2 * Copyright 2012 Michael Ellerman, IBM Corporation.
3 * Copyright 2012 Benjamin Herrenschmidt, IBM Corporation
5 * This program is free software; you can redistribute it and/or modify
6 * it under the terms of the GNU General Public License, version 2, as
7 * published by the Free Software Foundation.
10 #include <linux/kernel.h>
11 #include <linux/kvm_host.h>
12 #include <linux/err.h>
14 #include <asm/kvm_book3s.h>
15 #include <asm/kvm_ppc.h>
16 #include <asm/hvcall.h>
18 #include <asm/debug.h>
19 #include <asm/synch.h>
20 #include <asm/ppc-opcode.h>
22 #include "book3s_xics.h"
26 static void icp_rm_deliver_irq(struct kvmppc_xics *xics, struct kvmppc_icp *icp,
29 /* -- ICS routines -- */
30 static void ics_rm_check_resend(struct kvmppc_xics *xics,
31 struct kvmppc_ics *ics, struct kvmppc_icp *icp)
35 arch_spin_lock(&ics->lock);
37 for (i = 0; i < KVMPPC_XICS_IRQ_PER_ICS; i++) {
38 struct ics_irq_state *state = &ics->irq_state[i];
43 arch_spin_unlock(&ics->lock);
44 icp_rm_deliver_irq(xics, icp, state->number);
45 arch_spin_lock(&ics->lock);
48 arch_spin_unlock(&ics->lock);
51 /* -- ICP routines -- */
53 static void icp_rm_set_vcpu_irq(struct kvm_vcpu *vcpu,
54 struct kvm_vcpu *this_vcpu)
56 struct kvmppc_icp *this_icp = this_vcpu->arch.icp;
59 /* Mark the target VCPU as having an interrupt pending */
60 vcpu->stat.queue_intr++;
61 set_bit(BOOK3S_IRQPRIO_EXTERNAL_LEVEL, &vcpu->arch.pending_exceptions);
63 /* Kick self ? Just set MER and return */
64 if (vcpu == this_vcpu) {
65 mtspr(SPRN_LPCR, mfspr(SPRN_LPCR) | LPCR_MER);
69 /* Check if the core is loaded, if not, too hard */
70 cpu = vcpu->arch.thread_cpu;
71 if (cpu < 0 || cpu >= nr_cpu_ids) {
72 this_icp->rm_action |= XICS_RM_KICK_VCPU;
73 this_icp->rm_kick_target = vcpu;
78 kvmhv_rm_send_ipi(cpu);
81 static void icp_rm_clr_vcpu_irq(struct kvm_vcpu *vcpu)
83 /* Note: Only called on self ! */
84 clear_bit(BOOK3S_IRQPRIO_EXTERNAL_LEVEL,
85 &vcpu->arch.pending_exceptions);
86 mtspr(SPRN_LPCR, mfspr(SPRN_LPCR) & ~LPCR_MER);
89 static inline bool icp_rm_try_update(struct kvmppc_icp *icp,
90 union kvmppc_icp_state old,
91 union kvmppc_icp_state new)
93 struct kvm_vcpu *this_vcpu = local_paca->kvm_hstate.kvm_vcpu;
96 /* Calculate new output value */
97 new.out_ee = (new.xisr && (new.pending_pri < new.cppr));
99 /* Attempt atomic update */
100 success = cmpxchg64(&icp->state.raw, old.raw, new.raw) == old.raw;
105 * Check for output state update
107 * Note that this is racy since another processor could be updating
108 * the state already. This is why we never clear the interrupt output
109 * here, we only ever set it. The clear only happens prior to doing
110 * an update and only by the processor itself. Currently we do it
111 * in Accept (H_XIRR) and Up_Cppr (H_XPPR).
113 * We also do not try to figure out whether the EE state has changed,
114 * we unconditionally set it if the new state calls for it. The reason
115 * for that is that we opportunistically remove the pending interrupt
116 * flag when raising CPPR, so we need to set it back here if an
117 * interrupt is still pending.
