NetBSD Adopts NetBSD/xen for Internal Use

agent dero writes "With NetBSD 2.0, the NetBSD Foundation also released support for a new port, NetBSD/xen. A version of NetBSD meant to run on top of the Xen virtual machine monitor. In this press release the foundation has announced that it is using the port and Xen for much of its internal development, citing security, and ease of use as main reasons for its adoption."

Xen is cool

[Usquebaugh]

Maybe I'll switch from using Qemu for my kernel sabotage. I would call it kernel hacking but that would indicate some proficiency :-(

BSD dying

[kinema]

Now multiple BSD instances can die on a single machine, securely.

A Great Leap Backwards

[kiore]

From the article

NetBSD 2.0 ... the first to include NetBSD/xen, a port of the NetBSD kernel that runs under the Xen version 1.2 monitor. Significant work to run Xen version 2.0 has recently been completed by Manuel Bouyer and the next release of NetBSD will in all likelihood include this code. The Xen project already supplies a version of NetBSD/xen that runs under later versions of the Xen monitor.

So Xen supplies a NetBSD kernel that runs under Xen 2.0. NetBSD now supports Xen 1.2. How is this a great advance? Why didn't they just pick up the Xen supplied pathces and go with the latest version of Xen?

Re:A Great Leap Backwards

[Nimrangul]

Looks like you need to read harder: NetBSD/xen can run in both privileged and unprivileged virtual machines under Xen 1.2, and in unprivileged virtual machines under Xen 2.0. Perhaps that is the why of it?

Re:A Great Leap Backwards

One issue with Xen is that you've got to have a base management OS, which needs privilages to run tools to create, destroy, migrate, manage and monitor virtual machines. Linux is well supported for management, however this means that you have to run Linux as your base kernel, and run unprivilaged clients of your choosing.
So this is a step forward as it means you can ditch that Linux vm and use a NetBSD one instead! :)

Where to get Xen?

[Short+Circuit]

When I saw it in Linux Journal (or was it Linux Magazine? Not sure...), I tried to get Xen. I went to their website, but couldn't find a download link.

Of course, now that I've seen it on Slashdot, it's a cinch to find. (Go figure...)

If only we had the WindowsXP port

[mnmn]

... I could switch between a build world of netbsd, and Counter Strike real fast!!!.

That makes me wonder if I can share one nic between the OSes, or put in two NICs, assign one for each OS.

Apart from Zen, would be cool to do a complete replace-boot, as in the OS state is frozen and written to harddisk (some laptop bioses do this), and the state of another OS is read... making switching between OSes, as fast as reading the same amount of data as your used up ram.

Heck I'll just buy another machine and use a KVM switch.

Re:If only we had the WindowsXP port

I believe there actually is a windows port, although it might be something earlier than XP. However, you need to jump through some hoops to get educational researcher status (or whatever it's called) from MS.

Re:If only we had the WindowsXP port

Apart from Zen, would be cool to do a complete replace-boot, as in the OS state is frozen and written to harddisk (some laptop bioses do this), and the state of another OS is read... making switching between OSes, as fast as reading the same amount of data as your used up ram.

VMWare Workstation (and I assume the rest) can do this. You can also take snapshots, which copy "RAM" and "disk" state to files on the host disk. It seems to only support a single snapshot, but is great for taking a snapshot of a clean system, doing something potentially nasty and then moving back to the snapshot to undo the damage.

I suppose you could copy the files to keep multiple snapshots, however if they are based on diffs of the current disk image and snapshot image, then that could get tricky depending on which is being updated and which is left static (disk image and disk snapshot). Then again, you could always take a snapshot and keep copies of the various versions of the whole directory for that virtual machine. Assuming you had the space.

Re:If only we had the WindowsXP port

[LizardKing]

My understanding of Xen is that NetBSD is one of several operating systems that can run as the primary or "monitor" OS within Xen. Other operating systems (including Windows and Linux) can then be run as secondary OS'es. A research version of Windows could run as the primary / monitor OS, but it is not readily available.

