4 * Copyright (C) 2012 VMware, Inc. All rights reserved.
6 * This program is free software; you can redistribute it and/or modify it
7 * under the terms of the GNU General Public License as published by the
8 * Free Software Foundation version 2 and no later version.
10 * This program is distributed in the hope that it will be useful, but
11 * WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY
12 * or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License
16 #include <linux/vmw_vmci_defs.h>
17 #include <linux/vmw_vmci_api.h>
18 #include <linux/highmem.h>
19 #include <linux/kernel.h>
20 #include <linux/module.h>
21 #include <linux/sched.h>
22 #include <linux/cred.h>
23 #include <linux/slab.h>
25 #include "vmci_queue_pair.h"
26 #include "vmci_datagram.h"
27 #include "vmci_doorbell.h"
28 #include "vmci_context.h"
29 #include "vmci_driver.h"
30 #include "vmci_event.h"
32 /* Use a wide upper bound for the maximum contexts. */
33 #define VMCI_MAX_CONTEXTS 2000
36 * List of current VMCI contexts. Contexts can be added by
37 * vmci_ctx_create() and removed via vmci_ctx_destroy().
38 * These, along with context lookup, are protected by the
39 * list structure's lock.
42 struct list_head head;
43 spinlock_t lock; /* Spinlock for context list operations */
45 .head = LIST_HEAD_INIT(ctx_list.head),
46 .lock = __SPIN_LOCK_UNLOCKED(ctx_list.lock),
49 /* Used by contexts that did not set up notify flag pointers */
50 static bool ctx_dummy_notify;
52 static void ctx_signal_notify(struct vmci_ctx *context)
54 *context->notify = true;
57 static void ctx_clear_notify(struct vmci_ctx *context)
59 *context->notify = false;
63 * If nothing requires the attention of the guest, clears both
64 * notify flag and call.
66 static void ctx_clear_notify_call(struct vmci_ctx *context)
68 if (context->pending_datagrams == 0 &&
69 vmci_handle_arr_get_size(context->pending_doorbell_array) == 0)
70 ctx_clear_notify(context);
74 * Sets the context's notify flag iff datagrams are pending for this
75 * context. Called from vmci_setup_notify().
77 void vmci_ctx_check_signal_notify(struct vmci_ctx *context)
79 spin_lock(&context->lock);
80 if (context->pending_datagrams)
81 ctx_signal_notify(context);
82 spin_unlock(&context->lock);
86 * Allocates and initializes a VMCI context.
88 struct vmci_ctx *vmci_ctx_create(u32 cid, u32 priv_flags,
91 const struct cred *cred)
93 struct vmci_ctx *context;
96 if (cid == VMCI_INVALID_ID) {
97 pr_devel("Invalid context ID for VMCI context\n");
102 if (priv_flags & ~VMCI_PRIVILEGE_ALL_FLAGS) {
103 pr_devel("Invalid flag (flags=0x%x) for VMCI context\n",
109 if (user_version == 0) {
110 pr_devel("Invalid suer_version %d\n", user_version);
115 context = kzalloc(sizeof(*context), GFP_KERNEL);
117 pr_warn("Failed to allocate memory for VMCI context\n");
122 kref_init(&context->kref);
123 spin_lock_init(&context->lock);
124 INIT_LIST_HEAD(&context->list_item);
125 INIT_LIST_HEAD(&context->datagram_queue);
126 INIT_LIST_HEAD(&context->notifier_list);
128 /* Initialize host-specific VMCI context. */
129 init_waitqueue_head(&context->host_context.wait_queue);
131 context->queue_pair_array =
132 vmci_handle_arr_create(0, VMCI_MAX_GUEST_QP_COUNT);
133 if (!context->queue_pair_array) {
138 context->doorbell_array =
139 vmci_handle_arr_create(0, VMCI_MAX_GUEST_DOORBELL_COUNT);
140 if (!context->doorbell_array) {
142 goto err_free_qp_array;
145 context->pending_doorbell_array =
146 vmci_handle_arr_create(0, VMCI_MAX_GUEST_DOORBELL_COUNT);
147 if (!context->pending_doorbell_array) {
149 goto err_free_db_array;
152 context->user_version = user_version;
154 context->priv_flags = priv_flags;
157 context->cred = get_cred(cred);
159 context->notify = &ctx_dummy_notify;
160 context->notify_page = NULL;
163 * If we collide with an existing context we generate a new
164 * and use it instead. The VMX will determine if regeneration
165 * is okay. Since there isn't 4B - 16 VMs running on a given
166 * host, the below loop will terminate.
