Binding to a task requires the following steps: * Pin down the mm context, and use its ASID to tag SMMU mappings. If the ASID is already in use by the SMMU for a domain using the DMA API, abort the binding. We can steal the domain's ASID since it is allocated by the SMMU, but this deserves a patch of its own. * Register an MMU notifier to mirror invalidations of the system's TLBs with a device's ATC. Signed-off-by: Jean-Philippe Brucker <jean-philippe.brucker@xxxxxxx> --- drivers/iommu/arm-smmu-v3.c | 171 +++++++++++++++++++++++++++++++++++++++++++- 1 file changed, 169 insertions(+), 2 deletions(-) diff --git a/drivers/iommu/arm-smmu-v3.c b/drivers/iommu/arm-smmu-v3.c index 5b4d1f265194..ab49164bf09b 100644 --- a/drivers/iommu/arm-smmu-v3.c +++ b/drivers/iommu/arm-smmu-v3.c @@ -29,6 +29,8 @@ #include <linux/interrupt.h> #include <linux/iommu.h> #include <linux/iopoll.h> +#include <linux/mmu_context.h> +#include <linux/mmu_notifier.h> #include <linux/module.h> #include <linux/msi.h> #include <linux/of.h> @@ -761,6 +763,9 @@ struct arm_smmu_task { struct arm_smmu_s1_cfg s1_cfg; + struct mmu_notifier mmu_notifier; + struct mm_struct *mm; + struct kref kref; }; @@ -1984,6 +1989,33 @@ static size_t arm_smmu_atc_invalidate_domain(struct arm_smmu_domain *smmu_domain return size; } +static size_t arm_smmu_atc_invalidate_task(struct arm_smmu_task *smmu_task, + unsigned long iova, size_t size) +{ + struct arm_smmu_cmdq_ent cmd; + struct arm_smmu_context *smmu_context; + struct arm_smmu_device *smmu = smmu_task->smmu; + struct arm_smmu_cmdq_ent sync_cmd = { + .opcode = CMDQ_OP_CMD_SYNC, + }; + + arm_smmu_atc_invalidate_to_cmd(smmu, iova, size, &cmd); + cmd.substream_valid = true; + + spin_lock(&smmu->contexts_lock); + + list_for_each_entry(smmu_context, &smmu_task->contexts, task_head) { + cmd.atc.ssid = smmu_context->ssid; + arm_smmu_atc_invalidate_master(smmu_context->master, &cmd); + } + + spin_unlock(&smmu->contexts_lock); + + arm_smmu_cmdq_issue_cmd(smmu, &sync_cmd); + + return size; +} + /* IOMMU API */ static bool arm_smmu_capable(enum iommu_cap cap) { @@ -2105,26 +2137,148 @@ static void arm_smmu_put_context(struct arm_smmu_device *smmu, spin_unlock(&smmu->contexts_lock); } +static struct arm_smmu_task *mn_to_task(struct mmu_notifier *mn) +{ + return container_of(mn, struct arm_smmu_task, mmu_notifier); +} + +static void arm_smmu_notifier_invalidate_range(struct mmu_notifier *mn, + struct mm_struct *mm, + unsigned long start, + unsigned long end) +{ + struct arm_smmu_task *smmu_task = mn_to_task(mn); + + arm_smmu_atc_invalidate_task(smmu_task, start, end - start); +} + +static void arm_smmu_notifier_invalidate_page(struct mmu_notifier *mn, + struct mm_struct *mm, + unsigned long address) +{ + arm_smmu_notifier_invalidate_range(mn, mm, address, address + PAGE_SIZE); +} + +static int arm_smmu_notifier_clear_flush_young(struct mmu_notifier *mn, + struct mm_struct *mm, + unsigned long start, + unsigned long end) +{ + arm_smmu_notifier_invalidate_range(mn, mm, start, end); + + return 0; +} + +static const struct mmu_notifier_ops arm_smmu_mmu_notifier_ops = { + .invalidate_page = arm_smmu_notifier_invalidate_page, + .invalidate_range = arm_smmu_notifier_invalidate_range, + .clear_flush_young = arm_smmu_notifier_clear_flush_young, +}; + +static int arm_smmu_context_share(struct arm_smmu_task *smmu_task, int asid) +{ + int ret = 0; + struct arm_smmu_device *smmu = smmu_task->smmu; + + if (test_and_set_bit(asid, smmu->asid_map)) + /* ASID is already used for a domain */ + return -EEXIST; + + return ret; +} + +static int arm_smmu_init_task_pgtable(struct arm_smmu_task *smmu_task) +{ + int ret; + int asid; + + /* Pin ASID on the CPU side */ + asid = mm_context_get(smmu_task->mm); + if (!asid) + return -ENOSPC; + + ret = arm_smmu_context_share(smmu_task, asid); + if (ret) { + mm_context_put(smmu_task->mm); + return ret; + } + + /* TODO: Initialize the rest of s1_cfg */ + smmu_task->s1_cfg.asid = asid; + + return 0; +} + +static void arm_smmu_free_task_pgtable(struct arm_smmu_task *smmu_task) +{ + struct arm_smmu_device *smmu = smmu_task->smmu; + + mm_context_put(smmu_task->mm); + + arm_smmu_bitmap_free(smmu->asid_map, smmu_task->s1_cfg.asid); +} + __maybe_unused static struct arm_smmu_task *arm_smmu_alloc_task(struct arm_smmu_device *smmu, struct task_struct *task) { + int ret; + struct mm_struct *mm; struct arm_smmu_task *smmu_task; + mm = get_task_mm(task); + if (!mm) + return ERR_PTR(-EINVAL); + smmu_task = kzalloc(sizeof(*smmu_task), GFP_KERNEL); - if (!smmu_task) - return ERR_PTR(-ENOMEM); + if (!smmu_task) { + ret = -ENOMEM; + goto err_put_mm; + } smmu_task->smmu = smmu; smmu_task->pid = get_task_pid(task, PIDTYPE_PID); + smmu_task->mmu_notifier.ops = &arm_smmu_mmu_notifier_ops; + smmu_task->mm = mm; INIT_LIST_HEAD(&smmu_task->contexts); kref_init(&smmu_task->kref); + ret = arm_smmu_init_task_pgtable(smmu_task); + if (ret) + goto err_free_task; + + /* + * TODO: check conflicts between task mappings and reserved HW + * mappings. It is unclear which reserved mappings might be affected + * because, for instance, devices are unlikely to send MSIs tagged with + * PASIDs so we (probably) don't need to carve out MSI regions from the + * task address space. Clarify this. + */ + + ret = mmu_notifier_register(&smmu_task->mmu_notifier, mm); + if (ret) + goto err_free_pgtable; + spin_lock(&smmu->contexts_lock); list_add(&smmu_task->smmu_head, &smmu->tasks); spin_unlock(&smmu->contexts_lock); + /* A reference to mm is kept by the notifier */ + mmput(mm); + return smmu_task; + +err_free_pgtable: + arm_smmu_free_task_pgtable(smmu_task); + +err_free_task: + put_pid(smmu_task->pid); + kfree(smmu_task); + +err_put_mm: + mmput(mm); + + return ERR_PTR(ret); } /* Caller must hold contexts_lock */ @@ -2151,8 +2305,21 @@ static void arm_smmu_free_task(struct kref *kref) list_del(&smmu_task->smmu_head); + /* + * Release the lock temporarily to unregister the notifier. This is safe + * because the task is not accessible anymore. + */ + spin_unlock(&smmu->contexts_lock); + + /* Unpin ASID */ + arm_smmu_free_task_pgtable(smmu_task); + + mmu_notifier_unregister(&smmu_task->mmu_notifier, smmu_task->mm); + put_pid(smmu_task->pid); kfree(smmu_task); + + spin_lock(&smmu->contexts_lock); } static void _arm_smmu_put_task(struct arm_smmu_task *smmu_task) -- 2.11.0