2 * Copyright (c) 2006, Intel Corporation.
4 * This program is free software; you can redistribute it and/or modify it
5 * under the terms and conditions of the GNU General Public License,
6 * version 2, as published by the Free Software Foundation.
8 * This program is distributed in the hope it will be useful, but WITHOUT
9 * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
10 * FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for
13 * You should have received a copy of the GNU General Public License along with
14 * this program; if not, write to the Free Software Foundation, Inc., 59 Temple
15 * Place - Suite 330, Boston, MA 02111-1307 USA.
17 * Copyright (C) 2006-2008 Intel Corporation
18 * Author: Ashok Raj <ashok.raj@intel.com>
19 * Author: Shaohua Li <shaohua.li@intel.com>
20 * Author: Anil S Keshavamurthy <anil.s.keshavamurthy@intel.com>
21 * Author: Fenghua Yu <fenghua.yu@intel.com>
24 #include <linux/init.h>
25 #include <linux/bitmap.h>
26 #include <linux/debugfs.h>
27 #include <linux/export.h>
28 #include <linux/slab.h>
29 #include <linux/irq.h>
30 #include <linux/interrupt.h>
31 #include <linux/spinlock.h>
32 #include <linux/pci.h>
33 #include <linux/dmar.h>
34 #include <linux/dma-mapping.h>
35 #include <linux/mempool.h>
36 #include <linux/timer.h>
37 #include <linux/iova.h>
38 #include <linux/iommu.h>
39 #include <linux/intel-iommu.h>
40 #include <linux/syscore_ops.h>
41 #include <linux/tboot.h>
42 #include <linux/dmi.h>
43 #include <linux/pci-ats.h>
44 #include <linux/memblock.h>
45 #include <asm/irq_remapping.h>
46 #include <asm/cacheflush.h>
47 #include <asm/iommu.h>
49 #define ROOT_SIZE VTD_PAGE_SIZE
50 #define CONTEXT_SIZE VTD_PAGE_SIZE
52 #define IS_GFX_DEVICE(pdev) ((pdev->class >> 16) == PCI_BASE_CLASS_DISPLAY)
53 #define IS_ISA_DEVICE(pdev) ((pdev->class >> 8) == PCI_CLASS_BRIDGE_ISA)
54 #define IS_AZALIA(pdev) ((pdev)->vendor == 0x8086 && (pdev)->device == 0x3a3e)
56 #define IOAPIC_RANGE_START (0xfee00000)
57 #define IOAPIC_RANGE_END (0xfeefffff)
58 #define IOVA_START_ADDR (0x1000)
60 #define DEFAULT_DOMAIN_ADDRESS_WIDTH 48
62 #define MAX_AGAW_WIDTH 64
64 #define __DOMAIN_MAX_PFN(gaw) ((((uint64_t)1) << (gaw-VTD_PAGE_SHIFT)) - 1)
65 #define __DOMAIN_MAX_ADDR(gaw) ((((uint64_t)1) << gaw) - 1)
67 /* We limit DOMAIN_MAX_PFN to fit in an unsigned long, and DOMAIN_MAX_ADDR
68 to match. That way, we can use 'unsigned long' for PFNs with impunity. */
69 #define DOMAIN_MAX_PFN(gaw) ((unsigned long) min_t(uint64_t, \
70 __DOMAIN_MAX_PFN(gaw), (unsigned long)-1))
71 #define DOMAIN_MAX_ADDR(gaw) (((uint64_t)__DOMAIN_MAX_PFN(gaw)) << VTD_PAGE_SHIFT)
73 #define IOVA_PFN(addr) ((addr) >> PAGE_SHIFT)
74 #define DMA_32BIT_PFN IOVA_PFN(DMA_BIT_MASK(32))
75 #define DMA_64BIT_PFN IOVA_PFN(DMA_BIT_MASK(64))
77 /* page table handling */
78 #define LEVEL_STRIDE (9)
79 #define LEVEL_MASK (((u64)1 << LEVEL_STRIDE) - 1)
82 * This bitmap is used to advertise the page sizes our hardware support
83 * to the IOMMU core, which will then use this information to split
84 * physically contiguous memory regions it is mapping into page sizes
87 * Traditionally the IOMMU core just handed us the mappings directly,
88 * after making sure the size is an order of a 4KiB page and that the
89 * mapping has natural alignment.
91 * To retain this behavior, we currently advertise that we support
92 * all page sizes that are an order of 4KiB.
94 * If at some point we'd like to utilize the IOMMU core's new behavior,
95 * we could change this to advertise the real page sizes we support.
97 #define INTEL_IOMMU_PGSIZES (~0xFFFUL)
99 static inline int agaw_to_level(int agaw)
104 static inline int agaw_to_width(int agaw)
106 return 30 + agaw * LEVEL_STRIDE;
109 static inline int width_to_agaw(int width)
111 return (width - 30) / LEVEL_STRIDE;
114 static inline unsigned int level_to_offset_bits(int level)
116 return (level - 1) * LEVEL_STRIDE;
119 static inline int pfn_level_offset(unsigned long pfn, int level)
121 return (pfn >> level_to_offset_bits(level)) & LEVEL_MASK;
124 static inline unsigned long level_mask(int level)
126 return -1UL << level_to_offset_bits(level);
129 static inline unsigned long level_size(int level)
131 return 1UL << level_to_offset_bits(level);
134 static inline unsigned long align_to_level(unsigned long pfn, int level)
136 return (pfn + level_size(level) - 1) & level_mask(level);
139 static inline unsigned long lvl_to_nr_pages(unsigned int lvl)
141 return 1 << ((lvl - 1) * LEVEL_STRIDE);
144 /* VT-d pages must always be _smaller_ than MM pages. Otherwise things
145 are never going to work. */
146 static inline unsigned long dma_to_mm_pfn(unsigned long dma_pfn)
148 return dma_pfn >> (PAGE_SHIFT - VTD_PAGE_SHIFT);
151 static inline unsigned long mm_to_dma_pfn(unsigned long mm_pfn)
153 return mm_pfn << (PAGE_SHIFT - VTD_PAGE_SHIFT);
155 static inline unsigned long page_to_dma_pfn(struct page *pg)
157 return mm_to_dma_pfn(page_to_pfn(pg));
159 static inline unsigned long virt_to_dma_pfn(void *p)
161 return page_to_dma_pfn(virt_to_page(p));
164 /* global iommu list, set NULL for ignored DMAR units */
165 static struct intel_iommu **g_iommus;
167 static void __init check_tylersburg_isoch(void);
168 static int rwbf_quirk;
171 * set to 1 to panic kernel if can't successfully enable VT-d
172 * (used when kernel is launched w/ TXT)
174 static int force_on = 0;
179 * 12-63: Context Ptr (12 - (haw-1))
186 #define ROOT_ENTRY_NR (VTD_PAGE_SIZE/sizeof(struct root_entry))
187 static inline bool root_present(struct root_entry *root)
189 return (root->val & 1);
191 static inline void set_root_present(struct root_entry *root)
195 static inline void set_root_value(struct root_entry *root, unsigned long value)
197 root->val |= value & VTD_PAGE_MASK;
200 static inline struct context_entry *
201 get_context_addr_from_root(struct root_entry *root)
203 return (struct context_entry *)
204 (root_present(root)?phys_to_virt(
205 root->val & VTD_PAGE_MASK) :
212 * 1: fault processing disable
213 * 2-3: translation type
214 * 12-63: address space root
220 struct context_entry {
225 static inline bool context_present(struct context_entry *context)
227 return (context->lo & 1);
229 static inline void context_set_present(struct context_entry *context)
234 static inline void context_set_fault_enable(struct context_entry *context)
236 context->lo &= (((u64)-1) << 2) | 1;
239 static inline void context_set_translation_type(struct context_entry *context,
242 context->lo &= (((u64)-1) << 4) | 3;
243 context->lo |= (value & 3) << 2;
246 static inline void context_set_address_root(struct context_entry *context,
249 context->lo |= value & VTD_PAGE_MASK;
252 static inline void context_set_address_width(struct context_entry *context,
255 context->hi |= value & 7;
258 static inline void context_set_domain_id(struct context_entry *context,
261 context->hi |= (value & ((1 << 16) - 1)) << 8;
264 static inline void context_clear_entry(struct context_entry *context)
277 * 12-63: Host physcial address
283 static inline void dma_clear_pte(struct dma_pte *pte)
288 static inline void dma_set_pte_readable(struct dma_pte *pte)
290 pte->val |= DMA_PTE_READ;
293 static inline void dma_set_pte_writable(struct dma_pte *pte)
295 pte->val |= DMA_PTE_WRITE;
298 static inline void dma_set_pte_snp(struct dma_pte *pte)
300 pte->val |= DMA_PTE_SNP;
303 static inline void dma_set_pte_prot(struct dma_pte *pte, unsigned long prot)
305 pte->val = (pte->val & ~3) | (prot & 3);
308 static inline u64 dma_pte_addr(struct dma_pte *pte)
311 return pte->val & VTD_PAGE_MASK;
313 /* Must have a full atomic 64-bit read */
314 return __cmpxchg64(&pte->val, 0ULL, 0ULL) & VTD_PAGE_MASK;
318 static inline void dma_set_pte_pfn(struct dma_pte *pte, unsigned long pfn)
320 pte->val |= (uint64_t)pfn << VTD_PAGE_SHIFT;
323 static inline bool dma_pte_present(struct dma_pte *pte)
325 return (pte->val & 3) != 0;
328 static inline bool dma_pte_superpage(struct dma_pte *pte)
330 return (pte->val & (1 << 7));
333 static inline int first_pte_in_page(struct dma_pte *pte)
335 return !((unsigned long)pte & ~VTD_PAGE_MASK);
339 * This domain is a statically identity mapping domain.
340 * 1. This domain creats a static 1:1 mapping to all usable memory.
341 * 2. It maps to each iommu if successful.
342 * 3. Each iommu mapps to this domain if successful.
344 static struct dmar_domain *si_domain;
345 static int hw_pass_through = 1;
347 /* devices under the same p2p bridge are owned in one domain */
348 #define DOMAIN_FLAG_P2P_MULTIPLE_DEVICES (1 << 0)
350 /* domain represents a virtual machine, more than one devices
351 * across iommus may be owned in one domain, e.g. kvm guest.
353 #define DOMAIN_FLAG_VIRTUAL_MACHINE (1 << 1)
355 /* si_domain contains mulitple devices */
356 #define DOMAIN_FLAG_STATIC_IDENTITY (1 << 2)
358 /* define the limit of IOMMUs supported in each domain */
360 # define IOMMU_UNITS_SUPPORTED MAX_IO_APICS
362 # define IOMMU_UNITS_SUPPORTED 64
366 int id; /* domain id */
367 int nid; /* node id */
368 DECLARE_BITMAP(iommu_bmp, IOMMU_UNITS_SUPPORTED);
369 /* bitmap of iommus this domain uses*/
371 struct list_head devices; /* all devices' list */
372 struct iova_domain iovad; /* iova's that belong to this domain */
374 struct dma_pte *pgd; /* virtual address */
375 int gaw; /* max guest address width */
377 /* adjusted guest address width, 0 is level 2 30-bit */
380 int flags; /* flags to find out type of domain */
382 int iommu_coherency;/* indicate coherency of iommu access */
383 int iommu_snooping; /* indicate snooping control feature*/
384 int iommu_count; /* reference count of iommu */
385 int iommu_superpage;/* Level of superpages supported:
386 0 == 4KiB (no superpages), 1 == 2MiB,
387 2 == 1GiB, 3 == 512GiB, 4 == 1TiB */
388 spinlock_t iommu_lock; /* protect iommu set in domain */
389 u64 max_addr; /* maximum mapped address */
392 /* PCI domain-device relationship */
393 struct device_domain_info {
394 struct list_head link; /* link to domain siblings */
395 struct list_head global; /* link to global list */
396 int segment; /* PCI domain */
397 u8 bus; /* PCI bus number */
398 u8 devfn; /* PCI devfn number */
399 struct pci_dev *dev; /* it's NULL for PCIe-to-PCI bridge */
400 struct intel_iommu *iommu; /* IOMMU used by this device */
401 struct dmar_domain *domain; /* pointer to domain */
404 static void flush_unmaps_timeout(unsigned long data);
406 DEFINE_TIMER(unmap_timer, flush_unmaps_timeout, 0, 0);
408 #define HIGH_WATER_MARK 250
409 struct deferred_flush_tables {
411 struct iova *iova[HIGH_WATER_MARK];
412 struct dmar_domain *domain[HIGH_WATER_MARK];
415 static struct deferred_flush_tables *deferred_flush;
417 /* bitmap for indexing intel_iommus */
418 static int g_num_of_iommus;
420 static DEFINE_SPINLOCK(async_umap_flush_lock);
421 static LIST_HEAD(unmaps_to_do);
424 static long list_size;
426 static void domain_remove_dev_info(struct dmar_domain *domain);
428 #ifdef CONFIG_INTEL_IOMMU_DEFAULT_ON
429 int dmar_disabled = 0;
431 int dmar_disabled = 1;
432 #endif /*CONFIG_INTEL_IOMMU_DEFAULT_ON*/
434 int intel_iommu_enabled = 0;
435 EXPORT_SYMBOL_GPL(intel_iommu_enabled);
437 static int dmar_map_gfx = 1;
438 static int dmar_forcedac;
439 static int intel_iommu_strict;
440 static int intel_iommu_superpage = 1;
442 int intel_iommu_gfx_mapped;
443 EXPORT_SYMBOL_GPL(intel_iommu_gfx_mapped);
445 #define DUMMY_DEVICE_DOMAIN_INFO ((struct device_domain_info *)(-1))
446 static DEFINE_SPINLOCK(device_domain_lock);
447 static LIST_HEAD(device_domain_list);
449 static struct iommu_ops intel_iommu_ops;
451 static int __init intel_iommu_setup(char *str)
456 if (!strncmp(str, "on", 2)) {
458 printk(KERN_INFO "Intel-IOMMU: enabled\n");
459 } else if (!strncmp(str, "off", 3)) {
461 printk(KERN_INFO "Intel-IOMMU: disabled\n");
462 } else if (!strncmp(str, "igfx_off", 8)) {
465 "Intel-IOMMU: disable GFX device mapping\n");
466 } else if (!strncmp(str, "forcedac", 8)) {
468 "Intel-IOMMU: Forcing DAC for PCI devices\n");
470 } else if (!strncmp(str, "strict", 6)) {
472 "Intel-IOMMU: disable batched IOTLB flush\n");
473 intel_iommu_strict = 1;
474 } else if (!strncmp(str, "sp_off", 6)) {
476 "Intel-IOMMU: disable supported super page\n");
477 intel_iommu_superpage = 0;
480 str += strcspn(str, ",");
486 __setup("intel_iommu=", intel_iommu_setup);
488 static struct kmem_cache *iommu_domain_cache;
489 static struct kmem_cache *iommu_devinfo_cache;
490 static struct kmem_cache *iommu_iova_cache;
492 static inline void *alloc_pgtable_page(int node)
497 page = alloc_pages_node(node, GFP_ATOMIC | __GFP_ZERO, 0);
499 vaddr = page_address(page);
503 static inline void free_pgtable_page(void *vaddr)
505 free_page((unsigned long)vaddr);
508 static inline void *alloc_domain_mem(void)
510 return kmem_cache_alloc(iommu_domain_cache, GFP_ATOMIC);
513 static void free_domain_mem(void *vaddr)
515 kmem_cache_free(iommu_domain_cache, vaddr);
518 static inline void * alloc_devinfo_mem(void)
520 return kmem_cache_alloc(iommu_devinfo_cache, GFP_ATOMIC);
523 static inline void free_devinfo_mem(void *vaddr)
525 kmem_cache_free(iommu_devinfo_cache, vaddr);
528 struct iova *alloc_iova_mem(void)
530 return kmem_cache_alloc(iommu_iova_cache, GFP_ATOMIC);
533 void free_iova_mem(struct iova *iova)
535 kmem_cache_free(iommu_iova_cache, iova);
539 static int __iommu_calculate_agaw(struct intel_iommu *iommu, int max_gaw)
544 sagaw = cap_sagaw(iommu->cap);
545 for (agaw = width_to_agaw(max_gaw);
547 if (test_bit(agaw, &sagaw))
555 * Calculate max SAGAW for each iommu.
