lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list] 
Date:	Thu, 8 Mar 2007 23:30:41 +0100
From:	Ingo Molnar <mingo@...e.hu>
To:	Andi Kleen <ak@...e.de>
Cc:	Jeremy Fitzhardinge <jeremy@...p.org>,
	Zachary Amsden <zach@...are.com>, tglx@...utronix.de,
	john stultz <johnstul@...ibm.com>, akpm@...ux-foundation.org,
	Linus Torvalds <torvalds@...ux-foundation.org>,
	LKML <linux-kernel@...r.kernel.org>,
	Pratap Subrahmanyam <pratap@...are.com>,
	Rusty Russell <rusty@...tcorp.com.au>,
	Daniel Hecht <dhecht@...are.com>,
	Daniel Arai <arai@...are.com>,
	Chris Wright <chrisw@...s-sol.org>
Subject: Re: hardwired VMI crap


* Andi Kleen <ak@...e.de> wrote:

> > what we do _NOT_ want is some mixture of 'simplified' and 
> > 'hardwired' native hardware access mixed with hypercalls that 
> > somehow ends up creating a Frankenstein mixture of 'virtual 
> > silicon', is specified nowhere else but in VMWare's proprietary 
> > hypervisor source code that we have no way to fix and no way to even 
> > see!
> 
> Hmm, but we already drive the "vmware silicon" quite successfully with 
> fully virtualized kernels. [...]

that is exactly what i listed as the first variant we want to support:

> >  - native hardware ABIs. If a hypervisor (like KVM) happens to do
> >    its stuff based on those, more power to them - we dont (and 
> >    cannot) care.

the "vmware silicon" you are talking about /is/ the native hardware ABI! 
I never had any problems with /that/.

> [...] And apparently the VMI version is the same, just with some short 
> cuts. Are you just worried about the ->apic_write() hooks or about 
> something else too?

i'm worried about those "shot cuts" (which in essence create software 
variants of silicon), the hooks, the hardwirings combined with the 
hypervisor-side ABIs creating a rigid mess that is harmful to Linux. 
paravirt_ops and the hooks gives a license for all hypervisor 'backends' 
to deviate into random arbitrary directions and to create all their 
separate 'virtual silicon' playgrounds with no regard to Linux 
maintainability. And once this gets released, Linux has no choice but to 
play along.

	Ingo
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@...r.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

Powered by blists - more mailing lists