1 /******************************************************************************
4 * Granting foreign access to our memory reservation.
6 * Copyright (c) 2005-2006, Christopher Clark
7 * Copyright (c) 2004-2005, K A Fraser
9 * This program is free software; you can redistribute it and/or
10 * modify it under the terms of the GNU General Public License version 2
11 * as published by the Free Software Foundation; or, when distributed
12 * separately from the Linux kernel or incorporated into other
13 * software packages, subject to the following license:
15 * Permission is hereby granted, free of charge, to any person obtaining a copy
16 * of this source file (the "Software"), to deal in the Software without
17 * restriction, including without limitation the rights to use, copy, modify,
18 * merge, publish, distribute, sublicense, and/or sell copies of the Software,
19 * and to permit persons to whom the Software is furnished to do so, subject to
20 * the following conditions:
22 * The above copyright notice and this permission notice shall be included in
23 * all copies or substantial portions of the Software.
25 * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
26 * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
27 * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
28 * AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
29 * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING
30 * FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS
34 #include <linux/module.h>
35 #include <linux/sched.h>
37 #include <linux/slab.h>
38 #include <linux/vmalloc.h>
39 #include <linux/uaccess.h>
43 #include <xen/interface/xen.h>
45 #include <xen/grant_table.h>
46 #include <xen/interface/memory.h>
47 #include <xen/hvc-console.h>
48 #include <asm/xen/hypercall.h>
50 #include <asm/pgtable.h>
51 #include <asm/sync_bitops.h>
53 /* External tools reserve first few grant table entries. */
54 #define NR_RESERVED_ENTRIES 8
55 #define GNTTAB_LIST_END 0xffffffff
56 #define GREFS_PER_GRANT_FRAME \
57 (grant_table_version == 1 ? \
58 (PAGE_SIZE / sizeof(struct grant_entry_v1)) : \
59 (PAGE_SIZE / sizeof(union grant_entry_v2)))
61 static grant_ref_t **gnttab_list;
62 static unsigned int nr_grant_frames;
63 static unsigned int boot_max_nr_grant_frames;
64 static int gnttab_free_count;
65 static grant_ref_t gnttab_free_head;
66 static DEFINE_SPINLOCK(gnttab_list_lock);
67 unsigned long xen_hvm_resume_frames;
68 EXPORT_SYMBOL_GPL(xen_hvm_resume_frames);
71 struct grant_entry_v1 *v1;
72 union grant_entry_v2 *v2;
76 /*This is a structure of function pointers for grant table*/
79 * Mapping a list of frames for storing grant entries. Frames parameter
80 * is used to store grant table address when grant table being setup,
81 * nr_gframes is the number of frames to map grant table. Returning
82 * GNTST_okay means success and negative value means failure.
84 int (*map_frames)(unsigned long *frames, unsigned int nr_gframes);
86 * Release a list of frames which are mapped in map_frames for grant
89 void (*unmap_frames)(void);
91 * Introducing a valid entry into the grant table, granting the frame of
92 * this grant entry to domain for accessing or transfering. Ref
93 * parameter is reference of this introduced grant entry, domid is id of
94 * granted domain, frame is the page frame to be granted, and flags is
95 * status of the grant entry to be updated.
97 void (*update_entry)(grant_ref_t ref, domid_t domid,
98 unsigned long frame, unsigned flags);
100 * Stop granting a grant entry to domain for accessing. Ref parameter is
101 * reference of a grant entry whose grant access will be stopped,
102 * readonly is not in use in this function. If the grant entry is
103 * currently mapped for reading or writing, just return failure(==0)
104 * directly and don't tear down the grant access. Otherwise, stop grant
105 * access for this entry and return success(==1).
107 int (*end_foreign_access_ref)(grant_ref_t ref, int readonly);
109 * Stop granting a grant entry to domain for transfer. Ref parameter is
110 * reference of a grant entry whose grant transfer will be stopped. If
111 * tranfer has not started, just reclaim the grant entry and return
112 * failure(==0). Otherwise, wait for the transfer to complete and then
115 unsigned long (*end_foreign_transfer_ref)(grant_ref_t ref);
117 * Query the status of a grant entry. Ref parameter is reference of
118 * queried grant entry, return value is the status of queried entry.
