github/acrn-hypervisor
1
0
Fork 0
mirror of https://github.com/projectacrn/acrn-hypervisor.git synced 2025-08-11 04:52:58 +00:00
Code Issues Projects Releases Wiki Activity
add-missing-space
acrn-hypervisor/devicemodel/hw/pci/virtio/virtio_mei.c
Tomas Winkler 9ab1110f80 dm: mei: vmei_proc_tx check buffer length before accessing the memory 
Prevent memory and information leaks by checking boundaries of
the incoming buffers from the hypervisor.

1. We check that the buffer is sufficent to hold a valid header.
2. We that each hbm message has valid size
   vmei_hbm_handler() now returns -EINVAL if the size too small.
3. hdr->length < data_length.

Tracked-On: #5451
Signed-off-by: Tomas Winkler <tomas.winkler@intel.com>
Acked-by: Wang, Yu1 <yu1.wang@intel.com>
2020-11-17 10:01:36 +08:00

2422 lines
56 KiB
C
Raw Permalink Blame History

/*
* Copyright (C) 2018 Intel Corporation. All rights reserved.
*
* SPDX-License-Identifier: BSD-3-Clause
*
*/
/*
* MEI device virtualization.
*/
#include <sys/types.h>
#include <sys/stat.h>
#include <sys/ioctl.h>
#include <sys/queue.h>
#include <sys/uio.h>
#include <fcntl.h>
#include <unistd.h>
#include <stddef.h>
#include <limits.h>
#include <stdio.h>
#include <string.h>
#include <dirent.h>
#include <stdlib.h>
#include <ctype.h>
#include <errno.h>
#include <stdbool.h>
#include <stdint.h>
#include <assert.h>
#include <pthread.h>
#include <time.h>
#include <linux/uuid.h>
#include <linux/mei.h>
#include "types.h"
#include "vmmapi.h"
#include "mevent.h"
#include "pci_core.h"
#include "virtio.h"
#include "dm.h"
#include "mei.h"
#ifndef BIT
#define BIT(x) (1 << (x))
#endif
#define DEV_NAME_SIZE sizeof(((struct dirent *)0)->d_name)
#ifndef UUID_STR_LEN
#define UUID_STR_LEN 37
#endif
#ifndef GUID_INIT
#define GUID_INIT(a, b, c, d0, d1, d2, d3, d4, d5, d6, d7) \
UUID_LE(a, b, c, d0, d1, d2, d3, d4, d5, d6, d7)
#endif
static int guid_parse(const char *str, size_t maxlen, guid_t *guid)
{
const char *p = "00000000-0000-0000-0000-000000000000";
const size_t len = strnlen(p, UUID_STR_LEN);
uint32_t a;
uint16_t b, c;
uint8_t d[2], e[6];
char buf[3];
unsigned int i;
if (strnlen(str, maxlen) != len)
return -1;
for (i = 0; i < len; i++) {
if (str[i] == '-') {
if (p[i] == '-')
continue;
else
return -1;
} else if (!isxdigit(str[i])) {
return -1;
}
}
a = strtoul(str + 0, NULL, 16);
b = strtoul(str + 9, NULL, 16);
c = strtoul(str + 14, NULL, 16);
buf[2] = 0;
for (i = 0; i < 2; i++) {
buf[0] = str[19 + i * 2];
buf[1] = str[19 + i * 2 + 1];
d[i] = strtoul(buf, NULL, 16);
}
for (i = 0; i < 6; i++) {
buf[0] = str[24 + i * 2];
buf[1] = str[24 + i * 2 + 1];
e[i] = strtoul(buf, NULL, 16);
}
*guid = GUID_INIT(a, b, c,
d[0], d[1], e[0], e[1], e[2], e[3], e[4], e[5]);
return 0;
}
static int guid_unparse(const guid_t *guid, char *str, size_t len)
{
unsigned int i;
size_t pos = 0;
if (len < UUID_STR_LEN)
return -EINVAL;
pos += snprintf(str + pos, len - pos, "%02x", guid->b[3]);
pos += snprintf(str + pos, len - pos, "%02x", guid->b[2]);
pos += snprintf(str + pos, len - pos, "%02x", guid->b[1]);
pos += snprintf(str + pos, len - pos, "%02x", guid->b[0]);
str[pos] = '-';
pos++;
pos += snprintf(str + pos, len - pos, "%02x", guid->b[5]);
pos += snprintf(str + pos, len - pos, "%02x", guid->b[4]);
str[pos] = '-';
pos++;
pos += snprintf(str + pos, len - pos, "%02x", guid->b[7]);
pos += snprintf(str + pos, len - pos, "%02x", guid->b[6]);
str[pos] = '-';
pos++;
pos += snprintf(str + pos, len - pos, "%02x", guid->b[8]);
pos += snprintf(str + pos, len - pos, "%02x", guid->b[9]);
str[pos] = '-';
pos++;
for (i = 10; i < 16; i++)
pos += snprintf(str + pos, len - pos, "%02x", guid->b[i]);
return 0;
}
struct refcnt {
void (*destroy)(const struct refcnt *ref);
int count;
};
static inline int atomic_read(const struct refcnt *ref)
{
return *(volatile int *)&ref->count;
}
static inline int
refcnt_get(const struct refcnt *ref)
{
int new, val;
do {
val = atomic_read(ref);
if (val == 0)
return 0;
new = val + 1;
/* check for overflow */
assert(new > 0);
} while (!__sync_bool_compare_and_swap((int *)&ref->count, val, new));
return new;
}
static inline void
refcnt_put(const struct refcnt *ref)
{
int new, val;
do {
val = atomic_read(ref);
if (val == 0)
return;
new = val - 1;
} while (!__sync_bool_compare_and_swap((int *)&ref->count, val, new));
if (new == 0)
ref->destroy(ref);
}
static int vmei_debug;
static FILE *vmei_dbg_file;
#define DPRINTF(format, arg...) do { \
if (vmei_debug && vmei_dbg_file) { \
fprintf(vmei_dbg_file, "vmei: %s: " format, \
__func__, ##arg); \
fflush(vmei_dbg_file); \
} \
} while (0)
#define WPRINTF(format, arg...) do { \
fprintf(stderr, "vmei: %s: " format, __func__, ##arg); \
if (vmei_dbg_file) { \
fprintf(vmei_dbg_file, "vmei: %s: " format, \
__func__, ##arg); \
fflush(vmei_dbg_file); \
} \
} while (0)
#define MEI_HCL_FMT(format) "CL:[%02d:%02d](%04d): " format
#define MEI_HCL_PRM(_hcl) (_hcl)->host_addr, (_hcl)->me_addr, (_hcl)->client_fd
#define HCL_DBG(_hcl, format, arg...) \
DPRINTF(MEI_HCL_FMT(format), MEI_HCL_PRM(_hcl), ##arg)
#define HCL_WARN(_hcl, format, arg...) \
WPRINTF(MEI_HCL_FMT(format), MEI_HCL_PRM(_hcl), ##arg)
static void vmei_dbg_print_hex(const char *title,
const void *data, size_t length)
{
const unsigned char *bytes = data;
FILE *dbg_file;
size_t i;
if (vmei_debug < 2)
return;
dbg_file = (vmei_dbg_file) ? vmei_dbg_file : stdout;
if (title)
fprintf(dbg_file, "%s ", title);
for (i = 0; i < length; i++) {
if (i % 16 == 0 && i != 0)
fprintf(dbg_file, "\n");
fprintf(dbg_file, "%02x ", bytes[i]);
}
fprintf(dbg_file, "\n");
}
static void
vmei_dbg_client_properties(const struct mei_client_properties *prop)
{
char guid_str[UUID_STR_LEN] = {0};
if (vmei_debug < 2)
return;
guid_unparse(&prop->protocol_name, guid_str, UUID_STR_LEN);
DPRINTF("client properties:\n");
DPRINTF("\t fixed_address: %d\n", prop->fixed_address);
DPRINTF("\t protocol_version: %d\n", prop->protocol_version);
DPRINTF("\t max_connections: %d\n", prop->max_connections);
DPRINTF("\t single_recv_buf: %d\n", prop->single_recv_buf);
DPRINTF("\t max_msg_length: %u\n", prop->max_msg_length);
DPRINTF("\t protocol_name: %s\n", guid_str);
}
#define MEI_FW_STATUS_MAX 6
#define VMEI_VQ_NUM 2
#define VMEI_RXQ 0
#define VMEI_TXQ 1
#define VMEI_RX_SEGS 1
#define VMEI_TX_SEGS 2
/*
* MEI HW max support FIFO depth is 128
* We might support larger depth, which need change MEI driver
*/
#define VMEI_BUF_DEPTH 128
#define VMEI_SLOT_SZ 4
#define VMEI_BUF_SZ (VMEI_BUF_DEPTH * VMEI_SLOT_SZ)
#define VMEI_RING_SZ 64
/**
* VMEI supported HBM version
*/
#define VMEI_HBM_VER_MAJ 2
#define VMEI_HBM_VER_MIN 0
#define MEI_SYSFS_ROOT "/sys/class/mei"
#define MEI_DEV_STATE_LEN 12
