1 // SPDX-License-Identifier: GPL-2.0-or-later
2 /*
3 * Copyright (C) 2017, Microsoft Corporation.
4 * Copyright (C) 2018, LG Electronics.
5 *
6 * Author(s): Long Li <longli@microsoft.com>,
7 * Hyunchul Lee <hyc.lee@gmail.com>
8 */
9
10 #define SUBMOD_NAME "smb_direct"
11
12 #include <linux/kthread.h>
13 #include <linux/list.h>
14 #include <linux/mempool.h>
15 #include <linux/highmem.h>
16 #include <linux/scatterlist.h>
17 #include <linux/string_choices.h>
18 #include <rdma/ib_verbs.h>
19 #include <rdma/rdma_cm.h>
20 #include <rdma/rw.h>
21
22 #include "glob.h"
23 #include "connection.h"
24 #include "smb_common.h"
25 #include "../common/smb2status.h"
26 #include "../common/smbdirect/smbdirect.h"
27 #include "../common/smbdirect/smbdirect_pdu.h"
28 #include "../common/smbdirect/smbdirect_socket.h"
29 #include "transport_rdma.h"
30
31 #define SMB_DIRECT_PORT_IWARP 5445
32 #define SMB_DIRECT_PORT_INFINIBAND 445
33
34 #define SMB_DIRECT_VERSION_LE cpu_to_le16(SMBDIRECT_V1)
35
36 /* SMB_DIRECT negotiation timeout (for the server) in seconds */
37 #define SMB_DIRECT_NEGOTIATE_TIMEOUT 5
38
39 /* The timeout to wait for a keepalive message from peer in seconds */
40 #define SMB_DIRECT_KEEPALIVE_SEND_INTERVAL 120
41
42 /* The timeout to wait for a keepalive message from peer in seconds */
43 #define SMB_DIRECT_KEEPALIVE_RECV_TIMEOUT 5
44
45 /*
46 * Default maximum number of RDMA read/write outstanding on this connection
47 * This value is possibly decreased during QP creation on hardware limit
48 */
49 #define SMB_DIRECT_CM_INITIATOR_DEPTH 8
50
51 /* Maximum number of retries on data transfer operations */
52 #define SMB_DIRECT_CM_RETRY 6
53 /* No need to retry on Receiver Not Ready since SMB_DIRECT manages credits */
54 #define SMB_DIRECT_CM_RNR_RETRY 0
55
56 /*
57 * User configurable initial values per SMB_DIRECT transport connection
58 * as defined in [MS-SMBD] 3.1.1.1
59 * Those may change after a SMB_DIRECT negotiation
60 */
61
62 /* Set 445 port to SMB Direct port by default */
63 static int smb_direct_port = SMB_DIRECT_PORT_INFINIBAND;
64
65 /* The local peer's maximum number of credits to grant to the peer */
66 static int smb_direct_receive_credit_max = 255;
67
68 /* The remote peer's credit request of local peer */
69 static int smb_direct_send_credit_target = 255;
70
71 /* The maximum single message size can be sent to remote peer */
72 static int smb_direct_max_send_size = 1364;
73
74 /* The maximum fragmented upper-layer payload receive size supported */
75 static int smb_direct_max_fragmented_recv_size = 1024 * 1024;
76
77 /* The maximum single-message size which can be received */
78 static int smb_direct_max_receive_size = 1364;
79
80 static int smb_direct_max_read_write_size = SMBD_DEFAULT_IOSIZE;
81
82 static LIST_HEAD(smb_direct_device_list);
83 static DEFINE_RWLOCK(smb_direct_device_lock);
84
85 struct smb_direct_device {
86 struct ib_device *ib_dev;
87 struct list_head list;
88 };
89
90 static struct smb_direct_listener {
91 struct rdma_cm_id *cm_id;
92 } smb_direct_listener;
93
94 static struct workqueue_struct *smb_direct_wq;
95
96 struct smb_direct_transport {
97 struct ksmbd_transport transport;
98
99 struct smbdirect_socket socket;
100 };
101
102 #define KSMBD_TRANS(t) (&(t)->transport)
103 #define SMBD_TRANS(t) (container_of(t, \
104 struct smb_direct_transport, transport))
105
106 static const struct ksmbd_transport_ops ksmbd_smb_direct_transport_ops;
107
init_smbd_max_io_size(unsigned int sz)108 void init_smbd_max_io_size(unsigned int sz)
109 {
110 sz = clamp_val(sz, SMBD_MIN_IOSIZE, SMBD_MAX_IOSIZE);
111 smb_direct_max_read_write_size = sz;
112 }
113
get_smbd_max_read_write_size(struct ksmbd_transport * kt)114 unsigned int get_smbd_max_read_write_size(struct ksmbd_transport *kt)
115 {
116 struct smb_direct_transport *t;
117 struct smbdirect_socket *sc;
118 struct smbdirect_socket_parameters *sp;
119
120 if (kt->ops != &ksmbd_smb_direct_transport_ops)
121 return 0;
122
123 t = SMBD_TRANS(kt);
124 sc = &t->socket;
125 sp = &sc->parameters;
126
127 return sp->max_read_write_size;
128 }
129
get_buf_page_count(void * buf,int size)130 static inline int get_buf_page_count(void *buf, int size)
131 {
132 return DIV_ROUND_UP((uintptr_t)buf + size, PAGE_SIZE) -
133 (uintptr_t)buf / PAGE_SIZE;
134 }
135
136 static void smb_direct_destroy_pools(struct smbdirect_socket *sc);
137 static void smb_direct_post_recv_credits(struct work_struct *work);
138 static int smb_direct_post_send_data(struct smbdirect_socket *sc,
139 struct smbdirect_send_batch *send_ctx,
140 struct kvec *iov, int niov,
141 int remaining_data_length);
142
143 static inline void
smbdirect_recv_io_payload(struct smbdirect_recv_io * recvmsg)144 *smbdirect_recv_io_payload(struct smbdirect_recv_io *recvmsg)
145 {
146 return (void *)recvmsg->packet;
147 }
148
149 static struct
get_free_recvmsg(struct smbdirect_socket * sc)150 smbdirect_recv_io *get_free_recvmsg(struct smbdirect_socket *sc)
151 {
152 struct smbdirect_recv_io *recvmsg = NULL;
153 unsigned long flags;
154
155 spin_lock_irqsave(&sc->recv_io.free.lock, flags);
156 if (!list_empty(&sc->recv_io.free.list)) {
157 recvmsg = list_first_entry(&sc->recv_io.free.list,
158 struct smbdirect_recv_io,
159 list);
160 list_del(&recvmsg->list);
161 }
162 spin_unlock_irqrestore(&sc->recv_io.free.lock, flags);
163 return recvmsg;
164 }
165
put_recvmsg(struct smbdirect_socket * sc,struct smbdirect_recv_io * recvmsg)166 static void put_recvmsg(struct smbdirect_socket *sc,
167 struct smbdirect_recv_io *recvmsg)
168 {
169 unsigned long flags;
170
171 if (likely(recvmsg->sge.length != 0)) {
172 ib_dma_unmap_single(sc->ib.dev,
173 recvmsg->sge.addr,
174 recvmsg->sge.length,
175 DMA_FROM_DEVICE);
176 recvmsg->sge.length = 0;
177 }
178
179 spin_lock_irqsave(&sc->recv_io.free.lock, flags);
180 list_add(&recvmsg->list, &sc->recv_io.free.list);
181 spin_unlock_irqrestore(&sc->recv_io.free.lock, flags);
182
183 queue_work(sc->workqueue, &sc->recv_io.posted.refill_work);
184 }
185
enqueue_reassembly(struct smbdirect_socket * sc,struct smbdirect_recv_io * recvmsg,int data_length)186 static void enqueue_reassembly(struct smbdirect_socket *sc,
187 struct smbdirect_recv_io *recvmsg,
188 int data_length)
189 {
190 unsigned long flags;
191
192 spin_lock_irqsave(&sc->recv_io.reassembly.lock, flags);
193 list_add_tail(&recvmsg->list, &sc->recv_io.reassembly.list);
194 sc->recv_io.reassembly.queue_length++;
195 /*
196 * Make sure reassembly_data_length is updated after list and
197 * reassembly_queue_length are updated. On the dequeue side
198 * reassembly_data_length is checked without a lock to determine
199 * if reassembly_queue_length and list is up to date
200 */
201 virt_wmb();
202 sc->recv_io.reassembly.data_length += data_length;
203 spin_unlock_irqrestore(&sc->recv_io.reassembly.lock, flags);
204 }
205
get_first_reassembly(struct smbdirect_socket * sc)206 static struct smbdirect_recv_io *get_first_reassembly(struct smbdirect_socket *sc)
207 {
208 if (!list_empty(&sc->recv_io.reassembly.list))
209 return list_first_entry(&sc->recv_io.reassembly.list,
210 struct smbdirect_recv_io, list);
211 else
212 return NULL;
213 }
214
smb_direct_disconnect_wake_up_all(struct smbdirect_socket * sc)215 static void smb_direct_disconnect_wake_up_all(struct smbdirect_socket *sc)
216 {
217 /*
218 * Wake up all waiters in all wait queues
219 * in order to notice the broken connection.
220 */
221 wake_up_all(&sc->status_wait);
222 wake_up_all(&sc->send_io.lcredits.wait_queue);
223 wake_up_all(&sc->send_io.credits.wait_queue);
224 wake_up_all(&sc->send_io.pending.zero_wait_queue);
225 wake_up_all(&sc->recv_io.reassembly.wait_queue);
226 wake_up_all(&sc->rw_io.credits.wait_queue);
227 }
228
smb_direct_disconnect_rdma_work(struct work_struct * work)229 static void smb_direct_disconnect_rdma_work(struct work_struct *work)
230 {
231 struct smbdirect_socket *sc =
232 container_of(work, struct smbdirect_socket, disconnect_work);
233
234 /*
235 * make sure this and other work is not queued again
236 * but here we don't block and avoid
237 * disable[_delayed]_work_sync()
238 */
239 disable_work(&sc->disconnect_work);
240 disable_work(&sc->recv_io.posted.refill_work);
241 disable_delayed_work(&sc->idle.timer_work);
242 disable_work(&sc->idle.immediate_work);
243
244 if (sc->first_error == 0)
245 sc->first_error = -ECONNABORTED;
246
247 switch (sc->status) {
248 case SMBDIRECT_SOCKET_NEGOTIATE_NEEDED:
249 case SMBDIRECT_SOCKET_NEGOTIATE_RUNNING:
250 case SMBDIRECT_SOCKET_NEGOTIATE_FAILED:
251 case SMBDIRECT_SOCKET_CONNECTED:
252 case SMBDIRECT_SOCKET_ERROR:
253 sc->status = SMBDIRECT_SOCKET_DISCONNECTING;
254 rdma_disconnect(sc->rdma.cm_id);
255 break;
256
257 case SMBDIRECT_SOCKET_CREATED:
258 case SMBDIRECT_SOCKET_RESOLVE_ADDR_NEEDED:
259 case SMBDIRECT_SOCKET_RESOLVE_ADDR_RUNNING:
260 case SMBDIRECT_SOCKET_RESOLVE_ADDR_FAILED:
261 case SMBDIRECT_SOCKET_RESOLVE_ROUTE_NEEDED:
262 case SMBDIRECT_SOCKET_RESOLVE_ROUTE_RUNNING:
263 case SMBDIRECT_SOCKET_RESOLVE_ROUTE_FAILED:
264 case SMBDIRECT_SOCKET_RDMA_CONNECT_NEEDED:
265 case SMBDIRECT_SOCKET_RDMA_CONNECT_RUNNING:
266 case SMBDIRECT_SOCKET_RDMA_CONNECT_FAILED:
267 /*
268 * rdma_accept() never reached
269 * RDMA_CM_EVENT_ESTABLISHED
270 */
271 sc->status = SMBDIRECT_SOCKET_DISCONNECTED;
272 break;
273
274 case SMBDIRECT_SOCKET_DISCONNECTING:
275 case SMBDIRECT_SOCKET_DISCONNECTED:
276 case SMBDIRECT_SOCKET_DESTROYED:
277 break;
278 }
279
280 /*
281 * Wake up all waiters in all wait queues
282 * in order to notice the broken connection.
283 */
284 smb_direct_disconnect_wake_up_all(sc);
285 }
286
287 static void
smb_direct_disconnect_rdma_connection(struct smbdirect_socket * sc)288 smb_direct_disconnect_rdma_connection(struct smbdirect_socket *sc)
289 {
290 /*
291 * make sure other work (than disconnect_work) is
292 * not queued again but here we don't block and avoid
293 * disable[_delayed]_work_sync()
294 */
295 disable_work(&sc->recv_io.posted.refill_work);
296 disable_work(&sc->idle.immediate_work);
297 disable_delayed_work(&sc->idle.timer_work);
298
299 if (sc->first_error == 0)
300 sc->first_error = -ECONNABORTED;
301
302 switch (sc->status) {
303 case SMBDIRECT_SOCKET_RESOLVE_ADDR_FAILED:
304 case SMBDIRECT_SOCKET_RESOLVE_ROUTE_FAILED:
305 case SMBDIRECT_SOCKET_RDMA_CONNECT_FAILED:
306 case SMBDIRECT_SOCKET_NEGOTIATE_FAILED:
307 case SMBDIRECT_SOCKET_ERROR:
308 case SMBDIRECT_SOCKET_DISCONNECTING:
309 case SMBDIRECT_SOCKET_DISCONNECTED:
310 case SMBDIRECT_SOCKET_DESTROYED:
311 /*
312 * Keep the current error status
313 */
314 break;
315
316 case SMBDIRECT_SOCKET_RESOLVE_ADDR_NEEDED:
317 case SMBDIRECT_SOCKET_RESOLVE_ADDR_RUNNING:
318 sc->status = SMBDIRECT_SOCKET_RESOLVE_ADDR_FAILED;
319 break;
320
321 case SMBDIRECT_SOCKET_RESOLVE_ROUTE_NEEDED:
322 case SMBDIRECT_SOCKET_RESOLVE_ROUTE_RUNNING:
323 sc->status = SMBDIRECT_SOCKET_RESOLVE_ROUTE_FAILED;
324 break;
325
326 case SMBDIRECT_SOCKET_RDMA_CONNECT_NEEDED:
327 case SMBDIRECT_SOCKET_RDMA_CONNECT_RUNNING:
328 sc->status = SMBDIRECT_SOCKET_RDMA_CONNECT_FAILED;
329 break;
330
331 case SMBDIRECT_SOCKET_NEGOTIATE_NEEDED:
332 case SMBDIRECT_SOCKET_NEGOTIATE_RUNNING:
333 sc->status = SMBDIRECT_SOCKET_NEGOTIATE_FAILED;
334 break;
335
336 case SMBDIRECT_SOCKET_CREATED:
337 case SMBDIRECT_SOCKET_CONNECTED:
338 sc->status = SMBDIRECT_SOCKET_ERROR;
339 break;
340 }
341
342 /*
343 * Wake up all waiters in all wait queues
344 * in order to notice the broken connection.
