Re: [PATCH 4/6] iommu: Combine device strictness requests with the global default

From: Doug Anderson
Date: Tue Jun 22 2021 - 12:40:55 EST


Hi,

On Mon, Jun 21, 2021 at 7:56 PM Saravana Kannan <saravanak@xxxxxxxxxx> wrote:
>
> On Mon, Jun 21, 2021 at 4:53 PM Douglas Anderson <dianders@xxxxxxxxxxxx> wrote:
> >
> > In the patch ("drivers: base: Add bits to struct device to control
> > iommu strictness") we add the ability for devices to tell us about
> > their IOMMU strictness requirements. Let's now take that into account
> > in the IOMMU layer.
> >
> > A few notes here:
> > * Presumably this is always how iommu_get_dma_strict() was intended to
> > behave. Had this not been the intention then it never would have
> > taken a domain as a parameter.
> > * The iommu_set_dma_strict() feels awfully non-symmetric now. That
> > function sets the _default_ strictness globally in the system
> > whereas iommu_get_dma_strict() returns the value for a given domain
> > (falling back to the default). Presumably, at least, the fact that
> > iommu_set_dma_strict() doesn't take a domain makes this obvious.
> >
> > The function iommu_get_dma_strict() should now make it super obvious
> > where strictness comes from and who overides who. Though the function
> > changed a bunch to make the logic clearer, the only two new rules
> > should be:
> > * Devices can force strictness for themselves, overriding the cmdline
> > "iommu.strict=0" or a call to iommu_set_dma_strict(false)).
> > * Devices can request non-strictness for themselves, assuming there
> > was no cmdline "iommu.strict=1" or a call to
> > iommu_set_dma_strict(true).
> >
> > Signed-off-by: Douglas Anderson <dianders@xxxxxxxxxxxx>
> > ---
> >
> > drivers/iommu/iommu.c | 56 +++++++++++++++++++++++++++++++++----------
> > include/linux/iommu.h | 2 ++
> > 2 files changed, 45 insertions(+), 13 deletions(-)
> >
> > diff --git a/drivers/iommu/iommu.c b/drivers/iommu/iommu.c
> > index 808ab70d5df5..0c84a4c06110 100644
> > --- a/drivers/iommu/iommu.c
> > +++ b/drivers/iommu/iommu.c
> > @@ -28,8 +28,19 @@
> > static struct kset *iommu_group_kset;
> > static DEFINE_IDA(iommu_group_ida);
> >
> > +enum iommu_strictness {
> > + IOMMU_DEFAULT_STRICTNESS = -1,
> > + IOMMU_NOT_STRICT = 0,
> > + IOMMU_STRICT = 1,
> > +};
> > +static inline enum iommu_strictness bool_to_strictness(bool strictness)
> > +{
> > + return (enum iommu_strictness)strictness;
> > +}
> > +
> > static unsigned int iommu_def_domain_type __read_mostly;
> > -static bool iommu_dma_strict __read_mostly = true;
> > +static enum iommu_strictness cmdline_dma_strict __read_mostly = IOMMU_DEFAULT_STRICTNESS;
> > +static enum iommu_strictness driver_dma_strict __read_mostly = IOMMU_DEFAULT_STRICTNESS;
> > static u32 iommu_cmd_line __read_mostly;
> >
> > struct iommu_group {
> > @@ -69,7 +80,6 @@ static const char * const iommu_group_resv_type_string[] = {
> > };
> >
> > #define IOMMU_CMD_LINE_DMA_API BIT(0)
> > -#define IOMMU_CMD_LINE_STRICT BIT(1)
> >
> > static int iommu_alloc_default_domain(struct iommu_group *group,
> > struct device *dev);
> > @@ -336,25 +346,38 @@ early_param("iommu.passthrough", iommu_set_def_domain_type);
> >
> > static int __init iommu_dma_setup(char *str)
> > {
> > - int ret = kstrtobool(str, &iommu_dma_strict);
> > + bool strict;
> > + int ret = kstrtobool(str, &strict);
> >
> > if (!ret)
> > - iommu_cmd_line |= IOMMU_CMD_LINE_STRICT;
> > + cmdline_dma_strict = bool_to_strictness(strict);
> > return ret;
> > }
> > early_param("iommu.strict", iommu_dma_setup);
> >
> > void iommu_set_dma_strict(bool strict)
> > {
> > - if (strict || !(iommu_cmd_line & IOMMU_CMD_LINE_STRICT))
> > - iommu_dma_strict = strict;
> > + /* A driver can request strictness but not the other way around */
> > + if (driver_dma_strict != IOMMU_STRICT)
> > + driver_dma_strict = bool_to_strictness(strict);
> > }
> >
> > bool iommu_get_dma_strict(struct iommu_domain *domain)
> > {
> > - /* only allow lazy flushing for DMA domains */
> > - if (domain->type == IOMMU_DOMAIN_DMA)
> > - return iommu_dma_strict;
> > + /* Non-DMA domains or anyone forcing it to strict makes it strict */
> > + if (domain->type != IOMMU_DOMAIN_DMA ||
> > + cmdline_dma_strict == IOMMU_STRICT ||
> > + driver_dma_strict == IOMMU_STRICT ||
> > + domain->force_strict)
> > + return true;
> > +
> > + /* Anyone requesting non-strict (if no forces) makes it non-strict */
> > + if (cmdline_dma_strict == IOMMU_NOT_STRICT ||
> > + driver_dma_strict == IOMMU_NOT_STRICT ||
> > + domain->request_non_strict)
> > + return false;
> > +
> > + /* Nobody said anything, so it's strict by default */
>
> If iommu.strict is not set in the command line, upstream treats it as
> iommu.strict=1. Meaning, no drivers can override it.
>
> If I understand it correctly, with your series, if iommu.strict=1 is
> not set, drivers can override the "default strict mode" and ask for
> non-strict mode for their domain. So if this series gets in and future
> driver changes start asking for non-strict mode, systems that are
> expected to operate in fully strict mode will now have devices
> operating in non-strict mode.
>
> That's breaking backward compatibility for the kernel command line
> param. It looks like what you really need is to change iommu.strict
> from 0/1 to lazy (previously 0), strict preferred, strict enforced
> (previously 1) and you need to default it to "enforced".

I'm not quite sure I'd agree, but certainly it could be up for debate.
I think I'm keeping full compatibility with the kernel command line
parameter, specifically:

* iommu.strict=0: default to non-strict mode unless a driver overrides

* iommu.strict=1: force everything to strict no matter what

...both of those two things are the same before and after my patchset.

You're arguing that I'm changing the behavior of the system when no
command line parameter is present. To me this seems a little bit of a
stretch. If no command line parameter is present I'd assert that the
kernel should do some sort of sane behavior and that we don't have to
force 100% strictness if the command line parameter isn't present at
all.

I would also note that your assertion that the system is 100% strict
under the "no command line parameter" case isn't actually true as far
as I can tell. The code in mainline is a little hard to follow (for me
the code after my patch is easier to follow), but you can see that
even before my patch a call to iommu_set_dma_strict() could be used to
make the system non-strict if no command-line parameter was passed.


> Alternately (and potentially a better option?), you really should be
> changing/extending dev_is_untrusted() so that it applies for any
> struct device (not just PCI device) and then have this overridden in
> DT (or ACPI or any firmware) to indicate a specific device is safe to
> use non-strict mode on.

I was really trying _not_ to do that. I believe this has been talked
about several times, including at last year's Linux Plumbers
conference. As far as I can tell it always ends in a shouting match w/
no forward progress. There are a bunch of problems here, namely:

* Trust isn't necessarily binary. There might be peripherals that you
sort-of trust, others that you really trust, and others that you don't
trust at all. For the ones you sort-of trust there may be some things
you trust about them and other things you don't trust about them.

* The firmware isn't necessarily the best arbitrar of trust. For
instance, if the company that employs me (Google) compiled their own
firmware for a given peripheral device and they were convinced that
the peripheral firmware couldn't be compromised any more easily than
code running in the kernel itself, they might assert that the
peripheral device should be "trusted". An individual Linux hacker,
however, might not really trust the firmware blob that Google provides
and might want the device to be "untrusted".

* In the PCI subsystem I believe that "trusted" vs "untrusted" is
generally associated with whether a device is soldered down onto the
board or in some type of slot (the "external" concept). That's been
working OK for them, I think, but I'm not convinced it'd be easy to
apply everywhere. One example problem: what do you do about SD cards?
The thing doing the DMA (the SDHCI controller) is certainly "internal"
but the cards are "external". I'm making the argument in my series
that SDHCI should be considered at least trusted enough to use
non-strict DMA, but it's still technically "external" and you wouldn't
necessarily, for instance, trust the filesystem structure not to be
crafted in a malicious way so as to exploit the kernel.

> What you are trying to capture (if the device
> safe enough) really isn't a function of the DMA device's driver, but a
> function of the DMA device.

It's a function of the DMA device, but the entity in the kernel with
the most knowledge about this is the device's driver. The driver also
has the best ability to make informed decisions, perhaps looking at
the device's properties (like the "non-removable" one for SD/MMC) to
help make decisions without us having to create a new property to
describe trust and then argue about who sets it and when.

-Doug