struct mei_virtio_cfg {
uint32_t buf_depth;
uint8_t hw_ready;
uint8_t host_reset;
uint8_t reserved[2];
uint32_t fw_status[MEI_FW_STATUS_MAX];
} __attribute__((packed));
#define VMEI_IOBUFS_MAX 8
struct vmei_circular_iobufs {
struct iovec bufs[VMEI_IOBUFS_MAX];
uint8_t complete[VMEI_IOBUFS_MAX];
size_t buf_sz;
uint8_t i_idx; /* insert index */
uint8_t r_idx; /* remove index */
};
struct virtio_mei;
struct vmei_host_client {
struct refcnt ref;
struct vmei_me_client *mclient;
LIST_ENTRY(vmei_host_client) list;
uint8_t me_addr;
uint8_t host_addr;
uint8_t reserved[2];
int client_fd;
struct mevent *rx_mevp;
uint8_t *recv_buf;
size_t recv_buf_sz;
int recv_offset;
int recv_handled;
int recv_creds;
struct vmei_circular_iobufs send_bufs;
};
struct vmei_me_client {
struct refcnt ref;
struct virtio_mei *vmei;
LIST_ENTRY(vmei_me_client) list;
uint8_t client_id;
struct mei_client_properties props;
pthread_mutex_t list_mutex;
LIST_HEAD(connhead, vmei_host_client) connections;
};
enum vmei_status {
VMEI_STS_READY,
VMEI_STS_PENDING_RESET,
VMEI_STS_RESET,
VMEI_STST_DEINIT
};
struct virtio_mei {
struct virtio_base base;
char name[16];
char devnode[32];
struct mei_enumerate_me_clients me_clients_map;
struct virtio_vq_info vqs[VMEI_VQ_NUM];
volatile enum vmei_status status;
uint8_t vtag;
pthread_mutex_t mutex;
struct mevent *reset_mevp;
bool dev_state_first;
struct mei_virtio_cfg *config;
pthread_t tx_thread;
pthread_mutex_t tx_mutex;
pthread_cond_t tx_cond;
pthread_t rx_thread;
pthread_mutex_t rx_mutex;
pthread_cond_t rx_cond;
bool rx_need_sched;
pthread_mutex_t list_mutex;
LIST_HEAD(clhead, vmei_me_client) active_clients;
struct vmei_me_client *hbm_client;
int hbm_fd;
};
static inline void
vmei_set_status(struct virtio_mei *vmei, enum vmei_status status)
{
if (status == VMEI_STST_DEINIT ||
status == VMEI_STS_READY ||
status > vmei->status)
vmei->status = status;
}
static void
vmei_rx_teardown(void *param)
{
unsigned int i;
struct vmei_host_client *hclient = param;
if (hclient->client_fd > -1) {
close(hclient->client_fd);
hclient->client_fd = -1;
}
for (i = 0; i < VMEI_IOBUFS_MAX; i++)
free(hclient->send_bufs.bufs[i].iov_base);
free(hclient->recv_buf);
free(hclient);
}
static void
vmei_host_client_destroy(const struct refcnt *ref)
{
struct vmei_host_client *hclient;
struct vmei_me_client *mclient;
hclient = container_of(ref, struct vmei_host_client, ref);
mclient = hclient->mclient;
pthread_mutex_lock(&mclient->list_mutex);
LIST_REMOVE(hclient, list);
pthread_mutex_unlock(&mclient->list_mutex);
if (hclient->rx_mevp)
mevent_delete(hclient->rx_mevp);
else
vmei_rx_teardown(hclient);
}
static struct vmei_host_client *
vmei_host_client_create(struct vmei_me_client *mclient, uint8_t host_addr)
{
struct vmei_host_client *hclient;
size_t size = mclient->props.max_msg_length;
unsigned int i;
hclient = calloc(1, sizeof(*hclient));
if (!hclient)
return NULL;
hclient->ref = (struct refcnt){vmei_host_client_destroy, 1};
hclient->me_addr = mclient->client_id;
hclient->host_addr = host_addr;
hclient->mclient = mclient;
hclient->client_fd = -1;
hclient->rx_mevp = NULL;
/* HBM and fixed address doesn't provide flow control
* make the receiving part always available.
*/
if (host_addr == 0)
hclient->recv_creds = 1;
/* setup send_buf and recv_buf for the client */
for (i = 0; i < VMEI_IOBUFS_MAX; i++) {
hclient->send_bufs.bufs[i].iov_base = calloc(1, size);
if (!hclient->send_bufs.bufs[i].iov_base) {
HCL_WARN(hclient, "allocation failed\n");
goto fail;
}
}
hclient->recv_buf = calloc(1, size);
if (!hclient->recv_buf) {
HCL_WARN(hclient, "allocation failed\n");
goto fail;
}
hclient->send_bufs.buf_sz = size;
hclient->recv_buf_sz = size;
pthread_mutex_lock(&mclient->list_mutex);
LIST_INSERT_HEAD(&mclient->connections, hclient, list);
pthread_mutex_unlock(&mclient->list_mutex);
return hclient;
fail:
for (i = 0; i < VMEI_IOBUFS_MAX; i++)
free(hclient->send_bufs.bufs[i].iov_base);
memset(&hclient->send_bufs, 0, sizeof(hclient->send_bufs));
free(hclient->recv_buf);
free(hclient);
return NULL;
}
static struct vmei_host_client*
vmei_host_client_get(struct vmei_host_client *hclient)
{
refcnt_get(&hclient->ref);
return hclient;
}
static void
vmei_host_client_put(struct vmei_host_client *hclient)
{
refcnt_put(&hclient->ref);
}
struct virtio_mei *
vmei_host_client_to_vmei(struct vmei_host_client *hclient)
{
if (hclient && hclient->mclient)
return hclient->mclient->vmei;
return NULL;
}
static void
vmei_del_me_client(struct vmei_me_client *mclient)
{
struct virtio_mei *vmei = mclient->vmei;
pthread_mutex_lock(&vmei->list_mutex);
LIST_REMOVE(mclient, list);
pthread_mutex_unlock(&vmei->list_mutex);
}
static void
vmei_me_client_destroy_host_clients(struct vmei_me_client *mclient)
{
struct vmei_host_client *e, *temp;
pthread_mutex_lock(&mclient->list_mutex);
list_foreach_safe(e, &mclient->connections, list, temp) {
vmei_host_client_put(e);
}
LIST_INIT(&mclient->connections);
pthread_mutex_unlock(&mclient->list_mutex);
}
static void
vmei_me_client_destroy(const struct refcnt *ref)
{
struct vmei_me_client *mclient;
mclient = container_of(ref, struct vmei_me_client, ref);
vmei_del_me_client(mclient);
vmei_me_client_destroy_host_clients(mclient);
pthread_mutex_destroy(&mclient->list_mutex);
free(mclient);
}
static struct vmei_me_client *
vmei_me_client_create(struct virtio_mei *vmei, uint8_t client_id,
const struct mei_client_properties *props)
{
struct vmei_me_client *mclient;
pthread_mutexattr_t attr;
if (!props)
return NULL;
mclient = calloc(1, sizeof(*mclient));
if (!mclient)
return mclient;
pthread_mutexattr_init(&attr);
pthread_mutexattr_settype(&attr, PTHREAD_MUTEX_RECURSIVE);
pthread_mutex_init(&mclient->list_mutex, &attr);
pthread_mutexattr_destroy(&attr);
LIST_INIT(&mclient->connections);
mclient->vmei = vmei;
mclient->client_id = client_id;
mclient->ref = (struct refcnt){vmei_me_client_destroy, 1};
memcpy(&mclient->props, props, sizeof(*props));
vmei_dbg_client_properties(&mclient->props);
DPRINTF("ME client created %d\n", client_id);
return mclient;
}
static struct vmei_me_client*
vmei_me_client_get(struct vmei_me_client *mclient)
{
refcnt_get(&mclient->ref);
return mclient;
}
static void
vmei_me_client_put(struct vmei_me_client *mclient)
{
refcnt_put(&mclient->ref);
}
static struct vmei_host_client*
vmei_me_client_get_host_client(struct vmei_me_client *mclient,
uint8_t host_addr)
{
struct vmei_host_client *e, *hclient = NULL;
pthread_mutex_lock(&mclient->list_mutex);
LIST_FOREACH(e, &mclient->connections, list) {
if (e->host_addr == host_addr) {
hclient = vmei_host_client_get(e);
break;
}
}
pthread_mutex_unlock(&mclient->list_mutex);
return hclient;
}
