Updated ACS override patch

2016-06-13 18:46:17 -04:00 · 2016-06-13 18:46:17 -04:00 · 73d85b8de7
commit 73d85b8de7
parent 2007cc46f0
4 changed files with 205 additions and 153 deletions
--- a/.SRCINFO
+++ b/.SRCINFO
@ -1,5 +1,5 @@
 # Generated by mksrcinfo v8
-# Mon Jun 13 22:42:39 UTC 2016
+# Mon Jun 13 22:44:18 UTC 2016
 pkgbase = linux-vfio
 	pkgver = 4.6.2
 	pkgrel = 1
@ -23,7 +23,7 @@ pkgbase = linux-vfio
 	source = linux.preset
 	source = change-default-console-loglevel.patch
 	source = 0001-linux-4.6-rtlwifi-fix-atomic.patch
-	source = override_for_missing_acs_capabilities.patch
+	source = 0001-Updated-ACS-override-patch-for-4.6.2.patch
 	source = 0001-Updated-i915-vga-arbiter-patch-for-4.6.2.patch
 	sha256sums = a93771cd5a8ad27798f22e9240538dfea48d3a2bf2a6a6ab415de3f02d25d866
 	sha256sums = SKIP
@ -34,7 +34,7 @@ pkgbase = linux-vfio
 	sha256sums = f0d90e756f14533ee67afda280500511a62465b4f76adcc5effa95a40045179c
 	sha256sums = 1256b241cd477b265a3c2d64bdc19ffe3c9bbcee82ea3994c590c2c76e767d99
 	sha256sums = ae0d16e81a915fae130125ba9d0b6fd2427e06f50b8b9514abc4029efe61ee98
-	sha256sums = 975f79348119bfba8dd972a9fbfe6b38484c45bfd228f2f6d48a0c02426ba149
+	sha256sums = 7568f319f0cffbf27e79a781e7a21cfe62771bd14ea09d671919368c4f3fcd2f
 	sha256sums = 6dc172c2ef277223aa59806a2edda7efc4f94d2bf68b6bf2b1d0413e84b9e260
 pkgname = linux-vfio
--- a/0001-Updated-ACS-override-patch-for-4.6.2.patch
+++ b/0001-Updated-ACS-override-patch-for-4.6.2.patch
@ -0,0 +1,199 @@
 From 9441bfb6810bbbf7c099f23ace0357165a9abd4c Mon Sep 17 00:00:00 2001
 From: Dan Ziemba <zman0900@gmail.com>
 Date: Mon, 13 Jun 2016 18:37:29 -0400
 Subject: [PATCH] Updated ACS override patch for 4.6.2
 This an updated version of Alex Williamson's patch from:
 https://lkml.org/lkml/2013/5/30/513
 I don't currently use hardware requiring acs override, so this is
 untested.
 Original commit message follows:
 ---
 PCIe ACS (Access Control Services) is the PCIe 2.0+ feature that
 allows us to control whether transactions are allowed to be redirected
 in various subnodes of a PCIe topology.  For instance, if two
 endpoints are below a root port or downsteam switch port, the
 downstream port may optionally redirect transactions between the
 devices, bypassing upstream devices.  The same can happen internally
 on multifunction devices.  The transaction may never be visible to the
 upstream devices.
 One upstream device that we particularly care about is the IOMMU.  If
 a redirection occurs in the topology below the IOMMU, then the IOMMU
 cannot provide isolation between devices.  This is why the PCIe spec
 encourages topologies to include ACS support.  Without it, we have to
 assume peer-to-peer DMA within a hierarchy can bypass IOMMU isolation.
 Unfortunately, far too many topologies do not support ACS to make this
 a steadfast requirement.  Even the latest chipsets from Intel are only
 sporadically supporting ACS.  We have trouble getting interconnect
 vendors to include the PCIe spec required PCIe capability, let alone
 suggested features.
 Therefore, we need to add some flexibility.  The pcie_acs_override=
 boot option lets users opt-in specific devices or sets of devices to
 assume ACS support.  The "downstream" option assumes full ACS support
 on root ports and downstream switch ports.  The "multifunction"
 option assumes the subset of ACS features available on multifunction
 endpoints and upstream switch ports are supported.  The "id:nnnn:nnnn"
 option enables ACS support on devices matching the provided vendor
 and device IDs, allowing more strategic ACS overrides.  These options
 may be combined in any order.  A maximum of 16 id specific overrides
 are available.  It's suggested to use the most limited set of options
 necessary to avoid completely disabling ACS across the topology.
 Note to hardware vendors, we have facilities to permanently quirk
 specific devices which enforce isolation but not provide an ACS
 capability.  Please contact me to have your devices added and save
 your customers the hassle of this boot option.
