So are you saying that VT-D does not actually depend on Xen...?
With a Xen bug, couldn't a hacked WiFi device just break out of sys-net..?
Or not..?
--
You received this message because you are subscribed to the Google Groups
"qubes-users" group.
To unsubscribe from this group and stop
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
On Fri, Oct 07, 2016 at 07:57:35AM -0700, neilhard...@gmail.com wrote:
> Presumably through the CPU.
>
> We know this option exists for hard drives for a facts.
>
> So I see no reason you couldn't get Ethernet + WiFi chips without DMA.
>
> Not
Presumably through the CPU.
We know this option exists for hard drives for a facts.
So I see no reason you couldn't get Ethernet + WiFi chips without DMA.
Not all devices support switching off DMA, so I can see why Qubes decided to
use VT-D + Xen instead.
But certainly, I think there are
W dniu piątek, 7 października 2016 13:14:41 UTC+2 użytkownik neilh...@gmail.com
napisał:
> Qubes uses VT-D and a Net VM to attempt to isolate buggy WiFi adapters from
> the rest of the Qubes system.
>
> But this isolation still depends on Xen not having bugs... And we know that
> Xen has bugs,