WARNING - OLD ARCHIVES

This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/
   
 
 
Xen 
 
Home Products Support Community News
 
   
 

xen-devel

Re: [Xen-devel] [PATCH]: kexec: framework and i386

To: Horms <horms@xxxxxxxxxxxx>
Subject: Re: [Xen-devel] [PATCH]: kexec: framework and i386
From: Gerd Hoffmann <kraxel@xxxxxxx>
Date: Fri, 07 Apr 2006 17:09:15 +0200
Cc: Magnus Damm <magnus@xxxxxxxxxxxxx>, xen-devel@xxxxxxxxxxxxxxxxxxx
Delivery-date: Fri, 07 Apr 2006 08:10:10 -0700
Envelope-to: www-data@xxxxxxxxxxxxxxxxxx
In-reply-to: <20060407074234.GA19846@xxxxxxxxxxxx>
List-help: <mailto:xen-devel-request@lists.xensource.com?subject=help>
List-id: Xen developer discussion <xen-devel.lists.xensource.com>
List-post: <mailto:xen-devel@lists.xensource.com>
List-subscribe: <http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-devel>, <mailto:xen-devel-request@lists.xensource.com?subject=subscribe>
List-unsubscribe: <http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-devel>, <mailto:xen-devel-request@lists.xensource.com?subject=unsubscribe>
References: <20060407074234.GA19846@xxxxxxxxxxxx>
Sender: xen-devel-bounces@xxxxxxxxxxxxxxxxxxx
User-agent: Thunderbird 1.5 (X11/20060111)
  Hi,

> Here is a first cut of kexec for dom0/xen, which will actually
> kexec the physical machine from xen. The approach taken is
> to move the architecture-dependant kexec code into a new hypercall.

First you need some more security checks.  On a first quick look it
seems you can zap and takeover the whole machine from within a domU by
kexec-booting the machine.

Second I think we'll need a new kexec flag to indicate we'll go zap the
physical machine, not the virtual machine.  I'm looking into the later,
and I think we'll be able to do both at some point in the future.  Maybe
it is enougth to care about dom0 (physical machine kexec) vs. domU
(virtual machine kexec) only though.  We certainly don't want allow
domUs kexec the whole machine, and virtual machine kexec for dom0
doesn't make that much sense given how tight xen and dom0 work hand-in-hand.

>   * kexecing into xen does not seem to work, I think that 
>     kexec-tools needs updating, but I have not investigated yet

Yep, actually _alot_ of the kexec magic happens in userspace.

cheers,

  Gerd

-- 
Gerd 'just married' Hoffmann <kraxel@xxxxxxx>
I'm the hacker formerly known as Gerd Knorr.
http://www.suse.de/~kraxel/just-married.jpeg

_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-devel