]> git.proxmox.com Git - mirror_ubuntu-jammy-kernel.git/blame - drivers/iommu/intel-iommu.c
projects / mirror_ubuntu-jammy-kernel.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
treewide: kmalloc() -> kmalloc_array()
[mirror_ubuntu-jammy-kernel.git] / drivers / iommu / intel-iommu.c
CommitLineData
ba395927 1/*
ea8ea460 2 * Copyright © 2006-2014 Intel Corporation.
ba395927
KA		 3 *
4 * This program is free software; you can redistribute it and/or modify it
5 * under the terms and conditions of the GNU General Public License,
6 * version 2, as published by the Free Software Foundation.
7 *
8 * This program is distributed in the hope it will be useful, but WITHOUT
9 * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
10 * FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for
11 * more details.
12 *
ea8ea460
DW		 13 * Authors: David Woodhouse <dwmw2@infradead.org>,
14 * Ashok Raj <ashok.raj@intel.com>,
15 * Shaohua Li <shaohua.li@intel.com>,
16 * Anil S Keshavamurthy <anil.s.keshavamurthy@intel.com>,
17 * Fenghua Yu <fenghua.yu@intel.com>
9f10e5bf 18 * Joerg Roedel <jroedel@suse.de>
ba395927
KA		 19 */
20
9f10e5bf
JR		 21#define pr_fmt(fmt) "DMAR: " fmt
22
ba395927
KA		 23#include <linux/init.h>
24#include <linux/bitmap.h>
5e0d2a6f 25#include <linux/debugfs.h>
54485c30 26#include <linux/export.h>
ba395927
KA		 27#include <linux/slab.h>
28#include <linux/irq.h>
29#include <linux/interrupt.h>
ba395927
KA		 30#include <linux/spinlock.h>
31#include <linux/pci.h>
32#include <linux/dmar.h>
33#include <linux/dma-mapping.h>
d657c5c7 34#include <linux/dma-direct.h>
ba395927 35#include <linux/mempool.h>
75f05569 36#include <linux/memory.h>
aa473240 37#include <linux/cpu.h>
5e0d2a6f 38#include <linux/timer.h>
dfddb969 39#include <linux/io.h>
38717946 40#include <linux/iova.h>
5d450806 41#include <linux/iommu.h>
38717946 42#include <linux/intel-iommu.h>
134fac3f 43#include <linux/syscore_ops.h>
69575d38 44#include <linux/tboot.h>
adb2fe02 45#include <linux/dmi.h>
5cdede24 46#include <linux/pci-ats.h>
0ee332c1 47#include <linux/memblock.h>
36746436 48#include <linux/dma-contiguous.h>
fec777c3 49#include <linux/dma-direct.h>
091d42e4 50#include <linux/crash_dump.h>
8a8f422d 51#include <asm/irq_remapping.h>
ba395927 52#include <asm/cacheflush.h>
46a7fa27 53#include <asm/iommu.h>
ba395927 54
078e1ee2
JR		 55#include "irq_remapping.h"
56
5b6985ce
FY		 57#define ROOT_SIZE VTD_PAGE_SIZE
58#define CONTEXT_SIZE VTD_PAGE_SIZE
59
ba395927 60#define IS_GFX_DEVICE(pdev) ((pdev->class >> 16) == PCI_BASE_CLASS_DISPLAY)
18436afd 61#define IS_USB_DEVICE(pdev) ((pdev->class >> 8) == PCI_CLASS_SERIAL_USB)
ba395927 62#define IS_ISA_DEVICE(pdev) ((pdev->class >> 8) == PCI_CLASS_BRIDGE_ISA)
e0fc7e0b 63#define IS_AZALIA(pdev) ((pdev)->vendor == 0x8086 && (pdev)->device == 0x3a3e)
ba395927
KA		 64
65#define IOAPIC_RANGE_START (0xfee00000)
66#define IOAPIC_RANGE_END (0xfeefffff)
67#define IOVA_START_ADDR (0x1000)
68
5e3b4a15 69#define DEFAULT_DOMAIN_ADDRESS_WIDTH 57
ba395927 70
4ed0d3e6 71#define MAX_AGAW_WIDTH 64
5c645b35 72#define MAX_AGAW_PFN_WIDTH (MAX_AGAW_WIDTH - VTD_PAGE_SHIFT)
4ed0d3e6 73
2ebe3151
DW		 74#define __DOMAIN_MAX_PFN(gaw) ((((uint64_t)1) << (gaw-VTD_PAGE_SHIFT)) - 1)
75#define __DOMAIN_MAX_ADDR(gaw) ((((uint64_t)1) << gaw) - 1)
76
77/* We limit DOMAIN_MAX_PFN to fit in an unsigned long, and DOMAIN_MAX_ADDR
78 to match. That way, we can use 'unsigned long' for PFNs with impunity. */
79#define DOMAIN_MAX_PFN(gaw) ((unsigned long) min_t(uint64_t, \
80 __DOMAIN_MAX_PFN(gaw), (unsigned long)-1))
81#define DOMAIN_MAX_ADDR(gaw) (((uint64_t)__DOMAIN_MAX_PFN(gaw)) << VTD_PAGE_SHIFT)
ba395927 82
1b722500
RM		 83/* IO virtual address start page frame number */
84#define IOVA_START_PFN (1)
85
f27be03b 86#define IOVA_PFN(addr) ((addr) >> PAGE_SHIFT)
5e0d2a6f 87
df08cdc7
AM		 88/* page table handling */
89#define LEVEL_STRIDE (9)
90#define LEVEL_MASK (((u64)1 << LEVEL_STRIDE) - 1)
91
6d1c56a9
OBC		 92/*
93 * This bitmap is used to advertise the page sizes our hardware support
94 * to the IOMMU core, which will then use this information to split
95 * physically contiguous memory regions it is mapping into page sizes
96 * that we support.
97 *
98 * Traditionally the IOMMU core just handed us the mappings directly,
99 * after making sure the size is an order of a 4KiB page and that the
100 * mapping has natural alignment.
101 *
102 * To retain this behavior, we currently advertise that we support
103 * all page sizes that are an order of 4KiB.
104 *
105 * If at some point we'd like to utilize the IOMMU core's new behavior,
106 * we could change this to advertise the real page sizes we support.
107 */
108#define INTEL_IOMMU_PGSIZES (~0xFFFUL)
109
df08cdc7
AM		 110static inline int agaw_to_level(int agaw)
111{
112 return agaw + 2;
113}
114
115static inline int agaw_to_width(int agaw)
116{
5c645b35 117 return min_t(int, 30 + agaw * LEVEL_STRIDE, MAX_AGAW_WIDTH);
df08cdc7
AM		 118}
119
120static inline int width_to_agaw(int width)
121{
5c645b35 122 return DIV_ROUND_UP(width - 30, LEVEL_STRIDE);
df08cdc7
AM		 123}
124
125static inline unsigned int level_to_offset_bits(int level)
126{
127 return (level - 1) * LEVEL_STRIDE;
128}
129
130static inline int pfn_level_offset(unsigned long pfn, int level)
131{
132 return (pfn >> level_to_offset_bits(level)) & LEVEL_MASK;
133}
134
135static inline unsigned long level_mask(int level)
136{
137 return -1UL << level_to_offset_bits(level);
138}
139
140static inline unsigned long level_size(int level)
141{
142 return 1UL << level_to_offset_bits(level);
143}
144
145static inline unsigned long align_to_level(unsigned long pfn, int level)
146{
147 return (pfn + level_size(level) - 1) & level_mask(level);
148}
fd18de50 149
6dd9a7c7
YS		 150static inline unsigned long lvl_to_nr_pages(unsigned int lvl)
151{
5c645b35 152 return 1 << min_t(int, (lvl - 1) * LEVEL_STRIDE, MAX_AGAW_PFN_WIDTH);
6dd9a7c7
YS		 153}
154
dd4e8319
DW		 155/* VT-d pages must always be _smaller_ than MM pages. Otherwise things
156 are never going to work. */
157static inline unsigned long dma_to_mm_pfn(unsigned long dma_pfn)
158{
159 return dma_pfn >> (PAGE_SHIFT - VTD_PAGE_SHIFT);
160}
161
162static inline unsigned long mm_to_dma_pfn(unsigned long mm_pfn)
163{
164 return mm_pfn << (PAGE_SHIFT - VTD_PAGE_SHIFT);
165}
166static inline unsigned long page_to_dma_pfn(struct page *pg)
167{
168 return mm_to_dma_pfn(page_to_pfn(pg));
169}
170static inline unsigned long virt_to_dma_pfn(void *p)
171{
172 return page_to_dma_pfn(virt_to_page(p));
173}
174
d9630fe9
WH		 175/* global iommu list, set NULL for ignored DMAR units */
176static struct intel_iommu **g_iommus;
177
e0fc7e0b 178static void __init check_tylersburg_isoch(void);
9af88143
DW		 179static int rwbf_quirk;
180
b779260b
JC		 181/*
182 * set to 1 to panic kernel if can't successfully enable VT-d
183 * (used when kernel is launched w/ TXT)
184 */
185static int force_on = 0;
bfd20f1c 186int intel_iommu_tboot_noforce;
b779260b 187
46b08e1a
MM		 188/*
189 * 0: Present
190 * 1-11: Reserved
191 * 12-63: Context Ptr (12 - (haw-1))
192 * 64-127: Reserved
193 */
194struct root_entry {
03ecc32c
DW		 195 u64 lo;
196 u64 hi;
46b08e1a
MM		 197};
198#define ROOT_ENTRY_NR (VTD_PAGE_SIZE/sizeof(struct root_entry))
46b08e1a 199
091d42e4
JR		 200/*
201 * Take a root_entry and return the Lower Context Table Pointer (LCTP)
202 * if marked present.
203 */
204static phys_addr_t root_entry_lctp(struct root_entry *re)
205{
206 if (!(re->lo & 1))
207 return 0;
208
209 return re->lo & VTD_PAGE_MASK;
210}
211
212/*
213 * Take a root_entry and return the Upper Context Table Pointer (UCTP)
214 * if marked present.
215 */
216static phys_addr_t root_entry_uctp(struct root_entry *re)
217{
218 if (!(re->hi & 1))
219 return 0;
46b08e1a 220
091d42e4
JR		 221 return re->hi & VTD_PAGE_MASK;
222}
7a8fc25e
MM		 223/*
224 * low 64 bits:
225 * 0: present
226 * 1: fault processing disable
227 * 2-3: translation type
228 * 12-63: address space root
229 * high 64 bits:
230 * 0-2: address width
231 * 3-6: aval
232 * 8-23: domain id
233 */
234struct context_entry {
235 u64 lo;
236 u64 hi;
237};
c07e7d21 238
cf484d0e
JR		 239static inline void context_clear_pasid_enable(struct context_entry *context)
240{
241 context->lo &= ~(1ULL << 11);
242}
243
244static inline bool context_pasid_enabled(struct context_entry *context)
245{
246 return !!(context->lo & (1ULL << 11));
247}
248
249static inline void context_set_copied(struct context_entry *context)
250{
251 context->hi |= (1ull << 3);
252}
253
254static inline bool context_copied(struct context_entry *context)
255{
256 return !!(context->hi & (1ULL << 3));
257}
258
259static inline bool __context_present(struct context_entry *context)
c07e7d21
MM		 260{
261 return (context->lo & 1);
262}
cf484d0e
JR		 263
264static inline bool context_present(struct context_entry *context)
265{
266 return context_pasid_enabled(context) ?
267 __context_present(context) :
268 __context_present(context) && !context_copied(context);
269}
270
c07e7d21
MM		 271static inline void context_set_present(struct context_entry *context)
272{
273 context->lo |= 1;
274}
275
276static inline void context_set_fault_enable(struct context_entry *context)
277{
278 context->lo &= (((u64)-1) << 2) | 1;
279}
280
c07e7d21
MM		 281static inline void context_set_translation_type(struct context_entry *context,
282 unsigned long value)
283{
284 context->lo &= (((u64)-1) << 4) | 3;
285 context->lo |= (value & 3) << 2;
286}
287
288static inline void context_set_address_root(struct context_entry *context,
289 unsigned long value)
290{
1a2262f9 291 context->lo &= ~VTD_PAGE_MASK;
c07e7d21
MM		 292 context->lo |= value & VTD_PAGE_MASK;
293}
294
295static inline void context_set_address_width(struct context_entry *context,
296 unsigned long value)
297{
298 context->hi |= value & 7;
299}
300
301static inline void context_set_domain_id(struct context_entry *context,
302 unsigned long value)
303{
304 context->hi |= (value & ((1 << 16) - 1)) << 8;
305}
306
dbcd861f
JR		 307static inline int context_domain_id(struct context_entry *c)
308{
309 return((c->hi >> 8) & 0xffff);
310}
311
c07e7d21
MM		 312static inline void context_clear_entry(struct context_entry *context)
313{
314 context->lo = 0;
315 context->hi = 0;
316}
7a8fc25e 317
622ba12a
MM		 318/*
319 * 0: readable
320 * 1: writable
321 * 2-6: reserved
322 * 7: super page
9cf06697
SY		 323 * 8-10: available
324 * 11: snoop behavior
622ba12a
MM		 325 * 12-63: Host physcial address
326 */
327struct dma_pte {
328 u64 val;
329};
622ba12a 330
19c239ce
MM		 331static inline void dma_clear_pte(struct dma_pte *pte)
332{
333 pte->val = 0;
334}
335
19c239ce
MM		 336static inline u64 dma_pte_addr(struct dma_pte *pte)
337{
c85994e4
DW		 338#ifdef CONFIG_64BIT
339 return pte->val & VTD_PAGE_MASK;
340#else
341 /* Must have a full atomic 64-bit read */
1a8bd481 342 return __cmpxchg64(&pte->val, 0ULL, 0ULL) & VTD_PAGE_MASK;
c85994e4 343#endif
19c239ce
MM		 344}
345
19c239ce
MM		 346static inline bool dma_pte_present(struct dma_pte *pte)
347{
348 return (pte->val & 3) != 0;
349}
622ba12a 350
4399c8bf
AK		 351static inline bool dma_pte_superpage(struct dma_pte *pte)
352{
c3c75eb7 353 return (pte->val & DMA_PTE_LARGE_PAGE);
4399c8bf
AK		 354}
355
75e6bf96
DW		 356static inline int first_pte_in_page(struct dma_pte *pte)
357{
358 return !((unsigned long)pte & ~VTD_PAGE_MASK);
359}
360
2c2e2c38
FY		 361/*
362 * This domain is a statically identity mapping domain.
363 * 1. This domain creats a static 1:1 mapping to all usable memory.
364 * 2. It maps to each iommu if successful.
365 * 3. Each iommu mapps to this domain if successful.
366 */
19943b0e
DW		 367static struct dmar_domain *si_domain;
368static int hw_pass_through = 1;
2c2e2c38 369
28ccce0d
JR		 370/*
371 * Domain represents a virtual machine, more than one devices
1ce28feb
WH		 372 * across iommus may be owned in one domain, e.g. kvm guest.
373 */
ab8dfe25 374#define DOMAIN_FLAG_VIRTUAL_MACHINE (1 << 0)
1ce28feb 375
2c2e2c38 376/* si_domain contains mulitple devices */
ab8dfe25 377#define DOMAIN_FLAG_STATIC_IDENTITY (1 << 1)
2c2e2c38 378
29a27719
JR		 379#define for_each_domain_iommu(idx, domain) \
380 for (idx = 0; idx < g_num_of_iommus; idx++) \
381 if (domain->iommu_refcnt[idx])
382
99126f7c 383struct dmar_domain {
4c923d47 384 int nid; /* node id */
29a27719
JR		 385
386 unsigned iommu_refcnt[DMAR_UNITS_SUPPORTED];
387 /* Refcount of devices per iommu */
388
99126f7c 389
c0e8a6c8
JR		 390 u16 iommu_did[DMAR_UNITS_SUPPORTED];
391 /* Domain ids per IOMMU. Use u16 since
392 * domain ids are 16 bit wide according
393 * to VT-d spec, section 9.3 */
99126f7c 394
0824c592 395 bool has_iotlb_device;
00a77deb 396 struct list_head devices; /* all devices' list */
99126f7c
MM		 397 struct iova_domain iovad; /* iova's that belong to this domain */
398
399 struct dma_pte *pgd; /* virtual address */
99126f7c
MM		 400 int gaw; /* max guest address width */
401
402 /* adjusted guest address width, 0 is level 2 30-bit */
403 int agaw;
404
3b5410e7 405 int flags; /* flags to find out type of domain */
8e604097
WH		 406
407 int iommu_coherency;/* indicate coherency of iommu access */
58c610bd 408 int iommu_snooping; /* indicate snooping control feature*/
c7151a8d 409 int iommu_count; /* reference count of iommu */
6dd9a7c7
YS		 410 int iommu_superpage;/* Level of superpages supported:
411 0 == 4KiB (no superpages), 1 == 2MiB,
412 2 == 1GiB, 3 == 512GiB, 4 == 1TiB */
fe40f1e0 413 u64 max_addr; /* maximum mapped address */
00a77deb
JR		 414
415 struct iommu_domain domain; /* generic domain data structure for
416 iommu core */
99126f7c
MM		 417};
418
a647dacb
MM		 419/* PCI domain-device relationship */
420struct device_domain_info {
421 struct list_head link; /* link to domain siblings */
422 struct list_head global; /* link to global list */
276dbf99 423 u8 bus; /* PCI bus number */
a647dacb 424 u8 devfn; /* PCI devfn number */
b16d0cb9
DW		 425 u8 pasid_supported:3;
426 u8 pasid_enabled:1;
427 u8 pri_supported:1;
428 u8 pri_enabled:1;
429 u8 ats_supported:1;
430 u8 ats_enabled:1;
431 u8 ats_qdep;
0bcb3e28 432 struct device *dev; /* it's NULL for PCIe-to-PCI bridge */
93a23a72 433 struct intel_iommu *iommu; /* IOMMU used by this device */
a647dacb
MM		 434 struct dmar_domain *domain; /* pointer to domain */
435};
436
b94e4117
JL		 437struct dmar_rmrr_unit {
438 struct list_head list; /* list of rmrr units */
439 struct acpi_dmar_header *hdr; /* ACPI header */
440 u64 base_address; /* reserved base address*/
441 u64 end_address; /* reserved end address */
832bd858 442 struct dmar_dev_scope *devices; /* target devices */
b94e4117 443 int devices_cnt; /* target device count */
0659b8dc 444 struct iommu_resv_region *resv; /* reserved region handle */
b94e4117
JL		 445};
446
447struct dmar_atsr_unit {
448 struct list_head list; /* list of ATSR units */
449 struct acpi_dmar_header *hdr; /* ACPI header */
832bd858 450 struct dmar_dev_scope *devices; /* target devices */
b94e4117
JL		 451 int devices_cnt; /* target device count */
452 u8 include_all:1; /* include all ports */
453};
454
455static LIST_HEAD(dmar_atsr_units);
456static LIST_HEAD(dmar_rmrr_units);
457
458#define for_each_rmrr_units(rmrr) \
459 list_for_each_entry(rmrr, &dmar_rmrr_units, list)
460
5e0d2a6f 461/* bitmap for indexing intel_iommus */
5e0d2a6f 462static int g_num_of_iommus;
463
92d03cc8 464static void domain_exit(struct dmar_domain *domain);
ba395927 465static void domain_remove_dev_info(struct dmar_domain *domain);
e6de0f8d
JR		 466static void dmar_remove_one_dev_info(struct dmar_domain *domain,
467 struct device *dev);
127c7615 468static void __dmar_remove_one_dev_info(struct device_domain_info *info);
2452d9db
JR		 469static void domain_context_clear(struct intel_iommu *iommu,
470 struct device *dev);
2a46ddf7
JL		 471static int domain_detach_iommu(struct dmar_domain *domain,
472 struct intel_iommu *iommu);
ba395927 473
d3f13810 474#ifdef CONFIG_INTEL_IOMMU_DEFAULT_ON
0cd5c3c8
KM		 475int dmar_disabled = 0;
476#else
477int dmar_disabled = 1;
d3f13810 478#endif /*CONFIG_INTEL_IOMMU_DEFAULT_ON*/
0cd5c3c8 479
8bc1f85c
ED		 480int intel_iommu_enabled = 0;
481EXPORT_SYMBOL_GPL(intel_iommu_enabled);
482
2d9e667e 483static int dmar_map_gfx = 1;
7d3b03ce 484static int dmar_forcedac;
5e0d2a6f 485static int intel_iommu_strict;
6dd9a7c7 486static int intel_iommu_superpage = 1;
c83b2f20 487static int intel_iommu_ecs = 1;
ae853ddb 488static int iommu_identity_mapping;
c83b2f20 489
ae853ddb
DW		 490#define IDENTMAP_ALL 1
491#define IDENTMAP_GFX 2
492#define IDENTMAP_AZALIA 4
c83b2f20 493
ab96746a
LB		 494#define ecs_enabled(iommu) (intel_iommu_ecs && ecap_ecs(iommu->ecap))
495#define pasid_enabled(iommu) (ecs_enabled(iommu) && ecap_pasid(iommu->ecap))
ba395927 496
c0771df8
DW		 497int intel_iommu_gfx_mapped;
498EXPORT_SYMBOL_GPL(intel_iommu_gfx_mapped);
499
ba395927
KA		 500#define DUMMY_DEVICE_DOMAIN_INFO ((struct device_domain_info *)(-1))
501static DEFINE_SPINLOCK(device_domain_lock);
502static LIST_HEAD(device_domain_list);
503
b0119e87 504const struct iommu_ops intel_iommu_ops;
a8bcbb0d 505
4158c2ec
JR		 506static bool translation_pre_enabled(struct intel_iommu *iommu)
507{
508 return (iommu->flags & VTD_FLAG_TRANS_PRE_ENABLED);
509}
510
091d42e4
JR		 511static void clear_translation_pre_enabled(struct intel_iommu *iommu)
512{
513 iommu->flags &= ~VTD_FLAG_TRANS_PRE_ENABLED;
514}
515
4158c2ec
JR		 516static void init_translation_status(struct intel_iommu *iommu)
517{
518 u32 gsts;
519
520 gsts = readl(iommu->reg + DMAR_GSTS_REG);
521 if (gsts & DMA_GSTS_TES)
522 iommu->flags |= VTD_FLAG_TRANS_PRE_ENABLED;
523}
524
00a77deb
JR		 525/* Convert generic 'struct iommu_domain to private struct dmar_domain */
526static struct dmar_domain *to_dmar_domain(struct iommu_domain *dom)
527{
528 return container_of(dom, struct dmar_domain, domain);
529}
530
ba395927
KA		 531static int __init intel_iommu_setup(char *str)
532{
533 if (!str)
534 return -EINVAL;
535 while (*str) {
0cd5c3c8
KM		 536 if (!strncmp(str, "on", 2)) {
537 dmar_disabled = 0;
9f10e5bf 538 pr_info("IOMMU enabled\n");
0cd5c3c8 539 } else if (!strncmp(str, "off", 3)) {
ba395927 540 dmar_disabled = 1;
9f10e5bf 541 pr_info("IOMMU disabled\n");
ba395927
KA		 542 } else if (!strncmp(str, "igfx_off", 8)) {
543 dmar_map_gfx = 0;
9f10e5bf 544 pr_info("Disable GFX device mapping\n");
7d3b03ce 545 } else if (!strncmp(str, "forcedac", 8)) {
9f10e5bf 546 pr_info("Forcing DAC for PCI devices\n");
7d3b03ce 547 dmar_forcedac = 1;
5e0d2a6f 548 } else if (!strncmp(str, "strict", 6)) {
9f10e5bf 549 pr_info("Disable batched IOTLB flush\n");
5e0d2a6f 550 intel_iommu_strict = 1;
6dd9a7c7 551 } else if (!strncmp(str, "sp_off", 6)) {
9f10e5bf 552 pr_info("Disable supported super page\n");
6dd9a7c7 553 intel_iommu_superpage = 0;
c83b2f20
DW		 554 } else if (!strncmp(str, "ecs_off", 7)) {
555 printk(KERN_INFO
556 "Intel-IOMMU: disable extended context table support\n");
557 intel_iommu_ecs = 0;
bfd20f1c
SL		 558 } else if (!strncmp(str, "tboot_noforce", 13)) {
559 printk(KERN_INFO
560 "Intel-IOMMU: not forcing on after tboot. This could expose security risk for tboot\n");
561 intel_iommu_tboot_noforce = 1;
ba395927
KA		 562 }
563
564 str += strcspn(str, ",");
565 while (*str == ',')
566 str++;
567 }
568 return 0;
569}
570__setup("intel_iommu=", intel_iommu_setup);
571
572static struct kmem_cache *iommu_domain_cache;
573static struct kmem_cache *iommu_devinfo_cache;
ba395927 574
9452d5bf
JR		 575static struct dmar_domain* get_iommu_domain(struct intel_iommu *iommu, u16 did)
576{
8bf47816
JR		 577 struct dmar_domain **domains;
578 int idx = did >> 8;
579
580 domains = iommu->domains[idx];
581 if (!domains)
582 return NULL;
583
584 return domains[did & 0xff];
9452d5bf
JR		 585}
586
587static void set_iommu_domain(struct intel_iommu *iommu, u16 did,
588 struct dmar_domain *domain)
589{
8bf47816
JR		 590 struct dmar_domain **domains;
591 int idx = did >> 8;
592
593 if (!iommu->domains[idx]) {
594 size_t size = 256 * sizeof(struct dmar_domain *);
595 iommu->domains[idx] = kzalloc(size, GFP_ATOMIC);
596 }
597
598 domains = iommu->domains[idx];
599 if (WARN_ON(!domains))
600 return;
601 else
602 domains[did & 0xff] = domain;
9452d5bf
JR		 603}
604
4c923d47 605static inline void *alloc_pgtable_page(int node)
eb3fa7cb 606{
4c923d47
SS		 607 struct page *page;
608 void *vaddr = NULL;
eb3fa7cb 609
4c923d47
SS		 610 page = alloc_pages_node(node, GFP_ATOMIC | __GFP_ZERO, 0);
611 if (page)
612 vaddr = page_address(page);
eb3fa7cb 613 return vaddr;
ba395927
KA		 614}
615
616static inline void free_pgtable_page(void *vaddr)
617{
618 free_page((unsigned long)vaddr);
619}
620
621static inline void *alloc_domain_mem(void)
622{
354bb65e 623 return kmem_cache_alloc(iommu_domain_cache, GFP_ATOMIC);
ba395927
KA		 624}
625
38717946 626static void free_domain_mem(void *vaddr)
ba395927
KA		 627{
628 kmem_cache_free(iommu_domain_cache, vaddr);
629}
630
631static inline void * alloc_devinfo_mem(void)
632{
354bb65e 633 return kmem_cache_alloc(iommu_devinfo_cache, GFP_ATOMIC);
ba395927
KA		 634}
635
636static inline void free_devinfo_mem(void *vaddr)
637{
638 kmem_cache_free(iommu_devinfo_cache, vaddr);
639}
640
ab8dfe25
JL		 641static inline int domain_type_is_vm(struct dmar_domain *domain)
642{
643 return domain->flags & DOMAIN_FLAG_VIRTUAL_MACHINE;
644}
645
28ccce0d
JR		 646static inline int domain_type_is_si(struct dmar_domain *domain)
647{
648 return domain->flags & DOMAIN_FLAG_STATIC_IDENTITY;
649}
650
ab8dfe25
JL		 651static inline int domain_type_is_vm_or_si(struct dmar_domain *domain)
652{
653 return domain->flags & (DOMAIN_FLAG_VIRTUAL_MACHINE |
654 DOMAIN_FLAG_STATIC_IDENTITY);
655}
1b573683 656
162d1b10
JL		 657static inline int domain_pfn_supported(struct dmar_domain *domain,
658 unsigned long pfn)
659{
660 int addr_width = agaw_to_width(domain->agaw) - VTD_PAGE_SHIFT;
661
662 return !(addr_width < BITS_PER_LONG && pfn >> addr_width);
663}
664
4ed0d3e6 665static int __iommu_calculate_agaw(struct intel_iommu *iommu, int max_gaw)
1b573683
WH		 666{
667 unsigned long sagaw;
668 int agaw = -1;
669
670 sagaw = cap_sagaw(iommu->cap);
4ed0d3e6 671 for (agaw = width_to_agaw(max_gaw);
1b573683
WH		 672 agaw >= 0; agaw--) {
673 if (test_bit(agaw, &sagaw))
674 break;
675 }
676
677 return agaw;
678}
679
4ed0d3e6
FY		 680/*
681 * Calculate max SAGAW for each iommu.
682 */
683int iommu_calculate_max_sagaw(struct intel_iommu *iommu)
684{
685 return __iommu_calculate_agaw(iommu, MAX_AGAW_WIDTH);
686}
687
688/*
689 * calculate agaw for each iommu.
690 * "SAGAW" may be different across iommus, use a default agaw, and
691 * get a supported less agaw for iommus that don't support the default agaw.
