On 15/08/18 15:21, Andrew Cooper wrote: > On 15/08/18 14:17, Andrew Cooper wrote: >> Hello, > > Apologies. Getting Dario's correct email address this time. > >> >> Now that the embargo on XSA-273 is up, we can start publicly discussing >> the remaining work do, because there is plenty to do. In no particular >> order... >> >> 1) Attempting to shadow dom0 from boot leads to some assertions very >> very quickly. Shadowing dom0 after-the-fact leads to some very weird >> crashes where whole swathes of the shadow appears to be missing. This >> is why, for now, automatic shadowing of dom0 is disabled by default. >> >> 2) 32bit PV guests which use writeable pagetable support will >> automatically get shadowed when the clear the lower half. Ideally, such >> guests should be modified to use hypercalls rather than the ptwr >> infrastructure (as its more efficient to begin with), but we can >> probably work around this in Xen by emulating the next few instructions >> until we have a complete PTE (same as the shadow code).
I can work on that in the Linux kernel. There has been another bug which I suspect is related to that: https://bugzilla.kernel.org/show_bug.cgi?id=198497 Juergen _______________________________________________ Xen-devel mailing list Xen-devel@lists.xenproject.org https://lists.xenproject.org/mailman/listinfo/xen-devel