345 */
346 smb_direct_disconnect_wake_up_all(sc);
347
348 queue_work(sc->workqueue, &sc->disconnect_work);
349 }
350
smb_direct_send_immediate_work(struct work_struct * work)351 static void smb_direct_send_immediate_work(struct work_struct *work)
352 {
353 struct smbdirect_socket *sc =
354 container_of(work, struct smbdirect_socket, idle.immediate_work);
355
356 if (sc->status != SMBDIRECT_SOCKET_CONNECTED)
357 return;
358
359 smb_direct_post_send_data(sc, NULL, NULL, 0, 0);
360 }
361
smb_direct_idle_connection_timer(struct work_struct * work)362 static void smb_direct_idle_connection_timer(struct work_struct *work)
363 {
364 struct smbdirect_socket *sc =
365 container_of(work, struct smbdirect_socket, idle.timer_work.work);
366 struct smbdirect_socket_parameters *sp = &sc->parameters;
367
368 if (sc->idle.keepalive != SMBDIRECT_KEEPALIVE_NONE) {
369 smb_direct_disconnect_rdma_connection(sc);
370 return;
371 }
372
373 if (sc->status != SMBDIRECT_SOCKET_CONNECTED)
374 return;
375
376 /*
377 * Now use the keepalive timeout (instead of keepalive interval)
378 * in order to wait for a response
379 */
380 sc->idle.keepalive = SMBDIRECT_KEEPALIVE_PENDING;
381 mod_delayed_work(sc->workqueue, &sc->idle.timer_work,
382 msecs_to_jiffies(sp->keepalive_timeout_msec));
383 queue_work(sc->workqueue, &sc->idle.immediate_work);
384 }
385
alloc_transport(struct rdma_cm_id * cm_id)386 static struct smb_direct_transport *alloc_transport(struct rdma_cm_id *cm_id)
387 {
388 struct smb_direct_transport *t;
389 struct smbdirect_socket *sc;
390 struct smbdirect_socket_parameters *sp;
391 struct ksmbd_conn *conn;
392
393 t = kzalloc(sizeof(*t), KSMBD_DEFAULT_GFP);
394 if (!t)
395 return NULL;
396 sc = &t->socket;
397 smbdirect_socket_init(sc);
398 sp = &sc->parameters;
399
400 sc->workqueue = smb_direct_wq;
401
402 INIT_WORK(&sc->disconnect_work, smb_direct_disconnect_rdma_work);
403
404 sp->negotiate_timeout_msec = SMB_DIRECT_NEGOTIATE_TIMEOUT * 1000;
405 sp->initiator_depth = SMB_DIRECT_CM_INITIATOR_DEPTH;
406 sp->responder_resources = 1;
407 sp->recv_credit_max = smb_direct_receive_credit_max;
408 sp->send_credit_target = smb_direct_send_credit_target;
409 sp->max_send_size = smb_direct_max_send_size;
410 sp->max_fragmented_recv_size = smb_direct_max_fragmented_recv_size;
411 sp->max_recv_size = smb_direct_max_receive_size;
412 sp->max_read_write_size = smb_direct_max_read_write_size;
413 sp->keepalive_interval_msec = SMB_DIRECT_KEEPALIVE_SEND_INTERVAL * 1000;
414 sp->keepalive_timeout_msec = SMB_DIRECT_KEEPALIVE_RECV_TIMEOUT * 1000;
415
416 sc->rdma.cm_id = cm_id;
417 cm_id->context = sc;
418
419 sc->ib.dev = sc->rdma.cm_id->device;
420
421 INIT_DELAYED_WORK(&sc->idle.timer_work, smb_direct_idle_connection_timer);
422
423 conn = ksmbd_conn_alloc();
424 if (!conn)
425 goto err;
426
427 down_write(&conn_list_lock);
428 hash_add(conn_list, &conn->hlist, 0);
429 up_write(&conn_list_lock);
430
431 conn->transport = KSMBD_TRANS(t);
432 KSMBD_TRANS(t)->conn = conn;
433 KSMBD_TRANS(t)->ops = &ksmbd_smb_direct_transport_ops;
434 return t;
435 err:
436 kfree(t);
437 return NULL;
438 }
439
smb_direct_free_transport(struct ksmbd_transport * kt)440 static void smb_direct_free_transport(struct ksmbd_transport *kt)
441 {
442 kfree(SMBD_TRANS(kt));
443 }
444
free_transport(struct smb_direct_transport * t)445 static void free_transport(struct smb_direct_transport *t)
446 {
447 struct smbdirect_socket *sc = &t->socket;
448 struct smbdirect_recv_io *recvmsg;
449
450 disable_work_sync(&sc->disconnect_work);
451 if (sc->status < SMBDIRECT_SOCKET_DISCONNECTING)
452 smb_direct_disconnect_rdma_work(&sc->disconnect_work);
453 if (sc->status < SMBDIRECT_SOCKET_DISCONNECTED)
454 wait_event(sc->status_wait, sc->status == SMBDIRECT_SOCKET_DISCONNECTED);
455
456 /*
457 * Wake up all waiters in all wait queues
458 * in order to notice the broken connection.
459 *
460 * Most likely this was already called via
461 * smb_direct_disconnect_rdma_work(), but call it again...
462 */
463 smb_direct_disconnect_wake_up_all(sc);
464
465 disable_work_sync(&sc->recv_io.posted.refill_work);
466 disable_delayed_work_sync(&sc->idle.timer_work);
467 disable_work_sync(&sc->idle.immediate_work);
468
469 if (sc->rdma.cm_id)
470 rdma_lock_handler(sc->rdma.cm_id);
471
472 if (sc->ib.qp) {
473 ib_drain_qp(sc->ib.qp);
474 sc->ib.qp = NULL;
475 rdma_destroy_qp(sc->rdma.cm_id);
476 }
477
478 ksmbd_debug(RDMA, "drain the reassembly queue\n");
479 do {
480 unsigned long flags;
481
482 spin_lock_irqsave(&sc->recv_io.reassembly.lock, flags);
483 recvmsg = get_first_reassembly(sc);
484 if (recvmsg) {
485 list_del(&recvmsg->list);
486 spin_unlock_irqrestore(&sc->recv_io.reassembly.lock, flags);
487 put_recvmsg(sc, recvmsg);
488 } else {
489 spin_unlock_irqrestore(&sc->recv_io.reassembly.lock, flags);
490 }
491 } while (recvmsg);
492 sc->recv_io.reassembly.data_length = 0;
493
494 if (sc->ib.send_cq)
495 ib_free_cq(sc->ib.send_cq);
496 if (sc->ib.recv_cq)
497 ib_free_cq(sc->ib.recv_cq);
498 if (sc->ib.pd)
499 ib_dealloc_pd(sc->ib.pd);
500 if (sc->rdma.cm_id) {
501 rdma_unlock_handler(sc->rdma.cm_id);
502 rdma_destroy_id(sc->rdma.cm_id);
503 }
504
505 smb_direct_destroy_pools(sc);
506 ksmbd_conn_free(KSMBD_TRANS(t)->conn);
507 }
508
509 static struct smbdirect_send_io
smb_direct_alloc_sendmsg(struct smbdirect_socket * sc)510 *smb_direct_alloc_sendmsg(struct smbdirect_socket *sc)
511 {
512 struct smbdirect_send_io *msg;
513
514 msg = mempool_alloc(sc->send_io.mem.pool, KSMBD_DEFAULT_GFP);
515 if (!msg)
516 return ERR_PTR(-ENOMEM);
517 msg->socket = sc;
518 INIT_LIST_HEAD(&msg->sibling_list);
519 msg->num_sge = 0;
520 return msg;
521 }
522
smb_direct_free_sendmsg(struct smbdirect_socket * sc,struct smbdirect_send_io * msg)523 static void smb_direct_free_sendmsg(struct smbdirect_socket *sc,
524 struct smbdirect_send_io *msg)
525 {
526 int i;
527
528 /*
529 * The list needs to be empty!
530 * The caller should take care of it.
531 */
532 WARN_ON_ONCE(!list_empty(&msg->sibling_list));
533
534 if (msg->num_sge > 0) {
535 ib_dma_unmap_single(sc->ib.dev,
536 msg->sge[0].addr, msg->sge[0].length,
537 DMA_TO_DEVICE);
538 for (i = 1; i < msg->num_sge; i++)
539 ib_dma_unmap_page(sc->ib.dev,
540 msg->sge[i].addr, msg->sge[i].length,
541 DMA_TO_DEVICE);
542 }
543 mempool_free(msg, sc->send_io.mem.pool);
544 }
545
smb_direct_check_recvmsg(struct smbdirect_recv_io * recvmsg)546 static int smb_direct_check_recvmsg(struct smbdirect_recv_io *recvmsg)
547 {
548 struct smbdirect_socket *sc = recvmsg->socket;
549
550 switch (sc->recv_io.expected) {
551 case SMBDIRECT_EXPECT_DATA_TRANSFER: {
552 struct smbdirect_data_transfer *req =
553 (struct smbdirect_data_transfer *)recvmsg->packet;
554 struct smb2_hdr *hdr = (struct smb2_hdr *)(recvmsg->packet
555 + le32_to_cpu(req->data_offset));
556 ksmbd_debug(RDMA,
557 "CreditGranted: %u, CreditRequested: %u, DataLength: %u, RemainingDataLength: %u, SMB: %x, Command: %u\n",
558 le16_to_cpu(req->credits_granted),
559 le16_to_cpu(req->credits_requested),
560 req->data_length, req->remaining_data_length,
561 hdr->ProtocolId, hdr->Command);
562 return 0;
563 }
564 case SMBDIRECT_EXPECT_NEGOTIATE_REQ: {
565 struct smbdirect_negotiate_req *req =
566 (struct smbdirect_negotiate_req *)recvmsg->packet;
567 ksmbd_debug(RDMA,
568 "MinVersion: %u, MaxVersion: %u, CreditRequested: %u, MaxSendSize: %u, MaxRecvSize: %u, MaxFragmentedSize: %u\n",
569 le16_to_cpu(req->min_version),
570 le16_to_cpu(req->max_version),
571 le16_to_cpu(req->credits_requested),
572 le32_to_cpu(req->preferred_send_size),
573 le32_to_cpu(req->max_receive_size),
574 le32_to_cpu(req->max_fragmented_size));
575 if (le16_to_cpu(req->min_version) > 0x0100 ||
576 le16_to_cpu(req->max_version) < 0x0100)
577 return -EOPNOTSUPP;
578 if (le16_to_cpu(req->credits_requested) <= 0 ||
579 le32_to_cpu(req->max_receive_size) <= 128 ||
580 le32_to_cpu(req->max_fragmented_size) <=
581 128 * 1024)
582 return -ECONNABORTED;
583
584 return 0;
585 }
586 case SMBDIRECT_EXPECT_NEGOTIATE_REP:
587 /* client only */
588 break;
589 }
590
591 /* This is an internal error */
592 return -EINVAL;
593 }
594
recv_done(struct ib_cq * cq,struct ib_wc * wc)595 static void recv_done(struct ib_cq *cq, struct ib_wc *wc)
596 {
597 struct smbdirect_recv_io *recvmsg;
598 struct smbdirect_socket *sc;
599 struct smbdirect_socket_parameters *sp;
600
601 recvmsg = container_of(wc->wr_cqe, struct smbdirect_recv_io, cqe);
602 sc = recvmsg->socket;
603 sp = &sc->parameters;
604
605 if (wc->status != IB_WC_SUCCESS || wc->opcode != IB_WC_RECV) {
606 put_recvmsg(sc, recvmsg);
607 if (wc->status != IB_WC_WR_FLUSH_ERR) {
608 pr_err("Recv error. status='%s (%d)' opcode=%d\n",
609 ib_wc_status_msg(wc->status), wc->status,
610 wc->opcode);
611 smb_direct_disconnect_rdma_connection(sc);
612 }
613 return;
614 }
615
616 ksmbd_debug(RDMA, "Recv completed. status='%s (%d)', opcode=%d\n",
617 ib_wc_status_msg(wc->status), wc->status,
618 wc->opcode);
619
620 ib_dma_sync_single_for_cpu(wc->qp->device, recvmsg->sge.addr,
621 recvmsg->sge.length, DMA_FROM_DEVICE);
622
623 /*
624 * Reset timer to the keepalive interval in
625 * order to trigger our next keepalive message.
