Re: [OpenIndiana-discuss] VirtualBox 6.1.18 nested vms

2021-04-28 Thread russell 

Hi

Upon further investigation it is not the CPU or bios settings as 
hardware virtualisation is enabled it appears that while VirtualBox 
provide an environment  to install ESX 6.7.0u3 (which works with AMD 
virtualisation) it does not expose enough functionality for the ESX 
instance to run a VM. At the office I have access to a Dual AMD Epyc 
7302 server running ESX 6.7.0u3 and have run ESX 6.7.0 instances as VMs 
without a problem. The key Virtualisation difference between Epyc 7302 
and Ryzen 5600 is the Secure Memory encryption (encrypt all memory with 
a common key when enabled in the bios is transparent to any operating 
system) and Secure Encrypted Virtualisation (encrypt each VM with its 
own key).


The basic AMD-V while used by VirtualBox it does not appear to be 
exposed within the virtual machine so that ESX can use it.


Thanks

Russell


___
openindiana-discuss mailing list
openindiana-discuss@openindiana.org
https://openindiana.org/mailman/listinfo/openindiana-discuss

Re: [OpenIndiana-discuss] VirtualBox 6.1.18 nested vms

2021-04-27 Thread Chris 

On 2021-04-27 08:32, L. F. Elia via openindiana-discuss wrote:
From what I recall, nested virtualization might require BIOS changes (at 
least on DELL). Good luck!


lfe...@yahoo.com, Portsmouth VA, 23701
Solaris/LINUX/Windows administration CISSP/Security consulting

On Thursday, April 1, 2021, 07:16:20 AM EDT, russell
 wrote:

 Hi

For what I have read VirtualBox 6.1 introduced the capability to have
nested VMs.

I have created a VM to run VMware 6.7.0u3, however when I attempt to
start any VM inside ESX 6.7.0u3 I get the following message

Failed to power on virtual machine Lethe. This host does not support
"AMD RVI" hardware assisted MMU virtualization. Click here for more
details.

While I haven't examined the specs for your specific version of the AMD CPU.
You won't get the information you desire from the VM. What you're really 
after
is what the VM HOST provides. I think your best bet is to have a look at 
dmesg

specifically dmesg.boot. It's the messages generated during boot. In FreeBSD
parlance; dmesg -a would give it to you, as would; less /var/run/dmesg.boot 
--

Sorry, I don't have my OI box handy to give you the exact incantation for OI.
Another thing to have a peek at is within your BOIS. You will need to be sure
you have VM option(s) enabled in order to expose them to the host OS.

