[BitVisor-devel-en:78] Fwd: Transparent hypervisor based encryption

[Aleksey M]

Hello.

I ask question on bitvisor-users-en maillist, but it seems that no one
encountered that problem before. May be someone from developers maillist
readers can give me a hint. Below is my original post on bitvisor-users-en
maillist.

Hello.

I try to use bitvisor for hypervisor based encryption. I have fully
encrypted disk that pluged into ahci capable controller. In my defconfig i
have set encryption key, host and device id and all, enabled storage
encryption during `make config`. I start my system in efi mode. And indeed
grub boot loader successfuly loaded from inside encrypted disk and
successfully load linux and initramfs. But when linux kernel get control it
see underlying encrypted disk directly, not transparantly encrypted.

So may be someone faced this situation before. Is this possible? My guess
that initial boot process uses legacy PIO mechanism for communication with
drive and linux kernel uses native AHCI DMA mechanism. May be in bitvisor
just not implemented completely correct handling of DMA read and write
interception.

Thanx.

Aleksey M.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.bitvisor.org/archives/bitvisor-devel-en/attachments/20170130/9013b383/attachment.html>