626 */
627 sc->idle.keepalive = SMBDIRECT_KEEPALIVE_NONE;
628 mod_delayed_work(sc->workqueue, &sc->idle.timer_work,
629 msecs_to_jiffies(sp->keepalive_interval_msec));
630
631 switch (sc->recv_io.expected) {
632 case SMBDIRECT_EXPECT_NEGOTIATE_REQ:
633 if (wc->byte_len < sizeof(struct smbdirect_negotiate_req)) {
634 put_recvmsg(sc, recvmsg);
635 smb_direct_disconnect_rdma_connection(sc);
636 return;
637 }
638 sc->recv_io.reassembly.full_packet_received = true;
639 WARN_ON_ONCE(sc->status != SMBDIRECT_SOCKET_NEGOTIATE_NEEDED);
640 sc->status = SMBDIRECT_SOCKET_NEGOTIATE_RUNNING;
641 enqueue_reassembly(sc, recvmsg, 0);
642 wake_up(&sc->status_wait);
643 return;
644 case SMBDIRECT_EXPECT_DATA_TRANSFER: {
645 struct smbdirect_data_transfer *data_transfer =
646 (struct smbdirect_data_transfer *)recvmsg->packet;
647 u32 remaining_data_length, data_offset, data_length;
648 u16 old_recv_credit_target;
649
650 if (wc->byte_len <
651 offsetof(struct smbdirect_data_transfer, padding)) {
652 put_recvmsg(sc, recvmsg);
653 smb_direct_disconnect_rdma_connection(sc);
654 return;
655 }
656
657 remaining_data_length = le32_to_cpu(data_transfer->remaining_data_length);
658 data_length = le32_to_cpu(data_transfer->data_length);
659 data_offset = le32_to_cpu(data_transfer->data_offset);
660 if (wc->byte_len < data_offset ||
661 wc->byte_len < (u64)data_offset + data_length) {
662 put_recvmsg(sc, recvmsg);
663 smb_direct_disconnect_rdma_connection(sc);
664 return;
665 }
666 if (remaining_data_length > sp->max_fragmented_recv_size ||
667 data_length > sp->max_fragmented_recv_size ||
668 (u64)remaining_data_length + (u64)data_length >
669 (u64)sp->max_fragmented_recv_size) {
670 put_recvmsg(sc, recvmsg);
671 smb_direct_disconnect_rdma_connection(sc);
672 return;
673 }
674
675 if (data_length) {
676 if (sc->recv_io.reassembly.full_packet_received)
677 recvmsg->first_segment = true;
678
679 if (le32_to_cpu(data_transfer->remaining_data_length))
680 sc->recv_io.reassembly.full_packet_received = false;
681 else
682 sc->recv_io.reassembly.full_packet_received = true;
683 }
684
685 atomic_dec(&sc->recv_io.posted.count);
686 atomic_dec(&sc->recv_io.credits.count);
687
688 old_recv_credit_target = sc->recv_io.credits.target;
689 sc->recv_io.credits.target =
690 le16_to_cpu(data_transfer->credits_requested);
691 sc->recv_io.credits.target =
692 min_t(u16, sc->recv_io.credits.target, sp->recv_credit_max);
693 sc->recv_io.credits.target =
694 max_t(u16, sc->recv_io.credits.target, 1);
695 atomic_add(le16_to_cpu(data_transfer->credits_granted),
696 &sc->send_io.credits.count);
697
698 if (le16_to_cpu(data_transfer->flags) &
699 SMBDIRECT_FLAG_RESPONSE_REQUESTED)
700 queue_work(sc->workqueue, &sc->idle.immediate_work);
701
702 if (atomic_read(&sc->send_io.credits.count) > 0)
703 wake_up(&sc->send_io.credits.wait_queue);
704
705 if (data_length) {
706 if (sc->recv_io.credits.target > old_recv_credit_target)
707 queue_work(sc->workqueue, &sc->recv_io.posted.refill_work);
708
709 enqueue_reassembly(sc, recvmsg, (int)data_length);
710 wake_up(&sc->recv_io.reassembly.wait_queue);
711 } else
712 put_recvmsg(sc, recvmsg);
713
714 return;
715 }
716 case SMBDIRECT_EXPECT_NEGOTIATE_REP:
717 /* client only */
718 break;
719 }
720
721 /*
722 * This is an internal error!
723 */
724 WARN_ON_ONCE(sc->recv_io.expected != SMBDIRECT_EXPECT_DATA_TRANSFER);
725 put_recvmsg(sc, recvmsg);
726 smb_direct_disconnect_rdma_connection(sc);
727 }
728
smb_direct_post_recv(struct smbdirect_socket * sc,struct smbdirect_recv_io * recvmsg)729 static int smb_direct_post_recv(struct smbdirect_socket *sc,
730 struct smbdirect_recv_io *recvmsg)
731 {
732 struct smbdirect_socket_parameters *sp = &sc->parameters;
733 struct ib_recv_wr wr;
734 int ret;
735
736 recvmsg->sge.addr = ib_dma_map_single(sc->ib.dev,
737 recvmsg->packet,
738 sp->max_recv_size,
739 DMA_FROM_DEVICE);
740 ret = ib_dma_mapping_error(sc->ib.dev, recvmsg->sge.addr);
741 if (ret)
742 return ret;
743 recvmsg->sge.length = sp->max_recv_size;
744 recvmsg->sge.lkey = sc->ib.pd->local_dma_lkey;
745 recvmsg->cqe.done = recv_done;
746
747 wr.wr_cqe = &recvmsg->cqe;
748 wr.next = NULL;
749 wr.sg_list = &recvmsg->sge;
750 wr.num_sge = 1;
751
752 ret = ib_post_recv(sc->ib.qp, &wr, NULL);
753 if (ret) {
754 pr_err("Can't post recv: %d\n", ret);
755 ib_dma_unmap_single(sc->ib.dev,
756 recvmsg->sge.addr, recvmsg->sge.length,
757 DMA_FROM_DEVICE);
758 recvmsg->sge.length = 0;
759 smb_direct_disconnect_rdma_connection(sc);
760 return ret;
761 }
762 return ret;
763 }
764
smb_direct_read(struct ksmbd_transport * t,char * buf,unsigned int size,int unused)765 static int smb_direct_read(struct ksmbd_transport *t, char *buf,
766 unsigned int size, int unused)
767 {
768 struct smbdirect_recv_io *recvmsg;
769 struct smbdirect_data_transfer *data_transfer;
770 int to_copy, to_read, data_read, offset;
771 u32 data_length, remaining_data_length, data_offset;
772 int rc;
773 struct smb_direct_transport *st = SMBD_TRANS(t);
774 struct smbdirect_socket *sc = &st->socket;
775
776 again:
777 if (sc->status != SMBDIRECT_SOCKET_CONNECTED) {
778 pr_err("disconnected\n");
779 return -ENOTCONN;
780 }
781
782 /*
783 * No need to hold the reassembly queue lock all the time as we are
784 * the only one reading from the front of the queue. The transport
785 * may add more entries to the back of the queue at the same time
786 */
787 if (sc->recv_io.reassembly.data_length >= size) {
788 int queue_length;
789 int queue_removed = 0;
790 unsigned long flags;
791
792 /*
793 * Need to make sure reassembly_data_length is read before
794 * reading reassembly_queue_length and calling
795 * get_first_reassembly. This call is lock free
796 * as we never read at the end of the queue which are being
797 * updated in SOFTIRQ as more data is received
798 */
799 virt_rmb();
800 queue_length = sc->recv_io.reassembly.queue_length;
801 data_read = 0;
802 to_read = size;
803 offset = sc->recv_io.reassembly.first_entry_offset;
804 while (data_read < size) {
805 recvmsg = get_first_reassembly(sc);
806 data_transfer = smbdirect_recv_io_payload(recvmsg);
807 data_length = le32_to_cpu(data_transfer->data_length);
808 remaining_data_length =
809 le32_to_cpu(data_transfer->remaining_data_length);
810 data_offset = le32_to_cpu(data_transfer->data_offset);
811
812 /*
813 * The upper layer expects RFC1002 length at the
814 * beginning of the payload. Return it to indicate
815 * the total length of the packet. This minimize the
816 * change to upper layer packet processing logic. This
817 * will be eventually remove when an intermediate
818 * transport layer is added
819 */
820 if (recvmsg->first_segment && size == 4) {
821 unsigned int rfc1002_len =
822 data_length + remaining_data_length;
823 *((__be32 *)buf) = cpu_to_be32(rfc1002_len);
824 data_read = 4;
825 recvmsg->first_segment = false;
826 ksmbd_debug(RDMA,
827 "returning rfc1002 length %d\n",
828 rfc1002_len);
829 goto read_rfc1002_done;
830 }
831
832 to_copy = min_t(int, data_length - offset, to_read);
833 memcpy(buf + data_read, (char *)data_transfer + data_offset + offset,
834 to_copy);
835
836 /* move on to the next buffer? */
837 if (to_copy == data_length - offset) {
838 queue_length--;
839 /*
840 * No need to lock if we are not at the
841 * end of the queue
842 */
843 if (queue_length) {
844 list_del(&recvmsg->list);
845 } else {
846 spin_lock_irqsave(&sc->recv_io.reassembly.lock, flags);
847 list_del(&recvmsg->list);
848 spin_unlock_irqrestore(&sc->recv_io.reassembly.lock, flags);
849 }
850 queue_removed++;
851 put_recvmsg(sc, recvmsg);
852 offset = 0;
853 } else {
854 offset += to_copy;
855 }
856
857 to_read -= to_copy;
858 data_read += to_copy;
859 }
860
861 spin_lock_irqsave(&sc->recv_io.reassembly.lock, flags);
862 sc->recv_io.reassembly.data_length -= data_read;
863 sc->recv_io.reassembly.queue_length -= queue_removed;
864 spin_unlock_irqrestore(&sc->recv_io.reassembly.lock, flags);
865
866 sc->recv_io.reassembly.first_entry_offset = offset;
867 ksmbd_debug(RDMA,
868 "returning to thread data_read=%d reassembly_data_length=%d first_entry_offset=%d\n",
869 data_read, sc->recv_io.reassembly.data_length,
870 sc->recv_io.reassembly.first_entry_offset);
871 read_rfc1002_done:
872 return data_read;
873 }
874
875 ksmbd_debug(RDMA, "wait_event on more data\n");
876 rc = wait_event_interruptible(sc->recv_io.reassembly.wait_queue,
877 sc->recv_io.reassembly.data_length >= size ||
878 sc->status != SMBDIRECT_SOCKET_CONNECTED);
879 if (rc)
880 return -EINTR;
881
882 goto again;
883 }
884
smb_direct_post_recv_credits(struct work_struct * work)885 static void smb_direct_post_recv_credits(struct work_struct *work)
886 {
887 struct smbdirect_socket *sc =
888 container_of(work, struct smbdirect_socket, recv_io.posted.refill_work);
889 struct smbdirect_recv_io *recvmsg;
890 int credits = 0;
891 int ret;
892
893 if (atomic_read(&sc->recv_io.credits.count) < sc->recv_io.credits.target) {
894 while (true) {
895 recvmsg = get_free_recvmsg(sc);
896 if (!recvmsg)
897 break;
898
899 recvmsg->first_segment = false;
900
901 ret = smb_direct_post_recv(sc, recvmsg);
902 if (ret) {
903 pr_err("Can't post recv: %d\n", ret);
904 put_recvmsg(sc, recvmsg);
905 break;
906 }
907 credits++;
908
909 atomic_inc(&sc->recv_io.posted.count);
910 }
911 }
912
913 if (credits)
914 queue_work(sc->workqueue, &sc->idle.immediate_work);
915 }
916
send_done(struct ib_cq * cq,struct ib_wc * wc)917 static void send_done(struct ib_cq *cq, struct ib_wc *wc)
918 {
919 struct smbdirect_send_io *sendmsg, *sibling, *next;
920 struct smbdirect_socket *sc;
921 int lcredits = 0;
922
923 sendmsg = container_of(wc->wr_cqe, struct smbdirect_send_io, cqe);
924 sc = sendmsg->socket;
925
926 ksmbd_debug(RDMA, "Send completed. status='%s (%d)', opcode=%d\n",
927 ib_wc_status_msg(wc->status), wc->status,
928 wc->opcode);
929
930 /*
931 * Free possible siblings and then the main send_io
932 */
933 list_for_each_entry_safe(sibling, next, &sendmsg->sibling_list, sibling_list) {
934 list_del_init(&sibling->sibling_list);
935 smb_direct_free_sendmsg(sc, sibling);
936 lcredits += 1;
937 }
938 /* Note this frees wc->wr_cqe, but not wc */
939 smb_direct_free_sendmsg(sc, sendmsg);
940 lcredits += 1;
941
942 if (wc->status != IB_WC_SUCCESS || wc->opcode != IB_WC_SEND) {
943 pr_err("Send error. status='%s (%d)', opcode=%d\n",
944 ib_wc_status_msg(wc->status), wc->status,
945 wc->opcode);
946 smb_direct_disconnect_rdma_connection(sc);
947 return;
948 }
949
950 atomic_add(lcredits, &sc->send_io.lcredits.count);
951 wake_up(&sc->send_io.lcredits.wait_queue);
952
953 if (atomic_dec_and_test(&sc->send_io.pending.count))
954 wake_up(&sc->send_io.pending.zero_wait_queue);
955 }
956
manage_credits_prior_sending(struct smbdirect_socket * sc)957 static int manage_credits_prior_sending(struct smbdirect_socket *sc)
958 {
959 int new_credits;
960
961 if (atomic_read(&sc->recv_io.credits.count) >= sc->recv_io.credits.target)
962 return 0;
963
964 new_credits = atomic_read(&sc->recv_io.posted.count);
965 if (new_credits == 0)
966 return 0;
967
968 new_credits -= atomic_read(&sc->recv_io.credits.count);
969 if (new_credits <= 0)
970 return 0;
971
972 atomic_add(new_credits, &sc->recv_io.credits.count);
973 return new_credits;
974 }
975
manage_keep_alive_before_sending(struct smbdirect_socket * sc)976 static int manage_keep_alive_before_sending(struct smbdirect_socket *sc)
977 {
978 struct smbdirect_socket_parameters *sp = &sc->parameters;
979
980 if (sc->idle.keepalive == SMBDIRECT_KEEPALIVE_PENDING) {
981 sc->idle.keepalive = SMBDIRECT_KEEPALIVE_SENT;
982 /*
983 * Now use the keepalive timeout (instead of keepalive interval)
984 * in order to wait for a response
985 */
986 mod_delayed_work(sc->workqueue, &sc->idle.timer_work,
987 msecs_to_jiffies(sp->keepalive_timeout_msec));
988 return 1;
989 }
990 return 0;
991 }
992
smb_direct_post_send(struct smbdirect_socket * sc,struct ib_send_wr * wr)993 static int smb_direct_post_send(struct smbdirect_socket *sc,
994 struct ib_send_wr *wr)
995 {
996 int ret;
997
998 atomic_inc(&sc->send_io.pending.count);
999 ret = ib_post_send(sc->ib.qp, wr, NULL);
1000 if (ret) {
1001 pr_err("failed to post send: %d\n", ret);
1002 smb_direct_disconnect_rdma_connection(sc);
1003 }
1004 return ret;
1005 }
1006
smb_direct_send_ctx_init(struct smbdirect_send_batch * send_ctx,bool need_invalidate_rkey,unsigned int remote_key)1007 static void smb_direct_send_ctx_init(struct smbdirect_send_batch *send_ctx,
1008 bool need_invalidate_rkey,
1009 unsigned int remote_key)
1010 {
1011 INIT_LIST_HEAD(&send_ctx->msg_list);
1012 send_ctx->wr_cnt = 0;
1013 send_ctx->need_invalidate_rkey = need_invalidate_rkey;
1014 send_ctx->remote_key = remote_key;
1015 }
1016
smb_direct_flush_send_list(struct smbdirect_socket * sc,struct smbdirect_send_batch * send_ctx,bool is_last)1017 static int smb_direct_flush_send_list(struct smbdirect_socket *sc,
1018 struct smbdirect_send_batch *send_ctx,
1019 bool is_last)
1020 {
1021 struct smbdirect_send_io *first, *last;
1022 int ret;
1023
1024 if (list_empty(&send_ctx->msg_list))
1025 return 0;
1026
1027 first = list_first_entry(&send_ctx->msg_list,
1028 struct smbdirect_send_io,
1029 sibling_list);
1030 last = list_last_entry(&send_ctx->msg_list,
1031 struct smbdirect_send_io,
1032 sibling_list);
1033
1034 if (send_ctx->need_invalidate_rkey) {
1035 first->wr.opcode = IB_WR_SEND_WITH_INV;
1036 first->wr.ex.invalidate_rkey = send_ctx->remote_key;
1037 send_ctx->need_invalidate_rkey = false;
1038 send_ctx->remote_key = 0;
1039 }
1040
1041 last->wr.send_flags = IB_SEND_SIGNALED;
1042 last->wr.wr_cqe = &last->cqe;
1043
1044 /*
1045 * Remove last from send_ctx->msg_list
1046 * and splice the rest of send_ctx->msg_list
1047 * to last->sibling_list.
