>>> On 03.08.16 at 18:10, <ian.jack...@eu.citrix.com> wrote: > George Dunlap writes ("Re: Device model operation hypercall (DMOP, re qemu > depriv)"): >> So before qemu devpriv can be usable, *all* the HVMCTL operations would >> need to be audited, and those that were deemed insecure would need to be >> either fixed or removed. > > Even worse, the bad HVMCTLs would be retrospectively turned into > security-bugs-in-old-hypervisors. I don't think this is tenable.
How would a bug in the respective current hvmop then not be a security issue as well? Jan _______________________________________________ Xen-devel mailing list Xen-devel@lists.xen.org https://lists.xen.org/xen-devel