Re: [PATCH V3 4/8] xen/virtio: Enable restricted memory access using Xen grant mappings

From: Boris Ostrovsky
Date: Thu Jun 02 2022 - 15:10:04 EST



On 6/2/22 8:49 AM, Oleksandr wrote:

On 31.05.22 00:00, Oleksandr Tyshchenko wrote:

Hello all.

From: Juergen Gross <jgross@xxxxxxxx>

In order to support virtio in Xen guests add a config option XEN_VIRTIO
enabling the user to specify whether in all Xen guests virtio should
be able to access memory via Xen grant mappings only on the host side.

Also set PLATFORM_VIRTIO_RESTRICTED_MEM_ACCESS feature from the guest
initialization code on Arm and x86 if CONFIG_XEN_VIRTIO is enabled.

Signed-off-by: Juergen Gross <jgross@xxxxxxxx>
Signed-off-by: Oleksandr Tyshchenko <oleksandr_tyshchenko@xxxxxxxx>
Reviewed-by: Stefano Stabellini <sstabellini@xxxxxxxxxx>
---
Changes V1 -> V2:
    - new patch, split required changes from commit:
     "[PATCH V1 3/6] xen/virtio: Add option to restrict memory access under Xen"
    - rework according to new platform_has() infrastructure

Changes V2 -> V3:
    - add Stefano's R-b

May I please ask for the ack or comments for x86 side here?



Reviewed-by: Boris Ostrovsky <boris.ostrovsky@xxxxxxxxxx>