557 int iommu_calculate_max_sagaw(struct intel_iommu *iommu)
559 return __iommu_calculate_agaw(iommu, MAX_AGAW_WIDTH);
563 * calculate agaw for each iommu.
564 * "SAGAW" may be different across iommus, use a default agaw, and
565 * get a supported less agaw for iommus that don't support the default agaw.
567 int iommu_calculate_agaw(struct intel_iommu *iommu)
569 return __iommu_calculate_agaw(iommu, DEFAULT_DOMAIN_ADDRESS_WIDTH);
572 /* This functionin only returns single iommu in a domain */
573 static struct intel_iommu *domain_get_iommu(struct dmar_domain *domain)
577 /* si_domain and vm domain should not get here. */
578 BUG_ON(domain->flags & DOMAIN_FLAG_VIRTUAL_MACHINE);
579 BUG_ON(domain->flags & DOMAIN_FLAG_STATIC_IDENTITY);
581 iommu_id = find_first_bit(domain->iommu_bmp, g_num_of_iommus);
582 if (iommu_id < 0 || iommu_id >= g_num_of_iommus)
585 return g_iommus[iommu_id];
588 static void domain_update_iommu_coherency(struct dmar_domain *domain)
592 i = find_first_bit(domain->iommu_bmp, g_num_of_iommus);
594 domain->iommu_coherency = i < g_num_of_iommus ? 1 : 0;
596 for_each_set_bit(i, domain->iommu_bmp, g_num_of_iommus) {
597 if (!ecap_coherent(g_iommus[i]->ecap)) {
598 domain->iommu_coherency = 0;
604 static void domain_update_iommu_snooping(struct dmar_domain *domain)
608 domain->iommu_snooping = 1;
610 for_each_set_bit(i, domain->iommu_bmp, g_num_of_iommus) {
611 if (!ecap_sc_support(g_iommus[i]->ecap)) {
612 domain->iommu_snooping = 0;
618 static void domain_update_iommu_superpage(struct dmar_domain *domain)
620 struct dmar_drhd_unit *drhd;
621 struct intel_iommu *iommu = NULL;
624 if (!intel_iommu_superpage) {
625 domain->iommu_superpage = 0;
629 /* set iommu_superpage to the smallest common denominator */
630 for_each_active_iommu(iommu, drhd) {
631 mask &= cap_super_page_val(iommu->cap);
636 domain->iommu_superpage = fls(mask);
639 /* Some capabilities may be different across iommus */
640 static void domain_update_iommu_cap(struct dmar_domain *domain)
642 domain_update_iommu_coherency(domain);
643 domain_update_iommu_snooping(domain);
644 domain_update_iommu_superpage(domain);
647 static struct intel_iommu *device_to_iommu(int segment, u8 bus, u8 devfn)
649 struct dmar_drhd_unit *drhd = NULL;
652 for_each_drhd_unit(drhd) {
655 if (segment != drhd->segment)
658 for (i = 0; i < drhd->devices_cnt; i++) {
659 if (drhd->devices[i] &&
660 drhd->devices[i]->bus->number == bus &&
661 drhd->devices[i]->devfn == devfn)
663 if (drhd->devices[i] &&
664 drhd->devices[i]->subordinate &&
665 drhd->devices[i]->subordinate->number <= bus &&
666 drhd->devices[i]->subordinate->busn_res.end >= bus)
670 if (drhd->include_all)
677 static void domain_flush_cache(struct dmar_domain *domain,
678 void *addr, int size)
680 if (!domain->iommu_coherency)
681 clflush_cache_range(addr, size);
684 /* Gets context entry for a given bus and devfn */
685 static struct context_entry * device_to_context_entry(struct intel_iommu *iommu,
688 struct root_entry *root;
689 struct context_entry *context;
690 unsigned long phy_addr;
693 spin_lock_irqsave(&iommu->lock, flags);
694 root = &iommu->root_entry[bus];
695 context = get_context_addr_from_root(root);
697 context = (struct context_entry *)
698 alloc_pgtable_page(iommu->node);
700 spin_unlock_irqrestore(&iommu->lock, flags);
703 __iommu_flush_cache(iommu, (void *)context, CONTEXT_SIZE);
704 phy_addr = virt_to_phys((void *)context);
705 set_root_value(root, phy_addr);
706 set_root_present(root);
707 __iommu_flush_cache(iommu, root, sizeof(*root));
709 spin_unlock_irqrestore(&iommu->lock, flags);
710 return &context[devfn];
713 static int device_context_mapped(struct intel_iommu *iommu, u8 bus, u8 devfn)
715 struct root_entry *root;
716 struct context_entry *context;
720 spin_lock_irqsave(&iommu->lock, flags);
721 root = &iommu->root_entry[bus];
722 context = get_context_addr_from_root(root);
727 ret = context_present(&context[devfn]);
729 spin_unlock_irqrestore(&iommu->lock, flags);
733 static void clear_context_table(struct intel_iommu *iommu, u8 bus, u8 devfn)
735 struct root_entry *root;
736 struct context_entry *context;
739 spin_lock_irqsave(&iommu->lock, flags);
740 root = &iommu->root_entry[bus];
741 context = get_context_addr_from_root(root);
743 context_clear_entry(&context[devfn]);
744 __iommu_flush_cache(iommu, &context[devfn], \
747 spin_unlock_irqrestore(&iommu->lock, flags);
750 static void free_context_table(struct intel_iommu *iommu)
752 struct root_entry *root;
755 struct context_entry *context;
757 spin_lock_irqsave(&iommu->lock, flags);
758 if (!iommu->root_entry) {
761 for (i = 0; i < ROOT_ENTRY_NR; i++) {
762 root = &iommu->root_entry[i];
763 context = get_context_addr_from_root(root);
765 free_pgtable_page(context);
767 free_pgtable_page(iommu->root_entry);
768 iommu->root_entry = NULL;
770 spin_unlock_irqrestore(&iommu->lock, flags);
773 static struct dma_pte *pfn_to_dma_pte(struct dmar_domain *domain,
774 unsigned long pfn, int target_level)
776 int addr_width = agaw_to_width(domain->agaw) - VTD_PAGE_SHIFT;
777 struct dma_pte *parent, *pte = NULL;
778 int level = agaw_to_level(domain->agaw);
781 BUG_ON(!domain->pgd);
782 BUG_ON(addr_width < BITS_PER_LONG && pfn >> addr_width);
783 parent = domain->pgd;
788 offset = pfn_level_offset(pfn, level);
789 pte = &parent[offset];
790 if (!target_level && (dma_pte_superpage(pte) || !dma_pte_present(pte)))
792 if (level == target_level)
795 if (!dma_pte_present(pte)) {
798 tmp_page = alloc_pgtable_page(domain->nid);
803 domain_flush_cache(domain, tmp_page, VTD_PAGE_SIZE);
804 pteval = ((uint64_t)virt_to_dma_pfn(tmp_page) << VTD_PAGE_SHIFT) | DMA_PTE_READ | DMA_PTE_WRITE;
805 if (cmpxchg64(&pte->val, 0ULL, pteval)) {
806 /* Someone else set it while we were thinking; use theirs. */
807 free_pgtable_page(tmp_page);
810 domain_flush_cache(domain, pte, sizeof(*pte));
813 parent = phys_to_virt(dma_pte_addr(pte));
821 /* return address's pte at specific level */
822 static struct dma_pte *dma_pfn_level_pte(struct dmar_domain *domain,
824 int level, int *large_page)
826 struct dma_pte *parent, *pte = NULL;
827 int total = agaw_to_level(domain->agaw);
830 parent = domain->pgd;
831 while (level <= total) {
832 offset = pfn_level_offset(pfn, total);
833 pte = &parent[offset];
837 if (!dma_pte_present(pte)) {
842 if (pte->val & DMA_PTE_LARGE_PAGE) {
847 parent = phys_to_virt(dma_pte_addr(pte));
853 /* clear last level pte, a tlb flush should be followed */
854 static int dma_pte_clear_range(struct dmar_domain *domain,
855 unsigned long start_pfn,
856 unsigned long last_pfn)
858 int addr_width = agaw_to_width(domain->agaw) - VTD_PAGE_SHIFT;
859 unsigned int large_page = 1;
860 struct dma_pte *first_pte, *pte;
863 BUG_ON(addr_width < BITS_PER_LONG && start_pfn >> addr_width);
864 BUG_ON(addr_width < BITS_PER_LONG && last_pfn >> addr_width);
865 BUG_ON(start_pfn > last_pfn);
867 /* we don't need lock here; nobody else touches the iova range */
870 first_pte = pte = dma_pfn_level_pte(domain, start_pfn, 1, &large_page);
872 start_pfn = align_to_level(start_pfn + 1, large_page + 1);
877 start_pfn += lvl_to_nr_pages(large_page);
879 } while (start_pfn <= last_pfn && !first_pte_in_page(pte));
881 domain_flush_cache(domain, first_pte,
882 (void *)pte - (void *)first_pte);
884 } while (start_pfn && start_pfn <= last_pfn);
886 order = (large_page - 1) * 9;
890 /* free page table pages. last level pte should already be cleared */
891 static void dma_pte_free_pagetable(struct dmar_domain *domain,
892 unsigned long start_pfn,
893 unsigned long last_pfn)
895 int addr_width = agaw_to_width(domain->agaw) - VTD_PAGE_SHIFT;
896 struct dma_pte *first_pte, *pte;
897 int total = agaw_to_level(domain->agaw);
902 BUG_ON(addr_width < BITS_PER_LONG && start_pfn >> addr_width);
903 BUG_ON(addr_width < BITS_PER_LONG && last_pfn >> addr_width);
904 BUG_ON(start_pfn > last_pfn);
906 /* We don't need lock here; nobody else touches the iova range */
908 while (level <= total) {
909 tmp = align_to_level(start_pfn, level);
911 /* If we can't even clear one PTE at this level, we're done */
912 if (tmp + level_size(level) - 1 > last_pfn)
917 first_pte = pte = dma_pfn_level_pte(domain, tmp, level, &large_page);
918 if (large_page > level)
919 level = large_page + 1;
921 tmp = align_to_level(tmp + 1, level + 1);
925 if (dma_pte_present(pte)) {
926 free_pgtable_page(phys_to_virt(dma_pte_addr(pte)));
930 tmp += level_size(level);
931 } while (!first_pte_in_page(pte) &&
932 tmp + level_size(level) - 1 <= last_pfn);
934 domain_flush_cache(domain, first_pte,
935 (void *)pte - (void *)first_pte);
937 } while (tmp && tmp + level_size(level) - 1 <= last_pfn);
941 if (start_pfn == 0 && last_pfn == DOMAIN_MAX_PFN(domain->gaw)) {
942 free_pgtable_page(domain->pgd);
948 static int iommu_alloc_root_entry(struct intel_iommu *iommu)
950 struct root_entry *root;
953 root = (struct root_entry *)alloc_pgtable_page(iommu->node);
957 __iommu_flush_cache(iommu, root, ROOT_SIZE);
959 spin_lock_irqsave(&iommu->lock, flags);
960 iommu->root_entry = root;
961 spin_unlock_irqrestore(&iommu->lock, flags);
966 static void iommu_set_root_entry(struct intel_iommu *iommu)
972 addr = iommu->root_entry;
974 raw_spin_lock_irqsave(&iommu->register_lock, flag);
975 dmar_writeq(iommu->reg + DMAR_RTADDR_REG, virt_to_phys(addr));
977 writel(iommu->gcmd | DMA_GCMD_SRTP, iommu->reg + DMAR_GCMD_REG);
979 /* Make sure hardware complete it */
980 IOMMU_WAIT_OP(iommu, DMAR_GSTS_REG,
981 readl, (sts & DMA_GSTS_RTPS), sts);
983 raw_spin_unlock_irqrestore(&iommu->register_lock, flag);
986 static void iommu_flush_write_buffer(struct intel_iommu *iommu)
991 if (!rwbf_quirk && !cap_rwbf(iommu->cap))
994 raw_spin_lock_irqsave(&iommu->register_lock, flag);
995 writel(iommu->gcmd | DMA_GCMD_WBF, iommu->reg + DMAR_GCMD_REG);
997 /* Make sure hardware complete it */
998 IOMMU_WAIT_OP(iommu, DMAR_GSTS_REG,
999 readl, (!(val & DMA_GSTS_WBFS)), val);
1001 raw_spin_unlock_irqrestore(&iommu->register_lock, flag);
1004 /* return value determine if we need a write buffer flush */
1005 static void __iommu_flush_context(struct intel_iommu *iommu,
1006 u16 did, u16 source_id, u8 function_mask,
1013 case DMA_CCMD_GLOBAL_INVL:
1014 val = DMA_CCMD_GLOBAL_INVL;
1016 case DMA_CCMD_DOMAIN_INVL:
1017 val = DMA_CCMD_DOMAIN_INVL|DMA_CCMD_DID(did);
1019 case DMA_CCMD_DEVICE_INVL:
1020 val = DMA_CCMD_DEVICE_INVL|DMA_CCMD_DID(did)
1021 | DMA_CCMD_SID(source_id) | DMA_CCMD_FM(function_mask);
1026 val |= DMA_CCMD_ICC;
1028 raw_spin_lock_irqsave(&iommu->register_lock, flag);
1029 dmar_writeq(iommu->reg + DMAR_CCMD_REG, val);
1031 /* Make sure hardware complete it */
1032 IOMMU_WAIT_OP(iommu, DMAR_CCMD_REG,
1033 dmar_readq, (!(val & DMA_CCMD_ICC)), val);
1035 raw_spin_unlock_irqrestore(&iommu->register_lock, flag);
1038 /* return value determine if we need a write buffer flush */
1039 static void __iommu_flush_iotlb(struct intel_iommu *iommu, u16 did,
1040 u64 addr, unsigned int size_order, u64 type)
1042 int tlb_offset = ecap_iotlb_offset(iommu->ecap);
1043 u64 val = 0, val_iva = 0;
1047 case DMA_TLB_GLOBAL_FLUSH:
1048 /* global flush doesn't need set IVA_REG */
1049 val = DMA_TLB_GLOBAL_FLUSH|DMA_TLB_IVT;
1051 case DMA_TLB_DSI_FLUSH:
1052 val = DMA_TLB_DSI_FLUSH|DMA_TLB_IVT|DMA_TLB_DID(did);
1054 case DMA_TLB_PSI_FLUSH:
1055 val = DMA_TLB_PSI_FLUSH|DMA_TLB_IVT|DMA_TLB_DID(did);
1056 /* Note: always flush non-leaf currently */
1057 val_iva = size_order | addr;
1062 /* Note: set drain read/write */
1065 * This is probably to be super secure.. Looks like we can
1066 * ignore it without any impact.
