1 // SPDX-License-Identifier: GPL-2.0+
3 * Adjunct processor matrix VFIO device driver callbacks.
5 * Copyright IBM Corp. 2018
11 #include <linux/string.h>
12 #include <linux/vfio.h>
13 #include <linux/device.h>
14 #include <linux/list.h>
15 #include <linux/ctype.h>
16 #include <linux/bitops.h>
17 #include <linux/kvm_host.h>
18 #include <linux/module.h>
19 #include <linux/uuid.h>
21 #include <asm/zcrypt.h>
23 #include "vfio_ap_private.h"
24 #include "vfio_ap_debug.h"
26 #define VFIO_AP_MDEV_TYPE_HWVIRT "passthrough"
27 #define VFIO_AP_MDEV_NAME_HWVIRT "VFIO AP Passthrough Device"
29 #define AP_QUEUE_ASSIGNED "assigned"
30 #define AP_QUEUE_UNASSIGNED "unassigned"
31 #define AP_QUEUE_IN_USE "in use"
33 #define AP_RESET_INTERVAL 20 /* Reset sleep interval (20ms) */
35 static int vfio_ap_mdev_reset_queues(struct ap_matrix_mdev *matrix_mdev);
36 static int vfio_ap_mdev_reset_qlist(struct list_head *qlist);
37 static struct vfio_ap_queue *vfio_ap_find_queue(int apqn);
38 static const struct vfio_device_ops vfio_ap_matrix_dev_ops;
39 static void vfio_ap_mdev_reset_queue(struct vfio_ap_queue *q);
42 * get_update_locks_for_kvm: Acquire the locks required to dynamically update a
43 * KVM guest's APCB in the proper order.
45 * @kvm: a pointer to a struct kvm object containing the KVM guest's APCB.
47 * The proper locking order is:
48 * 1. matrix_dev->guests_lock: required to use the KVM pointer to update a KVM
50 * 2. kvm->lock: required to update a guest's APCB
51 * 3. matrix_dev->mdevs_lock: required to access data stored in a matrix_mdev
53 * Note: If @kvm is NULL, the KVM lock will not be taken.
55 static inline void get_update_locks_for_kvm(struct kvm *kvm)
57 mutex_lock(&matrix_dev->guests_lock);
59 mutex_lock(&kvm->lock);
60 mutex_lock(&matrix_dev->mdevs_lock);
64 * release_update_locks_for_kvm: Release the locks used to dynamically update a
65 * KVM guest's APCB in the proper order.
67 * @kvm: a pointer to a struct kvm object containing the KVM guest's APCB.
69 * The proper unlocking order is:
70 * 1. matrix_dev->mdevs_lock
72 * 3. matrix_dev->guests_lock
74 * Note: If @kvm is NULL, the KVM lock will not be released.
76 static inline void release_update_locks_for_kvm(struct kvm *kvm)
78 mutex_unlock(&matrix_dev->mdevs_lock);
80 mutex_unlock(&kvm->lock);
81 mutex_unlock(&matrix_dev->guests_lock);
85 * get_update_locks_for_mdev: Acquire the locks required to dynamically update a
86 * KVM guest's APCB in the proper order.
88 * @matrix_mdev: a pointer to a struct ap_matrix_mdev object containing the AP
89 * configuration data to use to update a KVM guest's APCB.
91 * The proper locking order is:
92 * 1. matrix_dev->guests_lock: required to use the KVM pointer to update a KVM
94 * 2. matrix_mdev->kvm->lock: required to update a guest's APCB
95 * 3. matrix_dev->mdevs_lock: required to access data stored in a matrix_mdev
97 * Note: If @matrix_mdev is NULL or is not attached to a KVM guest, the KVM
98 * lock will not be taken.
100 static inline void get_update_locks_for_mdev(struct ap_matrix_mdev *matrix_mdev)
102 mutex_lock(&matrix_dev->guests_lock);
103 if (matrix_mdev && matrix_mdev->kvm)
104 mutex_lock(&matrix_mdev->kvm->lock);
105 mutex_lock(&matrix_dev->mdevs_lock);
109 * release_update_locks_for_mdev: Release the locks used to dynamically update a
110 * KVM guest's APCB in the proper order.
112 * @matrix_mdev: a pointer to a struct ap_matrix_mdev object containing the AP
113 * configuration data to use to update a KVM guest's APCB.
115 * The proper unlocking order is:
116 * 1. matrix_dev->mdevs_lock
117 * 2. matrix_mdev->kvm->lock
118 * 3. matrix_dev->guests_lock
120 * Note: If @matrix_mdev is NULL or is not attached to a KVM guest, the KVM
121 * lock will not be released.
123 static inline void release_update_locks_for_mdev(struct ap_matrix_mdev *matrix_mdev)
125 mutex_unlock(&matrix_dev->mdevs_lock);
126 if (matrix_mdev && matrix_mdev->kvm)
127 mutex_unlock(&matrix_mdev->kvm->lock);
128 mutex_unlock(&matrix_dev->guests_lock);
132 * get_update_locks_by_apqn: Find the mdev to which an APQN is assigned and
133 * acquire the locks required to update the APCB of
134 * the KVM guest to which the mdev is attached.
136 * @apqn: the APQN of a queue device.
138 * The proper locking order is:
139 * 1. matrix_dev->guests_lock: required to use the KVM pointer to update a KVM
141 * 2. matrix_mdev->kvm->lock: required to update a guest's APCB
142 * 3. matrix_dev->mdevs_lock: required to access data stored in a matrix_mdev
144 * Note: If @apqn is not assigned to a matrix_mdev, the matrix_mdev->kvm->lock
147 * Return: the ap_matrix_mdev object to which @apqn is assigned or NULL if @apqn
148 * is not assigned to an ap_matrix_mdev.
150 static struct ap_matrix_mdev *get_update_locks_by_apqn(int apqn)
152 struct ap_matrix_mdev *matrix_mdev;
154 mutex_lock(&matrix_dev->guests_lock);
156 list_for_each_entry(matrix_mdev, &matrix_dev->mdev_list, node) {
157 if (test_bit_inv(AP_QID_CARD(apqn), matrix_mdev->matrix.apm) &&
158 test_bit_inv(AP_QID_QUEUE(apqn), matrix_mdev->matrix.aqm)) {
159 if (matrix_mdev->kvm)
160 mutex_lock(&matrix_mdev->kvm->lock);
162 mutex_lock(&matrix_dev->mdevs_lock);
168 mutex_lock(&matrix_dev->mdevs_lock);
174 * get_update_locks_for_queue: get the locks required to update the APCB of the
175 * KVM guest to which the matrix mdev linked to a
176 * vfio_ap_queue object is attached.
178 * @q: a pointer to a vfio_ap_queue object.
180 * The proper locking order is:
181 * 1. q->matrix_dev->guests_lock: required to use the KVM pointer to update a
183 * 2. q->matrix_mdev->kvm->lock: required to update a guest's APCB
184 * 3. matrix_dev->mdevs_lock: required to access data stored in matrix_mdev
186 * Note: if @queue is not linked to an ap_matrix_mdev object, the KVM lock
189 static inline void get_update_locks_for_queue(struct vfio_ap_queue *q)
191 mutex_lock(&matrix_dev->guests_lock);
192 if (q->matrix_mdev && q->matrix_mdev->kvm)
193 mutex_lock(&q->matrix_mdev->kvm->lock);
194 mutex_lock(&matrix_dev->mdevs_lock);
198 * vfio_ap_mdev_get_queue - retrieve a queue with a specific APQN from a
199 * hash table of queues assigned to a matrix mdev
200 * @matrix_mdev: the matrix mdev
201 * @apqn: The APQN of a queue device
203 * Return: the pointer to the vfio_ap_queue struct representing the queue or
204 * NULL if the queue is not assigned to @matrix_mdev
206 static struct vfio_ap_queue *vfio_ap_mdev_get_queue(
207 struct ap_matrix_mdev *matrix_mdev,
210 struct vfio_ap_queue *q;
212 hash_for_each_possible(matrix_mdev->qtable.queues, q, mdev_qnode,
214 if (q && q->apqn == apqn)
222 * vfio_ap_wait_for_irqclear - clears the IR bit or gives up after 5 tries
223 * @apqn: The AP Queue number
225 * Checks the IRQ bit for the status of this APQN using ap_tapq.
226 * Returns if the ap_tapq function succeeded and the bit is clear.
227 * Returns if ap_tapq function failed with invalid, deconfigured or
229 * Otherwise retries up to 5 times after waiting 20ms.
231 static void vfio_ap_wait_for_irqclear(int apqn)
233 struct ap_queue_status status;
237 status = ap_tapq(apqn, NULL);
238 switch (status.response_code) {
239 case AP_RESPONSE_NORMAL:
240 case AP_RESPONSE_RESET_IN_PROGRESS:
241 if (!status.irq_enabled)
244 case AP_RESPONSE_BUSY:
247 case AP_RESPONSE_Q_NOT_AVAIL:
248 case AP_RESPONSE_DECONFIGURED:
249 case AP_RESPONSE_CHECKSTOPPED:
251 WARN_ONCE(1, "%s: tapq rc %02x: %04x\n", __func__,
252 status.response_code, apqn);
257 WARN_ONCE(1, "%s: tapq rc %02x: %04x could not clear IR bit\n",
258 __func__, status.response_code, apqn);
262 * vfio_ap_free_aqic_resources - free vfio_ap_queue resources
263 * @q: The vfio_ap_queue
265 * Unregisters the ISC in the GIB when the saved ISC not invalid.
266 * Unpins the guest's page holding the NIB when it exists.
267 * Resets the saved_iova and saved_isc to invalid values.
269 static void vfio_ap_free_aqic_resources(struct vfio_ap_queue *q)
273 if (q->saved_isc != VFIO_AP_ISC_INVALID &&
274 !WARN_ON(!(q->matrix_mdev && q->matrix_mdev->kvm))) {
275 kvm_s390_gisc_unregister(q->matrix_mdev->kvm, q->saved_isc);
276 q->saved_isc = VFIO_AP_ISC_INVALID;
278 if (q->saved_iova && !WARN_ON(!q->matrix_mdev)) {
279 vfio_unpin_pages(&q->matrix_mdev->vdev, q->saved_iova, 1);
285 * vfio_ap_irq_disable - disables and clears an ap_queue interrupt
286 * @q: The vfio_ap_queue
288 * Uses ap_aqic to disable the interruption and in case of success, reset
289 * in progress or IRQ disable command already proceeded: calls
290 * vfio_ap_wait_for_irqclear() to check for the IRQ bit to be clear
291 * and calls vfio_ap_free_aqic_resources() to free the resources associated
292 * with the AP interrupt handling.
294 * In the case the AP is busy, or a reset is in progress,
295 * retries after 20ms, up to 5 times.
297 * Returns if ap_aqic function failed with invalid, deconfigured or
300 * Return: &struct ap_queue_status
302 static struct ap_queue_status vfio_ap_irq_disable(struct vfio_ap_queue *q)
304 union ap_qirq_ctrl aqic_gisa = { .value = 0 };
305 struct ap_queue_status status;
309 status = ap_aqic(q->apqn, aqic_gisa, 0);
310 switch (status.response_code) {
311 case AP_RESPONSE_OTHERWISE_CHANGED:
312 case AP_RESPONSE_NORMAL:
313 vfio_ap_wait_for_irqclear(q->apqn);
315 case AP_RESPONSE_RESET_IN_PROGRESS:
316 case AP_RESPONSE_BUSY:
319 case AP_RESPONSE_Q_NOT_AVAIL:
320 case AP_RESPONSE_DECONFIGURED:
321 case AP_RESPONSE_CHECKSTOPPED:
322 case AP_RESPONSE_INVALID_ADDRESS:
324 /* All cases in default means AP not operational */
325 WARN_ONCE(1, "%s: ap_aqic status %d\n", __func__,
326 status.response_code);
331 WARN_ONCE(1, "%s: ap_aqic status %d\n", __func__,
332 status.response_code);
334 vfio_ap_free_aqic_resources(q);
339 * vfio_ap_validate_nib - validate a notification indicator byte (nib) address.
341 * @vcpu: the object representing the vcpu executing the PQAP(AQIC) instruction.
342 * @nib: the location for storing the nib address.
