Intel Proposes Linux Kernel Driver Allow/Deny Filtering — Given the VMM is an untrusted entity and the VMM presents emulatedhardware to the guest, a threat vector similar to Thunderclap [1] is
present. Also, for ease of deployment, it is useful to be able to use
the same kernel binary on host and guest, but that presents a wide
attack surface given the range of hardware supported in typical
builds.