v3: * Split into security.texi for qemu-doc and secure-coding-practices.rst for the developer documentation [danpb] * Mentioned that QEMU can be started as non-root using UNIX groups on /dev/kvm, /dev/net/tun, etc [Alex Bennee] * Kept Acked-by and Reviewed-by since the v3 changes are minor v2: * Added mention of passthrough USB and PCI devices [philmd] * Reworded resource limits [philmd] * Added qemu_log_mask(LOG_GUEST_ERROR) [philmd]
At KVM Forum 2018 I gave a presentation on security in QEMU: https://www.youtube.com/watch?v=YAdRf_hwxU8 (video) https://vmsplice.net/~stefan/stefanha-kvm-forum-2018.pdf (slides) This patch series extends the QEMU documentation to cover security topics, though this is just the beginning and we could flesh it out more in the future. Stefan Hajnoczi (2): docs: add Secure Coding Practices to developer docs docs: add Security chapter to the documentation Makefile | 2 +- docs/devel/index.rst | 1 + docs/devel/secure-coding-practices.rst | 106 ++++++++++++++++++++ docs/security.texi | 131 +++++++++++++++++++++++++ qemu-doc.texi | 3 + 5 files changed, 242 insertions(+), 1 deletion(-) create mode 100644 docs/devel/secure-coding-practices.rst create mode 100644 docs/security.texi -- 2.21.0