120 icp_rm_set_vcpu_irq(icp->vcpu, this_vcpu);
122 /* Expose the state change for debug purposes */
123 this_vcpu->arch.icp->rm_dbgstate = new;
124 this_vcpu->arch.icp->rm_dbgtgt = icp->vcpu;
130 static inline int check_too_hard(struct kvmppc_xics *xics,
131 struct kvmppc_icp *icp)
133 return (xics->real_mode_dbg || icp->rm_action) ? H_TOO_HARD : H_SUCCESS;
136 static void icp_rm_check_resend(struct kvmppc_xics *xics,
137 struct kvmppc_icp *icp)
141 /* Order this load with the test for need_resend in the caller */
143 for_each_set_bit(icsid, icp->resend_map, xics->max_icsid + 1) {
144 struct kvmppc_ics *ics = xics->ics[icsid];
146 if (!test_and_clear_bit(icsid, icp->resend_map))
150 ics_rm_check_resend(xics, ics, icp);
154 static bool icp_rm_try_to_deliver(struct kvmppc_icp *icp, u32 irq, u8 priority,
157 union kvmppc_icp_state old_state, new_state;
161 old_state = new_state = READ_ONCE(icp->state);
165 /* See if we can deliver */
166 success = new_state.cppr > priority &&
167 new_state.mfrr > priority &&
168 new_state.pending_pri > priority;
171 * If we can, check for a rejection and perform the
175 *reject = new_state.xisr;
176 new_state.xisr = irq;
177 new_state.pending_pri = priority;
180 * If we failed to deliver we set need_resend
181 * so a subsequent CPPR state change causes us
182 * to try a new delivery.
184 new_state.need_resend = true;
187 } while (!icp_rm_try_update(icp, old_state, new_state));
192 static void icp_rm_deliver_irq(struct kvmppc_xics *xics, struct kvmppc_icp *icp,
195 struct ics_irq_state *state;
196 struct kvmppc_ics *ics;
201 * This is used both for initial delivery of an interrupt and
202 * for subsequent rejection.
204 * Rejection can be racy vs. resends. We have evaluated the
205 * rejection in an atomic ICP transaction which is now complete,
206 * so potentially the ICP can already accept the interrupt again.
208 * So we need to retry the delivery. Essentially the reject path
209 * boils down to a failed delivery. Always.
211 * Now the interrupt could also have moved to a different target,
212 * thus we may need to re-do the ICP lookup as well
216 /* Get the ICS state and lock it */
217 ics = kvmppc_xics_find_ics(xics, new_irq, &src);
219 /* Unsafe increment, but this does not need to be accurate */
223 state = &ics->irq_state[src];
225 /* Get a lock on the ICS */
226 arch_spin_lock(&ics->lock);
229 if (!icp || state->server != icp->server_num) {
230 icp = kvmppc_xics_find_server(xics->kvm, state->server);
232 /* Unsafe increment again*/
238 /* Clear the resend bit of that interrupt */
242 * If masked, bail out
244 * Note: PAPR doesn't mention anything about masked pending
245 * when doing a resend, only when doing a delivery.
247 * However that would have the effect of losing a masked
248 * interrupt that was rejected and isn't consistent with
249 * the whole masked_pending business which is about not
250 * losing interrupts that occur while masked.
252 * I don't differentiate normal deliveries and resends, this
253 * implementation will differ from PAPR and not lose such
256 if (state->priority == MASKED) {
257 state->masked_pending = 1;
262 * Try the delivery, this will set the need_resend flag
263 * in the ICP as part of the atomic transaction if the
264 * delivery is not possible.
266 * Note that if successful, the new delivery might have itself
267 * rejected an interrupt that was "delivered" before we took the
270 * In this case we do the whole sequence all over again for the
271 * new guy. We cannot assume that the rejected interrupt is less
272 * favored than the new one, and thus doesn't need to be delivered,
273 * because by the time we exit icp_rm_try_to_deliver() the target
274 * processor may well have already consumed & completed it, and thus
275 * the rejected interrupt might actually be already acceptable.
277 if (icp_rm_try_to_deliver(icp, new_irq, state->priority, &reject)) {
279 * Delivery was successful, did we reject somebody else ?