I should add that I've not actually tried Xen yet, but if my understanding of Xen is correct then I'm keen to try it. I'd ideally like to have NetBSD as the primary OS, and Linux as a secondary to test the portability of server side C++ code I'm writing.

Re:If only we had the WindowsXP port

Virtualization technology will be built into the next generation of Intel and AMD chips, starting in 2006. This means that software like VMware and Xen will be able to run the hosted operating systems at full speed, because the hardware will assist, rather than requiring fancy software tricks. This probably means you'll be able to run multiple copies of Windows on Xen by then. Probably.

Requiem for the FUD

// Please *don't* mod this up. It has already been done! Thx

... facts are facts. ;)

FreeBSD:
FreeBSD, Stealth-Growth Open Source Project (Jun 2004)
"FreeBSD has dramatically increased its market penetration over the last year."
Nearly 2.5 Million Active Sites running FreeBSD (Jun 2004)
"[FreeBSD] has secured a strong foothold with the hosting community and continues to grow, gaining over a million hostnames and half a million active sites since July 2003."
What's New in the FreeBSD Network Stack (Sep 2004)
"FreeBSD can now route 1Mpps on a 2.8GHz Xeon whilst Linux can't do much more than 100kpps."

NetBSD:
NetBSD, for When Portability and Stability Matter (Oct 2004)
NetBSD sets Internet2 Land Speed World Record (May 2004)
NetBSD again sets Internet2 Land Speed World Record (Sep 2004)

OpenBSD:
OpenBSD Widens Its Scope (Nov 2004)
Review: OpenBSD 3.6 shows steady improvement (Nov 2004)
OpenSSH (OpenBSD subproject) has become a de facto Internet standard.

*BSD in general:
Deep study: The world's safest computing environment (Nov 2004)
"The world's safest and most secure 24/7 online computing environment - operating system plus applications - is proving to be the Open Source platform of BSD (Berkeley Software Distribution) and the Mac OS X based on Darwin."
BSD Success Stories (O'Reilly, 2004) (pdf) ~ from Onlamp BSD DevCenter
"The BSDs - FreeBSD, OpenBSD, NetBSD, Darwin, and others - have earned a reputation for stability, security, performance, and ease of administration."
..and last but not least, we have the cutest mascot as well - undisputedly. ;)

--
Being able to read *other people's* source code is a nice thing, not a 'fundamental freedom'.

Erm

Maybe I'm missing something, but how is Xen different from VirtualPC or VMWare?

Re:Erm

it requires some cooperation from the client OS

Re:Erm

[vulcan_pupil]

Xen has been benchmarked to outperform VMWare in certain applications. In addition, Xen allows you to migrate a domain (instance of client OS) to another machine running Xen, live over the network.

Although, another difference is that the OS must be ported to run on Xen. But Linux, FreeBSD, NetBSD have been ported.

Re:Erm

[cant_get_a_good_nick]

VMWare is a hardware virtualization layer. It exports what appears to be (or damn close to it) a full machine to the OS.
Xen can be thought of as a micro-micro (nano?) kernel. it exports a minimalist subset, just enough to virtualize the hardware, absolutely nothing more. as such it's not that hard to "port" your OS to run on this kernel, but there is work to be done,

Re:Erm

[smartfart]

In addition, Xen allows you to migrate a domain (instance of client OS) to another machine running Xen, live over the network.

VMware's ESX can do this. I saw a demo of this last year in Baton Rouge, LA.

However, the really cool thing to me is the fact that the entire client environment is one file. Backing up or restoring a corrupted instance, or even cloning new servers, is trivial... you copy one file from A to B, and you're done.

Re:Erm

[setagllib]

Would Xen be called a kernel? It just provides hardware-like virtual devices (on a virtual bus itself) which require specific drivers and support from the running OS, but in exchange for this you get very good performance and it's pretty simple to implement. The drawback of course is that it /requires/ support from the running system, but NetBSD (and others..) already supports it. Not hard really, all of the abstraction for new busses and hardware is there, and of course the glory of cross-compilation (which is only needed for the kernel).