344 * When the PQAP(AQIC) instruction is executed, general register 2 contains the
345 * address of the notification indicator byte (nib) used for IRQ notification.
346 * This function parses and validates the nib from gr2.
348 * Return: returns zero if the nib address is a valid; otherwise, returns
351 static int vfio_ap_validate_nib(struct kvm_vcpu *vcpu, dma_addr_t *nib)
353 *nib = vcpu->run->s.regs.gprs[2];
357 if (kvm_is_error_hva(gfn_to_hva(vcpu->kvm, *nib >> PAGE_SHIFT)))
363 static int ensure_nib_shared(unsigned long addr, struct gmap *gmap)
368 * The nib has to be located in shared storage since guest and
369 * host access it. vfio_pin_pages() will do a pin shared and
370 * if that fails (possibly because it's not a shared page) it
371 * calls export. We try to do a second pin shared here so that
372 * the UV gives us an error code if we try to pin a non-shared
375 * If the page is already pinned shared the UV will return a success.
377 ret = uv_pin_shared(addr);
379 /* vfio_pin_pages() likely exported the page so let's re-import */
380 gmap_convert_to_secure(gmap, addr);
386 * vfio_ap_irq_enable - Enable Interruption for a APQN
388 * @q: the vfio_ap_queue holding AQIC parameters
389 * @isc: the guest ISC to register with the GIB interface
390 * @vcpu: the vcpu object containing the registers specifying the parameters
391 * passed to the PQAP(AQIC) instruction.
393 * Pin the NIB saved in *q
394 * Register the guest ISC to GIB interface and retrieve the
395 * host ISC to issue the host side PQAP/AQIC
397 * status.response_code may be set to AP_RESPONSE_INVALID_ADDRESS in case the
398 * vfio_pin_pages or kvm_s390_gisc_register failed.
400 * Otherwise return the ap_queue_status returned by the ap_aqic(),
401 * all retry handling will be done by the guest.
403 * Return: &struct ap_queue_status
405 static struct ap_queue_status vfio_ap_irq_enable(struct vfio_ap_queue *q,
407 struct kvm_vcpu *vcpu)
409 union ap_qirq_ctrl aqic_gisa = { .value = 0 };
410 struct ap_queue_status status = {};
411 struct kvm_s390_gisa *gisa;
419 /* Verify that the notification indicator byte address is valid */
420 if (vfio_ap_validate_nib(vcpu, &nib)) {
421 VFIO_AP_DBF_WARN("%s: invalid NIB address: nib=%pad, apqn=%#04x\n",
422 __func__, &nib, q->apqn);
424 status.response_code = AP_RESPONSE_INVALID_ADDRESS;
428 ret = vfio_pin_pages(&q->matrix_mdev->vdev, nib, 1,
429 IOMMU_READ | IOMMU_WRITE, &h_page);
434 VFIO_AP_DBF_WARN("%s: vfio_pin_pages failed: rc=%d,"
435 "nib=%pad, apqn=%#04x\n",
436 __func__, ret, &nib, q->apqn);
438 status.response_code = AP_RESPONSE_INVALID_ADDRESS;
442 kvm = q->matrix_mdev->kvm;
443 gisa = kvm->arch.gisa_int.origin;
445 h_nib = page_to_phys(h_page) | (nib & ~PAGE_MASK);
446 aqic_gisa.gisc = isc;
448 /* NIB in non-shared storage is a rc 6 for PV guests */
449 if (kvm_s390_pv_cpu_is_protected(vcpu) &&
450 ensure_nib_shared(h_nib & PAGE_MASK, kvm->arch.gmap)) {
451 vfio_unpin_pages(&q->matrix_mdev->vdev, nib, 1);
452 status.response_code = AP_RESPONSE_INVALID_ADDRESS;
456 nisc = kvm_s390_gisc_register(kvm, isc);
458 VFIO_AP_DBF_WARN("%s: gisc registration failed: nisc=%d, isc=%d, apqn=%#04x\n",
459 __func__, nisc, isc, q->apqn);
461 vfio_unpin_pages(&q->matrix_mdev->vdev, nib, 1);
462 status.response_code = AP_RESPONSE_INVALID_ADDRESS;
466 aqic_gisa.isc = nisc;
468 aqic_gisa.gisa = virt_to_phys(gisa) >> 4;
470 status = ap_aqic(q->apqn, aqic_gisa, h_nib);
471 switch (status.response_code) {
472 case AP_RESPONSE_NORMAL:
473 /* See if we did clear older IRQ configuration */
474 vfio_ap_free_aqic_resources(q);
478 case AP_RESPONSE_OTHERWISE_CHANGED:
479 /* We could not modify IRQ settings: clear new configuration */
480 ret = kvm_s390_gisc_unregister(kvm, isc);
482 VFIO_AP_DBF_WARN("%s: kvm_s390_gisc_unregister: rc=%d isc=%d, apqn=%#04x\n",
483 __func__, ret, isc, q->apqn);
484 vfio_unpin_pages(&q->matrix_mdev->vdev, nib, 1);
487 pr_warn("%s: apqn %04x: response: %02x\n", __func__, q->apqn,
488 status.response_code);
489 vfio_ap_irq_disable(q);
493 if (status.response_code != AP_RESPONSE_NORMAL) {
494 VFIO_AP_DBF_WARN("%s: PQAP(AQIC) failed with status=%#02x: "
495 "zone=%#x, ir=%#x, gisc=%#x, f=%#x,"
496 "gisa=%#x, isc=%#x, apqn=%#04x\n",
497 __func__, status.response_code,
498 aqic_gisa.zone, aqic_gisa.ir, aqic_gisa.gisc,
499 aqic_gisa.gf, aqic_gisa.gisa, aqic_gisa.isc,
507 * vfio_ap_le_guid_to_be_uuid - convert a little endian guid array into an array
508 * of big endian elements that can be passed by
509 * value to an s390dbf sprintf event function to
510 * format a UUID string.
512 * @guid: the object containing the little endian guid
513 * @uuid: a six-element array of long values that can be passed by value as
514 * arguments for a formatting string specifying a UUID.
516 * The S390 Debug Feature (s390dbf) allows the use of "%s" in the sprintf
517 * event functions if the memory for the passed string is available as long as
518 * the debug feature exists. Since a mediated device can be removed at any
519 * time, it's name can not be used because %s passes the reference to the string
520 * in memory and the reference will go stale once the device is removed .
522 * The s390dbf string formatting function allows a maximum of 9 arguments for a
523 * message to be displayed in the 'sprintf' view. In order to use the bytes
524 * comprising the mediated device's UUID to display the mediated device name,
525 * they will have to be converted into an array whose elements can be passed by
526 * value to sprintf. For example:
528 * guid array: { 83, 78, 17, 62, bb, f1, f0, 47, 91, 4d, 32, a2, 2e, 3a, 88, 04 }
529 * mdev name: 62177883-f1bb-47f0-914d-32a22e3a8804
530 * array returned: { 62177883, f1bb, 47f0, 914d, 32a2, 2e3a8804 }
531 * formatting string: "%08lx-%04lx-%04lx-%04lx-%02lx%04lx"
533 static void vfio_ap_le_guid_to_be_uuid(guid_t *guid, unsigned long *uuid)
536 * The input guid is ordered in little endian, so it needs to be
537 * reordered for displaying a UUID as a string. This specifies the
538 * guid indices in proper order.
540 uuid[0] = le32_to_cpup((__le32 *)guid);
541 uuid[1] = le16_to_cpup((__le16 *)&guid->b[4]);
542 uuid[2] = le16_to_cpup((__le16 *)&guid->b[6]);
543 uuid[3] = *((__u16 *)&guid->b[8]);
544 uuid[4] = *((__u16 *)&guid->b[10]);
545 uuid[5] = *((__u32 *)&guid->b[12]);
549 * handle_pqap - PQAP instruction callback
551 * @vcpu: The vcpu on which we received the PQAP instruction
553 * Get the general register contents to initialize internal variables.
558 * Response.status may be set to following Response Code:
559 * - AP_RESPONSE_Q_NOT_AVAIL: if the queue is not available
560 * - AP_RESPONSE_DECONFIGURED: if the queue is not configured
561 * - AP_RESPONSE_NORMAL (0) : in case of success
562 * Check vfio_ap_setirq() and vfio_ap_clrirq() for other possible RC.
563 * We take the matrix_dev lock to ensure serialization on queues and
564 * mediated device access.
566 * Return: 0 if we could handle the request inside KVM.
567 * Otherwise, returns -EOPNOTSUPP to let QEMU handle the fault.
569 static int handle_pqap(struct kvm_vcpu *vcpu)
573 unsigned long uuid[6];
574 struct vfio_ap_queue *q;
575 struct ap_queue_status qstatus = {
576 .response_code = AP_RESPONSE_Q_NOT_AVAIL, };
577 struct ap_matrix_mdev *matrix_mdev;
579 apqn = vcpu->run->s.regs.gprs[0] & 0xffff;
581 /* If we do not use the AIV facility just go to userland */
582 if (!(vcpu->arch.sie_block->eca & ECA_AIV)) {
583 VFIO_AP_DBF_WARN("%s: AIV facility not installed: apqn=0x%04x, eca=0x%04x\n",
584 __func__, apqn, vcpu->arch.sie_block->eca);
589 mutex_lock(&matrix_dev->mdevs_lock);
591 if (!vcpu->kvm->arch.crypto.pqap_hook) {
592 VFIO_AP_DBF_WARN("%s: PQAP(AQIC) hook not registered with the vfio_ap driver: apqn=0x%04x\n",
598 matrix_mdev = container_of(vcpu->kvm->arch.crypto.pqap_hook,
599 struct ap_matrix_mdev, pqap_hook);
601 /* If the there is no guest using the mdev, there is nothing to do */
602 if (!matrix_mdev->kvm) {
603 vfio_ap_le_guid_to_be_uuid(&matrix_mdev->mdev->uuid, uuid);
604 VFIO_AP_DBF_WARN("%s: mdev %08lx-%04lx-%04lx-%04lx-%04lx%08lx not in use: apqn=0x%04x\n",
605 __func__, uuid[0], uuid[1], uuid[2],
606 uuid[3], uuid[4], uuid[5], apqn);
610 q = vfio_ap_mdev_get_queue(matrix_mdev, apqn);
612 VFIO_AP_DBF_WARN("%s: Queue %02x.%04x not bound to the vfio_ap driver\n",
613 __func__, AP_QID_CARD(apqn),
618 status = vcpu->run->s.regs.gprs[1];
620 /* If IR bit(16) is set we enable the interrupt */
621 if ((status >> (63 - 16)) & 0x01)
622 qstatus = vfio_ap_irq_enable(q, status & 0x07, vcpu);
624 qstatus = vfio_ap_irq_disable(q);
627 memcpy(&vcpu->run->s.regs.gprs[1], &qstatus, sizeof(qstatus));
628 vcpu->run->s.regs.gprs[1] >>= 32;
629 mutex_unlock(&matrix_dev->mdevs_lock);
633 static void vfio_ap_matrix_init(struct ap_config_info *info,
634 struct ap_matrix *matrix)
636 matrix->apm_max = info->apxa ? info->na : 63;
637 matrix->aqm_max = info->apxa ? info->nd : 15;
638 matrix->adm_max = info->apxa ? info->nd : 15;
641 static void vfio_ap_mdev_update_guest_apcb(struct ap_matrix_mdev *matrix_mdev)
643 if (matrix_mdev->kvm)
644 kvm_arch_crypto_set_masks(matrix_mdev->kvm,
645 matrix_mdev->shadow_apcb.apm,
646 matrix_mdev->shadow_apcb.aqm,
647 matrix_mdev->shadow_apcb.adm);
650 static bool vfio_ap_mdev_filter_cdoms(struct ap_matrix_mdev *matrix_mdev)
652 DECLARE_BITMAP(prev_shadow_adm, AP_DOMAINS);
654 bitmap_copy(prev_shadow_adm, matrix_mdev->shadow_apcb.adm, AP_DOMAINS);
655 bitmap_and(matrix_mdev->shadow_apcb.adm, matrix_mdev->matrix.adm,
656 (unsigned long *)matrix_dev->info.adm, AP_DOMAINS);
658 return !bitmap_equal(prev_shadow_adm, matrix_mdev->shadow_apcb.adm,
662 static bool _queue_passable(struct vfio_ap_queue *q)
667 switch (q->reset_status.response_code) {
668 case AP_RESPONSE_NORMAL:
669 case AP_RESPONSE_DECONFIGURED:
670 case AP_RESPONSE_CHECKSTOPPED:
678 * vfio_ap_mdev_filter_matrix - filter the APQNs assigned to the matrix mdev
679 * to ensure no queue devices are passed through to
680 * the guest that are not bound to the vfio_ap
683 * @matrix_mdev: the matrix mdev whose matrix is to be filtered.
