1 /*-
2  * SPDX-License-Identifier: BSD-2-Clause
3  *
4  * Copyright (c) 2011, Bryan Venteicher <bryanv@FreeBSD.org>
5  * All rights reserved.
6  *
7  * Redistribution and use in source and binary forms, with or without
8  * modification, are permitted provided that the following conditions
9  * are met:
10  * 1. Redistributions of source code must retain the above copyright
11  *    notice unmodified, this list of conditions, and the following
12  *    disclaimer.
13  * 2. Redistributions in binary form must reproduce the above copyright
14  *    notice, this list of conditions and the following disclaimer in the
15  *    documentation and/or other materials provided with the distribution.
16  *
17  * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
18  * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
19  * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
20  * IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT,
21  * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
22  * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
23  * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
24  * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
25  * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
26  * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
27  */
28 
29 /*
30  * Implements the virtqueue interface as basically described
31  * in the original VirtIO paper.
32  */
33 
34 #include <sys/param.h>
35 #include <sys/systm.h>
36 #include <sys/kernel.h>
37 #include <sys/malloc.h>
38 #include <sys/sdt.h>
39 #include <sys/sglist.h>
40 #include <vm/vm.h>
41 #include <vm/pmap.h>
42 
43 #include <machine/cpu.h>
44 #include <machine/bus.h>
45 #include <machine/atomic.h>
46 #include <machine/resource.h>
47 #include <sys/bus.h>
48 #include <sys/rman.h>
49 
50 #include <dev/virtio/virtio.h>
51 #include <dev/virtio/virtqueue.h>
52 #include <dev/virtio/virtio_ring.h>
53 
54 #include "virtio_bus_if.h"
55 
56 struct virtqueue {
57 	device_t		 vq_dev;
58 	uint16_t		 vq_queue_index;
59 	uint16_t		 vq_nentries;
60 	uint32_t		 vq_flags;
61 #define	VIRTQUEUE_FLAG_MODERN	 0x0001
62 #define	VIRTQUEUE_FLAG_INDIRECT	 0x0002
63 #define	VIRTQUEUE_FLAG_EVENT_IDX 0x0004
64 
65 	int			 vq_max_indirect_size;
66 	bus_size_t		 vq_notify_offset;
67 	virtqueue_intr_t	*vq_intrhand;
68 	void			*vq_intrhand_arg;
69 
70 	struct vring		 vq_ring;
71 	uint16_t		 vq_free_cnt;
72 	uint16_t		 vq_queued_cnt;
73 	/*
74 	 * Head of the free chain in the descriptor table. If
75 	 * there are no free descriptors, this will be set to
76 	 * VQ_RING_DESC_CHAIN_END.
77 	 */
78 	uint16_t		 vq_desc_head_idx;
79 	/*
80 	 * Last consumed descriptor in the used table,
81 	 * trails vq_ring.used->idx.
82 	 */
83 	uint16_t		 vq_used_cons_idx;
84 
85 	void			*vq_ring_mem;
86 	int			 vq_indirect_mem_size;
87 	int			 vq_alignment;
88 	int			 vq_ring_size;
89 	char			 vq_name[VIRTQUEUE_MAX_NAME_SZ];
90 
91 	struct vq_desc_extra {
92 		void		  *cookie;
93 		struct vring_desc *indirect;
94 		vm_paddr_t	   indirect_paddr;
95 		uint16_t	   ndescs;
96 	} vq_descx[0];
97 };
98 
99 /*
100  * The maximum virtqueue size is 2^15. Use that value as the end of
101  * descriptor chain terminator since it will never be a valid index
102  * in the descriptor table. This is used to verify we are correctly
103  * handling vq_free_cnt.
