1433fc58eSAsias He /* 2433fc58eSAsias He * vhost transport for vsock 3433fc58eSAsias He * 4433fc58eSAsias He * Copyright (C) 2013-2015 Red Hat, Inc. 5433fc58eSAsias He * Author: Asias He <asias@redhat.com> 6433fc58eSAsias He * Stefan Hajnoczi <stefanha@redhat.com> 7433fc58eSAsias He * 8433fc58eSAsias He * This work is licensed under the terms of the GNU GPL, version 2. 9433fc58eSAsias He */ 10433fc58eSAsias He #include <linux/miscdevice.h> 11433fc58eSAsias He #include <linux/atomic.h> 12433fc58eSAsias He #include <linux/module.h> 13433fc58eSAsias He #include <linux/mutex.h> 14433fc58eSAsias He #include <linux/vmalloc.h> 15433fc58eSAsias He #include <net/sock.h> 16433fc58eSAsias He #include <linux/virtio_vsock.h> 17433fc58eSAsias He #include <linux/vhost.h> 18433fc58eSAsias He 19433fc58eSAsias He #include <net/af_vsock.h> 20433fc58eSAsias He #include "vhost.h" 21433fc58eSAsias He 22433fc58eSAsias He #define VHOST_VSOCK_DEFAULT_HOST_CID 2 23433fc58eSAsias He 24433fc58eSAsias He enum { 25433fc58eSAsias He VHOST_VSOCK_FEATURES = VHOST_FEATURES, 26433fc58eSAsias He }; 27433fc58eSAsias He 28433fc58eSAsias He /* Used to track all the vhost_vsock instances on the system. */ 29433fc58eSAsias He static DEFINE_SPINLOCK(vhost_vsock_lock); 30433fc58eSAsias He static LIST_HEAD(vhost_vsock_list); 31433fc58eSAsias He 32433fc58eSAsias He struct vhost_vsock { 33433fc58eSAsias He struct vhost_dev dev; 34433fc58eSAsias He struct vhost_virtqueue vqs[2]; 35433fc58eSAsias He 36433fc58eSAsias He /* Link to global vhost_vsock_list, protected by vhost_vsock_lock */ 37433fc58eSAsias He struct list_head list; 38433fc58eSAsias He 39433fc58eSAsias He struct vhost_work send_pkt_work; 40433fc58eSAsias He spinlock_t send_pkt_list_lock; 41433fc58eSAsias He struct list_head send_pkt_list; /* host->guest pending packets */ 42433fc58eSAsias He 43433fc58eSAsias He atomic_t queued_replies; 44433fc58eSAsias He 45433fc58eSAsias He u32 guest_cid; 46433fc58eSAsias He }; 47433fc58eSAsias He 48433fc58eSAsias He static u32 vhost_transport_get_local_cid(void) 49433fc58eSAsias He { 50433fc58eSAsias He return VHOST_VSOCK_DEFAULT_HOST_CID; 51433fc58eSAsias He } 52433fc58eSAsias He 536c083c2bSGao feng static struct vhost_vsock *__vhost_vsock_get(u32 guest_cid) 54433fc58eSAsias He { 55433fc58eSAsias He struct vhost_vsock *vsock; 56433fc58eSAsias He 57433fc58eSAsias He list_for_each_entry(vsock, &vhost_vsock_list, list) { 58433fc58eSAsias He u32 other_cid = vsock->guest_cid; 59433fc58eSAsias He 60433fc58eSAsias He /* Skip instances that have no CID yet */ 61433fc58eSAsias He if (other_cid == 0) 62433fc58eSAsias He continue; 63433fc58eSAsias He 64433fc58eSAsias He if (other_cid == guest_cid) { 65433fc58eSAsias He return vsock; 66433fc58eSAsias He } 67433fc58eSAsias He } 68433fc58eSAsias He 69433fc58eSAsias He return NULL; 70433fc58eSAsias He } 71433fc58eSAsias He 726c083c2bSGao feng static struct vhost_vsock *vhost_vsock_get(u32 guest_cid) 736c083c2bSGao feng { 746c083c2bSGao feng struct vhost_vsock *vsock; 756c083c2bSGao feng 766c083c2bSGao feng spin_lock_bh(&vhost_vsock_lock); 776c083c2bSGao feng vsock = __vhost_vsock_get(guest_cid); 786c083c2bSGao feng spin_unlock_bh(&vhost_vsock_lock); 796c083c2bSGao feng 806c083c2bSGao feng return vsock; 816c083c2bSGao feng } 826c083c2bSGao feng 83433fc58eSAsias He static void 84433fc58eSAsias He vhost_transport_do_send_pkt(struct vhost_vsock *vsock, 85433fc58eSAsias He struct vhost_virtqueue *vq) 86433fc58eSAsias He { 87433fc58eSAsias He struct vhost_virtqueue *tx_vq = &vsock->vqs[VSOCK_VQ_TX]; 88433fc58eSAsias He bool added = false; 89433fc58eSAsias He bool restart_tx = false; 90433fc58eSAsias He 91433fc58eSAsias He mutex_lock(&vq->mutex); 92433fc58eSAsias He 93433fc58eSAsias He if (!vq->private_data) 94433fc58eSAsias He goto out; 95433fc58eSAsias He 96433fc58eSAsias He /* Avoid further vmexits, we're already processing the virtqueue */ 97433fc58eSAsias He vhost_disable_notify(&vsock->dev, vq); 98433fc58eSAsias He 99433fc58eSAsias He for (;;) { 100433fc58eSAsias He struct virtio_vsock_pkt *pkt; 101433fc58eSAsias He struct iov_iter iov_iter; 102433fc58eSAsias He unsigned out, in; 103433fc58eSAsias He size_t nbytes; 104433fc58eSAsias He size_t len; 105433fc58eSAsias He int head; 106433fc58eSAsias He 107433fc58eSAsias He spin_lock_bh(&vsock->send_pkt_list_lock); 108433fc58eSAsias He if (list_empty(&vsock->send_pkt_list)) { 109433fc58eSAsias He spin_unlock_bh(&vsock->send_pkt_list_lock); 110433fc58eSAsias He vhost_enable_notify(&vsock->dev, vq); 111433fc58eSAsias He break; 112433fc58eSAsias He } 113433fc58eSAsias He 114433fc58eSAsias He pkt = list_first_entry(&vsock->send_pkt_list, 115433fc58eSAsias He struct virtio_vsock_pkt, list); 116433fc58eSAsias He list_del_init(&pkt->list); 117433fc58eSAsias He spin_unlock_bh(&vsock->send_pkt_list_lock); 118433fc58eSAsias He 119433fc58eSAsias He head = vhost_get_vq_desc(vq, vq->iov, ARRAY_SIZE(vq->iov), 120433fc58eSAsias He &out, &in, NULL, NULL); 121433fc58eSAsias He if (head < 0) { 122433fc58eSAsias He spin_lock_bh(&vsock->send_pkt_list_lock); 123433fc58eSAsias He list_add(&pkt->list, &vsock->send_pkt_list); 124433fc58eSAsias He spin_unlock_bh(&vsock->send_pkt_list_lock); 125433fc58eSAsias He break; 126433fc58eSAsias He } 127433fc58eSAsias He 128433fc58eSAsias He if (head == vq->num) { 129433fc58eSAsias He spin_lock_bh(&vsock->send_pkt_list_lock); 130433fc58eSAsias He list_add(&pkt->list, &vsock->send_pkt_list); 131433fc58eSAsias He spin_unlock_bh(&vsock->send_pkt_list_lock); 132433fc58eSAsias He 133433fc58eSAsias He /* We cannot finish yet if more buffers snuck in while 134433fc58eSAsias He * re-enabling notify. 135433fc58eSAsias He */ 136433fc58eSAsias He if (unlikely(vhost_enable_notify(&vsock->dev, vq))) { 137433fc58eSAsias He vhost_disable_notify(&vsock->dev, vq); 138433fc58eSAsias He continue; 139433fc58eSAsias He } 140433fc58eSAsias He break; 141433fc58eSAsias He } 142433fc58eSAsias He 143433fc58eSAsias He if (out) { 144433fc58eSAsias He virtio_transport_free_pkt(pkt); 145433fc58eSAsias He vq_err(vq, "Expected 0 output buffers, got %u\n", out); 146433fc58eSAsias He break; 147433fc58eSAsias He } 148433fc58eSAsias He 149433fc58eSAsias He len = iov_length(&vq->iov[out], in); 150433fc58eSAsias He iov_iter_init(&iov_iter, READ, &vq->iov[out], in, len); 151433fc58eSAsias He 152433fc58eSAsias He nbytes = copy_to_iter(&pkt->hdr, sizeof(pkt->hdr), &iov_iter); 153433fc58eSAsias He if (nbytes != sizeof(pkt->hdr)) { 154433fc58eSAsias He virtio_transport_free_pkt(pkt); 155433fc58eSAsias He vq_err(vq, "Faulted on copying pkt hdr\n"); 156433fc58eSAsias He break; 157433fc58eSAsias He } 158433fc58eSAsias He 159433fc58eSAsias He nbytes = copy_to_iter(pkt->buf, pkt->len, &iov_iter); 160433fc58eSAsias He if (nbytes != pkt->len) { 161433fc58eSAsias He virtio_transport_free_pkt(pkt); 162433fc58eSAsias He vq_err(vq, "Faulted on copying pkt buf\n"); 163433fc58eSAsias He break; 164433fc58eSAsias He } 165433fc58eSAsias He 166433fc58eSAsias He vhost_add_used(vq, head, sizeof(pkt->hdr) + pkt->len); 167433fc58eSAsias He added = true; 168433fc58eSAsias He 169433fc58eSAsias He if (pkt->reply) { 170433fc58eSAsias He int val; 171433fc58eSAsias He 172433fc58eSAsias He val = atomic_dec_return(&vsock->queued_replies); 173433fc58eSAsias He 174433fc58eSAsias He /* Do we have resources to resume tx processing? */ 175433fc58eSAsias He if (val + 1 == tx_vq->num) 176433fc58eSAsias He restart_tx = true; 177433fc58eSAsias He } 178433fc58eSAsias He 17982dfb540SGerard Garcia /* Deliver to monitoring devices all correctly transmitted 18082dfb540SGerard Garcia * packets. 18182dfb540SGerard Garcia */ 18282dfb540SGerard Garcia virtio_transport_deliver_tap_pkt(pkt); 18382dfb540SGerard Garcia 184433fc58eSAsias He virtio_transport_free_pkt(pkt); 185433fc58eSAsias He } 186433fc58eSAsias He if (added) 187433fc58eSAsias He vhost_signal(&vsock->dev, vq); 188433fc58eSAsias He 189433fc58eSAsias He out: 190433fc58eSAsias He mutex_unlock(&vq->mutex); 191433fc58eSAsias He 192433fc58eSAsias He if (restart_tx) 193433fc58eSAsias He vhost_poll_queue(&tx_vq->poll); 194433fc58eSAsias He } 195433fc58eSAsias He 196433fc58eSAsias He static void vhost_transport_send_pkt_work(struct vhost_work *work) 197433fc58eSAsias He { 198433fc58eSAsias He struct vhost_virtqueue *vq; 199433fc58eSAsias He struct vhost_vsock *vsock; 200433fc58eSAsias He 201433fc58eSAsias He vsock = container_of(work, struct vhost_vsock, send_pkt_work); 202433fc58eSAsias He vq = &vsock->vqs[VSOCK_VQ_RX]; 203433fc58eSAsias He 204433fc58eSAsias He vhost_transport_do_send_pkt(vsock, vq); 205433fc58eSAsias He } 206433fc58eSAsias He 207433fc58eSAsias He static int 208433fc58eSAsias He vhost_transport_send_pkt(struct virtio_vsock_pkt *pkt) 