Map the PBA in order to access it from the MSI-X read handler. Note
that previously the handler will pass the physical host address into
the read{l,q} handlers, which is wrong as those expect a linear
address.
Map the PBA using ioremap when the first access is performed. Note
that 32bit arches might want to abstract the call to ioremap into a
vPCI arch handler, so they can use a fixmap range to map the PBA.
Reported-by: Jan Beulich <jbeulich@suse.com>
Signed-off-by: Roger Pau Monné <roger.pau@citrix.com>
---
I don't seem to have a box with a driver that will try to access the
PBA, so I would consider this specific code path only build tested. At
least it doesn't seem to regress the current state of vPCI.
---
xen/drivers/vpci/msix.c | 28 +++++++++++++++++++++++++---
xen/drivers/vpci/vpci.c | 2 ++
xen/include/xen/vpci.h | 2 ++
3 files changed, 29 insertions(+), 3 deletions(-)
diff --git a/xen/drivers/vpci/msix.c b/xen/drivers/vpci/msix.c
index 846f1b8d70..70085e98b9 100644
--- a/xen/drivers/vpci/msix.c
+++ b/xen/drivers/vpci/msix.c
@@ -198,8 +198,13 @@ static int msix_read(struct vcpu *v, unsigned long addr, unsigned int len,
if ( !access_allowed(msix->pdev, addr, len) )
return X86EMUL_OKAY;
+ spin_lock(&msix->pdev->vpci->lock);
if ( VMSIX_ADDR_IN_RANGE(addr, msix->pdev->vpci, VPCI_MSIX_PBA) )
{
+ struct vpci *vpci = msix->pdev->vpci;
+ paddr_t base = vmsix_table_addr(vpci, VPCI_MSIX_PBA);
+ unsigned int idx = addr - base;
+
/*
* Access to PBA.
*
@@ -207,25 +212,42 @@ static int msix_read(struct vcpu *v, unsigned long addr, unsigned int len,
* guest address space. If this changes the address will need to be
* translated.
*/
+
+ if ( !msix->pba )
+ {
+ msix->pba = ioremap(base, vmsix_table_size(vpci, VPCI_MSIX_PBA));
+ if ( !msix->pba )
+ {
+ /*
+ * If unable to map the PBA return all 1s (all pending): it's
+ * likely better to trigger spurious events than drop them.
+ */
+ spin_unlock(&vpci->lock);
+ gprintk(XENLOG_WARNING, "%pp: unable to map MSI-X PBA\n",
+ msix->pdev);
+ return X86EMUL_OKAY;
+ }
+ }
+
switch ( len )
{
case 4:
- *data = readl(addr);
+ *data = readl(msix->pba + idx);
break;
case 8:
- *data = readq(addr);
+ *data = readq(msix->pba + idx);
break;
default:
ASSERT_UNREACHABLE();
break;
}
+ spin_unlock(&vpci->lock);
return X86EMUL_OKAY;
}
- spin_lock(&msix->pdev->vpci->lock);
entry = get_entry(msix, addr);
offset = addr & (PCI_MSIX_ENTRY_SIZE - 1);
diff --git a/xen/drivers/vpci/vpci.c b/xen/drivers/vpci/vpci.c
index fb0947179b..f8674f3ea8 100644
--- a/xen/drivers/vpci/vpci.c
+++ b/xen/drivers/vpci/vpci.c
@@ -51,6 +51,8 @@ void vpci_remove_device(struct pci_dev *pdev)
xfree(r);
}
spin_unlock(&pdev->vpci->lock);
+ if ( pdev->vpci->msix && pdev->vpci->msix->pba )
+ iounmap(pdev->vpci->msix->pba);
xfree(pdev->vpci->msix);
xfree(pdev->vpci->msi);
xfree(pdev->vpci);
diff --git a/xen/include/xen/vpci.h b/xen/include/xen/vpci.h
index e8ac1eb395..bf93fc8d22 100644
--- a/xen/include/xen/vpci.h
+++ b/xen/include/xen/vpci.h
@@ -127,6 +127,8 @@ struct vpci {
bool enabled : 1;
/* Masked? */
bool masked : 1;
+ /* PBA map */
+ void *pba;
/* Entries. */
struct vpci_msix_entry {
uint64_t addr;
--
2.34.1