1068 if (cap_read_drain(iommu->cap))
1069 val |= DMA_TLB_READ_DRAIN;
1071 if (cap_write_drain(iommu->cap))
1072 val |= DMA_TLB_WRITE_DRAIN;
1074 raw_spin_lock_irqsave(&iommu->register_lock, flag);
1075 /* Note: Only uses first TLB reg currently */
1077 dmar_writeq(iommu->reg + tlb_offset, val_iva);
1078 dmar_writeq(iommu->reg + tlb_offset + 8, val);
1080 /* Make sure hardware complete it */
1081 IOMMU_WAIT_OP(iommu, tlb_offset + 8,
1082 dmar_readq, (!(val & DMA_TLB_IVT)), val);
1084 raw_spin_unlock_irqrestore(&iommu->register_lock, flag);
1086 /* check IOTLB invalidation granularity */
1087 if (DMA_TLB_IAIG(val) == 0)
1088 printk(KERN_ERR"IOMMU: flush IOTLB failed\n");
1089 if (DMA_TLB_IAIG(val) != DMA_TLB_IIRG(type))
1090 pr_debug("IOMMU: tlb flush request %Lx, actual %Lx\n",
1091 (unsigned long long)DMA_TLB_IIRG(type),
1092 (unsigned long long)DMA_TLB_IAIG(val));
1095 static struct device_domain_info *iommu_support_dev_iotlb(
1096 struct dmar_domain *domain, int segment, u8 bus, u8 devfn)
1099 unsigned long flags;
1100 struct device_domain_info *info;
1101 struct intel_iommu *iommu = device_to_iommu(segment, bus, devfn);
1103 if (!ecap_dev_iotlb_support(iommu->ecap))
1109 spin_lock_irqsave(&device_domain_lock, flags);
1110 list_for_each_entry(info, &domain->devices, link)
1111 if (info->bus == bus && info->devfn == devfn) {
1115 spin_unlock_irqrestore(&device_domain_lock, flags);
1117 if (!found || !info->dev)
1120 if (!pci_find_ext_capability(info->dev, PCI_EXT_CAP_ID_ATS))
1123 if (!dmar_find_matched_atsr_unit(info->dev))
1126 info->iommu = iommu;
1131 static void iommu_enable_dev_iotlb(struct device_domain_info *info)
1136 pci_enable_ats(info->dev, VTD_PAGE_SHIFT);
1139 static void iommu_disable_dev_iotlb(struct device_domain_info *info)
1141 if (!info->dev || !pci_ats_enabled(info->dev))
1144 pci_disable_ats(info->dev);
1147 static void iommu_flush_dev_iotlb(struct dmar_domain *domain,
1148 u64 addr, unsigned mask)
1151 unsigned long flags;
1152 struct device_domain_info *info;
1154 spin_lock_irqsave(&device_domain_lock, flags);
1155 list_for_each_entry(info, &domain->devices, link) {
1156 if (!info->dev || !pci_ats_enabled(info->dev))
1159 sid = info->bus << 8 | info->devfn;
1160 qdep = pci_ats_queue_depth(info->dev);
1161 qi_flush_dev_iotlb(info->iommu, sid, qdep, addr, mask);
1163 spin_unlock_irqrestore(&device_domain_lock, flags);
1166 static void iommu_flush_iotlb_psi(struct intel_iommu *iommu, u16 did,
1167 unsigned long pfn, unsigned int pages, int map)
1169 unsigned int mask = ilog2(__roundup_pow_of_two(pages));
1170 uint64_t addr = (uint64_t)pfn << VTD_PAGE_SHIFT;
1175 * Fallback to domain selective flush if no PSI support or the size is
1177 * PSI requires page size to be 2 ^ x, and the base address is naturally
1178 * aligned to the size
1180 if (!cap_pgsel_inv(iommu->cap) || mask > cap_max_amask_val(iommu->cap))
1181 iommu->flush.flush_iotlb(iommu, did, 0, 0,
1184 iommu->flush.flush_iotlb(iommu, did, addr, mask,
1188 * In caching mode, changes of pages from non-present to present require
1189 * flush. However, device IOTLB doesn't need to be flushed in this case.
1191 if (!cap_caching_mode(iommu->cap) || !map)
1192 iommu_flush_dev_iotlb(iommu->domains[did], addr, mask);
1195 static void iommu_disable_protect_mem_regions(struct intel_iommu *iommu)
1198 unsigned long flags;
1200 raw_spin_lock_irqsave(&iommu->register_lock, flags);
1201 pmen = readl(iommu->reg + DMAR_PMEN_REG);
1202 pmen &= ~DMA_PMEN_EPM;
1203 writel(pmen, iommu->reg + DMAR_PMEN_REG);
1205 /* wait for the protected region status bit to clear */
1206 IOMMU_WAIT_OP(iommu, DMAR_PMEN_REG,
1207 readl, !(pmen & DMA_PMEN_PRS), pmen);
1209 raw_spin_unlock_irqrestore(&iommu->register_lock, flags);
1212 static int iommu_enable_translation(struct intel_iommu *iommu)
1215 unsigned long flags;
1217 raw_spin_lock_irqsave(&iommu->register_lock, flags);
1218 iommu->gcmd |= DMA_GCMD_TE;
1219 writel(iommu->gcmd, iommu->reg + DMAR_GCMD_REG);
1221 /* Make sure hardware complete it */
1222 IOMMU_WAIT_OP(iommu, DMAR_GSTS_REG,
1223 readl, (sts & DMA_GSTS_TES), sts);
1225 raw_spin_unlock_irqrestore(&iommu->register_lock, flags);
1229 static int iommu_disable_translation(struct intel_iommu *iommu)
1234 raw_spin_lock_irqsave(&iommu->register_lock, flag);
1235 iommu->gcmd &= ~DMA_GCMD_TE;
1236 writel(iommu->gcmd, iommu->reg + DMAR_GCMD_REG);
1238 /* Make sure hardware complete it */
1239 IOMMU_WAIT_OP(iommu, DMAR_GSTS_REG,
1240 readl, (!(sts & DMA_GSTS_TES)), sts);
1242 raw_spin_unlock_irqrestore(&iommu->register_lock, flag);
1247 static int iommu_init_domains(struct intel_iommu *iommu)
1249 unsigned long ndomains;
1250 unsigned long nlongs;
1252 ndomains = cap_ndoms(iommu->cap);
1253 pr_debug("IOMMU %d: Number of Domains supported <%ld>\n", iommu->seq_id,
1255 nlongs = BITS_TO_LONGS(ndomains);
1257 spin_lock_init(&iommu->lock);
1259 /* TBD: there might be 64K domains,
1260 * consider other allocation for future chip
1262 iommu->domain_ids = kcalloc(nlongs, sizeof(unsigned long), GFP_KERNEL);
1263 if (!iommu->domain_ids) {
1264 printk(KERN_ERR "Allocating domain id array failed\n");
1267 iommu->domains = kcalloc(ndomains, sizeof(struct dmar_domain *),
1269 if (!iommu->domains) {
1270 printk(KERN_ERR "Allocating domain array failed\n");
1275 * if Caching mode is set, then invalid translations are tagged
1276 * with domainid 0. Hence we need to pre-allocate it.
1278 if (cap_caching_mode(iommu->cap))
1279 set_bit(0, iommu->domain_ids);
1284 static void domain_exit(struct dmar_domain *domain);
1285 static void vm_domain_exit(struct dmar_domain *domain);
1287 void free_dmar_iommu(struct intel_iommu *iommu)
1289 struct dmar_domain *domain;
1291 unsigned long flags;
1293 if ((iommu->domains) && (iommu->domain_ids)) {
1294 for_each_set_bit(i, iommu->domain_ids, cap_ndoms(iommu->cap)) {
1295 domain = iommu->domains[i];
1296 clear_bit(i, iommu->domain_ids);
1298 spin_lock_irqsave(&domain->iommu_lock, flags);
1299 if (--domain->iommu_count == 0) {
1300 if (domain->flags & DOMAIN_FLAG_VIRTUAL_MACHINE)
1301 vm_domain_exit(domain);
1303 domain_exit(domain);
1305 spin_unlock_irqrestore(&domain->iommu_lock, flags);
1309 if (iommu->gcmd & DMA_GCMD_TE)
1310 iommu_disable_translation(iommu);
1313 irq_set_handler_data(iommu->irq, NULL);
1314 /* This will mask the irq */
1315 free_irq(iommu->irq, iommu);
1316 destroy_irq(iommu->irq);
1319 kfree(iommu->domains);
1320 kfree(iommu->domain_ids);
1322 g_iommus[iommu->seq_id] = NULL;
1324 /* if all iommus are freed, free g_iommus */
1325 for (i = 0; i < g_num_of_iommus; i++) {
1330 if (i == g_num_of_iommus)
1333 /* free context mapping */
1334 free_context_table(iommu);
1337 static struct dmar_domain *alloc_domain(void)
1339 struct dmar_domain *domain;
1341 domain = alloc_domain_mem();
1346 memset(domain->iommu_bmp, 0, sizeof(domain->iommu_bmp));
1352 static int iommu_attach_domain(struct dmar_domain *domain,
1353 struct intel_iommu *iommu)
1356 unsigned long ndomains;
1357 unsigned long flags;
1359 ndomains = cap_ndoms(iommu->cap);
1361 spin_lock_irqsave(&iommu->lock, flags);
1363 num = find_first_zero_bit(iommu->domain_ids, ndomains);
1364 if (num >= ndomains) {
1365 spin_unlock_irqrestore(&iommu->lock, flags);
1366 printk(KERN_ERR "IOMMU: no free domain ids\n");
1371 set_bit(num, iommu->domain_ids);
1372 set_bit(iommu->seq_id, domain->iommu_bmp);
1373 iommu->domains[num] = domain;
1374 spin_unlock_irqrestore(&iommu->lock, flags);
1379 static void iommu_detach_domain(struct dmar_domain *domain,
1380 struct intel_iommu *iommu)
1382 unsigned long flags;
1386 spin_lock_irqsave(&iommu->lock, flags);
1387 ndomains = cap_ndoms(iommu->cap);
1388 for_each_set_bit(num, iommu->domain_ids, ndomains) {
1389 if (iommu->domains[num] == domain) {
1396 clear_bit(num, iommu->domain_ids);
1397 clear_bit(iommu->seq_id, domain->iommu_bmp);
1398 iommu->domains[num] = NULL;
1400 spin_unlock_irqrestore(&iommu->lock, flags);
1403 static struct iova_domain reserved_iova_list;
1404 static struct lock_class_key reserved_rbtree_key;
1406 static int dmar_init_reserved_ranges(void)
1408 struct pci_dev *pdev = NULL;
1412 init_iova_domain(&reserved_iova_list, DMA_32BIT_PFN);
1414 lockdep_set_class(&reserved_iova_list.iova_rbtree_lock,
1415 &reserved_rbtree_key);
1417 /* IOAPIC ranges shouldn't be accessed by DMA */
1418 iova = reserve_iova(&reserved_iova_list, IOVA_PFN(IOAPIC_RANGE_START),
1419 IOVA_PFN(IOAPIC_RANGE_END));
1421 printk(KERN_ERR "Reserve IOAPIC range failed\n");
1425 /* Reserve all PCI MMIO to avoid peer-to-peer access */
1426 for_each_pci_dev(pdev) {
1429 for (i = 0; i < PCI_NUM_RESOURCES; i++) {
1430 r = &pdev->resource[i];
1431 if (!r->flags || !(r->flags & IORESOURCE_MEM))
1433 iova = reserve_iova(&reserved_iova_list,
1437 printk(KERN_ERR "Reserve iova failed\n");
1445 static void domain_reserve_special_ranges(struct dmar_domain *domain)
1447 copy_reserved_iova(&reserved_iova_list, &domain->iovad);
1450 static inline int guestwidth_to_adjustwidth(int gaw)
1453 int r = (gaw - 12) % 9;
1464 static int domain_init(struct dmar_domain *domain, int guest_width)
1466 struct intel_iommu *iommu;
1467 int adjust_width, agaw;
1468 unsigned long sagaw;
1470 init_iova_domain(&domain->iovad, DMA_32BIT_PFN);
1471 spin_lock_init(&domain->iommu_lock);
1473 domain_reserve_special_ranges(domain);
1475 /* calculate AGAW */
1476 iommu = domain_get_iommu(domain);
1477 if (guest_width > cap_mgaw(iommu->cap))
1478 guest_width = cap_mgaw(iommu->cap);
1479 domain->gaw = guest_width;
1480 adjust_width = guestwidth_to_adjustwidth(guest_width);
1481 agaw = width_to_agaw(adjust_width);
1482 sagaw = cap_sagaw(iommu->cap);
1483 if (!test_bit(agaw, &sagaw)) {
1484 /* hardware doesn't support it, choose a bigger one */
1485 pr_debug("IOMMU: hardware doesn't support agaw %d\n", agaw);
1486 agaw = find_next_bit(&sagaw, 5, agaw);
1490 domain->agaw = agaw;
1491 INIT_LIST_HEAD(&domain->devices);
1493 if (ecap_coherent(iommu->ecap))
1494 domain->iommu_coherency = 1;
1496 domain->iommu_coherency = 0;
1498 if (ecap_sc_support(iommu->ecap))
1499 domain->iommu_snooping = 1;
1501 domain->iommu_snooping = 0;
1503 domain->iommu_superpage = fls(cap_super_page_val(iommu->cap));
1504 domain->iommu_count = 1;
1505 domain->nid = iommu->node;
1507 /* always allocate the top pgd */
1508 domain->pgd = (struct dma_pte *)alloc_pgtable_page(domain->nid);
1511 __iommu_flush_cache(iommu, domain->pgd, PAGE_SIZE);
1515 static void domain_exit(struct dmar_domain *domain)
1517 struct dmar_drhd_unit *drhd;
1518 struct intel_iommu *iommu;
1520 /* Domain 0 is reserved, so dont process it */
1524 /* Flush any lazy unmaps that may reference this domain */
1525 if (!intel_iommu_strict)
1526 flush_unmaps_timeout(0);
1528 domain_remove_dev_info(domain);
1530 put_iova_domain(&domain->iovad);
1533 dma_pte_clear_range(domain, 0, DOMAIN_MAX_PFN(domain->gaw));
1535 /* free page tables */
1536 dma_pte_free_pagetable(domain, 0, DOMAIN_MAX_PFN(domain->gaw));
1538 for_each_active_iommu(iommu, drhd)
1539 if (test_bit(iommu->seq_id, domain->iommu_bmp))
1540 iommu_detach_domain(domain, iommu);
1542 free_domain_mem(domain);
1545 static int domain_context_mapping_one(struct dmar_domain *domain, int segment,
1546 u8 bus, u8 devfn, int translation)
1548 struct context_entry *context;
1549 unsigned long flags;
1550 struct intel_iommu *iommu;
1551 struct dma_pte *pgd;
1553 unsigned long ndomains;
1556 struct device_domain_info *info = NULL;
1558 pr_debug("Set context mapping for %02x:%02x.%d\n",
1559 bus, PCI_SLOT(devfn), PCI_FUNC(devfn));
1561 BUG_ON(!domain->pgd);
1562 BUG_ON(translation != CONTEXT_TT_PASS_THROUGH &&
1563 translation != CONTEXT_TT_MULTI_LEVEL);
1565 iommu = device_to_iommu(segment, bus, devfn);
1569 context = device_to_context_entry(iommu, bus, devfn);
1572 spin_lock_irqsave(&iommu->lock, flags);
1573 if (context_present(context)) {
1574 spin_unlock_irqrestore(&iommu->lock, flags);
1581 if (domain->flags & DOMAIN_FLAG_VIRTUAL_MACHINE ||
1582 domain->flags & DOMAIN_FLAG_STATIC_IDENTITY) {
1585 /* find an available domain id for this device in iommu */
1586 ndomains = cap_ndoms(iommu->cap);
1587 for_each_set_bit(num, iommu->domain_ids, ndomains) {
1588 if (iommu->domains[num] == domain) {
1596 num = find_first_zero_bit(iommu->domain_ids, ndomains);
1597 if (num >= ndomains) {
1598 spin_unlock_irqrestore(&iommu->lock, flags);
1599 printk(KERN_ERR "IOMMU: no free domain ids\n");
1603 set_bit(num, iommu->domain_ids);
1604 iommu->domains[num] = domain;
1608 /* Skip top levels of page tables for
1609 * iommu which has less agaw than default.
1610 * Unnecessary for PT mode.
1612 if (translation != CONTEXT_TT_PASS_THROUGH) {
1613 for (agaw = domain->agaw; agaw != iommu->agaw; agaw--) {
1614 pgd = phys_to_virt(dma_pte_addr(pgd));
1615 if (!dma_pte_present(pgd)) {
1616 spin_unlock_irqrestore(&iommu->lock, flags);
1623 context_set_domain_id(context, id);
1625 if (translation != CONTEXT_TT_PASS_THROUGH) {
1626 info = iommu_support_dev_iotlb(domain, segment, bus, devfn);
1627 translation = info ? CONTEXT_TT_DEV_IOTLB :
1628 CONTEXT_TT_MULTI_LEVEL;
1631 * In pass through mode, AW must be programmed to indicate the largest
1632 * AGAW value supported by hardware. And ASR is ignored by hardware.
