On Thu, Jul 16, 2026 at 05:59:05PM +0200, David Hildenbrand (Arm) wrote: > > Or do we just always trust virtio mem devices explicitly? > > It's hard for me to understand where we draw the line, really. > > But maybe MST can clarify what we care about in virtio world where the > hypervisor is fully in charge of the device,
Generally: - The guest is expected to whitelist drivers (most drivers have not been audited). - Denial of service by the hypervisor is not considered a threat (this is how cloud vendors charge their clients, by denying service to whoever did not pay). -- MST

