-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathTODO
63 lines (62 loc) · 2.14 KB
/
TODO
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
Things to be addressed, at some point. Unsorted, unprioritized, incomplete.
o x86 support
- interrupt remapping support
- IOAPIC virtualization [WIP]
- MSI virtualization (for PCI and HPET)
- VT-d setup
- PCI resource access control
- config space access moderation [WIP]
- AMD64 (SVM) [WIP]
- power management
- block
- allow per cell (managing inter-core/inter-cell impacts)
- moderate access to keyboard controller (ports 0x60/0x64)
o ARM support
- v7 (32-bit)
- v8 (64-bit)
o configuration
- add official support to assign resources to multiple cells
(shared pages, read-only PIO ports)?
- review of format, rework of textual representation
- platform device assignment
- enhance config generator
- confine the created root cell config to the essentially required resources
(e.g. PCI BARs)
- generate non-root cell configs
- add knowledge base about resource access rules that need manual review or
configurations that are known to be problematic (e.g. INTx sharing between
cells)
o setup validation
- check integrity of configurations
- check integrity of runtime environment (hypervisor core & page_pool,
probably just excluding volatile Linux-related state variables)
- pure software solution (without security requirements)
- Intel TXT support?
- secure boot?
o inter-cell communication channel
- shared memory + doorbell IRQs
- queues + doorbell?
o testing
- build tests for x86 and ARM
- unit tests?
- system tests, also in QEMU/KVM
- VT-d emulation for QEMU [WIP: GSoC project]
o inmates
- reusable runtime environment for cell inmates
- skeleton in separate directory
- hw access libraries (x86: APIC, TSC calibration, PCI, IOAPIC, ...)
- inter-cell communication library
- port free small-footprint RTOS to Jailhouse bare-metal environment
[WIP: RTEMS]
o hardware error handling
- MCEs
- PCI AER
- APEI
- Thermal
- ...
o monitoring
- report error-triggering devices behind IOMMUs via sysfs
- hypervisor console via debugfs?
- cell software watchdog via comm region messages
-> time out pending comm region messages and kill failing cells
(includes timeouts of unanswered shutdown requests)