1 // SPDX-License-Identifier: GPL-2.0-only
3 * Copyright (C) 2007-2010 Advanced Micro Devices, Inc.
4 * Author: Joerg Roedel <jroedel@suse.de>
5 * Leo Duran <leo.duran@amd.com>
8 #define pr_fmt(fmt) "AMD-Vi: " fmt
9 #define dev_fmt(fmt) pr_fmt(fmt)
11 #include <linux/ratelimit.h>
12 #include <linux/pci.h>
13 #include <linux/acpi.h>
14 #include <linux/pci-ats.h>
15 #include <linux/bitmap.h>
16 #include <linux/slab.h>
17 #include <linux/debugfs.h>
18 #include <linux/scatterlist.h>
19 #include <linux/dma-map-ops.h>
20 #include <linux/dma-direct.h>
21 #include <linux/iommu-helper.h>
22 #include <linux/delay.h>
23 #include <linux/amd-iommu.h>
24 #include <linux/notifier.h>
25 #include <linux/export.h>
26 #include <linux/irq.h>
27 #include <linux/msi.h>
28 #include <linux/irqdomain.h>
29 #include <linux/percpu.h>
30 #include <linux/io-pgtable.h>
31 #include <linux/cc_platform.h>
32 #include <asm/irq_remapping.h>
33 #include <asm/io_apic.h>
35 #include <asm/hw_irq.h>
36 #include <asm/proto.h>
37 #include <asm/iommu.h>
40 #include <uapi/linux/iommufd.h>
42 #include "amd_iommu.h"
43 #include "../dma-iommu.h"
44 #include "../irq_remapping.h"
46 #define CMD_SET_TYPE(cmd, t) ((cmd)->data[1] |= ((t) << 28))
48 /* Reserved IOVA ranges */
49 #define MSI_RANGE_START (0xfee00000)
50 #define MSI_RANGE_END (0xfeefffff)
51 #define HT_RANGE_START (0xfd00000000ULL)
52 #define HT_RANGE_END (0xffffffffffULL)
54 #define DEFAULT_PGTABLE_LEVEL PAGE_MODE_3_LEVEL
56 static DEFINE_SPINLOCK(pd_bitmap_lock);
58 LIST_HEAD(ioapic_map);
60 LIST_HEAD(acpihid_map);
62 const struct iommu_ops amd_iommu_ops;
63 static const struct iommu_dirty_ops amd_dirty_ops;
65 int amd_iommu_max_glx_val = -1;
68 * general struct to manage commands send to an IOMMU
74 struct kmem_cache *amd_iommu_irq_cache;
76 static void detach_device(struct device *dev);
78 static void set_dte_entry(struct amd_iommu *iommu,
79 struct iommu_dev_data *dev_data);
81 /****************************************************************************
85 ****************************************************************************/
87 static inline bool pdom_is_v2_pgtbl_mode(struct protection_domain *pdom)
89 return (pdom && (pdom->pd_mode == PD_MODE_V2));
92 static inline int get_acpihid_device_id(struct device *dev,
93 struct acpihid_map_entry **entry)
95 struct acpi_device *adev = ACPI_COMPANION(dev);
96 struct acpihid_map_entry *p;
101 list_for_each_entry(p, &acpihid_map, list) {
102 if (acpi_dev_hid_uid_match(adev, p->hid,
103 p->uid[0] ? p->uid : NULL)) {
112 static inline int get_device_sbdf_id(struct device *dev)
117 sbdf = get_pci_sbdf_id(to_pci_dev(dev));
119 sbdf = get_acpihid_device_id(dev, NULL);
124 struct dev_table_entry *get_dev_table(struct amd_iommu *iommu)
126 struct dev_table_entry *dev_table;
127 struct amd_iommu_pci_seg *pci_seg = iommu->pci_seg;
129 BUG_ON(pci_seg == NULL);
130 dev_table = pci_seg->dev_table;
131 BUG_ON(dev_table == NULL);
136 static inline u16 get_device_segment(struct device *dev)
140 if (dev_is_pci(dev)) {
141 struct pci_dev *pdev = to_pci_dev(dev);
143 seg = pci_domain_nr(pdev->bus);
145 u32 devid = get_acpihid_device_id(dev, NULL);
147 seg = PCI_SBDF_TO_SEGID(devid);
153 /* Writes the specific IOMMU for a device into the PCI segment rlookup table */
154 void amd_iommu_set_rlookup_table(struct amd_iommu *iommu, u16 devid)
156 struct amd_iommu_pci_seg *pci_seg = iommu->pci_seg;
158 pci_seg->rlookup_table[devid] = iommu;
161 static struct amd_iommu *__rlookup_amd_iommu(u16 seg, u16 devid)
163 struct amd_iommu_pci_seg *pci_seg;
165 for_each_pci_segment(pci_seg) {
166 if (pci_seg->id == seg)
167 return pci_seg->rlookup_table[devid];
172 static struct amd_iommu *rlookup_amd_iommu(struct device *dev)
174 u16 seg = get_device_segment(dev);
175 int devid = get_device_sbdf_id(dev);
179 return __rlookup_amd_iommu(seg, PCI_SBDF_TO_DEVID(devid));
182 static struct protection_domain *to_pdomain(struct iommu_domain *dom)
184 return container_of(dom, struct protection_domain, domain);
187 static struct iommu_dev_data *alloc_dev_data(struct amd_iommu *iommu, u16 devid)
189 struct iommu_dev_data *dev_data;
190 struct amd_iommu_pci_seg *pci_seg = iommu->pci_seg;
192 dev_data = kzalloc(sizeof(*dev_data), GFP_KERNEL);
196 spin_lock_init(&dev_data->lock);
197 dev_data->devid = devid;
198 ratelimit_default_init(&dev_data->rs);
200 llist_add(&dev_data->dev_data_list, &pci_seg->dev_data_list);
204 static struct iommu_dev_data *search_dev_data(struct amd_iommu *iommu, u16 devid)
206 struct iommu_dev_data *dev_data;
207 struct llist_node *node;
208 struct amd_iommu_pci_seg *pci_seg = iommu->pci_seg;
210 if (llist_empty(&pci_seg->dev_data_list))
213 node = pci_seg->dev_data_list.first;
214 llist_for_each_entry(dev_data, node, dev_data_list) {
215 if (dev_data->devid == devid)
222 static int clone_alias(struct pci_dev *pdev, u16 alias, void *data)
224 struct amd_iommu *iommu;
225 struct dev_table_entry *dev_table;
226 u16 devid = pci_dev_id(pdev);
231 iommu = rlookup_amd_iommu(&pdev->dev);
235 amd_iommu_set_rlookup_table(iommu, alias);
236 dev_table = get_dev_table(iommu);
237 memcpy(dev_table[alias].data,
238 dev_table[devid].data,
239 sizeof(dev_table[alias].data));
244 static void clone_aliases(struct amd_iommu *iommu, struct device *dev)
246 struct pci_dev *pdev;
248 if (!dev_is_pci(dev))
250 pdev = to_pci_dev(dev);
253 * The IVRS alias stored in the alias table may not be
254 * part of the PCI DMA aliases if it's bus differs
255 * from the original device.
257 clone_alias(pdev, iommu->pci_seg->alias_table[pci_dev_id(pdev)], NULL);
259 pci_for_each_dma_alias(pdev, clone_alias, NULL);
262 static void setup_aliases(struct amd_iommu *iommu, struct device *dev)
264 struct pci_dev *pdev = to_pci_dev(dev);
265 struct amd_iommu_pci_seg *pci_seg = iommu->pci_seg;
268 /* For ACPI HID devices, there are no aliases */
269 if (!dev_is_pci(dev))
273 * Add the IVRS alias to the pci aliases if it is on the same
274 * bus. The IVRS table may know about a quirk that we don't.
276 ivrs_alias = pci_seg->alias_table[pci_dev_id(pdev)];
277 if (ivrs_alias != pci_dev_id(pdev) &&
278 PCI_BUS_NUM(ivrs_alias) == pdev->bus->number)
279 pci_add_dma_alias(pdev, ivrs_alias & 0xff, 1);
281 clone_aliases(iommu, dev);
284 static struct iommu_dev_data *find_dev_data(struct amd_iommu *iommu, u16 devid)
286 struct iommu_dev_data *dev_data;
288 dev_data = search_dev_data(iommu, devid);
290 if (dev_data == NULL) {
291 dev_data = alloc_dev_data(iommu, devid);
295 if (translation_pre_enabled(iommu))
296 dev_data->defer_attach = true;
303 * Find or create an IOMMU group for a acpihid device.
305 static struct iommu_group *acpihid_device_group(struct device *dev)
307 struct acpihid_map_entry *p, *entry = NULL;
310 devid = get_acpihid_device_id(dev, &entry);
312 return ERR_PTR(devid);
314 list_for_each_entry(p, &acpihid_map, list) {
315 if ((devid == p->devid) && p->group)
316 entry->group = p->group;
320 entry->group = generic_device_group(dev);
322 iommu_group_ref_get(entry->group);
327 static inline bool pdev_pasid_supported(struct iommu_dev_data *dev_data)
329 return (dev_data->flags & AMD_IOMMU_DEVICE_FLAG_PASID_SUP);
332 static u32 pdev_get_caps(struct pci_dev *pdev)
337 if (pci_ats_supported(pdev))
338 flags |= AMD_IOMMU_DEVICE_FLAG_ATS_SUP;
340 if (pci_pri_supported(pdev))
341 flags |= AMD_IOMMU_DEVICE_FLAG_PRI_SUP;
343 features = pci_pasid_features(pdev);
345 flags |= AMD_IOMMU_DEVICE_FLAG_PASID_SUP;
347 if (features & PCI_PASID_CAP_EXEC)
348 flags |= AMD_IOMMU_DEVICE_FLAG_EXEC_SUP;
350 if (features & PCI_PASID_CAP_PRIV)
351 flags |= AMD_IOMMU_DEVICE_FLAG_PRIV_SUP;
357 static inline int pdev_enable_cap_ats(struct pci_dev *pdev)
359 struct iommu_dev_data *dev_data = dev_iommu_priv_get(&pdev->dev);
362 if (dev_data->ats_enabled)
365 if (amd_iommu_iotlb_sup &&
366 (dev_data->flags & AMD_IOMMU_DEVICE_FLAG_ATS_SUP)) {
367 ret = pci_enable_ats(pdev, PAGE_SHIFT);
369 dev_data->ats_enabled = 1;
370 dev_data->ats_qdep = pci_ats_queue_depth(pdev);
377 static inline void pdev_disable_cap_ats(struct pci_dev *pdev)
379 struct iommu_dev_data *dev_data = dev_iommu_priv_get(&pdev->dev);
381 if (dev_data->ats_enabled) {
382 pci_disable_ats(pdev);
383 dev_data->ats_enabled = 0;
387 int amd_iommu_pdev_enable_cap_pri(struct pci_dev *pdev)
389 struct iommu_dev_data *dev_data = dev_iommu_priv_get(&pdev->dev);
392 if (dev_data->pri_enabled)
395 if (dev_data->flags & AMD_IOMMU_DEVICE_FLAG_PRI_SUP) {
397 * First reset the PRI state of the device.
398 * FIXME: Hardcode number of outstanding requests for now
400 if (!pci_reset_pri(pdev) && !pci_enable_pri(pdev, 32)) {
401 dev_data->pri_enabled = 1;
402 dev_data->pri_tlp = pci_prg_resp_pasid_required(pdev);
411 void amd_iommu_pdev_disable_cap_pri(struct pci_dev *pdev)
413 struct iommu_dev_data *dev_data = dev_iommu_priv_get(&pdev->dev);
415 if (dev_data->pri_enabled) {
416 pci_disable_pri(pdev);
417 dev_data->pri_enabled = 0;
421 static inline int pdev_enable_cap_pasid(struct pci_dev *pdev)
423 struct iommu_dev_data *dev_data = dev_iommu_priv_get(&pdev->dev);
426 if (dev_data->pasid_enabled)
429 if (dev_data->flags & AMD_IOMMU_DEVICE_FLAG_PASID_SUP) {
430 /* Only allow access to user-accessible pages */
431 ret = pci_enable_pasid(pdev, 0);
433 dev_data->pasid_enabled = 1;
439 static inline void pdev_disable_cap_pasid(struct pci_dev *pdev)
441 struct iommu_dev_data *dev_data = dev_iommu_priv_get(&pdev->dev);
443 if (dev_data->pasid_enabled) {
444 pci_disable_pasid(pdev);
445 dev_data->pasid_enabled = 0;
449 static void pdev_enable_caps(struct pci_dev *pdev)
451 pdev_enable_cap_ats(pdev);
452 pdev_enable_cap_pasid(pdev);
453 amd_iommu_pdev_enable_cap_pri(pdev);
457 static void pdev_disable_caps(struct pci_dev *pdev)
459 pdev_disable_cap_ats(pdev);
460 pdev_disable_cap_pasid(pdev);
461 amd_iommu_pdev_disable_cap_pri(pdev);
465 * This function checks if the driver got a valid device from the caller to
466 * avoid dereferencing invalid pointers.
468 static bool check_device(struct device *dev)
470 struct amd_iommu_pci_seg *pci_seg;
471 struct amd_iommu *iommu;
477 sbdf = get_device_sbdf_id(dev);
480 devid = PCI_SBDF_TO_DEVID(sbdf);
482 iommu = rlookup_amd_iommu(dev);
486 /* Out of our scope? */
487 pci_seg = iommu->pci_seg;
488 if (devid > pci_seg->last_bdf)
494 static int iommu_init_device(struct amd_iommu *iommu, struct device *dev)
496 struct iommu_dev_data *dev_data;
499 if (dev_iommu_priv_get(dev))
502 sbdf = get_device_sbdf_id(dev);
506 devid = PCI_SBDF_TO_DEVID(sbdf);
507 dev_data = find_dev_data(iommu, devid);
512 setup_aliases(iommu, dev);
515 * By default we use passthrough mode for IOMMUv2 capable device.
516 * But if amd_iommu=force_isolation is set (e.g. to debug DMA to
517 * invalid address), we ignore the capability for the device so
518 * it'll be forced to go into translation mode.
