Chris Wright <chrisw@xxxxxxxxxxxx> wrote: > >> That said, I don't think we're bound today by the fact that we're in >> userspace. Rather we're bound by the interfaces we have between the >> host kernel and userspace to generate IO. I'd rather fix those >> interfaces than put more stuff in the kernel. > > And more stuff in the kernel can come at the potential cost of weakening > protection/isolation. Protection/isolation always comes at a cost. Not everyone wants to pay that, just like health insurance :) We should enable the users to choose which model they want, based on their needs. Cheers, -- Visit Openswan at http://www.openswan.org/ Email: Herbert Xu ~{PmV>HI~} <herbert@xxxxxxxxxxxxxxxxxxx> Home Page: http://gondor.apana.org.au/~herbert/ PGP Key: http://gondor.apana.org.au/~herbert/pubkey.txt -- To unsubscribe from this list: send the line "unsubscribe kvm" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
