2 * Copyright © 2008-2015 Intel Corporation
4 * Permission is hereby granted, free of charge, to any person obtaining a
5 * copy of this software and associated documentation files (the "Software"),
6 * to deal in the Software without restriction, including without limitation
7 * the rights to use, copy, modify, merge, publish, distribute, sublicense,
8 * and/or sell copies of the Software, and to permit persons to whom the
9 * Software is furnished to do so, subject to the following conditions:
11 * The above copyright notice and this permission notice (including the next
12 * paragraph) shall be included in all copies or substantial portions of the
15 * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
16 * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
17 * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL
18 * THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
19 * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING
20 * FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS
24 * Eric Anholt <eric@anholt.net>
28 #include <drm/drm_vma_manager.h>
29 #include <drm/drm_pci.h>
30 #include <drm/i915_drm.h>
31 #include <linux/dma-fence-array.h>
32 #include <linux/kthread.h>
33 #include <linux/reservation.h>
34 #include <linux/shmem_fs.h>
35 #include <linux/slab.h>
36 #include <linux/stop_machine.h>
37 #include <linux/swap.h>
38 #include <linux/pci.h>
39 #include <linux/dma-buf.h>
40 #include <linux/mman.h>
42 #include "gt/intel_engine_pm.h"
43 #include "gt/intel_gt_pm.h"
44 #include "gt/intel_mocs.h"
45 #include "gt/intel_reset.h"
46 #include "gt/intel_workarounds.h"
49 #include "i915_gem_clflush.h"
50 #include "i915_gemfs.h"
51 #include "i915_gem_pm.h"
52 #include "i915_trace.h"
53 #include "i915_vgpu.h"
55 #include "intel_display.h"
56 #include "intel_drv.h"
57 #include "intel_frontbuffer.h"
60 static void i915_gem_flush_free_objects(struct drm_i915_private *i915);
62 static bool cpu_write_needs_clflush(struct drm_i915_gem_object *obj)
67 if (!(obj->cache_coherent & I915_BO_CACHE_COHERENT_FOR_WRITE))
70 return obj->pin_global; /* currently in use by HW, keep flushed */
74 insert_mappable_node(struct i915_ggtt *ggtt,
75 struct drm_mm_node *node, u32 size)
77 memset(node, 0, sizeof(*node));
78 return drm_mm_insert_node_in_range(&ggtt->vm.mm, node,
79 size, 0, I915_COLOR_UNEVICTABLE,
80 0, ggtt->mappable_end,
85 remove_mappable_node(struct drm_mm_node *node)
87 drm_mm_remove_node(node);
90 /* some bookkeeping */
91 static void i915_gem_info_add_obj(struct drm_i915_private *dev_priv,
94 spin_lock(&dev_priv->mm.object_stat_lock);
95 dev_priv->mm.object_count++;
96 dev_priv->mm.object_memory += size;
97 spin_unlock(&dev_priv->mm.object_stat_lock);
100 static void i915_gem_info_remove_obj(struct drm_i915_private *dev_priv,
103 spin_lock(&dev_priv->mm.object_stat_lock);
104 dev_priv->mm.object_count--;
105 dev_priv->mm.object_memory -= size;
106 spin_unlock(&dev_priv->mm.object_stat_lock);
110 i915_gem_get_aperture_ioctl(struct drm_device *dev, void *data,
111 struct drm_file *file)
113 struct i915_ggtt *ggtt = &to_i915(dev)->ggtt;
114 struct drm_i915_gem_get_aperture *args = data;
115 struct i915_vma *vma;
118 mutex_lock(&ggtt->vm.mutex);
120 pinned = ggtt->vm.reserved;
121 list_for_each_entry(vma, &ggtt->vm.bound_list, vm_link)
122 if (i915_vma_is_pinned(vma))
123 pinned += vma->node.size;
125 mutex_unlock(&ggtt->vm.mutex);
127 args->aper_size = ggtt->vm.total;
128 args->aper_available_size = args->aper_size - pinned;
133 static int i915_gem_object_get_pages_phys(struct drm_i915_gem_object *obj)
135 struct address_space *mapping = obj->base.filp->f_mapping;
136 drm_dma_handle_t *phys;
138 struct scatterlist *sg;
143 if (WARN_ON(i915_gem_object_needs_bit17_swizzle(obj)))
146 /* Always aligning to the object size, allows a single allocation
147 * to handle all possible callers, and given typical object sizes,
148 * the alignment of the buddy allocation will naturally match.
150 phys = drm_pci_alloc(obj->base.dev,
151 roundup_pow_of_two(obj->base.size),
152 roundup_pow_of_two(obj->base.size));
157 for (i = 0; i < obj->base.size / PAGE_SIZE; i++) {
161 page = shmem_read_mapping_page(mapping, i);
167 src = kmap_atomic(page);
168 memcpy(vaddr, src, PAGE_SIZE);
169 drm_clflush_virt_range(vaddr, PAGE_SIZE);
176 i915_gem_chipset_flush(to_i915(obj->base.dev));
178 st = kmalloc(sizeof(*st), GFP_KERNEL);
184 if (sg_alloc_table(st, 1, GFP_KERNEL)) {
192 sg->length = obj->base.size;
194 sg_dma_address(sg) = phys->busaddr;
195 sg_dma_len(sg) = obj->base.size;
197 obj->phys_handle = phys;
199 __i915_gem_object_set_pages(obj, st, sg->length);
204 drm_pci_free(obj->base.dev, phys);
209 static void __start_cpu_write(struct drm_i915_gem_object *obj)
211 obj->read_domains = I915_GEM_DOMAIN_CPU;
212 obj->write_domain = I915_GEM_DOMAIN_CPU;
213 if (cpu_write_needs_clflush(obj))
214 obj->cache_dirty = true;
218 __i915_gem_object_release_shmem(struct drm_i915_gem_object *obj,
219 struct sg_table *pages,
222 GEM_BUG_ON(obj->mm.madv == __I915_MADV_PURGED);
224 if (obj->mm.madv == I915_MADV_DONTNEED)
225 obj->mm.dirty = false;
228 (obj->read_domains & I915_GEM_DOMAIN_CPU) == 0 &&
229 !(obj->cache_coherent & I915_BO_CACHE_COHERENT_FOR_READ))
230 drm_clflush_sg(pages);
232 __start_cpu_write(obj);
236 i915_gem_object_put_pages_phys(struct drm_i915_gem_object *obj,
237 struct sg_table *pages)
239 __i915_gem_object_release_shmem(obj, pages, false);
242 struct address_space *mapping = obj->base.filp->f_mapping;
243 char *vaddr = obj->phys_handle->vaddr;
246 for (i = 0; i < obj->base.size / PAGE_SIZE; i++) {
250 page = shmem_read_mapping_page(mapping, i);
254 dst = kmap_atomic(page);
255 drm_clflush_virt_range(vaddr, PAGE_SIZE);
256 memcpy(dst, vaddr, PAGE_SIZE);
259 set_page_dirty(page);
260 if (obj->mm.madv == I915_MADV_WILLNEED)
261 mark_page_accessed(page);
265 obj->mm.dirty = false;
268 sg_free_table(pages);
271 drm_pci_free(obj->base.dev, obj->phys_handle);
275 i915_gem_object_release_phys(struct drm_i915_gem_object *obj)
277 i915_gem_object_unpin_pages(obj);
280 static const struct drm_i915_gem_object_ops i915_gem_phys_ops = {
281 .get_pages = i915_gem_object_get_pages_phys,
282 .put_pages = i915_gem_object_put_pages_phys,
283 .release = i915_gem_object_release_phys,
286 static const struct drm_i915_gem_object_ops i915_gem_object_ops;
288 int i915_gem_object_unbind(struct drm_i915_gem_object *obj)
290 struct i915_vma *vma;
291 LIST_HEAD(still_in_list);
294 lockdep_assert_held(&obj->base.dev->struct_mutex);
296 /* Closed vma are removed from the obj->vma_list - but they may
297 * still have an active binding on the object. To remove those we
298 * must wait for all rendering to complete to the object (as unbinding
299 * must anyway), and retire the requests.
301 ret = i915_gem_object_set_to_cpu_domain(obj, false);
305 spin_lock(&obj->vma.lock);
306 while (!ret && (vma = list_first_entry_or_null(&obj->vma.list,
309 list_move_tail(&vma->obj_link, &still_in_list);
310 spin_unlock(&obj->vma.lock);
312 ret = i915_vma_unbind(vma);
314 spin_lock(&obj->vma.lock);
316 list_splice(&still_in_list, &obj->vma.list);
317 spin_unlock(&obj->vma.lock);
323 i915_gem_object_wait_fence(struct dma_fence *fence,
327 struct i915_request *rq;
329 BUILD_BUG_ON(I915_WAIT_INTERRUPTIBLE != 0x1);
331 if (test_bit(DMA_FENCE_FLAG_SIGNALED_BIT, &fence->flags))
334 if (!dma_fence_is_i915(fence))
335 return dma_fence_wait_timeout(fence,
336 flags & I915_WAIT_INTERRUPTIBLE,
339 rq = to_request(fence);
340 if (i915_request_completed(rq))
343 timeout = i915_request_wait(rq, flags, timeout);
346 if (flags & I915_WAIT_LOCKED && i915_request_completed(rq))
347 i915_request_retire_upto(rq);
353 i915_gem_object_wait_reservation(struct reservation_object *resv,
357 unsigned int seq = __read_seqcount_begin(&resv->seq);
358 struct dma_fence *excl;
359 bool prune_fences = false;
361 if (flags & I915_WAIT_ALL) {
362 struct dma_fence **shared;
363 unsigned int count, i;
366 ret = reservation_object_get_fences_rcu(resv,
367 &excl, &count, &shared);
371 for (i = 0; i < count; i++) {
372 timeout = i915_gem_object_wait_fence(shared[i],
377 dma_fence_put(shared[i]);
380 for (; i < count; i++)
381 dma_fence_put(shared[i]);
385 * If both shared fences and an exclusive fence exist,
386 * then by construction the shared fences must be later
387 * than the exclusive fence. If we successfully wait for
388 * all the shared fences, we know that the exclusive fence
389 * must all be signaled. If all the shared fences are
390 * signaled, we can prune the array and recover the
391 * floating references on the fences/requests.
393 prune_fences = count && timeout >= 0;
395 excl = reservation_object_get_excl_rcu(resv);
398 if (excl && timeout >= 0)
399 timeout = i915_gem_object_wait_fence(excl, flags, timeout);
404 * Opportunistically prune the fences iff we know they have *all* been
405 * signaled and that the reservation object has not been changed (i.e.
406 * no new fences have been added).
408 if (prune_fences && !__read_seqcount_retry(&resv->seq, seq)) {
409 if (reservation_object_trylock(resv)) {
410 if (!__read_seqcount_retry(&resv->seq, seq))
411 reservation_object_add_excl_fence(resv, NULL);
412 reservation_object_unlock(resv);
419 static void __fence_set_priority(struct dma_fence *fence,
420 const struct i915_sched_attr *attr)
422 struct i915_request *rq;
423 struct intel_engine_cs *engine;
425 if (dma_fence_is_signaled(fence) || !dma_fence_is_i915(fence))
428 rq = to_request(fence);
432 rcu_read_lock(); /* RCU serialisation for set-wedged protection */
433 if (engine->schedule)
434 engine->schedule(rq, attr);
436 local_bh_enable(); /* kick the tasklets if queues were reprioritised */
439 static void fence_set_priority(struct dma_fence *fence,
440 const struct i915_sched_attr *attr)
442 /* Recurse once into a fence-array */
443 if (dma_fence_is_array(fence)) {
444 struct dma_fence_array *array = to_dma_fence_array(fence);
447 for (i = 0; i < array->num_fences; i++)
448 __fence_set_priority(array->fences[i], attr);
450 __fence_set_priority(fence, attr);
455 i915_gem_object_wait_priority(struct drm_i915_gem_object *obj,
457 const struct i915_sched_attr *attr)
459 struct dma_fence *excl;
461 if (flags & I915_WAIT_ALL) {
462 struct dma_fence **shared;
463 unsigned int count, i;
466 ret = reservation_object_get_fences_rcu(obj->resv,
467 &excl, &count, &shared);
471 for (i = 0; i < count; i++) {
472 fence_set_priority(shared[i], attr);
473 dma_fence_put(shared[i]);
478 excl = reservation_object_get_excl_rcu(obj->resv);
482 fence_set_priority(excl, attr);
489 * Waits for rendering to the object to be completed
490 * @obj: i915 gem object
491 * @flags: how to wait (under a lock, for all rendering or just for writes etc)
492 * @timeout: how long to wait
495 i915_gem_object_wait(struct drm_i915_gem_object *obj,
500 GEM_BUG_ON(timeout < 0);
502 timeout = i915_gem_object_wait_reservation(obj->resv, flags, timeout);
503 return timeout < 0 ? timeout : 0;
507 i915_gem_phys_pwrite(struct drm_i915_gem_object *obj,
508 struct drm_i915_gem_pwrite *args,
509 struct drm_file *file)
511 void *vaddr = obj->phys_handle->vaddr + args->offset;
512 char __user *user_data = u64_to_user_ptr(args->data_ptr);
514 /* We manually control the domain here and pretend that it
515 * remains coherent i.e. in the GTT domain, like shmem_pwrite.
517 intel_fb_obj_invalidate(obj, ORIGIN_CPU);
518 if (copy_from_user(vaddr, user_data, args->size))
521 drm_clflush_virt_range(vaddr, args->size);
522 i915_gem_chipset_flush(to_i915(obj->base.dev));
524 intel_fb_obj_flush(obj, ORIGIN_CPU);
529 i915_gem_create(struct drm_file *file,
530 struct drm_i915_private *dev_priv,
534 struct drm_i915_gem_object *obj;
539 size = round_up(*size_p, PAGE_SIZE);
543 /* Allocate the new object */
544 obj = i915_gem_object_create(dev_priv, size);
548 ret = drm_gem_handle_create(file, &obj->base, &handle);
549 /* drop reference from allocate - handle holds it now */
550 i915_gem_object_put(obj);
560 i915_gem_dumb_create(struct drm_file *file,
561 struct drm_device *dev,
562 struct drm_mode_create_dumb *args)
564 int cpp = DIV_ROUND_UP(args->bpp, 8);
569 format = DRM_FORMAT_C8;
572 format = DRM_FORMAT_RGB565;
575 format = DRM_FORMAT_XRGB8888;
581 /* have to work out size/pitch and return them */
582 args->pitch = ALIGN(args->width * cpp, 64);
584 /* align stride to page size so that we can remap */
585 if (args->pitch > intel_plane_fb_max_stride(to_i915(dev), format,
586 DRM_FORMAT_MOD_LINEAR))
587 args->pitch = ALIGN(args->pitch, 4096);
589 args->size = args->pitch * args->height;
590 return i915_gem_create(file, to_i915(dev),
591 &args->size, &args->handle);
594 static bool gpu_write_needs_clflush(struct drm_i915_gem_object *obj)
596 return !(obj->cache_level == I915_CACHE_NONE ||
597 obj->cache_level == I915_CACHE_WT);
601 * Creates a new mm object and returns a handle to it.
602 * @dev: drm device pointer
603 * @data: ioctl data blob
604 * @file: drm file pointer
607 i915_gem_create_ioctl(struct drm_device *dev, void *data,
608 struct drm_file *file)
610 struct drm_i915_private *dev_priv = to_i915(dev);
611 struct drm_i915_gem_create *args = data;
613 i915_gem_flush_free_objects(dev_priv);
615 return i915_gem_create(file, dev_priv,
616 &args->size, &args->handle);
619 static inline enum fb_op_origin
620 fb_write_origin(struct drm_i915_gem_object *obj, unsigned int domain)
622 return (domain == I915_GEM_DOMAIN_GTT ?
623 obj->frontbuffer_ggtt_origin : ORIGIN_CPU);
626 void i915_gem_flush_ggtt_writes(struct drm_i915_private *dev_priv)
628 intel_wakeref_t wakeref;
631 * No actual flushing is required for the GTT write domain for reads
632 * from the GTT domain. Writes to it "immediately" go to main memory
633 * as far as we know, so there's no chipset flush. It also doesn't
634 * land in the GPU render cache.
636 * However, we do have to enforce the order so that all writes through
637 * the GTT land before any writes to the device, such as updates to
640 * We also have to wait a bit for the writes to land from the GTT.
641 * An uncached read (i.e. mmio) seems to be ideal for the round-trip
642 * timing. This issue has only been observed when switching quickly
643 * between GTT writes and CPU reads from inside the kernel on recent hw,
644 * and it appears to only affect discrete GTT blocks (i.e. on LLC
645 * system agents we cannot reproduce this behaviour, until Cannonlake
651 if (INTEL_INFO(dev_priv)->has_coherent_ggtt)
654 i915_gem_chipset_flush(dev_priv);
656 with_intel_runtime_pm(dev_priv, wakeref) {
657 spin_lock_irq(&dev_priv->uncore.lock);
659 POSTING_READ_FW(RING_HEAD(RENDER_RING_BASE));
661 spin_unlock_irq(&dev_priv->uncore.lock);
666 flush_write_domain(struct drm_i915_gem_object *obj, unsigned int flush_domains)
668 struct drm_i915_private *dev_priv = to_i915(obj->base.dev);
669 struct i915_vma *vma;
671 if (!(obj->write_domain & flush_domains))
674 switch (obj->write_domain) {
675 case I915_GEM_DOMAIN_GTT:
676 i915_gem_flush_ggtt_writes(dev_priv);
678 intel_fb_obj_flush(obj,
679 fb_write_origin(obj, I915_GEM_DOMAIN_GTT));
681 for_each_ggtt_vma(vma, obj) {
685 i915_vma_unset_ggtt_write(vma);
689 case I915_GEM_DOMAIN_WC:
693 case I915_GEM_DOMAIN_CPU:
694 i915_gem_clflush_object(obj, I915_CLFLUSH_SYNC);
697 case I915_GEM_DOMAIN_RENDER:
698 if (gpu_write_needs_clflush(obj))
699 obj->cache_dirty = true;
703 obj->write_domain = 0;
707 * Pins the specified object's pages and synchronizes the object with
708 * GPU accesses. Sets needs_clflush to non-zero if the caller should
709 * flush the object from the CPU cache.
711 int i915_gem_obj_prepare_shmem_read(struct drm_i915_gem_object *obj,
712 unsigned int *needs_clflush)
716 lockdep_assert_held(&obj->base.dev->struct_mutex);
719 if (!i915_gem_object_has_struct_page(obj))
722 ret = i915_gem_object_wait(obj,
723 I915_WAIT_INTERRUPTIBLE |
725 MAX_SCHEDULE_TIMEOUT);
729 ret = i915_gem_object_pin_pages(obj);
733 if (obj->cache_coherent & I915_BO_CACHE_COHERENT_FOR_READ ||
734 !static_cpu_has(X86_FEATURE_CLFLUSH)) {
735 ret = i915_gem_object_set_to_cpu_domain(obj, false);
742 flush_write_domain(obj, ~I915_GEM_DOMAIN_CPU);
744 /* If we're not in the cpu read domain, set ourself into the gtt
745 * read domain and manually flush cachelines (if required). This
746 * optimizes for the case when the gpu will dirty the data
747 * anyway again before the next pread happens.