104  */
105 #define VQ_RING_DESC_CHAIN_END 32768
106 
107 #define VQASSERT(_vq, _exp, _msg, ...)				\
108     KASSERT((_exp),("%s: %s - "_msg, __func__, (_vq)->vq_name,	\
109 	##__VA_ARGS__))
110 
111 #define VQ_RING_ASSERT_VALID_IDX(_vq, _idx)			\
112     VQASSERT((_vq), (_idx) < (_vq)->vq_nentries,		\
113 	"invalid ring index: %d, max: %d", (_idx),		\
114 	(_vq)->vq_nentries)
115 
116 #define VQ_RING_ASSERT_CHAIN_TERM(_vq)				\
117     VQASSERT((_vq), (_vq)->vq_desc_head_idx ==			\
118 	VQ_RING_DESC_CHAIN_END,	"full ring terminated "		\
119 	"incorrectly: head idx: %d", (_vq)->vq_desc_head_idx)
120 
121 static int	virtqueue_init_indirect(struct virtqueue *vq, int);
122 static void	virtqueue_free_indirect(struct virtqueue *vq);
123 static void	virtqueue_init_indirect_list(struct virtqueue *,
124 		    struct vring_desc *);
125 
126 static void	vq_ring_init(struct virtqueue *);
127 static void	vq_ring_update_avail(struct virtqueue *, uint16_t);
128 static uint16_t	vq_ring_enqueue_segments(struct virtqueue *,
129 		    struct vring_desc *, uint16_t, struct sglist *, int, int);
130 static bool	vq_ring_use_indirect(struct virtqueue *, int);
131 static void	vq_ring_enqueue_indirect(struct virtqueue *, void *,
132 		    struct sglist *, int, int);
133 static int	vq_ring_enable_interrupt(struct virtqueue *, uint16_t);
134 static int	vq_ring_must_notify_host(struct virtqueue *);
135 static void	vq_ring_notify_host(struct virtqueue *);
136 static void	vq_ring_free_chain(struct virtqueue *, uint16_t);
137 
138 SDT_PROVIDER_DEFINE(virtqueue);
139 SDT_PROBE_DEFINE6(virtqueue, , enqueue_segments, entry, "struct virtqueue *",
140     "struct vring_desc *", "uint16_t", "struct sglist *", "int", "int");
141 SDT_PROBE_DEFINE1(virtqueue, , enqueue_segments, return, "uint16_t");
142 
143 #define vq_modern(_vq) 		(((_vq)->vq_flags & VIRTQUEUE_FLAG_MODERN) != 0)
144 #define vq_htog16(_vq, _val) 	virtio_htog16(vq_modern(_vq), _val)
145 #define vq_htog32(_vq, _val) 	virtio_htog32(vq_modern(_vq), _val)
146 #define vq_htog64(_vq, _val) 	virtio_htog64(vq_modern(_vq), _val)
147 #define vq_gtoh16(_vq, _val) 	virtio_gtoh16(vq_modern(_vq), _val)
148 #define vq_gtoh32(_vq, _val) 	virtio_gtoh32(vq_modern(_vq), _val)
149 #define vq_gtoh64(_vq, _val) 	virtio_gtoh64(vq_modern(_vq), _val)
150 
151 int
virtqueue_alloc(device_t dev,uint16_t queue,uint16_t size,bus_size_t notify_offset,int align,vm_paddr_t highaddr,struct vq_alloc_info * info,struct virtqueue ** vqp)152 virtqueue_alloc(device_t dev, uint16_t queue, uint16_t size,
153     bus_size_t notify_offset, int align, vm_paddr_t highaddr,
154     struct vq_alloc_info *info, struct virtqueue **vqp)
155 {
156 	struct virtqueue *vq;
157 	int error;
158 
159 	*vqp = NULL;
160 	error = 0;
161 
162 	if (size == 0) {
163 		device_printf(dev,
164 		    "virtqueue %d (%s) does not exist (size is zero)\n",
165 		    queue, info->vqai_name);
166 		return (ENODEV);
167 	} else if (!powerof2(size)) {
168 		device_printf(dev,
169 		    "virtqueue %d (%s) size is not a power of 2: %d\n",
170 		    queue, info->vqai_name, size);
171 		return (ENXIO);
172 	} else if (info->vqai_maxindirsz > VIRTIO_MAX_INDIRECT) {
173 		device_printf(dev, "virtqueue %d (%s) requested too many "
174 		    "indirect descriptors: %d, max %d\n",
175 		    queue, info->vqai_name, info->vqai_maxindirsz,
176 		    VIRTIO_MAX_INDIRECT);
177 		return (EINVAL);
178 	}
179 
180 	vq = malloc(sizeof(struct virtqueue) +
181 	    size * sizeof(struct vq_desc_extra), M_DEVBUF, M_NOWAIT | M_ZERO);
182 	if (vq == NULL) {
