Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Ensure that non-native virtio-GPU contexts are disabled #8969

Open
Tracked by #8552
DemiMarie opened this issue Feb 25, 2024 · 1 comment
Open
Tracked by #8552

Ensure that non-native virtio-GPU contexts are disabled #8969

DemiMarie opened this issue Feb 25, 2024 · 1 comment
Labels
C: GPU acceleration C: tests P: default Priority: default. Default priority for new issues, to be replaced given sufficient information. security This issue pertains to the security of Qubes OS. T: enhancement Type: enhancement. A new feature that does not yet exist or improvement of existing functionality.

Comments

@DemiMarie
Copy link

How to file a helpful issue

Qubes OS release (if applicable)

Something in the future.

Brief summary

Non-native virtio-GPU contexts have a huge attack surface and must not be supported. They should be build-time disabled to ensure that they cannot be turned on by mistake.
@DemiMarie DemiMarie added T: task Type: task. An action item that is neither a bug nor an enhancement. P: default Priority: default. Default priority for new issues, to be replaced given sufficient information. labels Feb 25, 2024
@DemiMarie DemiMarie self-assigned this Feb 25, 2024
@DemiMarie DemiMarie mentioned this issue Feb 25, 2024
Open
18 tasks
@DemiMarie DemiMarie added C: GPU acceleration security This issue pertains to the security of Qubes OS. and removed C: other labels Feb 28, 2024
@DemiMarie
Copy link
Author

Paging @alyssais and @puckipedia who need this for Spectrum.

@andrewdavidwong andrewdavidwong added C: tests T: enhancement Type: enhancement. A new feature that does not yet exist or improvement of existing functionality. and removed T: task Type: task. An action item that is neither a bug nor an enhancement. labels Feb 28, 2024
@DemiMarie DemiMarie removed their assignment Mar 3, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
C: GPU acceleration C: tests P: default Priority: default. Default priority for new issues, to be replaced given sufficient information. security This issue pertains to the security of Qubes OS. T: enhancement Type: enhancement. A new feature that does not yet exist or improvement of existing functionality.
Projects
GPU acceleration
Status: Todo
Milestone
No milestone
Development

No branches or pull requests
2 participants
@DemiMarie @andrewdavidwong