749 if (!obj->cache_dirty &&
750 !(obj->read_domains & I915_GEM_DOMAIN_CPU))
751 *needs_clflush = CLFLUSH_BEFORE;
754 /* return with the pages pinned */
758 i915_gem_object_unpin_pages(obj);
762 int i915_gem_obj_prepare_shmem_write(struct drm_i915_gem_object *obj,
763 unsigned int *needs_clflush)
767 lockdep_assert_held(&obj->base.dev->struct_mutex);
770 if (!i915_gem_object_has_struct_page(obj))
773 ret = i915_gem_object_wait(obj,
774 I915_WAIT_INTERRUPTIBLE |
777 MAX_SCHEDULE_TIMEOUT);
781 ret = i915_gem_object_pin_pages(obj);
785 if (obj->cache_coherent & I915_BO_CACHE_COHERENT_FOR_WRITE ||
786 !static_cpu_has(X86_FEATURE_CLFLUSH)) {
787 ret = i915_gem_object_set_to_cpu_domain(obj, true);
794 flush_write_domain(obj, ~I915_GEM_DOMAIN_CPU);
796 /* If we're not in the cpu write domain, set ourself into the
797 * gtt write domain and manually flush cachelines (as required).
798 * This optimizes for the case when the gpu will use the data
799 * right away and we therefore have to clflush anyway.
801 if (!obj->cache_dirty) {
802 *needs_clflush |= CLFLUSH_AFTER;
805 * Same trick applies to invalidate partially written
806 * cachelines read before writing.
808 if (!(obj->read_domains & I915_GEM_DOMAIN_CPU))
809 *needs_clflush |= CLFLUSH_BEFORE;
813 intel_fb_obj_invalidate(obj, ORIGIN_CPU);
814 obj->mm.dirty = true;
815 /* return with the pages pinned */
819 i915_gem_object_unpin_pages(obj);
824 shmem_pread(struct page *page, int offset, int len, char __user *user_data,
833 drm_clflush_virt_range(vaddr + offset, len);
835 ret = __copy_to_user(user_data, vaddr + offset, len);
839 return ret ? -EFAULT : 0;
843 i915_gem_shmem_pread(struct drm_i915_gem_object *obj,
844 struct drm_i915_gem_pread *args)
846 char __user *user_data;
848 unsigned int needs_clflush;
849 unsigned int idx, offset;
852 ret = mutex_lock_interruptible(&obj->base.dev->struct_mutex);
856 ret = i915_gem_obj_prepare_shmem_read(obj, &needs_clflush);
857 mutex_unlock(&obj->base.dev->struct_mutex);
862 user_data = u64_to_user_ptr(args->data_ptr);
863 offset = offset_in_page(args->offset);
864 for (idx = args->offset >> PAGE_SHIFT; remain; idx++) {
865 struct page *page = i915_gem_object_get_page(obj, idx);
866 unsigned int length = min_t(u64, remain, PAGE_SIZE - offset);
868 ret = shmem_pread(page, offset, length, user_data,
878 i915_gem_obj_finish_shmem_access(obj);
883 gtt_user_read(struct io_mapping *mapping,
884 loff_t base, int offset,
885 char __user *user_data, int length)
888 unsigned long unwritten;
890 /* We can use the cpu mem copy function because this is X86. */
891 vaddr = io_mapping_map_atomic_wc(mapping, base);
892 unwritten = __copy_to_user_inatomic(user_data,
893 (void __force *)vaddr + offset,
895 io_mapping_unmap_atomic(vaddr);
897 vaddr = io_mapping_map_wc(mapping, base, PAGE_SIZE);
898 unwritten = copy_to_user(user_data,
899 (void __force *)vaddr + offset,
901 io_mapping_unmap(vaddr);
907 i915_gem_gtt_pread(struct drm_i915_gem_object *obj,
908 const struct drm_i915_gem_pread *args)
910 struct drm_i915_private *i915 = to_i915(obj->base.dev);
911 struct i915_ggtt *ggtt = &i915->ggtt;
912 intel_wakeref_t wakeref;
913 struct drm_mm_node node;
914 struct i915_vma *vma;
915 void __user *user_data;
919 ret = mutex_lock_interruptible(&i915->drm.struct_mutex);
923 wakeref = intel_runtime_pm_get(i915);
924 vma = i915_gem_object_ggtt_pin(obj, NULL, 0, 0,
929 node.start = i915_ggtt_offset(vma);
930 node.allocated = false;
931 ret = i915_vma_put_fence(vma);
938 ret = insert_mappable_node(ggtt, &node, PAGE_SIZE);
941 GEM_BUG_ON(!node.allocated);
944 ret = i915_gem_object_set_to_gtt_domain(obj, false);
948 mutex_unlock(&i915->drm.struct_mutex);
950 user_data = u64_to_user_ptr(args->data_ptr);
952 offset = args->offset;
955 /* Operation in this page
957 * page_base = page offset within aperture
958 * page_offset = offset within page
959 * page_length = bytes to copy for this page
961 u32 page_base = node.start;
962 unsigned page_offset = offset_in_page(offset);
963 unsigned page_length = PAGE_SIZE - page_offset;
964 page_length = remain < page_length ? remain : page_length;
965 if (node.allocated) {
967 ggtt->vm.insert_page(&ggtt->vm,
968 i915_gem_object_get_dma_address(obj, offset >> PAGE_SHIFT),
969 node.start, I915_CACHE_NONE, 0);
972 page_base += offset & PAGE_MASK;
975 if (gtt_user_read(&ggtt->iomap, page_base, page_offset,
976 user_data, page_length)) {
981 remain -= page_length;
982 user_data += page_length;
983 offset += page_length;
986 mutex_lock(&i915->drm.struct_mutex);
988 if (node.allocated) {
990 ggtt->vm.clear_range(&ggtt->vm, node.start, node.size);
991 remove_mappable_node(&node);
996 intel_runtime_pm_put(i915, wakeref);
997 mutex_unlock(&i915->drm.struct_mutex);
1003 * Reads data from the object referenced by handle.
1004 * @dev: drm device pointer
1005 * @data: ioctl data blob
1006 * @file: drm file pointer
1008 * On error, the contents of *data are undefined.
1011 i915_gem_pread_ioctl(struct drm_device *dev, void *data,
1012 struct drm_file *file)
1014 struct drm_i915_gem_pread *args = data;
1015 struct drm_i915_gem_object *obj;
1018 if (args->size == 0)
1021 if (!access_ok(u64_to_user_ptr(args->data_ptr),
1025 obj = i915_gem_object_lookup(file, args->handle);
1029 /* Bounds check source. */
1030 if (range_overflows_t(u64, args->offset, args->size, obj->base.size)) {
1035 trace_i915_gem_object_pread(obj, args->offset, args->size);
1037 ret = i915_gem_object_wait(obj,
1038 I915_WAIT_INTERRUPTIBLE,
1039 MAX_SCHEDULE_TIMEOUT);
1043 ret = i915_gem_object_pin_pages(obj);
1047 ret = i915_gem_shmem_pread(obj, args);
1048 if (ret == -EFAULT || ret == -ENODEV)
1049 ret = i915_gem_gtt_pread(obj, args);
1051 i915_gem_object_unpin_pages(obj);
1053 i915_gem_object_put(obj);
1057 /* This is the fast write path which cannot handle
1058 * page faults in the source data
1062 ggtt_write(struct io_mapping *mapping,
1063 loff_t base, int offset,
1064 char __user *user_data, int length)
1066 void __iomem *vaddr;
1067 unsigned long unwritten;
1069 /* We can use the cpu mem copy function because this is X86. */
1070 vaddr = io_mapping_map_atomic_wc(mapping, base);
1071 unwritten = __copy_from_user_inatomic_nocache((void __force *)vaddr + offset,
1073 io_mapping_unmap_atomic(vaddr);
1075 vaddr = io_mapping_map_wc(mapping, base, PAGE_SIZE);
1076 unwritten = copy_from_user((void __force *)vaddr + offset,
1078 io_mapping_unmap(vaddr);
1085 * This is the fast pwrite path, where we copy the data directly from the
1086 * user into the GTT, uncached.
1087 * @obj: i915 GEM object
1088 * @args: pwrite arguments structure
1091 i915_gem_gtt_pwrite_fast(struct drm_i915_gem_object *obj,
1092 const struct drm_i915_gem_pwrite *args)
1094 struct drm_i915_private *i915 = to_i915(obj->base.dev);
1095 struct i915_ggtt *ggtt = &i915->ggtt;
1096 intel_wakeref_t wakeref;
1097 struct drm_mm_node node;
1098 struct i915_vma *vma;
1100 void __user *user_data;
1103 ret = mutex_lock_interruptible(&i915->drm.struct_mutex);
1107 if (i915_gem_object_has_struct_page(obj)) {
1109 * Avoid waking the device up if we can fallback, as
1110 * waking/resuming is very slow (worst-case 10-100 ms
1111 * depending on PCI sleeps and our own resume time).
1112 * This easily dwarfs any performance advantage from
1113 * using the cache bypass of indirect GGTT access.
1115 wakeref = intel_runtime_pm_get_if_in_use(i915);
1121 /* No backing pages, no fallback, we must force GGTT access */
1122 wakeref = intel_runtime_pm_get(i915);
1125 vma = i915_gem_object_ggtt_pin(obj, NULL, 0, 0,
1130 node.start = i915_ggtt_offset(vma);
1131 node.allocated = false;
1132 ret = i915_vma_put_fence(vma);
1134 i915_vma_unpin(vma);
1139 ret = insert_mappable_node(ggtt, &node, PAGE_SIZE);
1142 GEM_BUG_ON(!node.allocated);
1145 ret = i915_gem_object_set_to_gtt_domain(obj, true);
1149 mutex_unlock(&i915->drm.struct_mutex);
1151 intel_fb_obj_invalidate(obj, ORIGIN_CPU);
1153 user_data = u64_to_user_ptr(args->data_ptr);
1154 offset = args->offset;
1155 remain = args->size;
1157 /* Operation in this page
1159 * page_base = page offset within aperture
1160 * page_offset = offset within page
1161 * page_length = bytes to copy for this page
1163 u32 page_base = node.start;
1164 unsigned int page_offset = offset_in_page(offset);
1165 unsigned int page_length = PAGE_SIZE - page_offset;
1166 page_length = remain < page_length ? remain : page_length;
1167 if (node.allocated) {
1168 wmb(); /* flush the write before we modify the GGTT */
1169 ggtt->vm.insert_page(&ggtt->vm,
1170 i915_gem_object_get_dma_address(obj, offset >> PAGE_SHIFT),
1171 node.start, I915_CACHE_NONE, 0);
1172 wmb(); /* flush modifications to the GGTT (insert_page) */
1174 page_base += offset & PAGE_MASK;
1176 /* If we get a fault while copying data, then (presumably) our
1177 * source page isn't available. Return the error and we'll
1178 * retry in the slow path.
1179 * If the object is non-shmem backed, we retry again with the
1180 * path that handles page fault.
1182 if (ggtt_write(&ggtt->iomap, page_base, page_offset,
1183 user_data, page_length)) {
1188 remain -= page_length;
1189 user_data += page_length;
1190 offset += page_length;
1192 intel_fb_obj_flush(obj, ORIGIN_CPU);
1194 mutex_lock(&i915->drm.struct_mutex);
1196 if (node.allocated) {
1198 ggtt->vm.clear_range(&ggtt->vm, node.start, node.size);
1199 remove_mappable_node(&node);
1201 i915_vma_unpin(vma);
1204 intel_runtime_pm_put(i915, wakeref);
1206 mutex_unlock(&i915->drm.struct_mutex);
1210 /* Per-page copy function for the shmem pwrite fastpath.
1211 * Flushes invalid cachelines before writing to the target if
1212 * needs_clflush_before is set and flushes out any written cachelines after
1213 * writing if needs_clflush is set.
1216 shmem_pwrite(struct page *page, int offset, int len, char __user *user_data,
1217 bool needs_clflush_before,
1218 bool needs_clflush_after)
1225 if (needs_clflush_before)
1226 drm_clflush_virt_range(vaddr + offset, len);
1228 ret = __copy_from_user(vaddr + offset, user_data, len);
1229 if (!ret && needs_clflush_after)
1230 drm_clflush_virt_range(vaddr + offset, len);
1234 return ret ? -EFAULT : 0;
1238 i915_gem_shmem_pwrite(struct drm_i915_gem_object *obj,
1239 const struct drm_i915_gem_pwrite *args)
1241 struct drm_i915_private *i915 = to_i915(obj->base.dev);
1242 void __user *user_data;
1244 unsigned int partial_cacheline_write;
1245 unsigned int needs_clflush;
1246 unsigned int offset, idx;
1249 ret = mutex_lock_interruptible(&i915->drm.struct_mutex);
1253 ret = i915_gem_obj_prepare_shmem_write(obj, &needs_clflush);
1254 mutex_unlock(&i915->drm.struct_mutex);
1258 /* If we don't overwrite a cacheline completely we need to be
1259 * careful to have up-to-date data by first clflushing. Don't
1260 * overcomplicate things and flush the entire patch.
1262 partial_cacheline_write = 0;
1263 if (needs_clflush & CLFLUSH_BEFORE)
1264 partial_cacheline_write = boot_cpu_data.x86_clflush_size - 1;
1266 user_data = u64_to_user_ptr(args->data_ptr);
1267 remain = args->size;
1268 offset = offset_in_page(args->offset);
1269 for (idx = args->offset >> PAGE_SHIFT; remain; idx++) {
1270 struct page *page = i915_gem_object_get_page(obj, idx);
1271 unsigned int length = min_t(u64, remain, PAGE_SIZE - offset);
1273 ret = shmem_pwrite(page, offset, length, user_data,
1274 (offset | length) & partial_cacheline_write,
1275 needs_clflush & CLFLUSH_AFTER);
1280 user_data += length;
1284 intel_fb_obj_flush(obj, ORIGIN_CPU);
1285 i915_gem_obj_finish_shmem_access(obj);
1290 * Writes data to the object referenced by handle.
1292 * @data: ioctl data blob
1295 * On error, the contents of the buffer that were to be modified are undefined.
1298 i915_gem_pwrite_ioctl(struct drm_device *dev, void *data,
1299 struct drm_file *file)
1301 struct drm_i915_gem_pwrite *args = data;
1302 struct drm_i915_gem_object *obj;
1305 if (args->size == 0)
1308 if (!access_ok(u64_to_user_ptr(args->data_ptr), args->size))
1311 obj = i915_gem_object_lookup(file, args->handle);
1315 /* Bounds check destination. */
1316 if (range_overflows_t(u64, args->offset, args->size, obj->base.size)) {
1321 /* Writes not allowed into this read-only object */
1322 if (i915_gem_object_is_readonly(obj)) {
1327 trace_i915_gem_object_pwrite(obj, args->offset, args->size);
1330 if (obj->ops->pwrite)
1331 ret = obj->ops->pwrite(obj, args);
1335 ret = i915_gem_object_wait(obj,
1336 I915_WAIT_INTERRUPTIBLE |
1338 MAX_SCHEDULE_TIMEOUT);
1342 ret = i915_gem_object_pin_pages(obj);
1347 /* We can only do the GTT pwrite on untiled buffers, as otherwise
1348 * it would end up going through the fenced access, and we'll get
1349 * different detiling behavior between reading and writing.
1350 * pread/pwrite currently are reading and writing from the CPU
1351 * perspective, requiring manual detiling by the client.
1353 if (!i915_gem_object_has_struct_page(obj) ||
1354 cpu_write_needs_clflush(obj))
1355 /* Note that the gtt paths might fail with non-page-backed user
1356 * pointers (e.g. gtt mappings when moving data between
1357 * textures). Fallback to the shmem path in that case.
1359 ret = i915_gem_gtt_pwrite_fast(obj, args);
1361 if (ret == -EFAULT || ret == -ENOSPC) {
1362 if (obj->phys_handle)
1363 ret = i915_gem_phys_pwrite(obj, args, file);
1365 ret = i915_gem_shmem_pwrite(obj, args);
1368 i915_gem_object_unpin_pages(obj);
1370 i915_gem_object_put(obj);
1374 static void i915_gem_object_bump_inactive_ggtt(struct drm_i915_gem_object *obj)
1376 struct drm_i915_private *i915 = to_i915(obj->base.dev);
1377 struct list_head *list;
1378 struct i915_vma *vma;
1380 GEM_BUG_ON(!i915_gem_object_has_pinned_pages(obj));
1382 mutex_lock(&i915->ggtt.vm.mutex);
1383 for_each_ggtt_vma(vma, obj) {
1384 if (!drm_mm_node_allocated(&vma->node))
1387 list_move_tail(&vma->vm_link, &vma->vm->bound_list);
1389 mutex_unlock(&i915->ggtt.vm.mutex);
1391 spin_lock(&i915->mm.obj_lock);
1392 list = obj->bind_count ? &i915->mm.bound_list : &i915->mm.unbound_list;
1393 list_move_tail(&obj->mm.link, list);
1394 spin_unlock(&i915->mm.obj_lock);
1398 * Called when user space prepares to use an object with the CPU, either
1399 * through the mmap ioctl's mapping or a GTT mapping.
1401 * @data: ioctl data blob
1405 i915_gem_set_domain_ioctl(struct drm_device *dev, void *data,
1406 struct drm_file *file)
1408 struct drm_i915_gem_set_domain *args = data;
1409 struct drm_i915_gem_object *obj;
1410 u32 read_domains = args->read_domains;
1411 u32 write_domain = args->write_domain;
1414 /* Only handle setting domains to types used by the CPU. */
1415 if ((write_domain | read_domains) & I915_GEM_GPU_DOMAINS)
1419 * Having something in the write domain implies it's in the read
1420 * domain, and only that read domain. Enforce that in the request.
1422 if (write_domain && read_domains != write_domain)
1428 obj = i915_gem_object_lookup(file, args->handle);
1433 * Already in the desired write domain? Nothing for us to do!
1435 * We apply a little bit of cunning here to catch a broader set of
1436 * no-ops. If obj->write_domain is set, we must be in the same
1437 * obj->read_domains, and only that domain. Therefore, if that
1438 * obj->write_domain matches the request read_domains, we are
1439 * already in the same read/write domain and can skip the operation,
1440 * without having to further check the requested write_domain.
