18c2ecf20Sopenharmony_ci// SPDX-License-Identifier: GPL-2.0 28c2ecf20Sopenharmony_ci/* 38c2ecf20Sopenharmony_ci * Physical device callbacks for vfio_ccw 48c2ecf20Sopenharmony_ci * 58c2ecf20Sopenharmony_ci * Copyright IBM Corp. 2017 68c2ecf20Sopenharmony_ci * Copyright Red Hat, Inc. 2019 78c2ecf20Sopenharmony_ci * 88c2ecf20Sopenharmony_ci * Author(s): Dong Jia Shi <bjsdjshi@linux.vnet.ibm.com> 98c2ecf20Sopenharmony_ci * Xiao Feng Ren <renxiaof@linux.vnet.ibm.com> 108c2ecf20Sopenharmony_ci * Cornelia Huck <cohuck@redhat.com> 118c2ecf20Sopenharmony_ci */ 128c2ecf20Sopenharmony_ci 138c2ecf20Sopenharmony_ci#include <linux/vfio.h> 148c2ecf20Sopenharmony_ci#include <linux/mdev.h> 158c2ecf20Sopenharmony_ci#include <linux/nospec.h> 168c2ecf20Sopenharmony_ci#include <linux/slab.h> 178c2ecf20Sopenharmony_ci 188c2ecf20Sopenharmony_ci#include "vfio_ccw_private.h" 198c2ecf20Sopenharmony_ci 208c2ecf20Sopenharmony_cistatic int vfio_ccw_mdev_reset(struct mdev_device *mdev) 218c2ecf20Sopenharmony_ci{ 228c2ecf20Sopenharmony_ci struct vfio_ccw_private *private; 238c2ecf20Sopenharmony_ci struct subchannel *sch; 248c2ecf20Sopenharmony_ci int ret; 258c2ecf20Sopenharmony_ci 268c2ecf20Sopenharmony_ci private = dev_get_drvdata(mdev_parent_dev(mdev)); 278c2ecf20Sopenharmony_ci sch = private->sch; 288c2ecf20Sopenharmony_ci /* 298c2ecf20Sopenharmony_ci * TODO: 308c2ecf20Sopenharmony_ci * In the cureent stage, some things like "no I/O running" and "no 318c2ecf20Sopenharmony_ci * interrupt pending" are clear, but we are not sure what other state 328c2ecf20Sopenharmony_ci * we need to care about. 338c2ecf20Sopenharmony_ci * There are still a lot more instructions need to be handled. We 348c2ecf20Sopenharmony_ci * should come back here later. 358c2ecf20Sopenharmony_ci */ 368c2ecf20Sopenharmony_ci ret = vfio_ccw_sch_quiesce(sch); 378c2ecf20Sopenharmony_ci if (ret) 388c2ecf20Sopenharmony_ci return ret; 398c2ecf20Sopenharmony_ci 408c2ecf20Sopenharmony_ci ret = cio_enable_subchannel(sch, (u32)(unsigned long)sch); 418c2ecf20Sopenharmony_ci if (!ret) 428c2ecf20Sopenharmony_ci private->state = VFIO_CCW_STATE_IDLE; 438c2ecf20Sopenharmony_ci 448c2ecf20Sopenharmony_ci return ret; 458c2ecf20Sopenharmony_ci} 468c2ecf20Sopenharmony_ci 478c2ecf20Sopenharmony_cistatic int vfio_ccw_mdev_notifier(struct notifier_block *nb, 488c2ecf20Sopenharmony_ci unsigned long action, 498c2ecf20Sopenharmony_ci void *data) 508c2ecf20Sopenharmony_ci{ 518c2ecf20Sopenharmony_ci struct vfio_ccw_private *private = 528c2ecf20Sopenharmony_ci container_of(nb, struct vfio_ccw_private, nb); 538c2ecf20Sopenharmony_ci 548c2ecf20Sopenharmony_ci /* 558c2ecf20Sopenharmony_ci * Vendor drivers MUST unpin pages in response to an 568c2ecf20Sopenharmony_ci * invalidation. 578c2ecf20Sopenharmony_ci */ 588c2ecf20Sopenharmony_ci if (action == VFIO_IOMMU_NOTIFY_DMA_UNMAP) { 598c2ecf20Sopenharmony_ci struct vfio_iommu_type1_dma_unmap *unmap = data; 608c2ecf20Sopenharmony_ci 618c2ecf20Sopenharmony_ci if (!cp_iova_pinned(&private->cp, unmap->iova)) 628c2ecf20Sopenharmony_ci return NOTIFY_OK; 638c2ecf20Sopenharmony_ci 648c2ecf20Sopenharmony_ci if (vfio_ccw_mdev_reset(private->mdev)) 658c2ecf20Sopenharmony_ci return NOTIFY_BAD; 668c2ecf20Sopenharmony_ci 678c2ecf20Sopenharmony_ci cp_free(&private->cp); 688c2ecf20Sopenharmony_ci return NOTIFY_OK; 698c2ecf20Sopenharmony_ci } 708c2ecf20Sopenharmony_ci 718c2ecf20Sopenharmony_ci return NOTIFY_DONE; 728c2ecf20Sopenharmony_ci} 738c2ecf20Sopenharmony_ci 748c2ecf20Sopenharmony_cistatic ssize_t name_show(struct kobject *kobj, struct device *dev, char *buf) 758c2ecf20Sopenharmony_ci{ 768c2ecf20Sopenharmony_ci return sprintf(buf, "I/O subchannel (Non-QDIO)\n"); 778c2ecf20Sopenharmony_ci} 788c2ecf20Sopenharmony_cistatic MDEV_TYPE_ATTR_RO(name); 798c2ecf20Sopenharmony_ci 808c2ecf20Sopenharmony_cistatic ssize_t device_api_show(struct kobject *kobj, struct device *dev, 818c2ecf20Sopenharmony_ci char *buf) 828c2ecf20Sopenharmony_ci{ 838c2ecf20Sopenharmony_ci return sprintf(buf, "%s\n", VFIO_DEVICE_API_CCW_STRING); 848c2ecf20Sopenharmony_ci} 858c2ecf20Sopenharmony_cistatic MDEV_TYPE_ATTR_RO(device_api); 868c2ecf20Sopenharmony_ci 878c2ecf20Sopenharmony_cistatic ssize_t available_instances_show(struct kobject *kobj, 888c2ecf20Sopenharmony_ci struct device *dev, char *buf) 898c2ecf20Sopenharmony_ci{ 908c2ecf20Sopenharmony_ci struct vfio_ccw_private *private = dev_get_drvdata(dev); 918c2ecf20Sopenharmony_ci 928c2ecf20Sopenharmony_ci return sprintf(buf, "%d\n", atomic_read(&private->avail)); 938c2ecf20Sopenharmony_ci} 948c2ecf20Sopenharmony_cistatic MDEV_TYPE_ATTR_RO(available_instances); 958c2ecf20Sopenharmony_ci 968c2ecf20Sopenharmony_cistatic struct attribute *mdev_types_attrs[] = { 978c2ecf20Sopenharmony_ci &mdev_type_attr_name.attr, 988c2ecf20Sopenharmony_ci &mdev_type_attr_device_api.attr, 998c2ecf20Sopenharmony_ci &mdev_type_attr_available_instances.attr, 1008c2ecf20Sopenharmony_ci NULL, 1018c2ecf20Sopenharmony_ci}; 1028c2ecf20Sopenharmony_ci 1038c2ecf20Sopenharmony_cistatic struct attribute_group mdev_type_group = { 1048c2ecf20Sopenharmony_ci .name = "io", 1058c2ecf20Sopenharmony_ci .attrs = mdev_types_attrs, 1068c2ecf20Sopenharmony_ci}; 1078c2ecf20Sopenharmony_ci 1088c2ecf20Sopenharmony_cistatic struct attribute_group *mdev_type_groups[] = { 1098c2ecf20Sopenharmony_ci &mdev_type_group, 1108c2ecf20Sopenharmony_ci NULL, 1118c2ecf20Sopenharmony_ci}; 1128c2ecf20Sopenharmony_ci 1138c2ecf20Sopenharmony_cistatic int vfio_ccw_mdev_create(struct kobject *kobj, struct mdev_device *mdev) 1148c2ecf20Sopenharmony_ci{ 1158c2ecf20Sopenharmony_ci struct vfio_ccw_private *private = 1168c2ecf20Sopenharmony_ci dev_get_drvdata(mdev_parent_dev(mdev)); 1178c2ecf20Sopenharmony_ci 1188c2ecf20Sopenharmony_ci if (private->state == VFIO_CCW_STATE_NOT_OPER) 1198c2ecf20Sopenharmony_ci return -ENODEV; 1208c2ecf20Sopenharmony_ci 1218c2ecf20Sopenharmony_ci if (atomic_dec_if_positive(&private->avail) < 0) 1228c2ecf20Sopenharmony_ci return -EPERM; 1238c2ecf20Sopenharmony_ci 1248c2ecf20Sopenharmony_ci private->mdev = mdev; 1258c2ecf20Sopenharmony_ci private->state = VFIO_CCW_STATE_IDLE; 1268c2ecf20Sopenharmony_ci 1278c2ecf20Sopenharmony_ci VFIO_CCW_MSG_EVENT(2, "mdev %pUl, sch %x.%x.%04x: create\n", 1288c2ecf20Sopenharmony_ci mdev_uuid(mdev), private->sch->schid.cssid, 1298c2ecf20Sopenharmony_ci private->sch->schid.ssid, 1308c2ecf20Sopenharmony_ci private->sch->schid.sch_no); 1318c2ecf20Sopenharmony_ci 1328c2ecf20Sopenharmony_ci return 0; 1338c2ecf20Sopenharmony_ci} 1348c2ecf20Sopenharmony_ci 1358c2ecf20Sopenharmony_cistatic int vfio_ccw_mdev_remove(struct mdev_device *mdev) 1368c2ecf20Sopenharmony_ci{ 1378c2ecf20Sopenharmony_ci struct vfio_ccw_private *private = 1388c2ecf20Sopenharmony_ci dev_get_drvdata(mdev_parent_dev(mdev)); 1398c2ecf20Sopenharmony_ci 1408c2ecf20Sopenharmony_ci VFIO_CCW_MSG_EVENT(2, "mdev %pUl, sch %x.%x.%04x: remove\n", 1418c2ecf20Sopenharmony_ci mdev_uuid(mdev), private->sch->schid.cssid, 1428c2ecf20Sopenharmony_ci private->sch->schid.ssid, 1438c2ecf20Sopenharmony_ci private->sch->schid.sch_no); 1448c2ecf20Sopenharmony_ci 1458c2ecf20Sopenharmony_ci if ((private->state != VFIO_CCW_STATE_NOT_OPER) && 1468c2ecf20Sopenharmony_ci (private->state != VFIO_CCW_STATE_STANDBY)) { 1478c2ecf20Sopenharmony_ci if (!vfio_ccw_sch_quiesce(private->sch)) 1488c2ecf20Sopenharmony_ci private->state = VFIO_CCW_STATE_STANDBY; 1498c2ecf20Sopenharmony_ci /* The state will be NOT_OPER on error. */ 1508c2ecf20Sopenharmony_ci } 1518c2ecf20Sopenharmony_ci 1528c2ecf20Sopenharmony_ci cp_free(&private->cp); 1538c2ecf20Sopenharmony_ci private->mdev = NULL; 1548c2ecf20Sopenharmony_ci atomic_inc(&private->avail); 1558c2ecf20Sopenharmony_ci 1568c2ecf20Sopenharmony_ci return 0; 1578c2ecf20Sopenharmony_ci} 1588c2ecf20Sopenharmony_ci 1598c2ecf20Sopenharmony_cistatic int vfio_ccw_mdev_open(struct mdev_device *mdev) 1608c2ecf20Sopenharmony_ci{ 1618c2ecf20Sopenharmony_ci struct vfio_ccw_private *private = 1628c2ecf20Sopenharmony_ci dev_get_drvdata(mdev_parent_dev(mdev)); 1638c2ecf20Sopenharmony_ci unsigned long events = VFIO_IOMMU_NOTIFY_DMA_UNMAP; 1648c2ecf20Sopenharmony_ci int ret; 1658c2ecf20Sopenharmony_ci 1668c2ecf20Sopenharmony_ci private->nb.notifier_call = vfio_ccw_mdev_notifier; 1678c2ecf20Sopenharmony_ci 1688c2ecf20Sopenharmony_ci ret = vfio_register_notifier(mdev_dev(mdev), VFIO_IOMMU_NOTIFY, 1698c2ecf20Sopenharmony_ci &events, &private->nb); 1708c2ecf20Sopenharmony_ci if (ret) 1718c2ecf20Sopenharmony_ci return ret; 1728c2ecf20Sopenharmony_ci 1738c2ecf20Sopenharmony_ci ret = vfio_ccw_register_async_dev_regions(private); 1748c2ecf20Sopenharmony_ci if (ret) 1758c2ecf20Sopenharmony_ci goto out_unregister; 1768c2ecf20Sopenharmony_ci 1778c2ecf20Sopenharmony_ci ret = vfio_ccw_register_schib_dev_regions(private); 1788c2ecf20Sopenharmony_ci if (ret) 1798c2ecf20Sopenharmony_ci goto out_unregister; 1808c2ecf20Sopenharmony_ci 1818c2ecf20Sopenharmony_ci ret = vfio_ccw_register_crw_dev_regions(private); 1828c2ecf20Sopenharmony_ci if (ret) 1838c2ecf20Sopenharmony_ci goto out_unregister; 1848c2ecf20Sopenharmony_ci 1858c2ecf20Sopenharmony_ci return ret; 1868c2ecf20Sopenharmony_ci 1878c2ecf20Sopenharmony_ciout_unregister: 1888c2ecf20Sopenharmony_ci vfio_ccw_unregister_dev_regions(private); 1898c2ecf20Sopenharmony_ci vfio_unregister_notifier(mdev_dev(mdev), VFIO_IOMMU_NOTIFY, 1908c2ecf20Sopenharmony_ci &private->nb); 1918c2ecf20Sopenharmony_ci return ret; 1928c2ecf20Sopenharmony_ci} 1938c2ecf20Sopenharmony_ci 1948c2ecf20Sopenharmony_cistatic void vfio_ccw_mdev_release(struct mdev_device *mdev) 1958c2ecf20Sopenharmony_ci{ 1968c2ecf20Sopenharmony_ci struct vfio_ccw_private *private = 1978c2ecf20Sopenharmony_ci dev_get_drvdata(mdev_parent_dev(mdev)); 1988c2ecf20Sopenharmony_ci 1998c2ecf20Sopenharmony_ci if ((private->state != VFIO_CCW_STATE_NOT_OPER) && 2008c2ecf20Sopenharmony_ci (private->state != VFIO_CCW_STATE_STANDBY)) { 2018c2ecf20Sopenharmony_ci if (!vfio_ccw_mdev_reset(mdev)) 2028c2ecf20Sopenharmony_ci private->state = VFIO_CCW_STATE_STANDBY; 2038c2ecf20Sopenharmony_ci /* The state will be NOT_OPER on error. */ 2048c2ecf20Sopenharmony_ci } 2058c2ecf20Sopenharmony_ci 2068c2ecf20Sopenharmony_ci cp_free(&private->cp); 2078c2ecf20Sopenharmony_ci vfio_ccw_unregister_dev_regions(private); 2088c2ecf20Sopenharmony_ci vfio_unregister_notifier(mdev_dev(mdev), VFIO_IOMMU_NOTIFY, 2098c2ecf20Sopenharmony_ci &private->nb); 2108c2ecf20Sopenharmony_ci} 2118c2ecf20Sopenharmony_ci 2128c2ecf20Sopenharmony_cistatic ssize_t vfio_ccw_mdev_read_io_region(struct vfio_ccw_private *private, 2138c2ecf20Sopenharmony_ci char __user *buf, size_t count, 2148c2ecf20Sopenharmony_ci loff_t *ppos) 2158c2ecf20Sopenharmony_ci{ 2168c2ecf20Sopenharmony_ci loff_t pos = *ppos & VFIO_CCW_OFFSET_MASK; 2178c2ecf20Sopenharmony_ci struct ccw_io_region *region; 2188c2ecf20Sopenharmony_ci int ret; 2198c2ecf20Sopenharmony_ci 2208c2ecf20Sopenharmony_ci if (pos + count > sizeof(*region)) 2218c2ecf20Sopenharmony_ci return -EINVAL; 2228c2ecf20Sopenharmony_ci 2238c2ecf20Sopenharmony_ci mutex_lock(&private->io_mutex); 2248c2ecf20Sopenharmony_ci region = private->io_region; 2258c2ecf20Sopenharmony_ci if (copy_to_user(buf, (void *)region + pos, count)) 2268c2ecf20Sopenharmony_ci ret = -EFAULT; 2278c2ecf20Sopenharmony_ci else 2288c2ecf20Sopenharmony_ci ret = count; 2298c2ecf20Sopenharmony_ci mutex_unlock(&private->io_mutex); 2308c2ecf20Sopenharmony_ci return ret; 2318c2ecf20Sopenharmony_ci} 