[PATCH 0/2] iommu/amd: Fix IOMMUv2 devices when SME is active

From: Joerg Roedel
Date: Mon Aug 24 2020 - 06:55:22 EST

Next message: Joerg Roedel: "[PATCH 1/2] iommu/amd: Do not force direct mapping when SME is active"
Previous message: Joerg Roedel: "[PATCH 2/2] iommu/amd: Do not use IOMMUv2 functionality when SME is active"
Next in thread: Joerg Roedel: "[PATCH 2/2] iommu/amd: Do not use IOMMUv2 functionality when SME is active"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

From: Joerg Roedel <jroedel@xxxxxxx>

Hi,

Some IOMMUv2 capable devices do not work correctly when SME is
active, because their DMA mask does not include the encryption bit, so
that they can not DMA to encrypted memory directly.

The IOMMU can jump in here, but the AMD IOMMU driver puts IOMMUv2
capable devices into an identity mapped domain. Fix that by not
forcing an identity mapped domain on devices when SME is active and
forbid using their IOMMUv2 functionality.

Please review.

Thanks,

Joerg

Joerg Roedel (2):
iommu/amd: Do not force direct mapping when SME is active
iommu/amd: Do not use IOMMUv2 functionality when SME is active

drivers/iommu/amd/iommu.c | 7 ++++++-
drivers/iommu/amd/iommu_v2.c | 7 +++++++
2 files changed, 13 insertions(+), 1 deletion(-)

--
2.28.0

Next message: Joerg Roedel: "[PATCH 1/2] iommu/amd: Do not force direct mapping when SME is active"
Previous message: Joerg Roedel: "[PATCH 2/2] iommu/amd: Do not use IOMMUv2 functionality when SME is active"
Next in thread: Joerg Roedel: "[PATCH 2/2] iommu/amd: Do not use IOMMUv2 functionality when SME is active"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]