119 * Detailed status(writing/reading) can be gotten from the return value
122 int (*query_foreign_access)(grant_ref_t ref);
124 * Grant a domain to access a range of bytes within the page referred by
125 * an available grant entry. Ref parameter is reference of a grant entry
126 * which will be sub-page accessed, domid is id of grantee domain, frame
127 * is frame address of subpage grant, flags is grant type and flag
128 * information, page_off is offset of the range of bytes, and length is
129 * length of bytes to be accessed.
131 void (*update_subpage_entry)(grant_ref_t ref, domid_t domid,
132 unsigned long frame, int flags,
133 unsigned page_off, unsigned length);
135 * Redirect an available grant entry on domain A to another grant
136 * reference of domain B, then allow domain C to use grant reference
137 * of domain B transitively. Ref parameter is an available grant entry
138 * reference on domain A, domid is id of domain C which accesses grant
139 * entry transitively, flags is grant type and flag information,
140 * trans_domid is id of domain B whose grant entry is finally accessed
141 * transitively, trans_gref is grant entry transitive reference of
144 void (*update_trans_entry)(grant_ref_t ref, domid_t domid, int flags,
145 domid_t trans_domid, grant_ref_t trans_gref);
148 static struct gnttab_ops *gnttab_interface;
150 /*This reflects status of grant entries, so act as a global value*/
151 static grant_status_t *grstatus;
153 static int grant_table_version;
155 static struct gnttab_free_callback *gnttab_free_callback_list;
157 static int gnttab_expand(unsigned int req_entries);
159 #define RPP (PAGE_SIZE / sizeof(grant_ref_t))
160 #define SPP (PAGE_SIZE / sizeof(grant_status_t))
162 static inline grant_ref_t *__gnttab_entry(grant_ref_t entry)
164 return &gnttab_list[(entry) / RPP][(entry) % RPP];
166 /* This can be used as an l-value */
167 #define gnttab_entry(entry) (*__gnttab_entry(entry))
169 static int get_free_entries(unsigned count)
175 spin_lock_irqsave(&gnttab_list_lock, flags);
177 if ((gnttab_free_count < count) &&
178 ((rc = gnttab_expand(count - gnttab_free_count)) < 0)) {
179 spin_unlock_irqrestore(&gnttab_list_lock, flags);
183 ref = head = gnttab_free_head;
184 gnttab_free_count -= count;
186 head = gnttab_entry(head);
187 gnttab_free_head = gnttab_entry(head);
188 gnttab_entry(head) = GNTTAB_LIST_END;
190 spin_unlock_irqrestore(&gnttab_list_lock, flags);
195 static void do_free_callbacks(void)
197 struct gnttab_free_callback *callback, *next;
199 callback = gnttab_free_callback_list;
200 gnttab_free_callback_list = NULL;
202 while (callback != NULL) {
203 next = callback->next;
204 if (gnttab_free_count >= callback->count) {
205 callback->next = NULL;
206 callback->fn(callback->arg);
208 callback->next = gnttab_free_callback_list;
209 gnttab_free_callback_list = callback;
215 static inline void check_free_callbacks(void)
217 if (unlikely(gnttab_free_callback_list))
221 static void put_free_entry(grant_ref_t ref)
224 spin_lock_irqsave(&gnttab_list_lock, flags);
225 gnttab_entry(ref) = gnttab_free_head;
226 gnttab_free_head = ref;
228 check_free_callbacks();
229 spin_unlock_irqrestore(&gnttab_list_lock, flags);
233 * Following applies to gnttab_update_entry_v1 and gnttab_update_entry_v2.
234 * Introducing a valid entry into the grant table:
235 * 1. Write ent->domid.
236 * 2. Write ent->frame:
237 * GTF_permit_access: Frame to which access is permitted.
238 * GTF_accept_transfer: Pseudo-phys frame slot being filled by new
239 * frame, or zero if none.
