Can you please stop spamming your nonsense in every thread? It wasn’t amusing the first time, and now its become really tiresome.

Yeah, you could at the least do it in a clever way, like:

Typo: whitelist -> allowlist 😅

What is this useful for? What devices use it?

Sounds like a nice feature with plenty of uses, but when attacks like Broadpwn* that can get around whitelisting by leveraging previously whitelisted devices I'm not sure it's a very good idea from a security perspective. Sort of like all the corners particularly Intel cut in it's branch prediction implementations causing the Spectre/Meltdown vulnerabilities.

*This attack takes over the network chip, which runs it's own minimalist but very much exploitable OS, and then leverages it's ability to do DMA for basically total access to basically everything on the system.

Various network and particularly compute use cases have a lot of use for it as it allows the devices to communicate directly with each other rather than having to rely on the CPU passing on messages/data at set times. Particularly multi-device high performance compute tasks can benefit greatly from this and having worked on GPU-based HPC jobs I can immediately think of a project where this would have been very useful.

Two pcie devices that want to transfer data directly to one another without going through system memory. E.g., between a video camera and a GPU for video encoding/decoding or a GPU and an RDMA NIC for large machine learning clusters.

IOMMU exists on serious platforms (also ARM has its own thing). With that enabled it should have no access to the full RAM, and see only its allocated RAM space, or the RAM space of another device it is sharing stuff with.

Then again, IOMMU can and did have bugs and issues in the past on some hardware.

How to know if a Cpu supports this capability?