168 spin_lock(&ctx_list.lock);
170 while (vmci_ctx_exists(cid)) {
171 /* We reserve the lowest 16 ids for fixed contexts. */
172 cid = max(cid, VMCI_RESERVED_CID_LIMIT - 1) + 1;
173 if (cid == VMCI_INVALID_ID)
174 cid = VMCI_RESERVED_CID_LIMIT;
178 list_add_tail_rcu(&context->list_item, &ctx_list.head);
179 spin_unlock(&ctx_list.lock);
184 vmci_handle_arr_destroy(context->doorbell_array);
186 vmci_handle_arr_destroy(context->queue_pair_array);
190 return ERR_PTR(error);
194 * Destroy VMCI context.
196 void vmci_ctx_destroy(struct vmci_ctx *context)
198 spin_lock(&ctx_list.lock);
199 list_del_rcu(&context->list_item);
200 spin_unlock(&ctx_list.lock);
203 vmci_ctx_put(context);
207 * Fire notification for all contexts interested in given cid.
209 static int ctx_fire_notification(u32 context_id, u32 priv_flags)
212 struct vmci_ctx *sub_ctx;
213 struct vmci_handle_arr *subscriber_array;
214 struct vmci_handle context_handle =
215 vmci_make_handle(context_id, VMCI_EVENT_HANDLER);
218 * We create an array to hold the subscribers we find when
219 * scanning through all contexts.
221 subscriber_array = vmci_handle_arr_create(0, VMCI_MAX_CONTEXTS);
222 if (subscriber_array == NULL)
223 return VMCI_ERROR_NO_MEM;
226 * Scan all contexts to find who is interested in being
227 * notified about given contextID.
230 list_for_each_entry_rcu(sub_ctx, &ctx_list.head, list_item) {
231 struct vmci_handle_list *node;
234 * We only deliver notifications of the removal of
235 * contexts, if the two contexts are allowed to
238 if (vmci_deny_interaction(priv_flags, sub_ctx->priv_flags))
241 list_for_each_entry_rcu(node, &sub_ctx->notifier_list, node) {
242 if (!vmci_handle_is_equal(node->handle, context_handle))
245 vmci_handle_arr_append_entry(&subscriber_array,
246 vmci_make_handle(sub_ctx->cid,
247 VMCI_EVENT_HANDLER));
252 /* Fire event to all subscribers. */
253 array_size = vmci_handle_arr_get_size(subscriber_array);
254 for (i = 0; i < array_size; i++) {
256 struct vmci_event_ctx ev;
258 ev.msg.hdr.dst = vmci_handle_arr_get_entry(subscriber_array, i);
259 ev.msg.hdr.src = vmci_make_handle(VMCI_HYPERVISOR_CONTEXT_ID,
260 VMCI_CONTEXT_RESOURCE_ID);
261 ev.msg.hdr.payload_size = sizeof(ev) - sizeof(ev.msg.hdr);
262 ev.msg.event_data.event = VMCI_EVENT_CTX_REMOVED;
263 ev.payload.context_id = context_id;
265 result = vmci_datagram_dispatch(VMCI_HYPERVISOR_CONTEXT_ID,
267 if (result < VMCI_SUCCESS) {
268 pr_devel("Failed to enqueue event datagram (type=%d) for context (ID=0x%x)\n",
269 ev.msg.event_data.event,
270 ev.msg.hdr.dst.context);
271 /* We continue to enqueue on next subscriber. */
274 vmci_handle_arr_destroy(subscriber_array);
280 * Returns the current number of pending datagrams. The call may
281 * also serve as a synchronization point for the datagram queue,
282 * as no enqueue operations can occur concurrently.
284 int vmci_ctx_pending_datagrams(u32 cid, u32 *pending)
286 struct vmci_ctx *context;
288 context = vmci_ctx_get(cid);
290 return VMCI_ERROR_INVALID_ARGS;
292 spin_lock(&context->lock);
294 *pending = context->pending_datagrams;
295 spin_unlock(&context->lock);
296 vmci_ctx_put(context);
302 * Queues a VMCI datagram for the appropriate target VM context.