240 * 3. Write memory barrier (WMB).
241 * 4. Write ent->flags, inc. valid type.
243 static void gnttab_update_entry_v1(grant_ref_t ref, domid_t domid,
244 unsigned long frame, unsigned flags)
246 gnttab_shared.v1[ref].domid = domid;
247 gnttab_shared.v1[ref].frame = frame;
249 gnttab_shared.v1[ref].flags = flags;
252 static void gnttab_update_entry_v2(grant_ref_t ref, domid_t domid,
253 unsigned long frame, unsigned flags)
255 gnttab_shared.v2[ref].hdr.domid = domid;
256 gnttab_shared.v2[ref].full_page.frame = frame;
258 gnttab_shared.v2[ref].hdr.flags = GTF_permit_access | flags;
262 * Public grant-issuing interface functions
264 void gnttab_grant_foreign_access_ref(grant_ref_t ref, domid_t domid,
265 unsigned long frame, int readonly)
267 gnttab_interface->update_entry(ref, domid, frame,
268 GTF_permit_access | (readonly ? GTF_readonly : 0));
270 EXPORT_SYMBOL_GPL(gnttab_grant_foreign_access_ref);
272 int gnttab_grant_foreign_access(domid_t domid, unsigned long frame,
277 ref = get_free_entries(1);
278 if (unlikely(ref < 0))
281 gnttab_grant_foreign_access_ref(ref, domid, frame, readonly);
285 EXPORT_SYMBOL_GPL(gnttab_grant_foreign_access);
287 void gnttab_update_subpage_entry_v2(grant_ref_t ref, domid_t domid,
288 unsigned long frame, int flags,
292 gnttab_shared.v2[ref].sub_page.frame = frame;
293 gnttab_shared.v2[ref].sub_page.page_off = page_off;
294 gnttab_shared.v2[ref].sub_page.length = length;
295 gnttab_shared.v2[ref].hdr.domid = domid;
297 gnttab_shared.v2[ref].hdr.flags =
298 GTF_permit_access | GTF_sub_page | flags;
301 int gnttab_grant_foreign_access_subpage_ref(grant_ref_t ref, domid_t domid,
302 unsigned long frame, int flags,
306 if (flags & (GTF_accept_transfer | GTF_reading |
307 GTF_writing | GTF_transitive))
310 if (gnttab_interface->update_subpage_entry == NULL)
313 gnttab_interface->update_subpage_entry(ref, domid, frame, flags,
318 EXPORT_SYMBOL_GPL(gnttab_grant_foreign_access_subpage_ref);
320 int gnttab_grant_foreign_access_subpage(domid_t domid, unsigned long frame,
321 int flags, unsigned page_off,
326 ref = get_free_entries(1);
327 if (unlikely(ref < 0))
330 rc = gnttab_grant_foreign_access_subpage_ref(ref, domid, frame, flags,
339 EXPORT_SYMBOL_GPL(gnttab_grant_foreign_access_subpage);
341 bool gnttab_subpage_grants_available(void)
343 return gnttab_interface->update_subpage_entry != NULL;
345 EXPORT_SYMBOL_GPL(gnttab_subpage_grants_available);
347 void gnttab_update_trans_entry_v2(grant_ref_t ref, domid_t domid,
348 int flags, domid_t trans_domid,
349 grant_ref_t trans_gref)
351 gnttab_shared.v2[ref].transitive.trans_domid = trans_domid;
352 gnttab_shared.v2[ref].transitive.gref = trans_gref;
353 gnttab_shared.v2[ref].hdr.domid = domid;
355 gnttab_shared.v2[ref].hdr.flags =
356 GTF_permit_access | GTF_transitive | flags;
359 int gnttab_grant_foreign_access_trans_ref(grant_ref_t ref, domid_t domid,
360 int flags, domid_t trans_domid,
361 grant_ref_t trans_gref)
363 if (flags & (GTF_accept_transfer | GTF_reading |
364 GTF_writing | GTF_sub_page))
367 if (gnttab_interface->update_trans_entry == NULL)
370 gnttab_interface->update_trans_entry(ref, domid, flags, trans_domid,
375 EXPORT_SYMBOL_GPL(gnttab_grant_foreign_access_trans_ref);
377 int gnttab_grant_foreign_access_trans(domid_t domid, int flags,