692 */
693int iommu_calculate_agaw(struct intel_iommu *iommu)
694{
695 return __iommu_calculate_agaw(iommu, DEFAULT_DOMAIN_ADDRESS_WIDTH);
696}
697
2c2e2c38 698/* This functionin only returns single iommu in a domain */
8c11e798
WH		 699static struct intel_iommu *domain_get_iommu(struct dmar_domain *domain)
700{
701 int iommu_id;
702
2c2e2c38 703 /* si_domain and vm domain should not get here. */
ab8dfe25 704 BUG_ON(domain_type_is_vm_or_si(domain));
29a27719
JR		 705 for_each_domain_iommu(iommu_id, domain)
706 break;
707
8c11e798
WH		 708 if (iommu_id < 0 || iommu_id >= g_num_of_iommus)
709 return NULL;
710
711 return g_iommus[iommu_id];
712}
713
8e604097
WH		 714static void domain_update_iommu_coherency(struct dmar_domain *domain)
715{
d0501960
DW		 716 struct dmar_drhd_unit *drhd;
717 struct intel_iommu *iommu;
2f119c78
QL		 718 bool found = false;
719 int i;
2e12bc29 720
d0501960 721 domain->iommu_coherency = 1;
8e604097 722
29a27719 723 for_each_domain_iommu(i, domain) {
2f119c78 724 found = true;
8e604097
WH		 725 if (!ecap_coherent(g_iommus[i]->ecap)) {
726 domain->iommu_coherency = 0;
727 break;
728 }
8e604097 729 }
d0501960
DW		 730 if (found)
731 return;
732
733 /* No hardware attached; use lowest common denominator */
734 rcu_read_lock();
735 for_each_active_iommu(iommu, drhd) {
736 if (!ecap_coherent(iommu->ecap)) {
737 domain->iommu_coherency = 0;
738 break;
739 }
740 }
741 rcu_read_unlock();
8e604097
WH		 742}
743
161f6934 744static int domain_update_iommu_snooping(struct intel_iommu *skip)
58c610bd 745{
161f6934
JL		 746 struct dmar_drhd_unit *drhd;
747 struct intel_iommu *iommu;
748 int ret = 1;
58c610bd 749
161f6934
JL		 750 rcu_read_lock();
751 for_each_active_iommu(iommu, drhd) {
752 if (iommu != skip) {
753 if (!ecap_sc_support(iommu->ecap)) {
754 ret = 0;
755 break;
756 }
58c610bd 757 }
58c610bd 758 }
161f6934
JL		 759 rcu_read_unlock();
760
761 return ret;
58c610bd
SY		 762}
763
161f6934 764static int domain_update_iommu_superpage(struct intel_iommu *skip)
6dd9a7c7 765{
8140a95d 766 struct dmar_drhd_unit *drhd;
161f6934 767 struct intel_iommu *iommu;
8140a95d 768 int mask = 0xf;
6dd9a7c7
YS		 769
770 if (!intel_iommu_superpage) {
161f6934 771 return 0;
6dd9a7c7
YS		 772 }
773
8140a95d 774 /* set iommu_superpage to the smallest common denominator */
0e242612 775 rcu_read_lock();
8140a95d 776 for_each_active_iommu(iommu, drhd) {
161f6934
JL		 777 if (iommu != skip) {
778 mask &= cap_super_page_val(iommu->cap);
779 if (!mask)
780 break;
6dd9a7c7
YS		 781 }
782 }
0e242612
JL		 783 rcu_read_unlock();
784
161f6934 785 return fls(mask);
6dd9a7c7
YS		 786}
787
58c610bd
SY		 788/* Some capabilities may be different across iommus */
789static void domain_update_iommu_cap(struct dmar_domain *domain)
790{
791 domain_update_iommu_coherency(domain);
161f6934
JL		 792 domain->iommu_snooping = domain_update_iommu_snooping(NULL);
793 domain->iommu_superpage = domain_update_iommu_superpage(NULL);
58c610bd
SY		 794}
795
03ecc32c
DW		 796static inline struct context_entry *iommu_context_addr(struct intel_iommu *iommu,
797 u8 bus, u8 devfn, int alloc)
798{
799 struct root_entry *root = &iommu->root_entry[bus];
800 struct context_entry *context;
801 u64 *entry;
802
4df4eab1 803 entry = &root->lo;
c83b2f20 804 if (ecs_enabled(iommu)) {
03ecc32c
DW		 805 if (devfn >= 0x80) {
806 devfn -= 0x80;
807 entry = &root->hi;
808 }
809 devfn *= 2;
810 }
03ecc32c
DW		 811 if (*entry & 1)
812 context = phys_to_virt(*entry & VTD_PAGE_MASK);
813 else {
814 unsigned long phy_addr;
815 if (!alloc)
816 return NULL;
817
818 context = alloc_pgtable_page(iommu->node);
819 if (!context)
820 return NULL;
821
822 __iommu_flush_cache(iommu, (void *)context, CONTEXT_SIZE);
823 phy_addr = virt_to_phys((void *)context);
824 *entry = phy_addr | 1;
825 __iommu_flush_cache(iommu, entry, sizeof(*entry));
826 }
827 return &context[devfn];
828}
829
4ed6a540
DW		 830static int iommu_dummy(struct device *dev)
831{
832 return dev->archdata.iommu == DUMMY_DEVICE_DOMAIN_INFO;
833}
834
156baca8 835static struct intel_iommu *device_to_iommu(struct device *dev, u8 *bus, u8 *devfn)
c7151a8d
WH		 836{
837 struct dmar_drhd_unit *drhd = NULL;
b683b230 838 struct intel_iommu *iommu;
156baca8
DW		 839 struct device *tmp;
840 struct pci_dev *ptmp, *pdev = NULL;
aa4d066a 841 u16 segment = 0;
c7151a8d
WH		 842 int i;
843
4ed6a540
DW		 844 if (iommu_dummy(dev))
845 return NULL;
846
156baca8 847 if (dev_is_pci(dev)) {
1c387188
AR		 848 struct pci_dev *pf_pdev;
849
156baca8 850 pdev = to_pci_dev(dev);
5823e330
JD		 851
852#ifdef CONFIG_X86
853 /* VMD child devices currently cannot be handled individually */
854 if (is_vmd(pdev->bus))
855 return NULL;
856#endif
857
1c387188
AR		 858 /* VFs aren't listed in scope tables; we need to look up
859 * the PF instead to find the IOMMU. */
860 pf_pdev = pci_physfn(pdev);
861 dev = &pf_pdev->dev;
156baca8 862 segment = pci_domain_nr(pdev->bus);
ca5b74d2 863 } else if (has_acpi_companion(dev))
156baca8
DW		 864 dev = &ACPI_COMPANION(dev)->dev;
865
0e242612 866 rcu_read_lock();
b683b230 867 for_each_active_iommu(iommu, drhd) {
156baca8 868 if (pdev && segment != drhd->segment)
276dbf99 869 continue;
c7151a8d 870
b683b230 871 for_each_active_dev_scope(drhd->devices,
156baca8
DW		 872 drhd->devices_cnt, i, tmp) {
873 if (tmp == dev) {
1c387188
AR		 874 /* For a VF use its original BDF# not that of the PF
875 * which we used for the IOMMU lookup. Strictly speaking
876 * we could do this for all PCI devices; we only need to
877 * get the BDF# from the scope table for ACPI matches. */
5003ae1e 878 if (pdev && pdev->is_virtfn)
1c387188
AR		 879 goto got_pdev;
880
156baca8
DW		 881 *bus = drhd->devices[i].bus;
882 *devfn = drhd->devices[i].devfn;
b683b230 883 goto out;
156baca8
DW		 884 }
885
886 if (!pdev || !dev_is_pci(tmp))
887 continue;
888
889 ptmp = to_pci_dev(tmp);
890 if (ptmp->subordinate &&
891 ptmp->subordinate->number <= pdev->bus->number &&
892 ptmp->subordinate->busn_res.end >= pdev->bus->number)
893 goto got_pdev;
924b6231 894 }
c7151a8d 895
156baca8
DW		 896 if (pdev && drhd->include_all) {
897 got_pdev:
898 *bus = pdev->bus->number;
899 *devfn = pdev->devfn;
b683b230 900 goto out;
156baca8 901 }
c7151a8d 902 }
b683b230 903 iommu = NULL;
156baca8 904 out:
0e242612 905 rcu_read_unlock();
c7151a8d 906
b683b230 907 return iommu;
c7151a8d
WH		 908}
909
5331fe6f
WH		 910static void domain_flush_cache(struct dmar_domain *domain,
911 void *addr, int size)
912{
913 if (!domain->iommu_coherency)
914 clflush_cache_range(addr, size);
915}
916
ba395927
KA		 917static int device_context_mapped(struct intel_iommu *iommu, u8 bus, u8 devfn)
918{
ba395927 919 struct context_entry *context;
03ecc32c 920 int ret = 0;
ba395927
KA		 921 unsigned long flags;
922
923 spin_lock_irqsave(&iommu->lock, flags);
03ecc32c
DW		 924 context = iommu_context_addr(iommu, bus, devfn, 0);
925 if (context)
926 ret = context_present(context);
ba395927
KA		 927 spin_unlock_irqrestore(&iommu->lock, flags);
928 return ret;
929}
930
ba395927
KA		 931static void free_context_table(struct intel_iommu *iommu)
932{
ba395927
KA		 933 int i;
934 unsigned long flags;
935 struct context_entry *context;
936
937 spin_lock_irqsave(&iommu->lock, flags);
938 if (!iommu->root_entry) {
939 goto out;
940 }
941 for (i = 0; i < ROOT_ENTRY_NR; i++) {
03ecc32c 942 context = iommu_context_addr(iommu, i, 0, 0);
ba395927
KA		 943 if (context)
944 free_pgtable_page(context);
03ecc32c 945
c83b2f20 946 if (!ecs_enabled(iommu))
03ecc32c
DW		 947 continue;
948
949 context = iommu_context_addr(iommu, i, 0x80, 0);
950 if (context)
951 free_pgtable_page(context);
952
ba395927
KA		 953 }
954 free_pgtable_page(iommu->root_entry);
955 iommu->root_entry = NULL;
956out:
957 spin_unlock_irqrestore(&iommu->lock, flags);
958}
959
b026fd28 960static struct dma_pte *pfn_to_dma_pte(struct dmar_domain *domain,
5cf0a76f 961 unsigned long pfn, int *target_level)
ba395927 962{
ba395927
KA		 963 struct dma_pte *parent, *pte = NULL;
964 int level = agaw_to_level(domain->agaw);
4399c8bf 965 int offset;
ba395927
KA		 966
967 BUG_ON(!domain->pgd);
f9423606 968
162d1b10 969 if (!domain_pfn_supported(domain, pfn))
f9423606
JS		 970 /* Address beyond IOMMU's addressing capabilities. */
971 return NULL;
972
ba395927
KA		 973 parent = domain->pgd;
974
5cf0a76f 975 while (1) {
ba395927
KA		 976 void *tmp_page;
977
b026fd28 978 offset = pfn_level_offset(pfn, level);
ba395927 979 pte = &parent[offset];
5cf0a76f 980 if (!*target_level && (dma_pte_superpage(pte) || !dma_pte_present(pte)))
6dd9a7c7 981 break;
5cf0a76f 982 if (level == *target_level)
ba395927
KA		 983 break;
984
19c239ce 985 if (!dma_pte_present(pte)) {
c85994e4
DW		 986 uint64_t pteval;
987
4c923d47 988 tmp_page = alloc_pgtable_page(domain->nid);
ba395927 989
206a73c1 990 if (!tmp_page)
ba395927 991 return NULL;
206a73c1 992
c85994e4 993 domain_flush_cache(domain, tmp_page, VTD_PAGE_SIZE);
64de5af0 994 pteval = ((uint64_t)virt_to_dma_pfn(tmp_page) << VTD_PAGE_SHIFT) | DMA_PTE_READ | DMA_PTE_WRITE;
effad4b5 995 if (cmpxchg64(&pte->val, 0ULL, pteval))
c85994e4
DW		 996 /* Someone else set it while we were thinking; use theirs. */
997 free_pgtable_page(tmp_page);
effad4b5 998 else
c85994e4 999 domain_flush_cache(domain, pte, sizeof(*pte));
ba395927 1000 }
5cf0a76f
DW		 1001 if (level == 1)
1002 break;
1003
19c239ce 1004 parent = phys_to_virt(dma_pte_addr(pte));
ba395927
KA		 1005 level--;
1006 }
1007
5cf0a76f
DW		 1008 if (!*target_level)
1009 *target_level = level;
1010
ba395927
KA		 1011 return pte;
1012}
1013
6dd9a7c7 1014
ba395927 1015/* return address's pte at specific level */
90dcfb5e
DW		 1016static struct dma_pte *dma_pfn_level_pte(struct dmar_domain *domain,
1017 unsigned long pfn,
6dd9a7c7 1018 int level, int *large_page)
ba395927
KA		 1019{
1020 struct dma_pte *parent, *pte = NULL;
1021 int total = agaw_to_level(domain->agaw);
1022 int offset;
1023
1024 parent = domain->pgd;
1025 while (level <= total) {
90dcfb5e 1026 offset = pfn_level_offset(pfn, total);
ba395927
KA		 1027 pte = &parent[offset];
1028 if (level == total)
1029 return pte;
1030
6dd9a7c7
YS		 1031 if (!dma_pte_present(pte)) {
1032 *large_page = total;
ba395927 1033 break;
6dd9a7c7
YS		 1034 }
1035
e16922af 1036 if (dma_pte_superpage(pte)) {
6dd9a7c7
YS		 1037 *large_page = total;
1038 return pte;
1039 }
1040
19c239ce 1041 parent = phys_to_virt(dma_pte_addr(pte));
ba395927
KA		 1042 total--;
1043 }
1044 return NULL;
1045}
1046
ba395927 1047/* clear last level pte, a tlb flush should be followed */
5cf0a76f 1048static void dma_pte_clear_range(struct dmar_domain *domain,
595badf5
DW		 1049 unsigned long start_pfn,
1050 unsigned long last_pfn)
ba395927 1051{
6dd9a7c7 1052 unsigned int large_page = 1;
310a5ab9 1053 struct dma_pte *first_pte, *pte;
66eae846 1054
162d1b10
JL		 1055 BUG_ON(!domain_pfn_supported(domain, start_pfn));
1056 BUG_ON(!domain_pfn_supported(domain, last_pfn));
59c36286 1057 BUG_ON(start_pfn > last_pfn);
ba395927 1058
04b18e65 1059 /* we don't need lock here; nobody else touches the iova range */
59c36286 1060 do {
6dd9a7c7
YS		 1061 large_page = 1;
1062 first_pte = pte = dma_pfn_level_pte(domain, start_pfn, 1, &large_page);
310a5ab9 1063 if (!pte) {
6dd9a7c7 1064 start_pfn = align_to_level(start_pfn + 1, large_page + 1);
310a5ab9
DW		 1065 continue;
1066 }
6dd9a7c7 1067 do {
310a5ab9 1068 dma_clear_pte(pte);
6dd9a7c7 1069 start_pfn += lvl_to_nr_pages(large_page);
310a5ab9 1070 pte++;
75e6bf96
DW		 1071 } while (start_pfn <= last_pfn && !first_pte_in_page(pte));
1072
310a5ab9
DW		 1073 domain_flush_cache(domain, first_pte,
1074 (void *)pte - (void *)first_pte);
59c36286
DW		 1075
1076 } while (start_pfn && start_pfn <= last_pfn);
ba395927
KA		 1077}
1078
3269ee0b 1079static void dma_pte_free_level(struct dmar_domain *domain, int level,
bc24c571
DD		 1080 int retain_level, struct dma_pte *pte,
1081 unsigned long pfn, unsigned long start_pfn,
1082 unsigned long last_pfn)
3269ee0b
AW		 1083{
1084 pfn = max(start_pfn, pfn);
1085 pte = &pte[pfn_level_offset(pfn, level)];
1086
1087 do {
1088 unsigned long level_pfn;
1089 struct dma_pte *level_pte;
1090
1091 if (!dma_pte_present(pte) || dma_pte_superpage(pte))
1092 goto next;
1093
f7116e11 1094 level_pfn = pfn & level_mask(level);
3269ee0b
AW		 1095 level_pte = phys_to_virt(dma_pte_addr(pte));
1096
bc24c571
DD		 1097 if (level > 2) {
1098 dma_pte_free_level(domain, level - 1, retain_level,
1099 level_pte, level_pfn, start_pfn,
1100 last_pfn);
1101 }
3269ee0b 1102
bc24c571
DD		 1103 /*
1104 * Free the page table if we're below the level we want to
1105 * retain and the range covers the entire table.
1106 */
1107 if (level < retain_level && !(start_pfn > level_pfn ||
08336fd2 1108 last_pfn < level_pfn + level_size(level) - 1)) {
3269ee0b
AW		 1109 dma_clear_pte(pte);
1110 domain_flush_cache(domain, pte, sizeof(*pte));
1111 free_pgtable_page(level_pte);
1112 }
1113next:
1114 pfn += level_size(level);
1115 } while (!first_pte_in_page(++pte) && pfn <= last_pfn);
1116}
1117
bc24c571
DD		 1118/*
1119 * clear last level (leaf) ptes and free page table pages below the
1120 * level we wish to keep intact.
1121 */
ba395927 1122static void dma_pte_free_pagetable(struct dmar_domain *domain,
d794dc9b 1123 unsigned long start_pfn,
bc24c571
DD		 1124 unsigned long last_pfn,
1125 int retain_level)
ba395927 1126{
162d1b10
JL		 1127 BUG_ON(!domain_pfn_supported(domain, start_pfn));
1128 BUG_ON(!domain_pfn_supported(domain, last_pfn));
59c36286 1129 BUG_ON(start_pfn > last_pfn);
ba395927 1130
d41a4adb
JL		 1131 dma_pte_clear_range(domain, start_pfn, last_pfn);
1132
f3a0a52f 1133 /* We don't need lock here; nobody else touches the iova range */
bc24c571 1134 dma_pte_free_level(domain, agaw_to_level(domain->agaw), retain_level,
3269ee0b 1135 domain->pgd, 0, start_pfn, last_pfn);
6660c63a 1136
ba395927 1137 /* free pgd */
d794dc9b 1138 if (start_pfn == 0 && last_pfn == DOMAIN_MAX_PFN(domain->gaw)) {
ba395927
KA		 1139 free_pgtable_page(domain->pgd);
1140 domain->pgd = NULL;
1141 }
1142}
1143
ea8ea460
DW		 1144/* When a page at a given level is being unlinked from its parent, we don't
1145 need to *modify* it at all. All we need to do is make a list of all the
1146 pages which can be freed just as soon as we've flushed the IOTLB and we
1147 know the hardware page-walk will no longer touch them.
1148 The 'pte' argument is the *parent* PTE, pointing to the page that is to
1149 be freed. */
1150static struct page *dma_pte_list_pagetables(struct dmar_domain *domain,
1151 int level, struct dma_pte *pte,
1152 struct page *freelist)
1153{
1154 struct page *pg;
1155
1156 pg = pfn_to_page(dma_pte_addr(pte) >> PAGE_SHIFT);
1157 pg->freelist = freelist;
1158 freelist = pg;
1159
1160 if (level == 1)
1161 return freelist;
1162
adeb2590
JL		 1163 pte = page_address(pg);
1164 do {
ea8ea460
DW		 1165 if (dma_pte_present(pte) && !dma_pte_superpage(pte))
1166 freelist = dma_pte_list_pagetables(domain, level - 1,
1167 pte, freelist);
adeb2590
JL		 1168 pte++;
1169 } while (!first_pte_in_page(pte));
ea8ea460
DW		 1170
1171 return freelist;
1172}
1173
1174static struct page *dma_pte_clear_level(struct dmar_domain *domain, int level,
1175 struct dma_pte *pte, unsigned long pfn,
1176 unsigned long start_pfn,
1177 unsigned long last_pfn,
1178 struct page *freelist)
1179{
1180 struct dma_pte *first_pte = NULL, *last_pte = NULL;
1181
1182 pfn = max(start_pfn, pfn);
1183 pte = &pte[pfn_level_offset(pfn, level)];
1184
1185 do {
1186 unsigned long level_pfn;
1187
1188 if (!dma_pte_present(pte))
1189 goto next;
1190
1191 level_pfn = pfn & level_mask(level);
1192
1193 /* If range covers entire pagetable, free it */
1194 if (start_pfn <= level_pfn &&
1195 last_pfn >= level_pfn + level_size(level) - 1) {
1196 /* These suborbinate page tables are going away entirely. Don't
1197 bother to clear them; we're just going to *free* them. */
1198 if (level > 1 && !dma_pte_superpage(pte))
1199 freelist = dma_pte_list_pagetables(domain, level - 1, pte, freelist);
1200
1201 dma_clear_pte(pte);
1202 if (!first_pte)
1203 first_pte = pte;
1204 last_pte = pte;
1205 } else if (level > 1) {
1206 /* Recurse down into a level that isn't *entirely* obsolete */
1207 freelist = dma_pte_clear_level(domain, level - 1,
1208 phys_to_virt(dma_pte_addr(pte)),
1209 level_pfn, start_pfn, last_pfn,
1210 freelist);
1211 }
1212next:
1213 pfn += level_size(level);
1214 } while (!first_pte_in_page(++pte) && pfn <= last_pfn);
1215
1216 if (first_pte)
1217 domain_flush_cache(domain, first_pte,
1218 (void *)++last_pte - (void *)first_pte);
1219
1220 return freelist;
1221}
1222
1223/* We can't just free the pages because the IOMMU may still be walking
1224 the page tables, and may have cached the intermediate levels. The
1225 pages can only be freed after the IOTLB flush has been done. */
b690420a
JR		 1226static struct page *domain_unmap(struct dmar_domain *domain,
1227 unsigned long start_pfn,
1228 unsigned long last_pfn)
ea8ea460 1229{
ea8ea460
DW		 1230 struct page *freelist = NULL;
1231
162d1b10
JL		 1232 BUG_ON(!domain_pfn_supported(domain, start_pfn));
1233 BUG_ON(!domain_pfn_supported(domain, last_pfn));
ea8ea460
DW		 1234 BUG_ON(start_pfn > last_pfn);
1235
1236 /* we don't need lock here; nobody else touches the iova range */
1237 freelist = dma_pte_clear_level(domain, agaw_to_level(domain->agaw),
1238 domain->pgd, 0, start_pfn, last_pfn, NULL);
1239
1240 /* free pgd */
1241 if (start_pfn == 0 && last_pfn == DOMAIN_MAX_PFN(domain->gaw)) {
1242 struct page *pgd_page = virt_to_page(domain->pgd);
1243 pgd_page->freelist = freelist;
1244 freelist = pgd_page;
1245
1246 domain->pgd = NULL;
1247 }
1248
1249 return freelist;
1250}
1251
b690420a 1252static void dma_free_pagelist(struct page *freelist)
ea8ea460
DW		 1253{
1254 struct page *pg;
1255
1256 while ((pg = freelist)) {
1257 freelist = pg->freelist;
1258 free_pgtable_page(page_address(pg));
1259 }
1260}
1261
13cf0174
JR		 1262static void iova_entry_free(unsigned long data)
1263{
1264 struct page *freelist = (struct page *)data;
1265
1266 dma_free_pagelist(freelist);
1267}
1268
ba395927
KA		 1269/* iommu handling */
1270static int iommu_alloc_root_entry(struct intel_iommu *iommu)
1271{
1272 struct root_entry *root;
1273 unsigned long flags;
1274
4c923d47 1275 root = (struct root_entry *)alloc_pgtable_page(iommu->node);
ffebeb46 1276 if (!root) {
9f10e5bf 1277 pr_err("Allocating root entry for %s failed\n",
ffebeb46 1278 iommu->name);
ba395927 1279 return -ENOMEM;
ffebeb46 1280 }
ba395927 1281
5b6985ce 1282 __iommu_flush_cache(iommu, root, ROOT_SIZE);
ba395927
KA		 1283
1284 spin_lock_irqsave(&iommu->lock, flags);
1285 iommu->root_entry = root;
1286 spin_unlock_irqrestore(&iommu->lock, flags);
1287
1288 return 0;
1289}
1290
ba395927
KA		 1291static void iommu_set_root_entry(struct intel_iommu *iommu)
1292{
03ecc32c 1293 u64 addr;
c416daa9 1294 u32 sts;
ba395927
KA		 1295 unsigned long flag;
1296
03ecc32c 1297 addr = virt_to_phys(iommu->root_entry);
c83b2f20 1298 if (ecs_enabled(iommu))
03ecc32c 1299 addr |= DMA_RTADDR_RTT;
ba395927 1300
1f5b3c3f 1301 raw_spin_lock_irqsave(&iommu->register_lock, flag);
03ecc32c 1302 dmar_writeq(iommu->reg + DMAR_RTADDR_REG, addr);
ba395927 1303
c416daa9 1304 writel(iommu->gcmd | DMA_GCMD_SRTP, iommu->reg + DMAR_GCMD_REG);
ba395927
KA		 1305
1306 /* Make sure hardware complete it */
1307 IOMMU_WAIT_OP(iommu, DMAR_GSTS_REG,
c416daa9 1308 readl, (sts & DMA_GSTS_RTPS), sts);
ba395927 1309
1f5b3c3f 1310 raw_spin_unlock_irqrestore(&iommu->register_lock, flag);
ba395927
KA		 1311}
1312
1313static void iommu_flush_write_buffer(struct intel_iommu *iommu)
1314{
1315 u32 val;
1316 unsigned long flag;
1317
9af88143 1318 if (!rwbf_quirk && !cap_rwbf(iommu->cap))
ba395927 1319 return;
ba395927 1320
1f5b3c3f 1321 raw_spin_lock_irqsave(&iommu->register_lock, flag);
462b60f6 1322 writel(iommu->gcmd | DMA_GCMD_WBF, iommu->reg + DMAR_GCMD_REG);
ba395927
KA		 1323
1324 /* Make sure hardware complete it */
1325 IOMMU_WAIT_OP(iommu, DMAR_GSTS_REG,
c416daa9 1326 readl, (!(val & DMA_GSTS_WBFS)), val);
ba395927 1327
1f5b3c3f 1328 raw_spin_unlock_irqrestore(&iommu->register_lock, flag);
ba395927
KA		 1329}
1330
1331/* return value determine if we need a write buffer flush */
4c25a2c1
DW		 1332static void __iommu_flush_context(struct intel_iommu *iommu,
1333 u16 did, u16 source_id, u8 function_mask,
1334 u64 type)
ba395927
KA		 1335{
1336 u64 val = 0;
1337 unsigned long flag;
1338
ba395927
KA		 1339 switch (type) {
1340 case DMA_CCMD_GLOBAL_INVL:
1341 val = DMA_CCMD_GLOBAL_INVL;
1342 break;
1343 case DMA_CCMD_DOMAIN_INVL:
1344 val = DMA_CCMD_DOMAIN_INVL|DMA_CCMD_DID(did);
1345 break;
1346 case DMA_CCMD_DEVICE_INVL:
1347 val = DMA_CCMD_DEVICE_INVL|DMA_CCMD_DID(did)
1348 | DMA_CCMD_SID(source_id) | DMA_CCMD_FM(function_mask);
1349 break;
1350 default:
1351 BUG();
1352 }
1353 val |= DMA_CCMD_ICC;
1354
1f5b3c3f 1355 raw_spin_lock_irqsave(&iommu->register_lock, flag);
ba395927
KA		 1356 dmar_writeq(iommu->reg + DMAR_CCMD_REG, val);
1357
1358 /* Make sure hardware complete it */
1359 IOMMU_WAIT_OP(iommu, DMAR_CCMD_REG,
1360 dmar_readq, (!(val & DMA_CCMD_ICC)), val);
1361
1f5b3c3f 1362 raw_spin_unlock_irqrestore(&iommu->register_lock, flag);
ba395927
KA		 1363}
1364
ba395927 1365/* return value determine if we need a write buffer flush */
1f0ef2aa
DW		 1366static void __iommu_flush_iotlb(struct intel_iommu *iommu, u16 did,
1367 u64 addr, unsigned int size_order, u64 type)
ba395927
KA		 1368{
1369 int tlb_offset = ecap_iotlb_offset(iommu->ecap);
1370 u64 val = 0, val_iva = 0;
1371 unsigned long flag;
1372
ba395927
KA		 1373 switch (type) {
1374 case DMA_TLB_GLOBAL_FLUSH:
1375 /* global flush doesn't need set IVA_REG */
1376 val = DMA_TLB_GLOBAL_FLUSH|DMA_TLB_IVT;
1377 break;
1378 case DMA_TLB_DSI_FLUSH:
1379 val = DMA_TLB_DSI_FLUSH|DMA_TLB_IVT|DMA_TLB_DID(did);
1380 break;
1381 case DMA_TLB_PSI_FLUSH:
1382 val = DMA_TLB_PSI_FLUSH|DMA_TLB_IVT|DMA_TLB_DID(did);
ea8ea460 1383 /* IH bit is passed in as part of address */
ba395927
KA		 1384 val_iva = size_order | addr;
1385 break;
1386 default:
1387 BUG();
1388 }
1389 /* Note: set drain read/write */
1390#if 0
1391 /*
1392 * This is probably to be super secure.. Looks like we can
1393 * ignore it without any impact.