1048 *
1049 * send_ctx->msg_list is a valid empty list
1050 * at the end.
1051 */
1052 list_del_init(&last->sibling_list);
1053 list_splice_tail_init(&send_ctx->msg_list, &last->sibling_list);
1054 send_ctx->wr_cnt = 0;
1055
1056 ret = smb_direct_post_send(sc, &first->wr);
1057 if (ret) {
1058 struct smbdirect_send_io *sibling, *next;
1059
1060 list_for_each_entry_safe(sibling, next, &last->sibling_list, sibling_list) {
1061 list_del_init(&sibling->sibling_list);
1062 smb_direct_free_sendmsg(sc, sibling);
1063 }
1064 smb_direct_free_sendmsg(sc, last);
1065 }
1066
1067 return ret;
1068 }
1069
wait_for_credits(struct smbdirect_socket * sc,wait_queue_head_t * waitq,atomic_t * total_credits,int needed)1070 static int wait_for_credits(struct smbdirect_socket *sc,
1071 wait_queue_head_t *waitq, atomic_t *total_credits,
1072 int needed)
1073 {
1074 int ret;
1075
1076 do {
1077 if (atomic_sub_return(needed, total_credits) >= 0)
1078 return 0;
1079
1080 atomic_add(needed, total_credits);
1081 ret = wait_event_interruptible(*waitq,
1082 atomic_read(total_credits) >= needed ||
1083 sc->status != SMBDIRECT_SOCKET_CONNECTED);
1084
1085 if (sc->status != SMBDIRECT_SOCKET_CONNECTED)
1086 return -ENOTCONN;
1087 else if (ret < 0)
1088 return ret;
1089 } while (true);
1090 }
1091
wait_for_send_lcredit(struct smbdirect_socket * sc,struct smbdirect_send_batch * send_ctx)1092 static int wait_for_send_lcredit(struct smbdirect_socket *sc,
1093 struct smbdirect_send_batch *send_ctx)
1094 {
1095 if (send_ctx && (atomic_read(&sc->send_io.lcredits.count) <= 1)) {
1096 int ret;
1097
1098 ret = smb_direct_flush_send_list(sc, send_ctx, false);
1099 if (ret)
1100 return ret;
1101 }
1102
1103 return wait_for_credits(sc,
1104 &sc->send_io.lcredits.wait_queue,
1105 &sc->send_io.lcredits.count,
1106 1);
1107 }
1108
wait_for_send_credits(struct smbdirect_socket * sc,struct smbdirect_send_batch * send_ctx)1109 static int wait_for_send_credits(struct smbdirect_socket *sc,
1110 struct smbdirect_send_batch *send_ctx)
1111 {
1112 int ret;
1113
1114 if (send_ctx &&
1115 (send_ctx->wr_cnt >= 16 || atomic_read(&sc->send_io.credits.count) <= 1)) {
1116 ret = smb_direct_flush_send_list(sc, send_ctx, false);
1117 if (ret)
1118 return ret;
1119 }
1120
1121 return wait_for_credits(sc, &sc->send_io.credits.wait_queue, &sc->send_io.credits.count, 1);
1122 }
1123
wait_for_rw_credits(struct smbdirect_socket * sc,int credits)1124 static int wait_for_rw_credits(struct smbdirect_socket *sc, int credits)
1125 {
1126 return wait_for_credits(sc,
1127 &sc->rw_io.credits.wait_queue,
1128 &sc->rw_io.credits.count,
1129 credits);
1130 }
1131
calc_rw_credits(struct smbdirect_socket * sc,char * buf,unsigned int len)1132 static int calc_rw_credits(struct smbdirect_socket *sc,
1133 char *buf, unsigned int len)
1134 {
1135 return DIV_ROUND_UP(get_buf_page_count(buf, len),
1136 sc->rw_io.credits.num_pages);
1137 }
1138
smb_direct_create_header(struct smbdirect_socket * sc,int size,int remaining_data_length,struct smbdirect_send_io ** sendmsg_out)1139 static int smb_direct_create_header(struct smbdirect_socket *sc,
1140 int size, int remaining_data_length,
1141 struct smbdirect_send_io **sendmsg_out)
1142 {
1143 struct smbdirect_socket_parameters *sp = &sc->parameters;
1144 struct smbdirect_send_io *sendmsg;
1145 struct smbdirect_data_transfer *packet;
1146 int header_length;
1147 int ret;
1148
1149 sendmsg = smb_direct_alloc_sendmsg(sc);
1150 if (IS_ERR(sendmsg))
1151 return PTR_ERR(sendmsg);
1152
1153 /* Fill in the packet header */
1154 packet = (struct smbdirect_data_transfer *)sendmsg->packet;
1155 packet->credits_requested = cpu_to_le16(sp->send_credit_target);
1156 packet->credits_granted = cpu_to_le16(manage_credits_prior_sending(sc));
1157
1158 packet->flags = 0;
1159 if (manage_keep_alive_before_sending(sc))
1160 packet->flags |= cpu_to_le16(SMBDIRECT_FLAG_RESPONSE_REQUESTED);
1161
1162 packet->reserved = 0;
1163 if (!size)
1164 packet->data_offset = 0;
1165 else
1166 packet->data_offset = cpu_to_le32(24);
1167 packet->data_length = cpu_to_le32(size);
1168 packet->remaining_data_length = cpu_to_le32(remaining_data_length);
1169 packet->padding = 0;
1170
1171 ksmbd_debug(RDMA,
1172 "credits_requested=%d credits_granted=%d data_offset=%d data_length=%d remaining_data_length=%d\n",
1173 le16_to_cpu(packet->credits_requested),
1174 le16_to_cpu(packet->credits_granted),
1175 le32_to_cpu(packet->data_offset),
1176 le32_to_cpu(packet->data_length),
1177 le32_to_cpu(packet->remaining_data_length));
1178
1179 /* Map the packet to DMA */
1180 header_length = sizeof(struct smbdirect_data_transfer);
1181 /* If this is a packet without payload, don't send padding */
1182 if (!size)
1183 header_length =
1184 offsetof(struct smbdirect_data_transfer, padding);
1185
1186 sendmsg->sge[0].addr = ib_dma_map_single(sc->ib.dev,
1187 (void *)packet,
1188 header_length,
1189 DMA_TO_DEVICE);
1190 ret = ib_dma_mapping_error(sc->ib.dev, sendmsg->sge[0].addr);
1191 if (ret) {
1192 smb_direct_free_sendmsg(sc, sendmsg);
1193 return ret;
1194 }
1195
1196 sendmsg->num_sge = 1;
1197 sendmsg->sge[0].length = header_length;
1198 sendmsg->sge[0].lkey = sc->ib.pd->local_dma_lkey;
1199
1200 *sendmsg_out = sendmsg;
1201 return 0;
1202 }
1203
get_sg_list(void * buf,int size,struct scatterlist * sg_list,int nentries)1204 static int get_sg_list(void *buf, int size, struct scatterlist *sg_list, int nentries)
1205 {
1206 bool high = is_vmalloc_addr(buf);
1207 struct page *page;
1208 int offset, len;
1209 int i = 0;
1210
1211 if (size <= 0 || nentries < get_buf_page_count(buf, size))
1212 return -EINVAL;
1213
1214 offset = offset_in_page(buf);
1215 buf -= offset;
1216 while (size > 0) {
1217 len = min_t(int, PAGE_SIZE - offset, size);
1218 if (high)
1219 page = vmalloc_to_page(buf);
1220 else
1221 page = kmap_to_page(buf);
1222
1223 if (!sg_list)
1224 return -EINVAL;
1225 sg_set_page(sg_list, page, len, offset);
1226 sg_list = sg_next(sg_list);
1227
1228 buf += PAGE_SIZE;
1229 size -= len;
1230 offset = 0;
1231 i++;
1232 }
1233 return i;
1234 }
1235
get_mapped_sg_list(struct ib_device * device,void * buf,int size,struct scatterlist * sg_list,int nentries,enum dma_data_direction dir)1236 static int get_mapped_sg_list(struct ib_device *device, void *buf, int size,
1237 struct scatterlist *sg_list, int nentries,
1238 enum dma_data_direction dir)
1239 {
1240 int npages;
1241
1242 npages = get_sg_list(buf, size, sg_list, nentries);
1243 if (npages < 0)
1244 return -EINVAL;
1245 return ib_dma_map_sg(device, sg_list, npages, dir);
1246 }
1247
post_sendmsg(struct smbdirect_socket * sc,struct smbdirect_send_batch * send_ctx,struct smbdirect_send_io * msg)1248 static int post_sendmsg(struct smbdirect_socket *sc,
1249 struct smbdirect_send_batch *send_ctx,
1250 struct smbdirect_send_io *msg)
1251 {
1252 int i;
1253
1254 for (i = 0; i < msg->num_sge; i++)
1255 ib_dma_sync_single_for_device(sc->ib.dev,
1256 msg->sge[i].addr, msg->sge[i].length,
1257 DMA_TO_DEVICE);
1258
1259 msg->cqe.done = send_done;
1260 msg->wr.opcode = IB_WR_SEND;
1261 msg->wr.sg_list = &msg->sge[0];
1262 msg->wr.num_sge = msg->num_sge;
1263 msg->wr.next = NULL;
1264
1265 if (send_ctx) {
1266 msg->wr.wr_cqe = NULL;
1267 msg->wr.send_flags = 0;
1268 if (!list_empty(&send_ctx->msg_list)) {
1269 struct smbdirect_send_io *last;
1270
1271 last = list_last_entry(&send_ctx->msg_list,
1272 struct smbdirect_send_io,
1273 sibling_list);
1274 last->wr.next = &msg->wr;
1275 }
1276 list_add_tail(&msg->sibling_list, &send_ctx->msg_list);
1277 send_ctx->wr_cnt++;
1278 return 0;
1279 }
1280
1281 msg->wr.wr_cqe = &msg->cqe;
1282 msg->wr.send_flags = IB_SEND_SIGNALED;
1283 return smb_direct_post_send(sc, &msg->wr);
1284 }
1285
smb_direct_post_send_data(struct smbdirect_socket * sc,struct smbdirect_send_batch * send_ctx,struct kvec * iov,int niov,int remaining_data_length)1286 static int smb_direct_post_send_data(struct smbdirect_socket *sc,
1287 struct smbdirect_send_batch *send_ctx,
1288 struct kvec *iov, int niov,
1289 int remaining_data_length)
1290 {
1291 int i, j, ret;
1292 struct smbdirect_send_io *msg;
1293 int data_length;
1294 struct scatterlist sg[SMBDIRECT_SEND_IO_MAX_SGE - 1];
1295
1296 ret = wait_for_send_lcredit(sc, send_ctx);
1297 if (ret)
1298 goto lcredit_failed;
1299
1300 ret = wait_for_send_credits(sc, send_ctx);
1301 if (ret)
1302 goto credit_failed;
1303
1304 data_length = 0;
1305 for (i = 0; i < niov; i++)
1306 data_length += iov[i].iov_len;
1307
1308 ret = smb_direct_create_header(sc, data_length, remaining_data_length,
1309 &msg);
1310 if (ret)
1311 goto header_failed;
1312
1313 for (i = 0; i < niov; i++) {
1314 struct ib_sge *sge;
1315 int sg_cnt;
1316
1317 sg_init_table(sg, SMBDIRECT_SEND_IO_MAX_SGE - 1);
1318 sg_cnt = get_mapped_sg_list(sc->ib.dev,
1319 iov[i].iov_base, iov[i].iov_len,
1320 sg, SMBDIRECT_SEND_IO_MAX_SGE - 1,
1321 DMA_TO_DEVICE);
1322 if (sg_cnt <= 0) {
1323 pr_err("failed to map buffer\n");
1324 ret = -ENOMEM;
1325 goto err;
1326 } else if (sg_cnt + msg->num_sge > SMBDIRECT_SEND_IO_MAX_SGE) {
1327 pr_err("buffer not fitted into sges\n");
1328 ret = -E2BIG;
1329 ib_dma_unmap_sg(sc->ib.dev, sg, sg_cnt,
1330 DMA_TO_DEVICE);
1331 goto err;
1332 }
1333
1334 for (j = 0; j < sg_cnt; j++) {
1335 sge = &msg->sge[msg->num_sge];
1336 sge->addr = sg_dma_address(&sg[j]);
1337 sge->length = sg_dma_len(&sg[j]);
1338 sge->lkey = sc->ib.pd->local_dma_lkey;
1339 msg->num_sge++;
1340 }
1341 }
1342
1343 ret = post_sendmsg(sc, send_ctx, msg);
1344 if (ret)
1345 goto err;
1346 return 0;
1347 err:
1348 smb_direct_free_sendmsg(sc, msg);
1349 header_failed:
1350 atomic_inc(&sc->send_io.credits.count);
1351 credit_failed:
1352 atomic_inc(&sc->send_io.lcredits.count);
1353 lcredit_failed:
1354 return ret;
1355 }
1356
smb_direct_writev(struct ksmbd_transport * t,struct kvec * iov,int niovs,int buflen,bool need_invalidate,unsigned int remote_key)1357 static int smb_direct_writev(struct ksmbd_transport *t,
1358 struct kvec *iov, int niovs, int buflen,
1359 bool need_invalidate, unsigned int remote_key)
1360 {
1361 struct smb_direct_transport *st = SMBD_TRANS(t);
1362 struct smbdirect_socket *sc = &st->socket;
1363 struct smbdirect_socket_parameters *sp = &sc->parameters;
1364 size_t remaining_data_length;
1365 size_t iov_idx;
1366 size_t iov_ofs;
1367 size_t max_iov_size = sp->max_send_size -
1368 sizeof(struct smbdirect_data_transfer);
1369 int ret;
1370 struct smbdirect_send_batch send_ctx;
1371 int error = 0;
1372
1373 if (sc->status != SMBDIRECT_SOCKET_CONNECTED)
1374 return -ENOTCONN;
1375
1376 //FIXME: skip RFC1002 header..