379 grant_ref_t trans_gref)
383 ref = get_free_entries(1);
384 if (unlikely(ref < 0))
387 rc = gnttab_grant_foreign_access_trans_ref(ref, domid, flags,
388 trans_domid, trans_gref);
396 EXPORT_SYMBOL_GPL(gnttab_grant_foreign_access_trans);
398 bool gnttab_trans_grants_available(void)
400 return gnttab_interface->update_trans_entry != NULL;
402 EXPORT_SYMBOL_GPL(gnttab_trans_grants_available);
404 static int gnttab_query_foreign_access_v1(grant_ref_t ref)
406 return gnttab_shared.v1[ref].flags & (GTF_reading|GTF_writing);
409 static int gnttab_query_foreign_access_v2(grant_ref_t ref)
411 return grstatus[ref] & (GTF_reading|GTF_writing);
414 int gnttab_query_foreign_access(grant_ref_t ref)
416 return gnttab_interface->query_foreign_access(ref);
418 EXPORT_SYMBOL_GPL(gnttab_query_foreign_access);
420 static int gnttab_end_foreign_access_ref_v1(grant_ref_t ref, int readonly)
425 pflags = &gnttab_shared.v1[ref].flags;
429 if (flags & (GTF_reading|GTF_writing)) {
430 printk(KERN_ALERT "WARNING: g.e. still in use!\n");
433 } while ((nflags = sync_cmpxchg(pflags, flags, 0)) != flags);
438 static int gnttab_end_foreign_access_ref_v2(grant_ref_t ref, int readonly)
440 gnttab_shared.v2[ref].hdr.flags = 0;
442 if (grstatus[ref] & (GTF_reading|GTF_writing)) {
445 /* The read of grstatus needs to have acquire
446 semantics. On x86, reads already have
447 that, and we just need to protect against
448 compiler reorderings. On other
449 architectures we may need a full
461 int gnttab_end_foreign_access_ref(grant_ref_t ref, int readonly)
463 return gnttab_interface->end_foreign_access_ref(ref, readonly);
465 EXPORT_SYMBOL_GPL(gnttab_end_foreign_access_ref);
467 void gnttab_end_foreign_access(grant_ref_t ref, int readonly,
470 if (gnttab_end_foreign_access_ref(ref, readonly)) {
475 /* XXX This needs to be fixed so that the ref and page are
476 placed on a list to be freed up later. */
478 "WARNING: leaking g.e. and page still in use!\n");
481 EXPORT_SYMBOL_GPL(gnttab_end_foreign_access);
483 int gnttab_grant_foreign_transfer(domid_t domid, unsigned long pfn)
487 ref = get_free_entries(1);
488 if (unlikely(ref < 0))
490 gnttab_grant_foreign_transfer_ref(ref, domid, pfn);
494 EXPORT_SYMBOL_GPL(gnttab_grant_foreign_transfer);
496 void gnttab_grant_foreign_transfer_ref(grant_ref_t ref, domid_t domid,
499 gnttab_interface->update_entry(ref, domid, pfn, GTF_accept_transfer);
501 EXPORT_SYMBOL_GPL(gnttab_grant_foreign_transfer_ref);
503 static unsigned long gnttab_end_foreign_transfer_ref_v1(grant_ref_t ref)
509 pflags = &gnttab_shared.v1[ref].flags;
512 * If a transfer is not even yet started, try to reclaim the grant
513 * reference and return failure (== 0).
515 while (!((flags = *pflags) & GTF_transfer_committed)) {
516 if (sync_cmpxchg(pflags, flags, 0) == flags)
521 /* If a transfer is in progress then wait until it is completed. */
522 while (!(flags & GTF_transfer_completed)) {
527 rmb(); /* Read the frame number /after/ reading completion status. */
528 frame = gnttab_shared.v1[ref].frame;
534 static unsigned long gnttab_end_foreign_transfer_ref_v2(grant_ref_t ref)
540 pflags = &gnttab_shared.v2[ref].hdr.flags;
543 * If a transfer is not even yet started, try to reclaim the grant
544 * reference and return failure (== 0).
