On Tue, 17 Nov 2015, Shannon Zhao wrote: > On 2015/11/17 20:04, Julien Grall wrote: > > On 17/11/15 09:40, shannon.z...@linaro.org wrote: > >> From: Shannon Zhao <shannon.z...@linaro.org> > >> > >> Firstly it permits full MMIO capabilities for Dom0. Then deny MMIO > >> access of UART device. > > > > I'm nearly sure we want to deny other MMIO such as the GIC regions and SMMU. > > > But Dom0 will not know the real GIC hardware MMIO space, how would it > map these regions? In case of wrong use?
It could try regions at random or by mistake. I know that Dom0 is "trusted", but the less we trust it, the better. > Regarding SMMU, since it doesn't support now, so I didn't add it but it > could be added later. _______________________________________________ Xen-devel mailing list Xen-devel@lists.xen.org http://lists.xen.org/xen-devel