On Thu, Oct 27, 2016 at 03:05:35AM +0200, Cedric Blancher wrote: > On 20 October 2016 at 16:36, Stefan Hajnoczi <stefanha@xxxxxxxxxx> wrote: > > On Sat, Oct 08, 2016 at 02:42:17AM +0200, Cedric Blancher wrote: > >> So basically you're creating a new (Red Hat) Linux-only wormhole which > >> bypasses all network security between VM host and guest and needs > >> extra work&thought&tool support (wireshark, valgrind, ...) to handle, > >> trace, debug, monitor and secure? > > > > vsock is not Linux-only and not Red Hat-only. > > This is clearly Red Hat only. Debian and Ubuntu folks already have > rejected this out of security concerns, so why are you pressing this? Are you aware that Debian ships the vsock.ko and vmw_vsock_vmci_transport.ko kernel modules? https://packages.debian.org/jessie/amd64/linux-image-3.16.0-4-amd64/filelist Do you have a URL regarding virtio-vsock in Debian and Ubuntu? There was no discussion upstream in QEMU or Linux that I can recall. Stefan
Attachment:
signature.asc
Description: PGP signature