546 while (!((flags = *pflags) & GTF_transfer_committed)) {
547 if (sync_cmpxchg(pflags, flags, 0) == flags)
552 /* If a transfer is in progress then wait until it is completed. */
553 while (!(flags & GTF_transfer_completed)) {
558 rmb(); /* Read the frame number /after/ reading completion status. */
559 frame = gnttab_shared.v2[ref].full_page.frame;
565 unsigned long gnttab_end_foreign_transfer_ref(grant_ref_t ref)
567 return gnttab_interface->end_foreign_transfer_ref(ref);
569 EXPORT_SYMBOL_GPL(gnttab_end_foreign_transfer_ref);
571 unsigned long gnttab_end_foreign_transfer(grant_ref_t ref)
573 unsigned long frame = gnttab_end_foreign_transfer_ref(ref);
577 EXPORT_SYMBOL_GPL(gnttab_end_foreign_transfer);
579 void gnttab_free_grant_reference(grant_ref_t ref)
583 EXPORT_SYMBOL_GPL(gnttab_free_grant_reference);
585 void gnttab_free_grant_references(grant_ref_t head)
590 if (head == GNTTAB_LIST_END)
592 spin_lock_irqsave(&gnttab_list_lock, flags);
594 while (gnttab_entry(ref) != GNTTAB_LIST_END) {
595 ref = gnttab_entry(ref);
598 gnttab_entry(ref) = gnttab_free_head;
599 gnttab_free_head = head;
600 gnttab_free_count += count;
601 check_free_callbacks();
602 spin_unlock_irqrestore(&gnttab_list_lock, flags);
604 EXPORT_SYMBOL_GPL(gnttab_free_grant_references);
606 int gnttab_alloc_grant_references(u16 count, grant_ref_t *head)
608 int h = get_free_entries(count);
617 EXPORT_SYMBOL_GPL(gnttab_alloc_grant_references);
619 int gnttab_empty_grant_references(const grant_ref_t *private_head)
621 return (*private_head == GNTTAB_LIST_END);
623 EXPORT_SYMBOL_GPL(gnttab_empty_grant_references);
625 int gnttab_claim_grant_reference(grant_ref_t *private_head)
627 grant_ref_t g = *private_head;
628 if (unlikely(g == GNTTAB_LIST_END))
630 *private_head = gnttab_entry(g);
633 EXPORT_SYMBOL_GPL(gnttab_claim_grant_reference);
635 void gnttab_release_grant_reference(grant_ref_t *private_head,
638 gnttab_entry(release) = *private_head;
639 *private_head = release;
641 EXPORT_SYMBOL_GPL(gnttab_release_grant_reference);
643 void gnttab_request_free_callback(struct gnttab_free_callback *callback,
644 void (*fn)(void *), void *arg, u16 count)
647 spin_lock_irqsave(&gnttab_list_lock, flags);
652 callback->count = count;
653 callback->next = gnttab_free_callback_list;
654 gnttab_free_callback_list = callback;
655 check_free_callbacks();
657 spin_unlock_irqrestore(&gnttab_list_lock, flags);
659 EXPORT_SYMBOL_GPL(gnttab_request_free_callback);
661 void gnttab_cancel_free_callback(struct gnttab_free_callback *callback)
663 struct gnttab_free_callback **pcb;
666 spin_lock_irqsave(&gnttab_list_lock, flags);
667 for (pcb = &gnttab_free_callback_list; *pcb; pcb = &(*pcb)->next) {
668 if (*pcb == callback) {
669 *pcb = callback->next;
673 spin_unlock_irqrestore(&gnttab_list_lock, flags);
675 EXPORT_SYMBOL_GPL(gnttab_cancel_free_callback);
677 static int grow_gnttab_list(unsigned int more_frames)
679 unsigned int new_nr_grant_frames, extra_entries, i;
680 unsigned int nr_glist_frames, new_nr_glist_frames;
682 new_nr_grant_frames = nr_grant_frames + more_frames;
683 extra_entries = more_frames * GREFS_PER_GRANT_FRAME;
