[Top] [All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [PATCH v9 7/8] xen/arm: enable dom0 to use PCI devices with pci-passthrough=no

  • To: Julien Grall <julien@xxxxxxx>, "xen-devel@xxxxxxxxxxxxxxxxxxxx" <xen-devel@xxxxxxxxxxxxxxxxxxxx>
  • From: Mykyta Poturai <Mykyta_Poturai@xxxxxxxx>
  • Date: Tue, 29 Apr 2025 11:48:02 +0000
  • Accept-language: en-US
  • Arc-authentication-results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=epam.com; dmarc=pass action=none header.from=epam.com; dkim=pass header.d=epam.com; arc=none
  • Arc-message-signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector10001; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=XlxYyYip9nHA2X/fXv4hmMQLPbM9ZDnOdi/2QG00vsc=; b=Gx1PNNadkGJGsy6F2hGzqBSCWwNwFTVOIekwmqCAtDNmIgQFMQsWX4e36pDaFQVjVwFDzfeyu82hZ4MRfoyMcWlp+WeJFr8o8uBVLECkifR6JTi2+UPM1OtJUky4SUwSfDrr/lc9SefTjyccwJSpw6u++e48p6Qv7Q0x8BuJKodVzAlxhxiIkNR7CLtrk7Pddb610I63b5feV0sXnSjgGsmFLThvrlrzrgXIYETJj7UECnWSy5mY9A6DLeRpfAmEbigjzegcuwAe2YaTFr78t+KCf/GYTGZ1WWPqLo54lclQ0jMfX1q8gMMZgeXV/MVmLQHwr6eVNtbT7OOQowWSTg==
  • Arc-seal: i=1; a=rsa-sha256; s=arcselector10001; d=microsoft.com; cv=none; b=MaBsdXn9ZsG61+tNXAmi7rwAG+xiMCb5Wl8tXjoPTZ/alBrRQIbCLHVVkpA1UvI+tLQsc1HS1PXsyEXrAZfm2aCTjD3XJEs4nJEGSDj/j131kmix7AntZ+ma05ANku7rFUB9WP4hwfgemRoqXPuxEbaRamWskk+v9aPp7uf+7O8wlfwZf9QDwWxRs7XlZlusJKm2lUlwWDiaRJ9gKWepjHu6pRGUT+ISnDsSe73Yx2dCH30p8eIvRO1++0uJ3N7Rsy6MLQzsiYilhYmfQumPuTexn7/sof+/ae93XTIStLTJrIFyhlSVj62X4hVI1/HXoEzOJwRbk+6Zbju0JjKF+w==
  • Authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=epam.com;
  • Cc: Stewart Hildebrand <stewart.hildebrand@xxxxxxx>, Stefano Stabellini <sstabellini@xxxxxxxxxx>, Bertrand Marquis <bertrand.marquis@xxxxxxx>, Michal Orzel <michal.orzel@xxxxxxx>, Volodymyr Babchuk <Volodymyr_Babchuk@xxxxxxxx>, Andrew Cooper <andrew.cooper3@xxxxxxxxxx>, Anthony PERARD <anthony.perard@xxxxxxxxxx>, Jan Beulich <jbeulich@xxxxxxxx>, Roger Pau Monné <roger.pau@xxxxxxxxxx>
  • Delivery-date: Tue, 29 Apr 2025 11:48:13 +0000
  • List-id: Xen developer discussion <xen-devel.lists.xenproject.org>
  • Thread-index: AQHblOXdxbIbbkNtn0WSg/9tW2OJ47O5DGKAgAA8u4CAAAbVAIAAGfaAgAA/NwCAASYyAA==
  • Thread-topic: [PATCH v9 7/8] xen/arm: enable dom0 to use PCI devices with pci-passthrough=no
On 28.04.25 21:15, Julien Grall wrote:
> Hi Mykyta,
> 
> On 28/04/2025 15:28, Mykyta Poturai wrote:
>> On 28.04.25 15:55, Julien Grall wrote:
>>> Hi,
>>>
>>> On 28/04/2025 13:31, Mykyta Poturai wrote:
>>>> On 28.04.25 11:54, Julien Grall wrote:
>>>>> Hi Mykyta,
>>>>>
>>>>> On 14/03/2025 13:34, Mykyta Poturai wrote:
>>>>>> From: Stewart Hildebrand <stewart.hildebrand@xxxxxxx>
>>>>>>
>>>>>> Enable the use of IOMMU + PCI in dom0 without having to specify
>>>>>> "pci-passthrough=yes". We rely on dom0 to initialize the PCI 
>>>>>> controller
>>>>>> and perform a PHYSDEVOP_pci_device_add call to add each device to 
>>>>>> SMMU.
>>>>>
>>>>> It would be good to explain why Xen cannot initialize the PCI
>>>>> controller. Asking, because the reason is the PCI controller is too
>>>>> complex, then you will likely need the same approach for PCI
>>>>> passthrough...
>>>>
>>>> I think the main reason for this is complexity and the possibility of
>>>> additional dependencies: there could be external clocks or reset pins
>>>> that the PCI host depends on for working correctly. I will add this to
>>>> the commit message. Regarding PCI passthrough, it is already using the
>>>> same approach (at least on Arm). There are patches for enabling Xen on
>>>> Arm to perform bus enumeration by itself by Luca Fancellu, but I 
>>>> haven't
>>>> yet got to test them in a meaningful way.
>>>
>>> Can you provide a link to the series? I would like to make sure we have
>>> a coherent approach. In particular, it is not clear to me how Dom0 and
>>> Xen will be able to coordinate the access to the PCI controller. Are we
>>> going to have a mediator?
>>>
>>
>> Here is a link to my WIP branch
>> https://github.com/Deedone/xen/tree/pci_passthrough_wip
>> Although it is slightly outdated due to recent review activity, I will
>> updated it soon with all of the recent changes.
>>
>> Luca's commits begin from c68a5cbb1a7d17907551159c99ab5c87ce0dedf9
>>
>> I wasn't able to find them sent to any mailing lists, but I plan to also
>> send them after the base case with Dom0 enumeration stabilizes.
> 
> I don't think you can stabilize one without the other. I am worry the 
> interface may not work properly for PCI passthrough. So until then, I 
> would say this should be marked as unsupported (maybe protected by 
> CONFIG_UNSUPPORTED).

It is currently not possible to enable HAS_PCI on Arm at all. I will add 
the UNSUPPORTED guard along with the future changes to Kconfig that will 
make enabling HAS_PCI on Arm possible.

>>
>> There is no mediator, Dom0 configures the host controller, enumerates
>> child devices, and then gives complete access to some of them to Xen.
>> Xen only does "logical" operations with child devices and does not
>> change any of the host controller base settings.
> 
> I am not sure I fully understanding this. Both dom0 will need to access 
> the configuration space. So you would need to ensure there is only one 
> accessing the configuration space at a give time.
> 

If a controller doesn't require specific configuration for mapping child 
bus then Xen should access only child's config space and if Dom0 ignores 
this device there will be no conflicts. For more complex controllers 
like the ones on R-Car boards it is possible to implement safer ways of 
mapping config space via Xen, example patch here[1] as temporary solution.

>> To ensure that Dom0
>> will not mess with the child devices, tools bind them to the stub
>> driver. Theoretically, Dom0 can bind to those devices again and break
>> something, but it can also do a lot of other breaking stuff so I don't
>> think there is a good reason to invent some forms of protection from it.
> 
> We should not trust dom0 to do the right thing. But reading ...
> 
>>
>> After some time with pci-scan changes merged it should become possible
>> to make Xen do the enumeration, and only give Dom0 the virtual PCI bus,
>> which would prevent it from accessing non-owned devices.
> 
> ... this it sounds like this would be temporary. Do you have patches 
> already on the mailing list?
>  > Cheers,
> 

Not yet, I am planning to start working on them after dealing with MSI 
support on Arm.

[1]: 
https://github.com/xen-troops/meta-xt-prod-devel-rcar-gen4/blob/master/layers/meta-xt-domd-gen4/recipes-kernel/linux/linux-renesas/0005-HACK-pcie-renesas-emulate-reading-from-ECAM-under-Xe.patch
-- 
Mykyta

 

©2013 Xen Project, A Linux Foundation Collaborative Project. All Rights Reserved.
Linux Foundation is a registered trademark of The Linux Foundation.
Xen Project is a trademark of The Linux Foundation.

Rackspace

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.