 
	
| [Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] Re: [PATCH 03/12] xen/arm: introduce 1:1 mapping for domUs
 Hi, On 09/05/2020 01:07, Stefano Stabellini wrote: On Fri, 1 May 2020, Julien Grall wrote:On 01/05/2020 02:26, Stefano Stabellini wrote:On Wed, 15 Apr 2020, Julien Grall wrote:On 15/04/2020 02:02, Stefano Stabellini wrote:In some cases it is desirable to map domU memory 1:1 (guest physical == physical.) For instance, because we want to assign a device to the domU but the IOMMU is not present or cannot be used. In these cases, other mechanisms should be used for DMA protection, e.g. a MPU.I am not against this, however the documentation should clearly explain that you are making your platform insecure unless you have other mean for DMA protection.I'll expand the docs This answer... It is actually better to keep everything in the partial device-tree as it would avoid to clash with whatever you come up with the system device tree.I don't think we want to support both in the long term. The closer we are to it the better for transitioning. ... raises the question how your solution is going to be closer? Do you mind providing more details on the system device-tree? Also, I don't think the partial device-tree could ever go away at least in Xen. This is an external interface we provide to the user, removing it would mean users would not be able to upgrade from Xen 4.x to 4.y without any major rewrite of there DT.I don't want to put the memory ranges inside the multiboot,device-tree module because that is clearly for device assignment: "Device Assignment (Passthrough) is supported by adding another module, alongside the kernel and ramdisk, with the device tree fragment corresponding to the device node to assign to the guest." Thanks you for copying the documentation here... As you know, when the partial device-tree was designed, it was only focused on device assignment. However, I don't see how this prevents us to extend it to more use cases. Describing the RAM regions in the partial device-tree means you have a single place where you can understand the memory layout of your guest. You have also much more flexibility for describing your guests over the /chosen node and avoid to clash with the rest of the host device-tree. One could do 1:1 memory mapping without device assignment. > Genuine question: did we write down any compatibility promise on that interface? If so, do you know where? I'd like to take a look. Nothing written in Xen, however a Device-Tree bindings are meant to be stable. This would be a pretty bad user experience if you had to rewrite your device-tree when upgrading Xen 4.14 to Xen 5.x. This also means roll-back would be more difficult as there are more components dependency. In any case backward compatible interfaces can be deprecated although it takes time. Alternatively it could be made optional (even for device assignment). So expanding its scope beyond device assignment configuration it is not a good idea. What would be the replacement? I still haven't seen any light of the so-called system device-tree. At the moment, I can better picture how this can work with the partial device-tree. One of the advantage is you could describe your guest layout in one place and then re-use it for booting a guest from the toolstack (not implemented yet) or the hypervisor. I could change my mind if it turns out to be genuinely more complicated to implement in Xen and/or you provide more details on how this is going to work out with the system device-tree. Cheers, -- Julien Grall 
 
 | 
|  | Lists.xenproject.org is hosted with RackSpace, monitoring our |