684 * @apm_filtered: a 256-bit bitmap for storing the APIDs filtered from the
685 * guest's AP configuration that are still in the host's AP
688 * Note: If an APQN referencing a queue device that is not bound to the vfio_ap
689 * driver, its APID will be filtered from the guest's APCB. The matrix
690 * structure precludes filtering an individual APQN, so its APID will be
691 * filtered. Consequently, all queues associated with the adapter that
692 * are in the host's AP configuration must be reset. If queues are
693 * subsequently made available again to the guest, they should re-appear
696 * Return: a boolean value indicating whether the KVM guest's APCB was changed
697 * by the filtering or not.
699 static bool vfio_ap_mdev_filter_matrix(struct ap_matrix_mdev *matrix_mdev,
700 unsigned long *apm_filtered)
702 unsigned long apid, apqi, apqn;
703 DECLARE_BITMAP(prev_shadow_apm, AP_DEVICES);
704 DECLARE_BITMAP(prev_shadow_aqm, AP_DOMAINS);
706 bitmap_copy(prev_shadow_apm, matrix_mdev->shadow_apcb.apm, AP_DEVICES);
707 bitmap_copy(prev_shadow_aqm, matrix_mdev->shadow_apcb.aqm, AP_DOMAINS);
708 vfio_ap_matrix_init(&matrix_dev->info, &matrix_mdev->shadow_apcb);
709 bitmap_clear(apm_filtered, 0, AP_DEVICES);
712 * Copy the adapters, domains and control domains to the shadow_apcb
713 * from the matrix mdev, but only those that are assigned to the host's
716 bitmap_and(matrix_mdev->shadow_apcb.apm, matrix_mdev->matrix.apm,
717 (unsigned long *)matrix_dev->info.apm, AP_DEVICES);
718 bitmap_and(matrix_mdev->shadow_apcb.aqm, matrix_mdev->matrix.aqm,
719 (unsigned long *)matrix_dev->info.aqm, AP_DOMAINS);
721 for_each_set_bit_inv(apid, matrix_mdev->shadow_apcb.apm, AP_DEVICES) {
722 for_each_set_bit_inv(apqi, matrix_mdev->shadow_apcb.aqm,
725 * If the APQN is not bound to the vfio_ap device
726 * driver, then we can't assign it to the guest's
727 * AP configuration. The AP architecture won't
728 * allow filtering of a single APQN, so let's filter
729 * the APID since an adapter represents a physical
732 apqn = AP_MKQID(apid, apqi);
733 if (!_queue_passable(vfio_ap_mdev_get_queue(matrix_mdev, apqn))) {
734 clear_bit_inv(apid, matrix_mdev->shadow_apcb.apm);
737 * If the adapter was previously plugged into
738 * the guest, let's let the caller know that
739 * the APID was filtered.
741 if (test_bit_inv(apid, prev_shadow_apm))
742 set_bit_inv(apid, apm_filtered);
749 return !bitmap_equal(prev_shadow_apm, matrix_mdev->shadow_apcb.apm,
751 !bitmap_equal(prev_shadow_aqm, matrix_mdev->shadow_apcb.aqm,
755 static int vfio_ap_mdev_init_dev(struct vfio_device *vdev)
757 struct ap_matrix_mdev *matrix_mdev =
758 container_of(vdev, struct ap_matrix_mdev, vdev);
760 matrix_mdev->mdev = to_mdev_device(vdev->dev);
761 vfio_ap_matrix_init(&matrix_dev->info, &matrix_mdev->matrix);
762 matrix_mdev->pqap_hook = handle_pqap;
763 vfio_ap_matrix_init(&matrix_dev->info, &matrix_mdev->shadow_apcb);
764 hash_init(matrix_mdev->qtable.queues);
769 static int vfio_ap_mdev_probe(struct mdev_device *mdev)
771 struct ap_matrix_mdev *matrix_mdev;
774 matrix_mdev = vfio_alloc_device(ap_matrix_mdev, vdev, &mdev->dev,
775 &vfio_ap_matrix_dev_ops);
776 if (IS_ERR(matrix_mdev))
777 return PTR_ERR(matrix_mdev);
779 ret = vfio_register_emulated_iommu_dev(&matrix_mdev->vdev);
782 matrix_mdev->req_trigger = NULL;
783 dev_set_drvdata(&mdev->dev, matrix_mdev);
784 mutex_lock(&matrix_dev->mdevs_lock);
785 list_add(&matrix_mdev->node, &matrix_dev->mdev_list);
786 mutex_unlock(&matrix_dev->mdevs_lock);
790 vfio_put_device(&matrix_mdev->vdev);
794 static void vfio_ap_mdev_link_queue(struct ap_matrix_mdev *matrix_mdev,
795 struct vfio_ap_queue *q)
797 if (!q || vfio_ap_mdev_get_queue(matrix_mdev, q->apqn))
800 q->matrix_mdev = matrix_mdev;
801 hash_add(matrix_mdev->qtable.queues, &q->mdev_qnode, q->apqn);
804 static void vfio_ap_mdev_link_apqn(struct ap_matrix_mdev *matrix_mdev, int apqn)
806 struct vfio_ap_queue *q;
808 q = vfio_ap_find_queue(apqn);
809 vfio_ap_mdev_link_queue(matrix_mdev, q);
812 static void vfio_ap_unlink_queue_fr_mdev(struct vfio_ap_queue *q)
814 hash_del(&q->mdev_qnode);
817 static void vfio_ap_unlink_mdev_fr_queue(struct vfio_ap_queue *q)
819 q->matrix_mdev = NULL;
822 static void vfio_ap_mdev_unlink_fr_queues(struct ap_matrix_mdev *matrix_mdev)
824 struct vfio_ap_queue *q;
825 unsigned long apid, apqi;
827 for_each_set_bit_inv(apid, matrix_mdev->matrix.apm, AP_DEVICES) {
828 for_each_set_bit_inv(apqi, matrix_mdev->matrix.aqm,
830 q = vfio_ap_mdev_get_queue(matrix_mdev,
831 AP_MKQID(apid, apqi));
833 q->matrix_mdev = NULL;
838 static void vfio_ap_mdev_remove(struct mdev_device *mdev)
840 struct ap_matrix_mdev *matrix_mdev = dev_get_drvdata(&mdev->dev);
842 vfio_unregister_group_dev(&matrix_mdev->vdev);
844 mutex_lock(&matrix_dev->guests_lock);
845 mutex_lock(&matrix_dev->mdevs_lock);
846 vfio_ap_mdev_reset_queues(matrix_mdev);
847 vfio_ap_mdev_unlink_fr_queues(matrix_mdev);
848 list_del(&matrix_mdev->node);
849 mutex_unlock(&matrix_dev->mdevs_lock);
850 mutex_unlock(&matrix_dev->guests_lock);
851 vfio_put_device(&matrix_mdev->vdev);
854 #define MDEV_SHARING_ERR "Userspace may not re-assign queue %02lx.%04lx " \
855 "already assigned to %s"
857 static void vfio_ap_mdev_log_sharing_err(struct ap_matrix_mdev *matrix_mdev,
861 unsigned long apid, apqi;
862 const struct device *dev = mdev_dev(matrix_mdev->mdev);
863 const char *mdev_name = dev_name(dev);
865 for_each_set_bit_inv(apid, apm, AP_DEVICES)
866 for_each_set_bit_inv(apqi, aqm, AP_DOMAINS)
867 dev_warn(dev, MDEV_SHARING_ERR, apid, apqi, mdev_name);
871 * vfio_ap_mdev_verify_no_sharing - verify APQNs are not shared by matrix mdevs
873 * @mdev_apm: mask indicating the APIDs of the APQNs to be verified
874 * @mdev_aqm: mask indicating the APQIs of the APQNs to be verified
876 * Verifies that each APQN derived from the Cartesian product of a bitmap of
877 * AP adapter IDs and AP queue indexes is not configured for any matrix
878 * mediated device. AP queue sharing is not allowed.
880 * Return: 0 if the APQNs are not shared; otherwise return -EADDRINUSE.
882 static int vfio_ap_mdev_verify_no_sharing(unsigned long *mdev_apm,
883 unsigned long *mdev_aqm)
885 struct ap_matrix_mdev *matrix_mdev;
886 DECLARE_BITMAP(apm, AP_DEVICES);
887 DECLARE_BITMAP(aqm, AP_DOMAINS);
889 list_for_each_entry(matrix_mdev, &matrix_dev->mdev_list, node) {
891 * If the input apm and aqm are fields of the matrix_mdev
892 * object, then move on to the next matrix_mdev.
894 if (mdev_apm == matrix_mdev->matrix.apm &&
895 mdev_aqm == matrix_mdev->matrix.aqm)
898 memset(apm, 0, sizeof(apm));
899 memset(aqm, 0, sizeof(aqm));
902 * We work on full longs, as we can only exclude the leftover
903 * bits in non-inverse order. The leftover is all zeros.
905 if (!bitmap_and(apm, mdev_apm, matrix_mdev->matrix.apm,
909 if (!bitmap_and(aqm, mdev_aqm, matrix_mdev->matrix.aqm,
913 vfio_ap_mdev_log_sharing_err(matrix_mdev, apm, aqm);
922 * vfio_ap_mdev_validate_masks - verify that the APQNs assigned to the mdev are
923 * not reserved for the default zcrypt driver and
924 * are not assigned to another mdev.
926 * @matrix_mdev: the mdev to which the APQNs being validated are assigned.
928 * Return: One of the following values:
929 * o the error returned from the ap_apqn_in_matrix_owned_by_def_drv() function,
930 * most likely -EBUSY indicating the ap_perms_mutex lock is already held.
931 * o EADDRNOTAVAIL if an APQN assigned to @matrix_mdev is reserved for the
932 * zcrypt default driver.
933 * o EADDRINUSE if an APQN assigned to @matrix_mdev is assigned to another mdev
934 * o A zero indicating validation succeeded.
936 static int vfio_ap_mdev_validate_masks(struct ap_matrix_mdev *matrix_mdev)
938 if (ap_apqn_in_matrix_owned_by_def_drv(matrix_mdev->matrix.apm,
939 matrix_mdev->matrix.aqm))
940 return -EADDRNOTAVAIL;
942 return vfio_ap_mdev_verify_no_sharing(matrix_mdev->matrix.apm,
943 matrix_mdev->matrix.aqm);
946 static void vfio_ap_mdev_link_adapter(struct ap_matrix_mdev *matrix_mdev,
951 for_each_set_bit_inv(apqi, matrix_mdev->matrix.aqm, AP_DOMAINS)
952 vfio_ap_mdev_link_apqn(matrix_mdev,
953 AP_MKQID(apid, apqi));
956 static void collect_queues_to_reset(struct ap_matrix_mdev *matrix_mdev,
958 struct list_head *qlist)
960 struct vfio_ap_queue *q;
963 for_each_set_bit_inv(apqi, matrix_mdev->shadow_apcb.aqm, AP_DOMAINS) {
964 q = vfio_ap_mdev_get_queue(matrix_mdev, AP_MKQID(apid, apqi));
966 list_add_tail(&q->reset_qnode, qlist);
970 static void reset_queues_for_apid(struct ap_matrix_mdev *matrix_mdev,
973 struct list_head qlist;
975 INIT_LIST_HEAD(&qlist);
976 collect_queues_to_reset(matrix_mdev, apid, &qlist);
977 vfio_ap_mdev_reset_qlist(&qlist);
980 static int reset_queues_for_apids(struct ap_matrix_mdev *matrix_mdev,
981 unsigned long *apm_reset)
983 struct list_head qlist;
986 if (bitmap_empty(apm_reset, AP_DEVICES))
989 INIT_LIST_HEAD(&qlist);
991 for_each_set_bit_inv(apid, apm_reset, AP_DEVICES)
992 collect_queues_to_reset(matrix_mdev, apid, &qlist);
994 return vfio_ap_mdev_reset_qlist(&qlist);
998 * assign_adapter_store - parses the APID from @buf and sets the
999 * corresponding bit in the mediated matrix device's APM
1001 * @dev: the matrix device
1002 * @attr: the mediated matrix device's assign_adapter attribute
1003 * @buf: a buffer containing the AP adapter number (APID) to
1005 * @count: the number of bytes in @buf
1007 * Return: the number of bytes processed if the APID is valid; otherwise,
1008 * returns one of the following errors:
1011 * The APID is not a valid number
1014 * The APID exceeds the maximum value configured for the system
1017 * An APQN derived from the cross product of the APID being assigned
1018 * and the APQIs previously assigned is not bound to the vfio_ap device
1019 * driver; or, if no APQIs have yet been assigned, the APID is not
1020 * contained in an APQN bound to the vfio_ap device driver.