HTH

--Chris


-

Looking at the log for the VBox VM

00:00:00.812397 Ext Name:    AuthenticAMD
00:00:00.812398 Ext Supports: 0x8000-0x801e
00:00:00.812398 Family:  15      Extended: 10
     Effective: 25
00:00:00.812398 Model:   1      Extended: 2    
Effective: 33
00:00:00.812399 Stepping:    0
00:00:00.812399 Brand ID:    0x000
00:00:00.812399 Ext Features
00:00:00.812399   Mnemonic -
Description  = guest (host)
00:00:00.812400   FPU - x87 FPU on
Chip   = 1 (1)
00:00:00.812400   VME - *Virtual 8086 Mode Enhancements* = 1 (1)
00:00:00.812401   DE - Debugging
extensions   = 1 (1)
00:00:00.812401   PSE - Page Size
Extension   = 1 (1)
00:00:00.812402   TSC - Time Stamp
Counter    = 1 (1)
00:00:00.812403   MSR - K86 Model Specific
Registers  = 1 (1)
00:00:00.812403   PAE - Physical Address
Extension    = 1 (1)
00:00:00.812404   MCE - Machine Check
Exception   = 0 (1)
00:00:00.812404   CX8 - CMPXCHG8B
instruction = 1 (1)
00:00:00.812405   APIC - APIC
On-Chip = 1 (1)
00:00:00.812405   SEP -
SYSCALL/SYSRET    = 1 (1)
00:00:00.812406   MTRR - Memory Type Range
Registers  = 1 (1)
00:00:00.812406   PGE - PTE Global
Bit    = 1 (1)
00:00:00.812407   MCA - Machine Check
Architecture    = 1 (1)
00:00:00.812407   CMOV - Conditional Move
instructions    = 1 (1)
00:00:00.812408   PAT - Page Attribute
Table  = 1 (1)
00:00:00.812408   PSE-36 - 36-bit Page Size
Extension = 1 (1)
00:00:00.812409   NX -
No-Execute/Execute-Disable = 1 (1)
00:00:00.812409   AXMMX - AMD Extensions to MMX
instructions  = 1 (1)
00:00:00.812410   MMX - Intel MMX
Technology  = 1 (1)
00:00:00.812410   FXSR - FXSAVE and FXRSTOR
Instructions  = 1 (1)
00:00:00.812411   FFXSR - AMD fast FXSAVE and FXRSTOR
instructions    = 1 (1)
00:00:00.812411   Page1GB - 1 GB large
page   = 0 (1)
00:00:00.812412   RDTSCP - RDTSCP
instruction = 1 (1)
00:00:00.812413   LM - AMD64 Long
Mode    = 1 (1)
00:00:00.812413   3DNOWEXT - AMD Extensions to
3DNow  = 0 (0)
00:00:00.812414   3DNOW - AMD
3DNow   = 0 (0)
00:00:00.812415   LahfSahf - LAHF/SAHF support in 64-bit
mode = 1 (1)
00:00:00.812415   CmpLegacy - Core multi-processing legacy
mode   = 1 (1)
00:00:00.812416 *SVM - AMD Secure Virtual Machine extensions* = 1 (1)
00:00:00.812416   EXTAPIC - AMD Extended APIC
registers   = 0 (1)
00:00:00.812417   CR8L - AMD LOCK MOV CR0 means MOV
CR8   = 1 (1)
00:00:00.812417   ABM - AMD Advanced Bit
Manipulation = 1 (1)
00:00:00.812418   SSE4A - SSE4A
instructions  = 1 (1)
00:00:00.812418   MISALIGNSSE - AMD Misaligned SSE
mode   = 1 (1)
00:00:00.812419   3DNOWPRF - AMD PREFETCH and PREFETCHW
instructions  = 1 (1)
00:00:00.812419   OSVW - AMD OS Visible
Workaround    = 0 (1)

Re: [OpenIndiana-discuss] VirtualBox 6.1.18 nested vms

2021-04-27 Thread L. F. Elia via openindiana-discuss 
From what I recall, nested virtualization might require BIOS changes (at least 
on DELL). Good luck!

lfe...@yahoo.com, Portsmouth VA, 23701
Solaris/LINUX/Windows administration CISSP/Security consulting 

On Thursday, April 1, 2021, 07:16:20 AM EDT, russell 
 wrote:  
 
 Hi

For what I have read VirtualBox 6.1 introduced the capability to have 
nested VMs.

I have created a VM to run VMware 6.7.0u3, however when I attempt to 
start any VM inside ESX 6.7.0u3 I get the following message

Failed to power on virtual machine Lethe. This host does not support 
"AMD RVI" hardware assisted MMU virtualization. Click here for more 
details. 