520 if ((iommu_default_passthrough() || !amd_iommu_force_isolation) &&
521 dev_is_pci(dev) && amd_iommu_gt_ppr_supported()) {
522 dev_data->flags = pdev_get_caps(to_pci_dev(dev));
525 dev_iommu_priv_set(dev, dev_data);
530 static void iommu_ignore_device(struct amd_iommu *iommu, struct device *dev)
532 struct amd_iommu_pci_seg *pci_seg = iommu->pci_seg;
533 struct dev_table_entry *dev_table = get_dev_table(iommu);
536 sbdf = get_device_sbdf_id(dev);
540 devid = PCI_SBDF_TO_DEVID(sbdf);
541 pci_seg->rlookup_table[devid] = NULL;
542 memset(&dev_table[devid], 0, sizeof(struct dev_table_entry));
544 setup_aliases(iommu, dev);
547 static void amd_iommu_uninit_device(struct device *dev)
549 struct iommu_dev_data *dev_data;
551 dev_data = dev_iommu_priv_get(dev);
555 if (dev_data->domain)
559 * We keep dev_data around for unplugged devices and reuse it when the
560 * device is re-plugged - not doing so would introduce a ton of races.
564 /****************************************************************************
566 * Interrupt handling functions
568 ****************************************************************************/
570 static void dump_dte_entry(struct amd_iommu *iommu, u16 devid)
573 struct dev_table_entry *dev_table = get_dev_table(iommu);
575 for (i = 0; i < 4; ++i)
576 pr_err("DTE[%d]: %016llx\n", i, dev_table[devid].data[i]);
579 static void dump_command(unsigned long phys_addr)
581 struct iommu_cmd *cmd = iommu_phys_to_virt(phys_addr);
584 for (i = 0; i < 4; ++i)
585 pr_err("CMD[%d]: %08x\n", i, cmd->data[i]);
588 static void amd_iommu_report_rmp_hw_error(struct amd_iommu *iommu, volatile u32 *event)
590 struct iommu_dev_data *dev_data = NULL;
591 int devid, vmg_tag, flags;
592 struct pci_dev *pdev;
595 devid = (event[0] >> EVENT_DEVID_SHIFT) & EVENT_DEVID_MASK;
596 vmg_tag = (event[1]) & 0xFFFF;
597 flags = (event[1] >> EVENT_FLAGS_SHIFT) & EVENT_FLAGS_MASK;
598 spa = ((u64)event[3] << 32) | (event[2] & 0xFFFFFFF8);
600 pdev = pci_get_domain_bus_and_slot(iommu->pci_seg->id, PCI_BUS_NUM(devid),
603 dev_data = dev_iommu_priv_get(&pdev->dev);
606 if (__ratelimit(&dev_data->rs)) {
607 pci_err(pdev, "Event logged [RMP_HW_ERROR vmg_tag=0x%04x, spa=0x%llx, flags=0x%04x]\n",
608 vmg_tag, spa, flags);
611 pr_err_ratelimited("Event logged [RMP_HW_ERROR device=%04x:%02x:%02x.%x, vmg_tag=0x%04x, spa=0x%llx, flags=0x%04x]\n",
612 iommu->pci_seg->id, PCI_BUS_NUM(devid), PCI_SLOT(devid), PCI_FUNC(devid),
613 vmg_tag, spa, flags);
620 static void amd_iommu_report_rmp_fault(struct amd_iommu *iommu, volatile u32 *event)
622 struct iommu_dev_data *dev_data = NULL;
623 int devid, flags_rmp, vmg_tag, flags;
624 struct pci_dev *pdev;
627 devid = (event[0] >> EVENT_DEVID_SHIFT) & EVENT_DEVID_MASK;
628 flags_rmp = (event[0] >> EVENT_FLAGS_SHIFT) & 0xFF;
629 vmg_tag = (event[1]) & 0xFFFF;
630 flags = (event[1] >> EVENT_FLAGS_SHIFT) & EVENT_FLAGS_MASK;
631 gpa = ((u64)event[3] << 32) | event[2];
633 pdev = pci_get_domain_bus_and_slot(iommu->pci_seg->id, PCI_BUS_NUM(devid),
636 dev_data = dev_iommu_priv_get(&pdev->dev);
639 if (__ratelimit(&dev_data->rs)) {
640 pci_err(pdev, "Event logged [RMP_PAGE_FAULT vmg_tag=0x%04x, gpa=0x%llx, flags_rmp=0x%04x, flags=0x%04x]\n",
641 vmg_tag, gpa, flags_rmp, flags);
644 pr_err_ratelimited("Event logged [RMP_PAGE_FAULT device=%04x:%02x:%02x.%x, vmg_tag=0x%04x, gpa=0x%llx, flags_rmp=0x%04x, flags=0x%04x]\n",
645 iommu->pci_seg->id, PCI_BUS_NUM(devid), PCI_SLOT(devid), PCI_FUNC(devid),
646 vmg_tag, gpa, flags_rmp, flags);
653 #define IS_IOMMU_MEM_TRANSACTION(flags) \
654 (((flags) & EVENT_FLAG_I) == 0)
656 #define IS_WRITE_REQUEST(flags) \
657 ((flags) & EVENT_FLAG_RW)
659 static void amd_iommu_report_page_fault(struct amd_iommu *iommu,
660 u16 devid, u16 domain_id,
661 u64 address, int flags)
663 struct iommu_dev_data *dev_data = NULL;
664 struct pci_dev *pdev;
666 pdev = pci_get_domain_bus_and_slot(iommu->pci_seg->id, PCI_BUS_NUM(devid),
669 dev_data = dev_iommu_priv_get(&pdev->dev);
673 * If this is a DMA fault (for which the I(nterrupt)
674 * bit will be unset), allow report_iommu_fault() to
675 * prevent logging it.
677 if (IS_IOMMU_MEM_TRANSACTION(flags)) {
678 /* Device not attached to domain properly */
679 if (dev_data->domain == NULL) {
680 pr_err_ratelimited("Event logged [Device not attached to domain properly]\n");
681 pr_err_ratelimited(" device=%04x:%02x:%02x.%x domain=0x%04x\n",
682 iommu->pci_seg->id, PCI_BUS_NUM(devid), PCI_SLOT(devid),
683 PCI_FUNC(devid), domain_id);
687 if (!report_iommu_fault(&dev_data->domain->domain,
689 IS_WRITE_REQUEST(flags) ?
695 if (__ratelimit(&dev_data->rs)) {
696 pci_err(pdev, "Event logged [IO_PAGE_FAULT domain=0x%04x address=0x%llx flags=0x%04x]\n",
697 domain_id, address, flags);
700 pr_err_ratelimited("Event logged [IO_PAGE_FAULT device=%04x:%02x:%02x.%x domain=0x%04x address=0x%llx flags=0x%04x]\n",
701 iommu->pci_seg->id, PCI_BUS_NUM(devid), PCI_SLOT(devid), PCI_FUNC(devid),
702 domain_id, address, flags);
710 static void iommu_print_event(struct amd_iommu *iommu, void *__evt)
712 struct device *dev = iommu->iommu.dev;
713 int type, devid, flags, tag;
714 volatile u32 *event = __evt;
720 type = (event[1] >> EVENT_TYPE_SHIFT) & EVENT_TYPE_MASK;
721 devid = (event[0] >> EVENT_DEVID_SHIFT) & EVENT_DEVID_MASK;
722 pasid = (event[0] & EVENT_DOMID_MASK_HI) |
723 (event[1] & EVENT_DOMID_MASK_LO);
724 flags = (event[1] >> EVENT_FLAGS_SHIFT) & EVENT_FLAGS_MASK;
725 address = (u64)(((u64)event[3]) << 32) | event[2];
728 /* Did we hit the erratum? */
729 if (++count == LOOP_TIMEOUT) {
730 pr_err("No event written to event log\n");
737 if (type == EVENT_TYPE_IO_FAULT) {
738 amd_iommu_report_page_fault(iommu, devid, pasid, address, flags);
743 case EVENT_TYPE_ILL_DEV:
744 dev_err(dev, "Event logged [ILLEGAL_DEV_TABLE_ENTRY device=%04x:%02x:%02x.%x pasid=0x%05x address=0x%llx flags=0x%04x]\n",
745 iommu->pci_seg->id, PCI_BUS_NUM(devid), PCI_SLOT(devid), PCI_FUNC(devid),
746 pasid, address, flags);
747 dump_dte_entry(iommu, devid);
749 case EVENT_TYPE_DEV_TAB_ERR:
750 dev_err(dev, "Event logged [DEV_TAB_HARDWARE_ERROR device=%04x:%02x:%02x.%x "
751 "address=0x%llx flags=0x%04x]\n",
752 iommu->pci_seg->id, PCI_BUS_NUM(devid), PCI_SLOT(devid), PCI_FUNC(devid),
755 case EVENT_TYPE_PAGE_TAB_ERR:
756 dev_err(dev, "Event logged [PAGE_TAB_HARDWARE_ERROR device=%04x:%02x:%02x.%x pasid=0x%04x address=0x%llx flags=0x%04x]\n",
757 iommu->pci_seg->id, PCI_BUS_NUM(devid), PCI_SLOT(devid), PCI_FUNC(devid),
758 pasid, address, flags);
760 case EVENT_TYPE_ILL_CMD:
761 dev_err(dev, "Event logged [ILLEGAL_COMMAND_ERROR address=0x%llx]\n", address);
762 dump_command(address);
764 case EVENT_TYPE_CMD_HARD_ERR:
765 dev_err(dev, "Event logged [COMMAND_HARDWARE_ERROR address=0x%llx flags=0x%04x]\n",
768 case EVENT_TYPE_IOTLB_INV_TO:
769 dev_err(dev, "Event logged [IOTLB_INV_TIMEOUT device=%04x:%02x:%02x.%x address=0x%llx]\n",
770 iommu->pci_seg->id, PCI_BUS_NUM(devid), PCI_SLOT(devid), PCI_FUNC(devid),
773 case EVENT_TYPE_INV_DEV_REQ:
774 dev_err(dev, "Event logged [INVALID_DEVICE_REQUEST device=%04x:%02x:%02x.%x pasid=0x%05x address=0x%llx flags=0x%04x]\n",
775 iommu->pci_seg->id, PCI_BUS_NUM(devid), PCI_SLOT(devid), PCI_FUNC(devid),
776 pasid, address, flags);
778 case EVENT_TYPE_RMP_FAULT:
779 amd_iommu_report_rmp_fault(iommu, event);
781 case EVENT_TYPE_RMP_HW_ERR:
782 amd_iommu_report_rmp_hw_error(iommu, event);
784 case EVENT_TYPE_INV_PPR_REQ:
785 pasid = PPR_PASID(*((u64 *)__evt));
786 tag = event[1] & 0x03FF;
787 dev_err(dev, "Event logged [INVALID_PPR_REQUEST device=%04x:%02x:%02x.%x pasid=0x%05x address=0x%llx flags=0x%04x tag=0x%03x]\n",
788 iommu->pci_seg->id, PCI_BUS_NUM(devid), PCI_SLOT(devid), PCI_FUNC(devid),
789 pasid, address, flags, tag);
792 dev_err(dev, "Event logged [UNKNOWN event[0]=0x%08x event[1]=0x%08x event[2]=0x%08x event[3]=0x%08x\n",
793 event[0], event[1], event[2], event[3]);
797 * To detect the hardware errata 732 we need to clear the
798 * entry back to zero. This issue does not exist on SNP
799 * enabled system. Also this buffer is not writeable on
800 * SNP enabled system.
802 if (!amd_iommu_snp_en)
803 memset(__evt, 0, 4 * sizeof(u32));
806 static void iommu_poll_events(struct amd_iommu *iommu)
810 head = readl(iommu->mmio_base + MMIO_EVT_HEAD_OFFSET);
811 tail = readl(iommu->mmio_base + MMIO_EVT_TAIL_OFFSET);
813 while (head != tail) {
814 iommu_print_event(iommu, iommu->evt_buf + head);
815 head = (head + EVENT_ENTRY_SIZE) % EVT_BUFFER_SIZE;
818 writel(head, iommu->mmio_base + MMIO_EVT_HEAD_OFFSET);
821 static void iommu_poll_ppr_log(struct amd_iommu *iommu)
825 if (iommu->ppr_log == NULL)
828 head = readl(iommu->mmio_base + MMIO_PPR_HEAD_OFFSET);
829 tail = readl(iommu->mmio_base + MMIO_PPR_TAIL_OFFSET);
831 while (head != tail) {
836 raw = (u64 *)(iommu->ppr_log + head);
839 * Hardware bug: Interrupt may arrive before the entry is
840 * written to memory. If this happens we need to wait for the
843 for (i = 0; i < LOOP_TIMEOUT; ++i) {
844 if (PPR_REQ_TYPE(raw[0]) != 0)
849 /* Avoid memcpy function-call overhead */
854 * To detect the hardware errata 733 we need to clear the
855 * entry back to zero. This issue does not exist on SNP
856 * enabled system. Also this buffer is not writeable on
857 * SNP enabled system.
859 if (!amd_iommu_snp_en)
860 raw[0] = raw[1] = 0UL;
862 /* Update head pointer of hardware ring-buffer */
863 head = (head + PPR_ENTRY_SIZE) % PPR_LOG_SIZE;
864 writel(head, iommu->mmio_base + MMIO_PPR_HEAD_OFFSET);
866 /* TODO: PPR Handler will be added when we add IOPF support */
868 /* Refresh ring-buffer information */
869 head = readl(iommu->mmio_base + MMIO_PPR_HEAD_OFFSET);
870 tail = readl(iommu->mmio_base + MMIO_PPR_TAIL_OFFSET);
874 #ifdef CONFIG_IRQ_REMAP
875 static int (*iommu_ga_log_notifier)(u32);
877 int amd_iommu_register_ga_log_notifier(int (*notifier)(u32))
879 iommu_ga_log_notifier = notifier;
883 EXPORT_SYMBOL(amd_iommu_register_ga_log_notifier);
885 static void iommu_poll_ga_log(struct amd_iommu *iommu)
889 if (iommu->ga_log == NULL)
892 head = readl(iommu->mmio_base + MMIO_GA_HEAD_OFFSET);
893 tail = readl(iommu->mmio_base + MMIO_GA_TAIL_OFFSET);
895 while (head != tail) {
899 raw = (u64 *)(iommu->ga_log + head);
901 /* Avoid memcpy function-call overhead */
904 /* Update head pointer of hardware ring-buffer */
905 head = (head + GA_ENTRY_SIZE) % GA_LOG_SIZE;
906 writel(head, iommu->mmio_base + MMIO_GA_HEAD_OFFSET);
908 /* Handle GA entry */
909 switch (GA_REQ_TYPE(log_entry)) {
911 if (!iommu_ga_log_notifier)
914 pr_debug("%s: devid=%#x, ga_tag=%#x\n",
915 __func__, GA_DEVID(log_entry),
918 if (iommu_ga_log_notifier(GA_TAG(log_entry)) != 0)
919 pr_err("GA log notifier failed.\n");
928 amd_iommu_set_pci_msi_domain(struct device *dev, struct amd_iommu *iommu)
930 if (!irq_remapping_enabled || !dev_is_pci(dev) ||
931 !pci_dev_has_default_msi_parent_domain(to_pci_dev(dev)))
934 dev_set_msi_domain(dev, iommu->ir_domain);
937 #else /* CONFIG_IRQ_REMAP */
939 amd_iommu_set_pci_msi_domain(struct device *dev, struct amd_iommu *iommu) { }
940 #endif /* !CONFIG_IRQ_REMAP */
942 static void amd_iommu_handle_irq(void *data, const char *evt_type,
943 u32 int_mask, u32 overflow_mask,
944 void (*int_handler)(struct amd_iommu *),
945 void (*overflow_handler)(struct amd_iommu *))
947 struct amd_iommu *iommu = (struct amd_iommu *) data;
948 u32 status = readl(iommu->mmio_base + MMIO_STATUS_OFFSET);
949 u32 mask = int_mask | overflow_mask;
951 while (status & mask) {
952 /* Enable interrupt sources again */
953 writel(mask, iommu->mmio_base + MMIO_STATUS_OFFSET);
956 pr_devel("Processing IOMMU (ivhd%d) %s Log\n",
957 iommu->index, evt_type);
961 if ((status & overflow_mask) && overflow_handler)
962 overflow_handler(iommu);
965 * Hardware bug: ERBT1312
966 * When re-enabling interrupt (by writing 1
967 * to clear the bit), the hardware might also try to set
968 * the interrupt bit in the event status register.