1442 if (READ_ONCE(obj->write_domain) == read_domains) {
1448 * Try to flush the object off the GPU without holding the lock.
1449 * We will repeat the flush holding the lock in the normal manner
1450 * to catch cases where we are gazumped.
1452 err = i915_gem_object_wait(obj,
1453 I915_WAIT_INTERRUPTIBLE |
1454 I915_WAIT_PRIORITY |
1455 (write_domain ? I915_WAIT_ALL : 0),
1456 MAX_SCHEDULE_TIMEOUT);
1461 * Proxy objects do not control access to the backing storage, ergo
1462 * they cannot be used as a means to manipulate the cache domain
1463 * tracking for that backing storage. The proxy object is always
1464 * considered to be outside of any cache domain.
1466 if (i915_gem_object_is_proxy(obj)) {
1472 * Flush and acquire obj->pages so that we are coherent through
1473 * direct access in memory with previous cached writes through
1474 * shmemfs and that our cache domain tracking remains valid.
1475 * For example, if the obj->filp was moved to swap without us
1476 * being notified and releasing the pages, we would mistakenly
1477 * continue to assume that the obj remained out of the CPU cached
1480 err = i915_gem_object_pin_pages(obj);
1484 err = i915_mutex_lock_interruptible(dev);
1488 if (read_domains & I915_GEM_DOMAIN_WC)
1489 err = i915_gem_object_set_to_wc_domain(obj, write_domain);
1490 else if (read_domains & I915_GEM_DOMAIN_GTT)
1491 err = i915_gem_object_set_to_gtt_domain(obj, write_domain);
1493 err = i915_gem_object_set_to_cpu_domain(obj, write_domain);
1495 /* And bump the LRU for this access */
1496 i915_gem_object_bump_inactive_ggtt(obj);
1498 mutex_unlock(&dev->struct_mutex);
1500 if (write_domain != 0)
1501 intel_fb_obj_invalidate(obj,
1502 fb_write_origin(obj, write_domain));
1505 i915_gem_object_unpin_pages(obj);
1507 i915_gem_object_put(obj);
1512 * Called when user space has done writes to this buffer
1514 * @data: ioctl data blob
1518 i915_gem_sw_finish_ioctl(struct drm_device *dev, void *data,
1519 struct drm_file *file)
1521 struct drm_i915_gem_sw_finish *args = data;
1522 struct drm_i915_gem_object *obj;
1524 obj = i915_gem_object_lookup(file, args->handle);
1529 * Proxy objects are barred from CPU access, so there is no
1530 * need to ban sw_finish as it is a nop.
1533 /* Pinned buffers may be scanout, so flush the cache */
1534 i915_gem_object_flush_if_display(obj);
1535 i915_gem_object_put(obj);
1541 __vma_matches(struct vm_area_struct *vma, struct file *filp,
1542 unsigned long addr, unsigned long size)
1544 if (vma->vm_file != filp)
1547 return vma->vm_start == addr &&
1548 (vma->vm_end - vma->vm_start) == PAGE_ALIGN(size);
1552 * i915_gem_mmap_ioctl - Maps the contents of an object, returning the address
1555 * @data: ioctl data blob
1558 * While the mapping holds a reference on the contents of the object, it doesn't
1559 * imply a ref on the object itself.
1563 * DRM driver writers who look a this function as an example for how to do GEM
1564 * mmap support, please don't implement mmap support like here. The modern way
1565 * to implement DRM mmap support is with an mmap offset ioctl (like
1566 * i915_gem_mmap_gtt) and then using the mmap syscall on the DRM fd directly.
1567 * That way debug tooling like valgrind will understand what's going on, hiding
1568 * the mmap call in a driver private ioctl will break that. The i915 driver only
1569 * does cpu mmaps this way because we didn't know better.
1572 i915_gem_mmap_ioctl(struct drm_device *dev, void *data,
1573 struct drm_file *file)
1575 struct drm_i915_gem_mmap *args = data;
1576 struct drm_i915_gem_object *obj;
1579 if (args->flags & ~(I915_MMAP_WC))
1582 if (args->flags & I915_MMAP_WC && !boot_cpu_has(X86_FEATURE_PAT))
1585 obj = i915_gem_object_lookup(file, args->handle);
1589 /* prime objects have no backing filp to GEM mmap
1592 if (!obj->base.filp) {
1597 if (range_overflows(args->offset, args->size, (u64)obj->base.size)) {
1602 addr = vm_mmap(obj->base.filp, 0, args->size,
1603 PROT_READ | PROT_WRITE, MAP_SHARED,
1605 if (IS_ERR_VALUE(addr))
1608 if (args->flags & I915_MMAP_WC) {
1609 struct mm_struct *mm = current->mm;
1610 struct vm_area_struct *vma;
1612 if (down_write_killable(&mm->mmap_sem)) {
1616 vma = find_vma(mm, addr);
1617 if (vma && __vma_matches(vma, obj->base.filp, addr, args->size))
1619 pgprot_writecombine(vm_get_page_prot(vma->vm_flags));
1622 up_write(&mm->mmap_sem);
1623 if (IS_ERR_VALUE(addr))
1626 /* This may race, but that's ok, it only gets set */
1627 WRITE_ONCE(obj->frontbuffer_ggtt_origin, ORIGIN_CPU);
1629 i915_gem_object_put(obj);
1631 args->addr_ptr = (u64)addr;
1635 i915_gem_object_put(obj);
1639 static unsigned int tile_row_pages(const struct drm_i915_gem_object *obj)
1641 return i915_gem_object_get_tile_row_size(obj) >> PAGE_SHIFT;
1645 * i915_gem_mmap_gtt_version - report the current feature set for GTT mmaps
1647 * A history of the GTT mmap interface:
1649 * 0 - Everything had to fit into the GTT. Both parties of a memcpy had to
1650 * aligned and suitable for fencing, and still fit into the available
1651 * mappable space left by the pinned display objects. A classic problem
1652 * we called the page-fault-of-doom where we would ping-pong between
1653 * two objects that could not fit inside the GTT and so the memcpy
1654 * would page one object in at the expense of the other between every
1657 * 1 - Objects can be any size, and have any compatible fencing (X Y, or none
1658 * as set via i915_gem_set_tiling() [DRM_I915_GEM_SET_TILING]). If the
1659 * object is too large for the available space (or simply too large
1660 * for the mappable aperture!), a view is created instead and faulted
1661 * into userspace. (This view is aligned and sized appropriately for
1664 * 2 - Recognise WC as a separate cache domain so that we can flush the
1665 * delayed writes via GTT before performing direct access via WC.
1667 * 3 - Remove implicit set-domain(GTT) and synchronisation on initial
1668 * pagefault; swapin remains transparent.
1672 * * snoopable objects cannot be accessed via the GTT. It can cause machine
1673 * hangs on some architectures, corruption on others. An attempt to service
1674 * a GTT page fault from a snoopable object will generate a SIGBUS.
1676 * * the object must be able to fit into RAM (physical memory, though no
1677 * limited to the mappable aperture).
1682 * * a new GTT page fault will synchronize rendering from the GPU and flush
1683 * all data to system memory. Subsequent access will not be synchronized.
1685 * * all mappings are revoked on runtime device suspend.
1687 * * there are only 8, 16 or 32 fence registers to share between all users
1688 * (older machines require fence register for display and blitter access
1689 * as well). Contention of the fence registers will cause the previous users
1690 * to be unmapped and any new access will generate new page faults.
1692 * * running out of memory while servicing a fault may generate a SIGBUS,
1693 * rather than the expected SIGSEGV.
1695 int i915_gem_mmap_gtt_version(void)
1700 static inline struct i915_ggtt_view
1701 compute_partial_view(const struct drm_i915_gem_object *obj,
1702 pgoff_t page_offset,
1705 struct i915_ggtt_view view;
1707 if (i915_gem_object_is_tiled(obj))
1708 chunk = roundup(chunk, tile_row_pages(obj));
1710 view.type = I915_GGTT_VIEW_PARTIAL;
1711 view.partial.offset = rounddown(page_offset, chunk);
1713 min_t(unsigned int, chunk,
1714 (obj->base.size >> PAGE_SHIFT) - view.partial.offset);
1716 /* If the partial covers the entire object, just create a normal VMA. */
1717 if (chunk >= obj->base.size >> PAGE_SHIFT)
1718 view.type = I915_GGTT_VIEW_NORMAL;
1724 * i915_gem_fault - fault a page into the GTT
1727 * The fault handler is set up by drm_gem_mmap() when a object is GTT mapped
1728 * from userspace. The fault handler takes care of binding the object to
1729 * the GTT (if needed), allocating and programming a fence register (again,
1730 * only if needed based on whether the old reg is still valid or the object
1731 * is tiled) and inserting a new PTE into the faulting process.
1733 * Note that the faulting process may involve evicting existing objects
1734 * from the GTT and/or fence registers to make room. So performance may
1735 * suffer if the GTT working set is large or there are few fence registers
1738 * The current feature set supported by i915_gem_fault() and thus GTT mmaps
1739 * is exposed via I915_PARAM_MMAP_GTT_VERSION (see i915_gem_mmap_gtt_version).
1741 vm_fault_t i915_gem_fault(struct vm_fault *vmf)
1743 #define MIN_CHUNK_PAGES (SZ_1M >> PAGE_SHIFT)
1744 struct vm_area_struct *area = vmf->vma;
1745 struct drm_i915_gem_object *obj = to_intel_bo(area->vm_private_data);
1746 struct drm_device *dev = obj->base.dev;
1747 struct drm_i915_private *dev_priv = to_i915(dev);
1748 struct i915_ggtt *ggtt = &dev_priv->ggtt;
1749 bool write = area->vm_flags & VM_WRITE;
1750 intel_wakeref_t wakeref;
1751 struct i915_vma *vma;
1752 pgoff_t page_offset;
1756 /* Sanity check that we allow writing into this object */
1757 if (i915_gem_object_is_readonly(obj) && write)
1758 return VM_FAULT_SIGBUS;
1760 /* We don't use vmf->pgoff since that has the fake offset */
1761 page_offset = (vmf->address - area->vm_start) >> PAGE_SHIFT;
1763 trace_i915_gem_object_fault(obj, page_offset, true, write);
1765 ret = i915_gem_object_pin_pages(obj);
1769 wakeref = intel_runtime_pm_get(dev_priv);
1771 srcu = i915_reset_trylock(dev_priv);
1777 ret = i915_mutex_lock_interruptible(dev);
1781 /* Access to snoopable pages through the GTT is incoherent. */
1782 if (obj->cache_level != I915_CACHE_NONE && !HAS_LLC(dev_priv)) {
1787 /* Now pin it into the GTT as needed */
1788 vma = i915_gem_object_ggtt_pin(obj, NULL, 0, 0,
1793 /* Use a partial view if it is bigger than available space */
1794 struct i915_ggtt_view view =
1795 compute_partial_view(obj, page_offset, MIN_CHUNK_PAGES);
1798 flags = PIN_MAPPABLE;
1799 if (view.type == I915_GGTT_VIEW_NORMAL)
1800 flags |= PIN_NONBLOCK; /* avoid warnings for pinned */
1803 * Userspace is now writing through an untracked VMA, abandon
1804 * all hope that the hardware is able to track future writes.
1806 obj->frontbuffer_ggtt_origin = ORIGIN_CPU;
1808 vma = i915_gem_object_ggtt_pin(obj, &view, 0, 0, flags);
1809 if (IS_ERR(vma) && !view.type) {
1810 flags = PIN_MAPPABLE;
1811 view.type = I915_GGTT_VIEW_PARTIAL;
1812 vma = i915_gem_object_ggtt_pin(obj, &view, 0, 0, flags);
1820 ret = i915_vma_pin_fence(vma);
1824 /* Finally, remap it using the new GTT offset */
1825 ret = remap_io_mapping(area,
1826 area->vm_start + (vma->ggtt_view.partial.offset << PAGE_SHIFT),
1827 (ggtt->gmadr.start + vma->node.start) >> PAGE_SHIFT,
1828 min_t(u64, vma->size, area->vm_end - area->vm_start),
1833 /* Mark as being mmapped into userspace for later revocation */
1834 assert_rpm_wakelock_held(dev_priv);
1835 if (!i915_vma_set_userfault(vma) && !obj->userfault_count++)
1836 list_add(&obj->userfault_link, &dev_priv->mm.userfault_list);
1837 if (CONFIG_DRM_I915_USERFAULT_AUTOSUSPEND)
1838 intel_wakeref_auto(&dev_priv->mm.userfault_wakeref,
1839 msecs_to_jiffies_timeout(CONFIG_DRM_I915_USERFAULT_AUTOSUSPEND));
1840 GEM_BUG_ON(!obj->userfault_count);
1842 i915_vma_set_ggtt_write(vma);
1845 i915_vma_unpin_fence(vma);
1847 __i915_vma_unpin(vma);
1849 mutex_unlock(&dev->struct_mutex);
1851 i915_reset_unlock(dev_priv, srcu);
1853 intel_runtime_pm_put(dev_priv, wakeref);
1854 i915_gem_object_unpin_pages(obj);
1859 * We eat errors when the gpu is terminally wedged to avoid
1860 * userspace unduly crashing (gl has no provisions for mmaps to
1861 * fail). But any other -EIO isn't ours (e.g. swap in failure)
1862 * and so needs to be reported.
1864 if (!i915_terminally_wedged(dev_priv))
1865 return VM_FAULT_SIGBUS;
1866 /* else: fall through */
1869 * EAGAIN means the gpu is hung and we'll wait for the error
1870 * handler to reset everything when re-faulting in
1871 * i915_mutex_lock_interruptible.
1878 * EBUSY is ok: this just means that another thread
1879 * already did the job.
1881 return VM_FAULT_NOPAGE;
1883 return VM_FAULT_OOM;
1886 return VM_FAULT_SIGBUS;
1888 WARN_ONCE(ret, "unhandled error in i915_gem_fault: %i\n", ret);
1889 return VM_FAULT_SIGBUS;
1893 static void __i915_gem_object_release_mmap(struct drm_i915_gem_object *obj)
1895 struct i915_vma *vma;
1897 GEM_BUG_ON(!obj->userfault_count);
1899 obj->userfault_count = 0;
1900 list_del(&obj->userfault_link);
1901 drm_vma_node_unmap(&obj->base.vma_node,
1902 obj->base.dev->anon_inode->i_mapping);
1904 for_each_ggtt_vma(vma, obj)
1905 i915_vma_unset_userfault(vma);
1909 * i915_gem_release_mmap - remove physical page mappings
1910 * @obj: obj in question
1912 * Preserve the reservation of the mmapping with the DRM core code, but
1913 * relinquish ownership of the pages back to the system.
1915 * It is vital that we remove the page mapping if we have mapped a tiled
1916 * object through the GTT and then lose the fence register due to
1917 * resource pressure. Similarly if the object has been moved out of the
1918 * aperture, than pages mapped into userspace must be revoked. Removing the
1919 * mapping will then trigger a page fault on the next user access, allowing
1920 * fixup by i915_gem_fault().
1923 i915_gem_release_mmap(struct drm_i915_gem_object *obj)
1925 struct drm_i915_private *i915 = to_i915(obj->base.dev);
1926 intel_wakeref_t wakeref;
1928 /* Serialisation between user GTT access and our code depends upon
1929 * revoking the CPU's PTE whilst the mutex is held. The next user
1930 * pagefault then has to wait until we release the mutex.
1932 * Note that RPM complicates somewhat by adding an additional
1933 * requirement that operations to the GGTT be made holding the RPM
1936 lockdep_assert_held(&i915->drm.struct_mutex);
1937 wakeref = intel_runtime_pm_get(i915);
1939 if (!obj->userfault_count)
1942 __i915_gem_object_release_mmap(obj);
1944 /* Ensure that the CPU's PTE are revoked and there are not outstanding
1945 * memory transactions from userspace before we return. The TLB
1946 * flushing implied above by changing the PTE above *should* be
1947 * sufficient, an extra barrier here just provides us with a bit
1948 * of paranoid documentation about our requirement to serialise
1949 * memory writes before touching registers / GSM.
1954 intel_runtime_pm_put(i915, wakeref);
1957 void i915_gem_runtime_suspend(struct drm_i915_private *dev_priv)
1959 struct drm_i915_gem_object *obj, *on;
1963 * Only called during RPM suspend. All users of the userfault_list
1964 * must be holding an RPM wakeref to ensure that this can not
1965 * run concurrently with themselves (and use the struct_mutex for
1966 * protection between themselves).
1969 list_for_each_entry_safe(obj, on,
1970 &dev_priv->mm.userfault_list, userfault_link)
1971 __i915_gem_object_release_mmap(obj);
1973 /* The fence will be lost when the device powers down. If any were
1974 * in use by hardware (i.e. they are pinned), we should not be powering
1975 * down! All other fences will be reacquired by the user upon waking.
1977 for (i = 0; i < dev_priv->num_fence_regs; i++) {
1978 struct drm_i915_fence_reg *reg = &dev_priv->fence_regs[i];
1980 /* Ideally we want to assert that the fence register is not
1981 * live at this point (i.e. that no piece of code will be
1982 * trying to write through fence + GTT, as that both violates
1983 * our tracking of activity and associated locking/barriers,
1984 * but also is illegal given that the hw is powered down).
1986 * Previously we used reg->pin_count as a "liveness" indicator.
1987 * That is not sufficient, and we need a more fine-grained
1988 * tool if we want to have a sanity check here.
1994 GEM_BUG_ON(i915_vma_has_userfault(reg->vma));
1999 static int i915_gem_object_create_mmap_offset(struct drm_i915_gem_object *obj)
2001 struct drm_i915_private *dev_priv = to_i915(obj->base.dev);
2004 err = drm_gem_create_mmap_offset(&obj->base);
2008 /* Attempt to reap some mmap space from dead objects */
2010 err = i915_gem_wait_for_idle(dev_priv,
2011 I915_WAIT_INTERRUPTIBLE,
2012 MAX_SCHEDULE_TIMEOUT);
2016 i915_gem_drain_freed_objects(dev_priv);
2017 err = drm_gem_create_mmap_offset(&obj->base);
2021 } while (flush_delayed_work(&dev_priv->gem.retire_work));
2026 static void i915_gem_object_free_mmap_offset(struct drm_i915_gem_object *obj)
2028 drm_gem_free_mmap_offset(&obj->base);
2032 i915_gem_mmap_gtt(struct drm_file *file,
2033 struct drm_device *dev,
2037 struct drm_i915_gem_object *obj;
2040 obj = i915_gem_object_lookup(file, handle);
2044 ret = i915_gem_object_create_mmap_offset(obj);
2046 *offset = drm_vma_node_offset_addr(&obj->base.vma_node);
2048 i915_gem_object_put(obj);
2053 * i915_gem_mmap_gtt_ioctl - prepare an object for GTT mmap'ing
2055 * @data: GTT mapping ioctl data
2056 * @file: GEM object info
2058 * Simply returns the fake offset to userspace so it can mmap it.
