Re: [PATCH RFC 00/10] Intel EPT-Based Sub-page Write Protection Support.

From: Christoph Hellwig
Date: Wed Oct 18 2017 - 03:09:46 EST

Next message: Kang, Luwei: "RE: [PATCH 9/9] KVM: x86: Disable intercept for Intel processor trace MSRs"
Previous message: Greg Kroah-Hartman: "Re: [PATCH 3.18 00/19] 3.18.76-stable review"
Next in thread: Yi Zhang: "Re: [PATCH RFC 00/10] Intel EPT-Based Sub-page Write Protection Support."
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> We introduced 2 ioctls to let user application to set/get subpage write protection bitmap per gfn, each gfn corresponds to a bitmap.
> The user application, qemu, or some other security control daemon. will set the protection bitmap via this ioctl.
> the API defined as:
> struct kvm_subpage {
> __u64 base_gfn;
> __u64 npages;
> /* sub-page write-access bitmap array */
> __u32 access_map[SUBPAGE_MAX_BITMAP];
> }sp;
> kvm_vm_ioctl(s, KVM_SUBPAGES_SET_ACCESS, &sp)
> kvm_vm_ioctl(s, KVM_SUBPAGES_GET_ACCESS, &sp)

What is the use case for this feature?

Next message: Kang, Luwei: "RE: [PATCH 9/9] KVM: x86: Disable intercept for Intel processor trace MSRs"
Previous message: Greg Kroah-Hartman: "Re: [PATCH 3.18 00/19] 3.18.76-stable review"
Next in thread: Yi Zhang: "Re: [PATCH RFC 00/10] Intel EPT-Based Sub-page Write Protection Support."
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]