Xen project Mailing List

Re: [PATCH v5] x86: make Viridian support optional

To: Demi Marie Obenour <demiobenour@xxxxxxxxx>, Jan Beulich <jbeulich@xxxxxxxx>, Grygorii Strashko <grygorii_strashko@xxxxxxxx>

From: Alejandro Vallejo <alejandro.garciavallejo@xxxxxxx>

Date: Fri, 17 Oct 2025 17:52:44 +0200

Arc-authentication-results: i=1; mx.microsoft.com 1; spf=temperror (sender ip is 165.204.84.17) smtp.rcpttodomain=gmail.com smtp.mailfrom=amd.com; dmarc=temperror action=none header.from=amd.com; dkim=none (message not signed); arc=none (0)

Arc-message-signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector10001; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=cFLwtmkAbVm8lHlRmdgUQhQ19QIEqDTNcq/B0nh31qo=; b=gR7mzUkDpvtEXxVU8QciPxKz5m+ntG2kpx5I2u2fuRmmheA2Q542L06CADhVdR1gm7FfsNkzSaN6Xjg2AjcH3NZg7YX0AKf86+FzOZs2UFK1RLurduXrDtMaqoczm3gs4o3W8jBkfWs+01z3ITkcXZ4ugu5fVrDONe1IJiwpxO5iekuZ4lEEodg1SLjEUAIhEQ2fHbsMZfycx3E5OsLvOvUcrIhyNXFkYc7czahya+RdN9UplCkPEqdHKg64ok62xIU4SljuFX8Cn603xymO5nyI8Qp9cDcah9bEqJimub25Pswhw4Mzo5lCREVa+9LNS0fYVvpS+/wUTtRMT0r+2g==

Arc-seal: i=1; a=rsa-sha256; s=arcselector10001; d=microsoft.com; cv=none; b=FwsO8/4VVesGHWumvjGSRTfKge0tl83Nj53m2/MQ9uh8iUeKgq8Pj+1vnt+Ag1R+6Ejkw+aBzJcslI00Ujbw9xKUgFos3T/bQmr8xEMzJ2plbN4afz61JAt1fjJxGK01azVtqtuINhZblC4oaewCN+3QdefAHjbcIpwXxkKPAqlpum9FKDlWub3fCP1/WisXB5vJb5crQ4zQuac9030ljk0uqQ9rJYbY+X0P64DtZoKKe2qcxuGMW2WckD+nUAZer0X44VJHD2kjpe58+TYw+Uxl5HgPzEG59FrABx/sBZLzswXbZFOd+pvbKiw2JOZvUQUaCn9H2GJXP0MDs5l0Qw==

Cc: Sergiy Kibrik <Sergiy_Kibrik@xxxxxxxx>, Andrew Cooper <andrew.cooper3@xxxxxxxxxx>, Roger Pau Monné <roger.pau@xxxxxxxxxx>, Paul Durrant <paul@xxxxxxx>, "xen-devel@xxxxxxxxxxxxxxxxxxxx" <xen-devel@xxxxxxxxxxxxxxxxxxxx>

Delivery-date: Fri, 17 Oct 2025 15:53:03 +0000

List-id: Xen developer discussion <xen-devel.lists.xenproject.org>

On Wed Oct 15, 2025 at 7:58 AM CEST, Demi Marie Obenour wrote: > On 10/13/25 06:01, Alejandro Vallejo wrote: >> On Wed Oct 8, 2025 at 6:04 PM CEST, Jan Beulich wrote: >>> On 30.09.2025 14:52, Grygorii Strashko wrote: >>>> --- a/xen/arch/x86/hvm/Kconfig >>>> +++ b/xen/arch/x86/hvm/Kconfig >>>> @@ -62,6 +62,16 @@ config ALTP2M >>>> >>>> If unsure, stay with defaults. >>>> >>>> +config VIRIDIAN >>>> + bool "Hyper-V enlightenments for guests" if EXPERT >>>> + default y >>>> + help >>>> + Support optimizations for Hyper-V guests such as faster hypercalls, >>>> + efficient timer and interrupt handling, and enhanced paravirtualized >>>> + I/O. This is to improve performance and compatibility of Windows VMs. >>> >>> What is "paravirtualized I/O" about in this context? >> >> Hypervisor-assisted IPIs, TLB flushes, etc. Or so I understood back when I >> said >> that looked ok. I see there could be confusion with Xen PV device protocols, >> but as far as the user of the help message is concerned it makes no >> difference. >> >> One could even remove the examples and leave it as "... for Hyper-V guests. >> This >> is to...". They are truly inconsequential. >> >> All that matters is that (modern) Windows won't run without it, and that it >> provides some indeterminate hypervisor-provided assists to try to reduce some >> virtualization overheads. > > Qubes OS doesn't expose Viridian at all, which is why it wasn't > vulnerable to XSA-472. It still runs Windows guests just fine. Can you run Windows 11? I don't remember which, but I do know some versions of Windows refuse to boot if they determine they are virtualised and don't see the mandatory parts of the TLFS. If 11 works, maybe Windows Server? Cheers, Alejandro

©2013 Xen Project, A Linux Foundation Collaborative Project. All Rights Reserved.
Linux Foundation is a registered trademark of The Linux Foundation.
Xen Project is a trademark of The Linux Foundation.