2059 * The mmap call will end up in drm_gem_mmap(), which will set things
2060 * up so we can get faults in the handler above.
2062 * The fault handler will take care of binding the object into the GTT
2063 * (since it may have been evicted to make room for something), allocating
2064 * a fence register, and mapping the appropriate aperture address into
2068 i915_gem_mmap_gtt_ioctl(struct drm_device *dev, void *data,
2069 struct drm_file *file)
2071 struct drm_i915_gem_mmap_gtt *args = data;
2073 return i915_gem_mmap_gtt(file, dev, args->handle, &args->offset);
2076 /* Immediately discard the backing storage */
2077 void __i915_gem_object_truncate(struct drm_i915_gem_object *obj)
2079 i915_gem_object_free_mmap_offset(obj);
2081 if (obj->base.filp == NULL)
2084 /* Our goal here is to return as much of the memory as
2085 * is possible back to the system as we are called from OOM.
2086 * To do this we must instruct the shmfs to drop all of its
2087 * backing pages, *now*.
2089 shmem_truncate_range(file_inode(obj->base.filp), 0, (loff_t)-1);
2090 obj->mm.madv = __I915_MADV_PURGED;
2091 obj->mm.pages = ERR_PTR(-EFAULT);
2095 * Move pages to appropriate lru and release the pagevec, decrementing the
2096 * ref count of those pages.
2098 static void check_release_pagevec(struct pagevec *pvec)
2100 check_move_unevictable_pages(pvec);
2101 __pagevec_release(pvec);
2106 i915_gem_object_put_pages_gtt(struct drm_i915_gem_object *obj,
2107 struct sg_table *pages)
2109 struct sgt_iter sgt_iter;
2110 struct pagevec pvec;
2113 __i915_gem_object_release_shmem(obj, pages, true);
2114 i915_gem_gtt_finish_pages(obj, pages);
2116 if (i915_gem_object_needs_bit17_swizzle(obj))
2117 i915_gem_object_save_bit_17_swizzle(obj, pages);
2119 mapping_clear_unevictable(file_inode(obj->base.filp)->i_mapping);
2121 pagevec_init(&pvec);
2122 for_each_sgt_page(page, sgt_iter, pages) {
2124 set_page_dirty(page);
2126 if (obj->mm.madv == I915_MADV_WILLNEED)
2127 mark_page_accessed(page);
2129 if (!pagevec_add(&pvec, page))
2130 check_release_pagevec(&pvec);
2132 if (pagevec_count(&pvec))
2133 check_release_pagevec(&pvec);
2134 obj->mm.dirty = false;
2136 sg_free_table(pages);
2140 static void __i915_gem_object_reset_page_iter(struct drm_i915_gem_object *obj)
2142 struct radix_tree_iter iter;
2146 radix_tree_for_each_slot(slot, &obj->mm.get_page.radix, &iter, 0)
2147 radix_tree_delete(&obj->mm.get_page.radix, iter.index);
2151 static struct sg_table *
2152 __i915_gem_object_unset_pages(struct drm_i915_gem_object *obj)
2154 struct drm_i915_private *i915 = to_i915(obj->base.dev);
2155 struct sg_table *pages;
2157 pages = fetch_and_zero(&obj->mm.pages);
2158 if (IS_ERR_OR_NULL(pages))
2161 spin_lock(&i915->mm.obj_lock);
2162 list_del(&obj->mm.link);
2163 spin_unlock(&i915->mm.obj_lock);
2165 if (obj->mm.mapping) {
2168 ptr = page_mask_bits(obj->mm.mapping);
2169 if (is_vmalloc_addr(ptr))
2172 kunmap(kmap_to_page(ptr));
2174 obj->mm.mapping = NULL;
2177 __i915_gem_object_reset_page_iter(obj);
2178 obj->mm.page_sizes.phys = obj->mm.page_sizes.sg = 0;
2183 int __i915_gem_object_put_pages(struct drm_i915_gem_object *obj,
2184 enum i915_mm_subclass subclass)
2186 struct sg_table *pages;
2189 if (i915_gem_object_has_pinned_pages(obj))
2192 GEM_BUG_ON(obj->bind_count);
2194 /* May be called by shrinker from within get_pages() (on another bo) */
2195 mutex_lock_nested(&obj->mm.lock, subclass);
2196 if (unlikely(atomic_read(&obj->mm.pages_pin_count))) {
2202 * ->put_pages might need to allocate memory for the bit17 swizzle
2203 * array, hence protect them from being reaped by removing them from gtt
2206 pages = __i915_gem_object_unset_pages(obj);
2209 * XXX Temporary hijinx to avoid updating all backends to handle
2210 * NULL pages. In the future, when we have more asynchronous
2211 * get_pages backends we should be better able to handle the
2212 * cancellation of the async task in a more uniform manner.
2214 if (!pages && !i915_gem_object_needs_async_cancel(obj))
2215 pages = ERR_PTR(-EINVAL);
2218 obj->ops->put_pages(obj, pages);
2222 mutex_unlock(&obj->mm.lock);
2227 bool i915_sg_trim(struct sg_table *orig_st)
2229 struct sg_table new_st;
2230 struct scatterlist *sg, *new_sg;
2233 if (orig_st->nents == orig_st->orig_nents)
2236 if (sg_alloc_table(&new_st, orig_st->nents, GFP_KERNEL | __GFP_NOWARN))
2239 new_sg = new_st.sgl;
2240 for_each_sg(orig_st->sgl, sg, orig_st->nents, i) {
2241 sg_set_page(new_sg, sg_page(sg), sg->length, 0);
2242 sg_dma_address(new_sg) = sg_dma_address(sg);
2243 sg_dma_len(new_sg) = sg_dma_len(sg);
2245 new_sg = sg_next(new_sg);
2247 GEM_BUG_ON(new_sg); /* Should walk exactly nents and hit the end */
2249 sg_free_table(orig_st);
2255 static int i915_gem_object_get_pages_gtt(struct drm_i915_gem_object *obj)
2257 struct drm_i915_private *dev_priv = to_i915(obj->base.dev);
2258 const unsigned long page_count = obj->base.size / PAGE_SIZE;
2260 struct address_space *mapping;
2261 struct sg_table *st;
2262 struct scatterlist *sg;
2263 struct sgt_iter sgt_iter;
2265 unsigned long last_pfn = 0; /* suppress gcc warning */
2266 unsigned int max_segment = i915_sg_segment_size();
2267 unsigned int sg_page_sizes;
2268 struct pagevec pvec;
2273 * Assert that the object is not currently in any GPU domain. As it
2274 * wasn't in the GTT, there shouldn't be any way it could have been in
2277 GEM_BUG_ON(obj->read_domains & I915_GEM_GPU_DOMAINS);
2278 GEM_BUG_ON(obj->write_domain & I915_GEM_GPU_DOMAINS);
2281 * If there's no chance of allocating enough pages for the whole
2282 * object, bail early.
2284 if (page_count > totalram_pages())
2287 st = kmalloc(sizeof(*st), GFP_KERNEL);
2292 if (sg_alloc_table(st, page_count, GFP_KERNEL)) {
2298 * Get the list of pages out of our struct file. They'll be pinned
2299 * at this point until we release them.
2301 * Fail silently without starting the shrinker
2303 mapping = obj->base.filp->f_mapping;
2304 mapping_set_unevictable(mapping);
2305 noreclaim = mapping_gfp_constraint(mapping, ~__GFP_RECLAIM);
2306 noreclaim |= __GFP_NORETRY | __GFP_NOWARN;
2311 for (i = 0; i < page_count; i++) {
2312 const unsigned int shrink[] = {
2313 I915_SHRINK_BOUND | I915_SHRINK_UNBOUND | I915_SHRINK_PURGEABLE,
2316 gfp_t gfp = noreclaim;
2320 page = shmem_read_mapping_page_gfp(mapping, i, gfp);
2325 ret = PTR_ERR(page);
2329 i915_gem_shrink(dev_priv, 2 * page_count, NULL, *s++);
2332 * We've tried hard to allocate the memory by reaping
2333 * our own buffer, now let the real VM do its job and
2334 * go down in flames if truly OOM.
2336 * However, since graphics tend to be disposable,
2337 * defer the oom here by reporting the ENOMEM back
2341 /* reclaim and warn, but no oom */
2342 gfp = mapping_gfp_mask(mapping);
2345 * Our bo are always dirty and so we require
2346 * kswapd to reclaim our pages (direct reclaim
2347 * does not effectively begin pageout of our
2348 * buffers on its own). However, direct reclaim
2349 * only waits for kswapd when under allocation
2350 * congestion. So as a result __GFP_RECLAIM is
2351 * unreliable and fails to actually reclaim our
2352 * dirty pages -- unless you try over and over
2353 * again with !__GFP_NORETRY. However, we still
2354 * want to fail this allocation rather than
2355 * trigger the out-of-memory killer and for
2356 * this we want __GFP_RETRY_MAYFAIL.
2358 gfp |= __GFP_RETRY_MAYFAIL;
2363 sg->length >= max_segment ||
2364 page_to_pfn(page) != last_pfn + 1) {
2366 sg_page_sizes |= sg->length;
2370 sg_set_page(sg, page, PAGE_SIZE, 0);
2372 sg->length += PAGE_SIZE;
2374 last_pfn = page_to_pfn(page);
2376 /* Check that the i965g/gm workaround works. */
2377 WARN_ON((gfp & __GFP_DMA32) && (last_pfn >= 0x00100000UL));
2379 if (sg) { /* loop terminated early; short sg table */
2380 sg_page_sizes |= sg->length;
2384 /* Trim unused sg entries to avoid wasting memory. */
2387 ret = i915_gem_gtt_prepare_pages(obj, st);
2390 * DMA remapping failed? One possible cause is that
2391 * it could not reserve enough large entries, asking
2392 * for PAGE_SIZE chunks instead may be helpful.
2394 if (max_segment > PAGE_SIZE) {
2395 for_each_sgt_page(page, sgt_iter, st)
2399 max_segment = PAGE_SIZE;
2402 dev_warn(&dev_priv->drm.pdev->dev,
2403 "Failed to DMA remap %lu pages\n",
2409 if (i915_gem_object_needs_bit17_swizzle(obj))
2410 i915_gem_object_do_bit_17_swizzle(obj, st);
2412 __i915_gem_object_set_pages(obj, st, sg_page_sizes);
2419 mapping_clear_unevictable(mapping);
2420 pagevec_init(&pvec);
2421 for_each_sgt_page(page, sgt_iter, st) {
2422 if (!pagevec_add(&pvec, page))
2423 check_release_pagevec(&pvec);
2425 if (pagevec_count(&pvec))
2426 check_release_pagevec(&pvec);
2431 * shmemfs first checks if there is enough memory to allocate the page
2432 * and reports ENOSPC should there be insufficient, along with the usual
2433 * ENOMEM for a genuine allocation failure.
2435 * We use ENOSPC in our driver to mean that we have run out of aperture
2436 * space and so want to translate the error from shmemfs back to our
2437 * usual understanding of ENOMEM.
2445 void __i915_gem_object_set_pages(struct drm_i915_gem_object *obj,
2446 struct sg_table *pages,
2447 unsigned int sg_page_sizes)
2449 struct drm_i915_private *i915 = to_i915(obj->base.dev);
2450 unsigned long supported = INTEL_INFO(i915)->page_sizes;
2453 lockdep_assert_held(&obj->mm.lock);
2455 /* Make the pages coherent with the GPU (flushing any swapin). */
2456 if (obj->cache_dirty) {
2457 obj->write_domain = 0;
2458 if (i915_gem_object_has_struct_page(obj))
2459 drm_clflush_sg(pages);
2460 obj->cache_dirty = false;
2463 obj->mm.get_page.sg_pos = pages->sgl;
2464 obj->mm.get_page.sg_idx = 0;
2466 obj->mm.pages = pages;
2468 if (i915_gem_object_is_tiled(obj) &&
2469 i915->quirks & QUIRK_PIN_SWIZZLED_PAGES) {
2470 GEM_BUG_ON(obj->mm.quirked);
2471 __i915_gem_object_pin_pages(obj);
2472 obj->mm.quirked = true;
2475 GEM_BUG_ON(!sg_page_sizes);
2476 obj->mm.page_sizes.phys = sg_page_sizes;
2479 * Calculate the supported page-sizes which fit into the given
2480 * sg_page_sizes. This will give us the page-sizes which we may be able
2481 * to use opportunistically when later inserting into the GTT. For
2482 * example if phys=2G, then in theory we should be able to use 1G, 2M,
2483 * 64K or 4K pages, although in practice this will depend on a number of
2486 obj->mm.page_sizes.sg = 0;
2487 for_each_set_bit(i, &supported, ilog2(I915_GTT_MAX_PAGE_SIZE) + 1) {
2488 if (obj->mm.page_sizes.phys & ~0u << i)
2489 obj->mm.page_sizes.sg |= BIT(i);
2491 GEM_BUG_ON(!HAS_PAGE_SIZES(i915, obj->mm.page_sizes.sg));
2493 spin_lock(&i915->mm.obj_lock);
2494 list_add(&obj->mm.link, &i915->mm.unbound_list);
2495 spin_unlock(&i915->mm.obj_lock);
2498 static int ____i915_gem_object_get_pages(struct drm_i915_gem_object *obj)
2502 if (unlikely(obj->mm.madv != I915_MADV_WILLNEED)) {
2503 DRM_DEBUG("Attempting to obtain a purgeable object\n");
2507 err = obj->ops->get_pages(obj);
2508 GEM_BUG_ON(!err && !i915_gem_object_has_pages(obj));
2513 /* Ensure that the associated pages are gathered from the backing storage
2514 * and pinned into our object. i915_gem_object_pin_pages() may be called
2515 * multiple times before they are released by a single call to
2516 * i915_gem_object_unpin_pages() - once the pages are no longer referenced
2517 * either as a result of memory pressure (reaping pages under the shrinker)
2518 * or as the object is itself released.
2520 int __i915_gem_object_get_pages(struct drm_i915_gem_object *obj)
2524 err = mutex_lock_interruptible(&obj->mm.lock);
2528 if (unlikely(!i915_gem_object_has_pages(obj))) {
2529 GEM_BUG_ON(i915_gem_object_has_pinned_pages(obj));
2531 err = ____i915_gem_object_get_pages(obj);
2535 smp_mb__before_atomic();
2537 atomic_inc(&obj->mm.pages_pin_count);
2540 mutex_unlock(&obj->mm.lock);
2544 /* The 'mapping' part of i915_gem_object_pin_map() below */
2545 static void *i915_gem_object_map(const struct drm_i915_gem_object *obj,
2546 enum i915_map_type type)
2548 unsigned long n_pages = obj->base.size >> PAGE_SHIFT;
2549 struct sg_table *sgt = obj->mm.pages;
2550 struct sgt_iter sgt_iter;
2552 struct page *stack_pages[32];
2553 struct page **pages = stack_pages;
2554 unsigned long i = 0;
2558 /* A single page can always be kmapped */
2559 if (n_pages == 1 && type == I915_MAP_WB)
2560 return kmap(sg_page(sgt->sgl));
2562 if (n_pages > ARRAY_SIZE(stack_pages)) {
2563 /* Too big for stack -- allocate temporary array instead */
2564 pages = kvmalloc_array(n_pages, sizeof(*pages), GFP_KERNEL);
2569 for_each_sgt_page(page, sgt_iter, sgt)
2572 /* Check that we have the expected number of pages */
2573 GEM_BUG_ON(i != n_pages);
2578 /* fallthrough to use PAGE_KERNEL anyway */
2580 pgprot = PAGE_KERNEL;
2583 pgprot = pgprot_writecombine(PAGE_KERNEL_IO);
2586 addr = vmap(pages, n_pages, 0, pgprot);
2588 if (pages != stack_pages)
2594 /* get, pin, and map the pages of the object into kernel space */
2595 void *i915_gem_object_pin_map(struct drm_i915_gem_object *obj,
2596 enum i915_map_type type)
2598 enum i915_map_type has_type;
2603 if (unlikely(!i915_gem_object_has_struct_page(obj)))
2604 return ERR_PTR(-ENXIO);
2606 ret = mutex_lock_interruptible(&obj->mm.lock);
2608 return ERR_PTR(ret);
2610 pinned = !(type & I915_MAP_OVERRIDE);
2611 type &= ~I915_MAP_OVERRIDE;
2613 if (!atomic_inc_not_zero(&obj->mm.pages_pin_count)) {
2614 if (unlikely(!i915_gem_object_has_pages(obj))) {
2615 GEM_BUG_ON(i915_gem_object_has_pinned_pages(obj));
2617 ret = ____i915_gem_object_get_pages(obj);
2621 smp_mb__before_atomic();
2623 atomic_inc(&obj->mm.pages_pin_count);
2626 GEM_BUG_ON(!i915_gem_object_has_pages(obj));
2628 ptr = page_unpack_bits(obj->mm.mapping, &has_type);
2629 if (ptr && has_type != type) {
2635 if (is_vmalloc_addr(ptr))
2638 kunmap(kmap_to_page(ptr));
2640 ptr = obj->mm.mapping = NULL;
2644 ptr = i915_gem_object_map(obj, type);
2650 obj->mm.mapping = page_pack_bits(ptr, type);
2654 mutex_unlock(&obj->mm.lock);
2658 atomic_dec(&obj->mm.pages_pin_count);
2664 void __i915_gem_object_flush_map(struct drm_i915_gem_object *obj,
2665 unsigned long offset,
2668 enum i915_map_type has_type;
2671 GEM_BUG_ON(!i915_gem_object_has_pinned_pages(obj));
2672 GEM_BUG_ON(range_overflows_t(typeof(obj->base.size),
2673 offset, size, obj->base.size));
2675 obj->mm.dirty = true;
2677 if (obj->cache_coherent & I915_BO_CACHE_COHERENT_FOR_WRITE)
2680 ptr = page_unpack_bits(obj->mm.mapping, &has_type);
2681 if (has_type == I915_MAP_WC)
2684 drm_clflush_virt_range(ptr + offset, size);
2685 if (size == obj->base.size) {
2686 obj->write_domain &= ~I915_GEM_DOMAIN_CPU;
2687 obj->cache_dirty = false;
2692 i915_gem_object_pwrite_gtt(struct drm_i915_gem_object *obj,
2693 const struct drm_i915_gem_pwrite *arg)
2695 struct address_space *mapping = obj->base.filp->f_mapping;
2696 char __user *user_data = u64_to_user_ptr(arg->data_ptr);
2700 /* Caller already validated user args */
2701 GEM_BUG_ON(!access_ok(user_data, arg->size));
2704 * Before we instantiate/pin the backing store for our use, we
2705 * can prepopulate the shmemfs filp efficiently using a write into
2706 * the pagecache. We avoid the penalty of instantiating all the
2707 * pages, important if the user is just writing to a few and never
2708 * uses the object on the GPU, and using a direct write into shmemfs
2709 * allows it to avoid the cost of retrieving a page (either swapin
2710 * or clearing-before-use) before it is overwritten.
