lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
Open Source and information security mailing list archives
| ||
|
Date: Wed, 7 Sep 2022 14:33:11 -0300 From: Jason Gunthorpe <jgg@...dia.com> To: Jean-Philippe Brucker <jean-philippe@...aro.org> Cc: Baolu Lu <baolu.lu@...ux.intel.com>, Joerg Roedel <joro@...tes.org>, Christoph Hellwig <hch@...radead.org>, Bjorn Helgaas <bhelgaas@...gle.com>, Kevin Tian <kevin.tian@...el.com>, Ashok Raj <ashok.raj@...el.com>, Will Deacon <will@...nel.org>, Robin Murphy <robin.murphy@....com>, Jean-Philippe Brucker <jean-philippe@...aro.com>, Dave Jiang <dave.jiang@...el.com>, Fenghua Yu <fenghua.yu@...el.com>, Vinod Koul <vkoul@...nel.org>, Eric Auger <eric.auger@...hat.com>, Liu Yi L <yi.l.liu@...el.com>, Jacob jun Pan <jacob.jun.pan@...el.com>, Zhangfei Gao <zhangfei.gao@...aro.org>, Zhu Tony <tony.zhu@...el.com>, iommu@...ts.linux.dev, linux-pci@...r.kernel.org, linux-kernel@...r.kernel.org Subject: Re: [PATCH v13 09/13] iommu/sva: Refactoring iommu_sva_bind/unbind_device() On Wed, Sep 07, 2022 at 10:54:54AM +0100, Jean-Philippe Brucker wrote: > Is iommu_domain still going to represent both a device context (whole > PASID table) and individual address spaces, or are you planning to move > away from that? What happens when a driver does: > > d1 = iommu_domain_alloc() > iommu_attach_device(d1) > d2 = iommu_sva_bind_device() > iommu_detach_device(d1) > > Does detach > (a) only disable the non-PASID address space? > (b) disable everything? > (c) fail because the driver didn't unbind first? I think it must be (a), considering how everything is defined and the needs for vIOMMU emulation. If it is any other option then we have a problem of what to do if the guest VM asks to change the page table associated with the RID while a PASID is attached. > I'm asking because the SMMU driver is still using smmu_domain to represent > all address spaces + the non-PASID one, and using the same type > "iommu_domain" for the new object makes things unreadable. I think > internally we'll want to use distinct variable names, something like > "domain" and "address_space". If (a) is not the direction you're going, > then it may be worth renaming the API as well. > > I'm also not sure why set_dev_pasid() is a domain_ops of the SVA domain, > but acts on the parent domain which contains the PASID table. Shouldn't it > be an IOMMU op like remove_dev_pasid(), or on the parent domain? There is no "parent domain" PASID or RID+PASID are completely equal concepts for binding. If you are thinking "parent domain" because SMMU is storing the PASID table in the RID's iommu_domain, then I think that is a misplacement in the SMMU driver... The PASID table belongs in the iommu driver's per-group data structure. The iommu domain should only have the actual IOPTEs. Otherwise everything blows up if you attach an iommu_domain to two RIDs - the API demands that every RID gets its own PASID mapping, even if the RID shares iommu_domains. We do not have an API to share PASID tables. Thus the PASID table is NOT part of the iommu_domain. The exception will be for nested translation where we will have a special ARM iommu_domain that contains the PASID table in userspace memory. When this domain is attached it will logically claim the RID and every PASID and thus disable the PASID API for that RID. Remember also that an UNMANAGED iommu_domain should be attachable to many PASID's and RID's concurrently. Jason
Powered by blists - more mailing lists