FreeBSD/Linux Kernel Cross Reference
sys/dev/mps/mps_user.c
1 /*-
2 * SPDX-License-Identifier: BSD-3-Clause
3 *
4 * Copyright (c) 2008 Yahoo!, Inc.
5 * All rights reserved.
6 * Written by: John Baldwin <jhb@FreeBSD.org>
7 *
8 * Redistribution and use in source and binary forms, with or without
9 * modification, are permitted provided that the following conditions
10 * are met:
11 * 1. Redistributions of source code must retain the above copyright
12 * notice, this list of conditions and the following disclaimer.
13 * 2. Redistributions in binary form must reproduce the above copyright
14 * notice, this list of conditions and the following disclaimer in the
15 * documentation and/or other materials provided with the distribution.
16 * 3. Neither the name of the author nor the names of any co-contributors
17 * may be used to endorse or promote products derived from this software
18 * without specific prior written permission.
19 *
20 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND
21 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
22 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
23 * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
24 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
25 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
26 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
27 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
28 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
29 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
30 * SUCH DAMAGE.
31 *
32 * Avago Technologies (LSI) MPT-Fusion Host Adapter FreeBSD userland interface
33 */
34 /*-
35 * Copyright (c) 2011-2015 LSI Corp.
36 * Copyright (c) 2013-2015 Avago Technologies
37 * All rights reserved.
38 *
39 * Redistribution and use in source and binary forms, with or without
40 * modification, are permitted provided that the following conditions
41 * are met:
42 * 1. Redistributions of source code must retain the above copyright
43 * notice, this list of conditions and the following disclaimer.
44 * 2. Redistributions in binary form must reproduce the above copyright
45 * notice, this list of conditions and the following disclaimer in the
46 * documentation and/or other materials provided with the distribution.
47 *
48 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND
49 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
50 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
51 * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
52 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
53 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
54 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
55 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
56 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
57 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
58 * SUCH DAMAGE.
59 *
60 * Avago Technologies (LSI) MPT-Fusion Host Adapter FreeBSD
61 *
62 * $FreeBSD: releng/12.0/sys/dev/mps/mps_user.c 332122 2018-04-06 17:35:35Z brooks $
63 */
64
65 #include <sys/cdefs.h>
66 __FBSDID("$FreeBSD: releng/12.0/sys/dev/mps/mps_user.c 332122 2018-04-06 17:35:35Z brooks $");
67
68 /* TODO Move headers to mpsvar */
69 #include <sys/types.h>
70 #include <sys/param.h>
71 #include <sys/systm.h>
72 #include <sys/kernel.h>
73 #include <sys/selinfo.h>
74 #include <sys/module.h>
75 #include <sys/bus.h>
76 #include <sys/conf.h>
77 #include <sys/bio.h>
78 #include <sys/malloc.h>
79 #include <sys/uio.h>
80 #include <sys/sysctl.h>
81 #include <sys/ioccom.h>
82 #include <sys/endian.h>
83 #include <sys/queue.h>
84 #include <sys/kthread.h>
85 #include <sys/taskqueue.h>
86 #include <sys/proc.h>
87 #include <sys/sysent.h>
88
89 #include <machine/bus.h>
90 #include <machine/resource.h>
91 #include <sys/rman.h>
92
93 #include <cam/cam.h>
94 #include <cam/cam_ccb.h>
95 #include <cam/scsi/scsi_all.h>
96
97 #include <dev/mps/mpi/mpi2_type.h>
98 #include <dev/mps/mpi/mpi2.h>
99 #include <dev/mps/mpi/mpi2_ioc.h>
100 #include <dev/mps/mpi/mpi2_cnfg.h>
101 #include <dev/mps/mpi/mpi2_init.h>
102 #include <dev/mps/mpi/mpi2_tool.h>
103 #include <dev/mps/mps_ioctl.h>
104 #include <dev/mps/mpsvar.h>
105 #include <dev/mps/mps_table.h>
106 #include <dev/mps/mps_sas.h>
107 #include <dev/pci/pcivar.h>
108 #include <dev/pci/pcireg.h>
109
110 static d_open_t mps_open;
111 static d_close_t mps_close;
112 static d_ioctl_t mps_ioctl_devsw;
113
114 static struct cdevsw mps_cdevsw = {
115 .d_version = D_VERSION,
116 .d_flags = 0,
117 .d_open = mps_open,
118 .d_close = mps_close,
119 .d_ioctl = mps_ioctl_devsw,
120 .d_name = "mps",
121 };
122
123 typedef int (mps_user_f)(struct mps_command *, struct mps_usr_command *);
124 static mps_user_f mpi_pre_ioc_facts;
125 static mps_user_f mpi_pre_port_facts;
126 static mps_user_f mpi_pre_fw_download;
127 static mps_user_f mpi_pre_fw_upload;
128 static mps_user_f mpi_pre_sata_passthrough;
129 static mps_user_f mpi_pre_smp_passthrough;
130 static mps_user_f mpi_pre_config;
131 static mps_user_f mpi_pre_sas_io_unit_control;
132
133 static int mps_user_read_cfg_header(struct mps_softc *,
134 struct mps_cfg_page_req *);
135 static int mps_user_read_cfg_page(struct mps_softc *,
136 struct mps_cfg_page_req *, void *);
137 static int mps_user_read_extcfg_header(struct mps_softc *,
138 struct mps_ext_cfg_page_req *);
139 static int mps_user_read_extcfg_page(struct mps_softc *,
140 struct mps_ext_cfg_page_req *, void *);
141 static int mps_user_write_cfg_page(struct mps_softc *,
142 struct mps_cfg_page_req *, void *);
143 static int mps_user_setup_request(struct mps_command *,
144 struct mps_usr_command *);
145 static int mps_user_command(struct mps_softc *, struct mps_usr_command *);
146
147 static int mps_user_pass_thru(struct mps_softc *sc, mps_pass_thru_t *data);
148 static void mps_user_get_adapter_data(struct mps_softc *sc,
149 mps_adapter_data_t *data);
150 static void mps_user_read_pci_info(struct mps_softc *sc,
151 mps_pci_info_t *data);
152 static uint8_t mps_get_fw_diag_buffer_number(struct mps_softc *sc,
153 uint32_t unique_id);
154 static int mps_post_fw_diag_buffer(struct mps_softc *sc,
155 mps_fw_diagnostic_buffer_t *pBuffer, uint32_t *return_code);
156 static int mps_release_fw_diag_buffer(struct mps_softc *sc,
157 mps_fw_diagnostic_buffer_t *pBuffer, uint32_t *return_code,
158 uint32_t diag_type);
159 static int mps_diag_register(struct mps_softc *sc,
160 mps_fw_diag_register_t *diag_register, uint32_t *return_code);
161 static int mps_diag_unregister(struct mps_softc *sc,
162 mps_fw_diag_unregister_t *diag_unregister, uint32_t *return_code);
163 static int mps_diag_query(struct mps_softc *sc, mps_fw_diag_query_t *diag_query,
164 uint32_t *return_code);
165 static int mps_diag_read_buffer(struct mps_softc *sc,
166 mps_diag_read_buffer_t *diag_read_buffer, uint8_t *ioctl_buf,
167 uint32_t *return_code);
168 static int mps_diag_release(struct mps_softc *sc,
169 mps_fw_diag_release_t *diag_release, uint32_t *return_code);
170 static int mps_do_diag_action(struct mps_softc *sc, uint32_t action,
171 uint8_t *diag_action, uint32_t length, uint32_t *return_code);
172 static int mps_user_diag_action(struct mps_softc *sc, mps_diag_action_t *data);
173 static void mps_user_event_query(struct mps_softc *sc, mps_event_query_t *data);
174 static void mps_user_event_enable(struct mps_softc *sc,
175 mps_event_enable_t *data);
176 static int mps_user_event_report(struct mps_softc *sc,
177 mps_event_report_t *data);
178 static int mps_user_reg_access(struct mps_softc *sc, mps_reg_access_t *data);
179 static int mps_user_btdh(struct mps_softc *sc, mps_btdh_mapping_t *data);
180
181 MALLOC_DEFINE(M_MPSUSER, "mps_user", "Buffers for mps(4) ioctls");
182
183 /* Macros from compat/freebsd32/freebsd32.h */
184 #define PTRIN(v) (void *)(uintptr_t)(v)
185 #define PTROUT(v) (uint32_t)(uintptr_t)(v)
186
187 #define CP(src,dst,fld) do { (dst).fld = (src).fld; } while (0)
188 #define PTRIN_CP(src,dst,fld) \
189 do { (dst).fld = PTRIN((src).fld); } while (0)
190 #define PTROUT_CP(src,dst,fld) \
191 do { (dst).fld = PTROUT((src).fld); } while (0)
192
193 int
194 mps_attach_user(struct mps_softc *sc)
195 {
196 int unit;
197
198 unit = device_get_unit(sc->mps_dev);
199 sc->mps_cdev = make_dev(&mps_cdevsw, unit, UID_ROOT, GID_OPERATOR, 0640,
200 "mps%d", unit);
201 if (sc->mps_cdev == NULL) {
202 return (ENOMEM);
203 }
204 sc->mps_cdev->si_drv1 = sc;
205 return (0);
206 }
207
208 void
209 mps_detach_user(struct mps_softc *sc)
210 {
211
212 /* XXX: do a purge of pending requests? */
213 if (sc->mps_cdev != NULL)
214 destroy_dev(sc->mps_cdev);
215 }
216
217 static int
218 mps_open(struct cdev *dev, int flags, int fmt, struct thread *td)
219 {
220
221 return (0);
222 }
223
224 static int
225 mps_close(struct cdev *dev, int flags, int fmt, struct thread *td)
226 {
227
228 return (0);
229 }
230
231 static int
232 mps_user_read_cfg_header(struct mps_softc *sc,
233 struct mps_cfg_page_req *page_req)
234 {
235 MPI2_CONFIG_PAGE_HEADER *hdr;
236 struct mps_config_params params;
237 int error;
238
239 hdr = ¶ms.hdr.Struct;
240 params.action = MPI2_CONFIG_ACTION_PAGE_HEADER;
241 params.page_address = le32toh(page_req->page_address);
242 hdr->PageVersion = 0;
243 hdr->PageLength = 0;
244 hdr->PageNumber = page_req->header.PageNumber;
245 hdr->PageType = page_req->header.PageType;
246 params.buffer = NULL;
247 params.length = 0;
248 params.callback = NULL;
249
250 if ((error = mps_read_config_page(sc, ¶ms)) != 0) {
251 /*
252 * Leave the request. Without resetting the chip, it's
253 * still owned by it and we'll just get into trouble
254 * freeing it now. Mark it as abandoned so that if it
255 * shows up later it can be freed.
256 */
257 mps_printf(sc, "read_cfg_header timed out\n");
258 return (ETIMEDOUT);
259 }
260
261 page_req->ioc_status = htole16(params.status);
262 if ((page_req->ioc_status & MPI2_IOCSTATUS_MASK) ==
263 MPI2_IOCSTATUS_SUCCESS) {
264 bcopy(hdr, &page_req->header, sizeof(page_req->header));
265 }
266
267 return (0);
268 }
269
270 static int
271 mps_user_read_cfg_page(struct mps_softc *sc, struct mps_cfg_page_req *page_req,
272 void *buf)
273 {
274 MPI2_CONFIG_PAGE_HEADER *reqhdr, *hdr;
275 struct mps_config_params params;
276 int error;
277
278 reqhdr = buf;
279 hdr = ¶ms.hdr.Struct;
280 hdr->PageVersion = reqhdr->PageVersion;
281 hdr->PageLength = reqhdr->PageLength;
282 hdr->PageNumber = reqhdr->PageNumber;
283 hdr->PageType = reqhdr->PageType & MPI2_CONFIG_PAGETYPE_MASK;
284 params.action = MPI2_CONFIG_ACTION_PAGE_READ_CURRENT;
285 params.page_address = le32toh(page_req->page_address);
286 params.buffer = buf;
287 params.length = le32toh(page_req->len);
288 params.callback = NULL;
289
290 if ((error = mps_read_config_page(sc, ¶ms)) != 0) {
291 mps_printf(sc, "mps_user_read_cfg_page timed out\n");
292 return (ETIMEDOUT);
293 }
294
295 page_req->ioc_status = htole16(params.status);
296 return (0);
297 }
298
299 static int
300 mps_user_read_extcfg_header(struct mps_softc *sc,
301 struct mps_ext_cfg_page_req *ext_page_req)
302 {
303 MPI2_CONFIG_EXTENDED_PAGE_HEADER *hdr;
304 struct mps_config_params params;
305 int error;
306
307 hdr = ¶ms.hdr.Ext;
308 params.action = MPI2_CONFIG_ACTION_PAGE_HEADER;
309 hdr->PageVersion = ext_page_req->header.PageVersion;
310 hdr->PageType = MPI2_CONFIG_PAGETYPE_EXTENDED;
311 hdr->ExtPageLength = 0;
312 hdr->PageNumber = ext_page_req->header.PageNumber;
313 hdr->ExtPageType = ext_page_req->header.ExtPageType;
314 params.page_address = le32toh(ext_page_req->page_address);
315 params.buffer = NULL;
316 params.length = 0;
317 params.callback = NULL;
318
319 if ((error = mps_read_config_page(sc, ¶ms)) != 0) {
320 /*
321 * Leave the request. Without resetting the chip, it's
322 * still owned by it and we'll just get into trouble
323 * freeing it now. Mark it as abandoned so that if it
324 * shows up later it can be freed.
