Re: [PATCH v5 3/7] iommu: Validate that devices match domains

From: Jason Gunthorpe
Date: Tue Oct 24 2023 - 14:52:22 EST

Next message: Dmitry Rokosov: "Re: [DMARC error] Re: [PATCH v2 03/11] dt-bindings: leds: aw200xx: introduce optional hwen-gpios property"
Previous message: Rafael J. Wysocki: "Re: [PATCH V2] ACPI: APEI: Use ERST timeout for slow devices"
Next in thread: Robin Murphy: "Re: [PATCH v5 3/7] iommu: Validate that devices match domains"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Wed, Oct 11, 2023 at 07:14:50PM +0100, Robin Murphy wrote:

> @@ -2279,10 +2280,16 @@ struct iommu_domain *iommu_get_dma_domain(struct device *dev)
> static int __iommu_attach_group(struct iommu_domain *domain,
> struct iommu_group *group)
> {
> + struct device *dev;
> +
> if (group->domain && group->domain != group->default_domain &&
> group->domain != group->blocking_domain)
> return -EBUSY;
>
> + dev = iommu_group_first_dev(group);
> + if (!dev_has_iommu(dev) || dev_iommu_ops(dev) != domain->owner)
> + return -EINVAL;

I was thinking about this later, how does this work for the global
static domains? domain->owner will not be set?

if (alloc_type == IOMMU_DOMAIN_IDENTITY && ops->identity_domain)
return ops->identity_domain;
else if (alloc_type == IOMMU_DOMAIN_BLOCKED && ops->blocked_domain)
return ops->blocked_domain;

Seems like it will break everything?

I suggest we just put a simple void * tag in the const domain->ops at
compile time to indicate the owning driver.

Jason

Next message: Dmitry Rokosov: "Re: [DMARC error] Re: [PATCH v2 03/11] dt-bindings: leds: aw200xx: introduce optional hwen-gpios property"
Previous message: Rafael J. Wysocki: "Re: [PATCH V2] ACPI: APEI: Use ERST timeout for slow devices"
Next in thread: Robin Murphy: "Re: [PATCH v5 3/7] iommu: Validate that devices match domains"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]