1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17#include "hw.h"
18#include "msi.h"
19#include "msix.h"
20#include "pci.h"
21#include "range.h"
22
23#define MSIX_CAP_LENGTH 12
24
25
26#define MSIX_CONTROL_OFFSET (PCI_MSIX_FLAGS + 1)
27#define MSIX_ENABLE_MASK (PCI_MSIX_FLAGS_ENABLE >> 8)
28#define MSIX_MASKALL_MASK (PCI_MSIX_FLAGS_MASKALL >> 8)
29
30static MSIMessage msix_get_message(PCIDevice *dev, unsigned vector)
31{
32 uint8_t *table_entry = dev->msix_table + vector * PCI_MSIX_ENTRY_SIZE;
33 MSIMessage msg;
34
35 msg.address = pci_get_quad(table_entry + PCI_MSIX_ENTRY_LOWER_ADDR);
36 msg.data = pci_get_long(table_entry + PCI_MSIX_ENTRY_DATA);
37 return msg;
38}
39
40
41
42
43
44void msix_set_message(PCIDevice *dev, int vector, struct MSIMessage msg)
45{
46 uint8_t *table_entry = dev->msix_table + vector * PCI_MSIX_ENTRY_SIZE;
47
48 pci_set_quad(table_entry + PCI_MSIX_ENTRY_LOWER_ADDR, msg.address);
49 pci_set_long(table_entry + PCI_MSIX_ENTRY_DATA, msg.data);
50 table_entry[PCI_MSIX_ENTRY_VECTOR_CTRL] &= ~PCI_MSIX_ENTRY_CTRL_MASKBIT;
51}
52
53static uint8_t msix_pending_mask(int vector)
54{
55 return 1 << (vector % 8);
56}
57
58static uint8_t *msix_pending_byte(PCIDevice *dev, int vector)
59{
60 return dev->msix_pba + vector / 8;
61}
62
63static int msix_is_pending(PCIDevice *dev, int vector)
64{
65 return *msix_pending_byte(dev, vector) & msix_pending_mask(vector);
66}
67
68static void msix_set_pending(PCIDevice *dev, int vector)
69{
70 *msix_pending_byte(dev, vector) |= msix_pending_mask(vector);
71}
72
73static void msix_clr_pending(PCIDevice *dev, int vector)
74{
75 *msix_pending_byte(dev, vector) &= ~msix_pending_mask(vector);
76}
77
78static bool msix_vector_masked(PCIDevice *dev, int vector, bool fmask)
79{
80 unsigned offset = vector * PCI_MSIX_ENTRY_SIZE + PCI_MSIX_ENTRY_VECTOR_CTRL;
81 return fmask || dev->msix_table[offset] & PCI_MSIX_ENTRY_CTRL_MASKBIT;
82}
83
84static bool msix_is_masked(PCIDevice *dev, int vector)
85{
86 return msix_vector_masked(dev, vector, dev->msix_function_masked);
87}
88
89static void msix_fire_vector_notifier(PCIDevice *dev,
90 unsigned int vector, bool is_masked)
91{
92 MSIMessage msg;
93 int ret;
94
95 if (!dev->msix_vector_use_notifier) {
96 return;
97 }
98 if (is_masked) {
99 dev->msix_vector_release_notifier(dev, vector);
100 } else {
101 msg = msix_get_message(dev, vector);
102 ret = dev->msix_vector_use_notifier(dev, vector, msg);
103 assert(ret >= 0);
104 }
105}
106
107static void msix_handle_mask_update(PCIDevice *dev, int vector, bool was_masked)
108{
109 bool is_masked = msix_is_masked(dev, vector);
110
111 if (is_masked == was_masked) {
112 return;
113 }
114
115 msix_fire_vector_notifier(dev, vector, is_masked);
116
117 if (!is_masked && msix_is_pending(dev, vector)) {
118 msix_clr_pending(dev, vector);
119 msix_notify(dev, vector);
120 }
121}
122
123static void msix_update_function_masked(PCIDevice *dev)
124{
125 dev->msix_function_masked = !msix_enabled(dev) ||
126 (dev->config[dev->msix_cap + MSIX_CONTROL_OFFSET] & MSIX_MASKALL_MASK);
127}
128
129
130void msix_write_config(PCIDevice *dev, uint32_t addr,
131 uint32_t val, int len)
132{
133 unsigned enable_pos = dev->msix_cap + MSIX_CONTROL_OFFSET;
134 int vector;
135 bool was_masked;
136
137 if (!msix_present(dev) || !range_covers_byte(addr, len, enable_pos)) {
138 return;
139 }
140
141 was_masked = dev->msix_function_masked;
142 msix_update_function_masked(dev);
143
144 if (!msix_enabled(dev)) {
145 return;
146 }
147
148 pci_device_deassert_intx(dev);
149
150 if (dev->msix_function_masked == was_masked) {
151 return;
152 }
153
154 for (vector = 0; vector < dev->msix_entries_nr; ++vector) {
155 msix_handle_mask_update(dev, vector,
156 msix_vector_masked(dev, vector, was_masked));
157 }
158}
159
160static uint64_t msix_table_mmio_read(void *opaque, target_phys_addr_t addr,
161 unsigned size)
162{
163 PCIDevice *dev = opaque;
164
165 return pci_get_long(dev->msix_table + addr);
166}
167
168static void msix_table_mmio_write(void *opaque, target_phys_addr_t addr,
169 uint64_t val, unsigned size)
170{
171 PCIDevice *dev = opaque;
172 int vector = addr / PCI_MSIX_ENTRY_SIZE;
173 bool was_masked;
174
175 was_masked = msix_is_masked(dev, vector);
176 pci_set_long(dev->msix_table + addr, val);
177 msix_handle_mask_update(dev, vector, was_masked);
178}
179
180static const MemoryRegionOps msix_table_mmio_ops = {
181 .read = msix_table_mmio_read,
182 .write = msix_table_mmio_write,
183
184 .endianness = DEVICE_NATIVE_ENDIAN,
185 .valid = {
186 .min_access_size = 4,
187 .max_access_size = 4,
188 },
189};
190
191static uint64_t msix_pba_mmio_read(void *opaque, target_phys_addr_t addr,
192 unsigned size)
193{
194 PCIDevice *dev = opaque;
195
196 return pci_get_long(dev->msix_pba + addr);
197}
198
199static const MemoryRegionOps msix_pba_mmio_ops = {
200 .read = msix_pba_mmio_read,
201
202 .endianness = DEVICE_NATIVE_ENDIAN,
203 .valid = {
204 .min_access_size = 4,
205 .max_access_size = 4,
206 },
207};
208
209static void msix_mask_all(struct PCIDevice *dev, unsigned nentries)
210{
211 int vector;
212
213 for (vector = 0; vector < nentries; ++vector) {
214 unsigned offset =
215 vector * PCI_MSIX_ENTRY_SIZE + PCI_MSIX_ENTRY_VECTOR_CTRL;
216 bool was_masked = msix_is_masked(dev, vector);
217
218 dev->msix_table[offset] |= PCI_MSIX_ENTRY_CTRL_MASKBIT;
219 msix_handle_mask_update(dev, vector, was_masked);
220 }
221}
222
223
224int msix_init(struct PCIDevice *dev, unsigned short nentries,
225 MemoryRegion *table_bar, uint8_t table_bar_nr,
226 unsigned table_offset, MemoryRegion *pba_bar,
227 uint8_t pba_bar_nr, unsigned pba_offset, uint8_t cap_pos)
228{
229 int cap;
230 unsigned table_size, pba_size;
231 uint8_t *config;
232
233
234 if (!msi_supported) {
235 return -ENOTSUP;
236 }
237
238 if (nentries < 1 || nentries > PCI_MSIX_FLAGS_QSIZE + 1) {
239 return -EINVAL;
240 }
241
242 table_size = nentries * PCI_MSIX_ENTRY_SIZE;
243 pba_size = QEMU_ALIGN_UP(nentries, 64) / 8;
244
245
246 if ((table_bar_nr == pba_bar_nr &&
247 ranges_overlap(table_offset, table_size, pba_offset, pba_size)) ||
248 table_offset + table_size > memory_region_size(table_bar) ||
249 pba_offset + pba_size > memory_region_size(pba_bar) ||
250 (table_offset | pba_offset) & PCI_MSIX_FLAGS_BIRMASK) {
251 return -EINVAL;
252 }
253
254 cap = pci_add_capability(dev, PCI_CAP_ID_MSIX, cap_pos, MSIX_CAP_LENGTH);
255 if (cap < 0) {
256 return cap;
257 }
258
259 dev->msix_cap = cap;
260 dev->cap_present |= QEMU_PCI_CAP_MSIX;
261 config = dev->config + cap;
262
263 pci_set_word(config + PCI_MSIX_FLAGS, nentries - 1);
264 dev->msix_entries_nr = nentries;
265 dev->msix_function_masked = true;
266
267 pci_set_long(config + PCI_MSIX_TABLE, table_offset | table_bar_nr);
268 pci_set_long(config + PCI_MSIX_PBA, pba_offset | pba_bar_nr);
269
270
271 dev->wmask[cap + MSIX_CONTROL_OFFSET] |= MSIX_ENABLE_MASK |
272 MSIX_MASKALL_MASK;
273
274 dev->msix_table = g_malloc0(table_size);
275 dev->msix_pba = g_malloc0(pba_size);
276 dev->msix_entry_used = g_malloc0(nentries * sizeof *dev->msix_entry_used);
277
278 msix_mask_all(dev, nentries);
279
280 memory_region_init_io(&dev->msix_table_mmio, &msix_table_mmio_ops, dev,
281 "msix-table", table_size);
282 memory_region_add_subregion(table_bar, table_offset, &dev->msix_table_mmio);
283 memory_region_init_io(&dev->msix_pba_mmio, &msix_pba_mmio_ops, dev,
284 "msix-pba", pba_size);
285 memory_region_add_subregion(pba_bar, pba_offset, &dev->msix_pba_mmio);
286
287 return 0;
288}
289
290int msix_init_exclusive_bar(PCIDevice *dev, unsigned short nentries,
291 uint8_t bar_nr)
292{
293 int ret;
294 char *name;
295
296
297
298
299
300
301#define MSIX_EXCLUSIVE_BAR_SIZE 4096
302#define MSIX_EXCLUSIVE_BAR_TABLE_OFFSET 0
303#define MSIX_EXCLUSIVE_BAR_PBA_OFFSET (MSIX_EXCLUSIVE_BAR_SIZE / 2)
304#define MSIX_EXCLUSIVE_CAP_OFFSET 0
305
306 if (nentries * PCI_MSIX_ENTRY_SIZE > MSIX_EXCLUSIVE_BAR_PBA_OFFSET) {
307 return -EINVAL;
308 }
309
310 name = g_strdup_printf("%s-msix", dev->name);
311 memory_region_init(&dev->msix_exclusive_bar, name, MSIX_EXCLUSIVE_BAR_SIZE);
312 g_free(name);
313
314 ret = msix_init(dev, nentries, &dev->msix_exclusive_bar, bar_nr,
315 MSIX_EXCLUSIVE_BAR_TABLE_OFFSET, &dev->msix_exclusive_bar,
316 bar_nr, MSIX_EXCLUSIVE_BAR_PBA_OFFSET,
317 MSIX_EXCLUSIVE_CAP_OFFSET);
318 if (ret) {
319 memory_region_destroy(&dev->msix_exclusive_bar);
320 return ret;
321 }
322
323 pci_register_bar(dev, bar_nr, PCI_BASE_ADDRESS_SPACE_MEMORY,
324 &dev->msix_exclusive_bar);
325
326 return 0;
327}
328
329static void msix_free_irq_entries(PCIDevice *dev)
330{
331 int vector;
332
333 for (vector = 0; vector < dev->msix_entries_nr; ++vector) {
334 dev->msix_entry_used[vector] = 0;
335 msix_clr_pending(dev, vector);
336 }
337}
338
339static void msix_clear_all_vectors(PCIDevice *dev)
340{
341 int vector;
342
343 for (vector = 0; vector < dev->msix_entries_nr; ++vector) {
344 msix_clr_pending(dev, vector);
345 }
346}
347
348
349void msix_uninit(PCIDevice *dev, MemoryRegion *table_bar, MemoryRegion *pba_bar)
350{
351 if (!msix_present(dev)) {
352 return;
353 }
354 pci_del_capability(dev, PCI_CAP_ID_MSIX, MSIX_CAP_LENGTH);
355 dev->msix_cap = 0;
356 msix_free_irq_entries(dev);
357 dev->msix_entries_nr = 0;
358 memory_region_del_subregion(pba_bar, &dev->msix_pba_mmio);
359 memory_region_destroy(&dev->msix_pba_mmio);
360 g_free(dev->msix_pba);
361 dev->msix_pba = NULL;
362 memory_region_del_subregion(table_bar, &dev->msix_table_mmio);
363 memory_region_destroy(&dev->msix_table_mmio);
364 g_free(dev->msix_table);
365 dev->msix_table = NULL;
366 g_free(dev->msix_entry_used);
367 dev->msix_entry_used = NULL;
368 dev->cap_present &= ~QEMU_PCI_CAP_MSIX;
369 return;
370}
371
372void msix_uninit_exclusive_bar(PCIDevice *dev)
373{
374 if (msix_present(dev)) {
375 msix_uninit(dev, &dev->msix_exclusive_bar, &dev->msix_exclusive_bar);
376 memory_region_destroy(&dev->msix_exclusive_bar);
377 }
378}
379
380void msix_save(PCIDevice *dev, QEMUFile *f)
381{
382 unsigned n = dev->msix_entries_nr;
383
384 if (!msix_present(dev)) {
385 return;
386 }
387
388 qemu_put_buffer(f, dev->msix_table, n * PCI_MSIX_ENTRY_SIZE);
389 qemu_put_buffer(f, dev->msix_pba, (n + 7) / 8);
390}
391
392
393void msix_load(PCIDevice *dev, QEMUFile *f)
394{
395 unsigned n = dev->msix_entries_nr;
396 unsigned int vector;
397
398 if (!msix_present(dev)) {
399 return;
400 }
401
402 msix_clear_all_vectors(dev);
403 qemu_get_buffer(f, dev->msix_table, n * PCI_MSIX_ENTRY_SIZE);
404 qemu_get_buffer(f, dev->msix_pba, (n + 7) / 8);
405 msix_update_function_masked(dev);
406
407 for (vector = 0; vector < n; vector++) {
408 msix_handle_mask_update(dev, vector, true);
409 }
410}
411
412
413int msix_present(PCIDevice *dev)
414{
415 return dev->cap_present & QEMU_PCI_CAP_MSIX;
416}
417
418
419int msix_enabled(PCIDevice *dev)
420{
421 return (dev->cap_present & QEMU_PCI_CAP_MSIX) &&
422 (dev->config[dev->msix_cap + MSIX_CONTROL_OFFSET] &
423 MSIX_ENABLE_MASK);
424}
425
426
427void msix_notify(PCIDevice *dev, unsigned vector)
428{
429 MSIMessage msg;
430
431 if (vector >= dev->msix_entries_nr || !dev->msix_entry_used[vector])
432 return;
433 if (msix_is_masked(dev, vector)) {
434 msix_set_pending(dev, vector);
435 return;
436 }
437
438 msg = msix_get_message(dev, vector);
439
440 stl_le_phys(msg.address, msg.data);
441}
442
443void msix_reset(PCIDevice *dev)
444{
445 if (!msix_present(dev)) {
446 return;
447 }
448 msix_clear_all_vectors(dev);