209433fc58eSAsias He { 210433fc58eSAsias He struct vhost_vsock *vsock; 211433fc58eSAsias He int len = pkt->len; 212433fc58eSAsias He 213433fc58eSAsias He /* Find the vhost_vsock according to guest context id */ 214433fc58eSAsias He vsock = vhost_vsock_get(le64_to_cpu(pkt->hdr.dst_cid)); 215433fc58eSAsias He if (!vsock) { 216433fc58eSAsias He virtio_transport_free_pkt(pkt); 217433fc58eSAsias He return -ENODEV; 218433fc58eSAsias He } 219433fc58eSAsias He 220433fc58eSAsias He if (pkt->reply) 221433fc58eSAsias He atomic_inc(&vsock->queued_replies); 222433fc58eSAsias He 223433fc58eSAsias He spin_lock_bh(&vsock->send_pkt_list_lock); 224433fc58eSAsias He list_add_tail(&pkt->list, &vsock->send_pkt_list); 225433fc58eSAsias He spin_unlock_bh(&vsock->send_pkt_list_lock); 226433fc58eSAsias He 227433fc58eSAsias He vhost_work_queue(&vsock->dev, &vsock->send_pkt_work); 228433fc58eSAsias He return len; 229433fc58eSAsias He } 230433fc58eSAsias He 23116320f36SPeng Tao static int 23216320f36SPeng Tao vhost_transport_cancel_pkt(struct vsock_sock *vsk) 23316320f36SPeng Tao { 23416320f36SPeng Tao struct vhost_vsock *vsock; 23516320f36SPeng Tao struct virtio_vsock_pkt *pkt, *n; 23616320f36SPeng Tao int cnt = 0; 23716320f36SPeng Tao LIST_HEAD(freeme); 23816320f36SPeng Tao 23916320f36SPeng Tao /* Find the vhost_vsock according to guest context id */ 24016320f36SPeng Tao vsock = vhost_vsock_get(vsk->remote_addr.svm_cid); 24116320f36SPeng Tao if (!vsock) 24216320f36SPeng Tao return -ENODEV; 24316320f36SPeng Tao 24416320f36SPeng Tao spin_lock_bh(&vsock->send_pkt_list_lock); 24516320f36SPeng Tao list_for_each_entry_safe(pkt, n, &vsock->send_pkt_list, list) { 24616320f36SPeng Tao if (pkt->vsk != vsk) 24716320f36SPeng Tao continue; 24816320f36SPeng Tao list_move(&pkt->list, &freeme); 24916320f36SPeng Tao } 25016320f36SPeng Tao spin_unlock_bh(&vsock->send_pkt_list_lock); 25116320f36SPeng Tao 25216320f36SPeng Tao list_for_each_entry_safe(pkt, n, &freeme, list) { 25316320f36SPeng Tao if (pkt->reply) 25416320f36SPeng Tao cnt++; 25516320f36SPeng Tao list_del(&pkt->list); 25616320f36SPeng Tao virtio_transport_free_pkt(pkt); 25716320f36SPeng Tao } 25816320f36SPeng Tao 25916320f36SPeng Tao if (cnt) { 26016320f36SPeng Tao struct vhost_virtqueue *tx_vq = &vsock->vqs[VSOCK_VQ_TX]; 26116320f36SPeng Tao int new_cnt; 26216320f36SPeng Tao 26316320f36SPeng Tao new_cnt = atomic_sub_return(cnt, &vsock->queued_replies); 26416320f36SPeng Tao if (new_cnt + cnt >= tx_vq->num && new_cnt < tx_vq->num) 26516320f36SPeng Tao vhost_poll_queue(&tx_vq->poll); 26616320f36SPeng Tao } 26716320f36SPeng Tao 26816320f36SPeng Tao return 0; 26916320f36SPeng Tao } 27016320f36SPeng Tao 271433fc58eSAsias He static struct virtio_vsock_pkt * 272433fc58eSAsias He vhost_vsock_alloc_pkt(struct vhost_virtqueue *vq, 273433fc58eSAsias He unsigned int out, unsigned int in) 274433fc58eSAsias He { 275433fc58eSAsias He struct virtio_vsock_pkt *pkt; 276433fc58eSAsias He struct iov_iter iov_iter; 277433fc58eSAsias He size_t nbytes; 278433fc58eSAsias He size_t len; 279433fc58eSAsias He 280433fc58eSAsias He if (in != 0) { 281433fc58eSAsias He vq_err(vq, "Expected 0 input buffers, got %u\n", in); 282433fc58eSAsias He return NULL; 283433fc58eSAsias He } 284433fc58eSAsias He 285433fc58eSAsias He pkt = kzalloc(sizeof(*pkt), GFP_KERNEL); 286433fc58eSAsias He if (!pkt) 287433fc58eSAsias He return NULL; 288433fc58eSAsias He 289433fc58eSAsias He len = iov_length(vq->iov, out); 290433fc58eSAsias He iov_iter_init(&iov_iter, WRITE, vq->iov, out, len); 291433fc58eSAsias He 292433fc58eSAsias He nbytes = copy_from_iter(&pkt->hdr, sizeof(pkt->hdr), &iov_iter); 293433fc58eSAsias He if (nbytes != sizeof(pkt->hdr)) { 294433fc58eSAsias He vq_err(vq, "Expected %zu bytes for pkt->hdr, got %zu bytes\n", 295433fc58eSAsias He sizeof(pkt->hdr), nbytes); 296433fc58eSAsias He kfree(pkt); 297433fc58eSAsias He return NULL; 298433fc58eSAsias He } 299433fc58eSAsias He 300433fc58eSAsias He if (le16_to_cpu(pkt->hdr.type) == VIRTIO_VSOCK_TYPE_STREAM) 301433fc58eSAsias He pkt->len = le32_to_cpu(pkt->hdr.len); 302433fc58eSAsias He 303433fc58eSAsias He /* No payload */ 304433fc58eSAsias He if (!pkt->len) 305433fc58eSAsias He return pkt; 306433fc58eSAsias He 307433fc58eSAsias He /* The pkt is too big */ 308433fc58eSAsias He if (pkt->len > VIRTIO_VSOCK_MAX_PKT_BUF_SIZE) { 309433fc58eSAsias He kfree(pkt); 310433fc58eSAsias