 Signed-off-by: Alex Williamson <alex.williamson@redhat.com>
 ---
 Documentation/kernel-parameters.txt |  10 ++++
 drivers/pci/quirks.c                | 102 ++++++++++++++++++++++++++++++++++++
 2 files changed, 112 insertions(+)
 diff --git a/Documentation/kernel-parameters.txt b/Documentation/kernel-parameters.txt
 index 0b3de80..3eb47aa 100644
 --- a/Documentation/kernel-parameters.txt
 +++ b/Documentation/kernel-parameters.txt
@@ -3012,6 +3012,16 @@ bytes respectively. Such letter suffixes can also be entirely omitted.
 		nomsi	Do not use MSI for native PCIe PME signaling (this makes
 			all PCIe root ports use INTx for all services).
 +	pcie_acs_override =
 +			[PCIE] Override missing PCIe ACS support for:
 +		downstream
 +			All downstream ports - full ACS capabilties
 +		multifunction
 +			All multifunction devices - multifunction ACS subset
 +		id:nnnn:nnnn
 +			Specfic device - full ACS capabilities
 +			Specified as vid:did (vendor/device ID) in hex
 +
 	pcmv=		[HW,PCMCIA] BadgePAD 4
 	pd_ignore_unused
 diff --git a/drivers/pci/quirks.c b/drivers/pci/quirks.c
 index 8e67802..db7a808 100644
 --- a/drivers/pci/quirks.c
 +++ b/drivers/pci/quirks.c
@@ -3418,6 +3418,107 @@ static int __init pci_apply_final_quirks(void)
 fs_initcall_sync(pci_apply_final_quirks);
 +static bool acs_on_downstream;
 +static bool acs_on_multifunction;
 +
 +#define NUM_ACS_IDS 16
 +struct acs_on_id {
 +	unsigned short vendor;
 +	unsigned short device;
 +};
 +static struct acs_on_id acs_on_ids[NUM_ACS_IDS];
 +static u8 max_acs_id;
 +
 +static __init int pcie_acs_override_setup(char *p)
 +{
 +	if (!p)
 +		return -EINVAL;
 +
 +	while (*p) {
 +		if (!strncmp(p, "downstream", 10))
 +			acs_on_downstream = true;
 +		if (!strncmp(p, "multifunction", 13))
 +			acs_on_multifunction = true;
 +		if (!strncmp(p, "id:", 3)) {
 +			char opt[5];
 +			int ret;
 +			long val;
 +
 +			if (max_acs_id >= NUM_ACS_IDS - 1) {
 +				pr_warn("Out of PCIe ACS override slots (%d)\n",
 +					NUM_ACS_IDS);
 +				goto next;
 +			}
 +
 +			p += 3;
 +			snprintf(opt, 5, "%s", p);
 +			ret = kstrtol(opt, 16, &val);
 +			if (ret) {
 +				pr_warn("PCIe ACS ID parse error %d\n", ret);
 +				goto next;
 +			}
 +			acs_on_ids[max_acs_id].vendor = val;
 +
 +			p += strcspn(p, ":");
 +			if (*p != ':') {
 +				pr_warn("PCIe ACS invalid ID\n");
 +				goto next;
 +			}
 +
 +			p++;
 +			snprintf(opt, 5, "%s", p);
 +			ret = kstrtol(opt, 16, &val);
 +			if (ret) {
 +				pr_warn("PCIe ACS ID parse error %d\n", ret);
 +				goto next;
 +			}
 +			acs_on_ids[max_acs_id].device = val;
 +			max_acs_id++;
 +		}
 +next:
 +		p += strcspn(p, ",");
 +		if (*p == ',')
 +			p++;
 +	}
 +
 +	if (acs_on_downstream || acs_on_multifunction || max_acs_id)
 +		pr_warn("Warning: PCIe ACS overrides enabled; This may allow non-IOMMU protected peer-to-peer DMA\n");
 +
 +	return 0;
 +}
 +early_param("pcie_acs_override", pcie_acs_override_setup);
 +
 +static int pcie_acs_overrides(struct pci_dev *dev, u16 acs_flags)
 +{
 +	int i;
 +
 +	/* Never override ACS for legacy devices or devices with ACS caps */
 +	if (!pci_is_pcie(dev) ||
 +	    pci_find_ext_capability(dev, PCI_EXT_CAP_ID_ACS))