 
-

Looking at the log for the VBox VM

00:00:00.812397 Ext Name:    AuthenticAMD
00:00:00.812398 Ext Supports: 0x8000-0x801e
00:00:00.812398 Family:  15      Extended: 10 
     Effective: 25
00:00:00.812398 Model:   1      Extended: 2     
Effective: 33
00:00:00.812399 Stepping:    0
00:00:00.812399 Brand ID:    0x000
00:00:00.812399 Ext Features
00:00:00.812399   Mnemonic - 
Description  = guest (host)
00:00:00.812400   FPU - x87 FPU on 
Chip   = 1 (1)
00:00:00.812400   VME - *Virtual 8086 Mode Enhancements* = 1 (1)
00:00:00.812401   DE - Debugging 
extensions   = 1 (1)
00:00:00.812401   PSE - Page Size 
Extension   = 1 (1)
00:00:00.812402   TSC - Time Stamp 
Counter    = 1 (1)
00:00:00.812403   MSR - K86 Model Specific 
Registers  = 1 (1)
00:00:00.812403   PAE - Physical Address 
Extension    = 1 (1)
00:00:00.812404   MCE - Machine Check 
Exception   = 0 (1)
00:00:00.812404   CX8 - CMPXCHG8B 
instruction = 1 (1)
00:00:00.812405   APIC - APIC 
On-Chip = 1 (1)
00:00:00.812405   SEP - 
SYSCALL/SYSRET    = 1 (1)
00:00:00.812406   MTRR - Memory Type Range 
Registers  = 1 (1)
00:00:00.812406   PGE - PTE Global 
Bit    = 1 (1)
00:00:00.812407   MCA - Machine Check 
Architecture    = 1 (1)
00:00:00.812407   CMOV - Conditional Move 
instructions    = 1 (1)
00:00:00.812408   PAT - Page Attribute 
Table  = 1 (1)
00:00:00.812408   PSE-36 - 36-bit Page Size 
Extension = 1 (1)
00:00:00.812409   NX - 
No-Execute/Execute-Disable = 1 (1)
00:00:00.812409   AXMMX - AMD Extensions to MMX 
instructions  = 1 (1)
00:00:00.812410   MMX - Intel MMX 
Technology  = 1 (1)
00:00:00.812410   FXSR - FXSAVE and FXRSTOR 
Instructions  = 1 (1)
00:00:00.812411   FFXSR - AMD fast FXSAVE and FXRSTOR 
instructions    = 1 (1)
00:00:00.812411   Page1GB - 1 GB large 
page   = 0 (1)
00:00:00.812412   RDTSCP - RDTSCP 
instruction = 1 (1)
00:00:00.812413   LM - AMD64 Long 
Mode    = 1 (1)
00:00:00.812413   3DNOWEXT - AMD Extensions to 
3DNow  = 0 (0)
00:00:00.812414   3DNOW - AMD 
3DNow   = 0 (0)
00:00:00.812415   LahfSahf - LAHF/SAHF support in 64-bit 
mode = 1 (1)
00:00:00.812415   CmpLegacy - Core multi-processing legacy 
mode   = 1 (1)
00:00:00.812416 *SVM - AMD Secure Virtual Machine extensions* = 1 (1)
00:00:00.812416   EXTAPIC - AMD Extended APIC 
registers   = 0 (1)
00:00:00.812417   CR8L - AMD LOCK MOV CR0 means MOV 
CR8   = 1 (1)
00:00:00.812417   ABM - AMD Advanced Bit 
Manipulation = 1 (1)
00:00:00.812418   SSE4A - SSE4A 
instructions  = 1 (1)
00:00:00.812418   MISALIGNSSE - AMD Misaligned SSE 
mode   = 1 (1)
00:00:00.812419   3DNOWPRF - AMD PREFETCH and PREFETCHW 
instructions  = 1 (1)
00:00:00.812419   OSVW - AMD OS Visible 
Workaround    = 0 (1)
00:00:00.812420   IBS - Instruct Based 
Sampling   = 0 (1)
00:00:00.812420   XOP - Extended Operation 
support    = 0 (0)
00:00:00.812421   SKINIT - SKINIT, STGI, and DEV 
support  = 0 (1)
00:00:00.812421   WDT - AMD Watchdog Timer 
support    = 0 (1)
00:00:00.812422   LWP - Lightweight Profiling 
support = 0 (0)
00:00:00.812422   FMA4 - Four operand FMA instruction 
support = 0 (0)
00:00:00.812423   17 - 
Reserved   = 0 (1)
00:00:00.812423   NodeId - NodeId in MSR 
C001_100C  

[OpenIndiana-discuss] VirtualBox 6.1.18 nested vms

2021-04-01 Thread russell 

Hi

For what I have read VirtualBox 6.1 introduced the capability to have 
nested VMs.


I have created a VM to run VMware 6.7.0u3, however when I attempt to 
start any VM inside ESX 6.7.0u3 I get the following message


Failed to power on virtual machine Lethe. This host does not support 
"AMD RVI" hardware assisted MMU virtualization. Click here for more 
details. 
 