1634 if (unlikely(translation == CONTEXT_TT_PASS_THROUGH))
1635 context_set_address_width(context, iommu->msagaw);
1637 context_set_address_root(context, virt_to_phys(pgd));
1638 context_set_address_width(context, iommu->agaw);
1641 context_set_translation_type(context, translation);
1642 context_set_fault_enable(context);
1643 context_set_present(context);
1644 domain_flush_cache(domain, context, sizeof(*context));
1647 * It's a non-present to present mapping. If hardware doesn't cache
1648 * non-present entry we only need to flush the write-buffer. If the
1649 * _does_ cache non-present entries, then it does so in the special
1650 * domain #0, which we have to flush:
1652 if (cap_caching_mode(iommu->cap)) {
1653 iommu->flush.flush_context(iommu, 0,
1654 (((u16)bus) << 8) | devfn,
1655 DMA_CCMD_MASK_NOBIT,
1656 DMA_CCMD_DEVICE_INVL);
1657 iommu->flush.flush_iotlb(iommu, domain->id, 0, 0, DMA_TLB_DSI_FLUSH);
1659 iommu_flush_write_buffer(iommu);
1661 iommu_enable_dev_iotlb(info);
1662 spin_unlock_irqrestore(&iommu->lock, flags);
1664 spin_lock_irqsave(&domain->iommu_lock, flags);
1665 if (!test_and_set_bit(iommu->seq_id, domain->iommu_bmp)) {
1666 domain->iommu_count++;
1667 if (domain->iommu_count == 1)
1668 domain->nid = iommu->node;
1669 domain_update_iommu_cap(domain);
1671 spin_unlock_irqrestore(&domain->iommu_lock, flags);
1676 domain_context_mapping(struct dmar_domain *domain, struct pci_dev *pdev,
1680 struct pci_dev *tmp, *parent;
1682 ret = domain_context_mapping_one(domain, pci_domain_nr(pdev->bus),
1683 pdev->bus->number, pdev->devfn,
1688 /* dependent device mapping */
1689 tmp = pci_find_upstream_pcie_bridge(pdev);
1692 /* Secondary interface's bus number and devfn 0 */
1693 parent = pdev->bus->self;
1694 while (parent != tmp) {
1695 ret = domain_context_mapping_one(domain,
1696 pci_domain_nr(parent->bus),
1697 parent->bus->number,
1698 parent->devfn, translation);
1701 parent = parent->bus->self;
1703 if (pci_is_pcie(tmp)) /* this is a PCIe-to-PCI bridge */
1704 return domain_context_mapping_one(domain,
1705 pci_domain_nr(tmp->subordinate),
1706 tmp->subordinate->number, 0,
1708 else /* this is a legacy PCI bridge */
1709 return domain_context_mapping_one(domain,
1710 pci_domain_nr(tmp->bus),
1716 static int domain_context_mapped(struct pci_dev *pdev)
1719 struct pci_dev *tmp, *parent;
1720 struct intel_iommu *iommu;
1722 iommu = device_to_iommu(pci_domain_nr(pdev->bus), pdev->bus->number,
1727 ret = device_context_mapped(iommu, pdev->bus->number, pdev->devfn);
1730 /* dependent device mapping */
1731 tmp = pci_find_upstream_pcie_bridge(pdev);
1734 /* Secondary interface's bus number and devfn 0 */
1735 parent = pdev->bus->self;
1736 while (parent != tmp) {
1737 ret = device_context_mapped(iommu, parent->bus->number,
1741 parent = parent->bus->self;
1743 if (pci_is_pcie(tmp))
1744 return device_context_mapped(iommu, tmp->subordinate->number,
1747 return device_context_mapped(iommu, tmp->bus->number,
1751 /* Returns a number of VTD pages, but aligned to MM page size */
1752 static inline unsigned long aligned_nrpages(unsigned long host_addr,
1755 host_addr &= ~PAGE_MASK;
1756 return PAGE_ALIGN(host_addr + size) >> VTD_PAGE_SHIFT;
1759 /* Return largest possible superpage level for a given mapping */
1760 static inline int hardware_largepage_caps(struct dmar_domain *domain,
1761 unsigned long iov_pfn,
1762 unsigned long phy_pfn,
1763 unsigned long pages)
1765 int support, level = 1;
1766 unsigned long pfnmerge;
1768 support = domain->iommu_superpage;
1770 /* To use a large page, the virtual *and* physical addresses
1771 must be aligned to 2MiB/1GiB/etc. Lower bits set in either
1772 of them will mean we have to use smaller pages. So just
1773 merge them and check both at once. */
1774 pfnmerge = iov_pfn | phy_pfn;
1776 while (support && !(pfnmerge & ~VTD_STRIDE_MASK)) {
1777 pages >>= VTD_STRIDE_SHIFT;
1780 pfnmerge >>= VTD_STRIDE_SHIFT;
1787 static int __domain_mapping(struct dmar_domain *domain, unsigned long iov_pfn,
1788 struct scatterlist *sg, unsigned long phys_pfn,
1789 unsigned long nr_pages, int prot)
1791 struct dma_pte *first_pte = NULL, *pte = NULL;
1792 phys_addr_t uninitialized_var(pteval);
1793 int addr_width = agaw_to_width(domain->agaw) - VTD_PAGE_SHIFT;
1794 unsigned long sg_res;
1795 unsigned int largepage_lvl = 0;
1796 unsigned long lvl_pages = 0;
1798 BUG_ON(addr_width < BITS_PER_LONG && (iov_pfn + nr_pages - 1) >> addr_width);
1800 if ((prot & (DMA_PTE_READ|DMA_PTE_WRITE)) == 0)
1803 prot &= DMA_PTE_READ | DMA_PTE_WRITE | DMA_PTE_SNP;
1808 sg_res = nr_pages + 1;
1809 pteval = ((phys_addr_t)phys_pfn << VTD_PAGE_SHIFT) | prot;
1812 while (nr_pages > 0) {
1816 sg_res = aligned_nrpages(sg->offset, sg->length);
1817 sg->dma_address = ((dma_addr_t)iov_pfn << VTD_PAGE_SHIFT) + sg->offset;
1818 sg->dma_length = sg->length;
1819 pteval = page_to_phys(sg_page(sg)) | prot;
1820 phys_pfn = pteval >> VTD_PAGE_SHIFT;
1824 largepage_lvl = hardware_largepage_caps(domain, iov_pfn, phys_pfn, sg_res);
1826 first_pte = pte = pfn_to_dma_pte(domain, iov_pfn, largepage_lvl);
1829 /* It is large page*/
1830 if (largepage_lvl > 1)
1831 pteval |= DMA_PTE_LARGE_PAGE;
1833 pteval &= ~(uint64_t)DMA_PTE_LARGE_PAGE;
1836 /* We don't need lock here, nobody else
1837 * touches the iova range
1839 tmp = cmpxchg64_local(&pte->val, 0ULL, pteval);
1841 static int dumps = 5;
1842 printk(KERN_CRIT "ERROR: DMA PTE for vPFN 0x%lx already set (to %llx not %llx)\n",
1843 iov_pfn, tmp, (unsigned long long)pteval);
1846 debug_dma_dump_mappings(NULL);
1851 lvl_pages = lvl_to_nr_pages(largepage_lvl);
1853 BUG_ON(nr_pages < lvl_pages);
1854 BUG_ON(sg_res < lvl_pages);
1856 nr_pages -= lvl_pages;
1857 iov_pfn += lvl_pages;
1858 phys_pfn += lvl_pages;
1859 pteval += lvl_pages * VTD_PAGE_SIZE;
1860 sg_res -= lvl_pages;
1862 /* If the next PTE would be the first in a new page, then we
1863 need to flush the cache on the entries we've just written.
1864 And then we'll need to recalculate 'pte', so clear it and
1865 let it get set again in the if (!pte) block above.
1867 If we're done (!nr_pages) we need to flush the cache too.
1869 Also if we've been setting superpages, we may need to
1870 recalculate 'pte' and switch back to smaller pages for the
1871 end of the mapping, if the trailing size is not enough to
1872 use another superpage (i.e. sg_res < lvl_pages). */
1874 if (!nr_pages || first_pte_in_page(pte) ||
1875 (largepage_lvl > 1 && sg_res < lvl_pages)) {
1876 domain_flush_cache(domain, first_pte,
1877 (void *)pte - (void *)first_pte);
1881 if (!sg_res && nr_pages)
1887 static inline int domain_sg_mapping(struct dmar_domain *domain, unsigned long iov_pfn,
1888 struct scatterlist *sg, unsigned long nr_pages,
1891 return __domain_mapping(domain, iov_pfn, sg, 0, nr_pages, prot);
1894 static inline int domain_pfn_mapping(struct dmar_domain *domain, unsigned long iov_pfn,
1895 unsigned long phys_pfn, unsigned long nr_pages,
1898 return __domain_mapping(domain, iov_pfn, NULL, phys_pfn, nr_pages, prot);
1901 static void iommu_detach_dev(struct intel_iommu *iommu, u8 bus, u8 devfn)
1906 clear_context_table(iommu, bus, devfn);
1907 iommu->flush.flush_context(iommu, 0, 0, 0,
1908 DMA_CCMD_GLOBAL_INVL);
1909 iommu->flush.flush_iotlb(iommu, 0, 0, 0, DMA_TLB_GLOBAL_FLUSH);
1912 static inline void unlink_domain_info(struct device_domain_info *info)
1914 assert_spin_locked(&device_domain_lock);
1915 list_del(&info->link);
1916 list_del(&info->global);
1918 info->dev->dev.archdata.iommu = NULL;
1921 static void domain_remove_dev_info(struct dmar_domain *domain)
1923 struct device_domain_info *info;
1924 unsigned long flags;
1925 struct intel_iommu *iommu;
1927 spin_lock_irqsave(&device_domain_lock, flags);
1928 while (!list_empty(&domain->devices)) {
1929 info = list_entry(domain->devices.next,
1930 struct device_domain_info, link);
1931 unlink_domain_info(info);
1932 spin_unlock_irqrestore(&device_domain_lock, flags);
1934 iommu_disable_dev_iotlb(info);
1935 iommu = device_to_iommu(info->segment, info->bus, info->devfn);
1936 iommu_detach_dev(iommu, info->bus, info->devfn);
1937 free_devinfo_mem(info);
1939 spin_lock_irqsave(&device_domain_lock, flags);
1941 spin_unlock_irqrestore(&device_domain_lock, flags);
1946 * Note: we use struct pci_dev->dev.archdata.iommu stores the info
1948 static struct dmar_domain *
1949 find_domain(struct pci_dev *pdev)
1951 struct device_domain_info *info;
1953 /* No lock here, assumes no domain exit in normal case */
1954 info = pdev->dev.archdata.iommu;
1956 return info->domain;
1960 /* domain is initialized */
1961 static struct dmar_domain *get_domain_for_dev(struct pci_dev *pdev, int gaw)
1963 struct dmar_domain *domain, *found = NULL;
1964 struct intel_iommu *iommu;
1965 struct dmar_drhd_unit *drhd;
1966 struct device_domain_info *info, *tmp;
1967 struct pci_dev *dev_tmp;
1968 unsigned long flags;
1969 int bus = 0, devfn = 0;
1973 domain = find_domain(pdev);
1977 segment = pci_domain_nr(pdev->bus);
1979 dev_tmp = pci_find_upstream_pcie_bridge(pdev);
1981 if (pci_is_pcie(dev_tmp)) {
1982 bus = dev_tmp->subordinate->number;
1985 bus = dev_tmp->bus->number;
1986 devfn = dev_tmp->devfn;
1988 spin_lock_irqsave(&device_domain_lock, flags);
1989 list_for_each_entry(info, &device_domain_list, global) {
1990 if (info->segment == segment &&
1991 info->bus == bus && info->devfn == devfn) {
1992 found = info->domain;
1996 spin_unlock_irqrestore(&device_domain_lock, flags);
1997 /* pcie-pci bridge already has a domain, uses it */
2004 domain = alloc_domain();
2008 /* Allocate new domain for the device */
2009 drhd = dmar_find_matched_drhd_unit(pdev);
2011 printk(KERN_ERR "IOMMU: can't find DMAR for device %s\n",
2013 free_domain_mem(domain);
2016 iommu = drhd->iommu;
2018 ret = iommu_attach_domain(domain, iommu);
2020 free_domain_mem(domain);
2024 if (domain_init(domain, gaw)) {
2025 domain_exit(domain);
2029 /* register pcie-to-pci device */
2031 info = alloc_devinfo_mem();
2033 domain_exit(domain);
2036 info->segment = segment;
2038 info->devfn = devfn;
2040 info->domain = domain;
2041 /* This domain is shared by devices under p2p bridge */
2042 domain->flags |= DOMAIN_FLAG_P2P_MULTIPLE_DEVICES;
2044 /* pcie-to-pci bridge already has a domain, uses it */
2046 spin_lock_irqsave(&device_domain_lock, flags);
2047 list_for_each_entry(tmp, &device_domain_list, global) {
2048 if (tmp->segment == segment &&
2049 tmp->bus == bus && tmp->devfn == devfn) {
2050 found = tmp->domain;
2055 spin_unlock_irqrestore(&device_domain_lock, flags);
2056 free_devinfo_mem(info);
2057 domain_exit(domain);
2060 list_add(&info->link, &domain->devices);
2061 list_add(&info->global, &device_domain_list);
2062 spin_unlock_irqrestore(&device_domain_lock, flags);
2067 info = alloc_devinfo_mem();
2070 info->segment = segment;
2071 info->bus = pdev->bus->number;
2072 info->devfn = pdev->devfn;
2074 info->domain = domain;
2075 spin_lock_irqsave(&device_domain_lock, flags);
2076 /* somebody is fast */
2077 found = find_domain(pdev);
2078 if (found != NULL) {
2079 spin_unlock_irqrestore(&device_domain_lock, flags);
2080 if (found != domain) {
2081 domain_exit(domain);
2084 free_devinfo_mem(info);
2087 list_add(&info->link, &domain->devices);
2088 list_add(&info->global, &device_domain_list);
2089 pdev->dev.archdata.iommu = info;
2090 spin_unlock_irqrestore(&device_domain_lock, flags);
2093 /* recheck it here, maybe others set it */
2094 return find_domain(pdev);
2097 static int iommu_identity_mapping;
2098 #define IDENTMAP_ALL 1
2099 #define IDENTMAP_GFX 2
2100 #define IDENTMAP_AZALIA 4
2102 static int iommu_domain_identity_map(struct dmar_domain *domain,
2103 unsigned long long start,
2104 unsigned long long end)
2106 unsigned long first_vpfn = start >> VTD_PAGE_SHIFT;
2107 unsigned long last_vpfn = end >> VTD_PAGE_SHIFT;
2109 if (!reserve_iova(&domain->iovad, dma_to_mm_pfn(first_vpfn),
2110 dma_to_mm_pfn(last_vpfn))) {
2111 printk(KERN_ERR "IOMMU: reserve iova failed\n");
2115 pr_debug("Mapping reserved region %llx-%llx for domain %d\n",
2116 start, end, domain->id);
2118 * RMRR range might have overlap with physical memory range,
2121 dma_pte_clear_range(domain, first_vpfn, last_vpfn);
2123 return domain_pfn_mapping(domain, first_vpfn, first_vpfn,
2124 last_vpfn - first_vpfn + 1,
2125 DMA_PTE_READ|DMA_PTE_WRITE);
2128 static int iommu_prepare_identity_map(struct pci_dev *pdev,
2129 unsigned long long start,
2130 unsigned long long end)
2132 struct dmar_domain *domain;
2135 domain = get_domain_for_dev(pdev, DEFAULT_DOMAIN_ADDRESS_WIDTH);
2139 /* For _hardware_ passthrough, don't bother. But for software
2140 passthrough, we do it anyway -- it may indicate a memory
2141 range which is reserved in E820, so which didn't get set