static void vmei_add_me_client(struct vmei_me_client *mclient)
{
struct virtio_mei *vmei = mclient->vmei;
pthread_mutex_lock(&vmei->list_mutex);
if (mclient->client_id == 0)
/* make sure hbm client at the head of the list */
LIST_INSERT_HEAD(&vmei->active_clients, mclient, list);
else
LIST_INSERT_AFTER(LIST_FIRST(&vmei->active_clients),
mclient, list);
pthread_mutex_unlock(&vmei->list_mutex);
}
static struct vmei_me_client *
vmei_find_me_client(struct virtio_mei *vmei, uint8_t client_id)
{
struct vmei_me_client *e, *mclient = NULL;
pthread_mutex_lock(&vmei->list_mutex);
LIST_FOREACH(e, &vmei->active_clients, list) {
if (e->client_id == client_id) {
mclient = vmei_me_client_get(e);
break;
}
}
pthread_mutex_unlock(&vmei->list_mutex);
return mclient;
}
static struct vmei_host_client*
vmei_find_host_client(struct virtio_mei *vmei,
uint8_t me_addr, uint8_t host_addr)
{
struct vmei_me_client *mclient;
struct vmei_host_client *hclient;
mclient = vmei_find_me_client(vmei, me_addr);
if (!mclient) {
DPRINTF("client with me address %d was not found\n", me_addr);
return NULL;
}
hclient = vmei_me_client_get_host_client(mclient, host_addr);
if (!hclient)
DPRINTF("host client %d does not exists!\n", host_addr);
vmei_me_client_put(mclient);
return hclient;
}
static void vmei_free_me_clients(struct virtio_mei *vmei)
{
struct vmei_me_client *e, *temp;
pthread_mutex_lock(&vmei->list_mutex);
list_foreach_safe(e, &vmei->active_clients, list, temp) {
vmei_me_client_put(e);
}
LIST_INIT(&vmei->active_clients);
pthread_mutex_unlock(&vmei->list_mutex);
}
/**
* vmei_get_free_me_id() - search for free me id in clients map
*
* @vmei: virtio mei device
* @fixed: is a a fixed address client
*
* Return: free me id, 0 - if none found
*/
static uint8_t
vmei_clients_map_find_free(struct virtio_mei *vmei, bool fixed)
{
unsigned int octet, bit;
uint8_t *valid_addresses = vmei->me_clients_map.valid_addresses;
for (octet = fixed ? 0 : 4; octet < 32; octet++) {
for (bit = 0; bit < 8; bit++) {
/* ID 0 is reserved and should not be allocated*/
if (!octet && !bit)
continue;
if (!(valid_addresses[octet] & BIT(bit)))
return octet * 8 + bit;
}
}
return 0;
}
/**
* vmei_clients_map_update() - set or unset me id in the valid address map
*
* @vmei: virtio mei device
* @me_id: me client id
* @set: set or unset the client id
*/
static void
vmei_clients_map_update(struct virtio_mei *vmei, uint8_t me_id, bool set)
{
unsigned int octet, bit;
uint8_t *valid_addresses = vmei->me_clients_map.valid_addresses;
octet = me_id / 8;
bit = me_id % 8;
if (set)
valid_addresses[octet] |= BIT(bit);
else
valid_addresses[octet] &= ~BIT(bit);
}
static int mei_sysfs_read_property_file(const char *fname, char *buf, size_t sz)
{
int fd;
int rc;
if (!buf)
return -EINVAL;
if (!sz)
return 0;
fd = open(fname, O_RDONLY);
if (fd < 0) {
DPRINTF("open failed %s %d\n", fname, errno);
return -1;
}
rc = read(fd, buf, sz);
close(fd);
return rc;
}
static int mei_sysfs_read_property_u8(const char *fname, uint8_t *u8_property)
{
char buf[4] = {0};
unsigned long int res;
if (mei_sysfs_read_property_file(fname, buf, sizeof(buf) - 1) < 0)
return -1;
res = strtoul(buf, NULL, 10);
if (res >= 256)
return -1;
*u8_property = (uint8_t)res;
return 0;
}
static int mei_sysfs_read_property_u32(const char *fname,
uint32_t *u32_property)
{
char buf[32] = {0};
unsigned long int res;
if (mei_sysfs_read_property_file(fname, buf, sizeof(buf) - 1) < 0)
return -1;
res = strtoul(buf, NULL, 10);
if (res == ULONG_MAX)
return -1;
*u32_property = res;
return 0;
}
static int mei_sysfs_read_property_uuid(char *fname, guid_t *uuid)
{
char buf[UUID_STR_LEN] = {0};
if (mei_sysfs_read_property_file(fname, buf, sizeof(buf) - 1) < 0)
return -1;
return guid_parse(buf, sizeof(buf), uuid);
}
static int mei_sysfs_read_properties(char *devpath, size_t size, size_t offset,
struct mei_client_properties *props)
{
uint32_t max_msg_length;
snprintf(&devpath[offset], size - offset, "%s", "uuid");
if (mei_sysfs_read_property_uuid(devpath, &props->protocol_name) < 0)
return -EFAULT;
snprintf(&devpath[offset], size - offset, "%s", "version");
if (mei_sysfs_read_property_u8(devpath, &props->protocol_version) < 0)
return -EFAULT;
snprintf(&devpath[offset], size - offset, "%s", "fixed");
if (mei_sysfs_read_property_u8(devpath, &props->fixed_address) < 0)
props->fixed_address = 0;
/* Use local variable as function is unaware of the unaligned pointer */
snprintf(&devpath[offset], size - offset, "%s", "max_len");
if (mei_sysfs_read_property_u32(devpath, &max_msg_length) < 0)
max_msg_length = 512;
props->max_msg_length = max_msg_length;
snprintf(&devpath[offset], size - offset, "%s", "max_conn");
if (mei_sysfs_read_property_u8(devpath, &props->max_connections) < 0)
props->max_connections = 1;
return 0;
}
static bool is_prefix(const char *prfx, const char *str, size_t maxlen)
{
if (!prfx || !str)
return false;
return strncmp(prfx, str, strnlen(prfx, maxlen)) == 0;
}
static int vmei_me_client_scan_list(struct virtio_mei *vmei)
{
DIR *dev_dir = NULL;
struct dirent *ent;
char devpath[256];
int d_offset, c_offset;
uint8_t me_id = 1;
struct vmei_me_client *mclient;
uint8_t vtag, vtag_supported = 0;
d_offset = snprintf(devpath, sizeof(devpath) - 1, "%s/%s/%s",
MEI_SYSFS_ROOT, vmei->name, "device/");
if (d_offset < 0)
return -1;
dev_dir = opendir(devpath);
if (!dev_dir) {
WPRINTF("opendir failed %d", errno);
return -1;
}
/*
* iterate over device directory and find the directories
* starting with "mei::" - those are the clients.
*/
while ((ent = readdir(dev_dir)) != NULL) {
if (ent->d_type == DT_DIR &&
is_prefix("mei::", ent->d_name, DEV_NAME_SIZE)) {
struct mei_client_properties props;
memset(&props, 0, sizeof(props));
devpath[d_offset] = '\0';
DPRINTF("found client %s %s\n", ent->d_name, devpath);
c_offset = snprintf(&devpath[d_offset],
sizeof(devpath) - d_offset,
"%s/", ent->d_name);
if (c_offset < 0)
continue;
c_offset += d_offset;
vtag = 0;
snprintf(&devpath[c_offset],
sizeof(devpath) - c_offset, "%s", "vtag");
if (mei_sysfs_read_property_u8(devpath, &vtag) < 0)
vtag = 0;
if (!vtag)
continue;
if (mei_sysfs_read_properties(devpath,
sizeof(devpath), c_offset,
&props) < 0)
continue;
me_id = vmei_clients_map_find_free(vmei,
props.fixed_address);
mclient = vmei_me_client_create(vmei, me_id, &props);
if (!mclient)
continue;
vmei_clients_map_update(vmei, me_id, true);
vmei_add_me_client(mclient);
vtag_supported = 1;
}
}
vmei_dbg_print_hex("me_clients_map",
vmei->me_clients_map.valid_addresses,
sizeof(vmei->me_clients_map.valid_addresses));
closedir(dev_dir);
/*
* Don't return error in order not to the crash DM;
* currently it cannot deal with single driver error.
