> That's just one example... the idea is that you want maximal separation
> between the guest OS's apps and the host OS. Sort of like "VM" on IBM's
> series of mainframe architecures. Of course, that's virtualization done
> in hardware not in software, but the principles are the same; you want a
> maximal amount of separation between the layers.
As an "idea" it doesn't make much sense for me. An mm does tie up
considerable amounts of unswappable host memory (page tables, mm_struct),
which could be used for a DoS without too many problems. The separation
you are asking for just isn't there with UML. The same applies to other
resources used by UML.
-Andi
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/