[PATCH 00/10] KVM PCIe/MSI passthrough on ARM/ARM64

[PATCH 00/10] KVM PCIe/MSI passthrough on ARM/ARM64 · Eric Auger <hidden> · 2016-01-26
[PATCH 02/10] vfio: expose MSI mapping requirement through VFIO_IOMMU_GET_INFO · Eric Auger <hidden> · 2016-01-26
[PATCH 03/10] vfio_iommu_type1: add reserved binding RB tree management · Eric Auger <hidden> · 2016-01-26
[PATCH 04/10] vfio: introduce VFIO_IOVA_RESERVED vfio_dma type · Eric Auger <hidden> · 2016-01-26
[PATCH 05/10] vfio/type1: attach a reserved iova domain to vfio_domain · Eric Auger <hidden> · 2016-01-26
[PATCH 09/10] vfio-pci: create an iommu mapping for msi address · Eric Auger <hidden> · 2016-01-26
Re: [PATCH 09/10] vfio-pci: create an iommu mapping for msi address · kbuild test robot <hidden> · 2016-01-26
Re: [PATCH 09/10] vfio-pci: create an iommu mapping for msi address · Eric Auger <hidden> · 2016-01-26
[PATCH 10/10] vfio: allow the user to register reserved iova range for MSI mapping · Eric Auger <hidden> · 2016-01-26
Re: [PATCH 10/10] vfio: allow the user to register reserved iova range for MSI mapping · kbuild test robot <hidden> · 2016-01-26
Re: [PATCH 10/10] vfio: allow the user to register reserved iova range for MSI mapping · kbuild test robot <hidden> · 2016-01-26
[PATCH 08/10] vfio: introduce vfio_group_require_msi_mapping · Eric Auger <hidden> · 2016-01-26
[PATCH 07/10] vfio: pci: cache the vfio_group in vfio_pci_device · Eric Auger <hidden> · 2016-01-26
[PATCH 06/10] vfio: introduce vfio_group_alloc_map_/unmap_free_reserved_iova · Eric Auger <hidden> · 2016-01-26
Re: [PATCH 06/10] vfio: introduce vfio_group_alloc_map_/unmap_free_reserved_iova · kbuild test robot <hidden> · 2016-01-26
Re: [PATCH 06/10] vfio: introduce vfio_group_alloc_map_/unmap_free_reserved_iova · Eric Auger <hidden> · 2016-01-26
[PATCH 01/10] iommu: Add DOMAIN_ATTR_MSI_MAPPING attribute · Eric Auger <hidden> · 2016-01-26
RE: [PATCH 00/10] KVM PCIe/MSI passthrough on ARM/ARM64 · Pavel Fedin <hidden> · 2016-01-26
Re: [PATCH 00/10] KVM PCIe/MSI passthrough on ARM/ARM64 · Eric Auger <hidden> · 2016-01-27
RE: [PATCH 00/10] KVM PCIe/MSI passthrough on ARM/ARM64 · Pavel Fedin <hidden> · 2016-01-28
Re: [PATCH 00/10] KVM PCIe/MSI passthrough on ARM/ARM64 · Eric Auger <hidden> · 2016-01-28
Re: [PATCH 00/10] KVM PCIe/MSI passthrough on ARM/ARM64 · Alex Williamson <hidden> · 2016-01-28
Re: [PATCH 00/10] KVM PCIe/MSI passthrough on ARM/ARM64 · Eric Auger <hidden> · 2016-01-29
Re: [PATCH 00/10] KVM PCIe/MSI passthrough on ARM/ARM64 · Alex Williamson <hidden> · 2016-01-29
Re: [PATCH 00/10] KVM PCIe/MSI passthrough on ARM/ARM64 · Eric Auger <hidden> · 2016-01-29
Re: [PATCH 00/10] KVM PCIe/MSI passthrough on ARM/ARM64 · Will Deacon <hidden> · 2016-02-01
Re: [PATCH 00/10] KVM PCIe/MSI passthrough on ARM/ARM64 · Christoffer Dall <hidden> · 2016-02-03
Re: [PATCH 00/10] KVM PCIe/MSI passthrough on ARM/ARM64 · Will Deacon <hidden> · 2016-02-03
Re: [PATCH 00/10] KVM PCIe/MSI passthrough on ARM/ARM64 · Christoffer Dall <hidden> · 2016-02-03

From: Christoffer Dall <hidden>
Date: 2016-02-03 15:35:40
Also in: kvm, kvmarm, linux-iommu, lkml

On Wed, Feb 03, 2016 at 01:10:58PM +0000, Will Deacon wrote:

On Wed, Feb 03, 2016 at 01:50:47PM +0100, Christoffer Dall wrote:

quoted

On Mon, Feb 01, 2016 at 02:03:51PM +0000, Will Deacon wrote:

quoted

On Fri, Jan 29, 2016 at 10:25:52PM +0100, Eric Auger wrote:

quoted

On 01/29/2016 08:33 PM, Alex Williamson wrote:

quoted

We know that x86 handles MSI vectors specially, so there is some
hardware that helps the situation.  It's not just that x86 has a fixed
range for MSI, it's how it manages that range when interrupt remapping
hardware is enabled.  A device table indexed by source-ID references a
per device table indexed by data from the MSI write itself.  So we get
much, much finer granularity,

About the granularity, I think ARM GICv3 now provides a similar
capability with GICv3 ITS (interrupt translation service). Along with
the MSI MSG write transaction, the device outputs a DeviceID conveyed on
the bus. This DeviceID (~ your source-ID) enables to index a device
table. The entry in the device table points to a DeviceId interrupt
translation table indexed by the EventID found in the msi msg. So the
entry in the interrupt translation table eventually gives you the
eventual interrupt ID targeted by the MSI MSG.
This translation capability if not available in GICv2M though, ie. the
one I am currently using.
 
Those tables currently are built by the ITS irqchip (irq-gic-v3-its.c)

That's right. GICv3/ITS disambiguates the interrupt source using the
DeviceID, which for PCI is derived from the Requester ID of the endpoint.
GICv2m is less flexible and requires a separate physical frame per guest
to achieve isolation.

We should still support MSI passthrough with a single MSI frame host
system though, right?

I think we should treat the frame as an exclusive resource and assign it
to a single VM.

so on a single frame GICv2m system, either your host or a single VM gets
to do MSIs...

quoted

(Users should just be aware that guests are not fully protected against
misbehaving hardware in that case).

Is it confined to misbehaving hardware? What if a malicious/buggy guest
configures its device to DMA all over the doorbell?

I guess not, I suppose we can't trap any configuration access and
mediate that for any device.  Bummer.

-Christoffer

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help