304 int vmci_ctx_enqueue_datagram(u32 cid, struct vmci_datagram *dg)
306 struct vmci_datagram_queue_entry *dq_entry;
307 struct vmci_ctx *context;
308 struct vmci_handle dg_src;
311 vmci_dg_size = VMCI_DG_SIZE(dg);
312 if (vmci_dg_size > VMCI_MAX_DG_SIZE) {
313 pr_devel("Datagram too large (bytes=%zu)\n", vmci_dg_size);
314 return VMCI_ERROR_INVALID_ARGS;
317 /* Get the target VM's VMCI context. */
318 context = vmci_ctx_get(cid);
320 pr_devel("Invalid context (ID=0x%x)\n", cid);
321 return VMCI_ERROR_INVALID_ARGS;
324 /* Allocate guest call entry and add it to the target VM's queue. */
325 dq_entry = kmalloc(sizeof(*dq_entry), GFP_KERNEL);
326 if (dq_entry == NULL) {
327 pr_warn("Failed to allocate memory for datagram\n");
328 vmci_ctx_put(context);
329 return VMCI_ERROR_NO_MEM;
332 dq_entry->dg_size = vmci_dg_size;
334 INIT_LIST_HEAD(&dq_entry->list_item);
336 spin_lock(&context->lock);
339 * We put a higher limit on datagrams from the hypervisor. If
340 * the pending datagram is not from hypervisor, then we check
341 * if enqueueing it would exceed the
342 * VMCI_MAX_DATAGRAM_QUEUE_SIZE limit on the destination. If
343 * the pending datagram is from hypervisor, we allow it to be
344 * queued at the destination side provided we don't reach the
345 * VMCI_MAX_DATAGRAM_AND_EVENT_QUEUE_SIZE limit.
347 if (context->datagram_queue_size + vmci_dg_size >=
348 VMCI_MAX_DATAGRAM_QUEUE_SIZE &&
349 (!vmci_handle_is_equal(dg_src,
351 (VMCI_HYPERVISOR_CONTEXT_ID,
352 VMCI_CONTEXT_RESOURCE_ID)) ||
353 context->datagram_queue_size + vmci_dg_size >=
354 VMCI_MAX_DATAGRAM_AND_EVENT_QUEUE_SIZE)) {
355 spin_unlock(&context->lock);
356 vmci_ctx_put(context);
358 pr_devel("Context (ID=0x%x) receive queue is full\n", cid);
359 return VMCI_ERROR_NO_RESOURCES;
362 list_add(&dq_entry->list_item, &context->datagram_queue);
363 context->pending_datagrams++;
364 context->datagram_queue_size += vmci_dg_size;
365 ctx_signal_notify(context);
366 wake_up(&context->host_context.wait_queue);
367 spin_unlock(&context->lock);
368 vmci_ctx_put(context);
374 * Verifies whether a context with the specified context ID exists.
375 * FIXME: utility is dubious as no decisions can be reliably made
376 * using this data as context can appear and disappear at any time.
378 bool vmci_ctx_exists(u32 cid)
380 struct vmci_ctx *context;
385 list_for_each_entry_rcu(context, &ctx_list.head, list_item) {
386 if (context->cid == cid) {
397 * Retrieves VMCI context corresponding to the given cid.
399 struct vmci_ctx *vmci_ctx_get(u32 cid)
401 struct vmci_ctx *c, *context = NULL;
403 if (cid == VMCI_INVALID_ID)
407 list_for_each_entry_rcu(c, &ctx_list.head, list_item) {
410 * The context owner drops its own reference to the
411 * context only after removing it from the list and
412 * waiting for RCU grace period to expire. This
413 * means that we are not about to increase the
414 * reference count of something that is in the
415 * process of being destroyed.
418 kref_get(&context->kref);
428 * Deallocates all parts of a context data structure. This
429 * function doesn't lock the context, because it assumes that
430 * the caller was holding the last reference to context.
432 static void ctx_free_ctx(struct kref *kref)
434 struct vmci_ctx *context = container_of(kref, struct vmci_ctx, kref);
435 struct vmci_datagram_queue_entry *dq_entry, *dq_entry_tmp;
436 struct vmci_handle temp_handle;
437 struct vmci_handle_list *notifier, *tmp;
440 * Fire event to all contexts interested in knowing this
443 ctx_fire_notification(context->cid, context->priv_flags);
446 * Cleanup all queue pair resources attached to context. If
447 * the VM dies without cleaning up, this code will make sure
448 * that no resources are leaked.
