On Sun, 19 Feb 2017 22:47:06 +0800 Lan Tianyu <tianyu.lan@xxxxxxxxx> wrote: > This patchset proposes a solution to report hardware IOMMU fault > event to userspace. Motivation is to make vIOMMU in Qemu get physical > fault event and info from IOMMU hardware. vIOMMU is in charge of transforming > fault info and inject to guest. The feature is also very important to > support first level translation(Translation request with PASID) in VM > which requires vIOMMU to inject device page request to VM. Is the type1 IOMMU backend even a valid target here? vIOMMU support with type1 is functional, but not really usable except for very specific cases. Type1 is not designed for and not well suited to dynamic DMA mapping in a VM, which means that anything other than iommu=pt or assigning the device to a VM user or l2 guest is going to have horrible performance. Faulting in mappings, as seems to be enabled here, sort of implies dynmaic mapping, right? Our container based accounting falls apart for type1 backing a vIOMMU as well. Each device lives in its own address space and therefore vfio container, which means that management of vIOMMU assigned device VMs needs to account for locked memory limits per device. This quickly opens a large vulnerability if a VM can lock multiples of the VM memory size. So is what you're developing here just a proof of concept using type1, or is this something that you feel actually has value long term? > Introduce two new VFIO cmd for VFIO IOMMU type1 driver > - VFIO_IOMMU_SET_FAULT_EVENT_FD > Receive eventfd from user space and trigger eventfd when get fault event > from IOMMU. > > - VFIO_IOMMU_GET_FAULT_INFO > Return IOMMU fault info to userspace. > > VFIO IOMMU Type1 driver needs to register IOMMU fault event notifier > to IOMMU driver for assigned devices when they are attached to VFIO > container. IOMMU driver will run VFIO fault event callback when hardware > IOMMU triggers fault events for devices assigned to VFIO container. Then, > type1 driver signals eventfd provided by userspace and usrspace gets fault > info via new cmd. > > IOMMU interface are still in design stage and so we still can't register > IOMMU fault event notifier to IOMMU driver. This patchset is prototype > code to check whether VFIO IOMMU type1 driver is suitable place to deal > with IOMMU fault event and just passes build test. > > Very appreciate for comments. > > Lan Tianyu (3): > VFIO: Add new cmd to receive eventfd from userspace to notify IOMMU > fault event > VFIO: Add IOMMU fault notifier callback > VFIO: Add new cmd for user space to get IOMMU fault info > > drivers/vfio/vfio_iommu_type1.c | 106 ++++++++++++++++++++++++++++++++++++++++ > include/linux/iommu.h | 7 +++ > include/uapi/linux/vfio.h | 37 ++++++++++++++ > 3 files changed, 150 insertions(+) >