183 		device_printf(dev, "cannot allocate virtqueue\n");
184 		return (ENOMEM);
185 	}
186 
187 	vq->vq_dev = dev;
188 	strlcpy(vq->vq_name, info->vqai_name, sizeof(vq->vq_name));
189 	vq->vq_queue_index = queue;
190 	vq->vq_notify_offset = notify_offset;
191 	vq->vq_alignment = align;
192 	vq->vq_nentries = size;
193 	vq->vq_free_cnt = size;
194 	vq->vq_intrhand = info->vqai_intr;
195 	vq->vq_intrhand_arg = info->vqai_intr_arg;
196 
197 	if (VIRTIO_BUS_WITH_FEATURE(dev, VIRTIO_F_VERSION_1) != 0)
198 		vq->vq_flags |= VIRTQUEUE_FLAG_MODERN;
199 	if (VIRTIO_BUS_WITH_FEATURE(dev, VIRTIO_RING_F_EVENT_IDX) != 0)
200 		vq->vq_flags |= VIRTQUEUE_FLAG_EVENT_IDX;
201 
202 	if (info->vqai_maxindirsz > 1) {
203 		error = virtqueue_init_indirect(vq, info->vqai_maxindirsz);
204 		if (error)
205 			goto fail;
206 	}
207 
208 	vq->vq_ring_size = round_page(vring_size(size, align));
209 	vq->vq_ring_mem = contigmalloc(vq->vq_ring_size, M_DEVBUF,
210 	    M_NOWAIT | M_ZERO, 0, highaddr, PAGE_SIZE, 0);
211 	if (vq->vq_ring_mem == NULL) {
212 		device_printf(dev,
213 		    "cannot allocate memory for virtqueue ring\n");
214 		error = ENOMEM;
215 		goto fail;
216 	}
217 
218 	vq_ring_init(vq);
219 	virtqueue_disable_intr(vq);
220 
221 	*vqp = vq;
222 
223 fail:
224 	if (error)
225 		virtqueue_free(vq);
226 
227 	return (error);
228 }
229 
230 static int
virtqueue_init_indirect(struct virtqueue * vq,int indirect_size)231 virtqueue_init_indirect(struct virtqueue *vq, int indirect_size)
232 {
233 	device_t dev;
234 	struct vq_desc_extra *dxp;
235 	int i, size;
236 
237 	dev = vq->vq_dev;
238 
239 	if (VIRTIO_BUS_WITH_FEATURE(dev, VIRTIO_RING_F_INDIRECT_DESC) == 0) {
240 		/*
241 		 * Indirect descriptors requested by the driver but not
242 		 * negotiated. Return zero to keep the initialization
243 		 * going: we'll run fine without.
244 		 */
245 		if (bootverbose)
246 			device_printf(dev, "virtqueue %d (%s) requested "
247 			    "indirect descriptors but not negotiated\n",
248 			    vq->vq_queue_index, vq->vq_name);
249 		return (0);
250 	}
251 
252 	size = indirect_size * sizeof(struct vring_desc);
253 	vq->vq_max_indirect_size = indirect_size;
254 	vq->vq_indirect_mem_size = size;
255 	vq->vq_flags |= VIRTQUEUE_FLAG_INDIRECT;
256 
257 	for (i = 0; i < vq->vq_nentries; i++) {
258 		dxp = &vq->vq_descx[i];
259 
260 		dxp->indirect = malloc(size, M_DEVBUF, M_NOWAIT);
261 		if (dxp->indirect == NULL) {
262 			device_printf(dev, "cannot allocate indirect list\n");
263 			return (ENOMEM);
264 		}
265 
266 		dxp->indirect_paddr = vtophys(dxp->indirect);
267 		virtqueue_init_indirect_list(vq, dxp->indirect);
268 	}
269 
270 	return (0);
271 }
272 
273 static void
virtqueue_free_indirect(struct virtqueue * vq)274 virtqueue_free_indirect(struct virtqueue *vq)
275 {
276 	struct vq_desc_extra *dxp;
277 	int i;
278 
279 	for (i = 0; i < vq->vq_nentries; i++) {
280 		dxp = &vq->vq_descx[i];
281 
282 		if (dxp->indirect == NULL)
283 			break;
284 
285 		free(dxp->indirect, M_DEVBUF);
286 		dxp->indirect = NULL;
287 		dxp->indirect_paddr = 0;
288 	}
289 
290 	vq->vq_flags &= ~VIRTQUEUE_FLAG_INDIRECT;
291 	vq->vq_indirect_mem_size = 0;
292 }
293 
294 static void
virtqueue_init_indirect_list(struct virtqueue * vq,struct vring_desc * indirect)295 virtqueue_init_indirect_list(struct virtqueue *vq,
296     struct vring_desc *indirect)
297 {
298 	int i;
299 
300 	bzero(indirect, vq->vq_indirect_mem_size);
301 
302 	for (i = 0; i < vq->vq_max_indirect_size - 1; i++)
303 		indirect[i].next = vq_gtoh16(vq, i + 1);
