| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Thu, 21 Nov 2013 14:47:15 -0600 From: Scott Wood <scottwood@...escale.com> To: Alex Williamson <alex.williamson@...hat.com> CC: Bharat Bhushan <Bharat.Bhushan@...escale.com>, "linux-pci@...r.kernel.org" <linux-pci@...r.kernel.org>, "agraf@...e.de" <agraf@...e.de>, Stuart Yoder <stuart.yoder@...escale.com>, "iommu@...ts.linux-foundation.org" <iommu@...ts.linux-foundation.org>, "bhelgaas@...gle.com" <bhelgaas@...gle.com>, "linuxppc-dev@...ts.ozlabs.org" <linuxppc-dev@...ts.ozlabs.org>, "linux-kernel@...r.kernel.org" <linux-kernel@...r.kernel.org> Subject: Re: [PATCH 0/9 v2] vfio-pci: add support for Freescale IOMMU (PAMU) On Thu, 2013-11-21 at 13:43 -0700, Alex Williamson wrote: > On Thu, 2013-11-21 at 11:20 +0000, Bharat Bhushan wrote: > > > > > -----Original Message----- > > > From: Alex Williamson [mailto:alex.williamson@...hat.com] > > > Sent: Thursday, November 21, 2013 12:17 AM > > > To: Bhushan Bharat-R65777 > > > Cc: joro@...tes.org; bhelgaas@...gle.com; agraf@...e.de; Wood Scott-B07421; > > > Yoder Stuart-B08248; iommu@...ts.linux-foundation.org; linux- > > > pci@...r.kernel.org; linuxppc-dev@...ts.ozlabs.org; linux- > > > kernel@...r.kernel.org; Bhushan Bharat-R65777 > > > Subject: Re: [PATCH 0/9 v2] vfio-pci: add support for Freescale IOMMU (PAMU) > > > > > > Is VFIO_IOMMU_PAMU_GET_MSI_BANK_COUNT per aperture (ie. each vfio user has > > > $COUNT regions at their disposal exclusively)? > > > > Number of msi-bank count is system wide and not per aperture, But will be setting windows for banks in the device aperture. > > So say if we are direct assigning 2 pci device (both have different iommu group, so 2 aperture in iommu) to VM. > > Now qemu can make only one call to know how many msi-banks are there but it must set sub-windows for all banks for both pci device in its respective aperture. > > I'm still confused. What I want to make sure of is that the banks are > independent per aperture. For instance, if we have two separate > userspace processes operating independently and they both chose to use > msi bank zero for their device, that's bank zero within each aperture > and doesn't interfere. Or another way to ask is can a malicious user > interfere with other users by using the wrong bank. Thanks, They can interfere. With this hardware, the only way to prevent that is to make sure that a bank is not shared by multiple protection contexts. For some of our users, though, I believe preventing this is less important than the performance benefit. -Scott -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists