[Top] [All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [RFC PATCH] xen/kconfig: allow LATE_HWDOM config for ARM

  • To: Michal Orzel <michal.orzel@xxxxxxx>, Julien Grall <julien@xxxxxxx>, Sergiy Kibrik <Sergiy_Kibrik@xxxxxxxx>, xen-devel@xxxxxxxxxxxxxxxxxxxx
  • From: "Daniel P. Smith" <dpsmith@xxxxxxxxxxxxxxxxxxxx>
  • Date: Wed, 18 Dec 2024 11:26:18 -0500
  • Arc-authentication-results: i=1; mx.zohomail.com; dkim=pass header.i=apertussolutions.com; spf=pass smtp.mailfrom=dpsmith@xxxxxxxxxxxxxxxxxxxx; dmarc=pass header.from=<dpsmith@xxxxxxxxxxxxxxxxxxxx>
  • Arc-message-signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=zohomail.com; s=zohoarc; t=1734539184; h=Content-Type:Content-Transfer-Encoding:Cc:Cc:Date:Date:From:From:In-Reply-To:MIME-Version:Message-ID:References:Subject:Subject:To:To:Message-Id:Reply-To; bh=8zB+zX4DmURxURBLM6sSPJcsO4CAdsxHqlB+51YY/x8=; b=L5oJ7Swr8B6jX+U80i26thV0vTS6vtZlj7Thj6WOnPn5PLjK9Lz6liw2PKJOmVosq6/MgEyE4jEJ7uix6O5ME0rNMvlxvHBov5Ne6mzTVSB4EzXRkn35S1pk4BG8S+/rOQNlWC6dEWDcGEGZCwCQJSyZg3QX38996ddhxYkD1GM=
  • Arc-seal: i=1; a=rsa-sha256; t=1734539184; cv=none; d=zohomail.com; s=zohoarc; b=PVJBldduZ/VLUmJfzEJt1zXQ2S+jdks7frJYUkBlpWTx0WFSXqtp3+nuTgiq4whs1LD+M0sihwCoI5oYvhg1blz9DHvR0BZBnoGuHg3e/YW+wzMxvJCliZb5waB4DeM/mCbUrF1tIuxpKXBAJgqPJKruOK8zVM2bPVZa+XG2ENI=
  • Cc: Andrew Cooper <andrew.cooper3@xxxxxxxxxx>, Anthony PERARD <anthony.perard@xxxxxxxxxx>, Jan Beulich <jbeulich@xxxxxxxx>, Roger Pau Monné <roger.pau@xxxxxxxxxx>, Stefano Stabellini <sstabellini@xxxxxxxxxx>
  • Delivery-date: Wed, 18 Dec 2024 16:26:35 +0000
  • List-id: Xen developer discussion <xen-devel.lists.xenproject.org>
Hey Michal,

On 12/18/24 06:04, Michal Orzel wrote:

Hi Daniel,

On 18/12/2024 02:17, Daniel P. Smith wrote:




On 17/12/2024 11:47, Sergiy Kibrik wrote:

Allow to build ARM configuration with support for initializing
hardware domain.
On ARM it is only possible to start hardware domain in multiboot mode, so
dom0less support is required. This is reflected by dependency on
DOM0LESS_BOOT
instead of directly depending on ARM config option.



Just to make sure my assumption is correct, you are looking to do a
multi-domain construction at boot time, with at least two domains. One
of those two domains is the "control domain" and one is the "hardware
domain", aka late hwdom except it's not constructed "late".

If you want such a configuration, I would highly recommend you first
enable setting flask labels via dom0less (assuming it is not there)

Speaking about dom0less and FLASK. A year ago, I did sent you (privately, 
through
AMD hyperlaunch collab) my attempt to add minimal steps to enable setting FLASK 
policy
for dom0less domUs. You then told me that you have a slightly different vision 
on how it
should be done. Any update with that regard? TBH I though that you're going to 
add this
support together with other hyperlaunch patches.
As I mentioned back in my March response, the concern I have with the patch you provided was with the layering violation. A security label is a flask-centric concept, at least currently, and thus not a concept you want to expose in the general XSM api. The correct way to get an XSM module's specific info, or translation, is to use the xsm_do_xsm_op(). I do feel that xsm_do_xsm_op() has a laying violation in its implementation, and is what I want to fix, it is still the correct interface. Priorities in meeting the core requirements AMD needs from hyperlaunch resulted in several abilities to fall to the wayside for the time being. I understand things need to move along, so I would prefer the use of existing interface that can be just updated when xsm_do_xsm_op() does get fixed up. 

v/r,
dps

 

©2013 Xen Project, A Linux Foundation Collaborative Project. All Rights Reserved.
Linux Foundation is a registered trademark of The Linux Foundation.
Xen Project is a trademark of The Linux Foundation.

Rackspace

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.