1023 * An APQN derived from the cross product of the APID being assigned
1024 * and the APQIs previously assigned is being used by another mediated
1028 * A lock required to validate the mdev's AP configuration could not
1031 static ssize_t assign_adapter_store(struct device *dev,
1032 struct device_attribute *attr,
1033 const char *buf, size_t count)
1037 DECLARE_BITMAP(apm_filtered, AP_DEVICES);
1038 struct ap_matrix_mdev *matrix_mdev = dev_get_drvdata(dev);
1040 mutex_lock(&ap_perms_mutex);
1041 get_update_locks_for_mdev(matrix_mdev);
1043 ret = kstrtoul(buf, 0, &apid);
1047 if (apid > matrix_mdev->matrix.apm_max) {
1052 if (test_bit_inv(apid, matrix_mdev->matrix.apm)) {
1057 set_bit_inv(apid, matrix_mdev->matrix.apm);
1059 ret = vfio_ap_mdev_validate_masks(matrix_mdev);
1061 clear_bit_inv(apid, matrix_mdev->matrix.apm);
1065 vfio_ap_mdev_link_adapter(matrix_mdev, apid);
1067 if (vfio_ap_mdev_filter_matrix(matrix_mdev, apm_filtered)) {
1068 vfio_ap_mdev_update_guest_apcb(matrix_mdev);
1069 reset_queues_for_apids(matrix_mdev, apm_filtered);
1074 release_update_locks_for_mdev(matrix_mdev);
1075 mutex_unlock(&ap_perms_mutex);
1079 static DEVICE_ATTR_WO(assign_adapter);
1081 static struct vfio_ap_queue
1082 *vfio_ap_unlink_apqn_fr_mdev(struct ap_matrix_mdev *matrix_mdev,
1083 unsigned long apid, unsigned long apqi)
1085 struct vfio_ap_queue *q = NULL;
1087 q = vfio_ap_mdev_get_queue(matrix_mdev, AP_MKQID(apid, apqi));
1088 /* If the queue is assigned to the matrix mdev, unlink it. */
1090 vfio_ap_unlink_queue_fr_mdev(q);
1096 * vfio_ap_mdev_unlink_adapter - unlink all queues associated with unassigned
1097 * adapter from the matrix mdev to which the
1098 * adapter was assigned.
1099 * @matrix_mdev: the matrix mediated device to which the adapter was assigned.
1100 * @apid: the APID of the unassigned adapter.
1101 * @qlist: list for storing queues associated with unassigned adapter that
1104 static void vfio_ap_mdev_unlink_adapter(struct ap_matrix_mdev *matrix_mdev,
1106 struct list_head *qlist)
1109 struct vfio_ap_queue *q;
1111 for_each_set_bit_inv(apqi, matrix_mdev->matrix.aqm, AP_DOMAINS) {
1112 q = vfio_ap_unlink_apqn_fr_mdev(matrix_mdev, apid, apqi);
1115 if (test_bit_inv(apid, matrix_mdev->shadow_apcb.apm) &&
1116 test_bit_inv(apqi, matrix_mdev->shadow_apcb.aqm))
1117 list_add_tail(&q->reset_qnode, qlist);
1122 static void vfio_ap_mdev_hot_unplug_adapters(struct ap_matrix_mdev *matrix_mdev,
1123 unsigned long *apids)
1125 struct vfio_ap_queue *q, *tmpq;
1126 struct list_head qlist;
1128 bool apcb_update = false;
1130 INIT_LIST_HEAD(&qlist);
1132 for_each_set_bit_inv(apid, apids, AP_DEVICES) {
1133 vfio_ap_mdev_unlink_adapter(matrix_mdev, apid, &qlist);
1135 if (test_bit_inv(apid, matrix_mdev->shadow_apcb.apm)) {
1136 clear_bit_inv(apid, matrix_mdev->shadow_apcb.apm);
1141 /* Only update apcb if needed to avoid impacting guest */
1143 vfio_ap_mdev_update_guest_apcb(matrix_mdev);
1145 vfio_ap_mdev_reset_qlist(&qlist);
1147 list_for_each_entry_safe(q, tmpq, &qlist, reset_qnode) {
1148 vfio_ap_unlink_mdev_fr_queue(q);
1149 list_del(&q->reset_qnode);
1153 static void vfio_ap_mdev_hot_unplug_adapter(struct ap_matrix_mdev *matrix_mdev,
1156 DECLARE_BITMAP(apids, AP_DEVICES);
1158 bitmap_zero(apids, AP_DEVICES);
1159 set_bit_inv(apid, apids);
1160 vfio_ap_mdev_hot_unplug_adapters(matrix_mdev, apids);
1164 * unassign_adapter_store - parses the APID from @buf and clears the
1165 * corresponding bit in the mediated matrix device's APM
1167 * @dev: the matrix device
1168 * @attr: the mediated matrix device's unassign_adapter attribute
1169 * @buf: a buffer containing the adapter number (APID) to be unassigned
1170 * @count: the number of bytes in @buf
1172 * Return: the number of bytes processed if the APID is valid; otherwise,
1173 * returns one of the following errors:
1174 * -EINVAL if the APID is not a number
1175 * -ENODEV if the APID it exceeds the maximum value configured for the
1178 static ssize_t unassign_adapter_store(struct device *dev,
1179 struct device_attribute *attr,
1180 const char *buf, size_t count)
1184 struct ap_matrix_mdev *matrix_mdev = dev_get_drvdata(dev);
1186 get_update_locks_for_mdev(matrix_mdev);
1188 ret = kstrtoul(buf, 0, &apid);
1192 if (apid > matrix_mdev->matrix.apm_max) {
1197 if (!test_bit_inv(apid, matrix_mdev->matrix.apm)) {
1202 clear_bit_inv((unsigned long)apid, matrix_mdev->matrix.apm);
1203 vfio_ap_mdev_hot_unplug_adapter(matrix_mdev, apid);
1206 release_update_locks_for_mdev(matrix_mdev);
1209 static DEVICE_ATTR_WO(unassign_adapter);
1211 static void vfio_ap_mdev_link_domain(struct ap_matrix_mdev *matrix_mdev,
1216 for_each_set_bit_inv(apid, matrix_mdev->matrix.apm, AP_DEVICES)
1217 vfio_ap_mdev_link_apqn(matrix_mdev,
1218 AP_MKQID(apid, apqi));
1222 * assign_domain_store - parses the APQI from @buf and sets the
1223 * corresponding bit in the mediated matrix device's AQM
1225 * @dev: the matrix device
1226 * @attr: the mediated matrix device's assign_domain attribute
1227 * @buf: a buffer containing the AP queue index (APQI) of the domain to
1229 * @count: the number of bytes in @buf
1231 * Return: the number of bytes processed if the APQI is valid; otherwise returns
1232 * one of the following errors:
1235 * The APQI is not a valid number
1238 * The APQI exceeds the maximum value configured for the system
1241 * An APQN derived from the cross product of the APQI being assigned
1242 * and the APIDs previously assigned is not bound to the vfio_ap device
1243 * driver; or, if no APIDs have yet been assigned, the APQI is not
1244 * contained in an APQN bound to the vfio_ap device driver.
1247 * An APQN derived from the cross product of the APQI being assigned
1248 * and the APIDs previously assigned is being used by another mediated
1252 * The lock required to validate the mdev's AP configuration could not
1255 static ssize_t assign_domain_store(struct device *dev,
1256 struct device_attribute *attr,
1257 const char *buf, size_t count)
1261 DECLARE_BITMAP(apm_filtered, AP_DEVICES);
1262 struct ap_matrix_mdev *matrix_mdev = dev_get_drvdata(dev);
1264 mutex_lock(&ap_perms_mutex);
1265 get_update_locks_for_mdev(matrix_mdev);
1267 ret = kstrtoul(buf, 0, &apqi);
1271 if (apqi > matrix_mdev->matrix.aqm_max) {
1276 if (test_bit_inv(apqi, matrix_mdev->matrix.aqm)) {
1281 set_bit_inv(apqi, matrix_mdev->matrix.aqm);
1283 ret = vfio_ap_mdev_validate_masks(matrix_mdev);
1285 clear_bit_inv(apqi, matrix_mdev->matrix.aqm);
1289 vfio_ap_mdev_link_domain(matrix_mdev, apqi);
1291 if (vfio_ap_mdev_filter_matrix(matrix_mdev, apm_filtered)) {
1292 vfio_ap_mdev_update_guest_apcb(matrix_mdev);
1293 reset_queues_for_apids(matrix_mdev, apm_filtered);
1298 release_update_locks_for_mdev(matrix_mdev);
1299 mutex_unlock(&ap_perms_mutex);
1303 static DEVICE_ATTR_WO(assign_domain);
1305 static void vfio_ap_mdev_unlink_domain(struct ap_matrix_mdev *matrix_mdev,
1307 struct list_head *qlist)
1310 struct vfio_ap_queue *q;
1312 for_each_set_bit_inv(apid, matrix_mdev->matrix.apm, AP_DEVICES) {
1313 q = vfio_ap_unlink_apqn_fr_mdev(matrix_mdev, apid, apqi);
1316 if (test_bit_inv(apid, matrix_mdev->shadow_apcb.apm) &&
1317 test_bit_inv(apqi, matrix_mdev->shadow_apcb.aqm))
1318 list_add_tail(&q->reset_qnode, qlist);
1323 static void vfio_ap_mdev_hot_unplug_domains(struct ap_matrix_mdev *matrix_mdev,
1324 unsigned long *apqis)
1326 struct vfio_ap_queue *q, *tmpq;
1327 struct list_head qlist;
1329 bool apcb_update = false;
1331 INIT_LIST_HEAD(&qlist);
1333 for_each_set_bit_inv(apqi, apqis, AP_DOMAINS) {
1334 vfio_ap_mdev_unlink_domain(matrix_mdev, apqi, &qlist);
1336 if (test_bit_inv(apqi, matrix_mdev->shadow_apcb.aqm)) {
1337 clear_bit_inv(apqi, matrix_mdev->shadow_apcb.aqm);
1342 /* Only update apcb if needed to avoid impacting guest */
1344 vfio_ap_mdev_update_guest_apcb(matrix_mdev);
1346 vfio_ap_mdev_reset_qlist(&qlist);
1348 list_for_each_entry_safe(q, tmpq, &qlist, reset_qnode) {
1349 vfio_ap_unlink_mdev_fr_queue(q);
1350 list_del(&q->reset_qnode);
1354 static void vfio_ap_mdev_hot_unplug_domain(struct ap_matrix_mdev *matrix_mdev,
1357 DECLARE_BITMAP(apqis, AP_DOMAINS);
1359 bitmap_zero(apqis, AP_DEVICES);
1360 set_bit_inv(apqi, apqis);
1361 vfio_ap_mdev_hot_unplug_domains(matrix_mdev, apqis);
1365 * unassign_domain_store - parses the APQI from @buf and clears the
1366 * corresponding bit in the mediated matrix device's AQM
1368 * @dev: the matrix device
1369 * @attr: the mediated matrix device's unassign_domain attribute
1370 * @buf: a buffer containing the AP queue index (APQI) of the domain to
1372 * @count: the number of bytes in @buf
1374 * Return: the number of bytes processed if the APQI is valid; otherwise,
1375 * returns one of the following errors:
1376 * -EINVAL if the APQI is not a number
1377 * -ENODEV if the APQI exceeds the maximum value configured for the system
1379 static ssize_t unassign_domain_store(struct device *dev,
1380 struct device_attribute *attr,
1381 const char *buf, size_t count)
1385 struct ap_matrix_mdev *matrix_mdev = dev_get_drvdata(dev);
1387 get_update_locks_for_mdev(matrix_mdev);
1389 ret = kstrtoul(buf, 0, &apqi);
1393 if (apqi > matrix_mdev->matrix.aqm_max) {
1398 if (!test_bit_inv(apqi, matrix_mdev->matrix.aqm)) {
1403 clear_bit_inv((unsigned long)apqi, matrix_mdev->matrix.aqm);
1404 vfio_ap_mdev_hot_unplug_domain(matrix_mdev, apqi);
1408 release_update_locks_for_mdev(matrix_mdev);
1411 static DEVICE_ATTR_WO(unassign_domain);
1414 * assign_control_domain_store - parses the domain ID from @buf and sets
1415 * the corresponding bit in the mediated matrix device's ADM
1417 * @dev: the matrix device
1418 * @attr: the mediated matrix device's assign_control_domain attribute
1419 * @buf: a buffer containing the domain ID to be assigned
1420 * @count: the number of bytes in @buf
1422 * Return: the number of bytes processed if the domain ID is valid; otherwise,
1423 * returns one of the following errors:
1424 * -EINVAL if the ID is not a number
1425 * -ENODEV if the ID exceeds the maximum value configured for the system
1427 static ssize_t assign_control_domain_store(struct device *dev,
1428 struct device_attribute *attr,
1429 const char *buf, size_t count)
1433 struct ap_matrix_mdev *matrix_mdev = dev_get_drvdata(dev);
1435 get_update_locks_for_mdev(matrix_mdev);
1437 ret = kstrtoul(buf, 0, &id);
1441 if (id > matrix_mdev->matrix.adm_max) {
1446 if (test_bit_inv(id, matrix_mdev->matrix.adm)) {
1451 /* Set the bit in the ADM (bitmask) corresponding to the AP control
1452 * domain number (id). The bits in the mask, from most significant to
1453 * least significant, correspond to IDs 0 up to the one less than the
1454 * number of control domains that can be assigned.
