Hi Adrian,
Thanks for responding to my post.
Actually, after posting that message, I decided to load up the Muen Docker Container so which seemed like the simplest way to ensure that everything was setup correctly. Then, I followed the directions on the Muen main page:
to compile Muen and build with the hardware string that you had listed "hardware/lenovo-t440s.xml" to get the ISO just as a simple test case. Also, I did run across the hardware flavors in the "policy/hardware" directory as I was curious where that was coming from in the:
$ make HARDWARE=hardware/lenovo-t440s.xml SYSTEM=xml/demo_system_vtd.xml iso
But did not test the first ISO which I might do with Bochs, just to see it run.
Next, I will use the tool that you mentioned "Mugenhwcfg" to see if I can generate a hardware file for my physical hardware and give that a shot next in the ISO building.
One side question that I just thought about and wanted to ask is this. I have not yet dug into how you attach an OS to Muen during the ISO build, but started to wonder if you could attache 2 OS's and bring them up concurrently?
Since a Separation Kernel, if I understand completely runs the OS on a portion of the hardware that it is assigned, then by splitting up the hardware appropriately it would seem that you could run 2, or more, OS's concurrently on native hardware each with its own small portion of the whole system and the SK keeps things separate. Would this be accurate to say?
With a non-virtualizing Separation Kernel then I could see being able to do this until your hardware resource were deplete, where as with a virtualizing Separation Kernel you could also add many more OS's and context switch them in as in standard Type-1 hypervisors.
Additionally, if Meun could be made to run at the EFI/UEFI level then it would be considered a Type-0 Hypervisor, if I have a clear picture of the whole thing. With this in mind, then I could see Muen evolving into a "Type-0 Virtualizing Separation Kernel Hypervisor" of which I have really only found one instance on the Internet which is a commercial version that comes from Lynx Software called Lynx Secure.
Any thoughts on all of this?
Thanks again
Lonnie