[Top] [All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [PATCH v5] x86: make Viridian support optional

  • To: Demi Marie Obenour <demiobenour@xxxxxxxxx>
  • From: Roger Pau Monné <roger.pau@xxxxxxxxxx>
  • Date: Mon, 20 Oct 2025 09:44:29 +0100
  • Arc-authentication-results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=citrix.com; dmarc=pass action=none header.from=citrix.com; dkim=pass header.d=citrix.com; arc=none
  • Arc-message-signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector10001; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=h6y6fC2D3pRQcEtFl24XaertPUovKtXxTty5LotGOpc=; b=PmexT2AaJOVJLkN1pk2vhsnT4T0/rs/tAfJ//0GNKtMJPIwk97PfRHAXo6U1cktrd8sQwfBSURTbKF+jqwYfd/EX9sZo3UU6TM2Rmjwkx8MxswYUzDozN8chH35nHApFV2N1lWKnocA8uPsBAmDXuzdwxK+B4K0KbMb+RF8X6HccuGAywX8Od/o0X0/CaejDV4ybSAXSxrmCruCLn5mEqF1Df67m/L0AFt76Ysif7eGyulLU0DjdK+BHJ43Cab961fRHVlku19vex84aDugrjD2JCcs88yEWiTtTb+vdQnqVrhjBZNtD1vfGBtMHLDyutCmF25WUDXcDl8ml1QFYLQ==
  • Arc-seal: i=1; a=rsa-sha256; s=arcselector10001; d=microsoft.com; cv=none; b=EBFAAxYaFXo5W6CvZx/DZpJptSVEwF6V2m2AKisl9R/ftBISnl5QRNxQdgjcqVyd85wokt/6O+LniiLU4fZ6p4mNtL1T6E8D1ylycdGcg+hKhDzgR5qJsiY/HYR5BW9ilZE4KqV/2I1a8q/jxQTeAtBCD0HWwvDnpXbF2mbKh5HcPt2DVU0ORYfquPQdYILtlm9HViZXVHhRf63wOlzrOIISpAHe0sgZXkUWs+B2/PmLtHcSmjN//ALErDhAoRwvaNCx41cxJVzbxCAkPwDFksnW1Lxf3bZCnS3DcsHQsVM1nP4zmZz3+MhFnMDo6myT0QpA50hl8P1N6OvNz14jaA==
  • Authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=citrix.com;
  • Cc: Alejandro Vallejo <alejandro.garciavallejo@xxxxxxx>, Jan Beulich <jbeulich@xxxxxxxx>, Grygorii Strashko <grygorii_strashko@xxxxxxxx>, Sergiy Kibrik <Sergiy_Kibrik@xxxxxxxx>, Andrew Cooper <andrew.cooper3@xxxxxxxxxx>, Paul Durrant <paul@xxxxxxx>, "xen-devel@xxxxxxxxxxxxxxxxxxxx" <xen-devel@xxxxxxxxxxxxxxxxxxxx>
  • Delivery-date: Mon, 20 Oct 2025 08:44:46 +0000
  • List-id: Xen developer discussion <xen-devel.lists.xenproject.org>
On Sat, Oct 18, 2025 at 09:21:37PM -0400, Demi Marie Obenour wrote:
> On 10/17/25 11:52, Alejandro Vallejo wrote:
> > On Wed Oct 15, 2025 at 7:58 AM CEST, Demi Marie Obenour wrote:
> >> On 10/13/25 06:01, Alejandro Vallejo wrote:
> >>> On Wed Oct 8, 2025 at 6:04 PM CEST, Jan Beulich wrote:
> >>>> On 30.09.2025 14:52, Grygorii Strashko wrote:
> >>>>> --- a/xen/arch/x86/hvm/Kconfig
> >>>>> +++ b/xen/arch/x86/hvm/Kconfig
> >>>>> @@ -62,6 +62,16 @@ config ALTP2M
> >>>>>  
> >>>>>           If unsure, stay with defaults.
> >>>>>  
> >>>>> +config VIRIDIAN
> >>>>> +       bool "Hyper-V enlightenments for guests" if EXPERT
> >>>>> +       default y
> >>>>> +       help
> >>>>> +         Support optimizations for Hyper-V guests such as faster 
> >>>>> hypercalls,
> >>>>> +         efficient timer and interrupt handling, and enhanced 
> >>>>> paravirtualized
> >>>>> +         I/O. This is to improve performance and compatibility of 
> >>>>> Windows VMs.
> >>>>
> >>>> What is "paravirtualized I/O" about in this context?
> >>>
> >>> Hypervisor-assisted IPIs, TLB flushes, etc. Or so I understood back when 
> >>> I said
> >>> that looked ok. I see there could be confusion with Xen PV device 
> >>> protocols,
> >>> but as far as the user of the help message is concerned it makes no 
> >>> difference.
> >>>
> >>> One could even remove the examples and leave it as "... for Hyper-V 
> >>> guests. This
> >>> is to...". They are truly inconsequential.
> >>>
> >>> All that matters is that (modern) Windows won't run without it, and that 
> >>> it
> >>> provides some indeterminate hypervisor-provided assists to try to reduce 
> >>> some
> >>> virtualization overheads.
> >>
> >> Qubes OS doesn't expose Viridian at all, which is why it wasn't
> >> vulnerable to XSA-472.  It still runs Windows guests just fine.
> > 
> > Can you run Windows 11?
> 
> I haven't tried it, but it is documented as working.
> 
> > I don't remember which, but I do know some versions of Windows refuse to 
> > boot
> > if they determine they are virtualised and don't see the mandatory parts of
> > the TLFS.
> > 
> > If 11 works, maybe Windows Server?
> 
> Windows Server is more likely.

FTR, for unrelated reasons I've tested Windows Server 2025 without
Viridian, and it does work, albeit painfully slow.

Regards, Roger.

 

©2013 Xen Project, A Linux Foundation Collaborative Project. All Rights Reserved.
Linux Foundation is a registered trademark of The Linux Foundation.
Xen Project is a trademark of The Linux Foundation.

Rackspace

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.