450 temp_handle = vmci_handle_arr_get_entry(context->queue_pair_array, 0);
451 while (!vmci_handle_is_equal(temp_handle, VMCI_INVALID_HANDLE)) {
452 if (vmci_qp_broker_detach(temp_handle,
453 context) < VMCI_SUCCESS) {
455 * When vmci_qp_broker_detach() succeeds it
456 * removes the handle from the array. If
457 * detach fails, we must remove the handle
460 vmci_handle_arr_remove_entry(context->queue_pair_array,
464 vmci_handle_arr_get_entry(context->queue_pair_array, 0);
468 * It is fine to destroy this without locking the callQueue, as
469 * this is the only thread having a reference to the context.
471 list_for_each_entry_safe(dq_entry, dq_entry_tmp,
472 &context->datagram_queue, list_item) {
473 WARN_ON(dq_entry->dg_size != VMCI_DG_SIZE(dq_entry->dg));
474 list_del(&dq_entry->list_item);
479 list_for_each_entry_safe(notifier, tmp,
480 &context->notifier_list, node) {
481 list_del(¬ifier->node);
485 vmci_handle_arr_destroy(context->queue_pair_array);
486 vmci_handle_arr_destroy(context->doorbell_array);
487 vmci_handle_arr_destroy(context->pending_doorbell_array);
488 vmci_ctx_unset_notify(context);
490 put_cred(context->cred);
495 * Drops reference to VMCI context. If this is the last reference to
496 * the context it will be deallocated. A context is created with
497 * a reference count of one, and on destroy, it is removed from
498 * the context list before its reference count is decremented. Thus,
499 * if we reach zero, we are sure that nobody else are about to increment
500 * it (they need the entry in the context list for that), and so there
501 * is no need for locking.
503 void vmci_ctx_put(struct vmci_ctx *context)
505 kref_put(&context->kref, ctx_free_ctx);
509 * Dequeues the next datagram and returns it to caller.
510 * The caller passes in a pointer to the max size datagram
511 * it can handle and the datagram is only unqueued if the
512 * size is less than max_size. If larger max_size is set to
513 * the size of the datagram to give the caller a chance to
514 * set up a larger buffer for the guestcall.
516 int vmci_ctx_dequeue_datagram(struct vmci_ctx *context,
518 struct vmci_datagram **dg)
520 struct vmci_datagram_queue_entry *dq_entry;
521 struct list_head *list_item;
524 /* Dequeue the next datagram entry. */
525 spin_lock(&context->lock);
526 if (context->pending_datagrams == 0) {
527 ctx_clear_notify_call(context);
528 spin_unlock(&context->lock);
529 pr_devel("No datagrams pending\n");
530 return VMCI_ERROR_NO_MORE_DATAGRAMS;
533 list_item = context->datagram_queue.next;
536 list_entry(list_item, struct vmci_datagram_queue_entry, list_item);
538 /* Check size of caller's buffer. */
539 if (*max_size < dq_entry->dg_size) {
540 *max_size = dq_entry->dg_size;
541 spin_unlock(&context->lock);
542 pr_devel("Caller's buffer should be at least (size=%u bytes)\n",
544 return VMCI_ERROR_NO_MEM;
548 context->pending_datagrams--;
549 context->datagram_queue_size -= dq_entry->dg_size;
550 if (context->pending_datagrams == 0) {
551 ctx_clear_notify_call(context);
555 * Return the size of the next datagram.
557 struct vmci_datagram_queue_entry *next_entry;
559 list_item = context->datagram_queue.next;
561 list_entry(list_item, struct vmci_datagram_queue_entry,
565 * The following size_t -> int truncation is fine as
566 * the maximum size of a (routable) datagram is 68KB.
568 rv = (int)next_entry->dg_size;
570 spin_unlock(&context->lock);
572 /* Caller must free datagram. */
581 * Reverts actions set up by vmci_setup_notify(). Unmaps and unlocks the
582 * page mapped/locked by vmci_setup_notify().
584 void vmci_ctx_unset_notify(struct vmci_ctx *context)
586 struct page *notify_page;
588 spin_lock(&context->lock);
590 notify_page = context->notify_page;
591 context->notify = &ctx_dummy_notify;
592 context->notify_page = NULL;
594 spin_unlock(&context->lock);
598 put_page(notify_page);
603 * Add remote_cid to list of contexts current contexts wants
604 * notifications from/about.
606 int vmci_ctx_add_notification(u32 context_id, u32 remote_cid)
608 struct vmci_ctx *context;
609 struct vmci_handle_list *notifier, *n;
613 context = vmci_ctx_get(context_id);
615 return VMCI_ERROR_NOT_FOUND;
617 if (VMCI_CONTEXT_IS_VM(context_id) && VMCI_CONTEXT_IS_VM(remote_cid)) {
618 pr_devel("Context removed notifications for other VMs not supported (src=0x%x, remote=0x%x)\n",
619 context_id, remote_cid);
620 result = VMCI_ERROR_DST_UNREACHABLE;
624 if (context->priv_flags & VMCI_PRIVILEGE_FLAG_RESTRICTED) {
625 result = VMCI_ERROR_NO_ACCESS;
629 notifier = kmalloc(sizeof(struct vmci_handle_list), GFP_KERNEL);
631 result = VMCI_ERROR_NO_MEM;
635 INIT_LIST_HEAD(¬ifier->node);
636 notifier->handle = vmci_make_handle(remote_cid, VMCI_EVENT_HANDLER);
638 spin_lock(&context->lock);
640 if (context->n_notifiers < VMCI_MAX_CONTEXTS) {
641 list_for_each_entry(n, &context->notifier_list, node) {
642 if (vmci_handle_is_equal(n->handle, notifier->handle)) {
650 result = VMCI_ERROR_ALREADY_EXISTS;
652 list_add_tail_rcu(¬ifier->node,
653 &context->notifier_list);
654 context->n_notifiers++;
655 result = VMCI_SUCCESS;
659 result = VMCI_ERROR_NO_MEM;
662 spin_unlock(&context->lock);
665 vmci_ctx_put(context);
670 * Remove remote_cid from current context's list of contexts it is
671 * interested in getting notifications from/about.
673 int vmci_ctx_remove_notification(u32 context_id, u32 remote_cid)
675 struct vmci_ctx *context;
676 struct vmci_handle_list *notifier, *tmp;
677 struct vmci_handle handle;
680 context = vmci_ctx_get(context_id);
682 return VMCI_ERROR_NOT_FOUND;
684 handle = vmci_make_handle(remote_cid, VMCI_EVENT_HANDLER);
686 spin_lock(&context->lock);
687 list_for_each_entry_safe(notifier, tmp,
688 &context->notifier_list, node) {
689 if (vmci_handle_is_equal(notifier->handle, handle)) {
690 list_del_rcu(¬ifier->node);
691 context->n_notifiers--;
696 spin_unlock(&context->lock);
703 vmci_ctx_put(context);
705 return found ? VMCI_SUCCESS : VMCI_ERROR_NOT_FOUND;
708 static int vmci_ctx_get_chkpt_notifiers(struct vmci_ctx *context,
709 u32 *buf_size, void **pbuf)
713 struct vmci_handle_list *entry;
716 if (context->n_notifiers == 0) {
722 data_size = context->n_notifiers * sizeof(*notifiers);
723 if (*buf_size < data_size) {
724 *buf_size = data_size;
725 return VMCI_ERROR_MORE_DATA;
728 notifiers = kmalloc(data_size, GFP_ATOMIC); /* FIXME: want GFP_KERNEL */
730 return VMCI_ERROR_NO_MEM;
732 list_for_each_entry(entry, &context->notifier_list, node)
733 notifiers[i++] = entry->handle.context;
735 *buf_size = data_size;
740 static int vmci_ctx_get_chkpt_doorbells(struct vmci_ctx *context,
741 u32 *buf_size, void **pbuf)
743 struct dbell_cpt_state *dbells;
746 n_doorbells = vmci_handle_arr_get_size(context->doorbell_array);
747 if (n_doorbells > 0) {
748 size_t data_size = n_doorbells * sizeof(*dbells);
749 if (*buf_size < data_size) {
750 *buf_size = data_size;
751 return VMCI_ERROR_MORE_DATA;
754 dbells = kzalloc(data_size, GFP_ATOMIC);
756 return VMCI_ERROR_NO_MEM;
758 for (i = 0; i < n_doorbells; i++)
759 dbells[i].handle = vmci_handle_arr_get_entry(
760 context->doorbell_array, i);
762 *buf_size = data_size;
773 * Get current context's checkpoint state of given type.
775 int vmci_ctx_get_chkpt_state(u32 context_id,
780 struct vmci_ctx *context;
783 context = vmci_ctx_get(context_id);
785 return VMCI_ERROR_NOT_FOUND;
787 spin_lock(&context->lock);
790 case VMCI_NOTIFICATION_CPT_STATE:
791 result = vmci_ctx_get_chkpt_notifiers(context, buf_size, pbuf);
794 case VMCI_WELLKNOWN_CPT_STATE:
796 * For compatibility with VMX'en with VM to VM communication, we
797 * always return zero wellknown handles.
