Re: [PATCH v3 00/10] Add Intel VT-d nested translation

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Subject: Re: [PATCH v3 00/10] Add Intel VT-d nested translation
From: Jason Gunthorpe <jgg@xxxxxxxxxx>
Date: Wed, 14 Jun 2023 08:52:49 -0300
Cc: "Liu, Yi L" <yi.l.liu@xxxxxxxxx>, "joro@xxxxxxxxxx" <joro@xxxxxxxxxx>, "alex.williamson@xxxxxxxxxx" <alex.williamson@xxxxxxxxxx>, "robin.murphy@xxxxxxx" <robin.murphy@xxxxxxx>, "baolu.lu@xxxxxxxxxxxxxxx" <baolu.lu@xxxxxxxxxxxxxxx>, "cohuck@xxxxxxxxxx" <cohuck@xxxxxxxxxx>, "eric.auger@xxxxxxxxxx" <eric.auger@xxxxxxxxxx>, "nicolinc@xxxxxxxxxx" <nicolinc@xxxxxxxxxx>, "kvm@xxxxxxxxxxxxxxx" <kvm@xxxxxxxxxxxxxxx>, "mjrosato@xxxxxxxxxxxxx" <mjrosato@xxxxxxxxxxxxx>, "chao.p.peng@xxxxxxxxxxxxxxx" <chao.p.peng@xxxxxxxxxxxxxxx>, "yi.y.sun@xxxxxxxxxxxxxxx" <yi.y.sun@xxxxxxxxxxxxxxx>, "peterx@xxxxxxxxxx" <peterx@xxxxxxxxxx>, "jasowang@xxxxxxxxxx" <jasowang@xxxxxxxxxx>, "shameerali.kolothum.thodi@xxxxxxxxxx" <shameerali.kolothum.thodi@xxxxxxxxxx>, "lulu@xxxxxxxxxx" <lulu@xxxxxxxxxx>, "suravee.suthikulpanit@xxxxxxx" <suravee.suthikulpanit@xxxxxxx>, "iommu@xxxxxxxxxxxxxxx" <iommu@xxxxxxxxxxxxxxx>, "linux-kernel@xxxxxxxxxxxxxxx" <linux-kernel@xxxxxxxxxxxxxxx>, "linux-kselftest@xxxxxxxxxxxxxxx" <linux-kselftest@xxxxxxxxxxxxxxx>, "Duan, Zhenzhong" <zhenzhong.duan@xxxxxxxxx>
In-reply-to: <BN9PR11MB5276B15B4709F595B2A5A84A8C5AA@BN9PR11MB5276.namprd11.prod.outlook.com>
References: <20230511145110.27707-1-yi.l.liu@intel.com> <BN9PR11MB52765FA8255FB8F8A1A6F11B8C419@BN9PR11MB5276.namprd11.prod.outlook.com> <ZHTyNgnjj/bOkIgi@nvidia.com> <BN9PR11MB5276B15B4709F595B2A5A84A8C5AA@BN9PR11MB5276.namprd11.prod.outlook.com>

On Wed, Jun 14, 2023 at 08:07:30AM +0000, Tian, Kevin wrote:

> think of a scenario where the vbios memory is shared by multiple qemu
> instances then RW allows a malicious VM to modify the shared content
> then potentially attacking other VMs.

qemu would have to map the vbios as MAP_PRIVATE WRITE before the iommu
side could map it writable, so this is not a real worry.

Jason

Follow-Ups:
- RE: [PATCH v3 00/10] Add Intel VT-d nested translation
  - From: Tian, Kevin

References:
- [PATCH v3 00/10] Add Intel VT-d nested translation
  - From: Yi Liu
- RE: [PATCH v3 00/10] Add Intel VT-d nested translation
  - From: Tian, Kevin
- Re: [PATCH v3 00/10] Add Intel VT-d nested translation
  - From: Jason Gunthorpe
- RE: [PATCH v3 00/10] Add Intel VT-d nested translation
  - From: Tian, Kevin

Prev by Date: RE: [PATCH v14 011/113] KVM: TDX: Add C wrapper functions for SEAMCALLs to the TDX module
Next by Date: Re: [PATCH kvmtool 00/21] arm64: Handle PSCI calls in userspace
Previous by thread: RE: [PATCH v3 00/10] Add Intel VT-d nested translation
Next by thread: RE: [PATCH v3 00/10] Add Intel VT-d nested translation
Index(es):
- Date
- Thread

[Index of Archives] [KVM ARM] [KVM ia64] [KVM ppc] [Virtualization Tools] [Spice Development] [Libvirt] [Libvirt Users] [Linux USB Devel] [Linux Audio Users] [Yosemite Questions] [Linux Kernel] [Linux SCSI] [XFree86]