Editing Hypervisor
Jump to navigation
Jump to search
The edit can be undone. Please check the comparison below to verify that this is what you want to do, and then publish the changes below to finish undoing the edit.
Latest revision | Your text | ||
Line 1: | Line 1: | ||
== Hypercalls == | == Hypercalls == | ||
{| class="wikitable" | {| class="wikitable" | ||
Line 47: | Line 39: | ||
|} | |} | ||
== In-Kernel Hypervisor (<= 2. | == In-Kernel Hypervisor (<= 2.50) == | ||
On | On 2.50 and lower, the hypervisor is integrated as part of the kernel binary. This is the "first iteration" of the hypervisor, later versions have the hypervisor as a separately loaded component. The hypervisor's main goals are to protect kernel code integrity and enforce <code>xotext</code> (aka. eXecute Only Memory or "XOM") on the kernel. | ||
To accomplish this, Sony takes advantage of various features provided by AMD Secure Virtual Machine (SVM), such as; Nested Page Tables (NPT), Guest Mode Execute Trap (GMET), and intercepting reads/writes to Control Registers (CRs) as well as Machine State Registers (MSRs). Furthermore, xotext seems to be hardware-backed as a collaboration with AMD, named "nda feature". The hypervisor also manages the I/O Memory Management Unit (IOMMU), as hinted by the fact that it exposes various hypercalls for configuring it. | |||
It | It's worth noting the hypervisor is very small, especially when compared to that of the PS3. It only supports a handful of hypercalls and mainly exists to protect the kernel. It doesn't run multiple VMs or use nested virtualization, it only virtualizes the kernel/userspace, which Sony calls "GameOS". | ||
=== Page Tables === | === Page Tables === | ||
Line 96: | Line 88: | ||
| 21 || SMAP || Supervisor Mode Access Protection | | 21 || SMAP || Supervisor Mode Access Protection | ||
|- | |- | ||
| 20 || SMEP || Supervisor Mode Execution | | 20 || SMEP || Supervisor Mode Execution Preventino | ||
|- | |- | ||
| 0 || VME || Virtual 8086 Mode Extensions | | 0 || VME || Virtual 8086 Mode Extensions |