On Thu, May 27, 2021 at 07:58:12AM +0000, Tian, Kevin wrote: > /dev/ioasid provides an unified interface for managing I/O page tables for > devices assigned to userspace. Device passthrough frameworks (VFIO, vDPA, > etc.) are expected to use this interface instead of creating their own logic to > isolate untrusted device DMAs initiated by userspace. It is very long, but I think this has turned out quite well. It certainly matches the basic sketch I had in my head when we were talking about how to create vDPA devices a few years ago. When you get down to the operations they all seem pretty common sense and straightfoward. Create an IOASID. Connect to a device. Fill the IOASID with pages somehow. Worry about PASID labeling. It really is critical to get all the vendor IOMMU people to go over it and see how their HW features map into this. Thanks, Jason