325 */
326 mps_printf(sc, "mps_user_read_extcfg_header timed out\n");
327 return (ETIMEDOUT);
328 }
329
330 ext_page_req->ioc_status = htole16(params.status);
331 if ((ext_page_req->ioc_status & MPI2_IOCSTATUS_MASK) ==
332 MPI2_IOCSTATUS_SUCCESS) {
333 ext_page_req->header.PageVersion = hdr->PageVersion;
334 ext_page_req->header.PageNumber = hdr->PageNumber;
335 ext_page_req->header.PageType = hdr->PageType;
336 ext_page_req->header.ExtPageLength = hdr->ExtPageLength;
337 ext_page_req->header.ExtPageType = hdr->ExtPageType;
338 }
339
340 return (0);
341 }
342
343 static int
344 mps_user_read_extcfg_page(struct mps_softc *sc,
345 struct mps_ext_cfg_page_req *ext_page_req, void *buf)
346 {
347 MPI2_CONFIG_EXTENDED_PAGE_HEADER *reqhdr, *hdr;
348 struct mps_config_params params;
349 int error;
350
351 reqhdr = buf;
352 hdr = ¶ms.hdr.Ext;
353 params.action = MPI2_CONFIG_ACTION_PAGE_READ_CURRENT;
354 params.page_address = le32toh(ext_page_req->page_address);
355 hdr->PageVersion = reqhdr->PageVersion;
356 hdr->PageType = MPI2_CONFIG_PAGETYPE_EXTENDED;
357 hdr->PageNumber = reqhdr->PageNumber;
358 hdr->ExtPageType = reqhdr->ExtPageType;
359 hdr->ExtPageLength = reqhdr->ExtPageLength;
360 params.buffer = buf;
361 params.length = le32toh(ext_page_req->len);
362 params.callback = NULL;
363
364 if ((error = mps_read_config_page(sc, ¶ms)) != 0) {
365 mps_printf(sc, "mps_user_read_extcfg_page timed out\n");
366 return (ETIMEDOUT);
367 }
368
369 ext_page_req->ioc_status = htole16(params.status);
370 return (0);
371 }
372
373 static int
374 mps_user_write_cfg_page(struct mps_softc *sc,
375 struct mps_cfg_page_req *page_req, void *buf)
376 {
377 MPI2_CONFIG_PAGE_HEADER *reqhdr, *hdr;
378 struct mps_config_params params;
379 u_int hdr_attr;
380 int error;
381
382 reqhdr = buf;
383 hdr = ¶ms.hdr.Struct;
384 hdr_attr = reqhdr->PageType & MPI2_CONFIG_PAGEATTR_MASK;
385 if (hdr_attr != MPI2_CONFIG_PAGEATTR_CHANGEABLE &&
386 hdr_attr != MPI2_CONFIG_PAGEATTR_PERSISTENT) {
387 mps_printf(sc, "page type 0x%x not changeable\n",
388 reqhdr->PageType & MPI2_CONFIG_PAGETYPE_MASK);
389 return (EINVAL);
390 }
391
392 /*
393 * There isn't any point in restoring stripped out attributes
394 * if you then mask them going down to issue the request.
395 */
396
397 hdr->PageVersion = reqhdr->PageVersion;
398 hdr->PageLength = reqhdr->PageLength;
399 hdr->PageNumber = reqhdr->PageNumber;
400 hdr->PageType = reqhdr->PageType;
401 params.action = MPI2_CONFIG_ACTION_PAGE_WRITE_CURRENT;
402 params.page_address = le32toh(page_req->page_address);
403 params.buffer = buf;
404 params.length = le32toh(page_req->len);
405 params.callback = NULL;
406
407 if ((error = mps_write_config_page(sc, ¶ms)) != 0) {
408 mps_printf(sc, "mps_write_cfg_page timed out\n");
409 return (ETIMEDOUT);
410 }
411
412 page_req->ioc_status = htole16(params.status);
413 return (0);
414 }
415
416 void
417 mpi_init_sge(struct mps_command *cm, void *req, void *sge)
418 {
419 int off, space;
420
421 space = (int)cm->cm_sc->reqframesz;
422 off = (uintptr_t)sge - (uintptr_t)req;
423
424 KASSERT(off < space, ("bad pointers %p %p, off %d, space %d",
425 req, sge, off, space));
426
427 cm->cm_sge = sge;
428 cm->cm_sglsize = space - off;
429 }
430
431 /*
432 * Prepare the mps_command for an IOC_FACTS request.
433 */
434 static int
435 mpi_pre_ioc_facts(struct mps_command *cm, struct mps_usr_command *cmd)
436 {
437 MPI2_IOC_FACTS_REQUEST *req = (void *)cm->cm_req;
438 MPI2_IOC_FACTS_REPLY *rpl;
439
440 if (cmd->req_len != sizeof *req)
441 return (EINVAL);
442 if (cmd->rpl_len != sizeof *rpl)
443 return (EINVAL);
444
445 cm->cm_sge = NULL;
446 cm->cm_sglsize = 0;
447 return (0);
448 }
449
450 /*
451 * Prepare the mps_command for a PORT_FACTS request.
452 */
453 static int
454 mpi_pre_port_facts(struct mps_command *cm, struct mps_usr_command *cmd)
455 {
456 MPI2_PORT_FACTS_REQUEST *req = (void *)cm->cm_req;
457 MPI2_PORT_FACTS_REPLY *rpl;
458
459 if (cmd->req_len != sizeof *req)
460 return (EINVAL);
461 if (cmd->rpl_len != sizeof *rpl)
462 return (EINVAL);
463
464 cm->cm_sge = NULL;
465 cm->cm_sglsize = 0;
466 return (0);
467 }
468
469 /*
470 * Prepare the mps_command for a FW_DOWNLOAD request.
471 */
472 static int
473 mpi_pre_fw_download(struct mps_command *cm, struct mps_usr_command *cmd)
474 {
475 MPI2_FW_DOWNLOAD_REQUEST *req = (void *)cm->cm_req;
476 MPI2_FW_DOWNLOAD_REPLY *rpl;
477 MPI2_FW_DOWNLOAD_TCSGE tc;
478 int error;
479
480 /*
481 * This code assumes there is room in the request's SGL for
482 * the TransactionContext plus at least a SGL chain element.
483 */
484 CTASSERT(sizeof req->SGL >= sizeof tc + MPS_SGC_SIZE);
485
486 if (cmd->req_len != sizeof *req)
487 return (EINVAL);
488 if (cmd->rpl_len != sizeof *rpl)
489 return (EINVAL);
490
491 if (cmd->len == 0)
492 return (EINVAL);
493
494 error = copyin(cmd->buf, cm->cm_data, cmd->len);
495 if (error != 0)
496 return (error);
497
498 mpi_init_sge(cm, req, &req->SGL);
499 bzero(&tc, sizeof tc);
500
501 /*
502 * For now, the F/W image must be provided in a single request.
503 */
504 if ((req->MsgFlags & MPI2_FW_DOWNLOAD_MSGFLGS_LAST_SEGMENT) == 0)
505 return (EINVAL);
506 if (req->TotalImageSize != cmd->len)
507 return (EINVAL);
508
509 /*
510 * The value of the first two elements is specified in the
511 * Fusion-MPT Message Passing Interface document.
512 */
513 tc.ContextSize = 0;
514 tc.DetailsLength = 12;
515 tc.ImageOffset = 0;
516 tc.ImageSize = cmd->len;
517
518 cm->cm_flags |= MPS_CM_FLAGS_DATAOUT;
519
520 return (mps_push_sge(cm, &tc, sizeof tc, 0));
521 }
522
523 /*
524 * Prepare the mps_command for a FW_UPLOAD request.
525 */
526 static int
527 mpi_pre_fw_upload(struct mps_command *cm, struct mps_usr_command *cmd)
528 {
529 MPI2_FW_UPLOAD_REQUEST *req = (void *)cm->cm_req;
530 MPI2_FW_UPLOAD_REPLY *rpl;
531 MPI2_FW_UPLOAD_TCSGE tc;
532
533 /*
534 * This code assumes there is room in the request's SGL for
535 * the TransactionContext plus at least a SGL chain element.
536 */
537 CTASSERT(sizeof req->SGL >= sizeof tc + MPS_SGC_SIZE);
538
539 if (cmd->req_len != sizeof *req)
540 return (EINVAL);
541 if (cmd->rpl_len != sizeof *rpl)
542 return (EINVAL);
543
544 mpi_init_sge(cm, req, &req->SGL);
545 bzero(&tc, sizeof tc);
546
547 /*
548 * The value of the first two elements is specified in the
549 * Fusion-MPT Message Passing Interface document.
550 */
551 tc.ContextSize = 0;
552 tc.DetailsLength = 12;
553 /*
554 * XXX Is there any reason to fetch a partial image? I.e. to
555 * set ImageOffset to something other than 0?
556 */
557 tc.ImageOffset = 0;
558 tc.ImageSize = cmd->len;
559
560 cm->cm_flags |= MPS_CM_FLAGS_DATAIN;
561
562 return (mps_push_sge(cm, &tc, sizeof tc, 0));
563 }
564
565 /*
566 * Prepare the mps_command for a SATA_PASSTHROUGH request.
567 */
568 static int
569 mpi_pre_sata_passthrough(struct mps_command *cm, struct mps_usr_command *cmd)
570 {
571 MPI2_SATA_PASSTHROUGH_REQUEST *req = (void *)cm->cm_req;
572 MPI2_SATA_PASSTHROUGH_REPLY *rpl;
573
574 if (cmd->req_len != sizeof *req)
575 return (EINVAL);
576 if (cmd->rpl_len != sizeof *rpl)
577 return (EINVAL);
578
579 mpi_init_sge(cm, req, &req->SGL);
580 return (0);
581 }
582
583 /*
584 * Prepare the mps_command for a SMP_PASSTHROUGH request.
585 */
586 static int
587 mpi_pre_smp_passthrough(struct mps_command *cm, struct mps_usr_command *cmd)
588 {
589 MPI2_SMP_PASSTHROUGH_REQUEST *req = (void *)cm->cm_req;
590 MPI2_SMP_PASSTHROUGH_REPLY *rpl;
591
592 if (cmd->req_len != sizeof *req)
593 return (EINVAL);
594 if (cmd->rpl_len != sizeof *rpl)
595 return (EINVAL);
596
597 mpi_init_sge(cm, req, &req->SGL);
598 return (0);
599 }
600
601 /*
602 * Prepare the mps_command for a CONFIG request.
603 */
604 static int
605 mpi_pre_config(struct mps_command *cm, struct mps_usr_command *cmd)
606 {
607 MPI2_CONFIG_REQUEST *req = (void *)cm->cm_req;
608 MPI2_CONFIG_REPLY *rpl;
609
610 if (cmd->req_len != sizeof *req)
611 return (EINVAL);
612 if (cmd->rpl_len != sizeof *rpl)
613 return (EINVAL);
614
615 mpi_init_sge(cm, req, &req->PageBufferSGE);
616 return (0);
617 }
618
619 /*
620 * Prepare the mps_command for a SAS_IO_UNIT_CONTROL request.
621 */
622 static int
623 mpi_pre_sas_io_unit_control(struct mps_command *cm,
624 struct mps_usr_command *cmd)
625 {
626
627 cm->cm_sge = NULL;
628 cm->cm_sglsize = 0;
629 return (0);
630 }
631
632 /*
633 * A set of functions to prepare an mps_command for the various
634 * supported requests.
