1 /*- 2 * Copyright (c) 2014 Alexander Motin <mav@FreeBSD.org> 3 * All rights reserved. 4 * 5 * Redistribution and use in source and binary forms, with or without 6 * modification, are permitted provided that the following conditions 7 * are met: 8 * 1. Redistributions of source code must retain the above copyright 9 * notice, this list of conditions and the following disclaimer, 10 * without modification, immediately at the beginning of the file. 11 * 2. Redistributions in binary form must reproduce the above copyright 12 * notice, this list of conditions and the following disclaimer in the 13 * documentation and/or other materials provided with the distribution. 14 * 15 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR 16 * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES 17 * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. 18 * IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, 19 * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT 20 * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, 21 * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY 22 * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT 23 * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF 24 * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. 25 */ 26 27 #include <sys/cdefs.h> 28 __FBSDID("$FreeBSD$"); 29 30 #include <sys/param.h> 31 #include <sys/systm.h> 32 #include <sys/kernel.h> 33 #include <sys/types.h> 34 #include <sys/lock.h> 35 #include <sys/module.h> 36 #include <sys/mutex.h> 37 #include <sys/condvar.h> 38 #include <sys/malloc.h> 39 #include <sys/conf.h> 40 #include <sys/queue.h> 41 #include <sys/sysctl.h> 42 #include <machine/atomic.h> 43 44 #include <cam/cam.h> 45 #include <cam/scsi/scsi_all.h> 46 #include <cam/scsi/scsi_da.h> 47 #include <cam/ctl/ctl_io.h> 48 #include <cam/ctl/ctl.h> 49 #include <cam/ctl/ctl_frontend.h> 50 #include <cam/ctl/ctl_util.h> 51 #include <cam/ctl/ctl_backend.h> 52 #include <cam/ctl/ctl_ioctl.h> 53 #include <cam/ctl/ctl_ha.h> 54 #include <cam/ctl/ctl_private.h> 55 #include <cam/ctl/ctl_debug.h> 56 #include <cam/ctl/ctl_scsi_all.h> 57 #include <cam/ctl/ctl_tpc.h> 58 #include <cam/ctl/ctl_error.h> 59 60 #define TPC_MAX_CSCDS 64 61 #define TPC_MAX_SEGS 64 62 #define TPC_MAX_SEG 0 63 #define TPC_MAX_LIST 8192 64 #define TPC_MAX_INLINE 0 65 #define TPC_MAX_LISTS 255 66 #define TPC_MAX_IO_SIZE (1024 * 1024) 67 #define TPC_MAX_IOCHUNK_SIZE (TPC_MAX_IO_SIZE * 16) 68 #define TPC_MIN_TOKEN_TIMEOUT 1 69 #define TPC_DFL_TOKEN_TIMEOUT 60 70 #define TPC_MAX_TOKEN_TIMEOUT 600 71 72 MALLOC_DEFINE(M_CTL_TPC, "ctltpc", "CTL TPC"); 73 74 typedef enum { 75 TPC_ERR_RETRY = 0x000, 76 TPC_ERR_FAIL = 0x001, 77 TPC_ERR_MASK = 0x0ff, 78 TPC_ERR_NO_DECREMENT = 0x100 79 } tpc_error_action; 80 81 struct tpc_list; 82 TAILQ_HEAD(runl, tpc_io); 83 struct tpc_io { 84 union ctl_io *io; 85 uint64_t lun; 86 struct tpc_list *list; 87 struct runl run; 88 TAILQ_ENTRY(tpc_io) rlinks; 89 TAILQ_ENTRY(tpc_io) links; 90 }; 91 92 struct tpc_token { 93 uint8_t token[512]; 94 uint64_t lun; 95 uint32_t blocksize; 96 uint8_t *params; 97 struct scsi_range_desc *range; 98 int nrange; 99 int active; 100 time_t last_active; 101 uint32_t timeout; 102 TAILQ_ENTRY(tpc_token) links; 103 }; 104 105 struct tpc_list { 106 uint8_t service_action; 107 int init_port; 108 uint32_t init_idx; 109 uint32_t list_id; 110 uint8_t flags; 111 uint8_t *params; 112 struct scsi_ec_cscd *cscd; 113 struct scsi_ec_segment *seg[TPC_MAX_SEGS]; 114 uint8_t *inl; 115 int ncscd; 116 int nseg; 117 int leninl; 118 struct tpc_token *token; 119 struct scsi_range_desc *range; 120 int nrange; 121 off_t offset_into_rod; 122 123 int curseg; 124 off_t cursectors; 125 off_t curbytes; 126 int curops; 127 int stage; 128 uint8_t *buf; 129 off_t segsectors; 130 off_t segbytes; 131 int tbdio; 132 int error; 133 int abort; 134 int completed; 135 time_t last_active; 136 TAILQ_HEAD(, tpc_io) allio; 137 struct scsi_sense_data sense_data; 138 uint8_t sense_len; 139 uint8_t scsi_status; 140 struct ctl_scsiio *ctsio; 141 struct ctl_lun *lun; 142 int res_token_valid; 143 uint8_t res_token[512]; 144 TAILQ_ENTRY(tpc_list) links; 145 }; 146 147 static void 148 tpc_timeout(void *arg) 149 { 150 struct ctl_softc *softc = arg; 151 struct ctl_lun *lun; 152 struct tpc_token *token, *ttoken; 153 struct tpc_list *list, *tlist; 154 155 /* Free completed lists with expired timeout. */ 156 STAILQ_FOREACH(lun, &softc->lun_list, links) { 157 mtx_lock(&lun->lun_lock); 158 TAILQ_FOREACH_SAFE(list, &lun->tpc_lists, links, tlist) { 159 if (!list->completed || time_uptime < list->last_active + 160 TPC_DFL_TOKEN_TIMEOUT) 161 continue; 162 TAILQ_REMOVE(&lun->tpc_lists, list, links); 163 free(list, M_CTL); 164 } 165 mtx_unlock(&lun->lun_lock); 166 } 167 168 /* Free inactive ROD tokens with expired timeout. */ 169 mtx_lock(&softc->tpc_lock); 170 TAILQ_FOREACH_SAFE(token, &softc->tpc_tokens, links, ttoken) { 171 if (token->active || 172 time_uptime < token->last_active + token->timeout + 1) 173 continue; 174 TAILQ_REMOVE(&softc->tpc_tokens, token, links); 175 free(token->params, M_CTL); 176 free(token, M_CTL); 177 } 178 mtx_unlock(&softc->tpc_lock); 179 callout_schedule(&softc->tpc_timeout, hz); 180 } 181 182 void 183 ctl_tpc_init(struct ctl_softc *softc) 184 { 185 186 mtx_init(&softc->tpc_lock, "CTL TPC mutex", NULL, MTX_DEF); 187 TAILQ_INIT(&softc->tpc_tokens); 188 callout_init_mtx(&softc->tpc_timeout, &softc->ctl_lock, 0); 189 callout_reset(&softc->tpc_timeout, hz, tpc_timeout, softc); 190 } 191 192 void 193 ctl_tpc_shutdown(struct ctl_softc *softc) 194 { 195 struct tpc_token *token; 196 197 callout_drain(&softc->tpc_timeout); 198 199 /* Free ROD tokens. */ 200 mtx_lock(&softc->tpc_lock); 201 while ((token = TAILQ_FIRST(&softc->tpc_tokens)) != NULL) { 202 TAILQ_REMOVE(&softc->tpc_tokens, token, links); 203 free(token->params, M_CTL); 204 free(token, M_CTL); 205 } 206 mtx_unlock(&softc->tpc_lock); 207 mtx_destroy(&softc->tpc_lock); 208 } 209 210 void 211 ctl_tpc_lun_init(struct ctl_lun *lun) 212 { 213 214 TAILQ_INIT(&lun->tpc_lists); 215 } 216 217 void 218 ctl_tpc_lun_shutdown(struct ctl_lun *lun) 219 { 220 struct ctl_softc *softc = lun->ctl_softc; 221 struct tpc_list *list; 222 struct tpc_token *token, *ttoken; 223 224 /* Free lists for this LUN. */ 225 while ((list = TAILQ_FIRST(&lun->tpc_lists)) != NULL) { 226 TAILQ_REMOVE(&lun->tpc_lists, list, links); 227 KASSERT(list->completed, 228 ("Not completed TPC (%p) on shutdown", list)); 229 free(list, M_CTL); 230 } 231 232 /* Free ROD tokens for this LUN. */ 233 mtx_lock(&softc->tpc_lock); 234 TAILQ_FOREACH_SAFE(token, &softc->tpc_tokens, links, ttoken) { 235 if (token->lun != lun->lun || token->active) 236 continue; 237 TAILQ_REMOVE(&softc->tpc_tokens, token, links); 238 free(token->params, M_CTL); 239 free(token, M_CTL); 240 } 241 mtx_unlock(&softc->tpc_lock); 242 } 243 244 int 245 ctl_inquiry_evpd_tpc(struct ctl_scsiio *ctsio, int alloc_len) 246 { 247 struct scsi_vpd_tpc *tpc_ptr; 248 struct scsi_vpd_tpc_descriptor *d_ptr; 249 struct scsi_vpd_tpc_descriptor_bdrl *bdrl_ptr; 250 struct scsi_vpd_tpc_descriptor_sc *sc_ptr; 251 struct scsi_vpd_tpc_descriptor_sc_descr *scd_ptr; 252 struct scsi_vpd_tpc_descriptor_pd *pd_ptr; 253 struct scsi_vpd_tpc_descriptor_sd *sd_ptr; 254 struct scsi_vpd_tpc_descriptor_sdid *sdid_ptr; 255 struct scsi_vpd_tpc_descriptor_rtf *rtf_ptr; 256 struct scsi_vpd_tpc_descriptor_rtf_block *rtfb_ptr; 257 struct scsi_vpd_tpc_descriptor_srt *srt_ptr; 258 struct scsi_vpd_tpc_descriptor_srtd *srtd_ptr; 259 struct scsi_vpd_tpc_descriptor_gco *gco_ptr; 260 struct ctl_lun *lun; 261 int data_len; 262 263 lun = (struct ctl_lun *)ctsio->io_hdr.ctl_private[CTL_PRIV_LUN].ptr; 264 265 data_len = sizeof(struct scsi_vpd_tpc) + 266 sizeof(struct scsi_vpd_tpc_descriptor_bdrl) + 267 roundup2(sizeof(struct scsi_vpd_tpc_descriptor_sc) + 268 2 * sizeof(struct scsi_vpd_tpc_descriptor_sc_descr) + 11, 4) + 269 sizeof(struct scsi_vpd_tpc_descriptor_pd) + 270 roundup2(sizeof(struct scsi_vpd_tpc_descriptor_sd) + 4, 4) + 271 roundup2(sizeof(struct scsi_vpd_tpc_descriptor_sdid) + 2, 4) + 272 sizeof(struct scsi_vpd_tpc_descriptor_rtf) + 273 sizeof(struct scsi_vpd_tpc_descriptor_rtf_block) + 274 sizeof(struct scsi_vpd_tpc_descriptor_srt) + 275 2*sizeof(struct scsi_vpd_tpc_descriptor_srtd) + 276 sizeof(struct scsi_vpd_tpc_descriptor_gco); 277 278 ctsio->kern_data_ptr = malloc(data_len, M_CTL, M_WAITOK | M_ZERO); 279 tpc_ptr = (struct scsi_vpd_tpc *)ctsio->kern_data_ptr; 280 ctsio->kern_sg_entries = 0; 281 282 if (data_len < alloc_len) { 283 ctsio->residual = alloc_len - data_len; 284 ctsio->kern_data_len = data_len; 285 ctsio->kern_total_len = data_len; 286 } else { 287 ctsio->residual = 0; 288 ctsio->kern_data_len = alloc_len; 289 ctsio->kern_total_len = alloc_len; 290 } 291 ctsio->kern_data_resid = 0; 292 ctsio->kern_rel_offset = 0; 293 ctsio->kern_sg_entries = 0; 294 295 /* 296 * The control device is always connected. The disk device, on the 297 * other hand, may not be online all the time. 298 */ 299 if (lun != NULL) 300 tpc_ptr->device = (SID_QUAL_LU_CONNECTED << 5) | 301 lun->be_lun->lun_type; 302 else 303 tpc_ptr->device = (SID_QUAL_LU_OFFLINE << 5) | T_DIRECT; 304 tpc_ptr->page_code = SVPD_SCSI_TPC; 305 scsi_ulto2b(data_len - 4, tpc_ptr->page_length); 306 307 /* Block Device ROD Limits */ 308 d_ptr = (struct scsi_vpd_tpc_descriptor *)&tpc_ptr->descr[0]; 309 bdrl_ptr = (struct scsi_vpd_tpc_descriptor_bdrl *)d_ptr; 310 scsi_ulto2b(SVPD_TPC_BDRL, bdrl_ptr->desc_type); 311 scsi_ulto2b(sizeof(*bdrl_ptr) - 4, bdrl_ptr->desc_length); 312 scsi_ulto2b(TPC_MAX_SEGS, bdrl_ptr->maximum_ranges); 313 scsi_ulto4b(TPC_MAX_TOKEN_TIMEOUT, 314 bdrl_ptr->maximum_inactivity_timeout); 315 scsi_ulto4b(TPC_DFL_TOKEN_TIMEOUT, 316 bdrl_ptr->default_inactivity_timeout); 317 scsi_u64to8b(0, bdrl_ptr->maximum_token_transfer_size); 318 scsi_u64to8b(0, bdrl_ptr->optimal_transfer_count); 319 320 /* Supported commands */ 321 d_ptr = (struct scsi_vpd_tpc_descriptor *) 322 (&d_ptr->parameters[0] + scsi_2btoul(d_ptr->desc_length)); 323 sc_ptr = (struct scsi_vpd_tpc_descriptor_sc *)d_ptr; 324 scsi_ulto2b(SVPD_TPC_SC, sc_ptr->desc_type); 325 sc_ptr->list_length = 2 * sizeof(*scd_ptr) + 11; 326 scsi_ulto2b(roundup2(1 + sc_ptr->list_length, 4), sc_ptr->desc_length); 327 scd_ptr = &sc_ptr->descr[0]; 328 scd_ptr->opcode = EXTENDED_COPY; 329 scd_ptr->sa_length = 5; 330 scd_ptr->supported_service_actions[0] = EC_EC_LID1; 331 scd_ptr->supported_service_actions[1] = EC_EC_LID4; 332 scd_ptr->supported_service_actions[2] = EC_PT; 333 scd_ptr->supported_service_actions[3] = EC_WUT; 334 scd_ptr->supported_service_actions[4] = EC_COA; 335 scd_ptr = (struct scsi_vpd_tpc_descriptor_sc_descr *) 336 &scd_ptr->supported_service_actions[scd_ptr->sa_length]; 337 scd_ptr->opcode = RECEIVE_COPY_STATUS; 338 scd_ptr->sa_length = 6; 339 scd_ptr->supported_service_actions[0] = RCS_RCS_LID1; 340 scd_ptr->supported_service_actions[1] = RCS_RCFD; 341 scd_ptr->supported_service_actions[2] = RCS_RCS_LID4; 342 scd_ptr->supported_service_actions[3] = RCS_RCOP; 343 scd_ptr->supported_service_actions[4] = RCS_RRTI; 344 scd_ptr->supported_service_actions[5] = RCS_RART; 345 346 /* Parameter data. */ 347 d_ptr = (struct scsi_vpd_tpc_descriptor *) 348 (&d_ptr->parameters[0] + scsi_2btoul(d_ptr->desc_length)); 349 pd_ptr = (struct scsi_vpd_tpc_descriptor_pd *)d_ptr; 350 scsi_ulto2b(SVPD_TPC_PD, pd_ptr->desc_type); 351 scsi_ulto2b(sizeof(*pd_ptr) - 4, pd_ptr->desc_length); 352 scsi_ulto2b(TPC_MAX_CSCDS, pd_ptr->maximum_cscd_descriptor_count); 353 scsi_ulto2b(TPC_MAX_SEGS, pd_ptr->maximum_segment_descriptor_count); 354 scsi_ulto4b(TPC_MAX_LIST, pd_ptr->maximum_descriptor_list_length); 355 scsi_ulto4b(TPC_MAX_INLINE, pd_ptr->maximum_inline_data_length); 356 357 /* Supported Descriptors */ 358 d_ptr = (struct scsi_vpd_tpc_descriptor *) 359 (&d_ptr->parameters[0] + scsi_2btoul(d_ptr->desc_length)); 360 sd_ptr = (struct scsi_vpd_tpc_descriptor_sd *)d_ptr; 361 scsi_ulto2b(SVPD_TPC_SD, sd_ptr->desc_type); 362 scsi_ulto2b(roundup2(sizeof(*sd_ptr) - 4 + 4, 4), sd_ptr->desc_length); 363 sd_ptr->list_length = 4; 364 sd_ptr->supported_descriptor_codes[0] = EC_SEG_B2B; 365 sd_ptr->supported_descriptor_codes[1] = EC_SEG_VERIFY; 366 sd_ptr->supported_descriptor_codes[2] = EC_SEG_REGISTER_KEY; 367 sd_ptr->supported_descriptor_codes[3] = EC_CSCD_ID; 368 369 /* Supported CSCD Descriptor IDs */ 370 d_ptr = (struct scsi_vpd_tpc_descriptor *) 371 (&d_ptr->parameters[0] + scsi_2btoul(d_ptr->desc_length)); 372 sdid_ptr = (struct scsi_vpd_tpc_descriptor_sdid *)d_ptr; 373 scsi_ulto2b(SVPD_TPC_SDID, sdid_ptr->desc_type); 374 scsi_ulto2b(roundup2(sizeof(*sdid_ptr) - 4 + 2, 4), sdid_ptr->desc_length); 375 scsi_ulto2b(2, sdid_ptr->list_length); 376 scsi_ulto2b(0xffff, &sdid_ptr->supported_descriptor_ids[0]); 377 378 /* ROD Token Features */ 379 d_ptr = (struct scsi_vpd_tpc_descriptor *) 380 (&d_ptr->parameters[0] + scsi_2btoul(d_ptr->desc_length)); 381 rtf_ptr = (struct scsi_vpd_tpc_descriptor_rtf *)d_ptr; 382 scsi_ulto2b(SVPD_TPC_RTF, rtf_ptr->desc_type); 383 scsi_ulto2b(sizeof(*rtf_ptr) - 4 + sizeof(*rtfb_ptr), rtf_ptr->desc_length); 384 rtf_ptr->remote_tokens = 0; 385 scsi_ulto4b(TPC_MIN_TOKEN_TIMEOUT, rtf_ptr->minimum_token_lifetime); 386 scsi_ulto4b(UINT32_MAX, rtf_ptr->maximum_token_lifetime); 387 scsi_ulto4b(TPC_MAX_TOKEN_TIMEOUT, 388 rtf_ptr->maximum_token_inactivity_timeout); 389 scsi_ulto2b(sizeof(*rtfb_ptr), rtf_ptr->type_specific_features_length); 390 rtfb_ptr = (struct scsi_vpd_tpc_descriptor_rtf_block *) 391 &rtf_ptr->type_specific_features; 392 rtfb_ptr->type_format = SVPD_TPC_RTF_BLOCK; 393 scsi_ulto2b(sizeof(*rtfb_ptr) - 4, rtfb_ptr->desc_length); 394 scsi_ulto2b(0, rtfb_ptr->optimal_length_granularity); 395 scsi_u64to8b(0, rtfb_ptr->maximum_bytes); 396 scsi_u64to8b(0, rtfb_ptr->optimal_bytes); 397 scsi_u64to8b(UINT64_MAX, rtfb_ptr->optimal_bytes_to_token_per_segment); 398 scsi_u64to8b(TPC_MAX_IOCHUNK_SIZE, 399 rtfb_ptr->optimal_bytes_from_token_per_segment); 400 401 /* Supported ROD Tokens */ 402 d_ptr = (struct scsi_vpd_tpc_descriptor *) 403 (&d_ptr->parameters[0] + scsi_2btoul(d_ptr->desc_length)); 404 srt_ptr = (struct scsi_vpd_tpc_descriptor_srt *)d_ptr; 405 scsi_ulto2b(SVPD_TPC_SRT, srt_ptr->desc_type); 406 scsi_ulto2b(sizeof(*srt_ptr) - 4 + 2*sizeof(*srtd_ptr), srt_ptr->desc_length); 407 scsi_ulto2b(2*sizeof(*srtd_ptr), srt_ptr->rod_type_descriptors_length); 408 srtd_ptr = (struct scsi_vpd_tpc_descriptor_srtd *) 409 &srt_ptr->rod_type_descriptors; 410 scsi_ulto4b(ROD_TYPE_AUR, srtd_ptr->rod_type); 411 srtd_ptr->flags = SVPD_TPC_SRTD_TIN | SVPD_TPC_SRTD_TOUT; 412 scsi_ulto2b(0, srtd_ptr->preference_indicator); 413 srtd_ptr++; 414 scsi_ulto4b(ROD_TYPE_BLOCK_ZERO, srtd_ptr->rod_type); 415 srtd_ptr->flags = SVPD_TPC_SRTD_TIN; 416 scsi_ulto2b(0, srtd_ptr->preference_indicator); 417 418 /* General Copy Operations */ 419 d_ptr = (struct scsi_vpd_tpc_descriptor *) 420 (&d_ptr->parameters[0] + scsi_2btoul(d_ptr->desc_length)); 421 gco_ptr = (struct scsi_vpd_tpc_descriptor_gco *)d_ptr; 422 scsi_ulto2b(SVPD_TPC_GCO, gco_ptr->desc_type); 423 scsi_ulto2b(sizeof(*gco_ptr) - 4, gco_ptr->desc_length); 424 scsi_ulto4b(TPC_MAX_LISTS, gco_ptr->total_concurrent_copies); 425 scsi_ulto4b(TPC_MAX_LISTS, gco_ptr->maximum_identified_concurrent_copies); 426 scsi_ulto4b(TPC_MAX_SEG, gco_ptr->maximum_segment_length); 427 gco_ptr->data_segment_granularity = 0; 428 gco_ptr->inline_data_granularity = 0; 429 430 ctl_set_success(ctsio); 431 ctsio->io_hdr.flags |= CTL_FLAG_ALLOCATED; 432 ctsio->be_move_done = ctl_config_move_done; 433 ctl_datamove((union ctl_io *)ctsio); 434 435 return (CTL_RETVAL_COMPLETE); 436 } 437 438 int 439 ctl_receive_copy_operating_parameters(struct ctl_scsiio *ctsio) 440 { 441 struct scsi_receive_copy_operating_parameters *cdb; 442 struct scsi_receive_copy_operating_parameters_data *data; 443 int retval; 444 int alloc_len, total_len; 445 446 CTL_DEBUG_PRINT(("ctl_report_supported_tmf\n")); 447 448 cdb = (struct scsi_receive_copy_operating_parameters *)ctsio->cdb; 449 450 retval = CTL_RETVAL_COMPLETE; 451 452 total_len = sizeof(*data) + 4; 453 alloc_len = scsi_4btoul(cdb->length); 454 455 ctsio->kern_data_ptr = malloc(total_len, M_CTL, M_WAITOK | M_ZERO); 456 457 ctsio->kern_sg_entries = 0; 458 459 if (total_len < alloc_len) { 460 ctsio->residual = alloc_len - total_len; 461 ctsio->kern_data_len = total_len; 462 ctsio->kern_total_len = total_len; 463 } else { 464 ctsio->residual = 0; 465 ctsio->kern_data_len = alloc_len; 466 ctsio->kern_total_len = alloc_len; 467 } 468 ctsio->kern_data_resid = 0; 469 ctsio->kern_rel_offset = 0; 470 471 data = (struct scsi_receive_copy_operating_parameters_data *)ctsio->kern_data_ptr; 472 scsi_ulto4b(sizeof(*data) - 4 + 4, data->length); 473 data->snlid = RCOP_SNLID; 474 scsi_ulto2b(TPC_MAX_CSCDS, data->maximum_cscd_descriptor_count); 475 scsi_ulto2b(TPC_MAX_SEGS, data->maximum_segment_descriptor_count); 476 scsi_ulto4b(TPC_MAX_LIST, data->maximum_descriptor_list_length); 477 scsi_ulto4b(TPC_MAX_SEG, data->maximum_segment_length); 478 scsi_ulto4b(TPC_MAX_INLINE, data->maximum_inline_data_length); 479 scsi_ulto4b(0, data->held_data_limit); 480 scsi_ulto4b(0, data->maximum_stream_device_transfer_size); 481 scsi_ulto2b(TPC_MAX_LISTS, data->total_concurrent_copies); 482 data->maximum_concurrent_copies = TPC_MAX_LISTS; 483 data->data_segment_granularity = 0; 484 data->inline_data_granularity = 0; 485 data->held_data_granularity = 0; 486 data->implemented_descriptor_list_length = 4; 487 data->list_of_implemented_descriptor_type_codes[0] = EC_SEG_B2B; 488 data->list_of_implemented_descriptor_type_codes[1] = EC_SEG_VERIFY; 489 data->list_of_implemented_descriptor_type_codes[2] = EC_SEG_REGISTER_KEY; 490 data->list_of_implemented_descriptor_type_codes[3] = EC_CSCD_ID; 491 492 ctl_set_success(ctsio); 493 ctsio->io_hdr.flags |= CTL_FLAG_ALLOCATED; 494 ctsio->be_move_done = ctl_config_move_done; 495 ctl_datamove((union ctl_io *)ctsio); 496 return (retval); 497 } 498 499 static struct tpc_list * 500 tpc_find_list(struct ctl_lun *lun, uint32_t list_id, uint32_t init_idx) 501 { 502 struct tpc_list *list; 503 504 mtx_assert(&lun->lun_lock, MA_OWNED); 505 TAILQ_FOREACH(list, &lun->tpc_lists, links) { 506 if ((list->flags & EC_LIST_ID_USAGE_MASK) != 507 EC_LIST_ID_USAGE_NONE && list->list_id == list_id && 508 list->init_idx == init_idx) 509 break; 510 } 511 return (list); 512 } 513 514 int 515 ctl_receive_copy_status_lid1(struct ctl_scsiio *ctsio) 516 { 517 struct ctl_lun *lun; 518 struct scsi_receive_copy_status_lid1 *cdb; 519 struct scsi_receive_copy_status_lid1_data *data; 520 struct tpc_list *list; 521 struct tpc_list list_copy; 522 int retval; 523 int alloc_len, total_len; 524 uint32_t list_id; 525 526 CTL_DEBUG_PRINT(("ctl_receive_copy_status_lid1\n")); 527 528 cdb = (struct scsi_receive_copy_status_lid1 *)ctsio->cdb; 529 lun = (struct ctl_lun *)ctsio->io_hdr.ctl_private[CTL_PRIV_LUN].ptr; 530 531 retval = CTL_RETVAL_COMPLETE; 532 533 list_id = cdb->list_identifier; 534 mtx_lock(&lun->lun_lock); 535 list = tpc_find_list(lun, list_id, 536 ctl_get_initindex(&ctsio->io_hdr.nexus)); 537 if (list == NULL) { 538 mtx_unlock(&lun->lun_lock); 539 ctl_set_invalid_field(ctsio, /*sks_valid*/ 1, 540 /*command*/ 1, /*field*/ 2, /*bit_valid*/ 0, 541 /*bit*/ 0); 542 ctl_done((union ctl_io *)ctsio); 543 return (retval); 544 } 545 list_copy = *list; 546 if (list->completed) { 547 TAILQ_REMOVE(&lun->tpc_lists, list, links); 548 free(list, M_CTL); 549 } 550 mtx_unlock(&lun->lun_lock); 551 552 total_len = sizeof(*data); 553 alloc_len = scsi_4btoul(cdb->length); 554 555 ctsio->kern_data_ptr = malloc(total_len, M_CTL, M_WAITOK | M_ZERO); 556 557 ctsio->kern_sg_entries = 0; 558 559 if (total_len < alloc_len) { 560 ctsio->residual = alloc_len - total_len; 561 ctsio->kern_data_len = total_len; 562 ctsio->kern_total_len = total_len; 563 } else { 564 ctsio->residual = 0; 565 ctsio->kern_data_len = alloc_len; 566 ctsio->kern_total_len = alloc_len; 567 } 568 ctsio->kern_data_resid = 