1 // SPDX-License-Identifier: GPL-2.0-only
3 * Support for Partition Mobility/Migration
5 * Copyright (C) 2010 Nathan Fontenot
6 * Copyright (C) 2010 IBM Corporation
10 #define pr_fmt(fmt) "mobility: " fmt
12 #include <linux/cpu.h>
13 #include <linux/kernel.h>
14 #include <linux/kobject.h>
15 #include <linux/nmi.h>
16 #include <linux/sched.h>
17 #include <linux/smp.h>
18 #include <linux/stat.h>
19 #include <linux/stop_machine.h>
20 #include <linux/completion.h>
21 #include <linux/device.h>
22 #include <linux/delay.h>
23 #include <linux/slab.h>
24 #include <linux/stringify.h>
26 #include <asm/machdep.h>
29 #include "../../kernel/cacheinfo.h"
31 static struct kobject *mobility_kobj;
33 struct update_props_workarea {
40 #define NODE_ACTION_MASK 0xff000000
41 #define NODE_COUNT_MASK 0x00ffffff
43 #define DELETE_DT_NODE 0x01000000
44 #define UPDATE_DT_NODE 0x02000000
45 #define ADD_DT_NODE 0x03000000
47 #define MIGRATION_SCOPE (1)
50 static int mobility_rtas_call(int token, char *buf, s32 scope)
54 spin_lock(&rtas_data_buf_lock);
56 memcpy(rtas_data_buf, buf, RTAS_DATA_BUF_SIZE);
57 rc = rtas_call(token, 2, 1, NULL, rtas_data_buf, scope);
58 memcpy(buf, rtas_data_buf, RTAS_DATA_BUF_SIZE);
60 spin_unlock(&rtas_data_buf_lock);
64 static int delete_dt_node(struct device_node *dn)
66 struct device_node *pdn;
69 pdn = of_get_parent(dn);
70 is_platfac = of_node_is_type(dn, "ibm,platform-facilities") ||
71 of_node_is_type(pdn, "ibm,platform-facilities");
75 * The drivers that bind to nodes in the platform-facilities
76 * hierarchy don't support node removal, and the removal directive
77 * from firmware is always followed by an add of an equivalent
78 * node. The capability (e.g. RNG, encryption, compression)
79 * represented by the node is never interrupted by the migration.
80 * So ignore changes to this part of the tree.
83 pr_notice("ignoring remove operation for %pOFfp\n", dn);
87 pr_debug("removing node %pOFfp\n", dn);
88 dlpar_detach_node(dn);
92 static int update_dt_property(struct device_node *dn, struct property **prop,
93 const char *name, u32 vd, char *value)
95 struct property *new_prop = *prop;
98 /* A negative 'vd' value indicates that only part of the new property
99 * value is contained in the buffer and we need to call
100 * ibm,update-properties again to get the rest of the value.
102 * A negative value is also the two's compliment of the actual value.
104 if (vd & 0x80000000) {
110 /* partial property fixup */
111 char *new_data = kzalloc(new_prop->length + vd, GFP_KERNEL);
115 memcpy(new_data, new_prop->value, new_prop->length);
116 memcpy(new_data + new_prop->length, value, vd);
118 kfree(new_prop->value);
119 new_prop->value = new_data;
120 new_prop->length += vd;
122 new_prop = kzalloc(sizeof(*new_prop), GFP_KERNEL);
126 new_prop->name = kstrdup(name, GFP_KERNEL);
127 if (!new_prop->name) {
132 new_prop->length = vd;
133 new_prop->value = kzalloc(new_prop->length, GFP_KERNEL);
134 if (!new_prop->value) {
135 kfree(new_prop->name);
140 memcpy(new_prop->value, value, vd);
145 pr_debug("updating node %pOF property %s\n", dn, name);
146 of_update_property(dn, new_prop);
153 static int update_dt_node(struct device_node *dn, s32 scope)
155 struct update_props_workarea *upwa;
156 struct property *prop = NULL;
160 int update_properties_token;
164 update_properties_token = rtas_token("ibm,update-properties");
165 if (update_properties_token == RTAS_UNKNOWN_SERVICE)
168 rtas_buf = kzalloc(RTAS_DATA_BUF_SIZE, GFP_KERNEL);
172 upwa = (struct update_props_workarea *)&rtas_buf[0];
173 upwa->phandle = cpu_to_be32(dn->phandle);
176 rtas_rc = mobility_rtas_call(update_properties_token, rtas_buf,
181 prop_data = rtas_buf + sizeof(*upwa);
182 nprops = be32_to_cpu(upwa->nprops);
184 /* On the first call to ibm,update-properties for a node the
185 * the first property value descriptor contains an empty
186 * property name, the property value length encoded as u32,
187 * and the property value is the node path being updated.