1377 if (WARN_ON_ONCE(niovs <= 1 || iov[0].iov_len != 4))
1378 return -EINVAL;
1379 buflen -= 4;
1380 iov_idx = 1;
1381 iov_ofs = 0;
1382
1383 remaining_data_length = buflen;
1384 ksmbd_debug(RDMA, "Sending smb (RDMA): smb_len=%u\n", buflen);
1385
1386 smb_direct_send_ctx_init(&send_ctx, need_invalidate, remote_key);
1387 while (remaining_data_length) {
1388 struct kvec vecs[SMBDIRECT_SEND_IO_MAX_SGE - 1]; /* minus smbdirect hdr */
1389 size_t possible_bytes = max_iov_size;
1390 size_t possible_vecs;
1391 size_t bytes = 0;
1392 size_t nvecs = 0;
1393
1394 /*
1395 * For the last message remaining_data_length should be
1396 * have been 0 already!
1397 */
1398 if (WARN_ON_ONCE(iov_idx >= niovs)) {
1399 error = -EINVAL;
1400 goto done;
1401 }
1402
1403 /*
1404 * We have 2 factors which limit the arguments we pass
1405 * to smb_direct_post_send_data():
1406 *
1407 * 1. The number of supported sges for the send,
1408 * while one is reserved for the smbdirect header.
1409 * And we currently need one SGE per page.
1410 * 2. The number of negotiated payload bytes per send.
1411 */
1412 possible_vecs = min_t(size_t, ARRAY_SIZE(vecs), niovs - iov_idx);
1413
1414 while (iov_idx < niovs && possible_vecs && possible_bytes) {
1415 struct kvec *v = &vecs[nvecs];
1416 int page_count;
1417
1418 v->iov_base = ((u8 *)iov[iov_idx].iov_base) + iov_ofs;
1419 v->iov_len = min_t(size_t,
1420 iov[iov_idx].iov_len - iov_ofs,
1421 possible_bytes);
1422 page_count = get_buf_page_count(v->iov_base, v->iov_len);
1423 if (page_count > possible_vecs) {
1424 /*
1425 * If the number of pages in the buffer
1426 * is to much (because we currently require
1427 * one SGE per page), we need to limit the
1428 * length.
1429 *
1430 * We know possible_vecs is at least 1,
1431 * so we always keep the first page.
1432 *
1433 * We need to calculate the number extra
1434 * pages (epages) we can also keep.
1435 *
1436 * We calculate the number of bytes in the
1437 * first page (fplen), this should never be
1438 * larger than v->iov_len because page_count is
1439 * at least 2, but adding a limitation feels
1440 * better.
1441 *
1442 * Then we calculate the number of bytes (elen)
1443 * we can keep for the extra pages.
1444 */
1445 size_t epages = possible_vecs - 1;
1446 size_t fpofs = offset_in_page(v->iov_base);
1447 size_t fplen = min_t(size_t, PAGE_SIZE - fpofs, v->iov_len);
1448 size_t elen = min_t(size_t, v->iov_len - fplen, epages*PAGE_SIZE);
1449
1450 v->iov_len = fplen + elen;
1451 page_count = get_buf_page_count(v->iov_base, v->iov_len);
1452 if (WARN_ON_ONCE(page_count > possible_vecs)) {
1453 /*
1454 * Something went wrong in the above
1455 * logic...
1456 */
1457 error = -EINVAL;
1458 goto done;
1459 }
1460 }
1461 possible_vecs -= page_count;
1462 nvecs += 1;
1463 possible_bytes -= v->iov_len;
1464 bytes += v->iov_len;
1465
1466 iov_ofs += v->iov_len;
1467 if (iov_ofs >= iov[iov_idx].iov_len) {
1468 iov_idx += 1;
1469 iov_ofs = 0;
1470 }
1471 }
1472
1473 remaining_data_length -= bytes;
1474
1475 ret = smb_direct_post_send_data(sc, &send_ctx,
1476 vecs, nvecs,
1477 remaining_data_length);
1478 if (unlikely(ret)) {
1479 error = ret;
1480 goto done;
1481 }
1482 }
1483
1484 done:
1485 ret = smb_direct_flush_send_list(sc, &send_ctx, true);
1486 if (unlikely(!ret && error))
1487 ret = error;
1488
1489 /*
1490 * As an optimization, we don't wait for individual I/O to finish
1491 * before sending the next one.
1492 * Send them all and wait for pending send count to get to 0
1493 * that means all the I/Os have been out and we are good to return
1494 */
1495
1496 wait_event(sc->send_io.pending.zero_wait_queue,
1497 atomic_read(&sc->send_io.pending.count) == 0 ||
1498 sc->status != SMBDIRECT_SOCKET_CONNECTED);
1499 if (sc->status != SMBDIRECT_SOCKET_CONNECTED && ret == 0)
1500 ret = -ENOTCONN;
1501
1502 return ret;
1503 }
1504
smb_direct_free_rdma_rw_msg(struct smb_direct_transport * t,struct smbdirect_rw_io * msg,enum dma_data_direction dir)1505 static void smb_direct_free_rdma_rw_msg(struct smb_direct_transport *t,
1506 struct smbdirect_rw_io *msg,
1507 enum dma_data_direction dir)
1508 {
1509 struct smbdirect_socket *sc = &t->socket;
1510
1511 rdma_rw_ctx_destroy(&msg->rdma_ctx, sc->ib.qp, sc->ib.qp->port,
1512 msg->sgt.sgl, msg->sgt.nents, dir);
1513 sg_free_table_chained(&msg->sgt, SG_CHUNK_SIZE);
1514 kfree(msg);
1515 }
1516
read_write_done(struct ib_cq * cq,struct ib_wc * wc,enum dma_data_direction dir)1517 static void read_write_done(struct ib_cq *cq, struct ib_wc *wc,
1518 enum dma_data_direction dir)
1519 {
1520 struct smbdirect_rw_io *msg =
1521 container_of(wc->wr_cqe, struct smbdirect_rw_io, cqe);
1522 struct smbdirect_socket *sc = msg->socket;
1523
1524 if (wc->status != IB_WC_SUCCESS) {
1525 msg->error = -EIO;
1526 pr_err("read/write error. opcode = %d, status = %s(%d)\n",
1527 wc->opcode, ib_wc_status_msg(wc->status), wc->status);
1528 if (wc->status != IB_WC_WR_FLUSH_ERR)
1529 smb_direct_disconnect_rdma_connection(sc);
1530 }
1531
1532 complete(msg->completion);
1533 }
1534
read_done(struct ib_cq * cq,struct ib_wc * wc)1535 static void read_done(struct ib_cq *cq, struct ib_wc *wc)
1536 {
1537 read_write_done(cq, wc, DMA_FROM_DEVICE);
1538 }
1539
write_done(struct ib_cq * cq,struct ib_wc * wc)1540 static void write_done(struct ib_cq *cq, struct ib_wc *wc)
1541 {
1542 read_write_done(cq, wc, DMA_TO_DEVICE);
1543 }
1544
smb_direct_rdma_xmit(struct smb_direct_transport * t,void * buf,int buf_len,struct smbdirect_buffer_descriptor_v1 * desc,unsigned int desc_len,bool is_read)1545 static int smb_direct_rdma_xmit(struct smb_direct_transport *t,
1546 void *buf, int buf_len,
1547 struct smbdirect_buffer_descriptor_v1 *desc,
1548 unsigned int desc_len,
1549 bool is_read)
1550 {
1551 struct smbdirect_socket *sc = &t->socket;
1552 struct smbdirect_socket_parameters *sp = &sc->parameters;
1553 struct smbdirect_rw_io *msg, *next_msg;
1554 int i, ret;
1555 DECLARE_COMPLETION_ONSTACK(completion);
1556 struct ib_send_wr *first_wr;
1557 LIST_HEAD(msg_list);
1558 char *desc_buf;
1559 int credits_needed;
1560 unsigned int desc_buf_len, desc_num = 0;
1561
1562 if (sc->status != SMBDIRECT_SOCKET_CONNECTED)
1563 return -ENOTCONN;
1564
1565 if (buf_len > sp->max_read_write_size)
1566 return -EINVAL;
1567
1568 /* calculate needed credits */
1569 credits_needed = 0;
1570 desc_buf = buf;
1571 for (i = 0; i < desc_len / sizeof(*desc); i++) {
1572 if (!buf_len)
1573 break;
1574
1575 desc_buf_len = le32_to_cpu(desc[i].length);
1576 if (!desc_buf_len)
1577 return -EINVAL;
1578
1579 if (desc_buf_len > buf_len) {
1580 desc_buf_len = buf_len;
1581 desc[i].length = cpu_to_le32(desc_buf_len);
1582 buf_len = 0;
1583 }
1584
1585 credits_needed += calc_rw_credits(sc, desc_buf, desc_buf_len);
1586 desc_buf += desc_buf_len;
1587 buf_len -= desc_buf_len;
1588 desc_num++;
1589 }
1590
1591 ksmbd_debug(RDMA, "RDMA %s, len %#x, needed credits %#x\n",
1592 str_read_write(is_read), buf_len, credits_needed);
1593
1594 ret = wait_for_rw_credits(sc, credits_needed);
1595 if (ret < 0)
1596 return ret;
1597
1598 /* build rdma_rw_ctx for each descriptor */
1599 desc_buf = buf;
1600 for (i = 0; i < desc_num; i++) {
1601 msg = kzalloc(struct_size(msg, sg_list, SG_CHUNK_SIZE),
1602 KSMBD_DEFAULT_GFP);
1603 if (!msg) {
1604 ret = -ENOMEM;
1605 goto out;
1606 }
1607
1608 desc_buf_len = le32_to_cpu(desc[i].length);
1609
1610 msg->socket = sc;
1611 msg->cqe.done = is_read ? read_done : write_done;
1612 msg->completion = &completion;
1613
1614 msg->sgt.sgl = &msg->sg_list[0];
1615 ret = sg_alloc_table_chained(&msg->sgt,
1616 get_buf_page_count(desc_buf, desc_buf_len),
1617 msg->sg_list, SG_CHUNK_SIZE);
1618 if (ret) {
1619 ret = -ENOMEM;
1620 goto free_msg;
1621 }
1622
1623 ret = get_sg_list(desc_buf, desc_buf_len,
1624 msg->sgt.sgl, msg->sgt.orig_nents);
1625 if (ret < 0)
1626 goto free_table;
1627
1628 ret = rdma_rw_ctx_init(&msg->rdma_ctx, sc->ib.qp, sc->ib.qp->port,
1629 msg->sgt.sgl,
1630 get_buf_page_count(desc_buf, desc_buf_len),
1631 0,
1632 le64_to_cpu(desc[i].offset),
1633 le32_to_cpu(desc[i].token),
1634 is_read ? DMA_FROM_DEVICE : DMA_TO_DEVICE);
1635 if (ret < 0) {
1636 pr_err("failed to init rdma_rw_ctx: %d\n", ret);
1637 goto free_table;
1638 }
1639
1640 list_add_tail(&msg->list, &msg_list);
1641 desc_buf += desc_buf_len;
1642 }
1643
1644 /* concatenate work requests of rdma_rw_ctxs */
1645 first_wr = NULL;
1646 list_for_each_entry_reverse(msg, &msg_list, list) {
1647 first_wr = rdma_rw_ctx_wrs(&msg->rdma_ctx, sc->ib.qp, sc->ib.qp->port,
1648 &msg->cqe, first_wr);
1649 }
1650
1651 ret = ib_post_send(sc->ib.qp, first_wr, NULL);
1652 if (ret) {
1653 pr_err("failed to post send wr for RDMA R/W: %d\n", ret);
1654 goto out;
1655 }
1656
1657 msg = list_last_entry(&msg_list, struct smbdirect_rw_io, list);
1658 wait_for_completion(&completion);
1659 ret = msg->error;
1660 out:
1661 list_for_each_entry_safe(msg, next_msg, &msg_list, list) {
1662 list_del(&msg->list);
1663 smb_direct_free_rdma_rw_msg(t, msg,
1664 is_read ? DMA_FROM_DEVICE : DMA_TO_DEVICE);
1665 }
1666 atomic_add(credits_needed, &sc->rw_io.credits.count);
1667 wake_up(&sc->rw_io.credits.wait_queue);
1668 return ret;
1669
1670 free_table:
1671 sg_free_table_chained(&msg->sgt, SG_CHUNK_SIZE);
1672 free_msg:
1673 kfree(msg);
1674 goto out;
1675 }
1676
smb_direct_rdma_write(struct ksmbd_transport * t,void * buf,unsigned int buflen,struct smbdirect_buffer_descriptor_v1 * desc,unsigned int desc_len)1677 static int smb_direct_rdma_write(struct ksmbd_transport *t,
1678 void *buf, unsigned int buflen,
1679 struct smbdirect_buffer_descriptor_v1 *desc,
1680 unsigned int desc_len)
1681 {
1682 return smb_direct_rdma_xmit(SMBD_TRANS(t), buf, buflen,
1683 desc, desc_len, false);
1684 }
1685
smb_direct_rdma_read(struct ksmbd_transport * t,void * buf,unsigned int buflen,struct smbdirect_buffer_descriptor_v1 * desc,unsigned int desc_len)1686 static int smb_direct_rdma_read(struct ksmbd_transport *t,
1687 void *buf, unsigned int buflen,
1688 struct smbdirect_buffer_descriptor_v1 *desc,
1689 unsigned int desc_len)
1690 {
1691 return smb_direct_rdma_xmit(SMBD_TRANS(t), buf, buflen,
1692 desc, desc_len, true);
1693 }
1694
smb_direct_disconnect(struct ksmbd_transport * t)1695 static void smb_direct_disconnect(struct ksmbd_transport *t)
1696 {
1697 struct smb_direct_transport *st = SMBD_TRANS(t);
1698 struct smbdirect_socket *sc = &st->socket;
1699
1700 ksmbd_debug(RDMA, "Disconnecting cm_id=%p\n", sc->rdma.cm_id);
1701
1702 free_transport(st);
1703 }
1704
smb_direct_shutdown(struct ksmbd_transport * t)1705 static void smb_direct_shutdown(struct ksmbd_transport *t)
1706 {
