From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from eggs.gnu.org ([2001:4830:134:3::10]:56124)
	by lists.gnu.org with esmtp (Exim 4.71)
	(envelope-from <davidkiarie4@gmail.com>) id 1bUYeL-0000cA-OJ
	for qemu-devel@nongnu.org; Tue, 02 Aug 2016 08:18:23 -0400
Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71)
	(envelope-from <davidkiarie4@gmail.com>) id 1bUYeJ-0004tt-0M
	for qemu-devel@nongnu.org; Tue, 02 Aug 2016 08:18:20 -0400
Received: from mail-yw0-x22d.google.com ([2607:f8b0:4002:c05::22d]:36561)
	by eggs.gnu.org with esmtp (Exim 4.71)
	(envelope-from <davidkiarie4@gmail.com>) id 1bUYeI-0004tn-QI
	for qemu-devel@nongnu.org; Tue, 02 Aug 2016 08:18:18 -0400
Received: by mail-yw0-x22d.google.com with SMTP id u134so196401077ywg.3
	for <qemu-devel@nongnu.org>; Tue, 02 Aug 2016 05:18:18 -0700 (PDT)
MIME-Version: 1.0
In-Reply-To: <ba11aaf2-74b7-7de5-0f27-975213379be2@siemens.com>
References: <1469123413-20809-1-git-send-email-mst@redhat.com>
	<1469123413-20809-30-git-send-email-mst@redhat.com>
	<98a5a157-ba83-bc61-df7e-546c21e23ad3@siemens.com>
	<20160802083648.GJ6207@pxdev.xzpeter.org>
	<4fcaa50f-6c09-f607-1c49-8494ec32f0c5@siemens.com>
	<20160802102838.GK6207@pxdev.xzpeter.org>
	<CABdVeABv+vsxoNLOKC31mJp08k0iRms1J6i-KfCmXmVp6UNgmg@mail.gmail.com>
	<ba11aaf2-74b7-7de5-0f27-975213379be2@siemens.com>
From: David Kiarie <davidkiarie4@gmail.com>
Date: Tue, 2 Aug 2016 15:18:17 +0300
Message-ID: <CABdVeACHP0mdEvWETE6-nn6tRDmnX6bkqjjGvrbd0mO47ph1Ng@mail.gmail.com>
Content-Type: text/plain; charset=UTF-8
Subject: Re: [Qemu-devel] [PULL v5 29/57] intel_iommu: add SID validation
 for IR
List-Id: <qemu-devel.nongnu.org>
List-Unsubscribe: <https://lists.nongnu.org/mailman/options/qemu-devel>,
	<mailto:qemu-devel-request@nongnu.org?subject=unsubscribe>
List-Archive: <http://lists.nongnu.org/archive/html/qemu-devel/>
List-Post: <mailto:qemu-devel@nongnu.org>
List-Help: <mailto:qemu-devel-request@nongnu.org?subject=help>
List-Subscribe: <https://lists.nongnu.org/mailman/listinfo/qemu-devel>,
	<mailto:qemu-devel-request@nongnu.org?subject=subscribe>
To: Jan Kiszka <jan.kiszka@siemens.com>
Cc: Peter Xu <peterx@redhat.com>, QEMU Developers <qemu-devel@nongnu.org>, "Michael S. Tsirkin" <mst@redhat.com>, Peter Maydell <peter.maydell@linaro.org>, Richard Henderson <rth@twiddle.net>, Eduardo Habkost <ehabkost@redhat.com>, Paolo Bonzini <pbonzini@redhat.com>, Valentine Sinitsyn <valentine.sinitsyn@gmail.com>

On Tue, Aug 2, 2016 at 3:16 PM, Jan Kiszka <jan.kiszka@siemens.com> wrote:

> On 2016-08-02 13:58, David Kiarie wrote:
> >
> >
> > On Tue, Aug 2, 2016 at 1:28 PM, Peter Xu <peterx@redhat.com
> > <mailto:peterx@redhat.com>> wrote:
> >
> >     On Tue, Aug 02, 2016 at 10:46:13AM +0200, Jan Kiszka wrote:
> >     > On 2016-08-02 10:36, Peter Xu wrote:
> >     > > On Mon, Aug 01, 2016 at 06:39:05PM +0200, Jan Kiszka wrote:
> >     > >
> >     > > [...]
> >     > >
> >     > >>>  static MemTxResult vtd_mem_ir_read(void *opaque, hwaddr addr,
> >     > >>> @@ -2209,11 +2250,17 @@ static MemTxResult
> >     vtd_mem_ir_write(void *opaque, hwaddr addr,
> >     > >>>  {
> >     > >>>      int ret = 0;
> >     > >>>      MSIMessage from = {}, to = {};
> >     > >>> +    uint16_t sid = X86_IOMMU_SID_INVALID;
> >     > >>>
> >     > >>>      from.address = (uint64_t) addr + VTD_INTERRUPT_ADDR_FIRST;
> >     > >>>      from.data = (uint32_t) value;
> >     > >>>
> >     > >>> -    ret = vtd_interrupt_remap_msi(opaque, &from, &to);
> >     > >>> +    if (!attrs.unspecified) {
> >     > >>> +        /* We have explicit Source ID */
> >     > >>> +        sid = attrs.requester_id;
> >     > >>> +    }
> >     > >>
> >     > >> ...here you fall back to X86_IOMMU_SID_INVALID if writer to
> >     this region
> >     > >> has not provided some valid attrs. That is questionable, defeats
> >     > >> validation of the IOAPIC e.g. (and you can see lots of
> >     > >> X86_IOMMU_SID_INVALID in vtd_irte_get when booting a guest).
> >     > >>
> >     > >> The credits also go to David who noticed that he still doesn't
> >     get a
> >     > >> proper ID from the IOAPIC while implementing AMD IR. Looks like
> >     we need
> >     > >> to enlighten the IOAPIC MSI writes...
> >     > >
> >     > > Jan, David,
> >     > >
> >     > > At the time when drafting the patch, I skipped SID verification
> for
> >     > > IOAPIC interrupts since it differs from generic PCI devices (no
> >     > > natural requester ID, so need some hacky lines to enable it).
> >     >
> >     > It's not hacky at all if done properly. For Intel it is simply
> >     > (Q35_PSEUDO_BUS_PLATFORM << 8) | Q35_PSEUDO_DEVFN_IOAPIC, but it
> >     will be
> >     > 0x00a0 (as constant as well) for AMD. So we need some interface to
> >     tell
> >     > those parameters to the IOMMU. Keep in mind that we will need a
> >     similar
> >     > interface for other platform devices, e.g. the HPET.
> >
> >     Okay.
> >
> >     >
> >     > >
> >     > > I can try to cook another seperate patch to enable it (for 2.8
> >     > > possibly?). Thanks for pointing out this issue.
> >     >
> >     > David needs that IOAPIC ID as well in order to finish interrupt
> >     > remapping on AMD. Please synchronize with him who will implement
> what.
> >
> >     Sure. David, so do you like to do it or I cook this patch? :)
> >
> >
> > If there are no objections I will look at this employing Jan's approach:
> > associating a write with an address space.
> >
>
> That actually means making it an IOMMU-local thing (if write_requester
> == invalid -> derive ID from addressed memory region, probably via the
> opaque passed to the ops). In that case, everyone could do this on himself.
>

Yes, each person can actually do their part without affecting the other ;-)


>
> Jan
>
> --
> Siemens AG, Corporate Technology, CT RDA ITP SES-DE
> Corporate Competence Center Embedded Linux
>