*/
if (!vtag_supported)
WPRINTF("The platform doesn't support vtags!!!\n");
return 0;
}
static int
vmei_read_fw_status(struct virtio_mei *vmei, uint32_t *fw_status)
{
int offset, i;
unsigned long int res;
char path[256];
/* each value consist of 8 digits and \n, \0 at the end */
char buf[MEI_FW_STATUS_MAX * 9 + 1] = {0};
char *nptr, *endptr;
if (!fw_status)
return -1;
offset = snprintf(path, sizeof(path) - 1, "%s/%s/%s",
MEI_SYSFS_ROOT, vmei->name, "fw_status");
if (offset < 0)
return -1;
if (mei_sysfs_read_property_file(path, buf, sizeof(buf) - 1) < 0)
return -1;
nptr = buf;
for (i = 0; i < MEI_FW_STATUS_MAX; i++) {
res = strtoul(nptr, &endptr, 16);
if (res == ULONG_MAX) {
fw_status[i] = 0;
continue;
}
if (nptr == endptr) {
fw_status[i] = 0;
continue;
}
fw_status[i] = res;
nptr = endptr;
}
return 0;
}
static void
vmei_virtual_fw_reset(struct virtio_mei *vmei)
{
DPRINTF("Firmware reset\n");
struct vmei_me_client *e, *temp;
vmei_set_status(vmei, VMEI_STS_RESET);
vmei->config->hw_ready = 0;
if (vmei->hbm_fd > -1) {
close(vmei->hbm_fd);
vmei->hbm_fd = -1;
}
/* disconnect all */
pthread_mutex_lock(&vmei->list_mutex);
list_foreach_safe(e, &vmei->active_clients, list, temp) {
vmei_me_client_destroy_host_clients(e);
}
pthread_mutex_unlock(&vmei->list_mutex);
}
static void
vmei_reset(void *vth)
{
struct virtio_mei *vmei = vth;
DPRINTF("device reset requested!\n");
vmei_virtual_fw_reset(vmei);
virtio_reset_dev(&vmei->base);
}
static void
vmei_reset_teardown(void *param)
{
struct virtio_mei *vmei = param;
vmei->reset_mevp = NULL;
pthread_mutex_destroy(&vmei->mutex);
free(vmei->config);
free(vmei);
}
static void vmei_del_reset_event(struct virtio_mei *vmei)
{
if (vmei->reset_mevp)
mevent_delete_close(vmei->reset_mevp);
else
vmei_reset_teardown(vmei);
}
static void vmei_rx_callback(int fd, enum ev_type type, void *param);
static inline uint8_t
errno_to_hbm_conn_status(int err)
{
switch (err) {
case 0: return MEI_CL_CONN_SUCCESS;
case ENOTTY: return MEI_CL_CONN_NOT_FOUND;
case EBUSY: return MEI_CL_CONN_ALREADY_STARTED;
case EINVAL: return MEI_HBM_INVALID_PARAMETER;
default: return MEI_HBM_INVALID_PARAMETER;
}
}
/**
* vmei_host_client_native_connect() connect host client
* to the native driver and register with mevent.
*
* @hclient: host client instance
* Return: HBM status cot_client
*/
static uint8_t
vmei_host_client_native_connect(struct vmei_host_client *hclient)
{
struct virtio_mei *vmei = vmei_host_client_to_vmei(hclient);
struct vmei_me_client *mclient;
struct mei_connect_client_data_vtag connection_data;
if (!vmei)
return MEI_HBM_REJECTED;
mclient = hclient->mclient;
/* open mei node */
hclient->client_fd = open(vmei->devnode, O_RDWR | O_NONBLOCK);
if (hclient->client_fd < 0) {
HCL_WARN(hclient, "open %s failed %d\n", vmei->devnode, errno);
return MEI_HBM_REJECTED;
}
memset(&connection_data, 0, sizeof(connection_data));
memcpy(&connection_data.connect.in_client_uuid,
&mclient->props.protocol_name,
sizeof(connection_data.connect.in_client_uuid));
connection_data.connect.vtag = vmei->vtag;
if (ioctl(hclient->client_fd, IOCTL_MEI_CONNECT_CLIENT_VTAG,
&connection_data) == -1) {
HCL_DBG(hclient, "connect failed %d!\n", errno);
return errno_to_hbm_conn_status(errno);
}
/* add READ event into mevent */
hclient->rx_mevp = mevent_add(hclient->client_fd, EVF_READ,
vmei_rx_callback, hclient, vmei_rx_teardown, hclient);
if (!hclient->rx_mevp)
return MEI_HBM_REJECTED;
if (!hclient->recv_creds)
mevent_disable(hclient->rx_mevp);
HCL_DBG(hclient, "connect succeeded!\n");
return MEI_HBM_SUCCESS;
}
static void mei_set_msg_hdr(struct vmei_host_client *hclient,
struct mei_msg_hdr *hdr, uint32_t len,
bool complete)
{
if (!hdr)
return;
memset(hdr, 0, sizeof(*hdr));
hdr->me_addr = hclient->me_addr;
hdr->host_addr = hclient->host_addr;
hdr->length = len;
hdr->msg_complete = complete ? 1 : 0;
}
static int
vmei_hbm_response(struct virtio_mei *vmei, void *data, int len)
{
return write(vmei->hbm_fd, data, len);
}
/*
* This function is intend to send HBM disconnection command to guest.
*/
static int
vmei_hbm_disconnect_client(struct vmei_host_client *hclient)
{
struct virtio_mei *vmei = vmei_host_client_to_vmei(hclient);
struct mei_hbm_client_disconnect_req disconnect_req;
if (!vmei)
return -1;
disconnect_req.hbm_cmd.cmd = MEI_HBM_CLIENT_DISCONNECT;
disconnect_req.me_addr = hclient->me_addr;
disconnect_req.host_addr = hclient->host_addr;
HCL_DBG(hclient, "DM->UOS: Disconnect Client\n");
return vmei_hbm_response(vmei, &disconnect_req, sizeof(disconnect_req));
}
/**
* vmei_hbm_flow_ctl_req() - send flow control message to MEI-FE
*
* @hclient: host client
*
* Return: 0 on success
*/
static int
vmei_hbm_flow_ctl_req(struct vmei_host_client *hclient)
{
struct virtio_mei *vmei = vmei_host_client_to_vmei(hclient);
struct mei_hbm_flow_ctl flow_ctl_req;
if (!vmei)
return -1;
if (!hclient->host_addr)
return 0;
memset(&flow_ctl_req, 0, sizeof(flow_ctl_req));
flow_ctl_req.hbm_cmd.cmd = MEI_HBM_FLOW_CONTROL;
flow_ctl_req.me_addr = hclient->me_addr;
flow_ctl_req.host_addr = hclient->host_addr;
HCL_DBG(hclient, "DM->UOS: Flow Control\n");
return vmei_hbm_response(vmei, &flow_ctl_req, sizeof(flow_ctl_req));
}
static int
vmei_hbm_version(struct virtio_mei *vmei,
const struct mei_hbm_host_ver_req *ver_req)
{
const struct {
uint8_t major;
uint8_t minor;
} supported_vers[] = {
{ VMEI_HBM_VER_MAJ, VMEI_HBM_VER_MIN },
{ 1, 1 },
{ 1, 0 }
};
unsigned int i;
struct mei_hbm_host_ver_res ver_res;
ver_res.hbm_cmd.cmd = MEI_HBM_HOST_START;
ver_res.hbm_cmd.is_response = 1;
ver_res.minor = VMEI_HBM_VER_MIN;
ver_res.major = VMEI_HBM_VER_MAJ;
ver_res.host_ver_support = 0;
for (i = 0; i < ARRAY_SIZE(supported_vers); i++) {
if (supported_vers[i].major == ver_req->major &&
supported_vers[i].minor == ver_req->minor)
ver_res.host_ver_support = 1;
}
return vmei_hbm_response(vmei, &ver_res, sizeof(ver_res));
}
static int
vmei_hbm_handler(struct virtio_mei *vmei, const void *data, size_t len)
{
struct mei_hbm_cmd *hbm_cmd = NULL;
struct vmei_me_client *mclient = NULL;
struct vmei_host_client *hclient = NULL;
uint8_t status;
if (len < sizeof(*hbm_cmd)) {
return -EINVAL;
}
hbm_cmd = (struct mei_hbm_cmd *)data;
DPRINTF("HBM cmd[0x%X] is handling\n", hbm_cmd->cmd);
switch (hbm_cmd->cmd) {
case MEI_HBM_HOST_START: {
const struct mei_hbm_host_ver_req *req = data;
if (sizeof(*req) < len) {
return -EINVAL;
}
vmei_hbm_version(vmei, req);
}
break;
case MEI_HBM_HOST_ENUM: {
const struct mei_hbm_host_enum_req *req = data;
struct mei_hbm_host_enum_res res = {};
if (sizeof(*req) < len) {
return -EINVAL;
}
res.hbm_cmd = req->hbm_cmd;
res.hbm_cmd.is_response = 1;
/* copy valid_addresses for hbm enum request */
memcpy(res.valid_addresses, &vmei->me_clients_map,
sizeof(res.valid_addresses));
vmei_hbm_response(vmei, &res, sizeof(res));
}
break;
case MEI_HBM_HOST_CLIENT_PROP: {
const struct mei_hbm_host_client_prop_req *req = data;
struct mei_hbm_host_client_prop_res res;
if (sizeof(*req) < len) {
return -EINVAL;
}
res.hbm_cmd = req->hbm_cmd;
res.hbm_cmd.is_response = 1;
res.address = req->address;
mclient = vmei_find_me_client(vmei, req->address);
if (mclient) {
