On Wed, Aug 07, 2019 at 12:20:47PM +0200, Philippe Mathieu-Daudé wrote:
> > +void python_args_clean(char *args[], int nargs)
> > +{
> > +    for (int i = 0; i < nargs; i++) {
> > +        g_free(args[i]);
> > +    }
> > +}
> > 
> 
> Wondering about security, is this feature safe to enable in production
> environment? It seems to bypass all the hard effort to harden QEMU security.

This seems like a feature that distros would not enable.  Only users
building QEMU from source could enable it.

Stefan