189 if (*prop_data == 0) {
191 vd = be32_to_cpu(*(__be32 *)prop_data);
192 prop_data += vd + sizeof(vd);
196 for (i = 0; i < nprops; i++) {
199 prop_name = prop_data;
200 prop_data += strlen(prop_name) + 1;
201 vd = be32_to_cpu(*(__be32 *)prop_data);
202 prop_data += sizeof(vd);
206 /* name only property, nothing to do */
210 of_remove_property(dn, of_find_property(dn,
216 rc = update_dt_property(dn, &prop, prop_name,
219 pr_err("updating %s property failed: %d\n",
231 } while (rtas_rc == 1);
237 static int add_dt_node(struct device_node *parent_dn, __be32 drc_index)
239 struct device_node *dn;
242 dn = dlpar_configure_connector(drc_index, parent_dn);
247 * Since delete_dt_node() ignores this node type, this is the
248 * necessary counterpart. We also know that a platform-facilities
249 * node returned from dlpar_configure_connector() has children
250 * attached, and dlpar_attach_node() only adds the parent, leaking
251 * the children. So ignore these on the add side for now.
253 if (of_node_is_type(dn, "ibm,platform-facilities")) {
254 pr_notice("ignoring add operation for %pOF\n", dn);
255 dlpar_free_cc_nodes(dn);
259 rc = dlpar_attach_node(dn, parent_dn);
261 dlpar_free_cc_nodes(dn);
263 pr_debug("added node %pOFfp\n", dn);
268 int pseries_devicetree_update(s32 scope)
272 int update_nodes_token;
275 update_nodes_token = rtas_token("ibm,update-nodes");
276 if (update_nodes_token == RTAS_UNKNOWN_SERVICE)
279 rtas_buf = kzalloc(RTAS_DATA_BUF_SIZE, GFP_KERNEL);
284 rc = mobility_rtas_call(update_nodes_token, rtas_buf, scope);
288 data = (__be32 *)rtas_buf + 4;
289 while (be32_to_cpu(*data) & NODE_ACTION_MASK) {
291 u32 action = be32_to_cpu(*data) & NODE_ACTION_MASK;
292 u32 node_count = be32_to_cpu(*data) & NODE_COUNT_MASK;
296 for (i = 0; i < node_count; i++) {
297 struct device_node *np;
298 __be32 phandle = *data++;
301 np = of_find_node_by_phandle(be32_to_cpu(phandle));
303 pr_warn("Failed lookup: phandle 0x%x for action 0x%x\n",
304 be32_to_cpu(phandle), action);
313 update_dt_node(np, scope);
317 add_dt_node(np, drc_index);
333 void post_mobility_fixup(void)
337 rtas_activate_firmware();
340 * We don't want CPUs to go online/offline while the device
341 * tree is being updated.
346 * It's common for the destination firmware to replace cache
347 * nodes. Release all of the cacheinfo hierarchy's references
348 * before updating the device tree.
