|
|
|
|
|
|
by ec109685
2767 days ago
|
|
|
That’s not true. Your guest application has access to all Linux system calls in the guest VM. You can see here the security model: https://github.com/firecracker-microvm/firecracker/blob/mast... The firecracker process itself is limited in the system calls it can make, but kvm allows the guest Linux process the ability to expose a full set of system calls to end user applications. |
|
|