635 */
636 struct mps_user_func {
637 U8 Function;
638 mps_user_f *f_pre;
639 } mps_user_func_list[] = {
640 { MPI2_FUNCTION_IOC_FACTS, mpi_pre_ioc_facts },
641 { MPI2_FUNCTION_PORT_FACTS, mpi_pre_port_facts },
642 { MPI2_FUNCTION_FW_DOWNLOAD, mpi_pre_fw_download },
643 { MPI2_FUNCTION_FW_UPLOAD, mpi_pre_fw_upload },
644 { MPI2_FUNCTION_SATA_PASSTHROUGH, mpi_pre_sata_passthrough },
645 { MPI2_FUNCTION_SMP_PASSTHROUGH, mpi_pre_smp_passthrough},
646 { MPI2_FUNCTION_CONFIG, mpi_pre_config},
647 { MPI2_FUNCTION_SAS_IO_UNIT_CONTROL, mpi_pre_sas_io_unit_control },
648 { 0xFF, NULL } /* list end */
649 };
650
651 static int
652 mps_user_setup_request(struct mps_command *cm, struct mps_usr_command *cmd)
653 {
654 MPI2_REQUEST_HEADER *hdr = (MPI2_REQUEST_HEADER *)cm->cm_req;
655 struct mps_user_func *f;
656
657 for (f = mps_user_func_list; f->f_pre != NULL; f++) {
658 if (hdr->Function == f->Function)
659 return (f->f_pre(cm, cmd));
660 }
661 return (EINVAL);
662 }
663
664 static int
665 mps_user_command(struct mps_softc *sc, struct mps_usr_command *cmd)
666 {
667 MPI2_REQUEST_HEADER *hdr;
668 MPI2_DEFAULT_REPLY *rpl;
669 void *buf = NULL;
670 struct mps_command *cm = NULL;
671 int err = 0;
672 int sz;
673
674 mps_lock(sc);
675 cm = mps_alloc_command(sc);
676
677 if (cm == NULL) {
678 mps_printf(sc, "%s: no mps requests\n", __func__);
679 err = ENOMEM;
680 goto RetFree;
681 }
682 mps_unlock(sc);
683
684 hdr = (MPI2_REQUEST_HEADER *)cm->cm_req;
685
686 mps_dprint(sc, MPS_USER, "%s: req %p %d rpl %p %d\n", __func__,
687 cmd->req, cmd->req_len, cmd->rpl, cmd->rpl_len);
688
689 if (cmd->req_len > (int)sc->reqframesz) {
690 err = EINVAL;
691 goto RetFreeUnlocked;
692 }
693 err = copyin(cmd->req, hdr, cmd->req_len);
694 if (err != 0)
695 goto RetFreeUnlocked;
696
697 mps_dprint(sc, MPS_USER, "%s: Function %02X MsgFlags %02X\n", __func__,
698 hdr->Function, hdr->MsgFlags);
699
700 if (cmd->len > 0) {
701 buf = malloc(cmd->len, M_MPSUSER, M_WAITOK|M_ZERO);
702 cm->cm_data = buf;
703 cm->cm_length = cmd->len;
704 } else {
705 cm->cm_data = NULL;
706 cm->cm_length = 0;
707 }
708
709 cm->cm_flags = MPS_CM_FLAGS_SGE_SIMPLE;
710 cm->cm_desc.Default.RequestFlags = MPI2_REQ_DESCRIPT_FLAGS_DEFAULT_TYPE;
711
712 err = mps_user_setup_request(cm, cmd);
713 if (err == EINVAL) {
714 mps_printf(sc, "%s: unsupported parameter or unsupported "
715 "function in request (function = 0x%X)\n", __func__,
716 hdr->Function);
717 }
718 if (err != 0)
719 goto RetFreeUnlocked;
720
721 mps_lock(sc);
722 err = mps_wait_command(sc, &cm, 60, CAN_SLEEP);
723
724 if (err || (cm == NULL)) {
725 mps_printf(sc, "%s: invalid request: error %d\n",
726 __func__, err);
727 goto RetFree;
728 }
729
730 rpl = (MPI2_DEFAULT_REPLY *)cm->cm_reply;
731 if (rpl != NULL)
732 sz = rpl->MsgLength * 4;
733 else
734 sz = 0;
735
736 if (sz > cmd->rpl_len) {
737 mps_printf(sc, "%s: user reply buffer (%d) smaller than "
738 "returned buffer (%d)\n", __func__, cmd->rpl_len, sz);
739 sz = cmd->rpl_len;
740 }
741
742 mps_unlock(sc);
743 copyout(rpl, cmd->rpl, sz);
744 if (buf != NULL)
745 copyout(buf, cmd->buf, cmd->len);
746 mps_dprint(sc, MPS_USER, "%s: reply size %d\n", __func__, sz);
747
748 RetFreeUnlocked:
749 mps_lock(sc);
750 RetFree:
751 if (cm != NULL)
752 mps_free_command(sc, cm);
753 mps_unlock(sc);
754 if (buf != NULL)
755 free(buf, M_MPSUSER);
756 return (err);
757 }
758
759 static int
760 mps_user_pass_thru(struct mps_softc *sc, mps_pass_thru_t *data)
761 {
762 MPI2_REQUEST_HEADER *hdr, tmphdr;
763 MPI2_DEFAULT_REPLY *rpl = NULL;
764 struct mps_command *cm = NULL;
765 int err = 0, dir = 0, sz;
766 uint8_t function = 0;
767 u_int sense_len;
768 struct mpssas_target *targ = NULL;
769
770 /*
771 * Only allow one passthru command at a time. Use the MPS_FLAGS_BUSY
772 * bit to denote that a passthru is being processed.
773 */
774 mps_lock(sc);
775 if (sc->mps_flags & MPS_FLAGS_BUSY) {
776 mps_dprint(sc, MPS_USER, "%s: Only one passthru command "
777 "allowed at a single time.", __func__);
778 mps_unlock(sc);
779 return (EBUSY);
780 }
781 sc->mps_flags |= MPS_FLAGS_BUSY;
782 mps_unlock(sc);
783
784 /*
785 * Do some validation on data direction. Valid cases are:
786 * 1) DataSize is 0 and direction is NONE
787 * 2) DataSize is non-zero and one of:
788 * a) direction is READ or
789 * b) direction is WRITE or
790 * c) direction is BOTH and DataOutSize is non-zero
791 * If valid and the direction is BOTH, change the direction to READ.
792 * if valid and the direction is not BOTH, make sure DataOutSize is 0.
793 */
794 if (((data->DataSize == 0) &&
795 (data->DataDirection == MPS_PASS_THRU_DIRECTION_NONE)) ||
796 ((data->DataSize != 0) &&
797 ((data->DataDirection == MPS_PASS_THRU_DIRECTION_READ) ||
798 (data->DataDirection == MPS_PASS_THRU_DIRECTION_WRITE) ||
799 ((data->DataDirection == MPS_PASS_THRU_DIRECTION_BOTH) &&
800 (data->DataOutSize != 0))))) {
801 if (data->DataDirection == MPS_PASS_THRU_DIRECTION_BOTH)
802 data->DataDirection = MPS_PASS_THRU_DIRECTION_READ;
803 else
804 data->DataOutSize = 0;
805 } else
806 return (EINVAL);
807
808 mps_dprint(sc, MPS_USER, "%s: req 0x%jx %d rpl 0x%jx %d "
809 "data in 0x%jx %d data out 0x%jx %d data dir %d\n", __func__,
810 data->PtrRequest, data->RequestSize, data->PtrReply,
811 data->ReplySize, data->PtrData, data->DataSize,
812 data->PtrDataOut, data->DataOutSize, data->DataDirection);
813
814 /*
815 * copy in the header so we know what we're dealing with before we
816 * commit to allocating a command for it.
817 */
818 err = copyin(PTRIN(data->PtrRequest), &tmphdr, data->RequestSize);
819 if (err != 0)
820 goto RetFreeUnlocked;
821
822 if (data->RequestSize > (int)sc->reqframesz) {
823 err = EINVAL;
824 goto RetFreeUnlocked;
825 }
826
827 function = tmphdr.Function;
828 mps_dprint(sc, MPS_USER, "%s: Function %02X MsgFlags %02X\n", __func__,
829 function, tmphdr.MsgFlags);
830
831 /*
832 * Handle a passthru TM request.
833 */
834 if (function == MPI2_FUNCTION_SCSI_TASK_MGMT) {
835 MPI2_SCSI_TASK_MANAGE_REQUEST *task;
836
837 mps_lock(sc);
838 cm = mpssas_alloc_tm(sc);
839 if (cm == NULL) {
840 err = EINVAL;
841 goto Ret;
842 }
843
844 /* Copy the header in. Only a small fixup is needed. */
845 task = (MPI2_SCSI_TASK_MANAGE_REQUEST *)cm->cm_req;
846 bcopy(&tmphdr, task, data->RequestSize);
847 task->TaskMID = cm->cm_desc.Default.SMID;
848
849 cm->cm_data = NULL;
850 cm->cm_desc.HighPriority.RequestFlags =
851 MPI2_REQ_DESCRIPT_FLAGS_HIGH_PRIORITY;
852 cm->cm_complete = NULL;
853 cm->cm_complete_data = NULL;
854
855 targ = mpssas_find_target_by_handle(sc->sassc, 0,
856 task->DevHandle);
857 if (targ == NULL) {
858 mps_dprint(sc, MPS_INFO,
859 "%s %d : invalid handle for requested TM 0x%x \n",
860 __func__, __LINE__, task->DevHandle);
861 err = 1;
862 } else {
863 mpssas_prepare_for_tm(sc, cm, targ, CAM_LUN_WILDCARD);
864 err = mps_wait_command(sc, &cm, 30, CAN_SLEEP);
865 }
866
867 if (err != 0) {
868 err = EIO;
869 mps_dprint(sc, MPS_FAULT, "%s: task management failed",
870 __func__);
871 }
872 /*
873 * Copy the reply data and sense data to user space.
874 */
875 if ((cm != NULL) && (cm->cm_reply != NULL)) {
876 rpl = (MPI2_DEFAULT_REPLY *)cm->cm_reply;
877 sz = rpl->MsgLength * 4;
878
879 if (sz > data->ReplySize) {
880 mps_printf(sc, "%s: user reply buffer (%d) "
881 "smaller than returned buffer (%d)\n",
882 __func__, data->ReplySize, sz);
883 }
884 mps_unlock(sc);
885 copyout(cm->cm_reply, PTRIN(data->PtrReply),
886 data->ReplySize);
887 mps_lock(sc);
888 }
889 mpssas_free_tm(sc, cm);
890 goto Ret;
891 }
892
893 mps_lock(sc);
894 cm = mps_alloc_command(sc);
895
896 if (cm == NULL) {
897 mps_printf(sc, "%s: no mps requests\n", __func__);
898 err = ENOMEM;
899 goto Ret;
900 }
901 mps_unlock(sc);
902
903 hdr = (MPI2_REQUEST_HEADER *)cm->cm_req;
904 bcopy(&tmphdr, hdr, data->RequestSize);
905
906 /*
907 * Do some checking to make sure the IOCTL request contains a valid
908 * request. Then set the SGL info.
909 */
910 mpi_init_sge(cm, hdr, (void *)((uint8_t *)hdr + data->RequestSize));
911
912 /*
913 * Set up for read, write or both. From check above, DataOutSize will
914 * be 0 if direction is READ or WRITE, but it will have some non-zero
915 * value if the direction is BOTH. So, just use the biggest size to get
916 * the cm_data buffer size. If direction is BOTH, 2 SGLs need to be set
917 * up; the first is for the request and the second will contain the
918 * response data. cm_out_len needs to be set here and this will be used
919 * when the SGLs are set up.
920 */
921 cm->cm_data = NULL;
922 cm->cm_length = MAX(data->DataSize, data->DataOutSize);
923 cm->cm_out_len = data->DataOutSize;
924 cm->cm_flags = 0;
925 if (cm->cm_length != 0) {
926 cm->cm_data = malloc(cm->cm_length, M_MPSUSER, M_WAITOK |
927 M_ZERO);
928 cm->cm_flags = MPS_CM_FLAGS_DATAIN;
929 if (data->DataOutSize) {
930 cm->cm_flags |= MPS_CM_FLAGS_DATAOUT;
931 err = copyin(PTRIN(data->PtrDataOut),
932 cm->cm_data, data->DataOutSize);
933 } else if (data->DataDirection ==
934 MPS_PASS_THRU_DIRECTION_WRITE) {
935 cm->cm_flags = MPS_CM_FLAGS_DATAOUT;
936 err = copyin(PTRIN(data->PtrData),
937 cm->cm_data, data->DataSize);
938 }
939 if (err != 0)
940 mps_dprint(sc, MPS_FAULT, "%s: failed to copy "
941 "IOCTL data from user space\n", __func__);
942 }
943 cm->cm_flags |= MPS_CM_FLAGS_SGE_SIMPLE;
944 cm->cm_desc.Default.RequestFlags = MPI2_REQ_DESCRIPT_FLAGS_DEFAULT_TYPE;
945
946 /*
947 * Set up Sense buffer and SGL offset for IO passthru. SCSI IO request
948 * uses SCSI IO descriptor.
949 */
950 if ((function == MPI2_FUNCTION_SCSI_IO_REQUEST) ||
951 (function == MPI2_FUNCTION_RAID_SCSI_IO_PASSTHROUGH)) {
952 MPI2_SCSI_IO_REQUEST *scsi_io_req;
953
954 scsi_io_req = (MPI2_SCSI_IO_REQUEST *)hdr;
955 /*
956 * Put SGE for data and data_out buffer at the end of
957 * scsi_io_request message header (64 bytes in total).
958 * Following above SGEs, the residual space will be used by
959 * sense data.
960 */
961 scsi_io_req->SenseBufferLength = (uint8_t)(data->RequestSize -
962 64);
963 scsi_io_req->SenseBufferLowAddress = htole32(cm->cm_sense_busaddr);
964
965 /*
966 * Set SGLOffset0 value. This is the number of dwords that SGL
967 * is offset from the beginning of MPI2_SCSI_IO_REQUEST struct.
968 */
969 scsi_io_req->SGLOffset0 = 24;
970
971 /*
972 * Setup descriptor info. RAID passthrough must use the
973 * default request descriptor which is already set, so if this
974 * is a SCSI IO request, change the descriptor to SCSI IO.
975 * Also, if this is a SCSI IO request, handle the reply in the
976 * mpssas_scsio_complete function.
977 */
978 if (function == MPI2_FUNCTION_SCSI_IO_REQUEST) {
979 cm->cm_desc.SCSIIO.RequestFlags =
980 MPI2_REQ_DESCRIPT_FLAGS_SCSI_IO;
981 cm->cm_desc.SCSIIO.DevHandle = scsi_io_req->DevHandle;
982
983 /*
984 * Make sure the DevHandle is not 0 because this is a
985 * likely error.
986 */
987 if (scsi_io_req->DevHandle == 0) {
988 err = EINVAL;
989 goto RetFreeUnlocked;
990 }
991 }
992 }
993
994 mps_lock(sc);
995
996 err = mps_wait_command(sc, &cm, 30, CAN_SLEEP);
997
998 if (err || (cm == NULL)) {
999 mps_printf(sc, "%s: invalid request: error %d\n", __func__,
1000 err);
1001 mps_unlock(sc);
1002 goto RetFreeUnlocked;
1003 }
1004
1005 /*
1006 * Sync the DMA data, if any. Then copy the data to user space.
1007 */
1008 if (cm->cm_data != NULL) {
1009 if (cm->cm_flags & MPS_CM_FLAGS_DATAIN)
1010 dir = BUS_DMASYNC_POSTREAD;
1011 else if (cm->cm_flags & MPS_CM_FLAGS_DATAOUT)
1012 dir = BUS_DMASYNC_POSTWRITE;
1013 bus_dmamap_sync(sc->buffer_dmat, cm->cm_dmamap, dir);
1014 bus_dmamap_unload(sc->buffer_dmat, cm->cm_dmamap);
1015
1016 if (cm->cm_flags & MPS_CM_FLAGS_DATAIN) {
1017 mps_unlock(sc);
1018 err = copyout(cm->cm_data,
1019 PTRIN(data->PtrData), data->DataSize);
1020 mps_lock(sc);
1021 if (err != 0)
1022 mps_dprint(sc, MPS_FAULT, "%s: failed to copy "
1023 "IOCTL data to user space\n", __func__);
1024 }
1025 }
1026
1027 /*
1028 * Copy the reply data and sense data to user space.
1029 */
1030 if (cm->cm_reply != NULL) {
1031 rpl = (MPI2_DEFAULT_REPLY *)cm->cm_reply;
1032 sz = rpl->MsgLength * 4;
1033
1034 if (sz > data->ReplySize) {
1035 mps_printf(sc, "%s: user reply buffer (%d) smaller "
1036 "than returned buffer (%d)\n", __func__,
1037 data->ReplySize, sz);
1038 }
1039 mps_unlock(sc);
1040 copyout(cm->cm_reply, PTRIN(data->PtrReply), data->ReplySize);
1041 mps_lock(sc);
1042
1043 if ((function == MPI2_FUNCTION_SCSI_IO_REQUEST) ||
1044 (function == MPI2_FUNCTION_RAID_SCSI_IO_PASSTHROUGH)) {
1045 if (((MPI2_SCSI_IO_REPLY *)rpl)->SCSIState &
1046 MPI2_SCSI_STATE_AUTOSENSE_VALID) {
1047 sense_len =
1048 MIN((le32toh(((MPI2_SCSI_IO_REPLY *)rpl)->SenseCount)),
1049 sizeof(struct scsi_sense_data));
1050 mps_unlock(sc);
1051 copyout(cm->cm_sense, cm->cm_req + 64, sense_len);
1052 mps_lock(sc);
1053 }
1054 }
1055 }
1056 mps_unlock(sc);
1057
1058 RetFreeUnlocked:
1059 mps_lock(sc);
1060
1061 if (cm != NULL) {
1062 if (cm->cm_data)
1063 free(cm->cm_data, M_MPSUSER);
1064 mps_free_command(sc, cm);
1065 }
1066 Ret:
1067 sc->mps_flags &= ~MPS_FLAGS_BUSY;
1068 mps_unlock(sc);
1069
1070 return (err);
1071 }
1072
1073 static void
1074 mps_user_get_adapter_data(struct mps_softc *sc, mps_adapter_data_t *data)
1075 {
1076 Mpi2ConfigReply_t mpi_reply;
1077 Mpi2BiosPage3_t config_page;
1078
1079 /*
1080 * Use the PCI interface functions to get the Bus, Device, and Function
1081 * information.
1082 */
1083 data->PciInformation.u.bits.BusNumber = pci_get_bus(sc->mps_dev);
1084 data->PciInformation.u.bits.DeviceNumber = pci_get_slot(sc->mps_dev);
1085 data->PciInformation.u.bits.FunctionNumber =
1086 pci_get_function(sc->mps_dev);
1087
1088 /*
1089 * Get the FW version that should already be saved in IOC Facts.
1090 */
1091 data->MpiFirmwareVersion = sc->facts->FWVersion.Word;
1092
1093 /*
1094 * General device info.
1095 */
1096 data->AdapterType = MPSIOCTL_ADAPTER_TYPE_SAS2;
1097 if (sc->mps_flags & MPS_FLAGS_WD_AVAILABLE)
1098 data->AdapterType = MPSIOCTL_ADAPTER_TYPE_SAS2_SSS6200;
1099 data->PCIDeviceHwId = pci_get_device(sc->mps_dev);
1100 data->PCIDeviceHwRev = pci_read_config(sc->mps_dev, PCIR_REVID, 1);
1101 data->SubSystemId = pci_get_subdevice(sc->mps_dev);
1102 data->SubsystemVendorId = pci_get_subvendor(sc->mps_dev);
1103
1104 /*
1105 * Get the driver version.
1106 */
1107 strcpy((char *)&data->DriverVersion[0], MPS_DRIVER_VERSION);
1108
1109 /*
1110 * Need to get BIOS Config Page 3 for the BIOS Version.
1111 */
1112 data->BiosVersion = 0;
1113 mps_lock(sc);
1114 if (mps_config_get_bios_pg3(sc, &mpi_reply, &config_page))
1115 printf("%s: Error while retrieving BIOS Version\n", __func__);
1116 else
1117 data->BiosVersion = config_page.BiosVersion;
1118 mps_unlock(sc);
1119 }
1120
1121 static void
1122 mps_user_read_pci_info(struct mps_softc *sc, mps_pci_info_t *data)
1123 {
1124 int i;
1125
1126 /*
1127 * Use the PCI interface functions to get the Bus, Device, and Function
1128 * information.
1129 */
1130 data->BusNumber = pci_get_bus(sc->mps_dev);
1131 data->DeviceNumber = pci_get_slot(sc->mps_dev);
1132 data->FunctionNumber = pci_get_function(sc->mps_dev);
1133
1134 /*
1135 * Now get the interrupt vector and the pci header. The vector can
1136 * only be 0 right now. The header is the first 256 bytes of config
1137 * space.
1138 */
1139 data->InterruptVector = 0;
1140 for (i = 0; i < sizeof (data->PciHeader); i++) {
1141 data->PciHeader[i] = pci_read_config(sc->mps_dev, i, 1);
1142 }
1143 }
1144
1145 static uint8_t
1146 mps_get_fw_diag_buffer_number(struct mps_softc *sc, uint32_t unique_id)
1147 {
1148 uint8_t index;
1149
1150 for (index = 0; index < MPI2_DIAG_BUF_TYPE_COUNT; index++) {
1151 if (sc->fw_diag_buffer_list[index].unique_id == unique_id) {
1152 return (index);
1153 }
1154 }
1155
1156 return (MPS_FW_DIAGNOSTIC_UID_NOT_FOUND);
1157 }
1158
1159 static int
1160 mps_post_fw_diag_buffer(struct mps_softc *sc,
1161 mps_fw_diagnostic_buffer_t *pBuffer, uint32_t *return_code)
1162 {
1163 MPI2_DIAG_BUFFER_POST_REQUEST *req;
1164 MPI2_DIAG_BUFFER_POST_REPLY *reply = NULL;
1165 struct mps_command *cm = NULL;
1166 int i, status;
1167
1168 /*
1169 * If buffer is not enabled, just leave.
1170 */
1171 *return_code = MPS_FW_DIAG_ERROR_POST_FAILED;
1172 if (!pBuffer->enabled) {
1173 return (MPS_DIAG_FAILURE);
1174 }
1175
1176 /*
1177 * Clear some flags initially.
1178 */
1179 pBuffer->force_release = FALSE;
1180 pBuffer->valid_data = FALSE;
1181 pBuffer->owned_by_firmware = FALSE;
1182
1183 /*
1184 * Get a command.
1185 */
1186 cm = mps_alloc_command(sc);
1187 if (cm == NULL) {
1188 mps_printf(sc, "%s: no mps requests\n", __func__);
1189 return (MPS_DIAG_FAILURE);
1190 }
1191
1192 /*
1193 * Build the request for releasing the FW Diag Buffer and send it.
1194 */
1195 req = (MPI2_DIAG_BUFFER_POST_REQUEST *)cm->cm_req;
1196 req->Function = MPI2_FUNCTION_DIAG_BUFFER_POST;
1197 req->BufferType = pBuffer->buffer_type;
1198 req->ExtendedType = pBuffer->extended_type;
1199 req->BufferLength = pBuffer->size;
1200 for (i = 0; i < (sizeof(req->ProductSpecific) / 4); i++)
1201 req->ProductSpecific[i] = pBuffer->product_specific[i];
1202 mps_from_u64(sc->fw_diag_busaddr, &req->BufferAddress);
1203 cm->cm_data = NULL;
1204 cm->cm_length = 0;
1205 cm->cm_desc.Default.RequestFlags = MPI2_REQ_DESCRIPT_FLAGS_DEFAULT_TYPE;
1206 cm->cm_complete_data = NULL;
1207
1208 /*
1209 * Send command synchronously.
1210 */
1211 status = mps_wait_command(sc, &cm, 30, CAN_SLEEP);
1212 if (status || (cm == NULL)) {
1213 mps_printf(sc, "%s: invalid request: error %d\n", __func__,
1214 status);
1215 status = MPS_DIAG_FAILURE;
1216 goto done;
1217 }
1218
1219 /*
1220 * Process POST reply.
1221 */
1222 reply = (MPI2_DIAG_BUFFER_POST_REPLY *)cm->cm_reply;
1223 if (reply == NULL) {
1224 mps_printf(sc, "%s: reply is NULL, probably due to "
1225 "reinitialization\n", __func__);
1226 status = MPS_DIAG_FAILURE;
1227 goto done;
1228 }
1229 if ((le16toh(reply->IOCStatus) & MPI2_IOCSTATUS_MASK) !=
1230 MPI2_IOCSTATUS_SUCCESS) {
1231 status = MPS_DIAG_FAILURE;
1232 mps_dprint(sc, MPS_FAULT, "%s: post of FW Diag Buffer failed "
1233 "with IOCStatus = 0x%x, IOCLogInfo = 0x%x and "
1234 "TransferLength = 0x%x\n", __func__,
1235 le16toh(reply->IOCStatus), le32toh(reply->IOCLogInfo),
1236 le32toh(reply->TransferLength));
1237 goto done;
1238 }
1239
1240 /*
1241 * Post was successful.
1242 */
1243 pBuffer->valid_data = TRUE;
1244 pBuffer->owned_by_firmware = TRUE;
1245 *return_code = MPS_FW_DIAG_ERROR_SUCCESS;
1246 status = MPS_DIAG_SUCCESS;
1247
1248 done:
1249 if (cm != NULL)
1250 mps_free_command(sc, cm);
1251 return (status);
1252 }
1253
1254 static int
1255 mps_release_fw_diag_buffer(struct mps_softc *sc,
1256 mps_fw_diagnostic_buffer_t *pBuffer, uint32_t *return_code,
1257 uint32_t diag_type)
1258 {
1259 MPI2_DIAG_RELEASE_REQUEST *req;
1260 MPI2_DIAG_RELEASE_REPLY *reply = NULL;
1261 struct mps_command *cm = NULL;
1262 int status;
1263
1264 /*
1265 * If buffer is not enabled, just leave.