2142 up to start with in si_domain */
2143 if (domain == si_domain && hw_pass_through) {
2144 printk("Ignoring identity map for HW passthrough device %s [0x%Lx - 0x%Lx]\n",
2145 pci_name(pdev), start, end);
2150 "IOMMU: Setting identity map for device %s [0x%Lx - 0x%Lx]\n",
2151 pci_name(pdev), start, end);
2154 WARN(1, "Your BIOS is broken; RMRR ends before it starts!\n"
2155 "BIOS vendor: %s; Ver: %s; Product Version: %s\n",
2156 dmi_get_system_info(DMI_BIOS_VENDOR),
2157 dmi_get_system_info(DMI_BIOS_VERSION),
2158 dmi_get_system_info(DMI_PRODUCT_VERSION));
2163 if (end >> agaw_to_width(domain->agaw)) {
2164 WARN(1, "Your BIOS is broken; RMRR exceeds permitted address width (%d bits)\n"
2165 "BIOS vendor: %s; Ver: %s; Product Version: %s\n",
2166 agaw_to_width(domain->agaw),
2167 dmi_get_system_info(DMI_BIOS_VENDOR),
2168 dmi_get_system_info(DMI_BIOS_VERSION),
2169 dmi_get_system_info(DMI_PRODUCT_VERSION));
2174 ret = iommu_domain_identity_map(domain, start, end);
2178 /* context entry init */
2179 ret = domain_context_mapping(domain, pdev, CONTEXT_TT_MULTI_LEVEL);
2186 domain_exit(domain);
2190 static inline int iommu_prepare_rmrr_dev(struct dmar_rmrr_unit *rmrr,
2191 struct pci_dev *pdev)
2193 if (pdev->dev.archdata.iommu == DUMMY_DEVICE_DOMAIN_INFO)
2195 return iommu_prepare_identity_map(pdev, rmrr->base_address,
2199 #ifdef CONFIG_INTEL_IOMMU_FLOPPY_WA
2200 static inline void iommu_prepare_isa(void)
2202 struct pci_dev *pdev;
2205 pdev = pci_get_class(PCI_CLASS_BRIDGE_ISA << 8, NULL);
2209 printk(KERN_INFO "IOMMU: Prepare 0-16MiB unity mapping for LPC\n");
2210 ret = iommu_prepare_identity_map(pdev, 0, 16*1024*1024 - 1);
2213 printk(KERN_ERR "IOMMU: Failed to create 0-16MiB identity map; "
2214 "floppy might not work\n");
2218 static inline void iommu_prepare_isa(void)
2222 #endif /* !CONFIG_INTEL_IOMMU_FLPY_WA */
2224 static int md_domain_init(struct dmar_domain *domain, int guest_width);
2226 static int __init si_domain_init(int hw)
2228 struct dmar_drhd_unit *drhd;
2229 struct intel_iommu *iommu;
2232 si_domain = alloc_domain();
2236 pr_debug("Identity mapping domain is domain %d\n", si_domain->id);
2238 for_each_active_iommu(iommu, drhd) {
2239 ret = iommu_attach_domain(si_domain, iommu);
2241 domain_exit(si_domain);
2246 if (md_domain_init(si_domain, DEFAULT_DOMAIN_ADDRESS_WIDTH)) {
2247 domain_exit(si_domain);
2251 si_domain->flags = DOMAIN_FLAG_STATIC_IDENTITY;
2256 for_each_online_node(nid) {
2257 unsigned long start_pfn, end_pfn;
2260 for_each_mem_pfn_range(i, nid, &start_pfn, &end_pfn, NULL) {
2261 ret = iommu_domain_identity_map(si_domain,
2262 PFN_PHYS(start_pfn), PFN_PHYS(end_pfn));
2271 static void domain_remove_one_dev_info(struct dmar_domain *domain,
2272 struct pci_dev *pdev);
2273 static int identity_mapping(struct pci_dev *pdev)
2275 struct device_domain_info *info;
2277 if (likely(!iommu_identity_mapping))
2280 info = pdev->dev.archdata.iommu;
2281 if (info && info != DUMMY_DEVICE_DOMAIN_INFO)
2282 return (info->domain == si_domain);
2287 static int domain_add_dev_info(struct dmar_domain *domain,
2288 struct pci_dev *pdev,
2291 struct device_domain_info *info;
2292 unsigned long flags;
2295 info = alloc_devinfo_mem();
2299 info->segment = pci_domain_nr(pdev->bus);
2300 info->bus = pdev->bus->number;
2301 info->devfn = pdev->devfn;
2303 info->domain = domain;
2305 spin_lock_irqsave(&device_domain_lock, flags);
2306 list_add(&info->link, &domain->devices);
2307 list_add(&info->global, &device_domain_list);
2308 pdev->dev.archdata.iommu = info;
2309 spin_unlock_irqrestore(&device_domain_lock, flags);
2311 ret = domain_context_mapping(domain, pdev, translation);
2313 spin_lock_irqsave(&device_domain_lock, flags);
2314 unlink_domain_info(info);
2315 spin_unlock_irqrestore(&device_domain_lock, flags);
2316 free_devinfo_mem(info);
2323 static int iommu_should_identity_map(struct pci_dev *pdev, int startup)
2325 if ((iommu_identity_mapping & IDENTMAP_AZALIA) && IS_AZALIA(pdev))
2328 if ((iommu_identity_mapping & IDENTMAP_GFX) && IS_GFX_DEVICE(pdev))
2331 if (!(iommu_identity_mapping & IDENTMAP_ALL))
2335 * We want to start off with all devices in the 1:1 domain, and
2336 * take them out later if we find they can't access all of memory.
2338 * However, we can't do this for PCI devices behind bridges,
2339 * because all PCI devices behind the same bridge will end up
2340 * with the same source-id on their transactions.
2342 * Practically speaking, we can't change things around for these
2343 * devices at run-time, because we can't be sure there'll be no
2344 * DMA transactions in flight for any of their siblings.
2346 * So PCI devices (unless they're on the root bus) as well as
2347 * their parent PCI-PCI or PCIe-PCI bridges must be left _out_ of
2348 * the 1:1 domain, just in _case_ one of their siblings turns out
2349 * not to be able to map all of memory.
2351 if (!pci_is_pcie(pdev)) {
2352 if (!pci_is_root_bus(pdev->bus))
2354 if (pdev->class >> 8 == PCI_CLASS_BRIDGE_PCI)
2356 } else if (pci_pcie_type(pdev) == PCI_EXP_TYPE_PCI_BRIDGE)
2360 * At boot time, we don't yet know if devices will be 64-bit capable.
2361 * Assume that they will -- if they turn out not to be, then we can
2362 * take them out of the 1:1 domain later.
2366 * If the device's dma_mask is less than the system's memory
2367 * size then this is not a candidate for identity mapping.
2369 u64 dma_mask = pdev->dma_mask;
2371 if (pdev->dev.coherent_dma_mask &&
2372 pdev->dev.coherent_dma_mask < dma_mask)
2373 dma_mask = pdev->dev.coherent_dma_mask;
2375 return dma_mask >= dma_get_required_mask(&pdev->dev);
2381 static int __init iommu_prepare_static_identity_mapping(int hw)
2383 struct pci_dev *pdev = NULL;
2386 ret = si_domain_init(hw);
2390 for_each_pci_dev(pdev) {
2391 if (iommu_should_identity_map(pdev, 1)) {
2392 ret = domain_add_dev_info(si_domain, pdev,
2393 hw ? CONTEXT_TT_PASS_THROUGH :
2394 CONTEXT_TT_MULTI_LEVEL);
2396 /* device not associated with an iommu */
2401 pr_info("IOMMU: %s identity mapping for device %s\n",
2402 hw ? "hardware" : "software", pci_name(pdev));
2409 static int __init init_dmars(void)
2411 struct dmar_drhd_unit *drhd;
2412 struct dmar_rmrr_unit *rmrr;
2413 struct pci_dev *pdev;
2414 struct intel_iommu *iommu;
2420 * initialize and program root entry to not present
2423 for_each_drhd_unit(drhd) {
2425 * lock not needed as this is only incremented in the single
2426 * threaded kernel __init code path all other access are read
2429 if (g_num_of_iommus < IOMMU_UNITS_SUPPORTED) {
2433 printk_once(KERN_ERR "intel-iommu: exceeded %d IOMMUs\n",
2434 IOMMU_UNITS_SUPPORTED);
2437 g_iommus = kcalloc(g_num_of_iommus, sizeof(struct intel_iommu *),
2440 printk(KERN_ERR "Allocating global iommu array failed\n");
2445 deferred_flush = kzalloc(g_num_of_iommus *
2446 sizeof(struct deferred_flush_tables), GFP_KERNEL);
2447 if (!deferred_flush) {
2452 for_each_drhd_unit(drhd) {
2456 iommu = drhd->iommu;
2457 g_iommus[iommu->seq_id] = iommu;
2459 ret = iommu_init_domains(iommu);
2465 * we could share the same root & context tables
2466 * among all IOMMU's. Need to Split it later.
2468 ret = iommu_alloc_root_entry(iommu);
2470 printk(KERN_ERR "IOMMU: allocate root entry failed\n");
2473 if (!ecap_pass_through(iommu->ecap))
2474 hw_pass_through = 0;
2478 * Start from the sane iommu hardware state.
2480 for_each_drhd_unit(drhd) {
2484 iommu = drhd->iommu;
2487 * If the queued invalidation is already initialized by us
2488 * (for example, while enabling interrupt-remapping) then
2489 * we got the things already rolling from a sane state.
2495 * Clear any previous faults.
2497 dmar_fault(-1, iommu);
2499 * Disable queued invalidation if supported and already enabled
2500 * before OS handover.
2502 dmar_disable_qi(iommu);
2505 for_each_drhd_unit(drhd) {
2509 iommu = drhd->iommu;
2511 if (dmar_enable_qi(iommu)) {
2513 * Queued Invalidate not enabled, use Register Based
2516 iommu->flush.flush_context = __iommu_flush_context;
2517 iommu->flush.flush_iotlb = __iommu_flush_iotlb;
2518 printk(KERN_INFO "IOMMU %d 0x%Lx: using Register based "
2521 (unsigned long long)drhd->reg_base_addr);
2523 iommu->flush.flush_context = qi_flush_context;
2524 iommu->flush.flush_iotlb = qi_flush_iotlb;
2525 printk(KERN_INFO "IOMMU %d 0x%Lx: using Queued "
2528 (unsigned long long)drhd->reg_base_addr);
2532 if (iommu_pass_through)
2533 iommu_identity_mapping |= IDENTMAP_ALL;
2535 #ifdef CONFIG_INTEL_IOMMU_BROKEN_GFX_WA
2536 iommu_identity_mapping |= IDENTMAP_GFX;
2539 check_tylersburg_isoch();
2542 * If pass through is not set or not enabled, setup context entries for
2543 * identity mappings for rmrr, gfx, and isa and may fall back to static
2544 * identity mapping if iommu_identity_mapping is set.
2546 if (iommu_identity_mapping) {
2547 ret = iommu_prepare_static_identity_mapping(hw_pass_through);
2549 printk(KERN_CRIT "Failed to setup IOMMU pass-through\n");
2555 * for each dev attached to rmrr
2557 * locate drhd for dev, alloc domain for dev
2558 * allocate free domain
2559 * allocate page table entries for rmrr
2560 * if context not allocated for bus
2561 * allocate and init context
2562 * set present in root table for this bus
2563 * init context with domain, translation etc
2567 printk(KERN_INFO "IOMMU: Setting RMRR:\n");
2568 for_each_rmrr_units(rmrr) {
2569 for (i = 0; i < rmrr->devices_cnt; i++) {
2570 pdev = rmrr->devices[i];
2572 * some BIOS lists non-exist devices in DMAR
2577 ret = iommu_prepare_rmrr_dev(rmrr, pdev);
2580 "IOMMU: mapping reserved region failed\n");
2584 iommu_prepare_isa();
2589 * global invalidate context cache
2590 * global invalidate iotlb
2591 * enable translation
2593 for_each_drhd_unit(drhd) {
2594 if (drhd->ignored) {
2596 * we always have to disable PMRs or DMA may fail on
2600 iommu_disable_protect_mem_regions(drhd->iommu);
2603 iommu = drhd->iommu;
2605 iommu_flush_write_buffer(iommu);
2607 ret = dmar_set_interrupt(iommu);
2611 iommu_set_root_entry(iommu);
2613 iommu->flush.flush_context(iommu, 0, 0, 0, DMA_CCMD_GLOBAL_INVL);
2614 iommu->flush.flush_iotlb(iommu, 0, 0, 0, DMA_TLB_GLOBAL_FLUSH);
2616 ret = iommu_enable_translation(iommu);
2620 iommu_disable_protect_mem_regions(iommu);
2625 for_each_drhd_unit(drhd) {
2628 iommu = drhd->iommu;
2635 /* This takes a number of _MM_ pages, not VTD pages */
2636 static struct iova *intel_alloc_iova(struct device *dev,
2637 struct dmar_domain *domain,
2638 unsigned long nrpages, uint64_t dma_mask)
2640 struct pci_dev *pdev = to_pci_dev(dev);
2641 struct iova *iova = NULL;
2643 /* Restrict dma_mask to the width that the iommu can handle */
2644 dma_mask = min_t(uint64_t, DOMAIN_MAX_ADDR(domain->gaw), dma_mask);
2646 if (!dmar_forcedac && dma_mask > DMA_BIT_MASK(32)) {
2648 * First try to allocate an io virtual address in
2649 * DMA_BIT_MASK(32) and if that fails then try allocating
2652 iova = alloc_iova(&domain->iovad, nrpages,
2653 IOVA_PFN(DMA_BIT_MASK(32)), 1);
2657 iova = alloc_iova(&domain->iovad, nrpages, IOVA_PFN(dma_mask), 1);
2658 if (unlikely(!iova)) {
2659 printk(KERN_ERR "Allocating %ld-page iova for %s failed",
2660 nrpages, pci_name(pdev));
2667 static struct dmar_domain *__get_valid_domain_for_dev(struct pci_dev *pdev)
2669 struct dmar_domain *domain;
2672 domain = get_domain_for_dev(pdev,
2673 DEFAULT_DOMAIN_ADDRESS_WIDTH);
2676 "Allocating domain for %s failed", pci_name(pdev));
2680 /* make sure context mapping is ok */
2681 if (unlikely(!domain_context_mapped(pdev))) {
2682 ret = domain_context_mapping(domain, pdev,
2683 CONTEXT_TT_MULTI_LEVEL);
2686 "Domain context map for %s failed",
2695 static inline struct dmar_domain *get_valid_domain_for_dev(struct pci_dev *dev)
2697 struct device_domain_info *info;
2699 /* No lock here, assumes no domain exit in normal case */
2700 info = dev->dev.archdata.iommu;
2702 return info->domain;
2704 return __get_valid_domain_for_dev(dev);
2707 static int iommu_dummy(struct pci_dev *pdev)
2709 return pdev->dev.archdata.iommu == DUMMY_DEVICE_DOMAIN_INFO;
2712 /* Check if the pdev needs to go through non-identity map and unmap process.*/
2713 static int iommu_no_mapping(struct device *dev)
2715 struct pci_dev *pdev;
2718 if (unlikely(dev->bus != &pci_bus_type))
2721 pdev = to_pci_dev(dev);
2722 if (iommu_dummy(pdev))
2725 if (!iommu_identity_mapping)
2728 found = identity_mapping(pdev);
2730 if (iommu_should_identity_map(pdev, 0))
2734 * 32 bit DMA is removed from si_domain and fall back
2735 * to non-identity mapping.
2737 domain_remove_one_dev_info(si_domain, pdev);
2738 printk(KERN_INFO "32bit %s uses non-identity mapping\n",
2744 * In case of a detached 64 bit DMA device from vm, the device
2745 * is put into si_domain for identity mapping.
