On 30.09.2020 15:42, Andrew Cooper wrote:
> @@ -667,6 +668,12 @@ int arch_sanitise_domain_config(struct
> xen_domctl_createdomain *config)
> */
> config->flags |= XEN_DOMCTL_CDF_oos_off;
>
> + if ( nested_virt && !hap )
> + {
> + dprintk(XENLOG_INFO, "Nested virt not supported without HAP\n");
> + return -EINVAL;
> + }
Initially I was merely puzzled by this not being accompanied by
any removal of code elsewhere. But when I started looking I couldn't
find any such enforcement, but e.g. did find nsvm_vcpu_hostrestore()
covering the shadow mode case. For this to be "No functional change
yet" as the description claims, could you point me at where this
restriction is currently enforced?
Jan
