Due to a potential security issue, it's not safe to assign legacy
DSA/IAA devices to virtual machines. This issue has been addressed
by adding the legacy DSA/IAA device IDs to the VFIO denylist[1].
With the security issue fixed in newer DSA/IAA devices, which have
new device IDs, these devices can be safely assigned to virtual
machines without needing to add their IDs to the VFIOI denylist.
Additionally, the new device IDs may be useful to identify any other
potential issues with specific device as well in the future.
[1] commit 95feb3160eef ("VFIO: Add the SPR_DSA and SPR_IAX devices to
the denylist")
Fenghua Yu (2):
dmaengine: idxd: Add a new DSA device ID on Granite Rapids-D platform
dmaengine: idxd: Add new DSA and IAA device IDs on Diamond Rapids
platform
drivers/dma/idxd/init.c | 6 ++++++
include/linux/pci_ids.h | 3 +++
2 files changed, 9 insertions(+)
--
2.37.1
