Re: [PATCH v2 0/4] Enable SMEP CPU Feature

From: Avi Kivity
Date: Tue May 17 2011 - 07:45:15 EST

Next message: Avi Kivity: "Re: [PATCH v2 0/4] Enable SMEP CPU Feature"
Previous message: Melchior FRANZ: "Re: i915/kms/backlight-combo mode problem"
In reply to: Ingo Molnar: "Re: [PATCH v2 0/4] Enable SMEP CPU Feature"
Next in thread: Avi Kivity: "Re: [PATCH v2 0/4] Enable SMEP CPU Feature"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 05/17/2011 02:38 PM, Ingo Molnar wrote:

>
> Depends if the guest uses a read-modify-write pattern or not. We could do it
> transparently in kvm.ko, since the real cr4 need not corresponds to the guest
> notion (for example, we often set cr0.wp or cr0.ts even though the guest
> wants them clear).

Oh, being transparent is a nice touch when it comes to security measures
(catching attackers who think there's no SMEP and such) - but that would need
KVM support and a new ioctl to configure it, right?

Yes.

--
error compiling committee.c: too many arguments to function

--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Avi Kivity: "Re: [PATCH v2 0/4] Enable SMEP CPU Feature"
Previous message: Melchior FRANZ: "Re: i915/kms/backlight-combo mode problem"
In reply to: Ingo Molnar: "Re: [PATCH v2 0/4] Enable SMEP CPU Feature"
Next in thread: Avi Kivity: "Re: [PATCH v2 0/4] Enable SMEP CPU Feature"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]