[siemens/jailhouse] 152738: driver: ensure jailhouse is not enabled when VT-X ...
7 views
Skip to first unread message
GitHub
Apr 19, 2018, 1:51:27 AM4/19/18
to jailho...@googlegroups.com
Branch: refs/heads/coverity_scan
Home: https://github.com/siemens/jailhouse
Commit: 152738bbb72c9f584fe6bc9d618ba72f3354ae84
https://github.com/siemens/jailhouse/commit/152738bbb72c9f584fe6bc9d618ba72f3354ae84
Author: f...@ozog.com <f...@ozog.com>
Date: 2018-04-12 (Thu, 12 Apr 2018)
Changed paths:
M driver/main.c
Log Message:
-----------
driver: ensure jailhouse is not enabled when VT-X is disabled by firmware
Whithout the check,
jailhouse enable configs/x86/sysconfig.cell
results in a GP and a reboot
do not allow enable if firmware has disabled VT-X on Intel VMX
Signed-off-by: Francois-Frederic Ozog <f...@ozog.com>
[Jan: adjust includes and style]
Signed-off-by: Jan Kiszka <jan.k...@siemens.com>
Commit: c10b617548dc26c7189473062383e19e3e8640e8
https://github.com/siemens/jailhouse/commit/c10b617548dc26c7189473062383e19e3e8640e8
Author: f...@ozog.com <f...@ozog.com>
Date: 2018-04-12 (Thu, 12 Apr 2018)
Changed paths:
M tools/jailhouse-hardware-check
Log Message:
-----------
tools: proper reporting of mandatory and optional VMXON features
on a VMX capable processor, firmware has the capability to block use of
it.
WHen it is the case, bits of IA32_FEATURE_CONTROL are cleared.
At a minimum, a jailhouse system need to be able to use VMX outside SMX.
Signed-off-by: Francois-Frederic Ozog <f...@ozog.com>
Signed-off-by: Jan Kiszka <jan.k...@siemens.com>
Commit: 765365f4c4868e0e9ad30d7ca6e2e094b0c405ce
https://github.com/siemens/jailhouse/commit/765365f4c4868e0e9ad30d7ca6e2e094b0c405ce
Author: Claudio Scordino <cla...@evidence.eu.com>
Date: 2018-04-12 (Thu, 12 Apr 2018)
Changed paths:
A configs/arm64/jetson-tx2.c
Log Message:
-----------
Jetson TX2: root cell config
Root cell config for Jetson TX2 using Nvidia's kernel 4.4 (not Vanilla).
Tested on the "next" branch by restoring the ABI for kernels < 4.7 in
hypervisor/arch/arm64/entry.S:
/* install bootstrap_vectors */
ldr x0, =bootstrap_vectors
virt2phys x0
Signed-off-by: Claudio Scordino <cla...@evidence.eu.com>
Signed-off-by: Jan Kiszka <jan.k...@siemens.com>
Commit: 48c4909226cb1177083e48a665c7896160ece0cf
https://github.com/siemens/jailhouse/commit/48c4909226cb1177083e48a665c7896160ece0cf
Author: Claudio Scordino <cla...@evidence.eu.com>
Date: 2018-04-12 (Thu, 12 Apr 2018)
Changed paths:
M inmates/lib/arm64/include/mach.h
Log Message:
-----------
Jetson TX2: add inmate support
Signed-off-by: Claudio Scordino <cla...@evidence.eu.com>
Signed-off-by: Jan Kiszka <jan.k...@siemens.com>
Commit: 108d84d82be82bfbc23af3545515440f934599e9
https://github.com/siemens/jailhouse/commit/108d84d82be82bfbc23af3545515440f934599e9
Author: Claudio Scordino <cla...@evidence.eu.com>
Date: 2018-04-12 (Thu, 12 Apr 2018)
Changed paths:
A configs/arm64/jetson-tx2-demo.c
Log Message:
-----------
Jetson TX2: add demo cell config
Signed-off-by: Claudio Scordino <cla...@evidence.eu.com>
Signed-off-by: Jan Kiszka <jan.k...@siemens.com>
Commit: aad818e95fd65be73d6dd8bdffc20c04c6606467
https://github.com/siemens/jailhouse/commit/aad818e95fd65be73d6dd8bdffc20c04c6606467
Author: Claudio Scordino <cla...@evidence.eu.com>
Date: 2018-04-12 (Thu, 12 Apr 2018)
Changed paths:
M Documentation/hypervisor-configuration.md
M README.md
Log Message:
-----------
Documentation: Add TX2 to the list of supported hardware
Signed-off-by: Claudio Scordino <cla...@evidence.eu.com>
Signed-off-by: Jan Kiszka <jan.k...@siemens.com>
Commit: 574e21fc9e3bd545ec76ed3c58d4aa894f72733f
https://github.com/siemens/jailhouse/commit/574e21fc9e3bd545ec76ed3c58d4aa894f72733f
Author: Francois-Frederic Ozog <franco...@linaro.org>
Date: 2018-04-16 (Mon, 16 Apr 2018)
Changed paths:
M inmates/lib/x86/hypercall.c
Log Message:
-----------
inmates: assume VMCALL for hypercalls, detect AMD to change
inmates cannot use X86_FEATURE_VMX from regular cpuid
as vcpu maks the bit explicitely on non-root cells.
