qemu-discuss
[Top][All Lists]
Advanced
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Software Safety Impact in Qemu

From: Alex Bennée
Subject: Re: Software Safety Impact in Qemu
Date: Fri, 01 Jul 2022 11:47:13 +0100
User-agent: mu4e 1.7.27; emacs 28.1.90 
asif siddiqui <asifsiddiqui120@gmail.com> writes:

> Hello All,
>
> This is regarding the functional safety impact of software being run in qemu.
>
> Is there any document or link reference which talks about qemu being
> ISO 26262 certified and functional safety compliant.

Not that I'm aware of. The GPLv2 itself specifies:

  NO WARRANTY

  11. BECAUSE THE PROGRAM IS LICENSED FREE OF CHARGE, THERE IS NO WARRANTY FOR 
THE PROGRAM, TO THE EXTENT PERMITTED BY APPLICABLE LAW. EXCEPT WHEN OTHERWISE 
STATED IN WRITING THE COPYRIGHT HOLDERS AND/OR OTHER PARTIES PROVIDE THE 
PROGRAM "AS IS" WITHOUT WARRANTY OF ANY KIND, EITHER EXPRESSED OR IMPLIED, 
INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND 
FITNESS FOR A PARTICULAR PURPOSE. THE ENTIRE RISK AS TO THE QUALITY AND 
PERFORMANCE OF THE PROGRAM IS WITH YOU. SHOULD THE PROGRAM PROVE DEFECTIVE, YOU 
ASSUME THE COST OF ALL NECESSARY SERVICING, REPAIR OR CORRECTION.

  12. IN NO EVENT UNLESS REQUIRED BY APPLICABLE LAW OR AGREED TO IN WRITING 
WILL ANY COPYRIGHT HOLDER, OR ANY OTHER PARTY WHO MAY MODIFY AND/OR 
REDISTRIBUTE THE PROGRAM AS PERMITTED ABOVE, BE LIABLE TO YOU FOR DAMAGES, 
INCLUDING ANY GENERAL, SPECIAL, INCIDENTAL OR CONSEQUENTIAL DAMAGES ARISING OUT 
OF THE USE OR INABILITY TO USE THE PROGRAM (INCLUDING BUT NOT LIMITED TO LOSS 
OF DATA OR DATA BEING RENDERED INACCURATE OR LOSSES SUSTAINED BY YOU OR THIRD 
PARTIES OR A FAILURE OF THE PROGRAM TO OPERATE WITH ANY OTHER PROGRAMS), EVEN 
IF SUCH HOLDER OR OTHER PARTY HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH 
DAMAGES. 

If you want specific warranties that would the sort of thing you would
talk about with a distributor under some sort of service contract. We
also explicitly rule out emulation from providing a security boundary:

  Bugs affecting the non-virtualization use case are not considered security
  bugs at this time.  Users with non-virtualization use cases must not rely on
  QEMU to provide guest isolation or any security guarantees.


>
> We are using QEMU 5.2.0 version. Is Qemu 5.2.0 or any later versions specific 
> which is FuSa certified ?
>
> Regards
> Asif 


-- 
Alex Bennée
reply via email to
[Prev in Thread] Current Thread [Next in Thread]