From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from [140.186.70.92] (port=33544 helo=eggs.gnu.org) by lists.gnu.org with esmtp (Exim 4.43) id 1PDH2G-0003TP-EF for qemu-devel@nongnu.org; Tue, 02 Nov 2010 09:36:28 -0400 Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1PDEGK-0005hL-5W for qemu-devel@nongnu.org; Tue, 02 Nov 2010 06:38:45 -0400 Received: from mx1.redhat.com ([209.132.183.28]:37589) by eggs.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1PDEGJ-0005h3-SY for qemu-devel@nongnu.org; Tue, 02 Nov 2010 06:38:44 -0400 Message-ID: <4CCFEA2A.3010904@redhat.com> Date: Tue, 02 Nov 2010 11:38:34 +0100 From: Paolo Bonzini MIME-Version: 1.0 Subject: Re: [Qemu-devel] Re: [PATCH 28/40] xenner: libxc emu: evtchn References: <1288623713-28062-1-git-send-email-agraf@suse.de> <1288623713-28062-29-git-send-email-agraf@suse.de> <4CCEE08F.4030403@codemonkey.ws> <4CCEE463.3090406@codemonkey.ws> <4CCF176F.2020600@redhat.com> <4CCF17EF.8090502@codemonkey.ws> <0A26E838-7FF5-4E4C-98EB-5EB0821460B9@suse.de> <4CCF23E9.8070404@codemonkey.ws> <4CCFE2AB.1050204@redhat.com> <4CCFE884.8030804@redhat.com> In-Reply-To: <4CCFE884.8030804@redhat.com> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit List-Id: qemu-devel.nongnu.org List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , To: Gerd Hoffmann Cc: qemu-devel Developers , Alexander Graf , Stefano Stabellini On 11/02/2010 11:31 AM, Gerd Hoffmann wrote: > Hi, > >> (BTW, I noticed that Xenner does not limit guest segments like Xen does. >> Does it mean the guest can overwrite the Xenner kernel and effectively >> run ring0?) > > Yes. The guest also can modify page tables as it pleases. It is the > vmx/svm container which protects the host, not the xenner kernel. Yes, got it. I was trying to understand exactly which parts are guest-facing (the answer is "everything") and which are only xenner-facing (and here the answer is "none" :)). Paolo