On 7/17/26 07:48, Michael S. Tsirkin wrote:
> On Thu, Jul 16, 2026 at 05:59:05PM +0200, David Hildenbrand (Arm) wrote:
>>> Or do we just always trust virtio mem devices explicitly?
>>
>> It's hard for me to understand where we draw the line, really.
>>
>> But maybe MST can clarify what we care about in virtio world where the
>> hypervisor is fully in charge of the device,
> 
> Generally:
> - The guest is expected to whitelist drivers (most drivers have not
>   been audited).

But even if you audited your driver, who makes sure that we consider all ways
where the device could mess with us?

Something feels off here.

Handling selected out-of-spec scenarios like this feels like a band-aid. Happy
to be corrected.

-- 
Cheers,

David

Reply via email to