Forum: >>> Magnum BBS <<<

Dark
Log in

Username Password

Virtualization layers (was: Constant Stack Canaries)

From Stefan Monnier@21:1/5 to All on Wed Apr 16 17:48:49 2025

Given 4 layers in the stack {Secure, Hyper, Super, User} and we have interrupts targeting {Secure, Hyper, Super}, do we pick up any liability
or do we gain flexibility by being able to target interrupts directly to {user} ?? (the 4th element).

All these discussions seem to presume a very fixed structure that (I
presume) corresponds to a typical situation in servers nowadays.

But shouldn't the hardware aim for something more flexible to account
for other use cases?

E.g. What if I want to run my own VM as a user? Or my own HV?
That's likely to be a common desire for people working on the
development and testing of OSes and HVs?

Stefan

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

From MitchAlsup1@21:1/5 to Stefan Monnier on Wed Apr 16 22:12:22 2025

On Wed, 16 Apr 2025 21:48:49 +0000, Stefan Monnier wrote:

Given 4 layers in the stack {Secure, Hyper, Super, User} and we have
interrupts targeting {Secure, Hyper, Super}, do we pick up any liability
or do we gain flexibility by being able to target interrupts directly to
{user} ?? (the 4th element).

All these discussions seem to presume a very fixed structure that (I
presume) corresponds to a typical situation in servers nowadays.

But shouldn't the hardware aim for something more flexible to account
for other use cases?

The goal is that::
The two layers in the middle can be managed as an accordion; supporting
any number of HVs and GuestOSs between Secure and User.

E.g. What if I want to run my own VM as a user? Or my own HV?
That's likely to be a common desire for people working on the
development and testing of OSes and HVs?

Use the accordion

Stefan

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

From Scott Lurndal@21:1/5 to Stefan Monnier on Thu Apr 17 00:49:37 2025

Stefan Monnier <monnier@iro.umontreal.ca> writes:

Given 4 layers in the stack {Secure, Hyper, Super, User} and we have
interrupts targeting {Secure, Hyper, Super}, do we pick up any liability
or do we gain flexibility by being able to target interrupts directly to
{user} ?? (the 4th element).

All these discussions seem to presume a very fixed structure that (I
presume) corresponds to a typical situation in servers nowadays.

But shouldn't the hardware aim for something more flexible to account
for other use cases?

E.g. What if I want to run my own VM as a user? Or my own HV?
That's likely to be a common desire for people working on the
development and testing of OSes and HVs?

ARM has hardware support for nested hypervisors. It can be tricky.

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

Who's Online
Recent Visitors
- Gretchiie
  Mon Sep 15 05:16:29 2025
  from Derry, Nh via Telnet
- Fred Blogs
  Mon Sep 15 00:03:12 2025
  from Uk via SSH
- Plume
  Sun Sep 14 09:34:52 2025
  from Uk via Raw
- Gretchiie
  Sun Sep 14 06:07:30 2025
  from Derry, Nh via Telnet
- Thlc
  Sat Sep 13 17:11:34 2025
  from Rognac, France via Telnet
- Thlc
  Sat Sep 13 17:04:03 2025
  from Rognac, France via Telnet
- Thlc
  Sat Sep 13 16:32:19 2025
  from Rognac, France via SSH
- Thlc
  Sat Sep 13 15:41:11 2025
  from Rognac, France via SSH

System Info

Sysop:	Keyop
Location:	Huddersfield, West Yorkshire, UK
Users:	546
Nodes:	16 (2 / 14)
Uptime:	12:08:29
Calls:	10,387
Calls today:	2
Files:	14,061
Messages:	6,416,714