Received: by 2002:a05:6a10:1287:0:0:0:0 with SMTP id d7csp6825029pxv; Fri, 30 Jul 2021 03:22:12 -0700 (PDT) X-Google-Smtp-Source: ABdhPJwN8ywwVV+WCGQTSiLvSQ/bmeriWWI1xqp9fAnOo7JRrd2Vv3vuK+UsfTwC9N7+TDipoC7P X-Received: by 2002:a5d:8888:: with SMTP id d8mr604574ioo.170.1627640531911; Fri, 30 Jul 2021 03:22:11 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1627640531; cv=none; d=google.com; s=arc-20160816; b=ajcdZsjLUSSg9QGi4ZcH6gFl1/o3E+goR+3wwEoWA9sL/uYIePj14AWzcVnHRWJvQE d8/36gCDHlEngqoCxoJdG2gQW+glU88BrGELI+FvVDquMF1cbij3ahxMR7tcQNDoOPKD FJlVdQ6qOEk8FLh4O/KFKo290N1GbTaqKJtwJR6iQ/D237wxcynsh70KKet9Al0dHEsG pXLtaLNK+07VGkE4y027wwdaieDX/RfMpuMQxMcEXxRJlIYp5F3dT9kfEyWtopDk9YAt KjrHKnc6giuuI2lgMHP0glfFXbeleg2xNT9T2awdKel3EQj48ctyjZQXy281cSH40nOw yi6A== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:content-transfer-encoding:content-language :in-reply-to:mime-version:user-agent:date:message-id:from:references :cc:to:subject; bh=op4723jehEBo37fZ3svNI+wuPYwI/ZAo+qNaCRGVprY=; b=WW1SoBFHr1oJlxPaD+lGMymSnTyVHAYgYzSVy3QsUG9CizQkx1l5NCeWlbc41hOx0S 5DCXfRBKsEfILnUzcQHwjWtYZNmZ/tta7sgb92bgn216KPT2StWjF5lioSOcTbMnK9Od MGj3S+PNfhaXKn9nU8BaRiS7hk2duS5JqHfAu59bFZdrx+fPRI05PeveflrZn/x/KMZC t75OghkcKUcu6oi22u6Co1dRv/UfWR/C2e2yN+RSVCUNY35XDnA9LseqoFyeQtNYl1NY Nylo3TJzyIedvW104KvyJpK7AyJCNHZpRK7nBJKwfPxH4pOyRGtizU3cbINg4s2FGZYI eb/A== ARC-Authentication-Results: i=1; mx.google.com; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=huawei.com Return-Path: Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18]) by mx.google.com with ESMTP id k2si1272843jao.12.2021.07.30.03.22.00; Fri, 30 Jul 2021 03:22:11 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18; Authentication-Results: mx.google.com; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=huawei.com Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S238420AbhG3KVJ (ORCPT + 99 others); Fri, 30 Jul 2021 06:21:09 -0400 Received: from frasgout.his.huawei.com ([185.176.79.56]:3539 "EHLO frasgout.his.huawei.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S238387AbhG3KVI (ORCPT ); Fri, 30 Jul 2021 06:21:08 -0400 Received: from fraeml704-chm.china.huawei.com (unknown [172.18.147.206]) by frasgout.his.huawei.com (SkyGuard) with ESMTP id 4GbjqL5Syzz6G9Gw; Fri, 30 Jul 2021 18:11:42 +0800 (CST) Received: from lhreml724-chm.china.huawei.com (10.201.108.75) by fraeml704-chm.china.huawei.com (10.206.15.53) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.2176.2; Fri, 30 Jul 2021 12:21:02 +0200 Received: from [10.47.25.95] (10.47.25.95) by lhreml724-chm.china.huawei.com (10.201.108.75) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.2176.2; Fri, 30 Jul 2021 11:21:01 +0100 Subject: Re: [PATCH v2 19/24] iommu: Expose DMA domain strictness via sysfs To: Robin Murphy , , CC: , , , , , References: From: John Garry Message-ID: <5078e29c-029c-8bab-613f-46c94507c64d@huawei.com> Date: Fri, 30 Jul 2021 11:20:42 +0100 User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:68.0) Gecko/20100101 Thunderbird/68.12.1 MIME-Version: 1.0 In-Reply-To: Content-Type: text/plain; charset="utf-8"; format=flowed Content-Language: en-US Content-Transfer-Encoding: 7bit X-Originating-IP: [10.47.25.95] X-ClientProxiedBy: lhreml735-chm.china.huawei.com (10.201.108.86) To lhreml724-chm.china.huawei.com (10.201.108.75) X-CFilter-Loop: Reflected Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On 28/07/2021 16:58, Robin Murphy wrote: > The sysfs interface for default domain types exists primarily so users > can choose the performance/security tradeoff relevant to their own > workload. As such, the choice between the policies for DMA domains fits > perfectly as an additional point on that scale - downgrading a > particular device from a strict default to non-strict may be enough to > let it reach the desired level of performance, while still retaining > more peace of mind than with a wide-open identity domain. Now that we've > abstracted non-strict mode as a distinct type of DMA domain, allow it to > be chosen through the user interface as well. > > Signed-off-by: Robin Murphy > --- Reviewed-by: John Garry