From patchwork Sun Jun 14 22:12:00 2020 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Grzegorz Uriasz X-Patchwork-Id: 11603441 Return-Path: Received: from mail.kernel.org (pdx-korg-mail-1.web.codeaurora.org [172.30.200.123]) by pdx-korg-patchwork-2.web.codeaurora.org (Postfix) with ESMTP id 04D69913 for ; Sun, 14 Jun 2020 22:13:37 +0000 (UTC) Received: from lists.xenproject.org (lists.xenproject.org [192.237.175.120]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mail.kernel.org (Postfix) with ESMTPS id CF7E72067B for ; Sun, 14 Jun 2020 22:13:36 +0000 (UTC) Authentication-Results: mail.kernel.org; dkim=fail reason="signature verification failed" (2048-bit key) header.d=gmail.com header.i=@gmail.com header.b="L1VerG+D" DMARC-Filter: OpenDMARC Filter v1.3.2 mail.kernel.org CF7E72067B Authentication-Results: mail.kernel.org; dmarc=fail (p=none dis=none) header.from=gmail.com Authentication-Results: mail.kernel.org; spf=pass smtp.mailfrom=xen-devel-bounces@lists.xenproject.org Received: from localhost ([127.0.0.1] helo=lists.xenproject.org) by lists.xenproject.org with esmtp (Exim 4.92) (envelope-from ) id 1jkarM-00009w-GN; Sun, 14 Jun 2020 22:12:12 +0000 Received: from us1-rack-iad1.inumbo.com ([172.99.69.81]) by lists.xenproject.org with esmtp (Exim 4.92) (envelope-from ) id 1jkarL-00009r-OD for xen-devel@lists.xenproject.org; Sun, 14 Jun 2020 22:12:11 +0000 X-Inumbo-ID: 17dec9f0-ae8c-11ea-8496-bc764e2007e4 Received: from mail-ej1-x642.google.com (unknown [2a00:1450:4864:20::642]) by us1-rack-iad1.inumbo.com (Halon) with ESMTPS id 17dec9f0-ae8c-11ea-8496-bc764e2007e4; Sun, 14 Jun 2020 22:12:11 +0000 (UTC) Received: by mail-ej1-x642.google.com with SMTP id mb16so15382679ejb.4 for ; Sun, 14 Jun 2020 15:12:11 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=from:to:cc:subject:date:message-id:mime-version :content-transfer-encoding; bh=t7J+vBnr5qW0YqDWMwMgwG/Ldp8mMdAgk7lsL5Cc8KQ=; b=L1VerG+DAo+zLQDiLJsKgrMb/5MmrJDCWpZpmflYixnse0YsI5GbLqL1+vtDofLlwV FXuC8JmKPu1XAEHWk9uuengbfJDrCy6E18aNc16jIzYNJLeJa/HsZzuYv0rpRl2FPiWh KjYWdCgpbhD9vDp/xIHfVLCBpGHwHMFwEvkYcTv/t+zyVVAIPY3QY/Ddp8MpLeVScslT e9Yblpka8SmCTzMW/q/Z9B4t10cdMAz+4Grq63oz7vUNyaW43STf9vGgK0VvV60BqnP5 CK5wsBNGz01vJDlAL8lOKMtWmXWu96hn0g2XxrMkCiNTeWroVBLiA6KLVLx+nwy5u1SB vWIA== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:to:cc:subject:date:message-id:mime-version :content-transfer-encoding; bh=t7J+vBnr5qW0YqDWMwMgwG/Ldp8mMdAgk7lsL5Cc8KQ=; b=DmKBQoZSxfqRxZnwgodrZQ1MXKa7IhfLXU6ysiyT5pEVUZ0atSt3sFvonR/Lw5Wfes shb3Jn/X1wW6d+bCZZhKzqi/DKwaoB+5DQ8Ga/PCfZwiZ3A0FxQdOIKfPqeVcEv+iies jSe1Pf78z4QYIYKztROe/Y2FwzSYLESsf03AbXZlMPPdzSAPqMBhME5aXd1+0eq1WsjC AO+WwIc8z9L10TWUZ1q7cVoVabnSTBh8Mq/UybMsUBIURnAYRppWrePBqAfXoW21nv5h 3r3fSQG/OTz7RV74FESNgpOZiZo4lpX0IZjxZJeFM0NRg6H9/lZVUSDi6/8Vr+32Mj53 aNZg== X-Gm-Message-State: AOAM531wmHctbNd0aY/tbvcxrItRYtHxIXpeNDM/pC325hhnFHFrEJcp blj9yPauKSYusoIE1GH9WrxnBga7QPvTLQ== X-Google-Smtp-Source: ABdhPJxCisGBa7uuX9xs30Kf/32tkoMOjxd0hCAn7Ith9LY2zPfToaisRP4aWH2JR2DMw+aNK1ynsw== X-Received: by 2002:a17:906:aad8:: with SMTP id kt24mr22651804ejb.527.1592172730202; Sun, 14 Jun 2020 15:12:10 -0700 (PDT) Received: from localhost.localdomain (public-gprs354212.centertel.pl. [37.47.14.229]) by smtp.gmail.com with ESMTPSA id o13sm7772828ejb.46.2020.06.14.15.12.08 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Sun, 14 Jun 2020 15:12:09 -0700 (PDT) From: Grzegorz Uriasz To: xen-devel@lists.xenproject.org Subject: [PATCH 0/3] IGD Passthrough fixes for linux based stubdomains Date: Sun, 14 Jun 2020 22:12:00 +0000 Message-Id: X-Mailer: git-send-email 2.27.0 MIME-Version: 1.0 X-BeenThere: xen-devel@lists.xenproject.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Xen developer discussion List-Unsubscribe: , List-Post: List-Help: List-Subscribe: , Cc: Wei Liu , jakub@bartmin.ski, Ian Jackson , marmarek@invisiblethingslab.com, Grzegorz Uriasz , j.nowak26@student.uw.edu.pl, Anthony PERARD , contact@puzio.waw.pl Errors-To: xen-devel-bounces@lists.xenproject.org Sender: "Xen-devel" Hi, The included patches are a small subset of a bigger patch set spanning few projects aiming to isolate the GPU in Qubes OS to a dedicated security domain. I'm doing this together with 3 colleagues as part of our Bachelors thesis. Right now qemu assumes it runs in dom0 so it may grant access to required memory regions and ioports to the target domain for the IGD to work. This is no longer the case with linux based stubdomains as the stubdom is not privileged. Moving some logic from qemu to libxl is necessary for some features to work inside a stubdomain. The included patches were tested on a few laptops(together with the linked qemu patchset) and they work fine. Grzegorz Uriasz (3): tools/libxl: Grant VGA IO port permission for stubdom/target domain tools/libxl: Grant permission for mapping opregions to the target domain tools/libxl: Directly map VBIOS to stubdomain tools/libxl/libxl_pci.c | 153 +++++++++++++++++++++++++++++++++------- 1 file changed, 127 insertions(+), 26 deletions(-)