[RFC PATCH v1 0/9] Hypervisor-Enforced Kernel Integrity
Sean Christopherson
seanjc at google.com
Thu May 25 16:07:00 UTC 2023
On Thu, May 25, 2023, Rick P Edgecombe wrote:
> I wonder if it might be a good idea to POC the guest side before
> settling on the KVM interface. Then you can also look at the whole
> thing and judge how much usage it would get for the different options
> of restrictions.
As I said earlier[*], IMO the control plane logic needs to live in host userspace.
I think any attempt to have KVM providen anything but the low level plumbing will
suffer the same fate as CR4 pinning and XO memory. Iterating on an imperfect
solution to incremently improve security is far, far easier to do in userspace,
and far more likely to get merged.
[*] https://lore.kernel.org/all/ZFUyhPuhtMbYdJ76@google.com
More information about the Linux-security-module-archive
mailing list