Re: [PATCH v6 00/20] dma-mapping: Use DMA_ATTR_CC_SHARED through direct,... | linuxppc-dev

[PATCH v6 00/20] dma-mapping: Use DMA_ATTR_CC_SHARED through direct, pool and swiotlb paths · "Aneesh Kumar K.V (Arm)" <aneesh.kumar@kernel.org> · 2026-06-04
[PATCH v6 01/20] s390: Expose protected virtualization through cc_platform_has() · "Aneesh Kumar K.V (Arm)" <aneesh.kumar@kernel.org> · 2026-06-04
Re: [PATCH v6 01/20] s390: Expose protected virtualization through cc_platform_has() · JAEHOON KIM <hidden> · 2026-06-06
Re: [PATCH v6 01/20] s390: Expose protected virtualization through cc_platform_has() · Catalin Marinas <catalin.marinas@arm.com> · 2026-06-09
[PATCH v6 02/20] dma-direct: swiotlb: handle swiotlb alloc/free outside __dma_direct_alloc_pages · "Aneesh Kumar K.V (Arm)" <aneesh.kumar@kernel.org> · 2026-06-04
Re: [PATCH v6 02/20] dma-direct: swiotlb: handle swiotlb alloc/free outside __dma_direct_alloc_pages · Petr Tesarik <hidden> · 2026-06-09
[PATCH v6 03/20] dma-direct: use DMA_ATTR_CC_SHARED in alloc/free paths · "Aneesh Kumar K.V (Arm)" <aneesh.kumar@kernel.org> · 2026-06-04
Re: [PATCH v6 03/20] dma-direct: use DMA_ATTR_CC_SHARED in alloc/free paths · Petr Tesarik <hidden> · 2026-06-09
Re: [PATCH v6 03/20] dma-direct: use DMA_ATTR_CC_SHARED in alloc/free paths · Alexey Kardashevskiy <hidden> · 2026-06-17
Re: [PATCH v6 03/20] dma-direct: use DMA_ATTR_CC_SHARED in alloc/free paths · Aneesh Kumar K.V <aneesh.kumar@kernel.org> · 2026-06-17
Re: [PATCH v6 03/20] dma-direct: use DMA_ATTR_CC_SHARED in alloc/free paths · Jason Gunthorpe <jgg@ziepe.ca> · 2026-06-17
Re: [PATCH v6 03/20] dma-direct: use DMA_ATTR_CC_SHARED in alloc/free paths · Alexey Kardashevskiy <hidden> · 2026-06-18
[PATCH v6 04/20] dma-pool: track decrypted atomic pools and select them via attrs · "Aneesh Kumar K.V (Arm)" <aneesh.kumar@kernel.org> · 2026-06-04
Re: [PATCH v6 04/20] dma-pool: track decrypted atomic pools and select them via attrs · Petr Tesarik <hidden> · 2026-06-09
Re: [PATCH v6 04/20] dma-pool: track decrypted atomic pools and select them via attrs · Jason Gunthorpe <jgg@ziepe.ca> · 2026-06-09
Re: [PATCH v6 04/20] dma-pool: track decrypted atomic pools and select them via attrs · Aneesh Kumar K.V <aneesh.kumar@kernel.org> · 2026-06-10
Re: [PATCH v6 04/20] dma-pool: track decrypted atomic pools and select them via attrs · Jason Gunthorpe <jgg@ziepe.ca> · 2026-06-10
Re: [PATCH v6 04/20] dma-pool: track decrypted atomic pools and select them via attrs · Aneesh Kumar K.V <aneesh.kumar@kernel.org> · 2026-06-11
Re: [PATCH v6 04/20] dma-pool: track decrypted atomic pools and select them via attrs · Jason Gunthorpe <jgg@ziepe.ca> · 2026-06-11
Re: [PATCH v6 04/20] dma-pool: track decrypted atomic pools and select them via attrs · Aneesh Kumar K.V <aneesh.kumar@kernel.org> · 2026-06-11
Re: [PATCH v6 04/20] dma-pool: track decrypted atomic pools and select them via attrs · Jason Gunthorpe <jgg@ziepe.ca> · 2026-06-11