2747 if (iommu_should_identity_map(pdev, 0)) {
2749 ret = domain_add_dev_info(si_domain, pdev,
2751 CONTEXT_TT_PASS_THROUGH :
2752 CONTEXT_TT_MULTI_LEVEL);
2754 printk(KERN_INFO "64bit %s uses identity mapping\n",
2764 static dma_addr_t __intel_map_single(struct device *hwdev, phys_addr_t paddr,
2765 size_t size, int dir, u64 dma_mask)
2767 struct pci_dev *pdev = to_pci_dev(hwdev);
2768 struct dmar_domain *domain;
2769 phys_addr_t start_paddr;
2773 struct intel_iommu *iommu;
2774 unsigned long paddr_pfn = paddr >> PAGE_SHIFT;
2776 BUG_ON(dir == DMA_NONE);
2778 if (iommu_no_mapping(hwdev))
2781 domain = get_valid_domain_for_dev(pdev);
2785 iommu = domain_get_iommu(domain);
2786 size = aligned_nrpages(paddr, size);
2788 iova = intel_alloc_iova(hwdev, domain, dma_to_mm_pfn(size), dma_mask);
2793 * Check if DMAR supports zero-length reads on write only
2796 if (dir == DMA_TO_DEVICE || dir == DMA_BIDIRECTIONAL || \
2797 !cap_zlr(iommu->cap))
2798 prot |= DMA_PTE_READ;
2799 if (dir == DMA_FROM_DEVICE || dir == DMA_BIDIRECTIONAL)
2800 prot |= DMA_PTE_WRITE;
2802 * paddr - (paddr + size) might be partial page, we should map the whole
2803 * page. Note: if two part of one page are separately mapped, we
2804 * might have two guest_addr mapping to the same host paddr, but this
2805 * is not a big problem
2807 ret = domain_pfn_mapping(domain, mm_to_dma_pfn(iova->pfn_lo),
2808 mm_to_dma_pfn(paddr_pfn), size, prot);
2812 /* it's a non-present to present mapping. Only flush if caching mode */
2813 if (cap_caching_mode(iommu->cap))
2814 iommu_flush_iotlb_psi(iommu, domain->id, mm_to_dma_pfn(iova->pfn_lo), size, 1);
2816 iommu_flush_write_buffer(iommu);
2818 start_paddr = (phys_addr_t)iova->pfn_lo << PAGE_SHIFT;
2819 start_paddr += paddr & ~PAGE_MASK;
2824 __free_iova(&domain->iovad, iova);
2825 printk(KERN_ERR"Device %s request: %zx@%llx dir %d --- failed\n",
2826 pci_name(pdev), size, (unsigned long long)paddr, dir);
2830 static dma_addr_t intel_map_page(struct device *dev, struct page *page,
2831 unsigned long offset, size_t size,
2832 enum dma_data_direction dir,
2833 struct dma_attrs *attrs)
2835 return __intel_map_single(dev, page_to_phys(page) + offset, size,
2836 dir, to_pci_dev(dev)->dma_mask);
2839 static void flush_unmaps(void)
2845 /* just flush them all */
2846 for (i = 0; i < g_num_of_iommus; i++) {
2847 struct intel_iommu *iommu = g_iommus[i];
2851 if (!deferred_flush[i].next)
2854 /* In caching mode, global flushes turn emulation expensive */
2855 if (!cap_caching_mode(iommu->cap))
2856 iommu->flush.flush_iotlb(iommu, 0, 0, 0,
2857 DMA_TLB_GLOBAL_FLUSH);
2858 for (j = 0; j < deferred_flush[i].next; j++) {
2860 struct iova *iova = deferred_flush[i].iova[j];
2861 struct dmar_domain *domain = deferred_flush[i].domain[j];
2863 /* On real hardware multiple invalidations are expensive */
2864 if (cap_caching_mode(iommu->cap))
2865 iommu_flush_iotlb_psi(iommu, domain->id,
2866 iova->pfn_lo, iova->pfn_hi - iova->pfn_lo + 1, 0);
2868 mask = ilog2(mm_to_dma_pfn(iova->pfn_hi - iova->pfn_lo + 1));
2869 iommu_flush_dev_iotlb(deferred_flush[i].domain[j],
2870 (uint64_t)iova->pfn_lo << PAGE_SHIFT, mask);
2872 __free_iova(&deferred_flush[i].domain[j]->iovad, iova);
2874 deferred_flush[i].next = 0;
2880 static void flush_unmaps_timeout(unsigned long data)
2882 unsigned long flags;
2884 spin_lock_irqsave(&async_umap_flush_lock, flags);
2886 spin_unlock_irqrestore(&async_umap_flush_lock, flags);
2889 static void add_unmap(struct dmar_domain *dom, struct iova *iova)
2891 unsigned long flags;
2893 struct intel_iommu *iommu;
2895 spin_lock_irqsave(&async_umap_flush_lock, flags);
2896 if (list_size == HIGH_WATER_MARK)
2899 iommu = domain_get_iommu(dom);
2900 iommu_id = iommu->seq_id;
2902 next = deferred_flush[iommu_id].next;
2903 deferred_flush[iommu_id].domain[next] = dom;
2904 deferred_flush[iommu_id].iova[next] = iova;
2905 deferred_flush[iommu_id].next++;
2908 mod_timer(&unmap_timer, jiffies + msecs_to_jiffies(10));
2912 spin_unlock_irqrestore(&async_umap_flush_lock, flags);
2915 static void intel_unmap_page(struct device *dev, dma_addr_t dev_addr,
2916 size_t size, enum dma_data_direction dir,
2917 struct dma_attrs *attrs)
2919 struct pci_dev *pdev = to_pci_dev(dev);
2920 struct dmar_domain *domain;
2921 unsigned long start_pfn, last_pfn;
2923 struct intel_iommu *iommu;
2925 if (iommu_no_mapping(dev))
2928 domain = find_domain(pdev);
2931 iommu = domain_get_iommu(domain);
2933 iova = find_iova(&domain->iovad, IOVA_PFN(dev_addr));
2934 if (WARN_ONCE(!iova, "Driver unmaps unmatched page at PFN %llx\n",
2935 (unsigned long long)dev_addr))
2938 start_pfn = mm_to_dma_pfn(iova->pfn_lo);
2939 last_pfn = mm_to_dma_pfn(iova->pfn_hi + 1) - 1;
2941 pr_debug("Device %s unmapping: pfn %lx-%lx\n",
2942 pci_name(pdev), start_pfn, last_pfn);
2944 /* clear the whole page */
2945 dma_pte_clear_range(domain, start_pfn, last_pfn);
2947 /* free page tables */
2948 dma_pte_free_pagetable(domain, start_pfn, last_pfn);
2950 if (intel_iommu_strict) {
2951 iommu_flush_iotlb_psi(iommu, domain->id, start_pfn,
2952 last_pfn - start_pfn + 1, 0);
2954 __free_iova(&domain->iovad, iova);
2956 add_unmap(domain, iova);
2958 * queue up the release of the unmap to save the 1/6th of the
2959 * cpu used up by the iotlb flush operation...
2964 static void *intel_alloc_coherent(struct device *hwdev, size_t size,
2965 dma_addr_t *dma_handle, gfp_t flags,
2966 struct dma_attrs *attrs)
2971 size = PAGE_ALIGN(size);
2972 order = get_order(size);
2974 if (!iommu_no_mapping(hwdev))
2975 flags &= ~(GFP_DMA | GFP_DMA32);
2976 else if (hwdev->coherent_dma_mask < dma_get_required_mask(hwdev)) {
2977 if (hwdev->coherent_dma_mask < DMA_BIT_MASK(32))
2983 vaddr = (void *)__get_free_pages(flags, order);
2986 memset(vaddr, 0, size);
2988 *dma_handle = __intel_map_single(hwdev, virt_to_bus(vaddr), size,
2990 hwdev->coherent_dma_mask);
2993 free_pages((unsigned long)vaddr, order);
2997 static void intel_free_coherent(struct device *hwdev, size_t size, void *vaddr,
2998 dma_addr_t dma_handle, struct dma_attrs *attrs)
3002 size = PAGE_ALIGN(size);
3003 order = get_order(size);
3005 intel_unmap_page(hwdev, dma_handle, size, DMA_BIDIRECTIONAL, NULL);
3006 free_pages((unsigned long)vaddr, order);
3009 static void intel_unmap_sg(struct device *hwdev, struct scatterlist *sglist,
3010 int nelems, enum dma_data_direction dir,
3011 struct dma_attrs *attrs)
3013 struct pci_dev *pdev = to_pci_dev(hwdev);
3014 struct dmar_domain *domain;
3015 unsigned long start_pfn, last_pfn;
3017 struct intel_iommu *iommu;
3019 if (iommu_no_mapping(hwdev))
3022 domain = find_domain(pdev);
3025 iommu = domain_get_iommu(domain);
3027 iova = find_iova(&domain->iovad, IOVA_PFN(sglist[0].dma_address));
3028 if (WARN_ONCE(!iova, "Driver unmaps unmatched sglist at PFN %llx\n",
3029 (unsigned long long)sglist[0].dma_address))
3032 start_pfn = mm_to_dma_pfn(iova->pfn_lo);
3033 last_pfn = mm_to_dma_pfn(iova->pfn_hi + 1) - 1;
3035 /* clear the whole page */
3036 dma_pte_clear_range(domain, start_pfn, last_pfn);
3038 /* free page tables */
3039 dma_pte_free_pagetable(domain, start_pfn, last_pfn);
3041 if (intel_iommu_strict) {
3042 iommu_flush_iotlb_psi(iommu, domain->id, start_pfn,
3043 last_pfn - start_pfn + 1, 0);
3045 __free_iova(&domain->iovad, iova);
3047 add_unmap(domain, iova);
3049 * queue up the release of the unmap to save the 1/6th of the
3050 * cpu used up by the iotlb flush operation...
3055 static int intel_nontranslate_map_sg(struct device *hddev,
3056 struct scatterlist *sglist, int nelems, int dir)
3059 struct scatterlist *sg;
3061 for_each_sg(sglist, sg, nelems, i) {
3062 BUG_ON(!sg_page(sg));
3063 sg->dma_address = page_to_phys(sg_page(sg)) + sg->offset;
3064 sg->dma_length = sg->length;
3069 static int intel_map_sg(struct device *hwdev, struct scatterlist *sglist, int nelems,
3070 enum dma_data_direction dir, struct dma_attrs *attrs)
3073 struct pci_dev *pdev = to_pci_dev(hwdev);
3074 struct dmar_domain *domain;
3077 struct iova *iova = NULL;
3079 struct scatterlist *sg;
3080 unsigned long start_vpfn;
3081 struct intel_iommu *iommu;
3083 BUG_ON(dir == DMA_NONE);
3084 if (iommu_no_mapping(hwdev))
3085 return intel_nontranslate_map_sg(hwdev, sglist, nelems, dir);
3087 domain = get_valid_domain_for_dev(pdev);
3091 iommu = domain_get_iommu(domain);
3093 for_each_sg(sglist, sg, nelems, i)
3094 size += aligned_nrpages(sg->offset, sg->length);
3096 iova = intel_alloc_iova(hwdev, domain, dma_to_mm_pfn(size),
3099 sglist->dma_length = 0;
3104 * Check if DMAR supports zero-length reads on write only
3107 if (dir == DMA_TO_DEVICE || dir == DMA_BIDIRECTIONAL || \
3108 !cap_zlr(iommu->cap))
3109 prot |= DMA_PTE_READ;
3110 if (dir == DMA_FROM_DEVICE || dir == DMA_BIDIRECTIONAL)
3111 prot |= DMA_PTE_WRITE;
3113 start_vpfn = mm_to_dma_pfn(iova->pfn_lo);
3115 ret = domain_sg_mapping(domain, start_vpfn, sglist, size, prot);
3116 if (unlikely(ret)) {
3117 /* clear the page */
3118 dma_pte_clear_range(domain, start_vpfn,
3119 start_vpfn + size - 1);
3120 /* free page tables */
3121 dma_pte_free_pagetable(domain, start_vpfn,
3122 start_vpfn + size - 1);
3124 __free_iova(&domain->iovad, iova);
3128 /* it's a non-present to present mapping. Only flush if caching mode */
3129 if (cap_caching_mode(iommu->cap))
3130 iommu_flush_iotlb_psi(iommu, domain->id, start_vpfn, size, 1);
3132 iommu_flush_write_buffer(iommu);
3137 static int intel_mapping_error(struct device *dev, dma_addr_t dma_addr)
3142 struct dma_map_ops intel_dma_ops = {
3143 .alloc = intel_alloc_coherent,
3144 .free = intel_free_coherent,
3145 .map_sg = intel_map_sg,
3146 .unmap_sg = intel_unmap_sg,
3147 .map_page = intel_map_page,
3148 .unmap_page = intel_unmap_page,
3149 .mapping_error = intel_mapping_error,
3152 static inline int iommu_domain_cache_init(void)
3156 iommu_domain_cache = kmem_cache_create("iommu_domain",
3157 sizeof(struct dmar_domain),
3162 if (!iommu_domain_cache) {
3163 printk(KERN_ERR "Couldn't create iommu_domain cache\n");
3170 static inline int iommu_devinfo_cache_init(void)
3174 iommu_devinfo_cache = kmem_cache_create("iommu_devinfo",
3175 sizeof(struct device_domain_info),
3179 if (!iommu_devinfo_cache) {
3180 printk(KERN_ERR "Couldn't create devinfo cache\n");
3187 static inline int iommu_iova_cache_init(void)
3191 iommu_iova_cache = kmem_cache_create("iommu_iova",
3192 sizeof(struct iova),
3196 if (!iommu_iova_cache) {
3197 printk(KERN_ERR "Couldn't create iova cache\n");
3204 static int __init iommu_init_mempool(void)
3207 ret = iommu_iova_cache_init();
3211 ret = iommu_domain_cache_init();
3215 ret = iommu_devinfo_cache_init();
3219 kmem_cache_destroy(iommu_domain_cache);
3221 kmem_cache_destroy(iommu_iova_cache);
3226 static void __init iommu_exit_mempool(void)
3228 kmem_cache_destroy(iommu_devinfo_cache);
3229 kmem_cache_destroy(iommu_domain_cache);
3230 kmem_cache_destroy(iommu_iova_cache);
3234 static void quirk_ioat_snb_local_iommu(struct pci_dev *pdev)
3236 struct dmar_drhd_unit *drhd;
3240 /* We know that this device on this chipset has its own IOMMU.
3241 * If we find it under a different IOMMU, then the BIOS is lying
3242 * to us. Hope that the IOMMU for this device is actually
3243 * disabled, and it needs no translation...
