4 * Copyright IBM, Corp. 2010
5 * Copyright Red Hat, Inc. 2011
11 * This work is licensed under the terms of the GNU GPL, version 2 or later.
12 * See the COPYING file in the top-level directory.
16 #include "virtio-scsi.h"
18 #include <hw/scsi-defs.h>
20 #define VIRTIO_SCSI_VQ_SIZE 128
21 #define VIRTIO_SCSI_CDB_SIZE 32
22 #define VIRTIO_SCSI_SENSE_SIZE 96
23 #define VIRTIO_SCSI_MAX_CHANNEL 0
24 #define VIRTIO_SCSI_MAX_TARGET 255
25 #define VIRTIO_SCSI_MAX_LUN 16383
28 #define VIRTIO_SCSI_S_OK 0
29 #define VIRTIO_SCSI_S_OVERRUN 1
30 #define VIRTIO_SCSI_S_ABORTED 2
31 #define VIRTIO_SCSI_S_BAD_TARGET 3
32 #define VIRTIO_SCSI_S_RESET 4
33 #define VIRTIO_SCSI_S_BUSY 5
34 #define VIRTIO_SCSI_S_TRANSPORT_FAILURE 6
35 #define VIRTIO_SCSI_S_TARGET_FAILURE 7
36 #define VIRTIO_SCSI_S_NEXUS_FAILURE 8
37 #define VIRTIO_SCSI_S_FAILURE 9
38 #define VIRTIO_SCSI_S_FUNCTION_SUCCEEDED 10
39 #define VIRTIO_SCSI_S_FUNCTION_REJECTED 11
40 #define VIRTIO_SCSI_S_INCORRECT_LUN 12
42 /* Controlq type codes. */
43 #define VIRTIO_SCSI_T_TMF 0
44 #define VIRTIO_SCSI_T_AN_QUERY 1
45 #define VIRTIO_SCSI_T_AN_SUBSCRIBE 2
47 /* Valid TMF subtypes. */
48 #define VIRTIO_SCSI_T_TMF_ABORT_TASK 0
49 #define VIRTIO_SCSI_T_TMF_ABORT_TASK_SET 1
50 #define VIRTIO_SCSI_T_TMF_CLEAR_ACA 2
51 #define VIRTIO_SCSI_T_TMF_CLEAR_TASK_SET 3
52 #define VIRTIO_SCSI_T_TMF_I_T_NEXUS_RESET 4
53 #define VIRTIO_SCSI_T_TMF_LOGICAL_UNIT_RESET 5
54 #define VIRTIO_SCSI_T_TMF_QUERY_TASK 6
55 #define VIRTIO_SCSI_T_TMF_QUERY_TASK_SET 7
58 #define VIRTIO_SCSI_T_EVENTS_MISSED 0x80000000
59 #define VIRTIO_SCSI_T_NO_EVENT 0
60 #define VIRTIO_SCSI_T_TRANSPORT_RESET 1
61 #define VIRTIO_SCSI_T_ASYNC_NOTIFY 2
63 /* SCSI command request, followed by data-out */
65 uint8_t lun[8]; /* Logical Unit Number */
66 uint64_t tag; /* Command identifier */
67 uint8_t task_attr; /* Task attribute */
71 } QEMU_PACKED VirtIOSCSICmdReq;
73 /* Response, followed by sense data and data-in */
75 uint32_t sense_len; /* Sense data length */
76 uint32_t resid; /* Residual bytes in data buffer */
77 uint16_t status_qualifier; /* Status qualifier */
78 uint8_t status; /* Command completion status */
79 uint8_t response; /* Response values */
81 } QEMU_PACKED VirtIOSCSICmdResp;
83 /* Task Management Request */
89 } QEMU_PACKED VirtIOSCSICtrlTMFReq;
93 } QEMU_PACKED VirtIOSCSICtrlTMFResp;
95 /* Asynchronous notification query/subscription */
99 uint32_t event_requested;
100 } QEMU_PACKED VirtIOSCSICtrlANReq;
103 uint32_t event_actual;
105 } QEMU_PACKED VirtIOSCSICtrlANResp;
111 } QEMU_PACKED VirtIOSCSIEvent;
116 uint32_t max_sectors;
117 uint32_t cmd_per_lun;
118 uint32_t event_info_size;
121 uint16_t max_channel;
124 } QEMU_PACKED VirtIOSCSIConfig;
129 VirtIOSCSIConf *conf;
139 typedef struct VirtIOSCSIReq {
142 VirtQueueElement elem;
147 VirtIOSCSICmdReq *cmd;
148 VirtIOSCSICtrlTMFReq *tmf;
149 VirtIOSCSICtrlANReq *an;
153 VirtIOSCSICmdResp *cmd;
154 VirtIOSCSICtrlTMFResp *tmf;
155 VirtIOSCSICtrlANResp *an;
156 VirtIOSCSIEvent *event;
160 static inline int virtio_scsi_get_lun(uint8_t *lun)
162 return ((lun[2] << 8) | lun[3]) & 0x3FFF;
165 static inline SCSIDevice *virtio_scsi_device_find(VirtIOSCSI *s, uint8_t *lun)
170 if (lun[2] != 0 && !(lun[2] >= 0x40 && lun[2] < 0x80)) {
173 return scsi_device_find(&s->bus, 0, lun[1], virtio_scsi_get_lun(lun));