1456 set_bit_inv(id, matrix_mdev->matrix.adm);
1457 if (vfio_ap_mdev_filter_cdoms(matrix_mdev))
1458 vfio_ap_mdev_update_guest_apcb(matrix_mdev);
1462 release_update_locks_for_mdev(matrix_mdev);
1465 static DEVICE_ATTR_WO(assign_control_domain);
1468 * unassign_control_domain_store - parses the domain ID from @buf and
1469 * clears the corresponding bit in the mediated matrix device's ADM
1471 * @dev: the matrix device
1472 * @attr: the mediated matrix device's unassign_control_domain attribute
1473 * @buf: a buffer containing the domain ID to be unassigned
1474 * @count: the number of bytes in @buf
1476 * Return: the number of bytes processed if the domain ID is valid; otherwise,
1477 * returns one of the following errors:
1478 * -EINVAL if the ID is not a number
1479 * -ENODEV if the ID exceeds the maximum value configured for the system
1481 static ssize_t unassign_control_domain_store(struct device *dev,
1482 struct device_attribute *attr,
1483 const char *buf, size_t count)
1486 unsigned long domid;
1487 struct ap_matrix_mdev *matrix_mdev = dev_get_drvdata(dev);
1489 get_update_locks_for_mdev(matrix_mdev);
1491 ret = kstrtoul(buf, 0, &domid);
1495 if (domid > matrix_mdev->matrix.adm_max) {
1500 if (!test_bit_inv(domid, matrix_mdev->matrix.adm)) {
1505 clear_bit_inv(domid, matrix_mdev->matrix.adm);
1507 if (test_bit_inv(domid, matrix_mdev->shadow_apcb.adm)) {
1508 clear_bit_inv(domid, matrix_mdev->shadow_apcb.adm);
1509 vfio_ap_mdev_update_guest_apcb(matrix_mdev);
1514 release_update_locks_for_mdev(matrix_mdev);
1517 static DEVICE_ATTR_WO(unassign_control_domain);
1519 static ssize_t control_domains_show(struct device *dev,
1520 struct device_attribute *dev_attr,
1527 struct ap_matrix_mdev *matrix_mdev = dev_get_drvdata(dev);
1528 unsigned long max_domid = matrix_mdev->matrix.adm_max;
1530 mutex_lock(&matrix_dev->mdevs_lock);
1531 for_each_set_bit_inv(id, matrix_mdev->matrix.adm, max_domid + 1) {
1532 n = sprintf(bufpos, "%04lx\n", id);
1536 mutex_unlock(&matrix_dev->mdevs_lock);
1540 static DEVICE_ATTR_RO(control_domains);
1542 static ssize_t vfio_ap_mdev_matrix_show(struct ap_matrix *matrix, char *buf)
1547 unsigned long apid1;
1548 unsigned long apqi1;
1549 unsigned long napm_bits = matrix->apm_max + 1;
1550 unsigned long naqm_bits = matrix->aqm_max + 1;
1554 apid1 = find_first_bit_inv(matrix->apm, napm_bits);
1555 apqi1 = find_first_bit_inv(matrix->aqm, naqm_bits);
1557 if ((apid1 < napm_bits) && (apqi1 < naqm_bits)) {
1558 for_each_set_bit_inv(apid, matrix->apm, napm_bits) {
1559 for_each_set_bit_inv(apqi, matrix->aqm,
1561 n = sprintf(bufpos, "%02lx.%04lx\n", apid,
1567 } else if (apid1 < napm_bits) {
1568 for_each_set_bit_inv(apid, matrix->apm, napm_bits) {
1569 n = sprintf(bufpos, "%02lx.\n", apid);
1573 } else if (apqi1 < naqm_bits) {
1574 for_each_set_bit_inv(apqi, matrix->aqm, naqm_bits) {
1575 n = sprintf(bufpos, ".%04lx\n", apqi);
1584 static ssize_t matrix_show(struct device *dev, struct device_attribute *attr,
1588 struct ap_matrix_mdev *matrix_mdev = dev_get_drvdata(dev);
1590 mutex_lock(&matrix_dev->mdevs_lock);
1591 nchars = vfio_ap_mdev_matrix_show(&matrix_mdev->matrix, buf);
1592 mutex_unlock(&matrix_dev->mdevs_lock);
1596 static DEVICE_ATTR_RO(matrix);
1598 static ssize_t guest_matrix_show(struct device *dev,
1599 struct device_attribute *attr, char *buf)
1602 struct ap_matrix_mdev *matrix_mdev = dev_get_drvdata(dev);
1604 mutex_lock(&matrix_dev->mdevs_lock);
1605 nchars = vfio_ap_mdev_matrix_show(&matrix_mdev->shadow_apcb, buf);
1606 mutex_unlock(&matrix_dev->mdevs_lock);
1610 static DEVICE_ATTR_RO(guest_matrix);
1612 static ssize_t write_ap_bitmap(unsigned long *bitmap, char *buf, int offset, char sep)
1614 return sysfs_emit_at(buf, offset, "0x%016lx%016lx%016lx%016lx%c",
1615 bitmap[0], bitmap[1], bitmap[2], bitmap[3], sep);
1618 static ssize_t ap_config_show(struct device *dev, struct device_attribute *attr,
1621 struct ap_matrix_mdev *matrix_mdev = dev_get_drvdata(dev);
1624 idx += write_ap_bitmap(matrix_mdev->matrix.apm, buf, idx, ',');
1625 idx += write_ap_bitmap(matrix_mdev->matrix.aqm, buf, idx, ',');
1626 idx += write_ap_bitmap(matrix_mdev->matrix.adm, buf, idx, '\n');
1631 /* Number of characters needed for a complete hex mask representing the bits in .. */
1632 #define AP_DEVICES_STRLEN (AP_DEVICES / 4 + 3)
1633 #define AP_DOMAINS_STRLEN (AP_DOMAINS / 4 + 3)
1634 #define AP_CONFIG_STRLEN (AP_DEVICES_STRLEN + 2 * AP_DOMAINS_STRLEN)
1636 static int parse_bitmap(char **strbufptr, unsigned long *bitmap, int nbits)
1640 curmask = strsep(strbufptr, ",\n");
1644 bitmap_clear(bitmap, 0, nbits);
1645 return ap_hex2bitmap(curmask, bitmap, nbits);
1648 static int ap_matrix_overflow_check(struct ap_matrix_mdev *matrix_mdev)
1652 for_each_set_bit_inv(bit, matrix_mdev->matrix.apm, AP_DEVICES) {
1653 if (bit > matrix_mdev->matrix.apm_max)
1657 for_each_set_bit_inv(bit, matrix_mdev->matrix.aqm, AP_DOMAINS) {
1658 if (bit > matrix_mdev->matrix.aqm_max)
1662 for_each_set_bit_inv(bit, matrix_mdev->matrix.adm, AP_DOMAINS) {
1663 if (bit > matrix_mdev->matrix.adm_max)
1670 static void ap_matrix_copy(struct ap_matrix *dst, struct ap_matrix *src)
1672 /* This check works around false positive gcc -Wstringop-overread */
1676 bitmap_copy(dst->apm, src->apm, AP_DEVICES);
1677 bitmap_copy(dst->aqm, src->aqm, AP_DOMAINS);
1678 bitmap_copy(dst->adm, src->adm, AP_DOMAINS);
1681 static ssize_t ap_config_store(struct device *dev, struct device_attribute *attr,
1682 const char *buf, size_t count)
1684 struct ap_matrix_mdev *matrix_mdev = dev_get_drvdata(dev);
1685 struct ap_matrix m_new, m_old, m_added, m_removed;
1686 DECLARE_BITMAP(apm_filtered, AP_DEVICES);
1687 unsigned long newbit;
1688 char *newbuf, *rest;
1692 newbuf = kstrndup(buf, AP_CONFIG_STRLEN, GFP_KERNEL);
1697 mutex_lock(&ap_perms_mutex);
1698 get_update_locks_for_mdev(matrix_mdev);
1700 /* Save old state */
1701 ap_matrix_copy(&m_old, &matrix_mdev->matrix);
1702 if (parse_bitmap(&rest, m_new.apm, AP_DEVICES) ||
1703 parse_bitmap(&rest, m_new.aqm, AP_DOMAINS) ||
1704 parse_bitmap(&rest, m_new.adm, AP_DOMAINS)) {
1709 bitmap_andnot(m_removed.apm, m_old.apm, m_new.apm, AP_DEVICES);
1710 bitmap_andnot(m_removed.aqm, m_old.aqm, m_new.aqm, AP_DOMAINS);
1711 bitmap_andnot(m_added.apm, m_new.apm, m_old.apm, AP_DEVICES);
1712 bitmap_andnot(m_added.aqm, m_new.aqm, m_old.aqm, AP_DOMAINS);
1714 /* Need new bitmaps in matrix_mdev for validation */
1715 ap_matrix_copy(&matrix_mdev->matrix, &m_new);
1717 /* Ensure new state is valid, else undo new state */
1718 rc = vfio_ap_mdev_validate_masks(matrix_mdev);
1720 ap_matrix_copy(&matrix_mdev->matrix, &m_old);
1723 rc = ap_matrix_overflow_check(matrix_mdev);
1725 ap_matrix_copy(&matrix_mdev->matrix, &m_old);
1730 /* Need old bitmaps in matrix_mdev for unplug/unlink */
1731 ap_matrix_copy(&matrix_mdev->matrix, &m_old);
1733 /* Unlink removed adapters/domains */
1734 vfio_ap_mdev_hot_unplug_adapters(matrix_mdev, m_removed.apm);
1735 vfio_ap_mdev_hot_unplug_domains(matrix_mdev, m_removed.aqm);
1737 /* Need new bitmaps in matrix_mdev for linking new adapters/domains */
1738 ap_matrix_copy(&matrix_mdev->matrix, &m_new);
1740 /* Link newly added adapters */
1741 for_each_set_bit_inv(newbit, m_added.apm, AP_DEVICES)
1742 vfio_ap_mdev_link_adapter(matrix_mdev, newbit);
1744 for_each_set_bit_inv(newbit, m_added.aqm, AP_DOMAINS)
1745 vfio_ap_mdev_link_domain(matrix_mdev, newbit);
1747 /* filter resources not bound to vfio-ap */
1748 do_update = vfio_ap_mdev_filter_matrix(matrix_mdev, apm_filtered);
1749 do_update |= vfio_ap_mdev_filter_cdoms(matrix_mdev);
1751 /* Apply changes to shadow apbc if things changed */
1753 vfio_ap_mdev_update_guest_apcb(matrix_mdev);
1754 reset_queues_for_apids(matrix_mdev, apm_filtered);
1757 release_update_locks_for_mdev(matrix_mdev);
1758 mutex_unlock(&ap_perms_mutex);
1762 static DEVICE_ATTR_RW(ap_config);
1764 static struct attribute *vfio_ap_mdev_attrs[] = {
1765 &dev_attr_assign_adapter.attr,
1766 &dev_attr_unassign_adapter.attr,
1767 &dev_attr_assign_domain.attr,
1768 &dev_attr_unassign_domain.attr,
1769 &dev_attr_assign_control_domain.attr,
1770 &dev_attr_unassign_control_domain.attr,
1771 &dev_attr_ap_config.attr,
1772 &dev_attr_control_domains.attr,
1773 &dev_attr_matrix.attr,
1774 &dev_attr_guest_matrix.attr,
1778 static struct attribute_group vfio_ap_mdev_attr_group = {
1779 .attrs = vfio_ap_mdev_attrs
1782 static const struct attribute_group *vfio_ap_mdev_attr_groups[] = {
1783 &vfio_ap_mdev_attr_group,
1788 * vfio_ap_mdev_set_kvm - sets all data for @matrix_mdev that are needed
1789 * to manage AP resources for the guest whose state is represented by @kvm
1791 * @matrix_mdev: a mediated matrix device
1792 * @kvm: reference to KVM instance
1794 * Return: 0 if no other mediated matrix device has a reference to @kvm;
1795 * otherwise, returns an -EPERM.