2328c2ecf20Sopenharmony_ci 2338c2ecf20Sopenharmony_cistatic ssize_t vfio_ccw_mdev_read(struct mdev_device *mdev, 2348c2ecf20Sopenharmony_ci char __user *buf, 2358c2ecf20Sopenharmony_ci size_t count, 2368c2ecf20Sopenharmony_ci loff_t *ppos) 2378c2ecf20Sopenharmony_ci{ 2388c2ecf20Sopenharmony_ci unsigned int index = VFIO_CCW_OFFSET_TO_INDEX(*ppos); 2398c2ecf20Sopenharmony_ci struct vfio_ccw_private *private; 2408c2ecf20Sopenharmony_ci 2418c2ecf20Sopenharmony_ci private = dev_get_drvdata(mdev_parent_dev(mdev)); 2428c2ecf20Sopenharmony_ci 2438c2ecf20Sopenharmony_ci if (index >= VFIO_CCW_NUM_REGIONS + private->num_regions) 2448c2ecf20Sopenharmony_ci return -EINVAL; 2458c2ecf20Sopenharmony_ci 2468c2ecf20Sopenharmony_ci switch (index) { 2478c2ecf20Sopenharmony_ci case VFIO_CCW_CONFIG_REGION_INDEX: 2488c2ecf20Sopenharmony_ci return vfio_ccw_mdev_read_io_region(private, buf, count, ppos); 2498c2ecf20Sopenharmony_ci default: 2508c2ecf20Sopenharmony_ci index -= VFIO_CCW_NUM_REGIONS; 2518c2ecf20Sopenharmony_ci return private->region[index].ops->read(private, buf, count, 2528c2ecf20Sopenharmony_ci ppos); 2538c2ecf20Sopenharmony_ci } 2548c2ecf20Sopenharmony_ci 2558c2ecf20Sopenharmony_ci return -EINVAL; 2568c2ecf20Sopenharmony_ci} 2578c2ecf20Sopenharmony_ci 2588c2ecf20Sopenharmony_cistatic ssize_t vfio_ccw_mdev_write_io_region(struct vfio_ccw_private *private, 2598c2ecf20Sopenharmony_ci const char __user *buf, 2608c2ecf20Sopenharmony_ci size_t count, loff_t *ppos) 2618c2ecf20Sopenharmony_ci{ 2628c2ecf20Sopenharmony_ci loff_t pos = *ppos & VFIO_CCW_OFFSET_MASK; 2638c2ecf20Sopenharmony_ci struct ccw_io_region *region; 2648c2ecf20Sopenharmony_ci int ret; 2658c2ecf20Sopenharmony_ci 2668c2ecf20Sopenharmony_ci if (pos + count > sizeof(*region)) 2678c2ecf20Sopenharmony_ci return -EINVAL; 2688c2ecf20Sopenharmony_ci 2698c2ecf20Sopenharmony_ci if (!mutex_trylock(&private->io_mutex)) 2708c2ecf20Sopenharmony_ci return -EAGAIN; 2718c2ecf20Sopenharmony_ci 2728c2ecf20Sopenharmony_ci region = private->io_region; 2738c2ecf20Sopenharmony_ci if (copy_from_user((void *)region + pos, buf, count)) { 2748c2ecf20Sopenharmony_ci ret = -EFAULT; 2758c2ecf20Sopenharmony_ci goto out_unlock; 2768c2ecf20Sopenharmony_ci } 2778c2ecf20Sopenharmony_ci 2788c2ecf20Sopenharmony_ci vfio_ccw_fsm_event(private, VFIO_CCW_EVENT_IO_REQ); 2798c2ecf20Sopenharmony_ci ret = (region->ret_code != 0) ? region->ret_code : count; 2808c2ecf20Sopenharmony_ci 2818c2ecf20Sopenharmony_ciout_unlock: 2828c2ecf20Sopenharmony_ci mutex_unlock(&private->io_mutex); 2838c2ecf20Sopenharmony_ci return ret; 2848c2ecf20Sopenharmony_ci} 2858c2ecf20Sopenharmony_ci 2868c2ecf20Sopenharmony_cistatic ssize_t vfio_ccw_mdev_write(struct mdev_device *mdev, 2878c2ecf20Sopenharmony_ci const char __user *buf, 2888c2ecf20Sopenharmony_ci size_t count, 2898c2ecf20Sopenharmony_ci loff_t *ppos) 2908c2ecf20Sopenharmony_ci{ 2918c2ecf20Sopenharmony_ci unsigned int index = VFIO_CCW_OFFSET_TO_INDEX(*ppos); 2928c2ecf20Sopenharmony_ci struct vfio_ccw_private *private; 2938c2ecf20Sopenharmony_ci 2948c2ecf20Sopenharmony_ci private = dev_get_drvdata(mdev_parent_dev(mdev)); 2958c2ecf20Sopenharmony_ci 2968c2ecf20Sopenharmony_ci if (index >= VFIO_CCW_NUM_REGIONS + private->num_regions) 2978c2ecf20Sopenharmony_ci return -EINVAL; 2988c2ecf20Sopenharmony_ci 2998c2ecf20Sopenharmony_ci switch (index) { 3008c2ecf20Sopenharmony_ci case VFIO_CCW_CONFIG_REGION_INDEX: 3018c2ecf20Sopenharmony_ci return vfio_ccw_mdev_write_io_region(private, buf, count, ppos); 3028c2ecf20Sopenharmony_ci default: 3038c2ecf20Sopenharmony_ci index -= VFIO_CCW_NUM_REGIONS; 3048c2ecf20Sopenharmony_ci return private->region[index].ops->write(private, buf, count, 3058c2ecf20Sopenharmony_ci ppos); 3068c2ecf20Sopenharmony_ci } 3078c2ecf20Sopenharmony_ci 3088c2ecf20Sopenharmony_ci return -EINVAL; 3098c2ecf20Sopenharmony_ci} 3108c2ecf20Sopenharmony_ci 3118c2ecf20Sopenharmony_cistatic int vfio_ccw_mdev_get_device_info(struct vfio_device_info *info, 3128c2ecf20Sopenharmony_ci struct mdev_device *mdev) 3138c2ecf20Sopenharmony_ci{ 3148c2ecf20Sopenharmony_ci struct vfio_ccw_private *private; 3158c2ecf20Sopenharmony_ci 3168c2ecf20Sopenharmony_ci private = dev_get_drvdata(mdev_parent_dev(mdev)); 3178c2ecf20Sopenharmony_ci info->flags = VFIO_DEVICE_FLAGS_CCW | VFIO_DEVICE_FLAGS_RESET; 3188c2ecf20Sopenharmony_ci info->num_regions = VFIO_CCW_NUM_REGIONS + private->num_regions; 3198c2ecf20Sopenharmony_ci info->num_irqs = VFIO_CCW_NUM_IRQS; 3208c2ecf20Sopenharmony_ci 3218c2ecf20Sopenharmony_ci return 0; 3228c2ecf20Sopenharmony_ci} 3238c2ecf20Sopenharmony_ci 3248c2ecf20Sopenharmony_cistatic int vfio_ccw_mdev_get_region_info(struct vfio_region_info *info, 3258c2ecf20Sopenharmony_ci struct mdev_device *mdev, 3268c2ecf20Sopenharmony_ci unsigned long arg) 3278c2ecf20Sopenharmony_ci{ 3288c2ecf20Sopenharmony_ci struct vfio_ccw_private *private; 3298c2ecf20Sopenharmony_ci int i; 3308c2ecf20Sopenharmony_ci 3318c2ecf20Sopenharmony_ci private = dev_get_drvdata(mdev_parent_dev(mdev)); 3328c2ecf20Sopenharmony_ci switch (info->index) { 3338c2ecf20Sopenharmony_ci case VFIO_CCW_CONFIG_REGION_INDEX: 3348c2ecf20Sopenharmony_ci info->offset = 0; 3358c2ecf20Sopenharmony_ci info->size = sizeof(struct ccw_io_region); 3368c2ecf20Sopenharmony_ci info->flags = VFIO_REGION_INFO_FLAG_READ 3378c2ecf20Sopenharmony_ci | VFIO_REGION_INFO_FLAG_WRITE; 3388c2ecf20Sopenharmony_ci return 0; 3398c2ecf20Sopenharmony_ci default: /* all other regions are handled via capability chain */ 3408c2ecf20Sopenharmony_ci { 3418c2ecf20Sopenharmony_ci struct vfio_info_cap caps = { .buf = NULL, .size = 0 }; 3428c2ecf20Sopenharmony_ci struct vfio_region_info_cap_type cap_type = { 3438c2ecf20Sopenharmony_ci .header.id = VFIO_REGION_INFO_CAP_TYPE, 3448c2ecf20Sopenharmony_ci .header.version = 1 }; 3458c2ecf20Sopenharmony_ci int ret; 3468c2ecf20Sopenharmony_ci 3478c2ecf20Sopenharmony_ci if (info->index >= 3488c2ecf20Sopenharmony_ci VFIO_CCW_NUM_REGIONS + private->num_regions) 3498c2ecf20Sopenharmony_ci return -EINVAL; 3508c2ecf20Sopenharmony_ci 3518c2ecf20Sopenharmony_ci info->index = array_index_nospec(info->index, 3528c2ecf20Sopenharmony_ci VFIO_CCW_NUM_REGIONS + 3538c2ecf20Sopenharmony_ci private->num_regions); 3548c2ecf20Sopenharmony_ci 3558c2ecf20Sopenharmony_ci i = info->index - VFIO_CCW_NUM_REGIONS; 3568c2ecf20Sopenharmony_ci 3578c2ecf20Sopenharmony_ci info->offset = VFIO_CCW_INDEX_TO_OFFSET(info->index); 3588c2ecf20Sopenharmony_ci info->size = private->region[i].size; 3598c2ecf20Sopenharmony_ci info->flags = private->region[i].flags; 3608c2ecf20Sopenharmony_ci 3618c2ecf20Sopenharmony_ci cap_type.type = private->region[i].type; 3628c2ecf20Sopenharmony_ci cap_type.subtype = private->region[i].subtype; 3638c2ecf20Sopenharmony_ci 3648c2ecf20Sopenharmony_ci ret = vfio_info_add_capability(&caps, &cap_type.header, 3658c2ecf20Sopenharmony_ci sizeof(cap_type)); 3668c2ecf20Sopenharmony_ci if (ret) 3678c2ecf20Sopenharmony_ci return ret; 3688c2ecf20Sopenharmony_ci 3698c2ecf20Sopenharmony_ci info->flags |= VFIO_REGION_INFO_FLAG_CAPS; 3708c2ecf20Sopenharmony_ci if (info->argsz < sizeof(*info) + caps.size) { 3718c2ecf20Sopenharmony_ci info->argsz = sizeof(*info) + caps.size; 3728c2ecf20Sopenharmony_ci info->cap_offset = 0; 3738c2ecf20Sopenharmony_ci } else { 3748c2ecf20Sopenharmony_ci vfio_info_cap_shift(&caps, sizeof(*info)); 3758c2ecf20Sopenharmony_ci if (copy_to_user((void __user *)arg + sizeof(*info), 3768c2ecf20Sopenharmony_ci caps.buf, caps.size)) { 3778c2ecf20Sopenharmony_ci kfree(caps.buf); 3788c2ecf20Sopenharmony_ci return -EFAULT; 3798c2ecf20Sopenharmony_ci } 3808c2ecf20Sopenharmony_ci info->cap_offset = sizeof(*info); 