176 static void virtio_scsi_complete_req(VirtIOSCSIReq *req)
178 VirtIOSCSI *s = req->dev;
179 VirtQueue *vq = req->vq;
180 virtqueue_push(vq, &req->elem, req->qsgl.size + req->elem.in_sg[0].iov_len);
181 qemu_sglist_destroy(&req->qsgl);
183 req->sreq->hba_private = NULL;
184 scsi_req_unref(req->sreq);
187 virtio_notify(&s->vdev, vq);
190 static void virtio_scsi_bad_req(void)
192 error_report("wrong size for virtio-scsi headers");
196 static void qemu_sgl_init_external(QEMUSGList *qsgl, struct iovec *sg,
197 target_phys_addr_t *addr, int num)
199 memset(qsgl, 0, sizeof(*qsgl));
201 qemu_sglist_add(qsgl, *(addr++), (sg++)->iov_len);
205 static void virtio_scsi_parse_req(VirtIOSCSI *s, VirtQueue *vq,
208 assert(req->elem.out_num && req->elem.in_num);
212 req->req.buf = req->elem.out_sg[0].iov_base;
213 req->resp.buf = req->elem.in_sg[0].iov_base;
215 if (req->elem.out_num > 1) {
216 qemu_sgl_init_external(&req->qsgl, &req->elem.out_sg[1],
217 &req->elem.out_addr[1],
218 req->elem.out_num - 1);
220 qemu_sgl_init_external(&req->qsgl, &req->elem.in_sg[1],
221 &req->elem.in_addr[1],
222 req->elem.in_num - 1);
226 static VirtIOSCSIReq *virtio_scsi_pop_req(VirtIOSCSI *s, VirtQueue *vq)
229 req = g_malloc(sizeof(*req));
230 if (!virtqueue_pop(vq, &req->elem)) {
235 virtio_scsi_parse_req(s, vq, req);
239 static void virtio_scsi_fail_ctrl_req(VirtIOSCSIReq *req)
241 if (req->req.tmf->type == VIRTIO_SCSI_T_TMF) {
242 req->resp.tmf->response = VIRTIO_SCSI_S_FAILURE;
244 req->resp.an->response = VIRTIO_SCSI_S_FAILURE;
247 virtio_scsi_complete_req(req);
250 static void virtio_scsi_handle_ctrl(VirtIODevice *vdev, VirtQueue *vq)
252 VirtIOSCSI *s = (VirtIOSCSI *)vdev;
255 while ((req = virtio_scsi_pop_req(s, vq))) {
256 virtio_scsi_fail_ctrl_req(req);
260 static void virtio_scsi_command_complete(SCSIRequest *r, uint32_t status,
263 VirtIOSCSIReq *req = r->hba_private;
265 req->resp.cmd->response = VIRTIO_SCSI_S_OK;
266 req->resp.cmd->status = status;
267 if (req->resp.cmd->status == GOOD) {
268 req->resp.cmd->resid = resid;
270 req->resp.cmd->resid = 0;
271 req->resp.cmd->sense_len =
272 scsi_req_get_sense(r, req->resp.cmd->sense, VIRTIO_SCSI_SENSE_SIZE);
274 virtio_scsi_complete_req(req);
277 static QEMUSGList *virtio_scsi_get_sg_list(SCSIRequest *r)
279 VirtIOSCSIReq *req = r->hba_private;
284 static void virtio_scsi_request_cancelled(SCSIRequest *r)
286 VirtIOSCSIReq *req = r->hba_private;
291 req->resp.cmd->response = VIRTIO_SCSI_S_ABORTED;
292 virtio_scsi_complete_req(req);
295 static void virtio_scsi_fail_cmd_req(VirtIOSCSIReq *req)
297 req->resp.cmd->response = VIRTIO_SCSI_S_FAILURE;
298 virtio_scsi_complete_req(req);
301 static void virtio_scsi_handle_cmd(VirtIODevice *vdev, VirtQueue *vq)
303 VirtIOSCSI *s = (VirtIOSCSI *)vdev;
307 while ((req = virtio_scsi_pop_req(s, vq))) {
309 int out_size, in_size;
310 if (req->elem.out_num < 1 || req->elem.in_num < 1) {
311 virtio_scsi_bad_req();
314 out_size = req->elem.out_sg[0].iov_len;
315 in_size = req->elem.in_sg[0].iov_len;
316 if (out_size < sizeof(VirtIOSCSICmdReq) + s->cdb_size ||
317 in_size < sizeof(VirtIOSCSICmdResp) + s->sense_size) {
318 virtio_scsi_bad_req();
321 if (req->elem.out_num > 1 && req->elem.in_num > 1) {
322 virtio_scsi_fail_cmd_req(req);
326 d = virtio_scsi_device_find(s, req->req.cmd->lun);