969 * In this scenario, the bit will be set, and disable
970 * subsequent interrupts.
972 * Workaround: The IOMMU driver should read back the
973 * status register and check if the interrupt bits are cleared.
974 * If not, driver will need to go through the interrupt handler
975 * again and re-clear the bits
977 status = readl(iommu->mmio_base + MMIO_STATUS_OFFSET);
981 irqreturn_t amd_iommu_int_thread_evtlog(int irq, void *data)
983 amd_iommu_handle_irq(data, "Evt", MMIO_STATUS_EVT_INT_MASK,
984 MMIO_STATUS_EVT_OVERFLOW_MASK,
985 iommu_poll_events, amd_iommu_restart_event_logging);
990 irqreturn_t amd_iommu_int_thread_pprlog(int irq, void *data)
992 amd_iommu_handle_irq(data, "PPR", MMIO_STATUS_PPR_INT_MASK,
993 MMIO_STATUS_PPR_OVERFLOW_MASK,
994 iommu_poll_ppr_log, amd_iommu_restart_ppr_log);
999 irqreturn_t amd_iommu_int_thread_galog(int irq, void *data)
1001 #ifdef CONFIG_IRQ_REMAP
1002 amd_iommu_handle_irq(data, "GA", MMIO_STATUS_GALOG_INT_MASK,
1003 MMIO_STATUS_GALOG_OVERFLOW_MASK,
1004 iommu_poll_ga_log, amd_iommu_restart_ga_log);
1010 irqreturn_t amd_iommu_int_thread(int irq, void *data)
1012 amd_iommu_int_thread_evtlog(irq, data);
1013 amd_iommu_int_thread_pprlog(irq, data);
1014 amd_iommu_int_thread_galog(irq, data);
1019 irqreturn_t amd_iommu_int_handler(int irq, void *data)
1021 return IRQ_WAKE_THREAD;
1024 /****************************************************************************
1026 * IOMMU command queuing functions
1028 ****************************************************************************/
1030 static int wait_on_sem(struct amd_iommu *iommu, u64 data)
1034 while (*iommu->cmd_sem != data && i < LOOP_TIMEOUT) {
1039 if (i == LOOP_TIMEOUT) {
1040 pr_alert("Completion-Wait loop timed out\n");
1047 static void copy_cmd_to_buffer(struct amd_iommu *iommu,
1048 struct iommu_cmd *cmd)
1053 /* Copy command to buffer */
1054 tail = iommu->cmd_buf_tail;
1055 target = iommu->cmd_buf + tail;
1056 memcpy(target, cmd, sizeof(*cmd));
1058 tail = (tail + sizeof(*cmd)) % CMD_BUFFER_SIZE;
1059 iommu->cmd_buf_tail = tail;
1061 /* Tell the IOMMU about it */
1062 writel(tail, iommu->mmio_base + MMIO_CMD_TAIL_OFFSET);
1065 static void build_completion_wait(struct iommu_cmd *cmd,
1066 struct amd_iommu *iommu,
1069 u64 paddr = iommu_virt_to_phys((void *)iommu->cmd_sem);
1071 memset(cmd, 0, sizeof(*cmd));
1072 cmd->data[0] = lower_32_bits(paddr) | CMD_COMPL_WAIT_STORE_MASK;
1073 cmd->data[1] = upper_32_bits(paddr);
1074 cmd->data[2] = lower_32_bits(data);
1075 cmd->data[3] = upper_32_bits(data);
1076 CMD_SET_TYPE(cmd, CMD_COMPL_WAIT);
1079 static void build_inv_dte(struct iommu_cmd *cmd, u16 devid)
1081 memset(cmd, 0, sizeof(*cmd));
1082 cmd->data[0] = devid;
1083 CMD_SET_TYPE(cmd, CMD_INV_DEV_ENTRY);
1087 * Builds an invalidation address which is suitable for one page or multiple
1088 * pages. Sets the size bit (S) as needed is more than one page is flushed.
1090 static inline u64 build_inv_address(u64 address, size_t size)
1092 u64 pages, end, msb_diff;
1094 pages = iommu_num_pages(address, size, PAGE_SIZE);
1097 return address & PAGE_MASK;
1099 end = address + size - 1;
1102 * msb_diff would hold the index of the most significant bit that
1103 * flipped between the start and end.
1105 msb_diff = fls64(end ^ address) - 1;
1108 * Bits 63:52 are sign extended. If for some reason bit 51 is different
1109 * between the start and the end, invalidate everything.
1111 if (unlikely(msb_diff > 51)) {
1112 address = CMD_INV_IOMMU_ALL_PAGES_ADDRESS;
1115 * The msb-bit must be clear on the address. Just set all the
1118 address |= (1ull << msb_diff) - 1;
1121 /* Clear bits 11:0 */
1122 address &= PAGE_MASK;
1124 /* Set the size bit - we flush more than one 4kb page */
1125 return address | CMD_INV_IOMMU_PAGES_SIZE_MASK;
1128 static void build_inv_iommu_pages(struct iommu_cmd *cmd, u64 address,
1129 size_t size, u16 domid,
1130 ioasid_t pasid, bool gn)
1132 u64 inv_address = build_inv_address(address, size);
1134 memset(cmd, 0, sizeof(*cmd));
1136 cmd->data[1] |= domid;
1137 cmd->data[2] = lower_32_bits(inv_address);
1138 cmd->data[3] = upper_32_bits(inv_address);
1139 /* PDE bit - we want to flush everything, not only the PTEs */
1140 cmd->data[2] |= CMD_INV_IOMMU_PAGES_PDE_MASK;
1142 cmd->data[0] |= pasid;
1143 cmd->data[2] |= CMD_INV_IOMMU_PAGES_GN_MASK;
1145 CMD_SET_TYPE(cmd, CMD_INV_IOMMU_PAGES);
1148 static void build_inv_iotlb_pages(struct iommu_cmd *cmd, u16 devid, int qdep,
1149 u64 address, size_t size,
1150 ioasid_t pasid, bool gn)
1152 u64 inv_address = build_inv_address(address, size);
1154 memset(cmd, 0, sizeof(*cmd));
1156 cmd->data[0] = devid;
1157 cmd->data[0] |= (qdep & 0xff) << 24;
1158 cmd->data[1] = devid;
1159 cmd->data[2] = lower_32_bits(inv_address);
1160 cmd->data[3] = upper_32_bits(inv_address);
1162 cmd->data[0] |= ((pasid >> 8) & 0xff) << 16;
1163 cmd->data[1] |= (pasid & 0xff) << 16;
1164 cmd->data[2] |= CMD_INV_IOMMU_PAGES_GN_MASK;
1167 CMD_SET_TYPE(cmd, CMD_INV_IOTLB_PAGES);
1170 static void build_complete_ppr(struct iommu_cmd *cmd, u16 devid, u32 pasid,
1171 int status, int tag, u8 gn)
1173 memset(cmd, 0, sizeof(*cmd));
1175 cmd->data[0] = devid;
1177 cmd->data[1] = pasid;
1178 cmd->data[2] = CMD_INV_IOMMU_PAGES_GN_MASK;
1180 cmd->data[3] = tag & 0x1ff;
1181 cmd->data[3] |= (status & PPR_STATUS_MASK) << PPR_STATUS_SHIFT;
1183 CMD_SET_TYPE(cmd, CMD_COMPLETE_PPR);
1186 static void build_inv_all(struct iommu_cmd *cmd)
1188 memset(cmd, 0, sizeof(*cmd));
1189 CMD_SET_TYPE(cmd, CMD_INV_ALL);
1192 static void build_inv_irt(struct iommu_cmd *cmd, u16 devid)
1194 memset(cmd, 0, sizeof(*cmd));
1195 cmd->data[0] = devid;
1196 CMD_SET_TYPE(cmd, CMD_INV_IRT);
1200 * Writes the command to the IOMMUs command buffer and informs the
1201 * hardware about the new command.
1203 static int __iommu_queue_command_sync(struct amd_iommu *iommu,
1204 struct iommu_cmd *cmd,
1207 unsigned int count = 0;
1208 u32 left, next_tail;
1210 next_tail = (iommu->cmd_buf_tail + sizeof(*cmd)) % CMD_BUFFER_SIZE;
1212 left = (iommu->cmd_buf_head - next_tail) % CMD_BUFFER_SIZE;
1215 /* Skip udelay() the first time around */
1217 if (count == LOOP_TIMEOUT) {
1218 pr_err("Command buffer timeout\n");
1225 /* Update head and recheck remaining space */
1226 iommu->cmd_buf_head = readl(iommu->mmio_base +
1227 MMIO_CMD_HEAD_OFFSET);
1232 copy_cmd_to_buffer(iommu, cmd);
1234 /* Do we need to make sure all commands are processed? */
1235 iommu->need_sync = sync;
1240 static int iommu_queue_command_sync(struct amd_iommu *iommu,
1241 struct iommu_cmd *cmd,
1244 unsigned long flags;
1247 raw_spin_lock_irqsave(&iommu->lock, flags);
1248 ret = __iommu_queue_command_sync(iommu, cmd, sync);
1249 raw_spin_unlock_irqrestore(&iommu->lock, flags);
1254 static int iommu_queue_command(struct amd_iommu *iommu, struct iommu_cmd *cmd)
1256 return iommu_queue_command_sync(iommu, cmd, true);
1260 * This function queues a completion wait command into the command
1261 * buffer of an IOMMU
1263 static int iommu_completion_wait(struct amd_iommu *iommu)
1265 struct iommu_cmd cmd;
1266 unsigned long flags;
1270 if (!iommu->need_sync)
1273 data = atomic64_add_return(1, &iommu->cmd_sem_val);
1274 build_completion_wait(&cmd, iommu, data);
1276 raw_spin_lock_irqsave(&iommu->lock, flags);
1278 ret = __iommu_queue_command_sync(iommu, &cmd, false);
1282 ret = wait_on_sem(iommu, data);
1285 raw_spin_unlock_irqrestore(&iommu->lock, flags);
1290 static int iommu_flush_dte(struct amd_iommu *iommu, u16 devid)
1292 struct iommu_cmd cmd;
1294 build_inv_dte(&cmd, devid);
1296 return iommu_queue_command(iommu, &cmd);
1299 static void amd_iommu_flush_dte_all(struct amd_iommu *iommu)
1302 u16 last_bdf = iommu->pci_seg->last_bdf;
1304 for (devid = 0; devid <= last_bdf; ++devid)
1305 iommu_flush_dte(iommu, devid);
1307 iommu_completion_wait(iommu);
1311 * This function uses heavy locking and may disable irqs for some time. But
1312 * this is no issue because it is only called during resume.
1314 static void amd_iommu_flush_tlb_all(struct amd_iommu *iommu)
1317 u16 last_bdf = iommu->pci_seg->last_bdf;
1319 for (dom_id = 0; dom_id <= last_bdf; ++dom_id) {
1320 struct iommu_cmd cmd;
1321 build_inv_iommu_pages(&cmd, 0, CMD_INV_IOMMU_ALL_PAGES_ADDRESS,
1322 dom_id, IOMMU_NO_PASID, false);
1323 iommu_queue_command(iommu, &cmd);
1326 iommu_completion_wait(iommu);
1329 static void amd_iommu_flush_tlb_domid(struct amd_iommu *iommu, u32 dom_id)
1331 struct iommu_cmd cmd;
1333 build_inv_iommu_pages(&cmd, 0, CMD_INV_IOMMU_ALL_PAGES_ADDRESS,
1334 dom_id, IOMMU_NO_PASID, false);
1335 iommu_queue_command(iommu, &cmd);
1337 iommu_completion_wait(iommu);
1340 static void amd_iommu_flush_all(struct amd_iommu *iommu)
1342 struct iommu_cmd cmd;
1344 build_inv_all(&cmd);
1346 iommu_queue_command(iommu, &cmd);
1347 iommu_completion_wait(iommu);
1350 static void iommu_flush_irt(struct amd_iommu *iommu, u16 devid)
1352 struct iommu_cmd cmd;
1354 build_inv_irt(&cmd, devid);
1356 iommu_queue_command(iommu, &cmd);
1359 static void amd_iommu_flush_irt_all(struct amd_iommu *iommu)
1362 u16 last_bdf = iommu->pci_seg->last_bdf;
1364 if (iommu->irtcachedis_enabled)
1367 for (devid = 0; devid <= last_bdf; devid++)
1368 iommu_flush_irt(iommu, devid);
1370 iommu_completion_wait(iommu);
1373 void amd_iommu_flush_all_caches(struct amd_iommu *iommu)
1375 if (check_feature(FEATURE_IA)) {
1376 amd_iommu_flush_all(iommu);
1378 amd_iommu_flush_dte_all(iommu);
1379 amd_iommu_flush_irt_all(iommu);
1380 amd_iommu_flush_tlb_all(iommu);
1385 * Command send function for flushing on-device TLB
1387 static int device_flush_iotlb(struct iommu_dev_data *dev_data, u64 address,
1388 size_t size, ioasid_t pasid, bool gn)
1390 struct amd_iommu *iommu = get_amd_iommu_from_dev_data(dev_data);
1391 struct iommu_cmd cmd;
1392 int qdep = dev_data->ats_qdep;
1394 build_inv_iotlb_pages(&cmd, dev_data->devid, qdep, address,
1397 return iommu_queue_command(iommu, &cmd);
1400 static int device_flush_dte_alias(struct pci_dev *pdev, u16 alias, void *data)
1402 struct amd_iommu *iommu = data;
1404 return iommu_flush_dte(iommu, alias);
1408 * Command send function for invalidating a device table entry
1410 static int device_flush_dte(struct iommu_dev_data *dev_data)
1412 struct amd_iommu *iommu = get_amd_iommu_from_dev_data(dev_data);
1413 struct pci_dev *pdev = NULL;
1414 struct amd_iommu_pci_seg *pci_seg;
1418 if (dev_is_pci(dev_data->dev))
1419 pdev = to_pci_dev(dev_data->dev);
1422 ret = pci_for_each_dma_alias(pdev,
1423 device_flush_dte_alias, iommu);
1425 ret = iommu_flush_dte(iommu, dev_data->devid);
1429 pci_seg = iommu->pci_seg;
1430 alias = pci_seg->alias_table[dev_data->devid];
1431 if (alias != dev_data->devid) {
1432 ret = iommu_flush_dte(iommu, alias);
1437 if (dev_data->ats_enabled) {
1438 /* Invalidate the entire contents of an IOTLB */
1439 ret = device_flush_iotlb(dev_data, 0, ~0UL,
1440 IOMMU_NO_PASID, false);
1446 static int domain_flush_pages_v2(struct protection_domain *pdom,
1447 u64 address, size_t size)
1449 struct iommu_dev_data *dev_data;
1450 struct iommu_cmd cmd;
1453 list_for_each_entry(dev_data, &pdom->dev_list, list) {
1454 struct amd_iommu *iommu = get_amd_iommu_from_dev(dev_data->dev);
1455 u16 domid = dev_data->gcr3_info.domid;
1457 build_inv_iommu_pages(&cmd, address, size,
1458 domid, IOMMU_NO_PASID, true);
1460 ret |= iommu_queue_command(iommu, &cmd);
1466 static int domain_flush_pages_v1(struct protection_domain *pdom,
1467 u64 address, size_t size)
1469 struct iommu_cmd cmd;
1472 build_inv_iommu_pages(&cmd, address, size,
1473 pdom->id, IOMMU_NO_PASID, false);
1475 for (i = 0; i < amd_iommu_get_num_iommus(); ++i) {
1476 if (!pdom->dev_iommu[i])
1480 * Devices of this domain are behind this IOMMU
1481 * We need a TLB flush
1483 ret |= iommu_queue_command(amd_iommus[i], &cmd);
1490 * TLB invalidation function which is called from the mapping functions.
1491 * It flushes range of PTEs of the domain.
1493 static void __domain_flush_pages(struct protection_domain *domain,
1494 u64 address, size_t size)
1496 struct iommu_dev_data *dev_data;
1498 ioasid_t pasid = IOMMU_NO_PASID;
1501 if (pdom_is_v2_pgtbl_mode(domain)) {
1503 ret = domain_flush_pages_v2(domain, address, size);
1505 ret = domain_flush_pages_v1(domain, address, size);
1508 list_for_each_entry(dev_data, &domain->dev_list, list) {
1510 if (!dev_data->ats_enabled)
1513 ret |= device_flush_iotlb(dev_data, address, size, pasid, gn);
1519 void amd_iommu_domain_flush_pages(struct protection_domain *domain,
1520 u64 address, size_t size)
1522 if (likely(!amd_iommu_np_cache)) {
1523 __domain_flush_pages(domain, address, size);
1525 /* Wait until IOMMU TLB and all device IOTLB flushes are complete */
1526 amd_iommu_domain_flush_complete(domain);
1532 * When NpCache is on, we infer that we run in a VM and use a vIOMMU.
1533 * In such setups it is best to avoid flushes of ranges which are not
1534 * naturally aligned, since it would lead to flushes of unmodified
1535 * PTEs. Such flushes would require the hypervisor to do more work than
1536 * necessary. Therefore, perform repeated flushes of aligned ranges
1537 * until you cover the range. Each iteration flushes the smaller
1538 * between the natural alignment of the address that we flush and the
1539 * greatest naturally aligned region that fits in the range.
1542 int addr_alignment = __ffs(address);
1543 int size_alignment = __fls(size);
1548 * size is always non-zero, but address might be zero, causing
1549 * addr_alignment to be negative. As the casting of the
1550 * argument in __ffs(address) to long might trim the high bits
1551 * of the address on x86-32, cast to long when doing the check.
1553 if (likely((unsigned long)address != 0))
1554 min_alignment = min(addr_alignment, size_alignment);
1556 min_alignment = size_alignment;
1558 flush_size = 1ul << min_alignment;
1560 __domain_flush_pages(domain, address, flush_size);
1561 address += flush_size;
1565 /* Wait until IOMMU TLB and all device IOTLB flushes are complete */
1566 amd_iommu_domain_flush_complete(domain);
1569 /* Flush the whole IO/TLB for a given protection domain - including PDE */
1570 static void amd_iommu_domain_flush_all(struct protection_domain *domain)
1572 amd_iommu_domain_flush_pages(domain, 0,
1573 CMD_INV_IOMMU_ALL_PAGES_ADDRESS);
1576 void amd_iommu_dev_flush_pasid_pages(struct iommu_dev_data *dev_data,
1577 ioasid_t pasid, u64 address, size_t size)
1579 struct iommu_cmd cmd;
1580 struct amd_iommu *iommu = get_amd_iommu_from_dev(dev_data->dev);
1582 build_inv_iommu_pages(&cmd, address, size,
1583 dev_data->gcr3_info.domid, pasid, true);
1584 iommu_queue_command(iommu, &cmd);
1586 if (dev_data->ats_enabled)
1587 device_flush_iotlb(dev_data, address, size, pasid, true);
1589 iommu_completion_wait(iommu);
1592 void amd_iommu_dev_flush_pasid_all(struct iommu_dev_data *dev_data,
1595 amd_iommu_dev_flush_pasid_pages(dev_data, 0,
1596 CMD_INV_IOMMU_ALL_PAGES_ADDRESS, pasid);
1599 void amd_iommu_domain_flush_complete(struct protection_domain *domain)
1603 for (i = 0; i < amd_iommu_get_num_iommus(); ++i) {
1604 if (domain && !domain->dev_iommu[i])
1608 * Devices of this domain are behind this IOMMU
1609 * We need to wait for completion of all commands.
1611 iommu_completion_wait(amd_iommus[i]);
1615 /* Flush the not present cache if it exists */
1616 static void domain_flush_np_cache(struct protection_domain *domain,
1617 dma_addr_t iova, size_t size)
1619 if (unlikely(amd_iommu_np_cache)) {
1620 unsigned long flags;
1622 spin_lock_irqsave(&domain->lock, flags);
1623 amd_iommu_domain_flush_pages(domain, iova, size);
1624 spin_unlock_irqrestore(&domain->lock, flags);
1630 * This function flushes the DTEs for all devices in domain
1632 static void domain_flush_devices(struct protection_domain *domain)
1634 struct iommu_dev_data *dev_data;
1636 list_for_each_entry(dev_data, &domain->dev_list, list)
1637 device_flush_dte(dev_data);
1640 static void update_device_table(struct protection_domain *domain)
1642 struct iommu_dev_data *dev_data;
1644 list_for_each_entry(dev_data, &domain->dev_list, list) {
1645 struct amd_iommu *iommu = rlookup_amd_iommu(dev_data->dev);
1647 set_dte_entry(iommu, dev_data);
1648 clone_aliases(iommu, dev_data->dev);
1652 void amd_iommu_update_and_flush_device_table(struct protection_domain *domain)
1654 update_device_table(domain);
1655 domain_flush_devices(domain);
1658 void amd_iommu_domain_update(struct protection_domain *domain)
1660 /* Update device table */
1661 amd_iommu_update_and_flush_device_table(domain);
1663 /* Flush domain TLB(s) and wait for completion */
1664 amd_iommu_domain_flush_all(domain);
1667 int amd_iommu_complete_ppr(struct pci_dev *pdev, u32 pasid,
1668 int status, int tag)
1670 struct iommu_dev_data *dev_data;
1671 struct amd_iommu *iommu;
1672 struct iommu_cmd cmd;
1674 dev_data = dev_iommu_priv_get(&pdev->dev);
1675 iommu = get_amd_iommu_from_dev(&pdev->dev);
1677 build_complete_ppr(&cmd, dev_data->devid, pasid, status,
1678 tag, dev_data->pri_tlp);
1680 return iommu_queue_command(iommu, &cmd);
1683 /****************************************************************************
1685 * The next functions belong to the domain allocation. A domain is
1686 * allocated for every IOMMU as the default domain. If device isolation
1687 * is enabled, every device get its own domain. The most important thing
1688 * about domains is the page table mapping the DMA address space they
1691 ****************************************************************************/
1693 static u16 domain_id_alloc(void)
1695 unsigned long flags;
1698 spin_lock_irqsave(&pd_bitmap_lock, flags);
1699 id = find_first_zero_bit(amd_iommu_pd_alloc_bitmap, MAX_DOMAIN_ID);
1701 if (id > 0 && id < MAX_DOMAIN_ID)
1702 __set_bit(id, amd_iommu_pd_alloc_bitmap);
1705 spin_unlock_irqrestore(&pd_bitmap_lock, flags);
1710 static void domain_id_free(int id)
1712 unsigned long flags;
1714 spin_lock_irqsave(&pd_bitmap_lock, flags);
1715 if (id > 0 && id < MAX_DOMAIN_ID)
1716 __clear_bit(id, amd_iommu_pd_alloc_bitmap);
1717 spin_unlock_irqrestore(&pd_bitmap_lock, flags);
1720 static void free_gcr3_tbl_level1(u64 *tbl)
1725 for (i = 0; i < 512; ++i) {
1726 if (!(tbl[i] & GCR3_VALID))
1729 ptr = iommu_phys_to_virt(tbl[i] & PAGE_MASK);
1731 free_page((unsigned long)ptr);
1735 static void free_gcr3_tbl_level2(u64 *tbl)
1740 for (i = 0; i < 512; ++i) {
1741 if (!(tbl[i] & GCR3_VALID))
1744 ptr = iommu_phys_to_virt(tbl[i] & PAGE_MASK);
1746 free_gcr3_tbl_level1(ptr);
1750 static void free_gcr3_table(struct gcr3_tbl_info *gcr3_info)
1752 if (gcr3_info->glx == 2)
1753 free_gcr3_tbl_level2(gcr3_info->gcr3_tbl);
1754 else if (gcr3_info->glx == 1)
1755 free_gcr3_tbl_level1(gcr3_info->gcr3_tbl);
1757 WARN_ON_ONCE(gcr3_info->glx != 0);
1761 /* Free per device domain ID */
1762 domain_id_free(gcr3_info->domid);
1764 free_page((unsigned long)gcr3_info->gcr3_tbl);
1765 gcr3_info->gcr3_tbl = NULL;
1769 * Number of GCR3 table levels required. Level must be 4-Kbyte
1770 * page and can contain up to 512 entries.
1772 static int get_gcr3_levels(int pasids)
1777 return amd_iommu_max_glx_val;
1779 levels = get_count_order(pasids);
1781 return levels ? (DIV_ROUND_UP(levels, 9) - 1) : levels;
1784 static int setup_gcr3_table(struct gcr3_tbl_info *gcr3_info,
1785 struct amd_iommu *iommu, int pasids)
1787 int levels = get_gcr3_levels(pasids);
1788 int nid = iommu ? dev_to_node(&iommu->dev->dev) : NUMA_NO_NODE;
1790 if (levels > amd_iommu_max_glx_val)
1793 if (gcr3_info->gcr3_tbl)
1796 /* Allocate per device domain ID */
1797 gcr3_info->domid = domain_id_alloc();
1799 gcr3_info->gcr3_tbl = alloc_pgtable_page(nid, GFP_ATOMIC);
1800 if (gcr3_info->gcr3_tbl == NULL) {
1801 domain_id_free(gcr3_info->domid);
1805 gcr3_info->glx = levels;
1810 static u64 *__get_gcr3_pte(struct gcr3_tbl_info *gcr3_info,
1811 ioasid_t pasid, bool alloc)
1815 u64 *root = gcr3_info->gcr3_tbl;
1816 int level = gcr3_info->glx;
1820 index = (pasid >> (9 * level)) & 0x1ff;
1826 if (!(*pte & GCR3_VALID)) {
1830 root = (void *)get_zeroed_page(GFP_ATOMIC);
1834 *pte = iommu_virt_to_phys(root) | GCR3_VALID;
1837 root = iommu_phys_to_virt(*pte & PAGE_MASK);
1845 static int update_gcr3(struct iommu_dev_data *dev_data,
1846 ioasid_t pasid, unsigned long gcr3, bool set)
1848 struct gcr3_tbl_info *gcr3_info = &dev_data->gcr3_info;
1851 pte = __get_gcr3_pte(gcr3_info, pasid, true);
1856 *pte = (gcr3 & PAGE_MASK) | GCR3_VALID;
1860 amd_iommu_dev_flush_pasid_all(dev_data, pasid);
1864 int amd_iommu_set_gcr3(struct iommu_dev_data *dev_data, ioasid_t pasid,
1867 struct gcr3_tbl_info *gcr3_info = &dev_data->gcr3_info;
1870 iommu_group_mutex_assert(dev_data->dev);
1872 ret = update_gcr3(dev_data, pasid, gcr3, true);
1876 gcr3_info->pasid_cnt++;
1880 int amd_iommu_clear_gcr3(struct iommu_dev_data *dev_data, ioasid_t pasid)
1882 struct gcr3_tbl_info *gcr3_info = &dev_data->gcr3_info;
1885 iommu_group_mutex_assert(dev_data->dev);
1887 ret = update_gcr3(dev_data, pasid, 0, false);
1891 gcr3_info->pasid_cnt--;
1895 static void set_dte_entry(struct amd_iommu *iommu,
1896 struct iommu_dev_data *dev_data)
1901 u16 devid = dev_data->devid;
1903 struct protection_domain *domain = dev_data->domain;
1904 struct dev_table_entry *dev_table = get_dev_table(iommu);
1905 struct gcr3_tbl_info *gcr3_info = &dev_data->gcr3_info;
1907 if (gcr3_info && gcr3_info->gcr3_tbl)
1908 domid = dev_data->gcr3_info.domid;
1912 if (domain->iop.mode != PAGE_MODE_NONE)
1913 pte_root = iommu_virt_to_phys(domain->iop.root);
1915 pte_root |= (domain->iop.mode & DEV_ENTRY_MODE_MASK)
1916 << DEV_ENTRY_MODE_SHIFT;
1918 pte_root |= DTE_FLAG_IR | DTE_FLAG_IW | DTE_FLAG_V;
1921 * When SNP is enabled, Only set TV bit when IOMMU
1922 * page translation is in use.
