Hi, > None of the proposals directly address the use case of sharing host > allocated buffers between devices, but I think they can be extended to > support it. Host buffers can be identified by the following tuple: > (transport type enum, transport specific device address, shmid, > offset). I think this is sufficient even for host-allocated buffers > that aren't visible to the guest (e.g. protected memory, vram), since > they can still be given address space in some shared memory region, > even if those addresses are actually inaccessible to the guest. At > this point, the host buffer identifier can simply be passed in place > of the guest ram scatterlist with either proposed buffer sharing > mechanism. > I think the main question here is whether or not the complexity of > generic buffers and a buffer sharing device is worth it compared to > the more implicit definition of buffers. Here are two issues mixed up. First is, whenever we'll go define a buffer sharing device or not. Second is how we are going to address buffers. I think defining (and addressing) buffers implicitly is a bad idea. First the addressing is non-trivial, especially with the "transport specific device address" in the tuple. Second I think it is a bad idea from the security point of view. When explicitly exporting buffers it is easy to restrict access to the actual exports. Instead of using a dedicated buffer sharing device we can also use virtio-gpu (or any other driver which supports dma-buf exports) to manage buffers. virtio-gpu would create an identifier when exporting a buffer (dma-buf exports inside the guest), attach the identifier to the dma-buf so other drivers importing the buffer can see and use it. Maybe add an ioctl to query, so guest userspace can query the identifier too. Also send the identifier to the host so it can also be used on the host side to lookup and access the buffer. With no central instance (buffer sharing device) being there managing the buffer identifiers I think using uuids as identifiers would be a good idea, to avoid clashes. Also good for security because it's pretty much impossible to guess buffer identifiers then. cheers, Gerd