1266 */
1267 *return_code = MPS_FW_DIAG_ERROR_RELEASE_FAILED;
1268 if (!pBuffer->enabled) {
1269 mps_dprint(sc, MPS_USER, "%s: This buffer type is not "
1270 "supported by the IOC", __func__);
1271 return (MPS_DIAG_FAILURE);
1272 }
1273
1274 /*
1275 * Clear some flags initially.
1276 */
1277 pBuffer->force_release = FALSE;
1278 pBuffer->valid_data = FALSE;
1279 pBuffer->owned_by_firmware = FALSE;
1280
1281 /*
1282 * Get a command.
1283 */
1284 cm = mps_alloc_command(sc);
1285 if (cm == NULL) {
1286 mps_printf(sc, "%s: no mps requests\n", __func__);
1287 return (MPS_DIAG_FAILURE);
1288 }
1289
1290 /*
1291 * Build the request for releasing the FW Diag Buffer and send it.
1292 */
1293 req = (MPI2_DIAG_RELEASE_REQUEST *)cm->cm_req;
1294 req->Function = MPI2_FUNCTION_DIAG_RELEASE;
1295 req->BufferType = pBuffer->buffer_type;
1296 cm->cm_data = NULL;
1297 cm->cm_length = 0;
1298 cm->cm_desc.Default.RequestFlags = MPI2_REQ_DESCRIPT_FLAGS_DEFAULT_TYPE;
1299 cm->cm_complete_data = NULL;
1300
1301 /*
1302 * Send command synchronously.
1303 */
1304 status = mps_wait_command(sc, &cm, 30, CAN_SLEEP);
1305 if (status || (cm == NULL)) {
1306 mps_printf(sc, "%s: invalid request: error %d\n", __func__,
1307 status);
1308 status = MPS_DIAG_FAILURE;
1309 goto done;
1310 }
1311
1312 /*
1313 * Process RELEASE reply.
1314 */
1315 reply = (MPI2_DIAG_RELEASE_REPLY *)cm->cm_reply;
1316 if (reply == NULL) {
1317 mps_printf(sc, "%s: reply is NULL, probably due to "
1318 "reinitialization\n", __func__);
1319 status = MPS_DIAG_FAILURE;
1320 goto done;
1321 }
1322 if (((le16toh(reply->IOCStatus) & MPI2_IOCSTATUS_MASK) !=
1323 MPI2_IOCSTATUS_SUCCESS) || pBuffer->owned_by_firmware) {
1324 status = MPS_DIAG_FAILURE;
1325 mps_dprint(sc, MPS_FAULT, "%s: release of FW Diag Buffer "
1326 "failed with IOCStatus = 0x%x and IOCLogInfo = 0x%x\n",
1327 __func__, le16toh(reply->IOCStatus),
1328 le32toh(reply->IOCLogInfo));
1329 goto done;
1330 }
1331
1332 /*
1333 * Release was successful.
1334 */
1335 *return_code = MPS_FW_DIAG_ERROR_SUCCESS;
1336 status = MPS_DIAG_SUCCESS;
1337
1338 /*
1339 * If this was for an UNREGISTER diag type command, clear the unique ID.
1340 */
1341 if (diag_type == MPS_FW_DIAG_TYPE_UNREGISTER) {
1342 pBuffer->unique_id = MPS_FW_DIAG_INVALID_UID;
1343 }
1344
1345 done:
1346 if (cm != NULL)
1347 mps_free_command(sc, cm);
1348
1349 return (status);
1350 }
1351
1352 static int
1353 mps_diag_register(struct mps_softc *sc, mps_fw_diag_register_t *diag_register,
1354 uint32_t *return_code)
1355 {
1356 mps_fw_diagnostic_buffer_t *pBuffer;
1357 struct mps_busdma_context *ctx;
1358 uint8_t extended_type, buffer_type, i;
1359 uint32_t buffer_size;
1360 uint32_t unique_id;
1361 int status;
1362 int error;
1363
1364 extended_type = diag_register->ExtendedType;
1365 buffer_type = diag_register->BufferType;
1366 buffer_size = diag_register->RequestedBufferSize;
1367 unique_id = diag_register->UniqueId;
1368 ctx = NULL;
1369 error = 0;
1370
1371 /*
1372 * Check for valid buffer type
1373 */
1374 if (buffer_type >= MPI2_DIAG_BUF_TYPE_COUNT) {
1375 *return_code = MPS_FW_DIAG_ERROR_INVALID_PARAMETER;
1376 return (MPS_DIAG_FAILURE);
1377 }
1378
1379 /*
1380 * Get the current buffer and look up the unique ID. The unique ID
1381 * should not be found. If it is, the ID is already in use.
1382 */
1383 i = mps_get_fw_diag_buffer_number(sc, unique_id);
1384 pBuffer = &sc->fw_diag_buffer_list[buffer_type];
1385 if (i != MPS_FW_DIAGNOSTIC_UID_NOT_FOUND) {
1386 *return_code = MPS_FW_DIAG_ERROR_INVALID_UID;
1387 return (MPS_DIAG_FAILURE);
1388 }
1389
1390 /*
1391 * The buffer's unique ID should not be registered yet, and the given
1392 * unique ID cannot be 0.
1393 */
1394 if ((pBuffer->unique_id != MPS_FW_DIAG_INVALID_UID) ||
1395 (unique_id == MPS_FW_DIAG_INVALID_UID)) {
1396 *return_code = MPS_FW_DIAG_ERROR_INVALID_UID;
1397 return (MPS_DIAG_FAILURE);
1398 }
1399
1400 /*
1401 * If this buffer is already posted as immediate, just change owner.
1402 */
1403 if (pBuffer->immediate && pBuffer->owned_by_firmware &&
1404 (pBuffer->unique_id == MPS_FW_DIAG_INVALID_UID)) {
1405 pBuffer->immediate = FALSE;
1406 pBuffer->unique_id = unique_id;
1407 return (MPS_DIAG_SUCCESS);
1408 }
1409
1410 /*
1411 * Post a new buffer after checking if it's enabled. The DMA buffer
1412 * that is allocated will be contiguous (nsegments = 1).
1413 */
1414 if (!pBuffer->enabled) {
1415 *return_code = MPS_FW_DIAG_ERROR_NO_BUFFER;
1416 return (MPS_DIAG_FAILURE);
1417 }
1418 if (bus_dma_tag_create( sc->mps_parent_dmat, /* parent */
1419 1, 0, /* algnmnt, boundary */
1420 BUS_SPACE_MAXADDR_32BIT,/* lowaddr */
1421 BUS_SPACE_MAXADDR, /* highaddr */
1422 NULL, NULL, /* filter, filterarg */
1423 buffer_size, /* maxsize */
1424 1, /* nsegments */
1425 buffer_size, /* maxsegsize */
1426 0, /* flags */
1427 NULL, NULL, /* lockfunc, lockarg */
1428 &sc->fw_diag_dmat)) {
1429 mps_dprint(sc, MPS_ERROR,
1430 "Cannot allocate FW diag buffer DMA tag\n");
1431 *return_code = MPS_FW_DIAG_ERROR_NO_BUFFER;
1432 status = MPS_DIAG_FAILURE;
1433 goto bailout;
1434 }
1435 if (bus_dmamem_alloc(sc->fw_diag_dmat, (void **)&sc->fw_diag_buffer,
1436 BUS_DMA_NOWAIT, &sc->fw_diag_map)) {
1437 mps_dprint(sc, MPS_ERROR,
1438 "Cannot allocate FW diag buffer memory\n");
1439 *return_code = MPS_FW_DIAG_ERROR_NO_BUFFER;
1440 status = MPS_DIAG_FAILURE;
1441 goto bailout;
1442 }
1443 bzero(sc->fw_diag_buffer, buffer_size);
1444
1445 ctx = malloc(sizeof(*ctx), M_MPSUSER, M_WAITOK | M_ZERO);
1446 if (ctx == NULL) {
1447 device_printf(sc->mps_dev, "%s: context malloc failed\n",
1448 __func__);
1449 *return_code = MPS_FW_DIAG_ERROR_NO_BUFFER;
1450 status = MPS_DIAG_FAILURE;
1451 goto bailout;
1452 }
1453 ctx->addr = &sc->fw_diag_busaddr;
1454 ctx->buffer_dmat = sc->fw_diag_dmat;
1455 ctx->buffer_dmamap = sc->fw_diag_map;
1456 ctx->softc = sc;
1457 error = bus_dmamap_load(sc->fw_diag_dmat, sc->fw_diag_map,
1458 sc->fw_diag_buffer, buffer_size, mps_memaddr_wait_cb,
1459 ctx, 0);
1460
1461 if (error == EINPROGRESS) {
1462
1463 /* XXX KDM */
1464 device_printf(sc->mps_dev, "%s: Deferred bus_dmamap_load\n",
1465 __func__);
1466 /*
1467 * Wait for the load to complete. If we're interrupted,
1468 * bail out.
1469 */
1470 mps_lock(sc);
1471 if (ctx->completed == 0) {
1472 error = msleep(ctx, &sc->mps_mtx, PCATCH, "mpswait", 0);
1473 if (error != 0) {
1474 /*
1475 * We got an error from msleep(9). This is
1476 * most likely due to a signal. Tell
1477 * mpr_memaddr_wait_cb() that we've abandoned
1478 * the context, so it needs to clean up when
1479 * it is called.
1480 */
1481 ctx->abandoned = 1;
1482
1483 /* The callback will free this memory */
1484 ctx = NULL;
1485 mps_unlock(sc);
1486
1487 device_printf(sc->mps_dev, "Cannot "
1488 "bus_dmamap_load FW diag buffer, error = "
1489 "%d returned from msleep\n", error);
1490 *return_code = MPS_FW_DIAG_ERROR_NO_BUFFER;
1491 status = MPS_DIAG_FAILURE;
1492 goto bailout;
1493 }
1494 }
1495 mps_unlock(sc);
1496 }
1497
1498 if ((error != 0) || (ctx->error != 0)) {
1499 device_printf(sc->mps_dev, "Cannot bus_dmamap_load FW diag "
1500 "buffer, %serror = %d\n", error ? "" : "callback ",
1501 error ? error : ctx->error);
1502 *return_code = MPS_FW_DIAG_ERROR_NO_BUFFER;
1503 status = MPS_DIAG_FAILURE;
1504 goto bailout;
1505 }
1506
1507 bus_dmamap_sync(sc->fw_diag_dmat, sc->fw_diag_map, BUS_DMASYNC_PREREAD);
1508
1509 pBuffer->size = buffer_size;
1510
1511 /*
1512 * Copy the given info to the diag buffer and post the buffer.
1513 */
1514 pBuffer->buffer_type = buffer_type;
1515 pBuffer->immediate = FALSE;
1516 if (buffer_type == MPI2_DIAG_BUF_TYPE_TRACE) {
1517 for (i = 0; i < (sizeof (pBuffer->product_specific) / 4);
1518 i++) {
1519 pBuffer->product_specific[i] =
1520 diag_register->ProductSpecific[i];
1521 }
1522 }
1523 pBuffer->extended_type = extended_type;
1524 pBuffer->unique_id = unique_id;
1525 status = mps_post_fw_diag_buffer(sc, pBuffer, return_code);
1526
1527 bailout:
1528 /*
1529 * In case there was a failure, free the DMA buffer.
1530 */
1531 if (status == MPS_DIAG_FAILURE) {
1532 if (sc->fw_diag_busaddr != 0) {
1533 bus_dmamap_unload(sc->fw_diag_dmat, sc->fw_diag_map);
1534 sc->fw_diag_busaddr = 0;
1535 }
1536 if (sc->fw_diag_buffer != NULL) {
1537 bus_dmamem_free(sc->fw_diag_dmat, sc->fw_diag_buffer,
1538 sc->fw_diag_map);
1539 sc->fw_diag_buffer = NULL;
1540 }
1541 if (sc->fw_diag_dmat != NULL) {
1542 bus_dma_tag_destroy(sc->fw_diag_dmat);
1543 sc->fw_diag_dmat = NULL;
1544 }
1545 }
1546
1547 if (ctx != NULL)
1548 free(ctx, M_MPSUSER);
1549
1550 return (status);
1551 }
1552
1553 static int
1554 mps_diag_unregister(struct mps_softc *sc,
1555 mps_fw_diag_unregister_t *diag_unregister, uint32_t *return_code)
1556 {
1557 mps_fw_diagnostic_buffer_t *pBuffer;
1558 uint8_t i;
1559 uint32_t unique_id;
1560 int status;
1561
1562 unique_id = diag_unregister->UniqueId;
1563
1564 /*
1565 * Get the current buffer and look up the unique ID. The unique ID
1566 * should be there.