350 cacheinfo_teardown();
352 rc = pseries_devicetree_update(MIGRATION_SCOPE);
354 pr_err("device tree update failed: %d\n", rc);
360 /* Possibly switch to a new L1 flush type */
361 pseries_setup_security_mitigations();
363 /* Reinitialise system information for hv-24x7 */
364 read_24x7_sys_info();
369 static int poll_vasi_state(u64 handle, unsigned long *res)
371 unsigned long retbuf[PLPAR_HCALL_BUFSIZE];
375 hvrc = plpar_hcall(H_VASI_STATE, retbuf, handle);
389 pr_err("unexpected H_VASI_STATE result %ld\n", hvrc);
396 static int wait_for_vasi_session_suspending(u64 handle)
402 * Wait for transition from H_VASI_ENABLED to
403 * H_VASI_SUSPENDING. Treat anything else as an error.
406 ret = poll_vasi_state(handle, &state);
408 if (ret != 0 || state == H_VASI_SUSPENDING) {
410 } else if (state == H_VASI_ENABLED) {
413 pr_err("unexpected H_VASI_STATE result %lu\n", state);
420 * Proceed even if H_VASI_STATE is unavailable. If H_JOIN or
421 * ibm,suspend-me are also unimplemented, we'll recover then.
423 if (ret == -EOPNOTSUPP)
429 static void prod_single(unsigned int target_cpu)
434 hwid = get_hard_smp_processor_id(target_cpu);
435 hvrc = plpar_hcall_norets(H_PROD, hwid);
436 if (hvrc == H_SUCCESS)
438 pr_err_ratelimited("H_PROD of CPU %u (hwid %d) error: %ld\n",
439 target_cpu, hwid, hvrc);
442 static void prod_others(void)
446 for_each_online_cpu(cpu) {
447 if (cpu != smp_processor_id())
452 static u16 clamp_slb_size(void)
454 u16 prev = mmu_slb_size;
456 slb_set_size(SLB_MIN_SIZE);
461 static int do_suspend(void)
467 pr_info("calling ibm,suspend-me on CPU %i\n", smp_processor_id());
470 * The destination processor model may have fewer SLB entries
471 * than the source. We reduce mmu_slb_size to a safe minimum
472 * before suspending in order to minimize the possibility of
473 * programming non-existent entries on the destination. If
474 * suspend fails, we restore it before returning. On success
475 * the OF reconfig path will update it from the new device
476 * tree after resuming on the destination.
478 saved_slb_size = clamp_slb_size();
480 ret = rtas_ibm_suspend_me(&status);
482 pr_err("ibm,suspend-me error: %d\n", status);
483 slb_set_size(saved_slb_size);
490 * struct pseries_suspend_info - State shared between CPUs for join/suspend.
491 * @counter: Threads are to increment this upon resuming from suspend
492 * or if an error is received from H_JOIN. The thread which performs
493 * the first increment (i.e. sets it to 1) is responsible for
494 * waking the other threads.
495 * @done: False if join/suspend is in progress. True if the operation is
496 * complete (successful or not).
498 struct pseries_suspend_info {
503 static int do_join(void *arg)
505 struct pseries_suspend_info *info = arg;
506 atomic_t *counter = &info->counter;
511 /* Must ensure MSR.EE off for H_JOIN. */
513 hvrc = plpar_hcall_norets(H_JOIN);
518 * All other CPUs are offline or in H_JOIN. This CPU
519 * attempts the suspend.
525 * The suspend is complete and this cpu has received a
526 * prod, or we've received a stray prod from unrelated
527 * code (e.g. paravirt spinlocks) and we need to join
530 * This barrier orders the return from H_JOIN above vs
531 * the load of info->done. It pairs with the barrier
532 * in the wakeup/prod path below.
535 if (READ_ONCE(info->done) == false) {
536 pr_info_ratelimited("premature return from H_JOIN on CPU %i, retrying",
546 pr_err_ratelimited("H_JOIN error %ld on CPU %i\n",
547 hvrc, smp_processor_id());
551 if (atomic_inc_return(counter) == 1) {
552 pr_info("CPU %u waking all threads\n", smp_processor_id());
553 WRITE_ONCE(info->done, true);
555 * This barrier orders the store to info->done vs subsequent
556 * H_PRODs to wake the other CPUs. It pairs with the barrier
557 * in the H_SUCCESS case above.