memcpy(&res.props, &mclient->props, sizeof(res.props));
res.status = MEI_HBM_SUCCESS;
} else {
res.status = MEI_HBM_CLIENT_NOT_FOUND;
}
vmei_dbg_client_properties(&res.props);
vmei_hbm_response(vmei, &res, sizeof(res));
}
break;
case MEI_HBM_FLOW_CONTROL: {
/*
* FE client is ready, we can send message
*/
const struct mei_hbm_flow_ctl *req = data;
if (sizeof(*req) < len) {
return -EINVAL;
}
hclient = vmei_find_host_client(vmei, req->me_addr, req->host_addr);
if (hclient) {
hclient->recv_creds++;
mevent_enable(hclient->rx_mevp);
vmei_host_client_put(hclient);
pthread_mutex_lock(&vmei->rx_mutex);
vmei->rx_need_sched = true;
pthread_mutex_unlock(&vmei->rx_mutex);
} else {
DPRINTF("client has been released.\n");
}
}
break;
case MEI_HBM_CLIENT_CONNECT: {
const struct mei_hbm_client_connect_req *req = data;
struct mei_hbm_client_connect_res res;
if (sizeof(*req) < len) {
return -EINVAL;
}
res = *(struct mei_hbm_client_connect_res *)req;
res.hbm_cmd.is_response = 1;
mclient = vmei_find_me_client(vmei, req->me_addr);
if (!mclient) {
/* NOT FOUND */
DPRINTF("client with me address %d was not found\n",
req->me_addr);
res.status = MEI_HBM_CLIENT_NOT_FOUND;
vmei_hbm_response(vmei, &res, sizeof(res));
break;
}
hclient = vmei_me_client_get_host_client(mclient,
req->host_addr);
if (hclient) {
DPRINTF("client alread exists return BUSY!\n");
res.status = MEI_HBM_ALREADY_EXISTS;
vmei_host_client_put(hclient);
hclient = NULL;
vmei_hbm_response(vmei, &res, sizeof(res));
break;
}
/* create a new host client and add ito the list */
hclient = vmei_host_client_create(mclient, req->host_addr);
if (!hclient) {
res.status = MEI_HBM_REJECTED;
vmei_hbm_response(vmei, &res, sizeof(res));
break;
}
status = vmei_host_client_native_connect(hclient);
res.status = status;
vmei_hbm_response(vmei, &res, sizeof(res));
if (status) {
vmei_host_client_put(hclient);
hclient = NULL;
break;
}
vmei_hbm_flow_ctl_req(hclient);
}
break;
case MEI_HBM_CLIENT_DISCONNECT: {
const struct mei_hbm_client_disconnect_req *req = data;
struct mei_hbm_client_disconnect_res res;
if (sizeof(*req) < len) {
return -EINVAL;
}
hclient = vmei_find_host_client(vmei, req->me_addr, req->host_addr);
if (hclient) {
vmei_host_client_put(hclient);
vmei_host_client_put(hclient);
hclient = NULL;
status = MEI_HBM_SUCCESS;
} else {
status = MEI_HBM_CLIENT_NOT_FOUND;
}
if (hbm_cmd->is_response)
break;
memset(&res, 0, sizeof(res));
res.hbm_cmd.cmd = MEI_HBM_CLIENT_DISCONNECT;
res.hbm_cmd.is_response = 1;
res.me_addr = req->me_addr;
res.host_addr = req->host_addr;
res.status = status;
vmei_hbm_response(vmei, &res, sizeof(res));
}
break;
case MEI_HBM_PG_ISOLATION_ENTRY: {
struct mei_hbm_power_gate res;
memset(&res, 0, sizeof(res));
res.hbm_cmd.cmd = MEI_HBM_PG_ISOLATION_ENTRY;
res.hbm_cmd.is_response = 1;
vmei_hbm_response(vmei, &res, sizeof(res));
}
break;
case MEI_HBM_NOTIFY: {
const struct mei_hbm_notification_req *req = data;
struct mei_hbm_notification_res res;
if (sizeof(*req) < len) {
return -EINVAL;
}
memset(&res, 0, sizeof(res));
res.hbm_cmd.cmd = MEI_HBM_NOTIFY;
res.hbm_cmd.is_response = 1;
res.start = req->start;
hclient = vmei_find_host_client(vmei, req->me_addr,
req->host_addr);
if (hclient) {
/* The notify is not supported now */
res.status = MEI_HBM_REJECTED;
vmei_host_client_put(hclient);
} else {
res.status = MEI_HBM_INVALID_PARAMETER;
}
vmei_hbm_response(vmei, &res, sizeof(res));
}
break;
case MEI_HBM_HOST_STOP:
DPRINTF("HBM cmd[%d] not supported\n", hbm_cmd->cmd);
break;
case MEI_HBM_ME_STOP:
DPRINTF("HBM cmd[%d] not supported\n", hbm_cmd->cmd);
break;
default:
DPRINTF("HBM cmd[0x%X] unhandled\n", hbm_cmd->cmd);
}
return 0;
}
int vmei_fixed_client_connect(struct vmei_me_client *mclient)
{
struct vmei_host_client *hclient;
uint8_t status;
/* SKIP over HBM */
if (!mclient->client_id)
return 0;
if (!mclient->props.fixed_address)
return 0;
hclient = vmei_host_client_create(mclient, 0);
if (!hclient) {
DPRINTF("vmei_host_client_create failed %d!\n",
mclient->client_id);
return -1;
}
status = vmei_host_client_native_connect(hclient);
if (status) {
vmei_host_client_put(hclient);
DPRINTF("vmei_host_client_connect failed %d!\n",
mclient->client_id);
return -1;
}
return 0;
}
static int vmei_fixed_clients_connect(struct virtio_mei *vmei)
{
struct vmei_me_client *e;
DPRINTF("connecting fixed clients\n");
pthread_mutex_lock(&vmei->list_mutex);
LIST_FOREACH(e, &vmei->active_clients, list) {
vmei_fixed_client_connect(e);
}
pthread_mutex_unlock(&vmei->list_mutex);
return 0;
}
static inline bool hdr_is_hbm(const struct mei_msg_hdr *hdr)
{
return hdr->host_addr == 0 && hdr->me_addr == 0;
}
static ssize_t
vmei_host_client_native_write(struct vmei_host_client *hclient)
{
struct virtio_mei *vmei = vmei_host_client_to_vmei(hclient);
ssize_t len, lencnt = 0;
int err;
unsigned int iovcnt, i;
struct vmei_circular_iobufs *bufs = &hclient->send_bufs;
if (!vmei)
return -EINVAL;
if (hclient->client_fd < 0) {
HCL_WARN(hclient, "invalid client fd [%d]\n",
hclient->client_fd);
return -EINVAL;
}
if (bufs->i_idx == bufs->r_idx) {
/* nothing to send actually */
WPRINTF("no buffer to send\n");
return 0;
}
while (bufs->i_idx != bufs->r_idx) {
/*
* calculate number of entries
* while taking care of wraparound
*/
iovcnt = (bufs->i_idx > bufs->r_idx) ?
(bufs->i_idx - bufs->r_idx) :
(VMEI_IOBUFS_MAX - bufs->r_idx);
for (i = 0; i < iovcnt; i++) {
len = writev(hclient->client_fd,
&bufs->bufs[bufs->r_idx + i],
1);
if (len < 0) {
err = -errno;
if (err != -EAGAIN)
WPRINTF("write failed! error[%d]\n",
errno);
if (err == -ENODEV)
vmei_set_status(vmei,
VMEI_STS_PENDING_RESET);
return -errno;
}
lencnt += len;
bufs->bufs[bufs->r_idx + i].iov_len = 0;
bufs->complete[bufs->r_idx + i] = 0;
}
bufs->r_idx = (bufs->i_idx > bufs->r_idx) ? bufs->i_idx : 0;
}
return lencnt;
}
static void
vmei_proc_tx(struct virtio_mei *vmei, struct virtio_vq_info *vq)
{
struct iovec iov[VMEI_TX_SEGS + 1];
uint16_t idx;
size_t tlen;
int n;
struct mei_msg_hdr *hdr;
uint8_t *data;
size_t data_len;
uint8_t i_idx;
struct vmei_circular_iobufs *bufs;
struct vmei_host_client *hclient = NULL;
/*
* Obtain chain of descriptors.
* The first one is hdr, the second is for payload.
*/
n = vq_getchain(vq, &idx, iov, VMEI_TX_SEGS, NULL);
if (n != VMEI_TX_SEGS) {
if (n == -1 || n == 0)
pr_err("%s: fail to getchain!\n", __func__);
else {
pr_warn("%s: invalid chain, desc number %d!\n", __func__, n);
vq_relchain(vq, idx, 0);
}
return;
}
tlen = iov[0].iov_len + iov[1].iov_len;
if (iov[0].iov_len < sizeof(*hdr)) {
pr_err("%s: supplied buffer has invalid size");
goto failed;
}
hdr = (struct mei_msg_hdr *)iov[0].iov_base;
data = (uint8_t *)iov[1].iov_base;
data_len = iov[1].iov_len;
DPRINTF("TX: UOS->DM, hdr[h=%02d me=%02d comp=%1d] length[%d]\n",
hdr->host_addr, hdr->me_addr, hdr->msg_complete, hdr->length);
vmei_dbg_print_hex("TX: UOS->DM", data, data_len);
if (hdr->length < data_len) {
pr_err("%s: supplied buffer has invalid size");
goto failed;
}
if (hdr_is_hbm(hdr)) {
if (vmei_hbm_handler(vmei, data, data_len)) {
pr_err("%s: supplied buffer has invalid size");
goto failed;
}
goto out;
}
/* general client client
* must be in active_clients list.