-


Looking at the log for the VBox VM

00:00:00.812397 Ext Name:    AuthenticAMD
00:00:00.812398 Ext Supports: 0x8000-0x801e
00:00:00.812398 Family:  15      Extended: 10 
    Effective: 25
00:00:00.812398 Model:   1      Extended: 2     
Effective: 33

00:00:00.812399 Stepping:    0
00:00:00.812399 Brand ID:    0x000
00:00:00.812399 Ext Features
00:00:00.812399   Mnemonic - 
Description  = guest (host)
00:00:00.812400   FPU - x87 FPU on 
Chip   = 1 (1)

00:00:00.812400   VME - *Virtual 8086 Mode Enhancements* = 1 (1)
00:00:00.812401   DE - Debugging 
extensions   = 1 (1)
00:00:00.812401   PSE - Page Size 
Extension   = 1 (1)
00:00:00.812402   TSC - Time Stamp 
Counter    = 1 (1)
00:00:00.812403   MSR - K86 Model Specific 
Registers  = 1 (1)
00:00:00.812403   PAE - Physical Address 
Extension    = 1 (1)
00:00:00.812404   MCE - Machine Check 
Exception   = 0 (1)
00:00:00.812404   CX8 - CMPXCHG8B 
instruction = 1 (1)
00:00:00.812405   APIC - APIC 
On-Chip = 1 (1)
00:00:00.812405   SEP - 
SYSCALL/SYSRET    = 1 (1)
00:00:00.812406   MTRR - Memory Type Range 
Registers  = 1 (1)
00:00:00.812406   PGE - PTE Global 
Bit    = 1 (1)
00:00:00.812407   MCA - Machine Check 
Architecture    = 1 (1)
00:00:00.812407   CMOV - Conditional Move 
instructions    = 1 (1)
00:00:00.812408   PAT - Page Attribute 
Table  = 1 (1)
00:00:00.812408   PSE-36 - 36-bit Page Size 
Extension = 1 (1)
00:00:00.812409   NX - 
No-Execute/Execute-Disable = 1 (1)
00:00:00.812409   AXMMX - AMD Extensions to MMX 
instructions  = 1 (1)
00:00:00.812410   MMX - Intel MMX 
Technology  = 1 (1)
00:00:00.812410   FXSR - FXSAVE and FXRSTOR 
Instructions  = 1 (1)
00:00:00.812411   FFXSR - AMD fast FXSAVE and FXRSTOR 
instructions    = 1 (1)
00:00:00.812411   Page1GB - 1 GB large 
page   = 0 (1)
00:00:00.812412   RDTSCP - RDTSCP 
instruction = 1 (1)
00:00:00.812413   LM - AMD64 Long 
Mode    = 1 (1)
00:00:00.812413   3DNOWEXT - AMD Extensions to 
3DNow  = 0 (0)
00:00:00.812414   3DNOW - AMD 
3DNow   = 0 (0)
00:00:00.812415   LahfSahf - LAHF/SAHF support in 64-bit 
mode = 1 (1)
00:00:00.812415   CmpLegacy - Core multi-processing legacy 
mode   = 1 (1)

00:00:00.812416 *SVM - AMD Secure Virtual Machine extensions* = 1 (1)
00:00:00.812416   EXTAPIC - AMD Extended APIC 
registers   = 0 (1)
00:00:00.812417   CR8L - AMD LOCK MOV CR0 means MOV 
CR8   = 1 (1)
00:00:00.812417   ABM - AMD Advanced Bit 
Manipulation = 1 (1)
00:00:00.812418   SSE4A - SSE4A 
instructions  = 1 (1)
00:00:00.812418   MISALIGNSSE - AMD Misaligned SSE 
mode   = 1 (1)
00:00:00.812419   3DNOWPRF - AMD PREFETCH and PREFETCHW 
instructions  = 1 (1)
00:00:00.812419   OSVW - AMD OS Visible 
Workaround    = 0 (1)
00:00:00.812420   IBS - Instruct Based 
Sampling   = 0 (1)
00:00:00.812420   XOP - Extended Operation 
support    = 0 (0)
00:00:00.812421   SKINIT - SKINIT, STGI, and DEV 
support  = 0 (1)
00:00:00.812421   WDT - AMD Watchdog Timer 
support    = 0 (1)
00:00:00.812422   LWP - Lightweight Profiling 
support = 0 (0)
00:00:00.812422   FMA4 - Four operand FMA instruction 
support = 0 (0)
00:00:00.812423   17 - 
Reserved   = 0 (1)
00:00:00.812423   NodeId - NodeId in MSR 
C001_100C    = 0 (0)
00:00:00.812424   TBM - Trailing Bit Manipulation 
instructions    = 0 (0)
00:00:00.812424   TOPOEXT - Topology 
Extensions   = 0 (1)
00:00:00.812425   PRFEXTCORE - Performance Counter Extensions 
support = 0 (1)
00:00:00.812425