1 /*- 2 * Copyright (c) 2007 Scott Long 3 * All rights reserved. 4 * 5 * Redistribution and use in source and binary forms, with or without 6 * modification, are permitted provided that the following conditions 7 * are met: 8 * 1. Redistributions of source code must retain the above copyright 9 * notice, this list of conditions, and the following disclaimer, 10 * without modification, immediately at the beginning of the file. 11 * 2. The name of the author may not be used to endorse or promote products 12 * derived from this software without specific prior written permission. 13 * 14 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND 15 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 16 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 17 * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE FOR 18 * ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 19 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 20 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 21 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 22 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 23 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 24 * SUCH DAMAGE. 25 */ 26 27 /* 28 * scsi_sg peripheral driver. This driver is meant to implement the Linux 29 * SG passthrough interface for SCSI. 30 */ 31 32 #include <sys/cdefs.h> 33 __FBSDID("$FreeBSD$"); 34 35 #include <sys/param.h> 36 #include <sys/systm.h> 37 #include <sys/kernel.h> 38 #include <sys/types.h> 39 #include <sys/bio.h> 40 #include <sys/malloc.h> 41 #include <sys/fcntl.h> 42 #include <sys/ioccom.h> 43 #include <sys/conf.h> 44 #include <sys/errno.h> 45 #include <sys/devicestat.h> 46 #include <sys/proc.h> 47 #include <sys/uio.h> 48 49 #include <cam/cam.h> 50 #include <cam/cam_ccb.h> 51 #include <cam/cam_periph.h> 52 #include <cam/cam_queue.h> 53 #include <cam/cam_xpt_periph.h> 54 #include <cam/cam_debug.h> 55 #include <cam/cam_sim.h> 56 57 #include <cam/scsi/scsi_all.h> 58 #include <cam/scsi/scsi_message.h> 59 #include <cam/scsi/scsi_sg.h> 60 61 #include <compat/linux/linux_ioctl.h> 62 63 typedef enum { 64 SG_FLAG_OPEN = 0x01, 65 SG_FLAG_LOCKED = 0x02, 66 SG_FLAG_INVALID = 0x04 67 } sg_flags; 68 69 typedef enum { 70 SG_STATE_NORMAL 71 } sg_state; 72 73 typedef enum { 74 SG_RDWR_FREE, 75 SG_RDWR_INPROG, 76 SG_RDWR_DONE 77 } sg_rdwr_state; 78 79 typedef enum { 80 SG_CCB_RDWR_IO, 81 SG_CCB_WAITING 82 } sg_ccb_types; 83 84 #define ccb_type ppriv_field0 85 #define ccb_rdwr ppriv_ptr1 86 87 struct sg_rdwr { 88 TAILQ_ENTRY(sg_rdwr) rdwr_link; 89 int tag; 90 int state; 91 int buf_len; 92 char *buf; 93 union ccb *ccb; 94 union { 95 struct sg_header hdr; 96 struct sg_io_hdr io_hdr; 97 } hdr; 98 }; 99 100 struct sg_softc { 101 sg_state state; 102 sg_flags flags; 103 struct devstat *device_stats; 104 TAILQ_HEAD(, sg_rdwr) rdwr_done; 105 struct cdev *dev; 106 int sg_timeout; 107 int sg_user_timeout; 108 uint8_t pd_type; 109 union ccb saved_ccb; 110 }; 111 112 static d_open_t sgopen; 113 static d_close_t sgclose; 114 static d_ioctl_t sgioctl; 115 static d_write_t sgwrite; 116 static d_read_t sgread; 117 118 static periph_init_t sginit; 119 static periph_ctor_t sgregister; 120 static