Received: by 2002:a25:8b91:0:0:0:0:0 with SMTP id j17csp5051249ybl;
        Tue, 4 Feb 2020 06:51:48 -0800 (PST)
X-Google-Smtp-Source: APXvYqzxpcTBJAiRCdlJmm41qgIOglXYUE+mNns8Zq5Sz+qIPSby/+lmxD9vLC2T5jK8lnPCENIF
X-Received: by 2002:a05:6830:1185:: with SMTP id u5mr20795784otq.147.1580827908050;
        Tue, 04 Feb 2020 06:51:48 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; t=1580827908; cv=none;
        d=google.com; s=arc-20160816;
        b=wXEwDidNKqxnGKGiMZ6edADMl/hUK4h7PyCikyZbxTHoQRm6lS9aN2JBoWShCRHCUR
         NBmhsUjIgURejRvjcusWVPzRzcdMfZbxWIeTnRaV+gmRkFQSWtgnsI5uU/uvNsIIryjQ
         d3aoP9utgsuzSQRjnHmuxfiefFXNy0YlLp3w51+6cEhrSiEtKatGt7zP8fGvY3CuT8Ka
         e5LidjAg1TuhSGk0FRuCxfD9jgXhs0NlMOsgl8uayrnjFTVp015g1kkYfE6qfrW/fmnt
         HgicNuLkzOdJynWtW/sPpBURv9Qtiix1yvMpmjTaUpFGzOP0VZxMTmp/p7UEwcr7XMka
         j87g==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:sender:content-transfer-encoding
         :content-language:mime-version:user-agent:date:message-id:cc:to
         :subject:from;
        bh=wiH6IOpwP3bTYKz7lDp1MNS8l4iRwdXdICpSXCuqjXw=;
        b=MtIIEwRwL96rq7eKWptSY6z8HgUV+FDDtcvY8/G510XdzPGEPK6XvMj2CiqSSKYwKj
         ssNzW1K92rHggSJdtuNDdJs+Pbj1ODb9il5pMs5NpjnM60exDarP79g7hKzdWsRBaTLM
         wiTOWixksBVLp9BRrC7ZxE72fMit4zjRvMre57svT2AmyFJi1Bajhspk6HIZplBJ48h1
         pFKlDrModd2KhbJbvqqAix2t4HYwCmZtq6wSef7f2Oae8JcAfb07YHovSNEW12YE2j7L
         wmrLmSgNVaCypHiIGjS3aS0yygQ/LE7Fgsbr4l3LXb6wpm0nJIHZt1PR71kl+Wxc0m4J
         CtHg==
ARC-Authentication-Results: i=1; mx.google.com;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=siemens.com
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67])
        by mx.google.com with ESMTP id z3si9500230oib.164.2020.02.04.06.51.34;
        Tue, 04 Feb 2020 06:51:48 -0800 (PST)
Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67;
Authentication-Results: mx.google.com;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=siemens.com
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1727319AbgBDOte (ORCPT <rfc822;qidong1992@gmail.com>
        + 99 others); Tue, 4 Feb 2020 09:49:34 -0500
Received: from lizzard.sbs.de ([194.138.37.39]:37254 "EHLO lizzard.sbs.de"
        rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP
        id S1727267AbgBDOtd (ORCPT <rfc822;linux-kernel@vger.kernel.org>);
        Tue, 4 Feb 2020 09:49:33 -0500
Received: from mail2.sbs.de (mail2.sbs.de [192.129.41.66])
        by lizzard.sbs.de (8.15.2/8.15.2) with ESMTPS id 014EnUwV004584
        (version=TLSv1.2 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=OK);
        Tue, 4 Feb 2020 15:49:30 +0100
Received: from [139.25.68.37] ([139.25.68.37])
        by mail2.sbs.de (8.15.2/8.15.2) with ESMTP id 014EnUoG029882;
        Tue, 4 Feb 2020 15:49:30 +0100
From:   Jan Kiszka <jan.kiszka@siemens.com>
Subject: [ANNOUNCE] Jailhouse 0.12 released
To:     Jailhouse <jailhouse-dev@googlegroups.com>
Cc:     Linux Kernel Mailing List <linux-kernel@vger.kernel.org>
X-Mozilla-News-Host: news://news://news://news://news://blaine.gmane.org
Message-ID: <dd4344b9-ca04-0ef2-0810-6b98e30f68b4@siemens.com>
Date:   Tue, 4 Feb 2020 15:49:29 +0100
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:68.0) Gecko/20100101
 Thunderbird/68.4.1
MIME-Version: 1.0
Content-Type: text/plain; charset=utf-8; format=flowed
Content-Language: en-US
Content-Transfer-Encoding: 7bit
Sender: linux-kernel-owner@vger.kernel.org
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