He return NULL; 311433fc58eSAsias He } 312433fc58eSAsias He 313433fc58eSAsias He pkt->buf = kmalloc(pkt->len, GFP_KERNEL); 314433fc58eSAsias He if (!pkt->buf) { 315433fc58eSAsias He kfree(pkt); 316433fc58eSAsias He return NULL; 317433fc58eSAsias He } 318433fc58eSAsias He 319433fc58eSAsias He nbytes = copy_from_iter(pkt->buf, pkt->len, &iov_iter); 320433fc58eSAsias He if (nbytes != pkt->len) { 321433fc58eSAsias He vq_err(vq, "Expected %u byte payload, got %zu bytes\n", 322433fc58eSAsias He pkt->len, nbytes); 323433fc58eSAsias He virtio_transport_free_pkt(pkt); 324433fc58eSAsias He return NULL; 325433fc58eSAsias He } 326433fc58eSAsias He 327433fc58eSAsias He return pkt; 328433fc58eSAsias He } 329433fc58eSAsias He 330433fc58eSAsias He /* Is there space left for replies to rx packets? */ 331433fc58eSAsias He static bool vhost_vsock_more_replies(struct vhost_vsock *vsock) 332433fc58eSAsias He { 333433fc58eSAsias He struct vhost_virtqueue *vq = &vsock->vqs[VSOCK_VQ_TX]; 334433fc58eSAsias He int val; 335433fc58eSAsias He 336433fc58eSAsias He smp_rmb(); /* paired with atomic_inc() and atomic_dec_return() */ 337433fc58eSAsias He val = atomic_read(&vsock->queued_replies); 338433fc58eSAsias He 339433fc58eSAsias He return val < vq->num; 340433fc58eSAsias He } 341433fc58eSAsias He 342433fc58eSAsias He static void vhost_vsock_handle_tx_kick(struct vhost_work *work) 343433fc58eSAsias He { 344433fc58eSAsias He struct vhost_virtqueue *vq = container_of(work, struct vhost_virtqueue, 345433fc58eSAsias He poll.work); 346433fc58eSAsias He struct vhost_vsock *vsock = container_of(vq->dev, struct vhost_vsock, 347433fc58eSAsias He dev); 348433fc58eSAsias He struct virtio_vsock_pkt *pkt; 349433fc58eSAsias He int head; 350433fc58eSAsias He unsigned int out, in; 351433fc58eSAsias He bool added = false; 352433fc58eSAsias He 353433fc58eSAsias He mutex_lock(&vq->mutex); 354433fc58eSAsias He 355433fc58eSAsias He if (!vq->private_data) 356433fc58eSAsias He goto out; 357433fc58eSAsias He 358433fc58eSAsias He vhost_disable_notify(&vsock->dev, vq); 359433fc58eSAsias He for (;;) { 3603fda5d6eSStefan Hajnoczi u32 len; 3613fda5d6eSStefan Hajnoczi 362433fc58eSAsias He if (!vhost_vsock_more_replies(vsock)) { 363433fc58eSAsias He /* Stop tx until the device processes already 364433fc58eSAsias He * pending replies. Leave tx virtqueue 365433fc58eSAsias He * callbacks disabled. 366433fc58eSAsias He */ 367433fc58eSAsias He goto no_more_replies; 368433fc58eSAsias He } 369433fc58eSAsias He 370433fc58eSAsias He head = vhost_get_vq_desc(vq, vq->iov, ARRAY_SIZE(vq->iov), 371433fc58eSAsias He &out, &in, NULL, NULL); 372433fc58eSAsias He if (head < 0) 373433fc58eSAsias He break; 374433fc58eSAsias He 375433fc58eSAsias He if (head == vq->num) { 376433fc58eSAsias He if (unlikely(vhost_enable_notify(&vsock->dev, vq))) { 377433fc58eSAsias He vhost_disable_notify(&vsock->dev, vq); 378433fc58eSAsias He continue; 379433fc58eSAsias He } 380433fc58eSAsias He break; 381433fc58eSAsias He } 382433fc58eSAsias He 383433fc58eSAsias He pkt = vhost_vsock_alloc_pkt(vq, out, in); 384433fc58eSAsias He if (!pkt) { 385433fc58eSAsias He vq_err(vq, "Faulted on pkt\n"); 386433fc58eSAsias He continue; 387433fc58eSAsias He } 388433fc58eSAsias He 3893fda5d6eSStefan Hajnoczi len = pkt->len; 3903fda5d6eSStefan Hajnoczi 39182dfb540SGerard Garcia /* Deliver to monitoring devices all received packets */ 39282dfb540SGerard Garcia virtio_transport_deliver_tap_pkt(pkt); 39382dfb540SGerard Garcia 394433fc58eSAsias He /* Only accept correctly addressed packets */ 395433fc58eSAsias He if (le64_to_cpu(pkt->hdr.src_cid) == vsock->guest_cid) 396433fc58eSAsias He virtio_transport_recv_pkt(pkt); 397433fc58eSAsias He else 398433fc58eSAsias He virtio_transport_free_pkt(pkt); 399433fc58eSAsias He 4003fda5d6eSStefan Hajnoczi vhost_add_used(vq, head, sizeof(pkt->hdr) + len); 401433fc58eSAsias He added = true; 402433fc58eSAsias He } 403433fc58eSAsias He 404433fc58eSAsias He no_more_replies: 405433fc58eSAsias He if (added) 406433fc58eSAsias He vhost_signal(&vsock->dev, vq); 407433fc58eSAsias He 408433fc58eSAsias He out: 409433fc58eSAsias He mutex_unlock(&vq->mutex); 410433fc58eSAsias He } 411433fc58eSAsias He 412433fc58eSAsias He static void vhost_vsock_handle_rx_kick(struct vhost_work *work) 413433fc58eSAsias He { 414433fc58eSAsias He struct vhost_virtqueue *vq = container_of(work, struct