Git-Mirrors/qubes-doc
1
0
Fork 0
mirror of https://github.com/QubesOS/qubes-doc.git synced 2024-10-01 01:25:40 -04:00
Code Issues Packages Projects Releases Wiki Activity

Qrexec changed

Browse Source 
Note on running more complex RPC protocols on top on qrexec
This commit is contained in:
Joanna Rutkowska 2014-10-04 19:08:34 +00:00
parent ca5237d9e6
commit 6f6e9a534e
1 changed files with 2 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
Qrexec.md
View File

@ -146,6 +146,8 @@ and we should get "3" as answer, provided dom0 policy allows the call to pass th
More high-level RPCs?
---------------------
As previously noted, Qubes aims to provide mechanisms that are very simple and thus with very small attack surface. This is the reason why the inter-VM RPC framework is very primitive and doesn't include any serialization or other function arguments passing, etc. We should remember, however, that users/app developers are always free to run more high-level RPC protocols on top of qrexec. Care should be taken, however, to consider potential attack surfaces that are exposed to untrusted or less trusted VMs in that case.
Qubes RPC internals
-------------------