This release is an important milestone for Jailhouse because it comes 
with a reworked inter-cell communication device with better driver 
support and even an experimental virtio transport model for this.

While this shared memory device model is still in discussion with virtio 
and QEMU communities, thus may undergo some further smaller changes, it 
was important to move forward with it because there is an increasing 
demand for it on the Jailhouse side. We now support multi-peer 
connection, have a secure (unprivileged) and efficient UIO driver and 
can even start working on virtio integration - without having to touch 
the hypervisor any further. More information also in [1].

The release has another important new, and that is SMMUv3 for ARM64 
target, as well as the TI-specific MPU-like Peripheral Virtualization 
Unit (PVU). SMMUv2 support is unfortunately still waiting in some NXP 
downstream branch for being pushed upstream.

Note that there are several changes to the configuration format that 
require adjustments of own configs. Please study related changes in our 
reference configurations or, on x86, re-generate the system configuration.

Due to all these significant changes, statistics for this release look 
about more heavyweight than usual:
195 files changed, 7185 insertions(+), 2612 deletions(-)

- New targets:
    - Texas Instruments J721E-EVM
    - Raspberry Pi 4 Model B
- Cross-arch changes:
    - rework of ivshmem inter-cell communication device
    - fix hugepage splitting in paging_destroy
    - allow to disable hugepage creation
      (to statically mitigate CVE-2018-12207)
- ARM / ARM64:
    - SMMUv3 support
    - TI PVU support
    - fix race several conditions in IRQ injection
    - add support for PCI in bare-metal inmates
- x86:
    - model PIO access via whitelist regions, rather than bitmaps
    - vtd: Protect against invalid IQT register values
    - fix 1024x768 mode of EFI framebuffer
    - permit root cell to enable CR4.UMIP

You can download the new release from

     https://github.com/siemens/jailhouse/archive/v0.12.tar.gz

then follow the README.md for first steps on recommended evaluation
platforms and check the tutorial session from ELC-E 2016 [2][3]. To try
out Jailhouse in a virtual environment or on a few reference boards,
there is an image generator available [4]. It will soon be updated to
the new release as well. Drop us a note on the mailing list if you run
into trouble.

A quick forecast of what is being worked on: One of the next major 
changes will be a rework of the CPU selection in configs (selection by 
stable physical IDs), along with support for L2 CAT on Intel processors. 
There is also ongoing discussion to extend sub-page memory regions with 
access bitmaps, on byte or even register bit-level. That will make 
access control more scalable, e.g. to pass pinmux registers to different 
cells.

Last but not least: We are starting a port of Jailhouse to RISC-V, first 
against QEMU, then against an FPGA model that will be developed within 
the EU-funded SELENE project. Stay tuned, there will be more behind it!

Thanks to all the contributors and supporters!

Jan

[1] 
https://static.sched.com/hosted_files/kvmforum2019/4b/KVM-Forum19_ivshmem2.pdf
[2] 
https://events.static.linuxfound.org/sites/events/files/slides/ELCE2016-Jailhouse-Tutorial.pdf
[3] https://youtu.be/7fiJbwmhnRw?list=PLbzoR-pLrL6pRFP6SOywVJWdEHlmQE51q
[4] https://github.com/siemens/jailhouse-images

-- 
Siemens AG, Corporate Technology, CT RDA IOT SES-DE
Corporate Competence Center Embedded Linux