Re: [PATCH 3/9] add frontend implementation for the IOMMU API

From: FUJITA Tomonori
Date: Mon Dec 01 2008 - 10:59:34 EST

Next message: Wim Van Sebroeck: "[WATCHDOG] v2.6.28 watchdog fixes"
Previous message: Joerg Roedel: "Re: [PATCH 3/9] add frontend implementation for the IOMMU API"
In reply to: Joerg Roedel: "Re: [PATCH 3/9] add frontend implementation for the IOMMU API"
Next in thread: Joerg Roedel: "Re: [PATCH 3/9] add frontend implementation for the IOMMU API"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Mon, 01 Dec 2008 16:33:11 +0200
Avi Kivity <avi@xxxxxxxxxx> wrote:

> Joerg Roedel wrote:
> > Hmm, is there any hardware IOMMU with which we can't emulate domains by
> > partitioning the IO address space? This concept works for GART and
> > Calgary.
> >
> >
>
> Is partitioning secure? Domain X's user could program its hardware to
> dma to domain Y's addresses, zapping away Domain Y's user's memory.

It can't be secure. So what's the point to emulate the domain
partitioning in many traditional hardware IOMMUs that doesn't support
it.

The emulated domain support with the DMA mapping debugging feature
might be useful to debug drivers but it doesn't mean that we need to
add the emulated domain support to every hardware IOMMU. If you add it
to swiotlb, everyone can enjoy the debugging.
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Wim Van Sebroeck: "[WATCHDOG] v2.6.28 watchdog fixes"
Previous message: Joerg Roedel: "Re: [PATCH 3/9] add frontend implementation for the IOMMU API"
In reply to: Joerg Roedel: "Re: [PATCH 3/9] add frontend implementation for the IOMMU API"
Next in thread: Joerg Roedel: "Re: [PATCH 3/9] add frontend implementation for the IOMMU API"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]