Re: [PATCH v6 04/20] dma-pool: track decrypted atomic pools and select them via attrs · Petr Tesarik <hidden> · 2026-06-11
[PATCH v6 05/20] dma: swiotlb: pass mapping attributes by reference · "Aneesh Kumar K.V (Arm)" <aneesh.kumar@kernel.org> · 2026-06-04
Re: [PATCH v6 05/20] dma: swiotlb: pass mapping attributes by reference · Petr Tesarik <hidden> · 2026-06-09
[PATCH v6 06/20] dma: swiotlb: track pool encryption state and honor DMA_ATTR_CC_SHARED · "Aneesh Kumar K.V (Arm)" <aneesh.kumar@kernel.org> · 2026-06-04
Re: [PATCH v6 06/20] dma: swiotlb: track pool encryption state and honor DMA_ATTR_CC_SHARED · Petr Tesarik <hidden> · 2026-06-09
Re: [PATCH v6 06/20] dma: swiotlb: track pool encryption state and honor DMA_ATTR_CC_SHARED · Aneesh Kumar K.V <aneesh.kumar@kernel.org> · 2026-06-10
[PATCH v6 07/20] dma-mapping: make dma_pgprot() honor DMA_ATTR_CC_SHARED · "Aneesh Kumar K.V (Arm)" <aneesh.kumar@kernel.org> · 2026-06-04
[PATCH v6 08/20] dma-direct: pass attrs to dma_capable() for DMA_ATTR_CC_SHARED checks · "Aneesh Kumar K.V (Arm)" <aneesh.kumar@kernel.org> · 2026-06-04
Re: [PATCH v6 08/20] dma-direct: pass attrs to dma_capable() for DMA_ATTR_CC_SHARED checks · Petr Tesarik <hidden> · 2026-06-09
[PATCH v6 09/20] dma-direct: make dma_direct_map_phys() honor DMA_ATTR_CC_SHARED · "Aneesh Kumar K.V (Arm)" <aneesh.kumar@kernel.org> · 2026-06-04
[PATCH v6 10/20] dma-direct: set decrypted flag for remapped DMA allocations · "Aneesh Kumar K.V (Arm)" <aneesh.kumar@kernel.org> · 2026-06-04
[PATCH v6 11/20] dma-direct: select DMA address encoding from DMA_ATTR_CC_SHARED · "Aneesh Kumar K.V (Arm)" <aneesh.kumar@kernel.org> · 2026-06-04
[PATCH v6 12/20] dma-pool: fix page leak in atomic_pool_expand() cleanup · "Aneesh Kumar K.V (Arm)" <aneesh.kumar@kernel.org> · 2026-06-04
[PATCH v6 13/20] dma-direct: rename ret to cpu_addr in alloc helpers · "Aneesh Kumar K.V (Arm)" <aneesh.kumar@kernel.org> · 2026-06-04
Re: [PATCH v6 13/20] dma-direct: rename ret to cpu_addr in alloc helpers · Petr Tesarik <hidden> · 2026-06-09
[PATCH v6 14/20] dma-direct: return struct page from dma_direct_alloc_from_pool() · "Aneesh Kumar K.V (Arm)" <aneesh.kumar@kernel.org> · 2026-06-04
Re: [PATCH v6 14/20] dma-direct: return struct page from dma_direct_alloc_from_pool() · Petr Tesarik <hidden> · 2026-06-09
Re: [PATCH v6 14/20] dma-direct: return struct page from dma_direct_alloc_from_pool() · Catalin Marinas <catalin.marinas@arm.com> · 2026-06-09
Re: [PATCH v6 14/20] dma-direct: return struct page from dma_direct_alloc_from_pool() · Jason Gunthorpe <jgg@ziepe.ca> · 2026-06-09
[PATCH v6 15/20] iommu/dma: Check atomic pool allocation result directly · "Aneesh Kumar K.V (Arm)" <aneesh.kumar@kernel.org> · 2026-06-04
Re: [PATCH v6 15/20] iommu/dma: Check atomic pool allocation result directly · Petr Tesarik <hidden> · 2026-06-09
[PATCH v6 16/20] dma: swiotlb: free dynamic pools from process context · "Aneesh Kumar K.V (Arm)" <aneesh.kumar@kernel.org> · 2026-06-04
