vmsilo

dsg/vmsilo

History

Davíð Steinn Geirsson b876265793 Reduce default core isolation from "full" to "vm" Full isolation has too much impact to be a default. Even on an almost unloaded machine with a couple of VMs running it results in audio buffer underruns due to the significant scheduling latency. This change is fine because with vmsilo, the trust domain is the VM. There isn't much reason to protect apps from other apps running in the same VM. Better to run those apps in separate VMs in that case.	2026-03-18 11:35:10 +00:00
..
configuration.nix	Reduce default core isolation from "full" to "vm"	2026-03-18 11:35:10 +00:00
flake.nix	Update docs and examples	2026-03-07 17:49:04 +00:00

Davíð Steinn Geirsson b876265793 Reduce default core isolation from "full" to "vm"

Full isolation has too much impact to be a default. Even on an almost
unloaded machine with a couple of VMs running it results in audio buffer
underruns due to the significant scheduling latency.

This change is fine because with vmsilo, the trust domain is the VM. There
isn't much reason to protect apps from other apps running in the same VM.
Better to run those apps in separate VMs in that case.

2026-03-18 11:35:10 +00:00

configuration.nix

Reduce default core isolation from "full" to "vm"

2026-03-18 11:35:10 +00:00

flake.nix

Update docs and examples

2026-03-07 17:49:04 +00:00