Chapter 19

Question 1

What are the three types of traditional hypervisors?

Answer 1

Type 0: Hardware-based virtualization built into firmware. Type 1: Bare-metal hypervisor runs directly on hardware. Type 2: Hosted hypervisor runs on top of host operating system

Question 2

When is dual-booting better than VMMs?

Answer 2

When need maximum performance for resource-intensive applications. When hardware doesn’t support virtualization. When testing low-level system modifications. When avoiding virtualization overhead is critical

Question 3

When are VMMs better than dual-booting?

Answer 3

When need to run multiple OS simultaneously. When frequent switching between systems is needed. When want isolation without rebooting. When sharing resources between systems

Question 4

What are four virtualization-like execution environments?

Answer 4

Containers (Docker): OS-level virtualization sharing kernel. Language VMs (JVM): execute bytecode in virtual machine. Application virtualization: sandbox applications from OS. Emulation: simulate different hardware architecture

Question 5

How do these differ from true virtualization?

Answer 5

Don’t provide complete hardware abstraction. Share host kernel or runtime environment. Cannot run different OS types. Less isolation than full virtualization

Question 6

Why can’t some CPUs implement trap-and-emulate virtualization?

Answer 6

Some privileged instructions fail silently instead of trapping. Guest OS instructions may not generate necessary exceptions. Hardware doesn’t provide sufficient virtualization support. No way to intercept all sensitive operations

Question 7

What method can VMMs use without trap-and-emulate?

Answer 7

Binary translation: rewrite guest code to replace problematic instructions. Paravirtualization: modify guest OS to cooperate with hypervisor. Hardware-assisted virtualization with modern CPU extensions

Question 8

What hardware assistance do modern CPUs provide for virtualization?

Answer 8

Extended page tables for memory virtualization. Hardware support for guest/host mode switching. I/O virtualization extensions. Interrupt virtualization and APIC virtualization

Question 9

What is Docker?

Answer 9

Container platform that packages applications with dependencies. Provides OS-level virtualization using Linux namespaces and cgroups. Enables lightweight isolated application environments

Question 10

What is Docker image?

Answer 10

Read-only template containing application code libraries and dependencies. Used to create Docker containers. Built in layers for efficient storage and sharing

Question 11

What is Docker container?

Answer 11

Running instance of Docker image. Lightweight isolated environment sharing host kernel. Provides process and filesystem isolation

Question 12

How suitable is traditional computer for scientific simulation?

Answer 12

Excellent - maximum performance no virtualization overhead. Direct hardware access for optimization. Best choice for CPU-intensive workloads

Question 13

How suitable is Type-1 VMM for scientific simulation?

Answer 13

Good - low overhead close to native performance. Some virtualization overhead but minimal. Can provide isolation while maintaining performance

Question 14

How suitable is Type-2 VMM for scientific simulation?

Answer 14

Fair - higher overhead due to host OS layer. Additional context switching and resource management. May impact performance-critical applications

Question 15

How suitable is Docker container for scientific simulation?

Answer 15

Good - minimal overhead shares host kernel. Fast startup and resource efficiency. May lack some hardware access for specialized computing

Question 16

How suitable is traditional computer for testing malicious programs?

Answer 16

Poor - no isolation potential system compromise. Malware can affect entire system. Requires separate dedicated machine for safety

Question 17

How suitable is Type-1 VMM for testing malicious programs?

Answer 17

Excellent - strong isolation between guest and host. Can easily reset/restore clean state. Hardware-level separation provides security

Question 18

How suitable is Type-2 VMM for testing malicious programs?

Answer 18

Good - provides isolation but host OS still vulnerable. VM escape attacks possible. Better than native but not ideal for malware analysis

Question 19

How suitable is Docker container for testing malicious programs?

Answer 19

Poor - shares kernel with host limited isolation. Container escape possible. Not designed for malware containment

Question 20

How suitable is traditional computer for video games?

