The XSA mentions PV-in-PVH workaround, the QSB does not. Why Qubes does not go this way? Is it due to the timeline of releasing the patch? At first sight, it looks like a more general solution – it might be applicable even for VMs with PCI devices. (At least, the XSA does not mention such limitations and the limitation in Qubes AFAIK arises just from limitation on Linux kernel, not from Xen.)
BTW, the table seems to be incorrect about stubdomains in Qubes 3.2. It looks like some stubdomains are removed (“Stub domains - VMs w/o PCI devices” is PV in 3.2 and N/A in 3.2+.). In 3.2, the stubdomain is not used unless user explicitly requires full virtualization, and it is going to be the same. Regards, Vít Šesták 'v6ak' -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to qubes-users+unsubscr...@googlegroups.com. To post to this group, send email to qubes-users@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/cc072675-6cb5-4ed8-9300-d6a3fd35b9f9%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