3818c2ecf20Sopenharmony_ci } 3828c2ecf20Sopenharmony_ci 3838c2ecf20Sopenharmony_ci kfree(caps.buf); 3848c2ecf20Sopenharmony_ci 3858c2ecf20Sopenharmony_ci } 3868c2ecf20Sopenharmony_ci } 3878c2ecf20Sopenharmony_ci return 0; 3888c2ecf20Sopenharmony_ci} 3898c2ecf20Sopenharmony_ci 3908c2ecf20Sopenharmony_cistatic int vfio_ccw_mdev_get_irq_info(struct vfio_irq_info *info) 3918c2ecf20Sopenharmony_ci{ 3928c2ecf20Sopenharmony_ci switch (info->index) { 3938c2ecf20Sopenharmony_ci case VFIO_CCW_IO_IRQ_INDEX: 3948c2ecf20Sopenharmony_ci case VFIO_CCW_CRW_IRQ_INDEX: 3958c2ecf20Sopenharmony_ci info->count = 1; 3968c2ecf20Sopenharmony_ci info->flags = VFIO_IRQ_INFO_EVENTFD; 3978c2ecf20Sopenharmony_ci break; 3988c2ecf20Sopenharmony_ci default: 3998c2ecf20Sopenharmony_ci return -EINVAL; 4008c2ecf20Sopenharmony_ci } 4018c2ecf20Sopenharmony_ci 4028c2ecf20Sopenharmony_ci return 0; 4038c2ecf20Sopenharmony_ci} 4048c2ecf20Sopenharmony_ci 4058c2ecf20Sopenharmony_cistatic int vfio_ccw_mdev_set_irqs(struct mdev_device *mdev, 4068c2ecf20Sopenharmony_ci uint32_t flags, 4078c2ecf20Sopenharmony_ci uint32_t index, 4088c2ecf20Sopenharmony_ci void __user *data) 4098c2ecf20Sopenharmony_ci{ 4108c2ecf20Sopenharmony_ci struct vfio_ccw_private *private; 4118c2ecf20Sopenharmony_ci struct eventfd_ctx **ctx; 4128c2ecf20Sopenharmony_ci 4138c2ecf20Sopenharmony_ci if (!(flags & VFIO_IRQ_SET_ACTION_TRIGGER)) 4148c2ecf20Sopenharmony_ci return -EINVAL; 4158c2ecf20Sopenharmony_ci 4168c2ecf20Sopenharmony_ci private = dev_get_drvdata(mdev_parent_dev(mdev)); 4178c2ecf20Sopenharmony_ci 4188c2ecf20Sopenharmony_ci switch (index) { 4198c2ecf20Sopenharmony_ci case VFIO_CCW_IO_IRQ_INDEX: 4208c2ecf20Sopenharmony_ci ctx = &private->io_trigger; 4218c2ecf20Sopenharmony_ci break; 4228c2ecf20Sopenharmony_ci case VFIO_CCW_CRW_IRQ_INDEX: 4238c2ecf20Sopenharmony_ci ctx = &private->crw_trigger; 4248c2ecf20Sopenharmony_ci break; 4258c2ecf20Sopenharmony_ci default: 4268c2ecf20Sopenharmony_ci return -EINVAL; 4278c2ecf20Sopenharmony_ci } 4288c2ecf20Sopenharmony_ci 4298c2ecf20Sopenharmony_ci switch (flags & VFIO_IRQ_SET_DATA_TYPE_MASK) { 4308c2ecf20Sopenharmony_ci case VFIO_IRQ_SET_DATA_NONE: 4318c2ecf20Sopenharmony_ci { 4328c2ecf20Sopenharmony_ci if (*ctx) 4338c2ecf20Sopenharmony_ci eventfd_signal(*ctx, 1); 4348c2ecf20Sopenharmony_ci return 0; 4358c2ecf20Sopenharmony_ci } 4368c2ecf20Sopenharmony_ci case VFIO_IRQ_SET_DATA_BOOL: 4378c2ecf20Sopenharmony_ci { 4388c2ecf20Sopenharmony_ci uint8_t trigger; 4398c2ecf20Sopenharmony_ci 4408c2ecf20Sopenharmony_ci if (get_user(trigger, (uint8_t __user *)data)) 4418c2ecf20Sopenharmony_ci return -EFAULT; 4428c2ecf20Sopenharmony_ci 4438c2ecf20Sopenharmony_ci if (trigger && *ctx) 4448c2ecf20Sopenharmony_ci eventfd_signal(*ctx, 1); 4458c2ecf20Sopenharmony_ci return 0; 4468c2ecf20Sopenharmony_ci } 4478c2ecf20Sopenharmony_ci case VFIO_IRQ_SET_DATA_EVENTFD: 4488c2ecf20Sopenharmony_ci { 4498c2ecf20Sopenharmony_ci int32_t fd; 4508c2ecf20Sopenharmony_ci 4518c2ecf20Sopenharmony_ci if (get_user(fd, (int32_t __user *)data)) 4528c2ecf20Sopenharmony_ci return -EFAULT; 4538c2ecf20Sopenharmony_ci 4548c2ecf20Sopenharmony_ci if (fd == -1) { 4558c2ecf20Sopenharmony_ci if (*ctx) 4568c2ecf20Sopenharmony_ci eventfd_ctx_put(*ctx); 4578c2ecf20Sopenharmony_ci *ctx = NULL; 4588c2ecf20Sopenharmony_ci } else if (fd >= 0) { 4598c2ecf20Sopenharmony_ci struct eventfd_ctx *efdctx; 4608c2ecf20Sopenharmony_ci 4618c2ecf20Sopenharmony_ci efdctx = eventfd_ctx_fdget(fd); 4628c2ecf20Sopenharmony_ci if (IS_ERR(efdctx)) 4638c2ecf20Sopenharmony_ci return PTR_ERR(efdctx); 4648c2ecf20Sopenharmony_ci 4658c2ecf20Sopenharmony_ci if (*ctx) 4668c2ecf20Sopenharmony_ci eventfd_ctx_put(*ctx); 4678c2ecf20Sopenharmony_ci 4688c2ecf20Sopenharmony_ci *ctx = efdctx; 4698c2ecf20Sopenharmony_ci } else 4708c2ecf20Sopenharmony_ci return -EINVAL; 4718c2ecf20Sopenharmony_ci 4728c2ecf20Sopenharmony_ci return 0; 4738c2ecf20Sopenharmony_ci } 4748c2ecf20Sopenharmony_ci default: 4758c2ecf20Sopenharmony_ci return -EINVAL; 4768c2ecf20Sopenharmony_ci } 4778c2ecf20Sopenharmony_ci} 4788c2ecf20Sopenharmony_ci 4798c2ecf20Sopenharmony_ciint vfio_ccw_register_dev_region(struct vfio_ccw_private *private, 4808c2ecf20Sopenharmony_ci unsigned int subtype, 4818c2ecf20Sopenharmony_ci const struct vfio_ccw_regops *ops, 4828c2ecf20Sopenharmony_ci size_t size, u32 flags, void *data) 4838c2ecf20Sopenharmony_ci{ 4848c2ecf20Sopenharmony_ci struct vfio_ccw_region *region; 4858c2ecf20Sopenharmony_ci 4868c2ecf20Sopenharmony_ci region = krealloc(private->region, 4878c2ecf20Sopenharmony_ci (private->num_regions + 1) * sizeof(*region), 4888c2ecf20Sopenharmony_ci GFP_KERNEL); 4898c2ecf20Sopenharmony_ci if (!region) 4908c2ecf20Sopenharmony_ci return -ENOMEM; 4918c2ecf20Sopenharmony_ci 4928c2ecf20Sopenharmony_ci private->region = region; 4938c2ecf20Sopenharmony_ci private->region[private->num_regions].type = VFIO_REGION_TYPE_CCW; 4948c2ecf20Sopenharmony_ci private->region[private->num_regions].subtype = subtype; 4958c2ecf20Sopenharmony_ci private->region[private->num_regions].ops = ops; 4968c2ecf20Sopenharmony_ci private->region[private->num_regions].size = size; 4978c2ecf20Sopenharmony_ci private->region[private->num_regions].flags = flags; 4988c2ecf20Sopenharmony_ci private->region[private->num_regions].data = data; 4998c2ecf20Sopenharmony_ci 5008c2ecf20Sopenharmony_ci private->num_regions++; 5018c2ecf20Sopenharmony_ci 5028c2ecf20Sopenharmony_ci return 0; 5038c2ecf20Sopenharmony_ci} 5048c2ecf20Sopenharmony_ci 5058c2ecf20Sopenharmony_civoid vfio_ccw_unregister_dev_regions(struct vfio_ccw_private *private) 5068c2ecf20Sopenharmony_ci{ 5078c2ecf20Sopenharmony_ci int i; 5088c2ecf20Sopenharmony_ci 5098c2ecf20Sopenharmony_ci for (i = 0; i < private->num_regions; i++) 5108c2ecf20Sopenharmony_ci private->region[i].ops->release(private, &private->region[i]); 5118c2ecf20Sopenharmony_ci private->num_regions = 0; 5128c2ecf20Sopenharmony_ci kfree(private->region); 5138c2ecf20Sopenharmony_ci private->region = NULL; 5148c2ecf20Sopenharmony_ci} 5158c2ecf20Sopenharmony_ci 5168c2ecf20Sopenharmony_cistatic ssize_t vfio_ccw_mdev_ioctl(struct mdev_device *mdev, 5178c2ecf20Sopenharmony_ci unsigned int cmd, 5188c2ecf20Sopenharmony_ci unsigned long arg) 5198c2ecf20Sopenharmony_ci{ 5208c2ecf20Sopenharmony_ci int ret = 0; 5218c2ecf20Sopenharmony_ci unsigned long minsz; 5228c2ecf20Sopenharmony_ci 5238c2ecf20Sopenharmony_ci switch (cmd) { 5248c2ecf20Sopenharmony_ci case VFIO_DEVICE_GET_INFO: 5258c2ecf20Sopenharmony_ci { 5268c2ecf20Sopenharmony_ci struct vfio_device_info info; 5278c2ecf20Sopenharmony_ci 5288c2ecf20Sopenharmony_ci minsz = offsetofend(struct vfio_device_info, num_irqs); 5298c2ecf20Sopenharmony_ci 5308c2ecf20Sopenharmony_ci if (copy_from_user(&info, (void __user *)arg, minsz)) 5318c2ecf20Sopenharmony_ci return -EFAULT; 5328c2ecf20Sopenharmony_ci 5338c2ecf20Sopenharmony_ci if (info.argsz < minsz) 5348c2ecf20Sopenharmony_ci return -EINVAL; 5358c2ecf20Sopenharmony_ci 5368c2ecf20Sopenharmony_ci ret = vfio_ccw_mdev_get_device_info(&info, mdev); 5378c2ecf20Sopenharmony_ci if (ret) 5388c2ecf20Sopenharmony_ci return ret; 5398c2ecf20Sopenharmony_ci 5408c2ecf20Sopenharmony_ci return copy_to_user((void __user *)arg, &info, minsz) ? -EFAULT : 0; 5418c2ecf20Sopenharmony_ci } 5428c2ecf20Sopenharmony_ci case VFIO_DEVICE_GET_REGION_INFO: 5438c2ecf20Sopenharmony_ci { 5448c2ecf20Sopenharmony_ci struct vfio_region_info info; 5458c2ecf20Sopenharmony_ci 5468c2ecf20Sopenharmony_ci minsz = offsetofend(struct vfio_region_info, offset); 5478c2ecf20Sopenharmony_ci 5488c2ecf20Sopenharmony_ci if (copy_from_user(&info, (void __user *)arg, minsz)) 