On 8/8/19 12:10 PM, Stefan Hajnoczi wrote: > On Wed, Aug 07, 2019 at 12:20:47PM +0200, Philippe Mathieu-Daudé wrote: >>> +void python_args_clean(char *args[], int nargs) >>> +{ >>> + for (int i = 0; i < nargs; i++) { >>> + g_free(args[i]); >>> + } >>> +} >>> >> >> Wondering about security, is this feature safe to enable in production >> environment? It seems to bypass all the hard effort to harden QEMU security. > > This seems like a feature that distros would not enable. Only users > building QEMU from source could enable it.
Good. What about throwing big ./configure warning like the unsupported cpu/os ones? Better safe than sorry :)
signature.asc
Description: OpenPGP digital signature