304 	indirect[i].next = vq_gtoh16(vq, VQ_RING_DESC_CHAIN_END);
305 }
306 
307 int
virtqueue_reinit(struct virtqueue * vq,uint16_t size)308 virtqueue_reinit(struct virtqueue *vq, uint16_t size)
309 {
310 	struct vq_desc_extra *dxp;
311 	int i;
312 
313 	if (vq->vq_nentries != size) {
314 		device_printf(vq->vq_dev,
315 		    "%s: '%s' changed size; old=%hu, new=%hu\n",
316 		    __func__, vq->vq_name, vq->vq_nentries, size);
317 		return (EINVAL);
318 	}
319 
320 	/* Warn if the virtqueue was not properly cleaned up. */
321 	if (vq->vq_free_cnt != vq->vq_nentries) {
322 		device_printf(vq->vq_dev,
323 		    "%s: warning '%s' virtqueue not empty, "
324 		    "leaking %d entries\n", __func__, vq->vq_name,
325 		    vq->vq_nentries - vq->vq_free_cnt);
326 	}
327 
328 	vq->vq_desc_head_idx = 0;
329 	vq->vq_used_cons_idx = 0;
330 	vq->vq_queued_cnt = 0;
331 	vq->vq_free_cnt = vq->vq_nentries;
332 
333 	/* To be safe, reset all our allocated memory. */
334 	bzero(vq->vq_ring_mem, vq->vq_ring_size);
335 	for (i = 0; i < vq->vq_nentries; i++) {
336 		dxp = &vq->vq_descx[i];
337 		dxp->cookie = NULL;
338 		dxp->ndescs = 0;
339 		if (vq->vq_flags & VIRTQUEUE_FLAG_INDIRECT)
340 			virtqueue_init_indirect_list(vq, dxp->indirect);
341 	}
342 
343 	vq_ring_init(vq);
344 	virtqueue_disable_intr(vq);
345 
346 	return (0);
347 }
348 
349 void
virtqueue_free(struct virtqueue * vq)350 virtqueue_free(struct virtqueue *vq)
351 {
352 
353 	if (vq->vq_free_cnt != vq->vq_nentries) {
354 		device_printf(vq->vq_dev, "%s: freeing non-empty virtqueue, "
355 		    "leaking %d entries\n", vq->vq_name,
356 		    vq->vq_nentries - vq->vq_free_cnt);
357 	}
358 
359 	if (vq->vq_flags & VIRTQUEUE_FLAG_INDIRECT)
360 		virtqueue_free_indirect(vq);
361 
362 	if (vq->vq_ring_mem != NULL) {
363 		free(vq->vq_ring_mem, M_DEVBUF);
364 		vq->vq_ring_size = 0;
365 		vq->vq_ring_mem = NULL;
366 	}
367 
368 	free(vq, M_DEVBUF);
369 }
370 
371 vm_paddr_t
virtqueue_paddr(struct virtqueue * vq)372 virtqueue_paddr(struct virtqueue *vq)
373 {
374 
375 	return (vtophys(vq->vq_ring_mem));
376 }
377 
378 vm_paddr_t
virtqueue_desc_paddr(struct virtqueue * vq)379 virtqueue_desc_paddr(struct virtqueue *vq)
380 {
381 
382 	return (vtophys(vq->vq_ring.desc));
383 }
384 
385 vm_paddr_t
virtqueue_avail_paddr(struct virtqueue * vq)386 virtqueue_avail_paddr(struct virtqueue *vq)
387 {
388 
389 	return (vtophys(vq->vq_ring.avail));
390 }
391 
392 vm_paddr_t
virtqueue_used_paddr(struct virtqueue * vq)393 virtqueue_used_paddr(struct virtqueue *vq)
394 {
395 
396 	return (vtophys(vq->vq_ring.used));
397 }
398 
399 uint16_t
virtqueue_index(struct virtqueue * vq)400 virtqueue_index(struct virtqueue *vq)
401 {
402 
403 	return (vq->vq_queue_index);
404 }
405 
406 int
virtqueue_size(struct virtqueue * vq)407 virtqueue_size(struct virtqueue *vq)
408 {
409 
410 	return (vq->vq_nentries);
411 }
412 
413 int
virtqueue_nfree(struct virtqueue * vq)414 virtqueue_nfree(struct virtqueue *vq)
415 {
416 
417 	return (vq->vq_free_cnt);
418 }
419 
420 bool
virtqueue_empty(struct virtqueue * vq)421 virtqueue_empty(struct virtqueue *vq)
422 {
423 
424 	return (vq->vq_nentries == vq->vq_free_cnt);
425 }
426 
427 bool
virtqueue_full(struct virtqueue * vq)428 virtqueue_full(struct virtqueue *vq)
429 {
430 
431 	return (vq->vq_free_cnt == 0);
432 }
433 
434 void
virtqueue_notify(struct virtqueue * vq)435 virtqueue_notify(struct virtqueue *vq)
436 {
437 
438 	/* Ensure updated avail->idx is visible to host. */
439 	mb();
440 
441 	if (vq_ring_must_notify_host(vq))