1924 if (!amd_iommu_snp_en || (domid != 0))
1925 pte_root |= DTE_FLAG_TV;
1927 flags = dev_table[devid].data[1];
1929 if (dev_data->ats_enabled)
1930 flags |= DTE_FLAG_IOTLB;
1933 pte_root |= 1ULL << DEV_ENTRY_PPR;
1935 if (domain->dirty_tracking)
1936 pte_root |= DTE_FLAG_HAD;
1938 if (gcr3_info && gcr3_info->gcr3_tbl) {
1939 u64 gcr3 = iommu_virt_to_phys(gcr3_info->gcr3_tbl);
1940 u64 glx = gcr3_info->glx;
1943 pte_root |= DTE_FLAG_GV;
1944 pte_root |= (glx & DTE_GLX_MASK) << DTE_GLX_SHIFT;
1946 /* First mask out possible old values for GCR3 table */
1947 tmp = DTE_GCR3_VAL_B(~0ULL) << DTE_GCR3_SHIFT_B;
1950 tmp = DTE_GCR3_VAL_C(~0ULL) << DTE_GCR3_SHIFT_C;
1953 /* Encode GCR3 table into DTE */
1954 tmp = DTE_GCR3_VAL_A(gcr3) << DTE_GCR3_SHIFT_A;
1957 tmp = DTE_GCR3_VAL_B(gcr3) << DTE_GCR3_SHIFT_B;
1960 tmp = DTE_GCR3_VAL_C(gcr3) << DTE_GCR3_SHIFT_C;
1963 if (amd_iommu_gpt_level == PAGE_MODE_5_LEVEL) {
1964 dev_table[devid].data[2] |=
1965 ((u64)GUEST_PGTABLE_5_LEVEL << DTE_GPT_LEVEL_SHIFT);
1968 /* GIOV is supported with V2 page table mode only */
1969 if (pdom_is_v2_pgtbl_mode(domain))
1970 pte_root |= DTE_FLAG_GIOV;
1973 flags &= ~DEV_DOMID_MASK;
1976 old_domid = dev_table[devid].data[1] & DEV_DOMID_MASK;
1977 dev_table[devid].data[1] = flags;
1978 dev_table[devid].data[0] = pte_root;
1981 * A kdump kernel might be replacing a domain ID that was copied from
1982 * the previous kernel--if so, it needs to flush the translation cache
1983 * entries for the old domain ID that is being overwritten
1986 amd_iommu_flush_tlb_domid(iommu, old_domid);
1990 static void clear_dte_entry(struct amd_iommu *iommu, u16 devid)
1992 struct dev_table_entry *dev_table = get_dev_table(iommu);
1994 /* remove entry from the device table seen by the hardware */
1995 dev_table[devid].data[0] = DTE_FLAG_V;
1997 if (!amd_iommu_snp_en)
1998 dev_table[devid].data[0] |= DTE_FLAG_TV;
2000 dev_table[devid].data[1] &= DTE_FLAG_MASK;
2002 amd_iommu_apply_erratum_63(iommu, devid);
2005 static int do_attach(struct iommu_dev_data *dev_data,
2006 struct protection_domain *domain)
2008 struct amd_iommu *iommu = get_amd_iommu_from_dev_data(dev_data);
2011 /* Update data structures */
2012 dev_data->domain = domain;
2013 list_add(&dev_data->list, &domain->dev_list);
2015 /* Update NUMA Node ID */
2016 if (domain->nid == NUMA_NO_NODE)
2017 domain->nid = dev_to_node(dev_data->dev);
2019 /* Do reference counting */
2020 domain->dev_iommu[iommu->index] += 1;
2021 domain->dev_cnt += 1;
2023 /* Init GCR3 table and update device table */
2024 if (domain->pd_mode == PD_MODE_V2) {
2025 /* By default, setup GCR3 table to support single PASID */
2026 ret = setup_gcr3_table(&dev_data->gcr3_info, iommu, 1);
2030 ret = update_gcr3(dev_data, 0,
2031 iommu_virt_to_phys(domain->iop.pgd), true);
2033 free_gcr3_table(&dev_data->gcr3_info);
2038 /* Update device table */
2039 set_dte_entry(iommu, dev_data);
2040 clone_aliases(iommu, dev_data->dev);
2042 device_flush_dte(dev_data);
2047 static void do_detach(struct iommu_dev_data *dev_data)
2049 struct protection_domain *domain = dev_data->domain;
2050 struct amd_iommu *iommu = get_amd_iommu_from_dev_data(dev_data);
2052 /* Clear GCR3 table */
2053 if (domain->pd_mode == PD_MODE_V2) {
2054 update_gcr3(dev_data, 0, 0, false);
2055 free_gcr3_table(&dev_data->gcr3_info);
2058 /* Update data structures */
2059 dev_data->domain = NULL;
2060 list_del(&dev_data->list);
2061 clear_dte_entry(iommu, dev_data->devid);
2062 clone_aliases(iommu, dev_data->dev);
2064 /* Flush the DTE entry */
2065 device_flush_dte(dev_data);
2067 /* Flush IOTLB and wait for the flushes to finish */
2068 amd_iommu_domain_flush_all(domain);
2070 /* decrease reference counters - needs to happen after the flushes */
2071 domain->dev_iommu[iommu->index] -= 1;
2072 domain->dev_cnt -= 1;
2076 * If a device is not yet associated with a domain, this function makes the
2077 * device visible in the domain
2079 static int attach_device(struct device *dev,
2080 struct protection_domain *domain)
2082 struct iommu_dev_data *dev_data;
2083 unsigned long flags;
2086 spin_lock_irqsave(&domain->lock, flags);
2088 dev_data = dev_iommu_priv_get(dev);
2090 spin_lock(&dev_data->lock);
2092 if (dev_data->domain != NULL) {
2097 if (dev_is_pci(dev))
2098 pdev_enable_caps(to_pci_dev(dev));
2100 ret = do_attach(dev_data, domain);
2103 spin_unlock(&dev_data->lock);
2105 spin_unlock_irqrestore(&domain->lock, flags);
2111 * Removes a device from a protection domain (with devtable_lock held)
2113 static void detach_device(struct device *dev)
2115 struct protection_domain *domain;
2116 struct iommu_dev_data *dev_data;
2117 unsigned long flags;
2119 dev_data = dev_iommu_priv_get(dev);
2120 domain = dev_data->domain;
2122 spin_lock_irqsave(&domain->lock, flags);
2124 spin_lock(&dev_data->lock);
2127 * First check if the device is still attached. It might already
2128 * be detached from its domain because the generic
2129 * iommu_detach_group code detached it and we try again here in
2130 * our alias handling.
2132 if (WARN_ON(!dev_data->domain))
2135 do_detach(dev_data);
2137 if (dev_is_pci(dev))
2138 pdev_disable_caps(to_pci_dev(dev));
2141 spin_unlock(&dev_data->lock);
2143 spin_unlock_irqrestore(&domain->lock, flags);
2146 static struct iommu_device *amd_iommu_probe_device(struct device *dev)
2148 struct iommu_device *iommu_dev;
2149 struct amd_iommu *iommu;
2152 if (!check_device(dev))
2153 return ERR_PTR(-ENODEV);
2155 iommu = rlookup_amd_iommu(dev);
2157 return ERR_PTR(-ENODEV);
2159 /* Not registered yet? */
2160 if (!iommu->iommu.ops)
2161 return ERR_PTR(-ENODEV);
2163 if (dev_iommu_priv_get(dev))
2164 return &iommu->iommu;
2166 ret = iommu_init_device(iommu, dev);
2168 dev_err(dev, "Failed to initialize - trying to proceed anyway\n");
2169 iommu_dev = ERR_PTR(ret);
2170 iommu_ignore_device(iommu, dev);
2172 amd_iommu_set_pci_msi_domain(dev, iommu);
2173 iommu_dev = &iommu->iommu;
2176 iommu_completion_wait(iommu);
2181 static void amd_iommu_probe_finalize(struct device *dev)
2183 /* Domains are initialized for this device - have a look what we ended up with */
2184 set_dma_ops(dev, NULL);
2185 iommu_setup_dma_ops(dev, 0, U64_MAX);
2188 static void amd_iommu_release_device(struct device *dev)
2190 struct amd_iommu *iommu;
2192 if (!check_device(dev))
2195 iommu = rlookup_amd_iommu(dev);
2199 amd_iommu_uninit_device(dev);
2200 iommu_completion_wait(iommu);
2203 static struct iommu_group *amd_iommu_device_group(struct device *dev)
2205 if (dev_is_pci(dev))
2206 return pci_device_group(dev);
2208 return acpihid_device_group(dev);
2211 /*****************************************************************************
2213 * The following functions belong to the exported interface of AMD IOMMU
2215 * This interface allows access to lower level functions of the IOMMU
2216 * like protection domain handling and assignement of devices to domains
2217 * which is not possible with the dma_ops interface.
2219 *****************************************************************************/
2221 static void cleanup_domain(struct protection_domain *domain)
2223 struct iommu_dev_data *entry;
2225 lockdep_assert_held(&domain->lock);
2227 if (!domain->dev_cnt)
2230 while (!list_empty(&domain->dev_list)) {
2231 entry = list_first_entry(&domain->dev_list,
2232 struct iommu_dev_data, list);
2233 BUG_ON(!entry->domain);
2236 WARN_ON(domain->dev_cnt != 0);
2239 static void protection_domain_free(struct protection_domain *domain)
2244 if (domain->iop.pgtbl_cfg.tlb)
2245 free_io_pgtable_ops(&domain->iop.iop.ops);
2247 if (domain->iop.root)
2248 free_page((unsigned long)domain->iop.root);
2251 domain_id_free(domain->id);
2256 static int protection_domain_init_v1(struct protection_domain *domain, int mode)
2258 u64 *pt_root = NULL;
2260 BUG_ON(mode < PAGE_MODE_NONE || mode > PAGE_MODE_6_LEVEL);
2262 if (mode != PAGE_MODE_NONE) {
2263 pt_root = (void *)get_zeroed_page(GFP_KERNEL);
2268 domain->pd_mode = PD_MODE_V1;
2269 amd_iommu_domain_set_pgtable(domain, pt_root, mode);
2274 static int protection_domain_init_v2(struct protection_domain *pdom)
2276 pdom->pd_mode = PD_MODE_V2;
2277 pdom->domain.pgsize_bitmap = AMD_IOMMU_PGSIZES_V2;
2282 static struct protection_domain *protection_domain_alloc(unsigned int type)
2284 struct io_pgtable_ops *pgtbl_ops;
2285 struct protection_domain *domain;
2289 domain = kzalloc(sizeof(*domain), GFP_KERNEL);
2293 domain->id = domain_id_alloc();
2297 spin_lock_init(&domain->lock);
2298 INIT_LIST_HEAD(&domain->dev_list);
2299 domain->nid = NUMA_NO_NODE;
2302 /* No need to allocate io pgtable ops in passthrough mode */
2303 case IOMMU_DOMAIN_IDENTITY:
2305 case IOMMU_DOMAIN_DMA:
2306 pgtable = amd_iommu_pgtable;
2309 * Force IOMMU v1 page table when allocating
2310 * domain for pass-through devices.
2312 case IOMMU_DOMAIN_UNMANAGED:
2313 pgtable = AMD_IOMMU_V1;
2321 ret = protection_domain_init_v1(domain, DEFAULT_PGTABLE_LEVEL);
2324 ret = protection_domain_init_v2(domain);
2334 pgtbl_ops = alloc_io_pgtable_ops(pgtable, &domain->iop.pgtbl_cfg, domain);
2340 protection_domain_free(domain);
2344 static inline u64 dma_max_address(void)
2346 if (amd_iommu_pgtable == AMD_IOMMU_V1)
2349 /* V2 with 4/5 level page table */
2350 return ((1ULL << PM_LEVEL_SHIFT(amd_iommu_gpt_level)) - 1);
2353 static bool amd_iommu_hd_support(struct amd_iommu *iommu)
2355 return iommu && (iommu->features & FEATURE_HDSUP);
2358 static struct iommu_domain *do_iommu_domain_alloc(unsigned int type,
2359 struct device *dev, u32 flags)
2361 bool dirty_tracking = flags & IOMMU_HWPT_ALLOC_DIRTY_TRACKING;
2362 struct protection_domain *domain;
2363 struct amd_iommu *iommu = NULL;
2366 iommu = get_amd_iommu_from_dev(dev);
2369 * Since DTE[Mode]=0 is prohibited on SNP-enabled system,
2370 * default to use IOMMU_DOMAIN_DMA[_FQ].
2372 if (amd_iommu_snp_en && (type == IOMMU_DOMAIN_IDENTITY))
2373 return ERR_PTR(-EINVAL);
2375 if (dirty_tracking && !amd_iommu_hd_support(iommu))
2376 return ERR_PTR(-EOPNOTSUPP);
2378 domain = protection_domain_alloc(type);
2380 return ERR_PTR(-ENOMEM);
2382 domain->domain.geometry.aperture_start = 0;
2383 domain->domain.geometry.aperture_end = dma_max_address();
2384 domain->domain.geometry.force_aperture = true;
2387 domain->domain.type = type;
2388 domain->domain.pgsize_bitmap = iommu->iommu.ops->pgsize_bitmap;
2389 domain->domain.ops = iommu->iommu.ops->default_domain_ops;
2392 domain->domain.dirty_ops = &amd_dirty_ops;
2395 return &domain->domain;
2398 static struct iommu_domain *amd_iommu_domain_alloc(unsigned int type)
2400 struct iommu_domain *domain;
2402 domain = do_iommu_domain_alloc(type, NULL, 0);
2409 static struct iommu_domain *
2410 amd_iommu_domain_alloc_user(struct device *dev, u32 flags,
2411 struct iommu_domain *parent,
2412 const struct iommu_user_data *user_data)
2415 unsigned int type = IOMMU_DOMAIN_UNMANAGED;
2417 if ((flags & ~IOMMU_HWPT_ALLOC_DIRTY_TRACKING) || parent || user_data)
2418 return ERR_PTR(-EOPNOTSUPP);
2420 return do_iommu_domain_alloc(type, dev, flags);
2423 static void amd_iommu_domain_free(struct iommu_domain *dom)
2425 struct protection_domain *domain;
2426 unsigned long flags;
2431 domain = to_pdomain(dom);
2433 spin_lock_irqsave(&domain->lock, flags);
2435 cleanup_domain(domain);
2437 spin_unlock_irqrestore(&domain->lock, flags);
2439 protection_domain_free(domain);
2442 static int amd_iommu_attach_device(struct iommu_domain *dom,
2445 struct iommu_dev_data *dev_data = dev_iommu_priv_get(dev);
2446 struct protection_domain *domain = to_pdomain(dom);
2447 struct amd_iommu *iommu = get_amd_iommu_from_dev(dev);
2451 * Skip attach device to domain if new domain is same as
2452 * devices current domain
2454 if (dev_data->domain == domain)
2457 dev_data->defer_attach = false;
2460 * Restrict to devices with compatible IOMMU hardware support
2461 * when enforcement of dirty tracking is enabled.