328 req->resp.cmd->response = VIRTIO_SCSI_S_BAD_TARGET;
329 virtio_scsi_complete_req(req);
332 req->sreq = scsi_req_new(d, req->req.cmd->tag,
333 virtio_scsi_get_lun(req->req.cmd->lun),
334 req->req.cmd->cdb, req);
336 if (req->sreq->cmd.mode != SCSI_XFER_NONE) {
338 (req->elem.in_num > 1 ? SCSI_XFER_FROM_DEV : SCSI_XFER_TO_DEV);
340 if (req->sreq->cmd.mode != req_mode ||
341 req->sreq->cmd.xfer > req->qsgl.size) {
342 req->resp.cmd->response = VIRTIO_SCSI_S_OVERRUN;
343 virtio_scsi_complete_req(req);
348 n = scsi_req_enqueue(req->sreq);
350 scsi_req_continue(req->sreq);
355 static void virtio_scsi_get_config(VirtIODevice *vdev,
358 VirtIOSCSIConfig *scsiconf = (VirtIOSCSIConfig *)config;
359 VirtIOSCSI *s = (VirtIOSCSI *)vdev;
361 stl_raw(&scsiconf->num_queues, s->conf->num_queues);
362 stl_raw(&scsiconf->seg_max, 128 - 2);
363 stl_raw(&scsiconf->max_sectors, s->conf->max_sectors);
364 stl_raw(&scsiconf->cmd_per_lun, s->conf->cmd_per_lun);
365 stl_raw(&scsiconf->event_info_size, sizeof(VirtIOSCSIEvent));
366 stl_raw(&scsiconf->sense_size, s->sense_size);
367 stl_raw(&scsiconf->cdb_size, s->cdb_size);
368 stl_raw(&scsiconf->max_channel, VIRTIO_SCSI_MAX_CHANNEL);
369 stl_raw(&scsiconf->max_target, VIRTIO_SCSI_MAX_TARGET);
370 stl_raw(&scsiconf->max_lun, VIRTIO_SCSI_MAX_LUN);
373 static void virtio_scsi_set_config(VirtIODevice *vdev,
374 const uint8_t *config)
376 VirtIOSCSIConfig *scsiconf = (VirtIOSCSIConfig *)config;
377 VirtIOSCSI *s = (VirtIOSCSI *)vdev;
379 if ((uint32_t) ldl_raw(&scsiconf->sense_size) >= 65536 ||
380 (uint32_t) ldl_raw(&scsiconf->cdb_size) >= 256) {
381 error_report("bad data written to virtio-scsi configuration space");
385 s->sense_size = ldl_raw(&scsiconf->sense_size);
386 s->cdb_size = ldl_raw(&scsiconf->cdb_size);
389 static uint32_t virtio_scsi_get_features(VirtIODevice *vdev,
390 uint32_t requested_features)
392 return requested_features;
395 static void virtio_scsi_reset(VirtIODevice *vdev)
397 VirtIOSCSI *s = (VirtIOSCSI *)vdev;
399 s->sense_size = VIRTIO_SCSI_SENSE_SIZE;
400 s->cdb_size = VIRTIO_SCSI_CDB_SIZE;
403 static struct SCSIBusInfo virtio_scsi_scsi_info = {
405 .max_channel = VIRTIO_SCSI_MAX_CHANNEL,
406 .max_target = VIRTIO_SCSI_MAX_TARGET,
407 .max_lun = VIRTIO_SCSI_MAX_LUN,
409 .complete = virtio_scsi_command_complete,
410 .cancel = virtio_scsi_request_cancelled,
411 .get_sg_list = virtio_scsi_get_sg_list,
414 VirtIODevice *virtio_scsi_init(DeviceState *dev, VirtIOSCSIConf *proxyconf)
418 s = (VirtIOSCSI *)virtio_common_init("virtio-scsi", VIRTIO_ID_SCSI,
419 sizeof(VirtIOSCSIConfig),
425 /* TODO set up vdev function pointers */
426 s->vdev.get_config = virtio_scsi_get_config;
427 s->vdev.set_config = virtio_scsi_set_config;
428 s->vdev.get_features = virtio_scsi_get_features;
429 s->vdev.reset = virtio_scsi_reset;
431 s->ctrl_vq = virtio_add_queue(&s->vdev, VIRTIO_SCSI_VQ_SIZE,
432 virtio_scsi_handle_ctrl);
433 s->event_vq = virtio_add_queue(&s->vdev, VIRTIO_SCSI_VQ_SIZE,
435 s->cmd_vq = virtio_add_queue(&s->vdev, VIRTIO_SCSI_VQ_SIZE,
436 virtio_scsi_handle_cmd);
438 scsi_bus_new(&s->bus, dev, &virtio_scsi_scsi_info);
439 if (!dev->hotplugged) {
440 scsi_bus_legacy_handle_cmdline(&s->bus);
448 void virtio_scsi_exit(VirtIODevice *vdev)
450 virtio_cleanup(vdev);
projects / qemu.git / blob