On Tue, Apr 09, 2024 at 12:55:33PM +0200, Philippe Mathieu-Daudé wrote: > Fixes for CVE-2024-3446. > > Gerd suggested to use the transport guard to protect the > device from DMA re-entrancy abuses. > > Since v1: > - Take a DeviceState argument, not VirtIODevice, so it > works seamlessly with CCW devices (actually the original > code from Gerd). > - Build and test :> > > I'll send a PR with these patches later today.
I reviewed these too now Reviewed-by: Michael S. Tsirkin <m...@redhat.com> > Regards, > > Phil. > > Philippe Mathieu-Daudé (4): > hw/virtio: Introduce virtio_bh_new_guarded() helper > hw/display/virtio-gpu: Protect from DMA re-entrancy bugs > hw/char/virtio-serial-bus: Protect from DMA re-entrancy bugs > hw/virtio/virtio-crypto: Protect from DMA re-entrancy bugs > > include/hw/virtio/virtio.h | 7 +++++++ > hw/char/virtio-serial-bus.c | 3 +-- > hw/display/virtio-gpu.c | 6 ++---- > hw/virtio/virtio-crypto.c | 4 ++-- > hw/virtio/virtio.c | 10 ++++++++++ > 5 files changed, 22 insertions(+), 8 deletions(-) > > -- > 2.41.0
