the life of the vacuum tubes, operators soon decided to leave the system
powered-up, even when it had nothing to do.
allowed programmers to implement software
algorithms in a manner divorced from underlying
machine architectures. Operating systems provided
abstractions that freed programs from the complex
and varied details needed to manage memory and I/O
devices. Contemporary application software, swaddled
within layers of middleware and dynamic linked
libraries, must work overtime to determine the physical
characteristics of the hardware on which it runs.
Although application packages and middleware have
become blissfully unaware of the vagaries of specific
hardware implementations, the operating systems
that provide this isolation must themselves be totally
cognizant of the hardware on which they reside. Details
like MAC and IP addresses, SAN LUN assignments,
physical memory configurations, processor counts, and
system serial numbers become enmeshed within the
OS state at the time of system installation. This stateful
information locks the OS to the specific hardware on
which it was installed and complicates hardware fault
recovery, system upgrades, and application consolidation.
1
 Of course, the same hardware and software architects
who created the abstract environments in which todays
software and middleware packages reside were not
about to let a few annoying details like stateful
information stand in their way. They realized that if they
could abstract the hardware as seen by the operating
system, then they could finesse softwares view of the
physical configuration on which it was installed. They
called their approach virtualization, and it turns
out to be harder than you might imagine. Operating
system software likes to think it owns the hardware
on which it runs, and does not like to be fooled. It is
harder still, given that the x86 architecture came into
existence long before notions of virtualization entered
the industry, and does not lend itself easily to such
notions. In the remainder of this document, we will
survey the kinds of problems virtualization can address
and how it addresses them. We will review the features
AMD added to Next-Generation AMD Opteron
processors and AMD Athlon 64 processors to make
AMD Virtualization (AMD-V) an industry leader.
We will look at how AMDs ecosystem partners are
adapting their software to take advantage of these
new virtualization extensions. Finally, well delve into
the future of virtual technology, and assess the impact
its likely to have on the industry in years to come.
Who Needs Virtual Technology?
Practically everyone who uses or supports computer
systems stands to benefit from the emergence of
advanced virtual technology that enhances the agility
and efficiency of server and client systems alike. Until
now, the benefits from virtualization came at some
cost in terms of application performance, but the latest
AMD Athlon 64 processor and AMD Opteron
processor, as well as AMD Turion 64 mobile
technology, all include AMD-V enhanced hardware that
helps reduce the software overhead needed to support
virtual machine environments. Suppliers like Microsoft,
Virtual Iron, VMware, and XenSource are rushing to
2
incorporate support for AMD-V in upcoming software
releases. Why all the fuss and effort around
virtualization?
The x86-based server market grew exponentially over
the past decade, driven largely by a philosophy of one
application, one server. This approach filled datacenters
with rack after rack of over-provisioned systems, most
operating at less than 15 percent of capacity, but
consuming power and generating heat on a 24x7 basis.
Even with these low utilization rates, IT managers often
need to dedicate three separate systems to each
application: one to run the application, one to back up
the first system in the event of a hardware failure, and
one to serve as a development platform for ongoing
development and problem analysis. These systems
operate under a variety of current and legacy OS
environments, including Windows NT, Windows
Server 2000, Windows Server 2003, Solaris, UNIX,
and Linux. IT managers would love to consolidate
these disparate workloads onto a smaller number of
hardware systems, but are understandably wary of the
potential software problems that can arise when they
make several independent applications share a single
instance of an operating system. Virtualization provides
a mechanism to consolidate these applications, along
with their existing OS, middleware, and communications
environments, on a larger shared system. Each
workload continues to see a virtual environment that
corresponds exactly to the physical environment of
its earlier dedicated system, eliminating the need to
change OS or communications parameters. These
virtual machines stand ready to respond to external
requests, but consume almost no machine resources
or power in the absence of such requests a far cry
from the real resources consumed in real, or non-
virtual, deployments.
In addition to consolidating existing workloads,
virtualization also facilitates the introduction of new
applications in the datacenter. Once IT gets the
go-ahead on a new project, development can begin
immediately on brand new virtual machines added to
an existing physical server. Virtualization essentially
allows the enterprise to base its hardware acquisition
plans on aggregate demand, rather than the vagaries
of any given program. Although not strictly a portion
of virtual technology per se, most virtual software
environments include utilities that facilitate operational
tasks such as the provisioning of new virtual servers,
the allocation (and reallocation) of virtual resources,
and the assignment of virtual machines (VMs) to
physical systems. These utilities simplify the scheduling
of planned hardware outages as well as the recovery
from unplanned outages. To accommodate planned
outages, IT management merely relocates the VMs
to pursue a software anomaly, they merely load the
running on a particular hardware configuration to an
proper virtual machine, and theyre ready to pursue the
alternate system, allowing the original hardware to be
problematic code.
taken off-line for service. For unplanned outages, the
system operator simply reinitiates the relevant VMs
Virtualization greatly eases the task of application
on an operational system until the failed hardware
migration to new versions of operating systems for
configuration can be restored to service.
both client and server applications. IT can install
multiple VMs, each running different versions of the
Virtualization is changing the way software developers
OS, and migrate specific applications to the new and
work. Developers must often adapt their code for
improved OS at a pace convenient to IT and the
operation in a wide variety of operating system
end-user, rather than on the all-or-nothing basis that
environments, and then test those codes in the relevant
has characterized software transitions in the past.
environments. To accomplish this, they would often
dedicate specific developer machines to different
Virtualization may even alter the way organizations deploy
versions of Windows, UNIX, and Linux. When pursuing
desktop technology. The recently formed Virtual Desktop
software anomalies, they would find the machine with
Infrastructure Alliance allows IT administrators to
the OS environment on which the bug had been
create and manage desktop virtual machines on servers
observed, and attempt to come up with a correction.
within datacenters. End-users can access these desktop
Of course, if the particular system with the required
environments at any time and from any place, using thin
environment had not been used for a while, there was
client devices (or thin client access utilities on more fully
no assurance it would be in good working order when
configured systems). Even old, underpowered systems
needed. Virtualization lets development organizations
can use the Remote Desktop Protocol (RDP) to access
maintain a library of virtual machines corresponding to
more powerful virtual PC desktops arrayed with up-to-
all the specific hardware and software environments on
date software versions. This approach to client
which their software runs. Then, if and when they need