use cpuid leaf 0 to detect AuthenticAMD and change to VMMCALL
use string compare for clearer code
Signed-off-by: Francois-Frederic Ozog <franco...@linaro.org>
[Jan: fixed register clobbering, avoid string constant, style massaging]
Signed-off-by: Jan Kiszka <jan.k...@siemens.com>
Commit: b3c914523493668d79bf028715dc3574b7d802cf
https://github.com/siemens/jailhouse/commit/b3c914523493668d79bf028715dc3574b7d802cf
Author: Jan Kiszka <jan.k...@siemens.com>
Date: 2018-04-16 (Mon, 16 Apr 2018)
Changed paths:
M Kbuild
M configs/Makefile
M hypervisor/Makefile
M hypervisor/arch/arm-common/Kbuild
M hypervisor/arch/x86/Kbuild
M inmates/lib/arm-common/Makefile.lib
M inmates/lib/x86/Makefile.lib
M tools/Makefile
Log Message:
-----------
build: Include config.mk consistently to remove kernel CONFIGs
They can switch on build options we don't want or support. This allows
to drop explicit gcov and OCR disabling. In some cases, this condition
was actually already fulfilled.
Signed-off-by: Jan Kiszka <jan.k...@siemens.com>
Compare: https://github.com/siemens/jailhouse/compare/d7472246dffc...b3c914523493
Home: https://github.com/siemens/jailhouse
Commit: 152738bbb72c9f584fe6bc9d618ba72f3354ae84
https://github.com/siemens/jailhouse/commit/152738bbb72c9f584fe6bc9d618ba72f3354ae84
Author: f...@ozog.com <f...@ozog.com>
Date: 2018-04-12 (Thu, 12 Apr 2018)
Changed paths:
M driver/main.c
Log Message:
-----------
driver: ensure jailhouse is not enabled when VT-X is disabled by firmware
Whithout the check,
jailhouse enable configs/x86/sysconfig.cell
results in a GP and a reboot
do not allow enable if firmware has disabled VT-X on Intel VMX
Signed-off-by: Francois-Frederic Ozog <f...@ozog.com>
[Jan: adjust includes and style]
Signed-off-by: Jan Kiszka <jan.k...@siemens.com>
Commit: c10b617548dc26c7189473062383e19e3e8640e8
https://github.com/siemens/jailhouse/commit/c10b617548dc26c7189473062383e19e3e8640e8
Author: f...@ozog.com <f...@ozog.com>
Date: 2018-04-12 (Thu, 12 Apr 2018)
Changed paths:
M tools/jailhouse-hardware-check
Log Message:
-----------
tools: proper reporting of mandatory and optional VMXON features
on a VMX capable processor, firmware has the capability to block use of
it.
WHen it is the case, bits of IA32_FEATURE_CONTROL are cleared.
At a minimum, a jailhouse system need to be able to use VMX outside SMX.
Signed-off-by: Francois-Frederic Ozog <f...@ozog.com>
Signed-off-by: Jan Kiszka <jan.k...@siemens.com>
Commit: 765365f4c4868e0e9ad30d7ca6e2e094b0c405ce
https://github.com/siemens/jailhouse/commit/765365f4c4868e0e9ad30d7ca6e2e094b0c405ce
Author: Claudio Scordino <cla...@evidence.eu.com>
Date: 2018-04-12 (Thu, 12 Apr 2018)
Changed paths:
A configs/arm64/jetson-tx2.c
Log Message:
-----------
Jetson TX2: root cell config
Root cell config for Jetson TX2 using Nvidia's kernel 4.4 (not Vanilla).