1394 */
1395 if (cap_read_drain(iommu->cap))
1396 val |= DMA_TLB_READ_DRAIN;
1397#endif
1398 if (cap_write_drain(iommu->cap))
1399 val |= DMA_TLB_WRITE_DRAIN;
1400
1f5b3c3f 1401 raw_spin_lock_irqsave(&iommu->register_lock, flag);
ba395927
KA		 1402 /* Note: Only uses first TLB reg currently */
1403 if (val_iva)
1404 dmar_writeq(iommu->reg + tlb_offset, val_iva);
1405 dmar_writeq(iommu->reg + tlb_offset + 8, val);
1406
1407 /* Make sure hardware complete it */
1408 IOMMU_WAIT_OP(iommu, tlb_offset + 8,
1409 dmar_readq, (!(val & DMA_TLB_IVT)), val);
1410
1f5b3c3f 1411 raw_spin_unlock_irqrestore(&iommu->register_lock, flag);
ba395927
KA		 1412
1413 /* check IOTLB invalidation granularity */
1414 if (DMA_TLB_IAIG(val) == 0)
9f10e5bf 1415 pr_err("Flush IOTLB failed\n");
ba395927 1416 if (DMA_TLB_IAIG(val) != DMA_TLB_IIRG(type))
9f10e5bf 1417 pr_debug("TLB flush request %Lx, actual %Lx\n",
5b6985ce
FY		 1418 (unsigned long long)DMA_TLB_IIRG(type),
1419 (unsigned long long)DMA_TLB_IAIG(val));
ba395927
KA		 1420}
1421
64ae892b
DW		 1422static struct device_domain_info *
1423iommu_support_dev_iotlb (struct dmar_domain *domain, struct intel_iommu *iommu,
1424 u8 bus, u8 devfn)
93a23a72 1425{
93a23a72 1426 struct device_domain_info *info;
93a23a72 1427
55d94043
JR		 1428 assert_spin_locked(&device_domain_lock);
1429
93a23a72
YZ		 1430 if (!iommu->qi)
1431 return NULL;
1432
93a23a72 1433 list_for_each_entry(info, &domain->devices, link)
c3b497c6
JL		 1434 if (info->iommu == iommu && info->bus == bus &&
1435 info->devfn == devfn) {
b16d0cb9
DW		 1436 if (info->ats_supported && info->dev)
1437 return info;
93a23a72
YZ		 1438 break;
1439 }
93a23a72 1440
b16d0cb9 1441 return NULL;
93a23a72
YZ		 1442}
1443
0824c592
OP		 1444static void domain_update_iotlb(struct dmar_domain *domain)
1445{
1446 struct device_domain_info *info;
1447 bool has_iotlb_device = false;
1448
1449 assert_spin_locked(&device_domain_lock);
1450
1451 list_for_each_entry(info, &domain->devices, link) {
1452 struct pci_dev *pdev;
1453
1454 if (!info->dev || !dev_is_pci(info->dev))
1455 continue;
1456
1457 pdev = to_pci_dev(info->dev);
1458 if (pdev->ats_enabled) {
1459 has_iotlb_device = true;
1460 break;
1461 }
1462 }
1463
1464 domain->has_iotlb_device = has_iotlb_device;
1465}
1466
93a23a72 1467static void iommu_enable_dev_iotlb(struct device_domain_info *info)
ba395927 1468{
fb0cc3aa
BH		 1469 struct pci_dev *pdev;
1470
0824c592
OP		 1471 assert_spin_locked(&device_domain_lock);
1472
0bcb3e28 1473 if (!info || !dev_is_pci(info->dev))
93a23a72
YZ		 1474 return;
1475
fb0cc3aa 1476 pdev = to_pci_dev(info->dev);
fb0cc3aa 1477
b16d0cb9
DW		 1478#ifdef CONFIG_INTEL_IOMMU_SVM
1479 /* The PCIe spec, in its wisdom, declares that the behaviour of
1480 the device if you enable PASID support after ATS support is
1481 undefined. So always enable PASID support on devices which
1482 have it, even if we can't yet know if we're ever going to
1483 use it. */
1484 if (info->pasid_supported && !pci_enable_pasid(pdev, info->pasid_supported & ~1))
1485 info->pasid_enabled = 1;
1486
1487 if (info->pri_supported && !pci_reset_pri(pdev) && !pci_enable_pri(pdev, 32))
1488 info->pri_enabled = 1;
1489#endif
1490 if (info->ats_supported && !pci_enable_ats(pdev, VTD_PAGE_SHIFT)) {
1491 info->ats_enabled = 1;
0824c592 1492 domain_update_iotlb(info->domain);
b16d0cb9
DW		 1493 info->ats_qdep = pci_ats_queue_depth(pdev);
1494 }
93a23a72
YZ		 1495}
1496
1497static void iommu_disable_dev_iotlb(struct device_domain_info *info)
1498{
b16d0cb9
DW		 1499 struct pci_dev *pdev;
1500
0824c592
OP		 1501 assert_spin_locked(&device_domain_lock);
1502
da972fb1 1503 if (!dev_is_pci(info->dev))
93a23a72
YZ		 1504 return;
1505
b16d0cb9
DW		 1506 pdev = to_pci_dev(info->dev);
1507
1508 if (info->ats_enabled) {
1509 pci_disable_ats(pdev);
1510 info->ats_enabled = 0;
0824c592 1511 domain_update_iotlb(info->domain);
b16d0cb9
DW		 1512 }
1513#ifdef CONFIG_INTEL_IOMMU_SVM
1514 if (info->pri_enabled) {
1515 pci_disable_pri(pdev);
1516 info->pri_enabled = 0;
1517 }
1518 if (info->pasid_enabled) {
1519 pci_disable_pasid(pdev);
1520 info->pasid_enabled = 0;
1521 }
1522#endif
93a23a72
YZ		 1523}
1524
1525static void iommu_flush_dev_iotlb(struct dmar_domain *domain,
1526 u64 addr, unsigned mask)
1527{
1528 u16 sid, qdep;
1529 unsigned long flags;
1530 struct device_domain_info *info;
1531
0824c592
OP		 1532 if (!domain->has_iotlb_device)
1533 return;
1534
93a23a72
YZ		 1535 spin_lock_irqsave(&device_domain_lock, flags);
1536 list_for_each_entry(info, &domain->devices, link) {
b16d0cb9 1537 if (!info->ats_enabled)
93a23a72
YZ		 1538 continue;
1539
1540 sid = info->bus << 8 | info->devfn;
b16d0cb9 1541 qdep = info->ats_qdep;
93a23a72
YZ		 1542 qi_flush_dev_iotlb(info->iommu, sid, qdep, addr, mask);
1543 }
1544 spin_unlock_irqrestore(&device_domain_lock, flags);
1545}
1546
a1ddcbe9
JR		 1547static void iommu_flush_iotlb_psi(struct intel_iommu *iommu,
1548 struct dmar_domain *domain,
1549 unsigned long pfn, unsigned int pages,
1550 int ih, int map)
ba395927 1551{
9dd2fe89 1552 unsigned int mask = ilog2(__roundup_pow_of_two(pages));
03d6a246 1553 uint64_t addr = (uint64_t)pfn << VTD_PAGE_SHIFT;
a1ddcbe9 1554 u16 did = domain->iommu_did[iommu->seq_id];
ba395927 1555
ba395927
KA		 1556 BUG_ON(pages == 0);
1557
ea8ea460
DW		 1558 if (ih)
1559 ih = 1 << 6;
ba395927 1560 /*
9dd2fe89
YZ		 1561 * Fallback to domain selective flush if no PSI support or the size is
1562 * too big.
ba395927
KA		 1563 * PSI requires page size to be 2 ^ x, and the base address is naturally
1564 * aligned to the size
1565 */
9dd2fe89
YZ		 1566 if (!cap_pgsel_inv(iommu->cap) || mask > cap_max_amask_val(iommu->cap))
1567 iommu->flush.flush_iotlb(iommu, did, 0, 0,
1f0ef2aa 1568 DMA_TLB_DSI_FLUSH);
9dd2fe89 1569 else
ea8ea460 1570 iommu->flush.flush_iotlb(iommu, did, addr | ih, mask,
9dd2fe89 1571 DMA_TLB_PSI_FLUSH);
bf92df30
YZ		 1572
1573 /*
82653633
NA		 1574 * In caching mode, changes of pages from non-present to present require
1575 * flush. However, device IOTLB doesn't need to be flushed in this case.
bf92df30 1576 */
82653633 1577 if (!cap_caching_mode(iommu->cap) || !map)
9d2e6505 1578 iommu_flush_dev_iotlb(domain, addr, mask);
ba395927
KA		 1579}
1580
eed91a0b
PX		 1581/* Notification for newly created mappings */
1582static inline void __mapping_notify_one(struct intel_iommu *iommu,
1583 struct dmar_domain *domain,
1584 unsigned long pfn, unsigned int pages)
1585{
1586 /* It's a non-present to present mapping. Only flush if caching mode */
1587 if (cap_caching_mode(iommu->cap))
1588 iommu_flush_iotlb_psi(iommu, domain, pfn, pages, 0, 1);
1589 else
1590 iommu_flush_write_buffer(iommu);
1591}
1592
13cf0174
JR		 1593static void iommu_flush_iova(struct iova_domain *iovad)
1594{
1595 struct dmar_domain *domain;
1596 int idx;
1597
1598 domain = container_of(iovad, struct dmar_domain, iovad);
1599
1600 for_each_domain_iommu(idx, domain) {
1601 struct intel_iommu *iommu = g_iommus[idx];
1602 u16 did = domain->iommu_did[iommu->seq_id];
1603
1604 iommu->flush.flush_iotlb(iommu, did, 0, 0, DMA_TLB_DSI_FLUSH);
1605
1606 if (!cap_caching_mode(iommu->cap))
1607 iommu_flush_dev_iotlb(get_iommu_domain(iommu, did),
1608 0, MAX_AGAW_PFN_WIDTH);
1609 }
1610}
1611
f8bab735 1612static void iommu_disable_protect_mem_regions(struct intel_iommu *iommu)
1613{
1614 u32 pmen;
1615 unsigned long flags;
1616
1f5b3c3f 1617 raw_spin_lock_irqsave(&iommu->register_lock, flags);
f8bab735 1618 pmen = readl(iommu->reg + DMAR_PMEN_REG);
1619 pmen &= ~DMA_PMEN_EPM;
1620 writel(pmen, iommu->reg + DMAR_PMEN_REG);
1621
1622 /* wait for the protected region status bit to clear */
1623 IOMMU_WAIT_OP(iommu, DMAR_PMEN_REG,
1624 readl, !(pmen & DMA_PMEN_PRS), pmen);
1625
1f5b3c3f 1626 raw_spin_unlock_irqrestore(&iommu->register_lock, flags);
f8bab735 1627}
1628
2a41ccee 1629static void iommu_enable_translation(struct intel_iommu *iommu)
ba395927
KA		 1630{
1631 u32 sts;
1632 unsigned long flags;
1633
1f5b3c3f 1634 raw_spin_lock_irqsave(&iommu->register_lock, flags);
c416daa9
DW		 1635 iommu->gcmd |= DMA_GCMD_TE;
1636 writel(iommu->gcmd, iommu->reg + DMAR_GCMD_REG);
ba395927
KA		 1637
1638 /* Make sure hardware complete it */
1639 IOMMU_WAIT_OP(iommu, DMAR_GSTS_REG,
c416daa9 1640 readl, (sts & DMA_GSTS_TES), sts);
ba395927 1641
1f5b3c3f 1642 raw_spin_unlock_irqrestore(&iommu->register_lock, flags);
ba395927
KA		 1643}
1644
2a41ccee 1645static void iommu_disable_translation(struct intel_iommu *iommu)
ba395927
KA		 1646{
1647 u32 sts;
1648 unsigned long flag;
1649
1f5b3c3f 1650 raw_spin_lock_irqsave(&iommu->register_lock, flag);
ba395927
KA		 1651 iommu->gcmd &= ~DMA_GCMD_TE;
1652 writel(iommu->gcmd, iommu->reg + DMAR_GCMD_REG);
1653
1654 /* Make sure hardware complete it */
1655 IOMMU_WAIT_OP(iommu, DMAR_GSTS_REG,
c416daa9 1656 readl, (!(sts & DMA_GSTS_TES)), sts);
ba395927 1657
1f5b3c3f 1658 raw_spin_unlock_irqrestore(&iommu->register_lock, flag);
ba395927
KA		 1659}
1660
3460a6d9 1661
ba395927
KA		 1662static int iommu_init_domains(struct intel_iommu *iommu)
1663{
8bf47816
JR		 1664 u32 ndomains, nlongs;
1665 size_t size;
ba395927
KA		 1666
1667 ndomains = cap_ndoms(iommu->cap);
8bf47816 1668 pr_debug("%s: Number of Domains supported <%d>\n",
9f10e5bf 1669 iommu->name, ndomains);
ba395927
KA		 1670 nlongs = BITS_TO_LONGS(ndomains);
1671
94a91b50
DD		 1672 spin_lock_init(&iommu->lock);
1673
ba395927
KA		 1674 iommu->domain_ids = kcalloc(nlongs, sizeof(unsigned long), GFP_KERNEL);
1675 if (!iommu->domain_ids) {
9f10e5bf
JR		 1676 pr_err("%s: Allocating domain id array failed\n",
1677 iommu->name);
ba395927
KA		 1678 return -ENOMEM;
1679 }
8bf47816 1680
86f004c7 1681 size = (ALIGN(ndomains, 256) >> 8) * sizeof(struct dmar_domain **);
8bf47816
JR		 1682 iommu->domains = kzalloc(size, GFP_KERNEL);
1683
1684 if (iommu->domains) {
1685 size = 256 * sizeof(struct dmar_domain *);
1686 iommu->domains[0] = kzalloc(size, GFP_KERNEL);
1687 }
1688
1689 if (!iommu->domains || !iommu->domains[0]) {
9f10e5bf
JR		 1690 pr_err("%s: Allocating domain array failed\n",
1691 iommu->name);
852bdb04 1692 kfree(iommu->domain_ids);
8bf47816 1693 kfree(iommu->domains);
852bdb04 1694 iommu->domain_ids = NULL;
8bf47816 1695 iommu->domains = NULL;
ba395927
KA		 1696 return -ENOMEM;
1697 }
1698
8bf47816
JR		 1699
1700
ba395927 1701 /*
c0e8a6c8
JR		 1702 * If Caching mode is set, then invalid translations are tagged
1703 * with domain-id 0, hence we need to pre-allocate it. We also
1704 * use domain-id 0 as a marker for non-allocated domain-id, so
1705 * make sure it is not used for a real domain.
ba395927 1706 */
c0e8a6c8
JR		 1707 set_bit(0, iommu->domain_ids);
1708
ba395927
KA		 1709 return 0;
1710}
ba395927 1711
ffebeb46 1712static void disable_dmar_iommu(struct intel_iommu *iommu)
ba395927 1713{
29a27719 1714 struct device_domain_info *info, *tmp;
55d94043 1715 unsigned long flags;
ba395927 1716
29a27719
JR		 1717 if (!iommu->domains || !iommu->domain_ids)
1718 return;
a4eaa86c 1719
bea64033 1720again:
55d94043 1721 spin_lock_irqsave(&device_domain_lock, flags);
29a27719
JR		 1722 list_for_each_entry_safe(info, tmp, &device_domain_list, global) {
1723 struct dmar_domain *domain;
1724
1725 if (info->iommu != iommu)
1726 continue;
1727
1728 if (!info->dev || !info->domain)
1729 continue;
1730
1731 domain = info->domain;
1732
bea64033 1733 __dmar_remove_one_dev_info(info);
29a27719 1734
bea64033
JR		 1735 if (!domain_type_is_vm_or_si(domain)) {
1736 /*
1737 * The domain_exit() function can't be called under
1738 * device_domain_lock, as it takes this lock itself.
1739 * So release the lock here and re-run the loop
1740 * afterwards.
1741 */
1742 spin_unlock_irqrestore(&device_domain_lock, flags);
29a27719 1743 domain_exit(domain);
bea64033
JR		 1744 goto again;
1745 }
ba395927 1746 }
55d94043 1747 spin_unlock_irqrestore(&device_domain_lock, flags);
ba395927
KA		 1748
1749 if (iommu->gcmd & DMA_GCMD_TE)
1750 iommu_disable_translation(iommu);
ffebeb46 1751}
ba395927 1752
ffebeb46
JL		 1753static void free_dmar_iommu(struct intel_iommu *iommu)
1754{
1755 if ((iommu->domains) && (iommu->domain_ids)) {
86f004c7 1756 int elems = ALIGN(cap_ndoms(iommu->cap), 256) >> 8;
8bf47816
JR		 1757 int i;
1758
1759 for (i = 0; i < elems; i++)
1760 kfree(iommu->domains[i]);
ffebeb46
JL		 1761 kfree(iommu->domains);
1762 kfree(iommu->domain_ids);
1763 iommu->domains = NULL;
1764 iommu->domain_ids = NULL;
1765 }
ba395927 1766
d9630fe9
WH		 1767 g_iommus[iommu->seq_id] = NULL;
1768
ba395927
KA		 1769 /* free context mapping */
1770 free_context_table(iommu);
8a94ade4
DW		 1771
1772#ifdef CONFIG_INTEL_IOMMU_SVM
a222a7f0
DW		 1773 if (pasid_enabled(iommu)) {
1774 if (ecap_prs(iommu->ecap))
1775 intel_svm_finish_prq(iommu);
8a94ade4 1776 intel_svm_free_pasid_tables(iommu);
a222a7f0 1777 }
8a94ade4 1778#endif
ba395927
KA		 1779}
1780
ab8dfe25 1781static struct dmar_domain *alloc_domain(int flags)
ba395927 1782{
ba395927 1783 struct dmar_domain *domain;
ba395927
KA		 1784
1785 domain = alloc_domain_mem();
1786 if (!domain)
1787 return NULL;
1788
ab8dfe25 1789 memset(domain, 0, sizeof(*domain));
4c923d47 1790 domain->nid = -1;
ab8dfe25 1791 domain->flags = flags;
0824c592 1792 domain->has_iotlb_device = false;
92d03cc8 1793 INIT_LIST_HEAD(&domain->devices);
2c2e2c38
FY		 1794
1795 return domain;
1796}
1797
d160aca5
JR		 1798/* Must be called with iommu->lock */
1799static int domain_attach_iommu(struct dmar_domain *domain,
fb170fb4
JL		 1800 struct intel_iommu *iommu)
1801{
44bde614 1802 unsigned long ndomains;
55d94043 1803 int num;
44bde614 1804
55d94043 1805 assert_spin_locked(&device_domain_lock);
d160aca5 1806 assert_spin_locked(&iommu->lock);
ba395927 1807
29a27719
JR		 1808 domain->iommu_refcnt[iommu->seq_id] += 1;
1809 domain->iommu_count += 1;
1810 if (domain->iommu_refcnt[iommu->seq_id] == 1) {
fb170fb4 1811 ndomains = cap_ndoms(iommu->cap);
d160aca5
JR		 1812 num = find_first_zero_bit(iommu->domain_ids, ndomains);
1813
1814 if (num >= ndomains) {
1815 pr_err("%s: No free domain ids\n", iommu->name);
1816 domain->iommu_refcnt[iommu->seq_id] -= 1;
1817 domain->iommu_count -= 1;
55d94043 1818 return -ENOSPC;
2c2e2c38 1819 }
ba395927 1820
d160aca5
JR		 1821 set_bit(num, iommu->domain_ids);
1822 set_iommu_domain(iommu, num, domain);
1823
1824 domain->iommu_did[iommu->seq_id] = num;
1825 domain->nid = iommu->node;
fb170fb4 1826
fb170fb4
JL		 1827 domain_update_iommu_cap(domain);
1828 }
d160aca5 1829
55d94043 1830 return 0;
fb170fb4
JL		 1831}
1832
1833static int domain_detach_iommu(struct dmar_domain *domain,
1834 struct intel_iommu *iommu)
1835{
d160aca5 1836 int num, count = INT_MAX;
d160aca5 1837
55d94043 1838 assert_spin_locked(&device_domain_lock);
d160aca5 1839 assert_spin_locked(&iommu->lock);
fb170fb4 1840
29a27719
JR		 1841 domain->iommu_refcnt[iommu->seq_id] -= 1;
1842 count = --domain->iommu_count;
1843 if (domain->iommu_refcnt[iommu->seq_id] == 0) {
d160aca5
JR		 1844 num = domain->iommu_did[iommu->seq_id];
1845 clear_bit(num, iommu->domain_ids);
1846 set_iommu_domain(iommu, num, NULL);
fb170fb4 1847
fb170fb4 1848 domain_update_iommu_cap(domain);
c0e8a6c8 1849 domain->iommu_did[iommu->seq_id] = 0;
fb170fb4 1850 }
fb170fb4
JL		 1851
1852 return count;
1853}
1854
ba395927 1855static struct iova_domain reserved_iova_list;
8a443df4 1856static struct lock_class_key reserved_rbtree_key;
ba395927 1857
51a63e67 1858static int dmar_init_reserved_ranges(void)
ba395927
KA		 1859{
1860 struct pci_dev *pdev = NULL;
1861 struct iova *iova;
1862 int i;
ba395927 1863
aa3ac946 1864 init_iova_domain(&reserved_iova_list, VTD_PAGE_SIZE, IOVA_START_PFN);
ba395927 1865
8a443df4
MG		 1866 lockdep_set_class(&reserved_iova_list.iova_rbtree_lock,
1867 &reserved_rbtree_key);
1868
ba395927
KA		 1869 /* IOAPIC ranges shouldn't be accessed by DMA */
1870 iova = reserve_iova(&reserved_iova_list, IOVA_PFN(IOAPIC_RANGE_START),
1871 IOVA_PFN(IOAPIC_RANGE_END));
51a63e67 1872 if (!iova) {
9f10e5bf 1873 pr_err("Reserve IOAPIC range failed\n");
51a63e67
JC		 1874 return -ENODEV;
1875 }
ba395927
KA		 1876
1877 /* Reserve all PCI MMIO to avoid peer-to-peer access */
1878 for_each_pci_dev(pdev) {
1879 struct resource *r;
1880
1881 for (i = 0; i < PCI_NUM_RESOURCES; i++) {
1882 r = &pdev->resource[i];
1883 if (!r->flags || !(r->flags & IORESOURCE_MEM))
1884 continue;
1a4a4551
DW		 1885 iova = reserve_iova(&reserved_iova_list,
1886 IOVA_PFN(r->start),
1887 IOVA_PFN(r->end));
51a63e67 1888 if (!iova) {
9f10e5bf 1889 pr_err("Reserve iova failed\n");
51a63e67
JC		 1890 return -ENODEV;
1891 }
ba395927
KA		 1892 }
1893 }
51a63e67 1894 return 0;
ba395927
KA		 1895}
1896
1897static void domain_reserve_special_ranges(struct dmar_domain *domain)
1898{
1899 copy_reserved_iova(&reserved_iova_list, &domain->iovad);
1900}
1901
1902static inline int guestwidth_to_adjustwidth(int gaw)
1903{
1904 int agaw;
1905 int r = (gaw - 12) % 9;
1906
1907 if (r == 0)
1908 agaw = gaw;
1909 else
1910 agaw = gaw + 9 - r;
1911 if (agaw > 64)
1912 agaw = 64;
1913 return agaw;
1914}
1915
dc534b25
JR		 1916static int domain_init(struct dmar_domain *domain, struct intel_iommu *iommu,
1917 int guest_width)
ba395927 1918{
ba395927
KA		 1919 int adjust_width, agaw;
1920 unsigned long sagaw;
13cf0174 1921 int err;
ba395927 1922
aa3ac946 1923 init_iova_domain(&domain->iovad, VTD_PAGE_SIZE, IOVA_START_PFN);
13cf0174
JR		 1924
1925 err = init_iova_flush_queue(&domain->iovad,
1926 iommu_flush_iova, iova_entry_free);
1927 if (err)
1928 return err;
1929
ba395927
KA		 1930 domain_reserve_special_ranges(domain);
1931
1932 /* calculate AGAW */
ba395927
KA		 1933 if (guest_width > cap_mgaw(iommu->cap))
1934 guest_width = cap_mgaw(iommu->cap);
1935 domain->gaw = guest_width;
1936 adjust_width = guestwidth_to_adjustwidth(guest_width);
1937 agaw = width_to_agaw(adjust_width);
1938 sagaw = cap_sagaw(iommu->cap);
1939 if (!test_bit(agaw, &sagaw)) {
1940 /* hardware doesn't support it, choose a bigger one */
9f10e5bf 1941 pr_debug("Hardware doesn't support agaw %d\n", agaw);
ba395927
KA		 1942 agaw = find_next_bit(&sagaw, 5, agaw);
1943 if (agaw >= 5)
1944 return -ENODEV;
1945 }
1946 domain->agaw = agaw;
ba395927 1947
8e604097
WH		 1948 if (ecap_coherent(iommu->ecap))
1949 domain->iommu_coherency = 1;
1950 else
1951 domain->iommu_coherency = 0;
1952
58c610bd
SY		 1953 if (ecap_sc_support(iommu->ecap))
1954 domain->iommu_snooping = 1;
1955 else
1956 domain->iommu_snooping = 0;
1957
214e39aa
DW		 1958 if (intel_iommu_superpage)
1959 domain->iommu_superpage = fls(cap_super_page_val(iommu->cap));
1960 else
1961 domain->iommu_superpage = 0;
1962
4c923d47 1963 domain->nid = iommu->node;
c7151a8d 1964
ba395927 1965 /* always allocate the top pgd */
4c923d47 1966 domain->pgd = (struct dma_pte *)alloc_pgtable_page(domain->nid);
ba395927
KA		 1967 if (!domain->pgd)
1968 return -ENOMEM;
5b6985ce 1969 __iommu_flush_cache(iommu, domain->pgd, PAGE_SIZE);
ba395927
KA		 1970 return 0;
1971}
1972
1973static void domain_exit(struct dmar_domain *domain)
1974{
ea8ea460 1975 struct page *freelist = NULL;
ba395927
KA		 1976
1977 /* Domain 0 is reserved, so dont process it */
1978 if (!domain)
1979 return;
1980
d160aca5
JR		 1981 /* Remove associated devices and clear attached or cached domains */
1982 rcu_read_lock();
ba395927 1983 domain_remove_dev_info(domain);
d160aca5 1984 rcu_read_unlock();
92d03cc8 1985
ba395927
KA		 1986 /* destroy iovas */
1987 put_iova_domain(&domain->iovad);
ba395927 1988
ea8ea460 1989 freelist = domain_unmap(domain, 0, DOMAIN_MAX_PFN(domain->gaw));
ba395927 1990
ea8ea460
DW		 1991 dma_free_pagelist(freelist);
1992
ba395927
KA		 1993 free_domain_mem(domain);
1994}
1995
64ae892b
DW		 1996static int domain_context_mapping_one(struct dmar_domain *domain,
1997 struct intel_iommu *iommu,
28ccce0d 1998 u8 bus, u8 devfn)
ba395927 1999{
c6c2cebd 2000 u16 did = domain->iommu_did[iommu->seq_id];
28ccce0d
JR		 2001 int translation = CONTEXT_TT_MULTI_LEVEL;
2002 struct device_domain_info *info = NULL;
ba395927 2003 struct context_entry *context;
ba395927 2004 unsigned long flags;
ea6606b0 2005 struct dma_pte *pgd;
55d94043 2006 int ret, agaw;
28ccce0d 2007
c6c2cebd
JR		 2008 WARN_ON(did == 0);
2009
28ccce0d
JR		 2010 if (hw_pass_through && domain_type_is_si(domain))
2011 translation = CONTEXT_TT_PASS_THROUGH;
ba395927
KA		 2012
2013 pr_debug("Set context mapping for %02x:%02x.%d\n",
2014 bus, PCI_SLOT(devfn), PCI_FUNC(devfn));
4ed0d3e6 2015
ba395927 2016 BUG_ON(!domain->pgd);
5331fe6f 2017
55d94043
JR		 2018 spin_lock_irqsave(&device_domain_lock, flags);
2019 spin_lock(&iommu->lock);
2020
2021 ret = -ENOMEM;
03ecc32c 2022 context = iommu_context_addr(iommu, bus, devfn, 1);
ba395927 2023 if (!context)
55d94043 2024 goto out_unlock;
ba395927 2025
55d94043
JR		 2026 ret = 0;
2027 if (context_present(context))
2028 goto out_unlock;
cf484d0e 2029
aec0e861
XP		 2030 /*
2031 * For kdump cases, old valid entries may be cached due to the
2032 * in-flight DMA and copied pgtable, but there is no unmapping
2033 * behaviour for them, thus we need an explicit cache flush for
2034 * the newly-mapped device. For kdump, at this point, the device
2035 * is supposed to finish reset at its driver probe stage, so no
2036 * in-flight DMA will exist, and we don't need to worry anymore
2037 * hereafter.
2038 */
2039 if (context_copied(context)) {
2040 u16 did_old = context_domain_id(context);
2041
b117e038 2042 if (did_old < cap_ndoms(iommu->cap)) {
aec0e861
XP		 2043 iommu->flush.flush_context(iommu, did_old,
2044 (((u16)bus) << 8) | devfn,
2045 DMA_CCMD_MASK_NOBIT,
2046 DMA_CCMD_DEVICE_INVL);
f73a7eee
KA		 2047 iommu->flush.flush_iotlb(iommu, did_old, 0, 0,
2048 DMA_TLB_DSI_FLUSH);
2049 }
aec0e861
XP		 2050 }
2051
ea6606b0
WH		 2052 pgd = domain->pgd;
2053
de24e553 2054 context_clear_entry(context);
c6c2cebd 2055 context_set_domain_id(context, did);
ea6606b0 2056
de24e553
JR		 2057 /*
2058 * Skip top levels of page tables for iommu which has less agaw
2059 * than default. Unnecessary for PT mode.
2060 */
93a23a72 2061 if (translation != CONTEXT_TT_PASS_THROUGH) {
de24e553 2062 for (agaw = domain->agaw; agaw != iommu->agaw; agaw--) {
55d94043 2063 ret = -ENOMEM;
de24e553 2064 pgd = phys_to_virt(dma_pte_addr(pgd));
55d94043
JR		 2065 if (!dma_pte_present(pgd))
2066 goto out_unlock;
ea6606b0 2067 }
4ed0d3e6 2068
64ae892b 2069 info = iommu_support_dev_iotlb(domain, iommu, bus, devfn);
b16d0cb9
DW		 2070 if (info && info->ats_supported)
2071 translation = CONTEXT_TT_DEV_IOTLB;
2072 else
2073 translation = CONTEXT_TT_MULTI_LEVEL;
de24e553 2074
93a23a72
YZ		 2075 context_set_address_root(context, virt_to_phys(pgd));
2076 context_set_address_width(context, iommu->agaw);
de24e553
JR		 2077 } else {
2078 /*
2079 * In pass through mode, AW must be programmed to
2080 * indicate the largest AGAW value supported by
2081 * hardware. And ASR is ignored by hardware.