1707 struct smb_direct_transport *st = SMBD_TRANS(t);
1708 struct smbdirect_socket *sc = &st->socket;
1709
1710 ksmbd_debug(RDMA, "smb-direct shutdown cm_id=%p\n", sc->rdma.cm_id);
1711
1712 smb_direct_disconnect_rdma_work(&sc->disconnect_work);
1713 }
1714
smb_direct_cm_handler(struct rdma_cm_id * cm_id,struct rdma_cm_event * event)1715 static int smb_direct_cm_handler(struct rdma_cm_id *cm_id,
1716 struct rdma_cm_event *event)
1717 {
1718 struct smbdirect_socket *sc = cm_id->context;
1719
1720 ksmbd_debug(RDMA, "RDMA CM event. cm_id=%p event=%s (%d)\n",
1721 cm_id, rdma_event_msg(event->event), event->event);
1722
1723 switch (event->event) {
1724 case RDMA_CM_EVENT_ESTABLISHED: {
1725 WARN_ON_ONCE(sc->status != SMBDIRECT_SOCKET_RDMA_CONNECT_RUNNING);
1726 sc->status = SMBDIRECT_SOCKET_NEGOTIATE_NEEDED;
1727 wake_up(&sc->status_wait);
1728 break;
1729 }
1730 case RDMA_CM_EVENT_DEVICE_REMOVAL:
1731 case RDMA_CM_EVENT_DISCONNECTED: {
1732 sc->status = SMBDIRECT_SOCKET_DISCONNECTED;
1733 smb_direct_disconnect_rdma_work(&sc->disconnect_work);
1734 if (sc->ib.qp)
1735 ib_drain_qp(sc->ib.qp);
1736 break;
1737 }
1738 case RDMA_CM_EVENT_CONNECT_ERROR: {
1739 sc->status = SMBDIRECT_SOCKET_DISCONNECTED;
1740 smb_direct_disconnect_rdma_work(&sc->disconnect_work);
1741 break;
1742 }
1743 default:
1744 pr_err("Unexpected RDMA CM event. cm_id=%p, event=%s (%d)\n",
1745 cm_id, rdma_event_msg(event->event),
1746 event->event);
1747 break;
1748 }
1749 return 0;
1750 }
1751
smb_direct_qpair_handler(struct ib_event * event,void * context)1752 static void smb_direct_qpair_handler(struct ib_event *event, void *context)
1753 {
1754 struct smbdirect_socket *sc = context;
1755
1756 ksmbd_debug(RDMA, "Received QP event. cm_id=%p, event=%s (%d)\n",
1757 sc->rdma.cm_id, ib_event_msg(event->event), event->event);
1758
1759 switch (event->event) {
1760 case IB_EVENT_CQ_ERR:
1761 case IB_EVENT_QP_FATAL:
1762 smb_direct_disconnect_rdma_connection(sc);
1763 break;
1764 default:
1765 break;
1766 }
1767 }
1768
smb_direct_send_negotiate_response(struct smbdirect_socket * sc,int failed)1769 static int smb_direct_send_negotiate_response(struct smbdirect_socket *sc,
1770 int failed)
1771 {
1772 struct smbdirect_socket_parameters *sp = &sc->parameters;
1773 struct smbdirect_send_io *sendmsg;
1774 struct smbdirect_negotiate_resp *resp;
1775 int ret;
1776
1777 sendmsg = smb_direct_alloc_sendmsg(sc);
1778 if (IS_ERR(sendmsg))
1779 return -ENOMEM;
1780
1781 resp = (struct smbdirect_negotiate_resp *)sendmsg->packet;
1782 if (failed) {
1783 memset(resp, 0, sizeof(*resp));
1784 resp->min_version = SMB_DIRECT_VERSION_LE;
1785 resp->max_version = SMB_DIRECT_VERSION_LE;
1786 resp->status = STATUS_NOT_SUPPORTED;
1787
1788 sc->status = SMBDIRECT_SOCKET_NEGOTIATE_FAILED;
1789 } else {
1790 resp->status = STATUS_SUCCESS;
1791 resp->min_version = SMB_DIRECT_VERSION_LE;
1792 resp->max_version = SMB_DIRECT_VERSION_LE;
1793 resp->negotiated_version = SMB_DIRECT_VERSION_LE;
1794 resp->reserved = 0;
1795 resp->credits_requested =
1796 cpu_to_le16(sp->send_credit_target);
1797 resp->credits_granted = cpu_to_le16(manage_credits_prior_sending(sc));
1798 resp->max_readwrite_size = cpu_to_le32(sp->max_read_write_size);
1799 resp->preferred_send_size = cpu_to_le32(sp->max_send_size);
1800 resp->max_receive_size = cpu_to_le32(sp->max_recv_size);
1801 resp->max_fragmented_size =
1802 cpu_to_le32(sp->max_fragmented_recv_size);
1803
1804 sc->recv_io.expected = SMBDIRECT_EXPECT_DATA_TRANSFER;
1805 sc->status = SMBDIRECT_SOCKET_CONNECTED;
1806 }
1807
1808 sendmsg->sge[0].addr = ib_dma_map_single(sc->ib.dev,
1809 (void *)resp, sizeof(*resp),
1810 DMA_TO_DEVICE);
1811 ret = ib_dma_mapping_error(sc->ib.dev, sendmsg->sge[0].addr);
1812 if (ret) {
1813 smb_direct_free_sendmsg(sc, sendmsg);
1814 return ret;
1815 }
1816
1817 sendmsg->num_sge = 1;
1818 sendmsg->sge[0].length = sizeof(*resp);
1819 sendmsg->sge[0].lkey = sc->ib.pd->local_dma_lkey;
1820
1821 ret = post_sendmsg(sc, NULL, sendmsg);
1822 if (ret) {
1823 smb_direct_free_sendmsg(sc, sendmsg);
1824 return ret;
1825 }
1826
1827 wait_event(sc->send_io.pending.zero_wait_queue,
1828 atomic_read(&sc->send_io.pending.count) == 0 ||
1829 sc->status != SMBDIRECT_SOCKET_CONNECTED);
1830 if (sc->status != SMBDIRECT_SOCKET_CONNECTED)
1831 return -ENOTCONN;
1832
1833 return 0;
1834 }
1835
smb_direct_accept_client(struct smbdirect_socket * sc)1836 static int smb_direct_accept_client(struct smbdirect_socket *sc)
1837 {
1838 struct smbdirect_socket_parameters *sp = &sc->parameters;
1839 struct rdma_conn_param conn_param;
1840 __be32 ird_ord_hdr[2];
1841 int ret;
1842
1843 /*
1844 * smb_direct_handle_connect_request()
1845 * already negotiated sp->initiator_depth
1846 * and sp->responder_resources
1847 */
1848 memset(&conn_param, 0, sizeof(conn_param));
1849 conn_param.initiator_depth = sp->initiator_depth;
1850 conn_param.responder_resources = sp->responder_resources;
1851
1852 if (sc->rdma.legacy_iwarp) {
1853 ird_ord_hdr[0] = cpu_to_be32(conn_param.responder_resources);
1854 ird_ord_hdr[1] = cpu_to_be32(conn_param.initiator_depth);
1855 conn_param.private_data = ird_ord_hdr;
1856 conn_param.private_data_len = sizeof(ird_ord_hdr);
1857 } else {
1858 conn_param.private_data = NULL;
1859 conn_param.private_data_len = 0;
1860 }
1861 conn_param.retry_count = SMB_DIRECT_CM_RETRY;
1862 conn_param.rnr_retry_count = SMB_DIRECT_CM_RNR_RETRY;
1863 conn_param.flow_control = 0;
1864
1865 /*
1866 * start with the negotiate timeout and SMBDIRECT_KEEPALIVE_PENDING
1867 * so that the timer will cause a disconnect.
1868 */
1869 sc->idle.keepalive = SMBDIRECT_KEEPALIVE_PENDING;
1870 mod_delayed_work(sc->workqueue, &sc->idle.timer_work,
1871 msecs_to_jiffies(sp->negotiate_timeout_msec));
1872
1873 WARN_ON_ONCE(sc->status != SMBDIRECT_SOCKET_RDMA_CONNECT_NEEDED);
1874 sc->status = SMBDIRECT_SOCKET_RDMA_CONNECT_RUNNING;
1875 ret = rdma_accept(sc->rdma.cm_id, &conn_param);
1876 if (ret) {
1877 pr_err("error at rdma_accept: %d\n", ret);
1878 return ret;
1879 }
1880 return 0;
1881 }
1882
smb_direct_prepare_negotiation(struct smbdirect_socket * sc)1883 static int smb_direct_prepare_negotiation(struct smbdirect_socket *sc)
1884 {
1885 struct smbdirect_recv_io *recvmsg;
1886 int ret;
1887
1888 WARN_ON_ONCE(sc->status != SMBDIRECT_SOCKET_CREATED);
1889 sc->status = SMBDIRECT_SOCKET_RDMA_CONNECT_NEEDED;
1890
1891 sc->recv_io.expected = SMBDIRECT_EXPECT_NEGOTIATE_REQ;
1892
1893 recvmsg = get_free_recvmsg(sc);
1894 if (!recvmsg)
1895 return -ENOMEM;
1896
1897 ret = smb_direct_post_recv(sc, recvmsg);
1898 if (ret) {
1899 pr_err("Can't post recv: %d\n", ret);
1900 goto out_err;
1901 }
1902
1903 ret = smb_direct_accept_client(sc);
1904 if (ret) {
1905 pr_err("Can't accept client\n");
1906 goto out_err;
1907 }
1908
1909 return 0;
1910 out_err:
1911 put_recvmsg(sc, recvmsg);
1912 return ret;
1913 }
1914
smb_direct_init_params(struct smbdirect_socket * sc)1915 static int smb_direct_init_params(struct smbdirect_socket *sc)
1916 {
1917 struct smbdirect_socket_parameters *sp = &sc->parameters;
1918 int max_send_sges;
1919 unsigned int maxpages;
1920
1921 /* need 3 more sge. because a SMB_DIRECT header, SMB2 header,
1922 * SMB2 response could be mapped.
1923 */
1924 max_send_sges = DIV_ROUND_UP(sp->max_send_size, PAGE_SIZE) + 3;
1925 if (max_send_sges > SMBDIRECT_SEND_IO_MAX_SGE) {
1926 pr_err("max_send_size %d is too large\n", sp->max_send_size);
1927 return -EINVAL;
1928 }
1929
1930 atomic_set(&sc->send_io.lcredits.count, sp->send_credit_target);
1931
1932 maxpages = DIV_ROUND_UP(sp->max_read_write_size, PAGE_SIZE);
1933 sc->rw_io.credits.max = rdma_rw_mr_factor(sc->ib.dev,
1934 sc->rdma.cm_id->port_num,
1935 maxpages);
1936 sc->rw_io.credits.num_pages = DIV_ROUND_UP(maxpages, sc->rw_io.credits.max);
1937 /* add one extra in order to handle unaligned pages */
1938 sc->rw_io.credits.max += 1;
1939
1940 sc->recv_io.credits.target = 1;
1941
1942 atomic_set(&sc->rw_io.credits.count, sc->rw_io.credits.max);
1943
1944 return 0;
1945 }
1946
smb_direct_destroy_pools(struct smbdirect_socket * sc)1947 static void smb_direct_destroy_pools(struct smbdirect_socket *sc)
1948 {
1949 struct smbdirect_recv_io *recvmsg;
1950
1951 while ((recvmsg = get_free_recvmsg(sc)))
1952 mempool_free(recvmsg, sc->recv_io.mem.pool);
1953
1954 mempool_destroy(sc->recv_io.mem.pool);
1955 sc->recv_io.mem.pool = NULL;
1956
1957 kmem_cache_destroy(sc->recv_io.mem.cache);
1958 sc->recv_io.mem.cache = NULL;
1959
1960 mempool_destroy(sc->send_io.mem.pool);
1961 sc->send_io.mem.pool = NULL;
1962
1963 kmem_cache_destroy(sc->send_io.mem.cache);
1964 sc->send_io.mem.cache = NULL;
1965 }
1966
smb_direct_create_pools(struct smbdirect_socket * sc)1967 static int smb_direct_create_pools(struct smbdirect_socket *sc)
1968 {
1969 struct smbdirect_socket_parameters *sp = &sc->parameters;
1970 char name[80];
1971 int i;
1972 struct smbdirect_recv_io *recvmsg;
1973
1974 snprintf(name, sizeof(name), "smbdirect_send_io_pool_%p", sc);
1975 sc->send_io.mem.cache = kmem_cache_create(name,
1976 sizeof(struct smbdirect_send_io) +
1977 sizeof(struct smbdirect_negotiate_resp),
1978 0, SLAB_HWCACHE_ALIGN, NULL);
1979 if (!sc->send_io.mem.cache)
1980 return -ENOMEM;
1981
1982 sc->send_io.mem.pool = mempool_create(sp->send_credit_target,
1983 mempool_alloc_slab, mempool_free_slab,
1984 sc->send_io.mem.cache);
1985 if (!sc->send_io.mem.pool)
1986 goto err;
1987
1988 snprintf(name, sizeof(name), "smbdirect_recv_io_pool_%p", sc);
1989 sc->recv_io.mem.cache = kmem_cache_create(name,
1990 sizeof(struct smbdirect_recv_io) +
1991 sp->max_recv_size,
1992 0, SLAB_HWCACHE_ALIGN, NULL);
1993 if (!sc->recv_io.mem.cache)
1994 goto err;
1995
1996 sc->recv_io.mem.pool =
1997 mempool_create(sp->recv_credit_max, mempool_alloc_slab,
1998 mempool_free_slab, sc->recv_io.mem.cache);
1999 if (!sc->recv_io.mem.pool)
2000 goto err;
2001
2002 for (i = 0; i < sp->recv_credit_max; i++) {
2003 recvmsg = mempool_alloc(sc->recv_io.mem.pool, KSMBD_DEFAULT_GFP);
2004 if (!recvmsg)
2005 goto err;
2006 recvmsg->socket = sc;
2007 recvmsg->sge.length = 0;
2008 list_add(&recvmsg->list, &sc->recv_io.free.list);
2009 }
2010
2011 return 0;
2012 err:
2013 smb_direct_destroy_pools(sc);
2014 return -ENOMEM;
2015 }
2016
smb_direct_rdma_rw_send_wrs(struct ib_device * dev,const struct ib_qp_init_attr * attr)2017 static u32 smb_direct_rdma_rw_send_wrs(struct ib_device *dev, const struct ib_qp_init_attr *attr)
2018 {
2019 /*
2020 * This could be split out of rdma_rw_init_qp()
2021 * and be a helper function next to rdma_rw_mr_factor()
2022 *
2023 * We can't check unlikely(rdma_rw_force_mr) here,
2024 * but that is most likely 0 anyway.
