Spycheck wrongly indicate that the product is not vulnerable when the port is sans-thunderbolt-mark.
$ sudo python3 ./spycheck.py
Welcome to Spycheck. This tool will verify whether your system is vulnerable to the Thunderspy attacks.
Please identify the ports on your system.
Does your system provide any USB-C or Mini-DP ports? [y/n] y
Is there a lightning symbol printed alongside any of these ports? [y/n] n
Summary:
System is Not Vulnerable
Your system does not have any Thunderbolt ports and is therefore not affected by Thunderspy.
OS version:
Linux kernel 5.3.0-18-generic
Kernel DMA Protection:
Enabled
System vendor:
CJSCOPE INC.
Product name:
MZ Series
User has indicated system does not provide any Thunderbolt ports. Skipping enumerating Thunderbolt controllers.
$ sudo python3 ./spycheck.py
Welcome to Spycheck. This tool will verify whether your system is vulnerable to the Thunderspy attacks.
Please identify the ports on your system.
Does your system provide any USB-C or Mini-DP ports? [y/n] y
Is there a lightning symbol printed alongside any of these ports? [y/n] y
Enumerating, please wait...
Summary:
System is Partially Vulnerable
Your system features a Thunderbolt 3 controller.
Your system supports Kernel DMA Protection, whichpartially mitigates Thunderspy.
For recommendations on how to further protect your system, please refer to https://thunderspy.io/#kernel-dma-protection
Please note that the extent to which your system is partially vulnerable may change as research progresses.
OS version:
Linux kernel 5.3.0-18-generic
Kernel DMA Protection:
Enabled
System vendor:
CJSCOPE INC.
Product name:
MZ Series
Thunderbolt controller #0:
JHL7540 Thunderbolt 3 NHI [Titan Ridge 2C 2018]
Generation:
Thunderbolt 3
Port number:
1
Spycheck wrongly indicate that the product is not vulnerable when the port is sans-thunderbolt-mark.