563 * Execution may have been suspended for several seconds, so
564 * reset the watchdog.
566 touch_nmi_watchdog();
571 * Abort reason code byte 0. We use only the 'Migrating partition' value.
573 enum vasi_aborting_entity {
576 PARTITION_FIRMWARE = 3,
577 PLATFORM_FIRMWARE = 4,
579 MIGRATING_PARTITION = 6,
582 static void pseries_cancel_migration(u64 handle, int err)
589 entity = MIGRATING_PARTITION;
590 detail = abs(err) & 0xffffff;
591 reason_code = (entity << 24) | detail;
593 hvrc = plpar_hcall_norets(H_VASI_SIGNAL, handle,
594 H_VASI_SIGNAL_CANCEL, reason_code);
596 pr_err("H_VASI_SIGNAL error: %ld\n", hvrc);
599 static int pseries_suspend(u64 handle)
601 const unsigned int max_attempts = 5;
602 unsigned int retry_interval_ms = 1;
603 unsigned int attempt = 1;
607 struct pseries_suspend_info info;
608 unsigned long vasi_state;
611 info = (struct pseries_suspend_info) {
612 .counter = ATOMIC_INIT(0),
616 ret = stop_machine(do_join, &info, cpu_online_mask);
620 * Encountered an error. If the VASI stream is still
621 * in Suspending state, it's likely a transient
622 * condition related to some device in the partition
623 * and we can retry in the hope that the cause has
624 * cleared after some delay.
626 * A better design would allow drivers etc to prepare
627 * for the suspend and avoid conditions which prevent
628 * the suspend from succeeding. For now, we have this
631 pr_notice("Partition suspend attempt %u of %u error: %d\n",
632 attempt, max_attempts, ret);
634 if (attempt == max_attempts)
637 vasi_err = poll_vasi_state(handle, &vasi_state);
639 if (vasi_state != H_VASI_SUSPENDING) {
640 pr_notice("VASI state %lu after failed suspend\n",
644 } else if (vasi_err != -EOPNOTSUPP) {
645 pr_err("VASI state poll error: %d", vasi_err);
649 pr_notice("Will retry partition suspend after %u ms\n",
652 msleep(retry_interval_ms);
653 retry_interval_ms *= 10;
660 static int pseries_migrate_partition(u64 handle)
664 ret = wait_for_vasi_session_suspending(handle);
668 ret = pseries_suspend(handle);
670 post_mobility_fixup();
672 pseries_cancel_migration(handle, ret);
677 int rtas_syscall_dispatch_ibm_suspend_me(u64 handle)
679 return pseries_migrate_partition(handle);
682 static ssize_t migration_store(struct class *class,
683 struct class_attribute *attr, const char *buf,
689 rc = kstrtou64(buf, 0, &streamid);
693 rc = pseries_migrate_partition(streamid);
701 * Used by drmgr to determine the kernel behavior of the migration interface.
703 * Version 1: Performs all PAPR requirements for migration including
704 * firmware activation and device tree update.
706 #define MIGRATION_API_VERSION 1
708 static CLASS_ATTR_WO(migration);
709 static CLASS_ATTR_STRING(api_version, 0444, __stringify(MIGRATION_API_VERSION));
711 static int __init mobility_sysfs_init(void)
715 mobility_kobj = kobject_create_and_add("mobility", kernel_kobj);
719 rc = sysfs_create_file(mobility_kobj, &class_attr_migration.attr);
721 pr_err("unable to create migration sysfs file (%d)\n", rc);
723 rc = sysfs_create_file(mobility_kobj, &class_attr_api_version.attr.attr);
725 pr_err("unable to create api_version sysfs file (%d)\n", rc);
729 machine_device_initcall(pseries, mobility_sysfs_init);
projects / releases.git / blob