3245 rc = pci_bus_read_config_dword(pdev->bus, PCI_DEVFN(0, 0), 0xb0, &vtbar);
3247 /* "can't" happen */
3248 dev_info(&pdev->dev, "failed to run vt-d quirk\n");
3251 vtbar &= 0xffff0000;
3253 /* we know that the this iommu should be at offset 0xa000 from vtbar */
3254 drhd = dmar_find_matched_drhd_unit(pdev);
3255 if (WARN_TAINT_ONCE(!drhd || drhd->reg_base_addr - vtbar != 0xa000,
3256 TAINT_FIRMWARE_WORKAROUND,
3257 "BIOS assigned incorrect VT-d unit for Intel(R) QuickData Technology device\n"))
3258 pdev->dev.archdata.iommu = DUMMY_DEVICE_DOMAIN_INFO;
3260 DECLARE_PCI_FIXUP_ENABLE(PCI_VENDOR_ID_INTEL, PCI_DEVICE_ID_INTEL_IOAT_SNB, quirk_ioat_snb_local_iommu);
3262 static void __init init_no_remapping_devices(void)
3264 struct dmar_drhd_unit *drhd;
3266 for_each_drhd_unit(drhd) {
3267 if (!drhd->include_all) {
3269 for (i = 0; i < drhd->devices_cnt; i++)
3270 if (drhd->devices[i] != NULL)
3272 /* ignore DMAR unit if no pci devices exist */
3273 if (i == drhd->devices_cnt)
3278 for_each_drhd_unit(drhd) {
3280 if (drhd->ignored || drhd->include_all)
3283 for (i = 0; i < drhd->devices_cnt; i++)
3284 if (drhd->devices[i] &&
3285 !IS_GFX_DEVICE(drhd->devices[i]))
3288 if (i < drhd->devices_cnt)
3291 /* This IOMMU has *only* gfx devices. Either bypass it or
3292 set the gfx_mapped flag, as appropriate */
3294 intel_iommu_gfx_mapped = 1;
3297 for (i = 0; i < drhd->devices_cnt; i++) {
3298 if (!drhd->devices[i])
3300 drhd->devices[i]->dev.archdata.iommu = DUMMY_DEVICE_DOMAIN_INFO;
3306 #ifdef CONFIG_SUSPEND
3307 static int init_iommu_hw(void)
3309 struct dmar_drhd_unit *drhd;
3310 struct intel_iommu *iommu = NULL;
3312 for_each_active_iommu(iommu, drhd)
3314 dmar_reenable_qi(iommu);
3316 for_each_iommu(iommu, drhd) {
3317 if (drhd->ignored) {
3319 * we always have to disable PMRs or DMA may fail on
3323 iommu_disable_protect_mem_regions(iommu);
3327 iommu_flush_write_buffer(iommu);
3329 iommu_set_root_entry(iommu);
3331 iommu->flush.flush_context(iommu, 0, 0, 0,
3332 DMA_CCMD_GLOBAL_INVL);
3333 iommu->flush.flush_iotlb(iommu, 0, 0, 0,
3334 DMA_TLB_GLOBAL_FLUSH);
3335 if (iommu_enable_translation(iommu))
3337 iommu_disable_protect_mem_regions(iommu);
3343 static void iommu_flush_all(void)
3345 struct dmar_drhd_unit *drhd;
3346 struct intel_iommu *iommu;
3348 for_each_active_iommu(iommu, drhd) {
3349 iommu->flush.flush_context(iommu, 0, 0, 0,
3350 DMA_CCMD_GLOBAL_INVL);
3351 iommu->flush.flush_iotlb(iommu, 0, 0, 0,
3352 DMA_TLB_GLOBAL_FLUSH);
3356 static int iommu_suspend(void)
3358 struct dmar_drhd_unit *drhd;
3359 struct intel_iommu *iommu = NULL;
3362 for_each_active_iommu(iommu, drhd) {
3363 iommu->iommu_state = kzalloc(sizeof(u32) * MAX_SR_DMAR_REGS,
3365 if (!iommu->iommu_state)
3371 for_each_active_iommu(iommu, drhd) {
3372 iommu_disable_translation(iommu);
3374 raw_spin_lock_irqsave(&iommu->register_lock, flag);
3376 iommu->iommu_state[SR_DMAR_FECTL_REG] =
3377 readl(iommu->reg + DMAR_FECTL_REG);
3378 iommu->iommu_state[SR_DMAR_FEDATA_REG] =
3379 readl(iommu->reg + DMAR_FEDATA_REG);
3380 iommu->iommu_state[SR_DMAR_FEADDR_REG] =
3381 readl(iommu->reg + DMAR_FEADDR_REG);
3382 iommu->iommu_state[SR_DMAR_FEUADDR_REG] =
3383 readl(iommu->reg + DMAR_FEUADDR_REG);
3385 raw_spin_unlock_irqrestore(&iommu->register_lock, flag);
3390 for_each_active_iommu(iommu, drhd)
3391 kfree(iommu->iommu_state);
3396 static void iommu_resume(void)
3398 struct dmar_drhd_unit *drhd;
3399 struct intel_iommu *iommu = NULL;
3402 if (init_iommu_hw()) {
3404 panic("tboot: IOMMU setup failed, DMAR can not resume!\n");
3406 WARN(1, "IOMMU setup failed, DMAR can not resume!\n");
3410 for_each_active_iommu(iommu, drhd) {
3412 raw_spin_lock_irqsave(&iommu->register_lock, flag);
3414 writel(iommu->iommu_state[SR_DMAR_FECTL_REG],
3415 iommu->reg + DMAR_FECTL_REG);
3416 writel(iommu->iommu_state[SR_DMAR_FEDATA_REG],
3417 iommu->reg + DMAR_FEDATA_REG);
3418 writel(iommu->iommu_state[SR_DMAR_FEADDR_REG],
3419 iommu->reg + DMAR_FEADDR_REG);
3420 writel(iommu->iommu_state[SR_DMAR_FEUADDR_REG],
3421 iommu->reg + DMAR_FEUADDR_REG);
3423 raw_spin_unlock_irqrestore(&iommu->register_lock, flag);
3426 for_each_active_iommu(iommu, drhd)
3427 kfree(iommu->iommu_state);
3430 static struct syscore_ops iommu_syscore_ops = {
3431 .resume = iommu_resume,
3432 .suspend = iommu_suspend,
3435 static void __init init_iommu_pm_ops(void)
3437 register_syscore_ops(&iommu_syscore_ops);
3441 static inline void init_iommu_pm_ops(void) {}
3442 #endif /* CONFIG_PM */
3444 LIST_HEAD(dmar_rmrr_units);
3446 static void __init dmar_register_rmrr_unit(struct dmar_rmrr_unit *rmrr)
3448 list_add(&rmrr->list, &dmar_rmrr_units);
3452 int __init dmar_parse_one_rmrr(struct acpi_dmar_header *header)
3454 struct acpi_dmar_reserved_memory *rmrr;
3455 struct dmar_rmrr_unit *rmrru;
3457 rmrru = kzalloc(sizeof(*rmrru), GFP_KERNEL);
3461 rmrru->hdr = header;
3462 rmrr = (struct acpi_dmar_reserved_memory *)header;
3463 rmrru->base_address = rmrr->base_address;
3464 rmrru->end_address = rmrr->end_address;
3466 dmar_register_rmrr_unit(rmrru);
3471 rmrr_parse_dev(struct dmar_rmrr_unit *rmrru)
3473 struct acpi_dmar_reserved_memory *rmrr;
3476 rmrr = (struct acpi_dmar_reserved_memory *) rmrru->hdr;
3477 ret = dmar_parse_dev_scope((void *)(rmrr + 1),
3478 ((void *)rmrr) + rmrr->header.length,
3479 &rmrru->devices_cnt, &rmrru->devices, rmrr->segment);
3481 if (ret || (rmrru->devices_cnt == 0)) {
3482 list_del(&rmrru->list);
3488 static LIST_HEAD(dmar_atsr_units);
3490 int __init dmar_parse_one_atsr(struct acpi_dmar_header *hdr)
3492 struct acpi_dmar_atsr *atsr;
3493 struct dmar_atsr_unit *atsru;
3495 atsr = container_of(hdr, struct acpi_dmar_atsr, header);
3496 atsru = kzalloc(sizeof(*atsru), GFP_KERNEL);
3501 atsru->include_all = atsr->flags & 0x1;
3503 list_add(&atsru->list, &dmar_atsr_units);
3508 static int __init atsr_parse_dev(struct dmar_atsr_unit *atsru)
3511 struct acpi_dmar_atsr *atsr;
3513 if (atsru->include_all)
3516 atsr = container_of(atsru->hdr, struct acpi_dmar_atsr, header);
3517 rc = dmar_parse_dev_scope((void *)(atsr + 1),
3518 (void *)atsr + atsr->header.length,
3519 &atsru->devices_cnt, &atsru->devices,
3521 if (rc || !atsru->devices_cnt) {
3522 list_del(&atsru->list);
3529 int dmar_find_matched_atsr_unit(struct pci_dev *dev)
3532 struct pci_bus *bus;
3533 struct acpi_dmar_atsr *atsr;
3534 struct dmar_atsr_unit *atsru;
3536 dev = pci_physfn(dev);
3538 list_for_each_entry(atsru, &dmar_atsr_units, list) {
3539 atsr = container_of(atsru->hdr, struct acpi_dmar_atsr, header);
3540 if (atsr->segment == pci_domain_nr(dev->bus))
3547 for (bus = dev->bus; bus; bus = bus->parent) {
3548 struct pci_dev *bridge = bus->self;
3550 if (!bridge || !pci_is_pcie(bridge) ||
3551 pci_pcie_type(bridge) == PCI_EXP_TYPE_PCI_BRIDGE)
3554 if (pci_pcie_type(bridge) == PCI_EXP_TYPE_ROOT_PORT) {
3555 for (i = 0; i < atsru->devices_cnt; i++)
3556 if (atsru->devices[i] == bridge)
3562 if (atsru->include_all)
3568 int __init dmar_parse_rmrr_atsr_dev(void)
3570 struct dmar_rmrr_unit *rmrr, *rmrr_n;
3571 struct dmar_atsr_unit *atsr, *atsr_n;
3574 list_for_each_entry_safe(rmrr, rmrr_n, &dmar_rmrr_units, list) {
3575 ret = rmrr_parse_dev(rmrr);
3580 list_for_each_entry_safe(atsr, atsr_n, &dmar_atsr_units, list) {
3581 ret = atsr_parse_dev(atsr);
3590 * Here we only respond to action of unbound device from driver.
3592 * Added device is not attached to its DMAR domain here yet. That will happen
3593 * when mapping the device to iova.
3595 static int device_notifier(struct notifier_block *nb,
3596 unsigned long action, void *data)
3598 struct device *dev = data;
3599 struct pci_dev *pdev = to_pci_dev(dev);
3600 struct dmar_domain *domain;
3602 if (iommu_no_mapping(dev))
3605 domain = find_domain(pdev);
3609 if (action == BUS_NOTIFY_UNBOUND_DRIVER && !iommu_pass_through) {
3610 domain_remove_one_dev_info(domain, pdev);
3612 if (!(domain->flags & DOMAIN_FLAG_VIRTUAL_MACHINE) &&
3613 !(domain->flags & DOMAIN_FLAG_STATIC_IDENTITY) &&
3614 list_empty(&domain->devices))
3615 domain_exit(domain);
3621 static struct notifier_block device_nb = {
3622 .notifier_call = device_notifier,
3625 int __init intel_iommu_init(void)
3629 /* VT-d is required for a TXT/tboot launch, so enforce that */
3630 force_on = tboot_force_iommu();
3632 if (dmar_table_init()) {
3634 panic("tboot: Failed to initialize DMAR table\n");
3638 if (dmar_dev_scope_init() < 0) {
3640 panic("tboot: Failed to initialize DMAR device scope\n");
3644 if (no_iommu || dmar_disabled)
3647 if (iommu_init_mempool()) {
3649 panic("tboot: Failed to initialize iommu memory\n");
3653 if (list_empty(&dmar_rmrr_units))
3654 printk(KERN_INFO "DMAR: No RMRR found\n");
3656 if (list_empty(&dmar_atsr_units))
3657 printk(KERN_INFO "DMAR: No ATSR found\n");
3659 if (dmar_init_reserved_ranges()) {
3661 panic("tboot: Failed to reserve iommu ranges\n");
3665 init_no_remapping_devices();
3670 panic("tboot: Failed to initialize DMARs\n");
3671 printk(KERN_ERR "IOMMU: dmar init failed\n");
3672 put_iova_domain(&reserved_iova_list);
3673 iommu_exit_mempool();
3677 "PCI-DMA: Intel(R) Virtualization Technology for Directed I/O\n");
3679 init_timer(&unmap_timer);
3680 #ifdef CONFIG_SWIOTLB
3683 dma_ops = &intel_dma_ops;
3685 init_iommu_pm_ops();
3687 bus_set_iommu(&pci_bus_type, &intel_iommu_ops);
3689 bus_register_notifier(&pci_bus_type, &device_nb);
3691 intel_iommu_enabled = 1;
3696 static void iommu_detach_dependent_devices(struct intel_iommu *iommu,
3697 struct pci_dev *pdev)
3699 struct pci_dev *tmp, *parent;
3701 if (!iommu || !pdev)
3704 /* dependent device detach */
3705 tmp = pci_find_upstream_pcie_bridge(pdev);
3706 /* Secondary interface's bus number and devfn 0 */
3708 parent = pdev->bus->self;
3709 while (parent != tmp) {
3710 iommu_detach_dev(iommu, parent->bus->number,
3712 parent = parent->bus->self;
3714 if (pci_is_pcie(tmp)) /* this is a PCIe-to-PCI bridge */
3715 iommu_detach_dev(iommu,
3716 tmp->subordinate->number, 0);
3717 else /* this is a legacy PCI bridge */
3718 iommu_detach_dev(iommu, tmp->bus->number,
3723 static void domain_remove_one_dev_info(struct dmar_domain *domain,
3724 struct pci_dev *pdev)
3726 struct device_domain_info *info;
3727 struct intel_iommu *iommu;
3728 unsigned long flags;
3730 struct list_head *entry, *tmp;
3732 iommu = device_to_iommu(pci_domain_nr(pdev->bus), pdev->bus->number,
3737 spin_lock_irqsave(&device_domain_lock, flags);
3738 list_for_each_safe(entry, tmp, &domain->devices) {
3739 info = list_entry(entry, struct device_domain_info, link);
3740 if (info->segment == pci_domain_nr(pdev->bus) &&
3741 info->bus == pdev->bus->number &&
3742 info->devfn == pdev->devfn) {
3743 unlink_domain_info(info);
3744 spin_unlock_irqrestore(&device_domain_lock, flags);
3746 iommu_disable_dev_iotlb(info);
3747 iommu_detach_dev(iommu, info->bus, info->devfn);
3748 iommu_detach_dependent_devices(iommu, pdev);
3749 free_devinfo_mem(info);
3751 spin_lock_irqsave(&device_domain_lock, flags);
3759 /* if there is no other devices under the same iommu
3760 * owned by this domain, clear this iommu in iommu_bmp
3761 * update iommu count and coherency
3763 if (iommu == device_to_iommu(info->segment, info->bus,
3768 spin_unlock_irqrestore(&device_domain_lock, flags);
3771 unsigned long tmp_flags;
3772 spin_lock_irqsave(&domain->iommu_lock, tmp_flags);
3773 clear_bit(iommu->seq_id, domain->iommu_bmp);
3774 domain->iommu_count--;
3775 domain_update_iommu_cap(domain);
3776 spin_unlock_irqrestore(&domain->iommu_lock, tmp_flags);
3778 if (!(domain->flags & DOMAIN_FLAG_VIRTUAL_MACHINE) &&
3779 !(domain->flags & DOMAIN_FLAG_STATIC_IDENTITY)) {
3780 spin_lock_irqsave(&iommu->lock, tmp_flags);
3781 clear_bit(domain->id, iommu->domain_ids);
3782 iommu->domains[domain->id] = NULL;
3783 spin_unlock_irqrestore(&iommu->lock, tmp_flags);
3788 static void vm_domain_remove_all_dev_info(struct dmar_domain *domain)
3790 struct device_domain_info *info;
3791 struct intel_iommu *iommu;
3792 unsigned long flags1, flags2;
3794 spin_lock_irqsave(&device_domain_lock, flags1);
3795 while (!list_empty(&domain->devices)) {
3796 info = list_entry(domain->devices.next,
3797 struct device_domain_info, link);
3798 unlink_domain_info(info);
3799 spin_unlock_irqrestore(&device_domain_lock, flags1);
3801 iommu_disable_dev_iotlb(info);
3802 iommu = device_to_iommu(info->segment, info->bus, info->devfn);
3803 iommu_detach_dev(iommu, info->bus, info->devfn);
3804 iommu_detach_dependent_devices(iommu, info->dev);
3806 /* clear this iommu in iommu_bmp, update iommu count
3809 spin_lock_irqsave(&domain->iommu_lock, flags2);
3810 if (test_and_clear_bit(iommu->seq_id,
3811 domain->iommu_bmp)) {
3812 domain->iommu_count--;
