[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [Xen-devel] [PATCH] [VTD] Add 'force_iommu' option

To: "Han, Weidong" <weidong.han@xxxxxxxxx>, <xen-devel@xxxxxxxxxxxxxxxxxxx>
From: "Cihula, Joseph" <joseph.cihula@xxxxxxxxx>
Date: Wed, 6 Aug 2008 01:43:14 -0700
Cc:
Delivery-date: Wed, 06 Aug 2008 01:50:28 -0700
List-id: Xen developer discussion <xen-devel.lists.xensource.com>
Thread-index: Acj3dSx7qPnzV+1wSBi5za/xl184NQAKVTTw
Thread-topic: [Xen-devel] [PATCH] [VTD] Add 'force_iommu' option

ACKed-by:  Joseph Cihula <joseph.cihula@xxxxxxxxx>

This patch is needed to maintain trust in Xen when it is launched using
Intel(R) Trusted Execution Technology, as it will be launched with DMA
protection and needs to fail securely if that protection cannot be
maintained.

Joe

-----Original Message-----
From: xen-devel-bounces@xxxxxxxxxxxxxxxxxxx
[mailto:xen-devel-bounces@xxxxxxxxxxxxxxxxxxx] On Behalf Of Han, Weidong
Sent: Tuesday, August 05, 2008 8:33 PM
To: xen-devel@xxxxxxxxxxxxxxxxxxx
Subject: [Xen-devel] [PATCH] [VTD] Add 'force_iommu' option

For security reasons, add 'force_iommu' option to ensure that it should
not be possible under any conditions to boot Xen w/o VT-d being enabled.
This would only be specified by users that really want the added
security.

Signed-off-by: Weidong Han <weidong.han@xxxxxxxxx>

_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-devel

References:
- [Xen-devel] [PATCH] [VTD] Add 'force_iommu' option
  - From: Han, Weidong

Prev by Date: [Xen-devel] Re: Xen spinlock questions
Next by Date: RE: [Xen-devel] Xen-3.2.1 VT-d Support (NOT SURE WHETHER IT'S ABUGOR...)
Previous by thread: [Xen-devel] [PATCH] [VTD] Add 'force_iommu' option
Next by thread: Re: [Xen-devel] [PATCH] [VTD] Add 'force_iommu' option
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.