On Tue, Apr 09, 2024 at 12:55:33PM +0200, Philippe Mathieu-Daudé wrote:
> Fixes for CVE-2024-3446.
>
> Gerd suggested to use the transport guard to protect the
> device from DMA re-entrancy abuses.
>
> Since v1:
> - Take a DeviceState argument, not VirtIODevice, so it
> works seamlessly with CCW devices (actually the original
> code from Gerd).
> - Build and test :>
>
> I'll send a PR with these patches later today.
I reviewed these too now
Reviewed-by: Michael S. Tsirkin <mst@redhat.com>
> Regards,
>
> Phil.
>
> Philippe Mathieu-Daudé (4):
> hw/virtio: Introduce virtio_bh_new_guarded() helper
> hw/display/virtio-gpu: Protect from DMA re-entrancy bugs
> hw/char/virtio-serial-bus: Protect from DMA re-entrancy bugs
> hw/virtio/virtio-crypto: Protect from DMA re-entrancy bugs
>
> include/hw/virtio/virtio.h | 7 +++++++
> hw/char/virtio-serial-bus.c | 3 +--
> hw/display/virtio-gpu.c | 6 ++----
> hw/virtio/virtio-crypto.c | 4 ++--
> hw/virtio/virtio.c | 10 ++++++++++
> 5 files changed, 22 insertions(+), 8 deletions(-)
>
> --
> 2.41.0