 +		return -ENOTTY;
 +
 +	for (i = 0; i < max_acs_id; i++)
 +		if (acs_on_ids[i].vendor == dev->vendor &&
 +		    acs_on_ids[i].device == dev->device)
 +			return 1;
 +
 +	switch (pci_pcie_type(dev)) {
 +	case PCI_EXP_TYPE_DOWNSTREAM:
 +	case PCI_EXP_TYPE_ROOT_PORT:
 +		if (acs_on_downstream)
 +			return 1;
 +		break;
 +	case PCI_EXP_TYPE_ENDPOINT:
 +	case PCI_EXP_TYPE_UPSTREAM:
 +	case PCI_EXP_TYPE_LEG_END:
 +	case PCI_EXP_TYPE_RC_END:
 +		if (acs_on_multifunction && dev->multifunction)
 +			return 1;
 +	}
 +
 +	return -ENOTTY;
 +}
 +
 /*
  * Followings are device-specific reset methods which can be used to
  * reset a single function if other methods (e.g. FLR, PM D0->D3) are
@@ -4028,6 +4129,7 @@ static const struct pci_dev_acs_enabled {
 	{ 0x10df, 0x720, pci_quirk_mf_endpoint_acs }, /* Emulex Skyhawk-R */
 	/* Cavium ThunderX */
 	{ PCI_VENDOR_ID_CAVIUM, PCI_ANY_ID, pci_quirk_cavium_acs },
 +	{ PCI_ANY_ID, PCI_ANY_ID, pcie_acs_overrides },
 	{ 0 }
 };
 -- 
 2.8.3
--- a/6
+++ b/6
@ -19,7 +19,7 @@ source=("https://www.kernel.org/pub/linux/kernel/v4.x/${_srcname}.tar.xz"
        'linux.preset'
        'change-default-console-loglevel.patch'
        '0001-linux-4.6-rtlwifi-fix-atomic.patch'
-        'override_for_missing_acs_capabilities.patch'
+        '0001-Updated-ACS-override-patch-for-4.6.2.patch'
        '0001-Updated-i915-vga-arbiter-patch-for-4.6.2.patch')
 sha256sums=('a93771cd5a8ad27798f22e9240538dfea48d3a2bf2a6a6ab415de3f02d25d866'
            'SKIP'
@ -30,7 +30,7 @@ sha256sums=('a93771cd5a8ad27798f22e9240538dfea48d3a2bf2a6a6ab415de3f02d25d866'
            'f0d90e756f14533ee67afda280500511a62465b4f76adcc5effa95a40045179c'
            '1256b241cd477b265a3c2d64bdc19ffe3c9bbcee82ea3994c590c2c76e767d99'
            'ae0d16e81a915fae130125ba9d0b6fd2427e06f50b8b9514abc4029efe61ee98'
-            '975f79348119bfba8dd972a9fbfe6b38484c45bfd228f2f6d48a0c02426ba149'
+            '7568f319f0cffbf27e79a781e7a21cfe62771bd14ea09d671919368c4f3fcd2f'
            '6dc172c2ef277223aa59806a2edda7efc4f94d2bf68b6bf2b1d0413e84b9e260')
 validpgpkeys=(
              'ABAF11C65A2970B130ABE3C479BE3E4300411886' # Linus Torvalds
@ -69,7 +69,7 @@ prepare() {
  # Overrides for missing acs capabilities
  echo '==> Applying ACS override patch'
-  patch -p1 -i "${srcdir}/override_for_missing_acs_capabilities.patch"
+  patch -p1 -i "${srcdir}/0001-Updated-ACS-override-patch-for-4.6.2.patch"
  if [ "${_kernelname}" != "" ]; then
    sed -i "s|CONFIG_LOCALVERSION=.*|CONFIG_LOCALVERSION=\"${_kernelname}\"|g" ./.config
--- a/override_for_missing_acs_capabilities.patch
+++ b/override_for_missing_acs_capabilities.patch
@ -1,147 +0,0 @@
 diff -rupN linux-3.15.old/Documentation/kernel-parameters.txt linux-3.15/Documentation/kernel-parameters.txt
 --- linux-3.15.old/Documentation/kernel-parameters.txt	2014-06-08 15:19:54.000000000 -0300
 +++ linux-3.15/Documentation/kernel-parameters.txt	2014-06-09 18:05:31.744055580 -0300
@@ -2554,6 +2554,16 @@ bytes respectively. Such letter suffixes
 		nomsi	Do not use MSI for native PCIe PME signaling (this makes
 			all PCIe root ports use INTx for all services).
