[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Xen XSM/FLASK policy, grub defaults, etc.

To: Julien Grall <julien@xxxxxxx>, Jan Beulich <jbeulich@xxxxxxxx>
From: Jürgen Groß <jgross@xxxxxxxx>
Date: Tue, 2 Jun 2020 10:30:49 +0200
Cc: Stefano Stabellini <sstabellini@xxxxxxxxxx>, "cjwatson@xxxxxxxxxx" <cjwatson@xxxxxxxxxx>, Wei Liu <wl@xxxxxxx>, Andrew Cooper <Andrew.Cooper3@xxxxxxxxxx>, George Dunlap <George.Dunlap@xxxxxxxxxx>, "xen-devel@xxxxxxxxxxxxxxxxxxxx" <xen-devel@xxxxxxxxxxxxxxxxxxxx>, Ian Jackson <ian.jackson@xxxxxxxxxx>, Daniel De Graaf <dgdegra@xxxxxxxxxxxxx>
Delivery-date: Tue, 02 Jun 2020 08:30:56 +0000
List-id: Xen developer discussion <xen-devel.lists.xenproject.org>

On 02.06.20 10:26, Julien Grall wrote:

On 02/06/2020 08:21, Jan Beulich wrote:
On 29.05.2020 19:24, Julien Grall wrote:
On 29/05/2020 16:11, Jan Beulich wrote:
On 29.05.2020 17:05, Julien Grall wrote:
On 29/05/2020 15:47, Ian Jackson wrote:
George Dunlap writes ("Re: Xen XSM/FLASK policy, grub defaults,etc."):
Which isn’t to say we shouldn’t do it; but it might be nice toalso have an intermediate solution that works right now, even ifit’s not optimal.
I propose the following behaviour by updste-grub:
1. Look for an ELF note, TBD. If it's found, make XSM bootentries.
       (For now, skip this step, since the ELF note is not defined.)
I am afraid the ELF note is a very x86 thing. On Arm, we don't havesuchthing for the kernel/xen (actually the final binary is not even anELF).
Ouch - of course. Is there anything similar one could employ there?
In the past, we discussed about adding support for note in the zImage
(arm32 kernel format) but I never got the chance to pursue thediscussion.
With Juergen's hypfs series, the hypervisor now embbed the .config. Is
it possible to extract it?
How easy is it to reliably find a random blob of gzip-ed data in an
otherwise unstructured (as in: no ELF sections, and hence no way to
put the data of interest into a separate section for easy
recognition) binary?
As I pointed out in another reply, Linux is already doing it (seescripts/extract-ikconfig). In fact I was able to extract the .configfrom an Linux Arm64 Image.
AFAICT, Linux will look up with to specific value in the kernel imagewhich surround the gzipped .config.
If Linux is able to do it, then we should be able to do it. I don't knowwhether this is 100% reliable, however we could make sure your .configis towards the end of the image. So it reduces the chance you findsomething different.
Also don't forget that the embedding of .config
is an optional thing.
I don't really see this as a blocker. Embedding the .config can be mademandatory going forward. This is not going to significantly increase thesize of Xen and would help to when debugging as you could exactly knowwhich .config was used.


If you can find an embedded .config via a special pattern you can just
define a pattern and embed that only in case of a flask-enabled Xen.
This would remove the need to make the config option a stable ABI.


Juergen

Follow-Ups:
- Re: Xen XSM/FLASK policy, grub defaults, etc.
  - From: Julien Grall

References:
- Re: Xen XSM/FLASK policy, grub defaults, etc.
  - From: Jan Beulich
- Re: Xen XSM/FLASK policy, grub defaults, etc.
  - From: Julien Grall

Prev by Date: Re: Xen XSM/FLASK policy, grub defaults, etc.
Next by Date: Re: Xen XSM/FLASK policy, grub defaults, etc.
Previous by thread: Re: Xen XSM/FLASK policy, grub defaults, etc.
Next by thread: Re: Xen XSM/FLASK policy, grub defaults, etc.
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.