Answer 20

Excellent - maximum performance and hardware access. No virtualization overhead for graphics/audio. Best gaming experience possible

Question 21

How suitable is Type-1 VMM for video games?

Answer 21

Fair - performance overhead affects gaming experience. Limited graphics acceleration support. May not support all gaming hardware features

Question 22

How suitable is Type-2 VMM for video games?

Answer 22

Poor - significant performance overhead. Graphics acceleration challenges. Input latency and compatibility issues

Question 23

How suitable is Docker container for video games?

Answer 23

Poor - limited graphics and hardware access. Not designed for interactive applications. Performance and compatibility issues

Question 24

How suitable is traditional computer for kernel testing?

Answer 24

Dangerous - kernel bugs can crash entire system. No isolation or protection. Requires separate dedicated hardware

Question 25

How suitable is Type-1 VMM for kernel testing?

Answer 25

Excellent - complete isolation from host. Can test different kernels safely. Easy to reset and restore state

Question 26

How suitable is Type-2 VMM for kernel testing?

Answer 26

Good - provides isolation for kernel development. Some overhead but acceptable for testing. Still safer than bare metal

Question 27

How suitable is Docker container for kernel testing?

Answer 27

Impossible - containers share host kernel. Cannot test different kernel versions. Not applicable for kernel development

Question 28

How suitable is traditional computer for web server?

Answer 28

Good - maximum performance but single application. No isolation or resource management. Efficient but inflexible

Question 29

How suitable is Type-1 VMM for web server?

Answer 29

Excellent - good performance with isolation. Can run multiple services securely. Easy scaling and management

Question 30

How suitable is Type-2 VMM for web server?

Answer 30

Fair - additional overhead from host OS. More complex setup and management. Less efficient resource utilization

Question 31

How suitable is Docker container for web server?

Answer 31

Excellent - lightweight fast startup minimal overhead. Easy deployment and scaling. Perfect for microservices architecture

Question 32

What is graceful application migration?

Answer 32

Application saves state to storage then terminates. Data copied to destination server. Application restarted from saved state. Involves downtime but simple implementation

Question 33

What is live migration?

Answer 33

Transfer running application without stopping. Memory state copied while application continues. Brief pause for final synchronization. No downtime but complex implementation

Question 34

How to compare graceful vs live migration?

Answer 34

Graceful: simpler implementation planned downtime data consistency guaranteed. Live: complex implementation no downtime requires specialized support

Question 35

What is User-Mode Linux most similar to?

Answer 35

Most similar to Type-2 VMM or paravirtualization. Runs as user process on host Linux. Provides complete Linux environment with some performance overhead

Question 36

What are advantages of container-based operating system?

Answer 36

Consistent application packaging and deployment. Strong isolation between applications. Efficient resource utilization. Easy application updates and rollbacks

Question 37

What are disadvantages of container-based operating system?

Answer 37

Complex system administration and debugging. Potential performance overhead for simple tasks. Security concerns with shared kernel. Learning curve for users

Question 38

Is container-based OS feasible?

Answer 38

Partially feasible for server environments and cloud applications. Challenges for desktop applications requiring hardware access. Would need hybrid approach with traditional applications for compatibility

Question 39

What is difference between emulation and virtualization?

Answer 39

Emulation: simulates different hardware architecture (CPU instruction translation). Virtualization: abstracts same hardware architecture (resource sharing). Emulation slower but supports different architectures

Question 40

How do containers achieve isolation?

Answer 40

Linux namespaces for process/network isolation. Control groups (cgroups) for resource limits. Separate filesystem views. User and permission isolation

Question 41

What are VMware tools and guest additions?

Answer 41

Software packages installed in guest OS. Provide better integration with host system. Enable features like shared folders and clipboard. Improve graphics and mouse performance

Question 42

What is nested virtualization?

Answer 42

Running hypervisor inside virtual machine. VM within VM capability. Useful for testing and development. Requires hardware support and performance considerations