3
 deployment can lower support expenses, as well as good news is that since this approach operates
hardware acquisition costs, since the virtual PCs reside invisibly from the perspective of the guest OS,
on centralized servers in a managed IT environment, it requires no changes to the guest OS or the
eliminating the need to visit the clients actual desktop applications running under the guest. Off-the-shelf
system for most maintenance activities. versions of software developed long before
virtualization ever came to the x86 world, like MS-
Last, but far from least, virtualization will play an ever DOS, Windows 3.1, or Windows NT 3.5
increasing role in creating more secure and robust client can be installed as guest operating systems. The
environments. For example, on one client system, IT bad news is that all that instruction trapping and
might install two virtual machines, one that handles emulation can reduce overall system performance
sensitive corporate data, and a second for less secure significantly in I/O-intensive environments. EMCs
end-user tasks. It could block the first VM from VMware, the best known and most popular virtual
downloading unauthorized applications, screen savers, environment for x86 processors, has used
and other security threats, while allowing the second variations on this software approach in all the
VM access to less secure downloads and material. products it has delivered to this point. Microsofts
Virtual PC and Virtual Server packages use a
The Technology of Virtualization similar approach.
Anyone who has ever mastered a magic trick like
sawing a woman in half or pulling a rabbit out of a hat
knows that creating an illusion requires planning and
deft execution. Convincing an operating system like
Windows or Linux that it has exclusive control of a
computer system that, in fact, it shares with other Ap
plic
atio
operating systems also requires the same degree of Op
era
ns
ting
planning and execution. Architects have pursued three Sys
tem
different strategies in their pursuit of virtual technology. Vir
tua
liza
tio
All require the presence of hypervisor software that nL
aye
r
x86
allocates basic machine resources including CPU time Arc
hite
ctu
and memory. All consider the OS software running re

on virtual machines to be guest operating systems.

They differ with regard to the techniques they use to X86 VIRTUALIZATION

convince the guest OS that it is in charge of the system.

Partial-virtualization (sometimes known as para-

Software-implemented virtualization techniques virtualization) eliminates much of the trapping and
cause the hypervisor to trap the machine operations
emulation overhead of the software approach by
the OS uses to read or modify the systems status
requiring that the guest OS cooperates in creating
or to perform input/output operations. Once
the virtual illusion that it essentially agrees to
trapped, the hypervisor emulates these operations
be fooled by the hypervisor. Para-virtualization
in software and returns status codes consistent
requires the use of specially modified guest
with what the real hardware would deliver. The
operating systems that understand the game is