Tested on the "next" branch by restoring the ABI for kernels < 4.7 in
hypervisor/arch/arm64/entry.S:
/* install bootstrap_vectors */
ldr x0, =bootstrap_vectors
virt2phys x0
Signed-off-by: Claudio Scordino <cla...@evidence.eu.com>
Signed-off-by: Jan Kiszka <jan.k...@siemens.com>
Commit: 48c4909226cb1177083e48a665c7896160ece0cf
https://github.com/siemens/jailhouse/commit/48c4909226cb1177083e48a665c7896160ece0cf
Author: Claudio Scordino <cla...@evidence.eu.com>
Date: 2018-04-12 (Thu, 12 Apr 2018)
Changed paths:
M inmates/lib/arm64/include/mach.h
Log Message:
-----------
Jetson TX2: add inmate support
Signed-off-by: Claudio Scordino <cla...@evidence.eu.com>
Signed-off-by: Jan Kiszka <jan.k...@siemens.com>
Commit: 108d84d82be82bfbc23af3545515440f934599e9
https://github.com/siemens/jailhouse/commit/108d84d82be82bfbc23af3545515440f934599e9
Author: Claudio Scordino <cla...@evidence.eu.com>
Date: 2018-04-12 (Thu, 12 Apr 2018)
Changed paths:
A configs/arm64/jetson-tx2-demo.c
Log Message:
-----------
Jetson TX2: add demo cell config
Signed-off-by: Claudio Scordino <cla...@evidence.eu.com>
Signed-off-by: Jan Kiszka <jan.k...@siemens.com>
Commit: aad818e95fd65be73d6dd8bdffc20c04c6606467
https://github.com/siemens/jailhouse/commit/aad818e95fd65be73d6dd8bdffc20c04c6606467
Author: Claudio Scordino <cla...@evidence.eu.com>
Date: 2018-04-12 (Thu, 12 Apr 2018)
Changed paths:
M Documentation/hypervisor-configuration.md
M README.md
Log Message:
-----------
Documentation: Add TX2 to the list of supported hardware
Signed-off-by: Claudio Scordino <cla...@evidence.eu.com>
Signed-off-by: Jan Kiszka <jan.k...@siemens.com>
Commit: 574e21fc9e3bd545ec76ed3c58d4aa894f72733f
https://github.com/siemens/jailhouse/commit/574e21fc9e3bd545ec76ed3c58d4aa894f72733f
Author: Francois-Frederic Ozog <franco...@linaro.org>
Date: 2018-04-16 (Mon, 16 Apr 2018)
Changed paths:
M inmates/lib/x86/hypercall.c
Log Message:
-----------
inmates: assume VMCALL for hypercalls, detect AMD to change
inmates cannot use X86_FEATURE_VMX from regular cpuid
as vcpu maks the bit explicitely on non-root cells.
use cpuid leaf 0 to detect AuthenticAMD and change to VMMCALL
use string compare for clearer code
Signed-off-by: Francois-Frederic Ozog <franco...@linaro.org>
[Jan: fixed register clobbering, avoid string constant, style massaging]
Signed-off-by: Jan Kiszka <jan.k...@siemens.com>
Commit: b3c914523493668d79bf028715dc3574b7d802cf
https://github.com/siemens/jailhouse/commit/b3c914523493668d79bf028715dc3574b7d802cf
Author: Jan Kiszka <jan.k...@siemens.com>
Date: 2018-04-16 (Mon, 16 Apr 2018)
Changed paths:
M Kbuild
M configs/Makefile
M hypervisor/Makefile
M hypervisor/arch/arm-common/Kbuild
M hypervisor/arch/x86/Kbuild
M inmates/lib/arm-common/Makefile.lib
M inmates/lib/x86/Makefile.lib
M tools/Makefile
Log Message:
-----------
build: Include config.mk consistently to remove kernel CONFIGs
They can switch on build options we don't want or support. This allows
to drop explicit gcov and OCR disabling. In some cases, this condition
was actually already fulfilled.
Signed-off-by: Jan Kiszka <jan.k...@siemens.com>
Compare: https://github.com/siemens/jailhouse/compare/d7472246dffc...b3c914523493
Reply all
Reply to author
Forward
0 new messages