[Xense-devel] XSM hook for mapping a grant ref

In another thread today, my attention has been drawn to thegrant_operation_permitted() hook that is called when a domainattempts to map a grant reference. This effectively checks whether ornot the mapping domain has any I/O memory capabilities, and allowsthe mapping if it does. The comment for this macro states that:

"Until TLB flushing issues are sorted out we consider it unsafe fordomains with no hardware-access privileges to perform grant map/transfer operations."

It seems reasonable that we could have trusted domains which one canassume will handle these situations gracefully. Hence, I think thereis a case for an XSM hook that determines whether or not a domain isallowed to map any grants. Arguably, this could be combined with thecheck in xsm_map_grantref, though I would be unsurprised if there isa reason for the grant_operation_permitted hook residing where it iscurrently.

This also raises the question of whether XSM should be integratedwith the existing I/O capabilities system, so that there is oneconsistent view for a domain's privileges.


Regards,

Derek Murray.

_______________________________________________
Xense-devel mailing list
Xense-devel@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xense-devel

<Prev in Thread]

Current Thread

[Next in Thread>

Previous by Date:

[Xen-devel] [PATCH] Fix TPM support in HVM domains, Cihula, Joseph

Next by Date:

[Xense-devel] Re: XSM hook for mapping a grant ref, George S. Coker, II

Previous by Thread:

[Xen-devel] [PATCH] Fix TPM support in HVM domains, Cihula, Joseph

Next by Thread:

[Xense-devel] Re: XSM hook for mapping a grant ref, George S. Coker, II

Indexes:

[Date] [Thread] [Top] [All Lists]