On Thu, Mar 2, 2017 at 6:26 PM, Andrew Savchenko <birc...@gentoo.org> wrote: > On Thu, 2 Mar 2017 03:42:24 -0500 taii...@gmx.com wrote: >> >> The IOMMU (theoretically) protects the CPU and memory from rogue >> devices, such as the hard drive. > > No. Any DMA capable device can bypass IOMMU. IOMMU was not > designed to protect OS from device. >
Huh? I thought protection against DMA attacks was half the reason for an IOMMU in the first place. https://en.wikipedia.org/wiki/Input%E2%80%93output_memory_management_unit -- Rich