Bug 1826342

Summary: [Microsoft driver security checklist] Use Static Driver Verifier to Check for Vulnerabilities in virtio-win drivers
Product: Red Hat Enterprise Linux 8 Reporter: Yvugenfi <yvugenfi>
Component: virtio-winAssignee: Basil Salman <bsalman>
virtio-win sub component: virtio-win-prewhql QA Contact: lijin <lijin>
Status: CLOSED ERRATA Docs Contact:
Severity: medium    
Priority: unspecified CC: bsalman, jinzhao, juzhang, kanderso, mdean, vrozenfe
Version: 8.3Keywords: RFE
Target Milestone: rc   
Target Release: 8.0   
Hardware: Unspecified   
OS: Windows   
Whiteboard:
Fixed In Version: Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2021-02-16 14:24:38 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On:    
Bug Blocks: 1826331    

Comment 1 Basil Salman 2020-08-31 13:27:42 UTC 
We are currently running code analysis once a week automatically, an email notifications containing runlogs will be sent in case of failures.
for drivers other than virtio-net, virtio-block and virtio-scsi:
static driver verifier is run with "no legacy" option.

current known failures:
viosock and viofs drivers show some errors that will be checked with driver developers.
Comment 2 lijin 2020-09-01 07:49:22 UTC 
Hi Basil,
How could QE verify this bz?
Comment 3 Basil Salman 2020-09-02 12:05:19 UTC 
There is no verification needed from QE side as no changes we're made to upstream repository.
Comment 6 Basil Salman 2020-11-11 12:20:40 UTC 
SDV tests are being run once a week, on upstream repository,
tests each device driver are being run separately.
In case of any failures the CI will send automatic emails to the relevant owner.

No changes were made to upstream repository or the released drivers.
Comment 7 Yvugenfi@redhat.com 2020-11-12 09:09:59 UTC 
The code related changes are in virtio-win-prewql 190 : https://brewweb.engineering.redhat.com/brew/buildinfo?buildID=1383208
Comment 10 lijin 2020-11-23 09:43:13 UTC 
Set status to verified according to comment#9
Comment 13 errata-xmlrpc 2021-02-16 14:24:38 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory (virtio-win bug fix and enhancement update), and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHEA-2021:0535