From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from mail-wi0-f181.google.com (mail-wi0-f181.google.com [209.85.212.181]) by dpdk.org (Postfix) with ESMTP id C59B58E59 for ; Thu, 1 Oct 2015 10:52:28 +0200 (CEST) Received: by wicfx3 with SMTP id fx3so17964496wic.0 for ; Thu, 01 Oct 2015 01:52:28 -0700 (PDT) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:subject:to:references:cc:from:message-id:date :user-agent:mime-version:in-reply-to:content-type; bh=ZrR5mrYDSotDst7xUNg7jIALR/C4AYcRFPJTNFMWgsc=; b=UuOQjYPkGGayZmNFmgfx1n+4FoviQsW85eVRcuruIfsk4QZH99lFAhpdQXuV/FlP+i NLX/WYZ9WMYpy9wqS+jHGT/Ha5NY0I4ljxflb8PefI1nS7Q+tZd8AA29MNiCOg7hrERq fwcxPMti0aRsXFSYM69vPq4rascy86Pwd6q8C2MUKKUaYWfFx+lRaqO4BOilEJMs9ZT4 DjMYrld3lgF/6XBexEJEUOgcNIGWtQGvud3B9DVLDb8dhIkmt2nQ4DXIqKw5FtoEmKjo emza9LYpofYtcJ5tVeRRQ/keNbwwsz9KHtlLFdjKEr/Xu/ZsUwqUV/lLEyCKG8KfqggV 1ilg== X-Gm-Message-State: ALoCoQn8ibmCMc+9+wwWJLXVOevNCyTnI8uBAn2VT0osnckH02rSRnxRalbdO/1iYO0BUbNO9xQD X-Received: by 10.194.249.100 with SMTP id yt4mr10893133wjc.74.1443689548592; Thu, 01 Oct 2015 01:52:28 -0700 (PDT) Received: from avi.cloudius ([37.142.229.250]) by smtp.googlemail.com with ESMTPSA id ew2sm2025202wic.20.2015.10.01.01.52.26 (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Thu, 01 Oct 2015 01:52:27 -0700 (PDT) To: "Michael S. Tsirkin" References: <560BCD2F.5060505@cloudius-systems.com> <20150930150115-mutt-send-email-mst@redhat.com> <560BD284.7040505@cloudius-systems.com> <20150930151632-mutt-send-email-mst@redhat.com> <560BDE24.8000308@scylladb.com> <20150930165359-mutt-send-email-mst@redhat.com> <560BF782.4070308@scylladb.com> <20150930175848-mutt-send-email-mst@redhat.com> <560C0171.7080507@scylladb.com> <20150930204016.GA29975@redhat.com> <20151001113828-mutt-send-email-mst@redhat.com> From: Avi Kivity Message-ID: <560CF44A.60102@scylladb.com> Date: Thu, 1 Oct 2015 11:52:26 +0300 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:38.0) Gecko/20100101 Thunderbird/38.2.0 MIME-Version: 1.0 In-Reply-To: <20151001113828-mutt-send-email-mst@redhat.com> Content-Type: text/plain; charset=windows-1252; format=flowed Content-Transfer-Encoding: 7bit X-Content-Filtered-By: Mailman/MimeDel 2.1.15 Cc: "dev@dpdk.org" Subject: Re: [dpdk-dev] Having troubles binding an SR-IOV VF to uio_pci_generic on Amazon instance X-BeenThere: dev@dpdk.org X-Mailman-Version: 2.1.15 Precedence: list List-Id: patches and discussions about DPDK List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 01 Oct 2015 08:52:29 -0000 On 10/01/2015 11:44 AM, Michael S. Tsirkin wrote: > On Wed, Sep 30, 2015 at 11:40:16PM +0300, Michael S. Tsirkin wrote: >>> And for what, to prevent >>> root from touching memory via dma that they can access in a million other >>> ways? >> So one can be reasonably sure a kernel oops is not a result of a >> userspace bug. > Actually, I thought about this overnight, and it should be possible to > drive it securely from userspace, without hypervisor changes. Also without the performance that was the whole reason from doing it in userspace in the first place. I still don't understand your objection to the patch: > MSI messages are memory writes so any generic device capable > of MSI is capable of corrupting kernel memory. > This means that a bug in userspace will lead to kernel memory corruption > and crashes. This is something distributions can't support. If a distribution feels it can't support this configuration, it can disable the uio_pci_generic driver, or refuse to support tainted kernels. If it feels it can (and many distributions are starting to support dpdk), then you're just denying it the ability to serve its users. > See > > https://mid.gmane.org/20151001104505-mutt-send-email-mst@redhat.com > > >