2082 */
2083 context_set_address_width(context, iommu->msagaw);
93a23a72 2084 }
4ed0d3e6
FY		 2085
2086 context_set_translation_type(context, translation);
c07e7d21
MM		 2087 context_set_fault_enable(context);
2088 context_set_present(context);
5331fe6f 2089 domain_flush_cache(domain, context, sizeof(*context));
ba395927 2090
4c25a2c1
DW		 2091 /*
2092 * It's a non-present to present mapping. If hardware doesn't cache
2093 * non-present entry we only need to flush the write-buffer. If the
2094 * _does_ cache non-present entries, then it does so in the special
2095 * domain #0, which we have to flush:
2096 */
2097 if (cap_caching_mode(iommu->cap)) {
2098 iommu->flush.flush_context(iommu, 0,
2099 (((u16)bus) << 8) | devfn,
2100 DMA_CCMD_MASK_NOBIT,
2101 DMA_CCMD_DEVICE_INVL);
c6c2cebd 2102 iommu->flush.flush_iotlb(iommu, did, 0, 0, DMA_TLB_DSI_FLUSH);
4c25a2c1 2103 } else {
ba395927 2104 iommu_flush_write_buffer(iommu);
4c25a2c1 2105 }
93a23a72 2106 iommu_enable_dev_iotlb(info);
c7151a8d 2107
55d94043
JR		 2108 ret = 0;
2109
2110out_unlock:
2111 spin_unlock(&iommu->lock);
2112 spin_unlock_irqrestore(&device_domain_lock, flags);
fb170fb4 2113
5c365d18 2114 return ret;
ba395927
KA		 2115}
2116
579305f7
AW		 2117struct domain_context_mapping_data {
2118 struct dmar_domain *domain;
2119 struct intel_iommu *iommu;
579305f7
AW		 2120};
2121
2122static int domain_context_mapping_cb(struct pci_dev *pdev,
2123 u16 alias, void *opaque)
2124{
2125 struct domain_context_mapping_data *data = opaque;
2126
2127 return domain_context_mapping_one(data->domain, data->iommu,
28ccce0d 2128 PCI_BUS_NUM(alias), alias & 0xff);
579305f7
AW		 2129}
2130
ba395927 2131static int
28ccce0d 2132domain_context_mapping(struct dmar_domain *domain, struct device *dev)
ba395927 2133{
64ae892b 2134 struct intel_iommu *iommu;
156baca8 2135 u8 bus, devfn;
579305f7 2136 struct domain_context_mapping_data data;
64ae892b 2137
e1f167f3 2138 iommu = device_to_iommu(dev, &bus, &devfn);
64ae892b
DW		 2139 if (!iommu)
2140 return -ENODEV;
ba395927 2141
579305f7 2142 if (!dev_is_pci(dev))
28ccce0d 2143 return domain_context_mapping_one(domain, iommu, bus, devfn);
579305f7
AW		 2144
2145 data.domain = domain;
2146 data.iommu = iommu;
579305f7
AW		 2147
2148 return pci_for_each_dma_alias(to_pci_dev(dev),
2149 &domain_context_mapping_cb, &data);
2150}
2151
2152static int domain_context_mapped_cb(struct pci_dev *pdev,
2153 u16 alias, void *opaque)
2154{
2155 struct intel_iommu *iommu = opaque;
2156
2157 return !device_context_mapped(iommu, PCI_BUS_NUM(alias), alias & 0xff);
ba395927
KA		 2158}
2159
e1f167f3 2160static int domain_context_mapped(struct device *dev)
ba395927 2161{
5331fe6f 2162 struct intel_iommu *iommu;
156baca8 2163 u8 bus, devfn;
5331fe6f 2164
e1f167f3 2165 iommu = device_to_iommu(dev, &bus, &devfn);
5331fe6f
WH		 2166 if (!iommu)
2167 return -ENODEV;
ba395927 2168
579305f7
AW		 2169 if (!dev_is_pci(dev))
2170 return device_context_mapped(iommu, bus, devfn);
e1f167f3 2171
579305f7
AW		 2172 return !pci_for_each_dma_alias(to_pci_dev(dev),
2173 domain_context_mapped_cb, iommu);
ba395927
KA		 2174}
2175
f532959b
FY		 2176/* Returns a number of VTD pages, but aligned to MM page size */
2177static inline unsigned long aligned_nrpages(unsigned long host_addr,
2178 size_t size)
2179{
2180 host_addr &= ~PAGE_MASK;
2181 return PAGE_ALIGN(host_addr + size) >> VTD_PAGE_SHIFT;
2182}
2183
6dd9a7c7
YS		 2184/* Return largest possible superpage level for a given mapping */
2185static inline int hardware_largepage_caps(struct dmar_domain *domain,
2186 unsigned long iov_pfn,
2187 unsigned long phy_pfn,
2188 unsigned long pages)
2189{
2190 int support, level = 1;
2191 unsigned long pfnmerge;
2192
2193 support = domain->iommu_superpage;
2194
2195 /* To use a large page, the virtual *and* physical addresses
2196 must be aligned to 2MiB/1GiB/etc. Lower bits set in either
2197 of them will mean we have to use smaller pages. So just
2198 merge them and check both at once. */
2199 pfnmerge = iov_pfn | phy_pfn;
2200
2201 while (support && !(pfnmerge & ~VTD_STRIDE_MASK)) {
2202 pages >>= VTD_STRIDE_SHIFT;
2203 if (!pages)
2204 break;
2205 pfnmerge >>= VTD_STRIDE_SHIFT;
2206 level++;
2207 support--;
2208 }
2209 return level;
2210}
2211
9051aa02
DW		 2212static int __domain_mapping(struct dmar_domain *domain, unsigned long iov_pfn,
2213 struct scatterlist *sg, unsigned long phys_pfn,
2214 unsigned long nr_pages, int prot)
e1605495
DW		 2215{
2216 struct dma_pte *first_pte = NULL, *pte = NULL;
9051aa02 2217 phys_addr_t uninitialized_var(pteval);
cc4f14aa 2218 unsigned long sg_res = 0;
6dd9a7c7
YS		 2219 unsigned int largepage_lvl = 0;
2220 unsigned long lvl_pages = 0;
e1605495 2221
162d1b10 2222 BUG_ON(!domain_pfn_supported(domain, iov_pfn + nr_pages - 1));
e1605495
DW		 2223
2224 if ((prot & (DMA_PTE_READ|DMA_PTE_WRITE)) == 0)
2225 return -EINVAL;
2226
2227 prot &= DMA_PTE_READ | DMA_PTE_WRITE | DMA_PTE_SNP;
2228
cc4f14aa
JL		 2229 if (!sg) {
2230 sg_res = nr_pages;
9051aa02
DW		 2231 pteval = ((phys_addr_t)phys_pfn << VTD_PAGE_SHIFT) | prot;
2232 }
2233
6dd9a7c7 2234 while (nr_pages > 0) {
c85994e4
DW		 2235 uint64_t tmp;
2236
e1605495 2237 if (!sg_res) {
29a90b70
RM		 2238 unsigned int pgoff = sg->offset & ~PAGE_MASK;
2239
f532959b 2240 sg_res = aligned_nrpages(sg->offset, sg->length);
29a90b70 2241 sg->dma_address = ((dma_addr_t)iov_pfn << VTD_PAGE_SHIFT) + pgoff;
e1605495 2242 sg->dma_length = sg->length;
29a90b70 2243 pteval = (sg_phys(sg) - pgoff) | prot;
6dd9a7c7 2244 phys_pfn = pteval >> VTD_PAGE_SHIFT;
e1605495 2245 }
6dd9a7c7 2246
e1605495 2247 if (!pte) {
6dd9a7c7
YS		 2248 largepage_lvl = hardware_largepage_caps(domain, iov_pfn, phys_pfn, sg_res);
2249
5cf0a76f 2250 first_pte = pte = pfn_to_dma_pte(domain, iov_pfn, &largepage_lvl);
e1605495
DW		 2251 if (!pte)
2252 return -ENOMEM;
6dd9a7c7 2253 /* It is large page*/
6491d4d0 2254 if (largepage_lvl > 1) {
ba2374fd
CZ		 2255 unsigned long nr_superpages, end_pfn;
2256
6dd9a7c7 2257 pteval |= DMA_PTE_LARGE_PAGE;
d41a4adb 2258 lvl_pages = lvl_to_nr_pages(largepage_lvl);
ba2374fd
CZ		 2259
2260 nr_superpages = sg_res / lvl_pages;
2261 end_pfn = iov_pfn + nr_superpages * lvl_pages - 1;
2262
d41a4adb
JL		 2263 /*
2264 * Ensure that old small page tables are
ba2374fd 2265 * removed to make room for superpage(s).
bc24c571
DD		 2266 * We're adding new large pages, so make sure
2267 * we don't remove their parent tables.
d41a4adb 2268 */
bc24c571
DD		 2269 dma_pte_free_pagetable(domain, iov_pfn, end_pfn,
2270 largepage_lvl + 1);
6491d4d0 2271 } else {
6dd9a7c7 2272 pteval &= ~(uint64_t)DMA_PTE_LARGE_PAGE;
6491d4d0 2273 }
6dd9a7c7 2274
e1605495
DW		 2275 }
2276 /* We don't need lock here, nobody else
2277 * touches the iova range
2278 */
7766a3fb 2279 tmp = cmpxchg64_local(&pte->val, 0ULL, pteval);
c85994e4 2280 if (tmp) {
1bf20f0d 2281 static int dumps = 5;
9f10e5bf
JR		 2282 pr_crit("ERROR: DMA PTE for vPFN 0x%lx already set (to %llx not %llx)\n",
2283 iov_pfn, tmp, (unsigned long long)pteval);
1bf20f0d
DW		 2284 if (dumps) {
2285 dumps--;
2286 debug_dma_dump_mappings(NULL);
2287 }
2288 WARN_ON(1);
2289 }
6dd9a7c7
YS		 2290
2291 lvl_pages = lvl_to_nr_pages(largepage_lvl);
2292
2293 BUG_ON(nr_pages < lvl_pages);
2294 BUG_ON(sg_res < lvl_pages);
2295
2296 nr_pages -= lvl_pages;
2297 iov_pfn += lvl_pages;
2298 phys_pfn += lvl_pages;
2299 pteval += lvl_pages * VTD_PAGE_SIZE;
2300 sg_res -= lvl_pages;
2301
2302 /* If the next PTE would be the first in a new page, then we
2303 need to flush the cache on the entries we've just written.
2304 And then we'll need to recalculate 'pte', so clear it and
2305 let it get set again in the if (!pte) block above.
2306
2307 If we're done (!nr_pages) we need to flush the cache too.
2308
2309 Also if we've been setting superpages, we may need to
2310 recalculate 'pte' and switch back to smaller pages for the
2311 end of the mapping, if the trailing size is not enough to
2312 use another superpage (i.e. sg_res < lvl_pages). */
e1605495 2313 pte++;
6dd9a7c7
YS		 2314 if (!nr_pages || first_pte_in_page(pte) ||
2315 (largepage_lvl > 1 && sg_res < lvl_pages)) {
e1605495
DW		 2316 domain_flush_cache(domain, first_pte,
2317 (void *)pte - (void *)first_pte);
2318 pte = NULL;
2319 }
6dd9a7c7
YS		 2320
2321 if (!sg_res && nr_pages)
e1605495
DW		 2322 sg = sg_next(sg);
2323 }
2324 return 0;
2325}
2326
87684fd9
PX		 2327static int domain_mapping(struct dmar_domain *domain, unsigned long iov_pfn,
2328 struct scatterlist *sg, unsigned long phys_pfn,
2329 unsigned long nr_pages, int prot)
2330{
2331 int ret;
2332 struct intel_iommu *iommu;
2333
2334 /* Do the real mapping first */
2335 ret = __domain_mapping(domain, iov_pfn, sg, phys_pfn, nr_pages, prot);
2336 if (ret)
2337 return ret;
2338
2339 /* Notify about the new mapping */
2340 if (domain_type_is_vm(domain)) {
2341 /* VM typed domains can have more than one IOMMUs */
2342 int iommu_id;
2343 for_each_domain_iommu(iommu_id, domain) {
2344 iommu = g_iommus[iommu_id];
2345 __mapping_notify_one(iommu, domain, iov_pfn, nr_pages);
2346 }
2347 } else {
2348 /* General domains only have one IOMMU */
2349 iommu = domain_get_iommu(domain);
2350 __mapping_notify_one(iommu, domain, iov_pfn, nr_pages);
2351 }
2352
2353 return 0;
2354}
2355
9051aa02
DW		 2356static inline int domain_sg_mapping(struct dmar_domain *domain, unsigned long iov_pfn,
2357 struct scatterlist *sg, unsigned long nr_pages,
2358 int prot)
ba395927 2359{
87684fd9 2360 return domain_mapping(domain, iov_pfn, sg, 0, nr_pages, prot);
9051aa02 2361}
6f6a00e4 2362
9051aa02
DW		 2363static inline int domain_pfn_mapping(struct dmar_domain *domain, unsigned long iov_pfn,
2364 unsigned long phys_pfn, unsigned long nr_pages,
2365 int prot)
2366{
87684fd9 2367 return domain_mapping(domain, iov_pfn, NULL, phys_pfn, nr_pages, prot);
ba395927
KA		 2368}
2369
2452d9db 2370static void domain_context_clear_one(struct intel_iommu *iommu, u8 bus, u8 devfn)
ba395927 2371{
5082219b
FS		 2372 unsigned long flags;
2373 struct context_entry *context;
2374 u16 did_old;
2375
c7151a8d
WH		 2376 if (!iommu)
2377 return;
8c11e798 2378
5082219b
FS		 2379 spin_lock_irqsave(&iommu->lock, flags);
2380 context = iommu_context_addr(iommu, bus, devfn, 0);
2381 if (!context) {
2382 spin_unlock_irqrestore(&iommu->lock, flags);
2383 return;
2384 }
2385 did_old = context_domain_id(context);
2386 context_clear_entry(context);
2387 __iommu_flush_cache(iommu, context, sizeof(*context));
2388 spin_unlock_irqrestore(&iommu->lock, flags);
2389 iommu->flush.flush_context(iommu,
2390 did_old,
2391 (((u16)bus) << 8) | devfn,
2392 DMA_CCMD_MASK_NOBIT,
2393 DMA_CCMD_DEVICE_INVL);
2394 iommu->flush.flush_iotlb(iommu,
2395 did_old,
2396 0,
2397 0,
2398 DMA_TLB_DSI_FLUSH);
ba395927
KA		 2399}
2400
109b9b04
DW		 2401static inline void unlink_domain_info(struct device_domain_info *info)
2402{
2403 assert_spin_locked(&device_domain_lock);
2404 list_del(&info->link);
2405 list_del(&info->global);
2406 if (info->dev)
0bcb3e28 2407 info->dev->archdata.iommu = NULL;
109b9b04
DW		 2408}
2409
ba395927
KA		 2410static void domain_remove_dev_info(struct dmar_domain *domain)
2411{
3a74ca01 2412 struct device_domain_info *info, *tmp;
fb170fb4 2413 unsigned long flags;
ba395927
KA		 2414
2415 spin_lock_irqsave(&device_domain_lock, flags);
76f45fe3 2416 list_for_each_entry_safe(info, tmp, &domain->devices, link)
127c7615 2417 __dmar_remove_one_dev_info(info);
ba395927
KA		 2418 spin_unlock_irqrestore(&device_domain_lock, flags);
2419}
2420
2421/*
2422 * find_domain
1525a29a 2423 * Note: we use struct device->archdata.iommu stores the info
ba395927 2424 */
1525a29a 2425static struct dmar_domain *find_domain(struct device *dev)
ba395927
KA		 2426{
2427 struct device_domain_info *info;
2428
2429 /* No lock here, assumes no domain exit in normal case */
1525a29a 2430 info = dev->archdata.iommu;
b316d02a 2431 if (likely(info))
ba395927
KA		 2432 return info->domain;
2433 return NULL;
2434}
2435
5a8f40e8 2436static inline struct device_domain_info *
745f2586
JL		 2437dmar_search_domain_by_dev_info(int segment, int bus, int devfn)
2438{
2439 struct device_domain_info *info;
2440
2441 list_for_each_entry(info, &device_domain_list, global)
41e80dca 2442 if (info->iommu->segment == segment && info->bus == bus &&
745f2586 2443 info->devfn == devfn)
5a8f40e8 2444 return info;
745f2586
JL		 2445
2446 return NULL;
2447}
2448
5db31569
JR		 2449static struct dmar_domain *dmar_insert_one_dev_info(struct intel_iommu *iommu,
2450 int bus, int devfn,
2451 struct device *dev,
2452 struct dmar_domain *domain)
745f2586 2453{
5a8f40e8 2454 struct dmar_domain *found = NULL;
745f2586
JL		 2455 struct device_domain_info *info;
2456 unsigned long flags;
d160aca5 2457 int ret;
745f2586
JL		 2458
2459 info = alloc_devinfo_mem();
2460 if (!info)
b718cd3d 2461 return NULL;
745f2586 2462
745f2586
JL		 2463 info->bus = bus;
2464 info->devfn = devfn;
b16d0cb9
DW		 2465 info->ats_supported = info->pasid_supported = info->pri_supported = 0;
2466 info->ats_enabled = info->pasid_enabled = info->pri_enabled = 0;
2467 info->ats_qdep = 0;
745f2586
JL		 2468 info->dev = dev;
2469 info->domain = domain;
5a8f40e8 2470 info->iommu = iommu;
745f2586 2471
b16d0cb9
DW		 2472 if (dev && dev_is_pci(dev)) {
2473 struct pci_dev *pdev = to_pci_dev(info->dev);
2474
cef74409
GK		 2475 if (!pci_ats_disabled() &&
2476 ecap_dev_iotlb_support(iommu->ecap) &&
b16d0cb9
DW		 2477 pci_find_ext_capability(pdev, PCI_EXT_CAP_ID_ATS) &&
2478 dmar_find_matched_atsr_unit(pdev))
2479 info->ats_supported = 1;
2480
2481 if (ecs_enabled(iommu)) {
2482 if (pasid_enabled(iommu)) {
2483 int features = pci_pasid_features(pdev);
2484 if (features >= 0)
2485 info->pasid_supported = features | 1;
2486 }
2487
2488 if (info->ats_supported && ecap_prs(iommu->ecap) &&
2489 pci_find_ext_capability(pdev, PCI_EXT_CAP_ID_PRI))
2490 info->pri_supported = 1;
2491 }
2492 }
2493
745f2586
JL		 2494 spin_lock_irqsave(&device_domain_lock, flags);
2495 if (dev)
0bcb3e28 2496 found = find_domain(dev);
f303e507
JR		 2497
2498 if (!found) {
5a8f40e8 2499 struct device_domain_info *info2;
41e80dca 2500 info2 = dmar_search_domain_by_dev_info(iommu->segment, bus, devfn);
f303e507
JR		 2501 if (info2) {
2502 found = info2->domain;
2503 info2->dev = dev;
2504 }
5a8f40e8 2505 }
f303e507 2506
745f2586
JL		 2507 if (found) {
2508 spin_unlock_irqrestore(&device_domain_lock, flags);
2509 free_devinfo_mem(info);
b718cd3d
DW		 2510 /* Caller must free the original domain */
2511 return found;
745f2586
JL		 2512 }
2513
d160aca5
JR		 2514 spin_lock(&iommu->lock);
2515 ret = domain_attach_iommu(domain, iommu);
2516 spin_unlock(&iommu->lock);
2517
2518 if (ret) {
c6c2cebd 2519 spin_unlock_irqrestore(&device_domain_lock, flags);
499f3aa4 2520 free_devinfo_mem(info);
c6c2cebd
JR		 2521 return NULL;
2522 }
c6c2cebd 2523
b718cd3d
DW		 2524 list_add(&info->link, &domain->devices);
2525 list_add(&info->global, &device_domain_list);
2526 if (dev)
2527 dev->archdata.iommu = info;
2528 spin_unlock_irqrestore(&device_domain_lock, flags);
2529
cc4e2575
JR		 2530 if (dev && domain_context_mapping(domain, dev)) {
2531 pr_err("Domain context map for %s failed\n", dev_name(dev));
e6de0f8d 2532 dmar_remove_one_dev_info(domain, dev);
cc4e2575
JR		 2533 return NULL;
2534 }
2535
b718cd3d 2536 return domain;
745f2586
JL		 2537}
2538
579305f7
AW		 2539static int get_last_alias(struct pci_dev *pdev, u16 alias, void *opaque)
2540{
2541 *(u16 *)opaque = alias;
2542 return 0;
2543}
2544
76208356 2545static struct dmar_domain *find_or_alloc_domain(struct device *dev, int gaw)
ba395927 2546{
cc4e2575 2547 struct device_domain_info *info = NULL;
76208356 2548 struct dmar_domain *domain = NULL;
579305f7 2549 struct intel_iommu *iommu;
fcc35c63 2550 u16 dma_alias;
ba395927 2551 unsigned long flags;
aa4d066a 2552 u8 bus, devfn;
ba395927 2553
579305f7
AW		 2554 iommu = device_to_iommu(dev, &bus, &devfn);
2555 if (!iommu)
2556 return NULL;
2557
146922ec
DW		 2558 if (dev_is_pci(dev)) {
2559 struct pci_dev *pdev = to_pci_dev(dev);
276dbf99 2560
579305f7
AW		 2561 pci_for_each_dma_alias(pdev, get_last_alias, &dma_alias);
2562
2563 spin_lock_irqsave(&device_domain_lock, flags);
2564 info = dmar_search_domain_by_dev_info(pci_domain_nr(pdev->bus),
2565 PCI_BUS_NUM(dma_alias),
2566 dma_alias & 0xff);
2567 if (info) {
2568 iommu = info->iommu;
2569 domain = info->domain;
5a8f40e8 2570 }
579305f7 2571 spin_unlock_irqrestore(&device_domain_lock, flags);
ba395927 2572
76208356 2573 /* DMA alias already has a domain, use it */
579305f7 2574 if (info)
76208356 2575 goto out;
579305f7 2576 }
ba395927 2577
146922ec 2578 /* Allocate and initialize new domain for the device */
ab8dfe25 2579 domain = alloc_domain(0);
745f2586 2580 if (!domain)
579305f7 2581 return NULL;
dc534b25 2582 if (domain_init(domain, iommu, gaw)) {
579305f7
AW		 2583 domain_exit(domain);
2584 return NULL;
2c2e2c38 2585 }
ba395927 2586
76208356 2587out:
579305f7 2588
76208356
JR		 2589 return domain;
2590}
579305f7 2591
76208356
JR		 2592static struct dmar_domain *set_domain_for_dev(struct device *dev,
2593 struct dmar_domain *domain)
2594{
2595 struct intel_iommu *iommu;
2596 struct dmar_domain *tmp;
2597 u16 req_id, dma_alias;
2598 u8 bus, devfn;
2599
2600 iommu = device_to_iommu(dev, &bus, &devfn);
2601 if (!iommu)
2602 return NULL;
2603
2604 req_id = ((u16)bus << 8) | devfn;
2605
2606 if (dev_is_pci(dev)) {
2607 struct pci_dev *pdev = to_pci_dev(dev);
2608
2609 pci_for_each_dma_alias(pdev, get_last_alias, &dma_alias);
2610
2611 /* register PCI DMA alias device */
2612 if (req_id != dma_alias) {
2613 tmp = dmar_insert_one_dev_info(iommu, PCI_BUS_NUM(dma_alias),
2614 dma_alias & 0xff, NULL, domain);
2615
2616 if (!tmp || tmp != domain)
2617 return tmp;
2618 }
ba395927
KA		 2619 }
2620
5db31569 2621 tmp = dmar_insert_one_dev_info(iommu, bus, devfn, dev, domain);
76208356
JR		 2622 if (!tmp || tmp != domain)
2623 return tmp;
2624
2625 return domain;
2626}
579305f7 2627
76208356
JR		 2628static struct dmar_domain *get_domain_for_dev(struct device *dev, int gaw)
2629{
2630 struct dmar_domain *domain, *tmp;
2631
2632 domain = find_domain(dev);
2633 if (domain)
2634 goto out;
2635
2636 domain = find_or_alloc_domain(dev, gaw);
2637 if (!domain)
2638 goto out;
2639
2640 tmp = set_domain_for_dev(dev, domain);
2641 if (!tmp || domain != tmp) {
579305f7
AW		 2642 domain_exit(domain);
2643 domain = tmp;
2644 }
b718cd3d 2645
76208356
JR		 2646out:
2647
b718cd3d 2648 return domain;
ba395927
KA		 2649}
2650
b213203e
DW		 2651static int iommu_domain_identity_map(struct dmar_domain *domain,
2652 unsigned long long start,
2653 unsigned long long end)
ba395927 2654{
c5395d5c
DW		 2655 unsigned long first_vpfn = start >> VTD_PAGE_SHIFT;
2656 unsigned long last_vpfn = end >> VTD_PAGE_SHIFT;
2657
2658 if (!reserve_iova(&domain->iovad, dma_to_mm_pfn(first_vpfn),
2659 dma_to_mm_pfn(last_vpfn))) {
9f10e5bf 2660 pr_err("Reserving iova failed\n");
b213203e 2661 return -ENOMEM;
ba395927
KA		 2662 }
2663
af1089ce 2664 pr_debug("Mapping reserved region %llx-%llx\n", start, end);
ba395927
KA		 2665 /*
2666 * RMRR range might have overlap with physical memory range,
2667 * clear it first
2668 */
c5395d5c 2669 dma_pte_clear_range(domain, first_vpfn, last_vpfn);
ba395927 2670
87684fd9
PX		 2671 return __domain_mapping(domain, first_vpfn, NULL,
2672 first_vpfn, last_vpfn - first_vpfn + 1,
2673 DMA_PTE_READ|DMA_PTE_WRITE);
b213203e
DW		 2674}
2675
d66ce54b
JR		 2676static int domain_prepare_identity_map(struct device *dev,
2677 struct dmar_domain *domain,
2678 unsigned long long start,
2679 unsigned long long end)
b213203e 2680{
19943b0e
DW		 2681 /* For _hardware_ passthrough, don't bother. But for software
2682 passthrough, we do it anyway -- it may indicate a memory
2683 range which is reserved in E820, so which didn't get set
2684 up to start with in si_domain */
2685 if (domain == si_domain && hw_pass_through) {
9f10e5bf
JR		 2686 pr_warn("Ignoring identity map for HW passthrough device %s [0x%Lx - 0x%Lx]\n",
2687 dev_name(dev), start, end);
19943b0e
DW		 2688 return 0;
2689 }
2690
9f10e5bf
JR		 2691 pr_info("Setting identity map for device %s [0x%Lx - 0x%Lx]\n",
2692 dev_name(dev), start, end);
2693
5595b528
DW		 2694 if (end < start) {
2695 WARN(1, "Your BIOS is broken; RMRR ends before it starts!\n"
2696 "BIOS vendor: %s; Ver: %s; Product Version: %s\n",
2697 dmi_get_system_info(DMI_BIOS_VENDOR),
2698 dmi_get_system_info(DMI_BIOS_VERSION),
2699 dmi_get_system_info(DMI_PRODUCT_VERSION));
d66ce54b 2700 return -EIO;
5595b528
DW		 2701 }
2702
2ff729f5
DW		 2703 if (end >> agaw_to_width(domain->agaw)) {
2704 WARN(1, "Your BIOS is broken; RMRR exceeds permitted address width (%d bits)\n"
2705 "BIOS vendor: %s; Ver: %s; Product Version: %s\n",
2706 agaw_to_width(domain->agaw),
2707 dmi_get_system_info(DMI_BIOS_VENDOR),
2708 dmi_get_system_info(DMI_BIOS_VERSION),
2709 dmi_get_system_info(DMI_PRODUCT_VERSION));
d66ce54b 2710 return -EIO;
2ff729f5 2711 }
19943b0e 2712
d66ce54b
JR		 2713 return iommu_domain_identity_map(domain, start, end);
2714}
ba395927 2715
d66ce54b
JR		 2716static int iommu_prepare_identity_map(struct device *dev,
2717 unsigned long long start,
2718 unsigned long long end)
2719{
2720 struct dmar_domain *domain;
2721 int ret;
2722
2723 domain = get_domain_for_dev(dev, DEFAULT_DOMAIN_ADDRESS_WIDTH);
2724 if (!domain)
2725 return -ENOMEM;
2726
2727 ret = domain_prepare_identity_map(dev, domain, start, end);
2728 if (ret)
2729 domain_exit(domain);
b213203e 2730
ba395927 2731 return ret;
ba395927
KA		 2732}
2733
2734static inline int iommu_prepare_rmrr_dev(struct dmar_rmrr_unit *rmrr,
0b9d9753 2735 struct device *dev)
ba395927 2736{
0b9d9753 2737 if (dev->archdata.iommu == DUMMY_DEVICE_DOMAIN_INFO)
ba395927 2738 return 0;
0b9d9753
DW		 2739 return iommu_prepare_identity_map(dev, rmrr->base_address,
2740 rmrr->end_address);
ba395927
KA		 2741}
2742
d3f13810 2743#ifdef CONFIG_INTEL_IOMMU_FLOPPY_WA
49a0429e
KA		 2744static inline void iommu_prepare_isa(void)
2745{
2746 struct pci_dev *pdev;
2747 int ret;
2748
2749 pdev = pci_get_class(PCI_CLASS_BRIDGE_ISA << 8, NULL);
2750 if (!pdev)
2751 return;
2752
9f10e5bf 2753 pr_info("Prepare 0-16MiB unity mapping for LPC\n");
0b9d9753 2754 ret = iommu_prepare_identity_map(&pdev->dev, 0, 16*1024*1024 - 1);
49a0429e
KA		 2755
2756 if (ret)
9f10e5bf 2757 pr_err("Failed to create 0-16MiB identity map - floppy might not work\n");
49a0429e 2758
9b27e82d 2759 pci_dev_put(pdev);
49a0429e
KA		 2760}
2761#else
2762static inline void iommu_prepare_isa(void)
2763{
2764 return;
2765}
d3f13810 2766#endif /* !CONFIG_INTEL_IOMMU_FLPY_WA */
49a0429e 2767
2c2e2c38 2768static int md_domain_init(struct dmar_domain *domain, int guest_width);
c7ab48d2 2769
071e1374 2770static int __init si_domain_init(int hw)
2c2e2c38 2771{
c7ab48d2 2772 int nid, ret = 0;
2c2e2c38 2773
ab8dfe25 2774 si_domain = alloc_domain(DOMAIN_FLAG_STATIC_IDENTITY);
2c2e2c38
FY		 2775 if (!si_domain)
2776 return -EFAULT;
2777
2c2e2c38
FY		 2778 if (md_domain_init(si_domain, DEFAULT_DOMAIN_ADDRESS_WIDTH)) {
2779 domain_exit(si_domain);
2780 return -EFAULT;
2781 }
2782
0dc79715 2783 pr_debug("Identity mapping domain allocated\n");
2c2e2c38 2784
19943b0e
DW		 2785 if (hw)
2786 return 0;
2787
c7ab48d2 2788 for_each_online_node(nid) {
5dfe8660
TH		 2789 unsigned long start_pfn, end_pfn;
2790 int i;
2791
2792 for_each_mem_pfn_range(i, nid, &start_pfn, &end_pfn, NULL) {
2793 ret = iommu_domain_identity_map(si_domain,
2794 PFN_PHYS(start_pfn), PFN_PHYS(end_pfn));
2795 if (ret)
2796 return ret;
2797 }
c7ab48d2
DW		 2798 }
2799
2c2e2c38
FY		 2800 return 0;
2801}
2802
9b226624 2803static int identity_mapping(struct device *dev)
2c2e2c38
FY		 2804{
2805 struct device_domain_info *info;
2806
2807 if (likely(!iommu_identity_mapping))
2808 return 0;
2809
9b226624 2810 info = dev->archdata.iommu;
cb452a40
MT		 2811 if (info && info != DUMMY_DEVICE_DOMAIN_INFO)
2812 return (info->domain == si_domain);
2c2e2c38 2813
2c2e2c38
FY		 2814 return 0;
2815}
2816
28ccce0d 2817static int domain_add_dev_info(struct dmar_domain *domain, struct device *dev)
2c2e2c38 2818{
0ac72664 2819 struct dmar_domain *ndomain;
5a8f40e8 2820 struct intel_iommu *iommu;
156baca8 2821 u8 bus, devfn;
2c2e2c38 2822
5913c9bf 2823 iommu = device_to_iommu(dev, &bus, &devfn);
5a8f40e8
DW		 2824 if (!iommu)
2825 return -ENODEV;
2826
5db31569 2827 ndomain = dmar_insert_one_dev_info(iommu, bus, devfn, dev, domain);
0ac72664
DW		 2828 if (ndomain != domain)
2829 return -EBUSY;
2c2e2c38
FY		 2830
2831 return 0;
2832}
2833
0b9d9753 2834static bool device_has_rmrr(struct device *dev)
ea2447f7
TM		 2835{
2836 struct dmar_rmrr_unit *rmrr;
832bd858 2837 struct device *tmp;
ea2447f7
TM		 2838 int i;
2839
0e242612 2840 rcu_read_lock();
ea2447f7 2841 for_each_rmrr_units(rmrr) {
b683b230
JL		 2842 /*
2843 * Return TRUE if this RMRR contains the device that
2844 * is passed in.