*/
hclient = vmei_find_host_client(vmei, hdr->me_addr, hdr->host_addr);
if (!hclient) {
DPRINTF("TX: ME[%02d:%02d] NOT found!\n",
hdr->host_addr, hdr->host_addr);
goto failed;
}
pthread_mutex_lock(&vmei->tx_mutex);
bufs = &hclient->send_bufs;
i_idx = bufs->i_idx;
HCL_DBG(hclient, "TX: client found complete = %d\n",
bufs->complete[i_idx]);
/* check for overflow
* here there are 2 types of possible overflows :
* (1) no available buffers (all buffers are taken) and
* (2) no space in the current buffer
*/
if ((i_idx + 1) % VMEI_IOBUFS_MAX == bufs->r_idx ||
(bufs->buf_sz - bufs->bufs[i_idx].iov_len < hdr->length)) {
HCL_DBG(hclient, "TX: overflow\n");
/* close the connection according to spec */
/* FIXME need to remove the clinet */
vmei_hbm_disconnect_client(hclient);
pthread_mutex_unlock(&vmei->tx_mutex);
vmei_host_client_put(hclient);
goto out;
}
/* copy buffer from virtqueue to send_buf */
memcpy(bufs->bufs[i_idx].iov_base + bufs->bufs[i_idx].iov_len,
data, hdr->length);
bufs->bufs[i_idx].iov_len += hdr->length;
if (hdr->msg_complete) {
/* send complete msg to HW */
HCL_DBG(hclient, "TX: completed, sening msg to FW\n");
bufs->complete[i_idx] = 1;
bufs->i_idx++;
if (bufs->i_idx >= VMEI_IOBUFS_MAX) /* wraparound */
bufs->i_idx = 0;
pthread_cond_signal(&vmei->tx_cond);
}
pthread_mutex_unlock(&vmei->tx_mutex);
vmei_host_client_put(hclient);
out:
/* chain is processed, release it and set tlen */
vq_relchain(vq, idx, tlen);
DPRINTF("TX: release OUT-vq idx[%d]\n", idx);
pthread_mutex_lock(&vmei->rx_mutex);
if (vmei->rx_need_sched)
pthread_cond_signal(&vmei->rx_cond);
pthread_mutex_unlock(&vmei->rx_mutex);
return;
failed:
if (vmei->status == VMEI_STS_PENDING_RESET) {
vmei_virtual_fw_reset(vmei);
/* Let's wait 100ms for HBM enumeration done */
usleep(100000);
virtio_config_changed(&vmei->base);
}
/* drop the data */
vq_relchain(vq, idx, tlen);
}
static void
vmei_notify_tx(void *data, struct virtio_vq_info *vq)
{
struct virtio_mei *vmei = data;
/*
* Any ring entries to process?
*/
if (!vq_has_descs(vq))
return;
pthread_mutex_lock(&vmei->tx_mutex);
DPRINTF("TX: New OUT buffer available!\n");
vq->used->flags |= VRING_USED_F_NO_NOTIFY;
pthread_mutex_unlock(&vmei->tx_mutex);
do {
vmei_proc_tx(vmei, vq);
} while (vq_has_descs(vq));
vq_endchains(vq, 1);
pthread_mutex_lock(&vmei->tx_mutex);
DPRINTF("TX: New OUT buffer available!\n");
vq_clear_used_ring_flags(&vmei->base, vq);
pthread_mutex_unlock(&vmei->tx_mutex);
}
static int
vmei_host_ready_send_buffers(struct vmei_host_client *hclient)
{
struct vmei_circular_iobufs *bufs = &hclient->send_bufs;
return bufs->complete[bufs->r_idx];
}
/**
* Thread which will handle processing native writes
*/
static void *vmei_tx_thread(void *param)
{
struct virtio_mei *vmei = param;
struct timespec max_wait = {0, 0};
int err, pending_cnt = 0;
pthread_mutex_lock(&vmei->tx_mutex);
while (vmei->status != VMEI_STST_DEINIT) {
struct vmei_me_client *me;
struct vmei_host_client *e;
ssize_t len;
int send_ready;
if (pending_cnt == 0) {
err = pthread_cond_wait(&vmei->tx_cond,
&vmei->tx_mutex);
if (err)
goto out;
} else {
max_wait.tv_sec = time(NULL) + 2;
max_wait.tv_nsec = 0;
err = pthread_cond_timedwait(&vmei->tx_cond,
&vmei->tx_mutex,
&max_wait);
if (err && err != ETIMEDOUT)
goto out;
pending_cnt = 0;
}
pthread_mutex_lock(&vmei->list_mutex);
LIST_FOREACH(me, &vmei->active_clients, list) {
pthread_mutex_lock(&me->list_mutex);
LIST_FOREACH(e, &me->connections, list) {
if (!vmei_host_ready_send_buffers(e))
continue;
len = vmei_host_client_native_write(e);
if (len < 0 && len != -EAGAIN) {
HCL_WARN(e, "TX:send failed %zd\n",
len);
pthread_mutex_unlock(&me->list_mutex);
goto unlock;
}
if (vmei->status == VMEI_STS_RESET) {
pthread_mutex_unlock(&me->list_mutex);
goto unlock;
}
send_ready = vmei_host_ready_send_buffers(e);
pending_cnt += send_ready;
if (!send_ready)
vmei_hbm_flow_ctl_req(e);
}
pthread_mutex_unlock(&me->list_mutex);
}
unlock:
pthread_mutex_unlock(&vmei->list_mutex);
}
out:
pthread_mutex_unlock(&vmei->tx_mutex);
pthread_exit(NULL);
}
/*
* A completed read guarantees that a client message is completed,
* transmission of client message is started by a flow control message of HBM
*/
static ssize_t
vmei_host_client_native_read(struct vmei_host_client *hclient)
{
struct virtio_mei *vmei = vmei_host_client_to_vmei(hclient);
ssize_t len;
if (!vmei)
return -1;
if (hclient->client_fd < 0) {
HCL_WARN(hclient, "RX: invalid client fd\n");
return -1;
}
/* read with max_message_length */
len = read(hclient->client_fd, hclient->recv_buf, hclient->recv_buf_sz);
if (len < 0) {
HCL_WARN(hclient, "RX: read failed! read error[%d]\n", errno);
if (errno == ENODEV)
vmei_set_status(vmei, VMEI_STS_PENDING_RESET);
return len;
}
HCL_DBG(hclient, "RX: append data len=%zd at off=%d\n",
len, hclient->recv_offset);
hclient->recv_offset = len;
return hclient->recv_offset;
}
static void
vmei_rx_callback(int fd, enum ev_type type, void *param)
{
struct vmei_host_client *hclient = param;
struct virtio_mei *vmei = vmei_host_client_to_vmei(hclient);
ssize_t ret;
if (!vmei)
return;
if (!vmei_host_client_get(hclient)) {
DPRINTF("RX: client has been released, ignore data.\n");
return;
}
pthread_mutex_lock(&vmei->rx_mutex);
if (vmei->status != VMEI_STS_READY) {
HCL_DBG(hclient, "vmei is not ready %d\n", vmei->status);
goto out;
}
if (hclient->recv_offset) {
/* still has data in recv_buf, wait guest reading */
HCL_DBG(hclient, "data in recv_buf, wait for UOS reading.\n");
goto out;
}
/* read data from mei driver */
ret = vmei_host_client_native_read(hclient);
if (ret <= 0) {
HCL_DBG(hclient, "RX: no data %zd\n", ret);
goto out;
}
vmei->rx_need_sched = true;
HCL_DBG(hclient, "RX: read %zd bytes from the FW\n", ret);
/* wake up rx thread. */
pthread_cond_signal(&vmei->rx_cond);
out:
pthread_mutex_unlock(&vmei->rx_mutex);
vmei_host_client_put(hclient);
}
/*
* Process the data received from native mei cdev and hbm emulation
* handler, assemable related mei header then copy to rx virtqueue.
