Thanks for your suggestions and information as I will definitely look
into these more.
I have a very brief introduction to Dom0less and it is definitely
something of interest for me to review as well.
On the QubesOS side, I also read up a little on it and while it has a
number of similarities to what I am trying to do on the functional side,
it seems to be a whole distro release that comes in a 6GB ISO download
to install where as the project I am working towards is to have
everything as a RAM-based ultra-lightweight thin hypervisor. I looked
over ACRN, the NOVA Microhypervisor (Headron, Beadrock Udo),
Rust-Shyper, Bareflank-MicroV, and many other development efforts but it
seems that Xen is the most advanced for my purposes here.
Thanks again and I will dig into everything much more as well.
Have a great day,
Lonnie
On 6/27/2024 1:54 AM, Juergen Gross wrote:
On 26.06.24 18:47, Lonnie Cumberland wrote:
Hello All,
I hope that everyone is doing well today.
Currently, I am investigating and researching the ideas of
"Disaggregating" Dom0 and have the Xoar Xen patches ("Breaking Up is
Hard to Do: Security and Functionality in a Commodity Hypervisor"
2011) available which were developed against version 22155 of
xen-unstable. The Linux patches are against Linux with pvops
2.6.31.13 and developed on a standard Ubuntu 10.04 install. My effort
would also be up update these patches.
I have been able to locate the Xen "Dom0 Disaggregation"
(https://wiki.xenproject.org/wiki/Dom0_Disaggregation) am reading up
on things now but wanted to ask the developers list about any
experience you may have had in this area since the research objective
is to integrate Xoar with the latest Xen 4.20, if possible, and to
take it further to basically eliminate Dom0 all together with
individual Mini-OS or Unikernel "Service and Driver VM's" instead
that are loaded at UEFI boot time.
Any guidance, thoughts, or ideas would be greatly appreciated,
Just some pointers, this is not an exhaustive list:
- you should have a look at dom0less (see
docs/features/dom0less.pandoc in
the Xen source tree) and hyperlauch (see
docs/designs/launch/hyperlaunch.rst
in the Xen source tree)
- Xenstore in a stub-domain is working fine, it is the default in
openSUSE and
SLE
- QubesOS has a lot of the disaggregation you are looking for implemented
- I'm pretty sure only very few changes should be needed for the Linux
kernel,
if any.
Juergen
