On 14/02/2018 09:51, Daniel P. Berrangé wrote: >> +Please note that, as mentioned in the previous blog post, QEMU/KVM generally >> +has the same requirements as other unpriviledged processes running on the >> +host WRT Spectre/Meltdown mitigation. > > Is this actually still considered accurate wrt the host QEMU ? I was under > the believe that life is more complicated for QEMU/KVM wrt Spectre and that > it will require more protection than other unpriv processes on the host in > some cases.
The plan is for KVM to ensure that QEMU can be treated as yet another unprivileged process. Anything else would require applying the same care to all of QEMU's dependencies. Paolo