2845 */
2846 for_each_active_dev_scope(rmrr->devices,
2847 rmrr->devices_cnt, i, tmp)
0b9d9753 2848 if (tmp == dev) {
0e242612 2849 rcu_read_unlock();
ea2447f7 2850 return true;
b683b230 2851 }
ea2447f7 2852 }
0e242612 2853 rcu_read_unlock();
ea2447f7
TM		 2854 return false;
2855}
2856
c875d2c1
AW		 2857/*
2858 * There are a couple cases where we need to restrict the functionality of
2859 * devices associated with RMRRs. The first is when evaluating a device for
2860 * identity mapping because problems exist when devices are moved in and out
2861 * of domains and their respective RMRR information is lost. This means that
2862 * a device with associated RMRRs will never be in a "passthrough" domain.
2863 * The second is use of the device through the IOMMU API. This interface
2864 * expects to have full control of the IOVA space for the device. We cannot
2865 * satisfy both the requirement that RMRR access is maintained and have an
2866 * unencumbered IOVA space. We also have no ability to quiesce the device's
2867 * use of the RMRR space or even inform the IOMMU API user of the restriction.
2868 * We therefore prevent devices associated with an RMRR from participating in
2869 * the IOMMU API, which eliminates them from device assignment.
2870 *
2871 * In both cases we assume that PCI USB devices with RMRRs have them largely
2872 * for historical reasons and that the RMRR space is not actively used post
2873 * boot. This exclusion may change if vendors begin to abuse it.
18436afd
DW		 2874 *
2875 * The same exception is made for graphics devices, with the requirement that
2876 * any use of the RMRR regions will be torn down before assigning the device
2877 * to a guest.
c875d2c1
AW		 2878 */
2879static bool device_is_rmrr_locked(struct device *dev)
2880{
2881 if (!device_has_rmrr(dev))
2882 return false;
2883
2884 if (dev_is_pci(dev)) {
2885 struct pci_dev *pdev = to_pci_dev(dev);
2886
18436afd 2887 if (IS_USB_DEVICE(pdev) || IS_GFX_DEVICE(pdev))
c875d2c1
AW		 2888 return false;
2889 }
2890
2891 return true;
2892}
2893
3bdb2591 2894static int iommu_should_identity_map(struct device *dev, int startup)
6941af28 2895{
ea2447f7 2896
3bdb2591
DW		 2897 if (dev_is_pci(dev)) {
2898 struct pci_dev *pdev = to_pci_dev(dev);
ea2447f7 2899
c875d2c1 2900 if (device_is_rmrr_locked(dev))
3bdb2591 2901 return 0;
e0fc7e0b 2902
3bdb2591
DW		 2903 if ((iommu_identity_mapping & IDENTMAP_AZALIA) && IS_AZALIA(pdev))
2904 return 1;
e0fc7e0b 2905
3bdb2591
DW		 2906 if ((iommu_identity_mapping & IDENTMAP_GFX) && IS_GFX_DEVICE(pdev))
2907 return 1;
6941af28 2908
3bdb2591 2909 if (!(iommu_identity_mapping & IDENTMAP_ALL))
3dfc813d 2910 return 0;
3bdb2591
DW		 2911
2912 /*
2913 * We want to start off with all devices in the 1:1 domain, and
2914 * take them out later if we find they can't access all of memory.
2915 *
2916 * However, we can't do this for PCI devices behind bridges,
2917 * because all PCI devices behind the same bridge will end up
2918 * with the same source-id on their transactions.
2919 *
2920 * Practically speaking, we can't change things around for these
2921 * devices at run-time, because we can't be sure there'll be no
2922 * DMA transactions in flight for any of their siblings.
2923 *
2924 * So PCI devices (unless they're on the root bus) as well as
2925 * their parent PCI-PCI or PCIe-PCI bridges must be left _out_ of
2926 * the 1:1 domain, just in _case_ one of their siblings turns out
2927 * not to be able to map all of memory.
2928 */
2929 if (!pci_is_pcie(pdev)) {
2930 if (!pci_is_root_bus(pdev->bus))
2931 return 0;
2932 if (pdev->class >> 8 == PCI_CLASS_BRIDGE_PCI)
2933 return 0;
2934 } else if (pci_pcie_type(pdev) == PCI_EXP_TYPE_PCI_BRIDGE)
3dfc813d 2935 return 0;
3bdb2591
DW		 2936 } else {
2937 if (device_has_rmrr(dev))
2938 return 0;
2939 }
3dfc813d 2940
3bdb2591 2941 /*
3dfc813d 2942 * At boot time, we don't yet know if devices will be 64-bit capable.
3bdb2591 2943 * Assume that they will — if they turn out not to be, then we can
3dfc813d
DW		 2944 * take them out of the 1:1 domain later.
2945 */
8fcc5372
CW		 2946 if (!startup) {
2947 /*
2948 * If the device's dma_mask is less than the system's memory
2949 * size then this is not a candidate for identity mapping.
2950 */
3bdb2591 2951 u64 dma_mask = *dev->dma_mask;
8fcc5372 2952
3bdb2591
DW		 2953 if (dev->coherent_dma_mask &&
2954 dev->coherent_dma_mask < dma_mask)
2955 dma_mask = dev->coherent_dma_mask;
8fcc5372 2956
3bdb2591 2957 return dma_mask >= dma_get_required_mask(dev);
8fcc5372 2958 }
6941af28
DW		 2959
2960 return 1;
2961}
2962
cf04eee8
DW		 2963static int __init dev_prepare_static_identity_mapping(struct device *dev, int hw)
2964{
2965 int ret;
2966
2967 if (!iommu_should_identity_map(dev, 1))
2968 return 0;
2969
28ccce0d 2970 ret = domain_add_dev_info(si_domain, dev);
cf04eee8 2971 if (!ret)
9f10e5bf
JR		 2972 pr_info("%s identity mapping for device %s\n",
2973 hw ? "Hardware" : "Software", dev_name(dev));
cf04eee8
DW		 2974 else if (ret == -ENODEV)
2975 /* device not associated with an iommu */
2976 ret = 0;
2977
2978 return ret;
2979}
2980
2981
071e1374 2982static int __init iommu_prepare_static_identity_mapping(int hw)
2c2e2c38 2983{
2c2e2c38 2984 struct pci_dev *pdev = NULL;
cf04eee8
DW		 2985 struct dmar_drhd_unit *drhd;
2986 struct intel_iommu *iommu;
2987 struct device *dev;
2988 int i;
2989 int ret = 0;
2c2e2c38 2990
2c2e2c38 2991 for_each_pci_dev(pdev) {
cf04eee8
DW		 2992 ret = dev_prepare_static_identity_mapping(&pdev->dev, hw);
2993 if (ret)
2994 return ret;
2995 }
2996
2997 for_each_active_iommu(iommu, drhd)
2998 for_each_active_dev_scope(drhd->devices, drhd->devices_cnt, i, dev) {
2999 struct acpi_device_physical_node *pn;
3000 struct acpi_device *adev;
3001
3002 if (dev->bus != &acpi_bus_type)
3003 continue;
86080ccc 3004
cf04eee8
DW		 3005 adev= to_acpi_device(dev);
3006 mutex_lock(&adev->physical_node_lock);
3007 list_for_each_entry(pn, &adev->physical_node_list, node) {
3008 ret = dev_prepare_static_identity_mapping(pn->dev, hw);
3009 if (ret)
3010 break;
eae460b6 3011 }
cf04eee8
DW		 3012 mutex_unlock(&adev->physical_node_lock);
3013 if (ret)
3014 return ret;
62edf5dc 3015 }
2c2e2c38
FY		 3016
3017 return 0;
3018}
3019
ffebeb46
JL		 3020static void intel_iommu_init_qi(struct intel_iommu *iommu)
3021{
3022 /*
3023 * Start from the sane iommu hardware state.
3024 * If the queued invalidation is already initialized by us
3025 * (for example, while enabling interrupt-remapping) then
3026 * we got the things already rolling from a sane state.
3027 */
3028 if (!iommu->qi) {
3029 /*
3030 * Clear any previous faults.
3031 */
3032 dmar_fault(-1, iommu);
3033 /*
3034 * Disable queued invalidation if supported and already enabled
3035 * before OS handover.
3036 */
3037 dmar_disable_qi(iommu);
3038 }
3039
3040 if (dmar_enable_qi(iommu)) {
3041 /*
3042 * Queued Invalidate not enabled, use Register Based Invalidate
3043 */
3044 iommu->flush.flush_context = __iommu_flush_context;
3045 iommu->flush.flush_iotlb = __iommu_flush_iotlb;
9f10e5bf 3046 pr_info("%s: Using Register based invalidation\n",
ffebeb46
JL		 3047 iommu->name);
3048 } else {
3049 iommu->flush.flush_context = qi_flush_context;
3050 iommu->flush.flush_iotlb = qi_flush_iotlb;
9f10e5bf 3051 pr_info("%s: Using Queued invalidation\n", iommu->name);
ffebeb46
JL		 3052 }
3053}
3054
091d42e4 3055static int copy_context_table(struct intel_iommu *iommu,
dfddb969 3056 struct root_entry *old_re,
091d42e4
JR		 3057 struct context_entry **tbl,
3058 int bus, bool ext)
3059{
dbcd861f 3060 int tbl_idx, pos = 0, idx, devfn, ret = 0, did;
543c8dcf 3061 struct context_entry *new_ce = NULL, ce;
dfddb969 3062 struct context_entry *old_ce = NULL;
543c8dcf 3063 struct root_entry re;
091d42e4
JR		 3064 phys_addr_t old_ce_phys;
3065
3066 tbl_idx = ext ? bus * 2 : bus;
dfddb969 3067 memcpy(&re, old_re, sizeof(re));
091d42e4
JR		 3068
3069 for (devfn = 0; devfn < 256; devfn++) {
3070 /* First calculate the correct index */
3071 idx = (ext ? devfn * 2 : devfn) % 256;
3072
3073 if (idx == 0) {
3074 /* First save what we may have and clean up */
3075 if (new_ce) {
3076 tbl[tbl_idx] = new_ce;
3077 __iommu_flush_cache(iommu, new_ce,
3078 VTD_PAGE_SIZE);
3079 pos = 1;
3080 }
3081
3082 if (old_ce)
3083 iounmap(old_ce);
3084
3085 ret = 0;
3086 if (devfn < 0x80)
543c8dcf 3087 old_ce_phys = root_entry_lctp(&re);
091d42e4 3088 else
543c8dcf 3089 old_ce_phys = root_entry_uctp(&re);
091d42e4
JR		 3090
3091 if (!old_ce_phys) {
3092 if (ext && devfn == 0) {
3093 /* No LCTP, try UCTP */
3094 devfn = 0x7f;
3095 continue;
3096 } else {
3097 goto out;
3098 }
3099 }
3100
3101 ret = -ENOMEM;
dfddb969
DW		 3102 old_ce = memremap(old_ce_phys, PAGE_SIZE,
3103 MEMREMAP_WB);
091d42e4
JR		 3104 if (!old_ce)
3105 goto out;
3106
3107 new_ce = alloc_pgtable_page(iommu->node);
3108 if (!new_ce)
3109 goto out_unmap;
3110
3111 ret = 0;
3112 }
3113
3114 /* Now copy the context entry */
dfddb969 3115 memcpy(&ce, old_ce + idx, sizeof(ce));
091d42e4 3116
cf484d0e 3117 if (!__context_present(&ce))
091d42e4
JR		 3118 continue;
3119
dbcd861f
JR		 3120 did = context_domain_id(&ce);
3121 if (did >= 0 && did < cap_ndoms(iommu->cap))
3122 set_bit(did, iommu->domain_ids);
3123
cf484d0e
JR		 3124 /*
3125 * We need a marker for copied context entries. This
3126 * marker needs to work for the old format as well as
3127 * for extended context entries.
3128 *
3129 * Bit 67 of the context entry is used. In the old
3130 * format this bit is available to software, in the
3131 * extended format it is the PGE bit, but PGE is ignored
3132 * by HW if PASIDs are disabled (and thus still
3133 * available).
3134 *
3135 * So disable PASIDs first and then mark the entry
3136 * copied. This means that we don't copy PASID
3137 * translations from the old kernel, but this is fine as
3138 * faults there are not fatal.
3139 */
3140 context_clear_pasid_enable(&ce);
3141 context_set_copied(&ce);
3142
091d42e4
JR		 3143 new_ce[idx] = ce;
3144 }
3145
3146 tbl[tbl_idx + pos] = new_ce;
3147
3148 __iommu_flush_cache(iommu, new_ce, VTD_PAGE_SIZE);
3149
3150out_unmap:
dfddb969 3151 memunmap(old_ce);
091d42e4
JR		 3152
3153out:
3154 return ret;
3155}
3156
3157static int copy_translation_tables(struct intel_iommu *iommu)
3158{
3159 struct context_entry **ctxt_tbls;
dfddb969 3160 struct root_entry *old_rt;
091d42e4
JR		 3161 phys_addr_t old_rt_phys;
3162 int ctxt_table_entries;
3163 unsigned long flags;
3164 u64 rtaddr_reg;
3165 int bus, ret;
c3361f2f 3166 bool new_ext, ext;
091d42e4
JR		 3167
3168 rtaddr_reg = dmar_readq(iommu->reg + DMAR_RTADDR_REG);
3169 ext = !!(rtaddr_reg & DMA_RTADDR_RTT);
c3361f2f
JR		 3170 new_ext = !!ecap_ecs(iommu->ecap);
3171
3172 /*
3173 * The RTT bit can only be changed when translation is disabled,
3174 * but disabling translation means to open a window for data
3175 * corruption. So bail out and don't copy anything if we would
3176 * have to change the bit.
3177 */
3178 if (new_ext != ext)
3179 return -EINVAL;
091d42e4
JR		 3180
3181 old_rt_phys = rtaddr_reg & VTD_PAGE_MASK;
3182 if (!old_rt_phys)
3183 return -EINVAL;
3184
dfddb969 3185 old_rt = memremap(old_rt_phys, PAGE_SIZE, MEMREMAP_WB);
091d42e4
JR		 3186 if (!old_rt)
3187 return -ENOMEM;
3188
3189 /* This is too big for the stack - allocate it from slab */
3190 ctxt_table_entries = ext ? 512 : 256;
3191 ret = -ENOMEM;
3192 ctxt_tbls = kzalloc(ctxt_table_entries * sizeof(void *), GFP_KERNEL);
3193 if (!ctxt_tbls)
3194 goto out_unmap;
3195
3196 for (bus = 0; bus < 256; bus++) {
3197 ret = copy_context_table(iommu, &old_rt[bus],
3198 ctxt_tbls, bus, ext);
3199 if (ret) {
3200 pr_err("%s: Failed to copy context table for bus %d\n",
3201 iommu->name, bus);
3202 continue;
3203 }
3204 }
3205
3206 spin_lock_irqsave(&iommu->lock, flags);
3207
3208 /* Context tables are copied, now write them to the root_entry table */
3209 for (bus = 0; bus < 256; bus++) {
3210 int idx = ext ? bus * 2 : bus;
3211 u64 val;
3212
3213 if (ctxt_tbls[idx]) {
3214 val = virt_to_phys(ctxt_tbls[idx]) | 1;
3215 iommu->root_entry[bus].lo = val;
3216 }
3217
3218 if (!ext || !ctxt_tbls[idx + 1])
3219 continue;
3220
3221 val = virt_to_phys(ctxt_tbls[idx + 1]) | 1;
3222 iommu->root_entry[bus].hi = val;
3223 }
3224
3225 spin_unlock_irqrestore(&iommu->lock, flags);
3226
3227 kfree(ctxt_tbls);
3228
3229 __iommu_flush_cache(iommu, iommu->root_entry, PAGE_SIZE);
3230
3231 ret = 0;
3232
3233out_unmap:
dfddb969 3234 memunmap(old_rt);
091d42e4
JR		 3235
3236 return ret;
3237}
3238
b779260b 3239static int __init init_dmars(void)
ba395927
KA		 3240{
3241 struct dmar_drhd_unit *drhd;
3242 struct dmar_rmrr_unit *rmrr;
a87f4918 3243 bool copied_tables = false;
832bd858 3244 struct device *dev;
ba395927 3245 struct intel_iommu *iommu;
13cf0174 3246 int i, ret;
2c2e2c38 3247
ba395927
KA		 3248 /*
3249 * for each drhd
3250 * allocate root
3251 * initialize and program root entry to not present
3252 * endfor
3253 */
3254 for_each_drhd_unit(drhd) {
5e0d2a6f 3255 /*
3256 * lock not needed as this is only incremented in the single
3257 * threaded kernel __init code path all other access are read
3258 * only
3259 */
78d8e704 3260 if (g_num_of_iommus < DMAR_UNITS_SUPPORTED) {
1b198bb0
MT		 3261 g_num_of_iommus++;
3262 continue;
3263 }
9f10e5bf 3264 pr_err_once("Exceeded %d IOMMUs\n", DMAR_UNITS_SUPPORTED);
5e0d2a6f 3265 }
3266
ffebeb46
JL		 3267 /* Preallocate enough resources for IOMMU hot-addition */
3268 if (g_num_of_iommus < DMAR_UNITS_SUPPORTED)
3269 g_num_of_iommus = DMAR_UNITS_SUPPORTED;
3270
d9630fe9
WH		 3271 g_iommus = kcalloc(g_num_of_iommus, sizeof(struct intel_iommu *),
3272 GFP_KERNEL);
3273 if (!g_iommus) {
9f10e5bf 3274 pr_err("Allocating global iommu array failed\n");
d9630fe9
WH		 3275 ret = -ENOMEM;
3276 goto error;
3277 }
3278
7c919779 3279 for_each_active_iommu(iommu, drhd) {
d9630fe9 3280 g_iommus[iommu->seq_id] = iommu;
ba395927 3281
b63d80d1
JR		 3282 intel_iommu_init_qi(iommu);
3283
e61d98d8
SS		 3284 ret = iommu_init_domains(iommu);
3285 if (ret)
989d51fc 3286 goto free_iommu;
e61d98d8 3287
4158c2ec
JR		 3288 init_translation_status(iommu);
3289
091d42e4
JR		 3290 if (translation_pre_enabled(iommu) && !is_kdump_kernel()) {
3291 iommu_disable_translation(iommu);
3292 clear_translation_pre_enabled(iommu);
3293 pr_warn("Translation was enabled for %s but we are not in kdump mode\n",
3294 iommu->name);
3295 }
4158c2ec 3296
ba395927
KA		 3297 /*
3298 * TBD:
3299 * we could share the same root & context tables
25985edc 3300 * among all IOMMU's. Need to Split it later.
ba395927
KA		 3301 */
3302 ret = iommu_alloc_root_entry(iommu);
ffebeb46 3303 if (ret)
989d51fc 3304 goto free_iommu;
5f0a7f76 3305
091d42e4
JR		 3306 if (translation_pre_enabled(iommu)) {
3307 pr_info("Translation already enabled - trying to copy translation structures\n");
3308
3309 ret = copy_translation_tables(iommu);
3310 if (ret) {
3311 /*
3312 * We found the IOMMU with translation
3313 * enabled - but failed to copy over the
3314 * old root-entry table. Try to proceed
3315 * by disabling translation now and
3316 * allocating a clean root-entry table.
3317 * This might cause DMAR faults, but
3318 * probably the dump will still succeed.
3319 */
3320 pr_err("Failed to copy translation tables from previous kernel for %s\n",
3321 iommu->name);
3322 iommu_disable_translation(iommu);
3323 clear_translation_pre_enabled(iommu);
3324 } else {
3325 pr_info("Copied translation tables from previous kernel for %s\n",
3326 iommu->name);
a87f4918 3327 copied_tables = true;
091d42e4
JR		 3328 }
3329 }
3330
4ed0d3e6 3331 if (!ecap_pass_through(iommu->ecap))
19943b0e 3332 hw_pass_through = 0;
8a94ade4
DW		 3333#ifdef CONFIG_INTEL_IOMMU_SVM
3334 if (pasid_enabled(iommu))
3335 intel_svm_alloc_pasid_tables(iommu);
3336#endif
ba395927
KA		 3337 }
3338
a4c34ff1
JR		 3339 /*
3340 * Now that qi is enabled on all iommus, set the root entry and flush
3341 * caches. This is required on some Intel X58 chipsets, otherwise the
3342 * flush_context function will loop forever and the boot hangs.
3343 */
3344 for_each_active_iommu(iommu, drhd) {
3345 iommu_flush_write_buffer(iommu);
3346 iommu_set_root_entry(iommu);
3347 iommu->flush.flush_context(iommu, 0, 0, 0, DMA_CCMD_GLOBAL_INVL);
3348 iommu->flush.flush_iotlb(iommu, 0, 0, 0, DMA_TLB_GLOBAL_FLUSH);
3349 }
3350
19943b0e 3351 if (iommu_pass_through)
e0fc7e0b
DW		 3352 iommu_identity_mapping |= IDENTMAP_ALL;
3353
d3f13810 3354#ifdef CONFIG_INTEL_IOMMU_BROKEN_GFX_WA
e0fc7e0b 3355 iommu_identity_mapping |= IDENTMAP_GFX;
19943b0e 3356#endif
e0fc7e0b 3357
21e722c4
AR		 3358 check_tylersburg_isoch();
3359
86080ccc
JR		 3360 if (iommu_identity_mapping) {
3361 ret = si_domain_init(hw_pass_through);
3362 if (ret)
3363 goto free_iommu;
3364 }
3365
e0fc7e0b 3366
a87f4918
JR		 3367 /*
3368 * If we copied translations from a previous kernel in the kdump
3369 * case, we can not assign the devices to domains now, as that
3370 * would eliminate the old mappings. So skip this part and defer
3371 * the assignment to device driver initialization time.
3372 */
3373 if (copied_tables)
3374 goto domains_done;
3375
ba395927 3376 /*
19943b0e
DW		 3377 * If pass through is not set or not enabled, setup context entries for
3378 * identity mappings for rmrr, gfx, and isa and may fall back to static
3379 * identity mapping if iommu_identity_mapping is set.
ba395927 3380 */
19943b0e
DW		 3381 if (iommu_identity_mapping) {
3382 ret = iommu_prepare_static_identity_mapping(hw_pass_through);
4ed0d3e6 3383 if (ret) {
9f10e5bf 3384 pr_crit("Failed to setup IOMMU pass-through\n");
989d51fc 3385 goto free_iommu;
ba395927
KA		 3386 }
3387 }
ba395927 3388 /*
19943b0e
DW		 3389 * For each rmrr
3390 * for each dev attached to rmrr
3391 * do
3392 * locate drhd for dev, alloc domain for dev
3393 * allocate free domain
3394 * allocate page table entries for rmrr
3395 * if context not allocated for bus
3396 * allocate and init context
3397 * set present in root table for this bus
3398 * init context with domain, translation etc
3399 * endfor
3400 * endfor
ba395927 3401 */
9f10e5bf 3402 pr_info("Setting RMRR:\n");
19943b0e 3403 for_each_rmrr_units(rmrr) {
b683b230
JL		 3404 /* some BIOS lists non-exist devices in DMAR table. */
3405 for_each_active_dev_scope(rmrr->devices, rmrr->devices_cnt,
832bd858 3406 i, dev) {
0b9d9753 3407 ret = iommu_prepare_rmrr_dev(rmrr, dev);
19943b0e 3408 if (ret)
9f10e5bf 3409 pr_err("Mapping reserved region failed\n");
ba395927 3410 }
4ed0d3e6 3411 }
49a0429e 3412
19943b0e
DW		 3413 iommu_prepare_isa();
3414
a87f4918
JR		 3415domains_done:
3416
ba395927
KA		 3417 /*
3418 * for each drhd
3419 * enable fault log
3420 * global invalidate context cache
3421 * global invalidate iotlb
3422 * enable translation
3423 */
7c919779 3424 for_each_iommu(iommu, drhd) {
51a63e67
JC		 3425 if (drhd->ignored) {
3426 /*
3427 * we always have to disable PMRs or DMA may fail on
3428 * this device
3429 */
3430 if (force_on)
7c919779 3431 iommu_disable_protect_mem_regions(iommu);
ba395927 3432 continue;
51a63e67 3433 }
ba395927
KA		 3434
3435 iommu_flush_write_buffer(iommu);
3436
a222a7f0
DW		 3437#ifdef CONFIG_INTEL_IOMMU_SVM
3438 if (pasid_enabled(iommu) && ecap_prs(iommu->ecap)) {
3439 ret = intel_svm_enable_prq(iommu);
3440 if (ret)
3441 goto free_iommu;
3442 }
3443#endif
3460a6d9
KA		 3444 ret = dmar_set_interrupt(iommu);
3445 if (ret)
989d51fc 3446 goto free_iommu;
3460a6d9 3447
8939ddf6
JR		 3448 if (!translation_pre_enabled(iommu))
3449 iommu_enable_translation(iommu);
3450
b94996c9 3451 iommu_disable_protect_mem_regions(iommu);
ba395927
KA		 3452 }
3453
3454 return 0;
989d51fc
JL		 3455
3456free_iommu:
ffebeb46
JL		 3457 for_each_active_iommu(iommu, drhd) {
3458 disable_dmar_iommu(iommu);
a868e6b7 3459 free_dmar_iommu(iommu);
ffebeb46 3460 }
13cf0174 3461
d9630fe9 3462 kfree(g_iommus);
13cf0174 3463
989d51fc 3464error:
ba395927
KA		 3465 return ret;
3466}
3467
5a5e02a6 3468/* This takes a number of _MM_ pages, not VTD pages */
2aac6304 3469static unsigned long intel_alloc_iova(struct device *dev,
875764de
DW		 3470 struct dmar_domain *domain,
3471 unsigned long nrpages, uint64_t dma_mask)
ba395927 3472{
22e2f9fa 3473 unsigned long iova_pfn = 0;
ba395927 3474
875764de
DW		 3475 /* Restrict dma_mask to the width that the iommu can handle */
3476 dma_mask = min_t(uint64_t, DOMAIN_MAX_ADDR(domain->gaw), dma_mask);
8f6429c7
RM		 3477 /* Ensure we reserve the whole size-aligned region */
3478 nrpages = __roundup_pow_of_two(nrpages);
875764de
DW		 3479
3480 if (!dmar_forcedac && dma_mask > DMA_BIT_MASK(32)) {
ba395927
KA		 3481 /*
3482 * First try to allocate an io virtual address in
284901a9 3483 * DMA_BIT_MASK(32) and if that fails then try allocating
3609801e 3484 * from higher range
ba395927 3485 */
22e2f9fa 3486 iova_pfn = alloc_iova_fast(&domain->iovad, nrpages,
538d5b33 3487 IOVA_PFN(DMA_BIT_MASK(32)), false);
22e2f9fa
OP		 3488 if (iova_pfn)
3489 return iova_pfn;
875764de 3490 }
538d5b33
TN		 3491 iova_pfn = alloc_iova_fast(&domain->iovad, nrpages,
3492 IOVA_PFN(dma_mask), true);
22e2f9fa 3493 if (unlikely(!iova_pfn)) {
9f10e5bf 3494 pr_err("Allocating %ld-page iova for %s failed",
207e3592 3495 nrpages, dev_name(dev));
2aac6304 3496 return 0;
f76aec76
KA		 3497 }
3498
22e2f9fa 3499 return iova_pfn;
f76aec76
KA		 3500}
3501
b316d02a 3502static struct dmar_domain *get_valid_domain_for_dev(struct device *dev)
f76aec76 3503{
1c5ebba9 3504 struct dmar_domain *domain, *tmp;
b1ce5b79 3505 struct dmar_rmrr_unit *rmrr;
b1ce5b79
JR		 3506 struct device *i_dev;
3507 int i, ret;
f76aec76 3508
1c5ebba9
JR		 3509 domain = find_domain(dev);
3510 if (domain)
3511 goto out;
3512
3513 domain = find_or_alloc_domain(dev, DEFAULT_DOMAIN_ADDRESS_WIDTH);
3514 if (!domain)
3515 goto out;
ba395927 3516
b1ce5b79
JR		 3517 /* We have a new domain - setup possible RMRRs for the device */
3518 rcu_read_lock();
3519 for_each_rmrr_units(rmrr) {
3520 for_each_active_dev_scope(rmrr->devices, rmrr->devices_cnt,
3521 i, i_dev) {
3522 if (i_dev != dev)
3523 continue;
3524
3525 ret = domain_prepare_identity_map(dev, domain,
3526 rmrr->base_address,
3527 rmrr->end_address);
3528 if (ret)
3529 dev_err(dev, "Mapping reserved region failed\n");
3530 }
3531 }
3532 rcu_read_unlock();
3533
1c5ebba9
JR		 3534 tmp = set_domain_for_dev(dev, domain);
3535 if (!tmp || domain != tmp) {
3536 domain_exit(domain);
3537 domain = tmp;
3538 }
3539
3540out:
3541
3542 if (!domain)
3543 pr_err("Allocating domain for %s failed\n", dev_name(dev));
3544
3545
f76aec76
KA		 3546 return domain;
3547}
3548
ecb509ec 3549/* Check if the dev needs to go through non-identity map and unmap process.*/
73676832 3550static int iommu_no_mapping(struct device *dev)
2c2e2c38
FY		 3551{
3552 int found;
3553
3d89194a 3554 if (iommu_dummy(dev))
1e4c64c4
DW		 3555 return 1;
3556
2c2e2c38 3557 if (!iommu_identity_mapping)
1e4c64c4 3558 return 0;
2c2e2c38 3559
9b226624 3560 found = identity_mapping(dev);
2c2e2c38 3561 if (found) {
ecb509ec 3562 if (iommu_should_identity_map(dev, 0))
2c2e2c38
FY		 3563 return 1;
3564 else {
3565 /*
3566 * 32 bit DMA is removed from si_domain and fall back
3567 * to non-identity mapping.