5498c2ecf20Sopenharmony_ci return -EFAULT; 5508c2ecf20Sopenharmony_ci 5518c2ecf20Sopenharmony_ci if (info.argsz < minsz) 5528c2ecf20Sopenharmony_ci return -EINVAL; 5538c2ecf20Sopenharmony_ci 5548c2ecf20Sopenharmony_ci ret = vfio_ccw_mdev_get_region_info(&info, mdev, arg); 5558c2ecf20Sopenharmony_ci if (ret) 5568c2ecf20Sopenharmony_ci return ret; 5578c2ecf20Sopenharmony_ci 5588c2ecf20Sopenharmony_ci return copy_to_user((void __user *)arg, &info, minsz) ? -EFAULT : 0; 5598c2ecf20Sopenharmony_ci } 5608c2ecf20Sopenharmony_ci case VFIO_DEVICE_GET_IRQ_INFO: 5618c2ecf20Sopenharmony_ci { 5628c2ecf20Sopenharmony_ci struct vfio_irq_info info; 5638c2ecf20Sopenharmony_ci 5648c2ecf20Sopenharmony_ci minsz = offsetofend(struct vfio_irq_info, count); 5658c2ecf20Sopenharmony_ci 5668c2ecf20Sopenharmony_ci if (copy_from_user(&info, (void __user *)arg, minsz)) 5678c2ecf20Sopenharmony_ci return -EFAULT; 5688c2ecf20Sopenharmony_ci 5698c2ecf20Sopenharmony_ci if (info.argsz < minsz || info.index >= VFIO_CCW_NUM_IRQS) 5708c2ecf20Sopenharmony_ci return -EINVAL; 5718c2ecf20Sopenharmony_ci 5728c2ecf20Sopenharmony_ci ret = vfio_ccw_mdev_get_irq_info(&info); 5738c2ecf20Sopenharmony_ci if (ret) 5748c2ecf20Sopenharmony_ci return ret; 5758c2ecf20Sopenharmony_ci 5768c2ecf20Sopenharmony_ci if (info.count == -1) 5778c2ecf20Sopenharmony_ci return -EINVAL; 5788c2ecf20Sopenharmony_ci 5798c2ecf20Sopenharmony_ci return copy_to_user((void __user *)arg, &info, minsz) ? -EFAULT : 0; 5808c2ecf20Sopenharmony_ci } 5818c2ecf20Sopenharmony_ci case VFIO_DEVICE_SET_IRQS: 5828c2ecf20Sopenharmony_ci { 5838c2ecf20Sopenharmony_ci struct vfio_irq_set hdr; 5848c2ecf20Sopenharmony_ci size_t data_size; 5858c2ecf20Sopenharmony_ci void __user *data; 5868c2ecf20Sopenharmony_ci 5878c2ecf20Sopenharmony_ci minsz = offsetofend(struct vfio_irq_set, count); 5888c2ecf20Sopenharmony_ci 5898c2ecf20Sopenharmony_ci if (copy_from_user(&hdr, (void __user *)arg, minsz)) 5908c2ecf20Sopenharmony_ci return -EFAULT; 5918c2ecf20Sopenharmony_ci 5928c2ecf20Sopenharmony_ci ret = vfio_set_irqs_validate_and_prepare(&hdr, 1, 5938c2ecf20Sopenharmony_ci VFIO_CCW_NUM_IRQS, 5948c2ecf20Sopenharmony_ci &data_size); 5958c2ecf20Sopenharmony_ci if (ret) 5968c2ecf20Sopenharmony_ci return ret; 5978c2ecf20Sopenharmony_ci 5988c2ecf20Sopenharmony_ci data = (void __user *)(arg + minsz); 5998c2ecf20Sopenharmony_ci return vfio_ccw_mdev_set_irqs(mdev, hdr.flags, hdr.index, data); 6008c2ecf20Sopenharmony_ci } 6018c2ecf20Sopenharmony_ci case VFIO_DEVICE_RESET: 6028c2ecf20Sopenharmony_ci return vfio_ccw_mdev_reset(mdev); 6038c2ecf20Sopenharmony_ci default: 6048c2ecf20Sopenharmony_ci return -ENOTTY; 6058c2ecf20Sopenharmony_ci } 6068c2ecf20Sopenharmony_ci} 6078c2ecf20Sopenharmony_ci 6088c2ecf20Sopenharmony_cistatic const struct mdev_parent_ops vfio_ccw_mdev_ops = { 6098c2ecf20Sopenharmony_ci .owner = THIS_MODULE, 6108c2ecf20Sopenharmony_ci .supported_type_groups = mdev_type_groups, 6118c2ecf20Sopenharmony_ci .create = vfio_ccw_mdev_create, 6128c2ecf20Sopenharmony_ci .remove = vfio_ccw_mdev_remove, 6138c2ecf20Sopenharmony_ci .open = vfio_ccw_mdev_open, 6148c2ecf20Sopenharmony_ci .release = vfio_ccw_mdev_release, 6158c2ecf20Sopenharmony_ci .read = vfio_ccw_mdev_read, 6168c2ecf20Sopenharmony_ci .write = vfio_ccw_mdev_write, 6178c2ecf20Sopenharmony_ci .ioctl = vfio_ccw_mdev_ioctl, 6188c2ecf20Sopenharmony_ci}; 6198c2ecf20Sopenharmony_ci 6208c2ecf20Sopenharmony_ciint vfio_ccw_mdev_reg(struct subchannel *sch) 6218c2ecf20Sopenharmony_ci{ 6228c2ecf20Sopenharmony_ci return mdev_register_device(&sch->dev, &vfio_ccw_mdev_ops); 6238c2ecf20Sopenharmony_ci} 6248c2ecf20Sopenharmony_ci 6258c2ecf20Sopenharmony_civoid vfio_ccw_mdev_unreg(struct subchannel *sch) 6268c2ecf20Sopenharmony_ci{ 6278c2ecf20Sopenharmony_ci mdev_unregister_device(&sch->dev); 6288c2ecf20Sopenharmony_ci} 629