1567 */
1568 i = mps_get_fw_diag_buffer_number(sc, unique_id);
1569 if (i == MPS_FW_DIAGNOSTIC_UID_NOT_FOUND) {
1570 *return_code = MPS_FW_DIAG_ERROR_INVALID_UID;
1571 return (MPS_DIAG_FAILURE);
1572 }
1573
1574 pBuffer = &sc->fw_diag_buffer_list[i];
1575
1576 /*
1577 * Try to release the buffer from FW before freeing it. If release
1578 * fails, don't free the DMA buffer in case FW tries to access it
1579 * later. If buffer is not owned by firmware, can't release it.
1580 */
1581 if (!pBuffer->owned_by_firmware) {
1582 status = MPS_DIAG_SUCCESS;
1583 } else {
1584 status = mps_release_fw_diag_buffer(sc, pBuffer, return_code,
1585 MPS_FW_DIAG_TYPE_UNREGISTER);
1586 }
1587
1588 /*
1589 * At this point, return the current status no matter what happens with
1590 * the DMA buffer.
1591 */
1592 pBuffer->unique_id = MPS_FW_DIAG_INVALID_UID;
1593 if (status == MPS_DIAG_SUCCESS) {
1594 if (sc->fw_diag_busaddr != 0) {
1595 bus_dmamap_unload(sc->fw_diag_dmat, sc->fw_diag_map);
1596 sc->fw_diag_busaddr = 0;
1597 }
1598 if (sc->fw_diag_buffer != NULL) {
1599 bus_dmamem_free(sc->fw_diag_dmat, sc->fw_diag_buffer,
1600 sc->fw_diag_map);
1601 sc->fw_diag_buffer = NULL;
1602 }
1603 if (sc->fw_diag_dmat != NULL) {
1604 bus_dma_tag_destroy(sc->fw_diag_dmat);
1605 sc->fw_diag_dmat = NULL;
1606 }
1607 }
1608
1609 return (status);
1610 }
1611
1612 static int
1613 mps_diag_query(struct mps_softc *sc, mps_fw_diag_query_t *diag_query,
1614 uint32_t *return_code)
1615 {
1616 mps_fw_diagnostic_buffer_t *pBuffer;
1617 uint8_t i;
1618 uint32_t unique_id;
1619
1620 unique_id = diag_query->UniqueId;
1621
1622 /*
1623 * If ID is valid, query on ID.
1624 * If ID is invalid, query on buffer type.
1625 */
1626 if (unique_id == MPS_FW_DIAG_INVALID_UID) {
1627 i = diag_query->BufferType;
1628 if (i >= MPI2_DIAG_BUF_TYPE_COUNT) {
1629 *return_code = MPS_FW_DIAG_ERROR_INVALID_UID;
1630 return (MPS_DIAG_FAILURE);
1631 }
1632 } else {
1633 i = mps_get_fw_diag_buffer_number(sc, unique_id);
1634 if (i == MPS_FW_DIAGNOSTIC_UID_NOT_FOUND) {
1635 *return_code = MPS_FW_DIAG_ERROR_INVALID_UID;
1636 return (MPS_DIAG_FAILURE);
1637 }
1638 }
1639
1640 /*
1641 * Fill query structure with the diag buffer info.
1642 */
1643 pBuffer = &sc->fw_diag_buffer_list[i];
1644 diag_query->BufferType = pBuffer->buffer_type;
1645 diag_query->ExtendedType = pBuffer->extended_type;
1646 if (diag_query->BufferType == MPI2_DIAG_BUF_TYPE_TRACE) {
1647 for (i = 0; i < (sizeof(diag_query->ProductSpecific) / 4);
1648 i++) {
1649 diag_query->ProductSpecific[i] =
1650 pBuffer->product_specific[i];
1651 }
1652 }
1653 diag_query->TotalBufferSize = pBuffer->size;
1654 diag_query->DriverAddedBufferSize = 0;
1655 diag_query->UniqueId = pBuffer->unique_id;
1656 diag_query->ApplicationFlags = 0;
1657 diag_query->DiagnosticFlags = 0;
1658
1659 /*
1660 * Set/Clear application flags
1661 */
1662 if (pBuffer->immediate) {
1663 diag_query->ApplicationFlags &= ~MPS_FW_DIAG_FLAG_APP_OWNED;
1664 } else {
1665 diag_query->ApplicationFlags |= MPS_FW_DIAG_FLAG_APP_OWNED;
1666 }
1667 if (pBuffer->valid_data || pBuffer->owned_by_firmware) {
1668 diag_query->ApplicationFlags |= MPS_FW_DIAG_FLAG_BUFFER_VALID;
1669 } else {
1670 diag_query->ApplicationFlags &= ~MPS_FW_DIAG_FLAG_BUFFER_VALID;
1671 }
1672 if (pBuffer->owned_by_firmware) {
1673 diag_query->ApplicationFlags |=
1674 MPS_FW_DIAG_FLAG_FW_BUFFER_ACCESS;
1675 } else {
1676 diag_query->ApplicationFlags &=
1677 ~MPS_FW_DIAG_FLAG_FW_BUFFER_ACCESS;
1678 }
1679
1680 return (MPS_DIAG_SUCCESS);
1681 }
1682
1683 static int
1684 mps_diag_read_buffer(struct mps_softc *sc,
1685 mps_diag_read_buffer_t *diag_read_buffer, uint8_t *ioctl_buf,
1686 uint32_t *return_code)
1687 {
1688 mps_fw_diagnostic_buffer_t *pBuffer;
1689 uint8_t i, *pData;
1690 uint32_t unique_id;
1691 int status;
1692
1693 unique_id = diag_read_buffer->UniqueId;
1694
1695 /*
1696 * Get the current buffer and look up the unique ID. The unique ID
1697 * should be there.
1698 */
1699 i = mps_get_fw_diag_buffer_number(sc, unique_id);
1700 if (i == MPS_FW_DIAGNOSTIC_UID_NOT_FOUND) {
1701 *return_code = MPS_FW_DIAG_ERROR_INVALID_UID;
1702 return (MPS_DIAG_FAILURE);
1703 }
1704
1705 pBuffer = &sc->fw_diag_buffer_list[i];
1706
1707 /*
1708 * Make sure requested read is within limits
1709 */
1710 if (diag_read_buffer->StartingOffset + diag_read_buffer->BytesToRead >
1711 pBuffer->size) {
1712 *return_code = MPS_FW_DIAG_ERROR_INVALID_PARAMETER;
1713 return (MPS_DIAG_FAILURE);
1714 }
1715
1716 /* Sync the DMA map before we copy to userland. */
1717 bus_dmamap_sync(sc->fw_diag_dmat, sc->fw_diag_map,
1718 BUS_DMASYNC_POSTREAD);
1719
1720 /*
1721 * Copy the requested data from DMA to the diag_read_buffer. The DMA
1722 * buffer that was allocated is one contiguous buffer.
1723 */
1724 pData = (uint8_t *)(sc->fw_diag_buffer +
1725 diag_read_buffer->StartingOffset);
1726 if (copyout(pData, ioctl_buf, diag_read_buffer->BytesToRead) != 0)
1727 return (MPS_DIAG_FAILURE);
1728 diag_read_buffer->Status = 0;
1729
1730 /*
1731 * Set or clear the Force Release flag.
1732 */
1733 if (pBuffer->force_release) {
1734 diag_read_buffer->Flags |= MPS_FW_DIAG_FLAG_FORCE_RELEASE;
1735 } else {
1736 diag_read_buffer->Flags &= ~MPS_FW_DIAG_FLAG_FORCE_RELEASE;
1737 }
1738
1739 /*
1740 * If buffer is to be reregistered, make sure it's not already owned by
1741 * firmware first.
1742 */
1743 status = MPS_DIAG_SUCCESS;
1744 if (!pBuffer->owned_by_firmware) {
1745 if (diag_read_buffer->Flags & MPS_FW_DIAG_FLAG_REREGISTER) {
1746 status = mps_post_fw_diag_buffer(sc, pBuffer,
1747 return_code);
1748 }
1749 }
1750
1751 return (status);
1752 }
1753
1754 static int
1755 mps_diag_release(struct mps_softc *sc, mps_fw_diag_release_t *diag_release,
1756 uint32_t *return_code)
1757 {
1758 mps_fw_diagnostic_buffer_t *pBuffer;
1759 uint8_t i;
1760 uint32_t unique_id;
1761 int status;
1762
1763 unique_id = diag_release->UniqueId;
1764
1765 /*
1766 * Get the current buffer and look up the unique ID. The unique ID
1767 * should be there.
1768 */
1769 i = mps_get_fw_diag_buffer_number(sc, unique_id);
1770 if (i == MPS_FW_DIAGNOSTIC_UID_NOT_FOUND) {
1771 *return_code = MPS_FW_DIAG_ERROR_INVALID_UID;
1772 return (MPS_DIAG_FAILURE);
1773 }
1774
1775 pBuffer = &sc->fw_diag_buffer_list[i];
1776
1777 /*
1778 * If buffer is not owned by firmware, it's already been released.
1779 */
1780 if (!pBuffer->owned_by_firmware) {
1781 *return_code = MPS_FW_DIAG_ERROR_ALREADY_RELEASED;
1782 return (MPS_DIAG_FAILURE);
1783 }
1784
1785 /*
1786 * Release the buffer.
1787 */
1788 status = mps_release_fw_diag_buffer(sc, pBuffer, return_code,
1789 MPS_FW_DIAG_TYPE_RELEASE);
1790 return (status);
1791 }
1792
1793 static int
1794 mps_do_diag_action(struct mps_softc *sc, uint32_t action, uint8_t *diag_action,
1795 uint32_t length, uint32_t *return_code)
1796 {
1797 mps_fw_diag_register_t diag_register;
1798 mps_fw_diag_unregister_t diag_unregister;
1799 mps_fw_diag_query_t diag_query;
1800 mps_diag_read_buffer_t diag_read_buffer;
1801 mps_fw_diag_release_t diag_release;
1802 int status = MPS_DIAG_SUCCESS;
1803 uint32_t original_return_code;
1804
1805 original_return_code = *return_code;
1806 *return_code = MPS_FW_DIAG_ERROR_SUCCESS;
1807
1808 switch (action) {
1809 case MPS_FW_DIAG_TYPE_REGISTER:
1810 if (!length) {
1811 *return_code =
1812 MPS_FW_DIAG_ERROR_INVALID_PARAMETER;
1813 status = MPS_DIAG_FAILURE;
1814 break;
1815 }
1816 if (copyin(diag_action, &diag_register,
1817 sizeof(diag_register)) != 0)
1818 return (MPS_DIAG_FAILURE);
1819 status = mps_diag_register(sc, &diag_register,
1820 return_code);
1821 break;
1822
1823 case MPS_FW_DIAG_TYPE_UNREGISTER:
1824 if (length < sizeof(diag_unregister)) {
1825 *return_code =
1826 MPS_FW_DIAG_ERROR_INVALID_PARAMETER;
1827 status = MPS_DIAG_FAILURE;
1828 break;
1829 }
1830 if (copyin(diag_action, &diag_unregister,
1831 sizeof(diag_unregister)) != 0)
1832 return (MPS_DIAG_FAILURE);
1833 status = mps_diag_unregister(sc, &diag_unregister,
1834 return_code);
1835 break;
1836
1837 case MPS_FW_DIAG_TYPE_QUERY:
1838 if (length < sizeof (diag_query)) {
1839 *return_code =
1840 MPS_FW_DIAG_ERROR_INVALID_PARAMETER;
1841 status = MPS_DIAG_FAILURE;
1842 break;
1843 }
1844 if (copyin(diag_action, &diag_query, sizeof(diag_query))
1845 != 0)
1846 return (MPS_DIAG_FAILURE);
1847 status = mps_diag_query(sc, &diag_query, return_code);
1848 if (status == MPS_DIAG_SUCCESS)
1849 if (copyout(&diag_query, diag_action,
1850 sizeof (diag_query)) != 0)
1851 return (MPS_DIAG_FAILURE);
1852 break;
1853
1854 case MPS_FW_DIAG_TYPE_READ_BUFFER:
1855 if (copyin(diag_action, &diag_read_buffer,
1856 sizeof(diag_read_buffer)) != 0)
1857 return (MPS_DIAG_FAILURE);
1858 if (length < diag_read_buffer.BytesToRead) {
1859 *return_code =
1860 MPS_FW_DIAG_ERROR_INVALID_PARAMETER;
1861 status = MPS_DIAG_FAILURE;
1862 break;
1863 }
1864 status = mps_diag_read_buffer(sc, &diag_read_buffer,
1865 PTRIN(diag_read_buffer.PtrDataBuffer),
1866 return_code);
1867 if (status == MPS_DIAG_SUCCESS) {
1868 if (copyout(&diag_read_buffer, diag_action,
1869 sizeof(diag_read_buffer) -
1870 sizeof(diag_read_buffer.PtrDataBuffer)) !=
1871 0)
1872 return (MPS_DIAG_FAILURE);
1873 }
1874 break;
1875
1876 case MPS_FW_DIAG_TYPE_RELEASE:
1877 if (length < sizeof(diag_release)) {
1878 *return_code =
1879 MPS_FW_DIAG_ERROR_INVALID_PARAMETER;
1880 status = MPS_DIAG_FAILURE;
1881 break;
1882 }
1883 if (copyin(diag_action, &diag_release,
1884 sizeof(diag_release)) != 0)
1885 return (MPS_DIAG_FAILURE);
1886 status = mps_diag_release(sc, &diag_release,
1887 return_code);
1888 break;
1889
1890 default:
1891 *return_code = MPS_FW_DIAG_ERROR_INVALID_PARAMETER;
1892 status = MPS_DIAG_FAILURE;
1893 break;
1894 }
1895
1896 if ((status == MPS_DIAG_FAILURE) &&
1897 (original_return_code == MPS_FW_DIAG_NEW) &&
1898 (*return_code != MPS_FW_DIAG_ERROR_SUCCESS))
1899 status = MPS_DIAG_SUCCESS;
1900
1901 return (status);
1902 }
1903
1904 static int
1905 mps_user_diag_action(struct mps_softc *sc, mps_diag_action_t *data)
1906 {
1907 int status;
1908
1909 /*
1910 * Only allow one diag action at one time.
1911 */
1912 if (sc->mps_flags & MPS_FLAGS_BUSY) {
1913 mps_dprint(sc, MPS_USER, "%s: Only one FW diag command "
1914 "allowed at a single time.", __func__);
1915 return (EBUSY);
1916 }
1917 sc->mps_flags |= MPS_FLAGS_BUSY;
1918
1919 /*
1920 * Send diag action request
1921 */
1922 if (data->Action == MPS_FW_DIAG_TYPE_REGISTER ||
1923 data->Action == MPS_FW_DIAG_TYPE_UNREGISTER ||
1924 data->Action == MPS_FW_DIAG_TYPE_QUERY ||
1925 data->Action == MPS_FW_DIAG_TYPE_READ_BUFFER ||
1926 data->Action == MPS_FW_DIAG_TYPE_RELEASE) {
1927 status = mps_do_diag_action(sc, data->Action,
1928 PTRIN(data->PtrDiagAction), data->Length,
1929 &data->ReturnCode);
1930 } else
1931 status = EINVAL;
1932
1933 sc->mps_flags &= ~MPS_FLAGS_BUSY;
1934 return (status);
1935 }
1936
1937 /*
1938 * Copy the event recording mask and the event queue size out. For
1939 * clarification, the event recording mask (events_to_record) is not the same
1940 * thing as the event mask (event_mask). events_to_record has a bit set for
1941 * every event type that is to be recorded by the driver, and event_mask has a
1942 * bit cleared for every event that is allowed into the driver from the IOC.
1943 * They really have nothing to do with each other.
1944 */
1945 static void
1946 mps_user_event_query(struct mps_softc *sc, mps_event_query_t *data)
1947 {
1948 uint8_t i;
1949
1950 mps_lock(sc);
1951 data->Entries = MPS_EVENT_QUEUE_SIZE;
1952
1953 for (i = 0; i < 4; i++) {
1954 data->Types[i] = sc->events_to_record[i];
1955 }
1956 mps_unlock(sc);
1957 }
1958
1959 /*
1960 * Set the driver's event mask according to what's been given. See
1961 * mps_user_event_query for explanation of the event recording mask and the IOC
1962 * event mask. It's the app's responsibility to enable event logging by setting
1963 * the bits in events_to_record. Initially, no events will be logged.
1964 */
1965 static void
1966 mps_user_event_enable(struct mps_softc *sc, mps_event_enable_t *data)
1967 {
1968 uint8_t i;
1969
1970 mps_lock(sc);
1971 for (i = 0; i < 4; i++) {
1972 sc->events_to_record[i] = data->Types[i];
1973 }
1974 mps_unlock(sc);
1975 }
1976
1977 /*
1978 * Copy out the events that have been recorded, up to the max events allowed.
1979 */
1980 static int
1981 mps_user_event_report(struct mps_softc *sc, mps_event_report_t *data)
1982 {
1983 int status = 0;
1984 uint32_t size;
1985
1986 mps_lock(sc);
1987 size = data->Size;
1988 if ((size >= sizeof(sc->recorded_events)) && (status == 0)) {
1989 mps_unlock(sc);
1990 if (copyout((void *)sc->recorded_events,
1991 PTRIN(data->PtrEvents), size) != 0)
1992 status = EFAULT;
1993 mps_lock(sc);
1994 } else {
1995 /*
1996 * data->Size value is not large enough to copy event data.
1997 */
1998 status = EFAULT;
1999 }
2000
2001 /*
2002 * Change size value to match the number of bytes that were copied.
2003 */
2004 if (status == 0)
2005 data->Size = sizeof(sc->recorded_events);
2006 mps_unlock(sc);
2007
2008 return (status);
2009 }
2010
2011 /*
2012 * Record events into the driver from the IOC if they are not masked.
2013 */
2014 void
2015 mpssas_record_event(struct mps_softc *sc,
2016 MPI2_EVENT_NOTIFICATION_REPLY *event_reply)
2017 {
2018 uint32_t event;
2019 int i, j;
2020 uint16_t event_data_len;
2021 boolean_t sendAEN = FALSE;
2022
2023 event = event_reply->Event;
2024
2025 /*
2026 * Generate a system event to let anyone who cares know that a
2027 * LOG_ENTRY_ADDED event has occurred. This is sent no matter what the
2028 * event mask is set to.
2029 */
2030 if (event == MPI2_EVENT_LOG_ENTRY_ADDED) {
2031 sendAEN = TRUE;
2032 }
2033
2034 /*
2035 * Record the event only if its corresponding bit is set in
2036 * events_to_record. event_index is the index into recorded_events and
2037 * event_number is the overall number of an event being recorded since
2038 * start-of-day. event_index will roll over; event_number will never
2039 * roll over.
2040 */
2041 i = (uint8_t)(event / 32);
2042 j = (uint8_t)(event % 32);
2043 if ((i < 4) && ((1 << j) & sc->events_to_record[i])) {
2044 i = sc->event_index;
2045 sc->recorded_events[i].Type = event;
2046 sc->recorded_events[i].Number = ++sc->event_number;
2047 bzero(sc->recorded_events[i].Data, MPS_MAX_EVENT_DATA_LENGTH *
2048 4);
2049 event_data_len = event_reply->EventDataLength;
2050
2051 if (event_data_len > 0) {
2052 /*
2053 * Limit data to size in m_event entry
2054 */
2055 if (event_data_len > MPS_MAX_EVENT_DATA_LENGTH) {
2056 event_data_len = MPS_MAX_EVENT_DATA_LENGTH;
2057 }
2058 for (j = 0; j < event_data_len; j++) {
2059 sc->recorded_events[i].Data[j] =
2060 event_reply->EventData[j];
2061 }
2062
2063 /*
2064 * check for index wrap-around
2065 */
2066 if (++i == MPS_EVENT_QUEUE_SIZE) {
2067 i = 0;
2068 }
2069 sc->event_index = (uint8_t)i;
2070
2071 /*
2072 * Set flag to send the event.
2073 */
2074 sendAEN = TRUE;
2075 }
2076 }
2077
2078 /*
2079 * Generate a system event if flag is set to let anyone who cares know
2080 * that an event has occurred.
2081 */
2082 if (sendAEN) {
2083 //SLM-how to send a system event (see kqueue, kevent)
2084 // (void) ddi_log_sysevent(mpt->m_dip, DDI_VENDOR_LSI, "MPT_SAS",
2085 // "SAS", NULL, NULL, DDI_NOSLEEP);
2086 }
2087 }
2088
2089 static int
2090 mps_user_reg_access(struct mps_softc *sc, mps_reg_access_t *data)
2091 {
2092 int status = 0;
2093
2094 switch (data->Command) {
2095 /*
2096 * IO access is not supported.
2097 */
2098 case REG_IO_READ:
2099 case REG_IO_WRITE:
2100 mps_dprint(sc, MPS_USER, "IO access is not supported. "
2101 "Use memory access.");
2102 status = EINVAL;
2103 break;
2104
2105 case REG_MEM_READ:
2106 data->RegData = mps_regread(sc, data->RegOffset);
2107 break;
2108
2109 case REG_MEM_WRITE:
2110 mps_regwrite(sc, data->RegOffset, data->RegData);
2111 break;
2112
2113 default:
2114 status = EINVAL;
2115 break;
2116 }
2117
2118 return (status);
2119 }
2120
2121 static int
2122 mps_user_btdh(struct mps_softc *sc, mps_btdh_mapping_t *data)
2123 {
2124 uint8_t bt2dh = FALSE;
2125 uint8_t dh2bt = FALSE;
2126 uint16_t dev_handle, bus, target;
2127
2128 bus = data->Bus;
2129 target = data->TargetID;
2130 dev_handle = data->DevHandle;
2131
2132 /*
2133 * When DevHandle is 0xFFFF and Bus/Target are not 0xFFFF, use Bus/
2134 * Target to get DevHandle. When Bus/Target are 0xFFFF and DevHandle is
2135 * not 0xFFFF, use DevHandle to get Bus/Target. Anything else is
2136 * invalid.
2137 */
2138 if ((bus == 0xFFFF) && (target == 0xFFFF) && (dev_handle != 0xFFFF))
2139 dh2bt = TRUE;
2140 if ((dev_handle == 0xFFFF) && (bus != 0xFFFF) && (target != 0xFFFF))
2141 bt2dh = TRUE;
2142 if (!dh2bt && !bt2dh)
2143 return (EINVAL);
2144
2145 /*
2146 * Only handle bus of 0. Make sure target is within range.
2147 */
2148 if (bt2dh) {
2149 if (bus != 0)
2150 return (EINVAL);
2151
2152 if (target > sc->max_devices) {
2153 mps_dprint(sc, MPS_FAULT, "Target ID is out of range "
2154 "for Bus/Target to DevHandle mapping.");
2155 return (EINVAL);
2156 }
2157 dev_handle = sc->mapping_table[target].dev_handle;
2158 if (dev_handle)
2159 data->DevHandle = dev_handle;
2160 } else {
2161 bus = 0;
2162 target = mps_mapping_get_tid_from_handle(sc, dev_handle);
2163 data->Bus = bus;
2164 data->TargetID = target;
2165 }
2166
2167 return (0);
2168 }
2169
2170 static int
2171 mps_ioctl(struct cdev *dev, u_long cmd, void *arg, int flag,
2172 struct thread *td)
2173 {
2174 struct mps_softc *sc;
2175 struct mps_cfg_page_req *page_req;
2176 struct mps_ext_cfg_page_req *ext_page_req;
2177 void *mps_page;
2178 int error, msleep_ret;
2179
2180 mps_page = NULL;
2181 sc = dev->si_drv1;
2182 page_req = (void *)arg;
2183 ext_page_req = (void *)arg;
2184
2185 switch (cmd) {
2186 case MPSIO_READ_CFG_HEADER:
2187 mps_lock(sc);
2188 error = mps_user_read_cfg_header(sc, page_req);
2189 mps_unlock(sc);
2190 break;
2191 case MPSIO_READ_CFG_PAGE:
2192 mps_page = malloc(page_req->len, M_MPSUSER, M_WAITOK | M_ZERO);
2193 error = copyin(page_req->buf, mps_page,
2194 sizeof(MPI2_CONFIG_PAGE_HEADER));
2195 if (error)
2196 break;
2197 mps_lock(sc);
2198 error = mps_user_read_cfg_page(sc, page_req, mps_page);
2199 mps_unlock(sc);
2200 if (error)
2201 break;
2202 error = copyout(mps_page, page_req->buf, page_req->len);
2203 break;
2204 case MPSIO_READ_EXT_CFG_HEADER:
2205 mps_lock(sc);
2206 error = mps_user_read_extcfg_header(sc, ext_page_req);
2207 mps_unlock(sc);
2208 break;
2209 case MPSIO_READ_EXT_CFG_PAGE:
2210 mps_page = malloc(ext_page_req->len, M_MPSUSER, M_WAITOK|M_ZERO);
2211 error = copyin(ext_page_req->buf, mps_page,
2212 sizeof(MPI2_CONFIG_EXTENDED_PAGE_HEADER));
2213 if (error)
2214 break;
2215 mps_lock(sc);
2216 error = mps_user_read_extcfg_page(sc, ext_page_req, mps_page);
2217 mps_unlock(sc);
2218 if (error)
2219 break;
2220 error = copyout(mps_page, ext_page_req->buf, ext_page_req->len);
2221 break;
2222 case MPSIO_WRITE_CFG_PAGE:
2223 mps_page = malloc(page_req->len, M_MPSUSER, M_WAITOK|M_ZERO);
2224 error = copyin(page_req->buf, mps_page, page_req->len);
2225 if (error)
2226 break;
2227 mps_lock(sc);
2228 error = mps_user_write_cfg_page(sc, page_req, mps_page);
2229 mps_unlock(sc);
2230 break;
2231 case MPSIO_MPS_COMMAND:
2232 error = mps_user_command(sc, (struct mps_usr_command *)arg);
2233 break;
2234 case MPTIOCTL_PASS_THRU:
2235 /*
2236 * The user has requested to pass through a command to be
2237 * executed by the MPT firmware. Call our routine which does
2238 * this. Only allow one passthru IOCTL at one time.