3568 */
e6de0f8d 3569 dmar_remove_one_dev_info(si_domain, dev);
9f10e5bf
JR		 3570 pr_info("32bit %s uses non-identity mapping\n",
3571 dev_name(dev));
2c2e2c38
FY		 3572 return 0;
3573 }
3574 } else {
3575 /*
3576 * In case of a detached 64 bit DMA device from vm, the device
3577 * is put into si_domain for identity mapping.
3578 */
ecb509ec 3579 if (iommu_should_identity_map(dev, 0)) {
2c2e2c38 3580 int ret;
28ccce0d 3581 ret = domain_add_dev_info(si_domain, dev);
2c2e2c38 3582 if (!ret) {
9f10e5bf
JR		 3583 pr_info("64bit %s uses identity mapping\n",
3584 dev_name(dev));
2c2e2c38
FY		 3585 return 1;
3586 }
3587 }
3588 }
3589
1e4c64c4 3590 return 0;
2c2e2c38
FY		 3591}
3592
5040a918 3593static dma_addr_t __intel_map_single(struct device *dev, phys_addr_t paddr,
bb9e6d65 3594 size_t size, int dir, u64 dma_mask)
f76aec76 3595{
f76aec76 3596 struct dmar_domain *domain;
5b6985ce 3597 phys_addr_t start_paddr;
2aac6304 3598 unsigned long iova_pfn;
f76aec76 3599 int prot = 0;
6865f0d1 3600 int ret;
8c11e798 3601 struct intel_iommu *iommu;
33041ec0 3602 unsigned long paddr_pfn = paddr >> PAGE_SHIFT;
f76aec76
KA		 3603
3604 BUG_ON(dir == DMA_NONE);
2c2e2c38 3605
5040a918 3606 if (iommu_no_mapping(dev))
6865f0d1 3607 return paddr;
f76aec76 3608
5040a918 3609 domain = get_valid_domain_for_dev(dev);
f76aec76
KA		 3610 if (!domain)
3611 return 0;
3612
8c11e798 3613 iommu = domain_get_iommu(domain);
88cb6a74 3614 size = aligned_nrpages(paddr, size);
f76aec76 3615
2aac6304
OP		 3616 iova_pfn = intel_alloc_iova(dev, domain, dma_to_mm_pfn(size), dma_mask);
3617 if (!iova_pfn)
f76aec76
KA		 3618 goto error;
3619
ba395927
KA		 3620 /*
3621 * Check if DMAR supports zero-length reads on write only
3622 * mappings..
3623 */
3624 if (dir == DMA_TO_DEVICE || dir == DMA_BIDIRECTIONAL || \
8c11e798 3625 !cap_zlr(iommu->cap))
ba395927
KA		 3626 prot |= DMA_PTE_READ;
3627 if (dir == DMA_FROM_DEVICE || dir == DMA_BIDIRECTIONAL)
3628 prot |= DMA_PTE_WRITE;
3629 /*
6865f0d1 3630 * paddr - (paddr + size) might be partial page, we should map the whole
ba395927 3631 * page. Note: if two part of one page are separately mapped, we
6865f0d1 3632 * might have two guest_addr mapping to the same host paddr, but this
ba395927
KA		 3633 * is not a big problem
3634 */
2aac6304 3635 ret = domain_pfn_mapping(domain, mm_to_dma_pfn(iova_pfn),
33041ec0 3636 mm_to_dma_pfn(paddr_pfn), size, prot);
ba395927
KA		 3637 if (ret)
3638 goto error;
3639
2aac6304 3640 start_paddr = (phys_addr_t)iova_pfn << PAGE_SHIFT;
03d6a246
DW		 3641 start_paddr += paddr & ~PAGE_MASK;
3642 return start_paddr;
ba395927 3643
ba395927 3644error:
2aac6304 3645 if (iova_pfn)
22e2f9fa 3646 free_iova_fast(&domain->iovad, iova_pfn, dma_to_mm_pfn(size));
9f10e5bf 3647 pr_err("Device %s request: %zx@%llx dir %d --- failed\n",
5040a918 3648 dev_name(dev), size, (unsigned long long)paddr, dir);
ba395927
KA		 3649 return 0;
3650}
3651
ffbbef5c
FT		 3652static dma_addr_t intel_map_page(struct device *dev, struct page *page,
3653 unsigned long offset, size_t size,
3654 enum dma_data_direction dir,
00085f1e 3655 unsigned long attrs)
bb9e6d65 3656{
ffbbef5c 3657 return __intel_map_single(dev, page_to_phys(page) + offset, size,
46333e37 3658 dir, *dev->dma_mask);
bb9e6d65
FT		 3659}
3660
769530e4 3661static void intel_unmap(struct device *dev, dma_addr_t dev_addr, size_t size)
ba395927 3662{
f76aec76 3663 struct dmar_domain *domain;
d794dc9b 3664 unsigned long start_pfn, last_pfn;
769530e4 3665 unsigned long nrpages;
2aac6304 3666 unsigned long iova_pfn;
8c11e798 3667 struct intel_iommu *iommu;
ea8ea460 3668 struct page *freelist;
ba395927 3669
73676832 3670 if (iommu_no_mapping(dev))
f76aec76 3671 return;
2c2e2c38 3672
1525a29a 3673 domain = find_domain(dev);
ba395927
KA		 3674 BUG_ON(!domain);
3675
8c11e798
WH		 3676 iommu = domain_get_iommu(domain);
3677
2aac6304 3678 iova_pfn = IOVA_PFN(dev_addr);
ba395927 3679
769530e4 3680 nrpages = aligned_nrpages(dev_addr, size);
2aac6304 3681 start_pfn = mm_to_dma_pfn(iova_pfn);
769530e4 3682 last_pfn = start_pfn + nrpages - 1;
ba395927 3683
d794dc9b 3684 pr_debug("Device %s unmapping: pfn %lx-%lx\n",
207e3592 3685 dev_name(dev), start_pfn, last_pfn);
ba395927 3686
ea8ea460 3687 freelist = domain_unmap(domain, start_pfn, last_pfn);
d794dc9b 3688
5e0d2a6f 3689 if (intel_iommu_strict) {
a1ddcbe9 3690 iommu_flush_iotlb_psi(iommu, domain, start_pfn,
769530e4 3691 nrpages, !freelist, 0);
5e0d2a6f 3692 /* free iova */
22e2f9fa 3693 free_iova_fast(&domain->iovad, iova_pfn, dma_to_mm_pfn(nrpages));
ea8ea460 3694 dma_free_pagelist(freelist);
5e0d2a6f 3695 } else {
13cf0174
JR		 3696 queue_iova(&domain->iovad, iova_pfn, nrpages,
3697 (unsigned long)freelist);
5e0d2a6f 3698 /*
3699 * queue up the release of the unmap to save the 1/6th of the
3700 * cpu used up by the iotlb flush operation...
3701 */
5e0d2a6f 3702 }
ba395927
KA		 3703}
3704
d41a4adb
JL		 3705static void intel_unmap_page(struct device *dev, dma_addr_t dev_addr,
3706 size_t size, enum dma_data_direction dir,
00085f1e 3707 unsigned long attrs)
d41a4adb 3708{
769530e4 3709 intel_unmap(dev, dev_addr, size);
d41a4adb
JL		 3710}
3711
5040a918 3712static void *intel_alloc_coherent(struct device *dev, size_t size,
baa676fc 3713 dma_addr_t *dma_handle, gfp_t flags,
00085f1e 3714 unsigned long attrs)
ba395927 3715{
d657c5c7 3716 void *vaddr;
ba395927 3717
d657c5c7
CH		 3718 vaddr = dma_direct_alloc(dev, size, dma_handle, flags, attrs);
3719 if (iommu_no_mapping(dev) || !vaddr)
3720 return vaddr;
36746436 3721
d657c5c7
CH		 3722 *dma_handle = __intel_map_single(dev, virt_to_phys(vaddr),
3723 PAGE_ALIGN(size), DMA_BIDIRECTIONAL,
3724 dev->coherent_dma_mask);
3725 if (!*dma_handle)
3726 goto out_free_pages;
3727 return vaddr;
36746436 3728
d657c5c7
CH		 3729out_free_pages:
3730 dma_direct_free(dev, size, vaddr, *dma_handle, attrs);
ba395927
KA		 3731 return NULL;
3732}
3733
5040a918 3734static void intel_free_coherent(struct device *dev, size_t size, void *vaddr,
00085f1e 3735 dma_addr_t dma_handle, unsigned long attrs)
ba395927 3736{
d657c5c7
CH		 3737 if (!iommu_no_mapping(dev))
3738 intel_unmap(dev, dma_handle, PAGE_ALIGN(size));
3739 dma_direct_free(dev, size, vaddr, dma_handle, attrs);
ba395927
KA		 3740}
3741
5040a918 3742static void intel_unmap_sg(struct device *dev, struct scatterlist *sglist,
d7ab5c46 3743 int nelems, enum dma_data_direction dir,
00085f1e 3744 unsigned long attrs)
ba395927 3745{
769530e4
OP		 3746 dma_addr_t startaddr = sg_dma_address(sglist) & PAGE_MASK;
3747 unsigned long nrpages = 0;
3748 struct scatterlist *sg;
3749 int i;
3750
3751 for_each_sg(sglist, sg, nelems, i) {
3752 nrpages += aligned_nrpages(sg_dma_address(sg), sg_dma_len(sg));
3753 }
3754
3755 intel_unmap(dev, startaddr, nrpages << VTD_PAGE_SHIFT);
ba395927
KA		 3756}
3757
ba395927 3758static int intel_nontranslate_map_sg(struct device *hddev,
c03ab37c 3759 struct scatterlist *sglist, int nelems, int dir)
ba395927
KA		 3760{
3761 int i;
c03ab37c 3762 struct scatterlist *sg;
ba395927 3763
c03ab37c 3764 for_each_sg(sglist, sg, nelems, i) {
12d4d40e 3765 BUG_ON(!sg_page(sg));
29a90b70 3766 sg->dma_address = sg_phys(sg);
c03ab37c 3767 sg->dma_length = sg->length;
ba395927
KA		 3768 }
3769 return nelems;
3770}
3771
5040a918 3772static int intel_map_sg(struct device *dev, struct scatterlist *sglist, int nelems,
00085f1e 3773 enum dma_data_direction dir, unsigned long attrs)
ba395927 3774{
ba395927 3775 int i;
ba395927 3776 struct dmar_domain *domain;
f76aec76
KA		 3777 size_t size = 0;
3778 int prot = 0;
2aac6304 3779 unsigned long iova_pfn;
f76aec76 3780 int ret;
c03ab37c 3781 struct scatterlist *sg;
b536d24d 3782 unsigned long start_vpfn;
8c11e798 3783 struct intel_iommu *iommu;
ba395927
KA		 3784
3785 BUG_ON(dir == DMA_NONE);
5040a918
DW		 3786 if (iommu_no_mapping(dev))
3787 return intel_nontranslate_map_sg(dev, sglist, nelems, dir);
ba395927 3788
5040a918 3789 domain = get_valid_domain_for_dev(dev);
f76aec76
KA		 3790 if (!domain)
3791 return 0;
3792
8c11e798
WH		 3793 iommu = domain_get_iommu(domain);
3794
b536d24d 3795 for_each_sg(sglist, sg, nelems, i)
88cb6a74 3796 size += aligned_nrpages(sg->offset, sg->length);
f76aec76 3797
2aac6304 3798 iova_pfn = intel_alloc_iova(dev, domain, dma_to_mm_pfn(size),
5040a918 3799 *dev->dma_mask);
2aac6304 3800 if (!iova_pfn) {
c03ab37c 3801 sglist->dma_length = 0;
f76aec76
KA		 3802 return 0;
3803 }
3804
3805 /*
3806 * Check if DMAR supports zero-length reads on write only
3807 * mappings..
3808 */
3809 if (dir == DMA_TO_DEVICE || dir == DMA_BIDIRECTIONAL || \
8c11e798 3810 !cap_zlr(iommu->cap))
f76aec76
KA		 3811 prot |= DMA_PTE_READ;
3812 if (dir == DMA_FROM_DEVICE || dir == DMA_BIDIRECTIONAL)
3813 prot |= DMA_PTE_WRITE;
3814
2aac6304 3815 start_vpfn = mm_to_dma_pfn(iova_pfn);
e1605495 3816
f532959b 3817 ret = domain_sg_mapping(domain, start_vpfn, sglist, size, prot);
e1605495 3818 if (unlikely(ret)) {
e1605495 3819 dma_pte_free_pagetable(domain, start_vpfn,
bc24c571
DD		 3820 start_vpfn + size - 1,
3821 agaw_to_level(domain->agaw) + 1);
22e2f9fa 3822 free_iova_fast(&domain->iovad, iova_pfn, dma_to_mm_pfn(size));
e1605495 3823 return 0;
ba395927
KA		 3824 }
3825
ba395927
KA		 3826 return nelems;
3827}
3828
dfb805e8
FT		 3829static int intel_mapping_error(struct device *dev, dma_addr_t dma_addr)
3830{
3831 return !dma_addr;
3832}
3833
01e1932a 3834const struct dma_map_ops intel_dma_ops = {
baa676fc
AP		 3835 .alloc = intel_alloc_coherent,
3836 .free = intel_free_coherent,
ba395927
KA		 3837 .map_sg = intel_map_sg,
3838 .unmap_sg = intel_unmap_sg,
ffbbef5c
FT		 3839 .map_page = intel_map_page,
3840 .unmap_page = intel_unmap_page,
dfb805e8 3841 .mapping_error = intel_mapping_error,
5860acc1 3842#ifdef CONFIG_X86
fec777c3 3843 .dma_supported = dma_direct_supported,
5860acc1 3844#endif
ba395927
KA		 3845};
3846
3847static inline int iommu_domain_cache_init(void)
3848{
3849 int ret = 0;
3850
3851 iommu_domain_cache = kmem_cache_create("iommu_domain",
3852 sizeof(struct dmar_domain),
3853 0,
3854 SLAB_HWCACHE_ALIGN,
3855
3856 NULL);
3857 if (!iommu_domain_cache) {
9f10e5bf 3858 pr_err("Couldn't create iommu_domain cache\n");
ba395927
KA		 3859 ret = -ENOMEM;
3860 }
3861
3862 return ret;
3863}
3864
3865static inline int iommu_devinfo_cache_init(void)
3866{
3867 int ret = 0;
3868
3869 iommu_devinfo_cache = kmem_cache_create("iommu_devinfo",
3870 sizeof(struct device_domain_info),
3871 0,
3872 SLAB_HWCACHE_ALIGN,
ba395927
KA		 3873 NULL);
3874 if (!iommu_devinfo_cache) {
9f10e5bf 3875 pr_err("Couldn't create devinfo cache\n");
ba395927
KA		 3876 ret = -ENOMEM;
3877 }
3878
3879 return ret;
3880}
3881
ba395927
KA		 3882static int __init iommu_init_mempool(void)
3883{
3884 int ret;
ae1ff3d6 3885 ret = iova_cache_get();
ba395927
KA		 3886 if (ret)
3887 return ret;
3888
3889 ret = iommu_domain_cache_init();
3890 if (ret)
3891 goto domain_error;
3892
3893 ret = iommu_devinfo_cache_init();
3894 if (!ret)
3895 return ret;
3896
3897 kmem_cache_destroy(iommu_domain_cache);
3898domain_error:
ae1ff3d6 3899 iova_cache_put();
ba395927
KA		 3900
3901 return -ENOMEM;
3902}
3903
3904static void __init iommu_exit_mempool(void)
3905{
3906 kmem_cache_destroy(iommu_devinfo_cache);
3907 kmem_cache_destroy(iommu_domain_cache);
ae1ff3d6 3908 iova_cache_put();
ba395927
KA		 3909}
3910
556ab45f
DW		 3911static void quirk_ioat_snb_local_iommu(struct pci_dev *pdev)
3912{
3913 struct dmar_drhd_unit *drhd;
3914 u32 vtbar;
3915 int rc;
3916
3917 /* We know that this device on this chipset has its own IOMMU.
3918 * If we find it under a different IOMMU, then the BIOS is lying
3919 * to us. Hope that the IOMMU for this device is actually
3920 * disabled, and it needs no translation...
3921 */
3922 rc = pci_bus_read_config_dword(pdev->bus, PCI_DEVFN(0, 0), 0xb0, &vtbar);
3923 if (rc) {
3924 /* "can't" happen */
3925 dev_info(&pdev->dev, "failed to run vt-d quirk\n");
3926 return;
3927 }
3928 vtbar &= 0xffff0000;
3929
3930 /* we know that the this iommu should be at offset 0xa000 from vtbar */
3931 drhd = dmar_find_matched_drhd_unit(pdev);
3932 if (WARN_TAINT_ONCE(!drhd || drhd->reg_base_addr - vtbar != 0xa000,
3933 TAINT_FIRMWARE_WORKAROUND,
3934 "BIOS assigned incorrect VT-d unit for Intel(R) QuickData Technology device\n"))
3935 pdev->dev.archdata.iommu = DUMMY_DEVICE_DOMAIN_INFO;
3936}
3937DECLARE_PCI_FIXUP_ENABLE(PCI_VENDOR_ID_INTEL, PCI_DEVICE_ID_INTEL_IOAT_SNB, quirk_ioat_snb_local_iommu);
3938
ba395927
KA		 3939static void __init init_no_remapping_devices(void)
3940{
3941 struct dmar_drhd_unit *drhd;
832bd858 3942 struct device *dev;
b683b230 3943 int i;
ba395927
KA		 3944
3945 for_each_drhd_unit(drhd) {
3946 if (!drhd->include_all) {
b683b230
JL		 3947 for_each_active_dev_scope(drhd->devices,
3948 drhd->devices_cnt, i, dev)
3949 break;
832bd858 3950 /* ignore DMAR unit if no devices exist */
ba395927
KA		 3951 if (i == drhd->devices_cnt)
3952 drhd->ignored = 1;
3953 }
3954 }
3955
7c919779 3956 for_each_active_drhd_unit(drhd) {
7c919779 3957 if (drhd->include_all)
ba395927
KA		 3958 continue;
3959
b683b230
JL		 3960 for_each_active_dev_scope(drhd->devices,
3961 drhd->devices_cnt, i, dev)
832bd858 3962 if (!dev_is_pci(dev) || !IS_GFX_DEVICE(to_pci_dev(dev)))
ba395927 3963 break;
ba395927
KA		 3964 if (i < drhd->devices_cnt)
3965 continue;
3966
c0771df8
DW		 3967 /* This IOMMU has *only* gfx devices. Either bypass it or
3968 set the gfx_mapped flag, as appropriate */
3969 if (dmar_map_gfx) {
3970 intel_iommu_gfx_mapped = 1;
3971 } else {
3972 drhd->ignored = 1;
b683b230
JL		 3973 for_each_active_dev_scope(drhd->devices,
3974 drhd->devices_cnt, i, dev)
832bd858 3975 dev->archdata.iommu = DUMMY_DEVICE_DOMAIN_INFO;
ba395927
KA		 3976 }
3977 }
3978}
3979
f59c7b69
FY		 3980#ifdef CONFIG_SUSPEND
3981static int init_iommu_hw(void)
3982{
3983 struct dmar_drhd_unit *drhd;
3984 struct intel_iommu *iommu = NULL;
3985
3986 for_each_active_iommu(iommu, drhd)
3987 if (iommu->qi)
3988 dmar_reenable_qi(iommu);
3989
b779260b
JC		 3990 for_each_iommu(iommu, drhd) {
3991 if (drhd->ignored) {
3992 /*
3993 * we always have to disable PMRs or DMA may fail on
3994 * this device
3995 */
3996 if (force_on)
3997 iommu_disable_protect_mem_regions(iommu);
3998 continue;
3999 }
4000
f59c7b69
FY		 4001 iommu_flush_write_buffer(iommu);
4002
4003 iommu_set_root_entry(iommu);
4004
4005 iommu->flush.flush_context(iommu, 0, 0, 0,
1f0ef2aa 4006 DMA_CCMD_GLOBAL_INVL);
2a41ccee
JL		 4007 iommu->flush.flush_iotlb(iommu, 0, 0, 0, DMA_TLB_GLOBAL_FLUSH);
4008 iommu_enable_translation(iommu);
b94996c9 4009 iommu_disable_protect_mem_regions(iommu);
f59c7b69
FY		 4010 }
4011
4012 return 0;
4013}
4014
4015static void iommu_flush_all(void)
4016{
4017 struct dmar_drhd_unit *drhd;
4018 struct intel_iommu *iommu;
4019
4020 for_each_active_iommu(iommu, drhd) {
4021 iommu->flush.flush_context(iommu, 0, 0, 0,
1f0ef2aa 4022 DMA_CCMD_GLOBAL_INVL);
f59c7b69 4023 iommu->flush.flush_iotlb(iommu, 0, 0, 0,
1f0ef2aa 4024 DMA_TLB_GLOBAL_FLUSH);
f59c7b69
FY		 4025 }
4026}
4027
134fac3f 4028static int iommu_suspend(void)
f59c7b69
FY		 4029{
4030 struct dmar_drhd_unit *drhd;
4031 struct intel_iommu *iommu = NULL;
4032 unsigned long flag;
4033
4034 for_each_active_iommu(iommu, drhd) {
4035 iommu->iommu_state = kzalloc(sizeof(u32) * MAX_SR_DMAR_REGS,
4036 GFP_ATOMIC);
4037 if (!iommu->iommu_state)
4038 goto nomem;
4039 }
4040
4041 iommu_flush_all();
4042
4043 for_each_active_iommu(iommu, drhd) {
4044 iommu_disable_translation(iommu);
4045
1f5b3c3f 4046 raw_spin_lock_irqsave(&iommu->register_lock, flag);
f59c7b69
FY		 4047
4048 iommu->iommu_state[SR_DMAR_FECTL_REG] =
4049 readl(iommu->reg + DMAR_FECTL_REG);
4050 iommu->iommu_state[SR_DMAR_FEDATA_REG] =
4051 readl(iommu->reg + DMAR_FEDATA_REG);
4052 iommu->iommu_state[SR_DMAR_FEADDR_REG] =
4053 readl(iommu->reg + DMAR_FEADDR_REG);
4054 iommu->iommu_state[SR_DMAR_FEUADDR_REG] =
4055 readl(iommu->reg + DMAR_FEUADDR_REG);
4056
1f5b3c3f 4057 raw_spin_unlock_irqrestore(&iommu->register_lock, flag);
f59c7b69
FY		 4058 }
4059 return 0;
4060
4061nomem:
4062 for_each_active_iommu(iommu, drhd)
4063 kfree(iommu->iommu_state);
4064
4065 return -ENOMEM;
4066}
4067
134fac3f 4068static void iommu_resume(void)
f59c7b69
FY		 4069{
4070 struct dmar_drhd_unit *drhd;
4071 struct intel_iommu *iommu = NULL;
4072 unsigned long flag;
4073
4074 if (init_iommu_hw()) {
b779260b
JC		 4075 if (force_on)
4076 panic("tboot: IOMMU setup failed, DMAR can not resume!\n");
4077 else
4078 WARN(1, "IOMMU setup failed, DMAR can not resume!\n");
134fac3f 4079 return;
f59c7b69
FY		 4080 }
4081
4082 for_each_active_iommu(iommu, drhd) {
4083
1f5b3c3f 4084 raw_spin_lock_irqsave(&iommu->register_lock, flag);
f59c7b69
FY		 4085
4086 writel(iommu->iommu_state[SR_DMAR_FECTL_REG],
4087 iommu->reg + DMAR_FECTL_REG);
4088 writel(iommu->iommu_state[SR_DMAR_FEDATA_REG],
4089 iommu->reg + DMAR_FEDATA_REG);
4090 writel(iommu->iommu_state[SR_DMAR_FEADDR_REG],
4091 iommu->reg + DMAR_FEADDR_REG);
4092 writel(iommu->iommu_state[SR_DMAR_FEUADDR_REG],
4093 iommu->reg + DMAR_FEUADDR_REG);
4094
1f5b3c3f 4095 raw_spin_unlock_irqrestore(&iommu->register_lock, flag);
f59c7b69
FY		 4096 }
4097
4098 for_each_active_iommu(iommu, drhd)
4099 kfree(iommu->iommu_state);
f59c7b69
FY		 4100}
4101
134fac3f 4102static struct syscore_ops iommu_syscore_ops = {
f59c7b69
FY		 4103 .resume = iommu_resume,
4104 .suspend = iommu_suspend,
4105};
4106
134fac3f 4107static void __init init_iommu_pm_ops(void)
f59c7b69 4108{
134fac3f 4109 register_syscore_ops(&iommu_syscore_ops);
f59c7b69
FY		 4110}
4111
4112#else
99592ba4 4113static inline void init_iommu_pm_ops(void) {}
f59c7b69
FY		 4114#endif /* CONFIG_PM */
4115
318fe7df 4116
c2a0b538 4117int __init dmar_parse_one_rmrr(struct acpi_dmar_header *header, void *arg)
318fe7df
SS		 4118{
4119 struct acpi_dmar_reserved_memory *rmrr;
0659b8dc 4120 int prot = DMA_PTE_READ|DMA_PTE_WRITE;
318fe7df 4121 struct dmar_rmrr_unit *rmrru;
0659b8dc 4122 size_t length;
318fe7df
SS		 4123
4124 rmrru = kzalloc(sizeof(*rmrru), GFP_KERNEL);
4125 if (!rmrru)
0659b8dc 4126 goto out;
318fe7df
SS		 4127
4128 rmrru->hdr = header;
4129 rmrr = (struct acpi_dmar_reserved_memory *)header;
4130 rmrru->base_address = rmrr->base_address;
4131 rmrru->end_address = rmrr->end_address;
0659b8dc
EA		 4132
4133 length = rmrr->end_address - rmrr->base_address + 1;
4134 rmrru->resv = iommu_alloc_resv_region(rmrr->base_address, length, prot,
4135 IOMMU_RESV_DIRECT);
4136 if (!rmrru->resv)
4137 goto free_rmrru;
4138
2e455289
JL		 4139 rmrru->devices = dmar_alloc_dev_scope((void *)(rmrr + 1),
4140 ((void *)rmrr) + rmrr->header.length,
4141 &rmrru->devices_cnt);
0659b8dc
EA		 4142 if (rmrru->devices_cnt && rmrru->devices == NULL)
4143 goto free_all;
318fe7df 4144
2e455289 4145 list_add(&rmrru->list, &dmar_rmrr_units);
318fe7df 4146
2e455289 4147 return 0;
0659b8dc
EA		 4148free_all:
4149 kfree(rmrru->resv);
4150free_rmrru:
4151 kfree(rmrru);
4152out:
4153 return -ENOMEM;
318fe7df
SS		 4154}
4155
6b197249
JL		 4156static struct dmar_atsr_unit *dmar_find_atsr(struct acpi_dmar_atsr *atsr)
4157{
4158 struct dmar_atsr_unit *atsru;
4159 struct acpi_dmar_atsr *tmp;
4160
4161 list_for_each_entry_rcu(atsru, &dmar_atsr_units, list) {
4162 tmp = (struct acpi_dmar_atsr *)atsru->hdr;
4163 if (atsr->segment != tmp->segment)
4164 continue;
4165 if (atsr->header.length != tmp->header.length)
4166 continue;
4167 if (memcmp(atsr, tmp, atsr->header.length) == 0)
4168 return atsru;
4169 }
4170
4171 return NULL;
4172}
4173
4174int dmar_parse_one_atsr(struct acpi_dmar_header *hdr, void *arg)
318fe7df
SS		 4175{
4176 struct acpi_dmar_atsr *atsr;
4177 struct dmar_atsr_unit *atsru;
4178
b608fe35 4179 if (system_state >= SYSTEM_RUNNING && !intel_iommu_enabled)
6b197249
JL		 4180 return 0;
4181
318fe7df 4182 atsr = container_of(hdr, struct acpi_dmar_atsr, header);
6b197249
JL		 4183 atsru = dmar_find_atsr(atsr);
4184 if (atsru)
4185 return 0;
4186
4187 atsru = kzalloc(sizeof(*atsru) + hdr->length, GFP_KERNEL);
318fe7df
SS		 4188 if (!atsru)
4189 return -ENOMEM;
4190
6b197249
JL		 4191 /*
4192 * If memory is allocated from slab by ACPI _DSM method, we need to
4193 * copy the memory content because the memory buffer will be freed
4194 * on return.