 +	pcie_acs_override =
 +			[PCIE] Override missing PCIe ACS support for:
 +		downstream
 +			All downstream ports - full ACS capabilties
 +		multifunction
 +			All multifunction devices - multifunction ACS subset
 +		id:nnnn:nnnn
 +			Specfic device - full ACS capabilities
 +			Specified as vid:did (vendor/device ID) in hex
 +
 	pcmv=		[HW,PCMCIA] BadgePAD 4
 	pd_ignore_unused
 diff -rupN linux-3.15.old/drivers/pci/quirks.c linux-3.15/drivers/pci/quirks.c
 --- linux-3.15.old/drivers/pci/quirks.c	2014-06-08 15:19:54.000000000 -0300
 +++ linux-3.15/drivers/pci/quirks.c	2014-06-09 18:06:36.688743183 -0300
@@ -3384,6 +3384,107 @@ struct pci_dev *pci_get_dma_source(struc
 	return pci_dev_get(dev);
 }
 +static bool acs_on_downstream;
 +static bool acs_on_multifunction;
 +
 +#define NUM_ACS_IDS 16
 +struct acs_on_id {
 +	unsigned short vendor;
 +	unsigned short device;
 +};
 +static struct acs_on_id acs_on_ids[NUM_ACS_IDS];
 +static u8 max_acs_id;
 +
 +static __init int pcie_acs_override_setup(char *p)
 +{
 +	if (!p)
 +		return -EINVAL;
 +
 +	while (*p) {
 +		if (!strncmp(p, "downstream", 10))
 +			acs_on_downstream = true;
 +		if (!strncmp(p, "multifunction", 13))
 +			acs_on_multifunction = true;
 +		if (!strncmp(p, "id:", 3)) {
 +			char opt[5];
 +			int ret;
 +			long val;
 +
 +			if (max_acs_id >= NUM_ACS_IDS - 1) {
 +				pr_warn("Out of PCIe ACS override slots (%d)\n",
 +					NUM_ACS_IDS);
 +				goto next;
 +			}
 +
 +			p += 3;
 +			snprintf(opt, 5, "%s", p);
 +			ret = kstrtol(opt, 16, &val);
 +			if (ret) {
 +				pr_warn("PCIe ACS ID parse error %d\n", ret);
 +				goto next;
 +			}
 +			acs_on_ids[max_acs_id].vendor = val;
 +
 +			p += strcspn(p, ":");
 +			if (*p != ':') {
 +				pr_warn("PCIe ACS invalid ID\n");
 +				goto next;
 +			}
 +
 +			p++;
 +			snprintf(opt, 5, "%s", p);
 +			ret = kstrtol(opt, 16, &val);
 +			if (ret) {
 +				pr_warn("PCIe ACS ID parse error %d\n", ret);
 +				goto next;
 +			}
 +			acs_on_ids[max_acs_id].device = val;
 +			max_acs_id++;
 +		}
 +next:
 +		p += strcspn(p, ",");
 +		if (*p == ',')
 +			p++;
 +	}
 +
 +	if (acs_on_downstream || acs_on_multifunction || max_acs_id)
 +		pr_warn("Warning: PCIe ACS overrides enabled; This may allow non-IOMMU protected peer-to-peer DMA\n");
 +
 +	return 0;
 +}
 +early_param("pcie_acs_override", pcie_acs_override_setup);
 +
 +static int pcie_acs_overrides(struct pci_dev *dev, u16 acs_flags)
 +{
 +	int i;
 +
 +	/* Never override ACS for legacy devices or devices with ACS caps */
 +	if (!pci_is_pcie(dev) ||
 +	    pci_find_ext_capability(dev, PCI_EXT_CAP_ID_ACS))
 +		return -ENOTTY;
 +
 +	for (i = 0; i < max_acs_id; i++)
 +		if (acs_on_ids[i].vendor == dev->vendor &&
 +		    acs_on_ids[i].device == dev->device)
 +			return 1;
 +
 +	switch (pci_pcie_type(dev)) {
 +	case PCI_EXP_TYPE_DOWNSTREAM:
 +	case PCI_EXP_TYPE_ROOT_PORT:
 +		if (acs_on_downstream)
 +			return 1;
 +		break;
 +	case PCI_EXP_TYPE_ENDPOINT:
 +	case PCI_EXP_TYPE_UPSTREAM:
 +	case PCI_EXP_TYPE_LEG_END:
 +	case PCI_EXP_TYPE_RC_END:
 +		if (acs_on_multifunction && dev->multifunction)
 +			return 1;
 +	}
 +
 +	return -ENOTTY;
 +}
 +
 /*
  * AMD has indicated that the devices below do not support peer-to-peer
  * in any system where they are found in the southbridge with an AMD
@@ -3483,6 +3584,7 @@ static int pci_quirk_intel_pch_acs(struc
 	return acs_flags & ~flags ? 0 : 1;
 }
 +
 static const struct pci_dev_acs_enabled {
 	u16 vendor;
 	u16 device;
@@ -3495,6 +3597,7 @@ static const struct pci_dev_acs_enabled
 	{ PCI_VENDOR_ID_INTEL, PCI_ANY_ID, pci_quirk_intel_pch_acs },
 	{ 0x19a2, 0x710, pci_quirk_mf_endpoint_acs }, /* Emulex BE3-R */
 	{ 0x10df, 0x720, pci_quirk_mf_endpoint_acs }, /* Emulex Skyhawk-R */
 +	{ PCI_ANY_ID, PCI_ANY_ID, pcie_acs_overrides },
 	{ 0 }
 };