Received: by 2002:a05:6a10:206:0:0:0:0 with SMTP id 6csp1064235pxj; Wed, 2 Jun 2021 19:59:01 -0700 (PDT) X-Google-Smtp-Source: ABdhPJwxcSvMgJyBpPZ/YZeh2vwl0iY45kADs+9jwKd2aOSPA1uz1uzs33nz4nzKyTCfsCLvliz7 X-Received: by 2002:a17:906:82c3:: with SMTP id a3mr441274ejy.230.1622689141572; Wed, 02 Jun 2021 19:59:01 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1622689141; cv=none; d=google.com; s=arc-20160816; b=KTuDllit4ZvYBPDegAreImnnsSvnZ+yrEQY8ZaLr3oHHJG2LzAtgsbKvd/hN+vv5pL OwOauua25bBVpQpb4iY0QUQuxDEPxjJFjgPsS4LMeUmIpLQ1HxTjc9JUyBN2Zv+bnBiO N+gubURAe0c94NKpkzKiAGPpdDOqsOiqAru/9PhU+2asvI12y8YYGVDbcogLtxpVG5wn r/636KljcXKF9lY/UqTBCsbXI68HlFqYrUZsIbEnhfP/E4GJWINEOulVJSPQ+ZjS/O7F ZZcenDdU9cKTzHWB6NJj+yOv0q73vPfhs2c98MNhxo4jryr/fJZYadTx2N0W9iXsWdjJ OXBQ== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:content-language:content-transfer-encoding :in-reply-to:mime-version:user-agent:date:message-id:from:references :cc:to:subject:ironport-sdr:ironport-sdr; bh=S3vDQjGyUuGA6Oa3a+HWul+Eo0BOxOJaZA3loGcJZ/g=; b=R1I+9IDo+jvDCrIjS/VbifzV4RL8pZkMpGgzXFpyyOqdiADCbKflDH0Rovc6S3PAAX wnQJy694AYaHlJtqSfI91kTGqLIvjK5XvBORlpxYSGLZJWAAwv0ZdnQgymilpTx+Ztss GBGXgUSTQSfMlruuLqj3VzXwMDEBfTZRElKvDYdhmW/+49OW1ya7WMdXd45OMYf/wjzl UOFNAREM1xQRMhlNiYb+CdeHAnUngK4phfWGtmKUg8CHDQLuwa3znCIcUIBZ05E1bQND +MOoGOf3pgiKsFwSyzneMD9BgwDH/XbjaJOGR3PWRDIGgHlmgsxUT1cn0dB6pMmkF7vZ r2jg== ARC-Authentication-Results: i=1; mx.google.com; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=intel.com Return-Path: Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18]) by mx.google.com with ESMTP id y16si1648389eda.286.2021.06.02.19.58.38; Wed, 02 Jun 2021 19:59:01 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18; Authentication-Results: mx.google.com; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=intel.com Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S229625AbhFCC6c (ORCPT + 99 others); Wed, 2 Jun 2021 22:58:32 -0400 Received: from mga11.intel.com ([192.55.52.93]:63948 "EHLO mga11.intel.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S229663AbhFCC6b (ORCPT ); Wed, 2 Jun 2021 22:58:31 -0400 IronPort-SDR: IIikFKecjC+6z97tdqhCzWo5oDccEMgJAloYAT1jtqp2LVtA/WARxl12oPhFBc+hhlqQ71B8tk Fz+mj9I18vJw== X-IronPort-AV: E=McAfee;i="6200,9189,10003"; a="200937747" X-IronPort-AV: E=Sophos;i="5.83,244,1616482800"; d="scan'208";a="200937747" Received: from fmsmga001.fm.intel.com ([10.253.24.23]) by fmsmga102.fm.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 02 Jun 2021 19:56:47 -0700 IronPort-SDR: KhRXtgngnmgKjM5HGekGuKCGTxqbA99N9UtERxN/h391vZaKc5WUL0tyOCjFA2/qjOiV0+JkOX pLjDWqoLDQ8g== X-IronPort-AV: E=Sophos;i="5.83,244,1616482800"; d="scan'208";a="550535335" Received: from akleen-mobl1.amr.corp.intel.com (HELO [10.209.87.193]) ([10.209.87.193]) by fmsmga001-auth.fm.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 02 Jun 2021 19:56:47 -0700 Subject: Re: [PATCH v1 1/8] virtio: Force only split mode with protected guest To: Jason Wang , mst@redhat.com Cc: virtualization@lists.linux-foundation.org, hch@lst.de, m.szyprowski@samsung.com, robin.murphy@arm.com, iommu@lists.linux-foundation.org, x86@kernel.org, sathyanarayanan.kuppuswamy@linux.intel.com, jpoimboe@redhat.com, linux-kernel@vger.kernel.org References: <20210603004133.4079390-1-ak@linux.intel.com> <20210603004133.4079390-2-ak@linux.intel.com> <28c8302b-6833-10b4-c0eb-67456e7c4069@redhat.com> <09e17c7f-ce51-1a46-72c4-12223bee4e3a@linux.intel.com> <1c08bc42-7448-351e-78bf-fcf68d2b2561@redhat.com> From: Andi Kleen Message-ID: <5a2d0d70-fa6b-f08d-f222-5c00cf5f9d44@linux.intel.com> Date: Wed, 2 Jun 2021 19:56:46 -0700 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:78.0) Gecko/20100101 Thunderbird/78.10.2 MIME-Version: 1.0 In-Reply-To: <1c08bc42-7448-351e-78bf-fcf68d2b2561@redhat.com> Content-Type: text/plain; charset=utf-8; format=flowed Content-Transfer-Encoding: 7bit Content-Language: en-US Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org > > I agree, but I want to know why indirect descriptor needs to be > disabled. The table can't be wrote by the device since it's not > coherent swiotlb mapping. I had all kinds of problems with uninitialized entries in the indirect table. So I gave up on it and concluded it would be too difficult to secure. -Andi