3813 domain_update_iommu_cap(domain);
3815 spin_unlock_irqrestore(&domain->iommu_lock, flags2);
3817 free_devinfo_mem(info);
3818 spin_lock_irqsave(&device_domain_lock, flags1);
3820 spin_unlock_irqrestore(&device_domain_lock, flags1);
3823 /* domain id for virtual machine, it won't be set in context */
3824 static unsigned long vm_domid;
3826 static struct dmar_domain *iommu_alloc_vm_domain(void)
3828 struct dmar_domain *domain;
3830 domain = alloc_domain_mem();
3834 domain->id = vm_domid++;
3836 memset(domain->iommu_bmp, 0, sizeof(domain->iommu_bmp));
3837 domain->flags = DOMAIN_FLAG_VIRTUAL_MACHINE;
3842 static int md_domain_init(struct dmar_domain *domain, int guest_width)
3846 init_iova_domain(&domain->iovad, DMA_32BIT_PFN);
3847 spin_lock_init(&domain->iommu_lock);
3849 domain_reserve_special_ranges(domain);
3851 /* calculate AGAW */
3852 domain->gaw = guest_width;
3853 adjust_width = guestwidth_to_adjustwidth(guest_width);
3854 domain->agaw = width_to_agaw(adjust_width);
3856 INIT_LIST_HEAD(&domain->devices);
3858 domain->iommu_count = 0;
3859 domain->iommu_coherency = 0;
3860 domain->iommu_snooping = 0;
3861 domain->iommu_superpage = 0;
3862 domain->max_addr = 0;
3865 /* always allocate the top pgd */
3866 domain->pgd = (struct dma_pte *)alloc_pgtable_page(domain->nid);
3869 domain_flush_cache(domain, domain->pgd, PAGE_SIZE);
3873 static void iommu_free_vm_domain(struct dmar_domain *domain)
3875 unsigned long flags;
3876 struct dmar_drhd_unit *drhd;
3877 struct intel_iommu *iommu;
3879 unsigned long ndomains;
3881 for_each_drhd_unit(drhd) {
3884 iommu = drhd->iommu;
3886 ndomains = cap_ndoms(iommu->cap);
3887 for_each_set_bit(i, iommu->domain_ids, ndomains) {
3888 if (iommu->domains[i] == domain) {
3889 spin_lock_irqsave(&iommu->lock, flags);
3890 clear_bit(i, iommu->domain_ids);
3891 iommu->domains[i] = NULL;
3892 spin_unlock_irqrestore(&iommu->lock, flags);
3899 static void vm_domain_exit(struct dmar_domain *domain)
3901 /* Domain 0 is reserved, so dont process it */
3905 vm_domain_remove_all_dev_info(domain);
3907 put_iova_domain(&domain->iovad);
3910 dma_pte_clear_range(domain, 0, DOMAIN_MAX_PFN(domain->gaw));
3912 /* free page tables */
3913 dma_pte_free_pagetable(domain, 0, DOMAIN_MAX_PFN(domain->gaw));
3915 iommu_free_vm_domain(domain);
3916 free_domain_mem(domain);
3919 static int intel_iommu_domain_init(struct iommu_domain *domain)
3921 struct dmar_domain *dmar_domain;
3923 dmar_domain = iommu_alloc_vm_domain();
3926 "intel_iommu_domain_init: dmar_domain == NULL\n");
3929 if (md_domain_init(dmar_domain, DEFAULT_DOMAIN_ADDRESS_WIDTH)) {
3931 "intel_iommu_domain_init() failed\n");
3932 vm_domain_exit(dmar_domain);
3935 domain_update_iommu_cap(dmar_domain);
3936 domain->priv = dmar_domain;
3938 domain->geometry.aperture_start = 0;
3939 domain->geometry.aperture_end = __DOMAIN_MAX_ADDR(dmar_domain->gaw);
3940 domain->geometry.force_aperture = true;
3945 static void intel_iommu_domain_destroy(struct iommu_domain *domain)
3947 struct dmar_domain *dmar_domain = domain->priv;
3949 domain->priv = NULL;
3950 vm_domain_exit(dmar_domain);
3953 static int intel_iommu_attach_device(struct iommu_domain *domain,
3956 struct dmar_domain *dmar_domain = domain->priv;
3957 struct pci_dev *pdev = to_pci_dev(dev);
3958 struct intel_iommu *iommu;
3961 /* normally pdev is not mapped */
3962 if (unlikely(domain_context_mapped(pdev))) {
3963 struct dmar_domain *old_domain;
3965 old_domain = find_domain(pdev);
3967 if (dmar_domain->flags & DOMAIN_FLAG_VIRTUAL_MACHINE ||
3968 dmar_domain->flags & DOMAIN_FLAG_STATIC_IDENTITY)
3969 domain_remove_one_dev_info(old_domain, pdev);
3971 domain_remove_dev_info(old_domain);
3975 iommu = device_to_iommu(pci_domain_nr(pdev->bus), pdev->bus->number,
3980 /* check if this iommu agaw is sufficient for max mapped address */
3981 addr_width = agaw_to_width(iommu->agaw);
3982 if (addr_width > cap_mgaw(iommu->cap))
3983 addr_width = cap_mgaw(iommu->cap);
3985 if (dmar_domain->max_addr > (1LL << addr_width)) {
3986 printk(KERN_ERR "%s: iommu width (%d) is not "
3987 "sufficient for the mapped address (%llx)\n",
3988 __func__, addr_width, dmar_domain->max_addr);
3991 dmar_domain->gaw = addr_width;
3994 * Knock out extra levels of page tables if necessary
3996 while (iommu->agaw < dmar_domain->agaw) {
3997 struct dma_pte *pte;
3999 pte = dmar_domain->pgd;
4000 if (dma_pte_present(pte)) {
4001 dmar_domain->pgd = (struct dma_pte *)
4002 phys_to_virt(dma_pte_addr(pte));
4003 free_pgtable_page(pte);
4005 dmar_domain->agaw--;
4008 return domain_add_dev_info(dmar_domain, pdev, CONTEXT_TT_MULTI_LEVEL);
4011 static void intel_iommu_detach_device(struct iommu_domain *domain,
4014 struct dmar_domain *dmar_domain = domain->priv;
4015 struct pci_dev *pdev = to_pci_dev(dev);
4017 domain_remove_one_dev_info(dmar_domain, pdev);
4020 static int intel_iommu_map(struct iommu_domain *domain,
4021 unsigned long iova, phys_addr_t hpa,
4022 size_t size, int iommu_prot)
4024 struct dmar_domain *dmar_domain = domain->priv;
4029 if (iommu_prot & IOMMU_READ)
4030 prot |= DMA_PTE_READ;
4031 if (iommu_prot & IOMMU_WRITE)
4032 prot |= DMA_PTE_WRITE;
4033 if ((iommu_prot & IOMMU_CACHE) && dmar_domain->iommu_snooping)
4034 prot |= DMA_PTE_SNP;
4036 max_addr = iova + size;
4037 if (dmar_domain->max_addr < max_addr) {
4040 /* check if minimum agaw is sufficient for mapped address */
4041 end = __DOMAIN_MAX_ADDR(dmar_domain->gaw) + 1;
4042 if (end < max_addr) {
4043 printk(KERN_ERR "%s: iommu width (%d) is not "
4044 "sufficient for the mapped address (%llx)\n",
4045 __func__, dmar_domain->gaw, max_addr);
4048 dmar_domain->max_addr = max_addr;
4050 /* Round up size to next multiple of PAGE_SIZE, if it and
4051 the low bits of hpa would take us onto the next page */
4052 size = aligned_nrpages(hpa, size);
4053 ret = domain_pfn_mapping(dmar_domain, iova >> VTD_PAGE_SHIFT,
4054 hpa >> VTD_PAGE_SHIFT, size, prot);
4058 static size_t intel_iommu_unmap(struct iommu_domain *domain,
4059 unsigned long iova, size_t size)
4061 struct dmar_domain *dmar_domain = domain->priv;
4064 order = dma_pte_clear_range(dmar_domain, iova >> VTD_PAGE_SHIFT,
4065 (iova + size - 1) >> VTD_PAGE_SHIFT);
4067 if (dmar_domain->max_addr == iova + size)
4068 dmar_domain->max_addr = iova;
4070 return PAGE_SIZE << order;
4073 static phys_addr_t intel_iommu_iova_to_phys(struct iommu_domain *domain,
4076 struct dmar_domain *dmar_domain = domain->priv;
4077 struct dma_pte *pte;
4080 pte = pfn_to_dma_pte(dmar_domain, iova >> VTD_PAGE_SHIFT, 0);
4082 phys = dma_pte_addr(pte);
4087 static int intel_iommu_domain_has_cap(struct iommu_domain *domain,
4090 struct dmar_domain *dmar_domain = domain->priv;
4092 if (cap == IOMMU_CAP_CACHE_COHERENCY)
4093 return dmar_domain->iommu_snooping;
4094 if (cap == IOMMU_CAP_INTR_REMAP)
4095 return irq_remapping_enabled;
4100 static void swap_pci_ref(struct pci_dev **from, struct pci_dev *to)
4106 #define REQ_ACS_FLAGS (PCI_ACS_SV | PCI_ACS_RR | PCI_ACS_CR | PCI_ACS_UF)
4108 static int intel_iommu_add_device(struct device *dev)
4110 struct pci_dev *pdev = to_pci_dev(dev);
4111 struct pci_dev *bridge, *dma_pdev;
4112 struct iommu_group *group;
4115 if (!device_to_iommu(pci_domain_nr(pdev->bus),
4116 pdev->bus->number, pdev->devfn))
4119 bridge = pci_find_upstream_pcie_bridge(pdev);
4121 if (pci_is_pcie(bridge))
4122 dma_pdev = pci_get_domain_bus_and_slot(
4123 pci_domain_nr(pdev->bus),
4124 bridge->subordinate->number, 0);
4126 dma_pdev = pci_dev_get(bridge);
4128 dma_pdev = pci_dev_get(pdev);
4130 /* Account for quirked devices */
4131 swap_pci_ref(&dma_pdev, pci_get_dma_source(dma_pdev));
4134 * If it's a multifunction device that does not support our
4135 * required ACS flags, add to the same group as function 0.
4137 if (dma_pdev->multifunction &&
4138 !pci_acs_enabled(dma_pdev, REQ_ACS_FLAGS))
4139 swap_pci_ref(&dma_pdev,
4140 pci_get_slot(dma_pdev->bus,
4141 PCI_DEVFN(PCI_SLOT(dma_pdev->devfn),
4145 * Devices on the root bus go through the iommu. If that's not us,
4146 * find the next upstream device and test ACS up to the root bus.
4147 * Finding the next device may require skipping virtual buses.
4149 while (!pci_is_root_bus(dma_pdev->bus)) {
4150 struct pci_bus *bus = dma_pdev->bus;
4152 while (!bus->self) {
4153 if (!pci_is_root_bus(bus))
4159 if (pci_acs_path_enabled(bus->self, NULL, REQ_ACS_FLAGS))
4162 swap_pci_ref(&dma_pdev, pci_dev_get(bus->self));
4166 group = iommu_group_get(&dma_pdev->dev);
4167 pci_dev_put(dma_pdev);
4169 group = iommu_group_alloc();
4171 return PTR_ERR(group);
4174 ret = iommu_group_add_device(group, dev);
4176 iommu_group_put(group);
4180 static void intel_iommu_remove_device(struct device *dev)
4182 iommu_group_remove_device(dev);
4185 static struct iommu_ops intel_iommu_ops = {
4186 .domain_init = intel_iommu_domain_init,
4187 .domain_destroy = intel_iommu_domain_destroy,
4188 .attach_dev = intel_iommu_attach_device,
4189 .detach_dev = intel_iommu_detach_device,
4190 .map = intel_iommu_map,
4191 .unmap = intel_iommu_unmap,
4192 .iova_to_phys = intel_iommu_iova_to_phys,
4193 .domain_has_cap = intel_iommu_domain_has_cap,
4194 .add_device = intel_iommu_add_device,
4195 .remove_device = intel_iommu_remove_device,
4196 .pgsize_bitmap = INTEL_IOMMU_PGSIZES,
4199 static void __devinit quirk_iommu_rwbf(struct pci_dev *dev)
4202 * Mobile 4 Series Chipset neglects to set RWBF capability,
4205 printk(KERN_INFO "DMAR: Forcing write-buffer flush capability\n");
4208 /* https://bugzilla.redhat.com/show_bug.cgi?id=538163 */
4209 if (dev->revision == 0x07) {
4210 printk(KERN_INFO "DMAR: Disabling IOMMU for graphics on this chipset\n");
4215 DECLARE_PCI_FIXUP_HEADER(PCI_VENDOR_ID_INTEL, 0x2a40, quirk_iommu_rwbf);
4218 #define GGC_MEMORY_SIZE_MASK (0xf << 8)
4219 #define GGC_MEMORY_SIZE_NONE (0x0 << 8)
4220 #define GGC_MEMORY_SIZE_1M (0x1 << 8)
4221 #define GGC_MEMORY_SIZE_2M (0x3 << 8)
4222 #define GGC_MEMORY_VT_ENABLED (0x8 << 8)
4223 #define GGC_MEMORY_SIZE_2M_VT (0x9 << 8)
4224 #define GGC_MEMORY_SIZE_3M_VT (0xa << 8)
4225 #define GGC_MEMORY_SIZE_4M_VT (0xb << 8)
4227 static void __devinit quirk_calpella_no_shadow_gtt(struct pci_dev *dev)
4231 if (pci_read_config_word(dev, GGC, &ggc))
4234 if (!(ggc & GGC_MEMORY_VT_ENABLED)) {
4235 printk(KERN_INFO "DMAR: BIOS has allocated no shadow GTT; disabling IOMMU for graphics\n");
4237 } else if (dmar_map_gfx) {
4238 /* we have to ensure the gfx device is idle before we flush */
4239 printk(KERN_INFO "DMAR: Disabling batched IOTLB flush on Ironlake\n");
4240 intel_iommu_strict = 1;
4243 DECLARE_PCI_FIXUP_HEADER(PCI_VENDOR_ID_INTEL, 0x0040, quirk_calpella_no_shadow_gtt);
4244 DECLARE_PCI_FIXUP_HEADER(PCI_VENDOR_ID_INTEL, 0x0044, quirk_calpella_no_shadow_gtt);
4245 DECLARE_PCI_FIXUP_HEADER(PCI_VENDOR_ID_INTEL, 0x0062, quirk_calpella_no_shadow_gtt);
4246 DECLARE_PCI_FIXUP_HEADER(PCI_VENDOR_ID_INTEL, 0x006a, quirk_calpella_no_shadow_gtt);
4248 /* On Tylersburg chipsets, some BIOSes have been known to enable the
4249 ISOCH DMAR unit for the Azalia sound device, but not give it any
4250 TLB entries, which causes it to deadlock. Check for that. We do
4251 this in a function called from init_dmars(), instead of in a PCI
4252 quirk, because we don't want to print the obnoxious "BIOS broken"
4253 message if VT-d is actually disabled.
4255 static void __init check_tylersburg_isoch(void)
4257 struct pci_dev *pdev;
4258 uint32_t vtisochctrl;
4260 /* If there's no Azalia in the system anyway, forget it. */
4261 pdev = pci_get_device(PCI_VENDOR_ID_INTEL, 0x3a3e, NULL);
4266 /* System Management Registers. Might be hidden, in which case
4267 we can't do the sanity check. But that's OK, because the
4268 known-broken BIOSes _don't_ actually hide it, so far. */
4269 pdev = pci_get_device(PCI_VENDOR_ID_INTEL, 0x342e, NULL);
4273 if (pci_read_config_dword(pdev, 0x188, &vtisochctrl)) {
4280 /* If Azalia DMA is routed to the non-isoch DMAR unit, fine. */
4281 if (vtisochctrl & 1)
4284 /* Drop all bits other than the number of TLB entries */
4285 vtisochctrl &= 0x1c;
4287 /* If we have the recommended number of TLB entries (16), fine. */
4288 if (vtisochctrl == 0x10)
4291 /* Zero TLB entries? You get to ride the short bus to school. */
4293 WARN(1, "Your BIOS is broken; DMA routed to ISOCH DMAR unit but no TLB space.\n"
4294 "BIOS vendor: %s; Ver: %s; Product Version: %s\n",
4295 dmi_get_system_info(DMI_BIOS_VENDOR),
4296 dmi_get_system_info(DMI_BIOS_VERSION),
4297 dmi_get_system_info(DMI_PRODUCT_VERSION));
4298 iommu_identity_mapping |= IDENTMAP_AZALIA;
4302 printk(KERN_WARNING "DMAR: Recommended TLB entries for ISOCH unit is 16; your BIOS set %d\n",
git.samba.org / sfrench / cifs-2.6.git / blob