zlacker

[parent] [thread] 3 comments
1. simcop+(OP)[view] [source] 2022-07-09 19:53:16
The iommu device is present on nearly all systems these days, even consumer ones. Intel calls it vt-d. The big issue is the device groupings that are setup by the firmware, and down stream pcie bridges. It's become more common because it's the only way to secure thunderbolt ports
replies(2): >>wtalli+Sm >>octobe+PW
2. wtalli+Sm[view] [source] 2022-07-09 22:53:56
>>simcop+(OP)
Yep, IOMMU support used to be one of those features Intel used for product segmentation, eg. disabling it on the -K overclockable CPUs while leaving it enabled on the counterparts with locked multipliers. Thunderbolt is what forced them to stop playing that game.
3. octobe+PW[view] [source] 2022-07-10 06:24:40
>>simcop+(OP)
> The iommu device is present on nearly all systems these days, even consumer ones.

Along with the IME device or PSP device, which conveniently get to bypass the iommu.

Finding machines with an iommu and without an IME/PSP/equivalent is remarkably difficult. It's basically modern POWER9, 2013-era Opterons, and one or two chromebook-grade Rockchip devices.

replies(1): >>fsflov+2W1
◧◩
4. fsflov+2W1[view] [source] [discussion] 2022-07-10 16:27:33
>>octobe+PW
IME is disabled and neutralized on my Librem 15, which runs Qubes flawlessly.
[go to top]