Would it even work? What privileges does sys-gui-gpu have?
sys-gui-gpu doesn’t provide gpu acceleration for other VMs right now:
Right now sys-gui-gpu can be used only for security reasons to remove the graphics from dom0:
Furthermore, while in theory dom0 is isolated from the outside world, some graphical devices (e.g. displays connected via HDMI or DVI) offer two-way communication, which threatens this isolation and makes it harder to maintain. If a malicious device (rather than the user’s trusted monitor) were to be connected to one of these ports, it could inject data that could be processed inside of dom0. As long …
1 Like
Could I run the program in sys-gui-gpu, and what security concerns does it bring?
Basically, sys-gui-gpu drops your dom0 display and assign it to the sys-gui-gpu VM, and you have a fedora system with direct GPU access. But you can do very little to use QubesOS from it, and I’m not even sure it’s possible to go back to the regular display without a reboot.
1 Like
It is possible if you have dual GPU and you assign only dGPU to sys-gui-gpu. Then, just “shut down” regularly sys-gui-gpu
For dual Intel/Nvidia GPU notebooks, as I understand it’s not possible to use external monitor/TV while in Nvidia Optimus mode because HDMI/DP ports are directly tied to Nvidia card. So we are doomed to Discrete mode, meanning using only Nvidia card which is very bad for the battery, or…
Here I discovered that I can create sys-gui(-gpu) and attach only Nvidia card to it in Optimus mode even without hiding it from the dom0 and sys-gui-gpu is passed to external monitor, while using iGPU on the la…