0; 569 ctsio->kern_rel_offset = 0; 570 571 data = (struct scsi_receive_copy_status_lid1_data *)ctsio->kern_data_ptr; 572 scsi_ulto4b(sizeof(*data) - 4, data->available_data); 573 if (list_copy.completed) { 574 if (list_copy.error || list_copy.abort) 575 data->copy_command_status = RCS_CCS_ERROR; 576 else 577 data->copy_command_status = RCS_CCS_COMPLETED; 578 } else 579 data->copy_command_status = RCS_CCS_INPROG; 580 scsi_ulto2b(list_copy.curseg, data->segments_processed); 581 if (list_copy.curbytes <= UINT32_MAX) { 582 data->transfer_count_units = RCS_TC_BYTES; 583 scsi_ulto4b(list_copy.curbytes, data->transfer_count); 584 } else { 585 data->transfer_count_units = RCS_TC_MBYTES; 586 scsi_ulto4b(list_copy.curbytes >> 20, data->transfer_count); 587 } 588 589 ctl_set_success(ctsio); 590 ctsio->io_hdr.flags |= CTL_FLAG_ALLOCATED; 591 ctsio->be_move_done = ctl_config_move_done; 592 ctl_datamove((union ctl_io *)ctsio); 593 return (retval); 594 } 595 596 int 597 ctl_receive_copy_failure_details(struct ctl_scsiio *ctsio) 598 { 599 struct ctl_lun *lun; 600 struct scsi_receive_copy_failure_details *cdb; 601 struct scsi_receive_copy_failure_details_data *data; 602 struct tpc_list *list; 603 struct tpc_list list_copy; 604 int retval; 605 int alloc_len, total_len; 606 uint32_t list_id; 607 608 CTL_DEBUG_PRINT(("ctl_receive_copy_failure_details\n")); 609 610 cdb = (struct scsi_receive_copy_failure_details *)ctsio->cdb; 611 lun = (struct ctl_lun *)ctsio->io_hdr.ctl_private[CTL_PRIV_LUN].ptr; 612 613 retval = CTL_RETVAL_COMPLETE; 614 615 list_id = cdb->list_identifier; 616 mtx_lock(&lun->lun_lock); 617 list = tpc_find_list(lun, list_id, 618 ctl_get_initindex(&ctsio->io_hdr.nexus)); 619 if (list == NULL || !list->completed) { 620 mtx_unlock(&lun->lun_lock); 621 ctl_set_invalid_field(ctsio, /*sks_valid*/ 1, 622 /*command*/ 1, /*field*/ 2, /*bit_valid*/ 0, 623 /*bit*/ 0); 624 ctl_done((union ctl_io *)ctsio); 625 return (retval); 626 } 627 list_copy = *list; 628 TAILQ_REMOVE(&lun->tpc_lists, list, links); 629 free(list, M_CTL); 630 mtx_unlock(&lun->lun_lock); 631 632 total_len = sizeof(*data) + list_copy.sense_len; 633 alloc_len = scsi_4btoul(cdb->length); 634 635 ctsio->kern_data_ptr = malloc(total_len, M_CTL, M_WAITOK | M_ZERO); 636 637 ctsio->kern_sg_entries = 0; 638 639 if (total_len < alloc_len) { 640 ctsio->residual = alloc_len - total_len; 641 ctsio->kern_data_len = total_len; 642 ctsio->kern_total_len = total_len; 643 } else { 644 ctsio->residual = 0; 645 ctsio->kern_data_len = alloc_len; 646 ctsio->kern_total_len = alloc_len; 647 } 648 ctsio->kern_data_resid = 0; 649 ctsio->kern_rel_offset = 0; 650 651 data = (struct scsi_receive_copy_failure_details_data *)ctsio->kern_data_ptr; 652 if (list_copy.completed && (list_copy.error || list_copy.abort)) { 653 scsi_ulto4b(sizeof(*data) - 4 + list_copy.sense_len, 654 data->available_data); 655 data->copy_command_status = RCS_CCS_ERROR; 656 } else 657 scsi_ulto4b(0, data->available_data); 658 scsi_ulto2b(list_copy.sense_len, data->sense_data_length); 659 memcpy(data->sense_data, &list_copy.sense_data, list_copy.sense_len); 660 661 ctl_set_success(ctsio); 662 ctsio->io_hdr.flags |= CTL_FLAG_ALLOCATED; 663 ctsio->be_move_done = ctl_config_move_done; 664 ctl_datamove((union ctl_io *)ctsio); 665 return (retval); 666 } 667 668 int 669 ctl_receive_copy_status_lid4(struct ctl_scsiio *ctsio) 670 { 671 struct ctl_lun *lun; 672 struct scsi_receive_copy_status_lid4 *cdb; 673 struct scsi_receive_copy_status_lid4_data *data; 674 struct tpc_list *list; 675 struct tpc_list list_copy; 676 int retval; 677 int alloc_len, total_len; 678 uint32_t list_id; 679 680 CTL_DEBUG_PRINT(("ctl_receive_copy_status_lid4\n")); 681 682 cdb = (struct scsi_receive_copy_status_lid4 *)ctsio->cdb; 683 lun = (struct ctl_lun *)ctsio->io_hdr.ctl_private[CTL_PRIV_LUN].ptr; 684 685 retval = CTL_RETVAL_COMPLETE; 686 687 list_id = scsi_4btoul(cdb->list_identifier); 688 mtx_lock(&lun->lun_lock); 689 list = tpc_find_list(lun, list_id, 690 ctl_get_initindex(&ctsio->io_hdr.nexus)); 691 if (list == NULL) { 692 mtx_unlock(&lun->lun_lock); 693 ctl_set_invalid_field(ctsio, /*sks_valid*/ 1, 694 /*command*/ 1, /*field*/ 2, /*bit_valid*/ 0, 695 /*bit*/ 0); 696 ctl_done((union ctl_io *)ctsio); 697 return (retval); 698 } 699 list_copy = *list; 700 if (list->completed) { 701 TAILQ_REMOVE(&lun->tpc_lists, list, links); 702 free(list, M_CTL); 703 } 704 mtx_unlock(&lun->lun_lock); 705 706 total_len = sizeof(*data) + list_copy.sense_len; 707 alloc_len = scsi_4btoul(cdb->length); 708 709 ctsio->kern_data_ptr = malloc(total_len, M_CTL, M_WAITOK | M_ZERO); 710 711 ctsio->kern_sg_entries = 0; 712 713 if (total_len < alloc_len) { 714 ctsio->residual = alloc_len - total_len; 715 ctsio->kern_data_len = total_len; 716 ctsio->kern_total_len = total_len; 717 } else { 718 ctsio->residual = 0; 719 ctsio->kern_data_len = alloc_len; 720 ctsio->kern_total_len = alloc_len; 721 } 722 ctsio->kern_data_resid = 0; 723 ctsio->kern_rel_offset = 0; 724 725 data = (struct scsi_receive_copy_status_lid4_data *)ctsio->kern_data_ptr; 726 scsi_ulto4b(sizeof(*data) - 4 + list_copy.sense_len, 727 data->available_data); 728 data->response_to_service_action = list_copy.service_action; 729 if (list_copy.completed) { 730 if (list_copy.error) 731 data->copy_command_status = RCS_CCS_ERROR; 732 else if (list_copy.abort) 733 data->copy_command_status = RCS_CCS_ABORTED; 734 else 735 data->copy_command_status = RCS_CCS_COMPLETED; 736 } else 737 data->copy_command_status = RCS_CCS_INPROG_FG; 738 scsi_ulto2b(list_copy.curops, data->operation_counter); 739 scsi_ulto4b(UINT32_MAX, data->estimated_status_update_delay); 740 data->transfer_count_units = RCS_TC_BYTES; 741 scsi_u64to8b(list_copy.curbytes, data->transfer_count); 742 scsi_ulto2b(list_copy.curseg, data->segments_processed); 743 data->length_of_the_sense_data_field = list_copy.sense_len; 744 data->sense_data_length = list_copy.sense_len; 745 memcpy(data->sense_data, &list_copy.sense_data, list_copy.sense_len); 746 747 ctl_set_success(ctsio); 748 ctsio->io_hdr.flags |= CTL_FLAG_ALLOCATED; 749 ctsio->be_move_done = ctl_config_move_done; 750 ctl_datamove((union ctl_io *)ctsio); 751 return (retval); 752 } 753 754 int 755 ctl_copy_operation_abort(struct ctl_scsiio *ctsio) 756 { 757 struct ctl_lun *lun; 758 struct scsi_copy_operation_abort *cdb; 759 struct tpc_list *list; 760 int retval; 761 uint32_t list_id; 762 763 CTL_DEBUG_PRINT(("ctl_copy_operation_abort\n")); 764 765 cdb = (struct scsi_copy_operation_abort *)ctsio->cdb; 766 lun = (struct ctl_lun *)ctsio->io_hdr.ctl_private[CTL_PRIV_LUN].ptr; 767 768 retval = CTL_RETVAL_COMPLETE; 769 770 list_id = scsi_4btoul(cdb->list_identifier); 771 mtx_lock(&lun->lun_lock); 772 list = tpc_find_list(lun, list_id, 773 ctl_get_initindex(&ctsio->io_hdr.nexus)); 774 if (list == NULL) { 775 mtx_unlock(&lun->lun_lock); 776 ctl_set_invalid_field(ctsio, /*sks_valid*/ 1, 777 /*command*/ 1, /*field*/ 2, /*bit_valid*/ 0, 778 /*bit*/ 0); 779 ctl_done((union ctl_io *)ctsio); 780 return (retval); 781 } 782 list->abort = 1; 783 mtx_unlock(&lun->lun_lock); 784 785 ctl_set_success(ctsio); 786 ctl_done((union ctl_io *)ctsio); 787 return (retval); 788 } 789 790 static uint64_t 791 tpc_resolve(struct tpc_list *list, uint16_t idx, uint32_t *ss, 792 uint32_t *pb, uint32_t *pbo) 793 { 794 795 if (idx == 0xffff) { 796 if (ss && list->lun->be_lun) 797 *ss = list->lun->be_lun->blocksize; 798 if (pb && list->lun->be_lun) 799 *pb = list->lun->be_lun->blocksize << 800 list->lun->be_lun->pblockexp; 801 if (pbo && list->lun->be_lun) 802 *pbo = list->lun->be_lun->blocksize * 803 list->lun->be_lun->pblockoff; 804 return (list->lun->lun); 805 } 806 if (idx >= list->ncscd) 807 return (UINT64_MAX); 808 return (tpcl_resolve(list->lun->ctl_softc, 809 list->init_port, &list->cscd[idx], ss, pb, pbo)); 810 } 811 812 static int 813 tpc_process_b2b(struct tpc_list *list) 814 { 815 struct scsi_ec_segment_b2b *seg; 816 struct scsi_ec_cscd_dtsp *sdstp, *ddstp; 817 struct tpc_io *tior, *tiow; 818 struct runl run; 819 uint64_t sl, dl; 820 off_t srclba, dstlba, numbytes, donebytes, roundbytes; 821 int numlba; 822 uint32_t srcblock, dstblock, pb, pbo, adj; 823 uint8_t csi[4]; 824 825 scsi_ulto4b(list->curseg, csi); 826 if (list->stage == 1) { 827 while ((tior = TAILQ_FIRST(&list->allio)) != NULL) { 828 TAILQ_REMOVE(&list->allio, tior, links); 829 ctl_free_io(tior->io); 830 free(tior, M_CTL); 831 } 832 free(list->buf, M_CTL); 833 if (list->abort) { 834 ctl_set_task_aborted(list->ctsio); 835 return (CTL_RETVAL_ERROR); 836 } else if (list->error) { 837 ctl_set_sense(list->ctsio, /*current_error*/ 1, 838 /*sense_key*/ SSD_KEY_COPY_ABORTED, 839 /*asc*/ 0x0d, /*ascq*/ 0x01, 840 SSD_ELEM_COMMAND, sizeof(csi), csi, 841 SSD_ELEM_NONE); 842 return (CTL_RETVAL_ERROR); 843 } 844 list->cursectors += list->segsectors; 845 list->curbytes += list->segbytes; 846 return (CTL_RETVAL_COMPLETE); 847 } 848 849 TAILQ_INIT(&list->allio); 850 seg = (struct scsi_ec_segment_b2b *)list->seg[list->curseg]; 851 sl = tpc_resolve(list, scsi_2btoul(seg->src_cscd), &srcblock, NULL, NULL); 852 dl = tpc_resolve(list, scsi_2btoul(seg->dst_cscd), &dstblock, &pb, &pbo); 853 if (sl >= CTL_MAX_LUNS || dl >= CTL_MAX_LUNS) { 854 ctl_set_sense(list->ctsio, /*current_error*/ 1, 855 /*sense_key*/ SSD_KEY_COPY_ABORTED, 856 /*asc*/ 0x08, /*ascq*/ 0x04, 857 SSD_ELEM_COMMAND, sizeof(csi), csi, 858 SSD_ELEM_NONE); 859 return (CTL_RETVAL_ERROR); 860 } 861 if (pbo > 0) 862 pbo = pb - pbo; 863 sdstp = &list->cscd[scsi_2btoul(seg->src_cscd)].dtsp; 864 if (scsi_3btoul(sdstp->block_length) != 0) 865 srcblock = scsi_3btoul(sdstp->block_length); 866 ddstp = &list->cscd[scsi_2btoul(seg->dst_cscd)].dtsp; 867 if (scsi_3btoul(ddstp->block_length) != 0) 868 dstblock = scsi_3btoul(ddstp->block_length); 869 numlba = scsi_2btoul(seg->number_of_blocks); 870 if (seg->flags & EC_SEG_DC) 871 numbytes = (off_t)numlba * dstblock; 872 else 873 numbytes = (off_t)numlba * srcblock; 874 srclba = scsi_8btou64(seg->src_lba); 875 dstlba = scsi_8btou64(seg->dst_lba); 876 877 // printf("Copy %ju bytes from %ju @ %ju to %ju @ %ju\n", 878 // (uintmax_t)numbytes, sl, scsi_8btou64(seg->src_lba), 879 // dl, scsi_8btou64(seg->dst_lba)); 880 881 if (numbytes == 0) 882 return (CTL_RETVAL_COMPLETE); 883 884 if (numbytes % srcblock != 0 || numbytes % dstblock != 0) { 885 ctl_set_sense(list->ctsio, /*current_error*/ 1, 886 /*sense_key*/ SSD_KEY_COPY_ABORTED, 887 /*asc*/ 0x26, /*ascq*/ 0x0A, 888 SSD_ELEM_COMMAND, sizeof(csi), csi, 889 SSD_ELEM_NONE); 890 return (CTL_RETVAL_ERROR); 891 } 892 893 list->buf = malloc(numbytes, M_CTL, M_WAITOK); 894 list->segbytes = numbytes; 895 list->segsectors = numbytes / dstblock; 896 donebytes = 0; 897 TAILQ_INIT(&run); 898 list->tbdio = 0; 899 while (donebytes < numbytes) { 900 roundbytes = numbytes - donebytes; 901 if (roundbytes > TPC_MAX_IO_SIZE) { 902 roundbytes = TPC_MAX_IO_SIZE; 903 roundbytes -= roundbytes % dstblock; 904 if (pb > dstblock) { 905 adj = (dstlba * dstblock + roundbytes - pbo) % pb; 906 if (roundbytes > adj) 907 roundbytes -= adj; 908 } 909 } 910 911 tior = malloc(sizeof(*tior), M_CTL, M_WAITOK | M_ZERO); 912 TAILQ_INIT(&tior->run); 913 tior->list = list; 914 TAILQ_INSERT_TAIL(&list->allio, tior, links); 915 tior->io = tpcl_alloc_io(); 916 ctl_scsi_read_write(tior->io, 917 /*data_ptr*/ &list->buf[donebytes], 918 /*data_len*/ roundbytes, 919 /*read_op*/ 1, 920 /*byte2*/ 0, 921 /*minimum_cdb_size*/ 0, 922 /*lba*/ srclba, 923 /*num_blocks*/ roundbytes / srcblock, 924 /*tag_type*/ CTL_TAG_SIMPLE, 925 /*control*/ 0); 926 tior->io->io_hdr.retries = 3; 927 tior->lun = sl; 928 tior->io->io_hdr.ctl_private[CTL_PRIV_FRONTEND].ptr = tior; 929 930 tiow = malloc(sizeof(*tior), M_CTL, M_WAITOK | M_ZERO); 931 TAILQ_INIT(&tiow->run); 932 tiow->list = list; 933 TAILQ_INSERT_TAIL(&list->allio, tiow, links); 934 tiow->io = tpcl_alloc_io(); 935 ctl_scsi_read_write(tiow->io, 936 /*data_ptr*/ &list->buf[donebytes], 937 /*data_len*/ roundbytes, 938 /*read_op*/ 0, 939 /*byte2*/ 0, 940 /*minimum_cdb_size*/ 0, 941 /*lba*/ dstlba, 942 /*num_blocks*/ roundbytes / dstblock, 943 /*tag_type*/ CTL_TAG_SIMPLE, 944 /*control*/ 0); 945 tiow->io->io_hdr.retries = 3; 946 tiow->lun = dl; 947 tiow->io->io_hdr.ctl_private[CTL_PRIV_FRONTEND].ptr = tiow; 948 949 TAILQ_INSERT_TAIL(&tior->run, tiow, rlinks); 950 TAILQ_INSERT_TAIL(&run, tior, rlinks); 951 list->tbdio++; 952 donebytes += roundbytes; 953 srclba += roundbytes / srcblock; 954 dstlba += roundbytes / dstblock; 955 } 956 957 while ((tior = TAILQ_FIRST(&run)) != NULL) { 958 TAILQ_REMOVE(&run, tior, rlinks); 959 if (tpcl_queue(tior->io, tior->lun) != CTL_RETVAL_COMPLETE) 960 panic("tpcl_queue() error"); 961 } 962 963 list->stage++; 964 return (CTL_RETVAL_QUEUED); 965 } 966 967 static int 968 tpc_process_verify(struct tpc_list *list) 969 { 970 struct scsi_ec_segment_verify *seg; 971 struct tpc_io *tio; 972 uint64_t sl; 973 uint8_t csi[4]; 974 975 scsi_ulto4b(list->curseg, csi); 976 if (list->stage == 1) { 977 while ((tio = TAILQ_FIRST(&list->allio)) != NULL) { 978 TAILQ_REMOVE(&list->allio, tio, links); 979 ctl_free_io(tio->io); 980 free(tio, M_CTL); 981 } 982 if (list->abort) { 983 ctl_set_task_aborted(list->ctsio); 984 return (CTL_RETVAL_ERROR); 985 } else if (list->error) { 986 ctl_set_sense(list->ctsio, /*current_error*/ 1, 987 /*sense_key*/ SSD_KEY_COPY_ABORTED, 988 /*asc*/ 0x0d, /*ascq*/ 0x01, 989 SSD_ELEM_COMMAND, sizeof(csi), csi, 990 SSD_ELEM_NONE); 991 return (CTL_RETVAL_ERROR); 992 } else 993 return (CTL_RETVAL_COMPLETE); 994 } 995 996 TAILQ_INIT(&list->allio); 997 seg = (struct scsi_ec_segment_verify *)list->seg[list->curseg]; 998 sl = tpc_resolve(list, scsi_2btoul(seg->src_cscd), NULL, NULL, NULL); 999 if (sl >= CTL_MAX_LUNS) { 1000 ctl_set_sense(list->ctsio, /*current_error*/ 1, 1001 /*sense_key*/ SSD_KEY_COPY_ABORTED, 1002 /*asc*/ 0x08, /*ascq*/ 0x04, 1003 SSD_ELEM_COMMAND, sizeof(csi), csi, 1004 SSD_ELEM_NONE); 1005 return (CTL_RETVAL_ERROR); 1006 } 1007 1008 // printf("Verify %ju\n", sl); 1009 1010 if ((seg->tur & 0x01) == 0) 1011 return (CTL_RETVAL_COMPLETE); 1012 1013 list->tbdio = 1; 1014 tio = malloc(sizeof(*tio), M_CTL, M_WAITOK | M_ZERO); 1015 TAILQ_INIT(&tio->run); 1016 tio->list = list; 1017 TAILQ_INSERT_TAIL(&list->allio, tio, links); 1018 tio->io = tpcl_alloc_io(); 1019 ctl_scsi_tur(tio->io, /*tag_type*/ CTL_TAG_SIMPLE, /*control*/ 0); 1020 tio->io->io_hdr.retries = 3; 1021 tio->lun = sl; 1022 tio->io->io_hdr.ctl_private[CTL_PRIV_FRONTEND].ptr = tio; 1023 list->stage++; 1024 if (tpcl_queue(tio->io, tio->lun) != CTL_RETVAL_COMPLETE) 1025 panic("tpcl_queue() error"); 1026 return (CTL_RETVAL_QUEUED); 1027 } 1028 1029 static int 1030 tpc_process_register_key(struct tpc_list *list) 1031 { 1032 struct scsi_ec_segment_register_key *seg; 1033 struct tpc_io *tio; 1034 uint64_t dl; 1035 int datalen; 1036 uint8_t csi[4]; 1037 1038 scsi_ulto4b(list->curseg, csi); 1039 if (list->stage == 1) { 1040 while ((tio = TAILQ_FIRST(&list->allio)) != NULL) { 1041 TAILQ_REMOVE(&list->allio, tio, links); 1042 ctl_free_io(tio->io); 1043 free(tio, M_CTL); 1044 } 1045 free(list->buf, M_CTL); 1046 if (list->abort) { 1047 ctl_set_task_aborted(list->ctsio); 1048 return (CTL_RETVAL_ERROR); 1049 } else if (list->error) { 1050 ctl_set_sense(list->ctsio, /*current_error*/ 1, 1051 /*sense_key*/ SSD_KEY_COPY_ABORTED, 1052 /*asc*/ 0x0d, /*ascq*/ 0x01, 1053 SSD_ELEM_COMMAND, sizeof(csi), csi, 1054 SSD_ELEM_NONE); 1055 return (CTL_RETVAL_ERROR); 1056 } else 1057 return (CTL_RETVAL_COMPLETE); 1058 } 1059 1060 TAILQ_INIT(&list->allio); 1061 seg = (struct scsi_ec_segment_register_key *)list->seg[list->curseg]; 1062 dl = tpc_resolve(list, scsi_2btoul(seg->dst_cscd), NULL, NULL, NULL); 1063 if (dl >= CTL_MAX_LUNS) { 1064 ctl_set_sense(list->ctsio, /*current_error*/ 1, 1065 /*sense_key*/ SSD_KEY_COPY_ABORTED, 1066 /*asc*/ 0x08, /*ascq*/ 0x04, 1067 SSD_ELEM_COMMAND, sizeof(csi), csi, 1068 SSD_ELEM_NONE); 1069 return (CTL_RETVAL_ERROR); 1070 } 1071 1072 // printf("Register Key %ju\n", dl); 1073 1074 list->tbdio = 1; 1075 tio = malloc(sizeof(*tio), M_CTL, M_WAITOK | M_ZERO); 1076 TAILQ_INIT(&tio->run); 1077 tio->list = list; 1078 TAILQ_INSERT_TAIL(&list->allio, tio, links); 1079 tio->io = tpcl_alloc_io(); 1080 datalen = sizeof(struct scsi_per_res_out_parms); 1081 list->buf = malloc(datalen, M_CTL, M_WAITOK); 1082 ctl_scsi_persistent_res_out(tio->io, 1083 list->buf, datalen, SPRO_REGISTER, -1, 1084 scsi_8btou64(seg->res_key), scsi_8btou64(seg->sa_res_key), 1085 /*tag_type*/ CTL_TAG_SIMPLE, /*control*/ 0); 1086 tio->io->io_hdr.retries = 3; 1087 tio->lun = dl; 1088 tio->io->io_hdr.ctl_private[CTL_PRIV_FRONTEND].ptr = tio; 1089 list->stage++; 1090 if (tpcl_queue(tio->io, tio->lun) != CTL_RETVAL_COMPLETE) 1091 panic("tpcl_queue() error"); 1092 return (CTL_RETVAL_QUEUED); 1093 } 1094 1095 static off_t 1096 tpc_ranges_length(struct scsi_range_desc *range, int nrange) 1097 { 1098 off_t length = 0; 1099 int r; 1100 1101 for (r = 0; r < nrange; r++) 1102 length += scsi_4btoul(range[r].length); 1103 return (length); 1104 } 1105 1106 static int 1107 tpc_check_ranges(struct scsi_range_desc *range, int nrange, uint64_t maxlba) 1108 { 1109 uint64_t b1, b2; 1110 uint32_t l1, l2; 1111 int i, j; 1112 1113 for (i = 0; i < nrange; i++) { 1114 b1 = scsi_8btou64(range[i].lba); 1115 l1 = scsi_4btoul(range[i].length); 1116 if (b1 + l1 < b1 || b1 + l1 > maxlba + 1) 1117 return (-1); 1118 } 1119 for (i = 0; i < nrange - 1; i++) { 1120 b1 = scsi_8btou64(range[i].lba); 1121 l1 = scsi_4btoul(range[i].length); 1122 for (j = i + 1; j < nrange; j++) { 1123 b2 = scsi_8btou64(range[j].lba); 1124 l2 = scsi_4btoul(range[j].length); 1125 if (b1 + l1 > b2 && b2 + l2 > b1) 1126 return (-1); 1127 } 1128 } 1129 return (0); 1130 } 1131 1132 static int 1133 tpc_skip_ranges(struct scsi_range_desc *range, int nrange, off_t skip, 1134 int *srange, off_t *soffset) 1135 { 1136 off_t off; 1137 int r; 1138 1139 r = 0; 1140 off = 0; 1141 while (r < nrange) { 1142 if (skip - off < scsi_4btoul(range[r].length)) { 1143 *srange = r; 1144 *soffset = skip - off; 1145 return (0); 1146 } 1147 off += scsi_4btoul(range[r].length); 1148 r++; 1149 } 1150 return (-1); 1151 } 1152 1153 static int 1154 tpc_process_wut(struct tpc_list *list) 1155 { 1156 struct tpc_io *tio, *tior, *tiow; 1157 struct runl run; 1158 int drange, srange; 1159 off_t doffset, soffset; 1160 off_t srclba, dstlba, numbytes, donebytes, roundbytes; 1161 uint32_t srcblock, dstblock, pb, pbo, adj; 1162 1163 if (list->stage > 0) { 1164 /* Cleanup after previous rounds. */ 1165 while ((tio = TAILQ_FIRST(&list->allio)) != NULL) { 1166 TAILQ_REMOVE(&list->allio, tio, links); 1167 ctl_free_io(tio->io); 1168 free(tio, M_CTL); 1169 } 1170 free(list->buf, M_CTL); 1171 if (list->abort) { 1172 ctl_set_task_aborted(list->ctsio); 1173 return (CTL_RETVAL_ERROR); 1174 } else if (list->error) { 1175 ctl_set_sense(list->ctsio, /*current_error*/ 1, 1176 /*sense_key*/ SSD_KEY_COPY_ABORTED, 1177 /*asc*/ 0x0d, /*ascq*/ 0x01, SSD_ELEM_NONE); 1178 return (CTL_RETVAL_ERROR); 1179 } 1180 list->cursectors += list->segsectors; 1181 list->curbytes += list->segbytes; 1182 } 1183 1184 /* Check where we are on destination ranges list. */ 1185 if (tpc_skip_ranges(list->range, list->nrange, list->cursectors, 1186 &drange, &doffset) != 0) 1187 return (CTL_RETVAL_COMPLETE); 1188 dstblock = list->lun->be_lun->blocksize; 1189 pb = dstblock << list->lun->be_lun->pblockexp; 1190 if (list->lun->be_lun->pblockoff > 0) 1191 pbo = pb - dstblock * list->lun->be_lun->pblockoff; 1192 else 1193 pbo = 0; 1194 1195 /* Check where we are on source ranges list. */ 1196 srcblock = list->token->blocksize; 1197 if (tpc_skip_ranges(list->token->range, list->token->nrange, 1198 list->offset_into_rod + list->cursectors * dstblock / srcblock, 1199 &srange, &soffset) != 0) { 1200 ctl_set_sense(list->ctsio, /*current_error*/ 1, 1201 /*sense_key*/ SSD_KEY_COPY_ABORTED, 1202 /*asc*/ 0x0d, /*ascq*/ 0x04, SSD_ELEM_NONE); 1203 return (CTL_RETVAL_ERROR); 1204 } 1205 1206 srclba = scsi_8btou64(list->token->range[srange].lba) + soffset; 1207 dstlba = scsi_8btou64(list->range[drange].lba) + doffset; 1208 numbytes = srcblock * 1209 (scsi_4btoul(list->token->range[srange].length) - soffset); 1210 numbytes = omin(numbytes, dstblock * 1211 (scsi_4btoul(list->range[drange].length) - doffset)); 1212 if (numbytes > TPC_MAX_IOCHUNK_SIZE) { 1213 numbytes = TPC_MAX_IOCHUNK_SIZE; 1214 numbytes -= numbytes % dstblock; 1215 if (pb > dstblock) { 1216 adj = (dstlba * dstblock + numbytes - pbo) % pb; 1217 if (numbytes > adj) 1218 numbytes -= adj; 1219 } 1220 } 1221 1222 if (numbytes % srcblock != 0 || numbytes % dstblock != 0) { 1223 ctl_set_sense(list->ctsio, /*current_error*/ 1, 1224 /*sense_key*/ SSD_KEY_COPY_ABORTED, 1225 /*asc*/ 0x26, /*ascq*/ 0x0A, SSD_ELEM_NONE); 1226 return (CTL_RETVAL_ERROR); 1227 } 1228 1229 list->buf = malloc(numbytes, M_CTL, M_WAITOK | 1230 (list->token == NULL ? M_ZERO : 0)); 1231 list->segbytes = numbytes; 1232 list->segsectors = numbytes / dstblock; 1233 //printf("Copy chunk of %ju sectors from %ju to %ju\n", list->segsectors, 1234 // srclba, dstlba); 1235 donebytes = 0; 1236 TAILQ_INIT(&run); 1237 list->tbdio = 0; 1238 TAILQ_INIT(&list->allio); 1239 while (donebytes < numbytes) { 1240 roundbytes = numbytes - donebytes; 1241 if (roundbytes > TPC_MAX_IO_SIZE) { 1242 roundbytes = TPC_MAX_IO_SIZE; 1243 roundbytes -= roundbytes % dstblock; 1244 if (pb > dstblock) { 1245 adj = (dstlba * dstblock + roundbytes - pbo) % pb; 1246 if (roundbytes > adj) 1247 roundbytes -= adj; 1248 } 1249 } 1250 1251 tior = malloc(sizeof(*tior), M_CTL, M_WAITOK | M_ZERO); 1252 TAILQ_INIT(&tior->run); 1253 tior->list = list; 1254 TAILQ_INSERT_TAIL(&list->allio, tior, links); 1255 tior->io = tpcl_alloc_io(); 1256 ctl_scsi_read_write(tior->io, 1257 /*data_ptr*/ &list->buf[donebytes], 1258 /*data_len*/ roundbytes, 1259 /*read_op*/ 1, 1260 /*byte2*/ 0, 1261 /*minimum_cdb_size*/ 0, 1262 /*lba*/ srclba, 1263 /*num_blocks*/ roundbytes / srcblock, 1264 /*tag_type*/ CTL_TAG_SIMPLE, 1265 /*control*/ 0); 1266 tior->io->io_hdr.retries = 3; 1267 tior->lun = list->token->lun; 1268 tior->io->io_hdr.ctl_private[CTL_PRIV_FRONTEND].ptr = tior; 1269 1270 tiow = malloc(sizeof(*tiow), M_CTL, M_WAITOK | M_ZERO); 1271 TAILQ_INIT(&tiow->run); 1272 tiow->list = list; 1273 TAILQ_INSERT_TAIL(&list->allio, tiow, links); 1274 tiow->io = tpcl_alloc_io(); 1275 ctl_scsi_read_write(tiow->io, 1276 /*data_ptr*/ &list->buf[donebytes], 1277 /*data_len*/ roundbytes, 1278 /*read_op*/ 0, 1279 /*byte2*/ 0, 1280 /*minimum_cdb_size*/ 0, 1281 /*lba*/ dstlba, 1282 /*num_blocks*/ roundbytes / dstblock, 1283 /*tag_type*/ CTL_TAG_SIMPLE, 1284 /*control*/ 0); 1285 tiow->io->io_hdr.retries = 3; 1286 tiow->lun = list->lun->lun; 1287 tiow->io->io_hdr.ctl_private[CTL_PRIV_FRONTEND].ptr = tiow; 1288 1289 TAILQ_INSERT_TAIL(&tior->run, tiow, rlinks); 1290 TAILQ_INSERT_TAIL(&run, tior, rlinks); 1291 list->tbdio++; 1292 donebytes += roundbytes; 1293 srclba += roundbytes / srcblock; 1294 dstlba += roundbytes / dstblock; 1295 } 1296 1297 while ((tior = TAILQ_FIRST(&run)) != NULL) { 1298 TAILQ_REMOVE(&run, tior, rlinks); 1299 if (tpcl_queue(tior->io, tior->lun) != CTL_RETVAL_COMPLETE) 1300 panic("tpcl_queue() error"); 1301 } 1302 1303 list->stage++; 1304 return (CTL_RETVAL_QUEUED); 1305 } 1306 1307 static int 1308 tpc_process_zero_wut(struct tpc_list *list) 1309 { 1310 struct tpc_io *tio, *tiow; 1311 struct runl run, *prun; 1312 int r; 1313 uint32_t dstblock, len; 1314 1315 if (list->stage > 0) { 1316 complete: 1317 /* Cleanup after previous rounds. */ 1318 while ((tio = TAILQ_FIRST(&list->allio)) != NULL) { 1319 TAILQ_REMOVE(&list->allio, tio, links); 1320 ctl_free_io(tio->io); 1321 free(tio, M_CTL); 1322 } 1323 if (list->abort) { 1324 ctl_set_task_aborted(list->ctsio); 1325 return (CTL_RETVAL_ERROR); 1326 } else if (list->error) { 1327 ctl_set_sense(list->ctsio, /*current_error*/ 1, 1328 /*sense_key*/ SSD_KEY_COPY_ABORTED, 1329 /*asc*/ 0x0d, /*ascq*/ 0x01, SSD_ELEM_NONE); 1330 return (CTL_RETVAL_ERROR); 1331 } 1332 list->cursectors += list->segsectors; 1333 list->curbytes += list->segbytes; 1334 return (CTL_RETVAL_COMPLETE); 1335 } 1336 1337 dstblock = list->lun->be_lun->blocksize; 1338 TAILQ_INIT(&run); 1339 prun = &run; 1340 list->tbdio = 1; 1341 TAILQ_INIT(&list->allio); 1342 list->segsectors = 0; 1343 for (r = 0; r < list->nrange; r++) { 1344 len = scsi_4btoul(list->range[r].length); 1345 if (len == 0) 1346 continue; 1347 1348 tiow = malloc(sizeof(*tiow), M_CTL, M_WAITOK | M_ZERO); 1349 TAILQ_INIT(&tiow->run); 1350 tiow->list = list; 1351 TAILQ_INSERT_TAIL(&list->allio, tiow, links); 1352 tiow->io = tpcl_alloc_io(); 1353 ctl_scsi_write_same(tiow->io, 1354 /*data_ptr*/ NULL, 1355 /*data_len*/ 0, 1356 /*byte2*/ SWS_NDOB, 1357 /*lba*/ scsi_8btou64(list->range[r].lba), 1358 /*num_blocks*/ len, 1359 /*tag_type*/ CTL_TAG_SIMPLE, 1360 /*control*/ 0); 1361 tiow->io->io_hdr.retries = 3; 1362 tiow->lun = list->lun->lun; 1363 tiow->io->io_hdr.ctl_private[CTL_PRIV_FRONTEND].ptr = tiow; 1364 1365 TAILQ_INSERT_TAIL(prun, tiow, rlinks); 1366 prun = &tiow->run; 1367 list->segsectors += len; 1368 } 1369 list->segbytes = list->segsectors * dstblock; 1370 1371 if (TAILQ_EMPTY(&run)) 1372 goto complete; 1373 1374 while ((tiow = TAILQ_FIRST(&run)) != NULL) { 1375 TAILQ_REMOVE(&run, tiow, rlinks); 1376 if (tpcl_queue(tiow->io, tiow->lun) != CTL_RETVAL_COMPLETE) 1377 panic("tpcl_queue() error"); 1378 } 1379 1380 list->stage++; 1381 return (CTL_RETVAL_QUEUED); 1382 } 1383 1384 static void 1385 tpc_process(struct tpc_list *list) 1386 { 1387 struct ctl_lun *lun = list->lun; 1388 struct ctl_softc *softc = lun->ctl_softc; 1389 struct scsi_ec_segment *seg; 1390 struct ctl_scsiio *ctsio = list->ctsio; 1391 int retval = CTL_RETVAL_COMPLETE; 1392 uint8_t csi[4]; 1393 1394 if (list->service_action == EC_WUT) { 1395 if (list->token != NULL) 1396 retval = tpc_process_wut(list); 1397 else 1398 retval = tpc_process_zero_wut(list); 1399 if (retval == CTL_RETVAL_QUEUED) 1400 return; 1401 if (retval == CTL_RETVAL_ERROR) { 1402 list->error = 1; 1403 goto done; 1404 } 1405 } else { 1406 //printf("ZZZ %d cscd, %d segs\n", list->ncscd, list->nseg); 1407 while (list->curseg < list->nseg) { 1408 seg = list->seg[list->curseg]; 1409 switch (seg->type_code) { 1410 case EC_SEG_B2B: 1411 retval = tpc_process_b2b(list); 1412 break; 1413 case EC_SEG_VERIFY: 1414 retval = tpc_process_verify(list); 1415 break; 1416 case EC_SEG_REGISTER_KEY: 1417 retval = tpc_process_register_key(list); 1418 break; 1419 default: 1420 scsi_ulto4b(list->curseg, csi); 1421 ctl_set_sense(ctsio, /*current_error*/ 1, 1422 /*sense_key*/ SSD_KEY_COPY_ABORTED, 1423 /*asc*/ 0x26, /*ascq*/ 0x09, 1424 SSD_ELEM_COMMAND, sizeof(csi), csi, 1425 SSD_ELEM_NONE); 1426 goto done; 1427 } 1428 if (retval == CTL_RETVAL_QUEUED) 1429 return; 1430 if (retval == CTL_RETVAL_ERROR) { 1431 list->error = 1; 1432 goto done; 1433 } 1434 list->curseg++; 1435 list->stage = 0; 1436 } 1437 } 1438 1439 ctl_set_success(ctsio); 1440 1441 done: 1442 //printf("ZZZ done\n"); 1443 free(list->params, M_CTL); 1444 list->params = NULL; 1445 if (list->token) { 1446 mtx_lock(&softc->tpc_lock); 1447 if (--list->token->active == 0) 1448 list->token->last_active = time_uptime; 1449 mtx_unlock(&softc->tpc_lock); 1450 list->token = NULL; 1451 } 1452 mtx_lock(&lun->lun_lock); 1453 if ((list->flags & EC_LIST_ID_USAGE_MASK) == EC_LIST_ID_USAGE_NONE) { 1454 TAILQ_REMOVE(&lun->tpc_lists, list, links); 1455 free(list, M_CTL); 1456 } else { 1457 list->completed = 1; 1458 list->last_active = time_uptime; 1459 list->sense_data = ctsio->sense_data; 1460 list->sense_len = ctsio->sense_len; 1461 list->scsi_status = ctsio->scsi_status; 1462 } 1463 mtx_unlock(&lun->lun_lock); 1464 1465 ctl_done((union ctl_io *)ctsio); 1466 } 1467 1468 /* 1469 * For any sort of check condition, busy, etc., we just retry. We do not 1470 * decrement the retry count for unit attention type errors. These are 1471 * normal, and we want to save the retry count for "real" errors. Otherwise, 1472 * we could end up with situations where a command will succeed in some 1473 * situations and fail in others, depending on whether a unit attention is 1474 * pending. Also, some of our error recovery actions, most notably the 1475 * LUN reset action, will cause a unit attention. 1476 * 1477 * We can add more detail here later if necessary. 1478 */ 1479 static tpc_error_action 1480 tpc_checkcond_parse(union ctl_io *io) 1481 { 1482 tpc_error_action error_action; 1483 int error_code, sense_key, asc, ascq; 1484 1485 /* 1486 * Default to retrying the command. 1487 */ 1488 error_action = TPC_ERR_RETRY; 1489 1490 scsi_extract_sense_len(&io->scsiio.sense_data, 1491 io->scsiio.sense_len, 1492 &error_code, 1493 &sense_key, 1494 &asc, 1495 &ascq, 1496 /*show_errors*/ 1); 1497 1498 switch (error_code) { 1499 case SSD_DEFERRED_ERROR: 1500 case SSD_DESC_DEFERRED_ERROR: 1501 error_action |= TPC_ERR_NO_DECREMENT; 1502 break; 1503 case SSD_CURRENT_ERROR: 1504 case SSD_DESC_CURRENT_ERROR: 1505 default: 1506 switch (sense_key) { 1507 case SSD_KEY_UNIT_ATTENTION: 1508 error_action |= TPC_ERR_NO_DECREMENT; 1509 break; 1510 case SSD_KEY_HARDWARE_ERROR: 1511 /* 1512 * This is our generic "something bad happened" 1513 * error code. It often isn't recoverable. 1514 */ 1515 if ((asc == 0x44) && (ascq == 0x00)) 1516 error_action = TPC_ERR_FAIL; 1517 break; 1518 case SSD_KEY_NOT_READY: 1519 /* 1520 * If the LUN is powered down, there likely isn't 1521 * much point in retrying right now. 1522 */ 1523 if ((asc == 0x04) && (ascq == 0x02)) 1524 error_action = TPC_ERR_FAIL; 1525 /* 1526 * If the LUN is offline, there probably isn't much 1527 * point in retrying, either. 