2025 */
2026 u32 factor;
2027
2028 WARN_ON_ONCE(attr->port_num == 0);
2029
2030 /*
2031 * Each context needs at least one RDMA READ or WRITE WR.
2032 *
2033 * For some hardware we might need more, eventually we should ask the
2034 * HCA driver for a multiplier here.
2035 */
2036 factor = 1;
2037
2038 /*
2039 * If the device needs MRs to perform RDMA READ or WRITE operations,
2040 * we'll need two additional MRs for the registrations and the
2041 * invalidation.
2042 */
2043 if (rdma_protocol_iwarp(dev, attr->port_num) || dev->attrs.max_sgl_rd)
2044 factor += 2; /* inv + reg */
2045
2046 return factor * attr->cap.max_rdma_ctxs;
2047 }
2048
smb_direct_create_qpair(struct smbdirect_socket * sc)2049 static int smb_direct_create_qpair(struct smbdirect_socket *sc)
2050 {
2051 struct smbdirect_socket_parameters *sp = &sc->parameters;
2052 int ret;
2053 struct ib_qp_cap qp_cap;
2054 struct ib_qp_init_attr qp_attr;
2055 u32 max_send_wr;
2056 u32 rdma_send_wr;
2057
2058 /*
2059 * Note that {rdma,ib}_create_qp() will call
2060 * rdma_rw_init_qp() if cap->max_rdma_ctxs is not 0.
2061 * It will adjust cap->max_send_wr to the required
2062 * number of additional WRs for the RDMA RW operations.
2063 * It will cap cap->max_send_wr to the device limit.
2064 *
2065 * +1 for ib_drain_qp
2066 */
2067 qp_cap.max_send_wr = sp->send_credit_target + 1;
2068 qp_cap.max_recv_wr = sp->recv_credit_max + 1;
2069 qp_cap.max_send_sge = SMBDIRECT_SEND_IO_MAX_SGE;
2070 qp_cap.max_recv_sge = SMBDIRECT_RECV_IO_MAX_SGE;
2071 qp_cap.max_inline_data = 0;
2072 qp_cap.max_rdma_ctxs = sc->rw_io.credits.max;
2073
2074 /*
2075 * Find out the number of max_send_wr
2076 * after rdma_rw_init_qp() adjusted it.
2077 *
2078 * We only do it on a temporary variable,
2079 * as rdma_create_qp() will trigger
2080 * rdma_rw_init_qp() again.
2081 */
2082 memset(&qp_attr, 0, sizeof(qp_attr));
2083 qp_attr.cap = qp_cap;
2084 qp_attr.port_num = sc->rdma.cm_id->port_num;
2085 rdma_send_wr = smb_direct_rdma_rw_send_wrs(sc->ib.dev, &qp_attr);
2086 max_send_wr = qp_cap.max_send_wr + rdma_send_wr;
2087
2088 if (qp_cap.max_send_wr > sc->ib.dev->attrs.max_cqe ||
2089 qp_cap.max_send_wr > sc->ib.dev->attrs.max_qp_wr) {
2090 pr_err("Possible CQE overrun: max_send_wr %d\n",
2091 qp_cap.max_send_wr);
2092 pr_err("device %.*s reporting max_cqe %d max_qp_wr %d\n",
2093 IB_DEVICE_NAME_MAX,
2094 sc->ib.dev->name,
2095 sc->ib.dev->attrs.max_cqe,
2096 sc->ib.dev->attrs.max_qp_wr);
2097 pr_err("consider lowering send_credit_target = %d\n",
2098 sp->send_credit_target);
2099 return -EINVAL;
2100 }
2101
2102 if (qp_cap.max_rdma_ctxs &&
2103 (max_send_wr >= sc->ib.dev->attrs.max_cqe ||
2104 max_send_wr >= sc->ib.dev->attrs.max_qp_wr)) {
2105 pr_err("Possible CQE overrun: rdma_send_wr %d + max_send_wr %d = %d\n",
2106 rdma_send_wr, qp_cap.max_send_wr, max_send_wr);
2107 pr_err("device %.*s reporting max_cqe %d max_qp_wr %d\n",
2108 IB_DEVICE_NAME_MAX,
2109 sc->ib.dev->name,
2110 sc->ib.dev->attrs.max_cqe,
2111 sc->ib.dev->attrs.max_qp_wr);
2112 pr_err("consider lowering send_credit_target = %d, max_rdma_ctxs = %d\n",
2113 sp->send_credit_target, qp_cap.max_rdma_ctxs);
2114 return -EINVAL;
2115 }
2116
2117 if (qp_cap.max_recv_wr > sc->ib.dev->attrs.max_cqe ||
2118 qp_cap.max_recv_wr > sc->ib.dev->attrs.max_qp_wr) {
2119 pr_err("Possible CQE overrun: max_recv_wr %d\n",
2120 qp_cap.max_recv_wr);
2121 pr_err("device %.*s reporting max_cqe %d max_qp_wr %d\n",
2122 IB_DEVICE_NAME_MAX,
2123 sc->ib.dev->name,
2124 sc->ib.dev->attrs.max_cqe,
2125 sc->ib.dev->attrs.max_qp_wr);
2126 pr_err("consider lowering receive_credit_max = %d\n",
2127 sp->recv_credit_max);
2128 return -EINVAL;
2129 }
2130
2131 if (qp_cap.max_send_sge > sc->ib.dev->attrs.max_send_sge ||
2132 qp_cap.max_recv_sge > sc->ib.dev->attrs.max_recv_sge) {
2133 pr_err("device %.*s max_send_sge/max_recv_sge = %d/%d too small\n",
2134 IB_DEVICE_NAME_MAX,
2135 sc->ib.dev->name,
2136 sc->ib.dev->attrs.max_send_sge,
2137 sc->ib.dev->attrs.max_recv_sge);
2138 return -EINVAL;
2139 }
2140
2141 sc->ib.pd = ib_alloc_pd(sc->ib.dev, 0);
2142 if (IS_ERR(sc->ib.pd)) {
2143 pr_err("Can't create RDMA PD\n");
2144 ret = PTR_ERR(sc->ib.pd);
2145 sc->ib.pd = NULL;
2146 return ret;
2147 }
2148
2149 sc->ib.send_cq = ib_alloc_cq_any(sc->ib.dev, sc,
2150 max_send_wr,
2151 IB_POLL_WORKQUEUE);
2152 if (IS_ERR(sc->ib.send_cq)) {
2153 pr_err("Can't create RDMA send CQ\n");
2154 ret = PTR_ERR(sc->ib.send_cq);
2155 sc->ib.send_cq = NULL;
2156 goto err;
2157 }
2158
2159 sc->ib.recv_cq = ib_alloc_cq_any(sc->ib.dev, sc,
2160 qp_cap.max_recv_wr,
2161 IB_POLL_WORKQUEUE);
2162 if (IS_ERR(sc->ib.recv_cq)) {
2163 pr_err("Can't create RDMA recv CQ\n");
2164 ret = PTR_ERR(sc->ib.recv_cq);
2165 sc->ib.recv_cq = NULL;
2166 goto err;
2167 }
2168
2169 /*
2170 * We reset completely here!
2171 * As the above use was just temporary
2172 * to calc max_send_wr and rdma_send_wr.
2173 *
2174 * rdma_create_qp() will trigger rdma_rw_init_qp()
2175 * again if max_rdma_ctxs is not 0.
2176 */
2177 memset(&qp_attr, 0, sizeof(qp_attr));
2178 qp_attr.event_handler = smb_direct_qpair_handler;
2179 qp_attr.qp_context = sc;
2180 qp_attr.cap = qp_cap;
2181 qp_attr.sq_sig_type = IB_SIGNAL_REQ_WR;
2182 qp_attr.qp_type = IB_QPT_RC;
2183 qp_attr.send_cq = sc->ib.send_cq;
2184 qp_attr.recv_cq = sc->ib.recv_cq;
2185 qp_attr.port_num = ~0;
2186
2187 ret = rdma_create_qp(sc->rdma.cm_id, sc->ib.pd, &qp_attr);
2188 if (ret) {
2189 pr_err("Can't create RDMA QP: %d\n", ret);
2190 goto err;
2191 }
2192
2193 sc->ib.qp = sc->rdma.cm_id->qp;
2194 sc->rdma.cm_id->event_handler = smb_direct_cm_handler;
2195
2196 return 0;
2197 err:
2198 if (sc->ib.qp) {
2199 sc->ib.qp = NULL;
2200 rdma_destroy_qp(sc->rdma.cm_id);
2201 }
2202 if (sc->ib.recv_cq) {
2203 ib_destroy_cq(sc->ib.recv_cq);
2204 sc->ib.recv_cq = NULL;
2205 }
2206 if (sc->ib.send_cq) {
2207 ib_destroy_cq(sc->ib.send_cq);
2208 sc->ib.send_cq = NULL;
2209 }
2210 if (sc->ib.pd) {
2211 ib_dealloc_pd(sc->ib.pd);
2212 sc->ib.pd = NULL;
2213 }
2214 return ret;
2215 }
2216
smb_direct_prepare(struct ksmbd_transport * t)2217 static int smb_direct_prepare(struct ksmbd_transport *t)
2218 {
2219 struct smb_direct_transport *st = SMBD_TRANS(t);
2220 struct smbdirect_socket *sc = &st->socket;
2221 struct smbdirect_socket_parameters *sp = &sc->parameters;
2222 struct smbdirect_recv_io *recvmsg;
2223 struct smbdirect_negotiate_req *req;
2224 unsigned long flags;
2225 int ret;
2226
2227 /*
2228 * We are waiting to pass the following states:
2229 *
2230 * SMBDIRECT_SOCKET_RDMA_CONNECT_NEEDED
2231 * SMBDIRECT_SOCKET_RDMA_CONNECT_RUNNING
2232 * SMBDIRECT_SOCKET_NEGOTIATE_NEEDED
2233 *
2234 * To finally get to SMBDIRECT_SOCKET_NEGOTIATE_RUNNING
2235 * in order to continue below.
2236 *
2237 * Everything else is unexpected and an error.
2238 */
2239 ksmbd_debug(RDMA, "Waiting for SMB_DIRECT negotiate request\n");
2240 ret = wait_event_interruptible_timeout(sc->status_wait,
2241 sc->status != SMBDIRECT_SOCKET_RDMA_CONNECT_NEEDED &&
2242 sc->status != SMBDIRECT_SOCKET_RDMA_CONNECT_RUNNING &&
2243 sc->status != SMBDIRECT_SOCKET_NEGOTIATE_NEEDED,
2244 msecs_to_jiffies(sp->negotiate_timeout_msec));
2245 if (ret <= 0 || sc->status != SMBDIRECT_SOCKET_NEGOTIATE_RUNNING)
2246 return ret < 0 ? ret : -ETIMEDOUT;
2247
2248 recvmsg = get_first_reassembly(sc);
2249 if (!recvmsg)
2250 return -ECONNABORTED;
2251
2252 ret = smb_direct_check_recvmsg(recvmsg);
2253 if (ret)
2254 goto put;
2255
2256 req = (struct smbdirect_negotiate_req *)recvmsg->packet;
2257 sp->max_recv_size = min_t(int, sp->max_recv_size,
2258 le32_to_cpu(req->preferred_send_size));
2259 sp->max_send_size = min_t(int, sp->max_send_size,
2260 le32_to_cpu(req->max_receive_size));
2261 sp->max_fragmented_send_size =
2262 le32_to_cpu(req->max_fragmented_size);
2263 sp->max_fragmented_recv_size =
2264 (sp->recv_credit_max * sp->max_recv_size) / 2;
2265 sc->recv_io.credits.target = le16_to_cpu(req->credits_requested);
2266 sc->recv_io.credits.target = min_t(u16, sc->recv_io.credits.target, sp->recv_credit_max);
2267 sc->recv_io.credits.target = max_t(u16, sc->recv_io.credits.target, 1);
2268
2269 put:
2270 spin_lock_irqsave(&sc->recv_io.reassembly.lock, flags);
2271 sc->recv_io.reassembly.queue_length--;
2272 list_del(&recvmsg->list);
2273 spin_unlock_irqrestore(&sc->recv_io.reassembly.lock, flags);
2274 put_recvmsg(sc, recvmsg);
2275
2276 if (ret == -ECONNABORTED)
2277 return ret;
2278
2279 if (ret)
2280 goto respond;
2281
2282 /*
2283 * We negotiated with success, so we need to refill the recv queue.
2284 * We do that with sc->idle.immediate_work still being disabled
2285 * via smbdirect_socket_init(), so that queue_work(sc->workqueue,
2286 * &sc->idle.immediate_work) in smb_direct_post_recv_credits()
2287 * is a no-op.
