On 14/11/18 15:30, Daniel P. Berrangé wrote:
On Wed, Nov 14, 2018 at 02:26:42PM +0000, Stefan Hajnoczi wrote:
On Wed, Nov 14, 2018 at 04:36:02PM +0400, Marc-André Lureau wrote:
[...]
Maybe in the future there will be a tests too. Right now my impression
is that slirp isn't hardened and suitable for production use cases (i.e.
security). But with some love (and testing!) I think that could change.
With Marc-André's desire to move it to a separate process, it is the
kind of thing where seccomp could actually do a fairly good job as it
would be a narrow enough piece of functionality that you can put some
meaningful constraints around it.
It will also become easier to fuzz.