2463 if (dom->dirty_ops && !amd_iommu_hd_support(iommu))
2466 if (dev_data->domain)
2469 ret = attach_device(dev, domain);
2471 #ifdef CONFIG_IRQ_REMAP
2472 if (AMD_IOMMU_GUEST_IR_VAPIC(amd_iommu_guest_ir)) {
2473 if (dom->type == IOMMU_DOMAIN_UNMANAGED)
2474 dev_data->use_vapic = 1;
2476 dev_data->use_vapic = 0;
2480 iommu_completion_wait(iommu);
2485 static int amd_iommu_iotlb_sync_map(struct iommu_domain *dom,
2486 unsigned long iova, size_t size)
2488 struct protection_domain *domain = to_pdomain(dom);
2489 struct io_pgtable_ops *ops = &domain->iop.iop.ops;
2492 domain_flush_np_cache(domain, iova, size);
2496 static int amd_iommu_map_pages(struct iommu_domain *dom, unsigned long iova,
2497 phys_addr_t paddr, size_t pgsize, size_t pgcount,
2498 int iommu_prot, gfp_t gfp, size_t *mapped)
2500 struct protection_domain *domain = to_pdomain(dom);
2501 struct io_pgtable_ops *ops = &domain->iop.iop.ops;
2505 if ((domain->pd_mode == PD_MODE_V1) &&
2506 (domain->iop.mode == PAGE_MODE_NONE))
2509 if (iommu_prot & IOMMU_READ)
2510 prot |= IOMMU_PROT_IR;
2511 if (iommu_prot & IOMMU_WRITE)
2512 prot |= IOMMU_PROT_IW;
2514 if (ops->map_pages) {
2515 ret = ops->map_pages(ops, iova, paddr, pgsize,
2516 pgcount, prot, gfp, mapped);
2522 static void amd_iommu_iotlb_gather_add_page(struct iommu_domain *domain,
2523 struct iommu_iotlb_gather *gather,
2524 unsigned long iova, size_t size)
2527 * AMD's IOMMU can flush as many pages as necessary in a single flush.
2528 * Unless we run in a virtual machine, which can be inferred according
2529 * to whether "non-present cache" is on, it is probably best to prefer
2530 * (potentially) too extensive TLB flushing (i.e., more misses) over
2531 * mutliple TLB flushes (i.e., more flushes). For virtual machines the
2532 * hypervisor needs to synchronize the host IOMMU PTEs with those of
2533 * the guest, and the trade-off is different: unnecessary TLB flushes
2534 * should be avoided.
2536 if (amd_iommu_np_cache &&
2537 iommu_iotlb_gather_is_disjoint(gather, iova, size))
2538 iommu_iotlb_sync(domain, gather);
2540 iommu_iotlb_gather_add_range(gather, iova, size);
2543 static size_t amd_iommu_unmap_pages(struct iommu_domain *dom, unsigned long iova,
2544 size_t pgsize, size_t pgcount,
2545 struct iommu_iotlb_gather *gather)
2547 struct protection_domain *domain = to_pdomain(dom);
2548 struct io_pgtable_ops *ops = &domain->iop.iop.ops;
2551 if ((domain->pd_mode == PD_MODE_V1) &&
2552 (domain->iop.mode == PAGE_MODE_NONE))
2555 r = (ops->unmap_pages) ? ops->unmap_pages(ops, iova, pgsize, pgcount, NULL) : 0;
2558 amd_iommu_iotlb_gather_add_page(dom, gather, iova, r);
2563 static phys_addr_t amd_iommu_iova_to_phys(struct iommu_domain *dom,
2566 struct protection_domain *domain = to_pdomain(dom);
2567 struct io_pgtable_ops *ops = &domain->iop.iop.ops;
2569 return ops->iova_to_phys(ops, iova);
2572 static bool amd_iommu_capable(struct device *dev, enum iommu_cap cap)
2575 case IOMMU_CAP_CACHE_COHERENCY:
2577 case IOMMU_CAP_NOEXEC:
2579 case IOMMU_CAP_PRE_BOOT_PROTECTION:
2580 return amdr_ivrs_remap_support;
2581 case IOMMU_CAP_ENFORCE_CACHE_COHERENCY:
2583 case IOMMU_CAP_DEFERRED_FLUSH:
2585 case IOMMU_CAP_DIRTY_TRACKING: {
2586 struct amd_iommu *iommu = get_amd_iommu_from_dev(dev);
2588 return amd_iommu_hd_support(iommu);
2597 static int amd_iommu_set_dirty_tracking(struct iommu_domain *domain,
2600 struct protection_domain *pdomain = to_pdomain(domain);
2601 struct dev_table_entry *dev_table;
2602 struct iommu_dev_data *dev_data;
2603 bool domain_flush = false;
2604 struct amd_iommu *iommu;
2605 unsigned long flags;
2608 spin_lock_irqsave(&pdomain->lock, flags);
2609 if (!(pdomain->dirty_tracking ^ enable)) {
2610 spin_unlock_irqrestore(&pdomain->lock, flags);
2614 list_for_each_entry(dev_data, &pdomain->dev_list, list) {
2615 iommu = get_amd_iommu_from_dev_data(dev_data);
2617 dev_table = get_dev_table(iommu);
2618 pte_root = dev_table[dev_data->devid].data[0];
2620 pte_root = (enable ? pte_root | DTE_FLAG_HAD :
2621 pte_root & ~DTE_FLAG_HAD);
2623 /* Flush device DTE */
2624 dev_table[dev_data->devid].data[0] = pte_root;
2625 device_flush_dte(dev_data);
2626 domain_flush = true;
2629 /* Flush IOTLB to mark IOPTE dirty on the next translation(s) */
2631 amd_iommu_domain_flush_all(pdomain);
2633 pdomain->dirty_tracking = enable;
2634 spin_unlock_irqrestore(&pdomain->lock, flags);
2639 static int amd_iommu_read_and_clear_dirty(struct iommu_domain *domain,
2640 unsigned long iova, size_t size,
2641 unsigned long flags,
2642 struct iommu_dirty_bitmap *dirty)
2644 struct protection_domain *pdomain = to_pdomain(domain);
2645 struct io_pgtable_ops *ops = &pdomain->iop.iop.ops;
2646 unsigned long lflags;
2648 if (!ops || !ops->read_and_clear_dirty)
2651 spin_lock_irqsave(&pdomain->lock, lflags);
2652 if (!pdomain->dirty_tracking && dirty->bitmap) {
2653 spin_unlock_irqrestore(&pdomain->lock, lflags);
2656 spin_unlock_irqrestore(&pdomain->lock, lflags);
2658 return ops->read_and_clear_dirty(ops, iova, size, flags, dirty);
2661 static void amd_iommu_get_resv_regions(struct device *dev,
2662 struct list_head *head)
2664 struct iommu_resv_region *region;
2665 struct unity_map_entry *entry;
2666 struct amd_iommu *iommu;
2667 struct amd_iommu_pci_seg *pci_seg;
2670 sbdf = get_device_sbdf_id(dev);
2674 devid = PCI_SBDF_TO_DEVID(sbdf);
2675 iommu = get_amd_iommu_from_dev(dev);
2676 pci_seg = iommu->pci_seg;
2678 list_for_each_entry(entry, &pci_seg->unity_map, list) {
2682 if (devid < entry->devid_start || devid > entry->devid_end)
2685 type = IOMMU_RESV_DIRECT;
2686 length = entry->address_end - entry->address_start;
2687 if (entry->prot & IOMMU_PROT_IR)
2689 if (entry->prot & IOMMU_PROT_IW)
2690 prot |= IOMMU_WRITE;
2691 if (entry->prot & IOMMU_UNITY_MAP_FLAG_EXCL_RANGE)
2692 /* Exclusion range */
2693 type = IOMMU_RESV_RESERVED;
2695 region = iommu_alloc_resv_region(entry->address_start,
2699 dev_err(dev, "Out of memory allocating dm-regions\n");
2702 list_add_tail(®ion->list, head);
2705 region = iommu_alloc_resv_region(MSI_RANGE_START,
2706 MSI_RANGE_END - MSI_RANGE_START + 1,
2707 0, IOMMU_RESV_MSI, GFP_KERNEL);
2710 list_add_tail(®ion->list, head);
2712 region = iommu_alloc_resv_region(HT_RANGE_START,
2713 HT_RANGE_END - HT_RANGE_START + 1,
2714 0, IOMMU_RESV_RESERVED, GFP_KERNEL);
2717 list_add_tail(®ion->list, head);
2720 bool amd_iommu_is_attach_deferred(struct device *dev)
2722 struct iommu_dev_data *dev_data = dev_iommu_priv_get(dev);
2724 return dev_data->defer_attach;
2727 static void amd_iommu_flush_iotlb_all(struct iommu_domain *domain)
2729 struct protection_domain *dom = to_pdomain(domain);
2730 unsigned long flags;
2732 spin_lock_irqsave(&dom->lock, flags);
2733 amd_iommu_domain_flush_all(dom);
2734 spin_unlock_irqrestore(&dom->lock, flags);
2737 static void amd_iommu_iotlb_sync(struct iommu_domain *domain,
2738 struct iommu_iotlb_gather *gather)
2740 struct protection_domain *dom = to_pdomain(domain);
2741 unsigned long flags;
2743 spin_lock_irqsave(&dom->lock, flags);
2744 amd_iommu_domain_flush_pages(dom, gather->start,
2745 gather->end - gather->start + 1);
2746 spin_unlock_irqrestore(&dom->lock, flags);
2749 static int amd_iommu_def_domain_type(struct device *dev)
2751 struct iommu_dev_data *dev_data;
2753 dev_data = dev_iommu_priv_get(dev);
2757 /* Always use DMA domain for untrusted device */
2758 if (dev_is_pci(dev) && to_pci_dev(dev)->untrusted)
2759 return IOMMU_DOMAIN_DMA;
2762 * Do not identity map IOMMUv2 capable devices when:
2763 * - memory encryption is active, because some of those devices
2764 * (AMD GPUs) don't have the encryption bit in their DMA-mask
2765 * and require remapping.
2766 * - SNP is enabled, because it prohibits DTE[Mode]=0.
