| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-Id: <20081202005830P.fujita.tomonori@lab.ntt.co.jp> Date: Tue, 2 Dec 2008 00:58:29 +0900 From: FUJITA Tomonori <fujita.tomonori@....ntt.co.jp> To: avi@...hat.com Cc: joro@...tes.org, fujita.tomonori@....ntt.co.jp, muli@...ibm.com, kvm@...r.kernel.org, weidong.han@...el.com, linux-kernel@...r.kernel.org, iommu@...ts.linux-foundation.org, mingo@...hat.com, amit.shah@...hat.com Subject: Re: [PATCH 3/9] add frontend implementation for the IOMMU API On Mon, 01 Dec 2008 16:33:11 +0200 Avi Kivity <avi@...hat.com> wrote: > Joerg Roedel wrote: > > Hmm, is there any hardware IOMMU with which we can't emulate domains by > > partitioning the IO address space? This concept works for GART and > > Calgary. > > > > > > Is partitioning secure? Domain X's user could program its hardware to > dma to domain Y's addresses, zapping away Domain Y's user's memory. It can't be secure. So what's the point to emulate the domain partitioning in many traditional hardware IOMMUs that doesn't support it. The emulated domain support with the DMA mapping debugging feature might be useful to debug drivers but it doesn't mean that we need to add the emulated domain support to every hardware IOMMU. If you add it to swiotlb, everyone can enjoy the debugging. -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists