[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Xen-devel] sidecar (hvm shim) creation script

To: George Dunlap <george.dunlap@xxxxxxxxxx>, Ian Jackson <ian.jackson@xxxxxxxxxxxxx>, Wei Liu <wei.liu2@xxxxxxxxxx>, Roger Pau Monné <roger.pau@xxxxxxxxxx>, xen-devel@xxxxxxxxxxxxxxxxxxxx, committers@xxxxxxxxxxxxxx, security@xxxxxxxxxxxxxx, Jan Beulich <JBeulich@xxxxxxxx>, Dario Faggioli <raistlin@xxxxxxxx>
From: Doug Goldstein <cardoe@xxxxxxxxxx>
Date: Wed, 10 Jan 2018 10:51:16 -0600
Delivery-date: Wed, 10 Jan 2018 16:51:25 +0000
List-id: Xen developer discussion <xen-devel.lists.xenproject.org>

On 1/10/18 10:36 AM, George Dunlap wrote:
> On 01/10/2018 04:25 PM, Ian Jackson wrote:
>> Draft README.
>>
>> My git branch is bere
>>    xenbits.xen.org:/home/iwj/ext/xen.git#wip.sidecar
>>
>> (This contains the converter script too.  The git history is not very
>> useful and the files are in the wrong place, but I needed somewhere to
>> do my work.)
>>
>> Ian.
>>
>>
>>                 PV-in-HVM shim with "sidecar" ISO
>>                 =================================
>>
>> Summary
>> -------
>>
>> This README describes a mitigation strategy for Meltdown.
>>
>> The basic principle is to run PV guests (which can read all of host
>> memory due to the hardware bugs) as HVM guests (which cannot, at least
>> not due to Meltdown).  The PV environment is still provided to the
>> guest by an embedded copy of Xen, the "shim".
>>
>>
>> Properties of this approach
>> ---------------------------
> 
> What about "Who should use this approach"?
> 
> You might consider this approach if:
> 
> - You want to deploy a fix immediately
> - You can't, or would like to avoid, updating to Xen 4.8 or newer
> - You can:
>  - Run a script to modify each domain config
>  - Afford an extra 80MiB per guest
>  - Tolerate having an extra QEMU around
> - You don't need migration, memory ballooning, vcpu hotplug, or guest
> console

Didn't Ian get guest console working in v2 of his script? Didn't Anthony
get memory ballooning working in v3 of Vixen?

-- 
Doug Goldstein

Attachment: signature.asc
Description: OpenPGP digital signature

_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxxxxxxxxx
https://lists.xenproject.org/mailman/listinfo/xen-devel

References:
- [Xen-devel] Radical proposal: ship not-fully-tidied shim as 4.10.1
  - From: Ian Jackson
- Re: [Xen-devel] Radical proposal: ship not-fully-tidied shim as 4.10.1
  - From: Wei Liu
- Re: [Xen-devel] Radical proposal: ship not-fully-tidied shim as 4.10.1
  - From: Roger Pau Monné
- Re: [Xen-devel] Radical proposal: ship not-fully-tidied shim as 4.10.1
  - From: Wei Liu
- [Xen-devel] sidecar (hvm shim) creation script
  - From: Ian Jackson
- Re: [Xen-devel] sidecar (hvm shim) creation script
  - From: Wei Liu
- Re: [Xen-devel] sidecar (hvm shim) creation script
  - From: Ian Jackson
- Re: [Xen-devel] sidecar (hvm shim) creation script
  - From: Ian Jackson
- Re: [Xen-devel] sidecar (hvm shim) creation script
  - From: Ian Jackson
- Re: [Xen-devel] sidecar (hvm shim) creation script
  - From: Ian Jackson
- Re: [Xen-devel] sidecar (hvm shim) creation script
  - From: George Dunlap

Prev by Date: Re: [Xen-devel] Radical proposal v2: Publish Amazon's verison now, Citrix's version soon [and 1 more messages]
Next by Date: Re: [Xen-devel] [PATCH RFC v1 57/74] x86/pv-shim: shadow PV console's page for L2 DomU
Previous by thread: Re: [Xen-devel] sidecar (hvm shim) creation script
Next by thread: Re: [Xen-devel] sidecar (hvm shim) creation script
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.