2712 if (i915_gem_object_has_pages(obj))
2715 if (obj->mm.madv != I915_MADV_WILLNEED)
2719 * Before the pages are instantiated the object is treated as being
2720 * in the CPU domain. The pages will be clflushed as required before
2721 * use, and we can freely write into the pages directly. If userspace
2722 * races pwrite with any other operation; corruption will ensue -
2723 * that is userspace's prerogative!
2727 offset = arg->offset;
2728 pg = offset_in_page(offset);
2731 unsigned int len, unwritten;
2737 len = PAGE_SIZE - pg;
2741 /* Prefault the user page to reduce potential recursion */
2742 err = __get_user(c, user_data);
2746 err = __get_user(c, user_data + len - 1);
2750 err = pagecache_write_begin(obj->base.filp, mapping,
2756 vaddr = kmap_atomic(page);
2757 unwritten = __copy_from_user_inatomic(vaddr + pg,
2760 kunmap_atomic(vaddr);
2762 err = pagecache_write_end(obj->base.filp, mapping,
2763 offset, len, len - unwritten,
2768 /* We don't handle -EFAULT, leave it to the caller to check */
2781 void i915_gem_close_object(struct drm_gem_object *gem, struct drm_file *file)
2783 struct drm_i915_private *i915 = to_i915(gem->dev);
2784 struct drm_i915_gem_object *obj = to_intel_bo(gem);
2785 struct drm_i915_file_private *fpriv = file->driver_priv;
2786 struct i915_lut_handle *lut, *ln;
2788 mutex_lock(&i915->drm.struct_mutex);
2790 list_for_each_entry_safe(lut, ln, &obj->lut_list, obj_link) {
2791 struct i915_gem_context *ctx = lut->ctx;
2792 struct i915_vma *vma;
2794 GEM_BUG_ON(ctx->file_priv == ERR_PTR(-EBADF));
2795 if (ctx->file_priv != fpriv)
2798 vma = radix_tree_delete(&ctx->handles_vma, lut->handle);
2799 GEM_BUG_ON(vma->obj != obj);
2801 /* We allow the process to have multiple handles to the same
2802 * vma, in the same fd namespace, by virtue of flink/open.
2804 GEM_BUG_ON(!vma->open_count);
2805 if (!--vma->open_count && !i915_vma_is_ggtt(vma))
2806 i915_vma_close(vma);
2808 list_del(&lut->obj_link);
2809 list_del(&lut->ctx_link);
2811 i915_lut_handle_free(lut);
2812 __i915_gem_object_release_unless_active(obj);
2815 mutex_unlock(&i915->drm.struct_mutex);
2818 static unsigned long to_wait_timeout(s64 timeout_ns)
2821 return MAX_SCHEDULE_TIMEOUT;
2823 if (timeout_ns == 0)
2826 return nsecs_to_jiffies_timeout(timeout_ns);
2830 * i915_gem_wait_ioctl - implements DRM_IOCTL_I915_GEM_WAIT
2831 * @dev: drm device pointer
2832 * @data: ioctl data blob
2833 * @file: drm file pointer
2835 * Returns 0 if successful, else an error is returned with the remaining time in
2836 * the timeout parameter.
2837 * -ETIME: object is still busy after timeout
2838 * -ERESTARTSYS: signal interrupted the wait
2839 * -ENONENT: object doesn't exist
2840 * Also possible, but rare:
2841 * -EAGAIN: incomplete, restart syscall
2843 * -ENODEV: Internal IRQ fail
2844 * -E?: The add request failed
2846 * The wait ioctl with a timeout of 0 reimplements the busy ioctl. With any
2847 * non-zero timeout parameter the wait ioctl will wait for the given number of
2848 * nanoseconds on an object becoming unbusy. Since the wait itself does so
2849 * without holding struct_mutex the object may become re-busied before this
2850 * function completes. A similar but shorter * race condition exists in the busy
2854 i915_gem_wait_ioctl(struct drm_device *dev, void *data, struct drm_file *file)
2856 struct drm_i915_gem_wait *args = data;
2857 struct drm_i915_gem_object *obj;
2861 if (args->flags != 0)
2864 obj = i915_gem_object_lookup(file, args->bo_handle);
2868 start = ktime_get();
2870 ret = i915_gem_object_wait(obj,
2871 I915_WAIT_INTERRUPTIBLE |
2872 I915_WAIT_PRIORITY |
2874 to_wait_timeout(args->timeout_ns));
2876 if (args->timeout_ns > 0) {
2877 args->timeout_ns -= ktime_to_ns(ktime_sub(ktime_get(), start));
2878 if (args->timeout_ns < 0)
2879 args->timeout_ns = 0;
2882 * Apparently ktime isn't accurate enough and occasionally has a
2883 * bit of mismatch in the jiffies<->nsecs<->ktime loop. So patch
2884 * things up to make the test happy. We allow up to 1 jiffy.
2886 * This is a regression from the timespec->ktime conversion.
2888 if (ret == -ETIME && !nsecs_to_jiffies(args->timeout_ns))
2889 args->timeout_ns = 0;
2891 /* Asked to wait beyond the jiffie/scheduler precision? */
2892 if (ret == -ETIME && args->timeout_ns)
2896 i915_gem_object_put(obj);
2900 static int wait_for_engines(struct drm_i915_private *i915)
2902 if (wait_for(intel_engines_are_idle(i915), I915_IDLE_ENGINES_TIMEOUT)) {
2903 dev_err(i915->drm.dev,
2904 "Failed to idle engines, declaring wedged!\n");
2906 i915_gem_set_wedged(i915);
2914 wait_for_timelines(struct drm_i915_private *i915,
2915 unsigned int flags, long timeout)
2917 struct i915_gt_timelines *gt = &i915->gt.timelines;
2918 struct i915_timeline *tl;
2920 mutex_lock(>->mutex);
2921 list_for_each_entry(tl, >->active_list, link) {
2922 struct i915_request *rq;
2924 rq = i915_active_request_get_unlocked(&tl->last_request);
2928 mutex_unlock(>->mutex);
2933 * Switching to the kernel context is often used a synchronous
2934 * step prior to idling, e.g. in suspend for flushing all
2935 * current operations to memory before sleeping. These we
2936 * want to complete as quickly as possible to avoid prolonged
2937 * stalls, so allow the gpu to boost to maximum clocks.
2939 if (flags & I915_WAIT_FOR_IDLE_BOOST)
2942 timeout = i915_request_wait(rq, flags, timeout);
2943 i915_request_put(rq);
2947 /* restart after reacquiring the lock */
2948 mutex_lock(>->mutex);
2949 tl = list_entry(>->active_list, typeof(*tl), link);
2951 mutex_unlock(>->mutex);
2956 int i915_gem_wait_for_idle(struct drm_i915_private *i915,
2957 unsigned int flags, long timeout)
2959 GEM_TRACE("flags=%x (%s), timeout=%ld%s, awake?=%s\n",
2960 flags, flags & I915_WAIT_LOCKED ? "locked" : "unlocked",
2961 timeout, timeout == MAX_SCHEDULE_TIMEOUT ? " (forever)" : "",
2962 yesno(i915->gt.awake));
2964 /* If the device is asleep, we have no requests outstanding */
2965 if (!READ_ONCE(i915->gt.awake))
2968 timeout = wait_for_timelines(i915, flags, timeout);
2972 if (flags & I915_WAIT_LOCKED) {
2975 lockdep_assert_held(&i915->drm.struct_mutex);
2977 err = wait_for_engines(i915);
2981 i915_retire_requests(i915);
2987 static void __i915_gem_object_flush_for_display(struct drm_i915_gem_object *obj)
2990 * We manually flush the CPU domain so that we can override and
2991 * force the flush for the display, and perform it asyncrhonously.
2993 flush_write_domain(obj, ~I915_GEM_DOMAIN_CPU);
2994 if (obj->cache_dirty)
2995 i915_gem_clflush_object(obj, I915_CLFLUSH_FORCE);
2996 obj->write_domain = 0;
2999 void i915_gem_object_flush_if_display(struct drm_i915_gem_object *obj)
3001 if (!READ_ONCE(obj->pin_global))
3004 mutex_lock(&obj->base.dev->struct_mutex);
3005 __i915_gem_object_flush_for_display(obj);
3006 mutex_unlock(&obj->base.dev->struct_mutex);
3010 * Moves a single object to the WC read, and possibly write domain.
3011 * @obj: object to act on
3012 * @write: ask for write access or read only
3014 * This function returns when the move is complete, including waiting on
3018 i915_gem_object_set_to_wc_domain(struct drm_i915_gem_object *obj, bool write)
3022 lockdep_assert_held(&obj->base.dev->struct_mutex);
3024 ret = i915_gem_object_wait(obj,
3025 I915_WAIT_INTERRUPTIBLE |
3027 (write ? I915_WAIT_ALL : 0),
3028 MAX_SCHEDULE_TIMEOUT);
3032 if (obj->write_domain == I915_GEM_DOMAIN_WC)
3035 /* Flush and acquire obj->pages so that we are coherent through
3036 * direct access in memory with previous cached writes through
3037 * shmemfs and that our cache domain tracking remains valid.
3038 * For example, if the obj->filp was moved to swap without us
3039 * being notified and releasing the pages, we would mistakenly
3040 * continue to assume that the obj remained out of the CPU cached
3043 ret = i915_gem_object_pin_pages(obj);
3047 flush_write_domain(obj, ~I915_GEM_DOMAIN_WC);
3049 /* Serialise direct access to this object with the barriers for
3050 * coherent writes from the GPU, by effectively invalidating the
3051 * WC domain upon first access.
3053 if ((obj->read_domains & I915_GEM_DOMAIN_WC) == 0)
3056 /* It should now be out of any other write domains, and we can update
3057 * the domain values for our changes.
3059 GEM_BUG_ON((obj->write_domain & ~I915_GEM_DOMAIN_WC) != 0);
3060 obj->read_domains |= I915_GEM_DOMAIN_WC;
3062 obj->read_domains = I915_GEM_DOMAIN_WC;
3063 obj->write_domain = I915_GEM_DOMAIN_WC;
3064 obj->mm.dirty = true;
3067 i915_gem_object_unpin_pages(obj);
3072 * Moves a single object to the GTT read, and possibly write domain.
3073 * @obj: object to act on
3074 * @write: ask for write access or read only
3076 * This function returns when the move is complete, including waiting on
3080 i915_gem_object_set_to_gtt_domain(struct drm_i915_gem_object *obj, bool write)
3084 lockdep_assert_held(&obj->base.dev->struct_mutex);
3086 ret = i915_gem_object_wait(obj,
3087 I915_WAIT_INTERRUPTIBLE |
3089 (write ? I915_WAIT_ALL : 0),
3090 MAX_SCHEDULE_TIMEOUT);
3094 if (obj->write_domain == I915_GEM_DOMAIN_GTT)
3097 /* Flush and acquire obj->pages so that we are coherent through
3098 * direct access in memory with previous cached writes through
3099 * shmemfs and that our cache domain tracking remains valid.
3100 * For example, if the obj->filp was moved to swap without us
3101 * being notified and releasing the pages, we would mistakenly
3102 * continue to assume that the obj remained out of the CPU cached
3105 ret = i915_gem_object_pin_pages(obj);
3109 flush_write_domain(obj, ~I915_GEM_DOMAIN_GTT);
3111 /* Serialise direct access to this object with the barriers for
3112 * coherent writes from the GPU, by effectively invalidating the
3113 * GTT domain upon first access.
3115 if ((obj->read_domains & I915_GEM_DOMAIN_GTT) == 0)
3118 /* It should now be out of any other write domains, and we can update
3119 * the domain values for our changes.
3121 GEM_BUG_ON((obj->write_domain & ~I915_GEM_DOMAIN_GTT) != 0);
3122 obj->read_domains |= I915_GEM_DOMAIN_GTT;
3124 obj->read_domains = I915_GEM_DOMAIN_GTT;
3125 obj->write_domain = I915_GEM_DOMAIN_GTT;
3126 obj->mm.dirty = true;
3129 i915_gem_object_unpin_pages(obj);
3134 * Changes the cache-level of an object across all VMA.
3135 * @obj: object to act on
3136 * @cache_level: new cache level to set for the object
3138 * After this function returns, the object will be in the new cache-level
3139 * across all GTT and the contents of the backing storage will be coherent,
3140 * with respect to the new cache-level. In order to keep the backing storage
3141 * coherent for all users, we only allow a single cache level to be set
3142 * globally on the object and prevent it from being changed whilst the
3143 * hardware is reading from the object. That is if the object is currently
3144 * on the scanout it will be set to uncached (or equivalent display
3145 * cache coherency) and all non-MOCS GPU access will also be uncached so
3146 * that all direct access to the scanout remains coherent.
3148 int i915_gem_object_set_cache_level(struct drm_i915_gem_object *obj,
3149 enum i915_cache_level cache_level)
3151 struct i915_vma *vma;
3154 lockdep_assert_held(&obj->base.dev->struct_mutex);
3156 if (obj->cache_level == cache_level)
3159 /* Inspect the list of currently bound VMA and unbind any that would
3160 * be invalid given the new cache-level. This is principally to
3161 * catch the issue of the CS prefetch crossing page boundaries and
3162 * reading an invalid PTE on older architectures.
3165 list_for_each_entry(vma, &obj->vma.list, obj_link) {
3166 if (!drm_mm_node_allocated(&vma->node))
3169 if (i915_vma_is_pinned(vma)) {
3170 DRM_DEBUG("can not change the cache level of pinned objects\n");
3174 if (!i915_vma_is_closed(vma) &&
3175 i915_gem_valid_gtt_space(vma, cache_level))
3178 ret = i915_vma_unbind(vma);
3182 /* As unbinding may affect other elements in the
3183 * obj->vma_list (due to side-effects from retiring
3184 * an active vma), play safe and restart the iterator.
3189 /* We can reuse the existing drm_mm nodes but need to change the
3190 * cache-level on the PTE. We could simply unbind them all and
3191 * rebind with the correct cache-level on next use. However since
3192 * we already have a valid slot, dma mapping, pages etc, we may as
3193 * rewrite the PTE in the belief that doing so tramples upon less
3194 * state and so involves less work.
3196 if (obj->bind_count) {
3197 /* Before we change the PTE, the GPU must not be accessing it.
3198 * If we wait upon the object, we know that all the bound
3199 * VMA are no longer active.
3201 ret = i915_gem_object_wait(obj,
3202 I915_WAIT_INTERRUPTIBLE |
3205 MAX_SCHEDULE_TIMEOUT);
3209 if (!HAS_LLC(to_i915(obj->base.dev)) &&
3210 cache_level != I915_CACHE_NONE) {
3211 /* Access to snoopable pages through the GTT is
3212 * incoherent and on some machines causes a hard
3213 * lockup. Relinquish the CPU mmaping to force
3214 * userspace to refault in the pages and we can
3215 * then double check if the GTT mapping is still
3216 * valid for that pointer access.
3218 i915_gem_release_mmap(obj);
3220 /* As we no longer need a fence for GTT access,
3221 * we can relinquish it now (and so prevent having
3222 * to steal a fence from someone else on the next
3223 * fence request). Note GPU activity would have
3224 * dropped the fence as all snoopable access is
3225 * supposed to be linear.
3227 for_each_ggtt_vma(vma, obj) {
3228 ret = i915_vma_put_fence(vma);
3233 /* We either have incoherent backing store and
3234 * so no GTT access or the architecture is fully
3235 * coherent. In such cases, existing GTT mmaps
3236 * ignore the cache bit in the PTE and we can
3237 * rewrite it without confusing the GPU or having
3238 * to force userspace to fault back in its mmaps.
3242 list_for_each_entry(vma, &obj->vma.list, obj_link) {
3243 if (!drm_mm_node_allocated(&vma->node))
3246 ret = i915_vma_bind(vma, cache_level, PIN_UPDATE);
3252 list_for_each_entry(vma, &obj->vma.list, obj_link)
3253 vma->node.color = cache_level;
3254 i915_gem_object_set_cache_coherency(obj, cache_level);
3255 obj->cache_dirty = true; /* Always invalidate stale cachelines */
3260 int i915_gem_get_caching_ioctl(struct drm_device *dev, void *data,
3261 struct drm_file *file)
3263 struct drm_i915_gem_caching *args = data;
3264 struct drm_i915_gem_object *obj;
3268 obj = i915_gem_object_lookup_rcu(file, args->handle);
3274 switch (obj->cache_level) {
3275 case I915_CACHE_LLC:
3276 case I915_CACHE_L3_LLC:
3277 args->caching = I915_CACHING_CACHED;
3281 args->caching = I915_CACHING_DISPLAY;
3285 args->caching = I915_CACHING_NONE;
3293 int i915_gem_set_caching_ioctl(struct drm_device *dev, void *data,
3294 struct drm_file *file)
3296 struct drm_i915_private *i915 = to_i915(dev);
3297 struct drm_i915_gem_caching *args = data;
3298 struct drm_i915_gem_object *obj;
3299 enum i915_cache_level level;
3302 switch (args->caching) {
3303 case I915_CACHING_NONE:
3304 level = I915_CACHE_NONE;
3306 case I915_CACHING_CACHED:
3308 * Due to a HW issue on BXT A stepping, GPU stores via a
3309 * snooped mapping may leave stale data in a corresponding CPU
3310 * cacheline, whereas normally such cachelines would get
3313 if (!HAS_LLC(i915) && !HAS_SNOOP(i915))
3316 level = I915_CACHE_LLC;
3318 case I915_CACHING_DISPLAY:
3319 level = HAS_WT(i915) ? I915_CACHE_WT : I915_CACHE_NONE;
3325 obj = i915_gem_object_lookup(file, args->handle);
3330 * The caching mode of proxy object is handled by its generator, and
3331 * not allowed to be changed by userspace.
3333 if (i915_gem_object_is_proxy(obj)) {
3338 if (obj->cache_level == level)
3341 ret = i915_gem_object_wait(obj,
3342 I915_WAIT_INTERRUPTIBLE,
3343 MAX_SCHEDULE_TIMEOUT);
3347 ret = i915_mutex_lock_interruptible(dev);
3351 ret = i915_gem_object_set_cache_level(obj, level);
3352 mutex_unlock(&dev->struct_mutex);
3355 i915_gem_object_put(obj);
3360 * Prepare buffer for display plane (scanout, cursors, etc). Can be called from
3361 * an uninterruptible phase (modesetting) and allows any flushes to be pipelined
3362 * (for pageflips). We only flush the caches while preparing the buffer for
3363 * display, the callers are responsible for frontbuffer flush.
