WARNING - OLD ARCHIVES

This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/
   
 
 
Xen 		  
Home Products Support Community News
 
   
 

xen-devel

[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [Xen-devel] [PATCH 04/17] vmx: nest: domain and vcpu flags

from [Christoph Egger] [Permanent Link][Original]
To: xen-devel@xxxxxxxxxxxxxxxxxxx
Subject: Re: [Xen-devel] [PATCH 04/17] vmx: nest: domain and vcpu flags
From: Christoph Egger <Christoph.Egger@xxxxxxx>
Date: Thu, 20 May 2010 11:51:49 +0200
Cc: Tim Deegan <Tim.Deegan@xxxxxxxxxx>, Qing He <qing.he@xxxxxxxxx>
Delivery-date: Thu, 20 May 2010 02:56:20 -0700
Envelope-to: www-data@xxxxxxxxxxxxxxxxxxx
In-reply-to: <20100520093753.GL4164@xxxxxxxxxxxxxxxxxxxxxxx>
List-help: <mailto:xen-devel-request@lists.xensource.com?subject=help>
List-id: Xen developer discussion <xen-devel.lists.xensource.com>
List-post: <mailto:xen-devel@lists.xensource.com>
List-subscribe: <http://lists.xensource.com/mailman/listinfo/xen-devel>, <mailto:xen-devel-request@lists.xensource.com?subject=subscribe>
List-unsubscribe: <http://lists.xensource.com/mailman/listinfo/xen-devel>, <mailto:xen-devel-request@lists.xensource.com?subject=unsubscribe>
References: <1271929289-18572-1-git-send-email-qing.he@xxxxxxxxx> <1271929289-18572-5-git-send-email-qing.he@xxxxxxxxx> <20100520093753.GL4164@xxxxxxxxxxxxxxxxxxxxxxx>
Sender: xen-devel-bounces@xxxxxxxxxxxxxxxxxxx
User-agent: KMail/1.9.10 
On Thursday 20 May 2010 11:37:53 Tim Deegan wrote:
> At 10:41 +0100 on 22 Apr (1271932876), Qing He wrote:
> > Introduce a domain create flag to allow user to set availability
> > of nested virtualization.
> > The flag will be used to disable all reporting and function
> > facilities, improving guest security.
>
> I have the same reservation about this as Christoph's patch: I don't
> think this needs to be a create-time flag - there's no reason it can't
> be enabled or disabled with a domctl after domain creation.  (And of
> course we'll want it to bve the same interface on both SVM and VMX.)

I already reworked that part to use HVM_PARAM_*. It showed up one
caveat: The nestedhvm_enabled() becomes true after p2m_init()
run. So the hap-on-hap code wasn't initialized.
I worked around that by initialising nestedp2m's in p2m_init()
unconditionally of having nestedhvm=1 in the guest config file
or not.

Christoph

-- 
---to satisfy European Law for business letters:
Advanced Micro Devices GmbH
Einsteinring 24, 85609 Dornach b. Muenchen
Geschaeftsfuehrer: Andrew Bowd, Thomas M. McCoy, Giuliano Meroni
Sitz: Dornach, Gemeinde Aschheim, Landkreis Muenchen
Registergericht Muenchen, HRB Nr. 43632


_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-devel
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [Xen-devel] [PATCH 03/17] vmx: nest: wrapper for control update, Qing He
Next by Date:  Re: [Xen-devel] [PATCH 04/17] vmx: nest: domain and vcpu flags, Qing He
Previous by Thread:  Re: [Xen-devel] [PATCH 04/17] vmx: nest: domain and vcpu flags, Tim Deegan
Next by Thread:  Re: [Xen-devel] [PATCH 04/17] vmx: nest: domain and vcpu flags, Qing He
Indexes:  [Date] [Thread] [Top] [All Lists]
 
   

Copyright , Citrix Systems Inc. All rights reserved. Legal and Privacy