1528 */ 1529 if ((asc == 0x04) && (ascq == 0x03)) 1530 error_action = TPC_ERR_FAIL; 1531 break; 1532 } 1533 } 1534 return (error_action); 1535 } 1536 1537 static tpc_error_action 1538 tpc_error_parse(union ctl_io *io) 1539 { 1540 tpc_error_action error_action = TPC_ERR_RETRY; 1541 1542 switch (io->io_hdr.io_type) { 1543 case CTL_IO_SCSI: 1544 switch (io->io_hdr.status & CTL_STATUS_MASK) { 1545 case CTL_SCSI_ERROR: 1546 switch (io->scsiio.scsi_status) { 1547 case SCSI_STATUS_CHECK_COND: 1548 error_action = tpc_checkcond_parse(io); 1549 break; 1550 default: 1551 break; 1552 } 1553 break; 1554 default: 1555 break; 1556 } 1557 break; 1558 case CTL_IO_TASK: 1559 break; 1560 default: 1561 panic("%s: invalid ctl_io type %d\n", __func__, 1562 io->io_hdr.io_type); 1563 break; 1564 } 1565 return (error_action); 1566 } 1567 1568 void 1569 tpc_done(union ctl_io *io) 1570 { 1571 struct tpc_io *tio, *tior; 1572 1573 /* 1574 * Very minimal retry logic. We basically retry if we got an error 1575 * back, and the retry count is greater than 0. If we ever want 1576 * more sophisticated initiator type behavior, the CAM error 1577 * recovery code in ../common might be helpful. 1578 */ 1579 tio = io->io_hdr.ctl_private[CTL_PRIV_FRONTEND].ptr; 1580 if (((io->io_hdr.status & CTL_STATUS_MASK) != CTL_SUCCESS) 1581 && (io->io_hdr.retries > 0)) { 1582 ctl_io_status old_status; 1583 tpc_error_action error_action; 1584 1585 error_action = tpc_error_parse(io); 1586 switch (error_action & TPC_ERR_MASK) { 1587 case TPC_ERR_FAIL: 1588 break; 1589 case TPC_ERR_RETRY: 1590 default: 1591 if ((error_action & TPC_ERR_NO_DECREMENT) == 0) 1592 io->io_hdr.retries--; 1593 old_status = io->io_hdr.status; 1594 io->io_hdr.status = CTL_STATUS_NONE; 1595 io->io_hdr.flags &= ~CTL_FLAG_ABORT; 1596 io->io_hdr.flags &= ~CTL_FLAG_SENT_2OTHER_SC; 1597 if (tpcl_queue(io, tio->lun) != CTL_RETVAL_COMPLETE) { 1598 printf("%s: error returned from ctl_queue()!\n", 1599 __func__); 1600 io->io_hdr.status = old_status; 1601 } else 1602 return; 1603 } 1604 } 1605 1606 if ((io->io_hdr.status & CTL_STATUS_MASK) != CTL_SUCCESS) 1607 tio->list->error = 1; 1608 else 1609 atomic_add_int(&tio->list->curops, 1); 1610 if (!tio->list->error && !tio->list->abort) { 1611 while ((tior = TAILQ_FIRST(&tio->run)) != NULL) { 1612 TAILQ_REMOVE(&tio->run, tior, rlinks); 1613 atomic_add_int(&tio->list->tbdio, 1); 1614 if (tpcl_queue(tior->io, tior->lun) != CTL_RETVAL_COMPLETE) 1615 panic("tpcl_queue() error"); 1616 } 1617 } 1618 if (atomic_fetchadd_int(&tio->list->tbdio, -1) == 1) 1619 tpc_process(tio->list); 1620 } 1621 1622 int 1623 ctl_extended_copy_lid1(struct ctl_scsiio *ctsio) 1624 { 1625 struct scsi_extended_copy *cdb; 1626 struct scsi_extended_copy_lid1_data *data; 1627 struct ctl_lun *lun; 1628 struct tpc_list *list, *tlist; 1629 uint8_t *ptr; 1630 char *value; 1631 int len, off, lencscd, lenseg, leninl, nseg; 1632 1633 CTL_DEBUG_PRINT(("ctl_extended_copy_lid1\n")); 1634 1635 lun = (struct ctl_lun *)ctsio->io_hdr.ctl_private[CTL_PRIV_LUN].ptr; 1636 cdb = (struct scsi_extended_copy *)ctsio->cdb; 1637 len = scsi_4btoul(cdb->length); 1638 1639 if (len == 0) { 1640 ctl_set_success(ctsio); 1641 goto done; 1642 } 1643 if (len < sizeof(struct scsi_extended_copy_lid1_data) || 1644 len > sizeof(struct scsi_extended_copy_lid1_data) + 1645 TPC_MAX_LIST + TPC_MAX_INLINE) { 1646 ctl_set_invalid_field(ctsio, /*sks_valid*/ 1, /*command*/ 1, 1647 /*field*/ 9, /*bit_valid*/ 0, /*bit*/ 0); 1648 goto done; 1649 } 1650 1651 /* 1652 * If we've got a kernel request that hasn't been malloced yet, 1653 * malloc it and tell the caller the data buffer is here. 1654 */ 1655 if ((ctsio->io_hdr.flags & CTL_FLAG_ALLOCATED) == 0) { 1656 ctsio->kern_data_ptr = malloc(len, M_CTL, M_WAITOK); 1657 ctsio->kern_data_len = len; 1658 ctsio->kern_total_len = len; 1659 ctsio->kern_data_resid = 0; 1660 ctsio->kern_rel_offset = 0; 1661 ctsio->kern_sg_entries = 0; 1662 ctsio->io_hdr.flags |= CTL_FLAG_ALLOCATED; 1663 ctsio->be_move_done = ctl_config_move_done; 1664 ctl_datamove((union ctl_io *)ctsio); 1665 1666 return (CTL_RETVAL_COMPLETE); 1667 } 1668 1669 data = (struct scsi_extended_copy_lid1_data *)ctsio->kern_data_ptr; 1670 lencscd = scsi_2btoul(data->cscd_list_length); 1671 lenseg = scsi_4btoul(data->segment_list_length); 1672 leninl = scsi_4btoul(data->inline_data_length); 1673 if (lencscd > TPC_MAX_CSCDS * sizeof(struct scsi_ec_cscd)) { 1674 ctl_set_sense(ctsio, /*current_error*/ 1, 1675 /*sense_key*/ SSD_KEY_ILLEGAL_REQUEST, 1676 /*asc*/ 0x26, /*ascq*/ 0x06, SSD_ELEM_NONE); 1677 goto done; 1678 } 1679 if (lenseg > TPC_MAX_SEGS * sizeof(struct scsi_ec_segment)) { 1680 ctl_set_sense(ctsio, /*current_error*/ 1, 1681 /*sense_key*/ SSD_KEY_ILLEGAL_REQUEST, 1682 /*asc*/ 0x26, /*ascq*/ 0x08, SSD_ELEM_NONE); 1683 goto done; 1684 } 1685 if (lencscd + lenseg > TPC_MAX_LIST || 1686 leninl > TPC_MAX_INLINE || 1687 len < sizeof(struct scsi_extended_copy_lid1_data) + 1688 lencscd + lenseg + leninl) { 1689 ctl_set_param_len_error(ctsio); 1690 goto done; 1691 } 1692 1693 list = malloc(sizeof(struct tpc_list), M_CTL, M_WAITOK | M_ZERO); 1694 list->service_action = cdb->service_action; 1695 value = ctl_get_opt(&lun->be_lun->options, "insecure_tpc"); 1696 if (value != NULL && strcmp(value, "on") == 0) 1697 list->init_port = -1; 1698 else 1699 list->init_port = ctsio->io_hdr.nexus.targ_port; 1700 list->init_idx = ctl_get_initindex(&ctsio->io_hdr.nexus); 1701 list->list_id = data->list_identifier; 1702 list->flags = data->flags; 1703 list->params = ctsio->kern_data_ptr; 1704 list->cscd = (struct scsi_ec_cscd *)&data->data[0]; 1705 ptr = &data->data[lencscd]; 1706 for (nseg = 0, off = 0; off < lenseg; nseg++) { 1707 if (nseg >= TPC_MAX_SEGS) { 1708 free(list, M_CTL); 1709 ctl_set_sense(ctsio, /*current_error*/ 1, 1710 /*sense_key*/ SSD_KEY_ILLEGAL_REQUEST, 1711 /*asc*/ 0x26, /*ascq*/ 0x08, SSD_ELEM_NONE); 1712 goto done; 1713 } 1714 list->seg[nseg] = (struct scsi_ec_segment *)(ptr + off); 1715 off += sizeof(struct scsi_ec_segment) + 1716 scsi_2btoul(list->seg[nseg]->descr_length); 1717 } 1718 list->inl = &data->data[lencscd + lenseg]; 1719 list->ncscd = lencscd / sizeof(struct scsi_ec_cscd); 1720 list->nseg = nseg; 1721 list->leninl = leninl; 1722 list->ctsio = ctsio; 1723 list->lun = lun; 1724 mtx_lock(&lun->lun_lock); 1725 if ((list->flags & EC_LIST_ID_USAGE_MASK) != EC_LIST_ID_USAGE_NONE) { 1726 tlist = tpc_find_list(lun, list->list_id, list->init_idx); 1727 if (tlist != NULL && !tlist->completed) { 1728 mtx_unlock(&lun->lun_lock); 1729 free(list, M_CTL); 1730 ctl_set_invalid_field(ctsio, /*sks_valid*/ 1, 1731 /*command*/ 0, /*field*/ 0, /*bit_valid*/ 0, 1732 /*bit*/ 0); 1733 goto done; 1734 } 1735 if (tlist != NULL) { 1736 TAILQ_REMOVE(&lun->tpc_lists, tlist, links); 1737 free(tlist, M_CTL); 1738 } 1739 } 1740 TAILQ_INSERT_TAIL(&lun->tpc_lists, list, links); 1741 mtx_unlock(&lun->lun_lock); 1742 1743 tpc_process(list); 1744 return (CTL_RETVAL_COMPLETE); 1745 1746 done: 1747 if (ctsio->io_hdr.flags & CTL_FLAG_ALLOCATED) { 1748 free(ctsio->kern_data_ptr, M_CTL); 1749 ctsio->io_hdr.flags &= ~CTL_FLAG_ALLOCATED; 1750 } 1751 ctl_done((union ctl_io *)ctsio); 1752 return (CTL_RETVAL_COMPLETE); 1753 } 1754 1755 int 1756 ctl_extended_copy_lid4(struct ctl_scsiio *ctsio) 1757 { 1758 struct scsi_extended_copy *cdb; 1759 struct scsi_extended_copy_lid4_data *data; 1760 struct ctl_lun *lun; 1761 struct tpc_list *list, *tlist; 1762 uint8_t *ptr; 1763 char *value; 1764 int len, off, lencscd, lenseg, leninl, nseg; 1765 1766 CTL_DEBUG_PRINT(("ctl_extended_copy_lid4\n")); 1767 1768 lun = (struct ctl_lun *)ctsio->io_hdr.ctl_private[CTL_PRIV_LUN].ptr; 1769 cdb = (struct scsi_extended_copy *)ctsio->cdb; 1770 len = scsi_4btoul(cdb->length); 1771 1772 if (len == 0) { 1773 ctl_set_success(ctsio); 1774 goto done; 1775 } 1776 if (len < sizeof(struct scsi_extended_copy_lid4_data) || 1777 len > sizeof(struct scsi_extended_copy_lid4_data) + 1778 TPC_MAX_LIST + TPC_MAX_INLINE) { 1779 ctl_set_invalid_field(ctsio, /*sks_valid*/ 1, /*command*/ 1, 1780 /*field*/ 9, /*bit_valid*/ 0, /*bit*/ 0); 1781 goto done; 1782 } 1783 1784 /* 1785 * If we've got a kernel request that hasn't been malloced yet, 1786 * malloc it and tell the caller the data buffer is here. 1787 */ 1788 if ((ctsio->io_hdr.flags & CTL_FLAG_ALLOCATED) == 0) { 1789 ctsio->kern_data_ptr = malloc(len, M_CTL, M_WAITOK); 1790 ctsio->kern_data_len = len; 1791 ctsio->kern_total_len = len; 1792 ctsio->kern_data_resid = 0; 1793 ctsio->kern_rel_offset = 0; 1794 ctsio->kern_sg_entries = 0; 1795 ctsio->io_hdr.flags |= CTL_FLAG_ALLOCATED; 1796 ctsio->be_move_done = ctl_config_move_done; 1797 ctl_datamove((union ctl_io *)ctsio); 1798 1799 return (CTL_RETVAL_COMPLETE); 1800 } 1801 1802 data = (struct scsi_extended_copy_lid4_data *)ctsio->kern_data_ptr; 1803 lencscd = scsi_2btoul(data->cscd_list_length); 1804 lenseg = scsi_2btoul(data->segment_list_length); 1805 leninl = scsi_2btoul(data->inline_data_length); 1806 if (lencscd > TPC_MAX_CSCDS * sizeof(struct scsi_ec_cscd)) { 1807 ctl_set_sense(ctsio, /*current_error*/ 1, 1808 /*sense_key*/ SSD_KEY_ILLEGAL_REQUEST, 1809 /*asc*/ 0x26, /*ascq*/ 0x06, SSD_ELEM_NONE); 1810 goto done; 1811 } 1812 if (lenseg > TPC_MAX_SEGS * sizeof(struct scsi_ec_segment)) { 1813 ctl_set_sense(ctsio, /*current_error*/ 1, 1814 /*sense_key*/ SSD_KEY_ILLEGAL_REQUEST, 1815 /*asc*/ 0x26, /*ascq*/ 0x08, SSD_ELEM_NONE); 1816 goto done; 1817 } 1818 if (lencscd + lenseg > TPC_MAX_LIST || 1819 leninl > TPC_MAX_INLINE || 1820 len < sizeof(struct scsi_extended_copy_lid1_data) + 1821 lencscd + lenseg + leninl) { 1822 ctl_set_param_len_error(ctsio); 1823 goto done; 1824 } 1825 1826 list = malloc(sizeof(struct tpc_list), M_CTL, M_WAITOK | M_ZERO); 1827 list->service_action = cdb->service_action; 1828 value = ctl_get_opt(&lun->be_lun->options, "insecure_tpc"); 1829 if (value != NULL && strcmp(value, "on") == 0) 1830 list->init_port = -1; 1831 else 1832 list->init_port = ctsio->io_hdr.nexus.targ_port; 1833 list->init_idx = ctl_get_initindex(&ctsio->io_hdr.nexus); 1834 list->list_id = scsi_4btoul(data->list_identifier); 1835 list->flags = data->flags; 1836 list->params = ctsio->kern_data_ptr; 1837 list->cscd = (struct scsi_ec_cscd *)&data->data[0]; 1838 ptr = &data->data[lencscd]; 1839 for (nseg = 0, off = 0; off < lenseg; nseg++) { 1840 if (nseg >= TPC_MAX_SEGS) { 1841 free(list, M_CTL); 1842 ctl_set_sense(ctsio, /*current_error*/ 1, 1843 /*sense_key*/ SSD_KEY_ILLEGAL_REQUEST, 1844 /*asc*/ 0x26, /*ascq*/ 0x08, SSD_ELEM_NONE); 1845 goto done; 1846 } 1847 list->seg[nseg] = (struct scsi_ec_segment *)(ptr + off); 1848 off += sizeof(struct scsi_ec_segment) + 1849 scsi_2btoul(list->seg[nseg]->descr_length); 1850 } 1851 list->inl = &data->data[lencscd + lenseg]; 1852 list->ncscd = lencscd / sizeof(struct scsi_ec_cscd); 1853 list->nseg = nseg; 1854 list->leninl = leninl; 1855 list->ctsio = ctsio; 1856 list->lun = lun; 1857 mtx_lock(&lun->lun_lock); 1858 if ((list->flags & EC_LIST_ID_USAGE_MASK) != EC_LIST_ID_USAGE_NONE) { 1859 tlist = tpc_find_list(lun, list->list_id, list->init_idx); 1860 if (tlist != NULL && !tlist->completed) { 1861 mtx_unlock(&lun->lun_lock); 1862 free(list, M_CTL); 1863 ctl_set_invalid_field(ctsio, /*sks_valid*/ 1, 1864 /*command*/ 0, /*field*/ 0, /*bit_valid*/ 0, 1865 /*bit*/ 0); 1866 goto done; 1867 } 1868 if (tlist != NULL) { 1869 TAILQ_REMOVE(&lun->tpc_lists, tlist, links); 1870 free(tlist, M_CTL); 1871 } 1872 } 1873 TAILQ_INSERT_TAIL(&lun->tpc_lists, list, links); 1874 mtx_unlock(&lun->lun_lock); 1875 1876 tpc_process(list); 1877 return (CTL_RETVAL_COMPLETE); 1878 1879 done: 1880 if (ctsio->io_hdr.flags & CTL_FLAG_ALLOCATED) { 1881 free(ctsio->kern_data_ptr, M_CTL); 1882 ctsio->io_hdr.flags &= ~CTL_FLAG_ALLOCATED; 1883 } 1884 ctl_done((union ctl_io *)ctsio); 1885 return (CTL_RETVAL_COMPLETE); 1886 } 1887 1888 static void 1889 tpc_create_token(struct ctl_lun *lun, struct ctl_port *port, off_t len, 1890 struct scsi_token *token) 1891 { 1892 static int id = 0; 1893 struct scsi_vpd_id_descriptor *idd = NULL; 1894 struct scsi_ec_cscd_id *cscd; 1895 struct scsi_read_capacity_data_long *dtsd; 1896 int targid_len; 1897 1898 scsi_ulto4b(ROD_TYPE_AUR, token->type); 1899 scsi_ulto2b(0x01f8, token->length); 1900 scsi_u64to8b(atomic_fetchadd_int(&id, 1), &token->body[0]); 1901 if (lun->lun_devid) 1902 idd = scsi_get_devid_desc((struct scsi_vpd_id_descriptor *) 1903 lun->lun_devid->data, lun->lun_devid->len, 1904 scsi_devid_is_lun_naa); 1905 if (idd == NULL && lun->lun_devid) 1906 idd = scsi_get_devid_desc((struct scsi_vpd_id_descriptor *) 1907 lun->lun_devid->data, lun->lun_devid->len, 1908 scsi_devid_is_lun_eui64); 1909 if (idd != NULL) { 1910 cscd = (struct scsi_ec_cscd_id *)&token->body[8]; 1911 cscd->type_code = EC_CSCD_ID; 1912 cscd->luidt_pdt = T_DIRECT; 1913 memcpy(&cscd->codeset, idd, 4 + idd->length); 1914 scsi_ulto3b(lun->be_lun->blocksize, cscd->dtsp.block_length); 1915 } 1916 scsi_u64to8b(0, &token->body[40]); /* XXX: Should be 128bit value. */ 1917 scsi_u64to8b(len, &token->body[48]); 1918 1919 /* ROD token device type specific data (RC16 without first field) */ 1920 dtsd = (struct scsi_read_capacity_data_long *)&token->body[88 - 8]; 1921 scsi_ulto4b(lun->be_lun->blocksize, dtsd->length); 1922 dtsd->prot_lbppbe = lun->be_lun->pblockexp & SRC16_LBPPBE; 1923 scsi_ulto2b(lun->be_lun->pblockoff & SRC16_LALBA_A, dtsd->lalba_lbp); 1924 if (lun->be_lun->flags & CTL_LUN_FLAG_UNMAP) 1925 dtsd->lalba_lbp[0] |= SRC16_LBPME | SRC16_LBPRZ; 1926 1927 if (port->target_devid) { 1928 targid_len = port->target_devid->len; 1929 memcpy(&token->body[120], port->target_devid->data, targid_len); 1930 } else 1931 targid_len = 32; 1932 arc4rand(&token->body[120 + targid_len], 384 - targid_len, 0); 1933 }; 1934 1935 int 1936 ctl_populate_token(struct ctl_scsiio *ctsio) 1937 { 1938 struct scsi_populate_token *cdb; 1939 struct scsi_populate_token_data *data; 1940 struct ctl_softc *softc; 1941 struct ctl_lun *lun; 1942 struct ctl_port *port; 1943 struct tpc_list *list, *tlist; 1944 struct tpc_token *token; 1945 int len, lendata, lendesc; 1946 1947 CTL_DEBUG_PRINT(("ctl_populate_token\n")); 1948 1949 lun = (struct ctl_lun *)ctsio->io_hdr.ctl_private[CTL_PRIV_LUN].ptr; 1950 softc = lun->ctl_softc; 1951 port = softc->ctl_ports[ctsio->io_hdr.nexus.targ_port]; 1952 cdb = (struct scsi_populate_token *)ctsio->cdb; 1953 len = scsi_4btoul(cdb->length); 1954 1955 if (len < sizeof(struct scsi_populate_token_data) || 1956 len > sizeof(struct scsi_populate_token_data) + 1957 TPC_MAX_SEGS * sizeof(struct scsi_range_desc)) { 1958 ctl_set_invalid_field(ctsio, /*sks_valid*/ 1, /*command*/ 1, 1959 /*field*/ 9, /*bit_valid*/ 0, /*bit*/ 0); 1960 goto done; 1961 } 1962 1963 /* 1964 * If we've got a kernel request that hasn't been malloced yet, 1965 * malloc it and tell the caller the data buffer is here. 1966 */ 1967 if ((ctsio->io_hdr.flags & CTL_FLAG_ALLOCATED) == 0) { 1968 ctsio->kern_data_ptr = malloc(len, M_CTL, M_WAITOK); 1969 ctsio->kern_data_len = len; 1970 ctsio->kern_total_len = len; 1971 ctsio->kern_data_resid = 0; 1972 ctsio->kern_rel_offset = 0; 1973 ctsio->kern_sg_entries = 0; 1974 ctsio->io_hdr.flags |= CTL_FLAG_ALLOCATED; 1975 ctsio->be_move_done = ctl_config_move_done; 1976 ctl_datamove((union ctl_io *)ctsio); 1977 1978 return (CTL_RETVAL_COMPLETE); 1979 } 1980 1981 data = (struct scsi_populate_token_data *)ctsio->kern_data_ptr; 1982 lendata = scsi_2btoul(data->length); 1983 if (lendata < sizeof(struct scsi_populate_token_data) - 2 + 1984 sizeof(struct scsi_range_desc)) { 1985 ctl_set_invalid_field(ctsio, /*sks_valid*/ 1, /*command*/ 0, 1986 /*field*/ 0, /*bit_valid*/ 0, /*bit*/ 0); 1987 goto done; 1988 } 1989 lendesc = scsi_2btoul(data->range_descriptor_length); 1990 if (lendesc < sizeof(struct scsi_range_desc) || 1991 len < sizeof(struct scsi_populate_token_data) + lendesc || 1992 lendata < sizeof(struct scsi_populate_token_data) - 2 + lendesc) { 1993 ctl_set_invalid_field(ctsio, /*sks_valid*/ 1, /*command*/ 0, 1994 /*field*/ 14, /*bit_valid*/ 0, /*bit*/ 0); 1995 goto done; 1996 } 1997 /* 1998 printf("PT(list=%u) flags=%x to=%d rt=%x len=%x\n", 1999 scsi_4btoul(cdb->list_identifier), 2000 data->flags, scsi_4btoul(data->inactivity_timeout), 2001 scsi_4btoul(data->rod_type), 2002 scsi_2btoul(data->range_descriptor_length)); 2003 */ 2004 2005 /* Validate INACTIVITY TIMEOUT field */ 2006 if (scsi_4btoul(data->inactivity_timeout) > TPC_MAX_TOKEN_TIMEOUT) { 2007 ctl_set_invalid_field(ctsio, /*sks_valid*/ 1, 2008 /*command*/ 0, /*field*/ 4, /*bit_valid*/ 0, 2009 /*bit*/ 0); 2010 goto done; 2011 } 2012 2013 /* Validate ROD TYPE field */ 2014 if ((data->flags & EC_PT_RTV) && 2015 scsi_4btoul(data->rod_type) != ROD_TYPE_AUR) { 2016 ctl_set_invalid_field(ctsio, /*sks_valid*/ 1, /*command*/ 0, 2017 /*field*/ 8, /*bit_valid*/ 0, /*bit*/ 0); 2018 goto done; 2019 } 2020 2021 /* Validate list of ranges */ 2022 if (tpc_check_ranges(&data->desc[0], 2023 scsi_2btoul(data->range_descriptor_length) / 2024 sizeof(struct scsi_range_desc), 2025 lun->be_lun->maxlba) != 0) { 2026 ctl_set_invalid_field(ctsio, /*sks_valid*/ 0, 2027 /*command*/ 0, /*field*/ 0, /*bit_valid*/ 0, 2028 /*bit*/ 0); 2029 goto done; 2030 } 2031 2032 list = malloc(sizeof(struct tpc_list), M_CTL, M_WAITOK | M_ZERO); 2033 list->service_action = cdb->service_action; 2034 list->init_port = ctsio->io_hdr.nexus.targ_port; 2035 list->init_idx = ctl_get_initindex(&ctsio->io_hdr.nexus); 2036 list->list_id = scsi_4btoul(cdb->list_identifier); 2037 list->flags = data->flags; 2038 list->ctsio = ctsio; 2039 list->lun = lun; 2040 mtx_lock(&lun->lun_lock); 2041 tlist = tpc_find_list(lun, list->list_id, list->init_idx); 2042 if (tlist != NULL && !tlist->completed) { 2043 mtx_unlock(&lun->lun_lock); 2044 free(list, M_CTL); 2045 ctl_set_invalid_field(ctsio, /*sks_valid*/ 1, 2046 /*command*/ 0, /*field*/ 0, /*bit_valid*/ 0, 2047 /*bit*/ 0); 2048 goto done; 2049 } 2050 if (tlist != NULL) { 2051 TAILQ_REMOVE(&lun->tpc_lists, tlist, links); 2052 free(tlist, M_CTL); 2053 } 2054 TAILQ_INSERT_TAIL(&lun->tpc_lists, list, links); 2055 mtx_unlock(&lun->lun_lock); 2056 2057 token = malloc(sizeof(*token), M_CTL, M_WAITOK | M_ZERO); 2058 token->lun = lun->lun; 2059 token->blocksize = lun->be_lun->blocksize; 2060 token->params = ctsio->kern_data_ptr; 2061 token->range = &data->desc[0]; 2062 token->nrange = scsi_2btoul(data->range_descriptor_length) / 2063 sizeof(struct scsi_range_desc); 2064 list->cursectors = tpc_ranges_length(token->range, token->nrange); 2065 list->curbytes = (off_t)list->cursectors * lun->be_lun->blocksize; 2066 tpc_create_token(lun, port, list->curbytes, 2067 (struct scsi_token *)token->token); 2068 token->active = 0; 2069 token->last_active = time_uptime; 2070 token->timeout = scsi_4btoul(data->inactivity_timeout); 2071 if (token->timeout == 0) 2072 token->timeout = TPC_DFL_TOKEN_TIMEOUT; 2073 else if (token->timeout < TPC_MIN_TOKEN_TIMEOUT) 2074 token->timeout = TPC_MIN_TOKEN_TIMEOUT; 2075 memcpy(list->res_token, token->token, sizeof(list->res_token)); 2076 list->res_token_valid = 1; 2077 list->curseg = 0; 2078 list->completed = 1; 2079 list->last_active = time_uptime; 2080 mtx_lock(&softc->tpc_lock); 2081 TAILQ_INSERT_TAIL(&softc->tpc_tokens, token, links); 2082 mtx_unlock(&softc->tpc_lock); 2083 ctl_set_success(ctsio); 2084 ctl_done((union ctl_io *)ctsio); 2085 return (CTL_RETVAL_COMPLETE); 2086 2087 done: 2088 if (ctsio->io_hdr.flags & CTL_FLAG_ALLOCATED) { 2089 free(ctsio->kern_data_ptr, M_CTL); 2090 ctsio->io_hdr.flags &= ~CTL_FLAG_ALLOCATED; 2091 } 2092 ctl_done((union ctl_io *)ctsio); 2093 return (CTL_RETVAL_COMPLETE); 2094 } 2095 2096 int 2097 ctl_write_using_token(struct ctl_scsiio *ctsio) 2098 { 2099 struct scsi_write_using_token *cdb; 2100 struct scsi_write_using_token_data *data; 2101 struct ctl_softc *softc; 2102 struct ctl_lun *lun; 2103 struct tpc_list *list, *tlist; 2104 struct tpc_token *token; 2105 int len, lendata, lendesc; 2106 2107 CTL_DEBUG_PRINT(("ctl_write_using_token\n")); 2108 2109 lun = (struct ctl_lun *)ctsio->io_hdr.ctl_private[CTL_PRIV_LUN].ptr; 2110 softc = lun->ctl_softc; 2111 cdb = (struct scsi_write_using_token *)ctsio->cdb; 2112 len = scsi_4btoul(cdb->length); 2113 2114 if (len < sizeof(struct scsi_write_using_token_data) || 2115 len > sizeof(struct scsi_write_using_token_data) + 2116 TPC_MAX_SEGS * sizeof(struct scsi_range_desc)) { 2117 ctl_set_invalid_field(ctsio, /*sks_valid*/ 1, /*command*/ 1, 2118 /*field*/ 9, /*bit_valid*/ 0, /*bit*/ 0); 2119 goto done; 2120 } 2121 2122 /* 2123 * If we've got a kernel request that hasn't been malloced yet, 2124 * malloc it and tell the caller the data buffer is here. 2125 */ 2126 if ((ctsio->io_hdr.flags & CTL_FLAG_ALLOCATED) == 0) { 2127 ctsio->kern_data_ptr = malloc(len, M_CTL, M_WAITOK); 2128 ctsio->kern_data_len = len; 2129 ctsio->kern_total_len = len; 2130 ctsio->kern_data_resid = 0; 2131 ctsio->kern_rel_offset = 0; 2132 ctsio->kern_sg_entries = 0; 2133 ctsio->io_hdr.flags |= CTL_FLAG_ALLOCATED; 2134 ctsio->be_move_done = ctl_config_move_done; 2135 ctl_datamove((union ctl_io *)ctsio); 2136 2137 return (CTL_RETVAL_COMPLETE); 2138 } 2139 2140 data = (struct scsi_write_using_token_data *)ctsio->kern_data_ptr; 2141 lendata = scsi_2btoul(data->length); 2142 if (lendata < sizeof(struct scsi_write_using_token_data) - 2 + 2143 sizeof(struct scsi_range_desc)) { 2144 ctl_set_invalid_field(ctsio, /*sks_valid*/ 1, /*command*/ 0, 2145 /*field*/ 0, /*bit_valid*/ 0, /*bit*/ 0); 2146 goto done; 2147 } 2148 lendesc = scsi_2btoul(data->range_descriptor_length); 2149 if (lendesc < sizeof(struct scsi_range_desc) || 2150 len < sizeof(struct scsi_write_using_token_data) + lendesc || 2151 lendata < sizeof(struct scsi_write_using_token_data) - 2 + lendesc) { 2152 ctl_set_invalid_field(ctsio, /*sks_valid*/ 1, /*command*/ 0, 2153 /*field*/ 534, /*bit_valid*/ 0, /*bit*/ 0); 2154 goto done; 2155 } 2156 /* 2157 printf("WUT(list=%u) flags=%x off=%ju len=%x\n", 2158 scsi_4btoul(cdb->list_identifier), 2159 data->flags, scsi_8btou64(data->offset_into_rod), 2160 scsi_2btoul(data->range_descriptor_length)); 2161 */ 2162 2163 /* Validate list of ranges */ 2164 if (tpc_check_ranges(&data->desc[0], 2165 scsi_2btoul(data->range_descriptor_length) / 2166 sizeof(struct scsi_range_desc), 2167 lun->be_lun->maxlba) != 0) { 2168 ctl_set_invalid_field(ctsio, /*sks_valid*/ 0, 2169 /*command*/ 0, /*field*/ 0, /*bit_valid*/ 0, 2170 /*bit*/ 0); 2171 goto done; 2172 } 2173 2174 list = malloc(sizeof(struct tpc_list), M_CTL, M_WAITOK | M_ZERO); 2175 list->service_action = cdb->service_action; 2176 list->init_port = ctsio->io_hdr.nexus.targ_port; 2177 list->init_idx = ctl_get_initindex(&ctsio->io_hdr.nexus); 2178 list->list_id = scsi_4btoul(cdb->list_identifier); 2179 list->flags = data->flags; 2180 list->params = ctsio->kern_data_ptr; 2181 list->range = &data->desc[0]; 2182 list->nrange = scsi_2btoul(data->range_descriptor_length) / 2183 sizeof(struct scsi_range_desc); 2184 list->offset_into_rod = scsi_8btou64(data->offset_into_rod); 2185 list->ctsio = ctsio; 2186 list->lun = lun; 2187 mtx_lock(&lun->lun_lock); 2188 tlist = tpc_find_list(lun, list->list_id, list->init_idx); 2189 if (tlist != NULL && !tlist->completed) { 2190 mtx_unlock(&lun->lun_lock); 2191 free(list, M_CTL); 2192 ctl_set_invalid_field(ctsio, /*sks_valid*/ 1, 2193 /*command*/ 0, /*field*/ 0, /*bit_valid*/ 0, 2194 /*bit*/ 0); 2195 goto done; 2196 } 2197 if (tlist != NULL) { 2198 TAILQ_REMOVE(&lun->tpc_lists, tlist, links); 2199 free(tlist, M_CTL); 2200 } 2201 TAILQ_INSERT_TAIL(&lun->tpc_lists, list, links); 2202 mtx_unlock(&lun->lun_lock); 2203 2204 /* Block device zero ROD token -> no token. */ 2205 if (scsi_4btoul(data->rod_token) == ROD_TYPE_BLOCK_ZERO) { 2206 tpc_process(list); 2207 return (CTL_RETVAL_COMPLETE); 2208 } 2209 2210 mtx_lock(&softc->tpc_lock); 2211 TAILQ_FOREACH(token, &softc->tpc_tokens, links) { 2212 if (memcmp(token->token, data->rod_token, 2213 sizeof(data->rod_token)) == 0) 2214 break; 2215 } 2216 if (token != NULL) { 2217 token->active++; 2218 list->token = token; 2219 if (data->flags & EC_WUT_DEL_TKN) 2220 token->timeout = 0; 2221 } 2222 mtx_unlock(&softc->tpc_lock); 2223 if (token == NULL) { 2224 mtx_lock(&lun->lun_lock); 2225 TAILQ_REMOVE(&lun->tpc_lists, list, links); 2226 mtx_unlock(&lun->lun_lock); 2227 free(list, M_CTL); 2228 ctl_set_sense(ctsio, /*current_error*/ 1, 2229 /*sense_key*/ SSD_KEY_ILLEGAL_REQUEST, 2230 /*asc*/ 0x23, /*ascq*/ 0x04, SSD_ELEM_NONE); 2231 goto done; 2232 } 2233 2234 tpc_process(list); 2235 return (CTL_RETVAL_COMPLETE); 2236 2237 done: 2238 if (ctsio->io_hdr.flags & CTL_FLAG_ALLOCATED) { 2239 free(ctsio->kern_data_ptr, M_CTL); 2240 ctsio->io_hdr.flags &= ~CTL_FLAG_ALLOCATED; 2241 } 2242 ctl_done((union ctl_io *)ctsio); 2243 return (CTL_RETVAL_COMPLETE); 2244 } 2245 2246 int 2247 ctl_receive_rod_token_information(struct ctl_scsiio *ctsio) 2248 { 2249 struct ctl_lun *lun; 2250 struct scsi_receive_rod_token_information *cdb; 2251 struct scsi_receive_copy_status_lid4_data *data; 2252 struct tpc_list *list; 2253 struct tpc_list list_copy; 2254 uint8_t *ptr; 2255 int retval; 2256 int alloc_len, total_len, token_len; 2257 uint32_t list_id; 2258 2259 CTL_DEBUG_PRINT(("ctl_receive_rod_token_information\n")); 2260 2261 cdb = (struct scsi_receive_rod_token_information *)ctsio->cdb; 2262 lun = (struct ctl_lun *)ctsio->io_hdr.ctl_private[CTL_PRIV_LUN].ptr; 2263 2264 retval = CTL_RETVAL_COMPLETE; 2265 2266 list_id = scsi_4btoul(cdb->list_identifier); 2267 mtx_lock(&lun->lun_lock); 2268 list = tpc_find_list(lun, list_id, 2269 ctl_get_initindex(&ctsio->io_hdr.nexus)); 2270 if (list == NULL) { 2271 mtx_unlock(&lun->lun_lock); 2272 ctl_set_invalid_field(ctsio, /*sks_valid*/ 1, 2273 /*command*/ 1, /*field*/ 2, /*bit_valid*/ 0, 2274 /*bit*/ 0); 2275 ctl_done((union ctl_io *)ctsio); 2276 return (retval); 2277 } 2278 list_copy = *list; 2279 if (list->completed) { 2280 TAILQ_REMOVE(&lun->tpc_lists, list, links); 2281 free(list, M_CTL); 2282 } 2283 mtx_unlock(&lun->lun_lock); 2284 2285 token_len = list_copy.res_token_valid ? 2 + sizeof(list_copy.res_token) : 0; 2286 total_len = sizeof(*data) + list_copy.sense_len + 4 + token_len; 2287 alloc_len = scsi_4btoul(cdb->length); 2288 2289 ctsio->kern_data_ptr = malloc(total_len, M_CTL, M_WAITOK | M_ZERO); 2290 2291 ctsio->kern_sg_entries = 0; 2292 2293 if (total_len < alloc_len) { 2294 ctsio->residual = alloc_len - total_len; 2295 ctsio->kern_data_len = total_len; 2296 ctsio->kern_total_len = total_len; 2297 } else { 2298 ctsio->residual = 0; 2299 ctsio->kern_data_len = alloc_len; 2300 ctsio->kern_total_len = alloc_len; 2301 } 2302 ctsio->kern_data_resid = 0; 2303 ctsio->kern_rel_offset = 0; 2304 2305 data = (struct scsi_receive_copy_status_lid4_data *)ctsio->kern_data_ptr; 2306 scsi_ulto4b(sizeof(*data) - 4 + list_copy.sense_len + 2307 4 + token_len, data->available_data); 2308 data->response_to_service_action = list_copy.service_action; 2309 if (list_copy.completed) { 2310 if (list_copy.error) 2311 data->copy_command_status = RCS_CCS_ERROR; 2312 else if (list_copy.abort) 2313 data->copy_command_status = RCS_CCS_ABORTED; 2314 else 2315 data->copy_command_status = RCS_CCS_COMPLETED; 2316 } else 2317 data->copy_command_status = RCS_CCS_INPROG_FG; 2318 scsi_ulto2b(list_copy.curops, data->operation_counter); 2319 scsi_ulto4b(UINT32_MAX, data->estimated_status_update_delay); 2320 data->transfer_count_units = RCS_TC_LBAS; 2321 scsi_u64to8b(list_copy.cursectors, data->transfer_count); 2322 scsi_ulto2b(list_copy.curseg, data->segments_processed); 2323 data->length_of_the_sense_data_field = list_copy.sense_len; 2324 data->sense_data_length = list_copy.sense_len; 2325 memcpy(data->sense_data, &list_copy.sense_data, list_copy.sense_len); 2326 2327 ptr = &data->sense_data[data->length_of_the_sense_data_field]; 2328 scsi_ulto4b(token_len, &ptr[0]); 2329 if (list_copy.res_token_valid) { 2330 scsi_ulto2b(0, &ptr[4]); 2331 memcpy(&ptr[6], list_copy.res_token, sizeof(list_copy.res_token)); 2332 } 2333 /* 2334 printf("RRTI(list=%u) valid=%d\n", 2335 scsi_4btoul(cdb->list_identifier), list_copy.res_token_valid); 2336 */ 2337 ctl_set_success(ctsio); 2338 ctsio->io_hdr.flags |= CTL_FLAG_ALLOCATED; 2339 ctsio->be_move_done = ctl_config_move_done; 2340 ctl_datamove((union ctl_io *)ctsio); 2341 return (retval); 2342 } 2343 2344 int 2345 ctl_report_all_rod_tokens(struct ctl_scsiio *ctsio) 2346 { 2347 struct ctl_softc *softc; 2348 struct ctl_lun *lun; 2349 struct scsi_report_all_rod_tokens *cdb; 2350 struct scsi_report_all_rod_tokens_data *data; 2351 struct tpc_token *token; 2352 int retval; 2353 int alloc_len, total_len, tokens, i; 2354 2355 CTL_DEBUG_PRINT(("ctl_receive_rod_token_information\n")); 2356 2357 cdb = (struct scsi_report_all_rod_tokens *)ctsio->cdb; 2358 lun = (struct ctl_lun *)ctsio->io_hdr.ctl_private[CTL_PRIV_LUN].ptr; 2359 softc = lun->ctl_softc; 2360 2361 retval = CTL_RETVAL_COMPLETE; 2362 2363 tokens = 0; 2364 mtx_lock(&softc->tpc_lock); 2365 TAILQ_FOREACH(token, &softc->tpc_tokens, links) 2366 tokens++; 2367 mtx_unlock(&softc->tpc_lock); 2368 if (tokens > 512) 2369 tokens = 512; 2370 2371 total_len = sizeof(*data) + tokens * 96; 2372 alloc_len = scsi_4btoul(cdb->length); 2373 2374 ctsio->kern_data_ptr = malloc(total_len, M_CTL, M_WAITOK | M_ZERO); 2375 2376 ctsio->kern_sg_entries = 0; 2377 2378 if (total_len < alloc_len) { 2379 ctsio->residual = alloc_len - total_len; 2380 ctsio->kern_data_len = total_len; 2381 ctsio->kern_total_len = total_len; 2382 } else { 2383 ctsio->residual = 0; 2384 ctsio->kern_data_len = alloc_len; 2385 ctsio->kern_total_len = alloc_len; 2386 } 2387 ctsio->kern_data_resid = 0; 2388 ctsio->kern_rel_offset = 0; 2389 2390 data = (struct scsi_report_all_rod_tokens_data *)ctsio->kern_data_ptr; 2391 i = 0; 2392 mtx_lock(&softc->tpc_lock); 2393 TAILQ_FOREACH(token, &softc->tpc_tokens, links) { 2394 if (i >= tokens) 2395 break; 2396 memcpy(&data->rod_management_token_list[i * 96], 2397 token->token, 96); 2398 i++; 2399 } 2400 mtx_unlock(&softc->tpc_lock); 2401 scsi_ulto4b(sizeof(*data) - 4 + i * 96, data->available_data); 2402 /* 2403 printf("RART tokens=%d\n", i); 2404 */ 2405 ctl_set_success(ctsio); 2406 ctsio->io_hdr.flags |= CTL_FLAG_ALLOCATED; 2407 ctsio->be_move_done = ctl_config_move_done; 2408 ctl_datamove((union ctl_io *)ctsio); 2409 return (retval); 2410 } 2411 2412