3366 i915_gem_object_pin_to_display_plane(struct drm_i915_gem_object *obj,
3368 const struct i915_ggtt_view *view,
3371 struct i915_vma *vma;
3374 lockdep_assert_held(&obj->base.dev->struct_mutex);
3376 /* Mark the global pin early so that we account for the
3377 * display coherency whilst setting up the cache domains.
3381 /* The display engine is not coherent with the LLC cache on gen6. As
3382 * a result, we make sure that the pinning that is about to occur is
3383 * done with uncached PTEs. This is lowest common denominator for all
3386 * However for gen6+, we could do better by using the GFDT bit instead
3387 * of uncaching, which would allow us to flush all the LLC-cached data
3388 * with that bit in the PTE to main memory with just one PIPE_CONTROL.
3390 ret = i915_gem_object_set_cache_level(obj,
3391 HAS_WT(to_i915(obj->base.dev)) ?
3392 I915_CACHE_WT : I915_CACHE_NONE);
3395 goto err_unpin_global;
3398 /* As the user may map the buffer once pinned in the display plane
3399 * (e.g. libkms for the bootup splash), we have to ensure that we
3400 * always use map_and_fenceable for all scanout buffers. However,
3401 * it may simply be too big to fit into mappable, in which case
3402 * put it anyway and hope that userspace can cope (but always first
3403 * try to preserve the existing ABI).
3405 vma = ERR_PTR(-ENOSPC);
3406 if ((flags & PIN_MAPPABLE) == 0 &&
3407 (!view || view->type == I915_GGTT_VIEW_NORMAL))
3408 vma = i915_gem_object_ggtt_pin(obj, view, 0, alignment,
3413 vma = i915_gem_object_ggtt_pin(obj, view, 0, alignment, flags);
3415 goto err_unpin_global;
3417 vma->display_alignment = max_t(u64, vma->display_alignment, alignment);
3419 __i915_gem_object_flush_for_display(obj);
3421 /* It should now be out of any other write domains, and we can update
3422 * the domain values for our changes.
3424 obj->read_domains |= I915_GEM_DOMAIN_GTT;
3434 i915_gem_object_unpin_from_display_plane(struct i915_vma *vma)
3436 lockdep_assert_held(&vma->vm->i915->drm.struct_mutex);
3438 if (WARN_ON(vma->obj->pin_global == 0))
3441 if (--vma->obj->pin_global == 0)
3442 vma->display_alignment = I915_GTT_MIN_ALIGNMENT;
3444 /* Bump the LRU to try and avoid premature eviction whilst flipping */
3445 i915_gem_object_bump_inactive_ggtt(vma->obj);
3447 i915_vma_unpin(vma);
3451 * Moves a single object to the CPU read, and possibly write domain.
3452 * @obj: object to act on
3453 * @write: requesting write or read-only access
3455 * This function returns when the move is complete, including waiting on
3459 i915_gem_object_set_to_cpu_domain(struct drm_i915_gem_object *obj, bool write)
3463 lockdep_assert_held(&obj->base.dev->struct_mutex);
3465 ret = i915_gem_object_wait(obj,
3466 I915_WAIT_INTERRUPTIBLE |
3468 (write ? I915_WAIT_ALL : 0),
3469 MAX_SCHEDULE_TIMEOUT);
3473 flush_write_domain(obj, ~I915_GEM_DOMAIN_CPU);
3475 /* Flush the CPU cache if it's still invalid. */
3476 if ((obj->read_domains & I915_GEM_DOMAIN_CPU) == 0) {
3477 i915_gem_clflush_object(obj, I915_CLFLUSH_SYNC);
3478 obj->read_domains |= I915_GEM_DOMAIN_CPU;
3481 /* It should now be out of any other write domains, and we can update
3482 * the domain values for our changes.
3484 GEM_BUG_ON(obj->write_domain & ~I915_GEM_DOMAIN_CPU);
3486 /* If we're writing through the CPU, then the GPU read domains will
3487 * need to be invalidated at next use.
3490 __start_cpu_write(obj);
3495 /* Throttle our rendering by waiting until the ring has completed our requests
3496 * emitted over 20 msec ago.
3498 * Note that if we were to use the current jiffies each time around the loop,
3499 * we wouldn't escape the function with any frames outstanding if the time to
3500 * render a frame was over 20ms.
3502 * This should get us reasonable parallelism between CPU and GPU but also
3503 * relatively low latency when blocking on a particular request to finish.
3506 i915_gem_ring_throttle(struct drm_device *dev, struct drm_file *file)
3508 struct drm_i915_private *dev_priv = to_i915(dev);
3509 struct drm_i915_file_private *file_priv = file->driver_priv;
3510 unsigned long recent_enough = jiffies - DRM_I915_THROTTLE_JIFFIES;
3511 struct i915_request *request, *target = NULL;
3514 /* ABI: return -EIO if already wedged */
3515 ret = i915_terminally_wedged(dev_priv);
3519 spin_lock(&file_priv->mm.lock);
3520 list_for_each_entry(request, &file_priv->mm.request_list, client_link) {
3521 if (time_after_eq(request->emitted_jiffies, recent_enough))
3525 list_del(&target->client_link);
3526 target->file_priv = NULL;
3532 i915_request_get(target);
3533 spin_unlock(&file_priv->mm.lock);
3538 ret = i915_request_wait(target,
3539 I915_WAIT_INTERRUPTIBLE,
3540 MAX_SCHEDULE_TIMEOUT);
3541 i915_request_put(target);
3543 return ret < 0 ? ret : 0;
3547 i915_gem_object_ggtt_pin(struct drm_i915_gem_object *obj,
3548 const struct i915_ggtt_view *view,
3553 struct drm_i915_private *dev_priv = to_i915(obj->base.dev);
3554 struct i915_address_space *vm = &dev_priv->ggtt.vm;
3555 struct i915_vma *vma;
3558 lockdep_assert_held(&obj->base.dev->struct_mutex);
3560 if (flags & PIN_MAPPABLE &&
3561 (!view || view->type == I915_GGTT_VIEW_NORMAL)) {
3562 /* If the required space is larger than the available
3563 * aperture, we will not able to find a slot for the
3564 * object and unbinding the object now will be in
3565 * vain. Worse, doing so may cause us to ping-pong
3566 * the object in and out of the Global GTT and
3567 * waste a lot of cycles under the mutex.
3569 if (obj->base.size > dev_priv->ggtt.mappable_end)
3570 return ERR_PTR(-E2BIG);
3572 /* If NONBLOCK is set the caller is optimistically
3573 * trying to cache the full object within the mappable
3574 * aperture, and *must* have a fallback in place for
3575 * situations where we cannot bind the object. We
3576 * can be a little more lax here and use the fallback
3577 * more often to avoid costly migrations of ourselves
3578 * and other objects within the aperture.
3580 * Half-the-aperture is used as a simple heuristic.
3581 * More interesting would to do search for a free
3582 * block prior to making the commitment to unbind.
3583 * That caters for the self-harm case, and with a
3584 * little more heuristics (e.g. NOFAULT, NOEVICT)
3585 * we could try to minimise harm to others.
3587 if (flags & PIN_NONBLOCK &&
3588 obj->base.size > dev_priv->ggtt.mappable_end / 2)
3589 return ERR_PTR(-ENOSPC);
3592 vma = i915_vma_instance(obj, vm, view);
3596 if (i915_vma_misplaced(vma, size, alignment, flags)) {
3597 if (flags & PIN_NONBLOCK) {
3598 if (i915_vma_is_pinned(vma) || i915_vma_is_active(vma))
3599 return ERR_PTR(-ENOSPC);
3601 if (flags & PIN_MAPPABLE &&
3602 vma->fence_size > dev_priv->ggtt.mappable_end / 2)
3603 return ERR_PTR(-ENOSPC);
3606 WARN(i915_vma_is_pinned(vma),
3607 "bo is already pinned in ggtt with incorrect alignment:"
3608 " offset=%08x, req.alignment=%llx,"
3609 " req.map_and_fenceable=%d, vma->map_and_fenceable=%d\n",
3610 i915_ggtt_offset(vma), alignment,
3611 !!(flags & PIN_MAPPABLE),
3612 i915_vma_is_map_and_fenceable(vma));
3613 ret = i915_vma_unbind(vma);
3615 return ERR_PTR(ret);
3618 ret = i915_vma_pin(vma, size, alignment, flags | PIN_GLOBAL);
3620 return ERR_PTR(ret);
3625 static __always_inline u32 __busy_read_flag(u8 id)
3627 if (id == (u8)I915_ENGINE_CLASS_INVALID)
3630 GEM_BUG_ON(id >= 16);
3631 return 0x10000u << id;
3634 static __always_inline u32 __busy_write_id(u8 id)
3637 * The uABI guarantees an active writer is also amongst the read
3638 * engines. This would be true if we accessed the activity tracking
3639 * under the lock, but as we perform the lookup of the object and
3640 * its activity locklessly we can not guarantee that the last_write
3641 * being active implies that we have set the same engine flag from
3642 * last_read - hence we always set both read and write busy for
3645 if (id == (u8)I915_ENGINE_CLASS_INVALID)
3648 return (id + 1) | __busy_read_flag(id);
3651 static __always_inline unsigned int
3652 __busy_set_if_active(const struct dma_fence *fence, u32 (*flag)(u8 id))
3654 const struct i915_request *rq;
3657 * We have to check the current hw status of the fence as the uABI
3658 * guarantees forward progress. We could rely on the idle worker
3659 * to eventually flush us, but to minimise latency just ask the
3662 * Note we only report on the status of native fences.
3664 if (!dma_fence_is_i915(fence))
3667 /* opencode to_request() in order to avoid const warnings */
3668 rq = container_of(fence, const struct i915_request, fence);
3669 if (i915_request_completed(rq))
3672 /* Beware type-expansion follies! */
3673 BUILD_BUG_ON(!typecheck(u8, rq->engine->uabi_class));
3674 return flag(rq->engine->uabi_class);
3677 static __always_inline unsigned int
3678 busy_check_reader(const struct dma_fence *fence)
3680 return __busy_set_if_active(fence, __busy_read_flag);
3683 static __always_inline unsigned int
3684 busy_check_writer(const struct dma_fence *fence)
3689 return __busy_set_if_active(fence, __busy_write_id);
3693 i915_gem_busy_ioctl(struct drm_device *dev, void *data,
3694 struct drm_file *file)
3696 struct drm_i915_gem_busy *args = data;
3697 struct drm_i915_gem_object *obj;
3698 struct reservation_object_list *list;
3704 obj = i915_gem_object_lookup_rcu(file, args->handle);
3709 * A discrepancy here is that we do not report the status of
3710 * non-i915 fences, i.e. even though we may report the object as idle,
3711 * a call to set-domain may still stall waiting for foreign rendering.
3712 * This also means that wait-ioctl may report an object as busy,
3713 * where busy-ioctl considers it idle.
3715 * We trade the ability to warn of foreign fences to report on which
3716 * i915 engines are active for the object.
3718 * Alternatively, we can trade that extra information on read/write
3721 * !reservation_object_test_signaled_rcu(obj->resv, true);
3722 * to report the overall busyness. This is what the wait-ioctl does.
3726 seq = raw_read_seqcount(&obj->resv->seq);
3728 /* Translate the exclusive fence to the READ *and* WRITE engine */
3729 args->busy = busy_check_writer(rcu_dereference(obj->resv->fence_excl));
3731 /* Translate shared fences to READ set of engines */
3732 list = rcu_dereference(obj->resv->fence);
3734 unsigned int shared_count = list->shared_count, i;
3736 for (i = 0; i < shared_count; ++i) {
3737 struct dma_fence *fence =
3738 rcu_dereference(list->shared[i]);
3740 args->busy |= busy_check_reader(fence);
3744 if (args->busy && read_seqcount_retry(&obj->resv->seq, seq))
3754 i915_gem_throttle_ioctl(struct drm_device *dev, void *data,
3755 struct drm_file *file_priv)
3757 return i915_gem_ring_throttle(dev, file_priv);
3761 i915_gem_madvise_ioctl(struct drm_device *dev, void *data,
3762 struct drm_file *file_priv)
3764 struct drm_i915_private *dev_priv = to_i915(dev);
3765 struct drm_i915_gem_madvise *args = data;
3766 struct drm_i915_gem_object *obj;
3769 switch (args->madv) {
3770 case I915_MADV_DONTNEED:
3771 case I915_MADV_WILLNEED:
3777 obj = i915_gem_object_lookup(file_priv, args->handle);
3781 err = mutex_lock_interruptible(&obj->mm.lock);
3785 if (i915_gem_object_has_pages(obj) &&
3786 i915_gem_object_is_tiled(obj) &&
3787 dev_priv->quirks & QUIRK_PIN_SWIZZLED_PAGES) {
3788 if (obj->mm.madv == I915_MADV_WILLNEED) {
3789 GEM_BUG_ON(!obj->mm.quirked);
3790 __i915_gem_object_unpin_pages(obj);
3791 obj->mm.quirked = false;
3793 if (args->madv == I915_MADV_WILLNEED) {
3794 GEM_BUG_ON(obj->mm.quirked);
3795 __i915_gem_object_pin_pages(obj);
3796 obj->mm.quirked = true;
3800 if (obj->mm.madv != __I915_MADV_PURGED)
3801 obj->mm.madv = args->madv;
3803 /* if the object is no longer attached, discard its backing storage */
3804 if (obj->mm.madv == I915_MADV_DONTNEED &&
3805 !i915_gem_object_has_pages(obj))
3806 __i915_gem_object_truncate(obj);
3808 args->retained = obj->mm.madv != __I915_MADV_PURGED;
3809 mutex_unlock(&obj->mm.lock);
3812 i915_gem_object_put(obj);
3817 frontbuffer_retire(struct i915_active_request *active,
3818 struct i915_request *request)
3820 struct drm_i915_gem_object *obj =
3821 container_of(active, typeof(*obj), frontbuffer_write);
3823 intel_fb_obj_flush(obj, ORIGIN_CS);
3826 void i915_gem_object_init(struct drm_i915_gem_object *obj,
3827 const struct drm_i915_gem_object_ops *ops)
3829 mutex_init(&obj->mm.lock);
3831 spin_lock_init(&obj->vma.lock);
3832 INIT_LIST_HEAD(&obj->vma.list);
3834 INIT_LIST_HEAD(&obj->lut_list);
3835 INIT_LIST_HEAD(&obj->batch_pool_link);
3837 init_rcu_head(&obj->rcu);
3841 reservation_object_init(&obj->__builtin_resv);
3842 obj->resv = &obj->__builtin_resv;
3844 obj->frontbuffer_ggtt_origin = ORIGIN_GTT;
3845 i915_active_request_init(&obj->frontbuffer_write,
3846 NULL, frontbuffer_retire);
3848 obj->mm.madv = I915_MADV_WILLNEED;
3849 INIT_RADIX_TREE(&obj->mm.get_page.radix, GFP_KERNEL | __GFP_NOWARN);
3850 mutex_init(&obj->mm.get_page.lock);
3852 i915_gem_info_add_obj(to_i915(obj->base.dev), obj->base.size);
3855 static const struct drm_i915_gem_object_ops i915_gem_object_ops = {
3856 .flags = I915_GEM_OBJECT_HAS_STRUCT_PAGE |
3857 I915_GEM_OBJECT_IS_SHRINKABLE,
3859 .get_pages = i915_gem_object_get_pages_gtt,
3860 .put_pages = i915_gem_object_put_pages_gtt,
3862 .pwrite = i915_gem_object_pwrite_gtt,
3865 static int i915_gem_object_create_shmem(struct drm_device *dev,
3866 struct drm_gem_object *obj,
3869 struct drm_i915_private *i915 = to_i915(dev);
3870 unsigned long flags = VM_NORESERVE;
3873 drm_gem_private_object_init(dev, obj, size);
3876 filp = shmem_file_setup_with_mnt(i915->mm.gemfs, "i915", size,
3879 filp = shmem_file_setup("i915", size, flags);
3882 return PTR_ERR(filp);
3889 struct drm_i915_gem_object *
3890 i915_gem_object_create(struct drm_i915_private *dev_priv, u64 size)
3892 struct drm_i915_gem_object *obj;
3893 struct address_space *mapping;
3894 unsigned int cache_level;
3898 /* There is a prevalence of the assumption that we fit the object's
3899 * page count inside a 32bit _signed_ variable. Let's document this and
3900 * catch if we ever need to fix it. In the meantime, if you do spot
3901 * such a local variable, please consider fixing!
3903 if (size >> PAGE_SHIFT > INT_MAX)
3904 return ERR_PTR(-E2BIG);
3906 if (overflows_type(size, obj->base.size))
3907 return ERR_PTR(-E2BIG);
3909 obj = i915_gem_object_alloc();
3911 return ERR_PTR(-ENOMEM);
3913 ret = i915_gem_object_create_shmem(&dev_priv->drm, &obj->base, size);
3917 mask = GFP_HIGHUSER | __GFP_RECLAIMABLE;
3918 if (IS_I965GM(dev_priv) || IS_I965G(dev_priv)) {
3919 /* 965gm cannot relocate objects above 4GiB. */
3920 mask &= ~__GFP_HIGHMEM;
3921 mask |= __GFP_DMA32;
3924 mapping = obj->base.filp->f_mapping;
3925 mapping_set_gfp_mask(mapping, mask);
3926 GEM_BUG_ON(!(mapping_gfp_mask(mapping) & __GFP_RECLAIM));
3928 i915_gem_object_init(obj, &i915_gem_object_ops);
3930 obj->write_domain = I915_GEM_DOMAIN_CPU;
3931 obj->read_domains = I915_GEM_DOMAIN_CPU;
3933 if (HAS_LLC(dev_priv))
3934 /* On some devices, we can have the GPU use the LLC (the CPU
3935 * cache) for about a 10% performance improvement
3936 * compared to uncached. Graphics requests other than
3937 * display scanout are coherent with the CPU in
3938 * accessing this cache. This means in this mode we
3939 * don't need to clflush on the CPU side, and on the
3940 * GPU side we only need to flush internal caches to
3941 * get data visible to the CPU.
3943 * However, we maintain the display planes as UC, and so
3944 * need to rebind when first used as such.
3946 cache_level = I915_CACHE_LLC;
3948 cache_level = I915_CACHE_NONE;
3950 i915_gem_object_set_cache_coherency(obj, cache_level);
3952 trace_i915_gem_object_create(obj);
3957 i915_gem_object_free(obj);
3958 return ERR_PTR(ret);
3961 static bool discard_backing_storage(struct drm_i915_gem_object *obj)
3963 /* If we are the last user of the backing storage (be it shmemfs
3964 * pages or stolen etc), we know that the pages are going to be
3965 * immediately released. In this case, we can then skip copying
3966 * back the contents from the GPU.
