From mboxrd@z Thu Jan 1 00:00:00 1970 From: Joanna Rutkowska Subject: Re: Xen 4.1.x security support Date: Tue, 17 Sep 2013 19:44:54 +0200 Message-ID: <52389516.7020905@invisiblethingslab.com> References: <52377FC0.6000302@invisiblethingslab.com> <5238172E02000078000F3DBB@nat28.tlf.novell.com> <52389387.10008@invisiblethingslab.com> Mime-Version: 1.0 Content-Type: multipart/mixed; boundary="===============7884338066287734441==" Return-path: In-Reply-To: <52389387.10008@invisiblethingslab.com> List-Unsubscribe: , List-Post: List-Help: List-Subscribe: , Sender: xen-devel-bounces@lists.xen.org Errors-To: xen-devel-bounces@lists.xen.org To: Jan Beulich Cc: =?ISO-8859-1?Q?Marek_Marczykowski-G=F3recki?= , "xen-devel@lists.xen.org" List-Id: xen-devel@lists.xenproject.org This is an OpenPGP/MIME signed message (RFC 2440 and 3156) --===============7884338066287734441== Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="------------enig49CFA89ECF00954013ACC44C" This is an OpenPGP/MIME signed message (RFC 2440 and 3156) --------------enig49CFA89ECF00954013ACC44C Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable On 09/17/13 19:38, Joanna Rutkowska wrote: > On 09/17/13 08:47, Jan Beulich wrote: >>>>> On 17.09.13 at 00:01, Marek Marczykowski-G=F3recki wrote: >>> 4.1.6.1 was announced as the last 4.1.x release. Does it mean that fu= rther >>> XSAs will not carry patches for 4.1? >> >> That's the way I view it, but that doesn't mean it has to be that way.= >> >=20 > That would be rather unfortunate. E.g. we're planning to stick to Xen > 4.1 for our Qubes R2 release. There are some problems with Xen 4.2 such= > as the GPLPV Windows drivers not working with it correctly. >=20 > I could imagine that it should not be very costly for xen.org to > backport each XSA patch to 4.1, should it? >=20 And a somehow more general thought: what most people expect from baremetal hypervisors, I think, is stability. Unlike the Linux kernel, the Xen hypervisor does not need to support each and every device invented on the planet, each and every possible filesystem, or networking stack, etc. That's, in fact, (one of) the biggest advantage of a hypervisor over a monolithic kernel. So, why, oh why, such a race to keep bumping the major version over and over again? joanna. --------------enig49CFA89ECF00954013ACC44C Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc" -----BEGIN PGP SIGNATURE----- iQEcBAEBAgAGBQJSOJUXAAoJEJwtLfzExk0LBS0IAIn0BslCOO6FKCDiMioa/qpS lq5N18Pm97UOaFG/S+t4Xpc3+jhheKgXJQljVUm4aVL5LQfhngJ0/R0WlmsqmUoA AcQC4/F5w1ki0yuOIM0B0fQZ89mPafa5YlOGXX8Pzjs1tShlrMPv/pI91noK6A9d Lr5l0YASWsktpTkihJq3PrijcAETuDnTQ1GGOgg4oTa3t0Jd4soa4fsC9XsQfEpA duckMCzyBCj14dU4y1mC+k2+rw78uLRR2uXBF71TRcLVdwYUu3QwzaU5ZZ1Axf+c 9VVYinhHlp5h58Jdaq5FoQj+qj31/TqhKMZEfZJIDLgPQ5G5Sg5HiIsh6ai8hEk= =e8Re -----END PGP SIGNATURE----- --------------enig49CFA89ECF00954013ACC44C-- --===============7884338066287734441== Content-Type: text/plain; charset="us-ascii" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Disposition: inline _______________________________________________ Xen-devel mailing list Xen-devel@lists.xen.org http://lists.xen.org/xen-devel --===============7884338066287734441==--