4195 */
4196 atsru->hdr = (void *)(atsru + 1);
4197 memcpy(atsru->hdr, hdr, hdr->length);
318fe7df 4198 atsru->include_all = atsr->flags & 0x1;
2e455289
JL		 4199 if (!atsru->include_all) {
4200 atsru->devices = dmar_alloc_dev_scope((void *)(atsr + 1),
4201 (void *)atsr + atsr->header.length,
4202 &atsru->devices_cnt);
4203 if (atsru->devices_cnt && atsru->devices == NULL) {
4204 kfree(atsru);
4205 return -ENOMEM;
4206 }
4207 }
318fe7df 4208
0e242612 4209 list_add_rcu(&atsru->list, &dmar_atsr_units);
318fe7df
SS		 4210
4211 return 0;
4212}
4213
9bdc531e
JL		 4214static void intel_iommu_free_atsr(struct dmar_atsr_unit *atsru)
4215{
4216 dmar_free_dev_scope(&atsru->devices, &atsru->devices_cnt);
4217 kfree(atsru);
4218}
4219
6b197249
JL		 4220int dmar_release_one_atsr(struct acpi_dmar_header *hdr, void *arg)
4221{
4222 struct acpi_dmar_atsr *atsr;
4223 struct dmar_atsr_unit *atsru;
4224
4225 atsr = container_of(hdr, struct acpi_dmar_atsr, header);
4226 atsru = dmar_find_atsr(atsr);
4227 if (atsru) {
4228 list_del_rcu(&atsru->list);
4229 synchronize_rcu();
4230 intel_iommu_free_atsr(atsru);
4231 }
4232
4233 return 0;
4234}
4235
4236int dmar_check_one_atsr(struct acpi_dmar_header *hdr, void *arg)
4237{
4238 int i;
4239 struct device *dev;
4240 struct acpi_dmar_atsr *atsr;
4241 struct dmar_atsr_unit *atsru;
4242
4243 atsr = container_of(hdr, struct acpi_dmar_atsr, header);
4244 atsru = dmar_find_atsr(atsr);
4245 if (!atsru)
4246 return 0;
4247
194dc870 4248 if (!atsru->include_all && atsru->devices && atsru->devices_cnt) {
6b197249
JL		 4249 for_each_active_dev_scope(atsru->devices, atsru->devices_cnt,
4250 i, dev)
4251 return -EBUSY;
194dc870 4252 }
6b197249
JL		 4253
4254 return 0;
4255}
4256
ffebeb46
JL		 4257static int intel_iommu_add(struct dmar_drhd_unit *dmaru)
4258{
4259 int sp, ret = 0;
4260 struct intel_iommu *iommu = dmaru->iommu;
4261
4262 if (g_iommus[iommu->seq_id])
4263 return 0;
4264
4265 if (hw_pass_through && !ecap_pass_through(iommu->ecap)) {
9f10e5bf 4266 pr_warn("%s: Doesn't support hardware pass through.\n",
ffebeb46
JL		 4267 iommu->name);
4268 return -ENXIO;
4269 }
4270 if (!ecap_sc_support(iommu->ecap) &&
4271 domain_update_iommu_snooping(iommu)) {
9f10e5bf 4272 pr_warn("%s: Doesn't support snooping.\n",
ffebeb46
JL		 4273 iommu->name);
4274 return -ENXIO;
4275 }
4276 sp = domain_update_iommu_superpage(iommu) - 1;
4277 if (sp >= 0 && !(cap_super_page_val(iommu->cap) & (1 << sp))) {
9f10e5bf 4278 pr_warn("%s: Doesn't support large page.\n",
ffebeb46
JL		 4279 iommu->name);
4280 return -ENXIO;
4281 }
4282
4283 /*
4284 * Disable translation if already enabled prior to OS handover.
4285 */
4286 if (iommu->gcmd & DMA_GCMD_TE)
4287 iommu_disable_translation(iommu);
4288
4289 g_iommus[iommu->seq_id] = iommu;
4290 ret = iommu_init_domains(iommu);
4291 if (ret == 0)
4292 ret = iommu_alloc_root_entry(iommu);
4293 if (ret)
4294 goto out;
4295
8a94ade4
DW		 4296#ifdef CONFIG_INTEL_IOMMU_SVM
4297 if (pasid_enabled(iommu))
4298 intel_svm_alloc_pasid_tables(iommu);
4299#endif
4300
ffebeb46
JL		 4301 if (dmaru->ignored) {
4302 /*
4303 * we always have to disable PMRs or DMA may fail on this device
4304 */
4305 if (force_on)
4306 iommu_disable_protect_mem_regions(iommu);
4307 return 0;
4308 }
4309
4310 intel_iommu_init_qi(iommu);
4311 iommu_flush_write_buffer(iommu);
a222a7f0
DW		 4312
4313#ifdef CONFIG_INTEL_IOMMU_SVM
4314 if (pasid_enabled(iommu) && ecap_prs(iommu->ecap)) {
4315 ret = intel_svm_enable_prq(iommu);
4316 if (ret)
4317 goto disable_iommu;
4318 }
4319#endif
ffebeb46
JL		 4320 ret = dmar_set_interrupt(iommu);
4321 if (ret)
4322 goto disable_iommu;
4323
4324 iommu_set_root_entry(iommu);
4325 iommu->flush.flush_context(iommu, 0, 0, 0, DMA_CCMD_GLOBAL_INVL);
4326 iommu->flush.flush_iotlb(iommu, 0, 0, 0, DMA_TLB_GLOBAL_FLUSH);
4327 iommu_enable_translation(iommu);
4328
ffebeb46
JL		 4329 iommu_disable_protect_mem_regions(iommu);
4330 return 0;
4331
4332disable_iommu:
4333 disable_dmar_iommu(iommu);
4334out:
4335 free_dmar_iommu(iommu);
4336 return ret;
4337}
4338
6b197249
JL		 4339int dmar_iommu_hotplug(struct dmar_drhd_unit *dmaru, bool insert)
4340{
ffebeb46
JL		 4341 int ret = 0;
4342 struct intel_iommu *iommu = dmaru->iommu;
4343
4344 if (!intel_iommu_enabled)
4345 return 0;
4346 if (iommu == NULL)
4347 return -EINVAL;
4348
4349 if (insert) {
4350 ret = intel_iommu_add(dmaru);
4351 } else {
4352 disable_dmar_iommu(iommu);
4353 free_dmar_iommu(iommu);
4354 }
4355
4356 return ret;
6b197249
JL		 4357}
4358
9bdc531e
JL		 4359static void intel_iommu_free_dmars(void)
4360{
4361 struct dmar_rmrr_unit *rmrru, *rmrr_n;
4362 struct dmar_atsr_unit *atsru, *atsr_n;
4363
4364 list_for_each_entry_safe(rmrru, rmrr_n, &dmar_rmrr_units, list) {
4365 list_del(&rmrru->list);
4366 dmar_free_dev_scope(&rmrru->devices, &rmrru->devices_cnt);
0659b8dc 4367 kfree(rmrru->resv);
9bdc531e 4368 kfree(rmrru);
318fe7df
SS		 4369 }
4370
9bdc531e
JL		 4371 list_for_each_entry_safe(atsru, atsr_n, &dmar_atsr_units, list) {
4372 list_del(&atsru->list);
4373 intel_iommu_free_atsr(atsru);
4374 }
318fe7df
SS		 4375}
4376
4377int dmar_find_matched_atsr_unit(struct pci_dev *dev)
4378{
b683b230 4379 int i, ret = 1;
318fe7df 4380 struct pci_bus *bus;
832bd858
DW		 4381 struct pci_dev *bridge = NULL;
4382 struct device *tmp;
318fe7df
SS		 4383 struct acpi_dmar_atsr *atsr;
4384 struct dmar_atsr_unit *atsru;
4385
4386 dev = pci_physfn(dev);
318fe7df 4387 for (bus = dev->bus; bus; bus = bus->parent) {
b5f82ddf 4388 bridge = bus->self;
d14053b3
DW		 4389 /* If it's an integrated device, allow ATS */
4390 if (!bridge)
4391 return 1;
4392 /* Connected via non-PCIe: no ATS */
4393 if (!pci_is_pcie(bridge) ||
62f87c0e 4394 pci_pcie_type(bridge) == PCI_EXP_TYPE_PCI_BRIDGE)
318fe7df 4395 return 0;
d14053b3 4396 /* If we found the root port, look it up in the ATSR */
b5f82ddf 4397 if (pci_pcie_type(bridge) == PCI_EXP_TYPE_ROOT_PORT)
318fe7df 4398 break;
318fe7df
SS		 4399 }
4400
0e242612 4401 rcu_read_lock();
b5f82ddf
JL		 4402 list_for_each_entry_rcu(atsru, &dmar_atsr_units, list) {
4403 atsr = container_of(atsru->hdr, struct acpi_dmar_atsr, header);
4404 if (atsr->segment != pci_domain_nr(dev->bus))
4405 continue;
4406
b683b230 4407 for_each_dev_scope(atsru->devices, atsru->devices_cnt, i, tmp)
832bd858 4408 if (tmp == &bridge->dev)
b683b230 4409 goto out;
b5f82ddf
JL		 4410
4411 if (atsru->include_all)
b683b230 4412 goto out;
b5f82ddf 4413 }
b683b230
JL		 4414 ret = 0;
4415out:
0e242612 4416 rcu_read_unlock();
318fe7df 4417
b683b230 4418 return ret;
318fe7df
SS		 4419}
4420
59ce0515
JL		 4421int dmar_iommu_notify_scope_dev(struct dmar_pci_notify_info *info)
4422{
4423 int ret = 0;
4424 struct dmar_rmrr_unit *rmrru;
4425 struct dmar_atsr_unit *atsru;
4426 struct acpi_dmar_atsr *atsr;
4427 struct acpi_dmar_reserved_memory *rmrr;
4428
b608fe35 4429 if (!intel_iommu_enabled && system_state >= SYSTEM_RUNNING)
59ce0515
JL		 4430 return 0;
4431
4432 list_for_each_entry(rmrru, &dmar_rmrr_units, list) {
4433 rmrr = container_of(rmrru->hdr,
4434 struct acpi_dmar_reserved_memory, header);
4435 if (info->event == BUS_NOTIFY_ADD_DEVICE) {
4436 ret = dmar_insert_dev_scope(info, (void *)(rmrr + 1),
4437 ((void *)rmrr) + rmrr->header.length,
4438 rmrr->segment, rmrru->devices,
4439 rmrru->devices_cnt);
27e24950 4440 if(ret < 0)
59ce0515 4441 return ret;
e6a8c9b3 4442 } else if (info->event == BUS_NOTIFY_REMOVED_DEVICE) {
27e24950
JL		 4443 dmar_remove_dev_scope(info, rmrr->segment,
4444 rmrru->devices, rmrru->devices_cnt);
59ce0515
JL		 4445 }
4446 }
4447
4448 list_for_each_entry(atsru, &dmar_atsr_units, list) {
4449 if (atsru->include_all)
4450 continue;
4451
4452 atsr = container_of(atsru->hdr, struct acpi_dmar_atsr, header);
4453 if (info->event == BUS_NOTIFY_ADD_DEVICE) {
4454 ret = dmar_insert_dev_scope(info, (void *)(atsr + 1),
4455 (void *)atsr + atsr->header.length,
4456 atsr->segment, atsru->devices,
4457 atsru->devices_cnt);
4458 if (ret > 0)
4459 break;
4460 else if(ret < 0)
4461 return ret;
e6a8c9b3 4462 } else if (info->event == BUS_NOTIFY_REMOVED_DEVICE) {
59ce0515
JL		 4463 if (dmar_remove_dev_scope(info, atsr->segment,
4464 atsru->devices, atsru->devices_cnt))
4465 break;
4466 }
4467 }
4468
4469 return 0;
4470}
4471
99dcaded
FY		 4472/*
4473 * Here we only respond to action of unbound device from driver.
4474 *
4475 * Added device is not attached to its DMAR domain here yet. That will happen
4476 * when mapping the device to iova.
4477 */
4478static int device_notifier(struct notifier_block *nb,
4479 unsigned long action, void *data)
4480{
4481 struct device *dev = data;
99dcaded
FY		 4482 struct dmar_domain *domain;
4483
3d89194a 4484 if (iommu_dummy(dev))
44cd613c
DW		 4485 return 0;
4486
1196c2fb 4487 if (action != BUS_NOTIFY_REMOVED_DEVICE)
7e7dfab7
JL		 4488 return 0;
4489
1525a29a 4490 domain = find_domain(dev);
99dcaded
FY		 4491 if (!domain)
4492 return 0;
4493
e6de0f8d 4494 dmar_remove_one_dev_info(domain, dev);
ab8dfe25 4495 if (!domain_type_is_vm_or_si(domain) && list_empty(&domain->devices))
7e7dfab7 4496 domain_exit(domain);
a97590e5 4497
99dcaded
FY		 4498 return 0;
4499}
4500
4501static struct notifier_block device_nb = {
4502 .notifier_call = device_notifier,
4503};
4504
75f05569
JL		 4505static int intel_iommu_memory_notifier(struct notifier_block *nb,
4506 unsigned long val, void *v)
4507{
4508 struct memory_notify *mhp = v;
4509 unsigned long long start, end;
4510 unsigned long start_vpfn, last_vpfn;
4511
4512 switch (val) {
4513 case MEM_GOING_ONLINE:
4514 start = mhp->start_pfn << PAGE_SHIFT;
4515 end = ((mhp->start_pfn + mhp->nr_pages) << PAGE_SHIFT) - 1;
4516 if (iommu_domain_identity_map(si_domain, start, end)) {
9f10e5bf 4517 pr_warn("Failed to build identity map for [%llx-%llx]\n",
75f05569
JL		 4518 start, end);
4519 return NOTIFY_BAD;
4520 }
4521 break;
4522
4523 case MEM_OFFLINE:
4524 case MEM_CANCEL_ONLINE:
4525 start_vpfn = mm_to_dma_pfn(mhp->start_pfn);
4526 last_vpfn = mm_to_dma_pfn(mhp->start_pfn + mhp->nr_pages - 1);
4527 while (start_vpfn <= last_vpfn) {
4528 struct iova *iova;
4529 struct dmar_drhd_unit *drhd;
4530 struct intel_iommu *iommu;
ea8ea460 4531 struct page *freelist;
75f05569
JL		 4532
4533 iova = find_iova(&si_domain->iovad, start_vpfn);
4534 if (iova == NULL) {
9f10e5bf 4535 pr_debug("Failed get IOVA for PFN %lx\n",
75f05569
JL		 4536 start_vpfn);
4537 break;
4538 }
4539
4540 iova = split_and_remove_iova(&si_domain->iovad, iova,
4541 start_vpfn, last_vpfn);
4542 if (iova == NULL) {
9f10e5bf 4543 pr_warn("Failed to split IOVA PFN [%lx-%lx]\n",
75f05569
JL		 4544 start_vpfn, last_vpfn);
4545 return NOTIFY_BAD;
4546 }
4547
ea8ea460
DW		 4548 freelist = domain_unmap(si_domain, iova->pfn_lo,
4549 iova->pfn_hi);
4550
75f05569
JL		 4551 rcu_read_lock();
4552 for_each_active_iommu(iommu, drhd)
a1ddcbe9 4553 iommu_flush_iotlb_psi(iommu, si_domain,
a156ef99 4554 iova->pfn_lo, iova_size(iova),
ea8ea460 4555 !freelist, 0);
75f05569 4556 rcu_read_unlock();
ea8ea460 4557 dma_free_pagelist(freelist);
75f05569
JL		 4558
4559 start_vpfn = iova->pfn_hi + 1;
4560 free_iova_mem(iova);
4561 }
4562 break;
4563 }
4564
4565 return NOTIFY_OK;
4566}
4567
4568static struct notifier_block intel_iommu_memory_nb = {
4569 .notifier_call = intel_iommu_memory_notifier,
4570 .priority = 0
4571};
4572
22e2f9fa
OP		 4573static void free_all_cpu_cached_iovas(unsigned int cpu)
4574{
4575 int i;
4576
4577 for (i = 0; i < g_num_of_iommus; i++) {
4578 struct intel_iommu *iommu = g_iommus[i];
4579 struct dmar_domain *domain;
0caa7616 4580 int did;
22e2f9fa
OP		 4581
4582 if (!iommu)
4583 continue;
4584
3bd4f911 4585 for (did = 0; did < cap_ndoms(iommu->cap); did++) {
0caa7616 4586 domain = get_iommu_domain(iommu, (u16)did);
22e2f9fa
OP		 4587
4588 if (!domain)
4589 continue;
4590 free_cpu_cached_iovas(cpu, &domain->iovad);
4591 }
4592 }
4593}
4594
21647615 4595static int intel_iommu_cpu_dead(unsigned int cpu)
aa473240 4596{
21647615 4597 free_all_cpu_cached_iovas(cpu);
21647615 4598 return 0;
aa473240
OP		 4599}
4600
161b28aa
JR		 4601static void intel_disable_iommus(void)
4602{
4603 struct intel_iommu *iommu = NULL;
4604 struct dmar_drhd_unit *drhd;
4605
4606 for_each_iommu(iommu, drhd)
4607 iommu_disable_translation(iommu);
4608}
4609
a7fdb6e6
JR		 4610static inline struct intel_iommu *dev_to_intel_iommu(struct device *dev)
4611{
2926a2aa
JR		 4612 struct iommu_device *iommu_dev = dev_to_iommu_device(dev);
4613
4614 return container_of(iommu_dev, struct intel_iommu, iommu);
a7fdb6e6
JR		 4615}
4616
a5459cfe
AW		 4617static ssize_t intel_iommu_show_version(struct device *dev,
4618 struct device_attribute *attr,
4619 char *buf)
4620{
a7fdb6e6 4621 struct intel_iommu *iommu = dev_to_intel_iommu(dev);
a5459cfe
AW		 4622 u32 ver = readl(iommu->reg + DMAR_VER_REG);
4623 return sprintf(buf, "%d:%d\n",
4624 DMAR_VER_MAJOR(ver), DMAR_VER_MINOR(ver));
4625}
4626static DEVICE_ATTR(version, S_IRUGO, intel_iommu_show_version, NULL);
4627
4628static ssize_t intel_iommu_show_address(struct device *dev,
4629 struct device_attribute *attr,
4630 char *buf)
4631{
a7fdb6e6 4632 struct intel_iommu *iommu = dev_to_intel_iommu(dev);
a5459cfe
AW		 4633 return sprintf(buf, "%llx\n", iommu->reg_phys);
4634}
4635static DEVICE_ATTR(address, S_IRUGO, intel_iommu_show_address, NULL);
4636
4637static ssize_t intel_iommu_show_cap(struct device *dev,
4638 struct device_attribute *attr,
4639 char *buf)
4640{
a7fdb6e6 4641 struct intel_iommu *iommu = dev_to_intel_iommu(dev);
a5459cfe
AW		 4642 return sprintf(buf, "%llx\n", iommu->cap);
4643}
4644static DEVICE_ATTR(cap, S_IRUGO, intel_iommu_show_cap, NULL);
4645
4646static ssize_t intel_iommu_show_ecap(struct device *dev,
4647 struct device_attribute *attr,
4648 char *buf)
4649{
a7fdb6e6 4650 struct intel_iommu *iommu = dev_to_intel_iommu(dev);
a5459cfe
AW		 4651 return sprintf(buf, "%llx\n", iommu->ecap);
4652}
4653static DEVICE_ATTR(ecap, S_IRUGO, intel_iommu_show_ecap, NULL);
4654
2238c082
AW		 4655static ssize_t intel_iommu_show_ndoms(struct device *dev,
4656 struct device_attribute *attr,
4657 char *buf)
4658{
a7fdb6e6 4659 struct intel_iommu *iommu = dev_to_intel_iommu(dev);
2238c082
AW		 4660 return sprintf(buf, "%ld\n", cap_ndoms(iommu->cap));
4661}
4662static DEVICE_ATTR(domains_supported, S_IRUGO, intel_iommu_show_ndoms, NULL);
4663
4664static ssize_t intel_iommu_show_ndoms_used(struct device *dev,
4665 struct device_attribute *attr,
4666 char *buf)
4667{
a7fdb6e6 4668 struct intel_iommu *iommu = dev_to_intel_iommu(dev);
2238c082
AW		 4669 return sprintf(buf, "%d\n", bitmap_weight(iommu->domain_ids,
4670 cap_ndoms(iommu->cap)));
4671}
4672static DEVICE_ATTR(domains_used, S_IRUGO, intel_iommu_show_ndoms_used, NULL);
4673
a5459cfe
AW		 4674static struct attribute *intel_iommu_attrs[] = {
4675 &dev_attr_version.attr,
4676 &dev_attr_address.attr,
4677 &dev_attr_cap.attr,
4678 &dev_attr_ecap.attr,
2238c082
AW		 4679 &dev_attr_domains_supported.attr,
4680 &dev_attr_domains_used.attr,
a5459cfe
AW		 4681 NULL,
4682};
4683
4684static struct attribute_group intel_iommu_group = {
4685 .name = "intel-iommu",
4686 .attrs = intel_iommu_attrs,
4687};
4688
4689const struct attribute_group *intel_iommu_groups[] = {
4690 &intel_iommu_group,
4691 NULL,
4692};
4693
ba395927
KA		 4694int __init intel_iommu_init(void)
4695{
9bdc531e 4696 int ret = -ENODEV;
3a93c841 4697 struct dmar_drhd_unit *drhd;
7c919779 4698 struct intel_iommu *iommu;
ba395927 4699
a59b50e9
JC		 4700 /* VT-d is required for a TXT/tboot launch, so enforce that */
4701 force_on = tboot_force_iommu();
4702
3a5670e8
JL		 4703 if (iommu_init_mempool()) {
4704 if (force_on)
4705 panic("tboot: Failed to initialize iommu memory\n");
4706 return -ENOMEM;
4707 }
4708
4709 down_write(&dmar_global_lock);
a59b50e9
JC		 4710 if (dmar_table_init()) {
4711 if (force_on)
4712 panic("tboot: Failed to initialize DMAR table\n");
9bdc531e 4713 goto out_free_dmar;
a59b50e9 4714 }
ba395927 4715
c2c7286a 4716 if (dmar_dev_scope_init() < 0) {
a59b50e9
JC		 4717 if (force_on)
4718 panic("tboot: Failed to initialize DMAR device scope\n");
9bdc531e 4719 goto out_free_dmar;
a59b50e9 4720 }
1886e8a9 4721
ec154bf5
JR		 4722 up_write(&dmar_global_lock);
4723
4724 /*
4725 * The bus notifier takes the dmar_global_lock, so lockdep will
4726 * complain later when we register it under the lock.
4727 */
4728 dmar_register_bus_notifier();
4729
4730 down_write(&dmar_global_lock);
4731
161b28aa 4732 if (no_iommu || dmar_disabled) {
bfd20f1c
SL		 4733 /*
4734 * We exit the function here to ensure IOMMU's remapping and
4735 * mempool aren't setup, which means that the IOMMU's PMRs
4736 * won't be disabled via the call to init_dmars(). So disable
4737 * it explicitly here. The PMRs were setup by tboot prior to
4738 * calling SENTER, but the kernel is expected to reset/tear
4739 * down the PMRs.
4740 */
4741 if (intel_iommu_tboot_noforce) {
4742 for_each_iommu(iommu, drhd)
4743 iommu_disable_protect_mem_regions(iommu);
4744 }
4745
161b28aa
JR		 4746 /*
4747 * Make sure the IOMMUs are switched off, even when we
4748 * boot into a kexec kernel and the previous kernel left
4749 * them enabled
4750 */
4751 intel_disable_iommus();
9bdc531e 4752 goto out_free_dmar;
161b28aa 4753 }
2ae21010 4754
318fe7df 4755 if (list_empty(&dmar_rmrr_units))
9f10e5bf 4756 pr_info("No RMRR found\n");
318fe7df
SS		 4757
4758 if (list_empty(&dmar_atsr_units))
9f10e5bf 4759 pr_info("No ATSR found\n");
318fe7df 4760
51a63e67
JC		 4761 if (dmar_init_reserved_ranges()) {
4762 if (force_on)
4763 panic("tboot: Failed to reserve iommu ranges\n");
3a5670e8 4764 goto out_free_reserved_range;
51a63e67 4765 }
ba395927
KA		 4766
4767 init_no_remapping_devices();
4768
b779260b 4769 ret = init_dmars();
ba395927 4770 if (ret) {
a59b50e9
JC		 4771 if (force_on)
4772 panic("tboot: Failed to initialize DMARs\n");
9f10e5bf 4773 pr_err("Initialization failed\n");
9bdc531e 4774 goto out_free_reserved_range;
ba395927 4775 }
3a5670e8 4776 up_write(&dmar_global_lock);
9f10e5bf 4777 pr_info("Intel(R) Virtualization Technology for Directed I/O\n");
ba395927 4778
4fac8076 4779#if defined(CONFIG_X86) && defined(CONFIG_SWIOTLB)
75f1cdf1
FT		 4780 swiotlb = 0;
4781#endif
19943b0e 4782 dma_ops = &intel_dma_ops;
4ed0d3e6 4783
134fac3f 4784 init_iommu_pm_ops();
a8bcbb0d 4785
39ab9555
JR		 4786 for_each_active_iommu(iommu, drhd) {
4787 iommu_device_sysfs_add(&iommu->iommu, NULL,
4788 intel_iommu_groups,
4789 "%s", iommu->name);
4790 iommu_device_set_ops(&iommu->iommu, &intel_iommu_ops);
4791 iommu_device_register(&iommu->iommu);
4792 }
a5459cfe 4793
4236d97d 4794 bus_set_iommu(&pci_bus_type, &intel_iommu_ops);
99dcaded 4795 bus_register_notifier(&pci_bus_type, &device_nb);
75f05569
JL		 4796 if (si_domain && !hw_pass_through)
4797 register_memory_notifier(&intel_iommu_memory_nb);
21647615
AMG		 4798 cpuhp_setup_state(CPUHP_IOMMU_INTEL_DEAD, "iommu/intel:dead", NULL,
4799 intel_iommu_cpu_dead);
8bc1f85c
ED		 4800 intel_iommu_enabled = 1;
4801
ba395927 4802 return 0;
9bdc531e
JL		 4803
4804out_free_reserved_range:
4805 put_iova_domain(&reserved_iova_list);
9bdc531e
JL		 4806out_free_dmar:
4807 intel_iommu_free_dmars();
3a5670e8
JL		 4808 up_write(&dmar_global_lock);
4809 iommu_exit_mempool();
9bdc531e 4810 return ret;
ba395927 4811}
e820482c 4812
2452d9db 4813static int domain_context_clear_one_cb(struct pci_dev *pdev, u16 alias, void *opaque)
579305f7
AW		 4814{
4815 struct intel_iommu *iommu = opaque;
4816
2452d9db 4817 domain_context_clear_one(iommu, PCI_BUS_NUM(alias), alias & 0xff);
579305f7
AW		 4818 return 0;
4819}
4820
4821/*
4822 * NB - intel-iommu lacks any sort of reference counting for the users of
4823 * dependent devices. If multiple endpoints have intersecting dependent
4824 * devices, unbinding the driver from any one of them will possibly leave
4825 * the others unable to operate.