685 nr_glist_frames = (nr_grant_frames * GREFS_PER_GRANT_FRAME + RPP - 1) / RPP;
686 new_nr_glist_frames =
687 (new_nr_grant_frames * GREFS_PER_GRANT_FRAME + RPP - 1) / RPP;
688 for (i = nr_glist_frames; i < new_nr_glist_frames; i++) {
689 gnttab_list[i] = (grant_ref_t *)__get_free_page(GFP_ATOMIC);
695 for (i = GREFS_PER_GRANT_FRAME * nr_grant_frames;
696 i < GREFS_PER_GRANT_FRAME * new_nr_grant_frames - 1; i++)
697 gnttab_entry(i) = i + 1;
699 gnttab_entry(i) = gnttab_free_head;
700 gnttab_free_head = GREFS_PER_GRANT_FRAME * nr_grant_frames;
701 gnttab_free_count += extra_entries;
703 nr_grant_frames = new_nr_grant_frames;
705 check_free_callbacks();
710 for ( ; i >= nr_glist_frames; i--)
711 free_page((unsigned long) gnttab_list[i]);
715 static unsigned int __max_nr_grant_frames(void)
717 struct gnttab_query_size query;
720 query.dom = DOMID_SELF;
722 rc = HYPERVISOR_grant_table_op(GNTTABOP_query_size, &query, 1);
723 if ((rc < 0) || (query.status != GNTST_okay))
724 return 4; /* Legacy max supported number of frames */
726 return query.max_nr_frames;
729 unsigned int gnttab_max_grant_frames(void)
731 unsigned int xen_max = __max_nr_grant_frames();
733 if (xen_max > boot_max_nr_grant_frames)
734 return boot_max_nr_grant_frames;
737 EXPORT_SYMBOL_GPL(gnttab_max_grant_frames);
739 int gnttab_map_refs(struct gnttab_map_grant_ref *map_ops,
740 struct gnttab_map_grant_ref *kmap_ops,
741 struct page **pages, unsigned int count)
747 ret = HYPERVISOR_grant_table_op(GNTTABOP_map_grant_ref, map_ops, count);
751 if (xen_feature(XENFEAT_auto_translated_physmap))
754 for (i = 0; i < count; i++) {
755 /* Do not add to override if the map failed. */
756 if (map_ops[i].status)
759 if (map_ops[i].flags & GNTMAP_contains_pte) {
760 pte = (pte_t *) (mfn_to_virt(PFN_DOWN(map_ops[i].host_addr)) +
761 (map_ops[i].host_addr & ~PAGE_MASK));
764 mfn = PFN_DOWN(map_ops[i].dev_bus_addr);
766 ret = m2p_add_override(mfn, pages[i], kmap_ops ?
767 &kmap_ops[i] : NULL);
774 EXPORT_SYMBOL_GPL(gnttab_map_refs);
776 int gnttab_unmap_refs(struct gnttab_unmap_grant_ref *unmap_ops,
777 struct page **pages, unsigned int count, bool clear_pte)
781 ret = HYPERVISOR_grant_table_op(GNTTABOP_unmap_grant_ref, unmap_ops, count);
785 if (xen_feature(XENFEAT_auto_translated_physmap))
788 for (i = 0; i < count; i++) {
789 ret = m2p_remove_override(pages[i], clear_pte);
796 EXPORT_SYMBOL_GPL(gnttab_unmap_refs);
798 static unsigned nr_status_frames(unsigned nr_grant_frames)
800 return (nr_grant_frames * GREFS_PER_GRANT_FRAME + SPP - 1) / SPP;
803 static int gnttab_map_frames_v1(unsigned long *frames, unsigned int nr_gframes)
807 rc = arch_gnttab_map_shared(frames, nr_gframes,
808 gnttab_max_grant_frames(),
809 &gnttab_shared.addr);
815 static void gnttab_unmap_frames_v1(void)
817 arch_gnttab_unmap(gnttab_shared.addr, nr_grant_frames);
820 static int gnttab_map_frames_v2(unsigned long *frames, unsigned int nr_gframes)
823 unsigned int nr_sframes;
824 struct gnttab_get_status_frames getframes;
827 nr_sframes = nr_status_frames(nr_gframes);
829 /* No need for kzalloc as it is initialized in following hypercall
830 * GNTTABOP_get_status_frames.