3969 if (obj->mm.madv != I915_MADV_WILLNEED)
3972 if (obj->base.filp == NULL)
3975 /* At first glance, this looks racy, but then again so would be
3976 * userspace racing mmap against close. However, the first external
3977 * reference to the filp can only be obtained through the
3978 * i915_gem_mmap_ioctl() which safeguards us against the user
3979 * acquiring such a reference whilst we are in the middle of
3980 * freeing the object.
3982 return atomic_long_read(&obj->base.filp->f_count) == 1;
3985 static void __i915_gem_free_objects(struct drm_i915_private *i915,
3986 struct llist_node *freed)
3988 struct drm_i915_gem_object *obj, *on;
3989 intel_wakeref_t wakeref;
3991 wakeref = intel_runtime_pm_get(i915);
3992 llist_for_each_entry_safe(obj, on, freed, freed) {
3993 struct i915_vma *vma, *vn;
3995 trace_i915_gem_object_destroy(obj);
3997 mutex_lock(&i915->drm.struct_mutex);
3999 GEM_BUG_ON(i915_gem_object_is_active(obj));
4000 list_for_each_entry_safe(vma, vn, &obj->vma.list, obj_link) {
4001 GEM_BUG_ON(i915_vma_is_active(vma));
4002 vma->flags &= ~I915_VMA_PIN_MASK;
4003 i915_vma_destroy(vma);
4005 GEM_BUG_ON(!list_empty(&obj->vma.list));
4006 GEM_BUG_ON(!RB_EMPTY_ROOT(&obj->vma.tree));
4008 /* This serializes freeing with the shrinker. Since the free
4009 * is delayed, first by RCU then by the workqueue, we want the
4010 * shrinker to be able to free pages of unreferenced objects,
4011 * or else we may oom whilst there are plenty of deferred
4014 if (i915_gem_object_has_pages(obj)) {
4015 spin_lock(&i915->mm.obj_lock);
4016 list_del_init(&obj->mm.link);
4017 spin_unlock(&i915->mm.obj_lock);
4020 mutex_unlock(&i915->drm.struct_mutex);
4022 GEM_BUG_ON(obj->bind_count);
4023 GEM_BUG_ON(obj->userfault_count);
4024 GEM_BUG_ON(atomic_read(&obj->frontbuffer_bits));
4025 GEM_BUG_ON(!list_empty(&obj->lut_list));
4027 if (obj->ops->release)
4028 obj->ops->release(obj);
4030 if (WARN_ON(i915_gem_object_has_pinned_pages(obj)))
4031 atomic_set(&obj->mm.pages_pin_count, 0);
4032 __i915_gem_object_put_pages(obj, I915_MM_NORMAL);
4033 GEM_BUG_ON(i915_gem_object_has_pages(obj));
4035 if (obj->base.import_attach)
4036 drm_prime_gem_destroy(&obj->base, NULL);
4038 reservation_object_fini(&obj->__builtin_resv);
4039 drm_gem_object_release(&obj->base);
4040 i915_gem_info_remove_obj(i915, obj->base.size);
4042 bitmap_free(obj->bit_17);
4043 i915_gem_object_free(obj);
4045 GEM_BUG_ON(!atomic_read(&i915->mm.free_count));
4046 atomic_dec(&i915->mm.free_count);
4051 intel_runtime_pm_put(i915, wakeref);
4054 static void i915_gem_flush_free_objects(struct drm_i915_private *i915)
4056 struct llist_node *freed;
4058 /* Free the oldest, most stale object to keep the free_list short */
4060 if (!llist_empty(&i915->mm.free_list)) { /* quick test for hotpath */
4061 /* Only one consumer of llist_del_first() allowed */
4062 spin_lock(&i915->mm.free_lock);
4063 freed = llist_del_first(&i915->mm.free_list);
4064 spin_unlock(&i915->mm.free_lock);
4066 if (unlikely(freed)) {
4068 __i915_gem_free_objects(i915, freed);
4072 static void __i915_gem_free_work(struct work_struct *work)
4074 struct drm_i915_private *i915 =
4075 container_of(work, struct drm_i915_private, mm.free_work);
4076 struct llist_node *freed;
4079 * All file-owned VMA should have been released by this point through
4080 * i915_gem_close_object(), or earlier by i915_gem_context_close().
4081 * However, the object may also be bound into the global GTT (e.g.
4082 * older GPUs without per-process support, or for direct access through
4083 * the GTT either for the user or for scanout). Those VMA still need to
4087 spin_lock(&i915->mm.free_lock);
4088 while ((freed = llist_del_all(&i915->mm.free_list))) {
4089 spin_unlock(&i915->mm.free_lock);
4091 __i915_gem_free_objects(i915, freed);
4095 spin_lock(&i915->mm.free_lock);
4097 spin_unlock(&i915->mm.free_lock);
4100 static void __i915_gem_free_object_rcu(struct rcu_head *head)
4102 struct drm_i915_gem_object *obj =
4103 container_of(head, typeof(*obj), rcu);
4104 struct drm_i915_private *i915 = to_i915(obj->base.dev);
4107 * We reuse obj->rcu for the freed list, so we had better not treat
4108 * it like a rcu_head from this point forwards. And we expect all
4109 * objects to be freed via this path.
4111 destroy_rcu_head(&obj->rcu);
4114 * Since we require blocking on struct_mutex to unbind the freed
4115 * object from the GPU before releasing resources back to the
4116 * system, we can not do that directly from the RCU callback (which may
4117 * be a softirq context), but must instead then defer that work onto a
4118 * kthread. We use the RCU callback rather than move the freed object
4119 * directly onto the work queue so that we can mix between using the
4120 * worker and performing frees directly from subsequent allocations for
4121 * crude but effective memory throttling.
4123 if (llist_add(&obj->freed, &i915->mm.free_list))
4124 queue_work(i915->wq, &i915->mm.free_work);
4127 void i915_gem_free_object(struct drm_gem_object *gem_obj)
4129 struct drm_i915_gem_object *obj = to_intel_bo(gem_obj);
4131 if (obj->mm.quirked)
4132 __i915_gem_object_unpin_pages(obj);
4134 if (discard_backing_storage(obj))
4135 obj->mm.madv = I915_MADV_DONTNEED;
4138 * Before we free the object, make sure any pure RCU-only
4139 * read-side critical sections are complete, e.g.
4140 * i915_gem_busy_ioctl(). For the corresponding synchronized
4141 * lookup see i915_gem_object_lookup_rcu().
4143 atomic_inc(&to_i915(obj->base.dev)->mm.free_count);
4144 call_rcu(&obj->rcu, __i915_gem_free_object_rcu);
4147 void __i915_gem_object_release_unless_active(struct drm_i915_gem_object *obj)
4149 lockdep_assert_held(&obj->base.dev->struct_mutex);
4151 if (!i915_gem_object_has_active_reference(obj) &&
4152 i915_gem_object_is_active(obj))
4153 i915_gem_object_set_active_reference(obj);
4155 i915_gem_object_put(obj);
4158 void i915_gem_sanitize(struct drm_i915_private *i915)
4160 intel_wakeref_t wakeref;
4164 wakeref = intel_runtime_pm_get(i915);
4165 intel_uncore_forcewake_get(&i915->uncore, FORCEWAKE_ALL);
4168 * As we have just resumed the machine and woken the device up from
4169 * deep PCI sleep (presumably D3_cold), assume the HW has been reset
4170 * back to defaults, recovering from whatever wedged state we left it
4171 * in and so worth trying to use the device once more.
4173 if (i915_terminally_wedged(i915))
4174 i915_gem_unset_wedged(i915);
4177 * If we inherit context state from the BIOS or earlier occupants
4178 * of the GPU, the GPU may be in an inconsistent state when we
4179 * try to take over. The only way to remove the earlier state
4180 * is by resetting. However, resetting on earlier gen is tricky as
4181 * it may impact the display and we are uncertain about the stability
4182 * of the reset, so this could be applied to even earlier gen.
4184 intel_gt_sanitize(i915, false);
4186 intel_uncore_forcewake_put(&i915->uncore, FORCEWAKE_ALL);
4187 intel_runtime_pm_put(i915, wakeref);
4189 mutex_lock(&i915->drm.struct_mutex);
4190 i915_gem_contexts_lost(i915);
4191 mutex_unlock(&i915->drm.struct_mutex);
4194 void i915_gem_init_swizzling(struct drm_i915_private *dev_priv)
4196 if (INTEL_GEN(dev_priv) < 5 ||
4197 dev_priv->mm.bit_6_swizzle_x == I915_BIT_6_SWIZZLE_NONE)
4200 I915_WRITE(DISP_ARB_CTL, I915_READ(DISP_ARB_CTL) |
4201 DISP_TILE_SURFACE_SWIZZLING);
4203 if (IS_GEN(dev_priv, 5))
4206 I915_WRITE(TILECTL, I915_READ(TILECTL) | TILECTL_SWZCTL);
4207 if (IS_GEN(dev_priv, 6))
4208 I915_WRITE(ARB_MODE, _MASKED_BIT_ENABLE(ARB_MODE_SWIZZLE_SNB));
4209 else if (IS_GEN(dev_priv, 7))
4210 I915_WRITE(ARB_MODE, _MASKED_BIT_ENABLE(ARB_MODE_SWIZZLE_IVB));
4211 else if (IS_GEN(dev_priv, 8))
4212 I915_WRITE(GAMTARBMODE, _MASKED_BIT_ENABLE(ARB_MODE_SWIZZLE_BDW));
4217 static void init_unused_ring(struct drm_i915_private *dev_priv, u32 base)
4219 I915_WRITE(RING_CTL(base), 0);
4220 I915_WRITE(RING_HEAD(base), 0);
4221 I915_WRITE(RING_TAIL(base), 0);
4222 I915_WRITE(RING_START(base), 0);
4225 static void init_unused_rings(struct drm_i915_private *dev_priv)
4227 if (IS_I830(dev_priv)) {
4228 init_unused_ring(dev_priv, PRB1_BASE);
4229 init_unused_ring(dev_priv, SRB0_BASE);
4230 init_unused_ring(dev_priv, SRB1_BASE);
4231 init_unused_ring(dev_priv, SRB2_BASE);
4232 init_unused_ring(dev_priv, SRB3_BASE);
4233 } else if (IS_GEN(dev_priv, 2)) {
4234 init_unused_ring(dev_priv, SRB0_BASE);
4235 init_unused_ring(dev_priv, SRB1_BASE);
4236 } else if (IS_GEN(dev_priv, 3)) {
4237 init_unused_ring(dev_priv, PRB1_BASE);
4238 init_unused_ring(dev_priv, PRB2_BASE);
4242 int i915_gem_init_hw(struct drm_i915_private *dev_priv)
4246 dev_priv->gt.last_init_time = ktime_get();
4248 /* Double layer security blanket, see i915_gem_init() */
4249 intel_uncore_forcewake_get(&dev_priv->uncore, FORCEWAKE_ALL);
4251 if (HAS_EDRAM(dev_priv) && INTEL_GEN(dev_priv) < 9)
4252 I915_WRITE(HSW_IDICR, I915_READ(HSW_IDICR) | IDIHASHMSK(0xf));
4254 if (IS_HASWELL(dev_priv))
4255 I915_WRITE(MI_PREDICATE_RESULT_2, IS_HSW_GT3(dev_priv) ?
4256 LOWER_SLICE_ENABLED : LOWER_SLICE_DISABLED);
4258 /* Apply the GT workarounds... */
4259 intel_gt_apply_workarounds(dev_priv);
4260 /* ...and determine whether they are sticking. */
4261 intel_gt_verify_workarounds(dev_priv, "init");
4263 i915_gem_init_swizzling(dev_priv);
4266 * At least 830 can leave some of the unused rings
4267 * "active" (ie. head != tail) after resume which
4268 * will prevent c3 entry. Makes sure all unused rings
4271 init_unused_rings(dev_priv);
4273 BUG_ON(!dev_priv->kernel_context);
4274 ret = i915_terminally_wedged(dev_priv);
4278 ret = i915_ppgtt_init_hw(dev_priv);
4280 DRM_ERROR("Enabling PPGTT failed (%d)\n", ret);
4284 ret = intel_wopcm_init_hw(&dev_priv->wopcm);
4286 DRM_ERROR("Enabling WOPCM failed (%d)\n", ret);
4290 /* We can't enable contexts until all firmware is loaded */
4291 ret = intel_uc_init_hw(dev_priv);
4293 DRM_ERROR("Enabling uc failed (%d)\n", ret);
4297 intel_mocs_init_l3cc_table(dev_priv);
4299 /* Only when the HW is re-initialised, can we replay the requests */
4300 ret = intel_engines_resume(dev_priv);
4304 intel_uncore_forcewake_put(&dev_priv->uncore, FORCEWAKE_ALL);
4306 intel_engines_set_scheduler_caps(dev_priv);
4310 intel_uc_fini_hw(dev_priv);
4312 intel_uncore_forcewake_put(&dev_priv->uncore, FORCEWAKE_ALL);
4317 static int __intel_engines_record_defaults(struct drm_i915_private *i915)
4319 struct intel_engine_cs *engine;
4320 struct i915_gem_context *ctx;
4321 struct i915_gem_engines *e;
4322 enum intel_engine_id id;
4326 * As we reset the gpu during very early sanitisation, the current
4327 * register state on the GPU should reflect its defaults values.
4328 * We load a context onto the hw (with restore-inhibit), then switch
4329 * over to a second context to save that default register state. We
4330 * can then prime every new context with that state so they all start
4331 * from the same default HW values.
4334 ctx = i915_gem_context_create_kernel(i915, 0);
4336 return PTR_ERR(ctx);
4338 e = i915_gem_context_lock_engines(ctx);
4340 for_each_engine(engine, i915, id) {
4341 struct intel_context *ce = e->engines[id];
4342 struct i915_request *rq;
4344 rq = intel_context_create_request(ce);
4351 if (rq->engine->init_context)
4352 err = rq->engine->init_context(rq);
4354 i915_request_add(rq);
4359 /* Flush the default context image to memory, and enable powersaving. */
4360 if (!i915_gem_load_power_context(i915)) {
4365 for_each_engine(engine, i915, id) {
4366 struct intel_context *ce = e->engines[id];
4367 struct i915_vma *state = ce->state;
4373 GEM_BUG_ON(intel_context_is_pinned(ce));
4376 * As we will hold a reference to the logical state, it will
4377 * not be torn down with the context, and importantly the
4378 * object will hold onto its vma (making it possible for a
4379 * stray GTT write to corrupt our defaults). Unmap the vma
4380 * from the GTT to prevent such accidents and reclaim the
4383 err = i915_vma_unbind(state);
4387 err = i915_gem_object_set_to_cpu_domain(state->obj, false);
4391 engine->default_state = i915_gem_object_get(state->obj);
4392 i915_gem_object_set_cache_coherency(engine->default_state,
4395 /* Check we can acquire the image of the context state */
4396 vaddr = i915_gem_object_pin_map(engine->default_state,
4398 if (IS_ERR(vaddr)) {
4399 err = PTR_ERR(vaddr);
4403 i915_gem_object_unpin_map(engine->default_state);
4406 if (IS_ENABLED(CONFIG_DRM_I915_DEBUG_GEM)) {
4407 unsigned int found = intel_engines_has_context_isolation(i915);
4410 * Make sure that classes with multiple engine instances all
4411 * share the same basic configuration.
4413 for_each_engine(engine, i915, id) {
4414 unsigned int bit = BIT(engine->uabi_class);
4415 unsigned int expected = engine->default_state ? bit : 0;
4417 if ((found & bit) != expected) {
4418 DRM_ERROR("mismatching default context state for class %d on engine %s\n",
4419 engine->uabi_class, engine->name);
4425 i915_gem_context_unlock_engines(ctx);
4426 i915_gem_context_set_closed(ctx);
4427 i915_gem_context_put(ctx);
4432 * If we have to abandon now, we expect the engines to be idle
4433 * and ready to be torn-down. The quickest way we can accomplish
4434 * this is by declaring ourselves wedged.
4436 i915_gem_set_wedged(i915);
4441 i915_gem_init_scratch(struct drm_i915_private *i915, unsigned int size)
4443 struct drm_i915_gem_object *obj;
4444 struct i915_vma *vma;
4447 obj = i915_gem_object_create_stolen(i915, size);
4449 obj = i915_gem_object_create_internal(i915, size);
4451 DRM_ERROR("Failed to allocate scratch page\n");
4452 return PTR_ERR(obj);
4455 vma = i915_vma_instance(obj, &i915->ggtt.vm, NULL);
4461 ret = i915_vma_pin(vma, 0, 0, PIN_GLOBAL | PIN_HIGH);
4465 i915->gt.scratch = vma;
4469 i915_gem_object_put(obj);
4473 static void i915_gem_fini_scratch(struct drm_i915_private *i915)
4475 i915_vma_unpin_and_release(&i915->gt.scratch, 0);
4478 static int intel_engines_verify_workarounds(struct drm_i915_private *i915)
4480 struct intel_engine_cs *engine;
4481 enum intel_engine_id id;
4484 if (!IS_ENABLED(CONFIG_DRM_I915_DEBUG_GEM))
4487 for_each_engine(engine, i915, id) {
4488 if (intel_engine_verify_workarounds(engine, "load"))
4495 int i915_gem_init(struct drm_i915_private *dev_priv)
4499 /* We need to fallback to 4K pages if host doesn't support huge gtt. */
4500 if (intel_vgpu_active(dev_priv) && !intel_vgpu_has_huge_gtt(dev_priv))
4501 mkwrite_device_info(dev_priv)->page_sizes =
4502 I915_GTT_PAGE_SIZE_4K;
4504 dev_priv->mm.unordered_timeline = dma_fence_context_alloc(1);
4506 i915_timelines_init(dev_priv);
4508 ret = i915_gem_init_userptr(dev_priv);
4512 ret = intel_uc_init_misc(dev_priv);
4516 ret = intel_wopcm_init(&dev_priv->wopcm);
4520 /* This is just a security blanket to placate dragons.
4521 * On some systems, we very sporadically observe that the first TLBs
4522 * used by the CS may be stale, despite us poking the TLB reset. If
4523 * we hold the forcewake during initialisation these problems
4524 * just magically go away.