442 		vq_ring_notify_host(vq);
443 	vq->vq_queued_cnt = 0;
444 }
445 
446 int
virtqueue_nused(struct virtqueue * vq)447 virtqueue_nused(struct virtqueue *vq)
448 {
449 	uint16_t used_idx, nused;
450 
451 	used_idx = vq_htog16(vq, vq->vq_ring.used->idx);
452 
453 	nused = (uint16_t)(used_idx - vq->vq_used_cons_idx);
454 	VQASSERT(vq, nused <= vq->vq_nentries, "used more than available");
455 
456 	return (nused);
457 }
458 
459 int
virtqueue_intr_filter(struct virtqueue * vq)460 virtqueue_intr_filter(struct virtqueue *vq)
461 {
462 
463 	if (vq->vq_used_cons_idx == vq_htog16(vq, vq->vq_ring.used->idx))
464 		return (0);
465 
466 	virtqueue_disable_intr(vq);
467 
468 	return (1);
469 }
470 
471 void
virtqueue_intr(struct virtqueue * vq)472 virtqueue_intr(struct virtqueue *vq)
473 {
474 
475 	vq->vq_intrhand(vq->vq_intrhand_arg);
476 }
477 
478 int
virtqueue_enable_intr(struct virtqueue * vq)479 virtqueue_enable_intr(struct virtqueue *vq)
480 {
481 
482 	return (vq_ring_enable_interrupt(vq, 0));
483 }
484 
485 int
virtqueue_postpone_intr(struct virtqueue * vq,vq_postpone_t hint)486 virtqueue_postpone_intr(struct virtqueue *vq, vq_postpone_t hint)
487 {
488 	uint16_t ndesc, avail_idx;
489 
490 	avail_idx = vq_htog16(vq, vq->vq_ring.avail->idx);
491 	ndesc = (uint16_t)(avail_idx - vq->vq_used_cons_idx);
492 
493 	switch (hint) {
494 	case VQ_POSTPONE_SHORT:
495 		ndesc = ndesc / 4;
496 		break;
497 	case VQ_POSTPONE_LONG:
498 		ndesc = (ndesc * 3) / 4;
499 		break;
500 	case VQ_POSTPONE_EMPTIED:
501 		break;
502 	}
503 
504 	return (vq_ring_enable_interrupt(vq, ndesc));
505 }
506 
507 /*
508  * Note this is only considered a hint to the host.
509  */
510 void
virtqueue_disable_intr(struct virtqueue * vq)511 virtqueue_disable_intr(struct virtqueue *vq)
512 {
513 
514 	if (vq->vq_flags & VIRTQUEUE_FLAG_EVENT_IDX) {
515 		vring_used_event(&vq->vq_ring) = vq_gtoh16(vq,
516 		    vq->vq_used_cons_idx - vq->vq_nentries - 1);
517 		return;
518 	}
519 
520 	vq->vq_ring.avail->flags |= vq_gtoh16(vq, VRING_AVAIL_F_NO_INTERRUPT);
521 }
522 
523 int
virtqueue_enqueue(struct virtqueue * vq,void * cookie,struct sglist * sg,int readable,int writable)524 virtqueue_enqueue(struct virtqueue *vq, void *cookie, struct sglist *sg,
525     int readable, int writable)
526 {
527 	struct vq_desc_extra *dxp;
528 	int needed;
529 	uint16_t head_idx, idx;
530 
531 	needed = readable + writable;
532 
533 	VQASSERT(vq, cookie != NULL, "enqueuing with no cookie");
534 	VQASSERT(vq, needed == sg->sg_nseg,
535 	    "segment count mismatch, %d, %d", needed, sg->sg_nseg);
536 	VQASSERT(vq,
537 	    needed <= vq->vq_nentries || needed <= vq->vq_max_indirect_size,
538 	    "too many segments to enqueue: %d, %d/%d", needed,
539 	    vq->vq_nentries, vq->vq_max_indirect_size);
540 
541 	if (needed < 1)
542 		return (EINVAL);
543 	if (vq->vq_free_cnt == 0)
544 		return (ENOSPC);
545 
546 	if (vq_ring_use_indirect(vq, needed)) {
547 		vq_ring_enqueue_indirect(vq, cookie, sg, readable, writable);
548 		return (0);
549 	} else if (vq->vq_free_cnt < needed)
550 		return (EMSGSIZE);
551 
552 	head_idx = vq->vq_desc_head_idx;
553 	VQ_RING_ASSERT_VALID_IDX(vq, head_idx);
554 	dxp = &vq->vq_descx[head_idx];
555 
556 	VQASSERT(vq, dxp->cookie == NULL,
557 	    "cookie already exists for index %d", head_idx);
558 	dxp->cookie = cookie;
559 	dxp->ndescs = needed;
560 
561 	idx = vq_ring_enqueue_segments(vq, vq->vq_ring.desc, head_idx,
562 	    sg, readable, writable);
563 
564 	vq->vq_desc_head_idx = idx;
565 	vq->vq_free_cnt -= needed;