281 if (reject && reject != XICS_IPI) {
282 arch_spin_unlock(&ics->lock);
289 * We failed to deliver the interrupt we need to set the
290 * resend map bit and mark the ICS state as needing a resend
292 set_bit(ics->icsid, icp->resend_map);
296 * If the need_resend flag got cleared in the ICP some time
297 * between icp_rm_try_to_deliver() atomic update and now, then
298 * we know it might have missed the resend_map bit. So we
302 if (!icp->state.need_resend) {
303 arch_spin_unlock(&ics->lock);
308 arch_spin_unlock(&ics->lock);
311 static void icp_rm_down_cppr(struct kvmppc_xics *xics, struct kvmppc_icp *icp,
314 union kvmppc_icp_state old_state, new_state;
318 * This handles several related states in one operation:
320 * ICP State: Down_CPPR
322 * Load CPPR with new value and if the XISR is 0
323 * then check for resends:
327 * If MFRR is more favored than CPPR, check for IPIs
328 * and notify ICS of a potential resend. This is done
329 * asynchronously (when used in real mode, we will have
332 * We do not handle the complete Check_IPI as documented
333 * here. In the PAPR, this state will be used for both
334 * Set_MFRR and Down_CPPR. However, we know that we aren't
335 * changing the MFRR state here so we don't need to handle
336 * the case of an MFRR causing a reject of a pending irq,
337 * this will have been handled when the MFRR was set in the
340 * Thus we don't have to handle rejects, only resends.
342 * When implementing real mode for HV KVM, resend will lead to
343 * a H_TOO_HARD return and the whole transaction will be handled
347 old_state = new_state = READ_ONCE(icp->state);
350 new_state.cppr = new_cppr;
353 * Cut down Resend / Check_IPI / IPI
355 * The logic is that we cannot have a pending interrupt
356 * trumped by an IPI at this point (see above), so we
357 * know that either the pending interrupt is already an
358 * IPI (in which case we don't care to override it) or
359 * it's either more favored than us or non existent
361 if (new_state.mfrr < new_cppr &&
362 new_state.mfrr <= new_state.pending_pri) {
363 new_state.pending_pri = new_state.mfrr;
364 new_state.xisr = XICS_IPI;
367 /* Latch/clear resend bit */
368 resend = new_state.need_resend;
369 new_state.need_resend = 0;
371 } while (!icp_rm_try_update(icp, old_state, new_state));
374 * Now handle resend checks. Those are asynchronous to the ICP
375 * state update in HW (ie bus transactions) so we can handle them
376 * separately here as well.
379 icp->n_check_resend++;
380 icp_rm_check_resend(xics, icp);
385 unsigned long kvmppc_rm_h_xirr(struct kvm_vcpu *vcpu)
387 union kvmppc_icp_state old_state, new_state;
388 struct kvmppc_xics *xics = vcpu->kvm->arch.xics;
389 struct kvmppc_icp *icp = vcpu->arch.icp;
392 if (!xics || !xics->real_mode)
395 /* First clear the interrupt */
396 icp_rm_clr_vcpu_irq(icp->vcpu);
399 * ICP State: Accept_Interrupt
401 * Return the pending interrupt (if any) along with the
402 * current CPPR, then clear the XISR & set CPPR to the
406 old_state = new_state = READ_ONCE(icp->state);
408 xirr = old_state.xisr | (((u32)old_state.cppr) << 24);
411 new_state.cppr = new_state.pending_pri;
412 new_state.pending_pri = 0xff;
415 } while (!icp_rm_try_update(icp, old_state, new_state));
417 /* Return the result in GPR4 */
418 vcpu->arch.gpr[4] = xirr;
420 return check_too_hard(xics, icp);
423 int kvmppc_rm_h_ipi(struct kvm_vcpu *vcpu, unsigned long server,
426 union kvmppc_icp_state old_state, new_state;
427 struct kvmppc_xics *xics = vcpu->kvm->arch.xics;
428 struct kvmppc_icp *icp, *this_icp = vcpu->arch.icp;
433 if (!xics || !xics->real_mode)
436 local = this_icp->server_num == server;
440 icp = kvmppc_xics_find_server(vcpu->kvm, server);
445 * ICP state: Set_MFRR
447 * If the CPPR is more favored than the new MFRR, then
448 * nothing needs to be done as there can be no XISR to
451 * ICP state: Check_IPI
453 * If the CPPR is less favored, then we might be replacing
454 * an interrupt, and thus need to possibly reject it.
458 * Besides rejecting any pending interrupts, we also
459 * update XISR and pending_pri to mark IPI as pending.
461 * PAPR does not describe this state, but if the MFRR is being
462 * made less favored than its earlier value, there might be
463 * a previously-rejected interrupt needing to be resent.
