[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [RFC PATCH] xen/kconfig: allow LATE_HWDOM config for ARM

To: Julien Grall <julien@xxxxxxx>, xen-devel@xxxxxxxxxxxxxxxxxxxx
From: Sergiy Kibrik <sergiy_kibrik@xxxxxxxx>
Date: Tue, 24 Dec 2024 05:41:47 +0200
Arc-authentication-results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=epam.com; dmarc=pass action=none header.from=epam.com; dkim=pass header.d=epam.com; arc=none
Arc-message-signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector10001; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=O93J0ZE6UWqtpepxBvByThnj1/RZPaYNApUG1BgiA6s=; b=X3eF+4+JFtphdgdKApOUiMpd9YjJd2LBv63vVHNoBa/ZRHrDaL5ltoO/38/E6jVszp1hfA4VtlMNTlcBo86ri6Y62P3OI/3qjKE+N57/irPs8ZBYJx4Gn7Advrocp7qhlJ8H4GXh8r8MD+5L/T6lpdycbv0oB8raBuQMjXwhK2gQiZI2oDbgBUYqLvVGTHsoKx+XDCmSKuyG3xUHCvWGM6E2Od2HF1wOfDsU/zx+oe9kWttIMaTPzIrwB9mXhBH0/7RqGtmd2NJED+9XeE1NSOaE3eILI5UKIsaK05aUtxBYMjbip3pKIsX9+F/pqruGe0lQQcXEVDhUQ8WId78hcw==
Arc-seal: i=1; a=rsa-sha256; s=arcselector10001; d=microsoft.com; cv=none; b=JxOX8w1FmHS1g/xM0nxnGZ8catj3+6Zmj/zUm+IPCYFNyesvr2ZZc9xdOBoEuZKuJMMZAaM9EdCULwCky8vMYyfl12MxCXC064qlppgpBRcetJ3o6Ozt/aTPv0QrFEfsSCDG04enAeUvOhws72BAkVzlzqGAV8n3AGfCvxkFHpnAloPCucb8G85Kgpvbtn7mXPUbdsAgDDzdo7wJpumfM7cvHlqMNjPov5CbqL1V3s8uPAbWwoDbNnh/jn08fz7QnHD7Z/hmwuA+0IA4PvU4e/crW8bxhQyAMJ+cjRilG6hIW6m54WTCkyGOUb5gv1V0f64vTAQkT7BT3Frtx4Tonw==
Authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=epam.com;
Cc: Andrew Cooper <andrew.cooper3@xxxxxxxxxx>, Anthony PERARD <anthony.perard@xxxxxxxxxx>, Michal Orzel <michal.orzel@xxxxxxx>, Jan Beulich <jbeulich@xxxxxxxx>, Roger Pau Monné <roger.pau@xxxxxxxxxx>, Stefano Stabellini <sstabellini@xxxxxxxxxx>, "Daniel P. Smith" <dpsmith@xxxxxxxxxxxxxxxxxxxx>
Delivery-date: Tue, 24 Dec 2024 03:42:27 +0000
List-id: Xen developer discussion <xen-devel.lists.xenproject.org>

18.12.24 12:05, Julien Grall:

On 18/12/2024 09:52, Sergiy Kibrik wrote:
hi Julien,

17.12.24 14:42, Julien Grall:
Hi,

Can you clarify why this is an RFC?
The code for LATE_HWDOM support on ARM seems to be already in placeand working, yet I'm not sure that such configuration is ready to beexposed for users (well, probably not ready yet, considering Daniel'scomments regarding XSM later in this thread).
Thanks. In the future, for RFCs, I would suggest to add a section afteryour commit message (generally after ---) to describe a bit more whatyou input you expect from the reviewers.


yes, sure

On 17/12/2024 11:47, Sergiy Kibrik wrote:
Allow to build ARM configuration with support for initializinghardware domain.On ARM it is only possible to start hardware domain in multibootmode, sodom0less support is required. This is reflected by dependency onDOM0LESS_BOOT
instead of directly depending on ARM config option.
I am a bit confused with the explanation. We already have an hardwaredomain on Arm. It is dom0. So what are you trying to achieve? Is thisremove some permissions from the hardware domain?
I agree, it should have better description.
This is to split dom0 permissions into control-only and hardware-onlydomains, much like it can be done in x86.
I don't believe you need the late_hwdom feature to do that on Arm. Inthe case of dom0less, you are creating the domains at boot, so at thepoint you can decide who does what.

I'm not sure which mechanism to use for this. Can it be done by XSMpolicy management?

If so, why can't the hardware domain stay as dom0 and you remove thefeature you don't want (e.g. control domain)?
control domain is still needed, but as a separate instance & withouthardware access.
Sure. But the control domain doesn't need to be dom0, it could be dom1,right?

I suppose it can. But again -- how do I make dom1 (or any other) acontrol domain instead of dom0?

Are you sure this patch is sufficient to use the late hwdom feature?Looking at the code, to enable the late hwdom, the user needs toprovide a domid on the command line. But AFAICT, there is no way toprovide a domain ID in the DOM0LESS case...
I append "hardware_dom=1" to xen,xen-bootargs in host's device treeand it works.
AFAIU, the domain needs to be explicitely created. How do you do that?Is it just describing the domain in the DT? If so, how does it work ifthere are multiple domain described in the DT?

Indeed, in my case it works only because there's single domaindescription in DT.If there're many domains in DT, we can't be sure which domain ID each ofthem would receive at boot, right?


 -Sergiy

Follow-Ups:
- Re: [RFC PATCH] xen/kconfig: allow LATE_HWDOM config for ARM
  - From: Julien Grall

References:
- [RFC PATCH] xen/kconfig: allow LATE_HWDOM config for ARM
  - From: Sergiy Kibrik
- Re: [RFC PATCH] xen/kconfig: allow LATE_HWDOM config for ARM
  - From: Julien Grall
- Re: [RFC PATCH] xen/kconfig: allow LATE_HWDOM config for ARM
  - From: Sergiy Kibrik
- Re: [RFC PATCH] xen/kconfig: allow LATE_HWDOM config for ARM
  - From: Julien Grall

Prev by Date: Re: [PATCH] xen/arm: Initialise memory type for struct kernel_info
Next by Date: Re: [RFC PATCH] xen/kconfig: allow LATE_HWDOM config for ARM
Previous by thread: Re: [RFC PATCH] xen/kconfig: allow LATE_HWDOM config for ARM
Next by thread: Re: [RFC PATCH] xen/kconfig: allow LATE_HWDOM config for ARM
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.