periph_oninv_t sgoninvalidate; 121 static periph_dtor_t sgcleanup; 122 static periph_start_t sgstart; 123 static void sgasync(void *callback_arg, uint32_t code, 124 struct cam_path *path, void *arg); 125 static void sgdone(struct cam_periph *periph, union ccb *done_ccb); 126 static int sgsendccb(struct cam_periph *periph, union ccb *ccb); 127 static int sgsendrdwr(struct cam_periph *periph, union ccb *ccb); 128 static int sgerror(union ccb *ccb, uint32_t cam_flags, 129 uint32_t sense_flags); 130 static void sg_scsiio_status(struct ccb_scsiio *csio, 131 u_short *hoststat, u_short *drvstat); 132 133 static int scsi_group_len(u_char cmd); 134 135 static struct periph_driver sgdriver = 136 { 137 sginit, "sg", 138 TAILQ_HEAD_INITIALIZER(sgdriver.units), /* gen */ 0 139 }; 140 PERIPHDRIVER_DECLARE(sg, sgdriver); 141 142 static struct cdevsw sg_cdevsw = { 143 .d_version = D_VERSION, 144 .d_flags = D_NEEDGIANT, 145 .d_open = sgopen, 146 .d_close = sgclose, 147 .d_ioctl = sgioctl, 148 .d_write = sgwrite, 149 .d_read = sgread, 150 .d_name = "sg", 151 }; 152 153 static int sg_version = 30125; 154 155 static void 156 sginit(void) 157 { 158 cam_status status; 159 160 /* 161 * Install a global async callback. This callback will receive aync 162 * callbacks like "new device found". 163 */ 164 status = xpt_register_async(AC_FOUND_DEVICE, sgasync, NULL, NULL); 165 166 if (status != CAM_REQ_CMP) { 167 printf("sg: Failed to attach master async callbac " 168 "due to status 0x%x!\n", status); 169 } 170 } 171 172 static void 173 sgoninvalidate(struct cam_periph *periph) 174 { 175 struct sg_softc *softc; 176 177 softc = (struct sg_softc *)periph->softc; 178 179 /* 180 * Deregister any async callbacks. 181 */ 182 xpt_register_async(0, sgasync, periph, periph->path); 183 184 softc->flags |= SG_FLAG_INVALID; 185 186 /* 187 * XXX Return all queued I/O with ENXIO. 188 * XXX Handle any transactions queued to the card 189 * with XPT_ABORT_CCB. 190 */ 191 192 if (bootverbose) { 193 xpt_print(periph->path, "lost device\n"); 194 } 195 } 196 197 static void 198 sgcleanup(struct cam_periph *periph) 199 { 200 struct sg_softc *softc; 201 202 softc = (struct sg_softc *)periph->softc; 203 if (bootverbose) 204 xpt_print(periph->path, "removing device entry\n"); 205 devstat_remove_entry(softc->device_stats); 206 cam_periph_unlock(periph); 207 destroy_dev(softc->dev); 208 cam_periph_lock(periph); 209 free(softc, M_DEVBUF); 210 } 211 212 static void 213 sgasync(void *callback_arg, uint32_t code, struct cam_path *path, void *arg) 214 { 215 struct cam_periph *periph; 216 217 periph = (struct cam_periph *)callback_arg; 218 219 switch (code) { 220 case AC_FOUND_DEVICE: 221 { 222 struct ccb_getdev *cgd; 223 cam_status status; 224 225 cgd = (struct ccb_getdev *)arg; 226 if (cgd == NULL) 227 break; 228 229 if (cgd->protocol != PROTO_SCSI) 230 break; 231 232 /* 233 * Allocate a peripheral instance for this device and 234 * start the probe process. 235 */ 236 status = cam_periph_alloc(sgregister, sgoninvalidate, 237 sgcleanup, sgstart, "sg", 238 CAM_PERIPH_BIO, cgd->ccb_h.path, 239 sgasync, AC_FOUND_DEVICE, cgd); 240 if ((status != CAM_REQ_CMP) && (status != CAM_REQ_INPROG)) { 241 const struct cam_status_entry *entry; 242 243 entry = cam_fetch_status_entry(status); 244 printf("sgasync: Unable to attach new device " 245 "due to status %#x: %s\n", status, entry ? 246 entry->status_text : "Unknown"); 247 } 248 break; 249 } 250 default: 251 cam_periph_async(periph, code, path, arg); 252 break; 253 } 254 } 255 256 static cam_status 257 sgregister(struct cam_periph *periph, void *arg) 258 { 259 struct sg_softc *softc; 260 struct ccb_getdev *cgd; 261 struct ccb_pathinq cpi; 262 int no_tags; 263 264 cgd = (struct ccb_getdev *)arg; 265 if (periph == NULL) { 266 printf("sgregister: periph was NULL!!\n"); 267 return (CAM_REQ_CMP_ERR); 268 } 269 270 if (cgd == NULL) { 271 printf("sgregister: no getdev CCB, can't register device\n"); 272 return (CAM_REQ_CMP_ERR); 273 } 274 275 softc = malloc(sizeof(*softc), M_DEVBUF, M_ZERO | M_NOWAIT); 276 if (softc == NULL) { 277 printf("sgregister: Unable to allocate softc\n"); 278 return (CAM_REQ_CMP_ERR); 279 } 280 281 softc->state = SG_STATE_NORMAL; 282 softc->pd_type = SID_TYPE(&cgd->inq_data); 283 softc->sg_timeout = SG_DEFAULT_TIMEOUT / SG_DEFAULT_HZ * hz; 284 softc->sg_user_timeout = SG_DEFAULT_TIMEOUT; 285 TAILQ_INIT(&softc->rdwr_done); 286 periph->softc = softc; 287 288 bzero(&cpi, sizeof(cpi)); 289 xpt_setup_ccb(&cpi.ccb_h, periph->path, CAM_PRIORITY_NORMAL); 290 cpi.ccb_h.func_code = XPT_PATH_INQ; 291 xpt_action((union ccb *)&cpi); 292 293 /* 294 * We pass in 0 for all blocksize, since we don't know what the 295 * blocksize of the device is, if it even has a blocksize. 296 */ 297 cam_periph_unlock(periph); 298 no_tags = (cgd->inq_data.flags & SID_CmdQue) == 0; 299 softc->device_stats = devstat_new_entry("sg", 300 periph->unit_number, 0, 301 DEVSTAT_NO_BLOCKSIZE 302 | (no_tags ? DEVSTAT_NO_ORDERED_TAGS : 0), 303 softc->pd_type | 304 XPORT_DEVSTAT_TYPE(cpi.transport) | 305 DEVSTAT_TYPE_PASS, 306 DEVSTAT_PRIORITY_PASS); 307 308 /* Register the device */ 309 softc->dev = make_dev(&sg_cdevsw, periph->unit_number, 310 UID_ROOT, GID_OPERATOR, 0600, "%s%d", 311 periph->periph_name, periph->unit_number); 312 if (periph->unit_number < 26) { 313 (void)make_dev_alias(softc->dev, "sg%c", 314 periph->unit_number + 'a'); 315 } else { 316 (void)make_dev_alias(softc->dev, "sg%c%c", 317 ((periph->unit_number / 26) - 1) + 'a', 318 (periph->unit_number % 26) + 'a'); 319 } 320 cam_periph_lock(periph); 321 softc->dev->si_drv1 = periph; 322 323 /* 324 * Add as async callback so that we get 325 * notified if this device goes away. 326 */ 327 xpt_register_async(AC_LOST_DEVICE, sgasync, periph, periph->path); 328 329 if (bootverbose) 330 xpt_announce_periph(periph, NULL); 331 332 return (CAM_REQ_CMP); 333 } 334 335 static void 336 sgstart(struct cam_periph *periph, union ccb *start_ccb) 337 { 338 struct sg_softc *softc; 339 340 softc = (struct sg_softc *)periph->softc; 341 342 switch (softc->state) { 343 case SG_STATE_NORMAL: 344 start_ccb->ccb_h.ccb_type = SG_CCB_WAITING; 345 SLIST_INSERT_HEAD(&periph->ccb_list, &start_ccb->ccb_h, 346 periph_links.sle); 347 periph->immediate_priority = CAM_PRIORITY_NONE; 348 wakeup(&periph->ccb_list); 349 break; 350 } 351 } 352 353 static void 354 sgdone(struct cam_periph *periph, union ccb *done_ccb) 355 { 356 struct sg_softc *softc; 357 struct ccb_scsiio *csio; 358 359 softc = (struct sg_softc *)periph->softc; 360 csio = &done_ccb->csio; 361 switch (csio->ccb_h.ccb_type) { 362 case SG_CCB_WAITING: 363 /* Caller will release the CCB */ 364 wakeup(&done_ccb->ccb_h.cbfcnp); 365 return; 366 case SG_CCB_RDWR_IO: 367 { 368 struct sg_rdwr *rdwr; 369 int state; 370 371 devstat_end_transaction(softc->device_stats, 372 csio->dxfer_len, 373 csio->tag_action & 0xf, 374 ((csio->ccb_h.flags & CAM_DIR_MASK) == 375 CAM_DIR_NONE) ? DEVSTAT_NO_DATA : 376 (csio->ccb_h.flags & CAM_DIR_OUT) ? 377 DEVSTAT_WRITE : DEVSTAT_READ, 378 NULL, NULL); 379 380 rdwr = done_ccb->ccb_h.ccb_rdwr; 381 state = rdwr->state; 382 rdwr->state = SG_RDWR_DONE; 383 wakeup(rdwr); 384 break; 385 } 386 default: 387 panic("unknown sg CCB type"); 388 } 389 } 390 391 static int 392 sgopen(struct cdev *dev, int flags, int fmt, struct thread *td) 393 { 394 struct cam_periph *periph; 395 struct sg_softc *softc; 396 int error = 0; 397 398 periph = (struct cam_periph *)dev->si_drv1; 399 if (periph == NULL) 400 return (ENXIO); 401 402 if (cam_periph_acquire(periph) != CAM_REQ_CMP) 403 return (ENXIO); 404 405 /* 406 * Don't allow access when we're running at a high securelevel. 407 */ 408 error = securelevel_gt(td->td_ucred, 1); 409 if (error) { 410 cam_periph_release(periph); 411 return (error); 412 } 413 414 cam_periph_lock(periph); 415 416 softc = (struct sg_softc *)periph->softc; 417 if (softc->flags & SG_FLAG_INVALID) { 418 cam_periph_unlock(periph); 419 cam_periph_release(periph); 420 return (ENXIO); 421 } 422 423 if ((softc->flags & SG_FLAG_OPEN) == 0) { 424 softc->flags |= SG_FLAG_OPEN; 425 cam_periph_unlock(periph); 426 } else { 427 /* Device closes aren't symmetrical, fix up the refcount. */ 428 cam_periph_unlock(periph); 429 cam_periph_release(periph); 430 } 431 432 return (error); 433 } 434 435 static int 436 sgclose(struct cdev *dev, int flag, int fmt, struct thread *td) 437 { 438 struct cam_periph *periph; 439 struct sg_softc *softc; 440 441 periph = (struct cam_periph *)dev->si_drv1; 442 if (periph == NULL) 443 return (ENXIO); 444 445 cam_periph_lock(periph); 446 447 softc = (struct sg_softc *)periph->softc; 448 softc->flags &= ~SG_FLAG_OPEN; 449 450 cam_periph_unlock(periph); 451 cam_periph_release(periph); 452 453 return (0); 454 } 455 456 static int 457 sgioctl(struct cdev *dev, u_long cmd, caddr_t arg, int flag, struct thread *td) 458 { 459 union ccb *ccb; 460 struct ccb_scsiio *csio; 461 struct cam_periph *periph; 462 struct sg_softc *softc; 463 struct sg_io_hdr req; 464 int dir, error; 465 466 periph = (struct cam_periph *)dev->si_drv1; 467 if (periph == NULL) 468 return (ENXIO); 469 470 cam_periph_lock(periph); 471 472 softc = (struct sg_softc *)periph->softc; 473 error = 0; 474 475 switch (cmd) { 476 case LINUX_SCSI_GET_BUS_NUMBER: { 477 int busno; 478 479 busno = xpt_path_path_id(periph->path); 480 error = copyout(&busno, arg, sizeof(busno)); 481 break; 482 } 483 case LINUX_SCSI_GET_IDLUN: { 484 struct scsi_idlun idlun; 485 struct cam_sim *sim; 486 487 idlun.dev_id = xpt_path_target_id(periph->path); 488 sim = xpt_path_sim(periph->path); 489 idlun.host_unique_id = sim->unit_number; 490 error = copyout(&idlun, arg, sizeof(idlun)); 491 break; 492 } 493 case SG_GET_VERSION_NUM: 494 case LINUX_SG_GET_VERSION_NUM: 495 error = copyout(&sg_version, arg, sizeof(sg_version)); 496 break; 497 case SG_SET_TIMEOUT: 498 case LINUX_SG_SET_TIMEOUT: { 499 u_int user_timeout; 500 501 error = copyin(arg, &user_timeout, sizeof(u_int)); 502 if (error == 0) { 503 softc->sg_user_timeout = user_timeout; 504 softc->sg_timeout = user_timeout / SG_DEFAULT_HZ * hz; 505 } 506 break; 507 } 508 case SG_GET_TIMEOUT: 509 case LINUX_SG_GET_TIMEOUT: 510 /* 511 * The value is returned directly to the syscall. 512 */ 513 td->td_retval[0] = softc->sg_user_timeout; 514 error = 0; 515 break; 516 case SG_IO: 517 case LINUX_SG_IO: 518 error = copyin(arg, &req, sizeof(req)); 519 if (error) 520 break; 521 522 if (req.cmd_len > IOCDBLEN) { 523 error = EINVAL; 524 break; 525 } 526 527 if (req.iovec_count != 0) { 528 error = EOPNOTSUPP; 529 break; 530 } 531 532 ccb = cam_periph_getccb(periph, CAM_PRIORITY_NORMAL); 533 csio = &ccb->csio; 534 535 error = copyin(req.cmdp, &csio->cdb_io.cdb_bytes, 536 req.cmd_len); 537 if (error) { 538 xpt_release_ccb(ccb); 539 break; 540 } 541 542 switch(req.dxfer_direction) { 543 case SG_DXFER_TO_DEV: 544 dir = CAM_DIR_OUT; 545 break; 546 case SG_DXFER_FROM_DEV: 547 dir = CAM_DIR_IN; 548 break; 549 case SG_DXFER_TO_FROM_DEV: 550 dir = CAM_DIR_IN | CAM_DIR_OUT; 551 break; 552 case SG_DXFER_NONE: 553 default: 554 dir = CAM_DIR_NONE; 555 break; 556 } 557 558 cam_fill_csio(csio, 559 /*retries*/1, 560 sgdone, 561 dir|CAM_DEV_QFRZDIS, 562 MSG_SIMPLE_Q_TAG, 563 req.dxferp, 564 req.dxfer_len, 565 req.mx_sb_len, 566 req.cmd_len, 567 req.timeout); 568 569 error = sgsendccb(periph, ccb); 570 if (error) { 571 req.host_status = DID_ERROR; 572 req.driver_status = DRIVER_INVALID; 573 xpt_release_ccb(ccb); 574 break; 575 } 576 577 req.status = csio->scsi_status; 578 req.masked_status = (csio->scsi_status >> 1) & 0x7f; 579 sg_scsiio_status(csio, &req.host_status, &req.driver_status); 580 req.resid = csio->resid; 581 req.duration = csio->ccb_h.timeout; 582 req.info = 0; 583 584 error = copyout(&req, arg, sizeof(req)); 585 if ((error == 0) && (csio->ccb_h.status & CAM_AUTOSNS_VALID) 586 && (req.sbp != NULL)) { 587 req.sb_len_wr = req.mx_sb_len - csio->sense_resid; 588 error = copyout(&csio->sense_data, req.sbp, 589 req.sb_len_wr); 590 } 591 592 xpt_release_ccb(ccb); 593 break; 594 595 case SG_GET_RESERVED_SIZE: 596 case LINUX_SG_GET_RESERVED_SIZE: { 597 int size = 32768; 598 599 error = copyout(&size, arg, sizeof(size)); 600 break; 601 } 602 603 case SG_GET_SCSI_ID: 604 case LINUX_SG_GET_SCSI_ID: 605 { 606 struct sg_scsi_id id; 607 608 id.host_no = cam_sim_path(xpt_path_sim(periph->path)); 609 id.channel = xpt_path_path_id(periph->path); 610 id.scsi_id = xpt_path_target_id(periph->path); 611 id.lun = xpt_path_lun_id(periph->path); 612 id.scsi_type = softc->pd_type; 613 id.h_cmd_per_lun = 1; 614 id.d_queue_depth = 1; 615 id.unused[0] = 0; 616 id.unused[1] = 0; 617 618 error = copyout(&id, arg, sizeof(id)); 619 break; 620 } 621 622 case SG_EMULATED_HOST: 623 case SG_SET_TRANSFORM: 624 case SG_GET_TRANSFORM: 625 case SG_GET_NUM_WAITING: 626 case SG_SCSI_RESET: 627 case SG_GET_REQUEST_TABLE: 628 case SG_SET_KEEP_ORPHAN: 629 case SG_GET_KEEP_ORPHAN: 630 case SG_GET_ACCESS_COUNT: 631 case SG_SET_FORCE_LOW_DMA: 632 case SG_GET_LOW_DMA: 633 case SG_GET_SG_TABLESIZE: 634 case SG_SET_FORCE_PACK_ID: 635 case SG_GET_PACK_ID: 636 case SG_SET_RESERVED_SIZE: 637 case SG_GET_COMMAND_Q: 638 case SG_SET_COMMAND_Q: 639 case SG_SET_DEBUG: 640 case SG_NEXT_CMD_LEN: 641 case LINUX_SG_EMULATED_HOST: 642 case LINUX_SG_SET_TRANSFORM: 643 case LINUX_SG_GET_TRANSFORM: 644 case LINUX_SG_GET_NUM_WAITING: 645 case LINUX_SG_SCSI_RESET: 646 case LINUX_SG_GET_REQUEST_TABLE: 647 case LINUX_SG_SET_KEEP_ORPHAN: 648 case LINUX_SG_GET_KEEP_ORPHAN: 649 case LINUX_SG_GET_ACCESS_COUNT: 650 case LINUX_SG_SET_FORCE_LOW_DMA: 651 case LINUX_SG_GET_LOW_DMA: 652 case LINUX_SG_GET_SG_TABLESIZE: 653 case LINUX_SG_SET_FORCE_PACK_ID: 654 case LINUX_SG_GET_PACK_ID: 655 case LINUX_SG_SET_RESERVED_SIZE: 656 case LINUX_SG_GET_COMMAND_Q: 657 case LINUX_SG_SET_COMMAND_Q: 658 case LINUX_SG_SET_DEBUG: 659 case LINUX_SG_NEXT_CMD_LEN: 660 default: 661 #ifdef CAMDEBUG 662 printf("sgioctl: rejecting cmd 0x%lx\n", cmd); 663 #endif 664 error = ENODEV; 665 break; 666 } 667 668 cam_periph_unlock(periph); 669 return (error); 670 } 671 672 static int 673 sgwrite(struct cdev *dev, struct uio *uio, int ioflag) 674 { 675 union ccb *ccb; 676 struct cam_periph *periph; 677 struct ccb_scsiio *csio; 678 struct sg_softc *sc; 679 struct sg_header *hdr; 680 struct sg_rdwr *rdwr; 681 u_char cdb_cmd; 682 char *buf; 683 int error = 0, cdb_len, buf_len, dir; 684 685 periph = dev->si_drv1; 686 rdwr = malloc(sizeof(*rdwr), M_DEVBUF, M_WAITOK | M_ZERO); 687 hdr = &rdwr->hdr.hdr; 688 689 /* Copy in the header block and sanity check it */ 690 if (uio->uio_resid < sizeof(*hdr)) { 691 error = EINVAL; 692 goto out_hdr; 693 } 694 error = uiomove(hdr, sizeof(*hdr), uio); 695 if (error) 696 goto out_hdr; 697 698 ccb = xpt_alloc_ccb(); 699 if (ccb == NULL) { 700 error = ENOMEM; 701 goto out_hdr; 702 } 703 csio = &ccb->csio; 704 705 /* 706 * Copy in the CDB block. The designers of the interface didn't 707 * bother to provide a size for this in the header, so we have to 708 * figure it out ourselves. 709 */ 710 if (uio->uio_resid < 1) 711 goto out_ccb; 712 error = uiomove(&cdb_cmd, 1, uio); 713 if (error) 714 goto out_ccb; 715 if (hdr->twelve_byte) 716 cdb_len = 12; 717 else 718 cdb_len = scsi_group_len(cdb_cmd); 719 /* 720 * We've already read the first byte of the CDB and advanced the uio 721 * pointer. Just read the rest. 722 */ 723 csio->cdb_io.cdb_bytes[0] = cdb_cmd; 724 error = uiomove(&csio->cdb_io.cdb_bytes[1], cdb_len - 1, uio); 725 if (error) 726 goto out_ccb; 727 728 /* 729 * Now set up the data block. Again, the designers didn't bother 730 * to make this reliable. 731 */ 732 buf_len = uio->uio_resid; 733 if (buf_len != 0) { 734 buf = malloc(buf_len, M_DEVBUF, M_WAITOK | M_ZERO); 735 error = uiomove(buf, buf_len, uio); 736 if (error) 737 goto out_buf; 738 dir = CAM_DIR_OUT; 739 } else if (hdr->reply_len != 0) { 740 buf = malloc(hdr->reply_len, M_DEVBUF, M_WAITOK | M_ZERO); 741 buf_len = hdr->reply_len; 742 dir = CAM_DIR_IN; 743 } else { 744 buf = NULL; 745 buf_len = 0; 746 dir = CAM_DIR_NONE; 747 } 748 749 cam_periph_lock(periph); 750 sc = periph->softc; 751 xpt_setup_ccb(&ccb->ccb_h, periph->path, CAM_PRIORITY_NORMAL); 752 cam_fill_csio(csio, 753 /*retries*/1, 754 sgdone, 755 dir|CAM_DEV_QFRZDIS, 756 MSG_SIMPLE_Q_TAG, 757 buf, 758 buf_len, 759 SG_MAX_SENSE, 760 cdb_len, 761 sc->sg_timeout); 762 763 /* 764 * Send off the command and hope that it works. This path does not 765 * go through sgstart because the I/O is supposed to be asynchronous. 766 */ 767 rdwr->buf = buf; 768 rdwr->buf_len = buf_len; 769 rdwr->tag = hdr->pack_id; 770 rdwr->ccb = ccb; 771 rdwr->state = SG_RDWR_INPROG; 772 ccb->ccb_h.ccb_rdwr = rdwr; 773 ccb->ccb_h.ccb_type = SG_CCB_RDWR_IO; 774 TAILQ_INSERT_TAIL(&sc->rdwr_done, rdwr, rdwr_link); 775 error = sgsendrdwr(periph, ccb); 776 cam_periph_unlock(periph); 777 return (error); 778 779 out_buf: 780 free(buf, M_DEVBUF); 781 out_ccb: 782 xpt_free_ccb(ccb); 783 out_hdr: 784 free(rdwr, M_DEVBUF); 785 return (error); 786 } 787 788 static int 789 sgread(struct cdev *dev, struct uio *uio, int ioflag) 790 { 791 struct ccb_scsiio *csio; 792 struct cam_periph *periph; 793 struct sg_softc *sc; 794 struct sg_header *hdr; 795 struct sg_rdwr *rdwr; 796 u_short hstat, dstat; 797 int error, pack_len, reply_len, pack_id; 798 799 periph = dev->si_drv1; 800 801 /* XXX The pack len field needs to be updated and written out instead 802 * of discarded. Not sure how to do that. 803 */ 804 uio->uio_rw = UIO_WRITE; 805 if ((error = uiomove(&pack_len, 4, uio)) != 0) 806 return (error); 807 if ((error = uiomove(&reply_len, 4, uio)) != 0) 808 return (error); 809 if ((error = uiomove(&pack_id, 4, uio)) != 0) 810 return (error); 811 uio->uio_rw = UIO_READ; 812 813 cam_periph_lock(periph); 814 sc = periph->softc; 815 search: 816 TAILQ_FOREACH(rdwr, &sc->rdwr_done, rdwr_link) { 817 if (rdwr->tag == pack_id) 818 break; 819 } 820 if ((rdwr == NULL) || (rdwr->state != SG_RDWR_DONE)) { 821 if (msleep(rdwr, periph->sim->mtx, PCATCH, "sgread", 0) == ERESTART) 822 return (EAGAIN); 823 goto search; 824 } 825 TAILQ_REMOVE(&sc->rdwr_done, rdwr, rdwr_link); 826 cam_periph_unlock(periph); 827 828 hdr = &rdwr->hdr.hdr; 829 csio = &rdwr->ccb->csio; 830 sg_scsiio_status(csio, &hstat, &dstat); 831 hdr->host_status = hstat; 832 hdr->driver_status = dstat; 833 hdr->target_status = csio->scsi_status >> 1; 834 835 switch (hstat) { 836 case DID_OK: 837 case DID_PASSTHROUGH: 838 case DID_SOFT_ERROR: 839 hdr->result = 0; 840 break; 841 case DID_NO_CONNECT: 842 case DID_BUS_BUSY: 843 case DID_TIME_OUT: 844 hdr->result = EBUSY; 845 break; 846 case DID_BAD_TARGET: 847 case DID_ABORT: 848 case DID_PARITY: 849 case DID_RESET: 850 case DID_BAD_INTR: 851 case DID_ERROR: 852 default: 853 hdr->result = EIO; 854 break; 855 } 856 857 if (dstat == DRIVER_SENSE) { 858 bcopy(&csio->sense_data, hdr->sense_buffer, 859 min(csio->sense_len, SG_MAX_SENSE)); 860 #ifdef CAMDEBUG 861 scsi_sense_print(csio); 862 #endif 863 } 864 865 error = uiomove(&hdr->result, sizeof(*hdr) - 866 offsetof(struct sg_header, result), uio); 867 if ((error == 0) && (hdr->result == 0)) 868 error = uiomove(rdwr->buf, rdwr->buf_len, uio); 