Demi Marie Obenour
Demi Marie Obenour
Has this already been done?
> So I have tested https://github.com/marmarek/qubes-vmm-xen-stubdom-linux/tree/for-upstream2 and there is no panic! And no VGA as been proposed. But it looks like VM is alive. > > What should be done...
All qrexec calls fail saying that they cannot connect to the qrexec agent. Older kernel versions boot fine.
I was, IIRC
Lowering to `P: minor` as the use of PV guests is discouraged for security reasons.
As per @andyhhp (in ): > @aronowski and/or @DemiMarie > > I took this to [[email protected]](mailto:[email protected]) before realising it had been fully discussed in public. Could either of you first...
The problem is that KFENCE creates L1TF-vulnerable page table entries. Xen can’t allow this and crashes the guest. The above patch prevents KFENCE from creating such entries.
This looks like a Xen build system bug. There is no way that Xen should be building an `ovmf.bin` without Xen support.
Personally, I don't consider social guarantees (promises) to be sufficient. If a credential issuer starts discriminating against which browsers/OSs/etc can use the API, I think it should be blocklisted on...
I do consider hardware tokens to be OS-independent, provided that all of the following conditions are met: - The tokens (and, if needed, readers) are provided at little or no...