On 03.04.2017 13:43, Paolo Bonzini wrote: > > > On 03/04/2017 13:27, David Hildenbrand wrote: >>> The PML feature is not exposed to guests so we should not be forwarding >>> the vmexit either. >> >> I wonder if a whitelist of vmexits would make more sense, compared to >> defaulting to passing them through. But I don't know the history of this > > I checked the other day and it's really 50-50 between "return true" and > "return false" vmexits. Adding a WARNing would probably make even more > sense. :) > Well, a whitelist will make sure that L1 really only sees what you want it to see. As an alternative, specify all of them explicitly (white+black list - should that currently already be done? haven't checked it), default to "false" and print a WARNing (unhandled exit code). But don't expose it to L1. (just what I have in mind). > Thanks, > > Paolo > -- Thanks, David
