But you want Aero too in VMs, don't you
If you wanted a single, standard API to run across a client/host boundary Gallium3D seems like a pretty good choice.
Also if you want to pick up a team familiar with 3D on Linux there's probably nobody better in the world.
Just a thought.
That sounds very dangerous from a security point of view. Wouldn't it be possible to have the GPU write to memory outside of the client address space?
But very interesting, if that is indeed what they are doing
Last edited by Louise; 05-17-2009 at 12:12 PM. Reason: Wrote "host" ment "client".
Definitely would have to go through the hypervisor and have contents checked; the question is just *what* goes through the hypervisor.
This is all just idle speculation, I'm not in on the secret plan or anything.
Should there then be a Gallium3D driver on the host, that then would act like a hypervisor for 2D/3D calls?
There exist network cards that are aware that there is running virtual guests on the host, so the network card can't be used to do code injection by DMA.
If they exposed the GPU, I would think that it would be possible to have shaders to write anywhere in memory.
...Unless they encrypted and hashed the memory and page tables
Let's just hope, that they don't finish the new Gallium3D API, before we have stable 3D drivers
The current DRM already checks register accesses and buffer locations before allowing a command packet to get through to the hardware. As the stack transitions to using a common memory manager and passing handles rather than pointers the checking should get easier.
The buffer checking code is mostly here (for 6xx/7xx anyways) : http://cgit.freedesktop.org/~agd5f/d...h=r6xx-r7xx-3d
Last edited by bridgman; 05-17-2009 at 01:32 PM.
Maybe they have found away to talk to each core, so e.g. one guest gets 50 of the GPU cores?
I wonder how Red Hat feels about all this. They bought Qumranet last year, which are best known for KVM.
But Red hat also got Solid ICE, which virtualizes Linux and Windows desktops.
Maybe VMware are afraid of what Red Hat will be able to deliver???