----- 19 cze 2020 o 13:58, Andrew Cooper andrew.coop...@citrix.com napisał(a):
> We do not expose the feature to guests, so should disallow access to the > respective MSRs. > > Signed-off-by: Andrew Cooper <andrew.coop...@citrix.com> > --- > CC: Jan Beulich <jbeul...@suse.com> > CC: Wei Liu <w...@xen.org> > CC: Roger Pau Monné <roger....@citrix.com> > CC: Paul Durrant <p...@xen.org> > CC: Michał Leszczyński <michal.leszczyn...@cert.pl> > > Paul: For 4.14. This needs backporting to older trees as well. > > Michał: CC'ing, just to keep you in the loop. Xen has some dubious default > MSR semantics which we're still in the middle of untangling in a backwards > compatible way. Patches like this will eventually not be necessary, but they > are for now. As for external IPT monitoring, it would be best if the VM would think that IPT is simply not supported at all by the underlying hypervisor. Best regards, Michał Leszczyński CERT Polska
