| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Thu, 8 Mar 2007 20:54:13 +0100 From: Ingo Molnar <mingo@...e.hu> To: Jeremy Fitzhardinge <jeremy@...p.org> Cc: Chris Wright <chrisw@...s-sol.org>, Daniel Arai <arai@...are.com>, Virtualization Mailing List <virtualization@...ts.osdl.org>, akpm@...ux-foundation.org, john stultz <johnstul@...ibm.com>, tglx@...utronix.de, LKML <linux-kernel@...r.kernel.org> Subject: Re: + stupid-hack-to-make-mainline-build.patch added to -mm tree * Jeremy Fitzhardinge <jeremy@...p.org> wrote: > > While that's basically what we did in Xen, it would make more sense > > to build it into genapic which would give us one common abstraction > > to base from. We should avoid adding pv_ops when existing > > infrastructure exists. > > I was looking at cutting in at a much higher level. The interface in > <linux/smp.h> is a good match for Xen, so I was going to investigate > making pv_ops at that level and see how it falls out. yes, yes, yes. Finally someone with a clue about APIs ;-) Basically, we want to think about the hypercall API more like a system call API, not like a hardware API! There will probably still be lowlevel details like ptes for a long time - but even those are not quite necessary. And the reason is really fundamental: those system-call alike APIs are going to be the /most stable ones/ over time! 'Send stuff from A to B' or 'notify X about event Y' is /ALOT/ more stable across hardware variations than 'IDTs, vectors, apics or ptes'. And that is so precisely because these are fundamental actions that physical matter can do, and those do not get changed when new silicon comes out. In that sense Xen's hypervisor API is saner than VMI. the most highlevel API is what UML uses today (and it clearly overdoes abstraction), still i was able to get basic UML performance close to native performance, via extending a few Linux system calls to enable the management of multiple sets of pagetables (each represented by a separate fd) via a single hypervisor-level process, and feeding back raw pagefault events to the hypervisor. (that was UML's SKAS concept combined with sys_remap_file_pages_prot() and sys_vcpu()) Now the practical problem with UML is that nobody has tried to make an UML native+guest 'shared kernel image', and hence it's unusable for distros. But there is no conceptual problem with UML's virtualization model. Ingo - To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists