1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22#include "qemu/osdep.h"
23#include "qapi/error.h"
24#include "hw/hw.h"
25#include "qemu/log.h"
26#include "sysemu/sysemu.h"
27#include "hw/boards.h"
28#include "hw/loader.h"
29#include "elf.h"
30#include "hw/sysbus.h"
31#include "sysemu/kvm.h"
32#include "sysemu/device_tree.h"
33#include "kvm_ppc.h"
34
35#include "hw/ppc/spapr.h"
36#include "hw/ppc/spapr_vio.h"
37#include "hw/ppc/xics.h"
38
39#include <libfdt.h>
40
41
42
43#ifdef DEBUG_SPAPR
44#define DPRINTF(fmt, ...) \
45 do { fprintf(stderr, fmt, ## __VA_ARGS__); } while (0)
46#else
47#define DPRINTF(fmt, ...) \
48 do { } while (0)
49#endif
50
51static Property spapr_vio_props[] = {
52 DEFINE_PROP_UINT32("irq", VIOsPAPRDevice, irq, 0), \
53 DEFINE_PROP_END_OF_LIST(),
54};
55
56static char *spapr_vio_get_dev_name(DeviceState *qdev)
57{
58 VIOsPAPRDevice *dev = VIO_SPAPR_DEVICE(qdev);
59 VIOsPAPRDeviceClass *pc = VIO_SPAPR_DEVICE_GET_CLASS(dev);
60
61
62 return g_strdup_printf("%s@%x", pc->dt_name, dev->reg);
63}
64
65static void spapr_vio_bus_class_init(ObjectClass *klass, void *data)
66{
67 BusClass *k = BUS_CLASS(klass);
68
69 k->get_dev_path = spapr_vio_get_dev_name;
70 k->get_fw_dev_path = spapr_vio_get_dev_name;
71}
72
73static const TypeInfo spapr_vio_bus_info = {
74 .name = TYPE_SPAPR_VIO_BUS,
75 .parent = TYPE_BUS,
76 .class_init = spapr_vio_bus_class_init,
77 .instance_size = sizeof(VIOsPAPRBus),
78};
79
80VIOsPAPRDevice *spapr_vio_find_by_reg(VIOsPAPRBus *bus, uint32_t reg)
81{
82 BusChild *kid;
83 VIOsPAPRDevice *dev = NULL;
84
85 QTAILQ_FOREACH(kid, &bus->bus.children, sibling) {
86 dev = (VIOsPAPRDevice *)kid->child;
87 if (dev->reg == reg) {
88 return dev;
89 }
90 }
91
92 return NULL;
93}
94
95static int vio_make_devnode(VIOsPAPRDevice *dev,
96 void *fdt)
97{
98 VIOsPAPRDeviceClass *pc = VIO_SPAPR_DEVICE_GET_CLASS(dev);
99 int vdevice_off, node_off, ret;
100 char *dt_name;
101
102 vdevice_off = fdt_path_offset(fdt, "/vdevice");
103 if (vdevice_off < 0) {
104 return vdevice_off;
105 }
106
107 dt_name = spapr_vio_get_dev_name(DEVICE(dev));
108 node_off = fdt_add_subnode(fdt, vdevice_off, dt_name);
109 g_free(dt_name);
110 if (node_off < 0) {
111 return node_off;
112 }
113
114 ret = fdt_setprop_cell(fdt, node_off, "reg", dev->reg);
115 if (ret < 0) {
116 return ret;
117 }
118
119 if (pc->dt_type) {
120 ret = fdt_setprop_string(fdt, node_off, "device_type",
121 pc->dt_type);
122 if (ret < 0) {
123 return ret;
124 }
125 }
126
127 if (pc->dt_compatible) {
128 ret = fdt_setprop_string(fdt, node_off, "compatible",
129 pc->dt_compatible);
130 if (ret < 0) {
131 return ret;
132 }
133 }
134
135 if (dev->irq) {
136 uint32_t ints_prop[] = {cpu_to_be32(dev->irq), 0};
137
138 ret = fdt_setprop(fdt, node_off, "interrupts", ints_prop,
139 sizeof(ints_prop));
140 if (ret < 0) {
141 return ret;
142 }
143 }
144
145 ret = spapr_tcet_dma_dt(fdt, node_off, "ibm,my-dma-window", dev->tcet);
146 if (ret < 0) {
147 return ret;
148 }
149
150 if (pc->devnode) {
151 ret = (pc->devnode)(dev, fdt, node_off);
152 if (ret < 0) {
153 return ret;
154 }
155 }
156
157 return node_off;
158}
159
160
161
162
163static target_ulong h_reg_crq(PowerPCCPU *cpu, sPAPRMachineState *spapr,
164 target_ulong opcode, target_ulong *args)
165{
166 target_ulong reg = args[0];
167 target_ulong queue_addr = args[1];
168 target_ulong queue_len = args[2];
169 VIOsPAPRDevice *dev = spapr_vio_find_by_reg(spapr->vio_bus, reg);
170
171 if (!dev) {
172 hcall_dprintf("Unit 0x" TARGET_FMT_lx " does not exist\n", reg);
173 return H_PARAMETER;
174 }
175
176
177 if (queue_len < 0x1000 || queue_len > 0x10000000) {
178 hcall_dprintf("Queue size too small or too big (0x" TARGET_FMT_lx
179 ")\n", queue_len);
180 return H_PARAMETER;
181 }
182
183
184 if (queue_addr & 0xfff) {
185 hcall_dprintf("Queue not aligned (0x" TARGET_FMT_lx ")\n", queue_addr);
186 return H_PARAMETER;
187 }
188
189
190 if (!dev->crq.SendFunc) {
191 hcall_dprintf("Device does not support CRQ\n");
192 return H_NOT_FOUND;
193 }
194
195
196 if (dev->crq.qsize) {
197 hcall_dprintf("CRQ already registered\n");
198 return H_RESOURCE;
199 }
200 dev->crq.qladdr = queue_addr;
201 dev->crq.qsize = queue_len;
202 dev->crq.qnext = 0;
203
204 DPRINTF("CRQ for dev 0x" TARGET_FMT_lx " registered at 0x"
205 TARGET_FMT_lx "/0x" TARGET_FMT_lx "\n",
206 reg, queue_addr, queue_len);
207 return H_SUCCESS;
208}
209
210static target_ulong free_crq(VIOsPAPRDevice *dev)
211{
212 dev->crq.qladdr = 0;
213 dev->crq.qsize = 0;
214 dev->crq.qnext = 0;
215
216 DPRINTF("CRQ for dev 0x%" PRIx32 " freed\n", dev->reg);
217
218 return H_SUCCESS;
219}
220
221static target_ulong h_free_crq(PowerPCCPU *cpu, sPAPRMachineState *spapr,
222 target_ulong opcode, target_ulong *args)
223{
224 target_ulong reg = args[0];
225 VIOsPAPRDevice *dev = spapr_vio_find_by_reg(spapr->vio_bus, reg);
226
227 if (!dev) {
228 hcall_dprintf("Unit 0x" TARGET_FMT_lx " does not exist\n", reg);
229 return H_PARAMETER;
230 }
231
232 return free_crq(dev);
233}
234
235static target_ulong h_send_crq(PowerPCCPU *cpu, sPAPRMachineState *spapr,
236 target_ulong opcode, target_ulong *args)
237{
238 target_ulong reg = args[0];
239 target_ulong msg_hi = args[1];
240 target_ulong msg_lo = args[2];
241 VIOsPAPRDevice *dev = spapr_vio_find_by_reg(spapr->vio_bus, reg);
242 uint64_t crq_mangle[2];
243
244 if (!dev) {
245 hcall_dprintf("Unit 0x" TARGET_FMT_lx " does not exist\n", reg);
246 return H_PARAMETER;
247 }
248 crq_mangle[0] = cpu_to_be64(msg_hi);
249 crq_mangle[1] = cpu_to_be64(msg_lo);
250
251 if (dev->crq.SendFunc) {
252 return dev->crq.SendFunc(dev, (uint8_t *)crq_mangle);
253 }
254
255 return H_HARDWARE;
256}
257
258static target_ulong h_enable_crq(PowerPCCPU *cpu, sPAPRMachineState *spapr,
259 target_ulong opcode, target_ulong *args)
260{
261 target_ulong reg = args[0];
262 VIOsPAPRDevice *dev = spapr_vio_find_by_reg(spapr->vio_bus, reg);
263
264 if (!dev) {
265 hcall_dprintf("Unit 0x" TARGET_FMT_lx " does not exist\n", reg);
266 return H_PARAMETER;
267 }
268
269 return 0;
270}
271
272
273int spapr_vio_send_crq(VIOsPAPRDevice *dev, uint8_t *crq)
274{
275 int rc;
276 uint8_t byte;
277
278 if (!dev->crq.qsize) {
279 fprintf(stderr, "spapr_vio_send_creq on uninitialized queue\n");
280 return -1;
281 }
282
283
284 rc = spapr_vio_dma_read(dev, dev->crq.qladdr + dev->crq.qnext, &byte, 1);
285 if (rc) {
286 return rc;
287 }
288 if (byte != 0) {
289 return 1;
290 }
291
292 rc = spapr_vio_dma_write(dev, dev->crq.qladdr + dev->crq.qnext + 8,
293 &crq[8], 8);
294 if (rc) {
295 return rc;
296 }
297
298 kvmppc_eieio();
299
300 rc = spapr_vio_dma_write(dev, dev->crq.qladdr + dev->crq.qnext, crq, 8);
301 if (rc) {
302 return rc;
303 }
304
305 dev->crq.qnext = (dev->crq.qnext + 16) % dev->crq.qsize;
306
307 if (dev->signal_state & 1) {
308 qemu_irq_pulse(spapr_vio_qirq(dev));
309 }
310
311 return 0;
312}
313
314
315
316static void spapr_vio_quiesce_one(VIOsPAPRDevice *dev)
317{
318 if (dev->tcet) {
319 device_reset(DEVICE(dev->tcet));
320 }
321 free_crq(dev);
322}
323
324void spapr_vio_set_bypass(VIOsPAPRDevice *dev, bool bypass)
325{
326 if (!dev->tcet) {
327 return;
328 }
329
330 memory_region_set_enabled(&dev->mrbypass, bypass);
331 memory_region_set_enabled(spapr_tce_get_iommu(dev->tcet), !bypass);
332
333 dev->tcet->bypass = bypass;
334}
335
336static void rtas_set_tce_bypass(PowerPCCPU *cpu, sPAPRMachineState *spapr,
337 uint32_t token,
338 uint32_t nargs, target_ulong args,
339 uint32_t nret, target_ulong rets)
340{
341 VIOsPAPRBus *bus = spapr->vio_bus;
342 VIOsPAPRDevice *dev;
343 uint32_t unit, enable;
344
345 if (nargs != 2) {
346 rtas_st(rets, 0, RTAS_OUT_PARAM_ERROR);
347 return;
348 }
349 unit = rtas_ld(args, 0);
350 enable = rtas_ld(args, 1);
351 dev = spapr_vio_find_by_reg(bus, unit);
352 if (!dev) {
353 rtas_st(rets, 0, RTAS_OUT_PARAM_ERROR);
354 return;
355 }
356
357 if (!dev->tcet) {
358 rtas_st(rets, 0, RTAS_OUT_PARAM_ERROR);
359 return;
360 }
361
362 spapr_vio_set_bypass(dev, !!enable);
363
364 rtas_st(rets, 0, RTAS_OUT_SUCCESS);
365}
366
367static void rtas_quiesce(PowerPCCPU *cpu, sPAPRMachineState *spapr,
368 uint32_t token,
369 uint32_t nargs, target_ulong args,
370 uint32_t nret, target_ulong rets)
371{
372 VIOsPAPRBus *bus = spapr->vio_bus;
373 BusChild *kid;
374 VIOsPAPRDevice *dev = NULL;
375
376 if (nargs != 0) {
377 rtas_st(rets, 0, RTAS_OUT_PARAM_ERROR);
378 return;
379 }
380
381 QTAILQ_FOREACH(kid, &bus->bus.children, sibling) {
382 dev = (VIOsPAPRDevice *)kid->child;
383 spapr_vio_quiesce_one(dev);
384 }
385
386 rtas_st(rets, 0, RTAS_OUT_SUCCESS);
387}
388
389static VIOsPAPRDevice *reg_conflict(VIOsPAPRDevice *dev)
390{
391 VIOsPAPRBus *bus = SPAPR_VIO_BUS(dev->qdev.parent_bus);
392 BusChild *kid;
393 VIOsPAPRDevice *other;
394
395
396
397
398
399
400 QTAILQ_FOREACH(kid, &bus->bus.children, sibling) {
401 other = VIO_SPAPR_DEVICE(kid->child);
402
403 if (other != dev && other->reg == dev->reg) {
404 return other;
405 }
406 }
407
408 return 0;
409}
410
411static void spapr_vio_busdev_reset(DeviceState *qdev)
412{
413 VIOsPAPRDevice *dev = VIO_SPAPR_DEVICE(qdev);
414 VIOsPAPRDeviceClass *pc = VIO_SPAPR_DEVICE_GET_CLASS(dev);
415
416
417 spapr_vio_quiesce_one(dev);
418
419 dev->signal_state = 0;
420
421 spapr_vio_set_bypass(dev, false);
422 if (pc->reset) {
423 pc->reset(dev);
424 }
425}
426
427static void spapr_vio_busdev_realize(DeviceState *qdev, Error **errp)
428{
429 sPAPRMachineState *spapr = SPAPR_MACHINE(qdev_get_machine());
430 VIOsPAPRDevice *dev = (VIOsPAPRDevice *)qdev;
431 VIOsPAPRDeviceClass *pc = VIO_SPAPR_DEVICE_GET_CLASS(dev);
432 char *id;
433 Error *local_err = NULL;
434
435 if (dev->reg != -1) {
436
437
438
439
440
441
442 VIOsPAPRDevice *other = reg_conflict(dev);
443
444 if (other) {
445 error_setg(errp, "%s and %s devices conflict at address %#x",
446 object_get_typename(OBJECT(qdev)),
447 object_get_typename(OBJECT(&other->qdev)),
448 dev->reg);
449 return;
450 }
451 } else {
452
453 VIOsPAPRBus *bus = SPAPR_VIO_BUS(dev->qdev.parent_bus);
454
455 do {
456 dev->reg = bus->next_reg++;
457 } while (reg_conflict(dev));
458 }
459
460
461 if (!dev->qdev.id) {
462 id = spapr_vio_get_dev_name(DEVICE(dev));
463 dev->qdev.id = id;
464 }
465
466 dev->irq = xics_spapr_alloc(spapr->xics, 0, dev->irq, false, &local_err);
467 if (local_err) {
468 error_propagate(errp, local_err);
469 return;
470 }
471
472 if (pc->rtce_window_size) {
473 uint32_t liobn = SPAPR_VIO_LIOBN(dev->reg);
474
475 memory_region_init(&dev->mrroot, OBJECT(dev), "iommu-spapr-root",
476 ram_size);
477 memory_region_init_alias(&dev->mrbypass, OBJECT(dev),
478 "iommu-spapr-bypass", get_system_memory(),
479 0, ram_size);
480 memory_region_add_subregion_overlap(&dev->mrroot, 0, &dev->mrbypass, 1);
481 address_space_init(&dev->as, &dev->mrroot, qdev->id);
482
483 dev->tcet = spapr_tce_new_table(qdev, liobn);
484 spapr_tce_table_enable(dev->tcet, SPAPR_TCE_PAGE_SHIFT, 0,
485 pc->rtce_window_size >> SPAPR_TCE_PAGE_SHIFT);
486 dev->tcet->vdev = dev;
487 memory_region_add_subregion_overlap(&dev->mrroot, 0,
488 spapr_tce_get_iommu(dev->tcet), 2);
489 }
490
491 pc->realize(dev, errp);
492}
493
494static target_ulong h_vio_signal(PowerPCCPU *cpu, sPAPRMachineState *spapr,
495 target_ulong opcode,
496 target_ulong *args)
497{
498 target_ulong reg = args[0];
499 target_ulong mode = args[1];
500 VIOsPAPRDevice *dev = spapr_vio_find_by_reg(spapr->vio_bus, reg);
501 VIOsPAPRDeviceClass *pc;
502
503 if (!dev) {
504 return H_PARAMETER;
505 }
506
507 pc = VIO_SPAPR_DEVICE_GET_CLASS(dev);
508
509 if (mode & ~pc->signal_mask) {
510 return H_PARAMETER;
511 }
512
513 dev->signal_state = mode;
514
515 return H_SUCCESS;
516}
517
518VIOsPAPRBus *spapr_vio_bus_init(void)
519{
520 VIOsPAPRBus *bus;
521 BusState *qbus;
522 DeviceState *dev;
523
524
525 dev = qdev_create(NULL, TYPE_SPAPR_VIO_BRIDGE);
526 qdev_init_nofail(dev);
527
528
529 qbus = qbus_create(TYPE_SPAPR_VIO_BUS, dev, "spapr-vio");
530 bus = SPAPR_VIO_BUS(qbus);
531 bus->next_reg = 0x71000000;
532
533
534 spapr_register_hypercall(H_VIO_SIGNAL, h_vio_signal);
535
536
537 spapr_register_hypercall(H_REG_CRQ, h_reg_crq);
538 spapr_register_hypercall(H_FREE_CRQ, h_free_crq);
539 spapr_register_hypercall(H_SEND_CRQ, h_send_crq);
540 spapr_register_hypercall(H_ENABLE_CRQ, h_enable_crq);
541
542
543 spapr_rtas_register(RTAS_IBM_SET_TCE_BYPASS, "ibm,set-tce-bypass",
544 rtas_set_tce_bypass);
545 spapr_rtas_register(RTAS_QUIESCE, "quiesce", rtas_quiesce);
546
547 return bus;
548}
549
550
551
552static int spapr_vio_bridge_init(SysBusDevice *dev)
553{
554
555 return 0;
556}
557
558static void spapr_vio_bridge_class_init(ObjectClass *klass, void *data)
559{
560 SysBusDeviceClass *k = SYS_BUS_DEVICE_CLASS(klass);
561 DeviceClass *dc = DEVICE_CLASS(klass);
562
563 dc->fw_name = "vdevice";
564 k->init = spapr_vio_bridge_init;
565}
566
567static const TypeInfo spapr_vio_bridge_info = {
568 .name = TYPE_SPAPR_VIO_BRIDGE,
569 .parent = TYPE_SYS_BUS_DEVICE,
570 .class_init = spapr_vio_bridge_class_init,
571};
572
573const VMStateDescription vmstate_spapr_vio = {
574 .name = "spapr_vio",
575 .version_id = 1,
576 .minimum_version_id = 1,
577 .fields = (VMStateField[]) {
578
579 VMSTATE_UINT32_EQUAL(reg, VIOsPAPRDevice),
580 VMSTATE_UINT32_EQUAL(irq, VIOsPAPRDevice),
581
582
583 VMSTATE_UINT64(signal_state, VIOsPAPRDevice),
584 VMSTATE_UINT64(crq.qladdr, VIOsPAPRDevice),
585 VMSTATE_UINT32(crq.qsize, VIOsPAPRDevice),
586 VMSTATE_UINT32(crq.qnext, VIOsPAPRDevice),
587
588 VMSTATE_END_OF_LIST()
589 },
590};
591
592static void vio_spapr_device_class_init(ObjectClass *klass, void *data)
593{
594 DeviceClass *k = DEVICE_CLASS(klass);
595 k->realize = spapr_vio_busdev_realize;
596 k->reset = spapr_vio_busdev_reset;
597 k->bus_type = TYPE_SPAPR_VIO_BUS;
598 k->props = spapr_vio_props;
599}
600
601static const TypeInfo spapr_vio_type_info = {
602 .name = TYPE_VIO_SPAPR_DEVICE,
603 .parent = TYPE_DEVICE,
604 .instance_size = sizeof(VIOsPAPRDevice),
605 .abstract = true,
606 .class_size = sizeof(VIOsPAPRDeviceClass),
607 .class_init = vio_spapr_device_class_init,
608};
609
610static void spapr_vio_register_types(void)
611{
612 type_register_static(&spapr_vio_bus_info);
613 type_register_static(&spapr_vio_bridge_info);
614 type_register_static(&spapr_vio_type_info);
615}
616
617type_init(spapr_vio_register_types)
618
619static int compare_reg(const void *p1, const void *p2)
620{
621 VIOsPAPRDevice const *dev1, *dev2;
622
623 dev1 = (VIOsPAPRDevice *)*(DeviceState **)p1;
624 dev2 = (VIOsPAPRDevice *)*(DeviceState **)p2;
625
626 if (dev1->reg < dev2->reg) {
627 return -1;
628 }
629 if (dev1->reg == dev2->reg) {
630 return 0;
631 }
632
633
634 return 1;
635}
636
637int spapr_populate_vdevice(VIOsPAPRBus *bus, void *fdt)
638{
639 DeviceState *qdev, **qdevs;
640 BusChild *kid;
641 int i, num, ret = 0;
642
643
644 num = 0;
645 QTAILQ_FOREACH(kid, &bus->bus.children, sibling) {
646 num++;
647 }
648
649
650 qdevs = g_malloc(sizeof(qdev) * num);
651 num = 0;
652 QTAILQ_FOREACH(kid, &bus->bus.children, sibling) {
653 qdevs[num++] = kid->child;
654 }
655
656
657 qsort(qdevs, num, sizeof(qdev), compare_reg);
658
659
660
661 for (i = num - 1; i >= 0; i--) {
662 VIOsPAPRDevice *dev = (VIOsPAPRDevice *)(qdevs[i]);
663
664 ret = vio_make_devnode(dev, fdt);
665
666 if (ret < 0) {
667 goto out;
668 }
669 }
670
671 ret = 0;
672out:
673 g_free(qdevs);
674
675 return ret;
676}
677
678int spapr_populate_chosen_stdout(void *fdt, VIOsPAPRBus *bus)
679{
680 VIOsPAPRDevice *dev;
681 char *name, *path;
682 int ret, offset;
683
684 dev = spapr_vty_get_default(bus);
685 if (!dev)
686 return 0;
687
688 offset = fdt_path_offset(fdt, "/chosen");
689 if (offset < 0) {
690 return offset;
691 }
692
693 name = spapr_vio_get_dev_name(DEVICE(dev));
694 path = g_strdup_printf("/vdevice/%s", name);
695
696 ret = fdt_setprop_string(fdt, offset, "linux,stdout-path", path);
697
698 g_free(name);
699 g_free(path);
700
701 return ret;
702}
703
