OrgACRN
/
acrn-hypervisor
mirror of https://github.com/projectacrn/acrn-hypervisor.git
1
0
Fork 0
Code Issues Releases Wiki Activity
acrn-hypervisor/hypervisor
History
Shuo A Liu 9c1caad25a hv: nested: Keep privilege bits sync in shadow EPT entry 
Guest may not use INVEPT instruction after enabling any of bits 2:0 from
0 to 1 of a present EPT entry, then the shadow EPT entry has no chance
to sync guest EPT entry. According to the SDM,
"""
Software may use the INVEPT instruction after modifying a present EPT
paging-structure entry (see Section 28.2.2) to change any of the
privilege bits 2:0 from 0 to 1.1 Failure to do so may cause an EPT
violation that would not otherwise occur. Because an EPT violation
invalidates any mappings that would be used by the access that caused
the EPT violation (see Section 28.3.3.1), an EPT violation will not
recur if the original access is performed again, even if the INVEPT
instruction is not executed.
"""

Sync the afterthought of privilege bits from guest EPT entry to shadow
EPT entry to cover above case.

Tracked-On: #5923
Signed-off-by: Shuo A Liu <shuo.a.liu@intel.com>
Acked-by: Eddie Dong <eddie.dong@intel.com>
 		2021-07-02 09:24:12 +08:00
..
acpi_parser hv: update RTCT ACPI table detecting 2021-06-01 08:22:20 +08:00
arch/x86 hv: nested: Keep privilege bits sync in shadow EPT entry 2021-07-02 09:24:12 +08:00
boot HV: ramdisk and kernel load addr improve 2021-06-11 21:50:22 +08:00
bsp/ld
common HV: place kernel and ramdisk by find_space_from_ve820() 2021-06-11 10:06:02 +08:00
debug HV: modularization: use cmdline char array in acrn boot info 2021-06-11 10:06:02 +08:00
dm hv: add max payload to vrp 2021-06-15 08:53:53 +08:00
hw hv: ensure PTM root is always enabled in hw 2021-05-27 09:00:50 +08:00
include hv: Use 64 bits definition for 64 bits MSR_IA32_VMX_EPT_VPID_CAP operation 2021-07-02 09:24:12 +08:00
lib HV: replace merge_cmdline api with strncat_s 2020-06-08 13:30:04 +08:00
release hv: deny access to HV owned legacy PIO UART from SOS 2021-06-08 16:16:14 +08:00
scripts config-tools: build acrn with xslt generated pci_dev.c and board_info.h 2021-05-24 21:53:22 +08:00
Kconfig
MAINTAINERS
Makefile HV: add efi memory map parsing function 2021-06-11 10:06:02 +08:00
README.rst

README.rst 

ACRN Hypervisor
###############

The open source `Project ACRN`_ defines a device hypervisor reference stack and
an architecture for running multiple software subsystems, managed securely, on
a consolidated system by means of a virtual machine manager. It also defines a
reference framework implementation for virtual device emulation, called the
"ACRN Device Model".

The ACRN Hypervisor is a Type 1 reference hypervisor stack, running directly on
the bare-metal hardware, and is suitable for a variety of IoT and embedded
device solutions. The ACRN hypervisor addresses the gap that currently exists
between datacenter hypervisors, and hard partitioning hypervisors. The ACRN
hypervisor architecture partitions the system into different functional
domains, with carefully selected guest OS sharing optimizations for IoT and
embedded devices.

You can find out more about Project ACRN on the `Project ACRN documentation`_
website.

.. _`Project ACRN`: https://projectacrn.org
.. _`ACRN Hypervisor`: https://github.com/projectacrn/acrn-hypervisor
.. _`Project ACRN documentation`: https://projectacrn.github.io/