| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Thu, 05 Jun 2014 11:42:12 +0200
From: Arnd Bergmann <arnd@...db.de>
To: Thierry Reding <thierry.reding@...il.com>
Cc: linux-arm-kernel@...ts.infradead.org,
Dave Martin <Dave.Martin@....com>,
Mark Rutland <mark.rutland@....com>,
devicetree@...r.kernel.org, linux-samsung-soc@...r.kernel.org,
Pawel Moll <pawel.moll@....com>,
Ian Campbell <ijc+devicetree@...lion.org.uk>,
Grant Grundler <grundler@...omium.org>,
Joerg Roedel <joro@...tes.org>,
Stephen Warren <swarren@...dotorg.org>,
Will Deacon <will.deacon@....com>,
linux-kernel@...r.kernel.org, Marc Zyngier <marc.zyngier@....com>,
iommu@...ts.linux-foundation.org, Rob Herring <robh+dt@...nel.org>,
Kumar Gala <galak@...eaurora.org>, linux-tegra@...r.kernel.org,
Cho KyongHo <pullip.cho@...sung.com>,
Hiroshi Doyu <hdoyu@...dia.com>
Subject: Re: [PATCH v2] devicetree: Add generic IOMMU device tree bindings
On Wednesday 04 June 2014 23:32:00 Thierry Reding wrote:
> On Fri, May 30, 2014 at 09:01:19PM +0200, Arnd Bergmann wrote:
> > On Friday 30 May 2014 12:22:32 Dave Martin wrote:
> > > > +
> > > > +Examples:
> > > > +=========
> > > > +
> > > > +Single-master IOMMU:
> > > > +--------------------
> > > > +
> > > > + iommu {
> > > > + #address-cells = <0>;
> > > > + #size-cells = <0>;
> > > > + };
> > > > +
> > > > + master {
> > > > + iommus = <&/iommu>;
> > > > + };
> > > > +
> > > > +Multiple-master IOMMU with fixed associations:
> > > > +----------------------------------------------
> > > > +
> > > > + /* multiple-master IOMMU */
> > > > + iommu {
> > > > + /*
> > > > + * Masters are statically associated with this IOMMU and
> > > > + * address translation is always enabled.
> > > > + */
> > > > + #address-cells = <0>;
> > > > + #size-cells = <0>;
> > >
> > > In this example, can different translations be set up for the different
> > > masters?
> > >
> > > With no cells available to contain any sort of ID, it looks like this
> > > is not possible.
> >
> > Correct, this example is for an IOMMU that does not use IDs but has a
> > shared address space for all devices.
>
> Couldn't these device all still have separate address spaces?
No. If they had separate address spaces, they would require a more
sophisticated IOMMU. A simple IOMMU without IDs can only be used
for overcoming address space limits (e.g. for 32-bit DMA masters on
systems with more than 4GB RAM) but not for strict isolation.
You basically have one page table shared across all devices connected
to the IOMMU, and every call to dma_alloc_coherent or dma_map_*
allocates a new IOVA that isn't used by any of the other devices
already, but you can't prevent a malicious user from getting a device
to do DMA to an IOVA that has been set up for another device.
You could have one such IOMMU per device of course, but I guess that's
not what you mean.
Arnd
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@...r.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists