From: Robin Murphy <robin.murphy@arm.com>
To: Jean-Philippe Brucker <jean-philippe.brucker@arm.com>,
bhelgaas@google.com, robh+dt@kernel.org, mark.rutland@arm.com
Cc: linux-pci@vger.kernel.org, Grant.Likely@arm.com,
Jeremy.Linton@arm.com, linux-arm-kernel@lists.infradead.org,
devicetree@vger.kernel.org
Subject: Re: [PATCH v2 1/2] dt-bindings: Add external-facing PCIe port property
Date: Fri, 5 Apr 2019 22:39:30 +0100 [thread overview]
Message-ID: <e81910c5-2cb9-a05c-dc32-cd407cf3029d@arm.com> (raw)
In-Reply-To: <20190402131548.41949-2-jean-philippe.brucker@arm.com>
On 2019-04-02 2:15 pm, Jean-Philippe Brucker wrote:
> Provide a way for the firmware to tell the OS which devices are external
> to the machine and therefore untrusted. The property can describe for
> example Thunderbolt and other user-accessible ports, which should always
> have the strongest IOMMU protection.
Reviewed-by: Robin Murphy <robin.murphy@arm.com>
> Signed-off-by: Jean-Philippe Brucker <jean-philippe.brucker@arm.com>
> ---
> Documentation/devicetree/bindings/pci/pci.txt | 50 +++++++++++++++++++
> 1 file changed, 50 insertions(+)
>
> diff --git a/Documentation/devicetree/bindings/pci/pci.txt b/Documentation/devicetree/bindings/pci/pci.txt
> index c77981c5dd18..92c01db610df 100644
> --- a/Documentation/devicetree/bindings/pci/pci.txt
> +++ b/Documentation/devicetree/bindings/pci/pci.txt
> @@ -24,3 +24,53 @@ driver implementation may support the following properties:
> unsupported link speed, for instance, trying to do training for
> unsupported link speed, etc. Must be '4' for gen4, '3' for gen3, '2'
> for gen2, and '1' for gen1. Any other values are invalid.
> +
> +PCI-PCI Bridge properties
> +-------------------------
> +
> +PCIe root ports and switch ports may be described explicitly in the device
> +tree, as children of the host bridge node. Even though those devices are
> +discoverable by probing, it might be necessary to describe properties that
> +aren't provided by standard PCIe capabilities.
> +
> +Required properties:
> +
> +- reg:
> + Identifies the PCI-PCI bridge. As defined in the IEEE Std 1275-1994
> + document, it is a five-cell address encoded as (phys.hi phys.mid
> + phys.lo size.hi size.lo). phys.hi should contain the device's BDF as
> + 0b00000000 bbbbbbbb dddddfff 00000000. The other cells should be zero.
> +
> + The bus number is defined by firmware, through the standard bridge
> + configuration mechanism. If this port is a switch port, then firmware
> + allocates the bus number and writes it into the Secondary Bus Number
> + register of the bridge directly above this port. Otherwise, the bus
> + number of a root port is the first number in the bus-range property,
> + defaulting to zero.
> +
> + If firmware leaves the ARI Forwarding Enable bit set in the bridge
> + above this port, then phys.hi contains the 8-bit function number as
> + 0b00000000 bbbbbbbb ffffffff 00000000. Note that the PCIe specification
> + recommends that firmware only leaves ARI enabled when it knows that the
> + OS is ARI-aware.
> +
> +Optional properties:
> +
> +- external-facing:
> + When present, the port is external-facing. All bridges and endpoints
> + downstream of this port are external to the machine. The OS can, for
> + example, use this information to identify devices that cannot be
> + trusted with relaxed DMA protection, as users could easily attach
> + malicious devices to this port.
> +
> +Example:
> +
> +pcie@10000000 {
> + compatible = "pci-host-ecam-generic";
> + ...
> + pcie@0008 {
> + /* Root port 00:01.0 is external-facing */
> + reg = <0x00000800 0 0 0 0>;
> + external-facing;
> + };
> +};
>
next prev parent reply other threads:[~2019-04-05 21:39 UTC|newest]
Thread overview: 9+ messages / expand[flat|nested] mbox.gz Atom feed top
2019-04-02 13:15 [PATCH v2 0/2] PCI: Describe external-facing ports in device tree Jean-Philippe Brucker
2019-04-02 13:15 ` [PATCH v2 1/2] dt-bindings: Add external-facing PCIe port property Jean-Philippe Brucker
2019-04-05 21:39 ` Robin Murphy [this message]
2019-04-06 6:06 ` Rob Herring
2019-04-02 13:15 ` [PATCH v2 2/2] PCI: OF: Support external-facing property Jean-Philippe Brucker
2019-04-05 21:18 ` Bjorn Helgaas
2019-04-05 21:28 ` Robin Murphy
2019-04-06 19:42 ` [PATCH v2 0/2] PCI: Describe external-facing ports in device tree Grant Likely
2019-04-09 23:11 ` Bjorn Helgaas
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=e81910c5-2cb9-a05c-dc32-cd407cf3029d@arm.com \
--to=robin.murphy@arm.com \
--cc=Grant.Likely@arm.com \
--cc=Jeremy.Linton@arm.com \
--cc=bhelgaas@google.com \
--cc=devicetree@vger.kernel.org \
--cc=jean-philippe.brucker@arm.com \
--cc=linux-arm-kernel@lists.infradead.org \
--cc=linux-pci@vger.kernel.org \
--cc=mark.rutland@arm.com \
--cc=robh+dt@kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).