Bugzilla will be upgraded to version 5.0. The upgrade date is tentatively scheduled for 2 December 2018, pending final testing and feedback.
First Last Prev Next    This bug is not in your last search results.
Bug 1335825 - [RFE] IOMMU support in DPDK for Vhost-user using IOTLB caching
[RFE] IOMMU support in DPDK for Vhost-user using IOTLB caching
Status: CLOSED ERRATA
Product: Red Hat Enterprise Linux 7
Classification: Red Hat
Component: openvswitch (Show other bugs)
7.3
Unspecified Unspecified
medium Severity medium
: rc
: ---
Assigned To: Timothy Redaelli
Bob Fubel
Ioanna Gkioka
: FutureFeature
: 1283262 (view as bug list)
Depends On: 1451862
Blocks: 1477926 1283104 1288337 1522700
  Show dependency treegraph
 
Reported: 2016-05-13 06:07 EDT by Amnon Ilan
Modified: 2018-06-21 09:37 EDT (History)
12 users (show)

See Also:
Fixed In Version: openvswitch-2.9.0-19.el7fdp
Doc Type: Enhancement
Doc Text:
IOMMU support added in the DPDK Vhost-user backend This update adds IOMMU support in the Data Plane Development Kit (DPDK) Vhost-user backend and now guests can securely access host-user ports from user space. As a result, the guest Kernel or other processes in memory are protected against malicious Virtio-user space drivers.
Story Points: ---
Clone Of:
: 1451862 (view as bug list)
Environment:
Last Closed: 2018-06-21 09:36:35 EDT
Type: Bug
Regression: ---
Mount Type: ---
Documentation: ---
CRM:
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---

Attachments (Terms of Use)
Add an attachment (proposed patch, testcase, etc.)


External Trackers
Tracker ID Priority Status Summary Last Updated
Red Hat Product Errata RHBA-2018:1962 None None None 2018-06-21 09:37 EDT

  None (edit)
Description Amnon Ilan 2016-05-13 06:07:50 EDT 
DPDK should properly support IOMMU when using Vhost-user, in order to allow guests to securely access vhost-user ports from user space.
This will be implemented using the IOTLB caching approach in vhost user.
Comment 3 Amnon Ilan 2017-02-07 08:34:23 EST 
*** Bug 1283262 has been marked as a duplicate of this bug. ***
Comment 5 Maxime Coquelin 2017-08-31 08:31:30 EDT 
V1 of the series posted upstream:
http://dpdk.org/ml/archives/dev/2017-August/073918.html
Comment 6 Maxime Coquelin 2017-10-12 12:26:08 EDT 
Series merged upstream, will be in DPDK v17.11-rc1.
Comment 7 Maxime Coquelin 2018-01-09 04:46:33 EST 
The change being in DPDK's vhost-user library, moving to Openvswitch component.
The change is released in DPDK v17.11 LTS.
Comment 14 Ioanna Gkioka 2018-03-19 05:26:13 EDT 
The openvwitch component is delivered through the fast datapath channel, it is not documented in release notes.
Comment 16 Bob Fubel 2018-06-14 10:50:39 EDT 
Tested in openvswitch-2.9.0-37.el7fdp.x86_64
Bound vfio without the iommu override.
was able to pass traffic between nic's.

openvswitch-2.9.0-37.el7fdp.x86_64
[root@localhost ~]# rpm -qa |grep dpdk
dpdk-17.11-10.el7fdb.x86_64
dpdk-tools-17.11-10.el7fdb.x86_64
[root@localhost ~]# 

root@localhost ~]# dmesg |grep IOMMU
[    0.000000] DMAR: IOMMU enabled
[    0.155453] DMAR-IR: IOAPIC id 0 under DRHD base  0xfed90000 IOMMU 0
[root@localhost ~]# 

[root@localhost ~]# cat /sys/module/vfio/parameters/enable_unsafe_noiommu_mode
N


[root@localhost ~]# driverctl -v list-overrides
0000:00:03.0 vfio-pci (Virtio network device)
0000:00:09.0 vfio-pci (Virtio network device)
[root@localhost ~]# 

Passing traffic with Xena 2544 test suite.
Comment 18 errata-xmlrpc 2018-06-21 09:36:35 EDT 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHBA-2018:1962
Note You need to log in before you can comment on or make changes to this bug.
First Last Prev Next    This bug is not in your last search results.