On 26.06.24 18:47, Lonnie Cumberland wrote:
Hello All,I hope that everyone is doing well today.Currently, I am investigating and researching the ideas of "Disaggregating" Dom0 and have the Xoar Xen patches ("Breaking Up is Hard to Do: Security and Functionality in a Commodity Hypervisor" 2011) available which were developed against version 22155 of xen-unstable. The Linux patches are against Linux with pvops 2.6.31.13 and developed on a standard Ubuntu 10.04 install. My effort would also be up update these patches.I have been able to locate the Xen "Dom0 Disaggregation" (https://wiki.xenproject.org/wiki/Dom0_Disaggregation) am reading up on things now but wanted to ask the developers list about any experience you may have had in this area since the research objective is to integrate Xoar with the latest Xen 4.20, if possible, and to take it further to basically eliminate Dom0 all together with individual Mini-OS or Unikernel "Service and Driver VM's" instead that are loaded at UEFI boot time.Any guidance, thoughts, or ideas would be greatly appreciated,
Just some pointers, this is not an exhaustive list: - you should have a look at dom0less (see docs/features/dom0less.pandoc in the Xen source tree) and hyperlauch (see docs/designs/launch/hyperlaunch.rst in the Xen source tree) - Xenstore in a stub-domain is working fine, it is the default in openSUSE and SLE - QubesOS has a lot of the disaggregation you are looking for implemented - I'm pretty sure only very few changes should be needed for the Linux kernel, if any. Juergen
OpenPGP_0xB0DE9DD628BF132F.asc
Description: OpenPGP public key
OpenPGP_signature.asc
Description: OpenPGP digital signature