Re: [PATCH v6 16/20] dma: swiotlb: free dynamic pools from process context · Petr Tesarik <hidden> · 2026-06-09
[PATCH v6 17/20] dma: swiotlb: handle set_memory_decrypted() failures · "Aneesh Kumar K.V (Arm)" <aneesh.kumar@kernel.org> · 2026-06-04
Re: [PATCH v6 17/20] dma: swiotlb: handle set_memory_decrypted() failures · Petr Tesarik <hidden> · 2026-06-09
[PATCH v6 18/20] dma: free atomic pool pages by physical address · "Aneesh Kumar K.V (Arm)" <aneesh.kumar@kernel.org> · 2026-06-04
[PATCH v6 19/20] swiotlb: Preserve allocation virtual address for dynamic pools · "Aneesh Kumar K.V (Arm)" <aneesh.kumar@kernel.org> · 2026-06-04
Re: [PATCH v6 19/20] swiotlb: Preserve allocation virtual address for dynamic pools · Petr Tesarik <hidden> · 2026-06-09
[PATCH v6 20/20] swiotlb: remove unused SWIOTLB_FORCE flag · "Aneesh Kumar K.V (Arm)" <aneesh.kumar@kernel.org> · 2026-06-04
Re: [PATCH v6 20/20] swiotlb: remove unused SWIOTLB_FORCE flag · Petr Tesarik <hidden> · 2026-06-09
Re: [PATCH v6 00/20] dma-mapping: Use DMA_ATTR_CC_SHARED through direct, pool and swiotlb paths · Catalin Marinas <catalin.marinas@arm.com> · 2026-06-09
Re: [PATCH v6 00/20] dma-mapping: Use DMA_ATTR_CC_SHARED through direct, pool and swiotlb paths · Jason Gunthorpe <jgg@ziepe.ca> · 2026-06-09
Re: [PATCH v6 00/20] dma-mapping: Use DMA_ATTR_CC_SHARED through direct, pool and swiotlb paths · Alexey Kardashevskiy <hidden> · 2026-06-18
Re: [PATCH v6 00/20] dma-mapping: Use DMA_ATTR_CC_SHARED through direct, pool and swiotlb paths · Aneesh Kumar K.V <aneesh.kumar@kernel.org> · 2026-06-18
Re: [PATCH v6 00/20] dma-mapping: Use DMA_ATTR_CC_SHARED through direct, pool and swiotlb paths · Jason Gunthorpe <jgg@ziepe.ca> · 2026-06-18
Re: [PATCH v6 00/20] dma-mapping: Use DMA_ATTR_CC_SHARED through direct, pool and swiotlb paths · Alexey Kardashevskiy <hidden> · 2026-06-19
Re: [PATCH v6 00/20] dma-mapping: Use DMA_ATTR_CC_SHARED through direct, pool and swiotlb paths · Jason Gunthorpe <jgg@ziepe.ca> · 2026-06-19
Re: [PATCH v6 00/20] dma-mapping: Use DMA_ATTR_CC_SHARED through direct, pool and swiotlb paths · Aneesh Kumar K.V <aneesh.kumar@kernel.org> · 2026-06-19
Re: [PATCH v6 00/20] dma-mapping: Use DMA_ATTR_CC_SHARED through direct, pool and swiotlb paths · Alexey Kardashevskiy <hidden> · 2026-06-22
Re: [PATCH v6 00/20] dma-mapping: Use DMA_ATTR_CC_SHARED through direct, pool and swiotlb paths · Aneesh Kumar K.V <aneesh.kumar@kernel.org> · 2026-06-19
Re: [PATCH v6 00/20] dma-mapping: Use DMA_ATTR_CC_SHARED through direct, pool and swiotlb paths · Jason Gunthorpe <jgg@ziepe.ca> · 2026-06-19
Re: [PATCH v6 00/20] dma-mapping: Use DMA_ATTR_CC_SHARED through direct, pool and swiotlb paths · Aneesh Kumar K.V <aneesh.kumar@kernel.org> · 2026-06-19
Re: [PATCH v6 00/20] dma-mapping: Use DMA_ATTR_CC_SHARED through direct, pool and swiotlb paths · Jason Gunthorpe <jgg@ziepe.ca> · 2026-06-19
Re: [PATCH v6 00/20] dma-mapping: Use DMA_ATTR_CC_SHARED through direct, pool and swiotlb paths · Aneesh Kumar K.V <aneesh.kumar@kernel.org> · 2026-06-11

