intel_iommu: Add SVM support

[PATCH 4/7] pci: Block ATS requests when privileged mode is disabled

CLEMENT MATHIEU--DRIF posted 7 patches 3 months, 1 week ago

Download mbox

Maintainers: "Michael S. Tsirkin" <mst@redhat.com>, Jason Wang <jasowang@redhat.com>, Yi Liu <yi.l.liu@intel.com>, "Clément Mathieu--Drif" <clement.mathieu--drif@eviden.com>, Paolo Bonzini <pbonzini@redhat.com>, Richard Henderson <richard.henderson@linaro.org>, Eduardo Habkost <eduardo@habkost.net>, Marcel Apfelbaum <marcel.apfelbaum@gmail.com>

Expand all Fold all

[PATCH 4/7] pci: Block ATS requests when privileged mode is disabled

Posted by CLEMENT MATHIEU--DRIF 3 months, 1 week ago

Signed-off-by: Clement Mathieu--Drif <clement.mathieu--drif@eviden.com>
---
 hw/pci/pci.c | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/hw/pci/pci.c b/hw/pci/pci.c
index acc03fd470..3c304158ac 100644
--- a/hw/pci/pci.c
+++ b/hw/pci/pci.c
@@ -3096,6 +3096,10 @@ ssize_t pci_ats_request_translation(PCIDevice *dev, uint32_t pasid,
         return -EPERM;
     }
 
+    if (priv_req && !pcie_pasid_priv_enabled(dev)) {
+        return -EPERM;
+    }
+
     pci_device_get_iommu_bus_devfn(dev, &iommu_bus, &bus, &devfn);
     if (iommu_bus && iommu_bus->iommu_ops->ats_request_translation) {
         return iommu_bus->iommu_ops->ats_request_translation(bus,
-- 
2.51.0

[PATCH 1/7] intel_iommu: Add an IOMMU index for pre-translated addresses
[PATCH 2/7] intel_iommu: Support memory operations with pre-translated addresses
[PATCH 3/7] pcie: Add a function to check if pasid privileged mode is enabled
[PATCH 4/7] pci: Block ATS requests when privileged mode is disabled
[PATCH 5/7] intel_iommu: Handle insufficient permissions during translation requests
[PATCH 6/7] intel_iommu: Minimal handling of privileged ATS request
[PATCH 7/7] intel_iommu: Add a CLI option to enable SVM