4526 mutex_lock(&dev_priv->drm.struct_mutex);
4527 intel_uncore_forcewake_get(&dev_priv->uncore, FORCEWAKE_ALL);
4529 ret = i915_gem_init_ggtt(dev_priv);
4531 GEM_BUG_ON(ret == -EIO);
4535 ret = i915_gem_init_scratch(dev_priv,
4536 IS_GEN(dev_priv, 2) ? SZ_256K : PAGE_SIZE);
4538 GEM_BUG_ON(ret == -EIO);
4542 ret = intel_engines_setup(dev_priv);
4544 GEM_BUG_ON(ret == -EIO);
4548 ret = i915_gem_contexts_init(dev_priv);
4550 GEM_BUG_ON(ret == -EIO);
4554 ret = intel_engines_init(dev_priv);
4556 GEM_BUG_ON(ret == -EIO);
4560 intel_init_gt_powersave(dev_priv);
4562 ret = intel_uc_init(dev_priv);
4566 ret = i915_gem_init_hw(dev_priv);
4571 * Despite its name intel_init_clock_gating applies both display
4572 * clock gating workarounds; GT mmio workarounds and the occasional
4573 * GT power context workaround. Worse, sometimes it includes a context
4574 * register workaround which we need to apply before we record the
4575 * default HW state for all contexts.
4577 * FIXME: break up the workarounds and apply them at the right time!
4579 intel_init_clock_gating(dev_priv);
4581 ret = intel_engines_verify_workarounds(dev_priv);
4585 ret = __intel_engines_record_defaults(dev_priv);
4589 if (i915_inject_load_failure()) {
4594 if (i915_inject_load_failure()) {
4599 intel_uncore_forcewake_put(&dev_priv->uncore, FORCEWAKE_ALL);
4600 mutex_unlock(&dev_priv->drm.struct_mutex);
4605 * Unwinding is complicated by that we want to handle -EIO to mean
4606 * disable GPU submission but keep KMS alive. We want to mark the
4607 * HW as irrevisibly wedged, but keep enough state around that the
4608 * driver doesn't explode during runtime.
4611 mutex_unlock(&dev_priv->drm.struct_mutex);
4613 i915_gem_set_wedged(dev_priv);
4614 i915_gem_suspend(dev_priv);
4615 i915_gem_suspend_late(dev_priv);
4617 i915_gem_drain_workqueue(dev_priv);
4619 mutex_lock(&dev_priv->drm.struct_mutex);
4620 intel_uc_fini_hw(dev_priv);
4622 intel_uc_fini(dev_priv);
4625 intel_cleanup_gt_powersave(dev_priv);
4626 intel_engines_cleanup(dev_priv);
4630 i915_gem_contexts_fini(dev_priv);
4632 i915_gem_fini_scratch(dev_priv);
4635 intel_uncore_forcewake_put(&dev_priv->uncore, FORCEWAKE_ALL);
4636 mutex_unlock(&dev_priv->drm.struct_mutex);
4639 intel_uc_fini_misc(dev_priv);
4642 i915_gem_cleanup_userptr(dev_priv);
4643 i915_timelines_fini(dev_priv);
4647 mutex_lock(&dev_priv->drm.struct_mutex);
4650 * Allow engine initialisation to fail by marking the GPU as
4651 * wedged. But we only want to do this where the GPU is angry,
4652 * for all other failure, such as an allocation failure, bail.
4654 if (!i915_reset_failed(dev_priv)) {
4655 i915_load_error(dev_priv,
4656 "Failed to initialize GPU, declaring it wedged!\n");
4657 i915_gem_set_wedged(dev_priv);
4660 /* Minimal basic recovery for KMS */
4661 ret = i915_ggtt_enable_hw(dev_priv);
4662 i915_gem_restore_gtt_mappings(dev_priv);
4663 i915_gem_restore_fences(dev_priv);
4664 intel_init_clock_gating(dev_priv);
4666 mutex_unlock(&dev_priv->drm.struct_mutex);
4669 i915_gem_drain_freed_objects(dev_priv);
4673 void i915_gem_fini(struct drm_i915_private *dev_priv)
4675 GEM_BUG_ON(dev_priv->gt.awake);
4677 intel_wakeref_auto_fini(&dev_priv->mm.userfault_wakeref);
4679 i915_gem_suspend_late(dev_priv);
4680 intel_disable_gt_powersave(dev_priv);
4682 /* Flush any outstanding unpin_work. */
4683 i915_gem_drain_workqueue(dev_priv);
4685 mutex_lock(&dev_priv->drm.struct_mutex);
4686 intel_uc_fini_hw(dev_priv);
4687 intel_uc_fini(dev_priv);
4688 intel_engines_cleanup(dev_priv);
4689 i915_gem_contexts_fini(dev_priv);
4690 i915_gem_fini_scratch(dev_priv);
4691 mutex_unlock(&dev_priv->drm.struct_mutex);
4693 intel_wa_list_free(&dev_priv->gt_wa_list);
4695 intel_cleanup_gt_powersave(dev_priv);
4697 intel_uc_fini_misc(dev_priv);
4698 i915_gem_cleanup_userptr(dev_priv);
4699 i915_timelines_fini(dev_priv);
4701 i915_gem_drain_freed_objects(dev_priv);
4703 WARN_ON(!list_empty(&dev_priv->contexts.list));
4706 void i915_gem_init_mmio(struct drm_i915_private *i915)
4708 i915_gem_sanitize(i915);
4712 i915_gem_load_init_fences(struct drm_i915_private *dev_priv)
4716 if (INTEL_GEN(dev_priv) >= 7 && !IS_VALLEYVIEW(dev_priv) &&
4717 !IS_CHERRYVIEW(dev_priv))
4718 dev_priv->num_fence_regs = 32;
4719 else if (INTEL_GEN(dev_priv) >= 4 ||
4720 IS_I945G(dev_priv) || IS_I945GM(dev_priv) ||
4721 IS_G33(dev_priv) || IS_PINEVIEW(dev_priv))
4722 dev_priv->num_fence_regs = 16;
4724 dev_priv->num_fence_regs = 8;
4726 if (intel_vgpu_active(dev_priv))
4727 dev_priv->num_fence_regs =
4728 I915_READ(vgtif_reg(avail_rs.fence_num));
4730 /* Initialize fence registers to zero */
4731 for (i = 0; i < dev_priv->num_fence_regs; i++) {
4732 struct drm_i915_fence_reg *fence = &dev_priv->fence_regs[i];
4734 fence->i915 = dev_priv;
4736 list_add_tail(&fence->link, &dev_priv->mm.fence_list);
4738 i915_gem_restore_fences(dev_priv);
4740 i915_gem_detect_bit_6_swizzle(dev_priv);
4743 static void i915_gem_init__mm(struct drm_i915_private *i915)
4745 spin_lock_init(&i915->mm.object_stat_lock);
4746 spin_lock_init(&i915->mm.obj_lock);
4747 spin_lock_init(&i915->mm.free_lock);
4749 init_llist_head(&i915->mm.free_list);
4751 INIT_LIST_HEAD(&i915->mm.unbound_list);
4752 INIT_LIST_HEAD(&i915->mm.bound_list);
4753 INIT_LIST_HEAD(&i915->mm.fence_list);
4755 INIT_LIST_HEAD(&i915->mm.userfault_list);
4756 intel_wakeref_auto_init(&i915->mm.userfault_wakeref, i915);
4758 INIT_WORK(&i915->mm.free_work, __i915_gem_free_work);
4761 int i915_gem_init_early(struct drm_i915_private *dev_priv)
4765 intel_gt_pm_init(dev_priv);
4767 INIT_LIST_HEAD(&dev_priv->gt.active_rings);
4768 INIT_LIST_HEAD(&dev_priv->gt.closed_vma);
4770 i915_gem_init__mm(dev_priv);
4771 i915_gem_init__pm(dev_priv);
4773 init_waitqueue_head(&dev_priv->gpu_error.wait_queue);
4774 init_waitqueue_head(&dev_priv->gpu_error.reset_queue);
4775 mutex_init(&dev_priv->gpu_error.wedge_mutex);
4776 init_srcu_struct(&dev_priv->gpu_error.reset_backoff_srcu);
4778 atomic_set(&dev_priv->mm.bsd_engine_dispatch_index, 0);
4780 spin_lock_init(&dev_priv->fb_tracking.lock);
4782 err = i915_gemfs_init(dev_priv);
4784 DRM_NOTE("Unable to create a private tmpfs mount, hugepage support will be disabled(%d).\n", err);
4789 void i915_gem_cleanup_early(struct drm_i915_private *dev_priv)
4791 i915_gem_drain_freed_objects(dev_priv);
4792 GEM_BUG_ON(!llist_empty(&dev_priv->mm.free_list));
4793 GEM_BUG_ON(atomic_read(&dev_priv->mm.free_count));
4794 WARN_ON(dev_priv->mm.object_count);
4796 cleanup_srcu_struct(&dev_priv->gpu_error.reset_backoff_srcu);
4798 i915_gemfs_fini(dev_priv);
4801 int i915_gem_freeze(struct drm_i915_private *dev_priv)
4803 /* Discard all purgeable objects, let userspace recover those as
4804 * required after resuming.
4806 i915_gem_shrink_all(dev_priv);
4811 int i915_gem_freeze_late(struct drm_i915_private *i915)
4813 struct drm_i915_gem_object *obj;
4814 struct list_head *phases[] = {
4815 &i915->mm.unbound_list,
4816 &i915->mm.bound_list,
4821 * Called just before we write the hibernation image.
4823 * We need to update the domain tracking to reflect that the CPU
4824 * will be accessing all the pages to create and restore from the
4825 * hibernation, and so upon restoration those pages will be in the
4828 * To make sure the hibernation image contains the latest state,
4829 * we update that state just before writing out the image.
4831 * To try and reduce the hibernation image, we manually shrink
4832 * the objects as well, see i915_gem_freeze()
4835 i915_gem_shrink(i915, -1UL, NULL, I915_SHRINK_UNBOUND);
4836 i915_gem_drain_freed_objects(i915);
4838 mutex_lock(&i915->drm.struct_mutex);
4839 for (phase = phases; *phase; phase++) {
4840 list_for_each_entry(obj, *phase, mm.link)
4841 WARN_ON(i915_gem_object_set_to_cpu_domain(obj, true));
4843 mutex_unlock(&i915->drm.struct_mutex);
4848 void i915_gem_release(struct drm_device *dev, struct drm_file *file)
4850 struct drm_i915_file_private *file_priv = file->driver_priv;
4851 struct i915_request *request;
4853 /* Clean up our request list when the client is going away, so that
4854 * later retire_requests won't dereference our soon-to-be-gone
4857 spin_lock(&file_priv->mm.lock);
4858 list_for_each_entry(request, &file_priv->mm.request_list, client_link)
4859 request->file_priv = NULL;
4860 spin_unlock(&file_priv->mm.lock);
4863 int i915_gem_open(struct drm_i915_private *i915, struct drm_file *file)
4865 struct drm_i915_file_private *file_priv;
4870 file_priv = kzalloc(sizeof(*file_priv), GFP_KERNEL);
4874 file->driver_priv = file_priv;
4875 file_priv->dev_priv = i915;
4876 file_priv->file = file;
4878 spin_lock_init(&file_priv->mm.lock);
4879 INIT_LIST_HEAD(&file_priv->mm.request_list);
4881 file_priv->bsd_engine = -1;
4882 file_priv->hang_timestamp = jiffies;
4884 ret = i915_gem_context_open(i915, file);
4892 * i915_gem_track_fb - update frontbuffer tracking
4893 * @old: current GEM buffer for the frontbuffer slots
4894 * @new: new GEM buffer for the frontbuffer slots
4895 * @frontbuffer_bits: bitmask of frontbuffer slots
4897 * This updates the frontbuffer tracking bits @frontbuffer_bits by clearing them
4898 * from @old and setting them in @new. Both @old and @new can be NULL.
4900 void i915_gem_track_fb(struct drm_i915_gem_object *old,
4901 struct drm_i915_gem_object *new,
4902 unsigned frontbuffer_bits)
4904 /* Control of individual bits within the mask are guarded by
4905 * the owning plane->mutex, i.e. we can never see concurrent
4906 * manipulation of individual bits. But since the bitfield as a whole
4907 * is updated using RMW, we need to use atomics in order to update
4910 BUILD_BUG_ON(INTEL_FRONTBUFFER_BITS_PER_PIPE * I915_MAX_PIPES >
4911 BITS_PER_TYPE(atomic_t));
4914 WARN_ON(!(atomic_read(&old->frontbuffer_bits) & frontbuffer_bits));
4915 atomic_andnot(frontbuffer_bits, &old->frontbuffer_bits);
4919 WARN_ON(atomic_read(&new->frontbuffer_bits) & frontbuffer_bits);
4920 atomic_or(frontbuffer_bits, &new->frontbuffer_bits);
4924 /* Allocate a new GEM object and fill it with the supplied data */
4925 struct drm_i915_gem_object *
4926 i915_gem_object_create_from_data(struct drm_i915_private *dev_priv,
4927 const void *data, size_t size)
4929 struct drm_i915_gem_object *obj;
4934 obj = i915_gem_object_create(dev_priv, round_up(size, PAGE_SIZE));
4938 GEM_BUG_ON(obj->write_domain != I915_GEM_DOMAIN_CPU);
4940 file = obj->base.filp;
4943 unsigned int len = min_t(typeof(size), size, PAGE_SIZE);
4945 void *pgdata, *vaddr;
4947 err = pagecache_write_begin(file, file->f_mapping,
4954 memcpy(vaddr, data, len);
4957 err = pagecache_write_end(file, file->f_mapping,
4971 i915_gem_object_put(obj);
4972 return ERR_PTR(err);
4975 struct scatterlist *
4976 i915_gem_object_get_sg(struct drm_i915_gem_object *obj,
4978 unsigned int *offset)
4980 struct i915_gem_object_page_iter *iter = &obj->mm.get_page;
4981 struct scatterlist *sg;
4982 unsigned int idx, count;
4985 GEM_BUG_ON(n >= obj->base.size >> PAGE_SHIFT);
4986 GEM_BUG_ON(!i915_gem_object_has_pinned_pages(obj));
4988 /* As we iterate forward through the sg, we record each entry in a
4989 * radixtree for quick repeated (backwards) lookups. If we have seen
4990 * this index previously, we will have an entry for it.
4992 * Initial lookup is O(N), but this is amortized to O(1) for
4993 * sequential page access (where each new request is consecutive
4994 * to the previous one). Repeated lookups are O(lg(obj->base.size)),
4995 * i.e. O(1) with a large constant!
4997 if (n < READ_ONCE(iter->sg_idx))
5000 mutex_lock(&iter->lock);
5002 /* We prefer to reuse the last sg so that repeated lookup of this
5003 * (or the subsequent) sg are fast - comparing against the last
5004 * sg is faster than going through the radixtree.
5009 count = __sg_page_count(sg);
5011 while (idx + count <= n) {
5016 /* If we cannot allocate and insert this entry, or the
5017 * individual pages from this range, cancel updating the
5018 * sg_idx so that on this lookup we are forced to linearly
5019 * scan onwards, but on future lookups we will try the
5020 * insertion again (in which case we need to be careful of
5021 * the error return reporting that we have already inserted
5024 ret = radix_tree_insert(&iter->radix, idx, sg);
5025 if (ret && ret != -EEXIST)
5028 entry = xa_mk_value(idx);
5029 for (i = 1; i < count; i++) {
5030 ret = radix_tree_insert(&iter->radix, idx + i, entry);
5031 if (ret && ret != -EEXIST)
5036 sg = ____sg_next(sg);
5037 count = __sg_page_count(sg);
5044 mutex_unlock(&iter->lock);
5046 if (unlikely(n < idx)) /* insertion completed by another thread */
5049 /* In case we failed to insert the entry into the radixtree, we need
5050 * to look beyond the current sg.
5052 while (idx + count <= n) {
5054 sg = ____sg_next(sg);
5055 count = __sg_page_count(sg);
5064 sg = radix_tree_lookup(&iter->radix, n);
5067 /* If this index is in the middle of multi-page sg entry,
5068 * the radix tree will contain a value entry that points
5069 * to the start of that range. We will return the pointer to
5070 * the base page and the offset of this page within the
5074 if (unlikely(xa_is_value(sg))) {
5075 unsigned long base = xa_to_value(sg);
5077 sg = radix_tree_lookup(&iter->radix, base);
5089 i915_gem_object_get_page(struct drm_i915_gem_object *obj, unsigned int n)
5091 struct scatterlist *sg;
5092 unsigned int offset;
5094 GEM_BUG_ON(!i915_gem_object_has_struct_page(obj));
5096 sg = i915_gem_object_get_sg(obj, n, &offset);
5097 return nth_page(sg_page(sg), offset);
5100 /* Like i915_gem_object_get_page(), but mark the returned page dirty */
5102 i915_gem_object_get_dirty_page(struct drm_i915_gem_object *obj,
5107 page = i915_gem_object_get_page(obj, n);
5109 set_page_dirty(page);
5115 i915_gem_object_get_dma_address_len(struct drm_i915_gem_object *obj,
5119 struct scatterlist *sg;
5120 unsigned int offset;
5122 sg = i915_gem_object_get_sg(obj, n, &offset);
5125 *len = sg_dma_len(sg) - (offset << PAGE_SHIFT);
5127 return sg_dma_address(sg) + (offset << PAGE_SHIFT);
5131 i915_gem_object_get_dma_address(struct drm_i915_gem_object *obj,
5134 return i915_gem_object_get_dma_address_len(obj, n, NULL);
5138 int i915_gem_object_attach_phys(struct drm_i915_gem_object *obj, int align)
5140 struct sg_table *pages;
5143 if (align > obj->base.size)
5146 if (obj->ops == &i915_gem_phys_ops)
5149 if (obj->ops != &i915_gem_object_ops)
5152 err = i915_gem_object_unbind(obj);
5156 mutex_lock(&obj->mm.lock);
5158 if (obj->mm.madv != I915_MADV_WILLNEED) {
5163 if (obj->mm.quirked) {
5168 if (obj->mm.mapping) {
5173 pages = __i915_gem_object_unset_pages(obj);
5175 obj->ops = &i915_gem_phys_ops;
5177 err = ____i915_gem_object_get_pages(obj);
5181 /* Perma-pin (until release) the physical set of pages */
5182 __i915_gem_object_pin_pages(obj);
5184 if (!IS_ERR_OR_NULL(pages))
5185 i915_gem_object_ops.put_pages(obj, pages);
5186 mutex_unlock(&obj->mm.lock);
5190 obj->ops = &i915_gem_object_ops;
5191 if (!IS_ERR_OR_NULL(pages)) {
5192 unsigned int sg_page_sizes = i915_sg_page_sizes(pages->sgl);
5194 __i915_gem_object_set_pages(obj, pages, sg_page_sizes);
5197 mutex_unlock(&obj->mm.lock);
5201 #if IS_ENABLED(CONFIG_DRM_I915_SELFTEST)
5202 #include "selftests/scatterlist.c"
5203 #include "selftests/mock_gem_device.c"
5204 #include "selftests/huge_gem_object.c"
5205 #include "selftests/huge_pages.c"
5206 #include "selftests/i915_gem_object.c"
5207 #include "selftests/i915_gem_coherency.c"
5208 #include "selftests/i915_gem.c"
git.samba.org / sfrench / cifs-2.6.git / blob