On 2025-03-17 10:28, Jan Beulich wrote:
On 06.03.2025 23:03, Jason Andryuk wrote:
Allow hwdom all perms, except XSM_PRIV, and except commands where the
target is the control domain. This protects the control domain from
hwdom while allowing the hardware domain to serve as the backend and
device model for other domUs.
I can see why backends may need to live there. But device models don't
belong in the hardware domain, do they?
One of my tests was on x86 with hardware domain running QEMU providing
virtio-gpu to a domU. QEMU needs to access the GPU for virtio-gpu.
Also HVM/QEMU PCI passthrough would need to run from hardware domain.
for the config space access.
I viewed the hardware domain as the place to run the device model - sort
of like a stubdom moving out of dom0.
Regards,
Jason