832 sframes = kmalloc(nr_sframes * sizeof(uint64_t), GFP_ATOMIC);
836 getframes.dom = DOMID_SELF;
837 getframes.nr_frames = nr_sframes;
838 set_xen_guest_handle(getframes.frame_list, sframes);
840 rc = HYPERVISOR_grant_table_op(GNTTABOP_get_status_frames,
847 BUG_ON(rc || getframes.status);
849 rc = arch_gnttab_map_status(sframes, nr_sframes,
850 nr_status_frames(gnttab_max_grant_frames()),
855 rc = arch_gnttab_map_shared(frames, nr_gframes,
856 gnttab_max_grant_frames(),
857 &gnttab_shared.addr);
863 static void gnttab_unmap_frames_v2(void)
865 arch_gnttab_unmap(gnttab_shared.addr, nr_grant_frames);
866 arch_gnttab_unmap(grstatus, nr_status_frames(nr_grant_frames));
869 static int gnttab_map(unsigned int start_idx, unsigned int end_idx)
871 struct gnttab_setup_table setup;
872 unsigned long *frames;
873 unsigned int nr_gframes = end_idx + 1;
876 if (xen_hvm_domain()) {
877 struct xen_add_to_physmap xatp;
878 unsigned int i = end_idx;
881 * Loop backwards, so that the first hypercall has the largest
882 * index, ensuring that the table will grow only once.
885 xatp.domid = DOMID_SELF;
887 xatp.space = XENMAPSPACE_grant_table;
888 xatp.gpfn = (xen_hvm_resume_frames >> PAGE_SHIFT) + i;
889 rc = HYPERVISOR_memory_op(XENMEM_add_to_physmap, &xatp);
892 "grant table add_to_physmap failed, err=%d\n", rc);
895 } while (i-- > start_idx);
900 /* No need for kzalloc as it is initialized in following hypercall
901 * GNTTABOP_setup_table.
903 frames = kmalloc(nr_gframes * sizeof(unsigned long), GFP_ATOMIC);
907 setup.dom = DOMID_SELF;
908 setup.nr_frames = nr_gframes;
909 set_xen_guest_handle(setup.frame_list, frames);
911 rc = HYPERVISOR_grant_table_op(GNTTABOP_setup_table, &setup, 1);
917 BUG_ON(rc || setup.status);
919 rc = gnttab_interface->map_frames(frames, nr_gframes);
926 static struct gnttab_ops gnttab_v1_ops = {
927 .map_frames = gnttab_map_frames_v1,
928 .unmap_frames = gnttab_unmap_frames_v1,
929 .update_entry = gnttab_update_entry_v1,
930 .end_foreign_access_ref = gnttab_end_foreign_access_ref_v1,
931 .end_foreign_transfer_ref = gnttab_end_foreign_transfer_ref_v1,
932 .query_foreign_access = gnttab_query_foreign_access_v1,
935 static struct gnttab_ops gnttab_v2_ops = {
936 .map_frames = gnttab_map_frames_v2,
937 .unmap_frames = gnttab_unmap_frames_v2,
938 .update_entry = gnttab_update_entry_v2,
939 .end_foreign_access_ref = gnttab_end_foreign_access_ref_v2,
940 .end_foreign_transfer_ref = gnttab_end_foreign_transfer_ref_v2,
941 .query_foreign_access = gnttab_query_foreign_access_v2,
942 .update_subpage_entry = gnttab_update_subpage_entry_v2,
943 .update_trans_entry = gnttab_update_trans_entry_v2,
946 static void gnttab_request_version(void)
949 struct gnttab_set_version gsv;
951 if (xen_hvm_domain())
955 rc = HYPERVISOR_grant_table_op(GNTTABOP_set_version, &gsv, 1);
956 if (rc == 0 && gsv.version == 2) {
957 grant_table_version = 2;