802 result = VMCI_SUCCESS;
805 case VMCI_DOORBELL_CPT_STATE:
806 result = vmci_ctx_get_chkpt_doorbells(context, buf_size, pbuf);
810 pr_devel("Invalid cpt state (type=%d)\n", cpt_type);
811 result = VMCI_ERROR_INVALID_ARGS;
815 spin_unlock(&context->lock);
816 vmci_ctx_put(context);
822 * Set current context's checkpoint state of given type.
824 int vmci_ctx_set_chkpt_state(u32 context_id,
831 int result = VMCI_SUCCESS;
832 u32 num_ids = buf_size / sizeof(u32);
834 if (cpt_type == VMCI_WELLKNOWN_CPT_STATE && num_ids > 0) {
836 * We would end up here if VMX with VM to VM communication
837 * attempts to restore a checkpoint with wellknown handles.
839 pr_warn("Attempt to restore checkpoint with obsolete wellknown handles\n");
840 return VMCI_ERROR_OBSOLETE;
843 if (cpt_type != VMCI_NOTIFICATION_CPT_STATE) {
844 pr_devel("Invalid cpt state (type=%d)\n", cpt_type);
845 return VMCI_ERROR_INVALID_ARGS;
848 for (i = 0; i < num_ids && result == VMCI_SUCCESS; i++) {
849 current_id = ((u32 *)cpt_buf)[i];
850 result = vmci_ctx_add_notification(context_id, current_id);
851 if (result != VMCI_SUCCESS)
854 if (result != VMCI_SUCCESS)
855 pr_devel("Failed to set cpt state (type=%d) (error=%d)\n",
862 * Retrieves the specified context's pending notifications in the
863 * form of a handle array. The handle arrays returned are the
864 * actual data - not a copy and should not be modified by the
865 * caller. They must be released using
866 * vmci_ctx_rcv_notifications_release.
868 int vmci_ctx_rcv_notifications_get(u32 context_id,
869 struct vmci_handle_arr **db_handle_array,
870 struct vmci_handle_arr **qp_handle_array)
872 struct vmci_ctx *context;
873 int result = VMCI_SUCCESS;
875 context = vmci_ctx_get(context_id);
877 return VMCI_ERROR_NOT_FOUND;
879 spin_lock(&context->lock);
881 *db_handle_array = context->pending_doorbell_array;
882 context->pending_doorbell_array =
883 vmci_handle_arr_create(0, VMCI_MAX_GUEST_DOORBELL_COUNT);
884 if (!context->pending_doorbell_array) {
885 context->pending_doorbell_array = *db_handle_array;
886 *db_handle_array = NULL;
887 result = VMCI_ERROR_NO_MEM;
889 *qp_handle_array = NULL;
891 spin_unlock(&context->lock);
892 vmci_ctx_put(context);
898 * Releases handle arrays with pending notifications previously
899 * retrieved using vmci_ctx_rcv_notifications_get. If the
900 * notifications were not successfully handed over to the guest,
901 * success must be false.
903 void vmci_ctx_rcv_notifications_release(u32 context_id,
904 struct vmci_handle_arr *db_handle_array,
905 struct vmci_handle_arr *qp_handle_array,
908 struct vmci_ctx *context = vmci_ctx_get(context_id);
910 spin_lock(&context->lock);
912 struct vmci_handle handle;
915 * New notifications may have been added while we were not
916 * holding the context lock, so we transfer any new pending
917 * doorbell notifications to the old array, and reinstate the
921 handle = vmci_handle_arr_remove_tail(
922 context->pending_doorbell_array);
923 while (!vmci_handle_is_invalid(handle)) {
924 if (!vmci_handle_arr_has_entry(db_handle_array,
926 vmci_handle_arr_append_entry(
927 &db_handle_array, handle);
929 handle = vmci_handle_arr_remove_tail(
930 context->pending_doorbell_array);
932 vmci_handle_arr_destroy(context->pending_doorbell_array);
933 context->pending_doorbell_array = db_handle_array;
934 db_handle_array = NULL;
936 ctx_clear_notify_call(context);
938 spin_unlock(&context->lock);
939 vmci_ctx_put(context);
942 vmci_handle_arr_destroy(db_handle_array);
945 vmci_handle_arr_destroy(qp_handle_array);
949 * Registers that a new doorbell handle has been allocated by the
950 * context. Only doorbell handles registered can be notified.
952 int vmci_ctx_dbell_create(u32 context_id, struct vmci_handle handle)
954 struct vmci_ctx *context;
957 if (context_id == VMCI_INVALID_ID || vmci_handle_is_invalid(handle))
958 return VMCI_ERROR_INVALID_ARGS;
960 context = vmci_ctx_get(context_id);
962 return VMCI_ERROR_NOT_FOUND;
964 spin_lock(&context->lock);
965 if (!vmci_handle_arr_has_entry(context->doorbell_array, handle))
966 result = vmci_handle_arr_append_entry(&context->doorbell_array,
969 result = VMCI_ERROR_DUPLICATE_ENTRY;
971 spin_unlock(&context->lock);
972 vmci_ctx_put(context);
978 * Unregisters a doorbell handle that was previously registered
979 * with vmci_ctx_dbell_create.
981 int vmci_ctx_dbell_destroy(u32 context_id, struct vmci_handle handle)
983 struct vmci_ctx *context;
984 struct vmci_handle removed_handle;
986 if (context_id == VMCI_INVALID_ID || vmci_handle_is_invalid(handle))
987 return VMCI_ERROR_INVALID_ARGS;
989 context = vmci_ctx_get(context_id);
991 return VMCI_ERROR_NOT_FOUND;
993 spin_lock(&context->lock);
995 vmci_handle_arr_remove_entry(context->doorbell_array, handle);
996 vmci_handle_arr_remove_entry(context->pending_doorbell_array, handle);
997 spin_unlock(&context->lock);
999 vmci_ctx_put(context);
1001 return vmci_handle_is_invalid(removed_handle) ?
1002 VMCI_ERROR_NOT_FOUND : VMCI_SUCCESS;
1006 * Unregisters all doorbell handles that were previously
1007 * registered with vmci_ctx_dbell_create.
1009 int vmci_ctx_dbell_destroy_all(u32 context_id)
1011 struct vmci_ctx *context;
1012 struct vmci_handle handle;
1014 if (context_id == VMCI_INVALID_ID)
1015 return VMCI_ERROR_INVALID_ARGS;
1017 context = vmci_ctx_get(context_id);
1018 if (context == NULL)
1019 return VMCI_ERROR_NOT_FOUND;
1021 spin_lock(&context->lock);
1023 struct vmci_handle_arr *arr = context->doorbell_array;
1024 handle = vmci_handle_arr_remove_tail(arr);
1025 } while (!vmci_handle_is_invalid(handle));
1027 struct vmci_handle_arr *arr = context->pending_doorbell_array;
1028 handle = vmci_handle_arr_remove_tail(arr);
1029 } while (!vmci_handle_is_invalid(handle));
1030 spin_unlock(&context->lock);
1032 vmci_ctx_put(context);
1034 return VMCI_SUCCESS;
1038 * Registers a notification of a doorbell handle initiated by the
1039 * specified source context. The notification of doorbells are
1040 * subject to the same isolation rules as datagram delivery. To
1041 * allow host side senders of notifications a finer granularity
1042 * of sender rights than those assigned to the sending context
1043 * itself, the host context is required to specify a different
1044 * set of privilege flags that will override the privileges of
1045 * the source context.