4826 */
2452d9db 4827static void domain_context_clear(struct intel_iommu *iommu, struct device *dev)
3199aa6b 4828{
0bcb3e28 4829 if (!iommu || !dev || !dev_is_pci(dev))
3199aa6b
HW		 4830 return;
4831
2452d9db 4832 pci_for_each_dma_alias(to_pci_dev(dev), &domain_context_clear_one_cb, iommu);
3199aa6b
HW		 4833}
4834
127c7615 4835static void __dmar_remove_one_dev_info(struct device_domain_info *info)
c7151a8d 4836{
c7151a8d
WH		 4837 struct intel_iommu *iommu;
4838 unsigned long flags;
c7151a8d 4839
55d94043
JR		 4840 assert_spin_locked(&device_domain_lock);
4841
127c7615 4842 if (WARN_ON(!info))
c7151a8d
WH		 4843 return;
4844
127c7615 4845 iommu = info->iommu;
c7151a8d 4846
127c7615
JR		 4847 if (info->dev) {
4848 iommu_disable_dev_iotlb(info);
4849 domain_context_clear(iommu, info->dev);
4850 }
c7151a8d 4851
b608ac3b 4852 unlink_domain_info(info);
c7151a8d 4853
d160aca5 4854 spin_lock_irqsave(&iommu->lock, flags);
127c7615 4855 domain_detach_iommu(info->domain, iommu);
d160aca5 4856 spin_unlock_irqrestore(&iommu->lock, flags);
c7151a8d 4857
127c7615 4858 free_devinfo_mem(info);
c7151a8d 4859}
c7151a8d 4860
55d94043
JR		 4861static void dmar_remove_one_dev_info(struct dmar_domain *domain,
4862 struct device *dev)
4863{
127c7615 4864 struct device_domain_info *info;
55d94043 4865 unsigned long flags;
3e7abe25 4866
55d94043 4867 spin_lock_irqsave(&device_domain_lock, flags);
127c7615
JR		 4868 info = dev->archdata.iommu;
4869 __dmar_remove_one_dev_info(info);
55d94043 4870 spin_unlock_irqrestore(&device_domain_lock, flags);
c7151a8d
WH		 4871}
4872
2c2e2c38 4873static int md_domain_init(struct dmar_domain *domain, int guest_width)
5e98c4b1
WH		 4874{
4875 int adjust_width;
4876
aa3ac946 4877 init_iova_domain(&domain->iovad, VTD_PAGE_SIZE, IOVA_START_PFN);
5e98c4b1
WH		 4878 domain_reserve_special_ranges(domain);
4879
4880 /* calculate AGAW */
4881 domain->gaw = guest_width;
4882 adjust_width = guestwidth_to_adjustwidth(guest_width);
4883 domain->agaw = width_to_agaw(adjust_width);
4884
5e98c4b1 4885 domain->iommu_coherency = 0;
c5b15255 4886 domain->iommu_snooping = 0;
6dd9a7c7 4887 domain->iommu_superpage = 0;
fe40f1e0 4888 domain->max_addr = 0;
5e98c4b1
WH		 4889
4890 /* always allocate the top pgd */
4c923d47 4891 domain->pgd = (struct dma_pte *)alloc_pgtable_page(domain->nid);
5e98c4b1
WH		 4892 if (!domain->pgd)
4893 return -ENOMEM;
4894 domain_flush_cache(domain, domain->pgd, PAGE_SIZE);
4895 return 0;
4896}
4897
00a77deb 4898static struct iommu_domain *intel_iommu_domain_alloc(unsigned type)
38717946 4899{
5d450806 4900 struct dmar_domain *dmar_domain;
00a77deb
JR		 4901 struct iommu_domain *domain;
4902
4903 if (type != IOMMU_DOMAIN_UNMANAGED)
4904 return NULL;
38717946 4905
ab8dfe25 4906 dmar_domain = alloc_domain(DOMAIN_FLAG_VIRTUAL_MACHINE);
5d450806 4907 if (!dmar_domain) {
9f10e5bf 4908 pr_err("Can't allocate dmar_domain\n");
00a77deb 4909 return NULL;
38717946 4910 }
2c2e2c38 4911 if (md_domain_init(dmar_domain, DEFAULT_DOMAIN_ADDRESS_WIDTH)) {
9f10e5bf 4912 pr_err("Domain initialization failed\n");
92d03cc8 4913 domain_exit(dmar_domain);
00a77deb 4914 return NULL;
38717946 4915 }
8140a95d 4916 domain_update_iommu_cap(dmar_domain);
faa3d6f5 4917
00a77deb 4918 domain = &dmar_domain->domain;
8a0e715b
JR		 4919 domain->geometry.aperture_start = 0;
4920 domain->geometry.aperture_end = __DOMAIN_MAX_ADDR(dmar_domain->gaw);
4921 domain->geometry.force_aperture = true;
4922
00a77deb 4923 return domain;
38717946 4924}
38717946 4925
00a77deb 4926static void intel_iommu_domain_free(struct iommu_domain *domain)
38717946 4927{
00a77deb 4928 domain_exit(to_dmar_domain(domain));
38717946 4929}
38717946 4930
4c5478c9
JR		 4931static int intel_iommu_attach_device(struct iommu_domain *domain,
4932 struct device *dev)
38717946 4933{
00a77deb 4934 struct dmar_domain *dmar_domain = to_dmar_domain(domain);
fe40f1e0
WH		 4935 struct intel_iommu *iommu;
4936 int addr_width;
156baca8 4937 u8 bus, devfn;
faa3d6f5 4938
c875d2c1
AW		 4939 if (device_is_rmrr_locked(dev)) {
4940 dev_warn(dev, "Device is ineligible for IOMMU domain attach due to platform RMRR requirement. Contact your platform vendor.\n");
4941 return -EPERM;
4942 }
4943
7207d8f9
DW		 4944 /* normally dev is not mapped */
4945 if (unlikely(domain_context_mapped(dev))) {
faa3d6f5
WH		 4946 struct dmar_domain *old_domain;
4947
1525a29a 4948 old_domain = find_domain(dev);
faa3d6f5 4949 if (old_domain) {
d160aca5 4950 rcu_read_lock();
de7e8886 4951 dmar_remove_one_dev_info(old_domain, dev);
d160aca5 4952 rcu_read_unlock();
62c22167
JR		 4953
4954 if (!domain_type_is_vm_or_si(old_domain) &&
4955 list_empty(&old_domain->devices))
4956 domain_exit(old_domain);
faa3d6f5
WH		 4957 }
4958 }
4959
156baca8 4960 iommu = device_to_iommu(dev, &bus, &devfn);
fe40f1e0
WH		 4961 if (!iommu)
4962 return -ENODEV;
4963
4964 /* check if this iommu agaw is sufficient for max mapped address */
4965 addr_width = agaw_to_width(iommu->agaw);
a99c47a2
TL		 4966 if (addr_width > cap_mgaw(iommu->cap))
4967 addr_width = cap_mgaw(iommu->cap);
4968
4969 if (dmar_domain->max_addr > (1LL << addr_width)) {
9f10e5bf 4970 pr_err("%s: iommu width (%d) is not "
fe40f1e0 4971 "sufficient for the mapped address (%llx)\n",
a99c47a2 4972 __func__, addr_width, dmar_domain->max_addr);
fe40f1e0
WH		 4973 return -EFAULT;
4974 }
a99c47a2
TL		 4975 dmar_domain->gaw = addr_width;
4976
4977 /*
4978 * Knock out extra levels of page tables if necessary
4979 */
4980 while (iommu->agaw < dmar_domain->agaw) {
4981 struct dma_pte *pte;
4982
4983 pte = dmar_domain->pgd;
4984 if (dma_pte_present(pte)) {
25cbff16
SY		 4985 dmar_domain->pgd = (struct dma_pte *)
4986 phys_to_virt(dma_pte_addr(pte));
7a661013 4987 free_pgtable_page(pte);
a99c47a2
TL		 4988 }
4989 dmar_domain->agaw--;
4990 }
fe40f1e0 4991
28ccce0d 4992 return domain_add_dev_info(dmar_domain, dev);
38717946 4993}
38717946 4994
4c5478c9
JR		 4995static void intel_iommu_detach_device(struct iommu_domain *domain,
4996 struct device *dev)
38717946 4997{
e6de0f8d 4998 dmar_remove_one_dev_info(to_dmar_domain(domain), dev);
faa3d6f5 4999}
c7151a8d 5000
b146a1c9
JR		 5001static int intel_iommu_map(struct iommu_domain *domain,
5002 unsigned long iova, phys_addr_t hpa,
5009065d 5003 size_t size, int iommu_prot)
faa3d6f5 5004{
00a77deb 5005 struct dmar_domain *dmar_domain = to_dmar_domain(domain);
fe40f1e0 5006 u64 max_addr;
dde57a21 5007 int prot = 0;
faa3d6f5 5008 int ret;
fe40f1e0 5009
dde57a21
JR		 5010 if (iommu_prot & IOMMU_READ)
5011 prot |= DMA_PTE_READ;
5012 if (iommu_prot & IOMMU_WRITE)
5013 prot |= DMA_PTE_WRITE;
9cf06697
SY		 5014 if ((iommu_prot & IOMMU_CACHE) && dmar_domain->iommu_snooping)
5015 prot |= DMA_PTE_SNP;
dde57a21 5016
163cc52c 5017 max_addr = iova + size;
dde57a21 5018 if (dmar_domain->max_addr < max_addr) {
fe40f1e0
WH		 5019 u64 end;
5020
5021 /* check if minimum agaw is sufficient for mapped address */
8954da1f 5022 end = __DOMAIN_MAX_ADDR(dmar_domain->gaw) + 1;
fe40f1e0 5023 if (end < max_addr) {
9f10e5bf 5024 pr_err("%s: iommu width (%d) is not "
fe40f1e0 5025 "sufficient for the mapped address (%llx)\n",
8954da1f 5026 __func__, dmar_domain->gaw, max_addr);
fe40f1e0
WH		 5027 return -EFAULT;
5028 }
dde57a21 5029 dmar_domain->max_addr = max_addr;
fe40f1e0 5030 }
ad051221
DW		 5031 /* Round up size to next multiple of PAGE_SIZE, if it and
5032 the low bits of hpa would take us onto the next page */
88cb6a74 5033 size = aligned_nrpages(hpa, size);
ad051221
DW		 5034 ret = domain_pfn_mapping(dmar_domain, iova >> VTD_PAGE_SHIFT,
5035 hpa >> VTD_PAGE_SHIFT, size, prot);
faa3d6f5 5036 return ret;
38717946 5037}
38717946 5038
5009065d 5039static size_t intel_iommu_unmap(struct iommu_domain *domain,
ea8ea460 5040 unsigned long iova, size_t size)
38717946 5041{
00a77deb 5042 struct dmar_domain *dmar_domain = to_dmar_domain(domain);
ea8ea460 5043 struct page *freelist = NULL;
ea8ea460
DW		 5044 unsigned long start_pfn, last_pfn;
5045 unsigned int npages;
42e8c186 5046 int iommu_id, level = 0;
5cf0a76f
DW		 5047
5048 /* Cope with horrid API which requires us to unmap more than the
5049 size argument if it happens to be a large-page mapping. */
dc02e46e 5050 BUG_ON(!pfn_to_dma_pte(dmar_domain, iova >> VTD_PAGE_SHIFT, &level));
5cf0a76f
DW		 5051
5052 if (size < VTD_PAGE_SIZE << level_to_offset_bits(level))
5053 size = VTD_PAGE_SIZE << level_to_offset_bits(level);
4b99d352 5054
ea8ea460
DW		 5055 start_pfn = iova >> VTD_PAGE_SHIFT;
5056 last_pfn = (iova + size - 1) >> VTD_PAGE_SHIFT;
5057
5058 freelist = domain_unmap(dmar_domain, start_pfn, last_pfn);
5059
5060 npages = last_pfn - start_pfn + 1;
5061
f746a025 5062 for_each_domain_iommu(iommu_id, dmar_domain)
42e8c186
JR		 5063 iommu_flush_iotlb_psi(g_iommus[iommu_id], dmar_domain,
5064 start_pfn, npages, !freelist, 0);
ea8ea460
DW		 5065
5066 dma_free_pagelist(freelist);
fe40f1e0 5067
163cc52c
DW		 5068 if (dmar_domain->max_addr == iova + size)
5069 dmar_domain->max_addr = iova;
b146a1c9 5070
5cf0a76f 5071 return size;
38717946 5072}
38717946 5073
d14d6577 5074static phys_addr_t intel_iommu_iova_to_phys(struct iommu_domain *domain,
bb5547ac 5075 dma_addr_t iova)
38717946 5076{
00a77deb 5077 struct dmar_domain *dmar_domain = to_dmar_domain(domain);
38717946 5078 struct dma_pte *pte;
5cf0a76f 5079 int level = 0;
faa3d6f5 5080 u64 phys = 0;
38717946 5081
5cf0a76f 5082 pte = pfn_to_dma_pte(dmar_domain, iova >> VTD_PAGE_SHIFT, &level);
38717946 5083 if (pte)
faa3d6f5 5084 phys = dma_pte_addr(pte);
38717946 5085
faa3d6f5 5086 return phys;
38717946 5087}
a8bcbb0d 5088
5d587b8d 5089static bool intel_iommu_capable(enum iommu_cap cap)
dbb9fd86 5090{
dbb9fd86 5091 if (cap == IOMMU_CAP_CACHE_COHERENCY)
5d587b8d 5092 return domain_update_iommu_snooping(NULL) == 1;
323f99cb 5093 if (cap == IOMMU_CAP_INTR_REMAP)
5d587b8d 5094 return irq_remapping_enabled == 1;
dbb9fd86 5095
5d587b8d 5096 return false;
dbb9fd86
SY		 5097}
5098
abdfdde2
AW		 5099static int intel_iommu_add_device(struct device *dev)
5100{
a5459cfe 5101 struct intel_iommu *iommu;
abdfdde2 5102 struct iommu_group *group;
156baca8 5103 u8 bus, devfn;
70ae6f0d 5104
a5459cfe
AW		 5105 iommu = device_to_iommu(dev, &bus, &devfn);
5106 if (!iommu)
70ae6f0d
AW		 5107 return -ENODEV;
5108
e3d10af1 5109 iommu_device_link(&iommu->iommu, dev);
a4ff1fc2 5110
e17f9ff4 5111 group = iommu_group_get_for_dev(dev);
783f157b 5112
e17f9ff4
AW		 5113 if (IS_ERR(group))
5114 return PTR_ERR(group);
bcb71abe 5115
abdfdde2 5116 iommu_group_put(group);
e17f9ff4 5117 return 0;
abdfdde2 5118}
70ae6f0d 5119
abdfdde2
AW		 5120static void intel_iommu_remove_device(struct device *dev)
5121{
a5459cfe
AW		 5122 struct intel_iommu *iommu;
5123 u8 bus, devfn;
5124
5125 iommu = device_to_iommu(dev, &bus, &devfn);
5126 if (!iommu)
5127 return;
5128
abdfdde2 5129 iommu_group_remove_device(dev);
a5459cfe 5130
e3d10af1 5131 iommu_device_unlink(&iommu->iommu, dev);
70ae6f0d
AW		 5132}
5133
0659b8dc
EA		 5134static void intel_iommu_get_resv_regions(struct device *device,
5135 struct list_head *head)
5136{
5137 struct iommu_resv_region *reg;
5138 struct dmar_rmrr_unit *rmrr;
5139 struct device *i_dev;
5140 int i;
5141
5142 rcu_read_lock();
5143 for_each_rmrr_units(rmrr) {
5144 for_each_active_dev_scope(rmrr->devices, rmrr->devices_cnt,
5145 i, i_dev) {
5146 if (i_dev != device)
5147 continue;
5148
5149 list_add_tail(&rmrr->resv->list, head);
5150 }
5151 }
5152 rcu_read_unlock();
5153
5154 reg = iommu_alloc_resv_region(IOAPIC_RANGE_START,
5155 IOAPIC_RANGE_END - IOAPIC_RANGE_START + 1,
9d3a4de4 5156 0, IOMMU_RESV_MSI);
0659b8dc
EA		 5157 if (!reg)
5158 return;
5159 list_add_tail(&reg->list, head);
5160}
5161
5162static void intel_iommu_put_resv_regions(struct device *dev,
5163 struct list_head *head)
5164{
5165 struct iommu_resv_region *entry, *next;
5166
5167 list_for_each_entry_safe(entry, next, head, list) {
5168 if (entry->type == IOMMU_RESV_RESERVED)
5169 kfree(entry);
5170 }
70ae6f0d
AW		 5171}
5172
2f26e0a9 5173#ifdef CONFIG_INTEL_IOMMU_SVM
65ca7f5f
JP		 5174#define MAX_NR_PASID_BITS (20)
5175static inline unsigned long intel_iommu_get_pts(struct intel_iommu *iommu)
5176{
5177 /*
5178 * Convert ecap_pss to extend context entry pts encoding, also
5179 * respect the soft pasid_max value set by the iommu.
5180 * - number of PASID bits = ecap_pss + 1
5181 * - number of PASID table entries = 2^(pts + 5)
5182 * Therefore, pts = ecap_pss - 4
5183 * e.g. KBL ecap_pss = 0x13, PASID has 20 bits, pts = 15
5184 */
5185 if (ecap_pss(iommu->ecap) < 5)
5186 return 0;
5187
5188 /* pasid_max is encoded as actual number of entries not the bits */
5189 return find_first_bit((unsigned long *)&iommu->pasid_max,
5190 MAX_NR_PASID_BITS) - 5;
5191}
5192
2f26e0a9
DW		 5193int intel_iommu_enable_pasid(struct intel_iommu *iommu, struct intel_svm_dev *sdev)
5194{
5195 struct device_domain_info *info;
5196 struct context_entry *context;
5197 struct dmar_domain *domain;
5198 unsigned long flags;
5199 u64 ctx_lo;
5200 int ret;
5201
5202 domain = get_valid_domain_for_dev(sdev->dev);
5203 if (!domain)
5204 return -EINVAL;
5205
5206 spin_lock_irqsave(&device_domain_lock, flags);
5207 spin_lock(&iommu->lock);
5208
5209 ret = -EINVAL;
5210 info = sdev->dev->archdata.iommu;
5211 if (!info || !info->pasid_supported)
5212 goto out;
5213
5214 context = iommu_context_addr(iommu, info->bus, info->devfn, 0);
5215 if (WARN_ON(!context))
5216 goto out;
5217
5218 ctx_lo = context[0].lo;
5219
5220 sdev->did = domain->iommu_did[iommu->seq_id];
5221 sdev->sid = PCI_DEVID(info->bus, info->devfn);
5222
5223 if (!(ctx_lo & CONTEXT_PASIDE)) {
11b93ebf
AR		 5224 if (iommu->pasid_state_table)
5225 context[1].hi = (u64)virt_to_phys(iommu->pasid_state_table);
65ca7f5f
JP		 5226 context[1].lo = (u64)virt_to_phys(iommu->pasid_table) |
5227 intel_iommu_get_pts(iommu);
5228
2f26e0a9
DW		 5229 wmb();
5230 /* CONTEXT_TT_MULTI_LEVEL and CONTEXT_TT_DEV_IOTLB are both
5231 * extended to permit requests-with-PASID if the PASIDE bit
5232 * is set. which makes sense. For CONTEXT_TT_PASS_THROUGH,
5233 * however, the PASIDE bit is ignored and requests-with-PASID
5234 * are unconditionally blocked. Which makes less sense.
5235 * So convert from CONTEXT_TT_PASS_THROUGH to one of the new
5236 * "guest mode" translation types depending on whether ATS
5237 * is available or not. Annoyingly, we can't use the new
5238 * modes *unless* PASIDE is set. */
5239 if ((ctx_lo & CONTEXT_TT_MASK) == (CONTEXT_TT_PASS_THROUGH << 2)) {
5240 ctx_lo &= ~CONTEXT_TT_MASK;
5241 if (info->ats_supported)
5242 ctx_lo |= CONTEXT_TT_PT_PASID_DEV_IOTLB << 2;
5243 else
5244 ctx_lo |= CONTEXT_TT_PT_PASID << 2;
5245 }
5246 ctx_lo |= CONTEXT_PASIDE;
907fea34
DW		 5247 if (iommu->pasid_state_table)
5248 ctx_lo |= CONTEXT_DINVE;
a222a7f0
DW		 5249 if (info->pri_supported)
5250 ctx_lo |= CONTEXT_PRS;
2f26e0a9
DW		 5251 context[0].lo = ctx_lo;
5252 wmb();
5253 iommu->flush.flush_context(iommu, sdev->did, sdev->sid,
5254 DMA_CCMD_MASK_NOBIT,
5255 DMA_CCMD_DEVICE_INVL);
5256 }
5257
5258 /* Enable PASID support in the device, if it wasn't already */
5259 if (!info->pasid_enabled)
5260 iommu_enable_dev_iotlb(info);
5261
5262 if (info->ats_enabled) {
5263 sdev->dev_iotlb = 1;
5264 sdev->qdep = info->ats_qdep;
5265 if (sdev->qdep >= QI_DEV_EIOTLB_MAX_INVS)
5266 sdev->qdep = 0;
5267 }
5268 ret = 0;
5269
5270 out:
5271 spin_unlock(&iommu->lock);
5272 spin_unlock_irqrestore(&device_domain_lock, flags);
5273
5274 return ret;
5275}
5276
5277struct intel_iommu *intel_svm_device_to_iommu(struct device *dev)
5278{
5279 struct intel_iommu *iommu;
5280 u8 bus, devfn;
5281
5282 if (iommu_dummy(dev)) {
5283 dev_warn(dev,
5284 "No IOMMU translation for device; cannot enable SVM\n");
5285 return NULL;
5286 }
5287
5288 iommu = device_to_iommu(dev, &bus, &devfn);
5289 if ((!iommu)) {
b9997e38 5290 dev_err(dev, "No IOMMU for device; cannot enable SVM\n");
2f26e0a9
DW		 5291 return NULL;
5292 }
5293
5294 if (!iommu->pasid_table) {
b9997e38 5295 dev_err(dev, "PASID not enabled on IOMMU; cannot enable SVM\n");
2f26e0a9
DW		 5296 return NULL;
5297 }
5298
5299 return iommu;
5300}
5301#endif /* CONFIG_INTEL_IOMMU_SVM */
5302
b0119e87 5303const struct iommu_ops intel_iommu_ops = {
0659b8dc
EA		 5304 .capable = intel_iommu_capable,
5305 .domain_alloc = intel_iommu_domain_alloc,
5306 .domain_free = intel_iommu_domain_free,
5307 .attach_dev = intel_iommu_attach_device,
5308 .detach_dev = intel_iommu_detach_device,
5309 .map = intel_iommu_map,
5310 .unmap = intel_iommu_unmap,
5311 .map_sg = default_iommu_map_sg,
5312 .iova_to_phys = intel_iommu_iova_to_phys,
5313 .add_device = intel_iommu_add_device,
5314 .remove_device = intel_iommu_remove_device,
5315 .get_resv_regions = intel_iommu_get_resv_regions,
5316 .put_resv_regions = intel_iommu_put_resv_regions,
5317 .device_group = pci_device_group,
5318 .pgsize_bitmap = INTEL_IOMMU_PGSIZES,
a8bcbb0d 5319};
9af88143 5320
9452618e
DV		 5321static void quirk_iommu_g4x_gfx(struct pci_dev *dev)
5322{
5323 /* G4x/GM45 integrated gfx dmar support is totally busted. */
9f10e5bf 5324 pr_info("Disabling IOMMU for graphics on this chipset\n");
9452618e
DV		 5325 dmar_map_gfx = 0;
5326}
5327
5328DECLARE_PCI_FIXUP_HEADER(PCI_VENDOR_ID_INTEL, 0x2a40, quirk_iommu_g4x_gfx);
5329DECLARE_PCI_FIXUP_HEADER(PCI_VENDOR_ID_INTEL, 0x2e00, quirk_iommu_g4x_gfx);
5330DECLARE_PCI_FIXUP_HEADER(PCI_VENDOR_ID_INTEL, 0x2e10, quirk_iommu_g4x_gfx);
5331DECLARE_PCI_FIXUP_HEADER(PCI_VENDOR_ID_INTEL, 0x2e20, quirk_iommu_g4x_gfx);
5332DECLARE_PCI_FIXUP_HEADER(PCI_VENDOR_ID_INTEL, 0x2e30, quirk_iommu_g4x_gfx);
5333DECLARE_PCI_FIXUP_HEADER(PCI_VENDOR_ID_INTEL, 0x2e40, quirk_iommu_g4x_gfx);
5334DECLARE_PCI_FIXUP_HEADER(PCI_VENDOR_ID_INTEL, 0x2e90, quirk_iommu_g4x_gfx);
5335
d34d6517 5336static void quirk_iommu_rwbf(struct pci_dev *dev)
9af88143
DW		 5337{
5338 /*
5339 * Mobile 4 Series Chipset neglects to set RWBF capability,
210561ff 5340 * but needs it. Same seems to hold for the desktop versions.
9af88143 5341 */
9f10e5bf 5342 pr_info("Forcing write-buffer flush capability\n");
9af88143
DW		 5343 rwbf_quirk = 1;
5344}
5345
5346DECLARE_PCI_FIXUP_HEADER(PCI_VENDOR_ID_INTEL, 0x2a40, quirk_iommu_rwbf);
210561ff
DV		 5347DECLARE_PCI_FIXUP_HEADER(PCI_VENDOR_ID_INTEL, 0x2e00, quirk_iommu_rwbf);
5348DECLARE_PCI_FIXUP_HEADER(PCI_VENDOR_ID_INTEL, 0x2e10, quirk_iommu_rwbf);
5349DECLARE_PCI_FIXUP_HEADER(PCI_VENDOR_ID_INTEL, 0x2e20, quirk_iommu_rwbf);
5350DECLARE_PCI_FIXUP_HEADER(PCI_VENDOR_ID_INTEL, 0x2e30, quirk_iommu_rwbf);
5351DECLARE_PCI_FIXUP_HEADER(PCI_VENDOR_ID_INTEL, 0x2e40, quirk_iommu_rwbf);
5352DECLARE_PCI_FIXUP_HEADER(PCI_VENDOR_ID_INTEL, 0x2e90, quirk_iommu_rwbf);
e0fc7e0b 5353
eecfd57f
AJ		 5354#define GGC 0x52
5355#define GGC_MEMORY_SIZE_MASK (0xf << 8)
5356#define GGC_MEMORY_SIZE_NONE (0x0 << 8)
5357#define GGC_MEMORY_SIZE_1M (0x1 << 8)
5358#define GGC_MEMORY_SIZE_2M (0x3 << 8)
5359#define GGC_MEMORY_VT_ENABLED (0x8 << 8)
5360#define GGC_MEMORY_SIZE_2M_VT (0x9 << 8)
5361#define GGC_MEMORY_SIZE_3M_VT (0xa << 8)
5362#define GGC_MEMORY_SIZE_4M_VT (0xb << 8)
5363
d34d6517 5364static void quirk_calpella_no_shadow_gtt(struct pci_dev *dev)
9eecabcb
DW		 5365{
5366 unsigned short ggc;
5367
eecfd57f 5368 if (pci_read_config_word(dev, GGC, &ggc))
9eecabcb
DW		 5369 return;
5370
eecfd57f 5371 if (!(ggc & GGC_MEMORY_VT_ENABLED)) {
9f10e5bf 5372 pr_info("BIOS has allocated no shadow GTT; disabling IOMMU for graphics\n");
9eecabcb 5373 dmar_map_gfx = 0;
6fbcfb3e
DW		 5374 } else if (dmar_map_gfx) {
5375 /* we have to ensure the gfx device is idle before we flush */
9f10e5bf 5376 pr_info("Disabling batched IOTLB flush on Ironlake\n");
6fbcfb3e
DW		 5377 intel_iommu_strict = 1;
5378 }
9eecabcb
DW		 5379}
5380DECLARE_PCI_FIXUP_HEADER(PCI_VENDOR_ID_INTEL, 0x0040, quirk_calpella_no_shadow_gtt);
5381DECLARE_PCI_FIXUP_HEADER(PCI_VENDOR_ID_INTEL, 0x0044, quirk_calpella_no_shadow_gtt);
5382DECLARE_PCI_FIXUP_HEADER(PCI_VENDOR_ID_INTEL, 0x0062, quirk_calpella_no_shadow_gtt);
5383DECLARE_PCI_FIXUP_HEADER(PCI_VENDOR_ID_INTEL, 0x006a, quirk_calpella_no_shadow_gtt);
5384
e0fc7e0b
DW		 5385/* On Tylersburg chipsets, some BIOSes have been known to enable the
5386 ISOCH DMAR unit for the Azalia sound device, but not give it any
5387 TLB entries, which causes it to deadlock. Check for that. We do
5388 this in a function called from init_dmars(), instead of in a PCI
5389 quirk, because we don't want to print the obnoxious "BIOS broken"
5390 message if VT-d is actually disabled.
5391*/
5392static void __init check_tylersburg_isoch(void)
5393{
5394 struct pci_dev *pdev;
5395 uint32_t vtisochctrl;
5396
5397 /* If there's no Azalia in the system anyway, forget it. */
5398 pdev = pci_get_device(PCI_VENDOR_ID_INTEL, 0x3a3e, NULL);
5399 if (!pdev)
5400 return;
5401 pci_dev_put(pdev);
5402
5403 /* System Management Registers. Might be hidden, in which case
5404 we can't do the sanity check. But that's OK, because the
5405 known-broken BIOSes _don't_ actually hide it, so far. */
5406 pdev = pci_get_device(PCI_VENDOR_ID_INTEL, 0x342e, NULL);
5407 if (!pdev)
5408 return;
5409
5410 if (pci_read_config_dword(pdev, 0x188, &vtisochctrl)) {
5411 pci_dev_put(pdev);
5412 return;
5413 }
5414
5415 pci_dev_put(pdev);
5416
5417 /* If Azalia DMA is routed to the non-isoch DMAR unit, fine. */
5418 if (vtisochctrl & 1)
5419 return;
5420
5421 /* Drop all bits other than the number of TLB entries */
5422 vtisochctrl &= 0x1c;
5423
5424 /* If we have the recommended number of TLB entries (16), fine. */
5425 if (vtisochctrl == 0x10)
5426 return;
5427
5428 /* Zero TLB entries? You get to ride the short bus to school. */
5429 if (!vtisochctrl) {
5430 WARN(1, "Your BIOS is broken; DMA routed to ISOCH DMAR unit but no TLB space.\n"
5431 "BIOS vendor: %s; Ver: %s; Product Version: %s\n",
5432 dmi_get_system_info(DMI_BIOS_VENDOR),
5433 dmi_get_system_info(DMI_BIOS_VERSION),
5434 dmi_get_system_info(DMI_PRODUCT_VERSION));
5435 iommu_identity_mapping |= IDENTMAP_AZALIA;
5436 return;
5437 }
9f10e5bf
JR		 5438
5439 pr_warn("Recommended TLB entries for ISOCH unit is 16; your BIOS set %d\n",
e0fc7e0b
DW		 5440 vtisochctrl);
5441}
Ubuntu Jammy Linux kernel mirror