vhost_virtqueue, 415433fc58eSAsias He poll.work); 416433fc58eSAsias He struct vhost_vsock *vsock = container_of(vq->dev, struct vhost_vsock, 417433fc58eSAsias He dev); 418433fc58eSAsias He 419433fc58eSAsias He vhost_transport_do_send_pkt(vsock, vq); 420433fc58eSAsias He } 421433fc58eSAsias He 422433fc58eSAsias He static int vhost_vsock_start(struct vhost_vsock *vsock) 423433fc58eSAsias He { 4240516ffd8SStefan Hajnoczi struct vhost_virtqueue *vq; 425433fc58eSAsias He size_t i; 426433fc58eSAsias He int ret; 427433fc58eSAsias He 428433fc58eSAsias He mutex_lock(&vsock->dev.mutex); 429433fc58eSAsias He 430433fc58eSAsias He ret = vhost_dev_check_owner(&vsock->dev); 431433fc58eSAsias He if (ret) 432433fc58eSAsias He goto err; 433433fc58eSAsias He 434433fc58eSAsias He for (i = 0; i < ARRAY_SIZE(vsock->vqs); i++) { 4350516ffd8SStefan Hajnoczi vq = &vsock->vqs[i]; 436433fc58eSAsias He 437433fc58eSAsias He mutex_lock(&vq->mutex); 438433fc58eSAsias He 439433fc58eSAsias He if (!vhost_vq_access_ok(vq)) { 440433fc58eSAsias He ret = -EFAULT; 441433fc58eSAsias He goto err_vq; 442433fc58eSAsias He } 443433fc58eSAsias He 444433fc58eSAsias He if (!vq->private_data) { 445433fc58eSAsias He vq->private_data = vsock; 4460516ffd8SStefan Hajnoczi ret = vhost_vq_init_access(vq); 4470516ffd8SStefan Hajnoczi if (ret) 4480516ffd8SStefan Hajnoczi goto err_vq; 449433fc58eSAsias He } 450433fc58eSAsias He 451433fc58eSAsias He mutex_unlock(&vq->mutex); 452433fc58eSAsias He } 453433fc58eSAsias He 454433fc58eSAsias He mutex_unlock(&vsock->dev.mutex); 455433fc58eSAsias He return 0; 456433fc58eSAsias He 457433fc58eSAsias He err_vq: 4580516ffd8SStefan Hajnoczi vq->private_data = NULL; 4590516ffd8SStefan Hajnoczi mutex_unlock(&vq->mutex); 4600516ffd8SStefan Hajnoczi 461433fc58eSAsias He for (i = 0; i < ARRAY_SIZE(vsock->vqs); i++) { 4620516ffd8SStefan Hajnoczi vq = &vsock->vqs[i]; 463433fc58eSAsias He 464433fc58eSAsias He mutex_lock(&vq->mutex); 465433fc58eSAsias He vq->private_data = NULL; 466433fc58eSAsias He mutex_unlock(&vq->mutex); 467433fc58eSAsias He } 468433fc58eSAsias He err: 469433fc58eSAsias He mutex_unlock(&vsock->dev.mutex); 470433fc58eSAsias He return ret; 471433fc58eSAsias He } 472433fc58eSAsias He 473433fc58eSAsias He static int vhost_vsock_stop(struct vhost_vsock *vsock) 474433fc58eSAsias He { 475433fc58eSAsias He size_t i; 476433fc58eSAsias He int ret; 477433fc58eSAsias He 478433fc58eSAsias He mutex_lock(&vsock->dev.mutex); 479433fc58eSAsias He 480433fc58eSAsias He ret = vhost_dev_check_owner(&vsock->dev); 481433fc58eSAsias He if (ret) 482433fc58eSAsias He goto err; 483433fc58eSAsias He 484433fc58eSAsias He for (i = 0; i < ARRAY_SIZE(vsock->vqs); i++) { 485433fc58eSAsias He struct vhost_virtqueue *vq = &vsock->vqs[i]; 486433fc58eSAsias He 487433fc58eSAsias He mutex_lock(&vq->mutex); 488433fc58eSAsias He vq->private_data = NULL; 489433fc58eSAsias He mutex_unlock(&vq->mutex); 490433fc58eSAsias He } 491433fc58eSAsias He 492433fc58eSAsias He err: 493433fc58eSAsias He mutex_unlock(&vsock->dev.mutex); 494433fc58eSAsias He return ret; 495433fc58eSAsias He } 496433fc58eSAsias He 497433fc58eSAsias He static void vhost_vsock_free(struct vhost_vsock *vsock) 498433fc58eSAsias He { 499b226acabSWei Yongjun kvfree(vsock); 500433fc58eSAsias He } 501433fc58eSAsias He 502433fc58eSAsias He static int vhost_vsock_dev_open(struct inode *inode, struct file *file) 503433fc58eSAsias He { 504433fc58eSAsias He struct vhost_virtqueue **vqs; 505433fc58eSAsias He struct vhost_vsock *vsock; 506433fc58eSAsias He int ret; 507433fc58eSAsias He 508433fc58eSAsias He /* This struct is large and allocation could fail, fall back to vmalloc 509433fc58eSAsias He * if there is no other way. 510433fc58eSAsias He */ 511dcda9b04SMichal Hocko vsock = kvmalloc(sizeof(*vsock), GFP_KERNEL | __GFP_RETRY_MAYFAIL); 512433fc58eSAsias He if (!vsock) 513433fc58eSAsias He return -ENOMEM; 514433fc58eSAsias He 515433fc58eSAsias He vqs = kmalloc_array(ARRAY_SIZE(vsock->vqs), sizeof(*vqs), GFP_KERNEL); 516433fc58eSAsias He if (!vqs) { 517433fc58eSAsias He ret = -ENOMEM; 518433fc58eSAsias He goto out; 519433fc58eSAsias He } 520433fc58eSAsias He 521a72b69dcSStefan Hajnoczi vsock->guest_cid = 0; /* no CID assigned yet */ 522a72b69dcSStefan Hajnoczi 523433fc58eSAsias He atomic_set(&vsock->queued_replies, 0); 524433fc58eSAsias He 525433fc58eSAsias He