Re:Erm

I'd describe it as a nano-kernel - a software layer between the hardware and the client kernel's+OS's, and memory mapper and scheduler. It emulates where absolutly neccessary, and requires co-operation from the client kernels so they can all play ball.

KVMs (are evil)

Beware the KVM switch my son,
The mouse emulator that bites,
The cords that catch.
Beware the loss of functionality.
And shun buttons 3 4 and 5, natch.

Now that I've set the Reverend Dodgson spinning in his grave, let me translate.

Smarter KVMs have a big problem with fancy pointing devices. Many are designed to emulate a mouse to each attached CPU. For various reasons, they emulate a two button MSFT scroll mouse. So anything fancier is lost functionality.

I did find (just after purchasing a different one, natch) a USB KVM that is more like the old hard switches, and doesn't do emulation, that should avoid this problem. Of course you can no longer switch CPUs from your keyboard, because it doesn't trap the keyboard output.

Re:KVMs (are evil)

[O]

I keep my USB KVM on the floor, where I can switch it by pressing the button with my toe. Even more handy than switching with the keyboard!

Server side yet?

[nurb432]

While running it as the client is cool, are there patches to run the BSD's as the server side as well?

Nothign against the use of linux in general, I just prefer FBSD for servers..

Re:Server side yet?

Nothign against the use of linux in general, I just prefer FBSD for servers..

hey, it's ok, we're in the red zone here. you don't need to pretend having nothing against linux.

Xen is GPL. The others cost $$$.

Not to flame you, but that is a pretty big detail to miss.

Re:Grandparent is accurate.

>Where do you get the idea that a fact isn't FUD?

From the dictionary.
"the term FUD [...] has become generalized to refer to any kind of disinformation used as a competitive weapon."
Don't worry, it's never too late to get some actual education.

>Factual FUD is the best kind, because it can't be simply proven wrong.

"Factual FUD" is actually a very creative expression, if it weren't complete bullsh*t of course.
Everybody with a brain knows very well there's a very sharp line separating facts from FUD - and, just as a bonus, one can also consider the number of people that used the expression "factual FUD" before (0, of course).

>>It's true that FreeBSD can route 1Mpps on a 2.8GHz Xeon
>>while Linux, *on the same hardware*, can't do much more than 100kpps
>>(200kpps? 300kpps? Still quite far from 1Mpps).
>No. This is *wrong*.
>The FreeBSD guys never tried Linux on that hardware.

Nope. That was *right*. And yes, they did.

>>It's true that, even if Linux is the current record holder,
>>last year NetBSD broke the Internet2 Land Speed World Record twice.
>Yes, and it is true that by selectively choosing facts,
>you can paint your position in a better light than it is.

Every time - *every time* - anybody says anything that's true, he selectively chooses facts somehow.
Nonetheless, facts are facts.

It takes much more than a dishonest slashdot moderator to turn a pathetic troll's crap into truth.

Re:Grandparent is accurate.

Actually someone has a much wider definition than you do.

But whatever dude. Even if if FUD were strictly untruths, then the original poster is still spreading FUD, because:

>>No. This is *wrong*.
>>The FreeBSD guys never tried Linux on that hardware.
>
>Nope. That was *right*. And yes, they did.

No, that was *wrong* for the millionth time. Are you retarded? Let me put it in the simplest terms I can - they never tested Linux.

And your link is to a quote from a *FreeBSD* developer, you twit. All he made was a vague statement about Linux. I actually provided a link to what Linux developers had to say, and lo and behold they're routing over 1Mpps.

But I guess that's not factually wrong either, because 1Mpps isn't much more than 100Kpps, for some definitions of much, right? Moron.

Every time - *every time* - anybody says anything that's true, he selectively chooses facts somehow.

And if you're a deviant FUDster, you can selectively choose facts to imply your position is better than it actually is.

It takes much more than a dishonest slashdot moderator to turn a pathetic troll's crap into truth.

Shut up and stop your whining you blathering fuckwit.