*/
static void
vmei_proc_vclient_rx(struct vmei_host_client *hclient,
struct virtio_vq_info *vq)
{
struct iovec iov[VMEI_RX_SEGS + 1];
struct mei_msg_hdr *hdr;
uint16_t idx = 0;
int n, len;
int buf_len;
uint8_t *buf;
bool complete = true;
n = vq_getchain(vq, &idx, iov, VMEI_RX_SEGS, NULL);
if (n != VMEI_RX_SEGS) {
if (n == -1)
pr_err("%s: fail to getchain!\n", __func__);
else {
pr_warn("%s: invalid chain, desc number %d!\n", __func__, n);
vq_relchain(vq, idx, 0);
}
return;
}
len = hclient->recv_offset - hclient->recv_handled;
HCL_DBG(hclient, "RX: DM->UOS: off=%d len=%d\n",
hclient->recv_handled, len);
buf_len = VMEI_BUF_SZ - sizeof(*hdr);
hdr = (struct mei_msg_hdr *)iov[0].iov_base;
buf = (uint8_t *)iov[0].iov_base + sizeof(*hdr);
if (len > buf_len) {
len = buf_len;
complete = false;
}
mei_set_msg_hdr(hclient, hdr, len, complete);
memcpy(buf, hclient->recv_buf + hclient->recv_handled, len);
hclient->recv_handled += len;
HCL_DBG(hclient, "RX: complete = %d DM->UOS:off=%d len=%d\n",
complete, hclient->recv_handled, len);
len += sizeof(struct mei_msg_hdr);
if (complete) {
hclient->recv_offset = 0;
hclient->recv_handled = 0;
if (hclient->host_addr) {
hclient->recv_creds--;
mevent_disable(hclient->rx_mevp);
}
}
vq_relchain(vq, idx, len);
}
/**
* vmei_proc_rx() process rx UOS
* @vmei: virtio mei device
* @vq: virtio queue
*
* Function looks for client with pending buffer and sends
* it to the UOS.
*
* Locking: Must run under rx mutex
* Return:
* true - need reschedule
*/
static bool
vmei_proc_rx(struct virtio_mei *vmei, struct virtio_vq_info *vq)
{
struct vmei_me_client *me;
struct vmei_host_client *e, *hclient = NULL;
/* Find a client with data */
pthread_mutex_lock(&vmei->list_mutex);
LIST_FOREACH(me, &vmei->active_clients, list) {
pthread_mutex_lock(&me->list_mutex);
LIST_FOREACH(e, &me->connections, list) {
if (e->recv_offset - e->recv_handled > 0) {
if (e->recv_creds) {
hclient = vmei_host_client_get(e);
pthread_mutex_unlock(&me->list_mutex);
goto found;
}
}
}
pthread_mutex_unlock(&me->list_mutex);
}
found:
pthread_mutex_unlock(&vmei->list_mutex);
/* no client has data to be processed */
if (!hclient) {
DPRINTF("RX: No client with data\n");
return false;
}
vmei_proc_vclient_rx(hclient, vq);
pthread_mutex_lock(&vmei->tx_mutex);
if (vmei_host_ready_send_buffers(hclient))
pthread_cond_signal(&vmei->tx_cond);
pthread_mutex_unlock(&vmei->tx_mutex);
vmei_host_client_put(hclient);
return true;
}
/*
* Thread which will handle processing of RX desc
*/
static void *vmei_rx_thread(void *param)
{
struct virtio_mei *vmei = param;
struct virtio_vq_info *vq = &vmei->vqs[VMEI_RXQ];
int err;
/*
* Let us wait till the rx queue pointers get initialised &
* first tx signaled
*/
pthread_mutex_lock(&vmei->rx_mutex);
while (vmei->status != VMEI_STST_DEINIT && !vq_ring_ready(vq)) {
err = pthread_cond_wait(&vmei->rx_cond, &vmei->rx_mutex);
if (err)
goto out;
}
while (vmei->status != VMEI_STST_DEINIT) {
/* note - rx mutex is locked here */
while (!vmei->rx_need_sched || !vq_has_descs(vq)) {
vq_clear_used_ring_flags(&vmei->base, vq);
mb();
if (vmei->rx_need_sched &&
vmei->status != VMEI_STS_RESET &&
vq_has_descs(vq))
break;
err = pthread_cond_wait(&vmei->rx_cond,
&vmei->rx_mutex);
if (err || vmei->status == VMEI_STST_DEINIT)
goto out;
}
vq->used->flags |= VRING_USED_F_NO_NOTIFY;
do {
vmei->rx_need_sched = vmei_proc_rx(vmei, vq);
} while (vmei->rx_need_sched && vq_has_descs(vq));
/* at least one avail ring element has been processed */
vq_endchains(vq, !vq_has_descs(vq));
}
out:
pthread_mutex_unlock(&vmei->rx_mutex);
pthread_exit(NULL);
}
static void
vmei_notify_rx(void *data, struct virtio_vq_info *vq)
{
struct virtio_mei *vmei = data;
/*
* Any ring entries to process?
*/
if (!vq_has_descs(vq))
return;
/* Signal the rx thread for processing */
pthread_mutex_lock(&vmei->rx_mutex);
DPRINTF("RX: New IN buffer available!\n");
vq->used->flags |= VRING_USED_F_NO_NOTIFY;
pthread_cond_signal(&vmei->rx_cond);
pthread_mutex_unlock(&vmei->rx_mutex);
}
static int
vmei_start(struct virtio_mei *vmei, bool do_rescan)
{
static struct vmei_host_client *hclient;
const struct mei_client_properties props = {
.protocol_name = NULL_UUID_LE,
.protocol_version = 0,
.max_connections = 1,
.fixed_address = 1,
.single_recv_buf = 0,
.max_msg_length = VMEI_BUF_SZ,
};
int pipefd[2];
/* create HBM client (address 0) */
if (do_rescan && !vmei->hbm_client)
vmei->hbm_client = vmei_me_client_create(vmei, 0, &props);
if (!vmei->hbm_client) {
WPRINTF("hbm client creation failed\n");
return -1;
}
/*
* create a dummy host client for the HBM client
* so that the HBM client will have rx/tx buffers
*/
hclient = vmei_host_client_create(vmei->hbm_client, 0);
if (!hclient)
goto hclient_failed;
if (pipe2(pipefd, O_DIRECT) < 0)
goto scan_failed;
hclient->client_fd = pipefd[0];
hclient->rx_mevp = mevent_add(hclient->client_fd, EVF_READ,
vmei_rx_callback, hclient, vmei_rx_teardown, hclient);
vmei->hbm_fd = pipefd[1];
if (do_rescan) {
vmei_add_me_client(vmei->hbm_client);
if (vmei_me_client_scan_list(vmei) < 0)
goto scan_failed;
}
vmei_fixed_clients_connect(vmei);
if (!do_rescan)
vmei->config->hw_ready = 1;
vmei_set_status(vmei, VMEI_STS_READY);
return 0;
scan_failed:
vmei_host_client_put(hclient);
hclient_failed:
vmei_me_client_put(vmei->hbm_client);
vmei->hbm_client = NULL;
return -1;
}
static int
vmei_stop(struct virtio_mei *vmei)
{
vmei_set_status(vmei, VMEI_STST_DEINIT);
pthread_mutex_lock(&vmei->tx_mutex);
pthread_cond_signal(&vmei->tx_cond);
pthread_mutex_unlock(&vmei->tx_mutex);
pthread_mutex_lock(&vmei->rx_mutex);
pthread_cond_signal(&vmei->rx_cond);
pthread_mutex_unlock(&vmei->rx_mutex);
vmei_virtual_fw_reset(vmei);
pthread_join(vmei->rx_thread, NULL);
pthread_join(vmei->tx_thread, NULL);
vmei_free_me_clients(vmei);
pthread_mutex_destroy(&vmei->rx_mutex);
pthread_mutex_destroy(&vmei->tx_mutex);
pthread_mutex_destroy(&vmei->list_mutex);
return 0;
}
static void
vmei_reset_callback(int fd, enum ev_type type, void *param)
{
struct virtio_mei *vmei = param;
char buf[MEI_DEV_STATE_LEN] = {0};
int sz;
if (vmei->status != VMEI_STS_READY)
return;
lseek(fd, 0, SEEK_SET);
sz = read(fd, buf, 12);
/*
* edge mevent is hit immediately after add
* as the file is not empty, this has to be ignored
*/
if (vmei->dev_state_first) {
vmei->dev_state_first = false;
return;
}
if (sz != 7 || memcmp(buf, "ENABLED", 7))
return;
DPRINTF("Reset state callback\n");
vmei_virtual_fw_reset(vmei);
virtio_config_changed(&vmei->base);
vmei_free_me_clients(vmei);
vmei_start(vmei, true);
}
static int vmei_add_reset_event(struct virtio_mei *vmei)
{
char devpath[256];
int dev_state_fd;
snprintf(devpath, sizeof(devpath) - 1, "%s/%s/%s",
MEI_SYSFS_ROOT, vmei->name, "dev_state");
dev_state_fd = open(devpath, O_RDONLY);