2288 *
2289 * The message that grants the credits to the client is
2290 * the negotiate response.
2291 */
2292 INIT_WORK(&sc->recv_io.posted.refill_work, smb_direct_post_recv_credits);
2293 smb_direct_post_recv_credits(&sc->recv_io.posted.refill_work);
2294 if (unlikely(sc->first_error))
2295 return sc->first_error;
2296 INIT_WORK(&sc->idle.immediate_work, smb_direct_send_immediate_work);
2297
2298 respond:
2299 ret = smb_direct_send_negotiate_response(sc, ret);
2300
2301 return ret;
2302 }
2303
smb_direct_connect(struct smbdirect_socket * sc)2304 static int smb_direct_connect(struct smbdirect_socket *sc)
2305 {
2306 int ret;
2307
2308 ret = smb_direct_init_params(sc);
2309 if (ret) {
2310 pr_err("Can't configure RDMA parameters\n");
2311 return ret;
2312 }
2313
2314 ret = smb_direct_create_pools(sc);
2315 if (ret) {
2316 pr_err("Can't init RDMA pool: %d\n", ret);
2317 return ret;
2318 }
2319
2320 ret = smb_direct_create_qpair(sc);
2321 if (ret) {
2322 pr_err("Can't accept RDMA client: %d\n", ret);
2323 return ret;
2324 }
2325
2326 ret = smb_direct_prepare_negotiation(sc);
2327 if (ret) {
2328 pr_err("Can't negotiate: %d\n", ret);
2329 return ret;
2330 }
2331 return 0;
2332 }
2333
rdma_frwr_is_supported(struct ib_device_attr * attrs)2334 static bool rdma_frwr_is_supported(struct ib_device_attr *attrs)
2335 {
2336 if (!(attrs->device_cap_flags & IB_DEVICE_MEM_MGT_EXTENSIONS))
2337 return false;
2338 if (attrs->max_fast_reg_page_list_len == 0)
2339 return false;
2340 return true;
2341 }
2342
smb_direct_handle_connect_request(struct rdma_cm_id * new_cm_id,struct rdma_cm_event * event)2343 static int smb_direct_handle_connect_request(struct rdma_cm_id *new_cm_id,
2344 struct rdma_cm_event *event)
2345 {
2346 struct smb_direct_transport *t;
2347 struct smbdirect_socket *sc;
2348 struct smbdirect_socket_parameters *sp;
2349 struct task_struct *handler;
2350 u8 peer_initiator_depth;
2351 u8 peer_responder_resources;
2352 int ret;
2353
2354 if (!rdma_frwr_is_supported(&new_cm_id->device->attrs)) {
2355 ksmbd_debug(RDMA,
2356 "Fast Registration Work Requests is not supported. device capabilities=%llx\n",
2357 new_cm_id->device->attrs.device_cap_flags);
2358 return -EPROTONOSUPPORT;
2359 }
2360
2361 t = alloc_transport(new_cm_id);
2362 if (!t)
2363 return -ENOMEM;
2364 sc = &t->socket;
2365 sp = &sc->parameters;
2366
2367 peer_initiator_depth = event->param.conn.initiator_depth;
2368 peer_responder_resources = event->param.conn.responder_resources;
2369 if (rdma_protocol_iwarp(new_cm_id->device, new_cm_id->port_num) &&
2370 event->param.conn.private_data_len == 8) {
2371 /*
2372 * Legacy clients with only iWarp MPA v1 support
2373 * need a private blob in order to negotiate
2374 * the IRD/ORD values.
2375 */
2376 const __be32 *ird_ord_hdr = event->param.conn.private_data;
2377 u32 ird32 = be32_to_cpu(ird_ord_hdr[0]);
2378 u32 ord32 = be32_to_cpu(ird_ord_hdr[1]);
2379
2380 /*
2381 * cifs.ko sends the legacy IRD/ORD negotiation
2382 * event if iWarp MPA v2 was used.
2383 *
2384 * Here we check that the values match and only
2385 * mark the client as legacy if they don't match.
2386 */
2387 if ((u32)event->param.conn.initiator_depth != ird32 ||
2388 (u32)event->param.conn.responder_resources != ord32) {
2389 /*
2390 * There are broken clients (old cifs.ko)
2391 * using little endian and also
2392 * struct rdma_conn_param only uses u8
2393 * for initiator_depth and responder_resources,
2394 * so we truncate the value to U8_MAX.
2395 *
2396 * smb_direct_accept_client() will then
2397 * do the real negotiation in order to
2398 * select the minimum between client and
2399 * server.
2400 */
2401 ird32 = min_t(u32, ird32, U8_MAX);
2402 ord32 = min_t(u32, ord32, U8_MAX);
2403
2404 sc->rdma.legacy_iwarp = true;
2405 peer_initiator_depth = (u8)ird32;
2406 peer_responder_resources = (u8)ord32;
2407 }
2408 }
2409
2410 /*
2411 * First set what the we as server are able to support
2412 */
2413 sp->initiator_depth = min_t(u8, sp->initiator_depth,
2414 new_cm_id->device->attrs.max_qp_rd_atom);
2415
2416 /*
2417 * negotiate the value by using the minimum
2418 * between client and server if the client provided
2419 * non 0 values.
2420 */
2421 if (peer_initiator_depth != 0)
2422 sp->initiator_depth = min_t(u8, sp->initiator_depth,
2423 peer_initiator_depth);
2424 if (peer_responder_resources != 0)
2425 sp->responder_resources = min_t(u8, sp->responder_resources,
2426 peer_responder_resources);
2427
2428 ret = smb_direct_connect(sc);
2429 if (ret)
2430 goto out_err;
2431
2432 handler = kthread_run(ksmbd_conn_handler_loop,
2433 KSMBD_TRANS(t)->conn, "ksmbd:r%u",
2434 smb_direct_port);
2435 if (IS_ERR(handler)) {
2436 ret = PTR_ERR(handler);
2437 pr_err("Can't start thread\n");
2438 goto out_err;
2439 }
2440
2441 return 0;
2442 out_err:
2443 free_transport(t);
2444 return ret;
2445 }
2446
smb_direct_listen_handler(struct rdma_cm_id * cm_id,struct rdma_cm_event * event)2447 static int smb_direct_listen_handler(struct rdma_cm_id *cm_id,
2448 struct rdma_cm_event *event)
2449 {
2450 switch (event->event) {
2451 case RDMA_CM_EVENT_CONNECT_REQUEST: {
2452 int ret = smb_direct_handle_connect_request(cm_id, event);
2453
2454 if (ret) {
2455 pr_err("Can't create transport: %d\n", ret);
2456 return ret;
2457 }
2458
2459 ksmbd_debug(RDMA, "Received connection request. cm_id=%p\n",
2460 cm_id);
2461 break;
2462 }
2463 default:
2464 pr_err("Unexpected listen event. cm_id=%p, event=%s (%d)\n",
2465 cm_id, rdma_event_msg(event->event), event->event);
2466 break;
2467 }
2468 return 0;
2469 }
2470
smb_direct_listen(int port)2471 static int smb_direct_listen(int port)
2472 {
2473 int ret;
2474 struct rdma_cm_id *cm_id;
2475 struct sockaddr_in sin = {
2476 .sin_family = AF_INET,
2477 .sin_addr.s_addr = htonl(INADDR_ANY),
2478 .sin_port = htons(port),
2479 };
2480
2481 cm_id = rdma_create_id(&init_net, smb_direct_listen_handler,
2482 &smb_direct_listener, RDMA_PS_TCP, IB_QPT_RC);
2483 if (IS_ERR(cm_id)) {
2484 pr_err("Can't create cm id: %ld\n", PTR_ERR(cm_id));
2485 return PTR_ERR(cm_id);
2486 }
2487
2488 ret = rdma_bind_addr(cm_id, (struct sockaddr *)&sin);
2489 if (ret) {
2490 pr_err("Can't bind: %d\n", ret);
2491 goto err;
2492 }
2493
2494 smb_direct_listener.cm_id = cm_id;
2495
2496 ret = rdma_listen(cm_id, 10);
2497 if (ret) {
2498 pr_err("Can't listen: %d\n", ret);
2499 goto err;
2500 }
2501 return 0;
2502 err:
2503 smb_direct_listener.cm_id = NULL;
2504 rdma_destroy_id(cm_id);
2505 return ret;
2506 }
2507
smb_direct_ib_client_add(struct ib_device * ib_dev)2508 static int smb_direct_ib_client_add(struct ib_device *ib_dev)
2509 {
2510 struct smb_direct_device *smb_dev;
2511
2512 /* Set 5445 port if device type is iWARP(No IB) */
2513 if (ib_dev->node_type != RDMA_NODE_IB_CA)
2514 smb_direct_port = SMB_DIRECT_PORT_IWARP;
2515
2516 if (!rdma_frwr_is_supported(&ib_dev->attrs))
2517 return 0;
2518
2519 smb_dev = kzalloc(sizeof(*smb_dev), KSMBD_DEFAULT_GFP);
2520 if (!smb_dev)
2521 return -ENOMEM;
2522 smb_dev->ib_dev = ib_dev;
2523
2524 write_lock(&smb_direct_device_lock);
2525 list_add(&smb_dev->list, &smb_direct_device_list);
2526 write_unlock(&smb_direct_device_lock);
2527
2528 ksmbd_debug(RDMA, "ib device added: name %s\n", ib_dev->name);
2529 return 0;
2530 }
2531
smb_direct_ib_client_remove(struct ib_device * ib_dev,void * client_data)2532 static void smb_direct_ib_client_remove(struct ib_device *ib_dev,
2533 void *client_data)
2534 {
2535 struct smb_direct_device *smb_dev, *tmp;
2536
2537 write_lock(&smb_direct_device_lock);
2538 list_for_each_entry_safe(smb_dev, tmp, &smb_direct_device_list, list) {
2539 if (smb_dev->ib_dev == ib_dev) {
2540 list_del(&smb_dev->list);
2541 kfree(smb_dev);
2542 break;
2543 }
2544 }
2545 write_unlock(&smb_direct_device_lock);
2546 }
2547
2548 static struct ib_client smb_direct_ib_client = {
2549 .name = "ksmbd_smb_direct_ib",
2550 .add = smb_direct_ib_client_add,
2551 .remove = smb_direct_ib_client_remove,
2552 };
2553
ksmbd_rdma_init(void)2554 int ksmbd_rdma_init(void)
2555 {
2556 int ret;
2557
2558 smb_direct_listener.cm_id = NULL;
2559
2560 ret = ib_register_client(&smb_direct_ib_client);
2561 if (ret) {
2562 pr_err("failed to ib_register_client\n");
2563 return ret;
2564 }
2565
2566 /* When a client is running out of send credits, the credits are
2567 * granted by the server's sending a packet using this queue.
2568 * This avoids the situation that a clients cannot send packets
2569 * for lack of credits
2570 */
2571 smb_direct_wq = alloc_workqueue("ksmbd-smb_direct-wq",
2572 WQ_HIGHPRI | WQ_MEM_RECLAIM | WQ_PERCPU,
2573 0);
2574 if (!smb_direct_wq)
2575 return -ENOMEM;
2576
2577 ret = smb_direct_listen(smb_direct_port);
2578 if (ret) {
2579 destroy_workqueue(smb_direct_wq);
2580 smb_direct_wq = NULL;
2581 pr_err("Can't listen: %d\n", ret);
2582 return ret;
2583 }
2584
2585 ksmbd_debug(RDMA, "init RDMA listener. cm_id=%p\n",
2586 smb_direct_listener.cm_id);
2587 return 0;
2588 }
2589
ksmbd_rdma_stop_listening(void)2590 void ksmbd_rdma_stop_listening(void)
2591 {
2592 if (!smb_direct_listener.cm_id)
2593 return;
2594
2595 ib_unregister_client(&smb_direct_ib_client);
2596 rdma_destroy_id(smb_direct_listener.cm_id);
2597
2598 smb_direct_listener.cm_id = NULL;
2599 }
2600
ksmbd_rdma_destroy(void)2601 void ksmbd_rdma_destroy(void)
2602 {
2603 if (smb_direct_wq) {
2604 destroy_workqueue(smb_direct_wq);
2605 smb_direct_wq = NULL;
2606 }
2607 }
2608
ksmbd_rdma_capable_netdev(struct net_device * netdev)2609 bool ksmbd_rdma_capable_netdev(struct net_device *netdev)
2610 {
2611 struct smb_direct_device *smb_dev;
2612 int i;
2613 bool rdma_capable = false;
2614
2615 read_lock(&smb_direct_device_lock);
2616 list_for_each_entry(smb_dev, &smb_direct_device_list, list) {
2617 for (i = 0; i < smb_dev->ib_dev->phys_port_cnt; i++) {
2618 struct net_device *ndev;
2619
2620 ndev = ib_device_get_netdev(smb_dev->ib_dev, i + 1);
2621 if (!ndev)
2622 continue;
2623
2624 if (ndev == netdev) {
2625 dev_put(ndev);
2626 rdma_capable = true;
2627 goto out;
2628 }
2629 dev_put(ndev);
2630 }
2631 }
2632 out:
2633 read_unlock(&smb_direct_device_lock);
2634
2635 if (rdma_capable == false) {
2636 struct ib_device *ibdev;
2637
2638 ibdev = ib_device_get_by_netdev(netdev, RDMA_DRIVER_UNKNOWN);
2639 if (ibdev) {
2640 rdma_capable = rdma_frwr_is_supported(&ibdev->attrs);
2641 ib_device_put(ibdev);
2642 }
2643 }
2644
2645 ksmbd_debug(RDMA, "netdev(%s) rdma capable : %s\n",
2646 netdev->name, str_true_false(rdma_capable));
2647
2648 return rdma_capable;
2649 }
2650
2651 static const struct ksmbd_transport_ops ksmbd_smb_direct_transport_ops = {
2652 .prepare = smb_direct_prepare,
2653 .disconnect = smb_direct_disconnect,
2654 .shutdown = smb_direct_shutdown,
2655 .writev = smb_direct_writev,
2656 .read = smb_direct_read,
2657 .rdma_read = smb_direct_rdma_read,
2658 .rdma_write = smb_direct_rdma_write,
2659 .free_transport = smb_direct_free_transport,
2660 };
2661