vqs[VSOCK_VQ_TX] = &vsock->vqs[VSOCK_VQ_TX]; 526433fc58eSAsias He vqs[VSOCK_VQ_RX] = &vsock->vqs[VSOCK_VQ_RX]; 527433fc58eSAsias He vsock->vqs[VSOCK_VQ_TX].handle_kick = vhost_vsock_handle_tx_kick; 528433fc58eSAsias He vsock->vqs[VSOCK_VQ_RX].handle_kick = vhost_vsock_handle_rx_kick; 529433fc58eSAsias He 530433fc58eSAsias He vhost_dev_init(&vsock->dev, vqs, ARRAY_SIZE(vsock->vqs)); 531433fc58eSAsias He 532433fc58eSAsias He file->private_data = vsock; 533433fc58eSAsias He spin_lock_init(&vsock->send_pkt_list_lock); 534433fc58eSAsias He INIT_LIST_HEAD(&vsock->send_pkt_list); 535433fc58eSAsias He vhost_work_init(&vsock->send_pkt_work, vhost_transport_send_pkt_work); 536433fc58eSAsias He 537433fc58eSAsias He spin_lock_bh(&vhost_vsock_lock); 538433fc58eSAsias He list_add_tail(&vsock->list, &vhost_vsock_list); 539433fc58eSAsias He spin_unlock_bh(&vhost_vsock_lock); 540433fc58eSAsias He return 0; 541433fc58eSAsias He 542433fc58eSAsias He out: 543433fc58eSAsias He vhost_vsock_free(vsock); 544433fc58eSAsias He return ret; 545433fc58eSAsias He } 546433fc58eSAsias He 547433fc58eSAsias He static void vhost_vsock_flush(struct vhost_vsock *vsock) 548433fc58eSAsias He { 549433fc58eSAsias He int i; 550433fc58eSAsias He 551433fc58eSAsias He for (i = 0; i < ARRAY_SIZE(vsock->vqs); i++) 552433fc58eSAsias He if (vsock->vqs[i].handle_kick) 553433fc58eSAsias He vhost_poll_flush(&vsock->vqs[i].poll); 554433fc58eSAsias He vhost_work_flush(&vsock->dev, &vsock->send_pkt_work); 555433fc58eSAsias He } 556433fc58eSAsias He 557433fc58eSAsias He static void vhost_vsock_reset_orphans(struct sock *sk) 558433fc58eSAsias He { 559433fc58eSAsias He struct vsock_sock *vsk = vsock_sk(sk); 560433fc58eSAsias He 561433fc58eSAsias He /* vmci_transport.c doesn't take sk_lock here either. At least we're 562433fc58eSAsias He * under vsock_table_lock so the sock cannot disappear while we're 563433fc58eSAsias He * executing. 564433fc58eSAsias He */ 565433fc58eSAsias He 566c4587631SPeng Tao if (!vhost_vsock_get(vsk->remote_addr.svm_cid)) { 567433fc58eSAsias He sock_set_flag(sk, SOCK_DONE); 568433fc58eSAsias He vsk->peer_shutdown = SHUTDOWN_MASK; 569433fc58eSAsias He sk->sk_state = SS_UNCONNECTED; 570433fc58eSAsias He sk->sk_err = ECONNRESET; 571433fc58eSAsias He sk->sk_error_report(sk); 572433fc58eSAsias He } 573433fc58eSAsias He } 574433fc58eSAsias He 575433fc58eSAsias He static int vhost_vsock_dev_release(struct inode *inode, struct file *file) 576433fc58eSAsias He { 577433fc58eSAsias He struct vhost_vsock *vsock = file->private_data; 578433fc58eSAsias He 579433fc58eSAsias He spin_lock_bh(&vhost_vsock_lock); 580433fc58eSAsias He list_del(&vsock->list); 581433fc58eSAsias He spin_unlock_bh(&vhost_vsock_lock); 582433fc58eSAsias He 583433fc58eSAsias He /* Iterating over all connections for all CIDs to find orphans is 584433fc58eSAsias He * inefficient. Room for improvement here. */ 585433fc58eSAsias He vsock_for_each_connected_socket(vhost_vsock_reset_orphans); 586433fc58eSAsias He 587433fc58eSAsias He vhost_vsock_stop(vsock); 588433fc58eSAsias He vhost_vsock_flush(vsock); 589433fc58eSAsias He vhost_dev_stop(&vsock->dev); 590433fc58eSAsias He 591433fc58eSAsias He spin_lock_bh(&vsock->send_pkt_list_lock); 592433fc58eSAsias He while (!list_empty(&vsock->send_pkt_list)) { 593433fc58eSAsias He struct virtio_vsock_pkt *pkt; 594433fc58eSAsias He 595433fc58eSAsias He pkt = list_first_entry(&vsock->send_pkt_list, 596433fc58eSAsias He struct virtio_vsock_pkt, list); 597433fc58eSAsias He list_del_init(&pkt->list); 598433fc58eSAsias He virtio_transport_free_pkt(pkt); 599433fc58eSAsias He } 600433fc58eSAsias He spin_unlock_bh(&vsock->send_pkt_list_lock); 601433fc58eSAsias He 602f6f93f75S夷则(Caspar) vhost_dev_cleanup(&vsock->dev); 603433fc58eSAsias He kfree(vsock->dev.vqs); 604433fc58eSAsias He vhost_vsock_free(vsock); 605433fc58eSAsias He return 0; 606433fc58eSAsias He } 607433fc58eSAsias He 608433fc58eSAsias He static int vhost_vsock_set_cid(struct vhost_vsock *vsock, u64 guest_cid) 609433fc58eSAsias He { 610433fc58eSAsias He struct vhost_vsock *other; 611433fc58eSAsias He 612433fc58eSAsias He /* Refuse reserved CIDs */ 613433fc58eSAsias He if (guest_cid <= VMADDR_CID_HOST || 614433fc58eSAsias He guest_cid == U32_MAX) 615433fc58eSAsias He return -EINVAL; 616433fc58eSAsias He 617433fc58eSAsias He /* 64-bit CIDs are not yet supported */ 618433fc58eSAsias He if (guest_cid > U32_MAX) 619433fc58eSAsias He return -EINVAL; 620433fc58eSAsias He 621433fc58eSAsias He /* Refuse if CID is already in use */ 622433fc58eSAsias He spin_lock_bh(&vhost_vsock_lock); 6236c083c2bSGao feng other = __vhost_vsock_get(guest_cid); 6246c083c2bSGao feng if (other && other != vsock) { 6256c083c2bSGao feng spin_unlock_bh(&vhost_vsock_lock); 6266c083c2bSGao feng return -EADDRINUSE; 6276c083c2bSGao feng } 628433fc58eSAsias He vsock->guest_cid = guest_cid; 629433fc58eSAsias He spin_unlock_bh(&vhost_vsock_lock); 630433fc58eSAsias He 631433fc58eSAsias He return 0; 632433fc58eSAsias He } 633433fc58eSAsias He 634433fc58eSAsias He static int vhost_vsock_set_features(struct vhost_vsock *vsock, u64 features) 635433fc58eSAsias He { 636433fc58eSAsias He struct vhost_virtqueue *vq; 637433fc58eSAsias He int i; 638433fc58eSAsias He 639433fc58eSAsias He if (features & ~VHOST_VSOCK_FEATURES) 640433fc58eSAsias He return -EOPNOTSUPP; 641433fc58eSAsias He 642433fc58eSAsias He mutex_lock(&vsock->dev.mutex); 643433fc58eSAsias He if ((features & (1 << VHOST_F_LOG_ALL)) && 644433fc58eSAsias He !vhost_log_access_ok(&vsock->dev)) { 645433fc58eSAsias He mutex_unlock(&vsock->dev.mutex); 646433fc58eSAsias He return -EFAULT; 647433fc58eSAsias He } 648433fc58eSAsias He 649433fc58eSAsias He for (i = 0; i < ARRAY_SIZE(vsock->vqs); i++) { 650433fc58eSAsias He vq = &vsock->vqs[i]; 651433fc58eSAsias He mutex_lock(&vq->mutex); 652433fc58eSAsias He vq->acked_features = features; 653433fc58eSAsias He mutex_unlock(&vq->mutex); 654433fc58eSAsias He } 655433fc58eSAsias He mutex_unlock(&vsock->dev.mutex); 656433fc58eSAsias He return 0; 657433fc58eSAsias He } 658433fc58eSAsias He 659433fc58eSAsias He static long vhost_vsock_dev_ioctl(struct file *f, unsigned int ioctl, 660433fc58eSAsias He unsigned long arg) 661433fc58eSAsias He { 662433fc58eSAsias He struct vhost_vsock *vsock = f->private_data; 663433fc58eSAsias He void __user *argp = (void __user *)arg; 664433fc58eSAsias He u64 guest_cid; 665433fc58eSAsias He u64 features; 666433fc58eSAsias He int start; 667433fc58eSAsias He int r; 668433fc58eSAsias He 669433fc58eSAsias He switch (ioctl) { 670433fc58eSAsias He case VHOST_VSOCK_SET_GUEST_CID: 671433fc58eSAsias He if (copy_from_user(&guest_cid, argp, sizeof(guest_cid))) 672433fc58eSAsias He return -EFAULT; 673433fc58eSAsias He return vhost_vsock_set_cid(vsock, guest_cid); 674433fc58eSAsias He case VHOST_VSOCK_SET_RUNNING: 675433fc58eSAsias He if (copy_from_user(&start, argp, sizeof(start))) 676433fc58eSAsias He return -EFAULT; 677433fc58eSAsias He if (start) 678433fc58eSAsias He return vhost_vsock_start(vsock); 679433fc58eSAsias He else 680433fc58eSAsias He return vhost_vsock_stop(vsock); 681433fc58eSAsias He case VHOST_GET_FEATURES: 682433fc58eSAsias He features = VHOST_VSOCK_FEATURES; 683433fc58eSAsias He if (copy_to_user(argp, &features, sizeof(features))) 684433fc58eSAsias He return -EFAULT; 685433fc58eSAsias He return 0; 686433fc58eSAsias He case VHOST_SET_FEATURES: 687433fc58eSAsias He if (copy_from_user(&features, argp, sizeof(features))) 688433fc58eSAsias He return -EFAULT; 689433fc58eSAsias He return vhost_vsock_set_features(vsock, features); 690433fc58eSAsias He default: 691433fc58eSAsias He mutex_lock(&vsock->dev.mutex); 692433fc58eSAsias He r = vhost_dev_ioctl(&vsock->dev, ioctl, argp); 693433fc58eSAsias He if (r == -ENOIOCTLCMD) 694433fc58eSAsias He r = vhost_vring_ioctl(&vsock->dev, ioctl, argp); 695433fc58eSAsias He else 696433fc58eSAsias He vhost_vsock_flush(vsock); 697433fc58eSAsias He mutex_unlock(&vsock->dev.mutex); 698433fc58eSAsias He return r; 699433fc58eSAsias He } 700433fc58eSAsias He } 701433fc58eSAsias He 702*dc32bb67SSonny Rao #ifdef CONFIG_COMPAT 703*dc32bb67SSonny Rao static long vhost_vsock_dev_compat_ioctl(struct file *f, unsigned int ioctl, 704*dc32bb67SSonny Rao unsigned long arg) 705*dc32bb67SSonny Rao { 706*dc32bb67SSonny Rao return vhost_vsock_dev_ioctl(f, ioctl, (unsigned long)compat_ptr(arg)); 707*dc32bb67SSonny Rao } 708*dc32bb67SSonny Rao #endif 709*dc32bb67SSonny Rao 710433fc58eSAsias He static const struct file_operations vhost_vsock_fops = { 711433fc58eSAsias He .owner = THIS_MODULE, 712433fc58eSAsias He .open = vhost_vsock_dev_open, 713433fc58eSAsias He .release = vhost_vsock_dev_release, 714433fc58eSAsias He .llseek = noop_llseek, 715433fc58eSAsias He .unlocked_ioctl = vhost_vsock_dev_ioctl, 716*dc32bb67SSonny Rao #ifdef CONFIG_COMPAT 717*dc32bb67SSonny Rao .compat_ioctl = vhost_vsock_dev_compat_ioctl, 718*dc32bb67SSonny Rao #endif 719433fc58eSAsias He }; 720433fc58eSAsias He 721433fc58eSAsias He static struct miscdevice vhost_vsock_misc = { 722f4660cc9SStefan Hajnoczi .minor = VHOST_VSOCK_MINOR, 723433fc58eSAsias He .name = "vhost-vsock", 724433fc58eSAsias He .fops = &vhost_vsock_fops, 725433fc58eSAsias He }; 726433fc58eSAsias He 727433fc58eSAsias He static struct virtio_transport vhost_transport = { 728433fc58eSAsias He .transport = { 729433fc58eSAsias He .get_local_cid = vhost_transport_get_local_cid, 730433fc58eSAsias He 731433fc58eSAsias He .init = virtio_transport_do_socket_init, 732433fc58eSAsias He .destruct = virtio_transport_destruct, 733433fc58eSAsias He .release = virtio_transport_release, 734433fc58eSAsias He .connect = virtio_transport_connect, 735433fc58eSAsias He .shutdown = virtio_transport_shutdown, 73616320f36SPeng Tao .cancel_pkt = vhost_transport_cancel_pkt, 737433fc58eSAsias He 738433fc58eSAsias He .dgram_enqueue = virtio_transport_dgram_enqueue, 739433fc58eSAsias He .dgram_dequeue = virtio_transport_dgram_dequeue, 740433fc58eSAsias He .dgram_bind = virtio_transport_dgram_bind, 741433fc58eSAsias He .dgram_allow = virtio_transport_dgram_allow, 742433fc58eSAsias He 743433fc58eSAsias He .stream_enqueue = virtio_transport_stream_enqueue, 744433fc58eSAsias He .stream_dequeue = virtio_transport_stream_dequeue, 745433fc58eSAsias He .stream_has_data = virtio_transport_stream_has_data, 746433fc58eSAsias He .stream_has_space = virtio_transport_stream_has_space, 747433fc58eSAsias He .stream_rcvhiwat = virtio_transport_stream_rcvhiwat, 748433fc58eSAsias He .stream_is_active = virtio_transport_stream_is_active, 749433fc58eSAsias He .stream_allow = virtio_transport_stream_allow, 750433fc58eSAsias He 751433fc58eSAsias He .notify_poll_in = virtio_transport_notify_poll_in, 752433fc58eSAsias He .notify_poll_out = virtio_transport_notify_poll_out, 753433fc58eSAsias He .notify_recv_init = virtio_transport_notify_recv_init, 754433fc58eSAsias He .notify_recv_pre_block = virtio_transport_notify_recv_pre_block, 755433fc58eSAsias He .notify_recv_pre_dequeue = virtio_transport_notify_recv_pre_dequeue, 756433fc58eSAsias He .notify_recv_post_dequeue = virtio_transport_notify_recv_post_dequeue, 757433fc58eSAsias He .notify_send_init = virtio_transport_notify_send_init, 758433fc58eSAsias He .notify_send_pre_block = virtio_transport_notify_send_pre_block, 759433fc58eSAsias He .notify_send_pre_enqueue = virtio_transport_notify_send_pre_enqueue, 760433fc58eSAsias He .notify_send_post_enqueue = virtio_transport_notify_send_post_enqueue, 761433fc58eSAsias He 762433fc58eSAsias He .set_buffer_size = virtio_transport_set_buffer_size, 763433fc58eSAsias He .set_min_buffer_size = virtio_transport_set_min_buffer_size, 764433fc58eSAsias He .set_max_buffer_size = virtio_transport_set_max_buffer_size, 765433fc58eSAsias He .get_buffer_size = virtio_transport_get_buffer_size, 766433fc58eSAsias He .get_min_buffer_size = virtio_transport_get_min_buffer_size, 767433fc58eSAsias He .get_max_buffer_size = virtio_transport_get_max_buffer_size, 768433fc58eSAsias He }, 769433fc58eSAsias He 770433fc58eSAsias He .send_pkt = vhost_transport_send_pkt, 771433fc58eSAsias He }; 772433fc58eSAsias He 773433fc58eSAsias He static int __init vhost_vsock_init(void) 774433fc58eSAsias He { 775433fc58eSAsias He int ret; 776433fc58eSAsias He 777433fc58eSAsias He ret = vsock_core_init(&vhost_transport.transport); 778433fc58eSAsias He if (ret < 0) 779433fc58eSAsias He return ret; 780433fc58eSAsias He return misc_register(&vhost_vsock_misc); 781433fc58eSAsias He }; 782433fc58eSAsias He 783433fc58eSAsias He static void __exit vhost_vsock_exit(void) 784433fc58eSAsias He { 785433fc58eSAsias He misc_deregister(&vhost_vsock_misc); 786433fc58eSAsias He vsock_core_exit(); 787433fc58eSAsias He }; 788433fc58eSAsias He 789433fc58eSAsias He module_init(vhost_vsock_init); 790433fc58eSAsias He module_exit(vhost_vsock_exit); 791433fc58eSAsias He MODULE_LICENSE("GPL v2"); 792433fc58eSAsias He MODULE_AUTHOR("Asias He"); 793433fc58eSAsias He MODULE_DESCRIPTION("vhost transport for vsock "); 794f4660cc9SStefan Hajnoczi MODULE_ALIAS_MISCDEV(VHOST_VSOCK_MINOR); 795f4660cc9SStefan Hajnoczi MODULE_ALIAS("devname:vhost-vsock"); 796