566 	if (vq->vq_free_cnt == 0)
567 		VQ_RING_ASSERT_CHAIN_TERM(vq);
568 	else
569 		VQ_RING_ASSERT_VALID_IDX(vq, idx);
570 
571 	vq_ring_update_avail(vq, head_idx);
572 
573 	return (0);
574 }
575 
576 void *
virtqueue_dequeue(struct virtqueue * vq,uint32_t * len)577 virtqueue_dequeue(struct virtqueue *vq, uint32_t *len)
578 {
579 	struct vring_used_elem *uep;
580 	void *cookie;
581 	uint16_t used_idx, desc_idx;
582 
583 	if (vq->vq_used_cons_idx == vq_htog16(vq, vq->vq_ring.used->idx))
584 		return (NULL);
585 
586 	used_idx = vq->vq_used_cons_idx++ & (vq->vq_nentries - 1);
587 	uep = &vq->vq_ring.used->ring[used_idx];
588 
589 	rmb();
590 	desc_idx = (uint16_t) vq_htog32(vq, uep->id);
591 	if (len != NULL)
592 		*len = vq_htog32(vq, uep->len);
593 
594 	vq_ring_free_chain(vq, desc_idx);
595 
596 	cookie = vq->vq_descx[desc_idx].cookie;
597 	VQASSERT(vq, cookie != NULL, "no cookie for index %d", desc_idx);
598 	vq->vq_descx[desc_idx].cookie = NULL;
599 
600 	return (cookie);
601 }
602 
603 void *
virtqueue_poll(struct virtqueue * vq,uint32_t * len)604 virtqueue_poll(struct virtqueue *vq, uint32_t *len)
605 {
606 	void *cookie;
607 
608 	while ((cookie = virtqueue_dequeue(vq, len)) == NULL) {
609 		cpu_spinwait();
610 	}
611 
612 	return (cookie);
613 }
614 
615 void *
virtqueue_drain(struct virtqueue * vq,int * last)616 virtqueue_drain(struct virtqueue *vq, int *last)
617 {
618 	void *cookie;
619 	int idx;
620 
621 	cookie = NULL;
622 	idx = *last;
623 
624 	while (idx < vq->vq_nentries && cookie == NULL) {
625 		if ((cookie = vq->vq_descx[idx].cookie) != NULL) {
626 			vq->vq_descx[idx].cookie = NULL;
627 			/* Free chain to keep free count consistent. */
628 			vq_ring_free_chain(vq, idx);
629 		}
630 		idx++;
631 	}
632 
633 	*last = idx;
634 
635 	return (cookie);
636 }
637 
638 void
virtqueue_dump(struct virtqueue * vq)639 virtqueue_dump(struct virtqueue *vq)
640 {
641 
642 	if (vq == NULL)
643 		return;
644 
645 	printf("VQ: %s - size=%d; free=%d; used=%d; queued=%d; "
646 	    "desc_head_idx=%d; avail.idx=%d; used_cons_idx=%d; "
647 	    "used.idx=%d; used_event_idx=%d; avail.flags=0x%x; used.flags=0x%x\n",
648 	    vq->vq_name, vq->vq_nentries, vq->vq_free_cnt, virtqueue_nused(vq),
649 	    vq->vq_queued_cnt, vq->vq_desc_head_idx,
650 	    vq_htog16(vq, vq->vq_ring.avail->idx), vq->vq_used_cons_idx,
651 	    vq_htog16(vq, vq->vq_ring.used->idx),
652 	    vq_htog16(vq, vring_used_event(&vq->vq_ring)),
653 	    vq_htog16(vq, vq->vq_ring.avail->flags),
654 	    vq_htog16(vq, vq->vq_ring.used->flags));
655 }
656 
657 static void
vq_ring_init(struct virtqueue * vq)658 vq_ring_init(struct virtqueue *vq)
659 {
660 	struct vring *vr;
661 	char *ring_mem;
662 	int i, size;
663 
664 	ring_mem = vq->vq_ring_mem;
665 	size = vq->vq_nentries;
666 	vr = &vq->vq_ring;
667 
668 	vring_init(vr, size, ring_mem, vq->vq_alignment);
669 
670 	for (i = 0; i < size - 1; i++)
671 		vr->desc[i].next = vq_gtoh16(vq, i + 1);
672 	vr->desc[i].next = vq_gtoh16(vq, VQ_RING_DESC_CHAIN_END);
673 }
674 
675 static void
vq_ring_update_avail(struct virtqueue * vq,uint16_t desc_idx)676 vq_ring_update_avail(struct virtqueue *vq, uint16_t desc_idx)
677 {
678 	uint16_t avail_idx, avail_ring_idx;
679 
680 	/*
681 	 * Place the head of the descriptor chain into the next slot and make
682 	 * it usable to the host. The chain is made available now rather than
683 	 * deferring to virtqueue_notify() in the hopes that if the host is
684 	 * currently running on another CPU, we can keep it processing the new
685 	 * descriptor.