1797 static int vfio_ap_mdev_set_kvm(struct ap_matrix_mdev *matrix_mdev,
1800 struct ap_matrix_mdev *m;
1802 if (kvm->arch.crypto.crycbd) {
1803 down_write(&kvm->arch.crypto.pqap_hook_rwsem);
1804 kvm->arch.crypto.pqap_hook = &matrix_mdev->pqap_hook;
1805 up_write(&kvm->arch.crypto.pqap_hook_rwsem);
1807 get_update_locks_for_kvm(kvm);
1809 list_for_each_entry(m, &matrix_dev->mdev_list, node) {
1810 if (m != matrix_mdev && m->kvm == kvm) {
1811 release_update_locks_for_kvm(kvm);
1817 matrix_mdev->kvm = kvm;
1818 vfio_ap_mdev_update_guest_apcb(matrix_mdev);
1820 release_update_locks_for_kvm(kvm);
1826 static void unmap_iova(struct ap_matrix_mdev *matrix_mdev, u64 iova, u64 length)
1828 struct ap_queue_table *qtable = &matrix_mdev->qtable;
1829 struct vfio_ap_queue *q;
1832 hash_for_each(qtable->queues, loop_cursor, q, mdev_qnode) {
1833 if (q->saved_iova >= iova && q->saved_iova < iova + length)
1834 vfio_ap_irq_disable(q);
1838 static void vfio_ap_mdev_dma_unmap(struct vfio_device *vdev, u64 iova,
1841 struct ap_matrix_mdev *matrix_mdev =
1842 container_of(vdev, struct ap_matrix_mdev, vdev);
1844 mutex_lock(&matrix_dev->mdevs_lock);
1846 unmap_iova(matrix_mdev, iova, length);
1848 mutex_unlock(&matrix_dev->mdevs_lock);
1852 * vfio_ap_mdev_unset_kvm - performs clean-up of resources no longer needed
1855 * @matrix_mdev: a matrix mediated device
1857 static void vfio_ap_mdev_unset_kvm(struct ap_matrix_mdev *matrix_mdev)
1859 struct kvm *kvm = matrix_mdev->kvm;
1861 if (kvm && kvm->arch.crypto.crycbd) {
1862 down_write(&kvm->arch.crypto.pqap_hook_rwsem);
1863 kvm->arch.crypto.pqap_hook = NULL;
1864 up_write(&kvm->arch.crypto.pqap_hook_rwsem);
1866 get_update_locks_for_kvm(kvm);
1868 kvm_arch_crypto_clear_masks(kvm);
1869 vfio_ap_mdev_reset_queues(matrix_mdev);
1871 matrix_mdev->kvm = NULL;
1873 release_update_locks_for_kvm(kvm);
1877 static struct vfio_ap_queue *vfio_ap_find_queue(int apqn)
1879 struct ap_queue *queue;
1880 struct vfio_ap_queue *q = NULL;
1882 queue = ap_get_qdev(apqn);
1886 if (queue->ap_dev.device.driver == &matrix_dev->vfio_ap_drv->driver)
1887 q = dev_get_drvdata(&queue->ap_dev.device);
1889 put_device(&queue->ap_dev.device);
1894 static int apq_status_check(int apqn, struct ap_queue_status *status)
1896 switch (status->response_code) {
1897 case AP_RESPONSE_NORMAL:
1898 case AP_RESPONSE_DECONFIGURED:
1899 case AP_RESPONSE_CHECKSTOPPED:
1901 case AP_RESPONSE_RESET_IN_PROGRESS:
1902 case AP_RESPONSE_BUSY:
1904 case AP_RESPONSE_ASSOC_SECRET_NOT_UNIQUE:
1905 case AP_RESPONSE_ASSOC_FAILED:
1907 * These asynchronous response codes indicate a PQAP(AAPQ)
1908 * instruction to associate a secret with the guest failed. All
1909 * subsequent AP instructions will end with the asynchronous
1910 * response code until the AP queue is reset; so, let's return
1911 * a value indicating a reset needs to be performed again.
1916 "failed to verify reset of queue %02x.%04x: TAPQ rc=%u\n",
1917 AP_QID_CARD(apqn), AP_QID_QUEUE(apqn),
1918 status->response_code);
1923 #define WAIT_MSG "Waited %dms for reset of queue %02x.%04x (%u, %u, %u)"
1925 static void apq_reset_check(struct work_struct *reset_work)
1927 int ret = -EBUSY, elapsed = 0;
1928 struct ap_queue_status status;
1929 struct vfio_ap_queue *q;
1931 q = container_of(reset_work, struct vfio_ap_queue, reset_work);
1932 memcpy(&status, &q->reset_status, sizeof(status));
1934 msleep(AP_RESET_INTERVAL);
1935 elapsed += AP_RESET_INTERVAL;
1936 status = ap_tapq(q->apqn, NULL);
1937 ret = apq_status_check(q->apqn, &status);
1940 if (ret == -EBUSY) {
1941 pr_notice_ratelimited(WAIT_MSG, elapsed,
1942 AP_QID_CARD(q->apqn),
1943 AP_QID_QUEUE(q->apqn),
1944 status.response_code,
1946 status.irq_enabled);
1948 if (q->reset_status.response_code == AP_RESPONSE_RESET_IN_PROGRESS ||
1949 q->reset_status.response_code == AP_RESPONSE_BUSY ||
1950 q->reset_status.response_code == AP_RESPONSE_STATE_CHANGE_IN_PROGRESS ||
1952 status = ap_zapq(q->apqn, 0);
1953 memcpy(&q->reset_status, &status, sizeof(status));
1956 if (q->saved_isc != VFIO_AP_ISC_INVALID)
1957 vfio_ap_free_aqic_resources(q);
1963 static void vfio_ap_mdev_reset_queue(struct vfio_ap_queue *q)
1965 struct ap_queue_status status;
1969 status = ap_zapq(q->apqn, 0);
1970 memcpy(&q->reset_status, &status, sizeof(status));
1971 switch (status.response_code) {
1972 case AP_RESPONSE_NORMAL:
1973 case AP_RESPONSE_RESET_IN_PROGRESS:
1974 case AP_RESPONSE_BUSY:
1975 case AP_RESPONSE_STATE_CHANGE_IN_PROGRESS:
1977 * Let's verify whether the ZAPQ completed successfully on a work queue.
1979 queue_work(system_long_wq, &q->reset_work);
1981 case AP_RESPONSE_DECONFIGURED:
1982 case AP_RESPONSE_CHECKSTOPPED:
1983 vfio_ap_free_aqic_resources(q);
1987 "PQAP/ZAPQ for %02x.%04x failed with invalid rc=%u\n",
1988 AP_QID_CARD(q->apqn), AP_QID_QUEUE(q->apqn),
1989 status.response_code);
1993 static int vfio_ap_mdev_reset_queues(struct ap_matrix_mdev *matrix_mdev)
1995 int ret = 0, loop_cursor;
1996 struct vfio_ap_queue *q;
1998 hash_for_each(matrix_mdev->qtable.queues, loop_cursor, q, mdev_qnode)
1999 vfio_ap_mdev_reset_queue(q);
2001 hash_for_each(matrix_mdev->qtable.queues, loop_cursor, q, mdev_qnode) {
2002 flush_work(&q->reset_work);
2004 if (q->reset_status.response_code)
2011 static int vfio_ap_mdev_reset_qlist(struct list_head *qlist)
2014 struct vfio_ap_queue *q;
2016 list_for_each_entry(q, qlist, reset_qnode)
2017 vfio_ap_mdev_reset_queue(q);
2019 list_for_each_entry(q, qlist, reset_qnode) {
2020 flush_work(&q->reset_work);
2022 if (q->reset_status.response_code)
2029 static int vfio_ap_mdev_open_device(struct vfio_device *vdev)
2031 struct ap_matrix_mdev *matrix_mdev =
2032 container_of(vdev, struct ap_matrix_mdev, vdev);
2037 return vfio_ap_mdev_set_kvm(matrix_mdev, vdev->kvm);
2040 static void vfio_ap_mdev_close_device(struct vfio_device *vdev)
2042 struct ap_matrix_mdev *matrix_mdev =
2043 container_of(vdev, struct ap_matrix_mdev, vdev);
2045 vfio_ap_mdev_unset_kvm(matrix_mdev);
2048 static void vfio_ap_mdev_request(struct vfio_device *vdev, unsigned int count)
2050 struct device *dev = vdev->dev;
2051 struct ap_matrix_mdev *matrix_mdev;
2053 matrix_mdev = container_of(vdev, struct ap_matrix_mdev, vdev);
2055 if (matrix_mdev->req_trigger) {
2057 dev_notice_ratelimited(dev,
2058 "Relaying device request to user (#%u)\n",
2061 eventfd_signal(matrix_mdev->req_trigger);
2062 } else if (count == 0) {
2064 "No device request registered, blocked until released by user\n");
2068 static int vfio_ap_mdev_get_device_info(unsigned long arg)
2070 unsigned long minsz;
2071 struct vfio_device_info info;
2073 minsz = offsetofend(struct vfio_device_info, num_irqs);
2075 if (copy_from_user(&info, (void __user *)arg, minsz))
2078 if (info.argsz < minsz)
2081 info.flags = VFIO_DEVICE_FLAGS_AP | VFIO_DEVICE_FLAGS_RESET;
2082 info.num_regions = 0;
2083 info.num_irqs = VFIO_AP_NUM_IRQS;
2085 return copy_to_user((void __user *)arg, &info, minsz) ? -EFAULT : 0;
2088 static ssize_t vfio_ap_get_irq_info(unsigned long arg)
2090 unsigned long minsz;
2091 struct vfio_irq_info info;
2093 minsz = offsetofend(struct vfio_irq_info, count);
2095 if (copy_from_user(&info, (void __user *)arg, minsz))
2098 if (info.argsz < minsz || info.index >= VFIO_AP_NUM_IRQS)
2101 switch (info.index) {
2102 case VFIO_AP_REQ_IRQ_INDEX:
2104 info.flags = VFIO_IRQ_INFO_EVENTFD;
2110 return copy_to_user((void __user *)arg, &info, minsz) ? -EFAULT : 0;
2113 static int vfio_ap_irq_set_init(struct vfio_irq_set *irq_set, unsigned long arg)
2117 unsigned long minsz;
2119 minsz = offsetofend(struct vfio_irq_set, count);
2121 if (copy_from_user(irq_set, (void __user *)arg, minsz))
2124 ret = vfio_set_irqs_validate_and_prepare(irq_set, 1, VFIO_AP_NUM_IRQS,
2129 if (!(irq_set->flags & VFIO_IRQ_SET_ACTION_TRIGGER))
2135 static int vfio_ap_set_request_irq(struct ap_matrix_mdev *matrix_mdev,
2140 unsigned long minsz;
2141 struct eventfd_ctx *req_trigger;
2143 minsz = offsetofend(struct vfio_irq_set, count);
2144 data = (void __user *)(arg + minsz);
2146 if (get_user(fd, (s32 __user *)data))
2150 if (matrix_mdev->req_trigger)
2151 eventfd_ctx_put(matrix_mdev->req_trigger);
2152 matrix_mdev->req_trigger = NULL;
2153 } else if (fd >= 0) {