449 dev->config[dev->msix_cap + MSIX_CONTROL_OFFSET] &=
450 ~dev->wmask[dev->msix_cap + MSIX_CONTROL_OFFSET];
451 memset(dev->msix_table, 0, dev->msix_entries_nr * PCI_MSIX_ENTRY_SIZE);
452 memset(dev->msix_pba, 0, QEMU_ALIGN_UP(dev->msix_entries_nr, 64) / 8);
453 msix_mask_all(dev, dev->msix_entries_nr);
454}
455
456
457
458
459
460
461
462
463
464
465int msix_vector_use(PCIDevice *dev, unsigned vector)
466{
467 if (vector >= dev->msix_entries_nr)
468 return -EINVAL;
469 dev->msix_entry_used[vector]++;
470 return 0;
471}
472
473
474void msix_vector_unuse(PCIDevice *dev, unsigned vector)
475{
476 if (vector >= dev->msix_entries_nr || !dev->msix_entry_used[vector]) {
477 return;
478 }
479 if (--dev->msix_entry_used[vector]) {
480 return;
481 }
482 msix_clr_pending(dev, vector);
483}
484
485void msix_unuse_all_vectors(PCIDevice *dev)
486{
487 if (!msix_present(dev)) {
488 return;
489 }
490 msix_free_irq_entries(dev);
491}
492
493unsigned int msix_nr_vectors_allocated(const PCIDevice *dev)
494{
495 return dev->msix_entries_nr;
496}
497
498static int msix_set_notifier_for_vector(PCIDevice *dev, unsigned int vector)
499{
500 MSIMessage msg;
501
502 if (msix_is_masked(dev, vector)) {
503 return 0;
504 }
505 msg = msix_get_message(dev, vector);
506 return dev->msix_vector_use_notifier(dev, vector, msg);
507}
508
509static void msix_unset_notifier_for_vector(PCIDevice *dev, unsigned int vector)
510{
511 if (msix_is_masked(dev, vector)) {
512 return;
513 }
514 dev->msix_vector_release_notifier(dev, vector);
515}
516
517int msix_set_vector_notifiers(PCIDevice *dev,
518 MSIVectorUseNotifier use_notifier,
519 MSIVectorReleaseNotifier release_notifier)
520{
521 int vector, ret;
522
523 assert(use_notifier && release_notifier);
524
525 dev->msix_vector_use_notifier = use_notifier;
526 dev->msix_vector_release_notifier = release_notifier;
527
528 if ((dev->config[dev->msix_cap + MSIX_CONTROL_OFFSET] &
529 (MSIX_ENABLE_MASK | MSIX_MASKALL_MASK)) == MSIX_ENABLE_MASK) {
530 for (vector = 0; vector < dev->msix_entries_nr; vector++) {
531 ret = msix_set_notifier_for_vector(dev, vector);
532 if (ret < 0) {
533 goto undo;
534 }
535 }
536 }
537 return 0;
538
539undo:
540 while (--vector >= 0) {
541 msix_unset_notifier_for_vector(dev, vector);
542 }
543 dev->msix_vector_use_notifier = NULL;
544 dev->msix_vector_release_notifier = NULL;
545 return ret;
546}
547
548void msix_unset_vector_notifiers(PCIDevice *dev)
549{
550 int vector;
551
552 assert(dev->msix_vector_use_notifier &&
553 dev->msix_vector_release_notifier);
554
555 if ((dev->config[dev->msix_cap + MSIX_CONTROL_OFFSET] &
556 (MSIX_ENABLE_MASK | MSIX_MASKALL_MASK)) == MSIX_ENABLE_MASK) {
557 for (vector = 0; vector < dev->msix_entries_nr; vector++) {
558 msix_unset_notifier_for_vector(dev, vector);
559 }
560 }
561 dev->msix_vector_use_notifier = NULL;
562 dev->msix_vector_release_notifier = NULL;
563}
564
