You’ve been smoking something really mind altering, and I think you should share it.
x86 virtualization is about basically placing another nearly full kernel, full of new bugs, on top of a nasty x86 architecture which barely has correct page protection. Then running your operating system on the other side of this brand new pile of shit.
You are absolutely deluded, if not stupid, if you think that a worldwide collection of software engineers who can’t write operating systems or applications without security holes, can then turn around and suddenly write virtualization layers without security holes.
You’ve seen something on the shelf, and it has all sorts of pretty colours, and you’ve bought it.
I immediately thought about that quote when I learned about this bug (which, of course, completely negates any assertions of “cloud security” which have been used to justify virtualization for the last ten years).
OpenBSD’s Theo de Raadt, from 2007:
FYI- OpenBSD has an x86 hypervisor under development.
I’m insanely curious to see how they will avoid the hypervisor being a huge turd.
I’ve been working with kvm/qemu over the past while and I really want to dig my brain out with a spoon. A broken, rusty spoon.
I immediately thought about that quote when I learned about this bug (which, of course, completely negates any assertions of “cloud security” which have been used to justify virtualization for the last ten years).