2154 req_trigger = eventfd_ctx_fdget(fd);
2155 if (IS_ERR(req_trigger))
2156 return PTR_ERR(req_trigger);
2158 if (matrix_mdev->req_trigger)
2159 eventfd_ctx_put(matrix_mdev->req_trigger);
2161 matrix_mdev->req_trigger = req_trigger;
2169 static int vfio_ap_set_irqs(struct ap_matrix_mdev *matrix_mdev,
2173 struct vfio_irq_set irq_set;
2175 ret = vfio_ap_irq_set_init(&irq_set, arg);
2179 switch (irq_set.flags & VFIO_IRQ_SET_DATA_TYPE_MASK) {
2180 case VFIO_IRQ_SET_DATA_EVENTFD:
2181 switch (irq_set.index) {
2182 case VFIO_AP_REQ_IRQ_INDEX:
2183 return vfio_ap_set_request_irq(matrix_mdev, arg);
2192 static ssize_t vfio_ap_mdev_ioctl(struct vfio_device *vdev,
2193 unsigned int cmd, unsigned long arg)
2195 struct ap_matrix_mdev *matrix_mdev =
2196 container_of(vdev, struct ap_matrix_mdev, vdev);
2199 mutex_lock(&matrix_dev->mdevs_lock);
2201 case VFIO_DEVICE_GET_INFO:
2202 ret = vfio_ap_mdev_get_device_info(arg);
2204 case VFIO_DEVICE_RESET:
2205 ret = vfio_ap_mdev_reset_queues(matrix_mdev);
2207 case VFIO_DEVICE_GET_IRQ_INFO:
2208 ret = vfio_ap_get_irq_info(arg);
2210 case VFIO_DEVICE_SET_IRQS:
2211 ret = vfio_ap_set_irqs(matrix_mdev, arg);
2217 mutex_unlock(&matrix_dev->mdevs_lock);
2222 static struct ap_matrix_mdev *vfio_ap_mdev_for_queue(struct vfio_ap_queue *q)
2224 struct ap_matrix_mdev *matrix_mdev;
2225 unsigned long apid = AP_QID_CARD(q->apqn);
2226 unsigned long apqi = AP_QID_QUEUE(q->apqn);
2228 list_for_each_entry(matrix_mdev, &matrix_dev->mdev_list, node) {
2229 if (test_bit_inv(apid, matrix_mdev->matrix.apm) &&
2230 test_bit_inv(apqi, matrix_mdev->matrix.aqm))
2237 static ssize_t status_show(struct device *dev,
2238 struct device_attribute *attr,
2242 struct vfio_ap_queue *q;
2243 unsigned long apid, apqi;
2244 struct ap_matrix_mdev *matrix_mdev;
2245 struct ap_device *apdev = to_ap_dev(dev);
2247 mutex_lock(&matrix_dev->mdevs_lock);
2248 q = dev_get_drvdata(&apdev->device);
2249 matrix_mdev = vfio_ap_mdev_for_queue(q);
2251 /* If the queue is assigned to the matrix mediated device, then
2252 * determine whether it is passed through to a guest; otherwise,
2253 * indicate that it is unassigned.
2256 apid = AP_QID_CARD(q->apqn);
2257 apqi = AP_QID_QUEUE(q->apqn);
2259 * If the queue is passed through to the guest, then indicate
2260 * that it is in use; otherwise, indicate that it is
2261 * merely assigned to a matrix mediated device.
2263 if (matrix_mdev->kvm &&
2264 test_bit_inv(apid, matrix_mdev->shadow_apcb.apm) &&
2265 test_bit_inv(apqi, matrix_mdev->shadow_apcb.aqm))
2266 nchars = scnprintf(buf, PAGE_SIZE, "%s\n",
2269 nchars = scnprintf(buf, PAGE_SIZE, "%s\n",
2272 nchars = scnprintf(buf, PAGE_SIZE, "%s\n",
2273 AP_QUEUE_UNASSIGNED);
2276 mutex_unlock(&matrix_dev->mdevs_lock);
2281 static DEVICE_ATTR_RO(status);
2283 static struct attribute *vfio_queue_attrs[] = {
2284 &dev_attr_status.attr,
2288 static const struct attribute_group vfio_queue_attr_group = {
2289 .attrs = vfio_queue_attrs,
2292 static const struct vfio_device_ops vfio_ap_matrix_dev_ops = {
2293 .init = vfio_ap_mdev_init_dev,
2294 .open_device = vfio_ap_mdev_open_device,
2295 .close_device = vfio_ap_mdev_close_device,
2296 .ioctl = vfio_ap_mdev_ioctl,
2297 .dma_unmap = vfio_ap_mdev_dma_unmap,
2298 .bind_iommufd = vfio_iommufd_emulated_bind,
2299 .unbind_iommufd = vfio_iommufd_emulated_unbind,
2300 .attach_ioas = vfio_iommufd_emulated_attach_ioas,
2301 .detach_ioas = vfio_iommufd_emulated_detach_ioas,
2302 .request = vfio_ap_mdev_request
2305 static struct mdev_driver vfio_ap_matrix_driver = {
2306 .device_api = VFIO_DEVICE_API_AP_STRING,
2307 .max_instances = MAX_ZDEV_ENTRIES_EXT,
2309 .name = "vfio_ap_mdev",
2310 .owner = THIS_MODULE,
2311 .mod_name = KBUILD_MODNAME,
2312 .dev_groups = vfio_ap_mdev_attr_groups,
2314 .probe = vfio_ap_mdev_probe,
2315 .remove = vfio_ap_mdev_remove,
2318 int vfio_ap_mdev_register(void)
2322 ret = mdev_register_driver(&vfio_ap_matrix_driver);
2326 matrix_dev->mdev_type.sysfs_name = VFIO_AP_MDEV_TYPE_HWVIRT;
2327 matrix_dev->mdev_type.pretty_name = VFIO_AP_MDEV_NAME_HWVIRT;
2328 matrix_dev->mdev_types[0] = &matrix_dev->mdev_type;
2329 ret = mdev_register_parent(&matrix_dev->parent, &matrix_dev->device,
2330 &vfio_ap_matrix_driver,
2331 matrix_dev->mdev_types, 1);
2337 mdev_unregister_driver(&vfio_ap_matrix_driver);
2341 void vfio_ap_mdev_unregister(void)
2343 mdev_unregister_parent(&matrix_dev->parent);
2344 mdev_unregister_driver(&vfio_ap_matrix_driver);
2347 int vfio_ap_mdev_probe_queue(struct ap_device *apdev)
2350 struct vfio_ap_queue *q;
2351 DECLARE_BITMAP(apm_filtered, AP_DEVICES);
2352 struct ap_matrix_mdev *matrix_mdev;
2354 ret = sysfs_create_group(&apdev->device.kobj, &vfio_queue_attr_group);
2358 q = kzalloc(sizeof(*q), GFP_KERNEL);
2361 goto err_remove_group;
2364 q->apqn = to_ap_queue(&apdev->device)->qid;
2365 q->saved_isc = VFIO_AP_ISC_INVALID;
2366 memset(&q->reset_status, 0, sizeof(q->reset_status));
2367 INIT_WORK(&q->reset_work, apq_reset_check);
2368 matrix_mdev = get_update_locks_by_apqn(q->apqn);
2371 vfio_ap_mdev_link_queue(matrix_mdev, q);
2374 * If we're in the process of handling the adding of adapters or
2375 * domains to the host's AP configuration, then let the
2376 * vfio_ap device driver's on_scan_complete callback filter the
2377 * matrix and update the guest's AP configuration after all of
2378 * the new queue devices are probed.
2380 if (!bitmap_empty(matrix_mdev->apm_add, AP_DEVICES) ||
2381 !bitmap_empty(matrix_mdev->aqm_add, AP_DOMAINS))
2384 if (vfio_ap_mdev_filter_matrix(matrix_mdev, apm_filtered)) {
2385 vfio_ap_mdev_update_guest_apcb(matrix_mdev);
2386 reset_queues_for_apids(matrix_mdev, apm_filtered);
2391 dev_set_drvdata(&apdev->device, q);
2392 release_update_locks_for_mdev(matrix_mdev);
2397 sysfs_remove_group(&apdev->device.kobj, &vfio_queue_attr_group);
2401 void vfio_ap_mdev_remove_queue(struct ap_device *apdev)
2403 unsigned long apid, apqi;
2404 struct vfio_ap_queue *q;
2405 struct ap_matrix_mdev *matrix_mdev;
2407 sysfs_remove_group(&apdev->device.kobj, &vfio_queue_attr_group);
2408 q = dev_get_drvdata(&apdev->device);
2409 get_update_locks_for_queue(q);
2410 matrix_mdev = q->matrix_mdev;
2411 apid = AP_QID_CARD(q->apqn);
2412 apqi = AP_QID_QUEUE(q->apqn);
2415 /* If the queue is assigned to the guest's AP configuration */
2416 if (test_bit_inv(apid, matrix_mdev->shadow_apcb.apm) &&
2417 test_bit_inv(apqi, matrix_mdev->shadow_apcb.aqm)) {
2419 * Since the queues are defined via a matrix of adapters
2420 * and domains, it is not possible to hot unplug a
2421 * single queue; so, let's unplug the adapter.
2423 clear_bit_inv(apid, matrix_mdev->shadow_apcb.apm);
2424 vfio_ap_mdev_update_guest_apcb(matrix_mdev);
2425 reset_queues_for_apid(matrix_mdev, apid);
2431 * If the queue is not in the host's AP configuration, then resetting
2432 * it will fail with response code 01, (APQN not valid); so, let's make
2433 * sure it is in the host's config.
2435 if (test_bit_inv(apid, (unsigned long *)matrix_dev->info.apm) &&
2436 test_bit_inv(apqi, (unsigned long *)matrix_dev->info.aqm)) {
2437 vfio_ap_mdev_reset_queue(q);
2438 flush_work(&q->reset_work);
2443 vfio_ap_unlink_queue_fr_mdev(q);
2445 dev_set_drvdata(&apdev->device, NULL);
2447 release_update_locks_for_mdev(matrix_mdev);
2451 * vfio_ap_mdev_resource_in_use: check whether any of a set of APQNs is
2452 * assigned to a mediated device under the control
2453 * of the vfio_ap device driver.
2455 * @apm: a bitmap specifying a set of APIDs comprising the APQNs to check.
2456 * @aqm: a bitmap specifying a set of APQIs comprising the APQNs to check.
2459 * * -EADDRINUSE if one or more of the APQNs specified via @apm/@aqm are
2460 * assigned to a mediated device under the control of the vfio_ap
2462 * * Otherwise, return 0.
2464 int vfio_ap_mdev_resource_in_use(unsigned long *apm, unsigned long *aqm)
2468 mutex_lock(&matrix_dev->guests_lock);
2469 mutex_lock(&matrix_dev->mdevs_lock);
2470 ret = vfio_ap_mdev_verify_no_sharing(apm, aqm);
2471 mutex_unlock(&matrix_dev->mdevs_lock);
2472 mutex_unlock(&matrix_dev->guests_lock);
2478 * vfio_ap_mdev_hot_unplug_cfg - hot unplug the adapters, domains and control
2479 * domains that have been removed from the host's
2480 * AP configuration from a guest.