if (dev_state_fd < 0)
return -errno;
vmei->dev_state_first = true;
vmei->reset_mevp = mevent_add(dev_state_fd, EVF_READ_ET,
vmei_reset_callback, vmei, vmei_reset_teardown, vmei);
if (!vmei->reset_mevp) {
close(dev_state_fd);
return -ENOMEM;
}
return 0;
}
static int
vmei_cfgread(void *vsc, int offset, int size, uint32_t *retval)
{
struct virtio_mei *vmei = vsc;
void *ptr;
if (offset + size >= (int)offsetof(struct mei_virtio_cfg, fw_status)) {
if (vmei_read_fw_status(vmei, vmei->config->fw_status) < 0)
return -1;
}
ptr = (uint8_t *)vmei->config + offset;
memcpy(retval, ptr, size);
DPRINTF("fw_status[%d] = 0x%08x\n", (offset / size) - 2, *retval);
return 0;
}
static int
vmei_cfgwrite(void *vsc, int offset, int size, uint32_t val)
{
struct virtio_mei *vmei = vsc;
DPRINTF("cfgwrite: offset = %d, size = %d val = %d\n",
offset, size, val);
if (offset != offsetof(struct mei_virtio_cfg, host_reset)) {
WPRINTF("cfgwrite: not a reset\n");
return 0;
}
if (size == sizeof(uint8_t) && val == 1) {
DPRINTF("cfgwrite: host_reset [%d]\n", val);
/* guest initate reset need restart */
vmei_virtual_fw_reset(vmei);
virtio_config_changed(&vmei->base);
}
if (size == sizeof(uint8_t) && val == 0) {
DPRINTF("cfgwrite: host_reset_release [%d]\n", val);
/* guest initate reset need restart */
vmei_start(vmei, false);
virtio_config_changed(&vmei->base);
}
return 0;
}
struct virtio_ops virtio_mei_ops = {
.name = "virtio_heci",
.nvq = VMEI_VQ_NUM,
.cfgsize = sizeof(struct mei_virtio_cfg),
.reset = vmei_reset,
.qnotify = NULL,
.cfgread = vmei_cfgread,
.cfgwrite = vmei_cfgwrite,
.apply_features = NULL,
.set_status = NULL,
};
static int filter_dirs(const struct dirent *d)
{
return !((strcmp(d->d_name, ".") == 0) ||
(strcmp(d->d_name, "..") == 0));
}
static int
vmei_get_devname(char *name, size_t namesize,
unsigned int bus, unsigned int slot, unsigned int func)
{
char path[256];
struct stat buf;
struct dirent **namelist = NULL;
int n, ret = 0;
snprintf(path, sizeof(path),
"/sys/bus/pci/drivers/mei_me/0000:%02x:%02x.%1u/mei/",
bus, slot, func);
if (stat(path, &buf) < 0)
return -1;
n = scandir(path, &namelist, filter_dirs, alphasort);
if (n == 1)
snprintf(name, namesize, "%s", namelist[0]->d_name);
else
ret = -1;
while (n-- > 0)
free(namelist[n]);
free(namelist);
return ret;
}
static int
vmei_init(struct vmctx *ctx, struct pci_vdev *dev, char *opts)
{
struct virtio_mei *vmei;
char tname[MAXCOMLEN + 1];
pthread_mutexattr_t attr;
int mutex_type;
int i, rc;
char *endptr = NULL;
char *opt;
int bus = 0, slot = 0, func = 0;
char name[DEV_NAME_SIZE + 1];
vmei_debug = 0;
if (!opts)
goto init;
while ((opt = strsep(&opts, ",")) != NULL) {
if (parse_bdf(opt, &bus, &slot, &func, 16) == 0)
continue;
if (!strncmp(opt, "d", 1)) {
vmei_debug = strtoul(opt + 1, &endptr, 10);
if (endptr == opt || vmei_debug > 8) {
vmei_debug = 0;
WPRINTF("init: unknown debug flag %s\n",
opts + 1);
}
continue;
}
WPRINTF("Invalid option: %s\n", opt);
}
if (vmei_debug)
vmei_dbg_file = fopen("/tmp/vmei_log", "a+");
init:
rc = vmei_get_devname(name, sizeof(name), bus, slot, func);
if (rc) {
WPRINTF("init: fail to get mei path!\n");
strncpy(name, "mei0", sizeof(name));
}
DPRINTF("init: starting\n");
vmei = calloc(1, sizeof(*vmei));
if (!vmei) {
WPRINTF("init: fail to alloc virtio_heci!\n");
goto fail;
}
vmei->config = calloc(1, sizeof(*vmei->config));
if (!vmei->config) {
WPRINTF("init: fail to alloc vmei_config!\n");
goto fail;
}
/* FIXME: fix get correct mapping */
vmei->vtag = ctx->vmid;
if (!vmei->vtag)
vmei->vtag = 1;
vmei->config->buf_depth = VMEI_BUF_DEPTH;
vmei->config->hw_ready = 0;
strncpy(vmei->name, name, sizeof(vmei->name));
vmei->name[sizeof(vmei->name) - 1] = 0;
snprintf(vmei->devnode, sizeof(vmei->devnode) - 1,
"/dev/%s", vmei->name);
DPRINTF("devnode = %s\n", vmei->devnode);
if (vmei_add_reset_event(vmei) < 0)
WPRINTF("init: resets won't be detected\n");
/* init mutex attribute properly */
rc = pthread_mutexattr_init(&attr);
if (rc) {
WPRINTF("init: mutexattr init fail, error %d!\n", rc);
goto fail;
}
mutex_type = virtio_uses_msix() ?
PTHREAD_MUTEX_DEFAULT :
PTHREAD_MUTEX_RECURSIVE;
rc = pthread_mutexattr_settype(&attr, mutex_type);
if (rc) {
pthread_mutexattr_destroy(&attr);
WPRINTF("init: mutexattr_settype failed, error %d!\n", rc);
goto fail;
}
rc = pthread_mutex_init(&vmei->mutex, &attr);
pthread_mutexattr_destroy(&attr);
if (rc) {
WPRINTF("init: mutex init failed, error %d!\n", rc);
goto fail;
}
virtio_linkup(&vmei->base, &virtio_mei_ops, vmei, dev, vmei->vqs, BACKEND_VBSU);
vmei->base.mtx = &vmei->mutex;
for (i = 0; i < VMEI_VQ_NUM; i++)
vmei->vqs[i].qsize = VMEI_RING_SZ;
vmei->vqs[VMEI_RXQ].notify = vmei_notify_rx;
vmei->vqs[VMEI_TXQ].notify = vmei_notify_tx;
/* initialize config space */
pci_set_cfgdata16(dev, PCIR_DEVICE, VIRTIO_DEV_HECI);
pci_set_cfgdata16(dev, PCIR_VENDOR, INTEL_VENDOR_ID);
pci_set_cfgdata8(dev, PCIR_CLASS, PCIC_SIMPLECOMM);
pci_set_cfgdata8(dev, PCIR_SUBCLASS, PCIS_SIMPLECOMM_OTHER);
pci_set_cfgdata16(dev, PCIR_SUBDEV_0, VIRTIO_TYPE_HECI);
pci_set_cfgdata16(dev, PCIR_SUBVEND_0, INTEL_VENDOR_ID);
if (virtio_interrupt_init(&vmei->base, virtio_uses_msix()))
goto setup_fail;
virtio_set_io_bar(&vmei->base, 0);
/*
* init clients
*/
pthread_mutexattr_init(&attr);
pthread_mutexattr_settype(&attr, PTHREAD_MUTEX_RECURSIVE);
pthread_mutex_init(&vmei->list_mutex, &attr);
pthread_mutexattr_destroy(&attr);
LIST_INIT(&vmei->active_clients);
/*
* tx stuff, thread, mutex, cond
*/
pthread_mutex_init(&vmei->tx_mutex, NULL);
pthread_cond_init(&vmei->tx_cond, NULL);
pthread_create(&vmei->tx_thread, NULL,
vmei_tx_thread, vmei);
snprintf(tname, sizeof(tname), "vmei-%d:%d tx", dev->slot, dev->func);
pthread_setname_np(vmei->tx_thread, tname);
/*
* rx stuff
*/
pthread_mutex_init(&vmei->rx_mutex, NULL);
pthread_cond_init(&vmei->rx_cond, NULL);
pthread_create(&vmei->rx_thread, NULL,
vmei_rx_thread, (void *)vmei);
snprintf(tname, sizeof(tname), "vmei-%d:%d rx", dev->slot, dev->func);
pthread_setname_np(vmei->rx_thread, tname);
/*
* start mei backend
*/
if (vmei_start(vmei, true) < 0)
goto start_fail;
return 0;
start_fail:
vmei_stop(vmei);
setup_fail:
pthread_mutex_destroy(&vmei->mutex);
fail:
if (vmei) {
free(vmei->config);
free(vmei);
}
WPRINTF("init: error\n");
return -1;
}
static void
vmei_deinit(struct vmctx *ctx, struct pci_vdev *dev, char *opts)
{
struct virtio_mei *vmei = (struct virtio_mei *)dev->arg;
(void)opts;
if (!vmei)
return;
vmei_stop(vmei);
vmei_del_reset_event(vmei);
}
const struct pci_vdev_ops pci_ops_vmei = {
.class_name = "virtio-heci",
.vdev_init = vmei_init,
.vdev_barwrite = virtio_pci_write,
.vdev_barread = virtio_pci_read,
.vdev_deinit = vmei_deinit
};
DEFINE_PCI_DEVTYPE(pci_ops_vmei);
Reference in New Issue View Git Blame Copy Permalink