Announcement

Collapse
No announcement yet.

Google Volleys Latest "Restricted DMA" Patches For Protecting IOMMU-Less Hardware

Collapse
X
 
  • Filter
  • Time
  • Show
Clear All
new posts

  • Unklejoe
    replied
    Without an IOMMU, what's to stop a device on the bus from just reading any memory location it wants? If we're assuming the device is compromised, then all bets are off, right?

    I know with some PCIe controllers, you can define inbound DMA windows, which I guess is like an IOMMU but with only one or two mappings, but generally these seem to just be an identity mapping to DRAM.

    Leave a comment:


  • Google Volleys Latest "Restricted DMA" Patches For Protecting IOMMU-Less Hardware

    Phoronix: Google Volleys Latest "Restricted DMA" Patches For Protecting IOMMU-Less Hardware

    The past few months there has been work by Google's Chrome OS engineers on Restricted DMA functionality for the Linux kernel to protect systems lacking an IOMMU...

    https://www.phoronix.com/scan.php?pa...tricted-DMA-v5
Working...
X