686 	 */
687 	avail_idx = vq_htog16(vq, vq->vq_ring.avail->idx);
688 	avail_ring_idx = avail_idx & (vq->vq_nentries - 1);
689 	vq->vq_ring.avail->ring[avail_ring_idx] = vq_gtoh16(vq, desc_idx);
690 
691 	wmb();
692 	vq->vq_ring.avail->idx = vq_gtoh16(vq, avail_idx + 1);
693 
694 	/* Keep pending count until virtqueue_notify(). */
695 	vq->vq_queued_cnt++;
696 }
697 
698 static uint16_t
vq_ring_enqueue_segments(struct virtqueue * vq,struct vring_desc * desc,uint16_t head_idx,struct sglist * sg,int readable,int writable)699 vq_ring_enqueue_segments(struct virtqueue *vq, struct vring_desc *desc,
700     uint16_t head_idx, struct sglist *sg, int readable, int writable)
701 {
702 	struct sglist_seg *seg;
703 	struct vring_desc *dp;
704 	int i, needed;
705 	uint16_t idx;
706 
707 	SDT_PROBE6(virtqueue, , enqueue_segments, entry, vq, desc, head_idx,
708 	    sg, readable, writable);
709 
710 	needed = readable + writable;
711 
712 	for (i = 0, idx = head_idx, seg = sg->sg_segs;
713 	     i < needed;
714 	     i++, idx = vq_htog16(vq, dp->next), seg++) {
715 		VQASSERT(vq, idx != VQ_RING_DESC_CHAIN_END,
716 		    "premature end of free desc chain");
717 
718 		dp = &desc[idx];
719 		dp->addr = vq_gtoh64(vq, seg->ss_paddr);
720 		dp->len = vq_gtoh32(vq, seg->ss_len);
721 		dp->flags = 0;
722 
723 		if (i < needed - 1)
724 			dp->flags |= vq_gtoh16(vq, VRING_DESC_F_NEXT);
725 		if (i >= readable)
726 			dp->flags |= vq_gtoh16(vq, VRING_DESC_F_WRITE);
727 	}
728 
729 	SDT_PROBE1(virtqueue, , enqueue_segments, return, idx);
730 	return (idx);
731 }
732 
733 static bool
vq_ring_use_indirect(struct virtqueue * vq,int needed)734 vq_ring_use_indirect(struct virtqueue *vq, int needed)
735 {
736 
737 	if ((vq->vq_flags & VIRTQUEUE_FLAG_INDIRECT) == 0)
738 		return (false);
739 
740 	if (vq->vq_max_indirect_size < needed)
741 		return (false);
742 
743 	if (needed < 2)
744 		return (false);
745 
746 	return (true);
747 }
748 
749 static void
vq_ring_enqueue_indirect(struct virtqueue * vq,void * cookie,struct sglist * sg,int readable,int writable)750 vq_ring_enqueue_indirect(struct virtqueue *vq, void *cookie,
751     struct sglist *sg, int readable, int writable)
752 {
753 	struct vring_desc *dp;
754 	struct vq_desc_extra *dxp;
755 	int needed;
756 	uint16_t head_idx;
757 
758 	needed = readable + writable;
759 	VQASSERT(vq, needed <= vq->vq_max_indirect_size,
760 	    "enqueuing too many indirect descriptors");
761 
762 	head_idx = vq->vq_desc_head_idx;
763 	VQ_RING_ASSERT_VALID_IDX(vq, head_idx);
764 	dp = &vq->vq_ring.desc[head_idx];
765 	dxp = &vq->vq_descx[head_idx];
766 
767 	VQASSERT(vq, dxp->cookie == NULL,
768 	    "cookie already exists for index %d", head_idx);
769 	dxp->cookie = cookie;
770 	dxp->ndescs = 1;
771 
772 	dp->addr = vq_gtoh64(vq, dxp->indirect_paddr);
773 	dp->len = vq_gtoh32(vq, needed * sizeof(struct vring_desc));
774 	dp->flags = vq_gtoh16(vq, VRING_DESC_F_INDIRECT);
775 
776 	vq_ring_enqueue_segments(vq, dxp->indirect, 0,
777 	    sg, readable, writable);
778 
779 	vq->vq_desc_head_idx = vq_htog16(vq, dp->next);
780 	vq->vq_free_cnt--;
781 	if (vq->vq_free_cnt == 0)
782 		VQ_RING_ASSERT_CHAIN_TERM(vq);
783 	else
784 		VQ_RING_ASSERT_VALID_IDX(vq, vq->vq_desc_head_idx);
785 
786 	vq_ring_update_avail(vq, head_idx);
787 }
788 
789 static int
vq_ring_enable_interrupt(struct virtqueue * vq,uint16_t ndesc)790 vq_ring_enable_interrupt(struct virtqueue *vq, uint16_t ndesc)
791 {
792 
793 	/*
794 	 * Enable interrupts, making sure we get the latest index of
795 	 * what's already been consumed.
