Hi, what's the intention with the current design where inmates have access to cell_state (COMM_REGION_GENERIC_HEADER)? Is this safe? I was able to replicate what apic-demo.c does WRT that in a Zephyr binary as well, just to be sure.
Isn't ./tools/jailhouse cell list or, better yet, /sys/devices/jailhouse/cells/XXX/state a means for the root cell to watch cell states in order to act on them (assuming "open" model from https://events.linuxfoundation.org/sites/events/files/slides/ELCE2016-Jailhouse-Tutorial.pdf)? If so, how can we trust the cells setting their states and not the hypervisor only? Regards, -- Gustavo Lima Chaves Intel - Open Source Technology Center -- You received this message because you are subscribed to the Google Groups "Jailhouse" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. For more options, visit https://groups.google.com/d/optout.