1047 int vmci_ctx_notify_dbell(u32 src_cid,
1048 struct vmci_handle handle,
1051 struct vmci_ctx *dst_context;
1054 if (vmci_handle_is_invalid(handle))
1055 return VMCI_ERROR_INVALID_ARGS;
1057 /* Get the target VM's VMCI context. */
1058 dst_context = vmci_ctx_get(handle.context);
1060 pr_devel("Invalid context (ID=0x%x)\n", handle.context);
1061 return VMCI_ERROR_NOT_FOUND;
1064 if (src_cid != handle.context) {
1067 if (VMCI_CONTEXT_IS_VM(src_cid) &&
1068 VMCI_CONTEXT_IS_VM(handle.context)) {
1069 pr_devel("Doorbell notification from VM to VM not supported (src=0x%x, dst=0x%x)\n",
1070 src_cid, handle.context);
1071 result = VMCI_ERROR_DST_UNREACHABLE;
1075 result = vmci_dbell_get_priv_flags(handle, &dst_priv_flags);
1076 if (result < VMCI_SUCCESS) {
1077 pr_warn("Failed to get privilege flags for destination (handle=0x%x:0x%x)\n",
1078 handle.context, handle.resource);
1082 if (src_cid != VMCI_HOST_CONTEXT_ID ||
1083 src_priv_flags == VMCI_NO_PRIVILEGE_FLAGS) {
1084 src_priv_flags = vmci_context_get_priv_flags(src_cid);
1087 if (vmci_deny_interaction(src_priv_flags, dst_priv_flags)) {
1088 result = VMCI_ERROR_NO_ACCESS;
1093 if (handle.context == VMCI_HOST_CONTEXT_ID) {
1094 result = vmci_dbell_host_context_notify(src_cid, handle);
1096 spin_lock(&dst_context->lock);
1098 if (!vmci_handle_arr_has_entry(dst_context->doorbell_array,
1100 result = VMCI_ERROR_NOT_FOUND;
1102 if (!vmci_handle_arr_has_entry(
1103 dst_context->pending_doorbell_array,
1105 result = vmci_handle_arr_append_entry(
1106 &dst_context->pending_doorbell_array,
1108 if (result == VMCI_SUCCESS) {
1109 ctx_signal_notify(dst_context);
1110 wake_up(&dst_context->host_context.wait_queue);
1113 result = VMCI_SUCCESS;
1116 spin_unlock(&dst_context->lock);
1120 vmci_ctx_put(dst_context);
1125 bool vmci_ctx_supports_host_qp(struct vmci_ctx *context)
1127 return context && context->user_version >= VMCI_VERSION_HOSTQP;
1131 * Registers that a new queue pair handle has been allocated by
1134 int vmci_ctx_qp_create(struct vmci_ctx *context, struct vmci_handle handle)
1138 if (context == NULL || vmci_handle_is_invalid(handle))
1139 return VMCI_ERROR_INVALID_ARGS;
1141 if (!vmci_handle_arr_has_entry(context->queue_pair_array, handle))
1142 result = vmci_handle_arr_append_entry(
1143 &context->queue_pair_array, handle);
1145 result = VMCI_ERROR_DUPLICATE_ENTRY;
1151 * Unregisters a queue pair handle that was previously registered
1152 * with vmci_ctx_qp_create.
1154 int vmci_ctx_qp_destroy(struct vmci_ctx *context, struct vmci_handle handle)
1156 struct vmci_handle hndl;
1158 if (context == NULL || vmci_handle_is_invalid(handle))
1159 return VMCI_ERROR_INVALID_ARGS;
1161 hndl = vmci_handle_arr_remove_entry(context->queue_pair_array, handle);
1163 return vmci_handle_is_invalid(hndl) ?
1164 VMCI_ERROR_NOT_FOUND : VMCI_SUCCESS;
1168 * Determines whether a given queue pair handle is registered
1169 * with the given context.
1171 bool vmci_ctx_qp_exists(struct vmci_ctx *context, struct vmci_handle handle)
1173 if (context == NULL || vmci_handle_is_invalid(handle))
1176 return vmci_handle_arr_has_entry(context->queue_pair_array, handle);
1180 * vmci_context_get_priv_flags() - Retrieve privilege flags.
1181 * @context_id: The context ID of the VMCI context.
1183 * Retrieves privilege flags of the given VMCI context ID.
1185 u32 vmci_context_get_priv_flags(u32 context_id)
1187 if (vmci_host_code_active()) {
1189 struct vmci_ctx *context;
1191 context = vmci_ctx_get(context_id);
1193 return VMCI_LEAST_PRIVILEGE_FLAGS;
1195 flags = context->priv_flags;
1196 vmci_ctx_put(context);
1199 return VMCI_NO_PRIVILEGE_FLAGS;
1201 EXPORT_SYMBOL_GPL(vmci_context_get_priv_flags);
1204 * vmci_is_context_owner() - Determimnes if user is the context owner
1205 * @context_id: The context ID of the VMCI context.
1206 * @uid: The host user id (real kernel value).
1208 * Determines whether a given UID is the owner of given VMCI context.
1210 bool vmci_is_context_owner(u32 context_id, kuid_t uid)
1212 bool is_owner = false;
1214 if (vmci_host_code_active()) {
1215 struct vmci_ctx *context = vmci_ctx_get(context_id);
1218 is_owner = uid_eq(context->cred->uid, uid);
1219 vmci_ctx_put(context);
1225 EXPORT_SYMBOL_GPL(vmci_is_context_owner);
projects / releases.git / blob