Re: [PATCH v6 00/20] dma-mapping: Use DMA_ATTR_CC_SHARED through direct, pool and swiotlb paths

From: Jason Gunthorpe <jgg@ziepe.ca>
Date: 2026-06-19 12:03:26
Also in: linux-arm-kernel, linux-coco, linux-iommu, linux-s390, lkml

On Fri, Jun 19, 2026 at 12:05:45PM +1000, Alexey Kardashevskiy wrote:

quoted

IMHO that's an AMD issue, not with the design of this series..

The series is right, a device that is !force_dma_decrypted() must be
considerd to be a trusted device and we must never place any DMA
mappings for a trusted device into shared memory.

swiotlb=force forces swiotlb, not decryption.

If force_dma_decrypted() == true then swiotlb must allocate from a
decrypted memory pool. It is right there in the name!

The hypervisor environment should *never* set force_dma_decrypted()
because all devices can access all hypervisor memory, up to their IOVA
limits.

True. But we do not have encrypted swiotlb pool today, right?

"encrypted" is just normal struct page memory, that's the default for
swiotlb.

I think it was a big mistake for the AMD SME stuff to overload the
decrypted/encrypted CC stuff which should mean shared/private in a
guest context to also mean things about physical memory encryption in
the host. It is really confusing.

The SME side is just a bad arch choice, the real world doesn't work
well if you set high address bits in your dma_addr_t. I think AMD
needs to use those restricted swiotlb pool where it allocates this
very special "SME Disabled" memory that will have a low
dma_addr_t. Then alloc and bouncing will get memory with a suitable
dma_addr_t. This has nothing to do with force_dma_unencrypted() which
is only a CC guest concept and nothing else in the OS should ever
touch decrypted memory.

quoted

And this is more insane logic. The right fix is to allocate the
swiotlb bounce from the *encrypted* pools when running on the
hypervisor which requires undoing this abuse of force_dma_decrypted().

+1.

But how does the kernel decide if it is this swiotlb pool or just
some page which happens to be below the IOVA limit?

You mean in swiotlb_tbl_unmap_single() ? It checks the address against
the pool's range?

swiotlb can be for bouncing (with all these dma_sync_single_for_cpu)
or, if dev->dma_io_tlb_mem->for_alloc = true, for coherent
allocation (no need in dma_sync_single_for_cpu).

I am looking for a way to set up my "sev-guest" device such as when

Whats a "sev-guest" device?

dma_alloc_attrs(snp_dev->dev,...) happens, it allocates a page from
the shared swiotlb pool (with no actual bouncing) and there is no
obvious way to trick the DMA layer into doing that.

Why do you need this?

Jason

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help