2768 if (pdev_pasid_supported(dev_data) &&
2769 !cc_platform_has(CC_ATTR_MEM_ENCRYPT) &&
2770 !amd_iommu_snp_en) {
2771 return IOMMU_DOMAIN_IDENTITY;
2777 static bool amd_iommu_enforce_cache_coherency(struct iommu_domain *domain)
2779 /* IOMMU_PTE_FC is always set */
2783 static const struct iommu_dirty_ops amd_dirty_ops = {
2784 .set_dirty_tracking = amd_iommu_set_dirty_tracking,
2785 .read_and_clear_dirty = amd_iommu_read_and_clear_dirty,
2788 const struct iommu_ops amd_iommu_ops = {
2789 .capable = amd_iommu_capable,
2790 .domain_alloc = amd_iommu_domain_alloc,
2791 .domain_alloc_user = amd_iommu_domain_alloc_user,
2792 .probe_device = amd_iommu_probe_device,
2793 .release_device = amd_iommu_release_device,
2794 .probe_finalize = amd_iommu_probe_finalize,
2795 .device_group = amd_iommu_device_group,
2796 .get_resv_regions = amd_iommu_get_resv_regions,
2797 .is_attach_deferred = amd_iommu_is_attach_deferred,
2798 .pgsize_bitmap = AMD_IOMMU_PGSIZES,
2799 .def_domain_type = amd_iommu_def_domain_type,
2800 .default_domain_ops = &(const struct iommu_domain_ops) {
2801 .attach_dev = amd_iommu_attach_device,
2802 .map_pages = amd_iommu_map_pages,
2803 .unmap_pages = amd_iommu_unmap_pages,
2804 .iotlb_sync_map = amd_iommu_iotlb_sync_map,
2805 .iova_to_phys = amd_iommu_iova_to_phys,
2806 .flush_iotlb_all = amd_iommu_flush_iotlb_all,
2807 .iotlb_sync = amd_iommu_iotlb_sync,
2808 .free = amd_iommu_domain_free,
2809 .enforce_cache_coherency = amd_iommu_enforce_cache_coherency,
2813 #ifdef CONFIG_IRQ_REMAP
2815 /*****************************************************************************
2817 * Interrupt Remapping Implementation
2819 *****************************************************************************/
2821 static struct irq_chip amd_ir_chip;
2822 static DEFINE_SPINLOCK(iommu_table_lock);
2824 static void iommu_flush_irt_and_complete(struct amd_iommu *iommu, u16 devid)
2828 unsigned long flags;
2829 struct iommu_cmd cmd, cmd2;
2831 if (iommu->irtcachedis_enabled)
2834 build_inv_irt(&cmd, devid);
2835 data = atomic64_add_return(1, &iommu->cmd_sem_val);
2836 build_completion_wait(&cmd2, iommu, data);
2838 raw_spin_lock_irqsave(&iommu->lock, flags);
2839 ret = __iommu_queue_command_sync(iommu, &cmd, true);
2842 ret = __iommu_queue_command_sync(iommu, &cmd2, false);
2845 wait_on_sem(iommu, data);
2847 raw_spin_unlock_irqrestore(&iommu->lock, flags);
2850 static void set_dte_irq_entry(struct amd_iommu *iommu, u16 devid,
2851 struct irq_remap_table *table)
2854 struct dev_table_entry *dev_table = get_dev_table(iommu);
2856 dte = dev_table[devid].data[2];
2857 dte &= ~DTE_IRQ_PHYS_ADDR_MASK;
2858 dte |= iommu_virt_to_phys(table->table);
2859 dte |= DTE_IRQ_REMAP_INTCTL;
2860 dte |= DTE_INTTABLEN;
2861 dte |= DTE_IRQ_REMAP_ENABLE;
2863 dev_table[devid].data[2] = dte;
2866 static struct irq_remap_table *get_irq_table(struct amd_iommu *iommu, u16 devid)
2868 struct irq_remap_table *table;
2869 struct amd_iommu_pci_seg *pci_seg = iommu->pci_seg;
2871 if (WARN_ONCE(!pci_seg->rlookup_table[devid],
2872 "%s: no iommu for devid %x:%x\n",
2873 __func__, pci_seg->id, devid))
2876 table = pci_seg->irq_lookup_table[devid];
2877 if (WARN_ONCE(!table, "%s: no table for devid %x:%x\n",
2878 __func__, pci_seg->id, devid))
2884 static struct irq_remap_table *__alloc_irq_table(void)
2886 struct irq_remap_table *table;
2888 table = kzalloc(sizeof(*table), GFP_KERNEL);
2892 table->table = kmem_cache_alloc(amd_iommu_irq_cache, GFP_KERNEL);
2893 if (!table->table) {
2897 raw_spin_lock_init(&table->lock);
2899 if (!AMD_IOMMU_GUEST_IR_GA(amd_iommu_guest_ir))
2900 memset(table->table, 0,
2901 MAX_IRQS_PER_TABLE * sizeof(u32));
2903 memset(table->table, 0,
2904 (MAX_IRQS_PER_TABLE * (sizeof(u64) * 2)));
2908 static void set_remap_table_entry(struct amd_iommu *iommu, u16 devid,
2909 struct irq_remap_table *table)
2911 struct amd_iommu_pci_seg *pci_seg = iommu->pci_seg;
2913 pci_seg->irq_lookup_table[devid] = table;
2914 set_dte_irq_entry(iommu, devid, table);
2915 iommu_flush_dte(iommu, devid);
2918 static int set_remap_table_entry_alias(struct pci_dev *pdev, u16 alias,
2921 struct irq_remap_table *table = data;
2922 struct amd_iommu_pci_seg *pci_seg;
2923 struct amd_iommu *iommu = rlookup_amd_iommu(&pdev->dev);
2928 pci_seg = iommu->pci_seg;
2929 pci_seg->irq_lookup_table[alias] = table;
2930 set_dte_irq_entry(iommu, alias, table);
2931 iommu_flush_dte(pci_seg->rlookup_table[alias], alias);
2936 static struct irq_remap_table *alloc_irq_table(struct amd_iommu *iommu,
2937 u16 devid, struct pci_dev *pdev)
2939 struct irq_remap_table *table = NULL;
2940 struct irq_remap_table *new_table = NULL;
2941 struct amd_iommu_pci_seg *pci_seg;
2942 unsigned long flags;
2945 spin_lock_irqsave(&iommu_table_lock, flags);
2947 pci_seg = iommu->pci_seg;
2948 table = pci_seg->irq_lookup_table[devid];
2952 alias = pci_seg->alias_table[devid];
2953 table = pci_seg->irq_lookup_table[alias];
2955 set_remap_table_entry(iommu, devid, table);
2958 spin_unlock_irqrestore(&iommu_table_lock, flags);
2960 /* Nothing there yet, allocate new irq remapping table */
2961 new_table = __alloc_irq_table();
2965 spin_lock_irqsave(&iommu_table_lock, flags);
2967 table = pci_seg->irq_lookup_table[devid];
2971 table = pci_seg->irq_lookup_table[alias];
2973 set_remap_table_entry(iommu, devid, table);
2981 pci_for_each_dma_alias(pdev, set_remap_table_entry_alias,
2984 set_remap_table_entry(iommu, devid, table);
2987 set_remap_table_entry(iommu, alias, table);
2990 iommu_completion_wait(iommu);
2993 spin_unlock_irqrestore(&iommu_table_lock, flags);
2996 kmem_cache_free(amd_iommu_irq_cache, new_table->table);
3002 static int alloc_irq_index(struct amd_iommu *iommu, u16 devid, int count,
3003 bool align, struct pci_dev *pdev)
3005 struct irq_remap_table *table;
3006 int index, c, alignment = 1;
3007 unsigned long flags;
3009 table = alloc_irq_table(iommu, devid, pdev);
3014 alignment = roundup_pow_of_two(count);
3016 raw_spin_lock_irqsave(&table->lock, flags);
3018 /* Scan table for free entries */
3019 for (index = ALIGN(table->min_index, alignment), c = 0;
3020 index < MAX_IRQS_PER_TABLE;) {
3021 if (!iommu->irte_ops->is_allocated(table, index)) {
3025 index = ALIGN(index + 1, alignment);
3031 iommu->irte_ops->set_allocated(table, index - c + 1);
3043 raw_spin_unlock_irqrestore(&table->lock, flags);
3048 static int __modify_irte_ga(struct amd_iommu *iommu, u16 devid, int index,
3049 struct irte_ga *irte)
3051 struct irq_remap_table *table;
3052 struct irte_ga *entry;
3053 unsigned long flags;
3056 table = get_irq_table(iommu, devid);
3060 raw_spin_lock_irqsave(&table->lock, flags);
3062 entry = (struct irte_ga *)table->table;
3063 entry = &entry[index];
3066 * We use cmpxchg16 to atomically update the 128-bit IRTE,
3067 * and it cannot be updated by the hardware or other processors
3068 * behind us, so the return value of cmpxchg16 should be the
3069 * same as the old value.
3072 WARN_ON(!try_cmpxchg128(&entry->irte, &old, irte->irte));
3074 raw_spin_unlock_irqrestore(&table->lock, flags);
3079 static int modify_irte_ga(struct amd_iommu *iommu, u16 devid, int index,
3080 struct irte_ga *irte)
3084 ret = __modify_irte_ga(iommu, devid, index, irte);
3088 iommu_flush_irt_and_complete(iommu, devid);
3093 static int modify_irte(struct amd_iommu *iommu,
3094 u16 devid, int index, union irte *irte)
3096 struct irq_remap_table *table;
3097 unsigned long flags;
3099 table = get_irq_table(iommu, devid);
3103 raw_spin_lock_irqsave(&table->lock, flags);
3104 table->table[index] = irte->val;
3105 raw_spin_unlock_irqrestore(&table->lock, flags);
3107 iommu_flush_irt_and_complete(iommu, devid);
3112 static void free_irte(struct amd_iommu *iommu, u16 devid, int index)
3114 struct irq_remap_table *table;
3115 unsigned long flags;
3117 table = get_irq_table(iommu, devid);
3121 raw_spin_lock_irqsave(&table->lock, flags);
3122 iommu->irte_ops->clear_allocated(table, index);
3123 raw_spin_unlock_irqrestore(&table->lock, flags);
3125 iommu_flush_irt_and_complete(iommu, devid);
3128 static void irte_prepare(void *entry,
3129 u32 delivery_mode, bool dest_mode,
3130 u8 vector, u32 dest_apicid, int devid)
3132 union irte *irte = (union irte *) entry;
3135 irte->fields.vector = vector;
3136 irte->fields.int_type = delivery_mode;
3137 irte->fields.destination = dest_apicid;
3138 irte->fields.dm = dest_mode;
3139 irte->fields.valid = 1;
3142 static void irte_ga_prepare(void *entry,
3143 u32 delivery_mode, bool dest_mode,
3144 u8 vector, u32 dest_apicid, int devid)
3146 struct irte_ga *irte = (struct irte_ga *) entry;
3150 irte->lo.fields_remap.int_type = delivery_mode;
3151 irte->lo.fields_remap.dm = dest_mode;
3152 irte->hi.fields.vector = vector;
3153 irte->lo.fields_remap.destination = APICID_TO_IRTE_DEST_LO(dest_apicid);
3154 irte->hi.fields.destination = APICID_TO_IRTE_DEST_HI(dest_apicid);
3155 irte->lo.fields_remap.valid = 1;
3158 static void irte_activate(struct amd_iommu *iommu, void *entry, u16 devid, u16 index)
3160 union irte *irte = (union irte *) entry;
3162 irte->fields.valid = 1;
3163 modify_irte(iommu, devid, index, irte);
3166 static void irte_ga_activate(struct amd_iommu *iommu, void *entry, u16 devid, u16 index)
3168 struct irte_ga *irte = (struct irte_ga *) entry;
3170 irte->lo.fields_remap.valid = 1;
3171 modify_irte_ga(iommu, devid, index, irte);
3174 static void irte_deactivate(struct amd_iommu *iommu, void *entry, u16 devid, u16 index)
3176 union irte *irte = (union irte *) entry;
3178 irte->fields.valid = 0;
3179 modify_irte(iommu, devid, index, irte);
3182 static void irte_ga_deactivate(struct amd_iommu *iommu, void *entry, u16 devid, u16 index)
3184 struct irte_ga *irte = (struct irte_ga *) entry;
3186 irte->lo.fields_remap.valid = 0;
3187 modify_irte_ga(iommu, devid, index, irte);
3190 static void irte_set_affinity(struct amd_iommu *iommu, void *entry, u16 devid, u16 index,
3191 u8 vector, u32 dest_apicid)
3193 union irte *irte = (union irte *) entry;
3195 irte->fields.vector = vector;
3196 irte->fields.destination = dest_apicid;
3197 modify_irte(iommu, devid, index, irte);
3200 static void irte_ga_set_affinity(struct amd_iommu *iommu, void *entry, u16 devid, u16 index,
3201 u8 vector, u32 dest_apicid)
3203 struct irte_ga *irte = (struct irte_ga *) entry;
3205 if (!irte->lo.fields_remap.guest_mode) {
3206 irte->hi.fields.vector = vector;
3207 irte->lo.fields_remap.destination =
3208 APICID_TO_IRTE_DEST_LO(dest_apicid);
3209 irte->hi.fields.destination =
3210 APICID_TO_IRTE_DEST_HI(dest_apicid);
3211 modify_irte_ga(iommu, devid, index, irte);
3215 #define IRTE_ALLOCATED (~1U)
3216 static void irte_set_allocated(struct irq_remap_table *table, int index)
3218 table->table[index] = IRTE_ALLOCATED;
3221 static void irte_ga_set_allocated(struct irq_remap_table *table, int index)
3223 struct irte_ga *ptr = (struct irte_ga *)table->table;
3224 struct irte_ga *irte = &ptr[index];
3226 memset(&irte->lo.val, 0, sizeof(u64));
3227 memset(&irte->hi.val, 0, sizeof(u64));
3228 irte->hi.fields.vector = 0xff;
3231 static bool irte_is_allocated(struct irq_remap_table *table, int index)
3233 union irte *ptr = (union irte *)table->table;
3234 union irte *irte = &ptr[index];
3236 return irte->val != 0;
3239 static bool irte_ga_is_allocated(struct irq_remap_table *table, int index)
3241 struct irte_ga *ptr = (struct irte_ga *)table->table;
3242 struct irte_ga *irte = &ptr[index];
3244 return irte->hi.fields.vector != 0;
3247 static void irte_clear_allocated(struct irq_remap_table *table, int index)
3249 table->table[index] = 0;
3252 static void irte_ga_clear_allocated(struct irq_remap_table *table, int index)
3254 struct irte_ga *ptr = (struct irte_ga *)table->table;
3255 struct irte_ga *irte = &ptr[index];
3257 memset(&irte->lo.val, 0, sizeof(u64));
3258 memset(&irte->hi.val, 0, sizeof(u64));
3261 static int get_devid(struct irq_alloc_info *info)
3263 switch (info->type) {
3264 case X86_IRQ_ALLOC_TYPE_IOAPIC:
3265 return get_ioapic_devid(info->devid);
3266 case X86_IRQ_ALLOC_TYPE_HPET:
3267 return get_hpet_devid(info->devid);
3268 case X86_IRQ_ALLOC_TYPE_PCI_MSI:
3269 case X86_IRQ_ALLOC_TYPE_PCI_MSIX:
3270 return get_device_sbdf_id(msi_desc_to_dev(info->desc));
3277 struct irq_remap_ops amd_iommu_irq_ops = {
3278 .prepare = amd_iommu_prepare,
3279 .enable = amd_iommu_enable,
3280 .disable = amd_iommu_disable,
3281 .reenable = amd_iommu_reenable,
3282 .enable_faulting = amd_iommu_enable_faulting,
3285 static void fill_msi_msg(struct msi_msg *msg, u32 index)