796 	 */
797 	if (vq->vq_flags & VIRTQUEUE_FLAG_EVENT_IDX) {
798 		vring_used_event(&vq->vq_ring) =
799 		    vq_gtoh16(vq, vq->vq_used_cons_idx + ndesc);
800 	} else {
801 		vq->vq_ring.avail->flags &=
802 		    vq_gtoh16(vq, ~VRING_AVAIL_F_NO_INTERRUPT);
803 	}
804 
805 	mb();
806 
807 	/*
808 	 * Enough items may have already been consumed to meet our threshold
809 	 * since we last checked. Let our caller know so it processes the new
810 	 * entries.
811 	 */
812 	if (virtqueue_nused(vq) > ndesc)
813 		return (1);
814 
815 	return (0);
816 }
817 
818 static int
vq_ring_must_notify_host(struct virtqueue * vq)819 vq_ring_must_notify_host(struct virtqueue *vq)
820 {
821 	uint16_t new_idx, prev_idx, event_idx, flags;
822 
823 	if (vq->vq_flags & VIRTQUEUE_FLAG_EVENT_IDX) {
824 		new_idx = vq_htog16(vq, vq->vq_ring.avail->idx);
825 		prev_idx = new_idx - vq->vq_queued_cnt;
826 		event_idx = vq_htog16(vq, vring_avail_event(&vq->vq_ring));
827 
828 		return (vring_need_event(event_idx, new_idx, prev_idx) != 0);
829 	}
830 
831 	flags = vq->vq_ring.used->flags;
832 	return ((flags & vq_gtoh16(vq, VRING_USED_F_NO_NOTIFY)) == 0);
833 }
834 
835 static void
vq_ring_notify_host(struct virtqueue * vq)836 vq_ring_notify_host(struct virtqueue *vq)
837 {
838 
839 	VIRTIO_BUS_NOTIFY_VQ(vq->vq_dev, vq->vq_queue_index,
840 	    vq->vq_notify_offset);
841 }
842 
843 static void
vq_ring_free_chain(struct virtqueue * vq,uint16_t desc_idx)844 vq_ring_free_chain(struct virtqueue *vq, uint16_t desc_idx)
845 {
846 	struct vring_desc *dp;
847 	struct vq_desc_extra *dxp;
848 
849 	VQ_RING_ASSERT_VALID_IDX(vq, desc_idx);
850 	dp = &vq->vq_ring.desc[desc_idx];
851 	dxp = &vq->vq_descx[desc_idx];
852 
853 	if (vq->vq_free_cnt == 0)
854 		VQ_RING_ASSERT_CHAIN_TERM(vq);
855 
856 	vq->vq_free_cnt += dxp->ndescs;
857 	dxp->ndescs--;
858 
859 	if ((dp->flags & vq_gtoh16(vq, VRING_DESC_F_INDIRECT)) == 0) {
860 		while (dp->flags & vq_gtoh16(vq, VRING_DESC_F_NEXT)) {
861 			uint16_t next_idx = vq_htog16(vq, dp->next);
862 			VQ_RING_ASSERT_VALID_IDX(vq, next_idx);
863 			dp = &vq->vq_ring.desc[next_idx];
864 			dxp->ndescs--;
865 		}
866 	}
867 
868 	VQASSERT(vq, dxp->ndescs == 0,
869 	    "failed to free entire desc chain, remaining: %d", dxp->ndescs);
870 
871 	/*
872 	 * We must append the existing free chain, if any, to the end of
873 	 * newly freed chain. If the virtqueue was completely used, then
874 	 * head would be VQ_RING_DESC_CHAIN_END (ASSERTed above).
875 	 */
876 	dp->next = vq_gtoh16(vq, vq->vq_desc_head_idx);
877 	vq->vq_desc_head_idx = desc_idx;
878 }
879