[Linuxarm] Re: [RFC PATCH 4/5] iommu/arm-smmu-v3: Use pinned VMID for NESTED stage with BTM

-----Original Message----- From: Jean-Philippe Brucker [mailto:jean-philippe@linaro.org] Sent: 04 March 2021 17:11 To: Shameerali Kolothum Thodi <shameerali.kolothum.thodi(a)huawei.com&gt; Cc: linux-arm-kernel(a)lists.infradead.org; iommu(a)lists.linux-foundation.org; kvmarm(a)lists.cs.columbia.edu; maz(a)kernel.org; alex.williamson(a)redhat.com; eric.auger(a)redhat.com; zhangfei.gao(a)linaro.org; Jonathan Cameron <jonathan.cameron(a)huawei.com&gt;; Zengtao (B) <prime.zeng(a)hisilicon.com&gt;; linuxarm(a)openeuler.org Subject: Re: [RFC PATCH 4/5] iommu/arm-smmu-v3: Use pinned VMID for NESTED stage with BTM

> > kfree(smmu_domain); > @@ -3199,6 +3230,17 @@ static int arm_smmu_attach_pasid_table(struct iommu_domain *domain, > !(smmu->features & ARM_SMMU_FEAT_2_LVL_CDTAB)) > goto out; > > + if (smmu->features & ARM_SMMU_FEAT_BTM) { > + ret = arm_smmu_pinned_vmid_get(smmu_domain); > + if (ret < 0) > + goto out; > + > + if (smmu_domain->s2_cfg.vmid) > + arm_smmu_bitmap_free(smmu->vmid_map, smmu_domain->s2_cfg.vmid); > + > + smmu_domain->s2_cfg.vmid = (u16)ret; That will require a TLB invalidation on the old VMID, once the STE is rewritten. More generally I think this pinned VMID set conflicts with that of stage-2-only domains (which is the default state until a guest attaches a PASID table). Say you have one guest using DOMAIN_NESTED without PASID table, just DMA to IPA using VMID 0x8000. Now another guest attaches a PASID table and obtains the same VMID from KVM. The stage-2 translation might use TLB entries from the other guest, no? They'll both create stage-2 TLB entries with {StreamWorld=NS-EL1, VMID=0x8000}

It's tempting to allocate all VMIDs through KVM instead, but that will force a dependency on KVM to use VFIO_TYPE1_NESTING_IOMMU and might break existing users of that extension (though I'm not sure there are any). Instead we might need to restrict the SMMU VMID bitmap to match the private VMID set in KVM.