4
 rigged and know how to play along to maintain the
virtual illusion. This approach precludes the ability
to run off-the-shelf and legacy operating software
in para-virtual environments. Xen, the open-source
communitys approach to virtualization, uses para-
virtualization as the basis for its technology.
Hardware-assisted virtualization relies on hardware
extensions to x86 system architecture to eliminate
much of the hypervisor overhead associated with
trapping and emulating I/O operations and status
instructions executed within a guest OS. The latest
processors from both AMD and Intel include
hardware virtualization assists known as AMD-V
and Intel VT. Key hypervisor suppliers (Microsoft,
VMware, and XenSource) support these features in
their software. CPU extensions solve only part of
the virtualization problem, since they require the
hypervisor to do lots of work to finesse input-
output operations, adding overhead to each I/O
call. A complete solution requires the virtual
mapping of I/O devices, which in turn requires
changes to the chipsets and I/O bridges that link
system processors to I/O buses like PCI Express.
AMD and Intel have each issued specifications for
chipset extensions consistent with their system
architectures, and hardware incorporating these
extensions will likely emerge in 2007.
The good news is that once these processor and
chipset extensions, and the software that supports
them, reach the market, end-users will have access
to advanced virtualization technology that rings in
an era of enhanced agility in IT operations with little
incremental software overhead. There is no bad news
in this regard.
The Virtual Ecosystem
The delivery of all important industry-standard
technologies, including virtualization, relies on a
network of technology providers. Software developers
like VMware and Connectix (now part of Microsoft)
offered the first packages that enabled x86 virtual
environments. Over the years, VMware has augmented
its basic hypervisor product with a suite of utilities
that allows end-users to create, provision, and manage
an array of virtual machines within a datacenter.
XenSource and Virtual Iron have emerged with Xen-
based virtualization schemes principally targeted at the
Linux market. Some have assumed that the introduction
of hardware virtualization assists in processors will
narrow or eliminate the need for virtualization
software, but this is far from the actual case. All virtual
environments require a hypervisor of some form to
allocate real machine resources to virtual machines;
processor and chipset extensions assist the hypervisor,
but cannot replace it. So, as enhanced hardware shrinks
the overhead associated with virtualization, end-user
adoption of the technology will increase and create
new opportunities for these ISVs.
AMD has extended its architectures to improve
virtualization performance, but there remains much
room for subsequent innovation in this area. Unlike
instruction set enhancements (like AMDs pioneering
64-bit extensions to the 32-bit x86 architecture), AMD-V
operates behind the scenes, and directly impacts only
a few areas of operating system and hypervisor code.
This allows CPU designers to innovate with regard to
virtualization support, both to enhance functionality or
improve performance. End users should not assume
that competitors virtualization extensions do the same
things, and offer similar levels of performance. The devil
is in the details, a few of which are outlined in the
feature box. Even if system purchasers do not lift the
hood and check out the engine, they should ascertain
virtual (as opposed to real) machine performance as
part of their acquisition checklist.
5
 Chipset suppliers like ATI, Nvidia, and VIA plan to
incorporate I/O virtualization capabilities into their I/O
bridges. AMDs I/O virtualization spec differs from
Intels, which becomes just one more way the chipsets
designed for AMDs revolutionary Direct Connect
Architecture must differ from those designed to tie
into Intels traditional front-side bus approach.
Suppliers of system management software like CAs
Unicenter and HPs System Insight Manager have
extended their packages to manage virtual as well as
physical resources. The shift to virtual environments
will enable IT managers to consolidate workloads and
allocate system resources with a far greater degree of
granularity than they have at present. This in turn will
create the need for software to meter, provision, and
allocate system resources in a more autonomic manner.
AMDs Real Roadmap for
Virtual Technology
Just in case you havent been paying attention up to
now, the goal is to make sure you understand that
AMD believes virtualization will play a big part in the
future of client and server computing, and that AMD
is backing up its words with a solid roadmap of
virtualization solutions.
AMD added hardware virtualization capabilities (along
with DDR2 support and a few other enhancements)
to the Next-Generation AMD Opteron processor,
AMD Athlon 64 processor, and AMD Athlon 64 X2
Dual-Core processor, as well as AMD Turion 64 X2
dual-core mobile technology. Of course, AMD is not
planning on resting on its laurels. It is working with
chipset partners to incorporate the features outlined
in the IOMMU (I/O Memory Management Unit)
spec it issued early in 2006. And, its working with
ecosystem partners to help make sure they will
be ready to support these new features on a
timely basis.
6
AMD is not stopping there. Its quad-core processor
architecture plans include features that extend the
capabilities of AMD-V and improve its performance.
AMD plans to demonstrate once again how its Direct
Connect Architecture enables AMD processor-based
systems to outperform those based on legacy front-side
bus based approaches. You wont have to wait too
long to try these processors yourself AMD plans to
start shipping quad-core processors in 2007. Because
of AMDs commitment to platform stability, its OEM
system partners will be able to drop these quad-core
processors into the DDR2-based platforms they started
shipping in 2006.
The Future Virtually at Your Fingers
Virtual technology is the latest in a long line of technical
advancements that have increased the level of system
abstraction and enabled IT users to harness ever-
increasing levels of computer performance. Virtualization
essentially decouples users and applications from the
specific hardware characteristics of the systems they
use to perform computational tasks. This change
will usher in an entirely new wave of hardware and
software innovation in years to come. Virtualization
will simplify system upgrades (and in some cases may
eliminate the need for such upgrades), by capturing
the state of a virtual machine, and transporting that
state in its entirety from the old to new host system.
Virtualization will enable a generation of more energy-
efficient computing. Processor, memory, and storage
resources that today must be delivered in fixed
amounts determined by real hardware system
configurations will be delivered with finer granularity
via dynamically tuned virtual machines in the future.
The combination of virtual technology and powerful
AMD technology-based processors allows users to
deploy computing resources in more agile, efficient,
and cost-effective ways. AMD is proud to participate
in this process and assist its customers in extracting
ever-increasing value from their IT investments.
 MEMORY: THE FIRST VIRTUAL RESOURCE