869 870 cam_periph_lock(periph); 871 xpt_free_ccb(rdwr->ccb); 872 cam_periph_unlock(periph); 873 free(rdwr->buf, M_DEVBUF); 874 free(rdwr, M_DEVBUF); 875 return (error); 876 } 877 878 static int 879 sgsendccb(struct cam_periph *periph, union ccb *ccb) 880 { 881 struct sg_softc *softc; 882 struct cam_periph_map_info mapinfo; 883 int error, need_unmap = 0; 884 885 softc = periph->softc; 886 if (((ccb->ccb_h.flags & CAM_DIR_MASK) != CAM_DIR_NONE) 887 && (ccb->csio.data_ptr != NULL)) { 888 bzero(&mapinfo, sizeof(mapinfo)); 889 890 /* 891 * cam_periph_mapmem calls into proc and vm functions that can 892 * sleep as well as trigger I/O, so we can't hold the lock. 893 * Dropping it here is reasonably safe. 894 */ 895 cam_periph_unlock(periph); 896 error = cam_periph_mapmem(ccb, &mapinfo); 897 cam_periph_lock(periph); 898 if (error) 899 return (error); 900 need_unmap = 1; 901 } 902 903 error = cam_periph_runccb(ccb, 904 sgerror, 905 CAM_RETRY_SELTO, 906 SF_RETRY_UA, 907 softc->device_stats); 908 909 if (need_unmap) 910 cam_periph_unmapmem(ccb, &mapinfo); 911 912 return (error); 913 } 914 915 static int 916 sgsendrdwr(struct cam_periph *periph, union ccb *ccb) 917 { 918 struct sg_softc *softc; 919 920 softc = periph->softc; 921 devstat_start_transaction(softc->device_stats, NULL); 922 xpt_action(ccb); 923 return (0); 924 } 925 926 static int 927 sgerror(union ccb *ccb, uint32_t cam_flags, uint32_t sense_flags) 928 { 929 struct cam_periph *periph; 930 struct sg_softc *softc; 931 932 periph = xpt_path_periph(ccb->ccb_h.path); 933 softc = (struct sg_softc *)periph->softc; 934 935 return (cam_periph_error(ccb, cam_flags, sense_flags, 936 &softc->saved_ccb)); 937 } 938 939 static void 940 sg_scsiio_status(struct ccb_scsiio *csio, u_short *hoststat, u_short *drvstat) 941 { 942 int status; 943 944 status = csio->ccb_h.status; 945 946 switch (status & CAM_STATUS_MASK) { 947 case CAM_REQ_CMP: 948 *hoststat = DID_OK; 949 *drvstat = 0; 950 break; 951 case CAM_REQ_CMP_ERR: 952 *hoststat = DID_ERROR; 953 *drvstat = 0; 954 break; 955 case CAM_REQ_ABORTED: 956 *hoststat = DID_ABORT; 957 *drvstat = 0; 958 break; 959 case CAM_REQ_INVALID: 960 *hoststat = DID_ERROR; 961 *drvstat = DRIVER_INVALID; 962 break; 963 case CAM_DEV_NOT_THERE: 964 *hoststat = DID_BAD_TARGET; 965 *drvstat = 0; 966 break; 967 case CAM_SEL_TIMEOUT: 968 *hoststat = DID_NO_CONNECT; 969 *drvstat = 0; 970 break; 971 case CAM_CMD_TIMEOUT: 972 *hoststat = DID_TIME_OUT; 973 *drvstat = 0; 974 break; 975 case CAM_SCSI_STATUS_ERROR: 976 *hoststat = DID_ERROR; 977 *drvstat = 0; 978 break; 979 case CAM_SCSI_BUS_RESET: 980 *hoststat = DID_RESET; 981 *drvstat = 0; 982 break; 983 case CAM_UNCOR_PARITY: 984 *hoststat = DID_PARITY; 985 *drvstat = 0; 986 break; 987 case CAM_SCSI_BUSY: 988 *hoststat = DID_BUS_BUSY; 989 *drvstat = 0; 990 break; 991 default: 992 *hoststat = DID_ERROR; 993 *drvstat = DRIVER_ERROR; 994 } 995 996 if (status & CAM_AUTOSNS_VALID) 997 *drvstat = DRIVER_SENSE; 998 } 999 1000 static int 1001 scsi_group_len(u_char cmd) 1002 { 1003 int len[] = {6, 10, 10, 12, 12, 12, 10, 10}; 1004 int group; 1005 1006 group = (cmd >> 5) & 0x7; 1007 return (len[group]); 1008 } 1009 1010