958 gnttab_interface = &gnttab_v2_ops;
959 } else if (grant_table_version == 2) {
961 * If we've already used version 2 features,
962 * but then suddenly discover that they're not
963 * available (e.g. migrating to an older
964 * version of Xen), almost unbounded badness
967 panic("we need grant tables version 2, but only version 1 is available");
969 grant_table_version = 1;
970 gnttab_interface = &gnttab_v1_ops;
972 printk(KERN_INFO "Grant tables using version %d layout.\n",
973 grant_table_version);
976 int gnttab_resume(void)
978 unsigned int max_nr_gframes;
980 gnttab_request_version();
981 max_nr_gframes = gnttab_max_grant_frames();
982 if (max_nr_gframes < nr_grant_frames)
986 return gnttab_map(0, nr_grant_frames - 1);
988 if (gnttab_shared.addr == NULL) {
989 gnttab_shared.addr = ioremap(xen_hvm_resume_frames,
990 PAGE_SIZE * max_nr_gframes);
991 if (gnttab_shared.addr == NULL) {
993 "Failed to ioremap gnttab share frames!");
998 gnttab_map(0, nr_grant_frames - 1);
1003 int gnttab_suspend(void)
1005 gnttab_interface->unmap_frames();
1009 static int gnttab_expand(unsigned int req_entries)
1012 unsigned int cur, extra;
1014 cur = nr_grant_frames;
1015 extra = ((req_entries + (GREFS_PER_GRANT_FRAME-1)) /
1016 GREFS_PER_GRANT_FRAME);
1017 if (cur + extra > gnttab_max_grant_frames())
1020 rc = gnttab_map(cur, cur + extra - 1);
1022 rc = grow_gnttab_list(extra);
1027 int gnttab_init(void)
1030 unsigned int max_nr_glist_frames, nr_glist_frames;
1031 unsigned int nr_init_grefs;
1033 nr_grant_frames = 1;
1034 boot_max_nr_grant_frames = __max_nr_grant_frames();
1036 /* Determine the maximum number of frames required for the
1037 * grant reference free list on the current hypervisor.
1039 max_nr_glist_frames = (boot_max_nr_grant_frames *
1040 GREFS_PER_GRANT_FRAME / RPP);
1042 gnttab_list = kmalloc(max_nr_glist_frames * sizeof(grant_ref_t *),
1044 if (gnttab_list == NULL)
1047 nr_glist_frames = (nr_grant_frames * GREFS_PER_GRANT_FRAME + RPP - 1) / RPP;
1048 for (i = 0; i < nr_glist_frames; i++) {
1049 gnttab_list[i] = (grant_ref_t *)__get_free_page(GFP_KERNEL);
1050 if (gnttab_list[i] == NULL)
1054 if (gnttab_resume() < 0)
1057 nr_init_grefs = nr_grant_frames * GREFS_PER_GRANT_FRAME;
1059 for (i = NR_RESERVED_ENTRIES; i < nr_init_grefs - 1; i++)
1060 gnttab_entry(i) = i + 1;
1062 gnttab_entry(nr_init_grefs - 1) = GNTTAB_LIST_END;
1063 gnttab_free_count = nr_init_grefs - NR_RESERVED_ENTRIES;
1064 gnttab_free_head = NR_RESERVED_ENTRIES;
1066 printk("Grant table initialized\n");
1070 for (i--; i >= 0; i--)
1071 free_page((unsigned long)gnttab_list[i]);
1075 EXPORT_SYMBOL_GPL(gnttab_init);
1077 static int __devinit __gnttab_init(void)
1079 /* Delay grant-table initialization in the PV on HVM case */
1080 if (xen_hvm_domain())
1083 if (!xen_pv_domain())
1086 return gnttab_init();
1089 core_initcall(__gnttab_init);
projects / linux-flexiantxendom0-3.2.10.git / blob