Long before computer scientists came up with the notion of virtualizing an entire system,
architects had already invented techniques to virtualize memory management 1. Virtual memory
technology lets a system with a limited amount of physical memory look much larger to
application software. To create this illusion, the OS stores the full memory image of the
application and its data on the systems hard drive, and transfers required pieces of this image
into the systems DRAM memory as the program executes. The system you are using to read
this document on-line (assuming you didnt get a printed version) undoubtedly uses some
form of virtual memory management.

To translate the virtual addresses seen by each application into physical DRAM memory
addresses, the system relies on a map (known as a page table) that contains vectors linking
chunks of virtual memory to real memory. Modern x86 processors include hardware features
known as translation look-aside buffers (TLBs) that cache the translation vectors for recently
accessed chunks of memory, thus speeding up the process. TLBs play a role in virtually all
memory references, so the manner in which they perform their translations can play a big role
in determining overall system performance.

Architects soon learned that TLB design can seriously impact multitasking system operation.
Most tasks in such systems have unique page tables. This forces the operating system to reset
(or, more colorfully, flush) the TLB each time it switches from one task to another. Then, as
the new task executes, its page table entries fill up the TLB, at least until the next task switch.
This constant flushing and reloading can really eat into performance, especially if each task runs
for only a few milliseconds before the next switch.

To mitigate the impact of task switching, architects added a task ID field to each TLB entry.
This allows the system to retain the mapping information in the TLB when switching tasks, since
it only uses the entries for the task actually executing at any point, which in turn eliminates the
need for performance-inhibiting TLB flushes. At least until virtualization entered the scene.
Since the guest OS running on a virtual machine is unaware of other guests, it can only assign
unique task IDs within its own environment. Thus, multiple VMs can have tasks with the same
ID, confusing the TLB and making a real mess. Theres a simple solution to this problem the
hypervisor merely flushes the TLB every time it switches from one VM to another. This forces
the tasks executing in the next VM to reload the TLB with their own page table entries.
Unfortunately, this approach seriously impacts virtual system performance, giving architects
everywhere that dj vu feeling all over again.

AMDs architects had a better idea. They merely added a new, VM-specific tag called an address
space identifier (ASID) to the TLBs in their new AMD-V enhanced processors. Each VM has
a unique ASID value, known only to the hypervisor and the TLB hardware. The ASID is invisible
to the guest OS, thus eliminating the need to modify the guest, preserving the virtual illusion
and avoiding any performance degradation. Sounds simple, doesnt it?

1
The Atlas computer at the University of Manchester was the first system to incorporate virtual memory technology and
became operational in 1962.

7
2006 Advanced Micro Devices, Inc. All rights reserved. AMD Athlon, AMD Turion, AMD, the AMD arrow logo, AMD Opteron, AMD Virtualization, AMD-V, and combinations thereof are trademarks of Advanced Micro Devices, Inc. Microsoft and
Windows are registered trademarks of Microsoft Corporation in the U.S. and/or other jurisdictions. Other names are for identification purposes only and may be trademarks of their respective companies. 41632A