3288 msg->address_lo = 0;
3289 msg->arch_addr_lo.base_address = X86_MSI_BASE_ADDRESS_LOW;
3290 msg->address_hi = X86_MSI_BASE_ADDRESS_HIGH;
3293 static void irq_remapping_prepare_irte(struct amd_ir_data *data,
3294 struct irq_cfg *irq_cfg,
3295 struct irq_alloc_info *info,
3296 int devid, int index, int sub_handle)
3298 struct irq_2_irte *irte_info = &data->irq_2_irte;
3299 struct amd_iommu *iommu = data->iommu;
3304 data->irq_2_irte.devid = devid;
3305 data->irq_2_irte.index = index + sub_handle;
3306 iommu->irte_ops->prepare(data->entry, APIC_DELIVERY_MODE_FIXED,
3307 apic->dest_mode_logical, irq_cfg->vector,
3308 irq_cfg->dest_apicid, devid);
3310 switch (info->type) {
3311 case X86_IRQ_ALLOC_TYPE_IOAPIC:
3312 case X86_IRQ_ALLOC_TYPE_HPET:
3313 case X86_IRQ_ALLOC_TYPE_PCI_MSI:
3314 case X86_IRQ_ALLOC_TYPE_PCI_MSIX:
3315 fill_msi_msg(&data->msi_entry, irte_info->index);
3324 struct amd_irte_ops irte_32_ops = {
3325 .prepare = irte_prepare,
3326 .activate = irte_activate,
3327 .deactivate = irte_deactivate,
3328 .set_affinity = irte_set_affinity,
3329 .set_allocated = irte_set_allocated,
3330 .is_allocated = irte_is_allocated,
3331 .clear_allocated = irte_clear_allocated,
3334 struct amd_irte_ops irte_128_ops = {
3335 .prepare = irte_ga_prepare,
3336 .activate = irte_ga_activate,
3337 .deactivate = irte_ga_deactivate,
3338 .set_affinity = irte_ga_set_affinity,
3339 .set_allocated = irte_ga_set_allocated,
3340 .is_allocated = irte_ga_is_allocated,
3341 .clear_allocated = irte_ga_clear_allocated,
3344 static int irq_remapping_alloc(struct irq_domain *domain, unsigned int virq,
3345 unsigned int nr_irqs, void *arg)
3347 struct irq_alloc_info *info = arg;
3348 struct irq_data *irq_data;
3349 struct amd_ir_data *data = NULL;
3350 struct amd_iommu *iommu;
3351 struct irq_cfg *cfg;
3352 int i, ret, devid, seg, sbdf;
3357 if (nr_irqs > 1 && info->type != X86_IRQ_ALLOC_TYPE_PCI_MSI)
3360 sbdf = get_devid(info);
3364 seg = PCI_SBDF_TO_SEGID(sbdf);
3365 devid = PCI_SBDF_TO_DEVID(sbdf);
3366 iommu = __rlookup_amd_iommu(seg, devid);
3370 ret = irq_domain_alloc_irqs_parent(domain, virq, nr_irqs, arg);
3374 if (info->type == X86_IRQ_ALLOC_TYPE_IOAPIC) {
3375 struct irq_remap_table *table;
3377 table = alloc_irq_table(iommu, devid, NULL);
3379 if (!table->min_index) {
3381 * Keep the first 32 indexes free for IOAPIC
3384 table->min_index = 32;
3385 for (i = 0; i < 32; ++i)
3386 iommu->irte_ops->set_allocated(table, i);
3388 WARN_ON(table->min_index != 32);
3389 index = info->ioapic.pin;
3393 } else if (info->type == X86_IRQ_ALLOC_TYPE_PCI_MSI ||
3394 info->type == X86_IRQ_ALLOC_TYPE_PCI_MSIX) {
3395 bool align = (info->type == X86_IRQ_ALLOC_TYPE_PCI_MSI);
3397 index = alloc_irq_index(iommu, devid, nr_irqs, align,
3398 msi_desc_to_pci_dev(info->desc));
3400 index = alloc_irq_index(iommu, devid, nr_irqs, false, NULL);
3404 pr_warn("Failed to allocate IRTE\n");
3406 goto out_free_parent;
3409 for (i = 0; i < nr_irqs; i++) {
3410 irq_data = irq_domain_get_irq_data(domain, virq + i);
3411 cfg = irq_data ? irqd_cfg(irq_data) : NULL;
3418 data = kzalloc(sizeof(*data), GFP_KERNEL);
3422 if (!AMD_IOMMU_GUEST_IR_GA(amd_iommu_guest_ir))
3423 data->entry = kzalloc(sizeof(union irte), GFP_KERNEL);
3425 data->entry = kzalloc(sizeof(struct irte_ga),
3432 data->iommu = iommu;
3433 irq_data->hwirq = (devid << 16) + i;
3434 irq_data->chip_data = data;
3435 irq_data->chip = &amd_ir_chip;
3436 irq_remapping_prepare_irte(data, cfg, info, devid, index, i);
3437 irq_set_status_flags(virq + i, IRQ_MOVE_PCNTXT);
3443 for (i--; i >= 0; i--) {
3444 irq_data = irq_domain_get_irq_data(domain, virq + i);
3446 kfree(irq_data->chip_data);
3448 for (i = 0; i < nr_irqs; i++)
3449 free_irte(iommu, devid, index + i);
3451 irq_domain_free_irqs_common(domain, virq, nr_irqs);
3455 static void irq_remapping_free(struct irq_domain *domain, unsigned int virq,
3456 unsigned int nr_irqs)
3458 struct irq_2_irte *irte_info;
3459 struct irq_data *irq_data;
3460 struct amd_ir_data *data;
3463 for (i = 0; i < nr_irqs; i++) {
3464 irq_data = irq_domain_get_irq_data(domain, virq + i);
3465 if (irq_data && irq_data->chip_data) {
3466 data = irq_data->chip_data;
3467 irte_info = &data->irq_2_irte;
3468 free_irte(data->iommu, irte_info->devid, irte_info->index);
3473 irq_domain_free_irqs_common(domain, virq, nr_irqs);
3476 static void amd_ir_update_irte(struct irq_data *irqd, struct amd_iommu *iommu,
3477 struct amd_ir_data *ir_data,
3478 struct irq_2_irte *irte_info,
3479 struct irq_cfg *cfg);
3481 static int irq_remapping_activate(struct irq_domain *domain,
3482 struct irq_data *irq_data, bool reserve)
3484 struct amd_ir_data *data = irq_data->chip_data;
3485 struct irq_2_irte *irte_info = &data->irq_2_irte;
3486 struct amd_iommu *iommu = data->iommu;
3487 struct irq_cfg *cfg = irqd_cfg(irq_data);
3492 iommu->irte_ops->activate(iommu, data->entry, irte_info->devid,
3494 amd_ir_update_irte(irq_data, iommu, data, irte_info, cfg);
3498 static void irq_remapping_deactivate(struct irq_domain *domain,
3499 struct irq_data *irq_data)
3501 struct amd_ir_data *data = irq_data->chip_data;
3502 struct irq_2_irte *irte_info = &data->irq_2_irte;
3503 struct amd_iommu *iommu = data->iommu;
3506 iommu->irte_ops->deactivate(iommu, data->entry, irte_info->devid,
3510 static int irq_remapping_select(struct irq_domain *d, struct irq_fwspec *fwspec,
3511 enum irq_domain_bus_token bus_token)
3513 struct amd_iommu *iommu;
3516 if (!amd_iommu_irq_remap)
3519 if (x86_fwspec_is_ioapic(fwspec))
3520 devid = get_ioapic_devid(fwspec->param[0]);
3521 else if (x86_fwspec_is_hpet(fwspec))
3522 devid = get_hpet_devid(fwspec->param[0]);
3526 iommu = __rlookup_amd_iommu((devid >> 16), (devid & 0xffff));
3528 return iommu && iommu->ir_domain == d;
3531 static const struct irq_domain_ops amd_ir_domain_ops = {
3532 .select = irq_remapping_select,
3533 .alloc = irq_remapping_alloc,
3534 .free = irq_remapping_free,
3535 .activate = irq_remapping_activate,
3536 .deactivate = irq_remapping_deactivate,
3539 int amd_iommu_activate_guest_mode(void *data)
3541 struct amd_ir_data *ir_data = (struct amd_ir_data *)data;
3542 struct irte_ga *entry = (struct irte_ga *) ir_data->entry;
3545 if (!AMD_IOMMU_GUEST_IR_VAPIC(amd_iommu_guest_ir) || !entry)
3548 valid = entry->lo.fields_vapic.valid;
3553 entry->lo.fields_vapic.valid = valid;
3554 entry->lo.fields_vapic.guest_mode = 1;
3555 entry->lo.fields_vapic.ga_log_intr = 1;
3556 entry->hi.fields.ga_root_ptr = ir_data->ga_root_ptr;
3557 entry->hi.fields.vector = ir_data->ga_vector;
3558 entry->lo.fields_vapic.ga_tag = ir_data->ga_tag;
3560 return modify_irte_ga(ir_data->iommu, ir_data->irq_2_irte.devid,
3561 ir_data->irq_2_irte.index, entry);
3563 EXPORT_SYMBOL(amd_iommu_activate_guest_mode);
3565 int amd_iommu_deactivate_guest_mode(void *data)
3567 struct amd_ir_data *ir_data = (struct amd_ir_data *)data;
3568 struct irte_ga *entry = (struct irte_ga *) ir_data->entry;
3569 struct irq_cfg *cfg = ir_data->cfg;
3572 if (!AMD_IOMMU_GUEST_IR_VAPIC(amd_iommu_guest_ir) ||
3573 !entry || !entry->lo.fields_vapic.guest_mode)
3576 valid = entry->lo.fields_remap.valid;
3581 entry->lo.fields_remap.valid = valid;
3582 entry->lo.fields_remap.dm = apic->dest_mode_logical;
3583 entry->lo.fields_remap.int_type = APIC_DELIVERY_MODE_FIXED;
3584 entry->hi.fields.vector = cfg->vector;
3585 entry->lo.fields_remap.destination =
3586 APICID_TO_IRTE_DEST_LO(cfg->dest_apicid);
3587 entry->hi.fields.destination =
3588 APICID_TO_IRTE_DEST_HI(cfg->dest_apicid);
3590 return modify_irte_ga(ir_data->iommu, ir_data->irq_2_irte.devid,
3591 ir_data->irq_2_irte.index, entry);
3593 EXPORT_SYMBOL(amd_iommu_deactivate_guest_mode);
3595 static int amd_ir_set_vcpu_affinity(struct irq_data *data, void *vcpu_info)
3598 struct amd_iommu_pi_data *pi_data = vcpu_info;
3599 struct vcpu_data *vcpu_pi_info = pi_data->vcpu_data;
3600 struct amd_ir_data *ir_data = data->chip_data;
3601 struct irq_2_irte *irte_info = &ir_data->irq_2_irte;
3602 struct iommu_dev_data *dev_data;
3604 if (ir_data->iommu == NULL)
3607 dev_data = search_dev_data(ir_data->iommu, irte_info->devid);
3610 * This device has never been set up for guest mode.
3611 * we should not modify the IRTE
3613 if (!dev_data || !dev_data->use_vapic)
3616 ir_data->cfg = irqd_cfg(data);
3617 pi_data->ir_data = ir_data;
3620 * SVM tries to set up for VAPIC mode, but we are in
3621 * legacy mode. So, we force legacy mode instead.
3623 if (!AMD_IOMMU_GUEST_IR_VAPIC(amd_iommu_guest_ir)) {
3624 pr_debug("%s: Fall back to using intr legacy remap\n",
3626 pi_data->is_guest_mode = false;
3629 pi_data->prev_ga_tag = ir_data->cached_ga_tag;
3630 if (pi_data->is_guest_mode) {
3631 ir_data->ga_root_ptr = (pi_data->base >> 12);
3632 ir_data->ga_vector = vcpu_pi_info->vector;
3633 ir_data->ga_tag = pi_data->ga_tag;
3634 ret = amd_iommu_activate_guest_mode(ir_data);
3636 ir_data->cached_ga_tag = pi_data->ga_tag;
3638 ret = amd_iommu_deactivate_guest_mode(ir_data);
3641 * This communicates the ga_tag back to the caller
3642 * so that it can do all the necessary clean up.
3645 ir_data->cached_ga_tag = 0;
3652 static void amd_ir_update_irte(struct irq_data *irqd, struct amd_iommu *iommu,
3653 struct amd_ir_data *ir_data,
3654 struct irq_2_irte *irte_info,
3655 struct irq_cfg *cfg)
3659 * Atomically updates the IRTE with the new destination, vector
3660 * and flushes the interrupt entry cache.
3662 iommu->irte_ops->set_affinity(iommu, ir_data->entry, irte_info->devid,
3663 irte_info->index, cfg->vector,
3667 static int amd_ir_set_affinity(struct irq_data *data,
3668 const struct cpumask *mask, bool force)
3670 struct amd_ir_data *ir_data = data->chip_data;
3671 struct irq_2_irte *irte_info = &ir_data->irq_2_irte;
3672 struct irq_cfg *cfg = irqd_cfg(data);
3673 struct irq_data *parent = data->parent_data;
3674 struct amd_iommu *iommu = ir_data->iommu;
3680 ret = parent->chip->irq_set_affinity(parent, mask, force);
3681 if (ret < 0 || ret == IRQ_SET_MASK_OK_DONE)
3684 amd_ir_update_irte(data, iommu, ir_data, irte_info, cfg);
3686 * After this point, all the interrupts will start arriving
3687 * at the new destination. So, time to cleanup the previous
3688 * vector allocation.
3690 vector_schedule_cleanup(cfg);
3692 return IRQ_SET_MASK_OK_DONE;
3695 static void ir_compose_msi_msg(struct irq_data *irq_data, struct msi_msg *msg)
3697 struct amd_ir_data *ir_data = irq_data->chip_data;
3699 *msg = ir_data->msi_entry;
3702 static struct irq_chip amd_ir_chip = {
3704 .irq_ack = apic_ack_irq,
3705 .irq_set_affinity = amd_ir_set_affinity,
3706 .irq_set_vcpu_affinity = amd_ir_set_vcpu_affinity,
3707 .irq_compose_msi_msg = ir_compose_msi_msg,
3710 static const struct msi_parent_ops amdvi_msi_parent_ops = {
3711 .supported_flags = X86_VECTOR_MSI_FLAGS_SUPPORTED |
3712 MSI_FLAG_MULTI_PCI_MSI |
3715 .init_dev_msi_info = msi_parent_init_dev_msi_info,
3718 static const struct msi_parent_ops virt_amdvi_msi_parent_ops = {
3719 .supported_flags = X86_VECTOR_MSI_FLAGS_SUPPORTED |
3720 MSI_FLAG_MULTI_PCI_MSI,
3722 .init_dev_msi_info = msi_parent_init_dev_msi_info,
3725 int amd_iommu_create_irq_domain(struct amd_iommu *iommu)
3727 struct fwnode_handle *fn;
3729 fn = irq_domain_alloc_named_id_fwnode("AMD-IR", iommu->index);
3732 iommu->ir_domain = irq_domain_create_hierarchy(arch_get_ir_parent_domain(), 0, 0,
3733 fn, &amd_ir_domain_ops, iommu);
3734 if (!iommu->ir_domain) {
3735 irq_domain_free_fwnode(fn);
3739 irq_domain_update_bus_token(iommu->ir_domain, DOMAIN_BUS_AMDVI);
3740 iommu->ir_domain->flags |= IRQ_DOMAIN_FLAG_MSI_PARENT |
3741 IRQ_DOMAIN_FLAG_ISOLATED_MSI;
3743 if (amd_iommu_np_cache)
3744 iommu->ir_domain->msi_parent_ops = &virt_amdvi_msi_parent_ops;
3746 iommu->ir_domain->msi_parent_ops = &amdvi_msi_parent_ops;
3751 int amd_iommu_update_ga(int cpu, bool is_run, void *data)
3753 struct amd_ir_data *ir_data = (struct amd_ir_data *)data;
3754 struct irte_ga *entry = (struct irte_ga *) ir_data->entry;
3756 if (!AMD_IOMMU_GUEST_IR_VAPIC(amd_iommu_guest_ir) ||
3757 !entry || !entry->lo.fields_vapic.guest_mode)
3760 if (!ir_data->iommu)
3764 entry->lo.fields_vapic.destination =
3765 APICID_TO_IRTE_DEST_LO(cpu);
3766 entry->hi.fields.destination =
3767 APICID_TO_IRTE_DEST_HI(cpu);
3769 entry->lo.fields_vapic.is_run = is_run;
3771 return __modify_irte_ga(ir_data->iommu, ir_data->irq_2_irte.devid,
3772 ir_data->irq_2_irte.index, entry);
3774 EXPORT_SYMBOL(amd_iommu_update_ga);
projects / releases.git / blob