2239 */
2240 error = mps_user_pass_thru(sc, (mps_pass_thru_t *)arg);
2241 break;
2242 case MPTIOCTL_GET_ADAPTER_DATA:
2243 /*
2244 * The user has requested to read adapter data. Call our
2245 * routine which does this.
2246 */
2247 error = 0;
2248 mps_user_get_adapter_data(sc, (mps_adapter_data_t *)arg);
2249 break;
2250 case MPTIOCTL_GET_PCI_INFO:
2251 /*
2252 * The user has requested to read pci info. Call
2253 * our routine which does this.
2254 */
2255 mps_lock(sc);
2256 error = 0;
2257 mps_user_read_pci_info(sc, (mps_pci_info_t *)arg);
2258 mps_unlock(sc);
2259 break;
2260 case MPTIOCTL_RESET_ADAPTER:
2261 mps_lock(sc);
2262 sc->port_enable_complete = 0;
2263 uint32_t reinit_start = time_uptime;
2264 error = mps_reinit(sc);
2265 /* Sleep for 300 second. */
2266 msleep_ret = msleep(&sc->port_enable_complete, &sc->mps_mtx, PRIBIO,
2267 "mps_porten", 300 * hz);
2268 mps_unlock(sc);
2269 if (msleep_ret)
2270 printf("Port Enable did not complete after Diag "
2271 "Reset msleep error %d.\n", msleep_ret);
2272 else
2273 mps_dprint(sc, MPS_USER,
2274 "Hard Reset with Port Enable completed in %d seconds.\n",
2275 (uint32_t) (time_uptime - reinit_start));
2276 break;
2277 case MPTIOCTL_DIAG_ACTION:
2278 /*
2279 * The user has done a diag buffer action. Call our routine
2280 * which does this. Only allow one diag action at one time.
2281 */
2282 mps_lock(sc);
2283 error = mps_user_diag_action(sc, (mps_diag_action_t *)arg);
2284 mps_unlock(sc);
2285 break;
2286 case MPTIOCTL_EVENT_QUERY:
2287 /*
2288 * The user has done an event query. Call our routine which does
2289 * this.
2290 */
2291 error = 0;
2292 mps_user_event_query(sc, (mps_event_query_t *)arg);
2293 break;
2294 case MPTIOCTL_EVENT_ENABLE:
2295 /*
2296 * The user has done an event enable. Call our routine which
2297 * does this.
2298 */
2299 error = 0;
2300 mps_user_event_enable(sc, (mps_event_enable_t *)arg);
2301 break;
2302 case MPTIOCTL_EVENT_REPORT:
2303 /*
2304 * The user has done an event report. Call our routine which
2305 * does this.
2306 */
2307 error = mps_user_event_report(sc, (mps_event_report_t *)arg);
2308 break;
2309 case MPTIOCTL_REG_ACCESS:
2310 /*
2311 * The user has requested register access. Call our routine
2312 * which does this.
2313 */
2314 mps_lock(sc);
2315 error = mps_user_reg_access(sc, (mps_reg_access_t *)arg);
2316 mps_unlock(sc);
2317 break;
2318 case MPTIOCTL_BTDH_MAPPING:
2319 /*
2320 * The user has requested to translate a bus/target to a
2321 * DevHandle or a DevHandle to a bus/target. Call our routine
2322 * which does this.
2323 */
2324 error = mps_user_btdh(sc, (mps_btdh_mapping_t *)arg);
2325 break;
2326 default:
2327 error = ENOIOCTL;
2328 break;
2329 }
2330
2331 if (mps_page != NULL)
2332 free(mps_page, M_MPSUSER);
2333
2334 return (error);
2335 }
2336
2337 #ifdef COMPAT_FREEBSD32
2338
2339 struct mps_cfg_page_req32 {
2340 MPI2_CONFIG_PAGE_HEADER header;
2341 uint32_t page_address;
2342 uint32_t buf;
2343 int len;
2344 uint16_t ioc_status;
2345 };
2346
2347 struct mps_ext_cfg_page_req32 {
2348 MPI2_CONFIG_EXTENDED_PAGE_HEADER header;
2349 uint32_t page_address;
2350 uint32_t buf;
2351 int len;
2352 uint16_t ioc_status;
2353 };
2354
2355 struct mps_raid_action32 {
2356 uint8_t action;
2357 uint8_t volume_bus;
2358 uint8_t volume_id;
2359 uint8_t phys_disk_num;
2360 uint32_t action_data_word;
2361 uint32_t buf;
2362 int len;
2363 uint32_t volume_status;
2364 uint32_t action_data[4];
2365 uint16_t action_status;
2366 uint16_t ioc_status;
2367 uint8_t write;
2368 };
2369
2370 struct mps_usr_command32 {
2371 uint32_t req;
2372 uint32_t req_len;
2373 uint32_t rpl;
2374 uint32_t rpl_len;
2375 uint32_t buf;
2376 int len;
2377 uint32_t flags;
2378 };
2379
2380 #define MPSIO_READ_CFG_HEADER32 _IOWR('M', 200, struct mps_cfg_page_req32)
2381 #define MPSIO_READ_CFG_PAGE32 _IOWR('M', 201, struct mps_cfg_page_req32)
2382 #define MPSIO_READ_EXT_CFG_HEADER32 _IOWR('M', 202, struct mps_ext_cfg_page_req32)
2383 #define MPSIO_READ_EXT_CFG_PAGE32 _IOWR('M', 203, struct mps_ext_cfg_page_req32)
2384 #define MPSIO_WRITE_CFG_PAGE32 _IOWR('M', 204, struct mps_cfg_page_req32)
2385 #define MPSIO_RAID_ACTION32 _IOWR('M', 205, struct mps_raid_action32)
2386 #define MPSIO_MPS_COMMAND32 _IOWR('M', 210, struct mps_usr_command32)
2387
2388 static int
2389 mps_ioctl32(struct cdev *dev, u_long cmd32, void *_arg, int flag,
2390 struct thread *td)
2391 {
2392 struct mps_cfg_page_req32 *page32 = _arg;
2393 struct mps_ext_cfg_page_req32 *ext32 = _arg;
2394 struct mps_raid_action32 *raid32 = _arg;
2395 struct mps_usr_command32 *user32 = _arg;
2396 union {
2397 struct mps_cfg_page_req page;
2398 struct mps_ext_cfg_page_req ext;
2399 struct mps_raid_action raid;
2400 struct mps_usr_command user;
2401 } arg;
2402 u_long cmd;
2403 int error;
2404
2405 switch (cmd32) {
2406 case MPSIO_READ_CFG_HEADER32:
2407 case MPSIO_READ_CFG_PAGE32:
2408 case MPSIO_WRITE_CFG_PAGE32:
2409 if (cmd32 == MPSIO_READ_CFG_HEADER32)
2410 cmd = MPSIO_READ_CFG_HEADER;
2411 else if (cmd32 == MPSIO_READ_CFG_PAGE32)
2412 cmd = MPSIO_READ_CFG_PAGE;
2413 else
2414 cmd = MPSIO_WRITE_CFG_PAGE;
2415 CP(*page32, arg.page, header);
2416 CP(*page32, arg.page, page_address);
2417 PTRIN_CP(*page32, arg.page, buf);
2418 CP(*page32, arg.page, len);
2419 CP(*page32, arg.page, ioc_status);
2420 break;
2421
2422 case MPSIO_READ_EXT_CFG_HEADER32:
2423 case MPSIO_READ_EXT_CFG_PAGE32:
2424 if (cmd32 == MPSIO_READ_EXT_CFG_HEADER32)
2425 cmd = MPSIO_READ_EXT_CFG_HEADER;
2426 else
2427 cmd = MPSIO_READ_EXT_CFG_PAGE;
2428 CP(*ext32, arg.ext, header);
2429 CP(*ext32, arg.ext, page_address);
2430 PTRIN_CP(*ext32, arg.ext, buf);
2431 CP(*ext32, arg.ext, len);
2432 CP(*ext32, arg.ext, ioc_status);
2433 break;
2434
2435 case MPSIO_RAID_ACTION32:
2436 cmd = MPSIO_RAID_ACTION;
2437 CP(*raid32, arg.raid, action);
2438 CP(*raid32, arg.raid, volume_bus);
2439 CP(*raid32, arg.raid, volume_id);
2440 CP(*raid32, arg.raid, phys_disk_num);
2441 CP(*raid32, arg.raid, action_data_word);
2442 PTRIN_CP(*raid32, arg.raid, buf);
2443 CP(*raid32, arg.raid, len);
2444 CP(*raid32, arg.raid, volume_status);
2445 bcopy(raid32->action_data, arg.raid.action_data,
2446 sizeof arg.raid.action_data);
2447 CP(*raid32, arg.raid, ioc_status);
2448 CP(*raid32, arg.raid, write);
2449 break;
2450
2451 case MPSIO_MPS_COMMAND32:
2452 cmd = MPSIO_MPS_COMMAND;
2453 PTRIN_CP(*user32, arg.user, req);
2454 CP(*user32, arg.user, req_len);
2455 PTRIN_CP(*user32, arg.user, rpl);
2456 CP(*user32, arg.user, rpl_len);
2457 PTRIN_CP(*user32, arg.user, buf);
2458 CP(*user32, arg.user, len);
2459 CP(*user32, arg.user, flags);
2460 break;
2461 default:
2462 return (ENOIOCTL);
2463 }
2464
2465 error = mps_ioctl(dev, cmd, &arg, flag, td);
2466 if (error == 0 && (cmd32 & IOC_OUT) != 0) {
2467 switch (cmd32) {
2468 case MPSIO_READ_CFG_HEADER32:
2469 case MPSIO_READ_CFG_PAGE32:
2470 case MPSIO_WRITE_CFG_PAGE32:
2471 CP(arg.page, *page32, header);
2472 CP(arg.page, *page32, page_address);
2473 PTROUT_CP(arg.page, *page32, buf);
2474 CP(arg.page, *page32, len);
2475 CP(arg.page, *page32, ioc_status);
2476 break;
2477
2478 case MPSIO_READ_EXT_CFG_HEADER32:
2479 case MPSIO_READ_EXT_CFG_PAGE32:
2480 CP(arg.ext, *ext32, header);
2481 CP(arg.ext, *ext32, page_address);
2482 PTROUT_CP(arg.ext, *ext32, buf);
2483 CP(arg.ext, *ext32, len);
2484 CP(arg.ext, *ext32, ioc_status);
2485 break;
2486
2487 case MPSIO_RAID_ACTION32:
2488 CP(arg.raid, *raid32, action);
2489 CP(arg.raid, *raid32, volume_bus);
2490 CP(arg.raid, *raid32, volume_id);
2491 CP(arg.raid, *raid32, phys_disk_num);
2492 CP(arg.raid, *raid32, action_data_word);
2493 PTROUT_CP(arg.raid, *raid32, buf);
2494 CP(arg.raid, *raid32, len);
2495 CP(arg.raid, *raid32, volume_status);
2496 bcopy(arg.raid.action_data, raid32->action_data,
2497 sizeof arg.raid.action_data);
2498 CP(arg.raid, *raid32, ioc_status);
2499 CP(arg.raid, *raid32, write);
2500 break;
2501
2502 case MPSIO_MPS_COMMAND32:
2503 PTROUT_CP(arg.user, *user32, req);
2504 CP(arg.user, *user32, req_len);
2505 PTROUT_CP(arg.user, *user32, rpl);
2506 CP(arg.user, *user32, rpl_len);
2507 PTROUT_CP(arg.user, *user32, buf);
2508 CP(arg.user, *user32, len);
2509 CP(arg.user, *user32, flags);
2510 break;
2511 }
2512 }
2513
2514 return (error);
2515 }
2516 #endif /* COMPAT_FREEBSD32 */
2517
2518 static int
2519 mps_ioctl_devsw(struct cdev *dev, u_long com, caddr_t arg, int flag,
2520 struct thread *td)
2521 {
2522 #ifdef COMPAT_FREEBSD32
2523 if (SV_CURPROC_FLAG(SV_ILP32))
2524 return (mps_ioctl32(dev, com, arg, flag, td));
2525 #endif
2526 return (mps_ioctl(dev, com, arg, flag, td));
2527 }
Cache object: aa69a0854599a6f7d8f5d0ffc9715ea5
|