464 * Ideally, we would want to resend only if
465 * prio(pending_interrupt) < mfrr &&
466 * prio(pending_interrupt) < cppr
467 * where pending interrupt is the one that was rejected. But
468 * we don't have that state, so we simply trigger a resend
469 * whenever the MFRR is made less favored.
472 old_state = new_state = READ_ONCE(icp->state);
475 new_state.mfrr = mfrr;
480 if (mfrr < new_state.cppr) {
481 /* Reject a pending interrupt if not an IPI */
482 if (mfrr <= new_state.pending_pri) {
483 reject = new_state.xisr;
484 new_state.pending_pri = mfrr;
485 new_state.xisr = XICS_IPI;
489 if (mfrr > old_state.mfrr) {
490 resend = new_state.need_resend;
491 new_state.need_resend = 0;
493 } while (!icp_rm_try_update(icp, old_state, new_state));
495 /* Handle reject in real mode */
496 if (reject && reject != XICS_IPI) {
497 this_icp->n_reject++;
498 icp_rm_deliver_irq(xics, icp, reject);
501 /* Handle resends in real mode */
503 this_icp->n_check_resend++;
504 icp_rm_check_resend(xics, icp);
507 return check_too_hard(xics, this_icp);
510 int kvmppc_rm_h_cppr(struct kvm_vcpu *vcpu, unsigned long cppr)
512 union kvmppc_icp_state old_state, new_state;
513 struct kvmppc_xics *xics = vcpu->kvm->arch.xics;
514 struct kvmppc_icp *icp = vcpu->arch.icp;
517 if (!xics || !xics->real_mode)
521 * ICP State: Set_CPPR
523 * We can safely compare the new value with the current
524 * value outside of the transaction as the CPPR is only
525 * ever changed by the processor on itself
527 if (cppr > icp->state.cppr) {
528 icp_rm_down_cppr(xics, icp, cppr);
530 } else if (cppr == icp->state.cppr)
536 * The processor is raising its priority, this can result
537 * in a rejection of a pending interrupt:
539 * ICP State: Reject_Current
541 * We can remove EE from the current processor, the update
542 * transaction will set it again if needed
544 icp_rm_clr_vcpu_irq(icp->vcpu);
547 old_state = new_state = READ_ONCE(icp->state);
550 new_state.cppr = cppr;
552 if (cppr <= new_state.pending_pri) {
553 reject = new_state.xisr;
555 new_state.pending_pri = 0xff;
558 } while (!icp_rm_try_update(icp, old_state, new_state));
561 * Check for rejects. They are handled by doing a new delivery
562 * attempt (see comments in icp_rm_deliver_irq).
564 if (reject && reject != XICS_IPI) {
566 icp_rm_deliver_irq(xics, icp, reject);
569 return check_too_hard(xics, icp);
572 int kvmppc_rm_h_eoi(struct kvm_vcpu *vcpu, unsigned long xirr)
574 struct kvmppc_xics *xics = vcpu->kvm->arch.xics;
575 struct kvmppc_icp *icp = vcpu->arch.icp;
576 struct kvmppc_ics *ics;
577 struct ics_irq_state *state;
578 u32 irq = xirr & 0x00ffffff;
581 if (!xics || !xics->real_mode)
587 * Note: If EOI is incorrectly used by SW to lower the CPPR
588 * value (ie more favored), we do not check for rejection of
589 * a pending interrupt, this is a SW error and PAPR sepcifies
590 * that we don't have to deal with it.
592 * The sending of an EOI to the ICS is handled after the
595 * ICP State: Down_CPPR which we handle
596 * in a separate function as it's shared with H_CPPR.
598 icp_rm_down_cppr(xics, icp, xirr >> 24);
600 /* IPIs have no EOI */
604 * EOI handling: If the interrupt is still asserted, we need to
605 * resend it. We can take a lockless "peek" at the ICS state here.
607 * "Message" interrupts will never have "asserted" set
609 ics = kvmppc_xics_find_ics(xics, irq, &src);
612 state = &ics->irq_state[src];
614 /* Still asserted, resend it */
616 icp_rm_deliver_irq(xics, icp, irq);
618 if (!hlist_empty(&vcpu->kvm->irq_ack_notifier_list)) {
619 icp->rm_action |= XICS_RM_NOTIFY_EOI;
620 icp->rm_eoied_irq = irq;
623 return check_too_hard(xics, icp);
projects / releases.git / blob