2482 * @matrix_mdev: an ap_matrix_mdev object attached to a KVM guest.
2483 * @aprem: the adapters that have been removed from the host's AP configuration
2484 * @aqrem: the domains that have been removed from the host's AP configuration
2485 * @cdrem: the control domains that have been removed from the host's AP
2488 static void vfio_ap_mdev_hot_unplug_cfg(struct ap_matrix_mdev *matrix_mdev,
2489 unsigned long *aprem,
2490 unsigned long *aqrem,
2491 unsigned long *cdrem)
2495 if (!bitmap_empty(aprem, AP_DEVICES)) {
2496 do_hotplug |= bitmap_andnot(matrix_mdev->shadow_apcb.apm,
2497 matrix_mdev->shadow_apcb.apm,
2501 if (!bitmap_empty(aqrem, AP_DOMAINS)) {
2502 do_hotplug |= bitmap_andnot(matrix_mdev->shadow_apcb.aqm,
2503 matrix_mdev->shadow_apcb.aqm,
2507 if (!bitmap_empty(cdrem, AP_DOMAINS))
2508 do_hotplug |= bitmap_andnot(matrix_mdev->shadow_apcb.adm,
2509 matrix_mdev->shadow_apcb.adm,
2513 vfio_ap_mdev_update_guest_apcb(matrix_mdev);
2517 * vfio_ap_mdev_cfg_remove - determines which guests are using the adapters,
2518 * domains and control domains that have been removed
2519 * from the host AP configuration and unplugs them
2520 * from those guests.
2522 * @ap_remove: bitmap specifying which adapters have been removed from the host
2524 * @aq_remove: bitmap specifying which domains have been removed from the host
2526 * @cd_remove: bitmap specifying which control domains have been removed from
2529 static void vfio_ap_mdev_cfg_remove(unsigned long *ap_remove,
2530 unsigned long *aq_remove,
2531 unsigned long *cd_remove)
2533 struct ap_matrix_mdev *matrix_mdev;
2534 DECLARE_BITMAP(aprem, AP_DEVICES);
2535 DECLARE_BITMAP(aqrem, AP_DOMAINS);
2536 DECLARE_BITMAP(cdrem, AP_DOMAINS);
2539 list_for_each_entry(matrix_mdev, &matrix_dev->mdev_list, node) {
2540 mutex_lock(&matrix_mdev->kvm->lock);
2541 mutex_lock(&matrix_dev->mdevs_lock);
2543 do_remove |= bitmap_and(aprem, ap_remove,
2544 matrix_mdev->matrix.apm,
2546 do_remove |= bitmap_and(aqrem, aq_remove,
2547 matrix_mdev->matrix.aqm,
2549 do_remove |= bitmap_andnot(cdrem, cd_remove,
2550 matrix_mdev->matrix.adm,
2554 vfio_ap_mdev_hot_unplug_cfg(matrix_mdev, aprem, aqrem,
2557 mutex_unlock(&matrix_dev->mdevs_lock);
2558 mutex_unlock(&matrix_mdev->kvm->lock);
2563 * vfio_ap_mdev_on_cfg_remove - responds to the removal of adapters, domains and
2564 * control domains from the host AP configuration
2565 * by unplugging them from the guests that are
2567 * @cur_config_info: the current host AP configuration information
2568 * @prev_config_info: the previous host AP configuration information
2570 static void vfio_ap_mdev_on_cfg_remove(struct ap_config_info *cur_config_info,
2571 struct ap_config_info *prev_config_info)
2574 DECLARE_BITMAP(aprem, AP_DEVICES);
2575 DECLARE_BITMAP(aqrem, AP_DOMAINS);
2576 DECLARE_BITMAP(cdrem, AP_DOMAINS);
2578 do_remove = bitmap_andnot(aprem,
2579 (unsigned long *)prev_config_info->apm,
2580 (unsigned long *)cur_config_info->apm,
2582 do_remove |= bitmap_andnot(aqrem,
2583 (unsigned long *)prev_config_info->aqm,
2584 (unsigned long *)cur_config_info->aqm,
2586 do_remove |= bitmap_andnot(cdrem,
2587 (unsigned long *)prev_config_info->adm,
2588 (unsigned long *)cur_config_info->adm,
2592 vfio_ap_mdev_cfg_remove(aprem, aqrem, cdrem);
2596 * vfio_ap_filter_apid_by_qtype: filter APIDs from an AP mask for adapters that
2597 * are older than AP type 10 (CEX4).
2598 * @apm: a bitmap of the APIDs to examine
2599 * @aqm: a bitmap of the APQIs of the queues to query for the AP type.
2601 static void vfio_ap_filter_apid_by_qtype(unsigned long *apm, unsigned long *aqm)
2604 struct ap_queue_status status;
2605 unsigned long apid, apqi;
2606 struct ap_tapq_hwinfo info;
2608 for_each_set_bit_inv(apid, apm, AP_DEVICES) {
2609 apid_cleared = false;
2611 for_each_set_bit_inv(apqi, aqm, AP_DOMAINS) {
2612 status = ap_test_queue(AP_MKQID(apid, apqi), 1, &info);
2613 switch (status.response_code) {
2615 * According to the architecture in each case
2616 * below, the queue's info should be filled.
2618 case AP_RESPONSE_NORMAL:
2619 case AP_RESPONSE_RESET_IN_PROGRESS:
2620 case AP_RESPONSE_DECONFIGURED:
2621 case AP_RESPONSE_CHECKSTOPPED:
2622 case AP_RESPONSE_BUSY:
2624 * The vfio_ap device driver only
2625 * supports CEX4 and newer adapters, so
2626 * remove the APID if the adapter is
2627 * older than a CEX4.
2629 if (info.at < AP_DEVICE_TYPE_CEX4) {
2630 clear_bit_inv(apid, apm);
2631 apid_cleared = true;
2638 * If we don't know the adapter type,
2639 * clear its APID since it can't be
2640 * determined whether the vfio_ap
2641 * device driver supports it.
2643 clear_bit_inv(apid, apm);
2644 apid_cleared = true;
2649 * If we've already cleared the APID from the apm, there
2650 * is no need to continue examining the remainin AP
2651 * queues to determine the type of the adapter.
2660 * vfio_ap_mdev_cfg_add - store bitmaps specifying the adapters, domains and
2661 * control domains that have been added to the host's
2662 * AP configuration for each matrix mdev to which they
2665 * @apm_add: a bitmap specifying the adapters that have been added to the AP
2667 * @aqm_add: a bitmap specifying the domains that have been added to the AP
2669 * @adm_add: a bitmap specifying the control domains that have been added to the
2672 static void vfio_ap_mdev_cfg_add(unsigned long *apm_add, unsigned long *aqm_add,
2673 unsigned long *adm_add)
2675 struct ap_matrix_mdev *matrix_mdev;
2677 if (list_empty(&matrix_dev->mdev_list))
2680 vfio_ap_filter_apid_by_qtype(apm_add, aqm_add);
2682 list_for_each_entry(matrix_mdev, &matrix_dev->mdev_list, node) {
2683 bitmap_and(matrix_mdev->apm_add,
2684 matrix_mdev->matrix.apm, apm_add, AP_DEVICES);
2685 bitmap_and(matrix_mdev->aqm_add,
2686 matrix_mdev->matrix.aqm, aqm_add, AP_DOMAINS);
2687 bitmap_and(matrix_mdev->adm_add,
2688 matrix_mdev->matrix.adm, adm_add, AP_DEVICES);
2693 * vfio_ap_mdev_on_cfg_add - responds to the addition of adapters, domains and
2694 * control domains to the host AP configuration
2695 * by updating the bitmaps that specify what adapters,
2696 * domains and control domains have been added so they
2697 * can be hot plugged into the guest when the AP bus
2698 * scan completes (see vfio_ap_on_scan_complete
2700 * @cur_config_info: the current AP configuration information
2701 * @prev_config_info: the previous AP configuration information
2703 static void vfio_ap_mdev_on_cfg_add(struct ap_config_info *cur_config_info,
2704 struct ap_config_info *prev_config_info)
2707 DECLARE_BITMAP(apm_add, AP_DEVICES);
2708 DECLARE_BITMAP(aqm_add, AP_DOMAINS);
2709 DECLARE_BITMAP(adm_add, AP_DOMAINS);
2711 do_add = bitmap_andnot(apm_add,
2712 (unsigned long *)cur_config_info->apm,
2713 (unsigned long *)prev_config_info->apm,
2715 do_add |= bitmap_andnot(aqm_add,
2716 (unsigned long *)cur_config_info->aqm,
2717 (unsigned long *)prev_config_info->aqm,
2719 do_add |= bitmap_andnot(adm_add,
2720 (unsigned long *)cur_config_info->adm,
2721 (unsigned long *)prev_config_info->adm,
2725 vfio_ap_mdev_cfg_add(apm_add, aqm_add, adm_add);
2729 * vfio_ap_on_cfg_changed - handles notification of changes to the host AP
2732 * @cur_cfg_info: the current host AP configuration
2733 * @prev_cfg_info: the previous host AP configuration
2735 void vfio_ap_on_cfg_changed(struct ap_config_info *cur_cfg_info,
2736 struct ap_config_info *prev_cfg_info)
2738 if (!cur_cfg_info || !prev_cfg_info)
2741 mutex_lock(&matrix_dev->guests_lock);
2743 vfio_ap_mdev_on_cfg_remove(cur_cfg_info, prev_cfg_info);
2744 vfio_ap_mdev_on_cfg_add(cur_cfg_info, prev_cfg_info);
2745 memcpy(&matrix_dev->info, cur_cfg_info, sizeof(*cur_cfg_info));
2747 mutex_unlock(&matrix_dev->guests_lock);
2750 static void vfio_ap_mdev_hot_plug_cfg(struct ap_matrix_mdev *matrix_mdev)
2752 DECLARE_BITMAP(apm_filtered, AP_DEVICES);
2753 bool filter_domains, filter_adapters, filter_cdoms, do_hotplug = false;
2755 mutex_lock(&matrix_mdev->kvm->lock);
2756 mutex_lock(&matrix_dev->mdevs_lock);
2758 filter_adapters = bitmap_intersects(matrix_mdev->matrix.apm,
2759 matrix_mdev->apm_add, AP_DEVICES);
2760 filter_domains = bitmap_intersects(matrix_mdev->matrix.aqm,
2761 matrix_mdev->aqm_add, AP_DOMAINS);
2762 filter_cdoms = bitmap_intersects(matrix_mdev->matrix.adm,
2763 matrix_mdev->adm_add, AP_DOMAINS);
2765 if (filter_adapters || filter_domains)
2766 do_hotplug = vfio_ap_mdev_filter_matrix(matrix_mdev, apm_filtered);
2769 do_hotplug |= vfio_ap_mdev_filter_cdoms(matrix_mdev);
2772 vfio_ap_mdev_update_guest_apcb(matrix_mdev);
2774 reset_queues_for_apids(matrix_mdev, apm_filtered);
2776 mutex_unlock(&matrix_dev->mdevs_lock);
2777 mutex_unlock(&matrix_mdev->kvm->lock);
2780 void vfio_ap_on_scan_complete(struct ap_config_info *new_config_info,
2781 struct ap_config_info *old_config_info)
2783 struct ap_matrix_mdev *matrix_mdev;
2785 mutex_lock(&matrix_dev->guests_lock);
2787 list_for_each_entry(matrix_mdev, &matrix_dev->mdev_list, node) {
2788 if (bitmap_empty(matrix_mdev->apm_add, AP_DEVICES) &&
2789 bitmap_empty(matrix_mdev->aqm_add, AP_DOMAINS) &&
2790 bitmap_empty(matrix_mdev->adm_add, AP_DOMAINS))
2793 vfio_ap_mdev_hot_plug_cfg(matrix_mdev);
2794 bitmap_clear(matrix_mdev->apm_add, 0, AP_DEVICES);
2795 bitmap_clear(matrix_mdev->aqm_add, 0, AP_DOMAINS);
2796 bitmap_clear(matrix_mdev->adm_add, 0, AP_DOMAINS);
2799 mutex_unlock(&matrix_dev->guests_lock);
projects / linux.git / blob