@marmarek can you easily toggle nesting ?
Like: enable nesting, do some tests, disable nesting ?
(Maybe that’s why I can only run PV qubes in my nested Qubes ?)
@maltfield I don’t run Qubes-in-Qubes, I run Qubes-in-Xen, it’s not exactly the same thing. If Marek tells us how it’s disabled, I may help you, provided you understand the security implications !
I’ve posted my findings here : Installing Qubes 4.1 in a Xen HVM domU (nestedhvm=1)
The nested Qubes must be HVM, and have those parameters (you will have to use Custom libvirt (ie domU) config [! dirty doc - v4.1.25-0-ga7649998] to set those params to your nested Qubes) :
- nestedhvm = 1
- hap = 1
- cpuid = [‘0x1:ecx=0xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx’] (note that it works without this param on my setup)