From: "Roger Pau Monné" <roger.pau@citrix.com>
To: "Daniel P. Smith" <dpsmith@apertussolutions.com>
Cc: <xen-devel@lists.xenproject.org>, <christopher.w.clark@gmail.com>,
<andrew.cooper3@citrix.com>, <stefano.stabellini@xilinx.com>,
<jgrall@amazon.com>, <Julien.grall.oss@gmail.com>,
<iwj@xenproject.org>, <wl@xen.org>, <george.dunlap@citrix.com>,
<jbeulich@suse.com>, <persaur@gmail.com>,
<Bertrand.Marquis@arm.com>, <luca.fancellu@arm.com>,
<paul@xen.org>, <adam.schwalm@starlab.io>
Subject: Re: [PATCH 1/2] docs/designs/launch: hyperlaunch design document
Date: Thu, 18 Mar 2021 17:43:38 +0100 [thread overview]
Message-ID: <YFODOnQRAntdETY7@Air-de-Roger> (raw)
In-Reply-To: <20210316031814.10311-2-dpsmith@apertussolutions.com>
Just took a quick look at it.
On Mon, Mar 15, 2021 at 11:18:13PM -0400, Daniel P. Smith wrote:
> + +---------------+-----------+------------+-----------+-------------+---------------------+
> + | **Xen Dom0** | **Linux** | **Late** | **Jail** | **Xen** | **Xen Hyperlaunch** |
> + | **(Classic)** | **KVM** | **HW Dom** | **house** | **dom0less**+---------+-----------+
> + | | | | | | Static | Dynamic |
> + +===============+===========+============+===========+=============+=========+===========+
> + | Hypervisor able to launch multiple VMs during host boot |
> + +---------------+-----------+------------+-----------+-------------+---------+-----------+
> + | | | | Y | Y | Y | Y |
> + +---------------+-----------+------------+-----------+-------------+---------+-----------+
> + | Hypervisor supports Static Partitioning |
> + +---------------+-----------+------------+-----------+-------------+---------+-----------+
> + | | | | Y | Y | Y | |
> + +---------------+-----------+------------+-----------+-------------+---------+-----------+
> + | Able to launch VMs dynamically after host boot |
> + +---------------+-----------+------------+-----------+-------------+---------+-----------+
> + | Y | Y | Y* | Y | Y* | | Y |
> + +---------------+-----------+------------+-----------+-------------+---------+-----------+
> + | Supports strong isolation between all VMs started at host boot |
> + +---------------+-----------+------------+-----------+-------------+---------+-----------+
> + | | | | Y | Y | Y | Y |
> + +---------------+-----------+------------+-----------+-------------+---------+-----------+
> + | Enables flexible sequencing of VM start during host boot |
> + +---------------+-----------+------------+-----------+-------------+---------+-----------+
> + | | | | | | Y | Y |
> + +---------------+-----------+------------+-----------+-------------+---------+-----------+
> + | Prevent all-powerful static root domain being launched at boot |
> + +---------------+-----------+------------+-----------+-------------+---------+-----------+
> + | | | | | Y* | Y | Y |
> + +---------------+-----------+------------+-----------+-------------+---------+-----------+
> + | Operates without a Highly-privileged management VM (eg. Dom0) |
> + +---------------+-----------+------------+-----------+-------------+---------+-----------+
> + | | | Y* | | Y* | Y | Y |
> + +---------------+-----------+------------+-----------+-------------+---------+-----------+
> + | Operates without a privileged toolstack VM (Control Domain) |
> + +---------------+-----------+------------+-----------+-------------+---------+-----------+
> + | | | | | Y* | Y | |
> + +---------------+-----------+------------+-----------+-------------+---------+-----------+
> + | Extensible VM configuration applied before launch of VMs at host boot |
> + +---------------+-----------+------------+-----------+-------------+---------+-----------+
> + | | | | | | Y | Y |
> + +---------------+-----------+------------+-----------+-------------+---------+-----------+
> + | Flexible granular assignment of permissions and functions to VMs |
> + +---------------+-----------+------------+-----------+-------------+---------+-----------+
> + | | | | | | Y | Y |
> + +---------------+-----------+------------+-----------+-------------+---------+-----------+
> + | Supports extensible VM measurement architecture for DRTM and attestation |
> + +---------------+-----------+------------+-----------+-------------+---------+-----------+
> + | | | | | | Y | Y |
> + +---------------+-----------+------------+-----------+-------------+---------+-----------+
> + | PCI passthrough configured at host boot |
> + +---------------+-----------+------------+-----------+-------------+---------+-----------+
> + | | | | | | Y | Y |
> + +---------------+-----------+------------+-----------+-------------+---------+-----------+
I'm curious about this, I assume this is done using vPCI so that
there's no hardware domain (and user-space device model) involved for
PCI passthrough?
I'm also not sure how you are going to handle things like SR-IOV
devices. Right now SR-IOV capability is setup and initialized by the
hardware domain, and the new virtual devices are notified to Xen once
setup is done. Do you plan to move those bits into Xen, so that it can
setup and initialize the SR-IOV capability?
Thanks, Roger.
next prev parent reply other threads:[~2021-03-18 16:44 UTC|newest]
Thread overview: 20+ messages / expand[flat|nested] mbox.gz Atom feed top
2021-03-16 3:18 [PATCH 0/2] Introducing hyperlaunch capability design (formerly: DomB mode of dom0less) Daniel P. Smith
2021-03-16 3:18 ` [PATCH 1/2] docs/designs/launch: hyperlaunch design document Daniel P. Smith
2021-03-18 16:43 ` Roger Pau Monné [this message]
2021-03-23 17:39 ` Christopher Clark
2021-03-24 8:01 ` Roger Pau Monné
2021-03-24 12:53 ` Christopher Clark
2021-03-24 13:15 ` George Dunlap
2021-03-24 19:10 ` Stefano Stabellini
2021-03-25 8:07 ` Jan Beulich
2021-03-25 8:32 ` Roger Pau Monné
2021-03-25 9:14 ` George Dunlap
2021-03-25 9:49 ` Roger Pau Monné
2021-03-25 16:55 ` Stefano Stabellini
2021-04-07 20:14 ` Christopher Clark
2021-03-16 3:18 ` [PATCH] docs/designs/launch: hyperlaunch device tree Daniel P. Smith
2021-03-16 3:56 ` [PATCH 0/2] Introducing hyperlaunch capability design (formerly: DomB mode of dom0less) Daniel P. Smith
2021-03-30 14:31 ` Jan Beulich
2021-04-07 19:23 ` Christopher Clark
2021-04-08 5:56 ` Jan Beulich
2021-04-15 22:33 ` Christopher Clark
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=YFODOnQRAntdETY7@Air-de-Roger \
--to=roger.pau@citrix.com \
--cc=Bertrand.Marquis@arm.com \
--cc=Julien.grall.oss@gmail.com \
--cc=adam.schwalm@starlab.io \
--cc=andrew.cooper3@citrix.com \
--cc=christopher.w.clark@gmail.com \
--cc=dpsmith@apertussolutions.com \
--cc=george.dunlap@citrix.com \
--cc=iwj@xenproject.org \
--cc=jbeulich@suse.com \
--cc=jgrall@amazon.com \
--cc=luca.fancellu@arm.com \
--cc=paul@xen.org \
--cc=persaur@gmail.com \
--cc=stefano.stabellini@xilinx.com \
--cc=wl@xen.org \
--cc=xen-devel@lists.xenproject.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).